MyCity » Ambulanta -> Arhiva Ambulante » Chrome problem

Chrome problem

Napisano na dan: 15.5.2015

Chrome problem

Sledeća strana

Pagination

Odgovori

brankokifla Poslao: 15 Maj 2015 13:10 Idi na vrh
offline brankokifla Novi MyCity građanin Pridružio: 14 Maj 2015 Poruke: 5	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Uloguj se preko Facebooka da bi skinuo fajl: Napisano: 15 Maj 2015 12:56 poz prosledili me kod vas:D korak 1 evo ovako...imam problem sa skidanjem chrome pretrazivaca,i update istog. znaci odem na njihov sajt kliknem download,pokrenem sa kompa i sad ide ono downloading,i na kraju kad bi trebalo da instalira,krene opet download pa odbrojavanje 4-5 min.i sve tako u krug,dok posle 5-6 vitlanjane izbaci eror kod. inace ovo je pocelotako sto nisam mogao da update chrome pa sam ga izbrisao (a chrom.exe sam imao u folderu tamo gde stoje skinute stvari) i pokrenem ponovo kad ono nece,obrisem taj folder i oskinem nov sa sajta i od tad mi vrti ovo downloadi kodovi. trazio sam po netu sve i svasta i negde naleteh na program rakuva ja msm da se tako zove,da bar izvucem onaj obrisani chrome folder i uspem,instaliram,tj samo pokrenuo program nije bilo instalacije i chrome se pojavio...probam da update kad ono nece,i dalje cackaj po netu i nznm ni sam gde sam nasao bas dbr objasnjenje (cacka se poregistru ) tj kako fix problem i fora upali,sve do neki dan,poce da brljavi ja da ga update kad ono o5 neki eror code.jutros sam ga opet instalirao,nije to to,stara verzija,nmz da se update,brljavi ma propast ziva al neka ga dok se ne resim ove bede. av nemam,imam ovaj mbamb za malvere par x mi je nalazio zarazene stvari a sada (vec 3 dana non stop skeniram) ne pronalazi nista internet je ovaj mts-ov tako to izgleda korak 2 mycity.rs/must-login.png mycity.rs/must-login.png Dopuna: 15 Maj 2015 13:10 Ovako stoji kada probam da uppdate ovu krbulju od chrome,pocne kao da trazi,i pojavi se nula,vrti min i na kraju izbaci ovo.cini mi se (90% sam sig) da nije uvek ova greska,nekad ovi brojevi i eror ne budu isti. Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 14-05-2015 02 Ran by rane (administrator) on SIEMENS-246A057 on 15-05-2015 12:28:46 Running from C:\Documents and Settings\rane\My Documents\Downloads Loaded Profiles: rane (Available profiles: rane & Administrator & Guest) Platform: Microsoft Windows XP Professional Service Pack 2 (X86) OS Language: English (United States) Internet Explorer Version 6 (Default browser: IE) Boot Mode: Normal Tutorial for Farbar Recovery Scan Tool: geekstogo.com/forum/topic/335081-frst-t.....scan-tool/ ==================== Processes (Whitelisted) ================= (If an entry is included in the fixlist, the process will be closed. The file will not be moved.) (Realtek Semiconductor Corp.) C:\WINDOWS\RTHDCPL.EXE (Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe (Intel Corporation) C:\WINDOWS\system32\IPROSetMonitor.exe () C:\WINDOWS\system32\PnkBstrA.exe () C:\WINDOWS\system32\PnkBstrB.exe (Microsoft Corporation) C:\WINDOWS\system32\wscntfy.exe (Intel Corporation) C:\WINDOWS\system32\igfxsrvc.exe (Google Inc.) C:\Documents and Settings\rane\Local Settings\Application Data\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Documents and Settings\rane\Local Settings\Application Data\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Documents and Settings\rane\Local Settings\Application Data\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Documents and Settings\rane\Local Settings\Application Data\Google\Chrome\Application\chrome.exe (Microsoft Corporation) C:\WINDOWS\system32\osk.exe (Microsoft Corporation) C:\WINDOWS\system32\msswchx.exe ==================== Registry (Whitelisted) ================== (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.) HKLM\...\Run: [ISUSPM Startup] => C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe [221184 2005-02-16] (InstallShield Software Corporation) HKLM\...\Run: [RTHDCPL] => C:\WINDOWS\RTHDCPL.EXE [20145368 2013-10-04] (Realtek Semiconductor Corp.) HKLM\...\Run: [Adobe ARM] => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2014-05-08] (Adobe Systems Incorporated) HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [335232 2015-03-07] (Oracle Corporation) HKLM\...\Run: [Lightshot] => C:\Program Files\Skillbrains\lightshot\Lightshot.exe [226560 2014-11-18] () HKLM\...\Policies\Explorer: [NoDevMgrUpdate] 0 HKLM\...\Policies\Explorer: [NoSetTaskbar] 0 HKLM\...\Policies\Explorer: [NoDeletePrinter] 0 HKLM\...\Policies\Explorer: [NoDFSTab] 0 HKLM\...\Policies\Explorer: [NoChangeStartMenu] 0 HKLM\...\Policies\Explorer: [NoEncryptOnMove] 0 HKLM\...\Policies\Explorer: [NoRunasInstallPrompt] 0 HKLM\...\Policies\Explorer: [NoResolveSearch] 0 HKLM\...\Policies\Explorer: [NoHardwareTab] 0 HKLM\...\Policies\Explorer: [NoStartMenuSubFolders] 0 HKU\S-1-5-21-1454471165-484763869-725345543-1003\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner.exe [6278424 2015-04-23] (Piriform Ltd) ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => No File CHR HKU\S-1-5-21-1454471165-484763869-725345543-1003\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION ==================== Internet (Whitelisted) ==================== (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.) HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION HKU\S-1-5-21-1454471165-484763869-725345543-1003\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = google.com HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = google.com HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = microsoft.com/isapi/redir.dll?prd=ie&ar=msnhome HKU\S-1-5-21-1454471165-484763869-725345543-1003\Software\Microsoft\Internet Explorer\Main,Search Page = microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch HKU\S-1-5-21-1454471165-484763869-725345543-1003\Software\Microsoft\Internet Explorer\Main,First Home Page = microsoft.com/isapi/redir.dll?Prd=ie&am.....&O1=b1 URLSearchHook: HKLM - Default Value = {FE69C007-C452-4d3e-86D2-1730DF8BC871} URLSearchHook: HKU\S-1-5-21-1454471165-484763869-725345543-1003 - Default Value = {FE69C007-C452-4d3e-86D2-1730DF8BC871} URLSearchHook: HKU\S-1-5-21-1454471165-484763869-725345543-1003 - Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - C:\WINDOWS\system32\shdocvw.dll (Microsoft Corporation) SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-21-1454471165-484763869-725345543-1003 -> {483830EE-A4CD-4b71-B0A3-3D82E62A6909} URL = BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_40\bin\ssv.dll [2015-03-19] (Oracle Corporation) BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_40\bin\jp2ssv.dll [2015-03-19] (Oracle Corporation) DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} fpdownload.macromedia.com/pub/shockwave/cabs/flash/swflash.cab Filter: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\WINDOWS\system32\urlmon.dll [2013-10-25] (Microsoft Corporation) Filter: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\WINDOWS\system32\urlmon.dll [2013-10-25] (Microsoft Corporation) Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 FireFox: ======== FF ProfilePath: C:\Documents and Settings\rane\Application Data\Mozilla\Firefox\Profiles\68qbbhbc.default FF Homepage: google.com FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF32_17_0_0_169.dll [2015-04-26] () FF Plugin: @adobe.com/ShockwavePlayer -> C:\WINDOWS\system32\Adobe\Director\np32dsw_1213153.dll [2014-06-24] (Adobe Systems, Inc.) FF Plugin: @java.com/DTPlugin,version=11.40.2 -> C:\Program Files\Java\jre1.8.0_40\bin\dtplugin\npDeployJava1.dll [2015-03-19] (Oracle Corporation) FF Plugin: @java.com/JavaPlugin,version=11.40.2 -> C:\Program Files\Java\jre1.8.0_40\bin\plugin2\npjp2.dll [2015-03-19] (Oracle Corporation) FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2014-08-05] (Adobe Systems Inc.) FF Plugin HKU\S-1-5-21-1454471165-484763869-725345543-1003: @unity3d.com/UnityPlayer,version=1.0 -> C:\Documents and Settings\rane\Local Settings\Application Data\Unity\WebPlayer\loader\npUnity3D32.dll [2014-02-20] (Unity Technologies ApS) FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\pogodakyu.xml [2014-10-11] FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\vokabular.xml [2014-10-11] FF Extension: UniDDeeaaLsa u - C:\Documents and Settings\rane\Application Data\Mozilla\Firefox\Profiles\68qbbhbc.default\Extensions\Oo9mm9@r.com [2015-02-12] FF HKLM\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird Chrome: ======= CHR Profile: C:\Documents and Settings\rane\Local Settings\Application Data\Google\Chrome\User Data\Default CHR Extension: (Google Slides) - C:\Documents and Settings\rane\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-05-15] CHR Extension: (Google Docs) - C:\Documents and Settings\rane\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-05-15] CHR Extension: (Google Drive) - C:\Documents and Settings\rane\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-05-15] CHR Extension: (YouTube) - C:\Documents and Settings\rane\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-05-15] CHR Extension: (Google Search) - C:\Documents and Settings\rane\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-05-15] CHR Extension: (Google Sheets) - C:\Documents and Settings\rane\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-05-15] CHR Extension: (Bookmark Manager) - C:\Documents and Settings\rane\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gmlllbghnfkpflemihljekbapjopfjik [2015-05-15] CHR Extension: (Chrome Hotword Shared Module) - C:\Documents and Settings\rane\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg [2015-05-15] CHR Extension: (Google Wallet) - C:\Documents and Settings\rane\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-05-15] CHR Extension: (Gmail) - C:\Documents and Settings\rane\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-05-15] StartMenuInternet: Google Chrome.GVM3H5CLNK4AXXSNDIEKCCLKMI - C:\Documents and Settings\rane\Local Settings\Application Data\Google\Chrome\Application\chrome.exe ========================== Services (Whitelisted) ================= (If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.) S3 IDriverT; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [File not signed] R2 Intel(R) PROSet Monitoring Service; C:\WINDOWS\system32\IProsetMonitor.exe [121600 2013-04-05] (Intel Corporation) R2 PnkBstrA; C:\WINDOWS\system32\PnkBstrA.exe [66872 2013-03-28] () R2 PnkBstrB; C:\WINDOWS\system32\PnkBstrB.exe [107832 2013-03-29] () S2 uploadmgr; C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll [38912 2004-08-04] (Microsoft Corporation) ==================== Drivers (Whitelisted) ==================== (If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.) S3 Ambfilt; C:\WINDOWS\System32\drivers\Ambfilt.sys [1691480 2009-11-18] (Creative) R3 analog; C:\WINDOWS\System32\DRIVERS\analog.sys [11264 2011-02-01] () [File not signed] S3 cpuz135; C:\Program Files\CPUID\PC Wizard 2012\pcwiz_x32.sys [24880 2012-08-11] (CPUID) S3 DrvAgent32; C:\WINDOWS\system32\Drivers\DrvAgent32.sys [23456 2014-06-22] (Phoenix Technologies) [File not signed] S3 dtproscsibus; C:\WINDOWS\System32\DRIVERS\dtproscsibus.sys [25104 2015-02-12] (Disc Soft Ltd) R3 dtultrascsibus; C:\WINDOWS\System32\DRIVERS\dtultrascsibus.sys [25104 2015-02-11] (Disc Soft Ltd) R3 e1qexpress; C:\WINDOWS\System32\DRIVERS\e1q5132.sys [226568 2013-03-27] (Intel Corporation) R3 iegdmini; C:\WINDOWS\System32\DRIVERS\iegdmini.sys [1677440 2011-02-01] (Intel Corporation) [File not signed] S3 igfx; C:\WINDOWS\System32\DRIVERS\igdkmd32.sys [4808192 2009-09-23] (Intel Corporation) [File not signed] S3 JMCF; C:\WINDOWS\System32\DRIVERS\jmcf.sys [68720 2000-01-01] (JMicron Technology Corporation) R0 JRAID; C:\WINDOWS\System32\DRIVERS\jraid.sys [93096 2009-07-18] (JMicron Technology Corp.) R3 lvds; C:\WINDOWS\System32\DRIVERS\lvds.sys [10496 2011-02-01] () [File not signed] S3 Monfilt; C:\WINDOWS\System32\drivers\Monfilt.sys [1395800 2009-11-18] (Creative Technology Ltd.) R0 MxEFUF; C:\WINDOWS\System32\DRIVERS\MxEFUF32.sys [108544 2011-08-15] (Matrox Graphics Inc.) [File not signed] S3 PORTIO; C:\WINDOWS\system32\drivers\portio.sys [4864 2006-12-26] (Windows (R) Codename Longhorn DDK provider) [File not signed] R1 SbFw; C:\WINDOWS\System32\drivers\SbFw.sys [337184 2012-09-20] (GFI Software) S3 SBFWIMCL; C:\WINDOWS\System32\DRIVERS\sbfwim.sys [95488 2012-09-12] (GFI Software) R3 SBFWIMCLMP; C:\WINDOWS\System32\DRIVERS\SBFWIM.sys [95488 2012-09-12] (GFI Software) S3 sbhips; C:\WINDOWS\System32\drivers\sbhips.sys [94496 2012-09-20] (GFI Software) R1 sbtis; C:\WINDOWS\System32\drivers\sbtis.sys [222368 2012-09-20] (GFI Software) R3 sdvo; C:\WINDOWS\System32\DRIVERS\sdvo.sys [38784 2011-02-01] () [File not signed] R2 Secdrv; C:\WINDOWS\System32\DRIVERS\secdrv.sys [163644 2014-09-03] (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.) [File not signed] R0 sfdrv01; C:\WINDOWS\System32\drivers\sfdrv01.sys [50688 2005-08-10] (Protection Technology) [File not signed] R0 sfhlp02; C:\WINDOWS\System32\drivers\sfhlp02.sys [6656 2005-05-16] (Protection Technology) [File not signed] R0 sfsync02; C:\WINDOWS\System32\drivers\sfsync02.sys [19968 2005-08-10] (Protection Technology) [File not signed] R3 tv; C:\WINDOWS\System32\DRIVERS\tv.sys [36864 2011-02-01] () [File not signed] S3 usb_rndis; C:\WINDOWS\System32\DRIVERS\usb8023.sys [12672 2004-08-03] (Microsoft Corporation) S1 A2DDA; \??