Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

cmd.exe & svchost.exe what should i do?


  • This topic is locked This topic is locked
31 replies to this topic

#1 active_active

active_active

  • Members
  • 17 posts
  • OFFLINE
  •  
  • Local time:03:50 PM

Posted 06 October 2014 - 12:38 PM

Good evening,

 

I have some problems woth my pc. The last days every time that i have tried to open the web my antivirus which is AVAST it shows to me a dialog box :

AVAST has blocked a harmfull webpage and it gives me C:\Windows\System32\svchost.exe.

 

And today i have opened my pc and i left for some time when i returned i saw the image that you can find in the attached file.

 

The truth is that i do not know what i should do, so please help me!!!!!

 

Also i have follow your instructions and i have already run the DDS program!

 

Thank you in advanced

Attached Files


Edited by active_active, 06 October 2014 - 12:40 PM.


BC AdBot (Login to Remove)

 


#2 B-boy/StyLe/

B-boy/StyLe/

    Bleepin' Freestyler


  • Malware Response Team
  • 8,310 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Bulgaria
  • Local time:03:50 PM

Posted 09 October 2014 - 05:42 AM

Hello! Welcome to BleepingComputer Forums! :welcome:
My name is Georgi and and I will be helping you with your computer problems.

Before we begin, please note the following:

  • I will working be on your Malware issues, this may or may not, solve other issues you have with your machine.
  • The logs can take some time to research, so please be patient with me.
  • Stay with the topic until I tell you that your system is clean. Missing symptoms does not mean that everything is okay.
  • Instructions that I give are for your system only!
  • Please do not run any tools until requested ! The reason for this is so I know what is going on with the machine at any time. Some programs can interfere with others and hamper the recovery process.
  • Please perform all steps in the order received. If you can't understand something don't hesitate to ask.
  • Again I would like to remind you to make no further changes to your computer unless I direct you to do so. I will not help you if you do not follow my instructions.

 

 

I need fresh logs so please download the latest version of Farbar Recovery Scan Tool and save it to your desktop.

Note: You need to run the version compatibale with your system. If you are not sure which version applies to your system download both of them and try to run them. Only one of them will run on your system, that will be the right version.

  • Double-click to run it. When the tool opens click Yes to disclaimer.
  • Press Scan button.
  • It will make a log (FRST.txt) in the same directory the tool is run. Please copy and paste it to your reply.
  • The first time the tool is run, it makes also another log (Addition.txt). Please attach it to your reply.

 

 

Regards,

Georgi


cXfZ4wS.png


#3 active_active

active_active
  • Topic Starter

  • Members
  • 17 posts
  • OFFLINE
  •  
  • Local time:03:50 PM

Posted 10 October 2014 - 02:59 AM

Thank you Georgi for your reply and for the time that you will spend with me.

I have to inform you that 4 days ago  i have changed the AVAST with AVG antivirus in order to continue my work without any interraptions from that messages, i hope this will not create any problem.

 

This is the FRST 

 

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 08-10-2014 01
Ran by user (administrator) on ACER on 10-10-2014 10:50:52
Running from C:\Documents and Settings\user\Επιφάνεια εργασίας
Loaded Profile: user (Available profiles: user)
Platform: Microsoft Windows XP Home Edition Service Pack 3 (X86) OS Language: Ελληνικά
Internet Explorer Version 7
Boot Mode: Normal
 
==================== Processes (Whitelisted) =================
 
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
 
(AVG Technologies CZ, s.r.o.) C:\PROGRA~1\AVG\AVG2015\avgrsx.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2015\avgcsrvx.exe
(Intel Corporation) C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
(Intel Corporation ) C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2015\avgidsagent.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2015\avgwdsvc.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
() C:\Documents and Settings\All Users\Application Data\DatacardService\HWDeviceService.exe
(Google Inc.) C:\Program Files\Google\Update\1.3.24.15\GoogleCrashHandler.exe
(Nero AG) C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe
(Prolific Technology Inc.) C:\WINDOWS\system32\IoctlSvc.exe
(Intel Corporation) C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
(Skype Technologies S.A.) C:\Documents and Settings\All Users\Application Data\Skype\Toolbars\Skype C2C Service\c2c_service.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2015\avgnsx.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2015\avgemcx.exe
() C:\Documents and Settings\All Users\Application Data\Sudani mDSL\OnlineUpdate\ouc.exe
(TeamViewer GmbH) C:\Program Files\TeamViewer\Version9\TeamViewer_Service.exe
() C:\Program Files\SavePass 1.1\9ac6c58d-907b-4e2d-98c6-8b8d7bcf2542.exe
(OB) C:\Program Files\SavePass 1.1\2283de3c-a360-4103-8b31-0e6750d3aa1a.exe
(Dritek System Inc.) C:\PROGRA~1\LAUNCH~1\LManager.exe
(Acer Inc.) C:\Program Files\Common Files\Logitech\LComMgr\Communications_Helper.exe
(Logitech Inc.) C:\Program Files\Common Files\Logitech\LComMgr\LVComSX.exe
() C:\Program Files\Acer\OrbiCam10\OrbiCam.exe
(Samsung Electronics.) C:\WINDOWS\Samsung\ComSMMgr\SSMMgr.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2015\avgui.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
(Sony Corporation) C:\Program Files\Sony\CONNECTAutoUpdate\CONNECTAUTrayApp.exe
(Sony Corporation) C:\Program Files\Sony\CONNECTAutoUpdate\CONNECTAutoUpdate.exe
(Intel Corporation) C:\Program Files\Intel\Wireless\Bin\ifrmewrk .exe
(Intel Corporation) C:\PROGRA~1\Intel\Wireless\Bin\Dot1XCfg.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Gretech Corp.) C:\Program Files\GRETECH\GomPlayer\GOM.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
 
 
==================== Registry (Whitelisted) ==================
 
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
 
HKLM\...\Run: [NvMediaCenter] => RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
HKLM\...\Run: [NvCplDaemon] => RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
HKLM\...\Run: [LManager] => C:\Program Files\Launch Manager\LManager.exe [593920 2006-07-20] (Dritek System Inc.)
HKLM\...\Run: [LogitechCommunicationsManager] => C:\Program Files\Common Files\Logitech\LComMgr\Communications_Helper.exe [304664 2006-10-31] (Acer Inc.)
HKLM\...\Run: [LVCOMSX] => C:\Program Files\Common Files\Logitech\LComMgr\LVComSX.exe [244512 2006-11-28] (Logitech Inc.)
HKLM\...\Run: [AcerOrbicamRibbon] => C:\Program Files\Acer\OrbiCam10\OrbiCam.exe [754712 2006-11-28] ()
HKLM\...\Run: [Samsung Common SM] => C:\WINDOWS\Samsung\ComSMMgr\ssmmgr.exe [372736 2005-07-03] (Samsung Electronics.)
HKLM\...\Run: [APSDaemon] => C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe [43848 2014-02-12] (Apple Inc.)
HKLM\...\Run: [AVG_UI] => C:\Program Files\AVG\AVG2015\avgui.exe [3593744 2014-09-05] (AVG Technologies CZ, s.r.o.)
HKU\S-1-5-21-823518204-1592454029-725345543-1004\...\Run: [Facebook Update] => C:\Documents and Settings\user\Local Settings\Application Data\Facebook\Update\FacebookUpdate.exe [138096 2012-07-22] (Facebook Inc.)
HKU\S-1-5-21-823518204-1592454029-725345543-1004\...\Run: [swg] => C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [39408 2012-02-12] (Google Inc.)
HKU\S-1-5-21-823518204-1592454029-725345543-1004\...\Run: [Sony PC Companion] => C:\Program Files\Sony\Sony PC Companion\PCCompanion.exe [449248 2013-05-29] (Sony)
HKU\S-1-5-21-823518204-1592454029-725345543-1004\...\Run: [DAEMON Tools Lite] => C:\Program Files\DAEMON Tools Lite\DTLite.exe [3696912 2014-03-04] (Disc Soft Ltd)
HKU\S-1-5-21-823518204-1592454029-725345543-1004\...\Run: [Skype] => C:\Program Files\Skype\Phone\Skype.exe [22041192 2014-08-27] (Skype Technologies S.A.)
HKU\S-1-5-21-823518204-1592454029-725345543-1004\...\MountPoints2: {06b311de-3ced-11df-8afe-00e1a7767681} - "G:\WD SmartWare.exe" autoplay=true
HKU\S-1-5-21-823518204-1592454029-725345543-1004\...\MountPoints2: {1cdae3c8-9d21-11e2-8cfe-0018de8e4bd9} - F:\Setup.exe /Auto
HKU\S-1-5-21-823518204-1592454029-725345543-1004\...\MountPoints2: {53f9e0cf-4198-11e0-8bbf-00e1a7767681} - F:\LGAutoRun.exe
HKU\S-1-5-21-823518204-1592454029-725345543-1004\...\MountPoints2: {745155be-4ade-11e2-8c81-0018de8e4bd9} - F:\AutoRun.exe
HKU\S-1-5-21-823518204-1592454029-725345543-1004\...\MountPoints2: {745155c2-4ade-11e2-8c81-0018de8e4bd9} - F:\AutoRun.exe
HKU\S-1-5-21-823518204-1592454029-725345543-1004\...\MountPoints2: {85278eb2-1889-11dd-ad94-00e1a7767681} - JOVANA/pojatar.exe
HKU\S-1-5-21-823518204-1592454029-725345543-1004\...\MountPoints2: {8f8aa4e6-4b99-11e2-8c82-0018de8e4bd9} - F:\AutoRun.exe
HKU\S-1-5-21-823518204-1592454029-725345543-1004\...\Winlogon: [Shell] C:\Documents and Settings\user\csrss.exe,C:\Documents and Settings\user\Application Data\jlwcbb.exe,explorer.exe,C:\Documents and Settings\user\Application Data\gkewzr.exe <==== ATTENTION 
AppInit_DLLs: app_dll.dll => app_dll.dll File Not Found
Startup: C:\Documents and Settings\All Users\Start Menu\Προγράμματα\Εκκίνηση\Bluetooth.lnk
ShortcutTarget: Bluetooth.lnk -> C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe (Broadcom Corporation.)
Startup: C:\Documents and Settings\All Users\Start Menu\Προγράμματα\Εκκίνηση\CONNECTAUTrayApp.lnk
ShortcutTarget: CONNECTAUTrayApp.lnk -> C:\Program Files\Sony\CONNECTAutoUpdate\CONNECTAUTrayApp.exe (Sony Corporation)
HKLM\...\AppCertDlls: [x64] -> c:\program files\settings manager\smdmf\x64\sysapcrt.dll
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} =>  No File
ShellIconOverlayIdentifiers: [AutoCAD Digital Signatures Icon Overlay Handler] -> {36A21736-36C2-4C11-8ACB-D4136F2B57BD} => C:\WINDOWS\system32\AcSignIcon.dll (Autodesk, Inc.)
BootExecute: autocheck autochk * C:\PROGRA~1\AVG\AVG2015\avgrsx.exe /sync /restart
 
==================== Internet (Whitelisted) ====================
 
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
 
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.gr/
HKCU\Software\Microsoft\Internet Explorer\Main,Start Default_Page_URL = http://search.certified-toolbar.com?si=41460&home=true&tid=2937
HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://search.certified-toolbar.com?si=41460&tid=2937&bs=true&q=
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.otenet.gr/
URLSearchHook: HKCU - Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll (Yahoo! Inc.)
URLSearchHook: HKCU - (No Name) - {00000000-6E41-4FD3-8538-502F5495E5FC} -  No File
SearchScopes: HKLM - DefaultScope {CCC7A320-B3CA-4199-B1A6-9F516DD69829} URL = http://us.yhs.search.yahoo.com/avg/search?fr=yhs-avg-chrome&type=yahoo_avg_hs2-tb-web_chrome_us&p={searchTerms}
SearchScopes: HKCU - DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://search.live.com/results.aspx?FORM=IEFM1&q={searchTerms}
SearchScopes: HKCU - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://search.live.com/results.aspx?FORM=IEFM1&q={searchTerms}
SearchScopes: HKCU - {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} URL = http://search.certified-toolbar.com?si=41460&bs=true&tid=2937&q={searchTerms}
SearchScopes: HKCU - {171DEBEB-C3D4-40b7-AC73-056A5EBA4A7E} URL = http://supertoolbar.ask.com/redirect?client=ie&tb=BW&o=14394&src=crm&q={searchTerms}&locale=en_EU
SearchScopes: HKCU - {EEE6C360-6118-11DC-9C72-001320C79847} URL = http://search.sweetim.com/search.asp?src=6&q={searchTerms}
BHO: Yahoo! Toolbar Helper -> {02478D38-C3F9-4EFB-9B51-7695ECA05670} -> C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll (Yahoo! Inc.)
BHO: Adobe PDF Reader Link Helper -> {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} -> C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll No File
BHO: SavePass 1.1 -> {11111111-1111-1111-1111-110611341129} -> C:\Program Files\SavePass 1.1\SavePass 1.1-bho.dll (OB)
BHO: AVG Safe Search -> {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} ->  No File
BHO: SSVHelper Class -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll (Sun Microsystems, Inc.)
BHO: Windows Live Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
BHO: Skype Browser Helper -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
BHO: Google Toolbar Notifier BHO -> {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} -> C:\Program Files\Google\GoogleToolbarNotifier\5.7.9012.1008\swg.dll (Google Inc.)
BHO: Browsing Protection Class -> {C6867EB7-8350-4856-877F-93CF8AE3DC9C} ->  No File
BHO: Google Gears Helper -> {E0FEFE40-FBF9-42AE-BA58-794CA7E3FB53} -> C:\Program Files\Google\Google Gears\Internet Explorer\0.5.36.0\gears.dll (Google Inc.)
Toolbar: HKLM - Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll (Yahoo! Inc.)
Toolbar: HKLM - Veoh Web Player Video Finder - {0FBB9689-D3D7-4f7a-A2E2-585B10099BFC} - C:\Program Files\Veoh Networks\VeohWebPlayer\VeohIEToolbar.dll (Veoh Networks Inc)
Toolbar: HKLM - No Name - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} -  No File
Toolbar: HKLM - Browsing Protection Toolbar - {265EEE8E-3228-44D3-AEA5-F7FDF5860049} -  No File
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
Toolbar: HKCU - Διεύ&θυνση - {01E04581-4EEE-11D0-BFE9-00AA005B4383} - C:\WINDOWS\system32\browseui.dll (Microsoft Corporation)
Toolbar: HKCU - &Συνδέσεις - {0E5CBF21-D15F-11D0-8301-00AA005B4383} - C:\WINDOWS\system32\SHELL32.dll (Microsoft Corporation)
Toolbar: HKCU - No Name - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} -  No File
Toolbar: HKCU - No Name - {A057A204-BACC-4D26-9990-79A187E2698E} -  No File
Toolbar: HKCU - No Name - {21FA44EF-376D-4D53-9B0F-8A89D3229068} -  No File
Toolbar: HKCU - No Name - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} -  No File
Toolbar: HKCU - No Name - {D4027C7F-154A-4066-A1AD-4243D8127440} -  No File
DPF: {166B1BCA-3F9C-11CF-8075-444553540000} http://download.macromedia.com/pub/shockwave/cabs/director/sw.cab
DPF: {78AF2F24-A9C3-11D3-BF8C-0060B0FCC122} file:///C:/Program%20Files/AutoCAD%202002/AcDcToday.ocx
DPF: {AE563720-B4F5-11D4-A415-00108302FDFD} file:///C:/Program%20Files/AutoCAD%202002/InstBanr.ocx
DPF: {F281A59C-7B65-11D3-8617-0010830243BD} file:///C:/Program%20Files/AutoCAD%202002/AcPreview.ocx
Handler: cdo - {CD00020A-8B95-11D1-82DB-00C04FB1625D} - C:\Program Files\Common Files\Microsoft Shared\Web Folders\PKMCDO.DLL (Microsoft Corporation)
Handler: ms-itss - {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Program Files\Common Files\Microsoft Shared\Information Retrieval\MSITSS.DLL (Microsoft Corporation)
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Winsock: Catalog5 04 C:\Program Files\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
 
FireFox:
========
FF ProfilePath: C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\q18k4vyi.default
FF DefaultSearchEngine: Web Search
FF SearchEngineOrder.1: Web Search
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll ()
FF Plugin: @adobe.com/ShockwavePlayer -> C:\WINDOWS\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
FF Plugin: @Apple.com/iTunes,version=1.0 -> C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeLive,version=1.3 -> C:\Program Files\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)
FF Plugin: @microsoft.com/WLPG,version=14.0.8064.0206 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=14.0.8081.0709 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=14.0.8117.0416 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 -> C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF Plugin: @real.com/nppl3260;version=6.0.12.450 -> C:\Program Files\Real Alternative\browser\plugins\nppl3260.dll (RealNetworks, Inc.)
FF Plugin: @real.com/nprpjplug;version=6.0.12.448 -> C:\Program Files\Real Alternative\browser\plugins\nprpjplug.dll (RealNetworks, Inc.)
FF Plugin: @staging.google.com/globalUpdate Update;version=10 -> C:\Program Files\globalUpdate\Update\1.3.25.0\npGoogleUpdate4.dll (globalUpdate)
FF Plugin: @staging.google.com/globalUpdate Update;version=4 -> C:\Program Files\globalUpdate\Update\1.3.25.0\npGoogleUpdate4.dll (globalUpdate)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @veoh.com/VeohTVPlugin -> C:\Program Files\Veoh Networks\VeohWebPlayer\NPVeohTVPlugin.dll (Veoh Networks )
FF Plugin: @veoh.com/VeohWebPlayer -> C:\Program Files\Veoh Networks\VeohWebPlayer\npWebPlayerVideoPluginATL.dll (Veoh)
FF Plugin: yaxmpb@yahoo.com/YahooActiveXPluginBridge;version=1.0.0.1 -> C:\Program Files\Yahoo!\Common\npyaxmpb.dll (Yahoo! Inc.)
FF Plugin HKCU: @Skype Limited.com/Facebook Video Calling Plugin -> C:\Documents and Settings\user\Local Settings\Application Data\Facebook\Video\Skype\npFacebookVideoCalling.dll (Skype Limited)
FF user.js: detected! => C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\q18k4vyi.default\user.js
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\np32dsw.dll (Adobe Systems, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npnul32.dll (mozilla.org)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\NPOFFICE.DLL (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nppdf32.dll (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nppl3260.dll (RealNetworks, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nprpjplug.dll (RealNetworks, Inc.)
FF SearchPlugin: C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\q18k4vyi.default\searchplugins\aolsearch.xml
FF SearchPlugin: C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\q18k4vyi.default\searchplugins\LiveSearch.xml
FF SearchPlugin: C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\q18k4vyi.default\searchplugins\searchplugins-backup
FF SearchPlugin: C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\q18k4vyi.default\searchplugins\Web Search.xml
FF SearchPlugin: C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\q18k4vyi.default\searchplugins\winamp-search.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\searchplugins\answers.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\searchplugins\avg_igeared.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\searchplugins\creativecommons.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\searchplugins\Web Search.xml
FF Extension: HD-V2.1 - C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\q18k4vyi.default\Extensions\BGKGT66124770@ZYFBNPM50498512.com [2014-09-07]
FF Extension: Babylon - C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\q18k4vyi.default\Extensions\ffxtlbr@babylon.com [2012-08-24]
FF Extension: {{EXT_NAME}} - C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\q18k4vyi.default\Extensions\jid0-ZUExAsljjifZW5hRDIbMjWOTGWg@jetpack [2014-09-13]
FF Extension: {{EXT_NAME}} - C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\q18k4vyi.default\Extensions\redirectcleaner@example.net [2014-09-24]
FF Extension: SavePass 1.1 - C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\q18k4vyi.default\Extensions\VJKPXI46039420@JMZUIOB85844870.com [2014-09-07]
FF Extension: Winamp Toolbar - C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\q18k4vyi.default\Extensions\{0b38152b-1b20-484d-a11f-5e04a9b0661f} [2009-09-09]
FF Extension: Google Toolbar for Firefox - C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\q18k4vyi.default\Extensions\{3112ca9c-de6d-4884-a869-9855de68056c} [2009-12-28]
FF Extension: Yahoo! Toolbar - C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\q18k4vyi.default\Extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1} [2008-08-14]
FF Extension: {{EXT_NAME}} - C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\q18k4vyi.default\Extensions\{cd617375-6743-4ee8-bac4-fbf10f35729e} [2014-09-13]
FF Extension: Greasemonkey - C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\q18k4vyi.default\Extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781} [2009-10-02]
FF Extension: Talkback - C:\Program Files\Mozilla Firefox\extensions\talkback@mozilla.org [2008-03-01]
FF Extension: Google Toolbar for Firefox - C:\Program Files\Mozilla Firefox\extensions\{3112ca9c-de6d-4884-a869-9855de68056c} [2008-03-01]
FF Extension: Java Console - C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA} [2008-09-05]
FF HKLM\...\Firefox\Extensions: [{000a9d1c-beef-4f90-9363-039d445309b8}] - C:\Program Files\Google\Google Gears\Firefox
FF Extension: Google Gears - C:\Program Files\Google\Google Gears\Firefox [2010-03-07]
FF HKLM\...\Firefox\Extensions: [litmus-ff@f-secure.com] - C:\Program Files\F-Secure\NRS\litmus-ff@f-secure.com
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF Extension: Microsoft .NET Framework Assistant - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2010-04-26]
FF HKLM\...\Firefox\Extensions: [xz123@ya456.com] - C:\Program Files\BetterSurf\ff
FF Extension: BetterSurf - C:\Program Files\BetterSurf\ff [2013-11-18]
FF HKLM\...\Firefox\Extensions: [12x3q@3244516.com] - C:\Program Files\Better-Surf\ff
FF Extension: Better-Surf - C:\Program Files\Better-Surf\ff [2013-11-26]
FF HKLM\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird
FF HKCU\...\Firefox\Extensions: [web@veoh.com] - C:\Program Files\Veoh Networks\VeohWebPlayer\FFVideoFinder
FF Extension: Veoh Web Player Video Finder - C:\Program Files\Veoh Networks\VeohWebPlayer\FFVideoFinder [2008-11-13]
 
Chrome: 
=======
CHR HomePage: Default -> 1D1BF7C64590AA42BA0B20812C37C8E5FE2DCBF92499ABF615B27C6C3E46F8EF
CHR Profile: C:\Documents and Settings\user\Local Settings\Application Data\Google\Chrome\User Data\Default
CHR Extension: (Διαφάνειες Google) - C:\Documents and Settings\user\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2014-09-08]
CHR Extension: (akjdheomplehjdgpjenoamnhhkcenlkf) - C:\Documents and Settings\user\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\akjdheomplehjdgpjenoamnhhkcenlkf [2014-09-15]
CHR Extension: (Έγγραφα Google) - C:\Documents and Settings\user\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-09-08]
CHR Extension: (Google Drive ) - C:\Documents and Settings\user\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-09-08]
CHR Extension: (Retro Heading) - C:\Documents and Settings\user\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\bkjbflodeemohgdgjgkabkpgeddeoiid [2014-09-10]
CHR Extension: (YouTube) - C:\Documents and Settings\user\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-09-08]
CHR Extension: (Adblock Plus) - C:\Documents and Settings\user\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2014-10-05]
CHR Extension: (Αναζήτηση Google) - C:\Documents and Settings\user\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-09-08]
CHR Extension: (dkaagdgjmgdmbnecmcefdhjekcoceebi) - C:\Documents and Settings\user\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\dkaagdgjmgdmbnecmcefdhjekcoceebi [2014-09-13]
CHR Extension: (Υπολογιστικά φύλλα Google) - C:\Documents and Settings\user\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2014-09-08]
CHR Extension: (Skype Click to Call) - C:\Documents and Settings\user\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2014-09-08]
CHR Extension: (Πορτοφόλι Google) - C:\Documents and Settings\user\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-09-08]
CHR Extension: (Gmail) - C:\Documents and Settings\user\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-09-08]
CHR HKLM\...\Chrome\Extension: [dedmngkbaffkenlfdcbganndoghblmap] - C:\Program Files\BetterSurf\ch\Chrome.crx []
CHR HKLM\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files\Skype\Toolbars\Skype for Chromium\skype_chrome_extension.crx [2013-10-09]
CHR HKLM\...\Chrome\Extension: [poheodfamflhhhdcmjfeggbgigeefaco] - C:\Program Files\Better-Surf\ch\Chrome.crx [2013-10-09]
 
========================== Services (Whitelisted) =================
 
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
 
S3 AppMgmt; C:\WINDOWS\system32\svchost.exe [14336 2008-04-14] (Microsoft Corporation)
R2 AVGIDSAgent; C:\Program Files\AVG\AVG2015\avgidsagent.exe [3364368 2014-09-05] (AVG Technologies CZ, s.r.o.)
R2 avgwd; C:\Program Files\AVG\AVG2015\avgwdsvc.exe [293448 2014-09-05] (AVG Technologies CZ, s.r.o.)
R2 btwdins; C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe [266295 2006-01-17] (Broadcom Corporation.) [File not signed]
R2 EvtEng; C:\Program Files\Intel\Wireless\Bin\EvtEng.exe [114753 2006-04-14] (Intel Corporation) [File not signed]
S2 globalUpdate; C:\Program Files\globalUpdate\Update\GoogleUpdate.exe [68608 2014-09-19] (globalUpdate) [File not signed]
S3 globalUpdatem; C:\Program Files\globalUpdate\Update\GoogleUpdate.exe [68608 2014-09-19] (globalUpdate) [File not signed]
S2 gupdate1c961bd237fd264; C:\Program Files\Google\Update\GoogleUpdate.exe [133104 2008-12-19] (Google Inc.)
R2 HWDeviceService.exe; C:\Documents and Settings\All Users\Application Data\DatacardService\HWDeviceService.exe [271712 2011-03-14] ()
S3 IDriverT; C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe [69632 2005-11-14] (Macrovision Corporation) [File not signed]
S2 LVSrvLauncher; C:\Program Files\Common Files\Logitech\SrvLnch\SrvLnch.exe [101152 2006-11-28] (Logitech Inc.)
S3 MSCSPTISRV; C:\Program Files\Common Files\Sony Shared\AVLib\MSCSPTISRV.exe [53337 2005-08-30] (Sony Corporation) [File not signed]
S3 PACSPTISVR; C:\Program Files\Common Files\Sony Shared\AVLib\PACSPTISVR.exe [53337 2005-08-30] (Sony Corporation) [File not signed]
R2 PLFlash DeviceIoControl Service; C:\WINDOWS\system32\IoctlSvc.exe [81920 2006-12-19] (Prolific Technology Inc.) [File not signed]
R2 RegSrvc; C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe [217164 2006-04-14] (Intel Corporation) [File not signed]
R2 S24EventMonitor; C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe [540745 2006-04-14] (Intel Corporation ) [File not signed]
R2 Skype C2C Service; C:\Documents and Settings\All Users\Application Data\Skype\Toolbars\Skype C2C Service\c2c_service.exe [3289208 2013-05-14] (Skype Technologies S.A.)
S3 Sony PC Companion; C:\Program Files\Sony\Sony PC Companion\PCCService.exe [155824 2013-02-04] (Avanquest Software)
S3 SPTISRV; C:\Program Files\Common Files\Sony Shared\AVLib\SPTISRV.exe [69718 2005-08-30] (Sony Corporation) [File not signed]
S2 Sudani mDSL. RunOuc; C:\Program Files\Sudani mDSL\UpdateDog\ouc.exe [655712 2012-12-20] ()
S3 WLSetupSvc; C:\Program Files\Windows Live\installer\WLSetupSvc.exe [266240 2007-10-25] (Microsoft Corporation)
 
==================== Drivers (Whitelisted) ====================
 
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
 
R2 AegisP; C:\WINDOWS\System32\DRIVERS\AegisP.sys [21275 2008-01-17] (Meetinghouse Data Communications) [File not signed]
R1 Avgdiskx; C:\WINDOWS\System32\DRIVERS\avgdiskx.sys [121624 2014-06-18] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSDriverl; C:\WINDOWS\System32\DRIVERS\avgidsdriverlx.sys [192280 2014-07-24] (AVG Technologies CZ, s.r.o.)
R0 AVGIDSHX; C:\WINDOWS\System32\DRIVERS\avgidshx.sys [147736 2014-06-18] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSShim; C:\WINDOWS\System32\DRIVERS\avgidsshimx.sys [21272 2014-06-18] (AVG Technologies CZ, s.r.o.)
R1 Avgldx86; C:\WINDOWS\System32\DRIVERS\avgldx86.sys [193304 2014-08-20] (AVG Technologies CZ, s.r.o.)
R0 Avglogx; C:\WINDOWS\System32\DRIVERS\avglogx.sys [230680 2014-07-18] (AVG Technologies CZ, s.r.o.)
R0 Avgmfx86; C:\WINDOWS\System32\DRIVERS\avgmfx86.sys [98584 2014-08-06] (AVG Technologies CZ, s.r.o.)
R0 Avgrkx86; C:\WINDOWS\System32\DRIVERS\avgrkx86.sys [27416 2014-06-18] (AVG Technologies CZ, s.r.o.)
R1 Avgtdix; C:\WINDOWS\System32\DRIVERS\avgtdix.sys [199448 2014-07-02] (AVG Technologies CZ, s.r.o.)
R3 btaudio; C:\WINDOWS\System32\drivers\btaudio.sys [328061 2006-01-17] (Broadcom Corporation.) [File not signed]
S3 BTDriver; C:\WINDOWS\System32\DRIVERS\btport.sys [30459 2006-01-17] (Broadcom Corporation.) [File not signed]
R3 BTKRNL; C:\WINDOWS\System32\DRIVERS\btkrnl.sys [850474 2006-01-17] (Broadcom Corporation.) [File not signed]
R2 BTSERIAL; C:\WINDOWS\system32\drivers\btserial.sys [23271 2006-01-17] (Broadcom Corporation.) [File not signed]
S3 BTWDNDIS; C:\WINDOWS\System32\DRIVERS\btwdndis.sys [148900 2006-01-17] (Broadcom Corporation.) [File not signed]
S3 BTWUSB; C:\WINDOWS\System32\Drivers\btwusb.sys [65688 2006-01-17] (Broadcom Corporation.) [File not signed]
S3 CCDECODE; C:\WINDOWS\System32\DRIVERS\CCDECODE.sys [17024 2008-04-13] (Microsoft Corporation)
S2 DgiVecp; C:\WINDOWS\system32\Drivers\DgiVecp.sys [38400 2009-10-12] (Samsung Electronics Co., Ltd.) [File not signed]
R1 dtsoftbus01; C:\WINDOWS\System32\DRIVERS\dtsoftbus01.sys [243128 2014-09-06] (Disc Soft Ltd)
R3 EMSCR; C:\WINDOWS\System32\DRIVERS\EMS7SK.sys [61056 2006-05-25] (ENE Technology Inc.)
R3 ESDCR; C:\WINDOWS\System32\DRIVERS\ESD7SK.sys [40064 2006-05-25] (ENE Technology Inc.)
R3 ESMCR; C:\WINDOWS\System32\DRIVERS\ESM7SK.sys [74752 2006-05-25] (ENE Technology Inc.)
R0 fsbts; C:\WINDOWS\System32\Drivers\fsbts.sys [44240 2012-08-23] ()
R2 fssfltr; C:\WINDOWS\System32\DRIVERS\fssfltr_tdi.sys [54752 2009-08-05] (Microsoft Corporation)
R3 HSFHWAZL; C:\WINDOWS\System32\DRIVERS\HSFHWAZL.sys [209664 2006-12-22] (Conexant Systems, Inc.) [File not signed]
R3 HSF_DPV; C:\WINDOWS\System32\DRIVERS\HSF_DPV.sys [988800 2006-12-22] (Conexant Systems, Inc.) [File not signed]
R3 lv321av; C:\WINDOWS\System32\DRIVERS\lv321av.sys [847392 2006-11-28] (Logitech Inc.)
R3 LVMVDrv; C:\WINDOWS\System32\DRIVERS\LVMVDrv.sys [1962784 2006-11-28] (Logitech Inc.)
R2 mdmxsdk; C:\WINDOWS\System32\DRIVERS\mdmxsdk.sys [12672 2006-06-19] (Conexant) [File not signed]
S3 NdisIP; C:\WINDOWS\System32\DRIVERS\NdisIP.sys [10880 2008-04-13] (Microsoft Corporation)
S3 NuidFltr; C:\WINDOWS\System32\DRIVERS\NuidFltr.sys [14736 2009-05-09] (Microsoft Corporation)
R3 Rasirda; C:\WINDOWS\System32\DRIVERS\rasirda.sys [19584 2001-08-17] (Microsoft Corporation)
R2 s24trans; C:\WINDOWS\System32\DRIVERS\s24trans.sys [13568 2006-04-14] (Intel Corporation) [File not signed]
S3 SE2Ebus; C:\WINDOWS\System32\DRIVERS\SE2Ebus.sys [61600 2006-11-10] (MCCI) [File not signed]
S3 SE2Emdfl; C:\WINDOWS\System32\DRIVERS\SE2Emdfl.sys [9360 2006-11-10] (MCCI) [File not signed]
S3 SE2Emdm; C:\WINDOWS\System32\DRIVERS\SE2Emdm.sys [97184 2006-11-10] (MCCI) [File not signed]
S3 SE2Emgmt; C:\WINDOWS\System32\DRIVERS\SE2Emgmt.sys [88688 2006-11-10] (MCCI) [File not signed]
S3 SE2Eobex; C:\WINDOWS\System32\DRIVERS\SE2Eobex.sys [86560 2006-11-10] (MCCI) [File not signed]
S3 se59bus; C:\WINDOWS\System32\DRIVERS\se59bus.sys [61536 2006-09-05] (MCCI) [File not signed]
S3 se59mdfl; C:\WINDOWS\System32\DRIVERS\se59mdfl.sys [9360 2006-09-05] (MCCI) [File not signed]
S3 se59mdm; C:\WINDOWS\System32\DRIVERS\se59mdm.sys [97088 2006-09-05] (MCCI) [File not signed]
S3 se59mgmt; C:\WINDOWS\System32\DRIVERS\se59mgmt.sys [88624 2006-09-05] (MCCI) [File not signed]
S3 se59obex; C:\WINDOWS\System32\DRIVERS\se59obex.sys [86432 2006-09-05] (MCCI) [File not signed]
S3 se59unic; C:\WINDOWS\System32\DRIVERS\se59unic.sys [90800 2006-09-05] (MCCI) [File not signed]
R3 SMCIRDA; C:\WINDOWS\System32\DRIVERS\smcirda.sys [46080 2004-06-16] (SMSC)
S3 USB_RNDIS; C:\WINDOWS\System32\DRIVERS\usb8023.sys [12928 2013-02-12] (Microsoft Corporation)
S3 VClone; C:\WINDOWS\System32\DRIVERS\VClone.sys [30208 2011-01-15] (Elaborate Bytes AG) [File not signed]
R3 w39n51; C:\WINDOWS\System32\DRIVERS\w39n51.sys [1429632 2006-04-04] (Intel® Corporation)
R3 winachsf; C:\WINDOWS\System32\DRIVERS\HSF_CNXT.sys [730112 2006-12-22] (Conexant Systems, Inc.) [File not signed]
R2 {FE4C91E7-22C2-4D0C-9F6B-82F1B7742054}; C:\Program Files\CyberLink\PowerDVD8\000.fcl [61424 2008-05-15] (Cyberlink Corp.)
S2 ADILOADER; System32\Drivers\adildr.sys [X]
S3 adiusbaw; system32\DRIVERS\adiusbaw.sys [X]
S3 CnxEtP; system32\DRIVERS\CnxEtP.sys [X]
S3 CnxEtU; system32\DRIVERS\CnxEtU.sys [X]
S3 CnxTgNP; system32\DRIVERS\CnxTgNP.sys [X]
S3 CnxTgNW; system32\DRIVERS\CnxTgNW.sys [X]
S3 e4usbaw; system32\DRIVERS\e4usbaw.sys [X]
S3 F-Secure Gatekeeper; \??\C:\Program Files\F-Secure\Anti-Virus\minifilter\fsgk.sys [X]
S3 fsbl; \??\C:\Program Files\F-Secure\Anti-Virus\fsbldrv.sys [X]
S3 GMSIPCI; \??\E:\INSTALL\GMSIPCI.SYS [X]
S2 IKANLOADER2; System32\Drivers\e4ldr.sys [X]
S4 IntelIde; No ImagePath
S3 npkcrypt; \??\C:\Documents and Settings\user\Επιφάνεια εργασίας\Lineage II - Chronicle 6\system\npkcrypt.sys [X]
U5 Pcan_usb; C:\Windows\System32\Drivers\Pcan_usb.sys [263871 2005-08-09] (PEAK-System Technik GmbH, Darmstadt, Germany) [File not signed]
U5 ScsiPort; C:\WINDOWS\system32\drivers\scsiport.sys [96384 2008-04-13] (Microsoft Corporation)
S2 SSPORT; \??\C:\WINDOWS\system32\Drivers\SSPORT.sys [X]
S2 vuyljz; \??\C:\DOCUME~1\user\LOCALS~1\Temp\xaupq.sys [X]
U1 WS2IFSL; No ImagePath
 
==================== NetSvcs (Whitelisted) ===================
 
 
(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)
 
 
==================== One Month Created Files and Folders ========
 
(If an entry is included in the fixlist, the file\folder will be moved.)
 
2014-10-10 10:50 - 2014-10-10 10:50 - 00072655 _____ () C:\Documents and Settings\user\Επιφάνεια εργασίας\Addition.txt
2014-10-10 10:48 - 2014-10-10 10:51 - 00036629 _____ () C:\Documents and Settings\user\Επιφάνεια εργασίας\FRST.txt
2014-10-10 10:48 - 2014-10-10 10:50 - 00000000 ____D () C:\FRST
2014-10-10 10:47 - 2014-10-10 10:47 - 01101312 _____ (Farbar) C:\Documents and Settings\user\Επιφάνεια εργασίας\FRST.exe
2014-10-08 11:22 - 2014-10-08 11:22 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\Avg_Update_0914av
2014-10-08 11:15 - 2014-10-08 11:15 - 00000702 _____ () C:\Documents and Settings\All Users\Επιφάνεια εργασίας\AVG 2015.lnk
2014-10-08 11:15 - 2014-10-08 11:15 - 00000000 ____D () C:\Documents and Settings\user\Application Data\AVG2015
2014-10-08 11:15 - 2014-10-08 11:15 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Προγράμματα\AVG
2014-10-08 11:14 - 2014-10-08 11:21 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\AVG2015
2014-10-08 11:14 - 2014-10-08 11:14 - 00009014 _____ () C:\WINDOWS\setupapi.log
2014-10-08 11:14 - 2014-10-08 11:14 - 00000000 ___HD () C:\$AVG
2014-10-08 11:13 - 2014-10-08 11:13 - 00000000 ____D () C:\Program Files\AVG
2014-10-08 11:10 - 2014-10-10 10:35 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\MFAData
2014-10-08 11:10 - 2014-10-08 11:22 - 00000000 ____D () C:\Documents and Settings\user\Local Settings\Application Data\Avg2015
2014-10-08 11:10 - 2014-10-08 11:10 - 00000000 ____D () C:\Documents and Settings\user\Local Settings\Application Data\MFAData
2014-10-08 11:10 - 2014-10-08 11:10 - 00000000 ____D () C:\Documents and Settings\user\Local Settings\Application Data\Avg2014
2014-10-08 10:51 - 2014-10-08 10:53 - 171450696 _____ (AVG Technologies) C:\Documents and Settings\user\Επιφάνεια εργασίας\avg_free_x64_all_2014_4765a8097.exe
2014-10-06 20:14 - 2014-10-06 20:18 - 00015974 _____ () C:\Documents and Settings\user\Επιφάνεια εργασίας\attach.txt
2014-10-06 20:14 - 2014-10-06 20:16 - 00019379 _____ () C:\Documents and Settings\user\Επιφάνεια εργασίας\dds.txt
2014-10-06 20:09 - 2014-10-06 20:09 - 00688992 ____R (Swearware) C:\Documents and Settings\user\Επιφάνεια εργασίας\dds.com
2014-10-06 18:45 - 2014-10-06 19:41 - 00000000 ____D () C:\Program Files\Cobian Backup 11
2014-10-01 19:53 - 2014-10-01 19:53 - 00000000 ____D () C:\Program Files\Common Files\Skype
2014-10-01 19:53 - 2014-10-01 19:53 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Προγράμματα\Skype
2014-09-25 15:08 - 2014-10-08 11:41 - 00000000 ____D () C:\Documents and Settings\user\Application Data\9788
2014-09-21 00:48 - 2014-09-21 00:48 - 00000815 _____ () C:\Documents and Settings\All Users\Επιφάνεια εργασίας\TeamViewer 9.lnk
2014-09-21 00:48 - 2014-09-21 00:48 - 00000000 ____D () C:\Program Files\TeamViewer
2014-09-21 00:48 - 2014-09-21 00:48 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Προγράμματα\TeamViewer 9
2014-09-19 11:52 - 2014-10-08 11:54 - 00000000 ____D () C:\Program Files\GetPrivate
2014-09-19 11:52 - 2014-10-08 11:43 - 00000000 ____D () C:\Documents and Settings\user\Application Data\GetPrivate
2014-09-19 11:52 - 2014-09-19 11:52 - 00000226 _____ () C:\WINDOWS\Tasks\GPUP.job
2014-09-12 18:14 - 2014-09-12 18:14 - 00000000 ____D () C:\Documents and Settings\user\Επιφάνεια εργασίας\GREEK WPA FINDER FOR PC MrGreek2013
2014-09-10 10:25 - 2014-09-10 10:25 - 00000000 ____H () C:\WINDOWS\system32\config\SYSTEM_tureg_new.LOG
2014-09-10 10:25 - 2014-09-10 10:25 - 00000000 ____H () C:\WINDOWS\system32\config\SOFTWARE_tureg_new.LOG
2014-09-10 10:25 - 2014-09-10 10:25 - 00000000 ____H () C:\WINDOWS\system32\config\SAM_tureg_new.LOG
2014-09-10 10:25 - 2014-09-10 10:25 - 00000000 ____H () C:\WINDOWS\system32\config\DEFAULT_tureg_new.LOG
2014-09-10 10:23 - 2014-09-10 10:23 - 00000000 ____H () C:\WINDOWS\system32\config\SECURITY_tureg_new.LOG
 
==================== One Month Modified Files and Folders =======
 
(If an entry is included in the fixlist, the file\folder will be moved.)
 
2014-10-10 10:51 - 2008-01-17 12:59 - 00000000 ____D () C:\Documents and Settings\user\Local Settings\Temp
2014-10-10 10:50 - 2008-01-17 12:59 - 00000000 ____D () C:\Documents and Settings\user\Επιφάνεια εργασίας
2014-10-10 10:39 - 2008-01-17 12:46 - 01190979 _____ () C:\WINDOWS\WindowsUpdate.log
2014-10-10 10:36 - 2009-01-01 19:14 - 00000460 _____ () C:\WINDOWS\Tasks\SDMsgUpdate (SD).job
2014-10-10 10:35 - 2014-03-18 00:39 - 00000214 _____ () C:\WINDOWS\Tasks\Μηνιαία ειδοποίηση λήξης υπηρεσίας για τα Microsoft Windows XP.job
2014-10-10 10:35 - 2012-08-23 12:17 - 00000000 ____D () C:\Documents and Settings\user\Application Data\Skype
2014-10-10 10:31 - 2014-09-07 01:09 - 00001420 _____ () C:\WINDOWS\Tasks\2283de3c-a360-4103-8b31-0e6750d3aa1a.job
2014-10-10 10:31 - 2014-09-07 01:08 - 00004464 _____ () C:\WINDOWS\Tasks\b80d3b81-615d-4a5c-8f2c-cbb8f591bb09-11.job
2014-10-10 10:31 - 2014-09-07 01:08 - 00003438 _____ () C:\WINDOWS\Tasks\b80d3b81-615d-4a5c-8f2c-cbb8f591bb09-4.job
2014-10-10 10:31 - 2014-09-07 01:08 - 00000598 _____ () C:\WINDOWS\Tasks\9ac6c58d-907b-4e2d-98c6-8b8d7bcf2542.job
2014-10-10 10:31 - 2014-09-07 01:04 - 00000578 _____ () C:\WINDOWS\Tasks\468ec008-fcbf-472c-b037-38b113d21cc4.job
2014-10-10 10:31 - 2014-09-07 01:03 - 00000872 _____ () C:\WINDOWS\Tasks\globalUpdateUpdateTaskMachineCore.job
2014-10-10 10:31 - 2014-03-18 00:39 - 00000220 _____ () C:\WINDOWS\Tasks\Σύνδεση στην ειδοποίηση λήξης υπηρεσίας για τα Microsoft Windows XP.job
2014-10-10 10:31 - 2013-08-30 22:20 - 00000388 _____ () C:\WINDOWS\Tasks\AmiUpdXp.job
2014-10-10 10:31 - 2009-06-30 22:02 - 00001168 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2014-10-10 10:31 - 2008-01-17 14:38 - 00000000 _____ () C:\WINDOWS\system32\nvapps.xml
2014-10-10 10:31 - 2008-01-17 12:58 - 00032328 _____ () C:\WINDOWS\SchedLgU.Txt
2014-10-10 10:30 - 2014-09-07 01:04 - 00001400 _____ () C:\WINDOWS\Tasks\ff3c8c5b-13b2-45fe-a9af-f73d69ab3748.job
2014-10-10 10:30 - 2012-12-27 00:55 - 00000328 _____ () C:\WINDOWS\Tasks\Protected Search.job
2014-10-10 10:30 - 2008-01-17 14:41 - 00000159 _____ () C:\WINDOWS\wiadebug.log
2014-10-10 10:30 - 2008-01-17 14:41 - 00000050 _____ () C:\WINDOWS\wiaservc.log
2014-10-10 10:29 - 2008-01-17 12:58 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT
2014-10-10 10:29 - 2004-09-07 10:00 - 00013646 _____ () C:\WINDOWS\system32\wpa.dbl
2014-10-08 13:16 - 2008-01-17 12:59 - 00000278 ___SH () C:\Documents and Settings\user\ntuser.ini
2014-10-08 12:49 - 2014-09-07 01:03 - 00000876 _____ () C:\WINDOWS\Tasks\globalUpdateUpdateTaskMachineUA.job
2014-10-08 12:29 - 2009-06-30 22:02 - 00001172 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2014-10-08 12:21 - 2013-07-29 00:50 - 00000830 _____ () C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2014-10-08 11:59 - 2014-09-06 20:10 - 00000000 ____D () C:\Program Files\MyPC Backup
2014-10-08 11:56 - 2014-09-07 01:03 - 00000000 ____D () C:\Program Files\HD-V2.1
2014-10-08 11:48 - 2008-03-09 00:27 - 00000000 ____D () C:\Documents and Settings\user\Τα έγγραφά μου\Προγράμματα
2014-10-08 11:41 - 2014-09-07 01:05 - 00000000 ____D () C:\Documents and Settings\user\Application Data\8841
2014-10-08 11:37 - 2014-09-06 19:46 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\WindowsMangerProtect
2014-10-08 11:21 - 2014-09-06 19:46 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\IePluginServices
2014-10-08 11:15 - 2014-08-31 12:59 - 00000000 ____D () C:\Documents and Settings\user\Application Data\TuneUp Software
2014-10-08 11:15 - 2008-01-17 14:37 - 00000000 ___RD () C:\Documents and Settings\All Users\Start Menu\Προγράμματα
2014-10-08 11:15 - 2008-01-17 14:37 - 00000000 ____D () C:\Documents and Settings\All Users\Επιφάνεια εργασίας
2014-10-08 11:05 - 2013-08-31 21:25 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\AVAST Software
2014-10-08 11:04 - 2014-08-31 12:59 - 00065536 _____ () C:\WINDOWS\system32\config\TuneUp.evt
2014-10-08 11:00 - 2014-08-31 12:57 - 00000000 ____D () C:\Program Files\TuneUp Utilities 2014
2014-10-08 10:54 - 2011-10-24 13:44 - 00001294 _____ () C:\WINDOWS\Tasks\FacebookUpdateTaskUserS-1-5-21-823518204-1592454029-725345543-1004UA.job
2014-10-08 10:26 - 2008-01-17 12:59 - 00000000 ___RD () C:\Documents and Settings\user\Τα έγγραφά μου
2014-10-08 10:23 - 2014-08-31 13:41 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\YTD Video Downloader
2014-10-07 12:29 - 2008-09-05 19:07 - 00000141 _____ () C:\Documents and Settings\user\Application Data\default.pls
2014-10-07 12:28 - 2008-02-16 16:11 - 00000069 _____ () C:\WINDOWS\NeroDigital.ini
2014-10-07 12:17 - 2008-01-17 14:37 - 00000000 ____D () C:\Program Files\Common Files\InstallShield
2014-10-06 22:54 - 2011-10-24 13:44 - 00001272 _____ () C:\WINDOWS\Tasks\FacebookUpdateTaskUserS-1-5-21-823518204-1592454029-725345543-1004Core.job
2014-10-06 14:45 - 2014-09-08 17:24 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\2308189059
2014-10-01 19:54 - 2008-01-17 14:38 - 01204464 ____C () C:\WINDOWS\system32\PerfStringBackup.INI
2014-10-01 19:53 - 2012-08-23 12:17 - 00000000 ___RD () C:\Program Files\Skype
2014-10-01 19:53 - 2012-08-23 12:16 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\Skype
2014-09-26 12:46 - 2014-08-14 08:56 - 00000000 ____D () C:\Documents and Settings\user\Επιφάνεια εργασίας\Athens
2014-09-25 23:40 - 2008-01-19 20:17 - 00000000 ____D () C:\Documents and Settings\user\Application Data\uTorrent
2014-09-25 23:35 - 2008-01-17 13:35 - 00098608 _____ () C:\Documents and Settings\user\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
2014-09-25 14:34 - 2014-09-08 10:57 - 00001877 _____ () C:\Documents and Settings\All Users\Επιφάνεια εργασίας\Google Chrome.lnk
2014-09-24 12:21 - 2013-07-29 00:50 - 00701104 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe
2014-09-24 12:21 - 2012-02-12 14:08 - 00071344 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
2014-09-22 12:49 - 2008-01-17 12:59 - 00000000 ___RD () C:\Documents and Settings\user\Start Menu\Προγράμματα\Εκκίνηση
2014-09-21 13:39 - 2008-01-17 14:37 - 00337848 _____ () C:\WINDOWS\system32\FNTCACHE.DAT
2014-09-21 00:53 - 2010-04-24 15:22 - 00000000 ____D () C:\Documents and Settings\user\Application Data\TeamViewer
2014-09-19 12:46 - 2008-01-17 12:59 - 00000000 ___RD () C:\Documents and Settings\user\Start Menu\Προγράμματα
2014-09-18 15:12 - 2014-08-17 19:01 - 00000000 ____D () C:\Documents and Settings\user\Τα έγγραφά μου\Οι εικόνες μου
2014-09-12 18:37 - 2008-01-17 16:22 - 00000000 ____D () C:\WINDOWS\ie7updates
2014-09-12 18:37 - 2008-01-17 16:06 - 00000000 ____D () C:\WINDOWS\system32\el-gr
2014-09-12 18:36 - 2013-07-28 17:37 - 00000000 ____D () C:\WINDOWS\system32\MRT
2014-09-12 18:31 - 2008-01-17 16:20 - 98758480 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2014-09-11 16:05 - 2014-09-08 17:21 - 00000000 ____D () C:\Documents and Settings\user\Τα έγγραφά μου\Syberia Saves
2014-09-10 14:33 - 2014-09-06 15:34 - 00000000 ____D () C:\Documents and Settings\user\Application Data\DAEMON Tools Lite
2014-09-10 14:33 - 2009-02-21 16:27 - 00000000 ____D () C:\Documents and Settings\user\Tracing
2014-09-10 10:40 - 2008-02-29 19:05 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Προγράμματα\Windows Live
2014-09-10 10:25 - 2008-01-17 14:37 - 00262144 _____ () C:\WINDOWS\system32\config\SECURITY_tureg_old
2014-09-10 10:25 - 2008-01-17 14:36 - 49283072 _____ () C:\WINDOWS\system32\config\SOFTWARE_tureg_old
2014-09-10 10:25 - 2008-01-17 14:36 - 11534336 _____ () C:\WINDOWS\system32\config\SYSTEM_tureg_old
2014-09-10 10:25 - 2008-01-17 12:58 - 00000000 __SHD () C:\Documents and Settings\LocalService
2014-09-10 10:25 - 2008-01-17 12:50 - 00000000 __SHD () C:\Documents and Settings\NetworkService
2014-09-10 10:22 - 2008-01-17 14:37 - 00262144 _____ () C:\WINDOWS\system32\config\SAM_tureg_old
2014-09-10 10:22 - 2008-01-17 14:36 - 00524288 _____ () C:\WINDOWS\system32\config\DEFAULT_tureg_old
 
Some content of TEMP:
====================
C:\Documents and Settings\user\Local Settings\Temp\DseShExt-x86.dll
C:\Documents and Settings\user\Local Settings\Temp\SDShelEx-win32.dll
 
 
==================== Bamital & volsnap Check =================
 
(There is no automatic fix for files that do not pass verification.)
 
