Javascript Disabled Detected

You currently have javascript disabled. Several functions may not work. Please re-enable javascript to access full functionality.

« 1 / 5 »

Sfat achizitie MTB Devron Riddle

Problema mare cu parintii= nervi ...

switch microtik

Permis categoria B la 17 ani

Sfaturi pentru pregatirea de eval...

Crapaturi placa

cum imi accesez dosarul electroni...

Momentul Aprilie 1964

Sursa noua - zgomot ?

A fost lansat Ubuntu 24.04 LTS

Pareri apartament in zona Berceni?

Free streaming SkyShowtime de la ...

Skoda Fabia 1.0 TSI (110 CP)- 19 ...

Mezina familiei, Merida BigNine

The Tattooist of Auschwitz (2024)

Se poate recupera numar de telefo...

View New Content

Problema cu Browse to Save

Last Updated: Apr 22 2013 17:20, Started by rebroff , Apr 21 2013 11:33

Please log in to reply

27 replies to this topic

#19
rebroff

Posted 21 April 2013 - 20:05

Member

Grup: Members
Posts: 722
Înscris: 21.04.2011

OTL logfile created on: 21.04.2013 19:53:35 - Run 2
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Documents and Settings\Raul\Desktop
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000418 | Country: Romania | Language: ROM | Date Format: dd.MM.yyyy

894,04 Mb Total Physical Memory | 629,43 Mb Available Physical Memory | 70,40% Memory free
2,12 Gb Paging File | 1,50 Gb Available in Paging File | 71,00% Paging File free
Paging file location(s): C:\pagefile.sys 1344 2688 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 20,00 Gb Total Space | 3,91 Gb Free Space | 19,54% Space Free | Partition Type: NTFS
Drive D: | 60,00 Gb Total Space | 6,74 Gb Free Space | 11,23% Space Free | Partition Type: NTFS
Drive E: | 69,04 Gb Total Space | 8,73 Gb Free Space | 12,64% Space Free | Partition Type: NTFS

Computer Name: RAUL | User Name: Raul | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2013.04.21 18:45:33 | 000,816,128 | ---- | M] () -- C:\Documents and Settings\Raul\Desktop\RogueKiller.exe
PRC - [2013.04.21 12:40:39 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Raul\Desktop\OTL.exe
PRC - [2013.04.05 01:41:44 | 025,863,280 | ---- | M] (Dropbox, Inc.) -- C:\Documents and Settings\Raul\Application Data\Dropbox\bin\Dropbox.exe
PRC - [2013.04.04 18:49:37 | 001,345,008 | ---- | M] (Bitdefender) -- C:\Program Files\Bitdefender\Bitdefender 2013\vsserv.exe
PRC - [2013.04.04 18:48:49 | 001,617,440 | ---- | M] (Bitdefender) -- C:\Program Files\Bitdefender\Bitdefender 2013\bdagent.exe
PRC - [2013.04.04 18:48:49 | 000,055,984 | ---- | M] (Bitdefender) -- C:\Program Files\Bitdefender\Bitdefender 2013\updatesrv.exe
PRC - [2013.04.04 14:50:32 | 000,701,512 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
PRC - [2013.04.04 14:50:32 | 000,532,040 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe
PRC - [2013.04.04 14:50:32 | 000,418,376 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
PRC - [2013.01.12 04:27:33 | 000,170,912 | ---- | M] (Oracle Corporation) -- C:\Program Files\Java\jre7\bin\jqs.exe
PRC - [2012.07.11 21:54:49 | 000,116,608 | ---- | M] (SUPERAntiSpyware.com) -- C:\Program Files\SUPERAntiSpyware\SASCore.exe
PRC - [2012.04.26 20:50:31 | 000,091,736 | ---- | M] (NewSoftwares.net, Inc.) -- C:\WINDOWS\system32\WinFLService.exe
PRC - [2010.04.05 22:55:01 | 000,116,104 | ---- | M] () -- C:\Program Files\Canon\IJPLM\ijplmsvc.exe
PRC - [2008.11.09 23:48:14 | 000,602,392 | ---- | M] (Yahoo! Inc.) -- C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe
PRC - [2008.04.14 03:12:19 | 001,033,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe

========== Modules (No Company Name) ==========

MOD - [2013.04.04 18:51:13 | 000,099,744 | ---- | M] () -- C:\Program Files\Bitdefender\Bitdefender 2013\imsecurityal.dll
MOD - [2013.04.04 18:49:59 | 000,003,072 | ---- | M] () -- C:\Program Files\Bitdefender\Bitdefender 2013\ui\accessl.ui
MOD - [2013.04.04 18:49:58 | 000,005,120 | ---- | M] () -- C:\Program Files\Bitdefender\Bitdefender 2013\ui\imsecurityal.ui
MOD - [2013.04.04 18:49:35 | 000,204,280 | ---- | M] () -- C:\Program Files\Bitdefender\Bitdefender 2013\txmlutil.dll
MOD - [2013.04.04 18:49:35 | 000,093,040 | ---- | M] () -- C:\Program Files\Bitdefender\Bitdefender 2013\bdmetrics.dll
MOD - [2013.03.25 15:07:11 | 002,039,216 | ---- | M] () -- C:\Program Files\Bitdefender\Bitdefender 2013\otengines_00013_011\ashttpph.mdl
MOD - [2013.03.25 15:07:11 | 000,546,240 | ---- | M] () -- C:\Program Files\Bitdefender\Bitdefender 2013\otengines_00013_011\ashttpdsp.mdl
MOD - [2013.03.25 15:07:08 | 000,996,928 | ---- | M] () -- C:\Program Files\Bitdefender\Bitdefender 2013\otengines_00013_011\ashttprbl.mdl
MOD - [2013.03.25 15:07:07 | 000,673,448 | ---- | M] () -- C:\Program Files\Bitdefender\Bitdefender 2013\otengines_00013_011\ashttpbr.mdl
MOD - [2013.03.13 23:48:52 | 024,978,944 | ---- | M] () -- C:\Documents and Settings\Raul\Application Data\Dropbox\bin\libcef.dll
MOD - [2012.12.20 17:38:36 | 000,394,408 | ---- | M] () -- \\?\C:\Program Files\Common Files\Bitdefender\Bitdefender Threat Scanner\trufos.dll
MOD - [2012.11.14 02:32:50 | 003,558,400 | ---- | M] () -- C:\Documents and Settings\Raul\Application Data\Dropbox\bin\wxmsw28uh_vc.dll
MOD - [2012.10.15 17:16:56 | 001,401,344 | ---- | M] () -- C:\Program Files\JPEG Lossless Rotator\contmenu.dll
MOD - [2012.04.02 09:05:16 | 000,573,840 | ---- | M] () -- C:\Program Files\Hardwipe\hwshell.dll
MOD - [2011.11.14 20:17:06 | 000,132,176 | ---- | M] () -- C:\Program Files\Bitdefender\Bitdefender 2013\bdfwcore.dll
MOD - [2010.07.05 00:32:38 | 000,010,752 | ---- | M] () -- C:\Program Files\Unlocker\UnlockerCOM.dll
MOD - [2010.04.05 22:55:01 | 000,116,104 | ---- | M] () -- C:\Program Files\Canon\IJPLM\ijplmsvc.exe
MOD - [2007.09.20 18:34:58 | 000,129,024 | ---- | M] () -- C:\Program Files\WinRAR\RarExt.dll
MOD - [2001.10.28 17:42:30 | 000,116,224 | ---- | M] () -- C:\WINDOWS\system32\pdfcmnnt.dll