\C:\EEK\RUN\a2ddax86.sys [X] S3 ApfiltrService; system32\DRIVERS\Apfiltr.sys [X] S3 catchme; \??\C:\DOCUME~1\rane\LOCALS~1\Temp\catchme.sys [X] S3 cleanhlp; \??\C:\EEK\Run\cleanhlp32.sys [X] S3 ewusbnet; system32\DRIVERS\ewusbnet.sys [X] S3 ew_hwusbdev; system32\DRIVERS\ew_hwusbdev.sys [X] S3 huawei_enumerator; system32\DRIVERS\ew_jubusenum.sys [X] S3 hwdatacard; system32\DRIVERS\ewusbmdm.sys [X] S3 ialm; system32\DRIVERS\igxpmp32.sys [X] S3 massfilter; system32\drivers\massfilter.sys [X] S3 mcdbus; system32\DRIVERS\mcdbus.sys [X] U5 ScsiPort; C:\WINDOWS\system32\drivers\scsiport.sys [96256 2004-08-03] (Microsoft Corporation) U5 Sdbus; C:\Windows\System32\Drivers\Sdbus.sys [78720 2007-11-22] (Microsoft Corporation) S4 sptd; \SystemRoot\System32\Drivers\sptd.sys [X] S3 VBoxDrv; \??\C:\Program Files\Oracle\VirtualBox\VBoxDrv.sys [X] S3 VBoxNetFlt; system32\DRIVERS\VBoxNetFlt.sys [X] S3 ZTEusbmdm6k; system32\DRIVERS\ZTEusbmdm6k.sys [X] S3 ZTEusbnmea; system32\DRIVERS\ZTEusbnmea.sys [X] S3 ZTEusbser6k; system32\DRIVERS\ZTEusbser6k.sys [X] ==================== NetSvcs (Whitelisted) =================== (If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.) ==================== One Month Created Files and Folders ======== (If an entry is included in the fixlist, the file\folder will be moved.) 2015-05-15 12:23 - 2015-05-15 12:28 - 00000000 ____D () C:\FRST 2015-05-15 07:44 - 2015-05-15 07:45 - 00002277 _____ () C:\Documents and Settings\rane\desktop\Google Chrome.lnk 2015-05-15 07:44 - 2015-05-15 07:44 - 00000000 ____D () C:\Documents and Settings\rane\Start Menu\Programs\Google Chrome 2015-05-14 23:06 - 2015-05-14 23:06 - 00000767 _____ () C:\Documents and Settings\rane\Start Menu\Programs\Internet Explorer.lnk 2015-05-14 21:59 - 2015-05-14 23:35 - 00000000 ____D () C:\Program Files\Google 2015-05-11 17:57 - 2015-05-11 18:05 - 00000061 _____ () C:\Documents and Settings\rane\desktop\kix2.txt 2015-05-11 12:49 - 2015-05-11 12:49 - 00000000 ____D () C:\Documents and Settings\rane\Local Settings\Application Data\Apple Computer 2015-05-11 12:49 - 2015-05-11 12:49 - 00000000 ____D () C:\Documents and Settings\rane\Application Data\Apple Computer 2015-05-11 12:23 - 2015-05-11 12:23 - 00000000 ____D () C:\Documents and Settings\rane\Local Settings\Application Data\Apple 2015-05-09 18:20 - 2015-05-09 23:07 - 00000024 _____ () C:\Documents and Settings\rane\desktop\koood.txt 2015-05-05 21:19 - 2015-05-06 01:52 - 00000147 _____ () C:\Documents and Settings\rane\desktop\11141424.txt 2015-05-04 12:00 - 2015-05-04 13:28 - 00000000 ____D () C:\Program Files\Recuva 2015-05-03 20:38 - 2015-05-03 20:38 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\CCleaner 2015-05-01 16:58 - 2015-05-15 07:00 - 00000396 _____ () C:\WINDOWS\Tasks\Opera scheduled Autoupdate 1430492290.job 2015-05-01 16:58 - 2015-05-01 16:58 - 00000675 _____ () C:\Documents and Settings\All Users\Start Menu\Programs\Opera.lnk 2015-05-01 16:58 - 2015-05-01 16:58 - 00000675 _____ () C:\Documents and Settings\All Users\desktop\Opera.lnk 2015-04-28 22:56 - 2015-05-14 16:46 - 00000954 _____ () C:\Documents and Settings\rane\desktop\356.txt 2015-04-23 06:37 - 2015-04-23 06:37 - 00000869 _____ () C:\Documents and Settings\rane\desktop\123.txt 2015-04-23 02:28 - 2015-04-23 02:28 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\Lightshot 2015-04-19 22:58 - 2015-04-19 22:58 - 00000061 _____ () C:\Documents and Settings\rane\desktop\New Text Document.txt 2015-04-16 06:49 - 2015-03-16 18:44 - 00749664 _____ (Oracle Corporation) C:\WINDOWS\system32\Drivers\VBoxDrv.sys 2015-04-16 06:48 - 2015-03-16 18:42 - 00104384 _____ (Oracle Corporation) C:\WINDOWS\system32\Drivers\VBoxUSBMon.sys 2015-04-16 05:07 - 2015-04-16 05:07 - 00002164 _____ () C:\Documents and Settings\rane\desktop\Screencast-O-Matic.lnk 2015-04-16 05:04 - 2015-05-05 00:52 - 00000000 ____D () C:\Documents and Settings\rane\Local Settings\Application Data\Screencast-O-Matic 2015-04-16 05:04 - 2015-04-16 05:04 - 00000000 ____D () C:\Documents and Settings\rane\Start Menu\Programs\Screencast-O-Matic 2015-04-16 04:59 - 2015-04-16 05:02 - 00000000 ____D () C:\Documents and Settings\rane\Local Settings\Application Data\Screencast-O-Matic-v2 ==================== One Month Modified Files and Folders ======= (If an entry is included in the fixlist, the file\folder will be moved.) 2015-05-15 12:28 - 2014-02-08 13:17 - 00000000 ____D () C:\Documents and Settings\rane\Local Settings\temp 2015-05-15 11:39 - 2014-08-10 15:37 - 00000830 _____ () C:\WINDOWS\Tasks\Adobe Flash Player Updater.job 2015-05-15 11:15 - 2015-04-08 18:59 - 00000374 _____ () C:\WINDOWS\Tasks\update-sys.job 2015-05-15 10:16 - 2015-04-08 18:59 - 00000374 _____ () C:\WINDOWS\Tasks\update-S-1-5-21-1454471165-484763869-725345543-1003.job 2015-05-15 08:02 - 2014-01-20 16:23 - 00065536 _____ () C:\WINDOWS\system32\config\Internet.evt 2015-05-15 08:02 - 2012-09-05 11:12 - 00065536 _____ () C:\WINDOWS\system32\config\TuneUp.evt 2015-05-15 08:02 - 2012-07-25 18:13 - 00000000 ____D () C:\Documents and Settings\rane 2015-05-15 07:44 - 2012-07-26 08:13 - 00000000 ____D () C:\Documents and Settings\rane\Local Settings\Application Data\Google 2015-05-15 07:00 - 2014-07-16 22:22 - 00000000 ____D () C:\Program Files\Opera 2015-05-15 07:00 - 2014-04-03 16:54 - 00000276 _____ () C:\WINDOWS\Tasks\RealPlayerRealUpgradeLogonTaskS-1-5-21-1454471165-484763869-725345543-1003.job 2015-05-15 07:00 - 2012-07-25 18:12 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT 2015-05-15 00:09 - 2014-08-04 22:05 - 00032432 ____N () C:\WINDOWS\SchedLgU.Txt 2015-05-15 00:09 - 2012-07-25 18:13 - 00000178 ___SH () C:\Documents and Settings\rane\ntuser.ini 2015-05-14 22:16 - 2015-04-14 09:47 - 00000686 __RSH () C:\Documents and Settings\All Users\ntuser.pol 2015-05-14 17:40 - 2014-04-03 16:54 - 00000284 _____ () C:\WINDOWS\Tasks\RealPlayerRealUpgradeScheduledTaskS-1-5-21-1454471165-484763869-725345543-1003.job 2015-05-14 14:29 - 2001-08-23 14:00 - 00000587 _____ () C:\WINDOWS\win.ini 2015-05-12 03:19 - 2012-08-30 11:14 - 00000000 ____D () C:\WINDOWS\Minidump 2015-05-12 03:03 - 2015-01-16 05:47 - 00114904 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys 2015-05-03 20:38 - 2015-03-14 17:43 - 00000682 _____ () C:\Documents and Settings\All Users\desktop\CCleaner.lnk 2015-05-03 20:38 - 2015-03-14 17:43 - 00000000 ____D () C:\Program Files\CCleaner 2015-05-03 19:46 - 2015-03-24 14:18 - 00000000 ____D () C:\Documents and Settings\frrrrrrr\Local Settings\Application Data\Google 2015-05-03 19:44 - 2015-03-24 14:16 - 00000000 ____D () C:\Documents and Settings\frrrrrrr\Local Settings\temp 2015-05-03 19:44 - 2014-08-17 02:04 - 00000000 ____D () C:\Documents and Settings\Guest\Local Settings\temp 2015-05-03 19:44 - 2014-08-17 02:04 - 00000000 ____D () C:\Documents and Settings\Guest\Local Settings\Application Data\Google 2015-05-03 17:46 - 2012-07-25 19:57 - 00000000 ____D () C:\WINDOWS\security 2015-05-03 07:01 - 2001-08-23 14:00 - 00002206 _____ () C:\WINDOWS\system32\wpa.dbl 2015-05-02 13:44 - 2013-08-15 14:47 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\Skype 2015-05-01 18:10 - 2015-04-06 02:21 - 00001212 _____ () C:\Documents and Settings\rane\desktop\XXX.txt 2015-05-01 16:58 - 2014-07-16 22:22 - 00000000 ____D () C:\Documents and Settings\rane\Local Settings\Application Data\Opera Software 2015-05-01 16:56 - 2014-07-16 22:22 - 00000000 ____D () C:\Documents and Settings\rane\Application Data\Opera Software 2015-04-29 04:43 - 2015-04-06 20:18 - 00000590 _____ () C:\Documents and Settings\rane\desktop\BR.txt 2015-04-26 21:39 - 2014-08-10 15:37 - 00778416 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe 2015-04-26 21:39 - 2014-08-10 15:37 - 00142512 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl 2015-04-26 21:37 - 2012-07-25 20:02 - 00567494 _____ () C:\WINDOWS\system32\PerfStringBackup.INI 2015-04-23 02:28 - 2013-04-15 23:14 - 00000412 _____ () C:\Documents and Settings\rane\Local Settings\Application Data\UserProducts.xml 2015-04-19 20:26 - 2012-07-25 19:57 - 00000000 ____D () C:\WINDOWS\Help 2015-04-16 10:33 - 2014-08-26 08:48 - 00184150 _____ () C:\Documents and Settings\LocalService\Local Settings\Application Data\WPFFontCache_v0400-S-1-5-21-1454471165-484763869-725345543-1003-0.dat 2015-04-16 10:33 - 2014-08-26 08:48 - 00092878 _____ () C:\Documents and Settings\LocalService\Local Settings\Application Data\WPFFontCache_v0400-System.dat 2015-04-16 07:01 - 2013-07-17 23:14 - 00000000 ____D () C:\WINDOWS\system32\ReinstallBackups ==================== Files in the root of some directories ======= 2013-04-24 07:57 - 2013-04-24 07:57 - 0000000 ____C () C:\Documents and Settings\rane\Application Data\bitlord_log.txt 2013-03-28 23:06 - 2013-03-29 01:00 - 0022328 _____ () C:\Documents and Settings\rane\Application Data\PnkBstrK.sys 2012-07-26 07:49 - 2013-06-24 23:23 - 0032256 _____ () C:\Documents and Settings\rane\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini 2013-04-24 08:00 - 2013-04-24 08:00 - 0000218 _____ () C:\Documents and Settings\rane\Local Settings\Application Data\recently-used.xbel 2013-04-15 23:14 - 2013-04-15 23:14 - 0000003 _____ () C:\Documents and Settings\rane\Local Settings\Application Data\updater.log 2013-04-15 23:14 - 2015-04-23 02:28 - 0000412 _____ () C:\Documents and Settings\rane\Local Settings\Application Data\UserProducts.xml Some content of TEMP: ==================== C:\Documents and Settings\rane\Local Settings\temp\{8FB65BE9-6168-445F-A89D-44CACC73D164}-44.0.2398.0_chrome_installer.exe C:\Documents and Settings\rane\Local Settings\temp\{932D5981-D59F-4D94-BDFD-191CC9738C75}-42.0.2311.152_chrome_installer.exe C:\Documents and Settings\rane\Local Settings\temp\{9FAD4DB4-1AA8-4B4F-BBA4-5B4B8E7B2E60}-42.0.2311.152_chrome_installer.exe C:\Documents and Settings\rane\Local Settings\temp\{BF84B644-EFB8-4C41-BE84-78397D5408E7}-44.0.2398.0_chrome_installer.exe C:\Documents and Settings\rane\Local Settings\temp\{C9173F47-6348-4FB7-AAE0-92BA6DA61926}-42.0.2311.152_42.0.2311.135_chrome_updater.exe C:\Documents and Settings\rane\Local Settings\temp\{D1E492E1-A786-461C-8FB0-82FBAA16518B}-44.0.2398.0_chrome_installer.exe ==================== Bamital & volsnap Check ================= (There is no automatic fix for files that do not pass verification.) C:\WINDOWS\explorer.exe => File is digitally signed C:\WINDOWS\system32\winlogon.exe => File is digitally signed C:\WINDOWS\system32\svchost.exe => File is digitally signed C:\WINDOWS\system32\services.exe => File is digitally signed C:\WINDOWS\system32\User32.dll => File is digitally signed C:\WINDOWS\system32\userinit.exe => File is digitally signed C:\WINDOWS\system32\rpcss.dll => File is digitally signed C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed ==================== End Of Log ============================

