Der Computer ist fuer die Verletzung der Gesetze der BRD wurde blockiert

**as_vo** · 17.07.2012, 11:07

Dear Team,

i am also facing a trojan(?) problem in my pc. I let my father surf on internet, while I was at work, and when I came home my pc was blocked by the phrase "Der Computer ist fuer die Verletzung der Gesetze....".
I couldn't do anything in the "normal mode", so I turned it in "safe mode" and read some messages in your very helpful forum.
Then I downloaded the "Malwarebytes" and let it full scan. There were found 3 trojans, I put the threats in quarantine and tried to access again from "normal mode". It worked, the message "der computer...." disappeared and the pc was unblocked.
But I am not sure that my pc is totaly clean from viruses. That's why I downloaded and runed the OTL. The files are in Anhang.
What should I do next?

I would appreciate your help.
Best regards

**Jintan** · 25.07.2012, 00:31

Καλώς ήρθατε στο Hilfe-Forum der Anti-Botnet-Experten as_vo,

If you would, please post your log results here, directly in your request thread. I will go ahead and post those first two log files for you.

OTL logfile created on: 17/7/2012 12:21:15 μμ - Run 4
OTL by OldTimer - Version 3.2.54.0 Folder = C:\Documents and Settings\Administrator\Επιφάνεια εργασίας
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000408 | Country: Ελλάδα | Language: ELL | Date Format: d/M/yyyy

1014,36 Mb Total Physical Memory | 739,39 Mb Available Physical Memory | 72,89% Memory free
2,39 Gb Paging File | 2,25 Gb Available in Paging File | 94,28% Paging File free
Paging file location(s): C:\pagefile.sys 1524 3048 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 74,21 Gb Total Space | 50,85 Gb Free Space | 68,52% Space Free | Partition Type: NTFS
Drive D: | 73,25 Gb Total Space | 69,99 Gb Free Space | 95,55% Space Free | Partition Type: NTFS
Drive E: | 7,47 Gb Total Space | 6,92 Gb Free Space | 92,63% Space Free | Partition Type: FAT32

Computer Name: ASPASIA | User Name: Administrator | Logged in as Administrator.
Boot Mode: SafeMode with Networking | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - C:\Documents and Settings\Administrator\Επιφάνεια εργασίας\OTL.exe (OldTimer Tools)
PRC - C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
PRC - C:\WINDOWS\explorer.exe (Microsoft Corporation)

========== Modules (No Company Name) ==========

MOD - C:\Program Files\Mozilla Firefox\mozjs.dll ()

========== Win32 Services (SafeList) ==========

SRV - (HidServ) -- %SystemRoot%\System32\hidserv.dll File not found
SRV - (AppMgmt) -- %SystemRoot%\System32\appmgmts.dll File not found
SRV - (AdobeFlashPlayerUpdateSvc) -- C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe (Adobe Systems Incorporated)
SRV - (MBAMService) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe (Malwarebytes Corporation)
SRV - (MozillaMaintenance) -- C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe (Mozilla Foundation)
SRV - (Skype C2C Service) -- C:\Documents and Settings\All Users\Application Data\Skype\Toolbars\Skype C2C Service\c2c_service.exe (Skype Technologies S.A.)
SRV - (SkypeUpdate) -- C:\Program Files\Skype\Updater\Updater.exe (Skype Technologies)
SRV - (UserAccess7) SecuROM User Access Service (V7) -- C:\WINDOWS\system32\UAService7.exe ()
SRV - (avast! Antivirus) -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe (AVAST Software)
SRV - (ACS) -- C:\WINDOWS\system32\acs.exe (Atheros)
SRV - (TOSHIBA Bluetooth Service) -- c:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe (TOSHIBA CORPORATION)
SRV - (Thpsrv) -- C:\WINDOWS\system32\ThpSrv.exe (TOSHIBA Corporation)
SRV - (TODDSrv) -- C:\WINDOWS\system32\TODDSrv.exe (TOSHIBA Corporation)
SRV - (CFSvcs) -- C:\Program Files\Toshiba\ConfigFree\CFSvcs.exe (TOSHIBA CORPORATION)

========== Driver Services (SafeList) ==========

DRV - (WDICA) -- File not found
DRV - (USBCCID) -- system32\DRIVERS\RtsUCcid.sys File not found
DRV - (RtsUIR) -- system32\DRIVERS\Rts516xIR.sys File not found
DRV - (RSUSBSTOR) -- System32\Drivers\RtsUStor.sys File not found
DRV - (PDRFRAME) -- File not found
DRV - (PDRELI) -- File not found
DRV - (PDFRAME) -- File not found
DRV - (PDCOMP) -- File not found
DRV - (PCIDump) -- File not found
DRV - (lbrtfdc) -- File not found
DRV - (i2omgmt) -- File not found
DRV - (Changer) -- File not found
DRV - (MBAMProtector) -- C:\WINDOWS\system32\drivers\mbam.sys (Malwarebytes Corporation)
DRV - (aswSnx) -- C:\WINDOWS\System32\drivers\aswSnx.sys (AVAST Software)
DRV - (aswSP) -- C:\WINDOWS\System32\drivers\aswSP.sys (AVAST Software)
DRV - (AswRdr) -- C:\WINDOWS\System32\drivers\aswRdr.sys (AVAST Software)
DRV - (aswTdi) -- C:\WINDOWS\System32\drivers\aswTdi.sys (AVAST Software)
DRV - (aswMon2) -- C:\WINDOWS\System32\drivers\aswmon2.sys (AVAST Software)
DRV - (aswFsBlk) -- C:\WINDOWS\System32\drivers\aswFsBlk.sys (AVAST Software)
DRV - (Aavmker4) -- C:\WINDOWS\System32\drivers\aavmker4.sys (AVAST Software)
DRV - (UVCFTR) -- C:\WINDOWS\system32\drivers\UVCFTR_S.SYS (Chicony Electronics Co., Ltd.)
DRV - (cecnuvc) -- C:\WINDOWS\system32\drivers\cec_uvc.sys (Chicony Electronics Co., Ltd.)
DRV - (IntcAzAudAddService) Service for Realtek HD Audio (WDM) -- C:\WINDOWS\system32\drivers\RtkHDAud.sys (Realtek Semiconductor Corp.)
DRV - (TVALZ) -- C:\WINDOWS\system32\drivers\TVALZ_O.SYS (TOSHIBA Corporation)
DRV - (AR5416) -- C:\WINDOWS\system32\drivers\athw.sys (Atheros Communications, Inc.)
DRV - (RTLE8023xp) -- C:\WINDOWS\system32\drivers\Rtenicxp.sys (Realtek Semiconductor Corporation )
DRV - (Tosrfusb) -- C:\WINDOWS\system32\drivers\tosrfusb.sys (TOSHIBA CORPORATION)
DRV - (TosRfSnd) -- C:\WINDOWS\system32\drivers\TosRfSnd.sys (TOSHIBA Corporation)
DRV - (tosrfbd) -- C:\WINDOWS\system32\drivers\tosrfbd.sys (TOSHIBA CORPORATION)
DRV - (Tosrfhid) -- C:\WINDOWS\system32\drivers\Tosrfhid.sys (TOSHIBA Corporation.)
DRV - (Tosrfcom) -- C:\WINDOWS\system32\drivers\tosrfcom.sys (TOSHIBA Corporation)
DRV - (Thpdrv) -- C:\WINDOWS\system32\drivers\thpdrv.sys (TOSHIBA Corporation)
DRV - (Ambfilt) -- C:\WINDOWS\system32\drivers\Ambfilt.sys (Creative)
DRV - (TPwSav) -- C:\WINDOWS\system32\drivers\TPwSav.sys (TOSHIBA )
DRV - (tosporte) -- C:\WINDOWS\system32\drivers\tosporte.sys (TOSHIBA Corporation)
DRV - (tosrfbnp) -- C:\WINDOWS\system32\drivers\tosrfbnp.sys (TOSHIBA Corporation)
DRV - (Thpevm) -- C:\WINDOWS\system32\drivers\Thpevm.sys (TOSHIBA Corporation)
DRV - (tdcmdpst) -- C:\WINDOWS\system32\drivers\tdcmdpst.sys (TOSHIBA Corporation.)
DRV - (tosrfec) -- C:\WINDOWS\system32\drivers\tosrfec.sys (TOSHIBA Corporation)
DRV - (Monfilt) -- C:\WINDOWS\system32\drivers\Monfilt.sys (Creative Technology Ltd.)
DRV - (tosrfnds) -- C:\WINDOWS\system32\drivers\tosrfnds.sys (TOSHIBA Corporation.)
DRV - (Netdevio) -- C:\WINDOWS\system32\drivers\Netdevio.sys (TOSHIBA Corporation.)