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed
 
==================== End Of Log ============================
 
And this is the Addition
 
Additional scan result of Farbar Recovery Scan Tool (x86) Version: 08-10-2014 01
Ran by user at 2014-10-10 10:51:32
Running from C:\Documents and Settings\user\Επιφάνεια εργασίας
Boot Mode: Normal
==========================================================
 
 
==================== Security Center ========================
 
(If an entry is included in the fixlist, it will be removed.)
 
AV: AVG AntiVirus Free Edition 2015 (Disabled - Up to date) {17DDD097-36FF-435F-9E1B-52D74245D6BF}
AV: F-Secure Client Security 9.00 (Disabled - Up to date) {E7512ED5-4245-4B4D-AF3A-382D3F313F15}
 
==================== Installed Programs ======================
 
(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
 
µTorrent (HKCU\...\uTorrent) (Version: 3.4.2.33870 - BitTorrent Inc.)
Acer Camera Driver (HKLM\...\AcerOrbiCamDrv) (Version:  - )
Acer OrbiCam Application (HKLM\...\{0F79C1B2-36B2-4B62-8221-42721CF54638}) (Version: 10.40.1319 - Acer)
Adobe AIR (HKLM\...\Adobe AIR) (Version: 14.0.0.110 - Adobe Systems Incorporated)
Adobe AIR (Version: 14.0.0.110 - Adobe Systems Incorporated) Hidden
Adobe Flash Player 10 Plugin (HKLM\...\Adobe Flash Player Plugin) (Version: 10.0.32.18 - Adobe Systems Incorporated)
Adobe Flash Player 15 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 15.0.0.167 - Adobe Systems Incorporated)
Adobe Reader 8.1.3 (HKLM\...\{AC76BA86-7AD7-1033-7B44-A81300000003}) (Version: 8.1.3 - Adobe Systems Incorporated)
Apple Application Support (HKLM\...\{AAC5D43E-816D-4C2D-8E51-55FFF35BE301}) (Version: 3.0.1 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{18D47FA1-0440-48D3-A7E0-DA09537FF471}) (Version: 7.1.1.3 - Apple Inc.)
Apple Software Update (HKLM\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
AutoCAD 2008 - English (HKLM\...\AutoCAD 2008 - English) (Version: 17.1.51.0 - Autodesk)
AutoCAD 2008 - English (Version: 17.1.51.0 - Autodesk) Hidden
AVG 2015 (HKLM\...\AVG) (Version: 2015.0.5315 - AVG Technologies)
AVG 2015 (Version: 15.0.4176 - AVG Technologies) Hidden
AVG 2015 (Version: 15.0.5315 - AVG Technologies) Hidden
Bonjour (HKLM\...\{79155F2B-9895-49D7-8612-D92580E0DE5B}) (Version: 3.0.0.10 - Apple Inc.)
BSPlayer (HKLM\...\BSPlayer1) (Version:  - )
CADware 8.5 (HKLM\...\CADware 8.5) (Version:  - )
CCleaner (HKLM\...\CCleaner) (Version: 4.17 - Piriform)
CONNECT Auto Update (HKLM\...\CONNECTAutoUpdate) (Version:  - Sony Corporation)
COORD_GR (HKLM\...\ST6UNST #1) (Version:  - )
Crazy Machines (HKLM\...\{09D4F215-8960-4E0E-A2CC-C5A062113503}) (Version: 1.14 - FAKT Software GmbH)
CyberLink PowerDVD 8 (HKLM\...\InstallShield_{2BF2E31F-B8BB-40A7-B650-98D28E0F7D47}) (Version: 8.0.1730 - CyberLink Corp.)
CyberLink PowerDVD 8 (Version: 8.0.1730 - CyberLink Corp.) Hidden
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 4.49.1.0356 - Disc Soft Ltd)
DVD Shrink 3.1.7 (HKLM\...\DVD Shrink_is1) (Version:  - DVD Shrink)
Facebook Video Calling 3.1.0.521 (HKLM\...\{2091F234-EB58-4B80-8C96-8EB78C808CF7}) (Version: 3.1.521 - Skype Limited)
Franson CoordTrans v2.30 (HKLM\...\{0B222912-C927-47CE-AC67-F34E9F3B7964}) (Version: 2.30.0185 - Franson)
Free Zip 9.20 (HKLM\...\7-Zip) (Version:  - Somoto Ltd) <==== ATTENTION
F-Secure PSC Prerequisites (Version: 1.0.6 - F-Secure Corporation) Hidden
GIMP 2.8.4 (HKLM\...\GIMP-2_is1) (Version: 2.8.4 - The GIMP Team)
GOM Player (HKLM\...\GOM Player) (Version: 2.2.62.5207 - Gretech Corporation)
Google Chrome (HKLM\...\Google Chrome) (Version: 37.0.2062.124 - Google Inc.)
Google Earth (HKLM\...\{1E04F83B-2AB9-4301-9EF7-E86307F79C72}) (Version: 4.2.205.5730 - Google)
Google Gears (HKLM\...\{2FA41EBB-3F5A-35C3-85D6-51EC72A11FBD}) (Version: 0.5.3600 - Google)
Google Toolbar for Internet Explorer (HKLM\...\{2318C2B1-4965-11d4-9B18-009027A5CD4F}) (Version: 7.5.5111.1712 - Google Inc.)
Google Toolbar for Internet Explorer (Version: 1.0.0 - Google Inc.) Hidden
Google Update Helper (Version: 1.3.24.15 - Google Inc.) Hidden
IB Updater Service (HKLM\...\WNLT) (Version: 3.0.5.4 - ) <==== ATTENTION
Internet Explorer Toolbar 4.6 by SweetPacks (HKLM\...\{C3E85EE9-5892-4142-B537-BCEB3DAC4C3D}) (Version: 4.6.0004 - SweetIM Technologies Ltd.) <==== ATTENTION
iPhone Configuration Utility (HKLM\...\{B90FCEB7-2B0C-4D27-95B5-54238DF059ED}) (Version: 3.6.2.300 - Apple Inc.)
iTunes (HKLM\...\{2F21564D-DE05-4C6D-B21E-08B9D313FAB3}) (Version: 11.1.5.5 - Apple Inc.)
Java™ 6 Update 7 (HKLM\...\{3248F0A8-6813-11D6-A77B-00B0D0160070}) (Version: 1.6.0.70 - Sun Microsystems, Inc.)
JDownloader 0.9 (HKLM\...\5513-1208-7298-9440) (Version: 0.9 - AppWork GmbH)
Junk Mail filter update (Version: 14.0.8117.416 - Microsoft Corporation) Hidden
Launch Manager (HKLM\...\LManager) (Version:  - )
Logitech Video Enumerator (Version: 10.40.1319 - Logitech Inc.) Hidden
mCore (Version: 5.73.0000 - Intel Corporation) Hidden
mDriver (Version: 5.73.0000 - Intel) Hidden
mDrWiFi (Version: 5.73.0000 - Intel Corporation) Hidden
mEoU (Version: 5.73.0000 - Intel Corporation) Hidden
mHelp (Version: 5.73.0000 - Intel) Hidden
Microsoft .NET Framework 1.1 (HKLM\...\Microsoft .NET Framework 1.1  (1033)) (Version:  - )
Microsoft .NET Framework 1.1 (Version: 1.1.4322 - Microsoft) Hidden
Microsoft .NET Framework 1.1 Greek Language Pack (HKLM\...\{3D9E9EB7-B14F-4AE4-8C1F-1AD4CF3093BE}) (Version: 1.1.4322 - Microsoft)
Microsoft .NET Framework 1.1 Security Update (KB2698023) (HKLM\...\M2698023) (Version:  - )
Microsoft .NET Framework 1.1 Security Update (KB2833941) (HKLM\...\M2833941) (Version:  - )
Microsoft .NET Framework 1.1 Security Update (KB979906) (HKLM\...\M979906) (Version:  - )
Microsoft .NET Framework 2.0 Language Pack - ELL (HKLM\...\Microsoft .NET Framework 2.0 Language Pack - ELL) (Version:  - Microsoft Corporation)
Microsoft .NET Framework 2.0 Language Pack - ELL (Version: 1.1.50727.42 - Microsoft Corporation) Hidden
Microsoft .NET Framework 2.0 Service Pack 2 (HKLM\...\{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}) (Version: 2.2.30729 - Microsoft Corporation)
Microsoft .NET Framework 3.0 Greek Language Pack (Version: 3.0.04506.30 - Microsoft Corporation) Hidden
Microsoft .NET Framework 3.0 Service Pack 2 (HKLM\...\{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}) (Version: 3.2.30729 - Microsoft Corporation)
Microsoft .NET Framework 3.5 SP1 (HKLM\...\Microsoft .NET Framework 3.5 SP1) (Version:  - Microsoft Corporation)
Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729 - Microsoft Corporation) Hidden
Microsoft Application Error Reporting (Version: 12.0.6012.5000 - Microsoft Corporation) Hidden
Microsoft Choice Guard (Version: 2.0.48.0 - Microsoft Corporation) Hidden
Microsoft Kernel-Mode Driver Framework Feature Pack 1.5 (Version:  - Microsoft Corporation) Hidden
Microsoft Kernel-Mode Driver Framework Feature Pack 1.7 (Version:  - Microsoft Corporation) Hidden
Microsoft Office 2003 Web Components (HKLM\...\{90A40409-6000-11D3-8CFE-0150048383C9}) (Version: 11.0.8173.0 - Microsoft Corporation)
Microsoft Office File Validation Add-In (HKLM\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Live Add-in 1.3 (HKLM\...\{57F0ED40-8F11-41AA-B926-4A66D0D1A9CC}) (Version: 2.0.2313.0 - Microsoft Corporation)
Microsoft Office Outlook Connector (HKLM\...\{95120000-0122-0409-0000-0000000FF1CE}) (Version: 12.0.6423.1000 - Microsoft Corporation)
Microsoft Office Professional Edition 2003 (HKLM\...\{90110408-6000-11D3-8CFE-0150048383C9}) (Version: 11.0.8173.0 - Microsoft Corporation)
Microsoft Office Project Professional 2003 (HKLM\...\{903B0409-6000-11D3-8CFE-0150048383C9}) (Version: 11.0.8173.0 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Sync Framework Runtime Native v1.0 (x86) (HKLM\...\{8A74E887-8F0F-4017-AF53-CBA42211AAA5}) (Version: 1.0.1215.0 - Microsoft Corporation)
Microsoft Sync Framework Services Native v1.0 (x86) (HKLM\...\{BD64AF4A-8C80-4152-AD77-FCDDF05208AB}) (Version: 1.0.1215.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (HKLM\...\{770657D0-A123-3C07-8E44-1C83EC895118}) (Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
mIWA (Version: 5.73.0000 - Intel Corporation) Hidden
mLogView (Version: 5.73.0000 - Intel Corporation) Hidden
mMHouse (Version: 5.73.0000 - Intel Corporation) Hidden
MpcStar 5.3 (HKLM\...\MpcStar) (Version: 5.3 - www.mpcstar.com)
mPfMgr (Version: 5.73.0000 - Intel Corporation) Hidden
mPfWiz (Version: 5.73.0000 - Intel Corporation) Hidden
mProSafe (Version: 9.00.0000 - Intel) Hidden
MSVCRT (Version: 14.0.1468.721 - Microsoft) Hidden
MSXML 4.0 SP2 (KB936181) (HKLM\...\{C04E32E0-0416-434D-AFB9-6969D703A9EF}) (Version: 4.20.9848.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB954430) (HKLM\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
MSXML 6 Service Pack 2 (KB973686) (HKLM\...\{56EA8BC0-3751-4B93-BC9D-6651CC36E5AA}) (Version: 6.20.2003.0 - Microsoft Corporation)
MVision (Version: 10.40.1319 - Logitech Inc.) Hidden
mWlsSafe (Version: 9.00.0000 - Intel) Hidden
mXML (Version: 5.73.0000 - Intel Corporation) Hidden
mZConfig (Version: 5.73.0000 - Intel Corporation) Hidden
Nero 8 (HKLM\...\{D6C9AF27-9414-46C8-B9D8-D878BA041032}) (Version: 8.3.314 - Nero AG)
neroxml (Version: 1.0.0 - Nero AG) Hidden
NVIDIA Drivers (HKLM\...\NVIDIA Drivers) (Version:  - )
OpenMG Secure Module 4.3.00 (HKLM\...\InstallShield_{F5E4C38C-73BC-4D44-8BFC-969C2B4DABCA}) (Version: 4.3.00.08302 - Sony Corporation)
OpenMG Secure Module 4.3.00 (Version: 4.3.00.08302 - Sony Corporation) Hidden
PDF Manual NW-A10003000 (HKLM\...\{BF2F7927-92AF-4F5D-8B93-658F63DF8727}) (Version: 1.0.00.09080 - Sony Corporation)
PDFCreator (HKLM\...\{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}) (Version: 1.6.0 - Frank Heindφrfer, Philip Chinery)
PEAK OEM Driver (HKLM\...\PEAK OEM Driver) (Version:  - PEAK-System Technik GmbH)
PlayStation®Store (HKLM\...\{0E532C84-4275-41B3-9D81-D4A1A20D8EE7}) (Version: 4.14.6.15183 - Sony Computer Entertainment Inc.)
Protected Search 1.1 (HKLM\...\Protected Search_is1) (Version:  - Protected Search) <==== ATTENTION
PVsyst (HKLM\...\PVsyst) (Version: 5.03 - ISE - University of Geneva)
QuickTime 7 (HKLM\...\{111EE7DF-FC45-40C7-98A7-753AC46B12FB}) (Version: 7.75.80.95 - Apple Inc.)
RAR Password Unlocker (HKLM\...\{69B77D45-F5AD-4AB9-933D-352703324469}_is1) (Version:  - RAR Password Unlocker, Inc.)
Real Alternative 2.0.2 (HKLM\...\RealAlt_is1) (Version: 2.0.2 - )
Realtek High Definition Audio Driver (HKLM\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 5.10.0.5273 - Realtek Semiconductor Corp.)
RETScreen (HKLM\...\{FEA36347-ADBE-423F-A1B2-74A3C3BCE15E}) (Version: 1.0.1 - Ressources Naturelles Canada)
RETScreen Version 4 (HKLM\...\{E9021599-1E2A-4027-A1CC-40E42A08603C}) (Version: 4.0.11.7 - RETScreen International)
Royal Air Maroc Flight Schedules (HKLM\...\com.innovatallc.FlightMapsDesktop.AT.EN) (Version: 8.1.64 - INNOVATA LLC)
Royal Air Maroc Flight Schedules (Version: 8.1.64 - INNOVATA LLC) Hidden
Segoe UI (Version: 14.0.4327.805 - Microsoft Corp) Hidden
Skype Click to Call (HKLM\...\{B6CF2967-C81E-40C0-9815-C05774FEF120}) (Version: 6.13.13771 - Skype Technologies S.A.)
Skype™ 6.20 (HKLM\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 6.20.104 - Skype Technologies S.A.)
SMSC IrCC V5.1.3600.5 SP2 (HKLM\...\{F1B8DB67-D30E-4FF9-A85F-3CEE51825AA2}) (Version: r1.01 - )
Software Version Updater (HKLM\...\{99C91FC5-DB5B-4AA0-BB70-5D89C5A4DF96}) (Version: 1.1.3.9 - ) <==== ATTENTION
Sony PC Companion 2.10.165 (HKLM\...\{F09EF8F2-0976-42C1-8D9D-8DF78337C6E3}) (Version: 2.10.165 - Sony)
Sudani mDSL (HKLM\...\Sudani mDSL) (Version: 21.005.22.01.491 - Huawei Technologies Co.,Ltd)
sudani mDSL (HKLM\...\ZTEWireless-101_is1) (Version:  - )
Sunny Design (HKLM\...\{682ABE6A-2CCE-4C6C-AA82-0FE5AB8033F3}) (Version: 1.55.0 - SMA Solar Technology AG)
SweetIM Toolbar for Internet Explorer 3.1 (HKLM\...\{59971D79-8111-42C2-9E40-883A0C277E78}) (Version: 3.1.0006 - SweetIM Technologies Ltd.) <==== ATTENTION
Syberia (HKLM\...\Syberia_is1) (Version:  - GOG.com)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 8.2.19.0 - Synaptics)
TeamViewer 9 (HKLM\...\TeamViewer 9) (Version: 9.0.32494 - TeamViewer)
Update for Microsoft .NET Framework 3.5 SP1 (KB963707) (HKLM\...\{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB963707) (Version: 1 - Microsoft Corporation)
Update Manager for SweetPacks 1.1 (HKLM\...\{EA8FA6BE-29BE-4AF2-9352-841F83215EB0}) (Version: 1.1.0008 - SweetIM Technologies Ltd.) <==== ATTENTION
USB Remote NDIS Network Device (Version: 1.0.0.1 - nobrand) Hidden
Visual Studio 2012 x86 Redistributables (HKLM\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
Volo View Express (HKLM\...\Volo View Express) (Version:  - )
WebFldrs XP (Version: 9.50.7523 - Microsoft Corporation) Hidden
WIDCOMM Bluetooth Software (HKLM\...\{3F4EC965-28EF-45C3-B063-04B25D4E9679}) (Version: 5.0.1.1500 -  )
Winamp (HKLM\...\Winamp) (Version: 5.531  - Nullsoft, Inc)
Windows Communication Foundation Language Pack - ELL (Version: 3.0.04506.30 - Microsoft Corporation) Hidden
Windows Live Call (Version: 14.0.8117.0416 - Microsoft Corporation) Hidden
Windows Live Communications Platform (Version: 14.0.8117.416 - Microsoft Corporation) Hidden
Windows Live Essentials (HKLM\...\WinLiveSuite_Wave3) (Version: 14.0.8117.0416 - Microsoft Corporation)
Windows Live Essentials (Version: 14.0.8117.416 - Microsoft Corporation) Hidden
Windows Live Family Safety (Version: 14.0.8118.427 - Microsoft Corporation) Hidden
Windows Live Mail (Version: 14.0.8117.0416 - Microsoft Corporation) Hidden
Windows Live Photo Gallery (Version: 14.0.8117.416 - Microsoft Corporation) Hidden
Windows Live Sign-in Assistant (HKLM\...\{45338B07-A236-4270-9A77-EBB4115517B5}) (Version: 5.000.818.5 - Microsoft Corporation)
Windows Live Sync (HKLM\...\{B10914FD-8812-47A4-85A1-50FCDE7F1F33}) (Version: 14.0.8117.416 - Microsoft Corporation)
Windows Live Upload Tool (HKLM\...\{205C6BDD-7B73-42DE-8505-9A093F35A238}) (Version: 14.0.8014.1029 - Microsoft Corporation)
Windows Live Writer (Version: 14.0.8117.0416 - Microsoft Corporation) Hidden
Windows Media Format 11 runtime (HKLM\...\Windows Media Format Runtime) (Version:  - )
Windows Media Player 11 (HKLM\...\Windows Media Player) (Version:  - )
Windows Presentation Foundation (Version: 3.0.6920.0 - Microsoft Corporation) Hidden
Windows Presentation Foundation Language Pack (ELL) (Version: 3.0.6920.0 - Microsoft Corporation) Hidden
Windows Workflow Foundation EL Language Pack (Version: 3.0.4203.2 - Microsoft Corporation) Hidden
WindowsMangerProtect20.0.0.722 (HKLM\...\WindowsMangerProtect) (Version: 20.0.0.722 - WindowsProtect LIMITED) <==== ATTENTION
WinRAR archiver (HKLM\...\WinRAR archiver) (Version:  - )
XML Paper Specification Shared Components Pack 1.0 (Version:  - Microsoft Corporation) Hidden
Yahoo! Install Manager (HKLM\...\YInstHelper) (Version:  - )
YTD Video Downloader 4.8.4 (HKLM\...\{1a413f37-ed88-4fec-9666-5c48dc4b7bb7}) (Version: 4.8.4 - GreenTree Applications SRL)
Ενημερωμένη έκδοση ασφαλείας για το Windows Media Player (KB2378111) (HKLM\...\KB2378111_WM9) (Version:  - Microsoft Corporation)
Ενημερωμένη έκδοση ασφαλείας για το Windows Media Player (KB2834904) (HKLM\...\KB2834904_WM11) (Version:  - Microsoft Corporation)
Ενημερωμένη έκδοση ασφαλείας για το Windows Media Player (KB2834904-v2) (HKLM\...\KB2834904-v2_WM11) (Version:  - Microsoft Corporation)
Ενημερωμένη έκδοση ασφαλείας για το Windows Media Player (KB975558) (HKLM\...\KB975558_WM8) (Version:  - Microsoft Corporation)
Ενημερωμένη έκδοση ασφαλείας για το Windows Media Player (KB978695) (HKLM\...\KB978695_WM9) (Version:  - Microsoft Corporation)
Ενημέρωση ασφαλείας για Microsoft Windows (KB2564958) (HKLM\...\KB2564958) (Version:  - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows Internet Explorer 7 (KB2183461) (HKLM\...\KB2183461-IE7) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows Internet Explorer 7 (KB2360131) (HKLM\...\KB2360131-IE7) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows Internet Explorer 7 (KB2416400) (HKLM\...\KB2416400-IE7) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows Internet Explorer 7 (KB2482017) (HKLM\...\KB2482017-IE7) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows Internet Explorer 7 (KB2544521) (HKLM\...\KB2544521-IE7) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows Internet Explorer 7 (KB2586448) (HKLM\...\KB2586448-IE7) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows Internet Explorer 7 (KB2936068) (HKLM\...\KB2936068-IE7) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows Internet Explorer 7 (KB2964358) (HKLM\...\KB2964358-IE7) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows Internet Explorer 7 (KB938127) (HKLM\...\KB938127-IE7) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows Internet Explorer 7 (KB942615) (HKLM\...\KB942615-IE7) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows Internet Explorer 7 (KB982381) (HKLM\...\KB982381-IE7) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2079403) (HKLM\...\KB2079403) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2115168) (HKLM\...\KB2115168) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2121546) (HKLM\...\KB2121546) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2160329) (HKLM\...\KB2160329) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2229593) (HKLM\...\KB2229593) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2259922) (HKLM\...\KB2259922) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2279986) (HKLM\...\KB2279986) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2286198) (HKLM\...\KB2286198) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2296011) (HKLM\...\KB2296011) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2296199) (HKLM\...\KB2296199) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2347290) (HKLM\...\KB2347290) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2360937) (HKLM\...\KB2360937) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2387149) (HKLM\...\KB2387149) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2393802) (HKLM\...\KB2393802) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2412687) (HKLM\...\KB2412687) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2419632) (HKLM\...\KB2419632) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2423089) (HKLM\...\KB2423089) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2436673) (HKLM\...\KB2436673) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2440591) (HKLM\...\KB2440591) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2443105) (HKLM\...\KB2443105) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2476490) (HKLM\...\KB2476490) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2476687) (HKLM\...\KB2476687) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2478960) (HKLM\...\KB2478960) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2478971) (HKLM\...\KB2478971) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2479628) (HKLM\...\KB2479628) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2479943) (HKLM\...\KB2479943) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2481109) (HKLM\...\KB2481109) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2483185) (HKLM\...\KB2483185) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2485376) (HKLM\...\KB2485376) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2485663) (HKLM\...\KB2485663) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2506212) (HKLM\...\KB2506212) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2507618) (HKLM\...\KB2507618) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2507938) (HKLM\...\KB2507938) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2508429) (HKLM\...\KB2508429) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2509553) (HKLM\...\KB2509553) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2510581) (HKLM\...\KB2510581) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2524375) (HKLM\...\KB2524375) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2535512) (HKLM\...\KB2535512) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2536276-v2) (HKLM\...\KB2536276-v2) (Version: 2 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2544893) (HKLM\...\KB2544893) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2544893-v2) (HKLM\...\KB2544893-v2) (Version: 2 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2562937) (HKLM\...\KB2562937) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2566454) (HKLM\...\KB2566454) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2567053) (HKLM\...\KB2567053) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2567680) (HKLM\...\KB2567680) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2570222) (HKLM\...\KB2570222) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2570947) (HKLM\...\KB2570947) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2584146) (HKLM\...\KB2584146) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2585542) (HKLM\...\KB2585542) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2592799) (HKLM\...\KB2592799) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2598479) (HKLM\...\KB2598479) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2603381) (HKLM\...\KB2603381) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2618451) (HKLM\...\KB2618451) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2619339) (HKLM\...\KB2619339) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2620712) (HKLM\...\KB2620712) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2624667) (HKLM\...\KB2624667) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2631813) (HKLM\...\KB2631813) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2633171) (HKLM\...\KB2633171) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2639417) (HKLM\...\KB2639417) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2646524) (HKLM\...\KB2646524) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2653956) (HKLM\...\KB2653956) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2655992) (HKLM\...\KB2655992) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2659262) (HKLM\...\KB2659262) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2661637) (HKLM\...\KB2661637) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2676562) (HKLM\...\KB2676562) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2685939) (HKLM\...\KB2685939) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2686509) (HKLM\...\KB2686509) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2691442) (HKLM\...\KB2691442) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2695962) (HKLM\...\KB2695962) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2698365) (HKLM\...\KB2698365) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2705219) (HKLM\...\KB2705219) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2707511) (HKLM\...\KB2707511) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2712808) (HKLM\...\KB2712808) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2718523) (HKLM\...\KB2718523) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2719985) (HKLM\...\KB2719985) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2723135) (HKLM\...\KB2723135) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2724197) (HKLM\...\KB2724197) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2727528) (HKLM\...\KB2727528) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2731847) (HKLM\...\KB2731847) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2753842-v2) (HKLM\...\KB2753842-v2) (Version: 2 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2757638) (HKLM\...\KB2757638) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2758857) (HKLM\...\KB2758857) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2761226) (HKLM\...\KB2761226) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2770660) (HKLM\...\KB2770660) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2778344) (HKLM\...\KB2778344) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2779030) (HKLM\...\KB2779030) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2780091) (HKLM\...\KB2780091) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2799494) (HKLM\...\KB2799494) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2802968) (HKLM\...\KB2802968) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2807986) (HKLM\...\KB2807986) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2808735) (HKLM\...\KB2808735) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2813170) (HKLM\...\KB2813170) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2813345) (HKLM\...\KB2813345) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2820197) (HKLM\...\KB2820197) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2820917) (HKLM\...\KB2820917) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2829361) (HKLM\...\KB2829361) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2834886) (HKLM\...\KB2834886) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2839229) (HKLM\...\KB2839229) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2845187) (HKLM\...\KB2845187) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2847311) (HKLM\...\KB2847311) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2849470) (HKLM\...\KB2849470) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2850851) (HKLM\...\KB2850851) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2850869) (HKLM\...\KB2850869) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2859537) (HKLM\...\KB2859537) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2862152) (HKLM\...\KB2862152) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2862330) (HKLM\...\KB2862330) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2862335) (HKLM\...\KB2862335) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2864063) (HKLM\...\KB2864063) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2868038) (HKLM\...\KB2868038) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2868626) (HKLM\...\KB2868626) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2876217) (HKLM\...\KB2876217) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2876315) (HKLM\...\KB2876315) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2876331) (HKLM\...\KB2876331) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2883150) (HKLM\...\KB2883150) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2892075) (HKLM\...\KB2892075) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2893294) (HKLM\...\KB2893294) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2893984) (HKLM\...\KB2893984) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2898715) (HKLM\...\KB2898715) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2900986) (HKLM\...\KB2900986) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2909212) (HKLM\...\KB2909212) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2914368) (HKLM\...\KB2914368) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2916036) (HKLM\...\KB2916036) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2922229) (HKLM\...\KB2922229) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2929961) (HKLM\...\KB2929961) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2930275) (HKLM\...\KB2930275) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB923789) (HKLM\...\KB923789) (Version:  - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB975562) (HKLM\...\KB975562) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB978542) (HKLM\...\KB978542) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB979482) (HKLM\...\KB979482) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB979559) (HKLM\...\KB979559) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB979687) (HKLM\...\KB979687) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB980195) (HKLM\...\KB980195) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB980218) (HKLM\...\KB980218) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB980436) (HKLM\...\KB980436) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB981322) (HKLM\...\KB981322) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB981852) (HKLM\...\KB981852) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB981957) (HKLM\...\KB981957) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB981997) (HKLM\...\KB981997) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB982132) (HKLM\...\KB982132) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB982214) (HKLM\...\KB982214) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB982665) (HKLM\...\KB982665) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB982802) (HKLM\...\KB982802) (Version: 1 - Microsoft Corporation)
Ενημέρωση για Windows Internet Explorer 7 (KB980182) (HKLM\...\KB980182-IE7) (Version: 1 - Microsoft Corporation)
Ενημέρωση για Windows XP (KB2141007) (HKLM\...\KB2141007) (Version: 1 - Microsoft Corporation)
Ενημέρωση για Windows XP (KB2345886) (HKLM\...\KB2345886) (Version: 1 - Microsoft Corporation)
Ενημέρωση για Windows XP (KB2467659) (HKLM\...\KB2467659) (Version: 1 - Microsoft Corporation)
Ενημέρωση για Windows XP (KB2541763) (HKLM\...\KB2541763) (Version: 1 - Microsoft Corporation)
Ενημέρωση για Windows XP (KB2616676-v2) (HKLM\...\KB2616676-v2) (Version: 2 - Microsoft Corporation)
Ενημέρωση για Windows XP (KB2641690) (HKLM\...\KB2641690) (Version: 1 - Microsoft Corporation)
Ενημέρωση για Windows XP (KB2661254-v2) (HKLM\...\KB2661254-v2) (Version: 2 - Microsoft Corporation)
Ενημέρωση για Windows XP (KB2718704) (HKLM\...\KB2718704) (Version: 1 - Microsoft Corporation)
Ενημέρωση για Windows XP (KB2736233) (HKLM\...\KB2736233) (Version: 1 - Microsoft Corporation)
Ενημέρωση για Windows XP (KB2749655) (HKLM\...\KB2749655) (Version: 1 - Microsoft Corporation)
Ενημέρωση για Windows XP (KB2863058) (HKLM\...\KB2863058) (Version: 1 - Microsoft Corporation)
Ενημέρωση για Windows XP (KB2904266) (HKLM\...\KB2904266) (Version: 1 - Microsoft Corporation)
Ενημέρωση για Windows XP (KB2934207) (HKLM\...\KB2934207) (Version: 1 - Microsoft Corporation)
Ενημέρωση για Windows XP (KB951978) (HKLM\...\KB951978) (Version: 1 - Microsoft Corporation)
Ενημέρωση για Windows XP (KB971029) (HKLM\...\KB971029) (Version: 1 - Microsoft Corporation)
Επείγουσα επιδιόρθωση για Windows XP (KB2158563) (HKLM\...\KB2158563) (Version: 1 - Microsoft Corporation)
Επείγουσα επιδιόρθωση για Windows XP (KB2443685) (HKLM\...\KB2443685) (Version: 1 - Microsoft Corporation)
Επείγουσα επιδιόρθωση για Windows XP (KB2570791) (HKLM\...\KB2570791) (Version: 1 - Microsoft Corporation)
Επείγουσα επιδιόρθωση για Windows XP (KB2633952) (HKLM\...\KB2633952) (Version: 1 - Microsoft Corporation)
Επείγουσα επιδιόρθωση για Windows XP (KB2756822) (HKLM\...\KB2756822) (Version: 1 - Microsoft Corporation)
Επείγουσα επιδιόρθωση για Windows XP (KB2779562) (HKLM\...\KB2779562) (Version: 1 - Microsoft Corporation)
Επείγουσα επιδιόρθωση για Windows XP (KB942288-v3) (HKLM\...\KB942288-v3) (Version: 3 - Microsoft Corporation)
Επείγουσα επιδιόρθωση για Windows XP (KB981793) (HKLM\...\KB981793) (Version: 1 - Microsoft Corporation)
Λογισμικό Intel® PROSet/Wireless (HKLM\...\ProInst) (Version: 10.1.1.3 - Intel Corporation)
Πακέτο ελληνικής γλώσσας του Microsoft .NET Framework 3.0 (HKLM\...\Microsoft .NET Framework 3.0 Greek Language Pack) (Version:  - Microsoft Corporation)
Πακέτο συμβατότητας για το 2007 Microsoft Office system (HKLM\...\{90120000-0020-0408-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)
 
==================== Custom CLSID (selected items): ==========================
 
(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)
 
CustomCLSID: HKU\S-1-5-21-823518204-1592454029-725345543-1004_Classes\CLSID\{05C3F9E2-1E76-439F-9E37-9020946A191A}\InprocServer32 -> C:\Program Files\Common Files\Logitech\LComMgr\LVMaEnum.dll (Logitech Inc.)
CustomCLSID: HKU\S-1-5-21-823518204-1592454029-725345543-1004_Classes\CLSID\{09303D01-B159-4F1B-A2B8-CA3117B8FA1B}\InprocServer32 -> C:\Program Files\Common Files\Logitech\LComMgr\LVMaEnum.dll (Logitech Inc.)
CustomCLSID: HKU\S-1-5-21-823518204-1592454029-725345543-1004_Classes\CLSID\{1FD1FE74-9E3C-4C1C-AEEB-AAB592AD770F}\localserver32 -> C:\Documents and Settings\user\Local Settings\Application Data\Facebook\Update\FacebookUpdate.exe (Facebook Inc.)
CustomCLSID: HKU\S-1-5-21-823518204-1592454029-725345543-1004_Classes\CLSID\{28B7AA99-C0F9-4C47-995E-8A8D729603A1}\localserver32 -> C:\Program Files\AutoCAD 2008\acad.exe (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-823518204-1592454029-725345543-1004_Classes\CLSID\{54B2BE72-FEC7-443D-BAE9-3E70E618A7D8}\InprocServer32 -> C:\Program Files\Common Files\Logitech\LComMgr\LVMaEnum.dll (Logitech Inc.)
CustomCLSID: HKU\S-1-5-21-823518204-1592454029-725345543-1004_Classes\CLSID\{5E71E4F3-E8C7-4906-9626-973E418762B6}\InprocServer32 -> C:\Documents and Settings\user\Local Settings\Application Data\Facebook\Update\1.2.205.0\goopdate.dll (Facebook Inc.)
CustomCLSID: HKU\S-1-5-21-823518204-1592454029-725345543-1004_Classes\CLSID\{6AB55F46-2523-4701-A912-B226F46252BA}\localserver32 -> C:\Program Files\AutoCAD 2008\acad.exe (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-823518204-1592454029-725345543-1004_Classes\CLSID\{73CA2532-42DE-449F-8C8A-229B8AAF3B68}\InprocServer32 -> C:\Program Files\Common Files\Logitech\LComMgr\LVMaEnum.dll (Logitech Inc.)
CustomCLSID: HKU\S-1-5-21-823518204-1592454029-725345543-1004_Classes\CLSID\{7AABBB95-79BE-4C0F-8024-EB6AF271231C}\localserver32 -> C:\Program Files\AutoCAD 2008\acad.exe (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-823518204-1592454029-725345543-1004_Classes\CLSID\{8B9F5BF4-0407-4BB2-9FED-4C0372DABD00}\localserver32 -> C:\Documents and Settings\user\Local Settings\Application Data\Facebook\Video\Skype\FacebookVideoCallingProxy.exe (Skype Limited)
CustomCLSID: HKU\S-1-5-21-823518204-1592454029-725345543-1004_Classes\CLSID\{949DB7D2-36F2-4CCA-8CA8-A3A6D4E5911C}\InprocServer32 -> C:\Program Files\Common Files\Logitech\LComMgr\LVMaEnum.dll (Logitech Inc.)
CustomCLSID: HKU\S-1-5-21-823518204-1592454029-725345543-1004_Classes\CLSID\{A50A1B09-943D-4A78-B08D-56072A602ABD}\InprocServer32 -> C:\Program Files\Common Files\Logitech\LComMgr\LVComCX.dll (Logitech Inc.)
CustomCLSID: HKU\S-1-5-21-823518204-1592454029-725345543-1004_Classes\CLSID\{C9448C44-BEFB-4941-8457-E5C4314D3D96}\localserver32 -> C:\Program Files\Common Files\Logitech\LComMgr\LVComSX.exe (Logitech Inc.)
CustomCLSID: HKU\S-1-5-21-823518204-1592454029-725345543-1004_Classes\CLSID\{CAF933C7-C65A-46D2-AA63-1FC84EB43954}\InprocServer32 -> C:\Program Files\Common Files\Logitech\LComMgr\LVMaEnum.dll (Logitech Inc.)
CustomCLSID: HKU\S-1-5-21-823518204-1592454029-725345543-1004_Classes\CLSID\{CBE9C57E-FFA9-4123-8354-AD360D6DD3CC}\InprocServer32 -> C:\Documents and Settings\user\Local Settings\Application Data\Facebook\Video\Skype\npFacebookVideoCalling.dll (Skype Limited)
CustomCLSID: HKU\S-1-5-21-823518204-1592454029-725345543-1004_Classes\CLSID\{CC9E9F9A-11A4-49DD-B468-782AFDE5607E}\InprocServer32 -> C:\Program Files\Common Files\Logitech\LComMgr\LVMaEnum.dll (Logitech Inc.)
CustomCLSID: HKU\S-1-5-21-823518204-1592454029-725345543-1004_Classes\CLSID\{CD89D352-5A13-49F8-9EB5-7E6D1FB0CD57}\localserver32 -> C:\Program Files\Common Files\Logitech\LComMgr\LVComSX.exe (Logitech Inc.)
CustomCLSID: HKU\S-1-5-21-823518204-1592454029-725345543-1004_Classes\CLSID\{DB20D0C0-4CEF-11D0-8B17-00AA00211961}\localserver32 -> C:\Program Files\Common Files\Logitech\LComMgr\LVComSX.exe (Logitech Inc.)
CustomCLSID: HKU\S-1-5-21-823518204-1592454029-725345543-1004_Classes\CLSID\{DB20D0C3-4CEF-11D0-8B17-00AA00211961}\localserver32 -> C:\Program Files\Common Files\Logitech\LComMgr\LVComSX.exe (Logitech Inc.)
CustomCLSID: HKU\S-1-5-21-823518204-1592454029-725345543-1004_Classes\CLSID\{E8ACF719-FFDE-4EE1-8923-48BDA8569FCC}\localserver32 -> C:\Program Files\Common Files\Logitech\LComMgr\LVComSX.exe (Logitech Inc.)
 