========== Services (SafeList) ==========

SRV - File not found [Auto | Stopped] -- C:\WINDOWS\system32\uirvblu.dll -- (wbqucsmru)
SRV - File not found [Auto | Stopped] -- C:\WINDOWS\system32\oleclj32.exe -- (sigvesif)
SRV - File not found [Auto | Stopped] -- C:\Program Files\CyberLink\Shared files\RichVideo.exe -- (RichVideo)
SRV - File not found [Auto | Stopped] -- C:\Program Files\The Cleaner\mhelper.exe -- (moohelp)
SRV - File not found [Disabled | Stopped] -- %SystemRoot%\System32\hidserv.dll -- (HidServ)
SRV - File not found [Auto | Stopped] -- C:\WINDOWS\system32\uirvblu.dll -- (gfkfw)
SRV - File not found [On_Demand | Stopped] -- %SystemRoot%\System32\appmgmts.dll -- (AppMgmt)
SRV - [2013.04.15 17:30:59 | 000,256,904 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2013.04.14 18:31:58 | 000,115,608 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2013.04.04 18:49:37 | 001,345,008 | ---- | M] (Bitdefender) [Auto | Running] -- C:\Program Files\Bitdefender\Bitdefender 2013\vsserv.exe -- (VSSERV)
SRV - [2013.04.04 18:49:33 | 000,062,688 | ---- | M] (Bitdefender) [Disabled | Stopped] -- C:\Program Files\Bitdefender\Bitdefender 2013\bdparentalservice.exe -- (BdDesktopParental)
SRV - [2013.04.04 18:48:49 | 000,055,984 | ---- | M] (Bitdefender) [Auto | Running] -- C:\Program Files\Bitdefender\Bitdefender 2013\updatesrv.exe -- (UPDATESRV)
SRV - [2013.04.04 14:50:32 | 000,701,512 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe -- (MBAMService)
SRV - [2013.04.04 14:50:32 | 000,418,376 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe -- (MBAMScheduler)
SRV - [2013.01.12 04:27:33 | 000,170,912 | ---- | M] (Oracle Corporation) [Auto | Running] -- C:\Program Files\Java\jre7\bin\jqs.exe -- (JavaQuickStarterService)
SRV - [2012.07.13 13:28:36 | 000,160,944 | ---- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files\Skype\Updater\Updater.exe -- (SkypeUpdate)
SRV - [2012.07.11 21:54:49 | 000,116,608 | ---- | M] (SUPERAntiSpyware.com) [Auto | Running] -- C:\Program Files\SUPERAntiSpyware\SASCore.exe -- (!SASCORE)
SRV - [2012.04.26 20:50:31 | 000,091,736 | ---- | M] (NewSoftwares.net, Inc.) [Auto | Running] -- C:\WINDOWS\system32\WinFLService.exe -- (FLService)
SRV - [2010.04.05 22:55:01 | 000,116,104 | ---- | M] () [Auto | Running] -- C:\Program Files\Canon\IJPLM\ijplmsvc.exe -- (IJPLMSVC)
SRV - [2008.11.09 23:48:14 | 000,602,392 | ---- | M] (Yahoo! Inc.) [Auto | Running] -- C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe -- (YahooAUService)
SRV - [2006.03.25 18:17:26 | 000,278,613 | ---- | M] (Atheros) [Disabled | Stopped] -- C:\WINDOWS\system32\acs.exe -- (ACS)

========== Driver Services (SafeList) ==========

DRV - File not found [Kernel | On_Demand | Stopped] --  -- (WDICA)
DRV - File not found [Kernel | On_Demand | Stopped] --  -- (PDRFRAME)
DRV - File not found [Kernel | On_Demand | Stopped] --  -- (PDRELI)
DRV - File not found [Kernel | On_Demand | Stopped] --  -- (PDFRAME)
DRV - File not found [Kernel | On_Demand | Stopped] --  -- (PDCOMP)
DRV - File not found [Kernel | System | Stopped] --  -- (PCIDump)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\mcdbus.sys -- (mcdbus)
DRV - File not found [Kernel | System | Stopped] --  -- (lbrtfdc)
DRV - File not found [Kernel | System | Stopped] --  -- (i2omgmt)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\gtuhsbus.sys -- (GTUHSBUS)
DRV - File not found [Kernel | System | Stopped] --  -- (Changer)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\DOCUME~1\Raul\LOCALS~1\Temp\catchme.sys -- (catchme)
DRV - [2013.04.21 12:00:07 | 000,040,776 | ---- | M] (Malwarebytes Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\mbamswissarmy.sys -- (MBAMSwissArmy)
DRV - [2013.04.04 18:49:30 | 000,162,976 | ---- | M] (BitDefender LLC) [File_System | Boot | Running] -- C:\WINDOWS\system32\drivers\gzflt.sys -- (gzflt)
DRV - [2013.04.04 14:50:32 | 000,022,856 | ---- | M] (Malwarebytes Corporation) [File_System | On_Demand | Running] -- C:\WINDOWS\system32\drivers\mbam.sys -- (MBAMProtector)
DRV - [2013.02.06 19:05:01 | 000,066,392 | ---- | M] (BitDefender SRL) [File_System | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\bdsandbox.sys -- (BDSandBox)
DRV - [2013.02.06 19:04:50 | 000,482,928 | ---- | M] (BitDefender) [File_System | On_Demand | Running] -- C:\WINDOWS\system32\drivers\avckf.sys -- (avckf)
DRV - [2013.02.06 19:04:39 | 000,625,128 | ---- | M] (BitDefender) [File_System | Boot | Running] -- C:\WINDOWS\system32\drivers\avc3.sys -- (avc3)
DRV - [2012.12.20 17:39:00 | 000,343,456 | ---- | M] (BitDefender S.R.L.) [File_System | Boot | Running] -- C:\WINDOWS\system32\drivers\trufos.sys -- (trufos)
DRV - [2012.10.02 12:31:18 | 000,134,136 | ---- | M] (BitDefender LLC) [Kernel | System | Running] -- C:\Program Files\Bitdefender\Bitdefender 2013\bdselfpr.sys -- (bdselfpr)
DRV - [2012.07.06 16:13:08 | 000,116,248 | ---- | M] (BitDefender LLC) [Kernel | On_Demand | Running] -- C:\Program Files\Common Files\BitDefender\Bitdefender Firewall\bdfndisf.sys -- (Bdfndisf)
DRV - [2012.04.26 20:50:54 | 000,029,584 | ---- | M] () [File_System | System | Running] -- C:\WINDOWS\system32\WinFLAdrv.sys -- (WinFLAdrv)
DRV - [2012.04.26 20:50:52 | 000,188,176 | ---- | M] () [File_System | Auto | Running] -- C:\WINDOWS\system32\WinVDEdrv6.sys -- (NEWDRIVER)
DRV - [2012.04.26 20:50:51 | 000,228,112 | ---- | M] (NewSoftwares.net, Inc.) [File_System | Auto | Running] -- C:\WINDOWS\system32\WinVDEdrv.sys -- (WinVDEDrv)
DRV - [2011.11.14 21:16:26 | 000,130,640 | ---- | M] (BitDefender LLC) [Kernel | System | Running] -- C:\Program Files\Common Files\BitDefender\Bitdefender Firewall\bdftdif.sys -- (bdftdif)
DRV - [2011.07.22 19:27:02 | 000,012,880 | ---- | M] (SUPER*****er.com and SUPERAntiSpyware.com) [Kernel | System | Running] -- C:\Program Files\SUPERAntiSpyware\sasdifsv.sys -- (SASDIFSV)
DRV - [2011.07.13 00:55:22 | 000,067,664 | ---- | M] (SUPER*****er.com and SUPERAntiSpyware.com) [Kernel | System | Running] -- C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS -- (SASKUTIL)
DRV - [2010.09.23 14:29:24 | 000,107,520 | ---- | M] (Option N.V.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\gtuhs51.sys -- (GTUHSNDISIPXP)
DRV - [2010.09.23 14:29:24 | 000,008,064 | ---- | M] (Option N.V.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\gtuhsser.sys -- (GTUHSSER)
DRV - [2010.07.04 22:51:26 | 000,004,096 | ---- | M] () [Kernel | Unavailable | Unknown] -- C:\Program Files\Unlocker\UnlockerDriver5.sys -- (UnlockerDriver5)
DRV - [2009.11.04 17:59:38 | 000,113,280 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ewusbnet.sys -- (ewusbnet)
DRV - [2009.11.04 17:59:38 | 000,102,528 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ewusbmdm.sys -- (hwdatacard)
DRV - [2009.11.04 17:59:38 | 000,100,736 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ewusbfake.sys -- (hwusbfake)
DRV - [2008.06.13 23:33:38 | 000,028,352 | ---- | M] (MusicMatch, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\System32\drivers\MxlW2k.sys -- (MxlW2k)
DRV - [2006.12.16 22:50:30 | 001,918,464 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ati2mtag.sys -- (ati2mtag)
DRV - [2006.11.15 14:34:40 | 004,225,920 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RtkHDAud.sys -- (IntcAzAudAddService)
DRV - [2006.03.23 00:27:10 | 000,488,992 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ar5211.sys -- (AR5211)
DRV - [2004.10.08 10:51:08 | 001,270,540 | ---- | M] (Agere Systems) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\AGRSM.sys -- (AgereSoftModem)
DRV - [2004.08.04 01:31:34 | 000,020,992 | ---- | M] (Realtek Semiconductor Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RTL8139.sys -- (rtl8139)