========== Standard Registry (SafeList) ==========

========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Secondary Start Pages = [Binary data over 100 bytes]
IE - HKLM\..\SearchScopes,DefaultScope =
IE - HKLM\..\SearchScopes\{2171D833-2A37-499F-97AD-300E4350E77A}: "URL" = http://www.google.com/search?sourceid=ie&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7TSEF

IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-21-59574684-1337904221-2986936216-500\SOFTWARE\Microsoft\Internet Explorer\Main,SearchDefaultBranded = 1
IE - HKU\S-1-5-21-59574684-1337904221-2986936216-500\..\SearchScopes\{70DD34BD-E728-4C42-832B-1DFC62C68BA0}: "URL" = http://www.google.com/search?sourceid=ie&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7TSEF
IE - HKU\S-1-5-21-59574684-1337904221-2986936216-500\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..network.proxy.type: 0
FF - user.js - File not found

FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@google.com/npPicasa2,version=2.0.0: C:\Program Files\Picasa2\npPicasa2.dll (Google, Inc.)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\plugin2\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\5.1.10411.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.0.1: C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF - HKLM\Software\MozillaPlugins\@winzip.com/Winzip Courier: C:\Program Files\WinZip Courier\npwzwmc.dll (WinZip Computing, S.L.)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\extensions\\wrc@avast.com: C:\Program Files\AVAST Software\Avast\WebRep\FF [2012/04/22 00:53:25 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\extensions\\{74c841e3-b59f-479e-8d7a-e26a942a87c8}: C:\Program Files\WinZip Courier\FFExt [2012/06/19 00:03:48 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\extensions\\smartwebprinting@hp.com: C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn2 [2012/06/26 16:44:51 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 13.0.1\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2012/06/25 00:01:36 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 13.0.1\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins

[2012/07/17 00:03:25 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Administrator\Application Data\Mozilla\Extensions
[2012/06/26 16:16:17 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2012/06/23 00:41:08 | 000,000,000 | ---D | M] (Skype Click to Call) -- C:\Program Files\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
[2012/06/25 00:01:36 | 000,085,472 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll
[2012/06/25 00:01:27 | 000,001,525 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\amazon-en-GB.xml
[2012/06/19 00:03:21 | 000,003,749 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\avg-secure-search.xml
[2012/06/25 00:01:27 | 000,002,252 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\bing.xml
[2012/06/25 00:01:27 | 000,000,760 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\eBay-en-GB.xml
[2012/06/25 00:01:27 | 000,001,219 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-el.xml

O1 HOSTS File: ([2012/07/17 00:18:17 | 000,000,944 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
O2 - BHO: (WinZip Courier BHO) - {A8FB70FA-0FDF-4601-9DC4-BFA1B357204F} - C:\Program Files\WinZip Courier\wzwmcie.dll (WinZip Computing, S.L.)
O2 - BHO: (Skype Browser Helper) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O2 - BHO: (QUICKfind BHO Object) - {C08DF07A-3E49-4E25-9AB0-D3882835F153} - C:\Program Files\IDM\QUICKfind\PlugIns\IEHelp.dll ()
O3 - HKLM\..\Toolbar: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
O4 - HKLM..\Run: [ACU] C:\Program Files\Atheros\ACU.exe (Atheros Communications, Inc.)
O4 - HKLM..\Run: [APSDaemon] C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc.)
O4 - HKLM..\Run: [avast] C:\Program Files\AVAST Software\Avast\avastUI.exe (AVAST Software)
O4 - HKLM..\Run: [CFSServ.exe] CFSServ.exe -NoClient File not found
O4 - HKLM..\Run: [hpqSRMon] File not found
O4 - HKLM..\Run: [HWSetup] C:\Program Files\TOSHIBA\TOSHIBA Applet\HWSetup.exe (TOSHIBA CO.,LTD.)
O4 - HKLM..\Run: [Malwarebytes' Anti-Malware] C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation)
O4 - HKLM..\Run: [NDSTray.exe] NDSTray.exe File not found
O4 - HKLM..\Run: [SVPWUTIL] C:\Program Files\Toshiba\Windows Utilities\SVPWUTIL.exe (TOSHIBA)
O4 - HKLM..\Run: [TDispVol] C:\WINDOWS\System32\TDispVol.exe (TOSHIBA Corporation)
O4 - HKLM..\Run: [ThpSrv] C:\WINDOWS\System32\thpsrv.exe (TOSHIBA Corporation)
O4 - HKLM..\Run: [TPNF] C:\Program Files\Toshiba\TouchPad\TPTray.exe (COMPAL ELECTRONIC INC.)
O4 - HKLM..\Run: [TPSMain] C:\WINDOWS\System32\TPSMain.exe (TOSHIBA Corporation.)
O4 - HKU\.DEFAULT..\Run: [TOSHIBA Online Product Information] C:\Program Files\Toshiba\Toshiba Online Product Information\TOPI.exe (TOSHIBA)
O4 - HKU\S-1-5-18..\Run: [TOSHIBA Online Product Information] C:\Program Files\Toshiba\Toshiba Online Product Information\TOPI.exe (TOSHIBA)
O4 - HKU\S-1-5-21-59574684-1337904221-2986936216-500..\Run: [TOSHIBA Online Product Information] C:\Program Files\Toshiba\Toshiba Online Product Information\TOPI.exe (TOSHIBA)
O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Προγράμματα\Εκκίνηση\Bluetooth Manager.lnk = C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtMng.exe (TOSHIBA CORPORATION.)
O4 - Startup: C:\Documents and Settings\ASPASIA VOLONAKI\Start Menu\Προγράμματα\Εκκίνηση\DesktopEarth AutoStart.lnk = File not found
O4 - Startup: C:\Documents and Settings\ASPASIA VOLONAKI\Start Menu\Προγράμματα\Εκκίνηση\OpenOffice.org 3.2.lnk = C:\Program Files\OpenOffice.org 3\program\quickstart.exe ()
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-59574684-1337904221-2986936216-500\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O9 - Extra Button: eBay - {76577871-04EC-495E-A12B-91F7C3600AFA} - http://rover.ebay.com/rover/1/710-71511-9400-1/4 File not found
O9 - Extra Button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra 'Tools' menuitem : Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O16 - DPF: {CAFEEFAC-0016-0000-0018-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jin...ndows-i586.cab (Java Plug-in 1.6.0_18)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.2.1 192.168.2.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{FC26E49C-AA97-4DCF-9949-D17246FE4ECE}: DhcpNameServer = 192.168.2.1 192.168.2.1
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
O24 - Desktop WallPaper: C:\WINDOWS\Web\Wallpaper\NB200_Wallpaper_Final_high2.bmp
O24 - Desktop BackupWallPaper: C:\WINDOWS\Web\Wallpaper\NB200_Wallpaper_Final_high2.bmp
O28 - HKLM ShellExecuteHooks: {56F9679E-7826-4C84-81F3-532071A8BCC5} - C:\Program Files\Windows Desktop Search\MsnlNamespaceMgr.dll (Microsoft Corporation)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009/04/10 23:49:08 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O33 - MountPoints2\{ccf34912-261f-11de-8683-00235a07d4ff}\Shell\AutoRun\command - "" = D:\USB-Menu\pstart.exe
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)