==================== Restore Points  =========================
 
26-08-2014 12:10:35 Σημείο ελέγχου συστήματος
31-08-2014 12:39:12 Σημείο ελέγχου συστήματος
03-09-2014 11:36:05 Σημείο ελέγχου συστήματος
04-09-2014 16:43:37 Σημείο ελέγχου συστήματος
04-09-2014 17:38:53 Software Distribution Service 3.0
06-09-2014 11:47:25 Installed Syberia
06-09-2014 12:43:30 Installed Syberia
06-09-2014 13:04:44 Removed Syberia
06-09-2014 13:13:05 Installed Syberia
06-09-2014 13:17:16 Removed Syberia
06-09-2014 21:44:27 Removed Media Go
06-09-2014 21:45:31 Removed Media Go Video Playback Engine 1.120.102.05010
06-09-2014 22:04:58 Removed Microsoft Download Manager
06-09-2014 23:07:45 Installed Syberia
06-09-2014 23:22:57 Removed Syberia
08-09-2014 10:49:43 Σημείο ελέγχου συστήματος
08-09-2014 14:23:37 Removed WinZip 18.5
09-09-2014 14:20:08 Software Distribution Service 3.0
11-09-2014 11:08:56 Σημείο ελέγχου συστήματος
12-09-2014 15:31:23 Software Distribution Service 3.0
15-09-2014 10:27:58 Σημείο ελέγχου συστήματος
16-09-2014 11:29:10 Σημείο ελέγχου συστήματος
18-09-2014 08:41:28 Σημείο ελέγχου συστήματος
19-09-2014 13:19:53 Σημείο ελέγχου συστήματος
20-09-2014 16:19:47 Σημείο ελέγχου συστήματος
21-09-2014 19:46:17 Σημείο ελέγχου συστήματος
24-09-2014 10:43:23 Σημείο ελέγχου συστήματος
27-09-2014 19:08:05 Σημείο ελέγχου συστήματος
01-10-2014 10:18:59 Σημείο ελέγχου συστήματος
05-10-2014 11:39:10 Σημείο ελέγχου συστήματος
06-10-2014 12:01:53 Σημείο ελέγχου συστήματος
08-10-2014 07:45:19 Σημείο ελέγχου συστήματος
08-10-2014 08:00:26 Το TuneUp Utilities 2014 καταργήθηκε
08-10-2014 08:01:22 Το TuneUp Utilities 2014 (en-GB) καταργήθηκε
08-10-2014 08:02:34 avast! antivirus system restore point
08-10-2014 08:13:40 Installed AVG 2015
08-10-2014 08:14:09 Installed AVG 2015
 
==================== Hosts content: ==========================
 
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
 
2004-09-07 10:00 - 2004-09-07 10:00 - 00000944 ____A C:\WINDOWS\system32\Drivers\etc\hosts
127.0.0.1       localhost
 
==================== Scheduled Tasks (whitelisted) =============
 
 
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
 
Task: C:\WINDOWS\Tasks\2283de3c-a360-4103-8b31-0e6750d3aa1a.job => C:\Program Files\SavePass 1.1\2283de3c-a360-4103-8b31-0e6750d3aa1a.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\468ec008-fcbf-472c-b037-38b113d21cc4.job => C:\Program Files\HD-V2.1\468ec008-fcbf-472c-b037-38b113d21cc4.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\9ac6c58d-907b-4e2d-98c6-8b8d7bcf2542.job => C:\Program Files\SavePass 1.1\9ac6c58d-907b-4e2d-98c6-8b8d7bcf2542.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\AmiUpdXp.job => C:\Documents and Settings\user\Application Data\9788\a11533.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\AppleSoftwareUpdate.job => C:\Program Files\Apple Software Update\SoftwareUpdate.exe
Task: C:\WINDOWS\Tasks\b80d3b81-615d-4a5c-8f2c-cbb8f591bb09-11.job => C:\Program Files\SavePass 1.1\b80d3b81-615d-4a5c-8f2c-cbb8f591bb09-11.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\b80d3b81-615d-4a5c-8f2c-cbb8f591bb09-4.job => C:\Program Files\SavePass 1.1\b80d3b81-615d-4a5c-8f2c-cbb8f591bb09-4.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\FacebookUpdateTaskUserS-1-5-21-823518204-1592454029-725345543-1004Core.job => C:\Documents and Settings\user\Local Settings\Application Data\Facebook\Update\FacebookUpdate.exe
Task: C:\WINDOWS\Tasks\FacebookUpdateTaskUserS-1-5-21-823518204-1592454029-725345543-1004UA.job => C:\Documents and Settings\user\Local Settings\Application Data\Facebook\Update\FacebookUpdate.exe
Task: C:\WINDOWS\Tasks\ff3c8c5b-13b2-45fe-a9af-f73d69ab3748.job => C:\Program Files\HD-V2.1\ff3c8c5b-13b2-45fe-a9af-f73d69ab3748.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\globalUpdateUpdateTaskMachineCore.job => C:\Program Files\globalUpdate\Update\GoogleUpdate.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\globalUpdateUpdateTaskMachineUA.job => C:\Program Files\globalUpdate\Update\GoogleUpdate.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GPUP.job => C:\Program Files\GetPrivate\gpup.exe
Task: C:\WINDOWS\Tasks\Protected Search.job => C:\Program Files\Protected Search\ProtectedSearch.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\SDMsgUpdate (SD).job => C:\PROGRA~1\SMARTD~1\Messages\SDNotify.exe
Task: C:\WINDOWS\Tasks\Μηνιαία ειδοποίηση λήξης υπηρεσίας για τα Microsoft Windows XP.job => C:\WINDOWS\system32\xp_eos.exe
Task: C:\WINDOWS\Tasks\Σύνδεση στην ειδοποίηση λήξης υπηρεσίας για τα Microsoft Windows XP.job => C:\WINDOWS\system32\xp_eos.exe
 
==================== Loaded Modules (whitelisted) =============
 
2006-04-14 13:04 - 2006-04-14 13:04 - 00876544 _____ () C:\Program Files\Intel\Wireless\Bin\LIBEAY32.dll
2006-04-14 13:04 - 2006-04-14 13:04 - 00053322 _____ () C:\Program Files\Intel\Wireless\Bin\IntStngs.dll
2006-04-14 13:04 - 2006-04-14 13:04 - 00208965 _____ () C:\Program Files\Intel\Wireless\Bin\IWMSPROV.DLL
2012-08-09 12:30 - 2011-04-11 08:26 - 00024064 _____ () C:\WINDOWS\system32\spd__l.dll
2012-08-09 12:03 - 2009-10-14 02:43 - 00022723 _____ () C:\WINDOWS\system32\sugw2l3.dll
2014-02-12 21:58 - 2014-02-12 21:58 - 00073544 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2014-02-12 21:58 - 2014-02-12 21:58 - 01044808 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2011-03-14 18:27 - 2011-03-14 18:27 - 00271712 _____ () C:\Documents and Settings\All Users\Application Data\DatacardService\HWDeviceService.exe
2012-12-20 22:54 - 2012-12-20 22:53 - 00655712 _____ () C:\Documents and Settings\All Users\Application Data\Sudani mDSL\OnlineUpdate\ouc.exe
2012-12-20 22:54 - 2012-12-20 22:53 - 00011362 _____ () C:\Documents and Settings\All Users\Application Data\Sudani mDSL\OnlineUpdate\mingwm10.dll
2012-12-20 22:54 - 2012-12-20 22:53 - 00043008 _____ () C:\Documents and Settings\All Users\Application Data\Sudani mDSL\OnlineUpdate\libgcc_s_dw2-1.dll
2012-12-20 22:54 - 2012-12-20 22:53 - 02415104 _____ () C:\Documents and Settings\All Users\Application Data\Sudani mDSL\OnlineUpdate\QtCore4.dll
2012-12-20 22:54 - 2012-12-20 22:53 - 01148416 _____ () C:\Documents and Settings\All Users\Application Data\Sudani mDSL\OnlineUpdate\QtNetwork4.dll
2012-12-20 22:54 - 2012-12-20 22:53 - 00843264 _____ () C:\Documents and Settings\All Users\Application Data\Sudani mDSL\OnlineUpdate\QueryStrategy.dll
2012-12-20 22:54 - 2012-12-20 22:53 - 00398336 _____ () C:\Documents and Settings\All Users\Application Data\Sudani mDSL\OnlineUpdate\QtXml4.dll
2008-01-17 13:46 - 2006-07-21 04:58 - 00466944 _____ () C:\WINDOWS\system32\nvshell.dll
2008-08-14 20:40 - 2008-08-02 13:56 - 00132608 _____ () C:\Program Files\WinRAR\rarext.dll
2014-09-07 01:08 - 2014-09-07 01:08 - 00032104 _____ () C:\Program Files\SavePass 1.1\9ac6c58d-907b-4e2d-98c6-8b8d7bcf2542.exe
2008-01-17 13:51 - 2003-06-07 13:30 - 00057344 _____ () C:\Program Files\Launch Manager\PowerUtl.dll
2006-10-31 02:06 - 2006-10-31 02:06 - 00022040 _____ () C:\Program Files\Common Files\Logitech\LComMgr\LCMServerPS.dll
2006-11-28 19:43 - 2006-11-28 19:43 - 00754712 _____ () C:\Program Files\Acer\OrbiCam10\OrbiCam.exe
2006-11-28 13:24 - 2006-11-28 13:24 - 01058328 _____ () C:\Program Files\Acer\OrbiCam10\LAppRes.dll
2006-01-17 11:46 - 2006-01-17 11:46 - 00053248 _____ () C:\Program Files\WIDCOMM\Bluetooth Software\btkeyind.dll
2006-03-10 12:49 - 2006-03-10 12:49 - 00970862 _____ () C:\Program Files\Intel\Wireless\Bin\acAuth.dll
2006-04-14 13:04 - 2006-04-14 13:04 - 00208965 _____ () C:\Program Files\Intel\Wireless\Bin\iWMSProv.dll
2006-04-14 13:04 - 2006-04-14 13:04 - 00876544 _____ () C:\Program Files\Intel\Wireless\Bin\Libeay32.dll
2004-09-07 10:00 - 2008-04-14 19:29 - 00014336 _____ () C:\WINDOWS\system32\msdmo.dll
2014-09-25 14:34 - 2014-09-23 07:07 - 08577864 _____ () C:\Program Files\Google\Chrome\Application\37.0.2062.124\pdf.dll
2014-09-25 14:34 - 2014-09-23 07:07 - 00331592 _____ () C:\Program Files\Google\Chrome\Application\37.0.2062.124\ppGoogleNaClPluginChrome.dll
2014-09-25 14:34 - 2014-09-23 07:06 - 01660232 _____ () C:\Program Files\Google\Chrome\Application\37.0.2062.124\ffmpegsumo.dll
2014-09-25 14:34 - 2014-09-23 07:07 - 14891848 _____ () C:\Program Files\Google\Chrome\Application\37.0.2062.124\PepperFlash\pepflashplayer.dll
2014-09-08 14:21 - 2014-02-10 13:44 - 04592128 _____ () C:\Documents and Settings\user\Local Settings\Application Data\Google\Chrome\User Data\SwiftShader\3.2.6.45159\libglesv2.dll
2014-09-08 14:21 - 2014-02-10 13:44 - 00112128 _____ () C:\Documents and Settings\user\Local Settings\Application Data\Google\Chrome\User Data\SwiftShader\3.2.6.45159\libegl.dll
2014-01-31 06:28 - 2014-01-31 06:28 - 00421520 _____ () C:\Program Files\GRETECH\GomPlayer\GomTVStrm.dll
2013-12-26 05:41 - 2013-12-26 05:41 - 00326144 _____ () C:\Program Files\GRETECH\GomPlayer\avutil-gp-52.dll
2013-10-29 11:19 - 2013-10-29 11:19 - 07600128 _____ () C:\Program Files\GRETECH\GomPlayer\avcodec-gp-55.dll
2014-02-25 06:17 - 2014-02-25 06:17 - 00407552 _____ () C:\Program Files\GRETECH\GomPlayer\swscale-gp-2.dll
2014-06-16 05:22 - 2014-06-16 05:22 - 01154048 _____ () C:\Program Files\GRETECH\GomPlayer\avformat-gp-55.dll
2009-03-04 13:38 - 2009-03-04 13:38 - 02625536 _____ () C:\Program Files\MpcStar\Codecs\ffdshow\ffdshow.ax
2009-03-04 13:38 - 2009-03-04 13:38 - 00485888 ____C () C:\Program Files\MpcStar\Codecs\ffdshow\ff_libfaad2.dll
 
==================== Alternate Data Streams (whitelisted) =========
 
(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)
 
AlternateDataStreams: C:\Documents and Settings\All Users\Application Data\TEMP:264A9BB7
AlternateDataStreams: C:\Documents and Settings\All Users\Application Data\TEMP:2CB9631F
AlternateDataStreams: C:\Documents and Settings\All Users\Application Data\TEMP:3D36932D
AlternateDataStreams: C:\Documents and Settings\All Users\Application Data\TEMP:9FCF32A8
AlternateDataStreams: C:\Documents and Settings\All Users\Application Data\TEMP:C5CE2DF6
AlternateDataStreams: C:\Documents and Settings\All Users\Application Data\TEMP:E91ADC66
 
==================== Safe Mode (whitelisted) ===================
 
(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
 
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AVG Anti-Spyware Driver => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AVG Anti-Spyware Guard => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\AVG Anti-Spyware Driver => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\AVG Anti-Spyware Guard => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Wdf01000.sys => ""="Driver"
 
==================== EXE Association (whitelisted) =============
 
(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)
 
 
==================== MSCONFIG/TASK MANAGER disabled items =========
 
(Currently there is no automatic fix for this section.)
 
MSCONFIG\startupreg: jdcrbmqspqbjnls => C:\Documents and Settings\All Users\Application Data\jdcrbmqs.exe
 
========================= Accounts: ==========================
 
Administrator (S-1-5-21-823518204-1592454029-725345543-500 - Administrator - Enabled)
ASPNET (S-1-5-21-823518204-1592454029-725345543-1005 - Limited - Enabled)
Guest (S-1-5-21-823518204-1592454029-725345543-501 - Limited - Disabled)
HelpAssistant (S-1-5-21-823518204-1592454029-725345543-1000 - Limited - Disabled)
SUPPORT_388945a0 (S-1-5-21-823518204-1592454029-725345543-1002 - Limited - Disabled)
user (S-1-5-21-823518204-1592454029-725345543-1004 - Administrator - Enabled) => %SystemDrive%\Documents and Settings\user
 
==================== Faulty Device Manager Devices =============
 
 
==================== Event log errors: =========================
 
Application errors:
==================
Error: (10/06/2014 01:54:05 PM) (Source: Google Update) (EventID: 20) (User: ACER)
Description: Network Request Error.
Error: 0x80040801. Http status code: 0.
Trying config: source=IE, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80040801. Http status code 0.
Trying config: source=, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80040801. Http status code 0.
Trying config: source=IE, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80040801. Http status code 0.
Trying config: source=, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80040801. Http s
 
Error: (10/01/2014 10:54:08 PM) (Source: Google Update) (EventID: 20) (User: ACER)
Description: Network Request Error.
Error: 0x80040801. Http status code: 0.
Trying config: source=IE, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80040801. Http status code 0.
Trying config: source=, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80040801. Http status code 0.
Trying config: source=IE, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80040801. Http status code 0.
Trying config: source=, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80040801. Http s
 
Error: (09/28/2014 02:13:43 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Κρεμασμένη εφαρμογή chrome.exe, έκδοση 37.0.2062.124, στοιχείο ελέγχου κρεμάσματος hungapp, έκδοση 0.0.0.0, διεύθυνση κρεμάσματος 0x00000000.
 
Error: (09/28/2014 02:13:41 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Κρεμασμένη εφαρμογή chrome.exe, έκδοση 37.0.2062.124, στοιχείο ελέγχου κρεμάσματος hungapp, έκδοση 0.0.0.0, διεύθυνση κρεμάσματος 0x00000000.
 
Error: (09/21/2014 00:49:32 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Ελαττωματική εφαρμογή TeamViewer.exe, έκδοση 9.0.32494.0, ελαττωματική λειτουργική μονάδα unknown, έκδοση 0.0.0.0, ελαττωματική διεύθυνση 0x05fd0cc8.
Επεξεργασία συμβάντος μέσου για [TeamViewer.exe!ws!]
 
Error: (09/20/2014 08:26:05 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Κρεμασμένη εφαρμογή WINWORD.EXE, έκδοση 11.0.8411.0, στοιχείο ελέγχου κρεμάσματος hungapp, έκδοση 0.0.0.0, διεύθυνση κρεμάσματος 0x00000000.
 
Error: (09/20/2014 07:59:07 PM) (Source: Google Update) (EventID: 20) (User: ACER)
Description: Network Request Error.
Error: 0x80072ee2. Http status code: 0.
Trying config: source=IE, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80072ee2. Http status code 0.
trying WinHTTP.
Send request returned 0x80072efd. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80072ee2. Http status code 0.
trying WinHTTP.
Send request returned 0x80072efd. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=IE, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80072ee2. Http status code 0.
trying WinHTTP.
Send request returned 0x80072efd. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80072ee2. Http s
 
Error: (09/19/2014 00:44:22 PM) (Source: MsiInstaller) (EventID: 11309) (User: ACER)
Description: Product: Google Update Helper -- Error 1309. Error reading from file: C:\Program Files\globalUpdate\Update\1.3.25.0\Google\Update\RequiredFile.txt.  System error 3.  Verify that the file exists and that you can access it.
 
Error: (09/19/2014 00:40:51 PM) (Source: MsiInstaller) (EventID: 11309) (User: ACER)
Description: Product: Google Update Helper -- Error 1309. Error reading from file: C:\Program Files\globalUpdate\Update\1.3.25.0\Google\Update\RequiredFile.txt.  System error 3.  Verify that the file exists and that you can access it.
 
Error: (09/19/2014 11:38:06 AM) (Source: MsiInstaller) (EventID: 11309) (User: ACER)
Description: Product: Google Update Helper -- Error 1309. Error reading from file: C:\Program Files\globalUpdate\Update\1.3.25.0\Google\Update\RequiredFile.txt.  System error 3.  Verify that the file exists and that you can access it.
 
 
System errors:
=============
Error: (10/10/2014 10:48:09 AM) (Source: Dhcp) (EventID: 1002) (User: )
Description: Η εκμίσθωση της διεύθυνσης IP 192.168.1.67 για την κάρτα δικτύου της οποίας η διεύθυνση στο δίκτυο είναι 0018DE8E4BD9 
δεν έγινε αποδεκτή από το διακομιστή DHCP 192.168.1.1 (Ο διακομιστής DHCP απέστειλε ένα μήνυμα DHCPNACK).
 
Error: (10/10/2014 10:45:34 AM) (Source: Dhcp) (EventID: 1002) (User: )
Description: Η εκμίσθωση της διεύθυνσης IP 192.168.1.67 για την κάρτα δικτύου της οποίας η διεύθυνση στο δίκτυο είναι 0018DE8E4BD9 
δεν έγινε αποδεκτή από το διακομιστή DHCP 192.168.1.1 (Ο διακομιστής DHCP απέστειλε ένα μήνυμα DHCPNACK).
 
Error: (10/10/2014 10:42:49 AM) (Source: Dhcp) (EventID: 1002) (User: )
Description: Η εκμίσθωση της διεύθυνσης IP 192.168.1.67 για την κάρτα δικτύου της οποίας η διεύθυνση στο δίκτυο είναι 0018DE8E4BD9 
δεν έγινε αποδεκτή από το διακομιστή DHCP 192.168.1.1 (Ο διακομιστής DHCP απέστειλε ένα μήνυμα DHCPNACK).
 
Error: (10/10/2014 10:30:32 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Η λειτουργία της υπηρεσίας NVIDIA Display Driver Service τερματίστηκε αναπάντεχα. Αυτό συνέβη 1 φορά(ές).
 
Error: (10/10/2014 10:30:30 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Δεν ήταν δυνατή η εκκίνηση της υπηρεσίας Sudani mDSL. OUC εξαιτίας του ακόλουθου σφάλματος: 
%%1053
 
Error: (10/10/2014 10:30:30 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Χρονικό όριο αναμονής (30000 χιλιοστά του δευτερολέπτου) για τη σύνδεση της υπηρεσίας Sudani mDSL. OUC.
 
Error: (10/10/2014 10:30:30 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Δεν ήταν δυνατή η εκκίνηση της υπηρεσίας SSPORT εξαιτίας του ακόλουθου σφάλματος: 
%%2
 
Error: (10/10/2014 10:30:30 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Δεν ήταν δυνατή η εκκίνηση της υπηρεσίας DgiVecp εξαιτίας του ακόλουθου σφάλματος: 
%%20
 
Error: (10/10/2014 10:30:30 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Δεν ήταν δυνατή η εκκίνηση της υπηρεσίας General Purpose USB Driver (e4ldr.sys) εξαιτίας του ακόλουθου σφάλματος: 
%%2
 
Error: (10/10/2014 10:30:30 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Δεν ήταν δυνατή η εκκίνηση της υπηρεσίας General Purpose USB Driver (adildr.sys) εξαιτίας του ακόλουθου σφάλματος: 
%%2
 
 
Microsoft Office Sessions:
=========================
Error: (10/06/2014 01:54:05 PM) (Source: Google Update) (EventID: 20) (User: ACER)
Description: Network Request Error.
Error: 0x80040801. Http status code: 0.
Trying config: source=IE, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80040801. Http status code 0.
Trying config: source=, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80040801. Http status code 0.
Trying config: source=IE, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80040801. Http status code 0.
Trying config: source=, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80040801. Http s
 
Error: (10/01/2014 10:54:08 PM) (Source: Google Update) (EventID: 20) (User: ACER)
Description: Network Request Error.
Error: 0x80040801. Http status code: 0.
Trying config: source=IE, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80040801. Http status code 0.
Trying config: source=, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80040801. Http status code 0.
Trying config: source=IE, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80040801. Http status code 0.
Trying config: source=, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80040801. Http s
 
Error: (09/28/2014 02:13:43 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: chrome.exe37.0.2062.124hungapp0.0.0.000000000
 
Error: (09/28/2014 02:13:41 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: chrome.exe37.0.2062.124hungapp0.0.0.000000000
 
Error: (09/21/2014 00:49:32 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: TeamViewer.exe9.0.32494.0unknown0.0.0.005fd0cc8
 
Error: (09/20/2014 08:26:05 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: WINWORD.EXE11.0.8411.0hungapp0.0.0.000000000
 
Error: (09/20/2014 07:59:07 PM) (Source: Google Update) (EventID: 20) (User: ACER)
Description: Network Request Error.
Error: 0x80072ee2. Http status code: 0.
Trying config: source=IE, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80072ee2. Http status code 0.
trying WinHTTP.
Send request returned 0x80072efd. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80072ee2. Http status code 0.
trying WinHTTP.
Send request returned 0x80072efd. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=IE, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80072ee2. Http status code 0.
trying WinHTTP.
Send request returned 0x80072efd. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80072ee2. Http s
 
Error: (09/19/2014 00:44:22 PM) (Source: MsiInstaller) (EventID: 11309) (User: ACER)
Description: Product: Google Update Helper -- Error 1309. Error reading from file: C:\Program Files\globalUpdate\Update\1.3.25.0\Google\Update\RequiredFile.txt.  System error 3.  Verify that the file exists and that you can access it.(NULL)(NULL)(NULL)(NULL)
 
Error: (09/19/2014 00:40:51 PM) (Source: MsiInstaller) (EventID: 11309) (User: ACER)
Description: Product: Google Update Helper -- Error 1309. Error reading from file: C:\Program Files\globalUpdate\Update\1.3.25.0\Google\Update\RequiredFile.txt.  System error 3.  Verify that the file exists and that you can access it.(NULL)(NULL)(NULL)(NULL)
 
Error: (09/19/2014 11:38:06 AM) (Source: MsiInstaller) (EventID: 11309) (User: ACER)
Description: Product: Google Update Helper -- Error 1309. Error reading from file: C:\Program Files\globalUpdate\Update\1.3.25.0\Google\Update\RequiredFile.txt.  System error 3.  Verify that the file exists and that you can access it.(NULL)(NULL)(NULL)(NULL)
 
 
==================== Memory info =========================== 
 
Processor: Intel® Core™2 CPU T7200 @ 2.00GHz
Percentage of memory in use: 67%
Total physical RAM: 2046.04 MB
Available physical RAM: 666.34 MB
Total Pagefile: 3938.37 MB
Available Pagefile: 2275.03 MB
Total Virtual: 2047.88 MB
Available Virtual: 1928.45 MB
 
==================== Drives ================================
 
Drive c: () (Fixed) (Total:71.84 GB) (Free:32.16 GB) NTFS
Drive d: (ACERDATA) (Fixed) (Total:72.31 GB) (Free:71.79 GB) FAT32 ==>[Drive with boot components (Windows XP)]
 
==================== MBR & Partition Table ==================
 
========================================================
Disk: 0 (Size: 149.1 GB) (Disk ID: B8F0FFA4)
Partition 1: (Not Active) - (Size=4.9 GB) - (Type=12)
Partition 2: (Not Active) - (Size=71.8 GB) - (Type=OF Extended)
Partition 3: (Active) - (Size=72.3 GB) - (Type=0C)
 
==================== End Of Log ============================


#4 B-boy/StyLe/

B-boy/StyLe/

    Bleepin' Freestyler


  • Malware Response Team
  • 8,310 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Bulgaria
  • Local time:03:50 PM

Posted 11 October 2014 - 05:50 AM

Hello,

 

 

STEP 1

 

 

GO ahead and uninstall the following applications from the Control Panel:

 

IB Updater Service
Internet Explorer Toolbar 4.6 by SweetPacks
Protected Search 1.1
Software Version Updater
SweetIM Toolbar for Internet Explorer 3.1
Update Manager for SweetPacks 1.1
WindowsMangerProtect20.0.0.722
YTD Video Downloader 4.8.4

 

 

STEP 2

 

Please download the following file => and save it to the Desktop.
NOTE. It's important that both files, FRST and fixlist.txt are in the same location or the fix will not work.

Run FRST and press the Fix button just once and wait.
The tool will make a log on the Desktop (Fixlog.txt). Please post it to your reply.

 

 

STEP 3

 

 

Now go ahead and uninstall F-Secure PSC Prerequisites as well...

Finally please re-run FRST (make sure that Addition.txt is ticked as well before you press the Scan button) and then please post both files - FRST.txt and Addition.txt in your next reply.

 

 

Regards,

Georgi


cXfZ4wS.png


#5 active_active

active_active
  • Topic Starter

  • Members
  • 17 posts
  • OFFLINE
  •  
  • Local time:03:50 PM

Posted 11 October 2014 - 05:22 PM

Hello

 

THE FIXLOG FILE

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x86) Version: 08-10-2014 01
Ran by user at 2014-10-12 00:39:45 Run:1
Running from C:\Documents and Settings\user\Επιφάνεια εργασίας
Loaded Profile: user (Available profiles: user)
Boot Mode: Normal
 
==============================================
 
Content of fixlist:
*****************
start
CloseProcesses:
C:\Program Files\SavePass 1.1
HKU\S-1-5-21-823518204-1592454029-725345543-1004\...\Winlogon: [Shell] C:\Documents and Settings\user\csrss.exe,C:\Documents and Settings\user\Application Data\jlwcbb.exe,explorer.exe,C:\Documents and Settings\user\Application Data\gkewzr.exe <==== ATTENTION 
C:\Documents and Settings\user\csrss.exe
C:\Documents and Settings\user\Application Data\jlwcbb.exe
C:\Documents and Settings\user\Application Data\gkewzr.exe
C:\Documents and Settings\All Users\Application Data\jdcrbmqs.exe
AppInit_DLLs: app_dll.dll => app_dll.dll File Not Found
HKLM\...\AppCertDlls: [x64] -> c:\program files\settings manager\smdmf\x64\sysapcrt.dll
c:\program files\settings manager
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} =>  No File
HKCU\Software\Microsoft\Internet Explorer\Main,Start Default_Page_URL = http://search.certified-toolbar.com?si=41460&home=true&tid=2937
HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://search.certified-toolbar.com?si=41460&tid=2937&bs=true&q=
URLSearchHook: HKCU - (No Name) - {00000000-6E41-4FD3-8538-502F5495E5FC} -  No File
SearchScopes: HKCU - {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} URL = http://search.certified-toolbar.com?si=41460&bs=true&tid=2937&q={searchTerms}
SearchScopes: HKCU - {171DEBEB-C3D4-40b7-AC73-056A5EBA4A7E} URL = http://supertoolbar.ask.com/redirect?client=ie&tb=BW&o=14394&src=crm&q={searchTerms}&locale=en_EU
SearchScopes: HKCU - {EEE6C360-6118-11DC-9C72-001320C79847} URL = http://search.sweetim.com/search.asp?src=6&q={searchTerms}
BHO: SavePass 1.1 -> {11111111-1111-1111-1111-110611341129} -> C:\Program Files\SavePass 1.1\SavePass 1.1-bho.dll (OB)
BHO: Browsing Protection Class -> {C6867EB7-8350-4856-877F-93CF8AE3DC9C} ->  No File
Toolbar: HKLM - No Name - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} -  No File
Toolbar: HKLM - Browsing Protection Toolbar - {265EEE8E-3228-44D3-AEA5-F7FDF5860049} -  No File
Toolbar: HKCU - No Name - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} -  No File
Toolbar: HKCU - No Name - {A057A204-BACC-4D26-9990-79A187E2698E} -  No File
Toolbar: HKCU - No Name - {21FA44EF-376D-4D53-9B0F-8A89D3229068} -  No File
Toolbar: HKCU - No Name - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} -  No File
Toolbar: HKCU - No Name - {D4027C7F-154A-4066-A1AD-4243D8127440} -  No File
FF DefaultSearchEngine: Web Search
FF SearchEngineOrder.1: Web Search
FF Plugin: @staging.google.com/globalUpdate Update;version=10 -> C:\Program Files\globalUpdate\Update\1.3.25.0\npGoogleUpdate4.dll (globalUpdate)
FF Plugin: @staging.google.com/globalUpdate Update;version=4 -> C:\Program Files\globalUpdate\Update\1.3.25.0\npGoogleUpdate4.dll (globalUpdate)
FF Extension: HD-V2.1 - C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\q18k4vyi.default\Extensions\BGKGT66124770@ZYFBNPM50498512.com [2014-09-07]
FF Extension: Babylon - C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\q18k4vyi.default\Extensions\ffxtlbr@babylon.com [2012-08-24]
FF Extension: SavePass 1.1 - C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\q18k4vyi.default\Extensions\VJKPXI46039420@JMZUIOB85844870.com [2014-09-07]
FF HKLM\...\Firefox\Extensions: [litmus-ff@f-secure.com] - C:\Program Files\F-Secure\NRS\litmus-ff@f-secure.com
FF HKLM\...\Firefox\Extensions: [xz123@ya456.com] - C:\Program Files\BetterSurf\ff
FF Extension: BetterSurf - C:\Program Files\BetterSurf\ff [2013-11-18]
FF HKLM\...\Firefox\Extensions: [12x3q@3244516.com] - C:\Program Files\Better-Surf\ff
FF Extension: Better-Surf - C:\Program Files\Better-Surf\ff [2013-11-26]
CHR HKLM\...\Chrome\Extension: [dedmngkbaffkenlfdcbganndoghblmap] - C:\Program Files\BetterSurf\ch\Chrome.crx []
CHR HKLM\...\Chrome\Extension: [poheodfamflhhhdcmjfeggbgigeefaco] - C:\Program Files\Better-Surf\ch\Chrome.crx [2013-10-09]
S2 globalUpdate; C:\Program Files\globalUpdate\Update\GoogleUpdate.exe [68608 2014-09-19] (globalUpdate) [File not signed]
S3 globalUpdatem; C:\Program Files\globalUpdate\Update\GoogleUpdate.exe [68608 2014-09-19] (globalUpdate) [File not signed]
S3 F-Secure Gatekeeper; \??\C:\Program Files\F-Secure\Anti-Virus\minifilter\fsgk.sys [X]
S3 fsbl; \??\C:\Program Files\F-Secure\Anti-Virus\fsbldrv.sys [X]
S2 vuyljz; \??\C:\DOCUME~1\user\LOCALS~1\Temp\xaupq.sys [X]
Folder: C:\Documents and Settings\user\Application Data\9788
Folder: C:\Documents and Settings\user\Application Data\8841
2014-10-08 11:59 - 2014-09-06 20:10 - 00000000 ____D () C:\Program Files\MyPC Backup
2014-10-08 11:56 - 2014-09-07 01:03 - 00000000 ____D () C:\Program Files\HD-V2.1
2014-10-08 11:05 - 2013-08-31 21:25 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\AVAST Software
2014-10-08 10:23 - 2014-08-31 13:41 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\YTD Video Downloader
cmd: dir %userprofile%\*.exe /a /s
AV: F-Secure Client Security 9.00 (Disabled - Up to date) {E7512ED5-4245-4B4D-AF3A-382D3F313F15}
F-Secure PSC Prerequisites (Version: 1.0.6 - F-Secure Corporation) Hidden
Task: C:\WINDOWS\Tasks\2283de3c-a360-4103-8b31-0e6750d3aa1a.job => C:\Program Files\SavePass 1.1\2283de3c-a360-4103-8b31-0e6750d3aa1a.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\468ec008-fcbf-472c-b037-38b113d21cc4.job => C:\Program Files\HD-V2.1\468ec008-fcbf-472c-b037-38b113d21cc4.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\9ac6c58d-907b-4e2d-98c6-8b8d7bcf2542.job => C:\Program Files\SavePass 1.1\9ac6c58d-907b-4e2d-98c6-8b8d7bcf2542.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\AmiUpdXp.job => C:\Documents and Settings\user\Application Data\9788\a11533.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\b80d3b81-615d-4a5c-8f2c-cbb8f591bb09-11.job => C:\Program Files\SavePass 1.1\b80d3b81-615d-4a5c-8f2c-cbb8f591bb09-11.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\b80d3b81-615d-4a5c-8f2c-cbb8f591bb09-4.job => C:\Program Files\SavePass 1.1\b80d3b81-615d-4a5c-8f2c-cbb8f591bb09-4.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\ff3c8c5b-13b2-45fe-a9af-f73d69ab3748.job => C:\Program Files\HD-V2.1\ff3c8c5b-13b2-45fe-a9af-f73d69ab3748.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\globalUpdateUpdateTaskMachineCore.job => C:\Program Files\globalUpdate\Update\GoogleUpdate.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\globalUpdateUpdateTaskMachineUA.job => C:\Program Files\globalUpdate\Update\GoogleUpdate.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\Protected Search.job => C:\Program Files\Protected Search\ProtectedSearch.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\SDMsgUpdate (SD).job => C:\PROGRA~1\SMARTD~1\Messages\SDNotify.exe
Task: C:\WINDOWS\Tasks\Μηνιαία ειδοποίηση λήξης υπηρεσίας για τα Microsoft Windows XP.job => C:\WINDOWS\system32\xp_eos.exe
Task: C:\WINDOWS\Tasks\Σύνδεση στην ειδοποίηση λήξης υπηρεσίας για τα Microsoft Windows XP.job => C:\WINDOWS\system32\xp_eos.exe
C:\WINDOWS\system32\xp_eos.exe
AlternateDataStreams: C:\Documents and Settings\All Users\Application Data\TEMP:264A9BB7
AlternateDataStreams: C:\Documents and Settings\All Users\Application Data\TEMP:2CB9631F
AlternateDataStreams: C:\Documents and Settings\All Users\Application Data\TEMP:3D36932D
AlternateDataStreams: C:\Documents and Settings\All Users\Application Data\TEMP:9FCF32A8
AlternateDataStreams: C:\Documents and Settings\All Users\Application Data\TEMP:C5CE2DF6
AlternateDataStreams: C:\Documents and Settings\All Users\Application Data\TEMP:E91ADC66
Reg: reg delete "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\jdcrbmqspqbjnls" /f
emptytemp:
end
*****************
 
Processes closed successfully.
C:\Program Files\SavePass 1.1 => Moved successfully.
HKU\S-1-5-21-823518204-1592454029-725345543-1004\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\\Shell => value deleted successfully.
"C:\Documents and Settings\user\csrss.exe" => File/Directory not found.
"C:\Documents and Settings\user\Application Data\jlwcbb.exe" => File/Directory not found.
"C:\Documents and Settings\user\Application Data\gkewzr.exe" => File/Directory not found.
"C:\Documents and Settings\All Users\Application Data\jdcrbmqs.exe" => File/Directory not found.
"app_dll.dll" => Value Data removed successfully.
HKLM\System\CurrentControlSet\Control\Session Manager\AppCertDlls\\x64 => value deleted successfully.
"c:\program files\settings manager" => File/Directory not found.
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\00avast" => Key deleted successfully.
"HKCR\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}" => Key not found.
HKCU\Software\Microsoft\Internet Explorer\Main\\Start Default_Page_URL => value deleted successfully.
HKCU\Software\Microsoft\Internet Explorer\Main\\Search Bar => value deleted successfully.
HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks\\{00000000-6E41-4FD3-8538-502F5495E5FC} => value deleted successfully.
"HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}" => Key deleted successfully.
"HKCR\CLSID\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}" => Key not found.
"HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{171DEBEB-C3D4-40b7-AC73-056A5EBA4A7E}" => Key deleted successfully.
"HKCR\CLSID\{171DEBEB-C3D4-40b7-AC73-056A5EBA4A7E}" => Key not found.
"HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{597b1823-7ff0-4cd3-8095-9d8cba514992}" => Key deleted successfully.
"HKCR\CLSID\{597b1823-7ff0-4cd3-8095-9d8cba514992}" => Key not found.
"HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2503}" => Key deleted successfully.
"HKCR\CLSID\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2503}" => Key not found.
"HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}" => Key deleted successfully.
"HKCR\CLSID\{afdbddaa-5d3f-42ee-b79c-185a7020515b}" => Key not found.
"HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847}" => Key deleted successfully.
"HKCR\CLSID\{EEE6C360-6118-11DC-9C72-001320C79847}" => Key not found.
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110611341129}" => Key deleted successfully.
"HKCR\CLSID\{11111111-1111-1111-1111-110611341129}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C6867EB7-8350-4856-877F-93CF8AE3DC9C}" => Key deleted successfully.
"HKCR\CLSID\{C6867EB7-8350-4856-877F-93CF8AE3DC9C}" => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar\\{CCC7A320-B3CA-4199-B1A6-9F516DD69829} => value deleted successfully.
"HKCR\CLSID\{CCC7A320-B3CA-4199-B1A6-9F516DD69829}" => Key not found.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar\\{265EEE8E-3228-44D3-AEA5-F7FDF5860049} => value deleted successfully.
"HKCR\CLSID\{265EEE8E-3228-44D3-AEA5-F7FDF5860049}" => Key deleted successfully.
HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} => value deleted successfully.
"HKCR\CLSID\{BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0}" => Key not found.
HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{A057A204-BACC-4D26-9990-79A187E2698E} => value deleted successfully.
"HKCR\CLSID\{A057A204-BACC-4D26-9990-79A187E2698E}" => Key not found.
HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{21FA44EF-376D-4D53-9B0F-8A89D3229068} => value deleted successfully.
"HKCR\CLSID\{21FA44EF-376D-4D53-9B0F-8A89D3229068}" => Key not found.
HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{CCC7A320-B3CA-4199-B1A6-9F516DD69829} => value deleted successfully.
"HKCR\CLSID\{CCC7A320-B3CA-4199-B1A6-9F516DD69829}" => Key not found.
HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{D4027C7F-154A-4066-A1AD-4243D8127440} => value deleted successfully.
"HKCR\CLSID\{D4027C7F-154A-4066-A1AD-4243D8127440}" => Key not found.
Firefox DefaultSearchEngine deleted successfully.
Firefox SearchEngineOrder.1 deleted successfully.
"HKLM\Software\MozillaPlugins\@staging.google.com/globalUpdate Update;version=10" => Key deleted successfully.
C:\Program Files\globalUpdate\Update\1.3.25.0\npGoogleUpdate4.dll => Moved successfully.
"HKLM\Software\MozillaPlugins\@staging.google.com/globalUpdate Update;version=4" => Key deleted successfully.
C:\Program Files\globalUpdate\Update\1.3.25.0\npGoogleUpdate4.dll not found.
C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\q18k4vyi.default\Extensions\BGKGT66124770@ZYFBNPM50498512.com => Moved successfully.
C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\q18k4vyi.default\Extensions\ffxtlbr@babylon.com => Moved successfully.
C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\q18k4vyi.default\Extensions\VJKPXI46039420@JMZUIOB85844870.com => Moved successfully.
HKLM\Software\Mozilla\Firefox\Extensions\\litmus-ff@f-secure.com => value deleted successfully.
HKLM\Software\Mozilla\Firefox\Extensions\\xz123@ya456.com => value deleted successfully.
C:\Program Files\BetterSurf\ff => Moved successfully.
HKLM\Software\Mozilla\Firefox\Extensions\\12x3q@3244516.com => value deleted successfully.
C:\Program Files\Better-Surf\ff => Moved successfully.
"HKLM\SOFTWARE\Google\Chrome\Extensions\dedmngkbaffkenlfdcbganndoghblmap" => Key deleted successfully.
"C:\Program Files\BetterSurf\ch\Chrome.crx" => File/Directory not found.
"HKLM\SOFTWARE\Google\Chrome\Extensions\poheodfamflhhhdcmjfeggbgigeefaco" => Key deleted successfully.
"C:\Program Files\Better-Surf\ch\Chrome.crx" => File/Directory not found.
globalUpdate => Service deleted successfully.
globalUpdatem => Service deleted successfully.
F-Secure Gatekeeper => Service deleted successfully.
fsbl => Service deleted successfully.
vuyljz => Service deleted successfully.
 
========================= Folder: C:\Documents and Settings\user\Application Data\9788 ========================
 
2014-09-25 15:08 - 2014-09-25 15:08 - 0000001 _____ () C:\Documents and Settings\user\Application Data\9788\status.cfg
2014-09-25 15:08 - 2014-09-25 18:48 - 0000583 _____ () C:\Documents and Settings\user\Application Data\9788\Updater.xml
 
====== End of Folder: ======
 
 
========================= Folder: C:\Documents and Settings\user\Application Data\8841 ========================
 
2014-09-07 01:05 - 2014-09-07 01:05 - 0000001 _____ () C:\Documents and Settings\user\Application Data\8841\status.cfg
2014-09-07 01:05 - 2014-09-25 15:08 - 0001652 _____ () C:\Documents and Settings\user\Application Data\8841\Updater.xml
 
====== End of Folder: ======
 
C:\Program Files\MyPC Backup => Moved successfully.
C:\Program Files\HD-V2.1 => Moved successfully.
C:\Documents and Settings\All Users\Application Data\AVAST Software => Moved successfully.
"C:\Documents and Settings\All Users\Application Data\YTD Video Downloader" => File/Directory not found.
 
=========  dir %userprofile%\*.exe /a /s =========
 
Ҧ ©穫ޣ ۜ¤ 夘  ɜ ⩞ Ę ܤ˦§婜  ˞¤ XߦȠɣ⤞ ۠؛Ȧ£ã 婡Ƭ.
 
========= End of CMD: =========
 
AV: F-Secure Client Security 9.00 (Disabled - Up to date) {E7512ED5-4245-4B4D-AF3A-382D3F313F15} => The item is protected. Make sure the software is uninstalled and its services are removed.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{B3F1E526-180B-4480-9FEC-3E2DCB8EA9CE}\\SystemComponent => value deleted successfully.
C:\WINDOWS\Tasks\2283de3c-a360-4103-8b31-0e6750d3aa1a.job => Moved successfully.
C:\WINDOWS\Tasks\468ec008-fcbf-472c-b037-38b113d21cc4.job => Moved successfully.
C:\WINDOWS\Tasks\9ac6c58d-907b-4e2d-98c6-8b8d7bcf2542.job => Moved successfully.
C:\WINDOWS\Tasks\AmiUpdXp.job => Moved successfully.
C:\WINDOWS\Tasks\b80d3b81-615d-4a5c-8f2c-cbb8f591bb09-11.job => Moved successfully.
C:\WINDOWS\Tasks\b80d3b81-615d-4a5c-8f2c-cbb8f591bb09-4.job => Moved successfully.
C:\WINDOWS\Tasks\ff3c8c5b-13b2-45fe-a9af-f73d69ab3748.job => Moved successfully.
C:\WINDOWS\Tasks\globalUpdateUpdateTaskMachineCore.job => Moved successfully.
C:\WINDOWS\Tasks\globalUpdateUpdateTaskMachineUA.job => Moved successfully.
C:\WINDOWS\Tasks\Protected Search.job => Moved successfully.
C:\WINDOWS\Tasks\SDMsgUpdate (SD).job => Moved successfully.
C:\WINDOWS\Tasks\Μηνιαία ειδοποίηση λήξης υπηρεσίας για τα Microsoft Windows XP.job => Moved successfully.
C:\WINDOWS\Tasks\Σύνδεση στην ειδοποίηση λήξης υπηρεσίας για τα Microsoft Windows XP.job => Moved successfully.
C:\WINDOWS\system32\xp_eos.exe => Moved successfully.
C:\Documents and Settings\All Users\Application Data\TEMP => ":264A9BB7" ADS removed successfully.
C:\Documents and Settings\All Users\Application Data\TEMP => ":2CB9631F" ADS removed successfully.
C:\Documents and Settings\All Users\Application Data\TEMP => ":3D36932D" ADS removed successfully.
C:\Documents and Settings\All Users\Application Data\TEMP => ":9FCF32A8" ADS removed successfully.
C:\Documents and Settings\All Users\Application Data\TEMP => ":C5CE2DF6" ADS removed successfully.
C:\Documents and Settings\All Users\Application Data\TEMP => ":E91ADC66" ADS removed successfully.
 
========= reg delete "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\jdcrbmqspqbjnls" /f =========
 
 
Η λειτουργία ολοκληρώθηκε με επιτυχία
 
 
========= End of Reg: =========
 
EmptyTemp: => Removed 904.1 MB temporary data.
 
 
The system needed a reboot. 
 