Profil

magna86 Poslao: 15 Maj 2015 14:02 Idi na vrh
offline magna86 Anti Malware Fighter Rank 2 Pridružio: 21 Jun 2008 Poruke: 6103	1Ovo se svidja korisniku: brankokifla Registruj se da bi pohvalio/la poruku! Pozdrav, Moraces da instaliras Service Pack 3 za Windows XP. Na taj način ćeš ažurirati operativni sistem i zakrpiti odgovarajuće bezbednosne propuste na računaru. Prednosti su brojne, u odnosu na Service Pack 2, koji trenutno poseduješ. Imaj na umu da je i Service Pack 3 zvanicno zaustavljen sa razvojom jos prosle godine od strane Microsofta te ce i to pakovanje azuriranja biti u neku ruku outdted. Ali verovatno ce da resi problem. Kada zavrsis update, postavi sveze logove ako zelis da ponovo da ispitamo sistem.

Profil

brankokifla Poslao: 16 Maj 2015 11:55 Idi na vrh
offline brankokifla Novi MyCity građanin Pridružio: 14 Maj 2015 Poruke: 5	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Uloguj se preko Facebooka da bi skinuo fajl: Instalirao sam SP3 i resio problem sa chrome ali kada kliknem na windows update pokrene se internet explorer,kojem ocigledno nesto fali,cim ne otvara nista. inace,poosto fali neki dll fajl skinuo sam dll fixer all brt odma explorer izbaci gresku.kliknem na x i fixer se pokrene ali nit mogu da skenirram nit koji djavo i na kraju zabode. na ovoj slici gde me pita da snimim nesto,to se samo pokrene cim odem na win update.snimim ja to,ali sve sto dobijem je ikonica (nesto default HTML dokument) na desktopu.kad kliknem na to otvori se pretrazivac i pokrene taj default,to se vidi na slici sa pokrenutim chrome. stv nznm koji mu je djavo nije mi do explorera vec do toga sto kad skinem eto np fixer explorer se pokrene sam i blokira a 100% sam sig da sam fixer i pre skidao i nije bilo prob,moze mi sutra poceti blokirati sve sto skinem,inace probao sam da ga obrisem,nne vrediposle restarta je i dalje tu jbg ako imas vremena i zivvaca pomagaj brt evo par slika evo i loggova mycity.rs/must-login.png Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 14-05-2015 02 Ran by rane (administrator) on SIEMENS-246A057 on 16-05-2015 11:05:01 Running from C:\Documents and Settings\rane\My Documents\Downloads Loaded Profiles: rane (Available profiles: rane & Administrator & Guest) Platform: Microsoft Windows XP Professional Service Pack 3 (X86) OS Language: English (United States) Internet Explorer Version 6 (Default browser: Chrome) Boot Mode: Normal Tutorial for Farbar Recovery Scan Tool: geekstogo.com/forum/topic/335081-frst-t.....scan-tool/ ==================== Processes (Whitelisted) ================= (If an entry is included in the fixlist, the process will be closed. The file will not be moved.) (Realtek Semiconductor Corp.) C:\WINDOWS\RTHDCPL.EXE (Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe (Piriform Ltd) C:\Program Files\CCleaner\CCleaner.exe (Skillbrains) C:\Program Files\Skillbrains\lightshot\5.2.1.1\Lightshot.exe (Google Inc.) C:\Program Files\Google\Update\1.3.26.9\GoogleCrashHandler.exe (Intel Corporation) C:\WINDOWS\system32\IPROSetMonitor.exe () C:\WINDOWS\system32\PnkBstrA.exe () C:\WINDOWS\system32\PnkBstrB.exe (Microsoft Corporation) C:\WINDOWS\system32\wscntfy.exe (Intel Corporation) C:\WINDOWS\system32\igfxsrvc.exe ==================== Registry (Whitelisted) ================== (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.) HKLM\...\Run: [ISUSPM Startup] => C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe [221184 2005-02-16] (InstallShield Software Corporation) HKLM\...\Run: [RTHDCPL] => C:\WINDOWS\RTHDCPL.EXE [20145368 2013-10-04] (Realtek Semiconductor Corp.) HKLM\...\Run: [Adobe ARM] => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2014-05-08] (Adobe Systems Incorporated) HKLM\...\Run: [Lightshot] => C:\Program Files\Skillbrains\lightshot\Lightshot.exe [226560 2014-11-18] () HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [334896 2015-04-30] (Oracle Corporation) HKLM\...\Policies\Explorer: [NoDevMgrUpdate] 0 HKLM\...\Policies\Explorer: [NoSetTaskbar] 0 HKLM\...\Policies\Explorer: [NoDeletePrinter] 0 HKLM\...\Policies\Explorer: [NoDFSTab] 0 HKLM\...\Policies\Explorer: [NoChangeStartMenu] 0 HKLM\...\Policies\Explorer: [NoEncryptOnMove] 0 HKLM\...\Policies\Explorer: [NoRunasInstallPrompt] 0 HKLM\...\Policies\Explorer: [NoResolveSearch] 0 HKLM\...\Policies\Explorer: [NoHardwareTab] 0 HKLM\...\Policies\Explorer: [NoStartMenuSubFolders] 0 HKU\S-1-5-21-1454471165-484763869-725345543-1003\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner.exe [6278424 2015-04-23] (Piriform Ltd) ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => No File CHR HKU\S-1-5-21-1454471165-484763869-725345543-1003\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION ==================== Internet (Whitelisted) ==================== (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.) HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION HKU\S-1-5-21-1454471165-484763869-725345543-1003\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = microsoft.com/isapi/redir.dll?prd={SUB_PRD}&clcid={SUB_CLSID}&pver={SUB_PVER}&ar=home HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = microsoft.com/isapi/redir.dll?prd=ie&ar=msnhome HKU\S-1-5-21-1454471165-484763869-725345543-1003\Software\Microsoft\Internet Explorer\Main,Start Page = microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome HKU\S-1-5-21-1454471165-484763869-725345543-1003\Software\Microsoft\Internet Explorer\Main,Search Page = microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch URLSearchHook: HKLM - Default Value = {FE69C007-C452-4d3e-86D2-1730DF8BC871} URLSearchHook: HKU\S-1-5-21-1454471165-484763869-725345543-1003 - Default Value = {FE69C007-C452-4d3e-86D2-1730DF8BC871} URLSearchHook: HKU\S-1-5-21-1454471165-484763869-725345543-1003 - Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - C:\WINDOWS\system32\shdocvw.dll (Microsoft Corporation) SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-21-1454471165-484763869-725345543-1003 -> {483830EE-A4CD-4b71-B0A3-3D82E62A6909} URL = BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_45\bin\ssv.dll [2015-05-15] (Oracle Corporation) BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_45\bin\jp2ssv.dll [2015-05-15] (Oracle Corporation) DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} fpdownload.macromedia.com/pub/shockwave/cabs/flash/swflash.cab Filter: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\WINDOWS\system32\urlmon.dll [2013-10-25] (Microsoft Corporation) Filter: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\WINDOWS\system32\urlmon.dll [2013-10-25] (Microsoft Corporation) FireFox: ======== FF ProfilePath: C:\Documents and Settings\rane\Application Data\Mozilla\Firefox\Profiles\68qbbhbc.default FF Homepage: google.com FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF32_17_0_0_169.dll [2015-04-26] () FF Plugin: @adobe.com/ShockwavePlayer -> C:\WINDOWS\system32\Adobe\Director\np32dsw_1213153.dll [2014-06-24] (Adobe Systems, Inc.) FF Plugin: @java.com/DTPlugin,version=11.45.2 -> C:\Program Files\Java\jre1.8.0_45\bin\dtplugin\npDeployJava1.dll [2015-05-15] (Oracle Corporation) FF Plugin: @java.com/JavaPlugin,version=11.45.2 -> C:\Program Files\Java\jre1.8.0_45\bin\plugin2\npjp2.dll [2015-05-15] (Oracle Corporation) FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-05-16] (Google Inc.) FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-05-16] (Google Inc.) FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2014-08-05] (Adobe Systems Inc.) FF Plugin HKU\S-1-5-21-1454471165-484763869-725345543-1003: @unity3d.com/UnityPlayer,version=1.0 -> C:\Documents and Settings\rane\Local Settings\Application Data\Unity\WebPlayer\loader\npUnity3D32.dll [2014-02-20] (Unity Technologies ApS) FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\pogodakyu.xml [2014-10-11] FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\vokabular.xml [2014-10-11] FF Extension: UniDDeeaaLsa u - C:\Documents and Settings\rane\Application Data\Mozilla\Firefox\Profiles\68qbbhbc.default\Extensions\Oo9mm9@r.com [2015-02-12] FF HKLM\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird Chrome: ======= CHR Profile: C:\Documents and Settings\rane\Local Settings\Application Data\Google\Chrome\User Data\Default CHR Extension: (Google Slides) - C:\Documents and Settings\rane\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-05-16] CHR Extension: (Google Docs) - C:\Documents and Settings\rane\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-05-16] CHR Extension: (Google Drive) - C:\Documents and Settings\rane\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-05-16] CHR Extension: (YouTube) - C:\Documents and Settings\rane\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-05-16] CHR Extension: (Google Search) - C:\Documents and Settings\rane\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-05-16] CHR Extension: (Google Sheets) - C:\Documents and Settings\rane\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-05-16] CHR Extension: (Bookmark Manager) - C:\Documents and Settings\rane\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gmlllbghnfkpflemihljekbapjopfjik [2015-05-16] CHR Extension: (Chrome Hotword Shared Module) - C:\Documents and Settings\rane\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg [2015-05-16] CHR Extension: (Google Wallet) - C:\Documents and Settings\rane\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-05-16] CHR Extension: (Gmail) - C:\Documents and Settings\rane\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-05-16] ========================== Services (Whitelisted) ================= (If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.) S3 IDriverT; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [File not signed] R2 Intel(R) PROSet Monitoring Service; C:\WINDOWS\system32\IProsetMonitor.exe [121600 2013-04-05] (Intel Corporation) R2 PnkBstrA; C:\WINDOWS\system32\PnkBstrA.exe [66872 2013-03-28] () R2 PnkBstrB; C:\WINDOWS\system32\PnkBstrB.exe [107832 2013-03-29] () ==================== Drivers (Whitelisted) ==================== (If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.) S3 Ambfilt; C:\WINDOWS\System32\drivers\Ambfilt.sys [1691480 2009-11-18] (Creative) R3 analog; C:\WINDOWS\System32\DRIVERS\analog.sys [11264 2011-02-01] () [File not signed] S3 cpuz135; C:\Program Files\CPUID\PC Wizard 2012\pcwiz_x32.sys [24880 2012-08-11] (CPUID) S3 DrvAgent32; C:\WINDOWS\system32\Drivers\DrvAgent32.sys [23456 2014-06-22] (Phoenix Technologies) [File not signed] S3 dtproscsibus; C:\WINDOWS\System32\DRIVERS\dtproscsibus.sys [25104 2015-02-12] (Disc Soft Ltd) R3 dtultrascsibus; C:\WINDOWS\System32\DRIVERS\dtultrascsibus.sys [25104 2015-02-11] (Disc Soft Ltd) R3 e1qexpress; C:\WINDOWS\System32\DRIVERS\e1q5132.sys [226568 2013-03-27] (Intel Corporation) R3 iegdmini; C:\WINDOWS\System32\DRIVERS\iegdmini.sys [1677440 2011-02-01] (Intel Corporation) [File not signed] S3 igfx; C:\WINDOWS\System32\DRIVERS\igdkmd32.sys [4808192 2009-09-23] (Intel Corporation) [File not signed] S3 JMCF; C:\WINDOWS\System32\DRIVERS\jmcf.sys [68720 2000-01-01] (JMicron Technology Corporation) R0 JRAID; C:\WINDOWS\System32\DRIVERS\jraid.sys [93096 2009-07-18] (JMicron Technology Corp.) R3 lvds; C:\WINDOWS\System32\DRIVERS\lvds.sys [10496 2011-02-01] () [File not signed] S3 Monfilt; C:\WINDOWS\System32\drivers\Monfilt.sys [1395800 2009-11-18] (Creative Technology Ltd.) R0 MxEFUF; C:\WINDOWS\System32\DRIVERS\MxEFUF32.sys [108544 2011-08-15] (Matrox Graphics Inc.) [File not signed] S3 PORTIO; C:\WINDOWS\system32\drivers\portio.sys [4864 2006-12-26] (Windows (R) Codename Longhorn DDK provider) [File not signed] R1 SbFw; C:\WINDOWS\System32\drivers\SbFw.sys [337184 2012-09-20] (GFI Software) S3 SBFWIMCL; C:\WINDOWS\System32\DRIVERS\sbfwim.sys [95488 2012-09-12] (GFI Software) R3 SBFWIMCLMP; C:\WINDOWS\System32\DRIVERS\SBFWIM.sys [95488 2012-09-12] (GFI Software) S3 sbhips; C:\WINDOWS\System32\drivers\sbhips.sys [94496 2012-09-20] (GFI Software) R1 sbtis; C:\WINDOWS\System32\drivers\sbtis.sys [222368 2012-09-20] (GFI Software) R3 sdvo; C:\WINDOWS\System32\DRIVERS\sdvo.sys [38784 2011-02-01] () [File not signed] R0 sfdrv01; C:\WINDOWS\System32\drivers\sfdrv01.sys [50688 2005-08-10] (Protection Technology) [File not signed] R0 sfhlp02; C:\WINDOWS\System32\drivers\sfhlp02.sys [6656 2005-05-16] (Protection Technology) [File not signed] R0 sfsync02; C:\WINDOWS\System32\drivers\sfsync02.sys [19968 2005-08-10] (Protection Technology) [File not signed] R3 tv; C:\WINDOWS\System32\DRIVERS\tv.sys [36864 2011-02-01] () [File not signed] S3 usb_rndis; C:\WINDOWS\System32\DRIVERS\usb8023.sys [12800 2008-04-14] (Microsoft Corporation) S1 A2DDA; \??\C:\EEK\RUN\a2ddax86.sys [X] S3 ApfiltrService; system32\DRIVERS\Apfiltr.sys [X] S3 catchme; \??\C:\DOCUME~1\rane\LOCALS~1\Temp\catchme.sys [X] S3 cleanhlp; \??