========== Files/Folders - Created Within 30 Days ==========

[2012/07/17 02:04:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Application Data\Malwarebytes
[2012/07/17 02:04:20 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Προγράμματα\Malwarebytes' Anti-Malware
[2012/07/17 02:04:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Malwarebytes
[2012/07/17 02:04:18 | 000,022,344 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
[2012/07/17 02:04:18 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2012/07/17 02:03:15 | 010,063,000 | ---- | C] (Malwarebytes Corporation ) -- C:\Documents and Settings\Administrator\Επιφάνεια εργασίας\mbam-setup.exe
[2012/07/17 01:51:57 | 000,000,000 | ---D | C] -- C:\_OTL
[2012/07/17 01:46:29 | 000,596,480 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Administrator\Επιφάνεια εργασίας\OTL.exe
[2012/07/17 01:22:53 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Local Settings\Application Data\Temp
[2012/07/17 00:14:32 | 000,289,144 | ---- | C] (S!Ri) -- C:\WINDOWS\System32\VCCLSID.exe
[2012/07/17 00:14:32 | 000,288,417 | ---- | C] (S!Ri) -- C:\WINDOWS\System32\SrchSTS.exe
[2012/07/17 00:14:32 | 000,135,168 | ---- | C] (SteelWerX) -- C:\WINDOWS\System32\swreg.exe
[2012/07/17 00:14:32 | 000,087,552 | ---- | C] (S!Ri.URZ) -- C:\WINDOWS\System32\VACFix.exe
[2012/07/17 00:14:32 | 000,082,944 | ---- | C] (S!Ri.URZ) -- C:\WINDOWS\System32\IEDFix.exe
[2012/07/17 00:14:32 | 000,082,944 | ---- | C] (S!Ri.URZ) -- C:\WINDOWS\System32\IEDFix.C.exe
[2012/07/17 00:14:32 | 000,082,432 | ---- | C] (S!Ri.URZ) -- C:\WINDOWS\System32\404Fix.exe
[2012/07/17 00:14:32 | 000,080,384 | ---- | C] (S!Ri.URZ) -- C:\WINDOWS\System32\o4Patch.exe
[2012/07/17 00:14:32 | 000,079,360 | ---- | C] (SteelWerX) -- C:\WINDOWS\System32\swxcacls.exe
[2012/07/17 00:14:32 | 000,078,336 | ---- | C] (S!Ri.URZ) -- C:\WINDOWS\System32\Agent.OMZ.Fix.exe
[2012/07/17 00:14:32 | 000,053,248 | ---- | C] (http://www.beyondlogic.org) -- C:\WINDOWS\System32\Process.exe
[2012/07/17 00:14:11 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Τα έγγραφά μου\Ληφθέντα αρχεία
[2012/07/17 00:05:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Application Data\Macromedia
[2012/07/17 00:03:13 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Local Settings\Application Data\Mozilla
[2012/07/17 00:03:13 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Application Data\Mozilla
[2012/07/17 00:02:30 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Administrator\IETldCache
[2012/07/17 00:01:58 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Application Data\InstallShield
[2012/07/17 00:01:58 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Application Data\Identities
[2012/07/17 00:01:58 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Application Data\Adobe
[2012/07/17 00:01:57 | 000,000,000 | --SD | C] -- C:\Documents and Settings\Administrator\Application Data\Microsoft
[2012/07/17 00:01:57 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Administrator\SendTo
[2012/07/17 00:01:57 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Administrator\Recent
[2012/07/17 00:01:57 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Administrator\Application Data
[2012/07/17 00:01:57 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Administrator\Τα έγγραφά μου
[2012/07/17 00:01:57 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Administrator\Τα έγγραφά μου\Οι εικόνες μου
[2012/07/17 00:01:57 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Administrator\Τα έγγραφά μου\Η μουσική μου
[2012/07/17 00:01:57 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Administrator\Start Menu\Προγράμματα\Εκκίνηση
[2012/07/17 00:01:57 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Administrator\Start Menu\Προγράμματα\Βοηθήματα
[2012/07/17 00:01:57 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Administrator\Start Menu
[2012/07/17 00:01:57 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Administrator\Favorites
[2012/07/17 00:01:57 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Administrator\Cookies
[2012/07/17 00:01:57 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Administrator\Templates
[2012/07/17 00:01:57 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Administrator\PrintHood
[2012/07/17 00:01:57 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Administrator\Local Settings
[2012/07/17 00:01:57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Επιφάνεια εργασίας
[2012/07/17 00:01:57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Application Data\Windows Desktop Search
[2012/07/17 00:01:57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Application Data\toshiba
[2012/07/17 00:01:57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Application Data\Sun
[2012/07/17 00:01:57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Local Settings\Application Data\Seven Zip
[2012/07/17 00:01:57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Nethood
[2012/07/17 00:01:57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Local Settings\Application Data\Microsoft Help
[2012/07/17 00:01:57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Local Settings\Application Data\Microsoft
[2012/07/17 00:01:57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Local Settings\Application Data\Identities
[2012/07/17 00:01:57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Local Settings\Application Data\ApplicationHistory
[2012/07/17 00:01:57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Local Settings\Application Data\Adobe
[2012/06/29 21:35:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\Minidump
[2012/06/29 21:27:20 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Προγράμματα\Microsoft Silverlight
[2012/06/29 21:27:08 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Silverlight
[2012/06/28 11:32:42 | 000,000,000 | ---D | C] -- C:\WINDOWS\Hewlett-Packard
[2012/06/26 16:42:50 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\HP Product Assistant
[2012/06/26 16:41:22 | 000,729,088 | ---- | C] (Hewlett-Packard) -- C:\WINDOWS\System32\hpowiax7.dll
[2012/06/26 16:41:22 | 000,581,632 | ---- | C] (Hewlett-Packard Co.) -- C:\WINDOWS\System32\hpotscl6.dll
[2012/06/26 16:41:22 | 000,303,104 | ---- | C] (Hewlett-Packard Co.) -- C:\WINDOWS\System32\hpovst15.dll
[2012/06/26 16:18:37 | 000,000,000 | --SD | C] -- C:\Documents and Settings\All Users\Start Menu\Προγράμματα\OpenOffice.org 3.2
[2012/06/26 16:17:10 | 000,000,000 | ---D | C] -- C:\Program Files\JRE
[2012/06/26 16:16:54 | 000,000,000 | ---D | C] -- C:\Program Files\OpenOffice.org 3
[2012/06/26 16:16:15 | 000,157,472 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaws.exe
[2012/06/26 16:16:15 | 000,149,280 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaw.exe
[2012/06/26 16:16:15 | 000,149,280 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\java.exe
[2012/06/26 15:56:21 | 000,275,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mucltui.dll
[2012/06/26 15:56:21 | 000,018,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mucltui.dll.mui
[2012/06/26 10:50:40 | 000,000,000 | ---D | C] -- C:\Program Files\MSXML 4.0
[2012/06/26 00:36:14 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\WEBREG
[2012/06/26 00:30:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Προγράμματα\HP
[2012/06/26 00:30:01 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\HP
[2012/06/25 14:37:22 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mouhid.sys
[2012/06/25 14:37:16 | 000,010,368 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hidusb.sys
[2012/06/25 00:26:41 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\HP
[2012/06/25 00:26:37 | 000,000,000 | ---D | C] -- C:\Program Files\Hewlett-Packard
[2012/06/25 00:26:30 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Hewlett-Packard
[2012/06/25 00:25:53 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Hewlett-Packard
[2012/06/25 00:25:30 | 000,118,272 | ---- | C] (Hewlett-Packard Company) -- C:\WINDOWS\System32\hpz3l5mu.dll
[2012/06/25 00:24:33 | 000,372,736 | ---- | C] (Hewlett-Packard) -- C:\WINDOWS\System32\hppldcoi.dll
[2012/06/25 00:24:33 | 000,309,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\difxapi.dll
[2012/06/25 00:24:28 | 000,271,704 | ---- | C] (Hewlett-Packard) -- C:\WINDOWS\System32\hpzids01.dll
[2012/06/25 00:24:12 | 000,000,000 | ---D | C] -- C:\Program Files\HP
[2012/06/25 00:23:35 | 000,000,000 | -H-D | C] -- C:\Config.Msi
[2012/06/25 00:04:37 | 000,025,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\usbprint.sys
[2012/06/19 00:04:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Προγράμματα\WinZip
[2012/06/19 00:04:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\WinZip
[2012/06/19 00:04:10 | 000,000,000 | ---D | C] -- C:\Program Files\WinZip
[2012/06/19 00:03:51 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\WinZipEC
[2012/06/19 00:03:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Προγράμματα\WinZip Courier
[2012/06/19 00:03:46 | 000,000,000 | ---D | C] -- C:\Program Files\WinZip Courier
[2012/06/18 17:18:08 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NetworkService\Local Settings\Application Data\Apple
[2012/06/18 00:51:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Προγράμματα\iTunes
[2012/06/18 00:51:01 | 000,107,368 | ---- | C] (GEAR Software Inc.) -- C:\WINDOWS\System32\GEARAspi.dll
[2012/06/18 00:49:49 | 000,000,000 | ---D | C] -- C:\Program Files\iPod
[2012/06/18 00:49:36 | 000,000,000 | ---D | C] -- C:\Program Files\iTunes
[2012/06/18 00:49:36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Apple Computer
[2012/06/18 00:49:36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\{429CAD59-35B1-4DBC-BB6D-1DB246563521}
[2012/06/18 00:48:33 | 000,000,000 | ---D | C] -- C:\Program Files\Apple Software Update
[2012/06/18 00:48:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Application Data\Apple Computer
[2012/06/18 00:48:12 | 004,547,944 | ---- | C] (Apple, Inc.) -- C:\WINDOWS\System32\usbaaplrc.dll
[2012/06/18 00:47:36 | 000,000,000 | ---D | C] -- C:\Program Files\Bonjour
[2012/06/18 00:47:04 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Apple
[2012/06/18 00:47:04 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Apple
[2012/06/18 00:32:13 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ptpusb.dll
[2012/06/18 00:32:11 | 000,159,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ptpusd.dll
[2012/06/18 00:32:09 | 000,015,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\usbscan.sys
[2 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2012/07/17 12:20:24 | 000,000,664 | ---- | M] () -- C:\WINDOWS\System32\d3d9caps.dat
[2012/07/17 12:19:10 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2012/07/17 11:33:21 | 000,000,830 | ---- | M] () -- C:\WINDOWS\tasks\Adobe Flash Player Updater.job
[2012/07/17 02:07:00 | 000,000,786 | ---- | M] () -- C:\Documents and Settings\All Users\Επιφάνεια εργασίας\Malwarebytes Anti-Malware.lnk
[2012/07/17 02:03:18 | 010,063,000 | ---- | M] (Malwarebytes Corporation ) -- C:\Documents and Settings\Administrator\Επιφάνεια εργασίας\mbam-setup.exe
[2012/07/17 01:46:29 | 000,596,480 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Administrator\Επιφάνεια εργασίας\OTL.exe
[2012/07/17 00:18:24 | 000,002,756 | ---- | M] () -- C:\WINDOWS\System32\tmp.reg
[2012/07/16 17:18:07 | 000,000,284 | ---- | M] () -- C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[2012/07/12 13:33:28 | 000,426,184 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerApp.exe
[2012/07/12 13:33:27 | 000,070,344 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerCPLApp.cpl
[2012/07/12 08:33:48 | 000,211,288 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2012/07/12 03:17:35 | 000,001,374 | ---- | M] () -- C:\WINDOWS\imsins.BAK
[2012/07/10 23:33:25 | 000,002,269 | ---- | M] () -- C:\Documents and Settings\All Users\Επιφάνεια εργασίας\Skype.lnk
[2012/07/03 13:46:44 | 000,022,344 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
[2012/07/01 17:02:41 | 000,054,156 | -H-- | M] () -- C:\WINDOWS\QTFont.qfn
[2012/06/26 16:48:03 | 000,188,279 | ---- | M] () -- C:\WINDOWS\hpoins28.dat
[2012/06/26 16:44:06 | 000,001,810 | ---- | M] () -- C:\Documents and Settings\All Users\Start Menu\Προγράμματα\Εκκίνηση\HP Digital Imaging Monitor.lnk
[2012/06/26 16:43:05 | 000,000,864 | ---- | M] () -- C:\Documents and Settings\All Users\Επιφάνεια εργασίας\Κέντρο λειτουργιών HP.lnk
[2012/06/26 16:18:39 | 000,000,899 | ---- | M] () -- C:\Documents and Settings\All Users\Επιφάνεια εργασίας\OpenOffice.org 3.2.lnk
[2012/06/25 00:27:04 | 000,185,475 | ---- | M] () -- C:\WINDOWS\hpoins28.dat.temp
[2012/06/23 00:05:53 | 000,001,158 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2012/06/19 00:04:39 | 000,001,734 | ---- | M] () -- C:\Documents and Settings\All Users\Επιφάνεια εργασίας\WinZip.lnk
[2 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