========== Standard Registry (SafeList) ==========

========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,CustomizeSearch = http://www.google.com
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com
IE - HKLM\..\SearchScopes,Backup.Old.DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes,DefaultScope =
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.chatzu...q={searchTerms}
IE - HKLM\..\SearchScopes\{3E1F790D-4AE8-E0A8-066E-432D2E4253B1}: "URL" = http://search.live.c...ferrer:source?}

IE - HKU\.DEFAULT\..\SearchScopes,DefaultScope =
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\..\SearchScopes,DefaultScope =
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-19\..\SearchScopes,DefaultScope =

IE - HKU\S-1-5-20\..\SearchScopes,DefaultScope =

IE - HKU\S-1-5-21-1801674531-1004336348-725345543-1004\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar =
IE - HKU\S-1-5-21-1801674531-1004336348-725345543-1004\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
IE - HKU\S-1-5-21-1801674531-1004336348-725345543-1004\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Restore = http://www.google.com
IE - HKU\S-1-5-21-1801674531-1004336348-725345543-1004\..\SearchScopes,Backup.Old.DefaultScope = {95B7759C-8C7F-4BF1-B163-73684A933233}
IE - HKU\S-1-5-21-1801674531-1004336348-725345543-1004\..\SearchScopes,DefaultScope =
IE - HKU\S-1-5-21-1801674531-1004336348-725345543-1004\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...ms}&FORM=IE8SRC
IE - HKU\S-1-5-21-1801674531-1004336348-725345543-1004\..\SearchScopes\{3E1F790D-4AE8-E0A8-066E-432D2E4253B1}: "URL" = https://isearch.avg....sa&d=2012-07-18 16:00:19&v=12.2.5.32&sap=dsp&q={searchTerms}
IE - HKU\S-1-5-21-1801674531-1004336348-725345543-1004\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.bing.com/...ms}&FORM=IE8SRC
IE - HKU\S-1-5-21-1801674531-1004336348-725345543-1004\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== Firefox ==========

FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..extensions.enabledAddons: nishan.naseer.googimagesearch%40gmail.com:0.5
FF - prefs.js..extensions.enabledAddons: %7B5384767E-00D9-40E9-B72F-9CC39D655D6F%7D:1.4.2.1
FF - prefs.js..extensions.enabledAddons: %7Bb9db16a4-6edc-47ec-a1f4-b86292ed211d%7D:4.9.14
FF - prefs.js..extensions.enabledAddons: %7B73a6fe31-595d-460b-a920-fcc0f8843232%7D:2.6.6
FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:20.0.1
FF - user.js - File not found

FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_7_700_169.dll ()
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.11.2: C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.135\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.135\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 20.0.1\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2013.04.14 18:32:02 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 20.0.1\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2013.02.22 12:09:28 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\[email protected]: C:\Program Files\Bitdefender\Bitdefender 2013\bdtbext [2012.11.08 11:24:48 | 000,000,000 | ---D | M]

[2010.07.22 19:36:25 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Raul\Application Data\Mozilla\Extensions
[2013.04.21 10:12:11 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Raul\Application Data\Mozilla\Firefox\Profiles\0zydw0qf.default\extensions
[2012.07.09 06:17:16 | 000,000,000 | ---D | M] (EPUBReader) -- C:\Documents and Settings\Raul\Application Data\Mozilla\Firefox\Profiles\0zydw0qf.default\extensions\{5384767E-00D9-40E9-B72F-9CC39D655D6F}
[2013.04.16 16:57:59 | 000,000,000 | ---D | M] (NoScript) -- C:\Documents and Settings\Raul\Application Data\Mozilla\Firefox\Profiles\0zydw0qf.default\extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}
[2013.02.23 22:01:51 | 000,000,000 | ---D | M] (DownloadHelper) -- C:\Documents and Settings\Raul\Application Data\Mozilla\Firefox\Profiles\0zydw0qf.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}
[2012.09.17 17:46:08 | 000,000,000 | ---D | M] (DownloadHelper) -- C:\Documents and Settings\Raul\Application Data\Mozilla\Firefox\Profiles\0zydw0qf.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}(2)
[2012.09.17 17:48:13 | 000,000,000 | ---D | M] (Flash and Video Download) -- C:\Documents and Settings\Raul\Application Data\Mozilla\Firefox\Profiles\0zydw0qf.default\extensions\{bee6eb20-01e0-ebd1-da83-080329fb9a3a}(2)
[2013.04.21 09:02:48 | 000,000,000 | ---D | M] (VauaDIx) -- C:\Documents and Settings\Raul\Application Data\Mozilla\Firefox\Profiles\0zydw0qf.default\extensions\[email protected]
[2013.04.06 16:47:25 | 000,000,000 | ---D | M] (Self-Destructing Cookies) -- C:\Documents and Settings\Raul\Application Data\Mozilla\Firefox\Profiles\0zydw0qf.default\extensions\jid0-9XfBwUWnvPx4wWsfBWMCm4Jj69E@jetpack
[2013.04.21 09:07:58 | 000,000,000 | ---D | M] (Seearcuhy-NewTab) -- C:\Documents and Settings\Raul\Application Data\Mozilla\Firefox\Profiles\0zydw0qf.default\extensions\[email protected]
[2013.04.21 09:06:54 | 000,000,000 | ---D | M] (Speed Analysis 2) -- C:\Documents and Settings\Raul\Application Data\Mozilla\Firefox\Profiles\0zydw0qf.default\extensions\[email protected]
[2013.04.17 15:23:01 | 000,262,896 | ---- | M] () (No name found) -- C:\Documents and Settings\Raul\Application Data\Mozilla\Firefox\Profiles\0zydw0qf.default\extensions\[email protected]
[2012.09.26 18:15:50 | 000,004,287 | ---- | M] () (No name found) -- C:\Documents and Settings\Raul\Application Data\Mozilla\Firefox\Profiles\0zydw0qf.default\extensions\[email protected]
[2013.04.16 14:03:22 | 000,532,430 | ---- | M] () (No name found) -- C:\Documents and Settings\Raul\Application Data\Mozilla\Firefox\Profiles\0zydw0qf.default\extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}.xpi
[2011.08.12 15:25:07 | 000,001,945 | ---- | M] () -- C:\Documents and Settings\Raul\Application Data\Mozilla\Firefox\Profiles\0zydw0qf.default\searchplugins\bing-zugo.xml
[2013.04.20 08:31:55 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2013.04.14 18:32:01 | 000,263,064 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll
[2013.03.07 20:58:58 | 000,002,465 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\bing.xml
[2011.06.02 14:02:51 | 000,002,252 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\bing.xml.old
[2013.03.07 20:58:58 | 000,001,179 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipediaro.xml