\C:\EEK\Run\cleanhlp32.sys [X] S3 ewusbnet; system32\DRIVERS\ewusbnet.sys [X] S3 ew_hwusbdev; system32\DRIVERS\ew_hwusbdev.sys [X] S3 huawei_enumerator; system32\DRIVERS\ew_jubusenum.sys [X] S3 hwdatacard; system32\DRIVERS\ewusbmdm.sys [X] S3 ialm; system32\DRIVERS\igxpmp32.sys [X] S3 massfilter; system32\drivers\massfilter.sys [X] S3 mcdbus; system32\DRIVERS\mcdbus.sys [X] U5 ScsiPort; C:\WINDOWS\system32\drivers\scsiport.sys [96384 2008-04-14] (Microsoft Corporation) U5 Sdbus; C:\Windows\System32\Drivers\Sdbus.sys [79232 2008-04-14] (Microsoft Corporation) S4 sptd; \SystemRoot\System32\Drivers\sptd.sys [X] S3 VBoxDrv; \??\C:\Program Files\Oracle\VirtualBox\VBoxDrv.sys [X] S3 VBoxNetFlt; system32\DRIVERS\VBoxNetFlt.sys [X] S3 ZTEusbmdm6k; system32\DRIVERS\ZTEusbmdm6k.sys [X] S3 ZTEusbnmea; system32\DRIVERS\ZTEusbnmea.sys [X] S3 ZTEusbser6k; system32\DRIVERS\ZTEusbser6k.sys [X] ==================== NetSvcs (Whitelisted) =================== (If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.) ==================== One Month Created Files and Folders ======== (If an entry is included in the fixlist, the file\folder will be moved.) 2015-05-16 11:04 - 2015-05-16 11:04 - 00006790 _____ () C:\WINDOWS\FaxSetup.log 2015-05-16 11:04 - 2015-05-16 11:04 - 00006624 _____ () C:\WINDOWS\iis6.log 2015-05-16 11:04 - 2015-05-16 11:04 - 00004848 _____ () C:\WINDOWS\ocgen.log 2015-05-16 11:04 - 2015-05-16 11:04 - 00004591 _____ () C:\WINDOWS\tsoc.log 2015-05-16 11:04 - 2015-05-16 11:04 - 00002474 _____ () C:\WINDOWS\comsetup.log 2015-05-16 11:04 - 2015-05-16 11:04 - 00002424 _____ () C:\WINDOWS\imsins.log 2015-05-16 11:04 - 2015-05-16 11:04 - 00001836 _____ () C:\WINDOWS\msmqinst.log 2015-05-16 11:04 - 2015-05-16 11:04 - 00001789 _____ () C:\WINDOWS\ntdtcsetup.log 2015-05-16 11:04 - 2015-05-16 11:04 - 00001592 _____ () C:\WINDOWS\netfxocm.log 2015-05-16 11:04 - 2015-05-16 11:04 - 00000719 _____ () C:\WINDOWS\MedCtrOC.log 2015-05-16 11:04 - 2015-05-16 11:04 - 00000479 _____ () C:\WINDOWS\msgsocm.log 2015-05-16 11:04 - 2015-05-16 11:04 - 00000469 _____ () C:\WINDOWS\ocmsn.log 2015-05-16 11:04 - 2015-05-16 11:04 - 00000311 _____ () C:\WINDOWS\tabletoc.log 2015-05-16 11:04 - 2015-05-16 11:04 - 00000000 _____ () C:\WINDOWS\setuperr.log 2015-05-16 11:04 - 2015-05-16 11:04 - 00000000 _____ () C:\WINDOWS\setupact.log 2015-05-16 11:01 - 2015-05-16 11:01 - 00015912 _____ () C:\Documents and Settings\rane\Local Settings\Application Data\GDIPFONTCACHEV1.DAT 2015-05-16 10:59 - 2015-05-16 10:59 - 00000054 _____ () C:\Documents and Settings\rane\desktop\prob.txt 2015-05-16 10:58 - 2015-05-16 10:58 - 00002048 _____ () C:\Documents and Settings\rane\desktop\default.htm 2015-05-16 10:52 - 2015-05-16 10:52 - 00000000 ____D () C:\WINDOWS\LastGood 2015-05-16 10:44 - 2015-05-16 10:44 - 00000268 _____ () C:\WINDOWS\Tasks\WinThruster_UPDATES.job 2015-05-16 10:44 - 2015-05-16 10:44 - 00000260 _____ () C:\WINDOWS\Tasks\WinThruster_DEFAULT.job 2015-05-16 10:44 - 2015-05-16 10:44 - 00000000 ____D () C:\Documents and Settings\rane\Application Data\Solvusoft 2015-05-16 10:30 - 2015-05-16 10:30 - 00000792 _____ () C:\Documents and Settings\rane\Start Menu\Programs\Windows Media Player.lnk 2015-05-16 10:30 - 2015-05-16 10:30 - 00000785 _____ () C:\Documents and Settings\All Users\Start Menu\Programs\Windows Messenger.lnk 2015-05-16 10:30 - 2015-05-16 10:30 - 00000767 _____ () C:\Documents and Settings\rane\Start Menu\Programs\Internet Explorer.lnk 2015-05-16 10:30 - 2015-05-16 10:30 - 00000738 _____ () C:\Documents and Settings\rane\Start Menu\Programs\Outlook Express.lnk 2015-05-16 10:25 - 2015-05-16 10:25 - 00000000 ____D () C:\Documents and Settings\rane\desktop\New Folder 2015-05-16 10:08 - 2015-05-16 10:08 - 00000278 _____ () C:\WINDOWS\Tasks\DLL-Files.Com Fixer_Updates.job 2015-05-16 10:08 - 2015-05-16 10:08 - 00000262 _____ () C:\WINDOWS\Tasks\DLL-Files.Com Fixer_MONTHLY.job 2015-05-16 10:08 - 2015-05-16 10:08 - 00000000 ____D () C:\Documents and Settings\rane\Application Data\dll-files.com 2015-05-16 09:33 - 2012-10-15 17:02 - 00017840 _____ (solvusoft) C:\WINDOWS\system32\roboot.exe 2015-05-16 00:09 - 2015-05-16 00:09 - 00001813 _____ () C:\Documents and Settings\All Users\desktop\Google Chrome.lnk 2015-05-16 00:09 - 2015-05-16 00:09 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\Google Chrome 2015-05-16 00:03 - 2015-05-16 10:49 - 00000878 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job 2015-05-16 00:03 - 2015-05-16 10:08 - 00000882 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job 2015-05-16 00:02 - 2015-05-16 00:02 - 00000000 ____D () C:\WINDOWS\system32\CatRoot_bak 2015-05-15 23:09 - 2015-05-15 23:09 - 00000000 ____D () C:\Program Files\Common Files\Java 2015-05-15 22:44 - 2015-05-15 22:44 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2229593$ 2015-05-15 22:42 - 2008-04-14 05:42 - 01306624 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msxml6.dll 2015-05-15 22:42 - 2008-04-13 22:57 - 00079872 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msxml6r.dll 2015-05-15 22:41 - 2008-04-14 05:42 - 04274816 ____N (NVIDIA Corporation) C:\WINDOWS\system32\nv4_disp.dll 2015-05-15 22:41 - 2008-04-14 05:42 - 01737856 ____N (Matrox Graphics Inc.) C:\WINDOWS\system32\mtxparhd.dll 2015-05-15 22:41 - 2008-04-14 05:42 - 00412160 ____N (Microsoft Corporation) C:\WINDOWS\system32\photometadatahandler.dll 2015-05-15 22:41 - 2008-04-14 05:42 - 00397056 ____N (S3 Graphics, Inc.) C:\WINDOWS\system32\s3gnb.dll 2015-05-15 22:41 - 2008-04-14 05:42 - 00346112 ____N (Microsoft Corporation) C:\WINDOWS\system32\windowscodecsext.dll 2015-05-15 22:41 - 2008-04-14 05:42 - 00291328 ____N (Microsoft Corporation) C:\WINDOWS\system32\qagentrt.dll 2015-05-15 22:41 - 2008-04-14 05:42 - 00290304 ____N (Microsoft Corporation) C:\WINDOWS\system32\rhttpaa.dll 2015-05-15 22:41 - 2008-04-14 05:42 - 00286792 ____N (Smart Link) C:\WINDOWS\system32\slextspk.dll 2015-05-15 22:41 - 2008-04-14 05:42 - 00276992 ____N (Microsoft Corporation) C:\WINDOWS\system32\wmphoto.dll 2015-05-15 22:41 - 2008-04-14 05:42 - 00193024 ____N (Microsoft Corporation) C:\WINDOWS\system32\napmontr.dll 2015-05-15 22:41 - 2008-04-14 05:42 - 00188508 ____N (Smart Link) C:\WINDOWS\system32\slgen.dll 2015-05-15 22:41 - 2008-04-14 05:42 - 00176640 ____N (Microsoft Corporation) C:\WINDOWS\system32\napstat.exe 2015-05-15 22:41 - 2008-04-14 05:42 - 00155136 ____N (Microsoft Corporation) C:\WINDOWS\system32\mssha.dll 2015-05-15 22:41 - 2008-04-14 05:42 - 00150528 ____N (Microsoft Corporation) C:\WINDOWS\system32\qagent.dll 2015-05-15 22:41 - 2008-04-14 05:42 - 00144384 ____N (Microsoft Corporation) C:\WINDOWS\system32\onex.dll 2015-05-15 22:41 - 2008-04-14 05:42 - 00121856 ____N (Microsoft Corporation) C:\WINDOWS\system32\xmllite.dll 2015-05-15 22:41 - 2008-04-14 05:42 - 00076800 ____N (Microsoft Corporation) C:\WINDOWS\system32\qutil.dll 2015-05-15 22:41 - 2008-04-14 05:42 - 00073832 ____N (Smart Link) C:\WINDOWS\system32\slcoinst.dll 2015-05-15 22:41 - 2008-04-14 05:42 - 00073796 ____N (Smart Link) C:\WINDOWS\system32\slserv.exe 2015-05-15 22:41 - 2008-04-14 05:42 - 00069120 ____N (Microsoft Corporation) C:\WINDOWS\system32\wlanapi.dll 2015-05-15 22:41 - 2008-04-14 05:42 - 00062464 ____N (Microsoft Corporation) C:\WINDOWS\system32\qcliprov.dll 2015-05-15 22:41 - 2008-04-14 05:42 - 00061952 ____N (Microsoft Corporation) C:\WINDOWS\system32\rasqec.dll 2015-05-15 22:41 - 2008-04-14 05:42 - 00060416 ____N (Microsoft Corporation) C:\WINDOWS\system32\tzchange.exe 2015-05-15 22:41 - 2008-04-14 05:42 - 00053248 ____N (Microsoft Corporation) C:\WINDOWS\system32\tsgqec.dll 2015-05-15 22:41 - 2008-04-14 05:42 - 00050688 ____N (Microsoft Corporation) C:\WINDOWS\system32\tspkg.dll 2015-05-15 22:41 - 2008-04-14 05:42 - 00033792 ____N (Microsoft Corporation) C:\WINDOWS\system32\mmcperf.exe 2015-05-15 22:41 - 2008-04-14 05:42 - 00032866 ____N (Smart Link) C:\WINDOWS\system32\slrundll.exe 2015-05-15 22:41 - 2008-04-14 05:42 - 00032866 ____N (Smart Link) C:\WINDOWS\slrundll.exe 2015-05-15 22:41 - 2008-04-14 05:42 - 00032768 ____N (Microsoft Corporation) C:\WINDOWS\system32\setupn.exe 2015-05-15 22:41 - 2008-04-14 05:42 - 00030208 ____N (Microsoft Corporation) C:\WINDOWS\system32\napipsec.dll 2015-05-15 22:41 - 2008-04-14 05:42 - 00028672 ____N (Microsoft Corporation) C:\WINDOWS\system32\vidcap.ax 2015-05-15 22:41 - 2008-04-14 05:42 - 00023040 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\ativmvxx.ax 2015-05-15 22:41 - 2008-04-14 05:42 - 00009728 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\ativdaxx.ax 2015-05-15 22:41 - 2008-04-14 05:41 - 01888992 ____N (ATI Technologies Inc. ) C:\WINDOWS\system32\ati3duag.dll 2015-05-15 22:41 - 2008-04-14 05:41 - 00870784 ____N (ATI Technologies Inc. ) C:\WINDOWS\system32\ati3d1ag.dll 2015-05-15 22:41 - 2008-04-14 05:41 - 00650752 ____N (Microsoft Corporation) C:\WINDOWS\system32\dot3ui.dll 2015-05-15 22:41 - 2008-04-14 05:41 - 00516768 ____N (ATI Technologies Inc. ) C:\WINDOWS\system32\ativvaxx.dll 2015-05-15 22:41 - 2008-04-14 05:41 - 00397312 ____N (Microsoft Corporation) C:\WINDOWS\system32\mmcex.dll 2015-05-15 22:41 - 2008-04-14 05:41 - 00377984 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\ati2dvaa.dll 2015-05-15 22:41 - 2008-04-14 05:41 - 00233472 ____N (Microsoft Corporation) C:\WINDOWS\system32\azroles.dll 2015-05-15 22:41 - 2008-04-14 05:41 - 00229376 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\ati2cqag.dll 2015-05-15 22:41 - 2008-04-14 05:41 - 00201728 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\ati2dvag.dll 2015-05-15 22:41 - 2008-04-14 05:41 - 00184832 ____N (Microsoft Corporation) C:\WINDOWS\system32\eapp3hst.dll 2015-05-15 22:41 - 2008-04-14 05:41 - 00184320 ____N (Microsoft Corporation) C:\WINDOWS\system32\microsoft.managementconsole.dll 2015-05-15 22:41 - 2008-04-14 05:41 - 00180224 ____N (Microsoft Corporation) C:\WINDOWS\system32\eapphost.dll 2015-05-15 22:41 - 2008-04-14 05:41 - 00136192 ____N (Microsoft Corporation) C:\WINDOWS\system32\aaclient.dll 2015-05-15 22:41 - 2008-04-14 05:41 - 00132096 ____N (Microsoft Corporation) C:\WINDOWS\system32\dot3svc.dll 2015-05-15 22:41 - 2008-04-14 05:41 - 00126976 ____N (Microsoft Corporation) C:\WINDOWS\system32\eappcfg.dll 2015-05-15 22:41 - 2008-04-14 05:41 - 00106496 ____N (Microsoft Corporation) C:\WINDOWS\system32\mmcfxcommon.dll 2015-05-15 22:41 - 2008-04-14 05:41 - 00094208 ____N (Microsoft Corporation) C:\WINDOWS\system32\eappgnui.dll 2015-05-15 22:41 - 2008-04-14 05:41 - 00086016 ____N (Conexant) C:\WINDOWS\system32\mdmxsdk.dll 2015-05-15 22:41 - 2008-04-14 05:41 - 00061440 ____N (Microsoft Corporation) C:\WINDOWS\system32\kmsvc.dll 2015-05-15 22:41 - 2008-04-14 05:41 - 00059392 ____N (Microsoft Corporation) C:\WINDOWS\system32\eapqec.dll 2015-05-15 22:41 - 2008-04-14 05:41 - 00057856 ____N (Microsoft Corporation) C:\WINDOWS\system32\dot3cfg.dll 2015-05-15 22:41 - 2008-04-14 05:41 - 00056320 ____N (Microsoft Corporation) C:\WINDOWS\system32\dot3msm.dll 2015-05-15 22:41 - 2008-04-14 05:41 - 00048640 ____N (Microsoft Corporation) C:\WINDOWS\system32\dhcpqec.dll 2015-05-15 22:41 - 2008-04-14 05:41 - 00040960 ____N (Microsoft Corporation) C:\WINDOWS\system32\eappprxy.dll 2015-05-15 22:41 - 2008-04-14 05:41 - 00039936 ____N (Microsoft Corporation) C:\WINDOWS\system32\dot3gpclnt.dll 2015-05-15 22:41 - 2008-04-14 05:41 - 00039936 ____N (Microsoft Corporation) C:\WINDOWS\system32\dimsroam.dll 2015-05-15 22:41 - 2008-04-14 05:41 - 00037376 ____N (Microsoft Corporation) C:\WINDOWS\system32\l2gpstore.dll 2015-05-15 22:41 - 2008-04-14 05:41 - 00033792 ____N (Microsoft Corporation) C:\WINDOWS\system32\eapsvc.dll 2015-05-15 22:41 - 2008-04-14 05:41 - 00032768 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\ativtmxx.dll 2015-05-15 22:41 - 2008-04-14 05:41 - 00032285 ____N (Conexant Systems, Inc.) C:\WINDOWS\system32\hsfcisp2.dll 2015-05-15 22:41 - 2008-04-14 05:41 - 00030720 ____N (Microsoft Corporation) C:\WINDOWS\system32\eapolqec.dll 2015-05-15 22:41 - 2008-04-14 05:41 - 00026112 ____N (Microsoft Corporation) C:\WINDOWS\system32\dot3api.dll 2015-05-15 22:41 - 2008-04-14 05:41 - 00019456 ____N (Microsoft Corporation) C:\WINDOWS\system32\dimsntfy.dll 2015-05-15 22:41 - 2008-04-14 05:41 - 00012800 ____N (Microsoft Corporation) C:\WINDOWS\system32\credssp.dll 2015-05-15 22:41 - 2008-04-14 05:41 - 00009216 ____N (Microsoft Corporation) C:\WINDOWS\system32\dot3dlg.dll 2015-05-15 22:41 - 2008-04-14 05:41 - 00007168 ____N (Microsoft Corporation) C:\WINDOWS\system32\bitsprx4.dll 2015-05-15 22:41 - 2008-04-14 05:40 - 00294912 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msaud32.acm 2015-05-15 22:41 - 2008-04-14 05:40 - 00102912 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\dpcdll.dll 2015-05-15 22:41 - 2008-04-14 05:40 - 00086016 ____C (Sipro Lab Telecom Inc.) C:\WINDOWS\system32\dllcache\sl_anet.acm 2015-05-15 22:41 - 2008-04-14 05:39 - 00290816 ____C (Fraunhofer Institut Integrierte Schaltungen IIS) C:\WINDOWS\system32\dllcache\l3codeca.acm 2015-05-15 22:41 - 2008-04-14 05:39 - 00006144 ____N (Microsoft Corporation) C:\WINDOWS\system32\kbdpash.dll 2015-05-15 22:41 - 2008-04-14 05:39 - 00006144 ____N (Microsoft Corporation) C:\WINDOWS\system32\kbdnepr.dll 