========== Files Created - No Company Name ==========

[2012/07/17 02:04:20 | 000,000,786 | ---- | C] () -- C:\Documents and Settings\All Users\Επιφάνεια εργασίας\Malwarebytes Anti-Malware.lnk
[2012/07/17 00:18:24 | 000,002,756 | ---- | C] () -- C:\WINDOWS\System32\tmp.reg
[2012/07/17 00:14:32 | 000,075,776 | ---- | C] () -- C:\WINDOWS\System32\WS2Fix.exe
[2012/07/17 00:14:32 | 000,051,200 | ---- | C] () -- C:\WINDOWS\System32\dumphive.exe
[2012/07/17 00:14:32 | 000,040,960 | ---- | C] () -- C:\WINDOWS\System32\swsc.exe
[2012/07/17 00:03:19 | 000,000,664 | ---- | C] () -- C:\WINDOWS\System32\d3d9caps.dat
[2012/07/17 00:01:59 | 000,000,786 | ---- | C] () -- C:\Documents and Settings\Administrator\Application Data\Microsoft\Internet Explorer\Quick Launch\Εκκίνηση του προγράμματος ανάγνωσης ιστοσελίδων Internet Explorer.lnk
[2012/07/17 00:01:58 | 000,001,606 | ---- | C] () -- C:\Documents and Settings\Administrator\Start Menu\Προγράμματα\Απομακρυσμένη Βοήθεια.lnk
[2012/07/17 00:01:58 | 000,000,822 | ---- | C] () -- C:\Documents and Settings\Administrator\Application Data\Microsoft\Internet Explorer\Quick Launch\Εκκίνηση του προγράμματος περιήγησης Internet Explorer.lnk
[2012/07/17 00:01:58 | 000,000,810 | ---- | C] () -- C:\Documents and Settings\Administrator\Start Menu\Προγράμματα\Internet Explorer.lnk
[2012/07/17 00:01:58 | 000,000,745 | ---- | C] () -- C:\Documents and Settings\Administrator\Start Menu\Προγράμματα\Outlook Express.lnk
[2012/07/17 00:01:58 | 000,000,128 | ---- | C] () -- C:\Documents and Settings\Administrator\Local Settings\Application Data\fusioncache.dat
[2012/07/17 00:01:58 | 000,000,079 | ---- | C] () -- C:\Documents and Settings\Administrator\Application Data\Microsoft\Internet Explorer\Quick Launch\Εμφάνιση επιφάνειας εργασίας.scf
[2012/06/26 16:44:06 | 000,001,810 | ---- | C] () -- C:\Documents and Settings\All Users\Start Menu\Προγράμματα\Εκκίνηση\HP Digital Imaging Monitor.lnk
[2012/06/26 16:43:05 | 000,000,864 | ---- | C] () -- C:\Documents and Settings\All Users\Επιφάνεια εργασίας\Κέντρο λειτουργιών HP.lnk
[2012/06/26 16:38:16 | 000,188,279 | ---- | C] () -- C:\WINDOWS\hpoins28.dat
[2012/06/26 16:38:16 | 000,000,796 | ---- | C] () -- C:\WINDOWS\hpomdl28.dat
[2012/06/26 16:18:39 | 000,000,899 | ---- | C] () -- C:\Documents and Settings\All Users\Επιφάνεια εργασίας\OpenOffice.org 3.2.lnk
[2012/06/26 00:26:41 | 000,185,475 | ---- | C] () -- C:\WINDOWS\hpoins28.dat.temp
[2012/06/26 00:26:41 | 000,000,796 | ---- | C] () -- C:\WINDOWS\hpomdl28.dat.temp
[2012/06/19 00:04:39 | 000,001,734 | ---- | C] () -- C:\Documents and Settings\All Users\Επιφάνεια εργασίας\WinZip.lnk
[2012/06/18 00:48:48 | 000,000,284 | ---- | C] () -- C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[2012/06/18 00:48:37 | 000,001,830 | ---- | C] () -- C:\Documents and Settings\All Users\Start Menu\Προγράμματα\Apple Software Update.lnk
[2012/04/22 17:38:30 | 000,126,976 | ---- | C] () -- C:\WINDOWS\System32\UAService7.exe
[2012/04/22 17:38:30 | 000,090,112 | ---- | C] () -- C:\WINDOWS\System32\CmdLineExt.dll
[2012/04/22 00:30:03 | 000,003,072 | ---- | C] () -- C:\WINDOWS\System32\iacenc.dll
[2012/04/22 00:17:42 | 000,262,216 | ---- | C] () -- C:\WINDOWS\System32\IPTests.dll