========== Chrome  ==========

CHR - homepage: http://search.babylon.com/?affID=110823&tt=120912_cpc_3912_3&babsrc=HP_ss&mntrId=8893463d000000000000001b24fd641e
CHR - Extension: No name found = C:\Documents and Settings\Raul\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\aealagiepjfgkkeddhfdmdddbjapjnek\1\
CHR - Extension: No name found = C:\Documents and Settings\Raul\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\dgjkhjdcljddbedokogakmmdjgnbeanf\1.0.0.0\
CHR - Extension: No name found = C:\Documents and Settings\Raul\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\fgmgnnmjgkibpmempgnjaihcfjbmkpic\1\
CHR - Extension: No name found = C:\Documents and Settings\Raul\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\ihiddkmjconiadfmkjccmgijlmbacjjj\1\

O1 HOSTS File: ([2006.02.28 15:00:00 | 000,000,734 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1    localhost
O2 - BHO: (Speed Analysis 2) - {18DBB6CE-3148-4FEC-B481-103CB3290427} - C:\Program Files\Speed Analysis 2\ScriptHost.dll (SpeedAnalysis.com)
O2 - BHO: (Java™ Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (Java™ Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O4 - HKLM..\Run: [Smart File Advisor] C:\Program Files\Smart File Advisor\sfa.exe (Filefacts.net)
O4 - HKU\S-1-5-21-1801674531-1004336348-725345543-1004..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe (SUPERAntiSpyware.com)
O4 - HKU\S-1-5-21-1801674531-1004336348-725345543-1004..\Run: [uTorrent] C:\Program Files\uTorrent\uTorrent.exe (BitTorrent Inc.)
O4 - Startup: C:\Documents and Settings\Raul\Start Menu\Programs\Startup\Dropbox.lnk = C:\Documents and Settings\Raul\Application Data\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-1801674531-1004336348-725345543-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\S-1-5-21-1801674531-1004336348-725345543-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://download.macr...ash/swflash.cab (Shockwave Flash Object)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.0.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{EF3F2BA7-982E-4A78-9F52-626AA90F562E}: DhcpNameServer = 192.168.0.1
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
O20 - Winlogon\Notify\AtiExtEvent: DllName - (Ati2evxx.dll) - C:\WINDOWS\System32\ati2evxx.dll (ATI Technologies Inc.)
O24 - Desktop WallPaper: C:\WINDOWS\Web\Wallpaper\Bliss.bmp
O24 - Desktop BackupWallPaper: C:\WINDOWS\Web\Wallpaper\Bliss.bmp
O28 - HKLM ShellExecuteHooks: {5AE067D3-9AFB-48E0-853A-EBB7F4A000DA} - C:\Program Files\SUPERAntiSpyware\SASSEH.DLL (Super*****er.com)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2008.06.09 23:07:34 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O32 - AutoRun File - [2011.10.05 21:51:00 | 000,000,000 | ---- | M] () - E:\AUTORUN.FCB -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)