==== End of Fixlog ====
 
 
 
 
THE FRST
 
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 08-10-2014 01
Ran by user (administrator) on ACER on 12-10-2014 01:01:36
Running from C:\Documents and Settings\user\Επιφάνεια εργασίας
Loaded Profile: user (Available profiles: user)
Platform: Microsoft Windows XP Home Edition Service Pack 3 (X86) OS Language: Ελληνικά
Internet Explorer Version 7
Boot Mode: Normal
 
==================== Processes (Whitelisted) =================
 
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
 
(AVG Technologies CZ, s.r.o.) C:\PROGRA~1\AVG\AVG2015\avgrsx.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2015\avgcsrvx.exe
(Intel Corporation) C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
(Intel Corporation ) C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2015\avgidsagent.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2015\avgwdsvc.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
() C:\Documents and Settings\All Users\Application Data\DatacardService\HWDeviceService.exe
(Google Inc.) C:\Program Files\Google\Update\1.3.24.15\GoogleCrashHandler.exe
(Nero AG) C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe
(NVIDIA Corporation) C:\WINDOWS\system32\nvsvc32.exe
(Prolific Technology Inc.) C:\WINDOWS\system32\IoctlSvc.exe
(Intel Corporation) C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
(Skype Technologies S.A.) C:\Documents and Settings\All Users\Application Data\Skype\Toolbars\Skype C2C Service\c2c_service.exe
() C:\Documents and Settings\All Users\Application Data\Sudani mDSL\OnlineUpdate\ouc.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2015\avgnsx.exe
(TeamViewer GmbH) C:\Program Files\TeamViewer\Version9\TeamViewer_Service.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2015\avgemcx.exe
(Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
(Dritek System Inc.) C:\PROGRA~1\LAUNCH~1\LManager.exe
(Acer Inc.) C:\Program Files\Common Files\Logitech\LComMgr\Communications_Helper.exe
(Logitech Inc.) C:\Program Files\Common Files\Logitech\LComMgr\LVComSX.exe
() C:\Program Files\Acer\OrbiCam10\OrbiCam.exe
(Samsung Electronics.) C:\WINDOWS\Samsung\ComSMMgr\SSMMgr.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2015\avgui.exe
(Skype Technologies S.A.) C:\Program Files\Skype\Phone\Skype.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
(Sony Corporation) C:\Program Files\Sony\CONNECTAutoUpdate\CONNECTAUTrayApp.exe
(Sony Corporation) C:\Program Files\Sony\CONNECTAutoUpdate\CONNECTAutoUpdate.exe
(Intel Corporation) C:\Program Files\Intel\Wireless\Bin\ifrmewrk .exe
(Intel Corporation) C:\PROGRA~1\Intel\Wireless\Bin\Dot1XCfg.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\WINDOWS\system32\msiexec.exe
 
 
==================== Registry (Whitelisted) ==================
 
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
 
HKLM\...\Run: [NvMediaCenter] => RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
HKLM\...\Run: [NvCplDaemon] => RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
HKLM\...\Run: [LManager] => C:\Program Files\Launch Manager\LManager.exe [593920 2006-07-20] (Dritek System Inc.)
HKLM\...\Run: [LogitechCommunicationsManager] => C:\Program Files\Common Files\Logitech\LComMgr\Communications_Helper.exe [304664 2006-10-31] (Acer Inc.)
HKLM\...\Run: [LVCOMSX] => C:\Program Files\Common Files\Logitech\LComMgr\LVComSX.exe [244512 2006-11-28] (Logitech Inc.)
HKLM\...\Run: [AcerOrbicamRibbon] => C:\Program Files\Acer\OrbiCam10\OrbiCam.exe [754712 2006-11-28] ()
HKLM\...\Run: [Samsung Common SM] => C:\WINDOWS\Samsung\ComSMMgr\ssmmgr.exe [372736 2005-07-03] (Samsung Electronics.)
HKLM\...\Run: [APSDaemon] => C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe [43848 2014-02-12] (Apple Inc.)
HKLM\...\Run: [AVG_UI] => C:\Program Files\AVG\AVG2015\avgui.exe [3593744 2014-09-05] (AVG Technologies CZ, s.r.o.)
HKU\S-1-5-21-823518204-1592454029-725345543-1004\...\Run: [Facebook Update] => C:\Documents and Settings\user\Local Settings\Application Data\Facebook\Update\FacebookUpdate.exe [138096 2012-07-22] (Facebook Inc.)
HKU\S-1-5-21-823518204-1592454029-725345543-1004\...\Run: [swg] => C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [39408 2012-02-12] (Google Inc.)
HKU\S-1-5-21-823518204-1592454029-725345543-1004\...\Run: [Sony PC Companion] => C:\Program Files\Sony\Sony PC Companion\PCCompanion.exe [449248 2013-05-29] (Sony)
HKU\S-1-5-21-823518204-1592454029-725345543-1004\...\Run: [DAEMON Tools Lite] => C:\Program Files\DAEMON Tools Lite\DTLite.exe [3696912 2014-03-04] (Disc Soft Ltd)
HKU\S-1-5-21-823518204-1592454029-725345543-1004\...\Run: [Skype] => C:\Program Files\Skype\Phone\Skype.exe [22041192 2014-08-27] (Skype Technologies S.A.)
HKU\S-1-5-21-823518204-1592454029-725345543-1004\...\MountPoints2: {06b311de-3ced-11df-8afe-00e1a7767681} - "G:\WD SmartWare.exe" autoplay=true
HKU\S-1-5-21-823518204-1592454029-725345543-1004\...\MountPoints2: {1cdae3c8-9d21-11e2-8cfe-0018de8e4bd9} - F:\Setup.exe /Auto
HKU\S-1-5-21-823518204-1592454029-725345543-1004\...\MountPoints2: {53f9e0cf-4198-11e0-8bbf-00e1a7767681} - F:\LGAutoRun.exe
HKU\S-1-5-21-823518204-1592454029-725345543-1004\...\MountPoints2: {745155be-4ade-11e2-8c81-0018de8e4bd9} - F:\AutoRun.exe
HKU\S-1-5-21-823518204-1592454029-725345543-1004\...\MountPoints2: {745155c2-4ade-11e2-8c81-0018de8e4bd9} - F:\AutoRun.exe
HKU\S-1-5-21-823518204-1592454029-725345543-1004\...\MountPoints2: {85278eb2-1889-11dd-ad94-00e1a7767681} - JOVANA/pojatar.exe
HKU\S-1-5-21-823518204-1592454029-725345543-1004\...\MountPoints2: {8f8aa4e6-4b99-11e2-8c82-0018de8e4bd9} - F:\AutoRun.exe
Startup: C:\Documents and Settings\All Users\Start Menu\Προγράμματα\Εκκίνηση\Bluetooth.lnk
ShortcutTarget: Bluetooth.lnk -> C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe (Broadcom Corporation.)
Startup: C:\Documents and Settings\All Users\Start Menu\Προγράμματα\Εκκίνηση\CONNECTAUTrayApp.lnk
ShortcutTarget: CONNECTAUTrayApp.lnk -> C:\Program Files\Sony\CONNECTAutoUpdate\CONNECTAUTrayApp.exe (Sony Corporation)
ShellIconOverlayIdentifiers: [AutoCAD Digital Signatures Icon Overlay Handler] -> {36A21736-36C2-4C11-8ACB-D4136F2B57BD} => C:\WINDOWS\system32\AcSignIcon.dll (Autodesk, Inc.)
BootExecute: autocheck autochk * C:\PROGRA~1\AVG\AVG2015\avgrsx.exe /sync /restart
 
==================== Internet (Whitelisted) ====================
 
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
 
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.gr/
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.otenet.gr/
URLSearchHook: HKCU - Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll (Yahoo! Inc.)
SearchScopes: HKLM - DefaultScope {CCC7A320-B3CA-4199-B1A6-9F516DD69829} URL = http://us.yhs.search.yahoo.com/avg/search?fr=yhs-avg-chrome&type=yahoo_avg_hs2-tb-web_chrome_us&p={searchTerms}
SearchScopes: HKCU - DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://search.live.com/results.aspx?FORM=IEFM1&q={searchTerms}
SearchScopes: HKCU - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://search.live.com/results.aspx?FORM=IEFM1&q={searchTerms}
BHO: Yahoo! Toolbar Helper -> {02478D38-C3F9-4EFB-9B51-7695ECA05670} -> C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll (Yahoo! Inc.)
BHO: Adobe PDF Reader Link Helper -> {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} -> C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll No File
BHO: AVG Safe Search -> {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} ->  No File
BHO: SSVHelper Class -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll (Sun Microsystems, Inc.)
BHO: Windows Live Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
BHO: Skype Browser Helper -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
BHO: Google Toolbar Notifier BHO -> {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} -> C:\Program Files\Google\GoogleToolbarNotifier\5.7.9012.1008\swg.dll (Google Inc.)
BHO: Google Gears Helper -> {E0FEFE40-FBF9-42AE-BA58-794CA7E3FB53} -> C:\Program Files\Google\Google Gears\Internet Explorer\0.5.36.0\gears.dll (Google Inc.)
Toolbar: HKLM - Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll (Yahoo! Inc.)
Toolbar: HKLM - Veoh Web Player Video Finder - {0FBB9689-D3D7-4f7a-A2E2-585B10099BFC} - C:\Program Files\Veoh Networks\VeohWebPlayer\VeohIEToolbar.dll (Veoh Networks Inc)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
Toolbar: HKCU - Διεύ&θυνση - {01E04581-4EEE-11D0-BFE9-00AA005B4383} - C:\WINDOWS\system32\browseui.dll (Microsoft Corporation)
Toolbar: HKCU - &Συνδέσεις - {0E5CBF21-D15F-11D0-8301-00AA005B4383} - C:\WINDOWS\system32\SHELL32.dll (Microsoft Corporation)
DPF: {166B1BCA-3F9C-11CF-8075-444553540000} http://download.macromedia.com/pub/shockwave/cabs/director/sw.cab
DPF: {78AF2F24-A9C3-11D3-BF8C-0060B0FCC122} file:///C:/Program%20Files/AutoCAD%202002/AcDcToday.ocx
DPF: {AE563720-B4F5-11D4-A415-00108302FDFD} file:///C:/Program%20Files/AutoCAD%202002/InstBanr.ocx
DPF: {F281A59C-7B65-11D3-8617-0010830243BD} file:///C:/Program%20Files/AutoCAD%202002/AcPreview.ocx
Handler: cdo - {CD00020A-8B95-11D1-82DB-00C04FB1625D} - C:\Program Files\Common Files\Microsoft Shared\Web Folders\PKMCDO.DLL (Microsoft Corporation)
Handler: ms-itss - {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Program Files\Common Files\Microsoft Shared\Information Retrieval\MSITSS.DLL (Microsoft Corporation)
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Winsock: Catalog5 04 C:\Program Files\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
 
FireFox:
========
FF ProfilePath: C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\q18k4vyi.default
FF DefaultSearchEngine: Web Search
FF SearchEngineOrder.1: Web Search
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll ()
FF Plugin: @adobe.com/ShockwavePlayer -> C:\WINDOWS\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
FF Plugin: @Apple.com/iTunes,version=1.0 -> C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeLive,version=1.3 -> C:\Program Files\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)
FF Plugin: @microsoft.com/WLPG,version=14.0.8064.0206 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=14.0.8081.0709 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=14.0.8117.0416 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 -> C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF Plugin: @real.com/nppl3260;version=6.0.12.450 -> C:\Program Files\Real Alternative\browser\plugins\nppl3260.dll (RealNetworks, Inc.)
FF Plugin: @real.com/nprpjplug;version=6.0.12.448 -> C:\Program Files\Real Alternative\browser\plugins\nprpjplug.dll (RealNetworks, Inc.)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @veoh.com/VeohTVPlugin -> C:\Program Files\Veoh Networks\VeohWebPlayer\NPVeohTVPlugin.dll (Veoh Networks )
FF Plugin: @veoh.com/VeohWebPlayer -> C:\Program Files\Veoh Networks\VeohWebPlayer\npWebPlayerVideoPluginATL.dll (Veoh)
FF Plugin: yaxmpb@yahoo.com/YahooActiveXPluginBridge;version=1.0.0.1 -> C:\Program Files\Yahoo!\Common\npyaxmpb.dll (Yahoo! Inc.)
FF Plugin HKCU: @Skype Limited.com/Facebook Video Calling Plugin -> C:\Documents and Settings\user\Local Settings\Application Data\Facebook\Video\Skype\npFacebookVideoCalling.dll (Skype Limited)
FF user.js: detected! => C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\q18k4vyi.default\user.js
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\np32dsw.dll (Adobe Systems, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npnul32.dll (mozilla.org)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\NPOFFICE.DLL (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nppdf32.dll (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nppl3260.dll (RealNetworks, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nprpjplug.dll (RealNetworks, Inc.)
FF SearchPlugin: C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\q18k4vyi.default\searchplugins\aolsearch.xml
FF SearchPlugin: C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\q18k4vyi.default\searchplugins\LiveSearch.xml
FF SearchPlugin: C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\q18k4vyi.default\searchplugins\searchplugins-backup
FF SearchPlugin: C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\q18k4vyi.default\searchplugins\Web Search.xml
FF SearchPlugin: C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\q18k4vyi.default\searchplugins\winamp-search.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\searchplugins\answers.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\searchplugins\avg_igeared.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\searchplugins\creativecommons.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\searchplugins\Web Search.xml
FF Extension: {{EXT_NAME}} - C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\q18k4vyi.default\Extensions\jid0-ZUExAsljjifZW5hRDIbMjWOTGWg@jetpack [2014-09-13]
FF Extension: {{EXT_NAME}} - C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\q18k4vyi.default\Extensions\redirectcleaner@example.net [2014-09-24]
FF Extension: Winamp Toolbar - C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\q18k4vyi.default\Extensions\{0b38152b-1b20-484d-a11f-5e04a9b0661f} [2009-09-09]
FF Extension: Google Toolbar for Firefox - C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\q18k4vyi.default\Extensions\{3112ca9c-de6d-4884-a869-9855de68056c} [2009-12-28]
FF Extension: Yahoo! Toolbar - C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\q18k4vyi.default\Extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1} [2008-08-14]
FF Extension: {{EXT_NAME}} - C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\q18k4vyi.default\Extensions\{cd617375-6743-4ee8-bac4-fbf10f35729e} [2014-09-13]
FF Extension: Greasemonkey - C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\q18k4vyi.default\Extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781} [2009-10-02]
FF Extension: Talkback - C:\Program Files\Mozilla Firefox\extensions\talkback@mozilla.org [2008-03-01]
FF Extension: Google Toolbar for Firefox - C:\Program Files\Mozilla Firefox\extensions\{3112ca9c-de6d-4884-a869-9855de68056c} [2008-03-01]
FF Extension: Java Console - C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA} [2008-09-05]
FF HKLM\...\Firefox\Extensions: [{000a9d1c-beef-4f90-9363-039d445309b8}] - C:\Program Files\Google\Google Gears\Firefox
FF Extension: Google Gears - C:\Program Files\Google\Google Gears\Firefox [2010-03-07]
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF Extension: Microsoft .NET Framework Assistant - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2010-04-26]
FF HKLM\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird
FF HKCU\...\Firefox\Extensions: [web@veoh.com] - C:\Program Files\Veoh Networks\VeohWebPlayer\FFVideoFinder
FF Extension: Veoh Web Player Video Finder - C:\Program Files\Veoh Networks\VeohWebPlayer\FFVideoFinder [2008-11-13]
 
Chrome: 
=======
CHR HomePage: Default -> 1D1BF7C64590AA42BA0B20812C37C8E5FE2DCBF92499ABF615B27C6C3E46F8EF
CHR Profile: C:\Documents and Settings\user\Local Settings\Application Data\Google\Chrome\User Data\Default
CHR Extension: (Διαφάνειες Google) - C:\Documents and Settings\user\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2014-09-08]
CHR Extension: (akjdheomplehjdgpjenoamnhhkcenlkf) - C:\Documents and Settings\user\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\akjdheomplehjdgpjenoamnhhkcenlkf [2014-09-15]
CHR Extension: (Έγγραφα Google) - C:\Documents and Settings\user\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-09-08]
CHR Extension: (Google Drive ) - C:\Documents and Settings\user\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-09-08]
CHR Extension: (Retro Heading) - C:\Documents and Settings\user\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\bkjbflodeemohgdgjgkabkpgeddeoiid [2014-09-10]
CHR Extension: (YouTube) - C:\Documents and Settings\user\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-09-08]
CHR Extension: (Adblock Plus) - C:\Documents and Settings\user\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2014-10-05]
CHR Extension: (Αναζήτηση Google) - C:\Documents and Settings\user\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-09-08]
CHR Extension: (dkaagdgjmgdmbnecmcefdhjekcoceebi) - C:\Documents and Settings\user\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\dkaagdgjmgdmbnecmcefdhjekcoceebi [2014-09-13]
CHR Extension: (Υπολογιστικά φύλλα Google) - C:\Documents and Settings\user\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2014-09-08]
CHR Extension: (Skype Click to Call) - C:\Documents and Settings\user\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2014-09-08]
CHR Extension: (Πορτοφόλι Google) - C:\Documents and Settings\user\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-09-08]
CHR Extension: (Gmail) - C:\Documents and Settings\user\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-09-08]
CHR HKLM\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files\Skype\Toolbars\Skype for Chromium\skype_chrome_extension.crx [2013-10-09]
 
========================== Services (Whitelisted) =================
 
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
 
S3 AppMgmt; C:\WINDOWS\system32\svchost.exe [14336 2008-04-14] (Microsoft Corporation)
R2 AVGIDSAgent; C:\Program Files\AVG\AVG2015\avgidsagent.exe [3364368 2014-09-05] (AVG Technologies CZ, s.r.o.)
R2 avgwd; C:\Program Files\AVG\AVG2015\avgwdsvc.exe [293448 2014-09-05] (AVG Technologies CZ, s.r.o.)
R2 btwdins; C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe [266295 2006-01-17] (Broadcom Corporation.) [File not signed]
R2 EvtEng; C:\Program Files\Intel\Wireless\Bin\EvtEng.exe [114753 2006-04-14] (Intel Corporation) [File not signed]
S2 gupdate1c961bd237fd264; C:\Program Files\Google\Update\GoogleUpdate.exe [133104 2008-12-19] (Google Inc.)
R2 HWDeviceService.exe; C:\Documents and Settings\All Users\Application Data\DatacardService\HWDeviceService.exe [271712 2011-03-14] ()
S3 IDriverT; C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe [69632 2005-11-14] (Macrovision Corporation) [File not signed]
S2 LVSrvLauncher; C:\Program Files\Common Files\Logitech\SrvLnch\SrvLnch.exe [101152 2006-11-28] (Logitech Inc.)
S3 MSCSPTISRV; C:\Program Files\Common Files\Sony Shared\AVLib\MSCSPTISRV.exe [53337 2005-08-30] (Sony Corporation) [File not signed]
S3 PACSPTISVR; C:\Program Files\Common Files\Sony Shared\AVLib\PACSPTISVR.exe [53337 2005-08-30] (Sony Corporation) [File not signed]
R2 PLFlash DeviceIoControl Service; C:\WINDOWS\system32\IoctlSvc.exe [81920 2006-12-19] (Prolific Technology Inc.) [File not signed]
R2 RegSrvc; C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe [217164 2006-04-14] (Intel Corporation) [File not signed]
R2 S24EventMonitor; C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe [540745 2006-04-14] (Intel Corporation ) [File not signed]
R2 Skype C2C Service; C:\Documents and Settings\All Users\Application Data\Skype\Toolbars\Skype C2C Service\c2c_service.exe [3289208 2013-05-14] (Skype Technologies S.A.)
S3 Sony PC Companion; C:\Program Files\Sony\Sony PC Companion\PCCService.exe [155824 2013-02-04] (Avanquest Software)
S3 SPTISRV; C:\Program Files\Common Files\Sony Shared\AVLib\SPTISRV.exe [69718 2005-08-30] (Sony Corporation) [File not signed]
S2 Sudani mDSL. RunOuc; C:\Program Files\Sudani mDSL\UpdateDog\ouc.exe [655712 2012-12-20] ()
S3 WLSetupSvc; C:\Program Files\Windows Live\installer\WLSetupSvc.exe [266240 2007-10-25] (Microsoft Corporation)
 
==================== Drivers (Whitelisted) ====================
 
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
 
R2 AegisP; C:\WINDOWS\System32\DRIVERS\AegisP.sys [21275 2008-01-17] (Meetinghouse Data Communications) [File not signed]
R1 Avgdiskx; C:\WINDOWS\System32\DRIVERS\avgdiskx.sys [121624 2014-06-18] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSDriverl; C:\WINDOWS\System32\DRIVERS\avgidsdriverlx.sys [192280 2014-07-24] (AVG Technologies CZ, s.r.o.)
R0 AVGIDSHX; C:\WINDOWS\System32\DRIVERS\avgidshx.sys [147736 2014-06-18] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSShim; C:\WINDOWS\System32\DRIVERS\avgidsshimx.sys [21272 2014-06-18] (AVG Technologies CZ, s.r.o.)
R1 Avgldx86; C:\WINDOWS\System32\DRIVERS\avgldx86.sys [193304 2014-08-20] (AVG Technologies CZ, s.r.o.)
R0 Avglogx; C:\WINDOWS\System32\DRIVERS\avglogx.sys [230680 2014-07-18] (AVG Technologies CZ, s.r.o.)
R0 Avgmfx86; C:\WINDOWS\System32\DRIVERS\avgmfx86.sys [98584 2014-08-06] (AVG Technologies CZ, s.r.o.)
R0 Avgrkx86; C:\WINDOWS\System32\DRIVERS\avgrkx86.sys [27416 2014-06-18] (AVG Technologies CZ, s.r.o.)
R1 Avgtdix; C:\WINDOWS\System32\DRIVERS\avgtdix.sys [199448 2014-07-02] (AVG Technologies CZ, s.r.o.)
R3 btaudio; C:\WINDOWS\System32\drivers\btaudio.sys [328061 2006-01-17] (Broadcom Corporation.) [File not signed]
S3 BTDriver; C:\WINDOWS\System32\DRIVERS\btport.sys [30459 2006-01-17] (Broadcom Corporation.) [File not signed]
R3 BTKRNL; C:\WINDOWS\System32\DRIVERS\btkrnl.sys [850474 2006-01-17] (Broadcom Corporation.) [File not signed]
R2 BTSERIAL; C:\WINDOWS\system32\drivers\btserial.sys [23271 2006-01-17] (Broadcom Corporation.) [File not signed]
S3 BTWDNDIS; C:\WINDOWS\System32\DRIVERS\btwdndis.sys [148900 2006-01-17] (Broadcom Corporation.) [File not signed]
S3 BTWUSB; C:\WINDOWS\System32\Drivers\btwusb.sys [65688 2006-01-17] (Broadcom Corporation.) [File not signed]
S3 CCDECODE; C:\WINDOWS\System32\DRIVERS\CCDECODE.sys [17024 2008-04-13] (Microsoft Corporation)
S2 DgiVecp; C:\WINDOWS\system32\Drivers\DgiVecp.sys [38400 2009-10-12] (Samsung Electronics Co., Ltd.) [File not signed]
R1 dtsoftbus01; C:\WINDOWS\System32\DRIVERS\dtsoftbus01.sys [243128 2014-09-06] (Disc Soft Ltd)
R3 EMSCR; C:\WINDOWS\System32\DRIVERS\EMS7SK.sys [61056 2006-05-25] (ENE Technology Inc.)
R3 ESDCR; C:\WINDOWS\System32\DRIVERS\ESD7SK.sys [40064 2006-05-25] (ENE Technology Inc.)
R3 ESMCR; C:\WINDOWS\System32\DRIVERS\ESM7SK.sys [74752 2006-05-25] (ENE Technology Inc.)
R0 fsbts; C:\WINDOWS\System32\Drivers\fsbts.sys [44240 2012-08-23] ()
R2 fssfltr; C:\WINDOWS\System32\DRIVERS\fssfltr_tdi.sys [54752 2009-08-05] (Microsoft Corporation)
R3 HSFHWAZL; C:\WINDOWS\System32\DRIVERS\HSFHWAZL.sys [209664 2006-12-22] (Conexant Systems, Inc.) [File not signed]
R3 HSF_DPV; C:\WINDOWS\System32\DRIVERS\HSF_DPV.sys [988800 2006-12-22] (Conexant Systems, Inc.) [File not signed]
R3 lv321av; C:\WINDOWS\System32\DRIVERS\lv321av.sys [847392 2006-11-28] (Logitech Inc.)
R3 LVMVDrv; C:\WINDOWS\System32\DRIVERS\LVMVDrv.sys [1962784 2006-11-28] (Logitech Inc.)
R2 mdmxsdk; C:\WINDOWS\System32\DRIVERS\mdmxsdk.sys [12672 2006-06-19] (Conexant) [File not signed]
S3 NdisIP; C:\WINDOWS\System32\DRIVERS\NdisIP.sys [10880 2008-04-13] (Microsoft Corporation)
S3 NuidFltr; C:\WINDOWS\System32\DRIVERS\NuidFltr.sys [14736 2009-05-09] (Microsoft Corporation)
R3 Rasirda; C:\WINDOWS\System32\DRIVERS\rasirda.sys [19584 2001-08-17] (Microsoft Corporation)
R2 s24trans; C:\WINDOWS\System32\DRIVERS\s24trans.sys [13568 2006-04-14] (Intel Corporation) [File not signed]
S3 SE2Ebus; C:\WINDOWS\System32\DRIVERS\SE2Ebus.sys [61600 2006-11-10] (MCCI) [File not signed]
S3 SE2Emdfl; C:\WINDOWS\System32\DRIVERS\SE2Emdfl.sys [9360 2006-11-10] (MCCI) [File not signed]
S3 SE2Emdm; C:\WINDOWS\System32\DRIVERS\SE2Emdm.sys [97184 2006-11-10] (MCCI) [File not signed]
S3 SE2Emgmt; C:\WINDOWS\System32\DRIVERS\SE2Emgmt.sys [88688 2006-11-10] (MCCI) [File not signed]
S3 SE2Eobex; C:\WINDOWS\System32\DRIVERS\SE2Eobex.sys [86560 2006-11-10] (MCCI) [File not signed]
S3 se59bus; C:\WINDOWS\System32\DRIVERS\se59bus.sys [61536 2006-09-05] (MCCI) [File not signed]
S3 se59mdfl; C:\WINDOWS\System32\DRIVERS\se59mdfl.sys [9360 2006-09-05] (MCCI) [File not signed]
S3 se59mdm; C:\WINDOWS\System32\DRIVERS\se59mdm.sys [97088 2006-09-05] (MCCI) [File not signed]
S3 se59mgmt; C:\WINDOWS\System32\DRIVERS\se59mgmt.sys [88624 2006-09-05] (MCCI) [File not signed]
S3 se59obex; C:\WINDOWS\System32\DRIVERS\se59obex.sys [86432 2006-09-05] (MCCI) [File not signed]
S3 se59unic; C:\WINDOWS\System32\DRIVERS\se59unic.sys [90800 2006-09-05] (MCCI) [File not signed]
R3 SMCIRDA; C:\WINDOWS\System32\DRIVERS\smcirda.sys [46080 2004-06-16] (SMSC)
S3 USB_RNDIS; C:\WINDOWS\System32\DRIVERS\usb8023.sys [12928 2013-02-12] (Microsoft Corporation)
S3 VClone; C:\WINDOWS\System32\DRIVERS\VClone.sys [30208 2011-01-15] (Elaborate Bytes AG) [File not signed]
R3 w39n51; C:\WINDOWS\System32\DRIVERS\w39n51.sys [1429632 2006-04-04] (Intel® Corporation)
R3 winachsf; C:\WINDOWS\System32\DRIVERS\HSF_CNXT.sys [730112 2006-12-22] (Conexant Systems, Inc.) [File not signed]
R2 {FE4C91E7-22C2-4D0C-9F6B-82F1B7742054}; C:\Program Files\CyberLink\PowerDVD8\000.fcl [61424 2008-05-15] (Cyberlink Corp.)
S2 ADILOADER; System32\Drivers\adildr.sys [X]
S3 adiusbaw; system32\DRIVERS\adiusbaw.sys [X]
S3 CnxEtP; system32\DRIVERS\CnxEtP.sys [X]
S3 CnxEtU; system32\DRIVERS\CnxEtU.sys [X]
S3 CnxTgNP; system32\DRIVERS\CnxTgNP.sys [X]
S3 CnxTgNW; system32\DRIVERS\CnxTgNW.sys [X]
S3 e4usbaw; system32\DRIVERS\e4usbaw.sys [X]
S3 GMSIPCI; \??\E:\INSTALL\GMSIPCI.SYS [X]
S2 IKANLOADER2; System32\Drivers\e4ldr.sys [X]
S4 IntelIde; No ImagePath
S3 npkcrypt; \??\C:\Documents and Settings\user\Επιφάνεια εργασίας\Lineage II - Chronicle 6\system\npkcrypt.sys [X]
U5 Pcan_usb; C:\Windows\System32\Drivers\Pcan_usb.sys [263871 2005-08-09] (PEAK-System Technik GmbH, Darmstadt, Germany) [File not signed]
U5 ScsiPort; C:\WINDOWS\system32\drivers\scsiport.sys [96384 2008-04-13] (Microsoft Corporation)
S2 SSPORT; \??\C:\WINDOWS\system32\Drivers\SSPORT.sys [X]
U1 WS2IFSL; No ImagePath
 
==================== NetSvcs (Whitelisted) ===================
 
 
(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)
 
 
==================== One Month Created Files and Folders ========
 
(If an entry is included in the fixlist, the file\folder will be moved.)
 
2014-10-10 10:50 - 2014-10-10 10:52 - 00072655 _____ () C:\Documents and Settings\user\Επιφάνεια εργασίας\Addition.txt
2014-10-10 10:48 - 2014-10-12 01:02 - 00032075 _____ () C:\Documents and Settings\user\Επιφάνεια εργασίας\FRST.txt
2014-10-10 10:48 - 2014-10-12 01:01 - 00000000 ____D () C:\FRST
2014-10-10 10:47 - 2014-10-10 10:47 - 01101312 _____ (Farbar) C:\Documents and Settings\user\Επιφάνεια εργασίας\FRST.exe
2014-10-08 11:22 - 2014-10-08 11:22 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\Avg_Update_0914av
2014-10-08 11:15 - 2014-10-08 11:15 - 00000702 _____ () C:\Documents and Settings\All Users\Επιφάνεια εργασίας\AVG 2015.lnk
2014-10-08 11:15 - 2014-10-08 11:15 - 00000000 ____D () C:\Documents and Settings\user\Application Data\AVG2015
2014-10-08 11:15 - 2014-10-08 11:15 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Προγράμματα\AVG
2014-10-08 11:14 - 2014-10-08 11:21 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\AVG2015
2014-10-08 11:14 - 2014-10-08 11:14 - 00009014 _____ () C:\WINDOWS\setupapi.log
2014-10-08 11:14 - 2014-10-08 11:14 - 00000000 ___HD () C:\$AVG
2014-10-08 11:13 - 2014-10-08 11:13 - 00000000 ____D () C:\Program Files\AVG
2014-10-08 11:10 - 2014-10-12 00:02 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\MFAData
2014-10-08 11:10 - 2014-10-08 11:22 - 00000000 ____D () C:\Documents and Settings\user\Local Settings\Application Data\Avg2015
2014-10-08 11:10 - 2014-10-08 11:10 - 00000000 ____D () C:\Documents and Settings\user\Local Settings\Application Data\MFAData
2014-10-08 11:10 - 2014-10-08 11:10 - 00000000 ____D () C:\Documents and Settings\user\Local Settings\Application Data\Avg2014
2014-10-08 10:51 - 2014-10-08 10:53 - 171450696 _____ (AVG Technologies) C:\Documents and Settings\user\Επιφάνεια εργασίας\avg_free_x64_all_2014_4765a8097.exe
2014-10-06 20:14 - 2014-10-06 20:18 - 00015974 _____ () C:\Documents and Settings\user\Επιφάνεια εργασίας\attach.txt
2014-10-06 20:14 - 2014-10-06 20:16 - 00019379 _____ () C:\Documents and Settings\user\Επιφάνεια εργασίας\dds.txt
2014-10-06 20:09 - 2014-10-06 20:09 - 00688992 ____R (Swearware) C:\Documents and Settings\user\Επιφάνεια εργασίας\dds.com
2014-10-06 18:45 - 2014-10-06 19:41 - 00000000 ____D () C:\Program Files\Cobian Backup 11
2014-10-01 19:53 - 2014-10-01 19:53 - 00000000 ____D () C:\Program Files\Common Files\Skype
2014-10-01 19:53 - 2014-10-01 19:53 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Προγράμματα\Skype
2014-09-25 15:08 - 2014-10-08 11:41 - 00000000 ____D () C:\Documents and Settings\user\Application Data\9788
2014-09-21 00:48 - 2014-09-21 00:48 - 00000815 _____ () C:\Documents and Settings\All Users\Επιφάνεια εργασίας\TeamViewer 9.lnk
2014-09-21 00:48 - 2014-09-21 00:48 - 00000000 ____D () C:\Program Files\TeamViewer
2014-09-21 00:48 - 2014-09-21 00:48 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Προγράμματα\TeamViewer 9
2014-09-19 11:52 - 2014-10-08 11:54 - 00000000 ____D () C:\Program Files\GetPrivate
2014-09-19 11:52 - 2014-10-08 11:43 - 00000000 ____D () C:\Documents and Settings\user\Application Data\GetPrivate
2014-09-19 11:52 - 2014-09-19 11:52 - 00000226 _____ () C:\WINDOWS\Tasks\GPUP.job
2014-09-12 18:14 - 2014-09-12 18:14 - 00000000 ____D () C:\Documents and Settings\user\Επιφάνεια εργασίας\GREEK WPA FINDER FOR PC MrGreek2013
 
==================== One Month Modified Files and Folders =======
 
(If an entry is included in the fixlist, the file\folder will be moved.)
 
2014-10-12 01:02 - 2008-01-17 12:59 - 00000000 ____D () C:\Documents and Settings\user\Local Settings\Temp
2014-10-12 01:01 - 2008-01-17 12:59 - 00000000 ____D () C:\Documents and Settings\user\Επιφάνεια εργασίας
2014-10-12 01:01 - 2008-01-17 12:46 - 01225856 _____ () C:\WINDOWS\WindowsUpdate.log
2014-10-12 00:51 - 2008-01-17 14:41 - 00000211 _____ () C:\WINDOWS\wiadebug.log
2014-10-12 00:51 - 2008-01-17 14:38 - 00000000 _____ () C:\WINDOWS\system32\nvapps.xml
2014-10-12 00:50 - 2009-06-30 22:02 - 00001168 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2014-10-12 00:50 - 2008-01-17 14:41 - 00000050 _____ () C:\WINDOWS\wiaservc.log
2014-10-12 00:50 - 2008-01-17 12:58 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT
2014-10-12 00:49 - 2008-01-17 12:59 - 00000278 ___SH () C:\Documents and Settings\user\ntuser.ini
2014-10-12 00:49 - 2008-01-17 12:58 - 00032430 _____ () C:\WINDOWS\SchedLgU.Txt
2014-10-12 00:45 - 2013-11-26 19:09 - 00000000 ____D () C:\Program Files\Better-Surf
2014-10-12 00:45 - 2013-11-18 14:10 - 00000000 ____D () C:\Program Files\BetterSurf
2014-10-12 00:39 - 2008-01-17 12:59 - 00000000 ___RD () C:\Documents and Settings\user\Τα έγγραφά μου
2014-10-12 00:29 - 2009-06-30 22:02 - 00001172 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2014-10-12 00:21 - 2013-07-29 00:50 - 00000830 _____ () C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2014-10-12 00:13 - 2008-01-17 14:37 - 00000000 ___RD () C:\Documents and Settings\All Users\Start Menu\Προγράμματα
2014-10-12 00:13 - 2008-01-17 14:37 - 00000000 ____D () C:\Documents and Settings\All Users\Επιφάνεια εργασίας
2014-10-12 00:12 - 2008-04-12 20:30 - 00000000 ____D () C:\Program Files\SweetIM
2014-10-11 23:55 - 2004-09-07 10:00 - 00013646 _____ () C:\WINDOWS\system32\wpa.dbl
2014-10-10 21:00 - 2012-08-23 12:17 - 00000000 ____D () C:\Documents and Settings\user\Application Data\Skype
2014-10-10 13:54 - 2011-10-24 13:44 - 00001294 _____ () C:\WINDOWS\Tasks\FacebookUpdateTaskUserS-1-5-21-823518204-1592454029-725345543-1004UA.job
2014-10-08 11:48 - 2008-03-09 00:27 - 00000000 ____D () C:\Documents and Settings\user\Τα έγγραφά μου\Προγράμματα
2014-10-08 11:41 - 2014-09-07 01:05 - 00000000 ____D () C:\Documents and Settings\user\Application Data\8841
2014-10-08 11:37 - 2014-09-06 19:46 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\WindowsMangerProtect
2014-10-08 11:21 - 2014-09-06 19:46 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\IePluginServices
2014-10-08 11:15 - 2014-08-31 12:59 - 00000000 ____D () C:\Documents and Settings\user\Application Data\TuneUp Software
2014-10-08 11:04 - 2014-08-31 12:59 - 00065536 _____ () C:\WINDOWS\system32\config\TuneUp.evt
2014-10-08 11:00 - 2014-08-31 12:57 - 00000000 ____D () C:\Program Files\TuneUp Utilities 2014
2014-10-07 12:29 - 2008-09-05 19:07 - 00000141 _____ () C:\Documents and Settings\user\Application Data\default.pls
2014-10-07 12:28 - 2008-02-16 16:11 - 00000069 _____ () C:\WINDOWS\NeroDigital.ini
2014-10-07 12:17 - 2008-01-17 14:37 - 00000000 ____D () C:\Program Files\Common Files\InstallShield
2014-10-06 22:54 - 2011-10-24 13:44 - 00001272 _____ () C:\WINDOWS\Tasks\FacebookUpdateTaskUserS-1-5-21-823518204-1592454029-725345543-1004Core.job
2014-10-06 14:45 - 2014-09-08 17:24 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\2308189059
2014-10-01 19:54 - 2008-01-17 14:38 - 01204464 ____C () C:\WINDOWS\system32\PerfStringBackup.INI
2014-10-01 19:53 - 2012-08-23 12:17 - 00000000 ___RD () C:\Program Files\Skype
2014-10-01 19:53 - 2012-08-23 12:16 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\Skype
2014-09-26 12:46 - 2014-08-14 08:56 - 00000000 ____D () C:\Documents and Settings\user\Επιφάνεια εργασίας\Athens
2014-09-25 23:40 - 2008-01-19 20:17 - 00000000 ____D () C:\Documents and Settings\user\Application Data\uTorrent
2014-09-25 23:35 - 2008-01-17 13:35 - 00098608 _____ () C:\Documents and Settings\user\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
2014-09-25 14:34 - 2014-09-08 10:57 - 00001877 _____ () C:\Documents and Settings\All Users\Επιφάνεια εργασίας\Google Chrome.lnk
2014-09-24 12:21 - 2013-07-29 00:50 - 00701104 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe
2014-09-24 12:21 - 2012-02-12 14:08 - 00071344 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
2014-09-22 12:49 - 2008-01-17 12:59 - 00000000 ___RD () C:\Documents and Settings\user\Start Menu\Προγράμματα\Εκκίνηση
2014-09-21 13:39 - 2008-01-17 14:37 - 00337848 _____ () C:\WINDOWS\system32\FNTCACHE.DAT
2014-09-21 00:53 - 2010-04-24 15:22 - 00000000 ____D () C:\Documents and Settings\user\Application Data\TeamViewer
2014-09-19 12:46 - 2008-01-17 12:59 - 00000000 ___RD () C:\Documents and Settings\user\Start Menu\Προγράμματα
2014-09-18 15:12 - 2014-08-17 19:01 - 00000000 ____D () C:\Documents and Settings\user\Τα έγγραφά μου\Οι εικόνες μου
2014-09-12 18:37 - 2008-01-17 16:22 - 00000000 ____D () C:\WINDOWS\ie7updates
2014-09-12 18:37 - 2008-01-17 16:06 - 00000000 ____D () C:\WINDOWS\system32\el-gr
2014-09-12 18:36 - 2013-07-28 17:37 - 00000000 ____D () C:\WINDOWS\system32\MRT
2014-09-12 18:31 - 2008-01-17 16:20 - 98758480 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
 
==================== Bamital & volsnap Check =================
 
(There is no automatic fix for files that do not pass verification.)
 
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed
 
==================== End Of Log ============================
 
 
THE ADDITION
 
Additional scan result of Farbar Recovery Scan Tool (x86) Version: 08-10-2014 01
Ran by user at 2014-10-12 01:02:44
Running from C:\Documents and Settings\user\Επιφάνεια εργασίας
Boot Mode: Normal
==========================================================
 
 
==================== Security Center ========================
 
(If an entry is included in the fixlist, it will be removed.)
 
AV: AVG AntiVirus Free Edition 2015 (Disabled - Up to date) {17DDD097-36FF-435F-9E1B-52D74245D6BF}
 