< End of report >

**Jintan** · 25.07.2012, 00:31

OTL Extras logfile created on: 17/7/2012 12:21:15 μμ - Run 4
OTL by OldTimer - Version 3.2.54.0 Folder = C:\Documents and Settings\Administrator\Επιφάνεια εργασίας
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000408 | Country: Ελλάδα | Language: ELL | Date Format: d/M/yyyy

1014,36 Mb Total Physical Memory | 739,39 Mb Available Physical Memory | 72,89% Memory free
2,39 Gb Paging File | 2,25 Gb Available in Paging File | 94,28% Paging File free
Paging file location(s): C:\pagefile.sys 1524 3048 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 74,21 Gb Total Space | 50,85 Gb Free Space | 68,52% Space Free | Partition Type: NTFS
Drive D: | 73,25 Gb Total Space | 69,99 Gb Free Space | 95,55% Space Free | Partition Type: NTFS
Drive E: | 7,47 Gb Total Space | 6,92 Gb Free Space | 92,63% Space Free | Partition Type: FAT32

Computer Name: ASPASIA | User Name: Administrator | Logged in as Administrator.
Boot Mode: SafeMode with Networking | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Extra Registry (SafeList) ==========

========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*

[HKEY_USERS\S-1-5-21-59574684-1337904221-2986936216-500\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
exefile [open] -- "%1" %*
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirstRunDisabled" = 1
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0
"UpdatesDisableNotify" = 0
"AntiVirusOverride" = 0
"FirewallOverride" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]

========== System Restore Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr]
"Start" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService]
"Start" = 2

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
"C:\Program Files\HP\Digital Imaging\bin\hposid01.exe" = C:\Program Files\HP\Digital Imaging\bin\hposid01.exe:*:Enabled:hposid01.exe -- (Hewlett-Packard Co.)
"C:\Program Files\HP\Digital Imaging\bin\hpiscnapp.exe" = C:\Program Files\HP\Digital Imaging\bin\hpiscnapp.exe:*:Enabled:hpiscnapp.exe -- (Hewlett-Packard)
"C:\Program Files\Common Files\HP\Digital Imaging\bin\hpqPhotoCrm.exe" = C:\Program Files\Common Files\HP\Digital Imaging\bin\hpqPhotoCrm.exe:*:Enabled:hpqphotocrm.exe -- (Hewlett-Packard Development Co. L.P.)
"C:\Program Files\HP\Digital Imaging\bin\hpqpsapp.exe" = C:\Program Files\HP\Digital Imaging\bin\hpqpsapp.exe:*:Enabled:hpqpsapp.exe -- (Hewlett-Packard Development Co. L.P.)
"C:\Program Files\HP\Digital Imaging\bin\hpqpse.exe" = C:\Program Files\HP\Digital Imaging\bin\hpqpse.exe:*:Enabled:hpqpse.exe -- (Hewlett-Packard Development Co. L.P.)
"C:\Program Files\HP\Digital Imaging\bin\hpqsudi.exe" = C:\Program Files\HP\Digital Imaging\bin\hpqsudi.exe:*:Enabled:hpqsudi.exe -- (Hewlett-Packard Development Co. L.P.)
"C:\Program Files\HP\Digital Imaging\bin\hpqgplgtupl.exe" = C:\Program Files\HP\Digital Imaging\bin\hpqgplgtupl.exe:*:Enabled:hpqgplgtupl.exe -- (Hewlett-Packard Co.)

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"C:\Program Files\Common Files\Apple\Apple Application Support\WebKit2WebProcess.exe" = C:\Program Files\Common Files\Apple\Apple Application Support\WebKit2WebProcess.exe:*:Enabled:WebKit -- (Apple Inc.)
"C:\Program Files\HP\Digital Imaging\bin\hposid01.exe" = C:\Program Files\HP\Digital Imaging\bin\hposid01.exe:*:Enabled:hposid01.exe -- (Hewlett-Packard Co.)
"C:\Program Files\HP\Digital Imaging\bin\hpiscnapp.exe" = C:\Program Files\HP\Digital Imaging\bin\hpiscnapp.exe:*:Enabled:hpiscnapp.exe -- (Hewlett-Packard)
"C:\Program Files\Common Files\HP\Digital Imaging\bin\hpqPhotoCrm.exe" = C:\Program Files\Common Files\HP\Digital Imaging\bin\hpqPhotoCrm.exe:*:Enabled:hpqphotocrm.exe -- (Hewlett-Packard Development Co. L.P.)
"C:\Program Files\HP\Digital Imaging\bin\hpqpsapp.exe" = C:\Program Files\HP\Digital Imaging\bin\hpqpsapp.exe:*:Enabled:hpqpsapp.exe -- (Hewlett-Packard Development Co. L.P.)
"C:\Program Files\HP\Digital Imaging\bin\hpqpse.exe" = C:\Program Files\HP\Digital Imaging\bin\hpqpse.exe:*:Enabled:hpqpse.exe -- (Hewlett-Packard Development Co. L.P.)
"C:\Program Files\HP\Digital Imaging\bin\hpqsudi.exe" = C:\Program Files\HP\Digital Imaging\bin\hpqsudi.exe:*:Enabled:hpqsudi.exe -- (Hewlett-Packard Development Co. L.P.)
"C:\Program Files\HP\Digital Imaging\bin\hpqgplgtupl.exe" = C:\Program Files\HP\Digital Imaging\bin\hpqgplgtupl.exe:*:Enabled:hpqgplgtupl.exe -- (Hewlett-Packard Co.)