========== Files/Folders - Created Within 30 Days ==========

[2013.04.21 18:52:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Raul\Desktop\RK_Quarantine
[2013.04.21 18:03:03 | 000,000,000 | ---D | C] -- C:\WINDOWS\ERUNT
[2013.04.21 18:02:57 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Raul\Recent
[2013.04.21 18:02:49 | 000,000,000 | ---D | C] -- C:\JRT
[2013.04.21 18:01:13 | 000,535,449 | ---- | C] (Oleg N. Scherbakov) -- C:\Documents and Settings\Raul\Desktop\JRT.exe
[2013.04.21 13:26:23 | 000,000,000 | ---D | C] -- C:\_OTL
[2013.04.21 12:40:36 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Raul\Desktop\OTL.exe
[2013.04.21 11:59:54 | 000,040,776 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys
[2013.04.21 10:55:21 | 000,012,872 | ---- | C] (SurfRight B.V.) -- C:\WINDOWS\System32\bootdelete.exe
[2013.04.21 10:47:53 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\HitmanPro
[2013.04.21 10:47:28 | 009,097,384 | ---- | C] (SurfRight B.V.) -- C:\Documents and Settings\Raul\Desktop\HitmanPro.exe
[2013.04.21 10:25:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Malwarebytes' Anti-Malware
[2013.04.21 10:25:05 | 000,022,856 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
[2013.04.21 10:25:04 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2013.04.21 10:23:01 | 010,285,040 | ---- | C] (Malwarebytes Corporation     ) -- C:\Documents and Settings\Raul\Desktop\mbam-setup-1.75.0.1300.exe
[2013.04.21 09:08:41 | 000,000,000 | ---D | C] -- C:\Program Files\MyPC Backup
[2013.04.21 09:06:48 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Raul\Application Data\SpeedAnalysis2
[2013.04.21 09:06:35 | 000,018,096 | ---- | C] (PerformerSoft LLC) -- C:\WINDOWS\System32\roboot.exe
[2013.04.21 09:06:16 | 000,000,000 | ---D | C] -- C:\Program Files\Speed Analysis 2
[2013.04.21 09:04:41 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Seearcuhy-NewTab
[2013.04.21 08:53:27 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\VauaDIx
[2013.04.21 08:21:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Raul\Desktop\Huck Finn
[2013.04.20 09:08:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Raul\Desktop\Miro
[2013.04.20 08:33:53 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Raul\My Documents\Kvisoft
[2013.04.19 13:18:09 | 000,000,000 | ---D | C] -- C:\Program Files\PDFBinder
[2013.04.19 13:18:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\PDFBinder
[2013.04.19 11:56:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Raul\Application Data\PrimoPDF
[2013.04.19 11:55:13 | 000,000,000 | ---D | C] -- C:\Program Files\Nitro PDF
[2013.04.19 11:33:55 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Raul\Application Data\Softland
[2013.04.19 11:33:55 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Application Data\Softland
[2013.04.19 09:33:12 | 000,000,000 | ---D | C] -- C:\Program Files\MSECache
[2013.04.19 09:32:46 | 000,956,344 | ---- | C] (Microsoft Corporation) -- C:\Documents and Settings\Raul\Desktop\SaveAsPDFandXPS.exe
[2013.04.18 11:18:08 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Jpg2Pdf
[2013.04.18 11:18:06 | 000,000,000 | ---D | C] -- C:\Program Files\Jpg2Pdf
[2013.04.18 11:17:44 | 003,961,442 | ---- | C] (Office Necessities inc. ) -- C:\Documents and Settings\Raul\Desktop\jpg2pdf_setup.exe
[2013.04.18 11:12:50 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Raul\Application Data\DSite
[2013.04.18 10:32:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Raul\Desktop\Framing Studio 3.71 Port by speedzodiac
[2013.04.17 12:33:54 | 000,000,000 | ---D | C] -- C:\Program Files\Smart File Advisor
[2013.04.17 12:20:14 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Browusse2ssave
[2013.04.06 16:43:50 | 000,897,448 | ---- | C] (Oracle Corporation) -- C:\Documents and Settings\Raul\Desktop\jre-7u17-windows-i586-iftw.exe
[2013.04.06 07:50:55 | 000,000,000 | ---D | C] -- C:\Program Files\Dropbox
[2013.04.05 07:38:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Raul\Desktop\Lucruri faine
[2013.03.27 16:54:23 | 000,289,944 | ---- | C] (SoftSafe) -- C:\Documents and Settings\Raul\Desktop\VaudiX.exe
[2013.03.26 22:10:07 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Raul\My Documents\Dropbox
[2013.03.26 22:03:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Raul\Start Menu\Programs\Dropbox
[2013.03.26 22:00:03 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Raul\Application Data\Dropbox
[2013.03.26 21:53:31 | 030,780,592 | ---- | C] (Dropbox, Inc.) -- C:\Documents and Settings\Raul\Desktop\Dropbox 2.0.0.exe
[2013.03.24 17:02:55 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Smart PC Solutions
[2013.03.24 17:02:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Raul\Application Data\Smart PC Solutions
[2013.03.24 17:02:41 | 000,000,000 | ---D | C] -- C:\Program Files\Smart PC Solutions
[2013.03.23 11:19:48 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Raul\My Documents\Descărcări
[2013.03.23 09:47:29 | 020,914,064 | ---- | C] (Mozilla) -- C:\Documents and Settings\Raul\Desktop\Firefox Setup 19.0.2.exe
[2013.03.23 09:12:37 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Raul\Application Data\thecleaner
[2013.03.23 09:08:13 | 000,000,000 | ---D | C] -- C:\Program Files\The Cleaner
[2013.03.23 09:00:09 | 000,000,000 | ---D | C] -- C:\Program Files\jsplus
[2013.03.14 13:49:16 | 000,503,400 | ---- | C] (SoftStud) -- C:\Documents and Settings\Raul\Application Data\22find_uninstaller.exe
[5 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2013.04.21 19:42:17 | 000,000,830 | ---- | M] () -- C:\WINDOWS\tasks\Adobe Flash Player Updater.job
[2013.04.21 19:39:55 | 000,003,760 | ---- | M] () -- C:\Documents and Settings\Raul\Desktop\Trei culori.JPG
[2013.04.21 19:08:34 | 000,001,092 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2013.04.21 18:56:29 | 000,341,536 | ---- | M] () -- C:\Documents and Settings\Raul\Desktop\mark-twain-for-every-grade-level.png
[2013.04.21 18:50:49 | 000,001,088 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2013.04.21 18:50:21 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2013.04.21 18:47:01 | 000,341,536 | ---- | M] () -- C:\Documents and Settings\Raul\Desktop\mark-twain.png
[2013.04.21 18:45:33 | 000,816,128 | ---- | M] () -- C:\Documents and Settings\Raul\Desktop\RogueKiller.exe
[2013.04.21 18:32:52 | 000,034,284 | ---- | M] () -- C:\Documents and Settings\Raul\Desktop\Junkware.JPG
[2013.04.21 18:01:21 | 000,535,449 | ---- | M] (Oleg N. Scherbakov) -- C:\Documents and Settings\Raul\Desktop\JRT.exe
[2013.04.21 12:40:39 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Raul\Desktop\OTL.exe
[2013.04.21 12:00:07 | 000,040,776 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys
[2013.04.21 11:32:31 | 000,017,846 | ---- | M] () -- C:\Documents and Settings\Raul\Desktop\Virus blog.jpg
[2013.04.21 10:55:22 | 000,012,872 | ---- | M] (SurfRight B.V.) -- C:\WINDOWS\System32\bootdelete.exe
[2013.04.21 10:47:43 | 009,097,384 | ---- | M] (SurfRight B.V.) -- C:\Documents and Settings\Raul\Desktop\HitmanPro.exe
[2013.04.21 10:25:14 | 000,000,784 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Malwarebytes Anti-Malware.lnk
[2013.04.21 10:23:13 | 010,285,040 | ---- | M] (Malwarebytes Corporation     ) -- C:\Documents and Settings\Raul\Desktop\mbam-setup-1.75.0.1300.exe
[2013.04.21 10:12:16 | 000,000,755 | ---- | M] () -- C:\Documents and Settings\Raul\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
[2013.04.21 10:12:16 | 000,000,676 | ---- | M] () -- C:\Documents and Settings\Raul\Application Data\Microsoft\Internet Explorer\Quick Launch\22find.lnk
[2013.04.21 09:06:09 | 000,001,130 | ---- | M] () -- C:\Documents and Settings\Raul\Desktop\SpeedAnalysis.lnk
[2013.04.21 09:04:26 | 000,569,120 | ---- | M] () -- C:\Documents and Settings\Raul\Desktop\BestCodecsPackSetup.exe
[2013.04.21 08:50:41 | 000,289,944 | ---- | M] (SoftSafe) -- C:\Documents and Settings\Raul\Desktop\VaudiX.exe
[2013.04.20 22:36:26 | 000,048,697 | ---- | M] () -- C:\Documents and Settings\Raul\Desktop\DOCS-Mythology.eBooks.Collection.PDF-OMNiSCiENT.torrent
[2013.04.20 21:34:21 | 000,391,054 | ---- | M] () -- C:\Documents and Settings\Raul\Desktop\Adio, Dinu Patriciu.bmp
[2013.04.20 21:23:19 | 000,295,254 | ---- | M] () -- C:\Documents and Settings\Raul\Desktop\Un om sfarsit.bmp
[2013.04.20 20:57:31 | 000,130,558 | ---- | M] () -- C:\Documents and Settings\Raul\Desktop\Pirul.jpg
[2013.04.20 17:02:15 | 000,524,130 | ---- | M] () -- C:\Documents and Settings\Raul\Desktop\Somnul7.bmp
[2013.04.20 12:51:15 | 002,592,183 | ---- | M] () -- C:\Documents and Settings\Raul\Desktop\Hamma, vulpea desertului.pdf
[2013.04.20 12:48:01 | 000,166,053 | ---- | M] () -- C:\Documents and Settings\Raul\Desktop\Pag1.pdf
[2013.04.20 12:37:42 | 000,061,315 | ---- | M] () -- C:\Documents and Settings\Raul\Desktop\Pag21.pdf
[2013.04.20 11:17:24 | 000,080,781 | ---- | M] () -- C:\Documents and Settings\Raul\Desktop\Hamma cu titlu si autor.jpg
[2013.04.20 10:56:05 | 000,182,441 | ---- | M] () -- C:\Documents and Settings\Raul\Desktop\Hamma1.jpg
[2013.04.20 09:03:48 | 000,431,418 | ---- | M] () -- C:\Documents and Settings\Raul\Desktop\Lebedele.bmp
[2013.04.20 08:12:38 | 000,002,422 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2013.04.19 21:22:30 | 003,499,424 | ---- | M] () -- C:\Documents and Settings\Raul\Desktop\New Doc 3.pdf
[2013.04.19 20:23:36 | 000,329,090 | ---- | M] () -- C:\Documents and Settings\Raul\Desktop\Pag22222222222222222.pdf
[2013.04.19 19:55:09 | 000,258,794 | ---- | M] () -- C:\Documents and Settings\Raul\Desktop\Lucru.pdf
[2013.04.19 19:27:09 | 007,299,811 | ---- | M] () -- C:\Documents and Settings\Raul\Desktop\Erasmus din Rotterdam.rar
[2013.04.19 19:17:07 | 000,047,488 | ---- | M] () -- C:\Documents and Settings\Raul\Desktop\Pag5.pdf
[2013.04.19 18:57:33 | 000,019,994 | ---- | M] () -- C:\Documents and Settings\Raul\Desktop\Hamma last picture.JPG
[2013.04.19 16:42:50 | 000,024,328 | ---- | M] () -- C:\Documents and Settings\Raul\Desktop\Hamma poza2.JPG
[2013.04.19 14:31:30 | 000,188,102 | ---- | M] () -- C:\Documents and Settings\Raul\Desktop\Pag22.pdf
[2013.04.19 13:16:44 | 001,763,328 | ---- | M] () -- C:\Documents and Settings\Raul\Desktop\PDFBinder-v1.2.msi
[2013.04.19 09:32:47 | 000,956,344 | ---- | M] (Microsoft Corporation) -- C:\Documents and Settings\Raul\Desktop\SaveAsPDFandXPS.exe
[2013.04.19 07:02:59 | 000,002,443 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\ABBYY FineReader 11.lnk
[2013.04.18 17:30:09 | 000,365,263 | ---- | M] () -- C:\Documents and Settings\Raul\Desktop\HCharriere-Banco.rar
[2013.04.18 17:28:30 | 008,881,720 | ---- | M] () -- C:\Documents and Settings\Raul\Desktop\Papillon - Henri Charriere v 2.2.rar
[2013.04.18 11:18:09 | 000,000,666 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\JPEG to PDF converter.lnk
[2013.04.18 11:17:46 | 003,961,442 | ---- | M] (Office Necessities inc. ) -- C:\Documents and Settings\Raul\Desktop\jpg2pdf_setup.exe
[2013.04.17 13:09:51 | 001,352,435 | ---- | M] () -- C:\Documents and Settings\Raul\Desktop\setup_magicdisc.exe
[2013.04.17 12:54:11 | 000,338,055 | ---- | M] () -- C:\Documents and Settings\Raul\Desktop\nrgtoiso.zip
[2013.04.15 17:30:59 | 000,691,592 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerApp.exe
[2013.04.15 17:30:59 | 000,071,048 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerCPLApp.cpl
[2013.04.10 13:18:57 | 000,210,488 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2013.04.06 16:43:54 | 000,897,448 | ---- | M] (Oracle Corporation) -- C:\Documents and Settings\Raul\Desktop\jre-7u17-windows-i586-iftw.exe
[2013.04.06 13:02:43 | 000,004,393 | ---- | M] () -- C:\WINDOWS\wincmd.ini
[2013.04.06 07:53:11 | 000,001,021 | ---- | M] () -- C:\Documents and Settings\Raul\Start Menu\Programs\Startup\Dropbox.lnk
[2013.04.06 07:49:46 | 000,001,003 | ---- | M] () -- C:\Documents and Settings\Raul\Desktop\Dropbox.lnk
[2013.04.04 18:49:30 | 000,162,976 | ---- | M] (BitDefender LLC) -- C:\WINDOWS\System32\drivers\gzflt.sys
[2013.04.04 14:50:32 | 000,022,856 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
[2013.03.31 03:28:43 | 000,434,248 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2013.03.31 03:28:43 | 000,068,680 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2013.03.26 21:55:07 | 030,780,592 | ---- | M] (Dropbox, Inc.) -- C:\Documents and Settings\Raul\Desktop\Dropbox 2.0.0.exe
[2013.03.23 09:48:34 | 000,000,742 | ---- | M] () -- C:\Documents and Settings\Raul\Application Data\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk
[2013.03.23 09:48:34 | 000,000,724 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Mozilla Firefox.lnk
[2013.03.23 09:47:56 | 020,914,064 | ---- | M] (Mozilla) -- C:\Documents and Settings\Raul\Desktop\Firefox Setup 19.0.2.exe
[5 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