==================== Installed Programs ======================
 
(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
 
µTorrent (HKCU\...\uTorrent) (Version: 3.4.2.33870 - BitTorrent Inc.)
Acer Camera Driver (HKLM\...\AcerOrbiCamDrv) (Version:  - )
Acer OrbiCam Application (HKLM\...\{0F79C1B2-36B2-4B62-8221-42721CF54638}) (Version: 10.40.1319 - Acer)
Adobe AIR (HKLM\...\Adobe AIR) (Version: 14.0.0.110 - Adobe Systems Incorporated)
Adobe AIR (Version: 14.0.0.110 - Adobe Systems Incorporated) Hidden
Adobe Flash Player 10 Plugin (HKLM\...\Adobe Flash Player Plugin) (Version: 10.0.32.18 - Adobe Systems Incorporated)
Adobe Flash Player 15 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 15.0.0.167 - Adobe Systems Incorporated)
Adobe Reader 8.1.3 (HKLM\...\{AC76BA86-7AD7-1033-7B44-A81300000003}) (Version: 8.1.3 - Adobe Systems Incorporated)
Apple Application Support (HKLM\...\{AAC5D43E-816D-4C2D-8E51-55FFF35BE301}) (Version: 3.0.1 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{18D47FA1-0440-48D3-A7E0-DA09537FF471}) (Version: 7.1.1.3 - Apple Inc.)
Apple Software Update (HKLM\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
AutoCAD 2008 - English (HKLM\...\AutoCAD 2008 - English) (Version: 17.1.51.0 - Autodesk)
AutoCAD 2008 - English (Version: 17.1.51.0 - Autodesk) Hidden
AVG 2015 (HKLM\...\AVG) (Version: 2015.0.5315 - AVG Technologies)
AVG 2015 (Version: 15.0.4181 - AVG Technologies) Hidden
AVG 2015 (Version: 15.0.5315 - AVG Technologies) Hidden
Bonjour (HKLM\...\{79155F2B-9895-49D7-8612-D92580E0DE5B}) (Version: 3.0.0.10 - Apple Inc.)
BSPlayer (HKLM\...\BSPlayer1) (Version:  - )
CADware 8.5 (HKLM\...\CADware 8.5) (Version:  - )
CCleaner (HKLM\...\CCleaner) (Version: 4.17 - Piriform)
CONNECT Auto Update (HKLM\...\CONNECTAutoUpdate) (Version:  - Sony Corporation)
COORD_GR (HKLM\...\ST6UNST #1) (Version:  - )
Crazy Machines (HKLM\...\{09D4F215-8960-4E0E-A2CC-C5A062113503}) (Version: 1.14 - FAKT Software GmbH)
CyberLink PowerDVD 8 (HKLM\...\InstallShield_{2BF2E31F-B8BB-40A7-B650-98D28E0F7D47}) (Version: 8.0.1730 - CyberLink Corp.)
CyberLink PowerDVD 8 (Version: 8.0.1730 - CyberLink Corp.) Hidden
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 4.49.1.0356 - Disc Soft Ltd)
DVD Shrink 3.1.7 (HKLM\...\DVD Shrink_is1) (Version:  - DVD Shrink)
Facebook Video Calling 3.1.0.521 (HKLM\...\{2091F234-EB58-4B80-8C96-8EB78C808CF7}) (Version: 3.1.521 - Skype Limited)
Franson CoordTrans v2.30 (HKLM\...\{0B222912-C927-47CE-AC67-F34E9F3B7964}) (Version: 2.30.0185 - Franson)
Free Zip 9.20 (HKLM\...\7-Zip) (Version:  - Somoto Ltd) <==== ATTENTION
GIMP 2.8.4 (HKLM\...\GIMP-2_is1) (Version: 2.8.4 - The GIMP Team)
GOM Player (HKLM\...\GOM Player) (Version: 2.2.62.5207 - Gretech Corporation)
Google Chrome (HKLM\...\Google Chrome) (Version: 37.0.2062.124 - Google Inc.)
Google Earth (HKLM\...\{1E04F83B-2AB9-4301-9EF7-E86307F79C72}) (Version: 4.2.205.5730 - Google)
Google Gears (HKLM\...\{2FA41EBB-3F5A-35C3-85D6-51EC72A11FBD}) (Version: 0.5.3600 - Google)
Google Toolbar for Internet Explorer (HKLM\...\{2318C2B1-4965-11d4-9B18-009027A5CD4F}) (Version: 7.5.5111.1712 - Google Inc.)
Google Toolbar for Internet Explorer (Version: 1.0.0 - Google Inc.) Hidden
Google Update Helper (Version: 1.3.24.15 - Google Inc.) Hidden
iPhone Configuration Utility (HKLM\...\{B90FCEB7-2B0C-4D27-95B5-54238DF059ED}) (Version: 3.6.2.300 - Apple Inc.)
iTunes (HKLM\...\{2F21564D-DE05-4C6D-B21E-08B9D313FAB3}) (Version: 11.1.5.5 - Apple Inc.)
Java™ 6 Update 7 (HKLM\...\{3248F0A8-6813-11D6-A77B-00B0D0160070}) (Version: 1.6.0.70 - Sun Microsystems, Inc.)
JDownloader 0.9 (HKLM\...\5513-1208-7298-9440) (Version: 0.9 - AppWork GmbH)
Junk Mail filter update (Version: 14.0.8117.416 - Microsoft Corporation) Hidden
Launch Manager (HKLM\...\LManager) (Version:  - )
Logitech Video Enumerator (Version: 10.40.1319 - Logitech Inc.) Hidden
mCore (Version: 5.73.0000 - Intel Corporation) Hidden
mDriver (Version: 5.73.0000 - Intel) Hidden
mDrWiFi (Version: 5.73.0000 - Intel Corporation) Hidden
mEoU (Version: 5.73.0000 - Intel Corporation) Hidden
mHelp (Version: 5.73.0000 - Intel) Hidden
Microsoft .NET Framework 1.1 (HKLM\...\Microsoft .NET Framework 1.1  (1033)) (Version:  - )
Microsoft .NET Framework 1.1 (Version: 1.1.4322 - Microsoft) Hidden
Microsoft .NET Framework 1.1 Greek Language Pack (HKLM\...\{3D9E9EB7-B14F-4AE4-8C1F-1AD4CF3093BE}) (Version: 1.1.4322 - Microsoft)
Microsoft .NET Framework 1.1 Security Update (KB2698023) (HKLM\...\M2698023) (Version:  - )
Microsoft .NET Framework 1.1 Security Update (KB2833941) (HKLM\...\M2833941) (Version:  - )
Microsoft .NET Framework 1.1 Security Update (KB979906) (HKLM\...\M979906) (Version:  - )
Microsoft .NET Framework 2.0 Language Pack - ELL (HKLM\...\Microsoft .NET Framework 2.0 Language Pack - ELL) (Version:  - Microsoft Corporation)
Microsoft .NET Framework 2.0 Language Pack - ELL (Version: 1.1.50727.42 - Microsoft Corporation) Hidden
Microsoft .NET Framework 2.0 Service Pack 2 (HKLM\...\{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}) (Version: 2.2.30729 - Microsoft Corporation)
Microsoft .NET Framework 3.0 Greek Language Pack (Version: 3.0.04506.30 - Microsoft Corporation) Hidden
Microsoft .NET Framework 3.0 Service Pack 2 (HKLM\...\{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}) (Version: 3.2.30729 - Microsoft Corporation)
Microsoft .NET Framework 3.5 SP1 (HKLM\...\Microsoft .NET Framework 3.5 SP1) (Version:  - Microsoft Corporation)
Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729 - Microsoft Corporation) Hidden
Microsoft Application Error Reporting (Version: 12.0.6012.5000 - Microsoft Corporation) Hidden
Microsoft Choice Guard (Version: 2.0.48.0 - Microsoft Corporation) Hidden
Microsoft Kernel-Mode Driver Framework Feature Pack 1.5 (Version:  - Microsoft Corporation) Hidden
Microsoft Kernel-Mode Driver Framework Feature Pack 1.7 (Version:  - Microsoft Corporation) Hidden
Microsoft Office 2003 Web Components (HKLM\...\{90A40409-6000-11D3-8CFE-0150048383C9}) (Version: 11.0.8173.0 - Microsoft Corporation)
Microsoft Office File Validation Add-In (HKLM\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Live Add-in 1.3 (HKLM\...\{57F0ED40-8F11-41AA-B926-4A66D0D1A9CC}) (Version: 2.0.2313.0 - Microsoft Corporation)
Microsoft Office Outlook Connector (HKLM\...\{95120000-0122-0409-0000-0000000FF1CE}) (Version: 12.0.6423.1000 - Microsoft Corporation)
Microsoft Office Professional Edition 2003 (HKLM\...\{90110408-6000-11D3-8CFE-0150048383C9}) (Version: 11.0.8173.0 - Microsoft Corporation)
Microsoft Office Project Professional 2003 (HKLM\...\{903B0409-6000-11D3-8CFE-0150048383C9}) (Version: 11.0.8173.0 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Sync Framework Runtime Native v1.0 (x86) (HKLM\...\{8A74E887-8F0F-4017-AF53-CBA42211AAA5}) (Version: 1.0.1215.0 - Microsoft Corporation)
Microsoft Sync Framework Services Native v1.0 (x86) (HKLM\...\{BD64AF4A-8C80-4152-AD77-FCDDF05208AB}) (Version: 1.0.1215.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (HKLM\...\{770657D0-A123-3C07-8E44-1C83EC895118}) (Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
mIWA (Version: 5.73.0000 - Intel Corporation) Hidden
mLogView (Version: 5.73.0000 - Intel Corporation) Hidden
mMHouse (Version: 5.73.0000 - Intel Corporation) Hidden
MpcStar 5.3 (HKLM\...\MpcStar) (Version: 5.3 - www.mpcstar.com)
mPfMgr (Version: 5.73.0000 - Intel Corporation) Hidden
mPfWiz (Version: 5.73.0000 - Intel Corporation) Hidden
mProSafe (Version: 9.00.0000 - Intel) Hidden
MSVCRT (Version: 14.0.1468.721 - Microsoft) Hidden
MSXML 4.0 SP2 (KB936181) (HKLM\...\{C04E32E0-0416-434D-AFB9-6969D703A9EF}) (Version: 4.20.9848.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB954430) (HKLM\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
MSXML 6 Service Pack 2 (KB973686) (HKLM\...\{56EA8BC0-3751-4B93-BC9D-6651CC36E5AA}) (Version: 6.20.2003.0 - Microsoft Corporation)
MVision (Version: 10.40.1319 - Logitech Inc.) Hidden
mWlsSafe (Version: 9.00.0000 - Intel) Hidden
mXML (Version: 5.73.0000 - Intel Corporation) Hidden
mZConfig (Version: 5.73.0000 - Intel Corporation) Hidden
Nero 8 (HKLM\...\{D6C9AF27-9414-46C8-B9D8-D878BA041032}) (Version: 8.3.314 - Nero AG)
neroxml (Version: 1.0.0 - Nero AG) Hidden
NVIDIA Drivers (HKLM\...\NVIDIA Drivers) (Version:  - )
OpenMG Secure Module 4.3.00 (HKLM\...\InstallShield_{F5E4C38C-73BC-4D44-8BFC-969C2B4DABCA}) (Version: 4.3.00.08302 - Sony Corporation)
OpenMG Secure Module 4.3.00 (Version: 4.3.00.08302 - Sony Corporation) Hidden
PDF Manual NW-A10003000 (HKLM\...\{BF2F7927-92AF-4F5D-8B93-658F63DF8727}) (Version: 1.0.00.09080 - Sony Corporation)
PDFCreator (HKLM\...\{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}) (Version: 1.6.0 - Frank Heindφrfer, Philip Chinery)
PEAK OEM Driver (HKLM\...\PEAK OEM Driver) (Version:  - PEAK-System Technik GmbH)
PlayStation®Store (HKLM\...\{0E532C84-4275-41B3-9D81-D4A1A20D8EE7}) (Version: 4.14.6.15183 - Sony Computer Entertainment Inc.)
PVsyst (HKLM\...\PVsyst) (Version: 5.03 - ISE - University of Geneva)
QuickTime 7 (HKLM\...\{111EE7DF-FC45-40C7-98A7-753AC46B12FB}) (Version: 7.75.80.95 - Apple Inc.)
RAR Password Unlocker (HKLM\...\{69B77D45-F5AD-4AB9-933D-352703324469}_is1) (Version:  - RAR Password Unlocker, Inc.)
Real Alternative 2.0.2 (HKLM\...\RealAlt_is1) (Version: 2.0.2 - )
Realtek High Definition Audio Driver (HKLM\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 5.10.0.5273 - Realtek Semiconductor Corp.)
RETScreen (HKLM\...\{FEA36347-ADBE-423F-A1B2-74A3C3BCE15E}) (Version: 1.0.1 - Ressources Naturelles Canada)
RETScreen Version 4 (HKLM\...\{E9021599-1E2A-4027-A1CC-40E42A08603C}) (Version: 4.0.11.7 - RETScreen International)
Royal Air Maroc Flight Schedules (HKLM\...\com.innovatallc.FlightMapsDesktop.AT.EN) (Version: 8.1.64 - INNOVATA LLC)
Royal Air Maroc Flight Schedules (Version: 8.1.64 - INNOVATA LLC) Hidden
Segoe UI (Version: 14.0.4327.805 - Microsoft Corp) Hidden
Skype Click to Call (HKLM\...\{B6CF2967-C81E-40C0-9815-C05774FEF120}) (Version: 6.13.13771 - Skype Technologies S.A.)
Skype™ 6.20 (HKLM\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 6.20.104 - Skype Technologies S.A.)
SMSC IrCC V5.1.3600.5 SP2 (HKLM\...\{F1B8DB67-D30E-4FF9-A85F-3CEE51825AA2}) (Version: r1.01 - )
Sony PC Companion 2.10.165 (HKLM\...\{F09EF8F2-0976-42C1-8D9D-8DF78337C6E3}) (Version: 2.10.165 - Sony)
Sudani mDSL (HKLM\...\Sudani mDSL) (Version: 21.005.22.01.491 - Huawei Technologies Co.,Ltd)
sudani mDSL (HKLM\...\ZTEWireless-101_is1) (Version:  - )
Sunny Design (HKLM\...\{682ABE6A-2CCE-4C6C-AA82-0FE5AB8033F3}) (Version: 1.55.0 - SMA Solar Technology AG)
SweetIM Toolbar for Internet Explorer 3.1 (HKLM\...\{59971D79-8111-42C2-9E40-883A0C277E78}) (Version: 3.1.0006 - SweetIM Technologies Ltd.) <==== ATTENTION
Syberia (HKLM\...\Syberia_is1) (Version:  - GOG.com)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 8.2.19.0 - Synaptics)
TeamViewer 9 (HKLM\...\TeamViewer 9) (Version: 9.0.32494 - TeamViewer)
Update for Microsoft .NET Framework 3.5 SP1 (KB963707) (HKLM\...\{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB963707) (Version: 1 - Microsoft Corporation)
USB Remote NDIS Network Device (Version: 1.0.0.1 - nobrand) Hidden
Visual Studio 2012 x86 Redistributables (HKLM\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
Volo View Express (HKLM\...\Volo View Express) (Version:  - )
WebFldrs XP (Version: 9.50.7523 - Microsoft Corporation) Hidden
WIDCOMM Bluetooth Software (HKLM\...\{3F4EC965-28EF-45C3-B063-04B25D4E9679}) (Version: 5.0.1.1500 -  )
Winamp (HKLM\...\Winamp) (Version: 5.531  - Nullsoft, Inc)
Windows Communication Foundation Language Pack - ELL (Version: 3.0.04506.30 - Microsoft Corporation) Hidden
Windows Live Call (Version: 14.0.8117.0416 - Microsoft Corporation) Hidden
Windows Live Communications Platform (Version: 14.0.8117.416 - Microsoft Corporation) Hidden
Windows Live Essentials (HKLM\...\WinLiveSuite_Wave3) (Version: 14.0.8117.0416 - Microsoft Corporation)
Windows Live Essentials (Version: 14.0.8117.416 - Microsoft Corporation) Hidden
Windows Live Family Safety (Version: 14.0.8118.427 - Microsoft Corporation) Hidden
Windows Live Mail (Version: 14.0.8117.0416 - Microsoft Corporation) Hidden
Windows Live Photo Gallery (Version: 14.0.8117.416 - Microsoft Corporation) Hidden
Windows Live Sign-in Assistant (HKLM\...\{45338B07-A236-4270-9A77-EBB4115517B5}) (Version: 5.000.818.5 - Microsoft Corporation)
Windows Live Sync (HKLM\...\{B10914FD-8812-47A4-85A1-50FCDE7F1F33}) (Version: 14.0.8117.416 - Microsoft Corporation)
Windows Live Upload Tool (HKLM\...\{205C6BDD-7B73-42DE-8505-9A093F35A238}) (Version: 14.0.8014.1029 - Microsoft Corporation)
Windows Live Writer (Version: 14.0.8117.0416 - Microsoft Corporation) Hidden
Windows Media Format 11 runtime (HKLM\...\Windows Media Format Runtime) (Version:  - )
Windows Media Player 11 (HKLM\...\Windows Media Player) (Version:  - )
Windows Presentation Foundation (Version: 3.0.6920.0 - Microsoft Corporation) Hidden
Windows Presentation Foundation Language Pack (ELL) (Version: 3.0.6920.0 - Microsoft Corporation) Hidden
Windows Workflow Foundation EL Language Pack (Version: 3.0.4203.2 - Microsoft Corporation) Hidden
WinRAR archiver (HKLM\...\WinRAR archiver) (Version:  - )
XML Paper Specification Shared Components Pack 1.0 (Version:  - Microsoft Corporation) Hidden
Yahoo! Install Manager (HKLM\...\YInstHelper) (Version:  - )
Ενημερωμένη έκδοση ασφαλείας για το Windows Media Player (KB2378111) (HKLM\...\KB2378111_WM9) (Version:  - Microsoft Corporation)
Ενημερωμένη έκδοση ασφαλείας για το Windows Media Player (KB2834904) (HKLM\...\KB2834904_WM11) (Version:  - Microsoft Corporation)
Ενημερωμένη έκδοση ασφαλείας για το Windows Media Player (KB2834904-v2) (HKLM\...\KB2834904-v2_WM11) (Version:  - Microsoft Corporation)
Ενημερωμένη έκδοση ασφαλείας για το Windows Media Player (KB975558) (HKLM\...\KB975558_WM8) (Version:  - Microsoft Corporation)
Ενημερωμένη έκδοση ασφαλείας για το Windows Media Player (KB978695) (HKLM\...\KB978695_WM9) (Version:  - Microsoft Corporation)
Ενημέρωση ασφαλείας για Microsoft Windows (KB2564958) (HKLM\...\KB2564958) (Version:  - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows Internet Explorer 7 (KB2183461) (HKLM\...\KB2183461-IE7) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows Internet Explorer 7 (KB2360131) (HKLM\...\KB2360131-IE7) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows Internet Explorer 7 (KB2416400) (HKLM\...\KB2416400-IE7) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows Internet Explorer 7 (KB2482017) (HKLM\...\KB2482017-IE7) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows Internet Explorer 7 (KB2544521) (HKLM\...\KB2544521-IE7) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows Internet Explorer 7 (KB2586448) (HKLM\...\KB2586448-IE7) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows Internet Explorer 7 (KB2936068) (HKLM\...\KB2936068-IE7) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows Internet Explorer 7 (KB2964358) (HKLM\...\KB2964358-IE7) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows Internet Explorer 7 (KB938127) (HKLM\...\KB938127-IE7) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows Internet Explorer 7 (KB942615) (HKLM\...\KB942615-IE7) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows Internet Explorer 7 (KB982381) (HKLM\...\KB982381-IE7) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2079403) (HKLM\...\KB2079403) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2115168) (HKLM\...\KB2115168) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2121546) (HKLM\...\KB2121546) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2160329) (HKLM\...\KB2160329) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2229593) (HKLM\...\KB2229593) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2259922) (HKLM\...\KB2259922) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2279986) (HKLM\...\KB2279986) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2286198) (HKLM\...\KB2286198) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2296011) (HKLM\...\KB2296011) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2296199) (HKLM\...\KB2296199) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2347290) (HKLM\...\KB2347290) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2360937) (HKLM\...\KB2360937) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2387149) (HKLM\...\KB2387149) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2393802) (HKLM\...\KB2393802) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2412687) (HKLM\...\KB2412687) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2419632) (HKLM\...\KB2419632) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2423089) (HKLM\...\KB2423089) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2436673) (HKLM\...\KB2436673) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2440591) (HKLM\...\KB2440591) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2443105) (HKLM\...\KB2443105) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2476490) (HKLM\...\KB2476490) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2476687) (HKLM\...\KB2476687) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2478960) (HKLM\...\KB2478960) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2478971) (HKLM\...\KB2478971) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2479628) (HKLM\...\KB2479628) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2479943) (HKLM\...\KB2479943) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2481109) (HKLM\...\KB2481109) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2483185) (HKLM\...\KB2483185) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2485376) (HKLM\...\KB2485376) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2485663) (HKLM\...\KB2485663) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2506212) (HKLM\...\KB2506212) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2507618) (HKLM\...\KB2507618) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2507938) (HKLM\...\KB2507938) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2508429) (HKLM\...\KB2508429) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2509553) (HKLM\...\KB2509553) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2510581) (HKLM\...\KB2510581) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2524375) (HKLM\...\KB2524375) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2535512) (HKLM\...\KB2535512) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2536276-v2) (HKLM\...\KB2536276-v2) (Version: 2 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2544893) (HKLM\...\KB2544893) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2544893-v2) (HKLM\...\KB2544893-v2) (Version: 2 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2562937) (HKLM\...\KB2562937) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2566454) (HKLM\...\KB2566454) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2567053) (HKLM\...\KB2567053) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2567680) (HKLM\...\KB2567680) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2570222) (HKLM\...\KB2570222) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2570947) (HKLM\...\KB2570947) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2584146) (HKLM\...\KB2584146) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2585542) (HKLM\...\KB2585542) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2592799) (HKLM\...\KB2592799) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2598479) (HKLM\...\KB2598479) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2603381) (HKLM\...\KB2603381) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2618451) (HKLM\...\KB2618451) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2619339) (HKLM\...\KB2619339) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2620712) (HKLM\...\KB2620712) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2624667) (HKLM\...\KB2624667) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2631813) (HKLM\...\KB2631813) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2633171) (HKLM\...\KB2633171) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2639417) (HKLM\...\KB2639417) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2646524) (HKLM\...\KB2646524) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2653956) (HKLM\...\KB2653956) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2655992) (HKLM\...\KB2655992) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2659262) (HKLM\...\KB2659262) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2661637) (HKLM\...\KB2661637) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2676562) (HKLM\...\KB2676562) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2685939) (HKLM\...\KB2685939) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2686509) (HKLM\...\KB2686509) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2691442) (HKLM\...\KB2691442) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2695962) (HKLM\...\KB2695962) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2698365) (HKLM\...\KB2698365) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2705219) (HKLM\...\KB2705219) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2707511) (HKLM\...\KB2707511) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2712808) (HKLM\...\KB2712808) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2718523) (HKLM\...\KB2718523) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2719985) (HKLM\...\KB2719985) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2723135) (HKLM\...\KB2723135) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2724197) (HKLM\...\KB2724197) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2727528) (HKLM\...\KB2727528) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2731847) (HKLM\...\KB2731847) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2753842-v2) (HKLM\...\KB2753842-v2) (Version: 2 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2757638) (HKLM\...\KB2757638) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2758857) (HKLM\...\KB2758857) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2761226) (HKLM\...\KB2761226) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2770660) (HKLM\...\KB2770660) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2778344) (HKLM\...\KB2778344) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2779030) (HKLM\...\KB2779030) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2780091) (HKLM\...\KB2780091) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2799494) (HKLM\...\KB2799494) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2802968) (HKLM\...\KB2802968) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2807986) (HKLM\...\KB2807986) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2808735) (HKLM\...\KB2808735) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2813170) (HKLM\...\KB2813170) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2813345) (HKLM\...\KB2813345) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2820197) (HKLM\...\KB2820197) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2820917) (HKLM\...\KB2820917) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2829361) (HKLM\...\KB2829361) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2834886) (HKLM\...\KB2834886) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2839229) (HKLM\...\KB2839229) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2845187) (HKLM\...\KB2845187) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2847311) (HKLM\...\KB2847311) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2849470) (HKLM\...\KB2849470) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2850851) (HKLM\...\KB2850851) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2850869) (HKLM\...\KB2850869) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2859537) (HKLM\...\KB2859537) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2862152) (HKLM\...\KB2862152) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2862330) (HKLM\...\KB2862330) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2862335) (HKLM\...\KB2862335) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2864063) (HKLM\...\KB2864063) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2868038) (HKLM\...\KB2868038) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2868626) (HKLM\...\KB2868626) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2876217) (HKLM\...\KB2876217) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2876315) (HKLM\...\KB2876315) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2876331) (HKLM\...\KB2876331) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2883150) (HKLM\...\KB2883150) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2892075) (HKLM\...\KB2892075) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2893294) (HKLM\...\KB2893294) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2893984) (HKLM\...\KB2893984) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2898715) (HKLM\...\KB2898715) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2900986) (HKLM\...\KB2900986) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2909212) (HKLM\...\KB2909212) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2914368) (HKLM\...\KB2914368) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2916036) (HKLM\...\KB2916036) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2922229) (HKLM\...\KB2922229) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2929961) (HKLM\...\KB2929961) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB2930275) (HKLM\...\KB2930275) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB923789) (HKLM\...\KB923789) (Version:  - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB975562) (HKLM\...\KB975562) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB978542) (HKLM\...\KB978542) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB979482) (HKLM\...\KB979482) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB979559) (HKLM\...\KB979559) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB979687) (HKLM\...\KB979687) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB980195) (HKLM\...\KB980195) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB980218) (HKLM\...\KB980218) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB980436) (HKLM\...\KB980436) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB981322) (HKLM\...\KB981322) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB981852) (HKLM\...\KB981852) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB981957) (HKLM\...\KB981957) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB981997) (HKLM\...\KB981997) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB982132) (HKLM\...\KB982132) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB982214) (HKLM\...\KB982214) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB982665) (HKLM\...\KB982665) (Version: 1 - Microsoft Corporation)
Ενημέρωση ασφαλείας για Windows XP (KB982802) (HKLM\...\KB982802) (Version: 1 - Microsoft Corporation)
Ενημέρωση για Windows Internet Explorer 7 (KB980182) (HKLM\...\KB980182-IE7) (Version: 1 - Microsoft Corporation)
Ενημέρωση για Windows XP (KB2141007) (HKLM\...\KB2141007) (Version: 1 - Microsoft Corporation)
Ενημέρωση για Windows XP (KB2345886) (HKLM\...\KB2345886) (Version: 1 - Microsoft Corporation)
Ενημέρωση για Windows XP (KB2467659) (HKLM\...\KB2467659) (Version: 1 - Microsoft Corporation)
Ενημέρωση για Windows XP (KB2541763) (HKLM\...\KB2541763) (Version: 1 - Microsoft Corporation)
Ενημέρωση για Windows XP (KB2616676-v2) (HKLM\...\KB2616676-v2) (Version: 2 - Microsoft Corporation)
Ενημέρωση για Windows XP (KB2641690) (HKLM\...\KB2641690) (Version: 1 - Microsoft Corporation)
Ενημέρωση για Windows XP (KB2661254-v2) (HKLM\...\KB2661254-v2) (Version: 2 - Microsoft Corporation)
Ενημέρωση για Windows XP (KB2718704) (HKLM\...\KB2718704) (Version: 1 - Microsoft Corporation)
Ενημέρωση για Windows XP (KB2736233) (HKLM\...\KB2736233) (Version: 1 - Microsoft Corporation)
Ενημέρωση για Windows XP (KB2749655) (HKLM\...\KB2749655) (Version: 1 - Microsoft Corporation)
Ενημέρωση για Windows XP (KB2863058) (HKLM\...\KB2863058) (Version: 1 - Microsoft Corporation)
Ενημέρωση για Windows XP (KB2904266) (HKLM\...\KB2904266) (Version: 1 - Microsoft Corporation)
Ενημέρωση για Windows XP (KB2934207) (HKLM\...\KB2934207) (Version: 1 - Microsoft Corporation)
Ενημέρωση για Windows XP (KB951978) (HKLM\...\KB951978) (Version: 1 - Microsoft Corporation)
Ενημέρωση για Windows XP (KB971029) (HKLM\...\KB971029) (Version: 1 - Microsoft Corporation)
Επείγουσα επιδιόρθωση για Windows XP (KB2158563) (HKLM\...\KB2158563) (Version: 1 - Microsoft Corporation)
Επείγουσα επιδιόρθωση για Windows XP (KB2443685) (HKLM\...\KB2443685) (Version: 1 - Microsoft Corporation)
Επείγουσα επιδιόρθωση για Windows XP (KB2570791) (HKLM\...\KB2570791) (Version: 1 - Microsoft Corporation)
Επείγουσα επιδιόρθωση για Windows XP (KB2633952) (HKLM\...\KB2633952) (Version: 1 - Microsoft Corporation)
Επείγουσα επιδιόρθωση για Windows XP (KB2756822) (HKLM\...\KB2756822) (Version: 1 - Microsoft Corporation)
Επείγουσα επιδιόρθωση για Windows XP (KB2779562) (HKLM\...\KB2779562) (Version: 1 - Microsoft Corporation)
Επείγουσα επιδιόρθωση για Windows XP (KB942288-v3) (HKLM\...\KB942288-v3) (Version: 3 - Microsoft Corporation)
Επείγουσα επιδιόρθωση για Windows XP (KB981793) (HKLM\...\KB981793) (Version: 1 - Microsoft Corporation)
Λογισμικό Intel® PROSet/Wireless (HKLM\...\ProInst) (Version: 10.1.1.3 - Intel Corporation)
Πακέτο ελληνικής γλώσσας του Microsoft .NET Framework 3.0 (HKLM\...\Microsoft .NET Framework 3.0 Greek Language Pack) (Version:  - Microsoft Corporation)
Πακέτο συμβατότητας για το 2007 Microsoft Office system (HKLM\...\{90120000-0020-0408-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)
 
==================== Custom CLSID (selected items): ==========================
 
(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)
 
CustomCLSID: HKU\S-1-5-21-823518204-1592454029-725345543-1004_Classes\CLSID\{05C3F9E2-1E76-439F-9E37-9020946A191A}\InprocServer32 -> C:\Program Files\Common Files\Logitech\LComMgr\LVMaEnum.dll (Logitech Inc.)
CustomCLSID: HKU\S-1-5-21-823518204-1592454029-725345543-1004_Classes\CLSID\{09303D01-B159-4F1B-A2B8-CA3117B8FA1B}\InprocServer32 -> C:\Program Files\Common Files\Logitech\LComMgr\LVMaEnum.dll (Logitech Inc.)
CustomCLSID: HKU\S-1-5-21-823518204-1592454029-725345543-1004_Classes\CLSID\{1FD1FE74-9E3C-4C1C-AEEB-AAB592AD770F}\localserver32 -> C:\Documents and Settings\user\Local Settings\Application Data\Facebook\Update\FacebookUpdate.exe (Facebook Inc.)
CustomCLSID: HKU\S-1-5-21-823518204-1592454029-725345543-1004_Classes\CLSID\{28B7AA99-C0F9-4C47-995E-8A8D729603A1}\localserver32 -> C:\Program Files\AutoCAD 2008\acad.exe (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-823518204-1592454029-725345543-1004_Classes\CLSID\{54B2BE72-FEC7-443D-BAE9-3E70E618A7D8}\InprocServer32 -> C:\Program Files\Common Files\Logitech\LComMgr\LVMaEnum.dll (Logitech Inc.)
CustomCLSID: HKU\S-1-5-21-823518204-1592454029-725345543-1004_Classes\CLSID\{5E71E4F3-E8C7-4906-9626-973E418762B6}\InprocServer32 -> C:\Documents and Settings\user\Local Settings\Application Data\Facebook\Update\1.2.205.0\goopdate.dll (Facebook Inc.)
CustomCLSID: HKU\S-1-5-21-823518204-1592454029-725345543-1004_Classes\CLSID\{6AB55F46-2523-4701-A912-B226F46252BA}\localserver32 -> C:\Program Files\AutoCAD 2008\acad.exe (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-823518204-1592454029-725345543-1004_Classes\CLSID\{73CA2532-42DE-449F-8C8A-229B8AAF3B68}\InprocServer32 -> C:\Program Files\Common Files\Logitech\LComMgr\LVMaEnum.dll (Logitech Inc.)
CustomCLSID: HKU\S-1-5-21-823518204-1592454029-725345543-1004_Classes\CLSID\{7AABBB95-79BE-4C0F-8024-EB6AF271231C}\localserver32 -> C:\Program Files\AutoCAD 2008\acad.exe (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-823518204-1592454029-725345543-1004_Classes\CLSID\{8B9F5BF4-0407-4BB2-9FED-4C0372DABD00}\localserver32 -> C:\Documents and Settings\user\Local Settings\Application Data\Facebook\Video\Skype\FacebookVideoCallingProxy.exe (Skype Limited)
CustomCLSID: HKU\S-1-5-21-823518204-1592454029-725345543-1004_Classes\CLSID\{949DB7D2-36F2-4CCA-8CA8-A3A6D4E5911C}\InprocServer32 -> C:\Program Files\Common Files\Logitech\LComMgr\LVMaEnum.dll (Logitech Inc.)
CustomCLSID: HKU\S-1-5-21-823518204-1592454029-725345543-1004_Classes\CLSID\{A50A1B09-943D-4A78-B08D-56072A602ABD}\InprocServer32 -> C:\Program Files\Common Files\Logitech\LComMgr\LVComCX.dll (Logitech Inc.)
CustomCLSID: HKU\S-1-5-21-823518204-1592454029-725345543-1004_Classes\CLSID\{C9448C44-BEFB-4941-8457-E5C4314D3D96}\localserver32 -> C:\Program Files\Common Files\Logitech\LComMgr\LVComSX.exe (Logitech Inc.)
CustomCLSID: HKU\S-1-5-21-823518204-1592454029-725345543-1004_Classes\CLSID\{CAF933C7-C65A-46D2-AA63-1FC84EB43954}\InprocServer32 -> C:\Program Files\Common Files\Logitech\LComMgr\LVMaEnum.dll (Logitech Inc.)
CustomCLSID: HKU\S-1-5-21-823518204-1592454029-725345543-1004_Classes\CLSID\{CBE9C57E-FFA9-4123-8354-AD360D6DD3CC}\InprocServer32 -> C:\Documents and Settings\user\Local Settings\Application Data\Facebook\Video\Skype\npFacebookVideoCalling.dll (Skype Limited)
CustomCLSID: HKU\S-1-5-21-823518204-1592454029-725345543-1004_Classes\CLSID\{CC9E9F9A-11A4-49DD-B468-782AFDE5607E}\InprocServer32 -> C:\Program Files\Common Files\Logitech\LComMgr\LVMaEnum.dll (Logitech Inc.)
CustomCLSID: HKU\S-1-5-21-823518204-1592454029-725345543-1004_Classes\CLSID\{CD89D352-5A13-49F8-9EB5-7E6D1FB0CD57}\localserver32 -> C:\Program Files\Common Files\Logitech\LComMgr\LVComSX.exe (Logitech Inc.)
CustomCLSID: HKU\S-1-5-21-823518204-1592454029-725345543-1004_Classes\CLSID\{DB20D0C0-4CEF-11D0-8B17-00AA00211961}\localserver32 -> C:\Program Files\Common Files\Logitech\LComMgr\LVComSX.exe (Logitech Inc.)
CustomCLSID: HKU\S-1-5-21-823518204-1592454029-725345543-1004_Classes\CLSID\{DB20D0C3-4CEF-11D0-8B17-00AA00211961}\localserver32 -> C:\Program Files\Common Files\Logitech\LComMgr\LVComSX.exe (Logitech Inc.)
CustomCLSID: HKU\S-1-5-21-823518204-1592454029-725345543-1004_Classes\CLSID\{E8ACF719-FFDE-4EE1-8923-48BDA8569FCC}\localserver32 -> C:\Program Files\Common Files\Logitech\LComMgr\LVComSX.exe (Logitech Inc.)
 
==================== Restore Points  =========================
 
26-08-2014 12:10:35 Σημείο ελέγχου συστήματος
31-08-2014 12:39:12 Σημείο ελέγχου συστήματος
03-09-2014 11:36:05 Σημείο ελέγχου συστήματος
04-09-2014 16:43:37 Σημείο ελέγχου συστήματος
04-09-2014 17:38:53 Software Distribution Service 3.0
06-09-2014 11:47:25 Installed Syberia
06-09-2014 12:43:30 Installed Syberia
06-09-2014 13:04:44 Removed Syberia
06-09-2014 13:13:05 Installed Syberia
06-09-2014 13:17:16 Removed Syberia
06-09-2014 21:44:27 Removed Media Go
06-09-2014 21:45:31 Removed Media Go Video Playback Engine 1.120.102.05010
06-09-2014 22:04:58 Removed Microsoft Download Manager
06-09-2014 23:07:45 Installed Syberia
06-09-2014 23:22:57 Removed Syberia
08-09-2014 10:49:43 Σημείο ελέγχου συστήματος
08-09-2014 14:23:37 Removed WinZip 18.5
09-09-2014 14:20:08 Software Distribution Service 3.0
11-09-2014 11:08:56 Σημείο ελέγχου συστήματος
12-09-2014 15:31:23 Software Distribution Service 3.0
15-09-2014 10:27:58 Σημείο ελέγχου συστήματος
16-09-2014 11:29:10 Σημείο ελέγχου συστήματος
18-09-2014 08:41:28 Σημείο ελέγχου συστήματος
19-09-2014 13:19:53 Σημείο ελέγχου συστήματος
20-09-2014 16:19:47 Σημείο ελέγχου συστήματος
21-09-2014 19:46:17 Σημείο ελέγχου συστήματος
24-09-2014 10:43:23 Σημείο ελέγχου συστήματος
27-09-2014 19:08:05 Σημείο ελέγχου συστήματος
01-10-2014 10:18:59 Σημείο ελέγχου συστήματος
05-10-2014 11:39:10 Σημείο ελέγχου συστήματος
06-10-2014 12:01:53 Σημείο ελέγχου συστήματος
08-10-2014 07:45:19 Σημείο ελέγχου συστήματος
08-10-2014 08:00:26 Το TuneUp Utilities 2014 καταργήθηκε
08-10-2014 08:01:22 Το TuneUp Utilities 2014 (en-GB) καταργήθηκε
08-10-2014 08:02:34 avast! antivirus system restore point
08-10-2014 08:13:40 Installed AVG 2015
08-10-2014 08:14:09 Installed AVG 2015
10-10-2014 10:41:58 Σημείο ελέγχου συστήματος
11-10-2014 21:09:47 Removed Internet Explorer Toolbar 4.6 by SweetPacks
11-10-2014 21:12:42 Removed Update Manager for SweetPacks 1.1
11-10-2014 21:59:25 Removed F-Secure PSC Prerequisites
 
==================== Hosts content: ==========================
 
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
 
2004-09-07 10:00 - 2004-09-07 10:00 - 00000944 ____A C:\WINDOWS\system32\Drivers\etc\hosts
127.0.0.1       localhost
 
==================== Scheduled Tasks (whitelisted) =============
 
 
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
 
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\AppleSoftwareUpdate.job => C:\Program Files\Apple Software Update\SoftwareUpdate.exe
Task: C:\WINDOWS\Tasks\FacebookUpdateTaskUserS-1-5-21-823518204-1592454029-725345543-1004Core.job => C:\Documents and Settings\user\Local Settings\Application Data\Facebook\Update\FacebookUpdate.exe
Task: C:\WINDOWS\Tasks\FacebookUpdateTaskUserS-1-5-21-823518204-1592454029-725345543-1004UA.job => C:\Documents and Settings\user\Local Settings\Application Data\Facebook\Update\FacebookUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GPUP.job => C:\Program Files\GetPrivate\gpup.exe
 
==================== Loaded Modules (whitelisted) =============
 
2006-04-14 13:04 - 2006-04-14 13:04 - 00876544 _____ () C:\Program Files\Intel\Wireless\Bin\LIBEAY32.dll
2006-04-14 13:04 - 2006-04-14 13:04 - 00053322 _____ () C:\Program Files\Intel\Wireless\Bin\IntStngs.dll
2006-04-14 13:04 - 2006-04-14 13:04 - 00208965 _____ () C:\Program Files\Intel\Wireless\Bin\IWMSPROV.DLL
2012-08-09 12:30 - 2011-04-11 08:26 - 00024064 _____ () C:\WINDOWS\system32\spd__l.dll
2012-08-09 12:03 - 2009-10-14 02:43 - 00022723 _____ () C:\WINDOWS\system32\sugw2l3.dll
2014-02-12 21:58 - 2014-02-12 21:58 - 00073544 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2014-02-12 21:58 - 2014-02-12 21:58 - 01044808 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2011-03-14 18:27 - 2011-03-14 18:27 - 00271712 _____ () C:\Documents and Settings\All Users\Application Data\DatacardService\HWDeviceService.exe
2012-12-20 22:54 - 2012-12-20 22:53 - 00655712 _____ () C:\Documents and Settings\All Users\Application Data\Sudani mDSL\OnlineUpdate\ouc.exe
2012-12-20 22:54 - 2012-12-20 22:53 - 00011362 _____ () C:\Documents and Settings\All Users\Application Data\Sudani mDSL\OnlineUpdate\mingwm10.dll
2012-12-20 22:54 - 2012-12-20 22:53 - 00043008 _____ () C:\Documents and Settings\All Users\Application Data\Sudani mDSL\OnlineUpdate\libgcc_s_dw2-1.dll
2012-12-20 22:54 - 2012-12-20 22:53 - 02415104 _____ () C:\Documents and Settings\All Users\Application Data\Sudani mDSL\OnlineUpdate\QtCore4.dll
2012-12-20 22:54 - 2012-12-20 22:53 - 01148416 _____ () C:\Documents and Settings\All Users\Application Data\Sudani mDSL\OnlineUpdate\QtNetwork4.dll
2012-12-20 22:54 - 2012-12-20 22:53 - 00843264 _____ () C:\Documents and Settings\All Users\Application Data\Sudani mDSL\OnlineUpdate\QueryStrategy.dll
2012-12-20 22:54 - 2012-12-20 22:53 - 00398336 _____ () C:\Documents and Settings\All Users\Application Data\Sudani mDSL\OnlineUpdate\QtXml4.dll
2008-01-17 13:51 - 2003-06-07 13:30 - 00057344 _____ () C:\Program Files\Launch Manager\PowerUtl.dll
2006-10-31 02:06 - 2006-10-31 02:06 - 00022040 _____ () C:\Program Files\Common Files\Logitech\LComMgr\LCMServerPS.dll
2006-11-28 19:43 - 2006-11-28 19:43 - 00754712 _____ () C:\Program Files\Acer\OrbiCam10\OrbiCam.exe
2006-11-28 13:24 - 2006-11-28 13:24 - 01058328 _____ () C:\Program Files\Acer\OrbiCam10\LAppRes.dll
2004-09-07 10:00 - 2008-04-14 19:29 - 00014336 _____ () C:\WINDOWS\system32\msdmo.dll
2006-01-17 11:46 - 2006-01-17 11:46 - 00053248 _____ () C:\Program Files\WIDCOMM\Bluetooth Software\btkeyind.dll
2006-03-10 12:49 - 2006-03-10 12:49 - 00970862 _____ () C:\Program Files\Intel\Wireless\Bin\acAuth.dll
2006-04-14 13:04 - 2006-04-14 13:04 - 00208965 _____ () C:\Program Files\Intel\Wireless\Bin\iWMSProv.dll
2006-04-14 13:04 - 2006-04-14 13:04 - 00876544 _____ () C:\Program Files\Intel\Wireless\Bin\Libeay32.dll
2014-09-25 14:34 - 2014-09-23 07:07 - 08577864 _____ () C:\Program Files\Google\Chrome\Application\37.0.2062.124\pdf.dll
2014-09-25 14:34 - 2014-09-23 07:07 - 00331592 _____ () C:\Program Files\Google\Chrome\Application\37.0.2062.124\ppGoogleNaClPluginChrome.dll
2014-09-25 14:34 - 2014-09-23 07:06 - 01660232 _____ () C:\Program Files\Google\Chrome\Application\37.0.2062.124\ffmpegsumo.dll
2014-09-25 14:34 - 2014-09-23 07:07 - 14891848 _____ () C:\Program Files\Google\Chrome\Application\37.0.2062.124\PepperFlash\pepflashplayer.dll
2014-09-08 14:21 - 2014-02-10 13:44 - 04592128 _____ () C:\Documents and Settings\user\Local Settings\Application Data\Google\Chrome\User Data\SwiftShader\3.2.6.45159\libglesv2.dll
2014-09-08 14:21 - 2014-02-10 13:44 - 00112128 _____ () C:\Documents and Settings\user\Local Settings\Application Data\Google\Chrome\User Data\SwiftShader\3.2.6.45159\libegl.dll
 
==================== Alternate Data Streams (whitelisted) =========
 
(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)
 
 
==================== Safe Mode (whitelisted) ===================
 
(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
 
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AVG Anti-Spyware Driver => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AVG Anti-Spyware Guard => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\AVG Anti-Spyware Driver => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\AVG Anti-Spyware Guard => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Wdf01000.sys => ""="Driver"
 
==================== EXE Association (whitelisted) =============
 
(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)
 
 
==================== MSCONFIG/TASK MANAGER disabled items =========
 
(Currently there is no automatic fix for this section.)
 
 
========================= Accounts: ==========================
 
Administrator (S-1-5-21-823518204-1592454029-725345543-500 - Administrator - Enabled)
ASPNET (S-1-5-21-823518204-1592454029-725345543-1005 - Limited - Enabled)
Guest (S-1-5-21-823518204-1592454029-725345543-501 - Limited - Disabled)
HelpAssistant (S-1-5-21-823518204-1592454029-725345543-1000 - Limited - Disabled)
SUPPORT_388945a0 (S-1-5-21-823518204-1592454029-725345543-1002 - Limited - Disabled)
user (S-1-5-21-823518204-1592454029-725345543-1004 - Administrator - Enabled) => %SystemDrive%\Documents and Settings\user
 
==================== Faulty Device Manager Devices =============
 
 
==================== Event log errors: =========================
 
Application errors:
==================
Error: (10/06/2014 01:54:05 PM) (Source: Google Update) (EventID: 20) (User: ACER)
Description: Network Request Error.
Error: 0x80040801. Http status code: 0.
Trying config: source=IE, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80040801. Http status code 0.
Trying config: source=, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80040801. Http status code 0.
Trying config: source=IE, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80040801. Http status code 0.
Trying config: source=, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80040801. Http s
 
Error: (10/01/2014 10:54:08 PM) (Source: Google Update) (EventID: 20) (User: ACER)
Description: Network Request Error.
Error: 0x80040801. Http status code: 0.
Trying config: source=IE, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80040801. Http status code 0.
Trying config: source=, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80040801. Http status code 0.
Trying config: source=IE, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80040801. Http status code 0.
Trying config: source=, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80040801. Http s
 
Error: (09/28/2014 02:13:43 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Κρεμασμένη εφαρμογή chrome.exe, έκδοση 37.0.2062.124, στοιχείο ελέγχου κρεμάσματος hungapp, έκδοση 0.0.0.0, διεύθυνση κρεμάσματος 0x00000000.
 
Error: (09/28/2014 02:13:41 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Κρεμασμένη εφαρμογή chrome.exe, έκδοση 37.0.2062.124, στοιχείο ελέγχου κρεμάσματος hungapp, έκδοση 0.0.0.0, διεύθυνση κρεμάσματος 0x00000000.
 
Error: (09/21/2014 00:49:32 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Ελαττωματική εφαρμογή TeamViewer.exe, έκδοση 9.0.32494.0, ελαττωματική λειτουργική μονάδα unknown, έκδοση 0.0.0.0, ελαττωματική διεύθυνση 0x05fd0cc8.
Επεξεργασία συμβάντος μέσου για [TeamViewer.exe!ws!]
 
Error: (09/20/2014 08:26:05 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Κρεμασμένη εφαρμογή WINWORD.EXE, έκδοση 11.0.8411.0, στοιχείο ελέγχου κρεμάσματος hungapp, έκδοση 0.0.0.0, διεύθυνση κρεμάσματος 0x00000000.
 
Error: (09/20/2014 07:59:07 PM) (Source: Google Update) (EventID: 20) (User: ACER)
Description: Network Request Error.
Error: 0x80072ee2. Http status code: 0.
Trying config: source=IE, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80072ee2. Http status code 0.
trying WinHTTP.
Send request returned 0x80072efd. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80072ee2. Http status code 0.
trying WinHTTP.
Send request returned 0x80072efd. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=IE, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80072ee2. Http status code 0.
trying WinHTTP.
Send request returned 0x80072efd. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80072ee2. Http s
 
Error: (09/19/2014 00:44:22 PM) (Source: MsiInstaller) (EventID: 11309) (User: ACER)
Description: Product: Google Update Helper -- Error 1309. Error reading from file: C:\Program Files\globalUpdate\Update\1.3.25.0\Google\Update\RequiredFile.txt.  System error 3.  Verify that the file exists and that you can access it.
 
Error: (09/19/2014 00:40:51 PM) (Source: MsiInstaller) (EventID: 11309) (User: ACER)
Description: Product: Google Update Helper -- Error 1309. Error reading from file: C:\Program Files\globalUpdate\Update\1.3.25.0\Google\Update\RequiredFile.txt.  System error 3.  Verify that the file exists and that you can access it.
 
Error: (09/19/2014 11:38:06 AM) (Source: MsiInstaller) (EventID: 11309) (User: ACER)
Description: Product: Google Update Helper -- Error 1309. Error reading from file: C:\Program Files\globalUpdate\Update\1.3.25.0\Google\Update\RequiredFile.txt.  System error 3.  Verify that the file exists and that you can access it.
 
 
System errors:
=============
Error: (10/12/2014 01:00:46 AM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Η υπηρεσία Διαχείριση εφαρμογών τερματίστηκε με το ακόλουθο σφάλμα: 
%%2
 
Error: (10/12/2014 01:00:46 AM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Η υπηρεσία Διαχείριση εφαρμογών τερματίστηκε με το ακόλουθο σφάλμα: 
%%2
 
Error: (10/12/2014 01:00:46 AM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Η υπηρεσία Διαχείριση εφαρμογών τερματίστηκε με το ακόλουθο σφάλμα: 
%%2
 
Error: (10/12/2014 01:00:46 AM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Η υπηρεσία Διαχείριση εφαρμογών τερματίστηκε με το ακόλουθο σφάλμα: 
%%2
 
Error: (10/12/2014 01:00:46 AM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Η υπηρεσία Διαχείριση εφαρμογών τερματίστηκε με το ακόλουθο σφάλμα: 
%%2
 
Error: (10/12/2014 01:00:46 AM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Η υπηρεσία Διαχείριση εφαρμογών τερματίστηκε με το ακόλουθο σφάλμα: 
%%2
 
Error: (10/12/2014 01:00:46 AM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Η υπηρεσία Διαχείριση εφαρμογών τερματίστηκε με το ακόλουθο σφάλμα: 
%%2
 
Error: (10/12/2014 01:00:46 AM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Η υπηρεσία Διαχείριση εφαρμογών τερματίστηκε με το ακόλουθο σφάλμα: 
%%2
 
Error: (10/12/2014 01:00:45 AM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Η υπηρεσία Διαχείριση εφαρμογών τερματίστηκε με το ακόλουθο σφάλμα: 
%%2
 
Error: (10/12/2014 01:00:45 AM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Η υπηρεσία Διαχείριση εφαρμογών τερματίστηκε με το ακόλουθο σφάλμα: 
%%2
 
 
Microsoft Office Sessions:
=========================
Error: (10/06/2014 01:54:05 PM) (Source: Google Update) (EventID: 20) (User: ACER)
Description: Network Request Error.
Error: 0x80040801. Http status code: 0.
Trying config: source=IE, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80040801. Http status code 0.
Trying config: source=, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80040801. Http status code 0.
Trying config: source=IE, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80040801. Http status code 0.
Trying config: source=, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80040801. Http s
 
Error: (10/01/2014 10:54:08 PM) (Source: Google Update) (EventID: 20) (User: ACER)
Description: Network Request Error.
Error: 0x80040801. Http status code: 0.
Trying config: source=IE, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80040801. Http status code 0.
Trying config: source=, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80040801. Http status code 0.
Trying config: source=IE, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying WinHTTP.
Send request returned 0x80040801. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80040801. Http status code 0.
Trying config: source=, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80040801. Http s
 
Error: (09/28/2014 02:13:43 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: chrome.exe37.0.2062.124hungapp0.0.0.000000000
 
Error: (09/28/2014 02:13:41 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: chrome.exe37.0.2062.124hungapp0.0.0.000000000
 
Error: (09/21/2014 00:49:32 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: TeamViewer.exe9.0.32494.0unknown0.0.0.005fd0cc8
 
Error: (09/20/2014 08:26:05 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: WINWORD.EXE11.0.8411.0hungapp0.0.0.000000000
 
Error: (09/20/2014 07:59:07 PM) (Source: Google Update) (EventID: 20) (User: ACER)
Description: Network Request Error.
Error: 0x80072ee2. Http status code: 0.
Trying config: source=IE, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80072ee2. Http status code 0.
trying WinHTTP.
Send request returned 0x80072efd. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80072ee2. Http status code 0.
trying WinHTTP.
Send request returned 0x80072efd. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=IE, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80072ee2. Http status code 0.
trying WinHTTP.
Send request returned 0x80072efd. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80072ee2. Http s
 
Error: (09/19/2014 00:44:22 PM) (Source: MsiInstaller) (EventID: 11309) (User: ACER)
Description: Product: Google Update Helper -- Error 1309. Error reading from file: C:\Program Files\globalUpdate\Update\1.3.25.0\Google\Update\RequiredFile.txt.  System error 3.  Verify that the file exists and that you can access it.(NULL)(NULL)(NULL)(NULL)
 
Error: (09/19/2014 00:40:51 PM) (Source: MsiInstaller) (EventID: 11309) (User: ACER)
Description: Product: Google Update Helper -- Error 1309. Error reading from file: C:\Program Files\globalUpdate\Update\1.3.25.0\Google\Update\RequiredFile.txt.  System error 3.  Verify that the file exists and that you can access it.(NULL)(NULL)(NULL)(NULL)
 
Error: (09/19/2014 11:38:06 AM) (Source: MsiInstaller) (EventID: 11309) (User: ACER)
Description: Product: Google Update Helper -- Error 1309. Error reading from file: C:\Program Files\globalUpdate\Update\1.3.25.0\Google\Update\RequiredFile.txt.  System error 3.  Verify that the file exists and that you can access it.(NULL)(NULL)(NULL)(NULL)
 
 
==================== Memory info =========================== 
 
Processor: Intel® Core™2 CPU T7200 @ 2.00GHz
Percentage of memory in use: 69%
Total physical RAM: 2046.04 MB
Available physical RAM: 634.23 MB
Total Pagefile: 3938.37 MB
Available Pagefile: 2446.91 MB
Total Virtual: 2047.88 MB
Available Virtual: 1931.04 MB
 
==================== Drives ================================
 
Drive c: () (Fixed) (Total:71.84 GB) (Free:32.28 GB) NTFS
Drive d: (ACERDATA) (Fixed) (Total:72.31 GB) (Free:71.79 GB) FAT32 ==>[Drive with boot components (Windows XP)]
 
==================== MBR & Partition Table ==================
 
========================================================
Disk: 0 (Size: 149.1 GB) (Disk ID: B8F0FFA4)
Partition 1: (Not Active) - (Size=4.9 GB) - (Type=12)
Partition 2: (Not Active) - (Size=71.8 GB) - (Type=OF Extended)
Partition 3: (Active) - (Size=72.3 GB) - (Type=0C)
 
==================== End Of Log ============================
 
 


#6 B-boy/StyLe/

B-boy/StyLe/

    Bleepin' Freestyler


  • Malware Response Team
  • 8,310 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Bulgaria
  • Local time:03:50 PM

Posted 12 October 2014 - 03:54 AM

Hello,

 

You still need to uninstall the following applications:

 

Free Zip 9.20
SweetIM Toolbar for Internet Explorer 3.1

 

Also please click Start Menu > All Programs > Accessories, right click on Command Prompt and select "Run as administrator".
Copy/paste the following text at the command prompt and press enter after each line:

 

rd /s /q "C:\Documents and Settings\user\Application Data\9788"

rd /s /q "C:\Documents and Settings\user\Application Data\8841"
 

 

The infection seems to be removed. Can you confirm that?

 

However if you don't mind, I want to make sure there is nothing lurking on the system so just in case I want you to go through these steps:

 

The most of them should take no more than 5 minutes each (but the time they take to complete can vary depending on the size of your hard and the speed of your computer).

 

 

STEP 1

 

 

Please download AdwCleaner by Xplode and save to your Desktop.

  • Double click on AdwCleaner.exe to run the tool.
    Vista/Windows 7/8 users right-click and select Run As Administrator.
  • Click on the Scan button.
  • AdwCleaner will begin to scan your computer.
  • After the scan has finished click on the Clean button.
  • Press OK when asked to close all programs and follow the onscreen prompts.
  • Press OK again to allow AdwCleaner to restart the computer and complete the removal process.
  • After rebooting, a logfile report (AdwCleaner[S0].txt) will open automatically.
  • Copy and paste the contents of that logfile in your next reply.
  • A copy of that logfile will also be saved in the C:\AdwCleaner folder.

 

 

STEP 2

 

 

thisisujrt.gif  Please download Junkware Removal Tool to your desktop.

  • Shut down your protection software now to avoid potential conflicts.
  • Run the tool by double-clicking it. If you are using Windows Vista, 7, or 8; instead of double-clicking, right-mouse click JRT.exe and select "Run as Administrator".
  • The tool will open and start scanning your system.
  • Please be patient as this can take a while to complete depending on your system's specifications.
  • On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
  • Post the contents of JRT.txt into your next message.

 

 

STEP 3

 

 

  • Please download RogueKillerX64.exe and save to the desktop.
  • Close all windows and browsers
  • Right-click the program and select 'Run as Administrator'
  • Wait for the prescan to complete and then press the Scan button.
  • When done press the Report button.
  • Please copy and past the results in your next reply.

 

 

STEP 4
 

 

Please download the latest version of TDSSKiller from here and save it to your Desktop.

  • Doubleclick on TDSSKiller.exe to run the application, then click on Change parameters.
     
  • Put a checkmark beside loaded modules.
    Sbf88.png
  • A reboot will be needed to apply the changes. Do it.
  • TDSSKiller will launch automatically after the reboot. Also your computer may seem very slow and unusable. This is normal. Give it enough time to load your background programs.
  • Then click on Change parameters in TDSSKiller.
  • Check all boxes then click OK.
     
  • Click the Start Scan button.
     
  • The scan should take no longer than 2 minutes.
  • If a suspicious object is detected, the default action will be Skip, click on Continue.
     
  • If malicious objects are found, they will show in the Scan results - Select action for found objects and offer three options.
    Ensure Cure (default) is selected, then click Continue > Reboot now to finish the cleaning process.

    Note: If Cure is not available, please choose Skip instead, do not choose Delete unless instructed.
  • A report will be created in your root directory, (usually C:\ folder) in the form of "TDSSKiller.[Version]_[Date]_[Time]_log.txt". Please copy and past the results at pastebin.com and post the link to the log in your next reply.

 

 

STEP 5

 

 

Please download Malwarebytes Anti-Malware to your desktop.
 

  • Double-click mbam-setup-2.0.2.1012.exe and follow the prompts to install the program.
  • At the end, be sure a checkmark is placed next to the following:
    • Launch Malwarebytes Anti-Malware
    • A 14 day trial of the Premium features is pre-selected. You may deselect this if you wish, and it will not diminish the scanning and removal capabilities of the program.
  • Click Finish.
  • On the Settings tab > Detection and Protection subtab, Detection Options, tick the box 'Scan for rootkits'.
  • Click on the Scan tab, then click on Scan Now >> . If an update is available, click the Update Now button.
  • A Threat Scan will begin.
  • With some infections, you may see this message box.
    • 'Could not load DDA driver'
  • Click 'Yes' to this message, to allow the driver to load after a restart.
  • Allow the computer to restart. Continue with the rest of these instructions.
  • When the scan is complete, click Apply Actions.
  • Wait for the prompt to restart the computer to appear, then click on Yes.
  • After the restart once you are back at your desktop, open MBAM once more.
  • Click on the History tab > Application Logs.
  • Double click on the scan log which shows the Date and time of the scan just performed.
  • Click 'Copy to Clipboard'
  • Paste the contents of the clipboard into your reply.

 

 

STEP 6

 

 

1.Please download HitmanPro.

  • For 32-bit Operating System - dEMD6.gif.
  • This is the mirror - dEMD6.gif
  • For 64-bit Operating System - dEMD6.gif
  • This is the mirror - dEMD6.gif

2.Launch the program by double clicking on the 5vo5F.jpg icon. (Windows Vista/7 users right click on the HitmanPro icon and select run as administrator).

Note: If the program won't run please then open the program while holding down the left CTRL key until the program is loaded.

3.Click on the next button. You must agree with the terms of EULA. (if asked)

4.Check the box beside "No, I only want to perform a one-time scan to check this computer".