2015-05-15 22:41 - 2008-04-14 05:39 - 00006144 ____N (Microsoft Corporation) C:\WINDOWS\system32\kbdiultn.dll 2015-05-15 22:41 - 2008-04-14 05:39 - 00006144 ____N (Microsoft Corporation) C:\WINDOWS\system32\kbdbhc.dll 2015-05-15 22:41 - 2008-04-14 00:15 - 00046592 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\irbus.sys 2015-05-15 22:41 - 2008-04-14 00:13 - 00009728 ____N (Microsoft Corporation) C:\WINDOWS\system32\comsdupd.exe 2015-05-15 22:41 - 2008-04-13 23:45 - 00076800 ____N (Microsoft Corporation) C:\WINDOWS\system32\msshavmsg.dll 2015-05-15 22:41 - 2008-04-13 22:58 - 00184959 ____C () C:\WINDOWS\system32\dllcache\compact.wmz 2015-05-15 22:41 - 2008-04-13 22:58 - 00066725 ____C () C:\WINDOWS\system32\dllcache\revert.wmz 2015-05-15 22:41 - 2007-06-26 11:30 - 00572557 ____C () C:\WINDOWS\system32\dllcache\rtuner.wmv 2015-05-15 22:41 - 2007-06-26 11:30 - 00457607 ____C () C:\WINDOWS\system32\dllcache\mdlib.wmv 2015-05-15 22:41 - 2007-06-26 11:30 - 00381425 ____C () C:\WINDOWS\system32\dllcache\copycd.wmv 2015-05-15 22:41 - 2007-06-26 11:30 - 00375519 ____C () C:\WINDOWS\system32\dllcache\nuskin.wmv 2015-05-15 22:41 - 2007-06-26 11:30 - 00354468 ____C () C:\WINDOWS\system32\dllcache\wmpaud1.wav 2015-05-15 22:41 - 2007-06-26 11:30 - 00343204 ____C () C:\WINDOWS\system32\dllcache\wmpaud7.wav 2015-05-15 22:41 - 2007-06-26 11:30 - 00343204 ____C () C:\WINDOWS\system32\dllcache\wmpaud6.wav 2015-05-15 22:41 - 2007-06-26 11:30 - 00300969 ____C () C:\WINDOWS\system32\dllcache\viz.wmv 2015-05-15 22:41 - 2007-06-26 11:30 - 00172196 ____C () C:\WINDOWS\system32\dllcache\wmpaud9.wav 2015-05-15 22:41 - 2007-06-26 11:30 - 00172196 ____C () C:\WINDOWS\system32\dllcache\wmpaud8.wav 2015-05-15 22:41 - 2007-06-26 11:30 - 00172196 ____C () C:\WINDOWS\system32\dllcache\wmpaud3.wav 2015-05-15 22:41 - 2007-06-26 11:30 - 00086196 ____C () C:\WINDOWS\system32\dllcache\wmpaud5.wav 2015-05-15 22:41 - 2007-06-26 11:30 - 00086180 ____C () C:\WINDOWS\system32\dllcache\wmpaud4.wav 2015-05-15 22:41 - 2007-06-26 11:30 - 00086180 ____C () C:\WINDOWS\system32\dllcache\wmpaud2.wav 2015-05-15 22:41 - 2007-06-26 11:30 - 00022060 ____C () C:\WINDOWS\system32\dllcache\npds.zip 2015-05-15 22:41 - 2007-06-26 11:30 - 00010457 ____C () C:\WINDOWS\system32\dllcache\wmptour.hta 2015-05-15 22:41 - 2007-06-26 11:30 - 00009585 ____C () C:\WINDOWS\system32\dllcache\controls.css 2015-05-15 22:41 - 2007-06-26 11:30 - 00008298 ____C () C:\WINDOWS\system32\dllcache\contents.htm 2015-05-15 22:41 - 2007-06-26 11:30 - 00006878 ____C () C:\WINDOWS\system32\dllcache\controls.js 2015-05-15 22:41 - 2007-06-26 11:30 - 00005971 ____C () C:\WINDOWS\system32\dllcache\events.js 2015-05-15 22:41 - 2007-06-26 11:30 - 00003187 ____C () C:\WINDOWS\system32\dllcache\tour.js 2015-05-15 22:41 - 2007-06-26 11:30 - 00001771 ____C () C:\WINDOWS\system32\dllcache\wmptour.css 2015-05-15 22:41 - 2007-06-26 11:30 - 00001148 ____C () C:\WINDOWS\system32\dllcache\snd.htm 2015-05-15 22:41 - 2007-06-26 11:30 - 00000420 ____C () C:\WINDOWS\system32\dllcache\wmploc.js 2015-05-15 22:41 - 2007-06-26 11:29 - 00097117 ____C () C:\WINDOWS\system32\dllcache\mplayer2.hlp 2015-05-15 22:41 - 2007-06-26 11:29 - 00001885 ____C () C:\WINDOWS\system32\dllcache\mplayer2.cnt 2015-05-15 22:41 - 2007-06-26 11:28 - 00613334 ____C () C:\WINDOWS\system32\dllcache\wmplayer.chm 2015-05-15 22:41 - 2007-06-26 11:28 - 00067374 ____C () C:\WINDOWS\system32\dllcache\wmplayer.adm 2015-05-15 22:41 - 2007-06-26 11:26 - 00077307 ____C () C:\WINDOWS\system32\dllcache\plyr_err.chm 2015-05-15 22:41 - 2007-06-26 11:26 - 00001477 ____C () C:\WINDOWS\system32\dllcache\plylst6.wpl 2015-05-15 22:41 - 2007-06-26 11:26 - 00001477 ____C () C:\WINDOWS\system32\dllcache\plylst5.wpl 2015-05-15 22:41 - 2007-06-26 11:26 - 00001474 ____C () C:\WINDOWS\system32\dllcache\plylst3.wpl 2015-05-15 22:41 - 2007-06-26 11:26 - 00001451 ____C () C:\WINDOWS\system32\dllcache\plylst12.wpl 2015-05-15 22:41 - 2007-06-26 11:26 - 00001448 ____C () C:\WINDOWS\system32\dllcache\plylst4.wpl 2015-05-15 22:41 - 2007-06-26 11:26 - 00001250 ____C () C:\WINDOWS\system32\dllcache\plylst1.wpl 2015-05-15 22:41 - 2007-06-26 11:26 - 00001049 ____C () C:\WINDOWS\system32\dllcache\plylst2.wpl 2015-05-15 22:41 - 2007-06-26 11:26 - 00001046 ____C () C:\WINDOWS\system32\dllcache\plylst7.wpl 2015-05-15 22:41 - 2007-06-26 11:26 - 00001036 ____C () C:\WINDOWS\system32\dllcache\plylst8.wpl 2015-05-15 22:41 - 2007-06-26 11:26 - 00000789 ____C () C:\WINDOWS\system32\dllcache\plylst11.wpl 2015-05-15 22:41 - 2007-06-26 11:26 - 00000787 ____C () C:\WINDOWS\system32\dllcache\plylst10.wpl 2015-05-15 22:41 - 2007-06-26 11:26 - 00000784 ____C () C:\WINDOWS\system32\dllcache\plylst9.wpl 2015-05-15 22:41 - 2007-06-26 11:26 - 00000783 ____C () C:\WINDOWS\system32\dllcache\plylst13.wpl 2015-05-15 22:41 - 2007-06-26 11:26 - 00000775 ____C () C:\WINDOWS\system32\dllcache\plylst14.wpl 2015-05-15 22:41 - 2007-06-26 11:26 - 00000733 ____C () C:\WINDOWS\system32\dllcache\plylst15.wpl 2015-05-15 22:41 - 2007-06-26 11:26 - 00000403 ____C () C:\WINDOWS\system32\dllcache\npdrmv2.zip 2015-05-15 22:41 - 2007-04-02 23:21 - 00023195 ____C () C:\WINDOWS\system32\dllcache\wmplay.chm 2015-05-15 22:40 - 2008-04-14 05:42 - 00294912 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\dlimport.exe 2015-05-15 22:39 - 2008-04-14 05:42 - 00011325 ____N (Intel(R) Corporation) C:\WINDOWS\system32\Drivers\vchnt5.dll 2015-05-15 22:39 - 2008-04-14 05:42 - 00003901 ____N (Intel(R) Corporation) C:\WINDOWS\system32\Drivers\siint5.dll 2015-05-15 22:39 - 2008-04-14 05:41 - 00025471 ____N (Intel(R) Corporation) C:\WINDOWS\system32\Drivers\atv04nt5.dll 2015-05-15 22:39 - 2008-04-14 05:41 - 00021183 ____N (Intel(R) Corporation) C:\WINDOWS\system32\Drivers\atv01nt5.dll 2015-05-15 22:39 - 2008-04-14 05:41 - 00017279 ____N (Intel(R) Corporation) C:\WINDOWS\system32\Drivers\atv10nt5.dll 2015-05-15 22:39 - 2008-04-14 05:41 - 00015423 ____N (Intel(R) Corporation) C:\WINDOWS\system32\Drivers\ch7xxnt5.dll 2015-05-15 22:39 - 2008-04-14 05:41 - 00014143 ____N (Intel(R) Corporation) C:\WINDOWS\system32\Drivers\atv06nt5.dll 2015-05-15 22:39 - 2008-04-14 05:41 - 00011359 ____N (Intel(R) Corporation) C:\WINDOWS\system32\Drivers\atv02nt5.dll 2015-05-15 22:39 - 2008-04-14 05:41 - 00004255 ____N (Intel(R) Corporation) C:\WINDOWS\system32\Drivers\adv01nt5.dll 2015-05-15 22:39 - 2008-04-14 05:41 - 00003967 ____N (Intel(R) Corporation) C:\WINDOWS\system32\Drivers\adv02nt5.dll 2015-05-15 22:39 - 2008-04-14 05:41 - 00003775 ____N (Intel(R) Corporation) C:\WINDOWS\system32\Drivers\adv11nt5.dll 2015-05-15 22:39 - 2008-04-14 05:41 - 00003711 ____N (Intel(R) Corporation) C:\WINDOWS\system32\Drivers\adv09nt5.dll 2015-05-15 22:39 - 2008-04-14 05:41 - 00003647 ____N (Intel(R) Corporation) C:\WINDOWS\system32\Drivers\adv07nt5.dll 2015-05-15 22:39 - 2008-04-14 05:41 - 00003615 ____N (Intel(R) Corporation) C:\WINDOWS\system32\Drivers\adv05nt5.dll 2015-05-15 22:39 - 2008-04-14 05:41 - 00003135 ____N (Intel(R) Corporation) C:\WINDOWS\system32\Drivers\adv08nt5.dll 2015-05-15 22:39 - 2008-04-14 00:26 - 00030592 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rndismpx.sys 2015-05-15 22:39 - 2008-04-14 00:26 - 00012800 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usb8023x.sys 2015-05-15 22:39 - 2008-04-14 00:21 - 00101120 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthpan.sys 2015-05-15 22:39 - 2008-04-14 00:16 - 00273024 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys 2015-05-15 22:39 - 2008-04-14 00:16 - 00121984 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbvideo.sys 2015-05-15 22:39 - 2008-04-14 00:16 - 00059136 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rfcomm.sys 2015-05-15 22:39 - 2008-04-14 00:16 - 00037888 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthmodem.sys 2015-05-15 22:39 - 2008-04-14 00:16 - 00036480 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthprint.sys 2015-05-15 22:39 - 2008-04-14 00:16 - 00025600 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidbth.sys 2015-05-15 22:39 - 2008-04-14 00:16 - 00018944 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthusb.sys 2015-05-15 22:39 - 2008-04-14 00:16 - 00017024 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthenum.sys 2015-05-15 22:39 - 2008-04-14 00:15 - 00019200 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidir.sys 2015-05-15 22:39 - 2008-04-14 00:13 - 00014208 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wacompen.sys 2015-05-15 22:39 - 2008-04-14 00:13 - 00012672 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mutohpen.sys 2015-05-15 22:39 - 2008-04-14 00:06 - 00046464 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\gagp30kx.sys 2015-05-15 22:39 - 2008-04-14 00:06 - 00044928 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\agpcpq.sys 2015-05-15 22:39 - 2008-04-14 00:06 - 00044672 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\uagp35.sys 2015-05-15 22:39 - 2008-04-14 00:06 - 00043008 ____N (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\Drivers\amdagp.sys 2015-05-15 22:39 - 2008-04-14 00:06 - 00042752 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\alim1541.sys 2015-05-15 22:39 - 2008-04-14 00:06 - 00042240 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\viaagp.sys 2015-05-15 22:39 - 2008-04-14 00:06 - 00040960 ____N (Silicon Integrated Systems Corporation) C:\WINDOWS\system32\Drivers\sisagp.sys 2015-05-15 22:39 - 2008-04-14 00:06 - 00005888 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\smbali.sys 2015-05-15 22:39 - 2008-04-13 23:53 - 01309184 ____N (Smart Link) C:\WINDOWS\system32\Drivers\mtlstrm.sys 2015-05-15 22:39 - 2008-04-13 23:53 - 01041536 ____N (Conexant Systems, Inc.) C:\WINDOWS\system32\Drivers\hsfdpsp2.sys 2015-05-15 22:39 - 2008-04-13 23:53 - 00685056 ____N (Conexant Systems, Inc.) C:\WINDOWS\system32\Drivers\hsfcxts2.sys 2015-05-15 22:39 - 2008-04-13 23:53 - 00404990 ____N (Smart Link) C:\WINDOWS\system32\Drivers\slntamr.sys 2015-05-15 22:39 - 2008-04-13 23:53 - 00220032 ____N (Conexant Systems, Inc.) C:\WINDOWS\system32\Drivers\hsfbs2s2.sys 2015-05-15 22:39 - 2008-04-13 23:53 - 00180360 ____N (Smart Link) C:\WINDOWS\system32\Drivers\ntmtlfax.sys 2015-05-15 22:39 - 2008-04-13 23:53 - 00129535 ____N (Smart Link) C:\WINDOWS\system32\Drivers\slnt7554.sys 2015-05-15 22:39 - 2008-04-13 23:53 - 00126686 ____N (Smart Link) C:\WINDOWS\system32\Drivers\mtlmnt5.sys 2015-05-15 22:39 - 2008-04-13 23:53 - 00095424 ____N (Smart Link) C:\WINDOWS\system32\Drivers\slnthal.sys 2015-05-15 22:39 - 2008-04-13 23:53 - 00013776 ____N (Smart Link) C:\WINDOWS\system32\Drivers\recagent.sys 2015-05-15 22:39 - 2008-04-13 23:53 - 00013240 ____N (Smart Link) C:\WINDOWS\system32\Drivers\slwdmsup.sys 2015-05-15 22:39 - 2008-04-13 23:53 - 00011868 ____N (Conexant) C:\WINDOWS\system32\Drivers\mdmxsdk.sys 2015-05-15 22:39 - 2008-04-13 22:04 - 01897408 ____N (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nv4_mini.sys 2015-05-15 22:39 - 2008-04-13 22:04 - 00701440 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\ati2mtag.sys 2015-05-15 22:39 - 2008-04-13 22:04 - 00452736 ____N (Matrox Graphics Inc.) C:\WINDOWS\system32\Drivers\mtxparhm.sys 2015-05-15 22:39 - 2008-04-13 22:04 - 00327040 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\ati2mtaa.sys 2015-05-15 22:39 - 2008-04-13 22:04 - 00166912 ____N (S3 Graphics, Inc.) C:\WINDOWS\system32\Drivers\s3gnbm.sys 2015-05-15 22:39 - 2008-04-13 22:04 - 00104960 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\atinrvxx.sys 2015-05-15 22:39 - 2008-04-13 22:04 - 00073216 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\atintuxx.sys 2015-05-15 22:39 - 2008-04-13 22:04 - 00063663 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\ati1rvxx.sys 2015-05-15 22:39 - 2008-04-13 22:04 - 00063488 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\atinxsxx.sys 2015-05-15 22:39 - 2008-04-13 22:04 - 00057856 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\atinbtxx.sys 2015-05-15 22:39 - 2008-04-13 22:04 - 00056623 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\ati1btxx.sys 2015-05-15 22:39 - 2008-04-13 22:04 - 00052224 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\atinraxx.sys 2015-05-15 22:39 - 2008-04-13 22:04 - 00036463 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\ati1tuxx.sys 2015-05-15 22:39 - 2008-04-13 22:04 - 00034735 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\ati1xsxx.sys 2015-05-15 22:39 - 2008-04-13 22:04 - 00031744 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\atinxbxx.sys 2015-05-15 22:39 - 2008-04-13 22:04 - 00030671 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\ati1raxx.sys 2015-05-15 22:39 - 2008-04-13 22:04 - 00029455 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\ati1xbxx.sys 2015-05-15 22:39 - 2008-04-13 22:04 - 00028672 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\atinsnxx.sys 2015-05-15 22:39 - 2008-04-13 22:04 - 00026367 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\ati1snxx.sys 