========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{0289B35E-DC07-4c7a-9710-BBD686EA4B7D}" = Status
"{09633A5E-3089-41A8-9FF1-382171423C5D}" = PSSWCORE
"{122ADF8C-DDA1-480C-9936-C88F2825B265}" = Apple Application Support
"{12688FD7-CB92-4A5B-BEE4-5C8E0574434F}" = Utility Common Driver
"{16E8BF9A-B419-4A44-A020-30F8CFB84B9D}" = Atheros Client Utility
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{2290A680-4083-410A-ADCC-7092C67FC052}" = Toshiba Online Product Information
"{22F761D1-8063-4170-ADF7-2D2F47834CA9}" = VideoToolkit01
"{26A24AE4-039D-4CA4-87B4-2F83216018F0}" = Java(TM) 6 Update 18
"{26A24AE4-039D-4CA4-87B4-2F83216031FF}" = Java(TM) 6 Update 31
"{27197499-7680-4208-8FD8-5439CDB0FDC1}" = HPProductAssistant
"{2AFEAA03-2DFE-4519-A629-EDAB6541ABE9}" = HPSSupply
"{2C38F661-26B7-445D-B87D-B53FE2D3BD42}" = TOSHIBA PC Diagnostic Tool
"{2EFA4E4C-7B5F-48F7-A1C0-1AA882B7A9C3}" = HP Update
"{350C9408-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{37C866E4-AA67-4725-9E95-A39968DD7960}" = Camera Assistant Software for Toshiba
"{3A57482F-BEBC-47E4-ADA1-6302403C7E50}" = TOSHIBA Accessibility
"{3D9E9EB7-B14F-4AE4-8C1F-1AD4CF3093BE}" = Microsoft .NET Framework 1.1 Greek Language Pack
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{51B4E156-14A5-4904-9AE4-B1AA2A0E46BE}" = TOSHIBA Supervisor Password
"{5279374D-87FE-4879-9385-F17278EBB9D3}" = TOSHIBA Hardware Setup
"{593A6CAF-E114-4e31-884F-74FF349E8E36}" = SolutionCenter
"{593AFFA4-D08E-4272-BABB-420949D32A10}" = QUICKfind
"{59FDFDFB-52FE-45B1-8A2A-A00079B07FF0}" = TOSHIBA Power Saver Driver
"{60D4F9F1-B828-4048-A5AB-9AA2FD0C4751}" = DJ_AIO_03_F4200_Software
"{6365C963-4B72-43F8-8392-2A5441EC2A86}" = DJ_AIO_03_F4220_ProductContext
"{64212898-097F-4F3F-AECA-6D34A7EF82DF}" = TOSHIBA Zooming Utility
"{65DA2EC9-0642-47E9-AAE2-B5267AA14D75}" = Activation Assistant for the 2007 Microsoft Office suites
"{66E6CE0C-5A1E-430C-B40A-0C90FF1804A8}" = eSupportQFolder
"{68C5D587-4E0C-3657-B1E1-C67153A02750}" = Microsoft .NET Framework 3.5 Language Pack - ell
"{6AD9F5F3-5BD0-4000-BD9C-B536CF86D988}" = iTunes
"{6CF5C442-D9DC-4298-B1EC-8908CB7D4627}" = OpenOffice.org 3.2
"{6F340107-F9AA-47C6-B54C-C3A19F11553F}" = Hewlett-Packard ACLM.NET v1.1.0.0
"{6F5E2F4A-377D-4700-B0E3-8F7F7507EA15}" = CustomerResearchQFolder
"{75052453-E294-3E34-82AE-91BF5E236837}" = Microsoft .NET Framework 3.0 Service Pack 1 Language Pack - ELL
"{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}" = Apple Software Update
"{7900D3A6-A9E8-4954-ACCB-AB15867978BF}" = TOSHIBA Hotkey Utility
"{79155F2B-9895-49D7-8612-D92580E0DE5B}" = Bonjour
"{80977342-27E8-4FF7-8B6A-D8D89461DA7F}" = TouchPad On/Off Utility
"{830B19C7-434B-4589-BDF2-A72640F47CE5}" = Microsoft Works
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8F1ADE4D-EFAC-4F5A-B346-23C2687FAF50}" = Apple Mobile Device Support
"{8F32C384-D237-4516-9F2B-223E8963A2FB}" = Lager
"{8F4D40D4-234B-48F3-9C2F-4906B9D83CC5}" = TOSHIBA - Εγχειρίδια χρήσης
"{8F7AC250-4D7D-431D-AC4E-94FB78EA3F8B}" = TOSHIBA Power Saver
"{90120000-0010-0408-0000-0000000FF1CE}" = Microsoft Software Update for Web Folders (Greek) 12
"{90120000-0016-0408-0000-0000000FF1CE}" = Microsoft Office Excel MUI (Greek) 2007
"{90120000-0016-0408-0000-0000000FF1CE}_HOMESTUDENTR_{F86B508B-F1A2-4841-B906-CDDA3A548A2A}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-0018-0408-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (Greek) 2007
"{90120000-0018-0408-0000-0000000FF1CE}_HOMESTUDENTR_{F86B508B-F1A2-4841-B906-CDDA3A548A2A}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-001B-0408-0000-0000000FF1CE}" = Microsoft Office Word MUI (Greek) 2007
"{90120000-001B-0408-0000-0000000FF1CE}_HOMESTUDENTR_{F86B508B-F1A2-4841-B906-CDDA3A548A2A}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2007
"{90120000-001F-0407-0000-0000000FF1CE}_HOMESTUDENTR_{928D7B99-2BEA-49F9-83B8-20FA57860643}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
"{90120000-001F-0408-0000-0000000FF1CE}" = Microsoft Office Proof (Greek) 2007
"{90120000-001F-0408-0000-0000000FF1CE}_HOMESTUDENTR_{DB0C1C5A-7998-4B95-8BD5-ACACD18B0B53}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-0409-0000-0000000FF1CE}_HOMESTUDENTR_{1FF96026-A04A-4C3E-B50A-BB7022654D0F}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
"{90120000-001F-040C-0000-0000000FF1CE}" = Microsoft Office Proof (French) 2007
"{90120000-001F-040C-0000-0000000FF1CE}_HOMESTUDENTR_{71F055E8-E2C6-4214-BB3D-BFE03561B89E}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
"{90120000-0020-0408-0000-0000000FF1CE}" = Πακέτο συμβατότητας για το 2007 Microsoft Office system
"{90120000-002C-0408-0000-0000000FF1CE}" = Microsoft Office Proofing (Greek) 2007
"{90120000-006E-0408-0000-0000000FF1CE}" = Microsoft Office Shared MUI (Greek) 2007
"{90120000-006E-0408-0000-0000000FF1CE}_HOMESTUDENTR_{58D10C7E-20DE-47F0-BAFA-37A870A625F9}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-00A1-0408-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (Greek) 2007
"{90120000-00A1-0408-0000-0000000FF1CE}_HOMESTUDENTR_{F86B508B-F1A2-4841-B906-CDDA3A548A2A}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-00B2-0409-0000-0000000FF1CE}" = Microsoft Save as PDF or XPS Add-in for 2007 Microsoft Office programs
"{90140000-2005-0000-0000-0000000FF1CE}" = Microsoft Office File Validation Add-In
"{9068B2BE-D93A-4C0A-861C-5E35E2C0E09E}" = Intel® Matrix Storage Manager
"{91120000-002F-0000-0000-0000000FF1CE}" = Microsoft Office Home and Student 2007
"{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{94A90C69-71C1-470A-88F5-AA47ECC96B40}" = TOSHIBA HDD Protection
"{95120000-00AF-0408-0000-0000000FF1CE}" = Microsoft Office PowerPoint Viewer 2007 (Greek)
"{96AE7E41-E34E-47D0-AC07-1091A8127911}" = USB2.0 Card Reader Software
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{9C2D4047-0E40-499a-AC7A-C4B9BB12FE03}" = TrayApp
"{9F4EE72A-C5C9-42ad-ABEF-427690843577}" = MarketResearch
"{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2
"{A436F67F-687E-4736-BD2B-537121A804CF}" = HP Product Detection
"{A80FA752-C491-4ED9-ABF0-4278563160B2}" = 32 Bit HP CIO Components Installer
"{AA2E8A46-B45E-4aea-8A23-88AB57D04523}" = WebReg
"{AB5D51AE-EBC3-438D-872C-705C7C2084B0}" = DeviceManagementQFolder
"{AC76BA86-7AD7-1033-7B44-AA1000000001}" = Adobe Reader X (10.1.3)
"{B61A79BE-E94C-42C0-921D-8B7E5217069C}" = F4200
"{B65BBB06-1F8E-48F5-8A54-B024A9E15FDF}" = TOSHIBA Recovery Disc Creator
"{B6CF2967-C81E-40C0-9815-C05774FEF120}" = Skype Click to Call
"{BDD83DC9-BEE9-4654-A5DA-CC46C250088D}" = TOSHIBA ConfigFree
"{BE8A9C2C-8E41-445B-A746-BEB0B1F992F8}" = DJ_AIO_03_F4200_Software_Min
"{BF08AB1C-3357-4f20-A200-8EBB8EF27C59}" = BufferChm
"{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2
"{C3A32068-8AB1-4327-BB16-BED9C6219DC7}" = Atheros Driver Installation Program
"{C3B6AEB1-390C-4792-8677-CD87F8B2C959}" = HP Deskjet F4200 All-In-One Driver Software 11.0 Rel .3
"{C89B5E3A-690F-4CEE-909A-BF869E198B0A}" = Scan
"{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1
"{CC0E1AE3-091D-4969-B151-7AC142062C28}" = SmartWebPrinting
"{CD95F661-A5C4-11AF-B2CC-ABCD21A325BA}" = WinZip Courier
"{CD95F661-A5C4-44F5-A6AA-ECDD91C240D2}" = WinZip 16.5
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{CEBB6BFB-D708-4F99-A633-BC2600E01EF6}" = Bluetooth Stack for Windows by Toshiba
"{D16B4BE6-8B10-422f-8034-96D1CA9483B5}" = GPBaseService
"{D74CFE48-087F-46E1-80E6-E2950E1A8DCE}" = HP Photosmart Essential 2.5
"{DBA5E973-660D-4CBE-A469-F5C37FBF0CE4}" = DesktopEarth
"{E487EE7D-EAAA-4E2A-9116-E3B477D8A74F}" = TOSHIBA USB Sleep and Charge Utility
"{E535C94A-B87F-4182-BEA8-1E9322078D3E}" = Cards_Calendar_OrderGift_DoMorePlugout
"{E65C7D8E-186D-484B-BEA8-DEF0331CE600}" = TRORDCLauncher
"{E96B0085-6659-486b-A221-5042A042728D}" = Toolbox
"{EBFF48F5-3CFA-436F-8FD5-94FB01D3A0A7}" = TOSHIBA SD Memory Utilities
"{EE7257A2-39A2-4D2F-9DAC-F9F25B8AE1D8}" = Skype™ 5.9
"{EF1ADA5A-0B1A-4662-8C55-7475A61D8B65}" = DeviceDiscovery
"{EF9E56EE-0243-4BAD-88F4-5E7508AA7D96}" = Destination Component
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F8A5531E-FEB4-4F7C-AF51-342E40FA7A0D}" = F4210_Help
"{FB6D6065-F37A-3F59-84EC-5C5D766EC2B8}" = Microsoft .NET Framework 2.0 Service Pack 1 Language Pack - ELL
"{FCE19796-1ADF-42DF-81D8-3563867FC2C2}" = TOSHIBA Zooming Hook
"73399E39AE8466213C6222D7ED4A7AA615F79DED" = Πακέτο προγραμμάτων οδήγησης των Windows - Chicony (cecnuvc) Image (03/09/2009 6.3.251.0309)
"Activation Assistant for the 2007 Microsoft Office suites" = Activation Assistant for the 2007 Microsoft Office suites
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin
"avast" = avast! Free Antivirus
"cald2" = Cambridge Advanced Learner's Dictionary - 2nd edition
"HDMI" = Intel(R) Graphics Media Accelerator Driver
"HOMESTUDENTR" = Microsoft Office Home and Student 2007
"HP Imaging Device Functions" = HP Imaging Device Functions 11.0
"HP Photosmart Essential" = HP Photosmart Essential 3.0
"HP Smart Web Printing" = HP Smart Web Printing
"HP Solution Center & Imaging Support Tools" = HP Solution Center 11.0
"HPExtendedCapabilities" = HP Customer Participation Program 11.0
"IDNMitigationAPIs" = Microsoft Internationalized Domain Names Mitigation APIs
"ie7" = Windows Internet Explorer 7
"ie8" = Windows Internet Explorer 8
"InstallShield_{2C38F661-26B7-445D-B87D-B53FE2D3BD42}" = Διαγνωστικό Εργαλείο Υπολογιστή TOSHIBA
"InstallShield_{3A57482F-BEBC-47E4-ADA1-6302403C7E50}" = TOSHIBA Accessibility
"InstallShield_{51B4E156-14A5-4904-9AE4-B1AA2A0E46BE}" = TOSHIBA Κωδικός πρόσβασης επόπτη
"InstallShield_{5279374D-87FE-4879-9385-F17278EBB9D3}" = TOSHIBA HW Setup
"InstallShield_{7900D3A6-A9E8-4954-ACCB-AB15867978BF}" = Βοηθητικό πρόγραμμα TOSHIBA HotKey
"InstallShield_{80977342-27E8-4FF7-8B6A-D8D89461DA7F}" = Βοηθητικό πρόγραμμα TouchPad On/Off
"InstallShield_{E65C7D8E-186D-484B-BEA8-DEF0331CE600}" = TRORDCLauncher
"LesenLernen" = LesenLernen
"Malwarebytes' Anti-Malware_is1" = Malwarebytes Anti-Malware έκδοση 1.62.0.1300
"Microsoft .NET Framework 1.1 (1033)" = Microsoft .NET Framework 1.1
"Microsoft .NET Framework 3.5 Language Pack - ell" = Πακέτο γλώσσας του Microsoft .NET Framework 3.5 - ELL
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Mozilla Firefox 13.0.1 (x86 el)" = Mozilla Firefox 13.0.1 (x86 el)
"MozillaMaintenanceService" = Mozilla Maintenance Service
"NLSDownlevelMapping" = Microsoft National Language Support Downlevel APIs
"Paragon Software PONS 7" = Paragon Software PONS 7
"Picasa2" = Picasa 2
"QuickTime" = QuickTime
"Shop for HP Supplies" = Shop for HP Supplies
"SynTPDeinstKey" = Synaptics Pointing Device Driver
"VLC media player" = VLC media player 2.0.1
"Wdf01007" = Microsoft Kernel-Mode Driver Framework Feature Pack 1.7
"Windows Media Format Runtime" = Windows Media Format Runtime
"Windows Media Player" = Windows Media Player 10
"XpsEPSC" = XML Paper Specification Shared Components Pack 1.0
"XPSEPSCLP" = XML Paper Specification Shared Components Language Pack 1.0