5.Click on the next button.

6.The program will start to scan the computer. The scan will typically take no more than 2-3 minutes.

7.When the scan is done click on drop-down menu of the found entries (if any) and choose - Apply to all => Ignore <= IMPORTANT!!!
 
8.Click on the next button.

9.Click on the "Save Log" button.

10.Save that file to your desktop and post the content of that file in your next reply.
 
Note: if there isn't a dropdown menu when the scan is done then please don't delete anything and close HitmanPro

Navigate to C:\ProgramData\HitmanPro\Logs open the report and copy and paste it to your next reply.

 

 

 

STEP 7

 

 

Download Security Check by screen317 from here.

  • Save it to your Desktop.
  • Double click SecurityCheck.exe and follow the onscreen instructions inside of the black box.
  • A Notepad document should open automatically called checkup.txt; please post the contents of that document.

 

and then if there aren't any issues left I'll give you my final recommendations. :)

 

 

Regards,

Georgi


cXfZ4wS.png


#7 active_active

active_active
  • Topic Starter

  • Members
  • 17 posts
  • OFFLINE
  •  
  • Local time:03:50 PM

Posted 12 October 2014 - 12:13 PM

Good evening,

 

i faced some problems:

 

1) i can not found from the control panel  SweetIM Toolbar for Internet Explorer 3.1in order to uninstall it

 

2) i made the copy ppaste on the command prompt but it shows me the following message : the entry is not allowed

 

So i did not follow the nexts steps according to your guide. What i have to do now?

 

Also the AVG gave me today the attached messages, do you believe that i have to be disapointed?

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 
 
 
 
 
 
 
 
 

 

Attached Files



#8 B-boy/StyLe/

B-boy/StyLe/

    Bleepin' Freestyler


  • Malware Response Team
  • 8,310 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Bulgaria
  • Local time:03:50 PM

Posted 14 October 2014 - 02:57 AM

Hello,

 

Don't worry about the programs:

 

Free Zip 9.20
SweetIM Toolbar for Internet Explorer 3.1

 

They should be removed by adwcleaner and junkware removal tool. If not then we will remove them manually.

 

As for the Command prompt commands...well...we will delete the folders a bit later with a script.

 

C:\Documents and Settings\user\Application Data\9788

C:\Documents and Settings\user\Application Data\8841

 

Nothing to worry about the detections. The detected entries are in your System restore points so they are harmless until you decided to use an old and infected restore point to bring the system back to its previous state . :) We will purge them at the end of the cleaning process.

 

Please continue with the rest of the steps and post back the results.

 

 

Regards,

Georgi


Edited by B-boy/StyLe/, 15 October 2014 - 11:41 AM.
typo.

cXfZ4wS.png


#9 active_active

active_active
  • Topic Starter

  • Members
  • 17 posts
  • OFFLINE
  •  
  • Local time:03:50 PM

Posted 14 October 2014 - 05:31 AM

Hello from me also,

 

I have followed your instructions for the rest steps. The only problem i faced is that RogueKillerx64 is not running and it gave me the following message: 

C:\ Documents and Settings\user\Desktop\RogueKillerx64.exe is not a valid application Win32.

 

 

AdwCleaner

 

# AdwCleaner v4.000 - Report created 14/10/2014 at 11:54:05

# DB v2014-10-13.5

# Updated 12/10/2014 by Xplode

# Operating System : Microsoft Windows XP Service Pack 3 (32 bits)

# Username : user - ACER

# Running from : C:\Documents and Settings\user\Επιφάνεια εργασίας\AdwCleaner.exe

# Option : Clean

 

***** [ Services ] *****

 

 

***** [ Files / Folders ] *****

 

Folder Deleted : C:\Documents and Settings\All Users\Application Data\2308189059

Folder Deleted : C:\Documents and Settings\All Users\Application Data\Babylon

Folder Deleted : C:\Documents and Settings\user\Local Settings\Application Data\Babylon

Folder Deleted : C:\Documents and Settings\user\Application Data\Babylon

Folder Deleted : C:\Program Files\BetterSurf

Folder Deleted : C:\Program Files\Better-Surf

Folder Deleted : C:\Documents and Settings\user\AppData\LocalLow\DataMngr

Folder Deleted : C:\Documents and Settings\user\Local Settings\Application Data\DownTango

Folder Deleted : C:\Program Files\GetPrivate

Folder Deleted : C:\Documents and Settings\user\Application Data\GetPrivate

Folder Deleted : C:\Program Files\globalUpdate

Folder Deleted : C:\Documents and Settings\user\Local Settings\Application Data\globalUpdate

Folder Deleted : C:\Program Files\GreenTree Applications

Folder Deleted : C:\Documents and Settings\user\Local Settings\Application Data\iac

Folder Deleted : C:\Documents and Settings\All Users\Application Data\IePluginServices

Folder Deleted : C:\Documents and Settings\user\Local Settings\Application Data\iexplorer\Browsers Monitor

Folder Deleted : C:\Documents and Settings\user\Application Data\istartsurf

Folder Deleted : C:\Documents and Settings\user\Local Settings\Application Data\Linkey

Folder Deleted : C:\Program Files\onewebsearch

Folder Deleted : C:\Documents and Settings\user\Application Data\OpenCandy

Folder Deleted : C:\Documents and Settings\user\Τα έγγραφά μου\Optimizer Pro

Folder Deleted : C:\Documents and Settings\user\Application Data\pdfforge

Folder Deleted : C:\Program Files\Red Sky

Folder Deleted : C:\Documents and Settings\user\Local Settings\Application Data\SimplyTech

Folder Deleted : C:\Program Files\SweetIM

Folder Deleted : C:\Documents and Settings\user\Application Data\SwvUpdater

Folder Deleted : C:\Documents and Settings\All Users\Application Data\Trymedia

Folder Deleted : C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\q18k4vyi.default\WinampToolbarData

Folder Deleted : C:\Documents and Settings\All Users\Application Data\WindowsMangerProtect

Folder Deleted : C:\Documents and Settings\All Users\Application Data\AlawarWrapper

Folder Deleted : C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\q18k4vyi.default\Extensions\{0B38152B-1B20-484D-A11F-5E04A9B0661F}

Folder Deleted : C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\q18k4vyi.default\Extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1}

File Deleted : C:\END

File Deleted : C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\q18k4vyi.default\searchplugins\Web Search.xml

File Deleted : C:\Program Files\Mozilla Firefox\searchplugins\Web Search.xml

File Deleted : C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\q18k4vyi.default\searchplugins\winamp-search.xml

File Deleted : C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\q18k4vyi.default\user.js

File Deleted : C:\Documents and Settings\user\Local Settings\Application Data\Google\Chrome\User Data\Default\Local Storage\hxxp_www.superfish.com_0.localstorage

File Deleted : C:\Documents and Settings\user\Local Settings\Application Data\Google\Chrome\User Data\Default\Local Storage\hxxps_static.livelyrics00.live-lyrics.com_0.localstorage

File Deleted : C:\Documents and Settings\user\Local Settings\Application Data\Google\Chrome\User Data\Default\Local Storage\hxxps_static.livelyrics00.live-lyrics.com_0.localstorage-journal

 

***** [ Scheduled Tasks ] *****

 

 

***** [ Shortcuts ] *****

 

 

***** [ Registry ] *****

 

Key Deleted : HKLM\SOFTWARE\Classes\globalUpdate.OneClickCtrl.10

Key Deleted : HKLM\SOFTWARE\Classes\globalUpdate.OneClickProcessLauncherMachine

Key Deleted : HKLM\SOFTWARE\Classes\globalUpdate.OneClickProcessLauncherMachine.1.0

Key Deleted : HKLM\SOFTWARE\Classes\globalUpdate.Update3WebControl.4

Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoCreateAsync

Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoCreateAsync.1.0

Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreClass

Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreClass.1

Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreMachineClass

Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreMachineClass.1

Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CredentialDialogMachine

Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CredentialDialogMachine.1.0

Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachine

Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachine.1.0

Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachineFallback

Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachineFallback.1.0

Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassSvc

Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassSvc.1.0

Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.ProcessLauncher

Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.ProcessLauncher.1.0

Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3COMClassService

Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3COMClassService.1.0

Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachine

Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachine.1.0

Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachineFallback

Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachineFallback.1.0

Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebSvc

Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebSvc.1.0

Key Deleted : HKLM\SOFTWARE\Classes\IMsiDe1egate.Application.1

Key Deleted : HKLM\SOFTWARE\Classes\Prod.cap

Key Deleted : HKLM\SOFTWARE\Classes\protector_dll.protectorbho

Key Deleted : HKLM\SOFTWARE\Classes\protector_dll.protectorbho.1

Key Deleted : HKLM\SOFTWARE\Classes\sim-packages

Key Deleted : HKLM\SOFTWARE\Classes\Updater.AmiUpd

Key Deleted : HKLM\SOFTWARE\Classes\Updater.AmiUpd.1

Key Deleted : HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\IePluginServices

Key Deleted : HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\WindowsMangerProtect

Key Deleted : HKLM\SOFTWARE\Classes\CrossriderApp0063429.BHO

Key Deleted : HKLM\SOFTWARE\Classes\CrossriderApp0063429.BHO.1

Key Deleted : HKLM\SOFTWARE\Classes\CrossriderApp0063429.Sandbox

Key Deleted : HKLM\SOFTWARE\Classes\CrossriderApp0063429.Sandbox.1

Key Deleted : HKLM\SOFTWARE\Classes\CrossriderApp0064141.BHO

Key Deleted : HKLM\SOFTWARE\Classes\CrossriderApp0064141.BHO.1

Key Deleted : HKLM\SOFTWARE\Classes\CrossriderApp0064141.Sandbox

Key Deleted : HKLM\SOFTWARE\Classes\CrossriderApp0064141.Sandbox.1

Key Deleted : HKLM\SOFTWARE\Classes\AppID\{3278F5CF-48F3-4253-A6BB-004CE84AF492}

Key Deleted : HKLM\SOFTWARE\Classes\AppID\{577975B8-C40E-43E6-B0DE-4C6B44088B52}

Key Deleted : HKLM\SOFTWARE\Classes\AppID\{BDB69379-802F-4EAF-B541-F8DE92DD98DB}

Key Deleted : HKLM\SOFTWARE\Classes\AppID\{C007DADD-132A-624C-088E-59EE6CF0711F}

Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{02478D38-C3F9-4EFB-9B51-7695ECA05670}

Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{02A96331-0CA6-40E2-A87D-C224601985EB}

Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{147A976F-EEE1-4377-8EA7-4716E4CDD239}

Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}

Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3278F5CF-48F3-4253-A6BB-004CE84AF492}

Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3B5702BA-7F4C-4D1A-B026-1E9A01D43978}

Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}

Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{5645E0E7-FC12-43BF-A6E4-F9751942B298}

Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{577975B8-C40E-43E6-B0DE-4C6B44088B52}

Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{5A4E3A41-FA55-4BDA-AED7-CEBE6E7BCB52}

Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{5E89ACE9-E16B-499A-87B4-0DBF742404C1}

Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{67BD9EEB-AA06-4329-A940-D250019300C9}

Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{69F256DF-BA98-45E9-86EA-FC3CFECF9D30}

Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{6D4506CE-F855-4657-AA38-DB6B1F733982}

Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{6E3C6B04-08FE-43BC-8E50-F90285024DEA}

Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{6E87FC94-9866-49B9-8E93-5736D6DE3DD7}

Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{6E993643-8FBC-44FE-BC85-D318495C4D96}

Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{7E49F793-B3CD-4BF7-8419-B34B8BD30E61}

Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{8271B5D6-76D3-4ABF-AEB3-1721161C76BC}

Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{834469E3-CA2B-4F21-A5CA-4F6F4DBCDE87}

Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{8529FAA3-5BFD-43C1-AB35-B53C4B96C6E5}

Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{9AFB8248-617F-460D-9366-D71CDEDA3179}

Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{A057A204-BACC-4D26-9990-79A187E2698F}

Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{ADBC39BE-3D20-4333-8D99-E91EB1B62474}

Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{C7BF8F4B-7BC7-4F42-B944-3D28A3A86D8A}

Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{CFC47BB5-5FB5-4AD0-8427-6AA04334A3FC}

Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{E06CA7F5-BA34-4FF6-8D24-B1BDC594D91F}

Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{E0ADB535-D7B5-4D8B-B15D-578BDD20D76A}

Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{E1164984-B567-47BD-A7FF-240C2594404A}

Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{EF99BD32-C1FB-11D2-892F-0090271D4F88}

Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{F6421EE5-A5BE-4D31-81D5-C16B7BF48E4C}

Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{FD8E81D0-F5FE-4CB1-9AEA-1E163D2BAB78}

Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{22222222-2222-2222-2222-220622342229}

Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{6DDA37BA-0553-499A-AE0D-BEBA67204548}

Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{22222222-2222-2222-2222-220622412241}

Key Deleted : HKLM\SOFTWARE\Classes\Interface\{3408AC0D-510E-4808-8F7B-6B70B1F88534}

Key Deleted : HKLM\SOFTWARE\Classes\Interface\{462862BE-9A5C-49A5-9CBD-A649EAC63645}

Key Deleted : HKLM\SOFTWARE\Classes\Interface\{4E6354DE-9115-4AEE-BD21-C46C3E8A49DB}

Key Deleted : HKLM\SOFTWARE\Classes\Interface\{9EDC0C90-2B5B-4512-953E-35767BAD5C67}

Key Deleted : HKLM\SOFTWARE\Classes\Interface\{FC073BDA-C115-4A1D-9DF9-9B5C461482E5}

Key Deleted : HKLM\SOFTWARE\Classes\Interface\{55555555-5555-5555-5555-550655345529}

Key Deleted : HKLM\SOFTWARE\Classes\Interface\{55555555-5555-5555-5555-550655415541}

Key Deleted : HKLM\SOFTWARE\Classes\Interface\{66666666-6666-6666-6666-660666346629}

Key Deleted : HKLM\SOFTWARE\Classes\Interface\{66666666-6666-6666-6666-660666416641}

Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{EAB5257A-1FB3-474C-9B42-231F52622E72}

Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{44444444-4444-4444-4444-440644344429}

Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{44444444-4444-4444-4444-440644414441}

Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02478D38-C3F9-4EFB-9B51-7695ECA05670}

Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}

Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{00000000-6E41-4FD3-8538-502F5495E5FC}

Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{02478D38-C3F9-4EFB-9B51-7695ECA05670}

Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{04D2B915-19FF-41E9-994D-95DC898BEA43}

Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{0696F815-A3A9-490A-BB14-9EC3350B1276}

Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{25CEE8EC-5730-41BC-8B58-22DDC8AB8C20}

Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{2EECD738-5844-4A99-B4B6-146BF802613B}

Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C}

Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}

Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{4D9101D6-5BA0-4048-BDDE-7E2DF54C8C47}

Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{5D79F641-C168-40DF-A32F-BACEA7509E75}

Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{6E3C6B04-08FE-43BC-8E50-F90285024DEA}

Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{8271B5D6-76D3-4ABF-AEB3-1721161C76BC}

Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{98889811-442D-49DD-99D7-DC866BE87DBC}

Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{9CB65201-89C4-402C-BA80-02D8C59F9B1D}

Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{9CFACCB6-2F3F-4177-94EA-0D2B72D384C1}

Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{C98D5B61-B0EA-4D48-9839-1079D352D880}

Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{CB41FC95-F1B3-4797-8BB6-1012FF62ABBA}

Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{CCC7A320-B3CA-4199-B1A6-9F516DD69829}

Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D4027C7F-154A-4066-A1AD-4243D8127440}

Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{E327B07A-0E11-4FD4-BEF2-B2C5605B59C6}

Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EBF2BA02-9094-4C5A-858B-BB198F3D8DE2}

Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EEE6C35B-6118-11DC-9C72-001320C79847}

Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EEE6C35C-6118-11DC-9C72-001320C79847}

Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EEE6C35D-6118-11DC-9C72-001320C79847}

Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EF99BD32-C1FB-11D2-892F-0090271D4F88}

Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F20DE5E0-2A6E-4C54-985F-1CF59551CE39}

Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{FE063DB1-4EC0-403E-8DD8-394C54984B2C}

Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{FE063DB9-4EC0-403E-8DD8-394C54984B2C}

Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{02478D38-C3F9-4EFB-9B51-7695ECA05670}

Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{2EECD738-5844-4A99-B4B6-146BF802613B}

Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C}

Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{4D9101D6-5BA0-4048-BDDE-7E2DF54C8C47}

Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{54739D49-AC03-4C57-9264-C5195596B3A1}

Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{5D79F641-C168-40DF-A32F-BACEA7509E75}

Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{6E3C6B04-08FE-43BC-8E50-F90285024DEA}

Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{8271B5D6-76D3-4ABF-AEB3-1721161C76BC}

Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{98889811-442D-49DD-99D7-DC866BE87DBC}

Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{C98D5B61-B0EA-4D48-9839-1079D352D880}

Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{CB41FC95-F1B3-4797-8BB6-1012FF62ABBA}

Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{E327B07A-0E11-4FD4-BEF2-B2C5605B59C6}

Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{EEE6C35B-6118-11DC-9C72-001320C79847}

Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{EEE6C35C-6118-11DC-9C72-001320C79847}

Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{EF99BD32-C1FB-11D2-892F-0090271D4F88}

Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{F20DE5E0-2A6E-4C54-985F-1CF59551CE39}

Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{02478D38-C3F9-4EFB-9B51-7695ECA05670}

Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{5645E0E7-FC12-43BF-A6E4-F9751942B298}

Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{C7BF8F4B-7BC7-4F42-B944-3D28A3A86D8A}

Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{EF99BD32-C1FB-11D2-892F-0090271D4F88}

Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5645E0E7-FC12-43BF-A6E4-F9751942B298}

Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5E89ACE9-E16B-499A-87B4-0DBF742404C1}

Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C7BF8F4B-7BC7-4F42-B944-3D28A3A86D8A}

Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{CFD485F0-96BD-47CD-BB6D-CD7DDA95F102}

Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{CCC7A320-B3CA-4199-B1A6-9F516DD69829}

Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{EEE7E0A3-AE64-4DC8-84D1-F5D7BAF2DB0C}

Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{CCC7A320-B3CA-4199-B1A6-9F516DD69829}

Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{EEE7E0A3-AE64-4DC8-84D1-F5D7BAF2DB0C}

Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{EF99BD32-C1FB-11D2-892F-0090271D4F88}]

Value Deleted : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{EF99BD32-C1FB-11D2-892F-0090271D4F88}]

Value Deleted : HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List [C:\Program Files\TeamViewer\Version9\TeamViewer_Service.exe]

Key Deleted : HKCU\Software\1ClickDownload

Key Deleted : HKCU\Software\APN PIP

Key Deleted : HKCU\Software\Crossrider

Key Deleted : HKCU\Software\GlobalUpdate

Key Deleted : HKCU\Software\ilivid

Key Deleted : HKCU\Software\IM

Key Deleted : HKCU\Software\ImInstaller

Key Deleted : HKCU\Software\InstallCore

Key Deleted : HKCU\Software\InstalledBrowserExtensions

Key Deleted : HKCU\Software\Linkey

Key Deleted : HKCU\Software\Optimizer Pro

Key Deleted : HKCU\Software\ProtectedSearch

Key Deleted : HKCU\Software\SavePass 1.1

Key Deleted : HKCU\Software\Softonic

Key Deleted : HKCU\Software\SupHpUISoft

Key Deleted : HKCU\Software\SweetIM

Key Deleted : HKCU\Software\YahooPartnerToolbar

Key Deleted : HKCU\Software\AppDataLow\{1146AC44-2F03-4431-B4FD-889BC837521F}

Key Deleted : HKCU\Software\AppDataLow\Software\simplytech

Key Deleted : HKLM\SOFTWARE\{3A7D3E19-1B79-4E4E-BD96-5467DA2C4EF0}

Key Deleted : HKLM\SOFTWARE\{6791A2F3-FC80-475C-A002-C014AF797E9C}

Key Deleted : HKLM\SOFTWARE\AskTBar

Key Deleted : HKLM\SOFTWARE\Babylon

Key Deleted : HKLM\SOFTWARE\BetterSurf

Key Deleted : HKLM\SOFTWARE\GlobalUpdate

Key Deleted : HKLM\SOFTWARE\InstalledBrowserExtensions

Key Deleted : HKLM\SOFTWARE\istartsurfSoftware

Key Deleted : HKLM\SOFTWARE\PIP

Key Deleted : HKLM\SOFTWARE\SavePass 1.1

Key Deleted : HKLM\SOFTWARE\SmdmF

Key Deleted : HKLM\SOFTWARE\SupTab

Key Deleted : HKLM\SOFTWARE\supWindowsMangerProtect

Key Deleted : HKLM\SOFTWARE\supWPM

Key Deleted : HKLM\SOFTWARE\SweetIM

Key Deleted : HKLM\SOFTWARE\Trymedia Systems

Key Deleted : HKLM\SOFTWARE\Vittalia

Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\07D5290CDBDAE4242926B8E6CA650501

Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\08E33F7B61DEFF24BB9673ED7D467636

Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0E3D8A5B48622A445A7DF73FEFF32C3F

Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\34EDDB1BFB3A2D448845F3EFD0F15A43

Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\4318DF19719275242801CBE292063A4C

Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\46A5861A389ADB844AF89E31BC9DF0A1

Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\4CCCAC049F34D0540AAC13011398BEDB

Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\697E782CF574CC34CBB9566440BA12BC

Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6AE27A8613CF7EA4782F2886F67295E5

Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\86A901BA5265452499DCBF719C378EE3

Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\88ABD1CD5C40EC84789A7F6EF86DAC5E

Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A6C53B0F76C44004A8F36716213017DB

Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B59F2D8189784CC46A4597F2842480B0

Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CCF399FCD6D2D3F46BF02A1378654FC9

Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D149C1355C98DE24E82CEFBD996FE06A

Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F754C503375A13344B22388E18DFE87E

Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\789034A89BAC50E4782F0A7BDBF75632

Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\A97CEC23332751B47BA4B95BAA50C9D0

 

***** [ Browsers ] *****

 

-\\ Internet Explorer v7.0.6000.21376

 

Setting Restored : HKCU\Software\Microsoft\Internet Explorer\Search [Start Page]

Setting Restored : HKCU\Software\Microsoft\Internet Explorer\Search [Start Default_Page_URL]

Setting Restored : HKCU\Software\Microsoft\Internet Explorer\Search [Default_Search_URL]

Setting Restored : HKCU\Software\Microsoft\Internet Explorer\Search [Search Bar]

Setting Restored : HKCU\Software\Microsoft\Internet Explorer\Search [Search Page]

Setting Restored : HKCU\Software\Microsoft\Internet Explorer\SearchUrl [(Default)]

Setting Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchUrl [(Default)]

 

-\\ Mozilla Firefox v

 

[q18k4vyi.default] - Line Deleted : user_pref("browser.search.defaultenginename", "Web Search");

[q18k4vyi.default] - Line Deleted : user_pref("browser.search.defaulturl", "hxxp://slirsredirect.search.aol.com/slirs_hxxp/sredir?sredir=2685&invocationType=tb50ffwinampie7&query=");

[q18k4vyi.default] - Line Deleted : user_pref("oldKeyword", "hxxp://slirsredirect.search.aol.com/slirs_hxxp/sredir?sredir=2685&invocationType=tb50ffwinampab&query=");

[q18k4vyi.default] - Line Deleted : user_pref("winamp_toolbar.buttons.layout", "skins_btn_wa;plugins_btn_wa;shout_btn_wa;video_btn_wa;aim_go_away_default_btn;aol_bg_5r;wa_aol_bg_5r;");

[q18k4vyi.default] - Line Deleted : user_pref("winamp_toolbar.firsttime.showwindow", false);

[q18k4vyi.default] - Line Deleted : user_pref("winamp_toolbar.install.lastTbVersion", "5.6.11.2");

[q18k4vyi.default] - Line Deleted : user_pref("winamp_toolbar.metrics.activestampdate", "14");

[q18k4vyi.default] - Line Deleted : user_pref("winamp_toolbar.metrics.activestampmonth", "1");

[q18k4vyi.default] - Line Deleted : user_pref("winamp_toolbar.metrics.activestampyear", "2010");

[q18k4vyi.default] - Line Deleted : user_pref("winamp_toolbar.metrics.originalDate", "9");

[q18k4vyi.default] - Line Deleted : user_pref("winamp_toolbar.metrics.originalHours", "9");

[q18k4vyi.default] - Line Deleted : user_pref("winamp_toolbar.metrics.originalMinutes", "23");

[q18k4vyi.default] - Line Deleted : user_pref("winamp_toolbar.metrics.originalMonth", "9");

[q18k4vyi.default] - Line Deleted : user_pref("winamp_toolbar.metrics.originalSeconds", "10");

[q18k4vyi.default] - Line Deleted : user_pref("winamp_toolbar.metrics.originalYear", "2009");

[q18k4vyi.default] - Line Deleted : user_pref("winamp_toolbar.search.populateoncomplete", false);

[q18k4vyi.default] - Line Deleted : user_pref("winamp_toolbar.search.searchtype", "web");

[q18k4vyi.default] - Line Deleted : user_pref("winamp_toolbar.strbundle.msg", "Winamp Toolbar");

[q18k4vyi.default] - Line Deleted : user_pref("winamp_toolbar.surf.date", "38");

[q18k4vyi.default] - Line Deleted : user_pref("winamp_toolbar.surf.lastDate", "9");

[q18k4vyi.default] - Line Deleted : user_pref("winamp_toolbar.surf.lastMonth", "8");

[q18k4vyi.default] - Line Deleted : user_pref("winamp_toolbar.surf.lastYear", "2009");

[q18k4vyi.default] - Line Deleted : user_pref("winamp_toolbar.surf.mURL", "");

[q18k4vyi.default] - Line Deleted : user_pref("winamp_toolbar.surf.mURLh", "0");

[q18k4vyi.default] - Line Deleted : user_pref("winamp_toolbar.surf.mURLw", "0");

[q18k4vyi.default] - Line Deleted : user_pref("winamp_toolbar.surf.mURLx", "0");

[q18k4vyi.default] - Line Deleted : user_pref("winamp_toolbar.surf.mURLy", "0");

[q18k4vyi.default] - Line Deleted : user_pref("winamp_toolbar.surf.milestone", "-1");

[q18k4vyi.default] - Line Deleted : user_pref("winamp_toolbar.surf.month", "59");

[q18k4vyi.default] - Line Deleted : user_pref("winamp_toolbar.surf.prevMonth", "98");

[q18k4vyi.default] - Line Deleted : user_pref("winamp_toolbar.surf.total", "2271");

[q18k4vyi.default] - Line Deleted : user_pref("winamp_toolbar.surf.week", "59");

[q18k4vyi.default] - Line Deleted : user_pref("winamp_toolbar.surf.year", "1172");

[q18k4vyi.default] - Line Deleted : user_pref("winamp_toolbar.upgrade.showwindow", false);

[q18k4vyi.default] - Line Deleted : user_pref("winamp_toolbar.winamp.appversion", "1");

[q18k4vyi.default] - Line Deleted : user_pref("winamp_toolbar.winamp.artist", "");

[q18k4vyi.default] - Line Deleted : user_pref("winamp_toolbar.winamp.title", "-999999");

[q18k4vyi.default] - Line Deleted : user_pref("winamp_toolbar.winamp.tracklength", "-999999");

[q18k4vyi.default] - Line Deleted : user_pref("winamp_toolbar.winamp.tracktime", "-999999");

[q18k4vyi.default] - Line Deleted : user_pref("winamp_toolbar.winamp.volume", "255");

[q18k4vyi.default] - Line Deleted : user_pref("browser.search.defaultengine", "Web Search");

[q18k4vyi.default] - Line Deleted : user_pref("browser.search.order.1", "Web Search");

 

-\\ Google Chrome v37.0.2062.124

 

Deleted [Search Provider] : hxxp://en.softonic.com/s/{searchTerms}

 

*************************

 

AdwCleaner[R0].txt - [27464 octets] - [14/10/2014 11:50:05]

AdwCleaner[S0].txt - [27501 octets] - [14/10/2014 11:54:05]

 

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [27562 octets] ##########

 
 
JRT
 

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.3.2 (10.09.2014:1)
OS: Microsoft Windows XP x86
Ran by user on ’¨  14/10/2014 at 12:04:34,20
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
 
 
 
 
~~~ Services
 
 
 
~~~ Registry Values
 
 
 
~~~ Registry Keys
 
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{A057A204-BACC-4D26-9990-79A187E26990}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{11111111-1111-1111-1111-110611341129}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{11111111-1111-1111-1111-110611411141}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{11111111-1111-1111-1111-110611341129}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{11111111-1111-1111-1111-110611411141}
 
 
 
~~~ Files
 
Successfully deleted: [File] "C:\WINDOWS\launcher.exe"
Successfully deleted [File] C:\Documents and Settings\All Users\Microsoft\DRM\awhA.tmp [TDL4 Trace]
 