2015-05-15 22:39 - 2008-04-13 22:04 - 00025471 ____N (Intel(R) Corporation) C:\WINDOWS\system32\Drivers\watv10nt.sys 2015-05-15 22:39 - 2008-04-13 22:04 - 00022271 ____N (Intel(R) Corporation) C:\WINDOWS\system32\Drivers\watv06nt.sys 2015-05-15 22:39 - 2008-04-13 22:04 - 00021343 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\ati1ttxx.sys 2015-05-15 22:39 - 2008-04-13 22:04 - 00014336 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\atinpdxx.sys 2015-05-15 22:39 - 2008-04-13 22:04 - 00013824 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\atinttxx.sys 2015-05-15 22:39 - 2008-04-13 22:04 - 00013824 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\atinmdxx.sys 2015-05-15 22:39 - 2008-04-13 22:04 - 00012047 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\ati1pdxx.sys 2015-05-15 22:39 - 2008-04-13 22:04 - 00011935 ____N (Intel(R) Corporation) C:\WINDOWS\system32\Drivers\wadv11nt.sys 2015-05-15 22:39 - 2008-04-13 22:04 - 00011871 ____N (Intel(R) Corporation) C:\WINDOWS\system32\Drivers\wadv09nt.sys 2015-05-15 22:39 - 2008-04-13 22:04 - 00011807 ____N (Intel(R) Corporation) C:\WINDOWS\system32\Drivers\wadv07nt.sys 2015-05-15 22:39 - 2008-04-13 22:04 - 00011615 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\ati1mdxx.sys 2015-05-15 22:39 - 2008-04-13 22:04 - 00011295 ____N (Intel(R) Corporation) C:\WINDOWS\system32\Drivers\wadv08nt.sys 2015-05-15 22:39 - 2007-04-02 21:36 - 00129045 ____N () C:\WINDOWS\system32\Drivers\cxthsfs2.cty 2015-05-15 22:39 - 2006-12-29 20:21 - 00064352 ____N () C:\WINDOWS\system32\Drivers\ativmc20.cod 2015-05-15 22:39 - 2006-12-29 20:02 - 00067866 ____N () C:\WINDOWS\system32\Drivers\netwlan5.img 2015-05-15 22:38 - 2006-12-29 00:31 - 00019569 _____ () C:\WINDOWS\003004_.tmp 2015-05-15 12:23 - 2015-05-16 11:05 - 00000000 ____D () C:\FRST 2015-05-14 21:59 - 2015-05-16 00:09 - 00000000 ____D () C:\Program Files\Google 2015-05-11 17:57 - 2015-05-11 18:05 - 00000061 _____ () C:\Documents and Settings\rane\desktop\kix2.txt 2015-05-11 12:49 - 2015-05-11 12:49 - 00000000 ____D () C:\Documents and Settings\rane\Local Settings\Application Data\Apple Computer 2015-05-11 12:49 - 2015-05-11 12:49 - 00000000 ____D () C:\Documents and Settings\rane\Application Data\Apple Computer 2015-05-11 12:23 - 2015-05-11 12:23 - 00000000 ____D () C:\Documents and Settings\rane\Local Settings\Application Data\Apple 2015-05-05 21:19 - 2015-05-06 01:52 - 00000147 _____ () C:\Documents and Settings\rane\desktop\11141424.txt 2015-05-04 12:00 - 2015-05-04 13:28 - 00000000 ____D () C:\Program Files\Recuva 2015-05-03 20:38 - 2015-05-03 20:38 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\CCleaner 2015-05-01 16:58 - 2015-05-16 10:49 - 00000396 _____ () C:\WINDOWS\Tasks\Opera scheduled Autoupdate 1430492290.job 2015-05-01 16:58 - 2015-05-01 16:58 - 00000675 _____ () C:\Documents and Settings\All Users\Start Menu\Programs\Opera.lnk 2015-05-01 16:58 - 2015-05-01 16:58 - 00000675 _____ () C:\Documents and Settings\All Users\desktop\Opera.lnk 2015-04-28 22:56 - 2015-05-14 16:46 - 00000954 _____ () C:\Documents and Settings\rane\desktop\356.txt 2015-04-23 06:37 - 2015-04-23 06:37 - 00000869 _____ () C:\Documents and Settings\rane\desktop\123.txt 2015-04-23 02:28 - 2015-04-23 02:28 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\Lightshot 2015-04-19 22:58 - 2015-04-19 22:58 - 00000061 _____ () C:\Documents and Settings\rane\desktop\New Text Document.txt 2015-04-16 06:49 - 2015-03-16 18:44 - 00749664 _____ (Oracle Corporation) C:\WINDOWS\system32\Drivers\VBoxDrv.sys 2015-04-16 06:48 - 2015-03-16 18:42 - 00104384 _____ (Oracle Corporation) C:\WINDOWS\system32\Drivers\VBoxUSBMon.sys 2015-04-16 05:07 - 2015-04-16 05:07 - 00002164 _____ () C:\Documents and Settings\rane\desktop\Screencast-O-Matic.lnk 2015-04-16 05:04 - 2015-05-05 00:52 - 00000000 ____D () C:\Documents and Settings\rane\Local Settings\Application Data\Screencast-O-Matic 2015-04-16 05:04 - 2015-04-16 05:04 - 00000000 ____D () C:\Documents and Settings\rane\Start Menu\Programs\Screencast-O-Matic 2015-04-16 04:59 - 2015-04-16 05:02 - 00000000 ____D () C:\Documents and Settings\rane\Local Settings\Application Data\Screencast-O-Matic-v2 ==================== One Month Modified Files and Folders ======= (If an entry is included in the fixlist, the file\folder will be moved.) 2015-05-16 11:05 - 2014-02-08 13:17 - 00000000 ____D () C:\Documents and Settings\rane\Local Settings\temp 2015-05-16 11:00 - 2012-07-25 18:10 - 00001507 _____ () C:\Documents and Settings\All Users\Start Menu\Windows Update.lnk 2015-05-16 10:56 - 2014-01-20 16:23 - 00065536 _____ () C:\WINDOWS\system32\config\Internet.evt 2015-05-16 10:56 - 2012-09-05 11:12 - 00065536 _____ () C:\WINDOWS\system32\config\TuneUp.evt 2015-05-16 10:56 - 2012-07-25 18:13 - 00000000 ____D () C:\Documents and Settings\rane 2015-05-16 10:53 - 2014-07-24 16:00 - 00000000 ____D () C:\Program Files\msn 2015-05-16 10:49 - 2014-08-04 22:05 - 00032520 ____N () C:\WINDOWS\SchedLgU.Txt 2015-05-16 10:49 - 2012-07-25 18:13 - 00000178 ___SH () C:\Documents and Settings\rane\ntuser.ini 2015-05-16 10:49 - 2012-07-25 18:12 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT 2015-05-16 10:39 - 2014-08-10 15:37 - 00000830 _____ () C:\WINDOWS\Tasks\Adobe Flash Player Updater.job 2015-05-16 10:16 - 2015-04-08 18:59 - 00000374 _____ () C:\WINDOWS\Tasks\update-S-1-5-21-1454471165-484763869-725345543-1003.job 2015-05-16 09:45 - 2014-07-16 22:22 - 00000000 ____D () C:\Program Files\Opera 2015-05-16 09:45 - 2012-07-25 20:02 - 00568008 _____ () C:\WINDOWS\system32\PerfStringBackup.INI 2015-05-16 09:45 - 2012-07-25 19:57 - 00000000 ____D () C:\WINDOWS\Help 2015-05-16 09:44 - 2012-07-25 19:57 - 00000000 ____D () C:\WINDOWS\system32\inetsrv 2015-05-16 09:44 - 2012-07-25 18:08 - 00000000 ___RD () C:\Documents and Settings\All Users\Start Menu\Programs\Games 2015-05-16 09:44 - 2012-07-25 18:07 - 00000000 ____D () C:\Program Files\Windows NT 2015-05-16 09:44 - 2012-07-25 18:06 - 00000000 ___RD () C:\Documents and Settings\All Users\Start Menu\Programs\Accessories 2015-05-16 00:09 - 2012-07-26 08:13 - 00000000 ____D () C:\Documents and Settings\rane\Local Settings\Application Data\Google 2015-05-15 23:29 - 2014-07-16 00:47 - 00001507 _____ () C:\Documents and Settings\rane\desktop\Notepad.lnk 2015-05-15 23:15 - 2015-04-08 18:59 - 00000374 _____ () C:\WINDOWS\Tasks\update-sys.job 2015-05-15 23:08 - 2015-01-16 04:17 - 00096352 _____ (Oracle Corporation) C:\WINDOWS\system32\WindowsAccessBridge.dll 2015-05-15 23:08 - 2015-01-16 04:16 - 00000000 ____D () C:\Program Files\Java 2015-05-15 23:08 - 2015-01-16 03:54 - 00146432 _____ (Oracle Corporation) C:\WINDOWS\system32\javacpl.cpl 2015-05-15 23:00 - 2014-07-16 01:44 - 00001483 _____ () C:\Documents and Settings\rane\desktop\On-Screen Keyboard.lnk 2015-05-15 22:57 - 2012-07-25 18:10 - 00316640 _____ () C:\WINDOWS\WMSysPr9.prx 2015-05-15 22:57 - 2001-08-23 14:00 - 00002206 _____ () C:\WINDOWS\system32\wpa.dbl 2015-05-15 22:45 - 2014-07-24 16:37 - 00000792 _____ () C:\Documents and Settings\LocalService\Start Menu\Programs\Windows Media Player.lnk 2015-05-15 22:45 - 2014-01-20 15:28 - 00000090 _____ () C:\WINDOWS\system32\spupdwxp.log 2015-05-15 22:44 - 2012-07-25 19:57 - 00000000 ____D () C:\WINDOWS\security 2015-05-15 22:42 - 2014-07-24 16:00 - 00000000 ____D () C:\Program Files\Messenger 2015-05-15 22:42 - 2012-07-25 18:10 - 00001563 _____ () C:\Documents and Settings\All Users\Start Menu\Set Program Access and Defaults.lnk 2015-05-15 22:41 - 2014-01-20 15:24 - 00000000 ____D () C:\WINDOWS\system32\scripting 2015-05-15 22:41 - 2014-01-20 15:24 - 00000000 ____D () C:\WINDOWS\system32\bits 2015-05-15 22:41 - 2014-01-20 15:24 - 00000000 ____D () C:\WINDOWS\l2schemas 2015-05-15 22:41 - 2012-07-25 19:57 - 00000000 ____D () C:\WINDOWS\system32\usmt 2015-05-15 22:41 - 2012-07-25 19:57 - 00000000 ____D () C:\WINDOWS\PeerNet 2015-05-15 22:41 - 2012-07-25 19:57 - 00000000 ____D () C:\WINDOWS\ime 2015-05-15 22:41 - 2012-07-25 18:08 - 00000000 ____D () C:\Program Files\Movie Maker 2015-05-15 22:40 - 2012-07-25 19:57 - 00000000 ____D () C:\WINDOWS\system32\npp 2015-05-15 22:40 - 2012-07-25 19:57 - 00000000 ____D () C:\WINDOWS\system 2015-05-15 22:40 - 2012-07-25 19:57 - 00000000 ____D () C:\WINDOWS\mui 2015-05-15 22:40 - 2012-07-25 19:57 - 00000000 ____D () C:\WINDOWS\msagent 2015-05-15 22:40 - 2012-07-25 18:08 - 00000000 ____D () C:\WINDOWS\system32\Restore 2015-05-15 22:40 - 2012-07-25 18:08 - 00000000 ____D () C:\WINDOWS\srchasst 2015-05-15 22:40 - 2012-07-25 18:08 - 00000000 ____D () C:\Program Files\Outlook Express 2015-05-15 22:40 - 2012-07-25 18:08 - 00000000 ____D () C:\Program Files\NetMeeting 2015-05-15 22:40 - 2012-07-25 18:08 - 00000000 ____D () C:\Program Files\Common Files\System 2015-05-15 22:40 - 2012-07-25 18:07 - 00000000 ____D () C:\WINDOWS\system32\Com 2015-05-15 22:39 - 2004-08-03 22:59 - 00250048 __RSH () C:\ntldr 2015-05-15 22:38 - 2013-07-17 23:14 - 00000000 ____D () C:\WINDOWS\system32\ReinstallBackups 2015-05-14 22:16 - 2015-04-14 09:47 - 00000686 __RSH () C:\Documents and Settings\All Users\ntuser.pol 2015-05-14 14:29 - 2001-08-23 14:00 - 00000587 _____ () C:\WINDOWS\win.ini 2015-05-12 03:19 - 2012-08-30 11:14 - 00000000 ____D () C:\WINDOWS\Minidump 2015-05-12 03:03 - 2015-01-16 05:47 - 00114904 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys 2015-05-03 20:38 - 2015-03-14 17:43 - 00000682 _____ () C:\Documents and Settings\All Users\desktop\CCleaner.lnk 2015-05-03 20:38 - 2015-03-14 17:43 - 00000000 ____D () C:\Program Files\CCleaner 2015-05-03 19:46 - 2015-03-24 14:18 - 00000000 ____D () C:\Documents and Settings\frrrrrrr\Local Settings\Application Data\Google 2015-05-03 19:44 - 2015-03-24 14:16 - 00000000 ____D () C:\Documents and Settings\frrrrrrr\Local Settings\temp 2015-05-03 19:44 - 2014-08-17 02:04 - 00000000 ____D () C:\Documents and Settings\Guest\Local Settings\temp 2015-05-03 19:44 - 2014-08-17 02:04 - 00000000 ____D () C:\Documents and Settings\Guest\Local Settings\Application Data\Google 2015-05-02 13:44 - 2013-08-15 14:47 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\Skype 2015-05-01 18:10 - 2015-04-06 02:21 - 00001212 _____ () C:\Documents and Settings\rane\desktop\XXX.txt 2015-05-01 16:58 - 2014-07-16 22:22 - 00000000 ____D () C:\Documents and Settings\rane\Local Settings\Application Data\Opera Software 2015-05-01 16:56 - 2014-07-16 22:22 - 00000000 ____D () C:\Documents and Settings\rane\Application Data\Opera Software 2015-04-29 04:43 - 2015-04-06 20:18 - 00000590 _____ () C:\Documents and Settings\rane\desktop\BR.txt 2015-04-26 21:39 - 2014-08-10 15:37 - 00778416 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe 2015-04-26 21:39 - 2014-08-10 15:37 - 00142512 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl 2015-04-23 02:28 - 2013-04-15 23:14 - 00000412 _____ () C:\Documents and Settings\rane\Local Settings\Application Data\UserProducts.xml 2015-04-17 03:45 - 2015-04-12 13:38 - 00000491 _____ () C:\Documents and Settings\rane\desktop\blejo.txt 2015-04-16 10:33 - 2014-08-26 08:48 - 00184150 _____ () C:\Documents and Settings\LocalService\Local Settings\Application Data\WPFFontCache_v0400-S-1-5-21-1454471165-484763869-725345543-1003-0.dat 2015-04-16 10:33 - 2014-08-26 08:48 - 00092878 _____ () C:\Documents and Settings\LocalService\Local Settings\Application Data\WPFFontCache_v0400-System.dat ==================== Files in the root of some directories ======= 2013-04-24 07:57 - 2013-04-24 07:57 - 0000000 ____C () C:\Documents and Settings\rane\Application Data\bitlord_log.txt 2013-03-28 23:06 - 2013-03-29 01:00 - 0022328 _____ () C:\Documents and Settings\rane\Application Data\PnkBstrK.sys 2012-07-26 07:49 - 2013-06-24 23:23 - 0032256 _____ () C:\Documents and Settings\rane\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini 2013-04-24 08:00 - 2013-04-24 08:00 - 0000218 _____ () C:\Documents and Settings\rane\Local Settings\Application Data\recently-used.xbel 2013-04-15 23:14 - 2013-04-15 23:14 - 0000003 _____ () C:\Documents and Settings\rane\Local Settings\Application Data\updater.log 2013-04-15 23:14 - 2015-04-23 02:28 - 0000412 _____ () C:\Documents and Settings\rane\Local Settings\Application Data\UserProducts.xml Some content of TEMP: ==================== C:\Documents and Settings\rane\Local Settings\temp\jre-8u45-windows-au.exe ==================== Bamital & volsnap Check ================= (There is no automatic fix for files that do not pass verification.) C:\WINDOWS\explorer.exe => File is digitally signed C:\WINDOWS\system32\winlogon.exe => File is digitally signed C:\WINDOWS\system32\svchost.exe => File is digitally signed C:\WINDOWS\system32\services.exe => File is digitally signed C:\WINDOWS\system32\User32.dll => File is digitally signed C:\WINDOWS\system32\userinit.exe => File is digitally signed C:\WINDOWS\system32\rpcss.dll => File is digitally signed C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed ==================== End Of Log ============================ mycity.rs/must-login.png