========== Last 20 Event Log Errors ==========

[ Application Events ]
Error - 16/7/2012 3:41:37 μμ | Computer Name = ASPASIA | Source = PerfNet | ID = 2002
Description = Δεν είναι δυνατό το άνοιγμα της υπηρεσίας ανακατεύθυνσης. Δεν θα επιστραφούν
δεδομένα
για τις επιδόσεις ανακατεύθυνσης. Ο κωδικός σφάλματος που επιστράφηκε βρίσκεται
στα δεδομένα DWORD 0.

Error - 16/7/2012 3:58:24 μμ | Computer Name = ASPASIA | Source = PerfNet | ID = 2002
Description = Δεν είναι δυνατό το άνοιγμα της υπηρεσίας ανακατεύθυνσης. Δεν θα επιστραφούν
δεδομένα
για τις επιδόσεις ανακατεύθυνσης. Ο κωδικός σφάλματος που επιστράφηκε βρίσκεται
στα δεδομένα DWORD 0.

Error - 16/7/2012 4:53:17 μμ | Computer Name = ASPASIA | Source = PerfNet | ID = 2002
Description = Δεν είναι δυνατό το άνοιγμα της υπηρεσίας ανακατεύθυνσης. Δεν θα επιστραφούν
δεδομένα
για τις επιδόσεις ανακατεύθυνσης. Ο κωδικός σφάλματος που επιστράφηκε βρίσκεται
στα δεδομένα DWORD 0.