 
 
~~~ Folders
 
Successfully deleted: [Folder] "C:\Documents and Settings\All Users\application data\ammyy"
 
 
 
 
 
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on ’¨  14/10/2014 at 12:08:07,59
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
 
TDSSKILLER
 
 
MBAM
 

Malwarebytes Anti-Malware
www.malwarebytes.org
 
Scan Date: 14/10/2014
Scan Time: 12:41:05 μμ
Logfile: mbm.txt
Administrator: Yes
 
Version: 2.00.2.1012
Malware Database: v2014.10.14.07
Rootkit Database: v2014.10.11.01
License: Free
Malware Protection: Disabled
Malicious Website Protection: Disabled
Self-protection: Disabled
 
OS: Windows XP Service Pack 3
CPU: x86
File System: NTFS
User: user
 
Scan Type: Threat Scan
Result: Completed
Objects Scanned: 302985
Time Elapsed: 20 min, 46 sec
 
Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Enabled
Heuristics: Enabled
PUP: Enabled
PUM: Enabled
 
Processes: 0
(No malicious items detected)
 
Modules: 0
(No malicious items detected)
 
Registry Keys: 8
PUP.Optional.Agent, HKLM\SOFTWARE\CLASSES\CLSID\{34BE6615-ADA0-46D1-9457-ABE77C82B0AD}, Quarantined, [4432d83bacd03ff7f7189604ca38639d], 
PUP.Optional.MindSpark.A, HKU\S-1-5-21-823518204-1592454029-725345543-1004-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\SETTINGS\{9B9DCAE3-BE34-424C-8D73-75E305A9E091}, Quarantined, [de98a96abdbf0e28a88ff4a9ff03cc34], 
PUP.Optional.MindSpark.A, HKU\S-1-5-21-823518204-1592454029-725345543-1004-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{9B9DCAE3-BE34-424C-8D73-75E305A9E091}, Quarantined, [de98a96abdbf0e28a88ff4a9ff03cc34], 
PUP.Optional.MindSpark.A, HKU\S-1-5-21-823518204-1592454029-725345543-1004-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\SETTINGS\{DC9051C2-8F55-479A-97A4-747980D9047F}, Quarantined, [8beb868d9edef83efa3efaa3ba488779], 
PUP.Optional.MindSpark.A, HKU\S-1-5-21-823518204-1592454029-725345543-1004-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{DC9051C2-8F55-479A-97A4-747980D9047F}, Quarantined, [8beb868d9edef83efa3efaa3ba488779], 
PUP.Optional.PlusHD.A, HKLM\SOFTWARE\HD-V2.1, Quarantined, [97df090aafcddf576159f03d12f14fb1], 
PUP.Optional.InstallBrain.A, HKU\S-1-5-18-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\WNLT, Quarantined, [2b4bd3405b2186b00a08076370940cf4], 
PUP.Optional.PlusHD.A, HKU\S-1-5-21-823518204-1592454029-725345543-1004-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\HD-V2.1, Quarantined, [d4a265aeed8fb87e3386cd604fb4df21], 
 
Registry Values: 3
PUP.Optional.CertifiedToolBar.A, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHURI|(Default), http://search.certified-toolbar.com?si=41460&bs=true&tid=2937&q=%s, Quarantined, [7ff75bb8bbc1a6905c00de4d54af29d7]
Trojan.Agent, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\WINLOGON|Taskman, C:\Documents and Settings\user\csrss.exe, Quarantined, [fb7b2ae9dca0b6806f0c567c50b3fb05]
PUP.Optional.InstallBrain.A, HKU\S-1-5-18-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\WNLT|URL, Quarantined, [2b4bd3405b2186b00a08076370940cf4], 
 
Registry Data: 1
PUP.Optional.SearchCertifiedTB.A, HKU\S-1-5-21-823518204-1592454029-725345543-1004-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHURI|(Default), http://search.certified-toolbar.com?si=41460&bs=true&tid=2937&q=%s, Good: (www.google.com), Bad: (http://search.certified-toolbar.com?si=41460&bs=true&tid=2937&q=%s),Replaced,[41350211fb81999df8ce7f9f31d439c7]
 
Folders: 4
PUP.Optional.OffersWizard.A, C:\Program Files\Common Files\Config, Quarantined, [78fec84bf9831026c31432f3ed1613ed], 
PUP.Optional.CrossRider.A, C:\Documents and Settings\user\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\bkjbflodeemohgdgjgkabkpgeddeoiid, Quarantined, [0d693bd85329bb7b0c2cbb50af5450b0], 
PUP.Optional.CrossRider.A, C:\Documents and Settings\user\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\bkjbflodeemohgdgjgkabkpgeddeoiid\0.1_0, Quarantined, [0d693bd85329bb7b0c2cbb50af5450b0], 
PUP.Optional.CrossRider.A, C:\Documents and Settings\user\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\bkjbflodeemohgdgjgkabkpgeddeoiid\0.1_0\_metadata, Quarantined, [0d693bd85329bb7b0c2cbb50af5450b0], 
 
Files: 13
Rootkit.Agent, C:\WINDOWS\system32\drivers\str.sys, Delete-on-Reboot, [6c44ab7bc0d5a983ee9dcb76939f078d], 
PUP.Optional.SweetIM, C:\WINDOWS\Installer\e0a7e.msi, Quarantined, [91e5a0730577f244083a2122c342e41c], 
PUP.Optional.SweetIM, C:\WINDOWS\Installer\e0a84.msi, Quarantined, [641230e30874092db58dae95af56ca36], 
PUP.Optional.OffersWizard.A, C:\Program Files\Common Files\Config\ver.xml, Quarantined, [78fec84bf9831026c31432f3ed1613ed], 
PUP.Optional.OffersWizard.A, C:\Program Files\Common Files\Config\data.xml, Quarantined, [78fec84bf9831026c31432f3ed1613ed], 
PUP.Optional.SelectNGo.A, C:\Documents and Settings\user\Local Settings\Application Data\Google\Chrome\User Data\Default\Local Storage\http_static.select-n-go00.select-n-go.com_0.localstorage, Delete-on-Reboot, [1066a96af4881125b3eb35fc43c00bf5], 
PUP.Optional.SelectNGo.A, C:\Documents and Settings\user\Local Settings\Application Data\Google\Chrome\User Data\Default\Local Storage\http_static.select-n-go00.select-n-go.com_0.localstorage-journal, Delete-on-Reboot, [0f67878ced8f0531148a929f8d76e11f], 
PUP.Optional.CrossRider.A, C:\Documents and Settings\user\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\bkjbflodeemohgdgjgkabkpgeddeoiid\0.1_0\extension.css, Quarantined, [0d693bd85329bb7b0c2cbb50af5450b0], 
PUP.Optional.CrossRider.A, C:\Documents and Settings\user\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\bkjbflodeemohgdgjgkabkpgeddeoiid\0.1_0\icon-128.png, Quarantined, [0d693bd85329bb7b0c2cbb50af5450b0], 
PUP.Optional.CrossRider.A, C:\Documents and Settings\user\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\bkjbflodeemohgdgjgkabkpgeddeoiid\0.1_0\icon-16.png, Quarantined, [0d693bd85329bb7b0c2cbb50af5450b0], 
PUP.Optional.CrossRider.A, C:\Documents and Settings\user\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\bkjbflodeemohgdgjgkabkpgeddeoiid\0.1_0\icon-48.png, Quarantined, [0d693bd85329bb7b0c2cbb50af5450b0], 
PUP.Optional.CrossRider.A, C:\Documents and Settings\user\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\bkjbflodeemohgdgjgkabkpgeddeoiid\0.1_0\manifest.json, Quarantined, [0d693bd85329bb7b0c2cbb50af5450b0], 
PUP.Optional.CrossRider.A, C:\Documents and Settings\user\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\bkjbflodeemohgdgjgkabkpgeddeoiid\0.1_0\_metadata\verified_contents.json, Quarantined, [0d693bd85329bb7b0c2cbb50af5450b0], 
 
Physical Sectors: 0
(No malicious items detected)
 
 
(end)
 
 
HITMAN PRO
 

HitmanPro 3.7.9.225
www.hitmanpro.com
 
   Computer name . . . . : ACER
   Windows . . . . . . . : 5.1.3.2600.X86/2
   User name . . . . . . : ACER\user
   License . . . . . . . : Free
 
   Scan date . . . . . . : 2014-10-14 13:14:40
   Scan mode . . . . . . : Normal
   Scan duration . . . . : 3m 47s
   Disk access mode  . . : Direct disk access (SRB)
   Cloud . . . . . . . . : Internet
   Reboot  . . . . . . . : No
 
   Threats . . . . . . . : 2
   Traces  . . . . . . . : 21
 
   Objects scanned . . . : 834.962
   Files scanned . . . . : 20.998
   Remnants scanned  . . : 157.878 files / 656.086 keys
 
Malware _____________________________________________________________________
 
   C:\System Volume Information\_restore{F4A83156-8EBB-4B35-AE7F-3FBE6E6B99D1}\RP564\A0179348.dll
      Size . . . . . . . : 175.632 bytes
      Age  . . . . . . . : 0.1 days (2014-10-14 11:54:13)
      Entropy  . . . . . : 6.2
      SHA-256  . . . . . : 2BC0001BA19C6CD1148C76DB9C47A0DDC197DD976F6E5A6B01EDDB0403E28ECC
      Product  . . . . . : Linkey
      Publisher  . . . . : Aztec Media Inc
      Description  . . . : Linkey
      Version  . . . . . : 1.0.0.517
      Copyright  . . . . : Copyright (c) 2013 Aztec Media Inc
      RSA Key Size . . . : 2048
      LanguageID . . . . : 1033
      Authenticode . . . : Valid
    > Kaspersky  . . . . : not-a-virus:WebToolbar.Win64.SearchSuite.e
      Fuzzy  . . . . . . : 95.0
      Forensic Cluster
         -7.8s C:\AdwCleaner\AdwCleaner[S0].txt
         -7.8s C:\AdwCleaner\Quarantine\C\
         -7.8s C:\AdwCleaner\Quarantine\C\Documents and Settings\All Users\
         -7.8s C:\AdwCleaner\Quarantine\C\Documents and Settings\All Users\Application Data\
         -7.8s C:\AdwCleaner\Quarantine\C\Documents and Settings\
         -7.8s C:\AdwCleaner\Quarantine\Quarantine.txt
         -7.8s C:\AdwCleaner\Quarantine\C\Documents and Settings\All Users\Application Data\2308189059\
         -7.4s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Local Settings\
         -7.4s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\
         -7.4s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Local Settings\Application Data\
         -7.3s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Local Settings\Application Data\Babylon\
         -7.3s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Local Settings\Application Data\Babylon\Setup\
         -7.1s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Application Data\
         -7.1s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Application Data\Babylon\
         -6.8s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\AppData\LocalLow\
         -6.8s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\AppData\LocalLow\DataMngr\
         -6.8s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\AppData\
         -6.6s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Local Settings\Application Data\DownTango\
         -6.5s C:\System Volume Information\_restore{F4A83156-8EBB-4B35-AE7F-3FBE6E6B99D1}\RP564\A0179334.pid
         -6.4s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Local Settings\Application Data\DownTango\userplugins\
         -6.3s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Local Settings\Application Data\DownTango\userplugins\internal\
         -6.3s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Local Settings\Application Data\DownTango\userplugins\hooks\
         -6.3s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Local Settings\Application Data\DownTango\userplugins\hoster\
         -6.3s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Local Settings\Application Data\DownTango\userplugins\crypter\
         -6.2s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Local Settings\Application Data\DownTango\userplugins\container\
         -6.2s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Local Settings\Application Data\DownTango\userplugins\accounts\
         -6.2s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Local Settings\Application Data\DownTango\tmp\container_file\3\
         -6.2s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Local Settings\Application Data\DownTango\userplugins\captcha\
         -6.2s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Local Settings\Application Data\DownTango\tmp\
         -6.2s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Local Settings\Application Data\DownTango\tmp\container_file\
         -6.2s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Local Settings\Application Data\DownTango\tmp\container_file\3\36\
         -6.1s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Local Settings\Application Data\DownTango\Logs\
         -5.5s C:\AdwCleaner\Quarantine\C\Program Files\
         -5.5s C:\AdwCleaner\Quarantine\C\Program Files\GetPrivate\
         -5.4s C:\System Volume Information\_restore{F4A83156-8EBB-4B35-AE7F-3FBE6E6B99D1}\RP564\A0179335.dll
         -5.3s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Application Data\GetPrivate\
         -5.3s C:\System Volume Information\_restore{F4A83156-8EBB-4B35-AE7F-3FBE6E6B99D1}\RP564\A0179336.dll
         -5.1s C:\AdwCleaner\Quarantine\C\Program Files\globalUpdate\
         -5.1s C:\System Volume Information\_restore{F4A83156-8EBB-4B35-AE7F-3FBE6E6B99D1}\RP564\A0179337.exe
         -5.1s C:\AdwCleaner\Quarantine\C\Program Files\globalUpdate\Update\
         -5.1s C:\System Volume Information\_restore{F4A83156-8EBB-4B35-AE7F-3FBE6E6B99D1}\RP564\A0179338.exe
         -5.1s C:\AdwCleaner\Quarantine\C\Program Files\globalUpdate\Update\1.3.25.0\
         -4.9s C:\System Volume Information\_restore{F4A83156-8EBB-4B35-AE7F-3FBE6E6B99D1}\RP564\A0179339.exe
         -4.9s C:\System Volume Information\_restore{F4A83156-8EBB-4B35-AE7F-3FBE6E6B99D1}\RP564\A0179340.exe
         -4.8s C:\System Volume Information\_restore{F4A83156-8EBB-4B35-AE7F-3FBE6E6B99D1}\RP564\A0179341.msi
         -4.8s C:\System Volume Information\_restore{F4A83156-8EBB-4B35-AE7F-3FBE6E6B99D1}\RP564\A0179342.exe
         -4.7s C:\System Volume Information\_restore{F4A83156-8EBB-4B35-AE7F-3FBE6E6B99D1}\RP564\A0179343.dll
         -4.5s C:\System Volume Information\_restore{F4A83156-8EBB-4B35-AE7F-3FBE6E6B99D1}\RP564\A0179344.dll
         -4.5s C:\System Volume Information\_restore{F4A83156-8EBB-4B35-AE7F-3FBE6E6B99D1}\RP564\A0179345.dll
         -4.4s C:\System Volume Information\_restore{F4A83156-8EBB-4B35-AE7F-3FBE6E6B99D1}\RP564\A0179346.dll
         -3.7s C:\AdwCleaner\Quarantine\C\Program Files\GreenTree Applications\YTD Video Downloader\plugins\
         -3.7s C:\AdwCleaner\Quarantine\C\Program Files\GreenTree Applications\
         -3.7s C:\AdwCleaner\Quarantine\C\Program Files\GreenTree Applications\YTD Video Downloader\plugins\video_output\.svn\
         -3.7s C:\AdwCleaner\Quarantine\C\Program Files\GreenTree Applications\YTD Video Downloader\plugins\video_output\
         -3.7s C:\AdwCleaner\Quarantine\C\Program Files\GreenTree Applications\YTD Video Downloader\
         -3.7s C:\AdwCleaner\Quarantine\C\Program Files\GreenTree Applications\YTD Video Downloader\plugins\video_output\.svn\text-base\
         -3.6s C:\AdwCleaner\Quarantine\C\Program Files\GreenTree Applications\YTD Video Downloader\plugins\video_output\.svn\prop-base\
         -3.5s C:\AdwCleaner\Quarantine\C\Program Files\GreenTree Applications\YTD Video Downloader\plugins\video_filter\.svn\
         -3.5s C:\AdwCleaner\Quarantine\C\Program Files\GreenTree Applications\YTD Video Downloader\plugins\video_filter\
         -3.5s C:\AdwCleaner\Quarantine\C\Program Files\GreenTree Applications\YTD Video Downloader\plugins\video_filter\.svn\text-base\
         -3.5s C:\AdwCleaner\Quarantine\C\Program Files\GreenTree Applications\YTD Video Downloader\plugins\codec\
         -3.5s C:\AdwCleaner\Quarantine\C\Program Files\GreenTree Applications\YTD Video Downloader\plugins\video_filter\.svn\prop-base\
         -3.5s C:\AdwCleaner\Quarantine\C\Program Files\GreenTree Applications\YTD Video Downloader\plugins\codec\.svn\
         -3.4s C:\AdwCleaner\Quarantine\C\Program Files\GreenTree Applications\YTD Video Downloader\plugins\audio_output\.svn\
         -3.4s C:\AdwCleaner\Quarantine\C\Program Files\GreenTree Applications\YTD Video Downloader\plugins\codec\.svn\text-base\
         -3.4s C:\AdwCleaner\Quarantine\C\Program Files\GreenTree Applications\YTD Video Downloader\plugins\codec\.svn\prop-base\
         -3.4s C:\AdwCleaner\Quarantine\C\Program Files\GreenTree Applications\YTD Video Downloader\plugins\audio_output\
         -3.4s C:\AdwCleaner\Quarantine\C\Program Files\GreenTree Applications\YTD Video Downloader\plugins\audio_output\.svn\text-base\
         -3.4s C:\AdwCleaner\Quarantine\C\Program Files\GreenTree Applications\YTD Video Downloader\plugins\audio_output\.svn\prop-base\
         -3.3s C:\AdwCleaner\Quarantine\C\Program Files\GreenTree Applications\YTD Video Downloader\plugins\audio_mixer\
         -3.3s C:\AdwCleaner\Quarantine\C\Program Files\GreenTree Applications\YTD Video Downloader\plugins\audio_mixer\.svn\
         -3.3s C:\AdwCleaner\Quarantine\C\Program Files\GreenTree Applications\YTD Video Downloader\plugins\audio_mixer\.svn\text-base\
         -3.3s C:\AdwCleaner\Quarantine\C\Program Files\GreenTree Applications\YTD Video Downloader\plugins\audio_mixer\.svn\prop-base\
         -3.3s C:\AdwCleaner\Quarantine\C\Program Files\GreenTree Applications\YTD Video Downloader\plugins\audio_filter\.svn\
         -3.3s C:\AdwCleaner\Quarantine\C\Program Files\GreenTree Applications\YTD Video Downloader\plugins\audio_filter\
         -3.3s C:\AdwCleaner\Quarantine\C\Program Files\GreenTree Applications\YTD Video Downloader\plugins\audio_filter\.svn\text-base\
         -3.2s C:\AdwCleaner\Quarantine\C\Program Files\GreenTree Applications\YTD Video Downloader\plugins\audio_filter\.svn\prop-base\
         -3.2s C:\AdwCleaner\Quarantine\C\Program Files\GreenTree Applications\YTD Video Downloader\plugins\access\
         -3.2s C:\AdwCleaner\Quarantine\C\Program Files\GreenTree Applications\YTD Video Downloader\plugins\access\.svn\
         -3.1s C:\AdwCleaner\Quarantine\C\Program Files\GreenTree Applications\YTD Video Downloader\plugins\access\.svn\text-base\
         -3.1s C:\AdwCleaner\Quarantine\C\Program Files\GreenTree Applications\YTD Video Downloader\plugins\access\.svn\prop-base\
         -0.6s C:\AdwCleaner\Quarantine\C\Documents and Settings\All Users\Application Data\IePluginServices\
         -0.6s C:\AdwCleaner\Quarantine\C\Documents and Settings\All Users\Application Data\IePluginServices\update\
         -0.5s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Application Data\istartsurf\
         -0.4s C:\System Volume Information\_restore{F4A83156-8EBB-4B35-AE7F-3FBE6E6B99D1}\RP564\A0179347.exe
         -0.3s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Application Data\istartsurf\log\
         -0.3s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Application Data\istartsurf\images\
         -0.2s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Application Data\istartsurf\images\code\
          0.0s C:\System Volume Information\_restore{F4A83156-8EBB-4B35-AE7F-3FBE6E6B99D1}\RP564\A0179348.dll
          0.0s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Local Settings\Application Data\Linkey\
          0.0s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Local Settings\Application Data\Linkey\IEExtension\
          0.1s C:\System Volume Information\_restore{F4A83156-8EBB-4B35-AE7F-3FBE6E6B99D1}\RP564\A0179349.exe
          0.1s C:\AdwCleaner\Quarantine\C\Program Files\onewebsearch\
          0.1s C:\AdwCleaner\Quarantine\C\Program Files\onewebsearch\EasyLink\
          0.1s C:\System Volume Information\_restore{F4A83156-8EBB-4B35-AE7F-3FBE6E6B99D1}\RP564\A0179350.ico
          0.2s C:\System Volume Information\_restore{F4A83156-8EBB-4B35-AE7F-3FBE6E6B99D1}\RP564\A0179351.exe
          0.4s C:\System Volume Information\_restore{F4A83156-8EBB-4B35-AE7F-3FBE6E6B99D1}\RP564\A0179352.exe
          0.4s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Application Data\OpenCandy\819BE2BE4BD842839345994689FDEC7B\
          0.4s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Application Data\OpenCandy\
          3.1s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Application Data\OpenCandy\70732FCC9D304A86B139945177A86CE5\
          3.1s C:\System Volume Information\_restore{F4A83156-8EBB-4B35-AE7F-3FBE6E6B99D1}\RP564\A0179353.exe
          7.2s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Τα έγγραφά μου\
          7.2s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Τα έγγραφά μου\Optimizer Pro\
          7.2s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Application Data\pdfforge\
          7.3s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Application Data\pdfforge\Images2PDF\
          7.5s C:\AdwCleaner\Quarantine\C\Program Files\Red Sky\
          7.5s C:\AdwCleaner\Quarantine\C\Program Files\Red Sky\DownTango\
          7.5s C:\System Volume Information\_restore{F4A83156-8EBB-4B35-AE7F-3FBE6E6B99D1}\RP564\A0179354.dll
          7.6s C:\System Volume Information\_restore{F4A83156-8EBB-4B35-AE7F-3FBE6E6B99D1}\RP564\A0179355.dll
          7.6s C:\System Volume Information\_restore{F4A83156-8EBB-4B35-AE7F-3FBE6E6B99D1}\RP564\A0179356.dll
          7.7s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Local Settings\Application Data\SimplyTech\
          7.7s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Local Settings\Application Data\SimplyTech\Toolbar\
          7.8s C:\System Volume Information\_restore{F4A83156-8EBB-4B35-AE7F-3FBE6E6B99D1}\RP564\A0179357.ini
          7.9s C:\AdwCleaner\Quarantine\C\Program Files\SweetIM\Messenger\
          7.9s C:\AdwCleaner\Quarantine\C\Program Files\SweetIM\
          8.3s C:\System Volume Information\_restore{F4A83156-8EBB-4B35-AE7F-3FBE6E6B99D1}\RP564\A0179358.dll
          8.3s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Application Data\SwvUpdater\
          8.4s C:\System Volume Information\_restore{F4A83156-8EBB-4B35-AE7F-3FBE6E6B99D1}\RP564\A0179359.cfg
          8.5s C:\AdwCleaner\Quarantine\C\Documents and Settings\All Users\Application Data\Trymedia\
          8.5s C:\AdwCleaner\Quarantine\C\Documents and Settings\All Users\Application Data\Trymedia\data\
          8.6s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\
          8.6s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\q18k4vyi.default\
          8.6s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Application Data\Mozilla\Firefox\
          8.6s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Application Data\Mozilla\
          8.6s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\q18k4vyi.default\WinampToolbarData\
          8.7s C:\System Volume Information\_restore{F4A83156-8EBB-4B35-AE7F-3FBE6E6B99D1}\RP564\A0179360.ini
          8.7s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\q18k4vyi.default\WinampToolbarData\install\
          8.8s C:\AdwCleaner\Quarantine\C\Documents and Settings\All Users\Application Data\WindowsMangerProtect\
          8.8s C:\AdwCleaner\Quarantine\C\Documents and Settings\All Users\Application Data\WindowsMangerProtect\log\
          8.9s C:\AdwCleaner\Quarantine\C\Documents and Settings\All Users\Application Data\AlawarWrapper\
          8.9s C:\AdwCleaner\Quarantine\C\Documents and Settings\All Users\Application Data\AlawarWrapper\cache\
          9.2s C:\AdwCleaner\Quarantine\C\Documents and Settings\All Users\Application Data\AlawarWrapper\cache\www.alawar.com\
          9.2s C:\AdwCleaner\Quarantine\C\Documents and Settings\All Users\Application Data\AlawarWrapper\cache\www.alawar.com\images\
          9.2s C:\AdwCleaner\Quarantine\C\Documents and Settings\All Users\Application Data\AlawarWrapper\cache\www.alawar.com\wrapper\
          9.2s C:\AdwCleaner\Quarantine\C\Documents and Settings\All Users\Application Data\AlawarWrapper\cache\www.alawar.com\images\games\
          9.2s C:\AdwCleaner\Quarantine\C\Documents and Settings\All Users\Application Data\AlawarWrapper\cache\www.alawar.com\images\games\virtual-farm\
          9.2s C:\AdwCleaner\Quarantine\C\Documents and Settings\All Users\Application Data\AlawarWrapper\cache\www.alawar.com\images\games\tropical-farm\
          9.2s C:\AdwCleaner\Quarantine\C\Documents and Settings\All Users\Application Data\AlawarWrapper\cache\www.alawar.com\images\games\the-treasures-of-montezuma-2\
          9.3s C:\AdwCleaner\Quarantine\C\Documents and Settings\All Users\Application Data\AlawarWrapper\cache\www.alawar.com\images\games\magic-encyclopedia-moonlight\
          9.3s C:\AdwCleaner\Quarantine\C\Documents and Settings\All Users\Application Data\AlawarWrapper\cache\www.alawar.com\images\games\island-realms\
          9.3s C:\AdwCleaner\Quarantine\C\Documents and Settings\All Users\Application Data\AlawarWrapper\cache\www.alawar.com\images\games\farm-frenzy-pizza-party\
          9.3s C:\AdwCleaner\Quarantine\C\Documents and Settings\All Users\Application Data\AlawarWrapper\cache\www.alawar.com\images\games\farm-frenzy-3\
          9.3s C:\AdwCleaner\Quarantine\C\Documents and Settings\All Users\Application Data\AlawarWrapper\cache\www.alawar.com\images\games\farm-frenzy-2\
          9.3s C:\AdwCleaner\Quarantine\C\Documents and Settings\All Users\Application Data\AlawarWrapper\cache\www.alawar.com\images\games\dream-farm\
          9.4s C:\AdwCleaner\Quarantine\C\Documents and Settings\All Users\Application Data\AlawarWrapper\cache\www.alawar.com\images\games\alabama-smith-in-the-quest-of-fate\
          9.8s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\q18k4vyi.default\Extensions\
          9.8s C:\System Volume Information\_restore{F4A83156-8EBB-4B35-AE7F-3FBE6E6B99D1}\RP564\A0179361.manifest
          9.8s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\q18k4vyi.default\Extensions\{0B38152B-1B20-484D-A11F-5E04A9B0661F}\
         10.0s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\q18k4vyi.default\Extensions\{0B38152B-1B20-484D-A11F-5E04A9B0661F}\META-INF\
         10.1s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\q18k4vyi.default\Extensions\{0B38152B-1B20-484D-A11F-5E04A9B0661F}\components\
         10.1s C:\System Volume Information\_restore{F4A83156-8EBB-4B35-AE7F-3FBE6E6B99D1}\RP564\A0179362.dll
         10.2s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\q18k4vyi.default\Extensions\{0B38152B-1B20-484D-A11F-5E04A9B0661F}\chrome\
         10.4s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\q18k4vyi.default\Extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1}\
         10.4s C:\System Volume Information\_restore{F4A83156-8EBB-4B35-AE7F-3FBE6E6B99D1}\RP564\A0179363.manifest
         10.4s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\q18k4vyi.default\Extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1}\META-INF\
         10.4s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\q18k4vyi.default\Extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1}\defaults\
         10.5s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\q18k4vyi.default\Extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1}\components\
         10.5s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\q18k4vyi.default\Extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1}\defaults\preferences\
         10.6s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\q18k4vyi.default\Extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1}\chrome\
         10.6s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\q18k4vyi.default\Extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1}\cache\
         10.9s C:\AdwCleaner\Quarantine\C\Program Files\Mozilla Firefox\searchplugins\
         10.9s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\q18k4vyi.default\searchplugins\
         10.9s C:\AdwCleaner\Quarantine\C\Program Files\Mozilla Firefox\
         10.9s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Local Settings\Application Data\Google\
         11.0s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Local Settings\Application Data\Google\Chrome\
         11.0s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Local Settings\Application Data\Google\Chrome\User Data\Default\Local Storage\
         11.0s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Local Settings\Application Data\Google\Chrome\User Data\
         11.0s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Local Settings\Application Data\Google\Chrome\User Data\Default\
         11.5s C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\q18k4vyi.default\prefs.js
         12.6s C:\AdwCleaner\Backup\C\Documents and Settings\user\Application Data\Mozilla\Firefox\
         12.6s C:\AdwCleaner\Backup\C\
         12.6s C:\AdwCleaner\Backup\C\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\q18k4vyi.default\
         12.6s C:\AdwCleaner\Backup\
         12.6s C:\AdwCleaner\Backup\C\Documents and Settings\
         12.6s C:\AdwCleaner\Backup\C\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\
         12.6s C:\AdwCleaner\Backup\C\Documents and Settings\user\Application Data\
         12.6s C:\AdwCleaner\Backup\C\Documents and Settings\user\
         12.6s C:\AdwCleaner\Backup\C\Documents and Settings\user\Application Data\Mozilla\
         15.5s C:\WINDOWS\Temp\Perflib_Perfdata_14e4.dat
         446.9s C:\Documents and Settings\user\Application Data\Microsoft\Office\Recent\AdwCleaner[S0].LNK
         446.9s C:\Documents and Settings\user\Application Data\Microsoft\Office\Recent\AdwCleaner.LNK
 
   C:\System Volume Information\_restore{F4A83156-8EBB-4B35-AE7F-3FBE6E6B99D1}\RP564\A0179353.exe
      Size . . . . . . . : 8.655.608 bytes
      Age  . . . . . . . : 0.1 days (2014-10-14 11:54:16)
      Entropy  . . . . . : 8.0
      SHA-256  . . . . . : 5B8C73A402DDD2F6BBDDDCC1F0D1E7C25D839278F79FD9B539D3472C6D0D985B
      Product  . . . . . : SettingsManager
      Publisher  . . . . : Aztec Media Inc
      Description  . . . : Settings Manager Install
      Version  . . . . . : 5.0.0.13898
      RSA Key Size . . . : 2048
      LanguageID . . . . : 0
      Authenticode . . . : Valid
    > Kaspersky  . . . . : not-a-virus:WebToolbar.Win64.SearchSuite.e
      Fuzzy  . . . . . . : 98.0
      Forensic Cluster
         -10.9s C:\AdwCleaner\AdwCleaner[S0].txt
         -10.9s C:\AdwCleaner\Quarantine\C\
         -10.9s C:\AdwCleaner\Quarantine\C\Documents and Settings\All Users\
         -10.9s C:\AdwCleaner\Quarantine\C\Documents and Settings\All Users\Application Data\
         -10.9s C:\AdwCleaner\Quarantine\C\Documents and Settings\
         -10.9s C:\AdwCleaner\Quarantine\Quarantine.txt
         -10.9s C:\AdwCleaner\Quarantine\C\Documents and Settings\All Users\Application Data\2308189059\
         -10.5s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Local Settings\
         -10.5s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\
         -10.5s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Local Settings\Application Data\
         -10.5s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Local Settings\Application Data\Babylon\
         -10.4s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Local Settings\Application Data\Babylon\Setup\
         -10.2s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Application Data\
         -10.2s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Application Data\Babylon\
         -9.9s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\AppData\LocalLow\
         -9.9s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\AppData\LocalLow\DataMngr\
         -9.9s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\AppData\
         -9.7s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Local Settings\Application Data\DownTango\
         -9.6s C:\System Volume Information\_restore{F4A83156-8EBB-4B35-AE7F-3FBE6E6B99D1}\RP564\A0179334.pid
         -9.5s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Local Settings\Application Data\DownTango\userplugins\
         -9.5s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Local Settings\Application Data\DownTango\userplugins\internal\
         -9.4s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Local Settings\Application Data\DownTango\userplugins\hooks\
         -9.4s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Local Settings\Application Data\DownTango\userplugins\hoster\
         -9.4s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Local Settings\Application Data\DownTango\userplugins\crypter\
         -9.3s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Local Settings\Application Data\DownTango\userplugins\container\
         -9.3s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Local Settings\Application Data\DownTango\userplugins\accounts\
         -9.3s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Local Settings\Application Data\DownTango\tmp\container_file\3\
         -9.3s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Local Settings\Application Data\DownTango\userplugins\captcha\
         -9.3s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Local Settings\Application Data\DownTango\tmp\
         -9.3s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Local Settings\Application Data\DownTango\tmp\container_file\
         -9.3s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Local Settings\Application Data\DownTango\tmp\container_file\3\36\
         -9.3s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Local Settings\Application Data\DownTango\Logs\
         -8.6s C:\AdwCleaner\Quarantine\C\Program Files\
         -8.6s C:\AdwCleaner\Quarantine\C\Program Files\GetPrivate\
         -8.5s C:\System Volume Information\_restore{F4A83156-8EBB-4B35-AE7F-3FBE6E6B99D1}\RP564\A0179335.dll
         -8.4s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Application Data\GetPrivate\
         -8.4s C:\System Volume Information\_restore{F4A83156-8EBB-4B35-AE7F-3FBE6E6B99D1}\RP564\A0179336.dll
         -8.3s C:\AdwCleaner\Quarantine\C\Program Files\globalUpdate\
         -8.2s C:\System Volume Information\_restore{F4A83156-8EBB-4B35-AE7F-3FBE6E6B99D1}\RP564\A0179337.exe
         -8.2s C:\AdwCleaner\Quarantine\C\Program Files\globalUpdate\Update\
         -8.2s C:\System Volume Information\_restore{F4A83156-8EBB-4B35-AE7F-3FBE6E6B99D1}\RP564\A0179338.exe
         -8.2s C:\AdwCleaner\Quarantine\C\Program Files\globalUpdate\Update\1.3.25.0\
         -8.0s C:\System Volume Information\_restore{F4A83156-8EBB-4B35-AE7F-3FBE6E6B99D1}\RP564\A0179339.exe
         -8.0s C:\System Volume Information\_restore{F4A83156-8EBB-4B35-AE7F-3FBE6E6B99D1}\RP564\A0179340.exe
         -7.9s C:\System Volume Information\_restore{F4A83156-8EBB-4B35-AE7F-3FBE6E6B99D1}\RP564\A0179341.msi
         -7.9s C:\System Volume Information\_restore{F4A83156-8EBB-4B35-AE7F-3FBE6E6B99D1}\RP564\A0179342.exe
         -7.8s C:\System Volume Information\_restore{F4A83156-8EBB-4B35-AE7F-3FBE6E6B99D1}\RP564\A0179343.dll
         -7.6s C:\System Volume Information\_restore{F4A83156-8EBB-4B35-AE7F-3FBE6E6B99D1}\RP564\A0179344.dll
         -7.6s C:\System Volume Information\_restore{F4A83156-8EBB-4B35-AE7F-3FBE6E6B99D1}\RP564\A0179345.dll
         -7.5s C:\System Volume Information\_restore{F4A83156-8EBB-4B35-AE7F-3FBE6E6B99D1}\RP564\A0179346.dll
         -6.8s C:\AdwCleaner\Quarantine\C\Program Files\GreenTree Applications\YTD Video Downloader\plugins\
         -6.8s C:\AdwCleaner\Quarantine\C\Program Files\GreenTree Applications\
         -6.8s C:\AdwCleaner\Quarantine\C\Program Files\GreenTree Applications\YTD Video Downloader\plugins\video_output\.svn\
         -6.8s C:\AdwCleaner\Quarantine\C\Program Files\GreenTree Applications\YTD Video Downloader\plugins\video_output\
         -6.8s C:\AdwCleaner\Quarantine\C\Program Files\GreenTree Applications\YTD Video Downloader\
         -6.8s C:\AdwCleaner\Quarantine\C\Program Files\GreenTree Applications\YTD Video Downloader\plugins\video_output\.svn\text-base\
         -6.7s C:\AdwCleaner\Quarantine\C\Program Files\GreenTree Applications\YTD Video Downloader\plugins\video_output\.svn\prop-base\
         -6.7s C:\AdwCleaner\Quarantine\C\Program Files\GreenTree Applications\YTD Video Downloader\plugins\video_filter\.svn\
         -6.7s C:\AdwCleaner\Quarantine\C\Program Files\GreenTree Applications\YTD Video Downloader\plugins\video_filter\
         -6.7s C:\AdwCleaner\Quarantine\C\Program Files\GreenTree Applications\YTD Video Downloader\plugins\video_filter\.svn\text-base\
         -6.6s C:\AdwCleaner\Quarantine\C\Program Files\GreenTree Applications\YTD Video Downloader\plugins\codec\
         -6.6s C:\AdwCleaner\Quarantine\C\Program Files\GreenTree Applications\YTD Video Downloader\plugins\video_filter\.svn\prop-base\
         -6.6s C:\AdwCleaner\Quarantine\C\Program Files\GreenTree Applications\YTD Video Downloader\plugins\codec\.svn\
         -6.5s C:\AdwCleaner\Quarantine\C\Program Files\GreenTree Applications\YTD Video Downloader\plugins\audio_output\.svn\
         -6.5s C:\AdwCleaner\Quarantine\C\Program Files\GreenTree Applications\YTD Video Downloader\plugins\codec\.svn\text-base\
         -6.5s C:\AdwCleaner\Quarantine\C\Program Files\GreenTree Applications\YTD Video Downloader\plugins\codec\.svn\prop-base\
         -6.5s C:\AdwCleaner\Quarantine\C\Program Files\GreenTree Applications\YTD Video Downloader\plugins\audio_output\
         -6.5s C:\AdwCleaner\Quarantine\C\Program Files\GreenTree Applications\YTD Video Downloader\plugins\audio_output\.svn\text-base\
         -6.5s C:\AdwCleaner\Quarantine\C\Program Files\GreenTree Applications\YTD Video Downloader\plugins\audio_output\.svn\prop-base\
         -6.4s C:\AdwCleaner\Quarantine\C\Program Files\GreenTree Applications\YTD Video Downloader\plugins\audio_mixer\
         -6.4s C:\AdwCleaner\Quarantine\C\Program Files\GreenTree Applications\YTD Video Downloader\plugins\audio_mixer\.svn\
         -6.4s C:\AdwCleaner\Quarantine\C\Program Files\GreenTree Applications\YTD Video Downloader\plugins\audio_mixer\.svn\text-base\
         -6.4s C:\AdwCleaner\Quarantine\C\Program Files\GreenTree Applications\YTD Video Downloader\plugins\audio_mixer\.svn\prop-base\
         -6.4s C:\AdwCleaner\Quarantine\C\Program Files\GreenTree Applications\YTD Video Downloader\plugins\audio_filter\.svn\
         -6.4s C:\AdwCleaner\Quarantine\C\Program Files\GreenTree Applications\YTD Video Downloader\plugins\audio_filter\
         -6.4s C:\AdwCleaner\Quarantine\C\Program Files\GreenTree Applications\YTD Video Downloader\plugins\audio_filter\.svn\text-base\
         -6.3s C:\AdwCleaner\Quarantine\C\Program Files\GreenTree Applications\YTD Video Downloader\plugins\audio_filter\.svn\prop-base\
         -6.3s C:\AdwCleaner\Quarantine\C\Program Files\GreenTree Applications\YTD Video Downloader\plugins\access\
         -6.3s C:\AdwCleaner\Quarantine\C\Program Files\GreenTree Applications\YTD Video Downloader\plugins\access\.svn\
         -6.2s C:\AdwCleaner\Quarantine\C\Program Files\GreenTree Applications\YTD Video Downloader\plugins\access\.svn\text-base\
         -6.2s C:\AdwCleaner\Quarantine\C\Program Files\GreenTree Applications\YTD Video Downloader\plugins\access\.svn\prop-base\
         -3.7s C:\AdwCleaner\Quarantine\C\Documents and Settings\All Users\Application Data\IePluginServices\
         -3.7s C:\AdwCleaner\Quarantine\C\Documents and Settings\All Users\Application Data\IePluginServices\update\
         -3.6s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Application Data\istartsurf\
         -3.5s C:\System Volume Information\_restore{F4A83156-8EBB-4B35-AE7F-3FBE6E6B99D1}\RP564\A0179347.exe
         -3.4s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Application Data\istartsurf\log\
         -3.4s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Application Data\istartsurf\images\
         -3.3s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Application Data\istartsurf\images\code\
         -3.1s C:\System Volume Information\_restore{F4A83156-8EBB-4B35-AE7F-3FBE6E6B99D1}\RP564\A0179348.dll
         -3.1s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Local Settings\Application Data\Linkey\
         -3.1s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Local Settings\Application Data\Linkey\IEExtension\
         -3.0s C:\System Volume Information\_restore{F4A83156-8EBB-4B35-AE7F-3FBE6E6B99D1}\RP564\A0179349.exe
         -3.0s C:\AdwCleaner\Quarantine\C\Program Files\onewebsearch\
         -3.0s C:\AdwCleaner\Quarantine\C\Program Files\onewebsearch\EasyLink\
         -3.0s C:\System Volume Information\_restore{F4A83156-8EBB-4B35-AE7F-3FBE6E6B99D1}\RP564\A0179350.ico
         -2.9s C:\System Volume Information\_restore{F4A83156-8EBB-4B35-AE7F-3FBE6E6B99D1}\RP564\A0179351.exe
         -2.7s C:\System Volume Information\_restore{F4A83156-8EBB-4B35-AE7F-3FBE6E6B99D1}\RP564\A0179352.exe
         -2.7s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Application Data\OpenCandy\819BE2BE4BD842839345994689FDEC7B\
         -2.7s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Application Data\OpenCandy\
         -0.0s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Application Data\OpenCandy\70732FCC9D304A86B139945177A86CE5\
          0.0s C:\System Volume Information\_restore{F4A83156-8EBB-4B35-AE7F-3FBE6E6B99D1}\RP564\A0179353.exe
          4.0s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Τα έγγραφά μου\
          4.1s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Τα έγγραφά μου\Optimizer Pro\
          4.1s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Application Data\pdfforge\
          4.2s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Application Data\pdfforge\Images2PDF\
          4.3s C:\AdwCleaner\Quarantine\C\Program Files\Red Sky\
          4.4s C:\AdwCleaner\Quarantine\C\Program Files\Red Sky\DownTango\
          4.4s C:\System Volume Information\_restore{F4A83156-8EBB-4B35-AE7F-3FBE6E6B99D1}\RP564\A0179354.dll
          4.5s C:\System Volume Information\_restore{F4A83156-8EBB-4B35-AE7F-3FBE6E6B99D1}\RP564\A0179355.dll
          4.5s C:\System Volume Information\_restore{F4A83156-8EBB-4B35-AE7F-3FBE6E6B99D1}\RP564\A0179356.dll
          4.6s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Local Settings\Application Data\SimplyTech\
          4.6s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Local Settings\Application Data\SimplyTech\Toolbar\
          4.6s C:\System Volume Information\_restore{F4A83156-8EBB-4B35-AE7F-3FBE6E6B99D1}\RP564\A0179357.ini
          4.8s C:\AdwCleaner\Quarantine\C\Program Files\SweetIM\Messenger\
          4.8s C:\AdwCleaner\Quarantine\C\Program Files\SweetIM\
          5.1s C:\System Volume Information\_restore{F4A83156-8EBB-4B35-AE7F-3FBE6E6B99D1}\RP564\A0179358.dll
          5.2s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Application Data\SwvUpdater\
          5.3s C:\System Volume Information\_restore{F4A83156-8EBB-4B35-AE7F-3FBE6E6B99D1}\RP564\A0179359.cfg
          5.3s C:\AdwCleaner\Quarantine\C\Documents and Settings\All Users\Application Data\Trymedia\
          5.4s C:\AdwCleaner\Quarantine\C\Documents and Settings\All Users\Application Data\Trymedia\data\
          5.5s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\
          5.5s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\q18k4vyi.default\
          5.5s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Application Data\Mozilla\Firefox\
          5.5s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Application Data\Mozilla\
          5.5s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\q18k4vyi.default\WinampToolbarData\
          5.5s C:\System Volume Information\_restore{F4A83156-8EBB-4B35-AE7F-3FBE6E6B99D1}\RP564\A0179360.ini
          5.6s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\q18k4vyi.default\WinampToolbarData\install\
          5.7s C:\AdwCleaner\Quarantine\C\Documents and Settings\All Users\Application Data\WindowsMangerProtect\
          5.7s C:\AdwCleaner\Quarantine\C\Documents and Settings\All Users\Application Data\WindowsMangerProtect\log\
          5.8s C:\AdwCleaner\Quarantine\C\Documents and Settings\All Users\Application Data\AlawarWrapper\
          5.8s C:\AdwCleaner\Quarantine\C\Documents and Settings\All Users\Application Data\AlawarWrapper\cache\
          6.1s C:\AdwCleaner\Quarantine\C\Documents and Settings\All Users\Application Data\AlawarWrapper\cache\www.alawar.com\
          6.1s C:\AdwCleaner\Quarantine\C\Documents and Settings\All Users\Application Data\AlawarWrapper\cache\www.alawar.com\images\
          6.1s C:\AdwCleaner\Quarantine\C\Documents and Settings\All Users\Application Data\AlawarWrapper\cache\www.alawar.com\wrapper\
          6.1s C:\AdwCleaner\Quarantine\C\Documents and Settings\All Users\Application Data\AlawarWrapper\cache\www.alawar.com\images\games\
          6.1s C:\AdwCleaner\Quarantine\C\Documents and Settings\All Users\Application Data\AlawarWrapper\cache\www.alawar.com\images\games\virtual-farm\
          6.1s C:\AdwCleaner\Quarantine\C\Documents and Settings\All Users\Application Data\AlawarWrapper\cache\www.alawar.com\images\games\tropical-farm\
          6.1s C:\AdwCleaner\Quarantine\C\Documents and Settings\All Users\Application Data\AlawarWrapper\cache\www.alawar.com\images\games\the-treasures-of-montezuma-2\
          6.1s C:\AdwCleaner\Quarantine\C\Documents and Settings\All Users\Application Data\AlawarWrapper\cache\www.alawar.com\images\games\magic-encyclopedia-moonlight\
          6.2s C:\AdwCleaner\Quarantine\C\Documents and Settings\All Users\Application Data\AlawarWrapper\cache\www.alawar.com\images\games\island-realms\
          6.2s C:\AdwCleaner\Quarantine\C\Documents and Settings\All Users\Application Data\AlawarWrapper\cache\www.alawar.com\images\games\farm-frenzy-pizza-party\
          6.2s C:\AdwCleaner\Quarantine\C\Documents and Settings\All Users\Application Data\AlawarWrapper\cache\www.alawar.com\images\games\farm-frenzy-3\
          6.2s C:\AdwCleaner\Quarantine\C\Documents and Settings\All Users\Application Data\AlawarWrapper\cache\www.alawar.com\images\games\farm-frenzy-2\
          6.2s C:\AdwCleaner\Quarantine\C\Documents and Settings\All Users\Application Data\AlawarWrapper\cache\www.alawar.com\images\games\dream-farm\
          6.3s C:\AdwCleaner\Quarantine\C\Documents and Settings\All Users\Application Data\AlawarWrapper\cache\www.alawar.com\images\games\alabama-smith-in-the-quest-of-fate\
          6.7s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\q18k4vyi.default\Extensions\
          6.7s C:\System Volume Information\_restore{F4A83156-8EBB-4B35-AE7F-3FBE6E6B99D1}\RP564\A0179361.manifest
          6.7s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\q18k4vyi.default\Extensions\{0B38152B-1B20-484D-A11F-5E04A9B0661F}\
          6.9s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\q18k4vyi.default\Extensions\{0B38152B-1B20-484D-A11F-5E04A9B0661F}\META-INF\
          7.0s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\q18k4vyi.default\Extensions\{0B38152B-1B20-484D-A11F-5E04A9B0661F}\components\
          7.0s C:\System Volume Information\_restore{F4A83156-8EBB-4B35-AE7F-3FBE6E6B99D1}\RP564\A0179362.dll
          7.1s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\q18k4vyi.default\Extensions\{0B38152B-1B20-484D-A11F-5E04A9B0661F}\chrome\
          7.3s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\q18k4vyi.default\Extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1}\
          7.3s C:\System Volume Information\_restore{F4A83156-8EBB-4B35-AE7F-3FBE6E6B99D1}\RP564\A0179363.manifest
          7.3s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\q18k4vyi.default\Extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1}\META-INF\
          7.3s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\q18k4vyi.default\Extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1}\defaults\
          7.4s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\q18k4vyi.default\Extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1}\components\
          7.4s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\q18k4vyi.default\Extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1}\defaults\preferences\
          7.5s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\q18k4vyi.default\Extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1}\chrome\
          7.5s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\q18k4vyi.default\Extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1}\cache\
          7.8s C:\AdwCleaner\Quarantine\C\Program Files\Mozilla Firefox\searchplugins\
          7.8s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\q18k4vyi.default\searchplugins\
          7.8s C:\AdwCleaner\Quarantine\C\Program Files\Mozilla Firefox\
          7.8s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Local Settings\Application Data\Google\
          7.9s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Local Settings\Application Data\Google\Chrome\
          7.9s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Local Settings\Application Data\Google\Chrome\User Data\Default\Local Storage\
          7.9s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Local Settings\Application Data\Google\Chrome\User Data\
          7.9s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Local Settings\Application Data\Google\Chrome\User Data\Default\
          8.4s C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\q18k4vyi.default\prefs.js
          9.5s C:\AdwCleaner\Backup\C\Documents and Settings\user\Application Data\Mozilla\Firefox\
          9.5s C:\AdwCleaner\Backup\C\
          9.5s C:\AdwCleaner\Backup\C\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\q18k4vyi.default\
          9.5s C:\AdwCleaner\Backup\
          9.5s C:\AdwCleaner\Backup\C\Documents and Settings\
          9.5s C:\AdwCleaner\Backup\C\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\
          9.5s C:\AdwCleaner\Backup\C\Documents and Settings\user\Application Data\
          9.5s C:\AdwCleaner\Backup\C\Documents and Settings\user\
          9.5s C:\AdwCleaner\Backup\C\Documents and Settings\user\Application Data\Mozilla\
         12.4s C:\WINDOWS\Temp\Perflib_Perfdata_14e4.dat
         443.8s C:\Documents and Settings\user\Application Data\Microsoft\Office\Recent\AdwCleaner[S0].LNK
         443.8s C:\Documents and Settings\user\Application Data\Microsoft\Office\Recent\AdwCleaner.LNK
 
 
Suspicious files ____________________________________________________________
 
   C:\Documents and Settings\user\Επιφάνεια εργασίας\FRST.exe
      Size . . . . . . . : 1.101.312 bytes
      Age  . . . . . . . : 4.1 days (2014-10-10 10:47:06)
      Entropy  . . . . . : 8.0
      SHA-256  . . . . . : BDE34A8EEAC02F8EC3F8B7D15849B724E4436DB304E102C8267CA472C65173A7
      Needs elevation  . : Yes
      Fuzzy  . . . . . . : 24.0
         Program has no publisher information but prompts the user for permission elevation.
         Entropy (or randomness) indicates the program is encrypted, compressed or obfuscated. This is not typical for most programs.
         Authors name is missing in version info. This is not common to most programs.
         Version control is missing. This file is probably created by an individual. This is not typical for most programs.
         Time indicates that the file appeared recently on this computer.
      References
         HKU\S-1-5-21-823518204-1592454029-725345543-1004\Software\Microsoft\Windows\ShellNoRoam\MUICache\C:\Documents and Settings\user\Επιφάνεια εργασίας\FRST.exe
 
   C:\System Volume Information\_restore{F4A83156-8EBB-4B35-AE7F-3FBE6E6B99D1}\RP564\A0179344.dll
      Size . . . . . . . : 26.792 bytes
      Age  . . . . . . . : 0.1 days (2014-10-14 11:54:08)
      Entropy  . . . . . : 5.3
      SHA-256  . . . . . : 24C30E11DA859A8B69C5BD165402BB9AC543779D8A147EEED0C0D3128B6C096A
      Product  . . . . . : globalUpdate Update
      Publisher  . . . . : globalUpdate
      Description  . . . : globalUpdate Update Resource DLL
      Version  . . . . . : 1.3.25.0
      Copyright  . . . . : LegalCopyright_XXXXXXXXXXXXXXXXXXX
      RSA Key Size . . . : 1024
      LanguageID . . . . : 1033
      Authenticode . . . : Invalid
      Fuzzy  . . . . . . : 22.0
         Program is altered or corrupted since it was code signed by its author. This is typical for malware and pirated software.
         Time indicates that the file appeared recently on this computer.
      Forensic Cluster
         -3.3s C:\AdwCleaner\AdwCleaner[S0].txt
         -3.3s C:\AdwCleaner\Quarantine\C\
         -3.3s C:\AdwCleaner\Quarantine\C\Documents and Settings\All Users\
         -3.3s C:\AdwCleaner\Quarantine\C\Documents and Settings\All Users\Application Data\
         -3.3s C:\AdwCleaner\Quarantine\C\Documents and Settings\
         -3.3s C:\AdwCleaner\Quarantine\Quarantine.txt
         -3.3s C:\AdwCleaner\Quarantine\C\Documents and Settings\All Users\Application Data\2308189059\
         -2.9s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Local Settings\
         -2.9s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\
         -2.9s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Local Settings\Application Data\
         -2.8s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Local Settings\Application Data\Babylon\
         -2.8s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Local Settings\Application Data\Babylon\Setup\
         -2.6s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Application Data\
         -2.6s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Application Data\Babylon\
         -2.3s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\AppData\LocalLow\
         -2.3s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\AppData\LocalLow\DataMngr\
         -2.3s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\AppData\
         -2.0s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Local Settings\Application Data\DownTango\
         -2.0s C:\System Volume Information\_restore{F4A83156-8EBB-4B35-AE7F-3FBE6E6B99D1}\RP564\A0179334.pid
         -1.8s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Local Settings\Application Data\DownTango\userplugins\
         -1.8s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Local Settings\Application Data\DownTango\userplugins\internal\
         -1.8s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Local Settings\Application Data\DownTango\userplugins\hooks\
         -1.8s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Local Settings\Application Data\DownTango\userplugins\hoster\
         -1.8s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Local Settings\Application Data\DownTango\userplugins\crypter\
         -1.7s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Local Settings\Application Data\DownTango\userplugins\container\
         -1.7s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Local Settings\Application Data\DownTango\userplugins\accounts\
         -1.7s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Local Settings\Application Data\DownTango\tmp\container_file\3\
         -1.7s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Local Settings\Application Data\DownTango\userplugins\captcha\
         -1.7s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Local Settings\Application Data\DownTango\tmp\
         -1.7s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Local Settings\Application Data\DownTango\tmp\container_file\
         -1.6s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Local Settings\Application Data\DownTango\tmp\container_file\3\36\
         -1.6s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Local Settings\Application Data\DownTango\Logs\
         -1.0s C:\AdwCleaner\Quarantine\C\Program Files\
         -0.9s C:\AdwCleaner\Quarantine\C\Program Files\GetPrivate\
         -0.9s C:\System Volume Information\_restore{F4A83156-8EBB-4B35-AE7F-3FBE6E6B99D1}\RP564\A0179335.dll
         -0.8s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Application Data\GetPrivate\
         -0.8s C:\System Volume Information\_restore{F4A83156-8EBB-4B35-AE7F-3FBE6E6B99D1}\RP564\A0179336.dll
         -0.6s C:\AdwCleaner\Quarantine\C\Program Files\globalUpdate\
         -0.6s C:\System Volume Information\_restore{F4A83156-8EBB-4B35-AE7F-3FBE6E6B99D1}\RP564\A0179337.exe
         -0.6s C:\AdwCleaner\Quarantine\C\Program Files\globalUpdate\Update\
         -0.6s C:\System Volume Information\_restore{F4A83156-8EBB-4B35-AE7F-3FBE6E6B99D1}\RP564\A0179338.exe
         -0.6s C:\AdwCleaner\Quarantine\C\Program Files\globalUpdate\Update\1.3.25.0\
         -0.4s C:\System Volume Information\_restore{F4A83156-8EBB-4B35-AE7F-3FBE6E6B99D1}\RP564\A0179339.exe
         -0.4s C:\System Volume Information\_restore{F4A83156-8EBB-4B35-AE7F-3FBE6E6B99D1}\RP564\A0179340.exe
         -0.3s C:\System Volume Information\_restore{F4A83156-8EBB-4B35-AE7F-3FBE6E6B99D1}\RP564\A0179341.msi
         -0.3s C:\System Volume Information\_restore{F4A83156-8EBB-4B35-AE7F-3FBE6E6B99D1}\RP564\A0179342.exe
         -0.2s C:\System Volume Information\_restore{F4A83156-8EBB-4B35-AE7F-3FBE6E6B99D1}\RP564\A0179343.dll
          0.0s C:\System Volume Information\_restore{F4A83156-8EBB-4B35-AE7F-3FBE6E6B99D1}\RP564\A0179344.dll
          0.0s C:\System Volume Information\_restore{F4A83156-8EBB-4B35-AE7F-3FBE6E6B99D1}\RP564\A0179345.dll
          0.2s C:\System Volume Information\_restore{F4A83156-8EBB-4B35-AE7F-3FBE6E6B99D1}\RP564\A0179346.dll
          0.8s C:\AdwCleaner\Quarantine\C\Program Files\GreenTree Applications\YTD Video Downloader\plugins\
          0.8s C:\AdwCleaner\Quarantine\C\Program Files\GreenTree Applications\
          0.8s C:\AdwCleaner\Quarantine\C\Program Files\GreenTree Applications\YTD Video Downloader\plugins\video_output\.svn\
          0.8s C:\AdwCleaner\Quarantine\C\Program Files\GreenTree Applications\YTD Video Downloader\plugins\video_output\
          0.8s C:\AdwCleaner\Quarantine\C\Program Files\GreenTree Applications\YTD Video Downloader\
          0.8s C:\AdwCleaner\Quarantine\C\Program Files\GreenTree Applications\YTD Video Downloader\plugins\video_output\.svn\text-base\
          0.9s C:\AdwCleaner\Quarantine\C\Program Files\GreenTree Applications\YTD Video Downloader\plugins\video_output\.svn\prop-base\
          1.0s C:\AdwCleaner\Quarantine\C\Program Files\GreenTree Applications\YTD Video Downloader\plugins\video_filter\.svn\
          1.0s C:\AdwCleaner\Quarantine\C\Program Files\GreenTree Applications\YTD Video Downloader\plugins\video_filter\
          1.0s C:\AdwCleaner\Quarantine\C\Program Files\GreenTree Applications\YTD Video Downloader\plugins\video_filter\.svn\text-base\
          1.0s C:\AdwCleaner\Quarantine\C\Program Files\GreenTree Applications\YTD Video Downloader\plugins\codec\
          1.0s C:\AdwCleaner\Quarantine\C\Program Files\GreenTree Applications\YTD Video Downloader\plugins\video_filter\.svn\prop-base\
          1.1s C:\AdwCleaner\Quarantine\C\Program Files\GreenTree Applications\YTD Video Downloader\plugins\codec\.svn\
          1.1s C:\AdwCleaner\Quarantine\C\Program Files\GreenTree Applications\YTD Video Downloader\plugins\audio_output\.svn\
          1.1s C:\AdwCleaner\Quarantine\C\Program Files\GreenTree Applications\YTD Video Downloader\plugins\codec\.svn\text-base\
          1.1s C:\AdwCleaner\Quarantine\C\Program Files\GreenTree Applications\YTD Video Downloader\plugins\codec\.svn\prop-base\
          1.1s C:\AdwCleaner\Quarantine\C\Program Files\GreenTree Applications\YTD Video Downloader\plugins\audio_output\
          1.1s C:\AdwCleaner\Quarantine\C\Program Files\GreenTree Applications\YTD Video Downloader\plugins\audio_output\.svn\text-base\
          1.1s C:\AdwCleaner\Quarantine\C\Program Files\GreenTree Applications\YTD Video Downloader\plugins\audio_output\.svn\prop-base\
          1.2s C:\AdwCleaner\Quarantine\C\Program Files\GreenTree Applications\YTD Video Downloader\plugins\audio_mixer\
          1.2s C:\AdwCleaner\Quarantine\C\Program Files\GreenTree Applications\YTD Video Downloader\plugins\audio_mixer\.svn\
          1.2s C:\AdwCleaner\Quarantine\C\Program Files\GreenTree Applications\YTD Video Downloader\plugins\audio_mixer\.svn\text-base\
          1.3s C:\AdwCleaner\Quarantine\C\Program Files\GreenTree Applications\YTD Video Downloader\plugins\audio_mixer\.svn\prop-base\
          1.3s C:\AdwCleaner\Quarantine\C\Program Files\GreenTree Applications\YTD Video Downloader\plugins\audio_filter\.svn\
          1.3s C:\AdwCleaner\Quarantine\C\Program Files\GreenTree Applications\YTD Video Downloader\plugins\audio_filter\
          1.3s C:\AdwCleaner\Quarantine\C\Program Files\GreenTree Applications\YTD Video Downloader\plugins\audio_filter\.svn\text-base\
          1.3s C:\AdwCleaner\Quarantine\C\Program Files\GreenTree Applications\YTD Video Downloader\plugins\audio_filter\.svn\prop-base\
          1.3s C:\AdwCleaner\Quarantine\C\Program Files\GreenTree Applications\YTD Video Downloader\plugins\access\
          1.3s C:\AdwCleaner\Quarantine\C\Program Files\GreenTree Applications\YTD Video Downloader\plugins\access\.svn\
          1.4s C:\AdwCleaner\Quarantine\C\Program Files\GreenTree Applications\YTD Video Downloader\plugins\access\.svn\text-base\
          1.4s C:\AdwCleaner\Quarantine\C\Program Files\GreenTree Applications\YTD Video Downloader\plugins\access\.svn\prop-base\
          3.9s C:\AdwCleaner\Quarantine\C\Documents and Settings\All Users\Application Data\IePluginServices\
          3.9s C:\AdwCleaner\Quarantine\C\Documents and Settings\All Users\Application Data\IePluginServices\update\
          4.1s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Application Data\istartsurf\
          4.1s C:\System Volume Information\_restore{F4A83156-8EBB-4B35-AE7F-3FBE6E6B99D1}\RP564\A0179347.exe
          4.2s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Application Data\istartsurf\log\
          4.3s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Application Data\istartsurf\images\
          4.3s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Application Data\istartsurf\images\code\
          4.5s C:\System Volume Information\_restore{F4A83156-8EBB-4B35-AE7F-3FBE6E6B99D1}\RP564\A0179348.dll
          4.5s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Local Settings\Application Data\Linkey\
          4.5s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Local Settings\Application Data\Linkey\IEExtension\
          4.6s C:\System Volume Information\_restore{F4A83156-8EBB-4B35-AE7F-3FBE6E6B99D1}\RP564\A0179349.exe
          4.6s C:\AdwCleaner\Quarantine\C\Program Files\onewebsearch\
          4.6s C:\AdwCleaner\Quarantine\C\Program Files\onewebsearch\EasyLink\
          4.7s C:\System Volume Information\_restore{F4A83156-8EBB-4B35-AE7F-3FBE6E6B99D1}\RP564\A0179350.ico
          4.7s C:\System Volume Information\_restore{F4A83156-8EBB-4B35-AE7F-3FBE6E6B99D1}\RP564\A0179351.exe
          5.0s C:\System Volume Information\_restore{F4A83156-8EBB-4B35-AE7F-3FBE6E6B99D1}\RP564\A0179352.exe
          5.0s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Application Data\OpenCandy\819BE2BE4BD842839345994689FDEC7B\
          5.0s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Application Data\OpenCandy\
          7.6s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Application Data\OpenCandy\70732FCC9D304A86B139945177A86CE5\
          7.6s C:\System Volume Information\_restore{F4A83156-8EBB-4B35-AE7F-3FBE6E6B99D1}\RP564\A0179353.exe
         11.7s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Τα έγγραφά μου\
         11.7s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Τα έγγραφά μου\Optimizer Pro\
         11.8s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Application Data\pdfforge\
         11.8s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Application Data\pdfforge\Images2PDF\
         12.0s C:\AdwCleaner\Quarantine\C\Program Files\Red Sky\
         12.0s C:\AdwCleaner\Quarantine\C\Program Files\Red Sky\DownTango\
         12.0s C:\System Volume Information\_restore{F4A83156-8EBB-4B35-AE7F-3FBE6E6B99D1}\RP564\A0179354.dll
         12.1s C:\System Volume Information\_restore{F4A83156-8EBB-4B35-AE7F-3FBE6E6B99D1}\RP564\A0179355.dll
         12.1s C:\System Volume Information\_restore{F4A83156-8EBB-4B35-AE7F-3FBE6E6B99D1}\RP564\A0179356.dll
         12.3s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Local Settings\Application Data\SimplyTech\
         12.3s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Local Settings\Application Data\SimplyTech\Toolbar\
         12.3s C:\System Volume Information\_restore{F4A83156-8EBB-4B35-AE7F-3FBE6E6B99D1}\RP564\A0179357.ini
         12.4s C:\AdwCleaner\Quarantine\C\Program Files\SweetIM\Messenger\
         12.4s C:\AdwCleaner\Quarantine\C\Program Files\SweetIM\
         12.8s C:\System Volume Information\_restore{F4A83156-8EBB-4B35-AE7F-3FBE6E6B99D1}\RP564\A0179358.dll
         12.9s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Application Data\SwvUpdater\
         12.9s C:\System Volume Information\_restore{F4A83156-8EBB-4B35-AE7F-3FBE6E6B99D1}\RP564\A0179359.cfg
         13.0s C:\AdwCleaner\Quarantine\C\Documents and Settings\All Users\Application Data\Trymedia\
         13.0s C:\AdwCleaner\Quarantine\C\Documents and Settings\All Users\Application Data\Trymedia\data\
         13.1s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\
         13.1s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\q18k4vyi.default\
         13.1s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Application Data\Mozilla\Firefox\
         13.1s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Application Data\Mozilla\
         13.1s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\q18k4vyi.default\WinampToolbarData\
         13.2s C:\System Volume Information\_restore{F4A83156-8EBB-4B35-AE7F-3FBE6E6B99D1}\RP564\A0179360.ini
         13.2s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\q18k4vyi.default\WinampToolbarData\install\
         13.3s C:\AdwCleaner\Quarantine\C\Documents and Settings\All Users\Application Data\WindowsMangerProtect\
         13.3s C:\AdwCleaner\Quarantine\C\Documents and Settings\All Users\Application Data\WindowsMangerProtect\log\
         13.5s C:\AdwCleaner\Quarantine\C\Documents and Settings\All Users\Application Data\AlawarWrapper\
         13.5s C:\AdwCleaner\Quarantine\C\Documents and Settings\All Users\Application Data\AlawarWrapper\cache\
         13.7s C:\AdwCleaner\Quarantine\C\Documents and Settings\All Users\Application Data\AlawarWrapper\cache\www.alawar.com\
         13.7s C:\AdwCleaner\Quarantine\C\Documents and Settings\All Users\Application Data\AlawarWrapper\cache\www.alawar.com\images\
         13.7s C:\AdwCleaner\Quarantine\C\Documents and Settings\All Users\Application Data\AlawarWrapper\cache\www.alawar.com\wrapper\
         13.7s C:\AdwCleaner\Quarantine\C\Documents and Settings\All Users\Application Data\AlawarWrapper\cache\www.alawar.com\images\games\
         13.7s C:\AdwCleaner\Quarantine\C\Documents and Settings\All Users\Application Data\AlawarWrapper\cache\www.alawar.com\images\games\virtual-farm\
         13.7s C:\AdwCleaner\Quarantine\C\Documents and Settings\All Users\Application Data\AlawarWrapper\cache\www.alawar.com\images\games\tropical-farm\
         13.8s C:\AdwCleaner\Quarantine\C\Documents and Settings\All Users\Application Data\AlawarWrapper\cache\www.alawar.com\images\games\the-treasures-of-montezuma-2\
         13.8s C:\AdwCleaner\Quarantine\C\Documents and Settings\All Users\Application Data\AlawarWrapper\cache\www.alawar.com\images\games\magic-encyclopedia-moonlight\
         13.8s C:\AdwCleaner\Quarantine\C\Documents and Settings\All Users\Application Data\AlawarWrapper\cache\www.alawar.com\images\games\island-realms\
         13.8s C:\AdwCleaner\Quarantine\C\Documents and Settings\All Users\Application Data\AlawarWrapper\cache\www.alawar.com\images\games\farm-frenzy-pizza-party\
         13.8s C:\AdwCleaner\Quarantine\C\Documents and Settings\All Users\Application Data\AlawarWrapper\cache\www.alawar.com\images\games\farm-frenzy-3\
         13.8s C:\AdwCleaner\Quarantine\C\Documents and Settings\All Users\Application Data\AlawarWrapper\cache\www.alawar.com\images\games\farm-frenzy-2\
         13.9s C:\AdwCleaner\Quarantine\C\Documents and Settings\All Users\Application Data\AlawarWrapper\cache\www.alawar.com\images\games\dream-farm\
         13.9s C:\AdwCleaner\Quarantine\C\Documents and Settings\All Users\Application Data\AlawarWrapper\cache\www.alawar.com\images\games\alabama-smith-in-the-quest-of-fate\
         14.3s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\q18k4vyi.default\Extensions\
         14.3s C:\System Volume Information\_restore{F4A83156-8EBB-4B35-AE7F-3FBE6E6B99D1}\RP564\A0179361.manifest
         14.3s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\q18k4vyi.default\Extensions\{0B38152B-1B20-484D-A11F-5E04A9B0661F}\
         14.5s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\q18k4vyi.default\Extensions\{0B38152B-1B20-484D-A11F-5E04A9B0661F}\META-INF\
         14.6s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\q18k4vyi.default\Extensions\{0B38152B-1B20-484D-A11F-5E04A9B0661F}\components\
         14.6s C:\System Volume Information\_restore{F4A83156-8EBB-4B35-AE7F-3FBE6E6B99D1}\RP564\A0179362.dll
         14.7s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\q18k4vyi.default\Extensions\{0B38152B-1B20-484D-A11F-5E04A9B0661F}\chrome\
         14.9s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\q18k4vyi.default\Extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1}\
         14.9s C:\System Volume Information\_restore{F4A83156-8EBB-4B35-AE7F-3FBE6E6B99D1}\RP564\A0179363.manifest
         14.9s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\q18k4vyi.default\Extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1}\META-INF\
         14.9s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\q18k4vyi.default\Extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1}\defaults\
         15.0s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\q18k4vyi.default\Extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1}\components\
         15.0s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\q18k4vyi.default\Extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1}\defaults\preferences\
         15.1s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\q18k4vyi.default\Extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1}\chrome\
         15.1s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\q18k4vyi.default\Extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1}\cache\
         15.4s C:\AdwCleaner\Quarantine\C\Program Files\Mozilla Firefox\searchplugins\
         15.4s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\q18k4vyi.default\searchplugins\
         15.4s C:\AdwCleaner\Quarantine\C\Program Files\Mozilla Firefox\
         15.4s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Local Settings\Application Data\Google\
         15.5s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Local Settings\Application Data\Google\Chrome\
         15.5s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Local Settings\Application Data\Google\Chrome\User Data\Default\Local Storage\
         15.5s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Local Settings\Application Data\Google\Chrome\User Data\
         15.5s C:\AdwCleaner\Quarantine\C\Documents and Settings\user\Local Settings\Application Data\Google\Chrome\User Data\Default\
         16.0s C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\q18k4vyi.default\prefs.js
         17.1s C:\AdwCleaner\Backup\C\Documents and Settings\user\Application Data\Mozilla\Firefox\
         17.1s C:\AdwCleaner\Backup\C\
         17.1s C:\AdwCleaner\Backup\C\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\q18k4vyi.default\
         17.1s C:\AdwCleaner\Backup\
         17.1s C:\AdwCleaner\Backup\C\Documents and Settings\
         17.1s C:\AdwCleaner\Backup\C\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\
         17.1s C:\AdwCleaner\Backup\C\Documents and Settings\user\Application Data\
         17.1s C:\AdwCleaner\Backup\C\Documents and Settings\user\
         17.1s C:\AdwCleaner\Backup\C\Documents and Settings\user\Application Data\Mozilla\
         20.0s C:\WINDOWS\Temp\Perflib_Perfdata_14e4.dat
         451.4s C:\Documents and Settings\user\Application Data\Microsoft\Office\Recent\AdwCleaner[S0].LNK
         451.5s C:\Documents and Settings\user\Application Data\Microsoft\Office\Recent\AdwCleaner.LNK
 
 
Potential Unwanted Programs _________________________________________________
 
   HKLM\SOFTWARE\Classes\Installer\UpgradeCodes\A97CEC23332751B47BA4B95BAA50C9D0\ (Sweetpacks)
   HKLM\SOFTWARE\Classes\Software\Microsoft\Internet Explorer\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}\ (CertifiedToolbar)
   HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{2ff49ed5-a3ef-410b-918e-97deceb5996d}\ (TelevisionFanatic)
   HKLM\SYSTEM\ControlSet002\Enum\Root\LEGACY_F06DEFF2-5B9C-490D-910F-35D3A9119622\ (Linkey)
   HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_F06DEFF2-5B9C-490D-910F-35D3A9119622\ (Linkey)
   HKU\.DEFAULT\Software\AppDataLow\{1146AC44-2F03-4431-B4FD-889BC837521F}\ (FLV Player)
   HKU\.DEFAULT\Software\ImInstaller\ (Sweetpacks)
   HKU\S-1-5-18\Software\AppDataLow\{1146AC44-2F03-4431-B4FD-889BC837521F}\ (FLV Player)
   HKU\S-1-5-18\Software\ImInstaller\ (Sweetpacks)
   HKU\S-1-5-21-823518204-1592454029-725345543-1004\Software\Microsoft\Internet Explorer\Approved Extensions\{54739D49-AC03-4C57-9264-C5195596B3A1} (Linkey)
   HKU\S-1-5-21-823518204-1592454029-725345543-1004\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{2FF49ED5-A3EF-410B-918E-97DECEB5996D}\ (TelevisionFanatic)
 
Cookies _____________________________________________________________________
 
   C:\Documents and Settings\user\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies:2o7.net
   C:\Documents and Settings\user\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies:doubleclick.net
   C:\Documents and Settings\user\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies:in.getclicky.com
   C:\Documents and Settings\user\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies:tribalfusion.com
   C:\DOCUME~1\user\LOCALS~1\Temp\Cookies\1SG0ECRG.txt
 
 
 
SECURITY CHECK
 

 Results of screen317's Security Check version 0.99.88  
 Windows XP Service Pack 3 x86   
 Internet Explorer 7 Out of date! 
``````````````Antivirus/Firewall Check:`````````````` 
 AVG 2015     
`````````Anti-malware/Other Utilities Check:````````` 
 CCleaner     
 Java™ 6 Update 7  
 Java version out of Date! 
 Adobe Flash Player 10 Flash Player out of Date! 
 Adobe Reader 8 Adobe Reader out of Date! 
 Google Chrome 37.0.2062.120  
 Google Chrome 37.0.2062.124  
````````Process Check: objlist.exe by Laurent````````  
 AVG avgwdsvc.exe 
 AVG avgrsx.exe 
 AVG avgnsx.exe 
 AVG avgemc.exe 
 All Users Application Data Sudani mDSL OnlineUpdate\ouc.exe 
`````````````````System Health check````````````````` 
 Total Fragmentation on Drive C::  
````````````````````End of Log`````````````````````` 