Profil

magna86 Poslao: 16 Maj 2015 12:29 Idi na vrh
offline magna86 Anti Malware Fighter Rank 2 Pridružio: 21 Jun 2008 Poruke: 6103	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Ola, Preporuka da ne koristis dll fixer. To je vise reklamni alat ... Pre nego sto nastavimo, da te pitam ... da li je ovaj PC deo domena? Tacnije, da li je Windows uclanjen na server sa aktivnim direktorijumom (ADDS)? Isto tako, molim ukratko pojasni sledece naloge, ono sto mozes: - Administrator //Enabled - ASPNET //Limited - Enabled) - Guest //Limited - Enabled) - HelpAssistant // Limited - Disabled) - rane // Administrator - Enabled) - SUPPORT_388945a0// Limited - Disabled) Zasto mi nisi rekao da ovo nije kucni racunar?

Profil

brankokifla Poslao: 16 Maj 2015 15:16 Idi na vrh
offline brankokifla Novi MyCity građanin Pridružio: 14 Maj 2015 Poruke: 5	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Napisano: 16 Maj 2015 14:30 oke nisam znao to za fix ne pipam to vise. ee posto sam laik za te stvari je'l mozes da mi objasnis gde da proverim da li sam uclanjen u ADDS? sto se tice administratota itd sa tim kuburim ihahaj jedno vremen nisam mogao da promenim admin sifru,uopste nisam mogao da napisem bilo sta,sad mogu...i ovo i jeste kucni racunar,evo ga brt ispred mene,u kuci. Dopuna: 16 Maj 2015 14:34 jebo te zivot sad ne mogu da udjem tamo gde se nalazi admin opcije (user account) a sinoc moglo Dopuna: 16 Maj 2015 15:16 ovo sam jutros imao 1000000% (Internet O.) a sad nestalo,nm sigurno da je bilo izmedju ove 4 stvari za net bas u sredini,sad pretrazjem ali nigde nema

Profil

magna86 Poslao: 16 Maj 2015 20:11 Idi na vrh
offline magna86 Anti Malware Fighter Rank 2 Pridružio: 21 Jun 2008 Poruke: 6103	1Ovo se svidja korisniku: brankokifla Registruj se da bi pohvalio/la poruku! Ok, moja greska, idemo dalje ... Iako ovde zapravo nema aktivnog malware-a (osim jednog adware-a usadjen u Firefox browser), sa FRST uklanjamo neke ostatke i ubrzavamo rad, a sa ComboFix vrsimo dodatnu proveru na ceo sistem, da se osiguramo... #Korak 1 1. Otvori Notepad (Text Document) i iskopiraj sledeći tekst unutar kod polja ispod: Start CloseProcesses: CHR HKU\S-1-5-21-1454471165-484763869-725345543-1003\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION HKU\S-1-5-21-1454471165-484763869-725345543-1003\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION URLSearchHook: HKLM - Default Value = {FE69C007-C452-4d3e-86D2-1730DF8BC871} SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-21-1454471165-484763869-725345543-1003 -> {483830EE-A4CD-4b71-B0A3-3D82E62A6909} URL = FF Extension: UniDDeeaaLsa u - C:\Documents and Settings\rane\Application Data\Mozilla\Firefox\Profiles\68qbbhbc.default\Extensions\Oo9mm9@r.com [2015-02-12] CreateRestorePoint: Hosts: C:\Documents and Settings\rane\Application Data\Mozilla\Firefox\Profiles\68qbbhbc.default\Extensions\Oo9mm9@r.com RemoveProxy: HKU\.DEFAULT\Software\Classes\.exe: exefile => "%1" %* <===== ATTENTION! HKU\.DEFAULT\Software\Classes\exefile: "%1" %* <===== ATTENTION! HKU\S-1-5-19\Software\Classes\.exe: exefile => "%1" %* <===== ATTENTION! HKU\S-1-5-19\Software\Classes\exefile: "%1" %* <===== ATTENTION! HKU\S-1-5-20\Software\Classes\.exe: exefile => "%1" %* <===== ATTENTION! HKU\S-1-5-20\Software\Classes\exefile: "%1" %* <===== ATTENTION! HKU\S-1-5-21-1454471165-484763869-725345543-1003\Software\Classes\exefile: "%1" %* <===== ATTENTION! EmptyTemp: End 2. Sačuvaj notepad na Desktop pod nazivom fixlist.txt To možes uraditi i iz notepad-a => klik na File potom na Save As i u novom prozoru, dole pod File Name: staviš za naziv fixlist.txt Napomena: Važno je da se oba fajla, FRST i fixlist nalaze na istoj lokaciji jer u suprotnom fix nece raditi. 3. Ponovo pokreni FRST/FRST64, klikni jednom na dugme Fix i sačekaj. Ukoliko alat zatraži restart sistema, dozvoli mu i postaraj se da alat kompletira fix nakon restarta sistema. Alat će formirati log (Fixlog.txt) na Desktop-u. Potrebno je sadržaj tog loga iskopirati u poruku. Napomena: Ukoliko te alat upozori da postoji novija verzija, postaraj se da preuzmes i koristiš ažuriranu kopiju FRST-a. #Korak 2 1. Preuzmi sUBs-ov ComboFix () sa ovog linka i sačuvaj alat na Desktop. • Klikni desnim tasterom na link i odaberi opciju Save Target As... (Save Link As..., Save Linked Content As... ili sličnu); • Kada se otvori dijalog za izbor lokacije na kojoj treba sačuvati file, odaberi Desktop i klikni Save. ------------------------------------------------------------ 2. Privremeno deaktiviraj AntiVirus program, u većini slučajeva preko desnog klika na ikonu programa u system tray. Oni mogu ometati alat tokom rada. Ukoliko nisi siguran kako to da uradiš, isprati ovo uputstvo. ------------------------------------------------------------ 3. Dvoklikom na ikonicu pokreni ComboFix. Potom, na disclaimer prozoru klikni dugme I Agree! • ComboFix će proveriti da li je dostupna nova verzija alata. Klikni Yes ako je zatrazeno preuzimanje. • Ukoliko Recovery Console nije instaliran, ComboFix će ponuditi preuzimanje i instalaciju. Klikni Yes da bi dozvolio alatu da preuzme i instalira Recovery Console • ComboFix će skenirati računar po fazama (Stage_#) ukupno 50 faza. Ne kliktati okolo dok ComboFix ispituje sistem. • Ukoliko je malware detektovan, ComboFix će zapoceti njegovo uklanjanje. Iz tog razloga, alat će po potrebi restartovati Windows (nekad i više puta); Napomena: Ako nakon rada alata dobiješ grešku (Illegal operation attempted on a registry key that has been marked for deletion) prilikom startovanja programa, restartovati računar i to ce rešiti problem. ------------------------------------------------------------ 4. Kada alat završi, formiraće i otvoriti izveštaj (tipična lokacija: C:\ComboFix.txt) Iskopiraj sadržaj ComboFix.txt izveštaja u poruku. ComboFix će takođe formirati i dodatan izveštaj (tipicna lokacija: C:\Qoobox\ComboFix-quarantined-files.txt) Okači ComboFix-quarantined-files.txt izveštaj uz poruku koristeći opciju Prikači fajl