========== Files Created - No Company Name ==========

[2013.04.21 19:39:54 | 000,003,760 | ---- | C] () -- C:\Documents and Settings\Raul\Desktop\Trei culori.JPG
[2013.04.21 18:56:23 | 000,341,536 | ---- | C] () -- C:\Documents and Settings\Raul\Desktop\mark-twain-for-every-grade-level.png
[2013.04.21 18:47:00 | 000,341,536 | ---- | C] () -- C:\Documents and Settings\Raul\Desktop\mark-twain.png
[2013.04.21 18:45:06 | 000,816,128 | ---- | C] () -- C:\Documents and Settings\Raul\Desktop\RogueKiller.exe
[2013.04.21 18:32:51 | 000,034,284 | ---- | C] () -- C:\Documents and Settings\Raul\Desktop\Junkware.JPG
[2013.04.21 11:32:31 | 000,017,846 | ---- | C] () -- C:\Documents and Settings\Raul\Desktop\Virus blog.jpg
[2013.04.21 10:25:14 | 000,000,784 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Malwarebytes Anti-Malware.lnk
[2013.04.21 09:47:25 | 000,114,176 | ---- | C] () -- C:\Documents and Settings\Raul\Application Data\BabMaint.exe
[2013.04.21 09:06:09 | 000,001,130 | ---- | C] () -- C:\Documents and Settings\Raul\Desktop\SpeedAnalysis.lnk
[2013.04.21 09:04:25 | 000,569,120 | ---- | C] () -- C:\Documents and Settings\Raul\Desktop\BestCodecsPackSetup.exe
[2013.04.20 22:36:16 | 000,048,697 | ---- | C] () -- C:\Documents and Settings\Raul\Desktop\DOCS-Mythology.eBooks.Collection.PDF-OMNiSCiENT.torrent
[2013.04.20 21:34:21 | 000,391,054 | ---- | C] () -- C:\Documents and Settings\Raul\Desktop\Adio, Dinu Patriciu.bmp
[2013.04.20 21:23:19 | 000,295,254 | ---- | C] () -- C:\Documents and Settings\Raul\Desktop\Un om sfarsit.bmp
[2013.04.20 20:57:21 | 000,130,558 | ---- | C] () -- C:\Documents and Settings\Raul\Desktop\Pirul.jpg
[2013.04.20 17:02:15 | 000,524,130 | ---- | C] () -- C:\Documents and Settings\Raul\Desktop\Somnul7.bmp
[2013.04.20 12:51:13 | 002,592,183 | ---- | C] () -- C:\Documents and Settings\Raul\Desktop\Hamma, vulpea desertului.pdf
[2013.04.20 12:48:00 | 000,166,053 | ---- | C] () -- C:\Documents and Settings\Raul\Desktop\Pag1.pdf
[2013.04.20 12:37:40 | 000,061,315 | ---- | C] () -- C:\Documents and Settings\Raul\Desktop\Pag21.pdf
[2013.04.20 11:08:20 | 000,080,781 | ---- | C] () -- C:\Documents and Settings\Raul\Desktop\Hamma cu titlu si autor.jpg
[2013.04.20 10:56:05 | 000,182,441 | ---- | C] () -- C:\Documents and Settings\Raul\Desktop\Hamma1.jpg
[2013.04.20 10:54:56 | 000,951,030 | ---- | C] () -- C:\Documents and Settings\Raul\Desktop\Hamma1.bmp
[2013.04.20 08:59:35 | 000,431,418 | ---- | C] () -- C:\Documents and Settings\Raul\Desktop\Lebedele.bmp
[2013.04.19 21:22:25 | 003,499,424 | ---- | C] () -- C:\Documents and Settings\Raul\Desktop\New Doc 3.pdf
[2013.04.19 20:23:35 | 000,329,090 | ---- | C] () -- C:\Documents and Settings\Raul\Desktop\Pag22222222222222222.pdf
[2013.04.19 19:26:58 | 007,299,811 | ---- | C] () -- C:\Documents and Settings\Raul\Desktop\Erasmus din Rotterdam.rar
[2013.04.19 19:17:06 | 000,047,488 | ---- | C] () -- C:\Documents and Settings\Raul\Desktop\Pag5.pdf
[2013.04.19 19:09:48 | 000,258,794 | ---- | C] () -- C:\Documents and Settings\Raul\Desktop\Lucru.pdf
[2013.04.19 18:57:33 | 000,019,994 | ---- | C] () -- C:\Documents and Settings\Raul\Desktop\Hamma last picture.JPG
[2013.04.19 16:42:49 | 000,024,328 | ---- | C] () -- C:\Documents and Settings\Raul\Desktop\Hamma poza2.JPG
[2013.04.19 14:31:27 | 000,188,102 | ---- | C] () -- C:\Documents and Settings\Raul\Desktop\Pag22.pdf
[2013.04.19 13:16:37 | 001,763,328 | ---- | C] () -- C:\Documents and Settings\Raul\Desktop\PDFBinder-v1.2.msi
[2013.04.19 11:55:24 | 000,180,624 | ---- | C] () -- C:\WINDOWS\System32\Primomonnt.dll
[2013.04.19 11:33:37 | 000,007,549 | ---- | C] () -- C:\WINDOWS\System32\dopdf7.ctm
[2013.04.18 17:30:09 | 000,365,263 | ---- | C] () -- C:\Documents and Settings\Raul\Desktop\HCharriere-Banco.rar
[2013.04.18 17:27:22 | 008,881,720 | ---- | C] () -- C:\Documents and Settings\Raul\Desktop\Papillon - Henri Charriere v 2.2.rar
[2013.04.18 11:18:09 | 000,000,666 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\JPEG to PDF converter.lnk
[2013.04.17 13:09:51 | 001,352,435 | ---- | C] () -- C:\Documents and Settings\Raul\Desktop\setup_magicdisc.exe
[2013.04.17 12:55:22 | 000,724,992 | ---- | C] () -- C:\Documents and Settings\Raul\Desktop\nrgtoiso.exe
[2013.04.17 12:54:09 | 000,338,055 | ---- | C] () -- C:\Documents and Settings\Raul\Desktop\nrgtoiso.zip
[2013.04.06 07:53:09 | 000,001,021 | ---- | C] () -- C:\Documents and Settings\Raul\Start Menu\Programs\Startup\Dropbox.lnk
[2013.03.26 22:10:08 | 000,001,003 | ---- | C] () -- C:\Documents and Settings\Raul\Desktop\Dropbox.lnk
[2013.01.30 11:49:36 | 000,002,772 | -HS- | C] () -- C:\WINDOWS\System32\win_fldb_sys.dat
[2012.12.29 21:10:49 | 000,216,064 | ---- | C] ( ) -- C:\WINDOWS\System32\lagarith.dll
[2012.12.05 11:46:26 | 000,002,048 | -H-- | C] () -- C:\Documents and Settings\Raul\Application Data\~S7FB45B79-C86E-49ff-ACC4-849340906621W
[2012.11.20 12:04:10 | 000,256,000 | ---- | C] () -- C:\WINDOWS\PEV.exe
[2012.11.20 12:04:10 | 000,208,896 | ---- | C] () -- C:\WINDOWS\MBR.exe
[2012.11.20 12:04:09 | 000,080,412 | ---- | C] () -- C:\WINDOWS\grep.exe
[2012.11.20 12:04:09 | 000,068,096 | ---- | C] () -- C:\WINDOWS\zip.exe
[2012.11.16 08:04:32 | 000,000,385 | ---- | C] () -- C:\Documents and Settings\Raul\Application Datauser_gensett.xml
[2012.10.25 16:05:40 | 000,000,031 | ---- | C] () -- C:\WINDOWS\System32\Days5.ini
[2012.08.06 14:45:03 | 000,210,488 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2012.07.18 15:58:21 | 000,723,294 | ---- | C] () -- C:\WINDOWS\unins000.exe
[2012.07.18 15:58:20 | 000,103,876 | ---- | C] () -- C:\WINDOWS\unins000.dat
[2012.06.26 08:28:13 | 000,003,072 | ---- | C] () -- C:\WINDOWS\System32\iacenc.dll
[2012.06.08 11:20:17 | 000,393,256 | ---- | C] () -- C:\WINDOWS\System32\CNQ2414N.DAT
[2012.05.14 00:27:00 | 000,000,061 | ---- | C] () -- C:\Documents and Settings\Raul\Local Settings\Application Data\HackLogs.dat
[2012.04.26 20:55:10 | 000,000,620 | -HS- | C] () -- C:\Documents and Settings\Raul\Local Settings\Application Data\settingsFL.$dk
[2012.04.26 20:53:25 | 000,003,292 | -HS- | C] () -- C:\Documents and Settings\Raul\Local Settings\Application Data\win_fldb_sys.dat
[2012.04.26 20:51:24 | 000,003,465 | -HS- | C] () -- C:\WINDOWS\System32\win_stlthdb_sys.dat
[2012.04.26 20:51:22 | 000,002,568 | -HS- | C] () -- C:\Documents and Settings\All Users\Application Data\win_mpwd_sys.dat
[2012.04.26 20:51:18 | 000,003,465 | RHS- | C] () -- C:\Documents and Settings\Raul\Local Settings\Application Data\win_stlthdb_sys.dat
[2012.04.26 20:51:18 | 000,000,700 | RHS- | C] () -- C:\Documents and Settings\Raul\Local Settings\Application Data\systemFL7.$dk
[2012.04.26 20:50:54 | 000,029,584 | ---- | C] () -- C:\WINDOWS\System32\WinFLAdrv.sys
[2012.04.26 20:50:52 | 000,188,176 | ---- | C] () -- C:\WINDOWS\System32\WinVDEdrv6.sys
[2012.04.26 20:50:30 | 000,014,936 | ---- | C] () -- C:\WINDOWS\System32\WinFLMsgService.exe
[2012.04.26 20:50:28 | 000,040,960 | ---- | C] () -- C:\WINDOWS\System32\nwsftUninstall.exe
[2012.03.14 00:18:29 | 000,129,024 | ---- | C] () -- C:\WINDOWS\System32\AVERM.dll
[2012.03.14 00:18:29 | 000,028,672 | ---- | C] () -- C:\WINDOWS\System32\AVEQT.dll
[2012.03.07 19:21:26 | 000,000,016 | ---- | C] () -- C:\WINDOWS\System32\asdict.dat
[2011.11.03 14:47:07 | 000,000,376 | ---- | C] () -- C:\Documents and Settings\Raul\Application Dataprivacy.xml
[2011.10.08 17:43:35 | 000,332,296 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\bdinstall.bin
[2011.10.02 12:25:28 | 000,315,392 | ---- | C] () -- C:\WINDOWS\System32\AegisI5.exe
[2011.08.12 15:25:02 | 000,178,688 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll
[2010.07.22 19:31:37 | 000,000,160 | ---- | C] () -- C:\Documents and Settings\Raul\startup.reg
[2010.07.08 10:37:14 | 000,101,544 | ---- | C] () -- C:\Program Files\Common Files\LinkInstaller.exe
[2008.07.07 16:20:04 | 000,071,168 | ---- | C] () -- C:\Documents and Settings\Raul\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini

========== ZeroAccess Check ==========

[2008.06.10 00:12:10 | 000,000,227 | RHS- | M] () -- C:\WINDOWS\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shdocvw.dll -- [2012.04.20 22:29:52 | 001,510,400 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2009.02.09 15:10:48 | 000,473,600 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
"" = %systemroot%\system32\wbem\wbemess.dll -- [2008.04.14 03:12:08 | 000,273,920 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

========== Alternate Data Streams ==========

@Alternate Data Stream - 502593 bytes -> C:\WINDOWS\temp:temp
@Alternate Data Stream - 130 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:58D8F144
@Alternate Data Stream - 129 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:07BF512B
< End of report >

#20
MhG_51

Posted 21 April 2013 - 20:18

Grup: Moderators
Posts: 3,319
Înscris: 04.05.2009

Ruleaza din nou asta:

Ruleaza din nou OTL.
Copiaza ce e citat mai jos si "Paste"(Lipeste) textul in OTL.

Quote

:OTL
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (WDICA)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRFRAME)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRELI)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDFRAME)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDCOMP)
DRV - File not found [Kernel | System | Stopped] -- -- (PCIDump)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\mcdbus.sys -- (mcdbus)
DRV - File not found [Kernel | System | Stopped] -- -- (lbrtfdc)
DRV - File not found [Kernel | System | Stopped] -- -- (i2omgmt)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\gtuhsbus.sys -- (GTUHSBUS)
DRV - File not found [Kernel | System | Stopped] -- -- (Changer)
IE - HKU\S-1-5-21-1801674531-1004336348-725345543-1004\..\SearchScopes,Backup.Old.DefaultScope = {95B7759C-8C7F-4BF1-B163-73684A933233}
FF - user.js - File not found
O4 - HKU\S-1-5-21-1801674531-1004336348-725345543-500..\RunOnce: [NeroHomeFirstStart] C:\Program Files\Common Files\Ahead\Lib\NMFirstStart.exe File not found
[2013.04.21 09:06:48 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Raul\Application Data\SpeedAnalysis2
[2013.04.17 12:20:14 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Browusse2ssave
[2013.04.21 10:12:16 | 000,000,676 | ---- | M] () -- C:\Documents and Settings\Raul\Application Data\Microsoft\Internet Explorer\Quick Launch\22find.lnk
[2013.04.20 22:36:26 | 000,048,697 | ---- | M] () -- C:\Documents and Settings\Raul\Desktop\DOCS-Mythology.eBooks.Collection.PDF-OMNiSCiENT.torrent
[2013.04.20 22:36:16 | 000,048,697 | ---- | C] () -- C:\Documents and Settings\Raul\Desktop\DOCS-Mythology.eBooks.Collection.PDF-OMNiSCiENT.torrent
[2012.12.05 11:46:26 | 000,002,048 | -H-- | C] () -- C:\Documents and Settings\Raul\Application Data\~S7FB45B79-C86E-49ff-ACC4-849340906621W
@Alternate Data Stream - 502593 bytes -> C:\WINDOWS\temp:temp
@Alternate Data Stream - 130 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:58D8F144
@Alternate Data Stream - 129 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:07BF512B

:Commands
[purity]
[emptytemp]
[emptyjava]
[emptyflash]
[Reboot]

Vezi pe imagine cum.
Apasa Run Fix.
Posteaza logul aici.
[ http://s23.postimg.org/6ui8tyrrv/OTLsc.jpg - Pentru incarcare in pagina (embed) Click aici ]

Descarca si salveaza pe Desktop Junkware Removal Tool.
Inchide toate programele care ruleaza.
Sananeaza cu el.
Ai rabdare cu el, dureaza putin mai mult.
Posteaza logul aici.
[ http://s7.postimage.org/z2rwy800r/JRT.jpg - Pentru incarcare in pagina (embed) Click aici ]

Edited by MhG_40, 21 April 2013 - 20:21.