#10 B-boy/StyLe/

B-boy/StyLe/

    Bleepin' Freestyler


  • Malware Response Team
  • 8,310 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Bulgaria
  • Local time:03:50 PM

Posted 14 October 2014 - 07:08 AM

Hi,

 

Please use the 32 version of RogueKiller and post back the results as well. :)

 

 

Regards,

Georgi


cXfZ4wS.png


#11 active_active

active_active
  • Topic Starter

  • Members
  • 17 posts
  • OFFLINE
  •  
  • Local time:03:50 PM

Posted 14 October 2014 - 12:06 PM

Hi,

 

 these are the results from the RogueKiller

 

RogueKiller V10.0.1.0 [Oct 10 2014] by Adlice Software

mail : http://www.adlice.com/contact/

Feedback : http://forum.adlice.com

Website : http://www.adlice.com/softwares/roguekiller/

Blog : http://www.adlice.com

 

Operating System : Windows XP (5.1.2600 Service Pack 3) 32 bits version

Started in : Normal mode

User : user [Not administrator]

Mode : Scan -- Date : 10/14/2014  20:04:18

 

¤¤¤ Processes : 0 ¤¤¤

 

¤¤¤ Registry : 3 ¤¤¤

[Suspicious.Path] HKEY_LOCAL_MACHINE\System\ControlSet001\Services\vuyljz (\??\C:\DOCUME~1\user\LOCALS~1\Temp\xaupq.sys) -> Found

[PUM.HomePage] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main | Start Page : http://www.microsoft.com/isapi/redir.dll?prd={SUB_PRD}&clcid={SUB_CLSID}&pver={SUB_PVER}&ar=home  -> Found

[PUM.DesktopIcons] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {20D04FE0-3AEA-1069-A2D8-08002B30309D} : 1  -> Found

 

¤¤¤ Tasks : 0 ¤¤¤

 

¤¤¤ Files : 0 ¤¤¤

 

¤¤¤ Hosts File : 1 ¤¤¤

[C:\WINDOWS\System32\drivers\etc\hosts] 127.0.0.1       localhost

 

¤¤¤ Antirootkit : 0 (Driver: Not loaded [0x5]) ¤¤¤

 

¤¤¤ Web browsers : 0 ¤¤¤

 

¤¤¤ MBR Check : ¤¤¤



#12 B-boy/StyLe/

B-boy/StyLe/

    Bleepin' Freestyler


  • Malware Response Team
  • 8,310 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Bulgaria
  • Local time:03:50 PM

Posted 15 October 2014 - 12:05 PM

Hello,

 

The log from RogueKiller is incomplete.

 

Also we need to remove some leftovers of potentially unwanted applications:

 

please download the following file => and save it to the Desktop.
NOTE. It's important that both files, FRST and fixlist.txt are in the same location or the fix will not work.

Run FRST and press the Fix button just once and wait.
The tool will make a log on the Desktop (Fixlog.txt). Please post it to your reply.

 

 

 

In the meantime I have a few updating tasks for you:

 

 

Upgrading Java:


javaicon.gif Your Java is out of date. Older versions have vulnerabilities that malware can use to infect your system. Please follow these steps to remove older version of Java components and upgrade the application.
 

  • Download the latest version of Java SE 7.
  • Click the Java™ 7 Update 67 "Download JRE" button to the right.
  • Select your Platform, Register and check the box that says: "I agree to the Java SE Runtime Environment 7 License Agreement.".
  • Click on Continue.
  • Click on the link to download Windows Offline Installation (jre-7u67-windows-i586.exe) and save it to your desktop. Do NOT use the Sun Download Manager..
  • Close any programs you may have running - especially your web browser.
  • Go to Start > Control Panel > Programs, click on Uninstall a program and remove all older versions of Java:
    Java™ 6 Update 7
  • Check any item with Java Runtime Environment (JRE or J2SE) in the name.
  • Click the Remove or Change/Remove button.
  • Repeat as many times as necessary to remove each Java version.
  • Reboot your computer once all Java components are removed.
  • Then from your desktop double-click on the download to install the newest version. (Vista/Windows 7 users, right click on the jre-7u67-windows-i586.exe and select "Run as an Administrator.")

 

 

:Run JavaRa
 

  • Please download JavaRa 2.6 and unzip it to your desktop.
  • Double-click on JavaRa.exe to start the program.
  • Choose Remove Java Runtime and since you already uninstalled JAVA skip step 1 and click on the next button.
  • Now click on Perform Removal Routine to remove the older versions of Java installed on your computer.
  • When that's successfully done, please click OK to close the message.
  • Click on Next and skip the downloading process. Click Next and now click on Close this wizard and click Finish.
  • From the main menu please choose Additional tasks
  • Place a checkmark beside Remove startup entry, Remove Outdated JRE Firefox Extentions and Clean JRE Temp Files and click Run. The browsers should be closed before running this task.
  • When that's succesfully done you will see a message at the top saying: "Selected tasks completed successfully".
  • A log file should be created in the same directory as JavaRa.
  • Please post the log in your next reply.
  • Close JavaRa by clicking the red cross button.

 

 

You can choose between 2 variants:

 

1. If you have applications that require Java to be installed on the computer then uninstall the old version of Java and then run JavaRa to remove all remnants and then go ahead and download & install the latest version of Java (Java SE 8).

 

2. If you want to be on the safe side then go ahead and uninstall the old version of Java, then run JavaRa to remove all remnants and then remove all applications that require Java (time to learn to live without Java and find alternatives to the applications that require Java)... Check this article.

 

It's your call. smile.png

 

 

Your Adobe Flash Player is out of date!

Older versions may have vulnerabilities that malware can use to infect your system.

 

software.gif Please download and instal: Adobe Flash Player 15.0.0.152 Final for (Internet Explorer)

 

 

Your Adobe Reader is out of date.
Older versions may have vulnerabilities that malware can use to infect your system.
Please download Adobe Reader 11.0.09 to your PC's desktop.
 

  • Uninstall Adobe Reader 8 via Start => Control Panel > Uninstall a program
  • Install the new downloaded updated software.

Note that the McAfee Security scan is prechecked. You may wish to uncheck it before downloading.

 

 

Your Internet Explorer is out of date! Even you don't use it it's recommended to update it.
You can download the latest one from here =>  software.gif Download and install: Internet Explorer 8.0 Final for Windows XP x86

 

  • It is possible for other programs on your computer to have security vulnerability that can allow malware to infect you.
  • Therefore, it is also a good idea to check for the latest versions of commonly installed applications that are regularly patched to fix vulnerabilities.
  • You can check these by visiting Secunia Software Inspector or you can use the following application for this purpose PatchMyPC

 

 
Visit Microsoft's Windows Update Site Frequently

 

  • It is important that you visit Windows Update regularly.
  • This will ensure your computer has always the latest security updates available installed on your computer.
  • If there are new updates to install, install them immediately, reboot your computer, and revisit the site until there are no more critical updates.

 

When done post a new log from SecurityCheck.

 

 

Regards,

Georgi


cXfZ4wS.png


#13 active_active

active_active
  • Topic Starter

  • Members
  • 17 posts
  • OFFLINE
  •  
  • Local time:03:50 PM

Posted 16 October 2014 - 03:51 AM

Good morning Georgi,

 

this is the RogueKiller again

 

RogueKiller V10.0.1.0 [Oct 10 2014] by Adlice Software

mail : http://www.adlice.com/contact/

Feedback : http://forum.adlice.com

Website : http://www.adlice.com/softwares/roguekiller/

Blog : http://www.adlice.com

 

Operating System : Windows XP (5.1.2600 Service Pack 3) 32 bits version

Started in : Normal mode

User : user [Administrator]

Mode : Scan -- Date : 10/16/2014  11:46:47

 

¤¤¤ Processes : 1 ¤¤¤

[Suspicious.Path] ouc.exe -- C:\Documents and Settings\All Users\Application Data\Sudani mDSL\OnlineUpdate\ouc.exe[7] -> Killed [TermProc]

 

¤¤¤ Registry : 3 ¤¤¤

[Suspicious.Path] HKEY_LOCAL_MACHINE\System\ControlSet001\Services\vuyljz (\??\C:\DOCUME~1\user\LOCALS~1\Temp\xaupq.sys) -> Found

[PUM.HomePage] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main | Start Page : http://www.microsoft.com/isapi/redir.dll?prd={SUB_PRD}&clcid={SUB_CLSID}&pver={SUB_PVER}&ar=home  -> Found

[PUM.DesktopIcons] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {20D04FE0-3AEA-1069-A2D8-08002B30309D} : 1  -> Found

 

¤¤¤ Tasks : 0 ¤¤¤

 

¤¤¤ Files : 0 ¤¤¤

 

¤¤¤ Hosts File : 1 ¤¤¤

[C:\WINDOWS\System32\drivers\etc\hosts] 127.0.0.1       localhost

 

¤¤¤ Antirootkit : 1 (Driver: Loaded) ¤¤¤

[Filter()] \Driver\atapi @ \Device\CdRom0 : \Driver\redbook @ Unknown (\SystemRoot\system32\DRIVERS\redbook.sys)

 

¤¤¤ Web browsers : 0 ¤¤¤

 

¤¤¤ MBR Check : ¤¤¤

+++++ PhysicalDrive0: Hitachi HTS541616J9SA00 +++++

--- User ---

[MBR] 7ee5951dbbb4c523ad7d7ab7ce36f203

[BSP] 8633fec13ba84d59d25a6daa18c29a03 : Windows XP MBR Code

Partition table:

0 - [XXXXXX] COMPAQ (0x12) [VISIBLE] Offset (sectors): 63 | Size: 4996 MB

1 - [XXXXXX] EXTEN-LBA (0xf) [VISIBLE] Offset (sectors): 10233405 | Size: 73563 MB

2 - [ACTIVE] FAT32-LBA (0xc) [VISIBLE] Offset (sectors): 160890975 | Size: 74065 MB

User = LL1 ... OK

User = LL2 ... OK

 

 

============================================

RKreport_SCN_10142014_200418.log



#14 active_active

active_active
  • Topic Starter

  • Members
  • 17 posts
  • OFFLINE
  •  
  • Local time:03:50 PM

Posted 16 October 2014 - 05:08 AM

Hi again,

 

FIXLOG

 

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x86) Version: 15-10-2014 02

Ran by user at 2014-10-16 11:57:27 Run:2

Running from C:\Documents and Settings\user\Επιφάνεια εργασίας

Loaded Profile: user (Available profiles: user)

Boot Mode: Normal

 

==============================================

 

Content of fixlist:

*****************

start

DeleteKey: HKLM\SOFTWARE\Classes\Installer\UpgradeCodes\A97CEC23332751B47BA4B95BAA50C9D0

DeleteKey: HKLM\SOFTWARE\Classes\Software\Microsoft\Internet Explorer\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}

DeleteKey: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{2ff49ed5-a3ef-410b-918e-97deceb5996d}

DeleteKey: HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_F06DEFF2-5B9C-490D-910F-35D3A9119622

DeleteKey: HKU\.DEFAULT\Software\AppDataLow\{1146AC44-2F03-4431-B4FD-889BC837521F}

DeleteKey: HKU\.DEFAULT\Software\ImInstaller

DeleteKey: HKU\S-1-5-18\Software\AppDataLow\{1146AC44-2F03-4431-B4FD-889BC837521F}

DeleteKey: HKU\S-1-5-18\Software\ImInstaller

DeleteKey: HKU\S-1-5-21-823518204-1592454029-725345543-1004\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{2FF49ED5-A3EF-410B-918E-97DECEB5996D}

Reg: reg delete "HKU\S-1-5-21-823518204-1592454029-725345543-1004\Software\Microsoft\Internet Explorer\Approved Extensions" /v {54739D49-AC03-4C57-9264-C5195596B3A1} /f

end

*****************

 

HKLM\SOFTWARE\Classes\Installer\UpgradeCodes\A97CEC23332751B47BA4B95BAA50C9D0 => Key Deleted successfully.

HKLM\SOFTWARE\Classes\Software\Microsoft\Internet Explorer\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b} => Key Deleted successfully.

HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{2ff49ed5-a3ef-410b-918e-97deceb5996d} => Key Deleted successfully.

HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_F06DEFF2-5B9C-490D-910F-35D3A9119622 => Failed to delete key at first attempt (Error: C0000121), see next line.

HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_F06DEFF2-5B9C-490D-910F-35D3A9119622 => Key Deleted Successfully.

HKU\.DEFAULT\Software\AppDataLow\{1146AC44-2F03-4431-B4FD-889BC837521F} => Failed to delete key at first attempt (Error: C0000121), see next line.

HKU\.DEFAULT\Software\AppDataLow\{1146AC44-2F03-4431-B4FD-889BC837521F} => Key Deleted Successfully.

HKU\.DEFAULT\Software\ImInstaller => Key Deleted successfully.

HKU\S-1-5-18\Software\AppDataLow\{1146AC44-2F03-4431-B4FD-889BC837521F} => Key not found.

HKU\S-1-5-18\Software\ImInstaller => Key not found.

HKU\S-1-5-21-823518204-1592454029-725345543-1004\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{2FF49ED5-A3EF-410B-918E-97DECEB5996D} => Failed to delete key at first attempt (Error: C0000121), see next line.

HKU\S-1-5-21-823518204-1592454029-725345543-1004\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{2FF49ED5-A3EF-410B-918E-97DECEB5996D} => Key Deleted Successfully.

 

========= reg delete "HKU\S-1-5-21-823518204-1592454029-725345543-1004\Software\Microsoft\Internet Explorer\Approved Extensions" /v {54739D49-AC03-4C57-9264-C5195596B3A1} /f =========

 

 

Error:  Δεν επιτρέπεται η πρόσβαση.

 

 

========= End of Reg: =========

 

 

==== End of Fixlog ====

 

 

 

JAVARA

 

User initialised redundant data purge.

......................

 

Removed registry subkey: java.exe

Removed registry subkey: javaw.exe

Removed registry subkey tree: {CAFEEFAC-0013-0000-0003-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0013-0000-0004-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0013-0000-0005-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0013-0001-0000-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0013-0001-0001-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0013-0001-0001-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0013-0001-0002-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0013-0001-0002-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0013-0001-0003-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0013-0001-0003-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0013-0001-0004-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0013-0001-0004-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0013-0001-0005-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0013-0001-0005-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0013-0001-0006-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0013-0001-0006-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0013-0001-0007-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0013-0001-0007-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0013-0001-0008-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0013-0001-0008-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0013-0001-0009-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0013-0001-0009-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0013-0001-0010-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0013-0001-0010-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0013-0001-0011-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0013-0001-0011-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0013-0001-0012-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0013-0001-0012-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0013-0001-0013-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0013-0001-0013-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0013-0001-0014-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0013-0001-0014-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0013-0001-0015-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0013-0001-0015-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0013-0001-0016-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0013-0001-0016-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0013-0001-0017-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0013-0001-0017-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0013-0001-0018-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0013-0001-0018-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0013-0001-0019-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0013-0001-0019-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0013-0001-0020-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0013-0001-0020-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0013-0001-0021-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0013-0001-0021-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0014-0000-0000-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0014-0000-0000-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0014-0000-0001-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0014-0000-0001-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0014-0000-0002-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0014-0000-0002-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0014-0000-0003-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0014-0000-0003-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0014-0000-0004-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0014-0000-0004-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0014-0001-0000-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0014-0001-0000-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0014-0001-0001-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0014-0001-0001-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0014-0001-0002-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0014-0001-0002-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0014-0001-0003-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0014-0001-0003-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0014-0001-0004-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0014-0001-0004-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0014-0001-0005-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0014-0001-0005-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0014-0001-0006-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0014-0001-0006-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0014-0001-0007-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0014-0001-0007-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0014-0002-0000-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0014-0002-0000-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0014-0002-0001-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0014-0002-0001-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0014-0002-0002-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0014-0002-0002-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0014-0002-0003-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0014-0002-0003-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0014-0002-0004-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0014-0002-0004-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0014-0002-0005-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0014-0002-0005-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0014-0002-0006-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0014-0002-0006-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0014-0002-0007-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0014-0002-0007-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0014-0002-0008-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0014-0002-0008-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0014-0002-0009-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0014-0002-0009-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0014-0002-0010-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0014-0002-0010-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0014-0002-0011-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0014-0002-0011-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0014-0002-0012-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0014-0002-0012-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0014-0002-0013-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0014-0002-0013-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0014-0002-0014-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0014-0002-0014-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0014-0002-0015-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0014-0002-0015-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0014-0002-0016-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0014-0002-0016-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0014-0002-0017-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0014-0002-0017-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0014-0002-0018-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0014-0002-0018-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0014-0002-0019-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0014-0002-0019-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0014-0002-0020-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0014-0002-0020-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0014-0002-0021-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0014-0002-0021-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0014-0002-0022-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0014-0002-0022-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0014-0002-0023-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0014-0002-0023-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0014-0002-0024-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0014-0002-0024-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0014-0002-0025-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0014-0002-0025-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0014-0002-0026-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0014-0002-0026-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0014-0002-0027-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0014-0002-0027-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0014-0002-0028-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0014-0002-0028-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0014-0002-0029-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0014-0002-0029-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0014-0002-0030-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0014-0002-0030-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0014-0002-0031-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0014-0002-0031-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0014-0002-0032-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0014-0002-0032-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0014-0002-0033-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0014-0002-0033-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0014-0002-0034-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0014-0002-0034-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0014-0002-0035-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0014-0002-0035-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0014-0002-0036-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0014-0002-0036-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0014-0002-0037-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0014-0002-0037-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0014-0002-0038-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0014-0002-0038-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0014-0002-FFFF-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0000-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0000-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0000-ABCDEFFEDCBC}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0001-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0001-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0001-ABCDEFFEDCBC}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0002-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0002-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0002-ABCDEFFEDCBC}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0003-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0003-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0003-ABCDEFFEDCBC}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0004-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0004-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0004-ABCDEFFEDCBC}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0005-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0005-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0005-ABCDEFFEDCBC}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0006-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0006-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0006-ABCDEFFEDCBC}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0007-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0007-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0007-ABCDEFFEDCBC}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0008-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0008-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0008-ABCDEFFEDCBC}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0009-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0009-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0009-ABCDEFFEDCBC}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0010-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0010-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0010-ABCDEFFEDCBC}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0011-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0011-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0011-ABCDEFFEDCBC}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0012-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0012-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0012-ABCDEFFEDCBC}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0013-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0013-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0013-ABCDEFFEDCBC}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0014-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0014-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0014-ABCDEFFEDCBC}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0015-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0015-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0015-ABCDEFFEDCBC}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0016-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0016-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0016-ABCDEFFEDCBC}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0017-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0017-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0017-ABCDEFFEDCBC}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0018-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0018-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0018-ABCDEFFEDCBC}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0019-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0019-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0019-ABCDEFFEDCBC}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0020-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0020-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0020-ABCDEFFEDCBC}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0021-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0021-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0021-ABCDEFFEDCBC}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0022-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0022-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0022-ABCDEFFEDCBC}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0023-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0023-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0023-ABCDEFFEDCBC}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0024-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0024-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0024-ABCDEFFEDCBC}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0025-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0025-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0025-ABCDEFFEDCBC}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0026-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0026-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0026-ABCDEFFEDCBC}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0027-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0027-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0027-ABCDEFFEDCBC}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0028-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0028-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0028-ABCDEFFEDCBC}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0029-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0029-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0029-ABCDEFFEDCBC}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0030-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0030-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0030-ABCDEFFEDCBC}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0031-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0031-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0031-ABCDEFFEDCBC}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0032-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0032-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0032-ABCDEFFEDCBC}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0033-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0033-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0033-ABCDEFFEDCBC}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0034-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0034-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0034-ABCDEFFEDCBC}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0035-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0035-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0035-ABCDEFFEDCBC}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0036-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0036-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0036-ABCDEFFEDCBC}

Removed registry subkey tree: {CAFEEFAC-0015-0000-FFFF-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0000-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0000-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0000-ABCDEFFEDCBC}

Removed registry subkey tree: {CAFEEFAC-0016-0000-FFFF-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0001-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0001-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0001-ABCDEFFEDCBC}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0002-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0002-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0002-ABCDEFFEDCBC}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0003-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0003-ABCDEFFEDCBC}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0004-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0004-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0004-ABCDEFFEDCBC}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0005-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0005-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0005-ABCDEFFEDCBC}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0006-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0006-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0006-ABCDEFFEDCBC}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBC}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0008-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0008-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0008-ABCDEFFEDCBC}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0009-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0009-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0009-ABCDEFFEDCBC}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0010-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0010-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0010-ABCDEFFEDCBC}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0011-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0011-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0011-ABCDEFFEDCBC}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0012-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0012-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0012-ABCDEFFEDCBC}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0013-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0013-ABCDEFFEDCBC}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0014-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0014-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0014-ABCDEFFEDCBC}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0015-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0015-ABCDEFFEDCBC}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0016-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0016-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0016-ABCDEFFEDCBC}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0017-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0017-ABCDEFFEDCBC}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0018-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0018-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0018-ABCDEFFEDCBC}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0019-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0019-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0019-ABCDEFFEDCBC}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBC}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBC}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBC}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBC}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBC}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0025-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0025-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0025-ABCDEFFEDCBC}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0026-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0026-ABCDEFFEDCBC}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0027-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0027-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0027-ABCDEFFEDCBC}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0028-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0028-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0028-ABCDEFFEDCBC}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0029-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0029-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0029-ABCDEFFEDCBC}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0030-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0030-ABCDEFFEDCBC}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0031-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0031-ABCDEFFEDCBC}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0032-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0032-ABCDEFFEDCBC}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0033-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0033-ABCDEFFEDCBC}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0034-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0034-ABCDEFFEDCBC}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0035-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0035-ABCDEFFEDCBC}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0036-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0036-ABCDEFFEDCBC}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0037-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0037-ABCDEFFEDCBC}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0038-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0038-ABCDEFFEDCBC}

Removed registry subkey tree: {CAFEEFAC-0017-0000-0000-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0017-0000-0000-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0017-0000-0000-ABCDEFFEDCBC}

Removed registry subkey tree: {CAFEEFAC-0017-0000-0001-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0017-0000-0001-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0017-0000-0001-ABCDEFFEDCBC}

Removed registry subkey tree: {CAFEEFAC-0017-0000-0002-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0017-0000-0002-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0017-0000-0002-ABCDEFFEDCBC}

Removed registry subkey tree: {CAFEEFAC-0017-0000-0003-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0017-0000-0003-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0017-0000-0003-ABCDEFFEDCBC}

Removed registry subkey tree: {CAFEEFAC-0017-0000-0004-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0017-0000-0004-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0017-0000-0004-ABCDEFFEDCBC}

Removed registry subkey tree: {CAFEEFAC-0017-0000-0005-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0017-0000-0005-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0017-0000-0005-ABCDEFFEDCBC}

Removed registry subkey tree: {CAFEEFAC-0017-0000-0006-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0017-0000-0006-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0017-0000-0006-ABCDEFFEDCBC}

Removed registry subkey tree: {CAFEEFAC-0017-0000-0007-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0017-0000-0007-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0017-0000-0007-ABCDEFFEDCBC}

Removed registry subkey tree: {CAFEEFAC-0017-0000-0008-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0017-0000-0008-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0017-0000-0008-ABCDEFFEDCBC}

Removed registry subkey tree: {CAFEEFAC-0017-0000-0009-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0017-0000-0009-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0017-0000-0009-ABCDEFFEDCBC}

Removed registry subkey tree: {CAFEEFAC-0017-0000-0010-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0017-0000-0010-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0017-0000-0010-ABCDEFFEDCBC}

Removed registry subkey tree: {CAFEEFAC-0017-0000-0011-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0017-0000-0011-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0017-0000-0011-ABCDEFFEDCBC}

Removed registry subkey tree: {CAFEEFAC-0017-0000-0012-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0017-0000-0012-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0017-0000-0012-ABCDEFFEDCBC}

Removed registry subkey tree: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0030-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0032-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0034-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0035-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0036-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0037-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0038-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0017-0000-FFFF-ABCDEFFEDCBA}

Removed registry subkey tree: {E19F9331-3110-11D4-991C-005004D3B3DB}

Removed registry subkey tree: Java Update

Removed registry subkey tree: 1.5.0

Removed registry subkey tree: {CAFEEFAC-0013-0000-0003-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0013-0000-0004-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0013-0000-0005-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0013-0001-0000-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0013-0001-0001-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0013-0001-0001-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0013-0001-0002-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0013-0001-0002-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0013-0001-0003-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0013-0001-0003-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0013-0001-0004-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0013-0001-0004-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0013-0001-0005-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0013-0001-0005-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0013-0001-0006-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0013-0001-0006-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0013-0001-0007-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0013-0001-0007-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0013-0001-0008-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0013-0001-0008-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0013-0001-0009-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0013-0001-0009-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0013-0001-0010-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0013-0001-0010-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0013-0001-0011-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0013-0001-0011-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0013-0001-0012-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0013-0001-0012-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0013-0001-0013-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0013-0001-0013-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0013-0001-0014-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0013-0001-0014-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0013-0001-0015-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0013-0001-0015-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0013-0001-0016-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0013-0001-0016-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0013-0001-0017-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0013-0001-0017-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0013-0001-0018-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0013-0001-0018-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0013-0001-0019-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0013-0001-0019-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0013-0001-0020-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0013-0001-0020-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0013-0001-0021-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0013-0001-0021-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0014-0000-0000-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0014-0000-0000-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0014-0000-0001-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0014-0000-0001-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0014-0000-0002-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0014-0000-0002-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0014-0000-0003-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0014-0000-0003-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0014-0000-0004-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0014-0000-0004-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0014-0001-0000-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0014-0001-0000-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0014-0001-0001-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0014-0001-0001-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0014-0001-0002-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0014-0001-0002-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0014-0001-0003-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0014-0001-0003-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0014-0001-0004-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0014-0001-0004-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0014-0001-0005-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0014-0001-0005-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0014-0001-0006-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0014-0001-0006-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0014-0001-0007-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0014-0001-0007-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0014-0002-0000-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0014-0002-0000-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0014-0002-0001-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0014-0002-0001-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0014-0002-0002-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0014-0002-0002-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0014-0002-0003-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0014-0002-0003-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0014-0002-0004-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0014-0002-0004-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0014-0002-0005-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0014-0002-0005-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0014-0002-0006-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0014-0002-0006-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0014-0002-0007-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0014-0002-0007-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0014-0002-0008-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0014-0002-0008-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0014-0002-0009-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0014-0002-0009-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0014-0002-0010-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0014-0002-0010-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0014-0002-0011-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0014-0002-0011-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0014-0002-0012-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0014-0002-0012-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0014-0002-0013-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0014-0002-0013-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0014-0002-0014-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0014-0002-0014-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0014-0002-0015-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0014-0002-0015-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0014-0002-0016-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0014-0002-0016-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0014-0002-0017-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0014-0002-0017-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0014-0002-0018-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0014-0002-0018-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0014-0002-0019-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0014-0002-0019-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0000-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0000-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0001-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0001-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0002-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0002-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0003-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0003-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0004-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0004-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0005-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0005-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0006-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0006-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0007-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0007-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0008-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0008-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0009-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0009-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0010-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0010-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0011-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0011-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0012-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0012-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0013-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0013-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0014-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0014-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0015-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0015-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0016-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0016-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0017-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0017-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0018-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0018-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0019-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0019-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0020-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0020-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0021-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0021-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0022-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0022-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0000-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0000-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0000-ABCDEFFEDCBC}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0001-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0001-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0001-ABCDEFFEDCBC}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0002-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0002-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0002-ABCDEFFEDCBC}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0003-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0003-ABCDEFFEDCBC}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0004-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0004-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0004-ABCDEFFEDCBC}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0005-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0005-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0005-ABCDEFFEDCBC}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0006-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0006-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0006-ABCDEFFEDCBC}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBC}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0008-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0008-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0008-ABCDEFFEDCBC}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0009-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0009-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0009-ABCDEFFEDCBC}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0010-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0010-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0010-ABCDEFFEDCBC}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0011-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0011-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0011-ABCDEFFEDCBC}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0012-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0012-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0012-ABCDEFFEDCBC}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0013-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0013-ABCDEFFEDCBC}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0014-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0014-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0014-ABCDEFFEDCBC}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0015-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0015-ABCDEFFEDCBC}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0016-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0016-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0016-ABCDEFFEDCBC}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0017-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0017-ABCDEFFEDCBC}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0018-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0018-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0018-ABCDEFFEDCBC}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0019-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0019-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0019-ABCDEFFEDCBC}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBC}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBC}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBC}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBC}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBC}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0025-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0025-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0025-ABCDEFFEDCBC}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0026-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0026-ABCDEFFEDCBC}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0027-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0027-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0027-ABCDEFFEDCBC}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0028-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0028-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0028-ABCDEFFEDCBC}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0029-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0029-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0029-ABCDEFFEDCBC}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0030-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0030-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0030-ABCDEFFEDCBC}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0031-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0031-ABCDEFFEDCBC}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0032-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0032-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0032-ABCDEFFEDCBC}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0033-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0033-ABCDEFFEDCBC}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0034-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0034-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0034-ABCDEFFEDCBC}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0035-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0035-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0035-ABCDEFFEDCBC}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0036-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0036-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0036-ABCDEFFEDCBC}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0037-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0037-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0037-ABCDEFFEDCBC}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0038-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0038-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0016-0000-0038-ABCDEFFEDCBC}

Removed registry subkey tree: {CAFEEFAC-0017-0000-0000-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0017-0000-0000-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0017-0000-0000-ABCDEFFEDCBC}

Removed registry subkey tree: {CAFEEFAC-0017-0000-0001-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0017-0000-0001-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0017-0000-0001-ABCDEFFEDCBC}

Removed registry subkey tree: {CAFEEFAC-0017-0000-0002-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0017-0000-0002-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0017-0000-0002-ABCDEFFEDCBC}

Removed registry subkey tree: {CAFEEFAC-0017-0000-0003-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0017-0000-0003-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0017-0000-0003-ABCDEFFEDCBC}

Removed registry subkey tree: {CAFEEFAC-0017-0000-0004-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0017-0000-0004-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0017-0000-0004-ABCDEFFEDCBC}

Removed registry subkey tree: {CAFEEFAC-0017-0000-0005-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0017-0000-0005-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0017-0000-0005-ABCDEFFEDCBC}

Removed registry subkey tree: {CAFEEFAC-0017-0000-0006-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0017-0000-0006-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0017-0000-0006-ABCDEFFEDCBC}

Removed registry subkey tree: {CAFEEFAC-0017-0000-0007-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0017-0000-0007-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0017-0000-0007-ABCDEFFEDCBC}

Removed registry subkey tree: {CAFEEFAC-0017-0000-0008-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0017-0000-0008-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0017-0000-0008-ABCDEFFEDCBC}

Removed registry subkey tree: {CAFEEFAC-0017-0000-0009-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0017-0000-0009-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0017-0000-0009-ABCDEFFEDCBC}

Removed registry subkey tree: {CAFEEFAC-0017-0000-0010-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0017-0000-0010-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0017-0000-0010-ABCDEFFEDCBC}

Removed registry subkey tree: {CAFEEFAC-0017-0000-0011-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0017-0000-0011-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0017-0000-0011-ABCDEFFEDCBC}

Removed registry subkey tree: {CAFEEFAC-0017-0000-0012-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0017-0000-0012-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0017-0000-0012-ABCDEFFEDCBC}

Removed registry subkey: 1.0.1

Removed registry subkey: 1.0.1_02

Removed registry subkey: 1.0.1_03

Removed registry subkey: 1.0.1_04

Removed registry subkey: 1.2

Removed registry subkey: 1.2.0_01

Removed registry subkey tree: JavaSoft

Removed registry subkey tree: {08B0E5C0-4FCB-11CF-AAA5-00401C608501}

Removed registry subkey tree: {5852F5ED-8BF4-11D4-A245-0080C6F74284}

Removed registry subkey tree: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43}

Removed registry subkey tree: {8AD9C840-044E-11D1-B3E9-00805F499D93}

Removed registry subkey tree: {CAFEEFAC-DEC7-0000-0001-ABCDEFFEDCBA}

Removed registry subkey tree: {DBC80044-A445-435b-BC74-9C25C1C588A9}

Removed registry subkey: F60730A4A66673047777F5728467D401

Removed registry subkey tree: F60730A4A66673047777F5728467D401

Removed registry subkey: 6C5ADB75C34456D42B338232391207FF

Removed registry subkey: A5CCAAC40F5B69B47777ACF82566467C

Removed registry subkey tree: {5852F5EC-8BF4-11D4-A245-0080C6F74284}

Removed registry subkey: application/java-deployment-toolkit

Removed registry subkey: application/x-java-applet

Removed registry subkey: application/x-java-jnlp-file

Removed registry subkey tree: {5852F5E0-8BF4-11D4-A245-0080C6F74284}

Removed registry subkey: .jar

Removed registry subkey: .jnlp

Removed registry subkey tree: jarfile

Removed registry subkey tree: JavaWebStart.isInstalled

Removed registry subkey tree: JavaWebStart.isInstalled.1.7.0.0

Removed registry subkey tree: JNLPFile

Removed registry subkey tree: JAVA_SUN

Removed registry subkey: {5852F5ED-8BF4-11D4-A245-0080C6F74284}

Removed registry subkey: javaws.exe

Removed registry subkey tree: Browser Helper Objects

Removed registry subkey: 6C5ADB75C34456D42B338232391207FF

Removed registry subkey: A5CCAAC40F5B69B47777ACF82566467C

Removed registry subkey: 225FA5D4CDB0C57489E7F511C11D0182

Removed registry subkey: 225FC5D4ADB0C57489E7F511C11D0182

Removed registry subkey: 225FC5D4BDB0C57489E7F511C11D0182

Removed registry subkey: 225FC5D4CDB0C57489E7F511C11D0182

Removed registry subkey: 52AAFD69654C07446983ADA1256FC7A9

Removed registry subkey: AD9BB15F1AC776D49B768EDF5A02B896

Removed registry subkey: E1215CC4312C58A4A8F9D630115FB457

Removed registry subkey tree: F60730A4A66673047777F5728467D401

Removed registry subkey: {4A03706F-666A-4037-7777-5F2748764D10}

Removed registry subkey tree: ATs

Removed registry subkey tree: JavaSoft

Removed registry subkey: JreMetrics

Exception encountered in module [JavaRa]

Message: Δεν έχει οριστεί αναφορά αντικειμένου σε μια παρουσία αντικειμένου.

   σε JavaRa.routines_registry.delete_key(String key)

 

Removed registry subkey tree: LEGACY_JAVAQUICKSTARTERSERVICE

Removed registry subkey: JavaQuickStarterService

Removed registry subkey tree: JavaQuickStarterService

Removal routine completed successfully. 790 items have been deleted.

== Cleaning JRE temporary files ==

Exception encountered in module [JavaRa]

Message: Δεν ήταν δυνατή η εύρεση μέρους της διαδρομής 'C:\Documents and Settings\user\Local Settings\Application Data\Sun\Java\Deployment'.

   σε System.IO.__Error.WinIOError(Int32 errorCode, String maybeFullPath)

   σε System.IO.Directory.InternalGetFileDirectoryNames(String path, String userPathOriginal, String searchPattern, Boolean includeFiles, Boolean includeDirs, SearchOption searchOption)

   σε System.IO.Directory.GetFiles(String path, String searchPattern, SearchOption searchOption)

   σε JavaRa.routines_interface.clean_jre_temp_files()

 

 

User initialised redundant data purge.

......................

 

Removed registry subkey tree: {CAFEEFAC-0014-0002-0020-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0014-0002-0020-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0014-0002-0021-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0014-0002-0021-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0014-0002-0022-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0014-0002-0022-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0014-0002-0023-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0014-0002-0023-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0014-0002-0024-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0014-0002-0024-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0014-0002-0025-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0014-0002-0025-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0014-0002-0026-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0014-0002-0026-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0014-0002-0027-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0014-0002-0027-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0014-0002-0028-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0014-0002-0028-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0014-0002-0029-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0014-0002-0029-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0014-0002-0030-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0014-0002-0030-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0014-0002-0031-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0014-0002-0031-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0014-0002-0032-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0014-0002-0032-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0014-0002-0033-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0014-0002-0033-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0014-0002-0034-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0014-0002-0034-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0014-0002-0035-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0014-0002-0035-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0014-0002-0036-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0014-0002-0036-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0014-0002-0037-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0014-0002-0037-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0014-0002-0038-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0014-0002-0038-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0014-0002-FFFF-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0000-ABCDEFFEDCBC}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0001-ABCDEFFEDCBC}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0002-ABCDEFFEDCBC}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0003-ABCDEFFEDCBC}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0004-ABCDEFFEDCBC}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0005-ABCDEFFEDCBC}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0006-ABCDEFFEDCBC}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0007-ABCDEFFEDCBC}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0008-ABCDEFFEDCBC}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0009-ABCDEFFEDCBC}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0010-ABCDEFFEDCBC}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0011-ABCDEFFEDCBC}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0012-ABCDEFFEDCBC}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0013-ABCDEFFEDCBC}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0014-ABCDEFFEDCBC}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0015-ABCDEFFEDCBC}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0016-ABCDEFFEDCBC}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0017-ABCDEFFEDCBC}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0018-ABCDEFFEDCBC}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0019-ABCDEFFEDCBC}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0020-ABCDEFFEDCBC}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0021-ABCDEFFEDCBC}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0022-ABCDEFFEDCBC}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0023-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0023-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0023-ABCDEFFEDCBC}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0024-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0024-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0024-ABCDEFFEDCBC}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0025-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0025-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0025-ABCDEFFEDCBC}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0026-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0026-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0026-ABCDEFFEDCBC}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0027-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0027-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0027-ABCDEFFEDCBC}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0028-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0028-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0028-ABCDEFFEDCBC}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0029-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0029-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0029-ABCDEFFEDCBC}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0030-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0030-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0030-ABCDEFFEDCBC}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0031-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0031-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0031-ABCDEFFEDCBC}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0032-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0032-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0032-ABCDEFFEDCBC}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0033-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0033-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0033-ABCDEFFEDCBC}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0034-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0034-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0034-ABCDEFFEDCBC}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0035-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0035-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0035-ABCDEFFEDCBC}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0036-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0036-ABCDEFFEDCBB}

Removed registry subkey tree: {CAFEEFAC-0015-0000-0036-ABCDEFFEDCBC}

Removed registry subkey tree: {CAFEEFAC-0015-0000-FFFF-ABCDEFFEDCBA}

Removed registry subkey tree: {CAFEEFAC-0016-0000-FFFF-ABCDEFFEDCBA}

Exception encountered in module [JavaRa]

Message: Δεν έχει οριστεί αναφορά αντικειμένου σε μια παρουσία αντικειμένου.

   σε JavaRa.routines_registry.delete_key(String key)

 

Removal routine completed successfully. 106 items have been deleted.



#15 active_active

active_active
  • Topic Starter

  • Members
  • 17 posts
  • OFFLINE
  •  
  • Local time:03:50 PM

Posted 16 October 2014 - 06:56 AM

and this from Security Check

 

 Results of screen317's Security Check version 0.99.88  

 Windows XP Service Pack 3 x86   

 Internet Explorer 8  

``````````````Antivirus/Firewall Check:`````````````` 

 AVG 2015     

`````````Anti-malware/Other Utilities Check:````````` 

 CCleaner     

 Adobe Flash Player 15.0.0.189  

 Adobe Reader XI  

 Google Chrome 37.0.2062.124  

 Google Chrome 38.0.2125.104  

````````Process Check: objlist.exe by Laurent````````  

 AVG avgwdsvc.exe 

 AVG avgrsx.exe 

 AVG avgnsx.exe 

 AVG avgemc.exe 

 All Users Application Data Sudani mDSL OnlineUpdate\ouc.exe 

`````````````````System Health check````````````````` 

 Total Fragmentation on Drive C::  

````````````````````End of Log`````````````````````` 






0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users