Profil

brankokifla Poslao: 20 Maj 2015 12:42 Idi na vrh
offline brankokifla Novi MyCity građanin Pridružio: 14 Maj 2015 Poruke: 5	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Uloguj se preko Facebooka da bi skinuo fajl: izvinjavam se sto se tek sad javljam visa sila jbg no ae da pre logova napisem i okacim neke stvari elem uspeo sam da resim problem sa IE ali mi sad u kontrol panel ima opcija za podesavanje neta,takva nikad nije bila,na stranu sve to,problem je od kako se to pojavilo non sto mi (np kada slikam i kacam na net sa light shot ) izbacuje nekakvu dail up konekciju i sve dok ne ugasim,nece da pokrene bilo sta sto se postavlja na net cim ugasim tek tad proradi.probam da pokrenem FRST odma dail up iskace kliknem conektion i tu neka greska i onda FRST zabode,reinstal sam FRST i evo sad tek proradi skeniranje okacicu 2-3 slicice pa mi reci sta li moze biti taj dail up i kako ga resiti. na trecoj slici je taj dail up nznm koliko je pametno da ga obrisem,ako uopste i moze da se obrise.. e sad combo fix logovi mycity.rs/must-login.png mycity.rs/must-login.png prvi put radim ovako nesto ako sam zabrljao skeniracu ponovo. ComboFix 15-05-19.01 - rane 05/20/2015 11:59:09.2.2 - x86 Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.1013.582 [GMT 2:00] Running from: c:\documents and settings\rane\Desktop\ComboFix.exe . . ((((((((((((((((((((((((((((((((((((((( Other Deletions ))))))))))))))))))))))))))))))))))))))))))))))))) . . c:\documents and settings\All Users\Application Data\TEMP c:\documents and settings\All Users\Application Data\TEMP\RAIDTest c:\documents and settings\All Users\ntuser.pol c:\program files\BPK c:\program files\BPK\bpk.dat c:\program files\BPK\pk.bin c:\windows\system32\drivers\etc\hosts.ics c:\windows\system32\msnphoto.scr c:\windows\system32\roboot.exe c:\windows\wininit.ini . . ((((((((((((((((((((((((((((((((((((((( Drivers/Services ))))))))))))))))))))))))))))))))))))))))))))))))) . . -------\Legacy_GLOBALUPDATE -------\Legacy_NPF . . ((((((((((((((((((((((((( Files Created from 2015-04-20 to 2015-05-20 ))))))))))))))))))))))))))))))) . . 2015-05-17 07:41 . 2015-05-20 09:44 -------- d-----w- c:\program files\Opera 2015-05-16 15:02 . 2015-05-16 15:06 -------- d-----w- c:\program files\Unlocker 2015-05-16 14:39 . 2015-05-16 14:39 -------- d-----w- c:\program files\VS Revo Group 2015-05-16 08:44 . 2015-05-16 08:44 -------- d-----w- c:\documents and settings\rane\Application Data\Solvusoft 2015-05-16 08:08 . 2015-05-16 08:08 -------- d-----w- c:\documents and settings\rane\Application Data\dll-files.com 2015-05-15 22:02 . 2015-05-15 22:02 -------- d-----w- c:\windows\system32\CatRoot_bak 2015-05-15 21:09 . 2015-05-15 21:09 -------- d-----w- c:\program files\Common Files\Java 2015-05-15 20:42 . 2008-04-14 03:42 1306624 -c----w- c:\windows\system32\dllcache\msxml6.dll 2015-05-15 20:42 . 2008-04-14 03:41 33792 ------w- c:\program files\Messenger\custsat.dll 2015-05-15 20:42 . 2008-04-13 20:57 79872 -c----w- c:\windows\system32\dllcache\msxml6r.dll 2015-05-15 20:40 . 2008-04-14 03:42 294912 ------w- c:\program files\Windows Media Player\dlimport.exe 2015-05-15 20:40 . 2008-04-14 03:42 294912 -c----w- c:\windows\system32\dllcache\dlimport.exe 2015-05-15 10:23 . 2015-05-20 09:51 -------- d-----w- C:\FRST 2015-05-14 19:59 . 2015-05-15 22:09 -------- d-----w- c:\program files\Google 2015-05-11 10:49 . 2015-05-11 10:49 -------- d-----w- c:\documents and settings\rane\Local Settings\Application Data\Apple Computer 2015-05-11 10:49 . 2015-05-11 10:49 -------- d-----w- c:\documents and settings\rane\Application Data\Apple Computer 2015-05-11 10:23 . 2015-05-11 10:23 -------- d-----w- c:\documents and settings\rane\Local Settings\Application Data\Apple 2015-05-04 10:00 . 2015-05-04 11:28 -------- d-----w- c:\program files\Recuva . . . (((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2015-05-17 11:55 . 2015-01-16 03:47 114904 ----a-w- c:\windows\system32\drivers\MBAMSwissArmy.sys 2015-05-16 21:41 . 2014-08-10 13:37 778416 ----a-w- c:\windows\system32\FlashPlayerApp.exe 2015-05-16 21:41 . 2014-08-10 13:37 142512 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl 2015-05-15 21:08 . 2015-01-16 02:17 96352 ----a-w- c:\windows\system32\WindowsAccessBridge.dll 2015-05-15 21:08 . 2015-01-16 01:54 146432 ----a-w- c:\windows\system32\javacpl.cpl 2015-03-16 16:44 . 2015-04-16 04:49 749664 ----a-w- c:\windows\system32\drivers\VBoxDrv.sys 2015-03-16 16:42 . 2015-04-16 04:48 104384 ----a-w- c:\windows\system32\drivers\VBoxUSBMon.sys 2015-03-16 16:42 . 2015-03-16 16:42 115672 ----a-w- c:\windows\system32\drivers\VBoxNetAdp.sys . . ((((((((((((((((((((((((((((((((((((( Reg Loading Points )))))))))))))))))))))))))))))))))))))))))))))))))) . . Note empty entries & legit default entries are not shown REGEDIT4 . [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "CCleaner Monitoring"="c:\program files\CCleaner\CCleaner.exe" [2015-04-23 6278424] . [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "ISUSPM Startup"="c:\progra~1\COMMON~1\INSTAL~1\UPDATE~1\ISUSPM.exe" [2005-02-16 221184] "RTHDCPL"="RTHDCPL.EXE" [2013-10-04 20145368] "IgfxTray"="c:\windows\system32\igfxtray.exe" [2009-09-23 141848] "HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2009-09-23 173592] "Persistence"="c:\windows\system32\igfxpers.exe" [2009-09-23 150552] "Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2014-05-08 959904] "Lightshot"="c:\program files\Skillbrains\lightshot\Lightshot.exe" [2014-11-18 226560] "SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2015-04-30 334896] "ISUSScheduler"="c:\program files\Common Files\InstallShield\UpdateService\issch.exe" [2005-02-16 81920] . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\explorer] "NoDevMgrUpdate"= 0 (0x0) "NoDFSTab"= 0 (0x0) "NoEncryptOnMove"= 0 (0x0) "NoResolveTrack"= 0 (0x0) "NoStartMenuSubFolders"= 0 (0x0) . [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer] "NoDevMgrUpdate"= 0 (0x0) "NoDFSTab"= 0 (0x0) "NoEncryptOnMove"= 0 (0x0) "NoResolveTrack"= 0 (0x0) "NoStartMenuSubFolders"= 0 (0x0) . [HKEY_USERS\.default\software\microsoft\windows\currentversion\policies\explorer] "DisableLocalMachineRun"= 0 (0x0) "DisableLocalMachineRunOnce"= 0 (0x0) "DisableCurrentUserRun"= 0 (0x0) "DisableCurrentUserRunOnce"= 0 (0x0) "NoFile"= 0 (0x0) "HideClock"= 0 (0x0) "NoDevMgrUpdate"= 0 (0x0) "NoDFSTab"= 0 (0x0) "NoEncryptOnMove"= 0 (0x0) "NoResolveTrack"= 0 (0x0) "NoStartMenuSubFolders"= 0 (0x0) . [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon] "UIHost"=hex(2):6c,6f,67,6f,6e,75,69,2e,65,78,65,00,00 . [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys] @="Driver" . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ctfmon.exe] 2008-04-14 03:42 15360 ----a-w- c:\windows\system32\ctfmon.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ISUSPM Startup] 2005-02-16 17:15 221184 ----a-w- c:\progra~1\COMMON~1\INSTAL~1\UPDATE~1\ISUSPM.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ISUSScheduler] 2005-02-16 17:15 81920 ----a-w- c:\program files\Common Files\InstallShield\UpdateService\issch.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RTHDCPL] 2013-10-04 10:29 20145368 ----a-w- c:\windows\RTHDCPL.EXE . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched] 2015-04-30 11:45 334896 ----a-w- c:\program files\Common Files\Java\Java Update\jusched.exe . [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile] "EnableFirewall"= 0 (0x0) . [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List] "%windir%\\system32\\sessmgr.exe"= . [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List] "3389:TCP"= 3389:TCP:@xpsp2res.dll,-22009 . R0 MxEFUF;Matrox Extio Upper Function Filter;c:\windows\system32\drivers\MxEFUF32.sys [7/16/2014 12:46 PM 108544] R1 SbFw;SbFw;c:\windows\system32\drivers\SbFw.sys [3/16/2014 8:59 AM 337184] R1 sbtis;sbtis;c:\windows\system32\drivers\sbtis.sys [3/16/2014 9:00 AM 222368] R2 Intel(R) PROSet Monitoring Service;Intel(R) PROSet Monitoring Service;c:\windows\system32\IPROSetMonitor.exe [4/5/2013 4:53 AM 121600] R3 analog;analog;c:\windows\system32\drivers\analog.sys [7/16/2014 10:31 AM 11264] R3 dtultrascsibus;DAEMON Tools Ultra Virtual SCSI Bus;c:\windows\system32\drivers\dtultrascsibus.sys [2/11/2015 1:22 PM 25104] R3 iegdmini;iegdmini;c:\windows\system32\drivers\iegdmini.sys [7/16/2014 10:31 AM 1677440] R3 lvds;lvds;c:\windows\system32\drivers\lvds.sys [7/16/2014 10:31 AM 10496] R3 SBFWIMCLMP;GFI Software Firewall NDIS IM Filter Miniport;c:\windows\system32\drivers\SbFwIm.sys [3/16/2014 8:59 AM 95488] R3 sdvo;sdvo;c:\windows\system32\drivers\sdvo.sys [7/16/2014 10:31 AM 38784] R3 tv;tv;c:\windows\system32\drivers\tv.sys [7/16/2014 10:31 AM 36864] S1 A2DDA;A2 Direct Disk Access Support Driver;\??\c:\eek\RUN\a2ddax86.sys --> c:\eek\RUN\a2ddax86.sys [?] S3 Ambfilt;Ambfilt;c:\windows\system32\drivers\Ambfilt.sys [1/12/2013 12:13 PM 1691480] S3 cleanhlp;cleanhlp;\??\c:\eek\Run\cleanhlp32.sys --> c:\eek\Run\cleanhlp32.sys [?] S3 cpuz135;cpuz135;c:\program files\CPUID\PC Wizard 2012\pcwiz_x32.sys [7/17/2013 10:35 PM 24880] S3 DrvAgent32;DrvAgent32;c:\windows\system32\drivers\DrvAgent32.sys [6/22/2014 9:26 AM 23456] S3 dtproscsibus;DAEMON Tools Pro Virtual SCSI Bus;c:\windows\system32\drivers\dtproscsibus.sys [2/12/2015 3:03 PM 25104] S3 ew_hwusbdev;Huawei MobileBroadband USB PNP Device;c:\windows\system32\DRIVERS\ew_hwusbdev.sys --> c:\windows\system32\DRIVERS\ew_hwusbdev.sys [?] S3 ewusbnet;HUAWEI USB-NDIS miniport;c:\windows\system32\DRIVERS\ewusbnet.sys --> c:\windows\system32\DRIVERS\ewusbnet.sys [?] S3 huawei_enumerator;huawei_enumerator;c:\windows\system32\DRIVERS\ew_jubusenum.sys --> c:\windows\system32\DRIVERS\ew_jubusenum.sys [?] S3 JMCF;JMCF;c:\windows\system32\drivers\jmcf.sys [7/17/2013 11:24 PM 68720] S3 massfilter;Mass Storage Filter Driver;c:\windows\system32\drivers\massfilter.sys --> c:\windows\system32\drivers\massfilter.sys [?] S3 MBAMSwissArmy;MBAMSwissArmy;c:\windows\system32\drivers\MBAMSwissArmy.sys [1/16/2015 5:47 AM 114904] S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\drivers\Rt86win7.sys [7/25/2012 8:27 PM 340072] S3 SBFWIMCL;GFI Software Firewall NDIS IM Filter Service;c:\windows\system32\drivers\SbFwIm.sys [3/16/2014 8:59 AM 95488] S3 sbhips;sbhips;c:\windows\system32\drivers\sbhips.sys [3/16/2014 9:00 AM 94496] S3 VBoxDrv;VBox Support Driver;\??\c:\program files\Oracle\VirtualBox\VBoxDrv.sys --> c:\program files\Oracle\VirtualBox\VBoxDrv.sys [?] S3 VBoxNetAdp;VirtualBox Host-Only Ethernet Adapter;c:\windows\system32\drivers\VBoxNetAdp.sys [3/16/2015 6:42 PM 115672] S3 VBoxNetFlt;VirtualBox Bridged Networking Service;c:\windows\system32\DRIVERS\VBoxNetFlt.sys --> c:\windows\system32\DRIVERS\VBoxNetFlt.sys [?] S4 sptd;sptd;c:\windows\system32\Drivers\sptd.sys --> c:\windows\system32\Drivers\sptd.sys [?] . [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost] ORBTR REG_MULTI_SZ Orbiter . [HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}] 2015-05-15 22:09 988488 ----a-w- c:\program files\Google\Chrome\Application\42.0.2311.152\Installer\chrmstp.exe . Contents of the 'Scheduled Tasks' folder . 2015-05-20 c:\windows\Tasks\Adobe Flash Player Updater.job - c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2014-04-21 21:41] . 2015-05-20 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job - c:\program files\Google\Update\GoogleUpdate.exe [2015-05-15 22:03] . 2015-05-20 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job - c:\program files\Google\Update\GoogleUpdate.exe [2015-05-15 22:03] . 2015-05-20 c:\windows\Tasks\Opera scheduled Autoupdate 1431848469.job - c:\program files\Opera\launcher.exe [2015-05-17 07:13] . 2015-05-19 c:\windows\Tasks\update-S-1-5-21-1454471165-484763869-725345543-1003.job - c:\program files\Skillbrains\Updater\Updater.exe [2015-04-08 11:29] . 2015-05-20 c:\windows\Tasks\update-sys.job - c:\program files\Skillbrains\Updater\Updater.exe [2015-04-08 11:29] . . ------- Supplementary Scan ------- . uStart Page = hxxp://www.google.com/ TCP: DhcpNameServer = 192.168.1.1 FF - ProfilePath - c:\documents and settings\rane\Application Data\Mozilla\Firefox\Profiles\68qbbhbc.default\ FF - prefs.js: browser.startup.homepage - google.com . . ------- File Associations ------- . JSEFile="%SystemRoot%\System32\WScript.exe" "%1" %* . - - - - ORPHANS REMOVED - - - - . Toolbar-10 - (no file) ShellIconOverlayIdentifiers-{472083B0-C522-11CF-8763-00608CC02F24} - (no file) SafeBoot-CleanHlp SafeBoot-CleanHlp.sys MSConfigStartUp-LightShot - c:\documents and settings\rane\Local Settings\Application Data\Skillbrains\lightshot\Lightshot.exe AddRemove-Screencast-O-Matic v2.0 - c:\documents and settings\rane\Local Settings\Application Data\Screencast-O-Matic\v2\Uninstall.exe . . . ************************************************************************ . catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, gmer.net Rootkit scan 2015-05-20 12:03 Windows 5.1.2600 Service Pack 3 NTFS . scanning hidden processes ... . scanning hidden autostart entries ... . scanning hidden files ... . scan completed successfully hidden files: 0 . ************************************************************************ . --------------------- LOCKED REGISTRY KEYS --------------------- . [HKEY_USERS\S-1-5-21-1454471165-484763869-725345543-1003\Software\Microsoft\SystemCertificates\AddressBook] @Allowed: (Read) (RestrictedCode) @Allowed: (Read) (RestrictedCode) . [HKEY_USERS\S-1-5-21-1454471165-484763869-725345543-1003\Software\Policies\Microsoft\SystemCertificates\AddressBook] @Allowed: (Read) (S-1-5-21-1454471165-484763869-725345543-1003) @Allowed: (Read) (S-1-5-21-1454471165-484763869-725345543-1003) @Allowed: (Read) (RestrictedCode) @Allowed: (Read) (RestrictedCode) . [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}] @Denied: (A 2) (Everyone) @="FlashBroker" "LocalizedString"="@c:\\WINDOWS\\system32\\Macromed\\Flash\\FlashUtil32_17_0_0_169_ActiveX.exe,-101" . [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\Elevation] "Enabled"=dword:00000001 . [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\LocalServer32] @="c:\\WINDOWS\\system32\\Macromed\\Flash\\FlashUtil32_17_0_0_169_ActiveX.exe" . [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\TypeLib] @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}" . [HKEY_LOCAL_MACHINE\software\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}] @Denied: (A 2) (Everyone) @="IFlashBroker6" . [HKEY_LOCAL_MACHINE\software\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\ProxyStubClsid32] @="{00020424-0000-0000-C000-000000000046}" . [HKEY_LOCAL_MACHINE\software\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\TypeLib] @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}" "Version"="1.0" . --------------------- DLLs Loaded Under Running Processes --------------------- . - - - - - - - > 'explorer.exe'(1884) c:\windows\system32\msi.dll c:\windows\system32\ieframe.dll c:\windows\system32\OneX.DLL c:\windows\system32\eappprxy.dll . ------------------------ Other Running Processes ------------------------ . c:\program files\Google\Update\1.3.27.5\GoogleCrashHandler.exe c:\program files\Skillbrains\lightshot\5.2.1.1\Lightshot.exe c:\windows\system32\PnkBstrA.exe c:\windows\system32\PnkBstrB.exe c:\windows\system32\wdfmgr.exe c:\windows\system32\wscntfy.exe . ************************************************************************** . Completion time: 2015-05-20 12:05:29 - machine was rebooted ComboFix-quarantined-files.txt 2015-05-20 10:05 . Pre-Run: 15,124,832,256 bytes free Post-Run: 15,009,558,528 bytes free . WindowsXP-KB310994-SP2-Pro-BootDisk-ENU.exe [boot loader] timeout=2 default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS [operating systems] c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons UnsupportedDebug="do not select this" /debug multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Professional" /noexecute=optin /fastdetect . - - End Of File - - 28306C0E809C4BF65FD7AAE7A16CDDE6 8F558EB6672622401DA993E1E865C861

Profil

magna86 Poslao: 20 Maj 2015 16:15 Idi na vrh
offline magna86 Anti Malware Fighter Rank 2 Pridružio: 21 Jun 2008 Poruke: 6103	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Moguce je da ti je dial up ukljucio prilikom startovanja FRST-a jer je alat hteo da proveri postoji li novija verzija jer se automacki azurira prilikom pokretanja. Tvoj originalni problem je resen azuriranjem Service Pack-a. Ovaj problem (dial up) ne znam (odavde bez dodatnog ispitivanja) zasto ti se desava. Moguce je da i dalje imas prikacen dial up modem koji je prilikom azuriranja postao aktivan. Prosto ga izvadi i problem bi trebao da je resen. Ako te taj modem muci, a ne znas kako da ga resis, otvori temu u Windows forumu za savet. Ova masina nema aktivan malware. Imala je neke ostatke i ja sam hteo da te ostatke uklonimo da bi ti taj sistem prodisao. To sto je FRST zabo, manje-vise ima nema veze na Windows XP. Bitno je da je veliki tata, ComboFix precesljao taj XP sistem. Kako je ova masina cista od infekcija i sada malo tunirana, sledeci alat ce ukloniti koriscene alate. • Sledeća procedura će implementirati završno čišćenje. Preuzmi "Xplode"-ov DelFix alat i snimi ga na Desktop. Dvoklikom pokreni alat i štikliraj kućice ispred sledećih opcija; Remove disinfection tools Create registry backup Purge System Restore Klikni na dugme Run i pričekaj trenutak dok alat ne završi svoj rad. Od ovog trenutka, svi korišćeni alati u ovoj temi bi trebali biti obrisani. Ukoliko neki alat ili izveštaj nije uklonjen, slobodno ih obriši ručno. Alat će takođe formirati izveštaj za tebe. (C:\DelFix.txt) - Alat će snimiti i zdravo stanje registy-ja i napraviti backup koristeci integrisan program "ERUNT" u %windir%\ERUNT\DelFix - DelFix briše stare system restore tačke i pravi novu, svežu tačku nakon čišćenja.

Profil

MyCity » Ambulanta -> Arhiva Ambulante » Chrome problem

Ko je trenutno na forumu

Ukupno su 533 korisnika na forumu :: 6 registrovanih, 1 sakriven i 526 gosta :: [ Administrator ] [ Supermoderator ] [ Moderator ] :: Detaljnije

Najviše korisnika na forumu ikad bilo je 3466 - dana 01 Jun 2021 17:07

Korisnici koji su trenutno na forumu:: Korisnici trenutno na forumu: cenejac111, ikan, pacika, Smiljke, TBF1D, voja64

Svaki korisnik ovog sajta je odgovoran za sadržaj svoje poruke koju objavi na sajtu. Sajt se odriče svake odgovornosti za sadržaj tih poruka.
Postavljanjem vaše poruke ili vašeg autorskog dela na ovaj sajt, saglasni ste da ovaj sajt postaje distributer vašeg dela, i odričete se mogućnosti njegovog povlačenja ili brisanja, bez saglasnosti uprave sajta.
Distribucija sadržaja sa ovog sajta je dozvoljena samo u nekomercijalne svrhe, uz obaveznu napomenu da je sadržaj preuzet sa ovog sajta, i uz obavezno navođenje adrese MyCity sajta. Za sve ostale vidove distribucije obavezni ste da prethodno zatražite odobrenje od vlasnika MyCity sajta.
MyCity pokrenuo, administrira i razvija Predrag Damnjanović, a o uređenju sajta se brine MyCity Tim.
Ukoliko želite da nas kontaktirate kliknite ovde.
Naši sajtovi:
Vesti, Vojni forum, Zaštita od virusa, TekstPesme.rs

This content is licensed under a Creative Commons License.
Based on phpBB 2, translated by Simke, designed by