Error - 16/7/2012 4:57:52 μμ | Computer Name = ASPASIA | Source = PerfNet | ID = 2002
Description = Δεν είναι δυνατό το άνοιγμα της υπηρεσίας ανακατεύθυνσης. Δεν θα επιστραφούν
δεδομένα
για τις επιδόσεις ανακατεύθυνσης. Ο κωδικός σφάλματος που επιστράφηκε βρίσκεται
στα δεδομένα DWORD 0.

Error - 16/7/2012 5:00:03 μμ | Computer Name = ASPASIA | Source = PerfNet | ID = 2002
Description = Δεν είναι δυνατό το άνοιγμα της υπηρεσίας ανακατεύθυνσης. Δεν θα επιστραφούν
δεδομένα
για τις επιδόσεις ανακατεύθυνσης. Ο κωδικός σφάλματος που επιστράφηκε βρίσκεται
στα δεδομένα DWORD 0.

Error - 16/7/2012 5:25:45 μμ | Computer Name = ASPASIA | Source = PerfNet | ID = 2002
Description = Δεν είναι δυνατό το άνοιγμα της υπηρεσίας ανακατεύθυνσης. Δεν θα επιστραφούν
δεδομένα
για τις επιδόσεις ανακατεύθυνσης. Ο κωδικός σφάλματος που επιστράφηκε βρίσκεται
στα δεδομένα DWORD 0.

Error - 16/7/2012 6:07:21 μμ | Computer Name = ASPASIA | Source = PerfNet | ID = 2002
Description = Δεν είναι δυνατό το άνοιγμα της υπηρεσίας ανακατεύθυνσης. Δεν θα επιστραφούν
δεδομένα
για τις επιδόσεις ανακατεύθυνσης. Ο κωδικός σφάλματος που επιστράφηκε βρίσκεται
στα δεδομένα DWORD 0.

Error - 16/7/2012 6:34:24 μμ | Computer Name = ASPASIA | Source = PerfNet | ID = 2002
Description = Δεν είναι δυνατό το άνοιγμα της υπηρεσίας ανακατεύθυνσης. Δεν θα επιστραφούν
δεδομένα
για τις επιδόσεις ανακατεύθυνσης. Ο κωδικός σφάλματος που επιστράφηκε βρίσκεται
στα δεδομένα DWORD 0.

Error - 16/7/2012 8:26:44 μμ | Computer Name = ASPASIA | Source = PerfNet | ID = 2002
Description = Δεν είναι δυνατό το άνοιγμα της υπηρεσίας ανακατεύθυνσης. Δεν θα επιστραφούν
δεδομένα
για τις επιδόσεις ανακατεύθυνσης. Ο κωδικός σφάλματος που επιστράφηκε βρίσκεται
στα δεδομένα DWORD 0.

Error - 17/7/2012 4:30:49 πμ | Computer Name = ASPASIA | Source = PerfNet | ID = 2002
Description = Δεν είναι δυνατό το άνοιγμα της υπηρεσίας ανακατεύθυνσης. Δεν θα επιστραφούν
δεδομένα
για τις επιδόσεις ανακατεύθυνσης. Ο κωδικός σφάλματος που επιστράφηκε βρίσκεται
στα δεδομένα DWORD 0.

[ System Events ]
Error - 16/7/2012 8:17:45 μμ | Computer Name = ASPASIA | Source = DCOM | ID = 10005
Description = Παρουσιάστηκε σφάλμα "%1084" στο διακομιστή DCOM κατά την προσπάθεια
εκκίνησης της υπηρεσίας StiSvc με ορίσματα "" ώστε να λειτουργήσει ο διακομιστής:
{A1F4E726-8CF1-11D1-BF92-0060081ED811}

Error - 16/7/2012 8:18:20 μμ | Computer Name = ASPASIA | Source = DCOM | ID = 10005
Description = Παρουσιάστηκε σφάλμα "%1084" στο διακομιστή DCOM κατά την προσπάθεια
εκκίνησης της υπηρεσίας StiSvc με ορίσματα "" ώστε να λειτουργήσει ο διακομιστής:
{A1F4E726-8CF1-11D1-BF92-0060081ED811}

Error - 16/7/2012 8:18:28 μμ | Computer Name = ASPASIA | Source = DCOM | ID = 10005
Description = Παρουσιάστηκε σφάλμα "%1084" στο διακομιστή DCOM κατά την προσπάθεια
εκκίνησης της υπηρεσίας StiSvc με ορίσματα "" ώστε να λειτουργήσει ο διακομιστής:
{A1F4E726-8CF1-11D1-BF92-0060081ED811}

Error - 16/7/2012 8:25:37 μμ | Computer Name = ASPASIA | Source = DCOM | ID = 10005
Description = Παρουσιάστηκε σφάλμα "%1084" στο διακομιστή DCOM κατά την προσπάθεια
εκκίνησης της υπηρεσίας EventSystem με ορίσματα "" ώστε να λειτουργήσει ο διακομιστής:
{1BE1F766-5536-11D1-B726-00C04FB926AF}

Error - 16/7/2012 8:27:02 μμ | Computer Name = ASPASIA | Source = Service Control Manager | ID = 7023
Description = Η υπηρεσία Υπηρεσίες IPSEC τερματίστηκε με το ακόλουθο σφάλμα: %%1747

Error - 16/7/2012 8:28:30 μμ | Computer Name = ASPASIA | Source = Service Control Manager | ID = 7022
Description = Η υπηρεσία Υπηρεσία HP CUE DeviceDiscovery έκλεισε ενώ ξεκινούσε.

Error - 17/7/2012 4:31:17 πμ | Computer Name = ASPASIA | Source = Service Control Manager | ID = 7023
Description = Η υπηρεσία Υπηρεσίες IPSEC τερματίστηκε με το ακόλουθο σφάλμα: %%1747

Error - 17/7/2012 4:32:59 πμ | Computer Name = ASPASIA | Source = Service Control Manager | ID = 7022
Description = Η υπηρεσία Υπηρεσία HP CUE DeviceDiscovery έκλεισε ενώ ξεκινούσε.

Error - 17/7/2012 5:19:40 πμ | Computer Name = ASPASIA | Source = DCOM | ID = 10005
Description = Παρουσιάστηκε σφάλμα "%1084" στο διακομιστή DCOM κατά την προσπάθεια
εκκίνησης της υπηρεσίας EventSystem με ορίσματα "" ώστε να λειτουργήσει ο διακομιστής:
{1BE1F766-5536-11D1-B726-00C04FB926AF}

Error - 17/7/2012 5:20:55 πμ | Computer Name = ASPASIA | Source = Service Control Manager | ID = 7026
Description = Απέτυχε η φόρτωση των ακόλουθων προγραμμάτων οδήγησης της εκκίνησης
του υπολογιστή ή της εκκίνησης του συστήματος: Aavmker4 aswSnx aswSP aswTdi Fips intelppm
Tosrfcom
TPwSav

< End of report >

**Jintan** · 25.07.2012, 00:48

I do not see any malware here. If you would, post that Malwarebytes log that found the infection. Open Malwarebytes, click the Logs tab, double-click on the log that shows the infection found, and post those contents back here please.

Thema: Der Computer ist fuer die Verletzung der Gesetze der BRD wurde blockiert

Themen-Optionen

Thema durchsuchen

Anzeige

Der Computer ist fuer die Verletzung der Gesetze der BRD wurde blockiert

Ähnliche Themen

Der Computer ist für die verletzung der Gesetze der Bundesrepublik Deutschland wurde

"der computer ist für die verletzung der gesetze der bundesrepublik deutschland wurde

Der Computer ist für die Verletzung der Gesetze der Bundesrepublik Deutschland wurde

ukash Trojaner Der Computer ist für die Verletzung der Gesetze der BRD wurde blockier

HILFE! Mein Rechner wurde gesperrt! Der Computer ist für die Verletzung der Gesetze

Lesezeichen

Lesezeichen

Berechtigungen