#21
rebroff

Posted 21 April 2013 - 20:22

Member

Grup: Members
Posts: 722
Înscris: 21.04.2011

Dar acum nu e citat nimic mai jos. Sa copiez ce mi-ai spus prima data?

#22
MhG_51

Posted 21 April 2013 - 20:23

Grup: Moderators
Posts: 3,319
Înscris: 04.05.2009

rebroff, on 21 aprilie 2013 - 20:22, said:

Dar acum nu e citat nimic mai jos. Sa copiez ce mi-ai spus prima data?

Vezi ca am modificat.

#23
rebroff

Posted 21 April 2013 - 21:43

Member

Grup: Members
Posts: 722
Înscris: 21.04.2011

Din pacate.... nicio schimbare. Am oprit OTL - nu face altceva decat imi arata ca "omoara niste procese"

#24
MhG_51

Posted 21 April 2013 - 22:28

Grup: Moderators
Posts: 3,319
Înscris: 04.05.2009

Bun.
Nu vrea pe calea cea mai simpla!

Ruleaza din nou OTL.
Copiaza ce e citat mai jos si "Paste"(Lipeste) textul in OTL.

Quote

:PROCESSES
killallprocesses

:OTL
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (WDICA)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRFRAME)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRELI)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDFRAME)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDCOMP)
DRV - File not found [Kernel | System | Stopped] -- -- (PCIDump)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\mcdbus.sys -- (mcdbus)
DRV - File not found [Kernel | System | Stopped] -- -- (lbrtfdc)
DRV - File not found [Kernel | System | Stopped] -- -- (i2omgmt)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\gtuhsbus.sys -- (GTUHSBUS)
DRV - File not found [Kernel | System | Stopped] -- -- (Changer)
IE - HKU\S-1-5-21-1801674531-1004336348-725345543-1004\..\SearchScopes,Backup.Old.DefaultScope = {95B7759C-8C7F-4BF1-B163-73684A933233}
FF - user.js - File not found
O4 - HKU\S-1-5-21-1801674531-1004336348-725345543-500..\RunOnce: [NeroHomeFirstStart] C:\Program Files\Common Files\Ahead\Lib\NMFirstStart.exe File not found
[2013.04.21 09:06:48 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Raul\Application Data\SpeedAnalysis2
[2013.04.17 12:20:14 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Browusse2ssave
[2013.04.21 10:12:16 | 000,000,676 | ---- | M] () -- C:\Documents and Settings\Raul\Application Data\Microsoft\Internet Explorer\Quick Launch\22find.lnk
[2013.04.20 22:36:26 | 000,048,697 | ---- | M] () -- C:\Documents and Settings\Raul\Desktop\DOCS-Mythology.eBooks.Collection.PDF-OMNiSCiENT.torrent
[2013.04.20 22:36:16 | 000,048,697 | ---- | C] () -- C:\Documents and Settings\Raul\Desktop\DOCS-Mythology.eBooks.Collection.PDF-OMNiSCiENT.torrent
[2012.12.05 11:46:26 | 000,002,048 | -H-- | C] () -- C:\Documents and Settings\Raul\Application Data\~S7FB45B79-C86E-49ff-ACC4-849340906621W
@Alternate Data Stream - 502593 bytes -> C:\WINDOWS\temp:temp
@Alternate Data Stream - 130 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:58D8F144
@Alternate Data Stream - 129 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:07BF512B

:Commands
[purity]
[emptytemp]
[emptyjava]
[emptyflash]
[Reboot]

Vezi pe imagine cum.
Apasa Run Fix.
Posteaza logul aici.
[ http://s23.postimg.org/6ui8tyrrv/OTLsc.jpg - Pentru incarcare in pagina (embed) Click aici ]

#25
rebroff

Posted 22 April 2013 - 07:33

Member

Grup: Members
Posts: 722
Înscris: 21.04.2011

Am rulat OTL in Safe Mode si a mers. Uite logul:

All processes killed
========== PROCESSES ==========
========== OTL ==========
Service WDICA stopped successfully!
Service WDICA deleted successfully!
Service PDRFRAME stopped successfully!
Service PDRFRAME deleted successfully!
Service PDRELI stopped successfully!
Service PDRELI deleted successfully!
Service PDFRAME stopped successfully!
Service PDFRAME deleted successfully!
Service PDCOMP stopped successfully!
Service PDCOMP deleted successfully!
Service PCIDump stopped successfully!
Service PCIDump deleted successfully!
Service mcdbus stopped successfully!
Service mcdbus deleted successfully!
File system32\DRIVERS\mcdbus.sys not found.
Service lbrtfdc stopped successfully!
Service lbrtfdc deleted successfully!
Service i2omgmt stopped successfully!
Service i2omgmt deleted successfully!
Service GTUHSBUS stopped successfully!
Service GTUHSBUS deleted successfully!
File system32\DRIVERS\gtuhsbus.sys not found.
Service Changer stopped successfully!
Service Changer deleted successfully!
HKEY_USERS\S-1-5-21-1801674531-1004336348-725345543-1004\Software\Microsoft\Internet Explorer\SearchScopes\\DefaultScope| /E : value set successfully!
Registry key HKEY_USERS\S-1-5-21-1801674531-1004336348-725345543-500\Software\Microsoft\Windows\CurrentVersion\RunOnce not found.
C:\Documents and Settings\Raul\Application Data\SpeedAnalysis2 folder moved successfully.
C:\Documents and Settings\All Users\Application Data\Browusse2ssave\data folder moved successfully.
C:\Documents and Settings\All Users\Application Data\Browusse2ssave folder moved successfully.
C:\Documents and Settings\Raul\Application Data\Microsoft\Internet Explorer\Quick Launch\22find.lnk moved successfully.
C:\Documents and Settings\Raul\Desktop\DOCS-Mythology.eBooks.Collection.PDF-OMNiSCiENT.torrent moved successfully.
File C:\Documents and Settings\Raul\Desktop\DOCS-Mythology.eBooks.Collection.PDF-OMNiSCiENT.torrent not found.
C:\Documents and Settings\Raul\Application Data\~S7FB45B79-C86E-49ff-ACC4-849340906621W moved successfully.
ADS C:\WINDOWS\temp:temp deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:58D8F144 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:07BF512B deleted successfully.
========== COMMANDS ==========

[EMPTYTEMP]

User: Administrator
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 67 bytes

User: All Users

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 67 bytes

User: LocalService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 32902 bytes

User: NetworkService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes

User: Raul
->Temp folder emptied: 370318551 bytes
->Temporary Internet Files folder emptied: 544786 bytes
->Java cache emptied: 0 bytes
->FireFox cache emptied: 167255610 bytes
->Google Chrome cache emptied: 0 bytes
->Flash cache emptied: 1922 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 2176856 bytes
%systemroot%\System32 .tmp files removed: 2577 bytes
%systemroot%\System32\dllcache .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 16463 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temp folder emptied: 13954426 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 33170 bytes
RecycleBin emptied: 0 bytes

Total Files Cleaned = 529,00 mb

[EMPTYJAVA]

User: Administrator

User: All Users

User: Default User

User: LocalService

User: NetworkService

User: Raul
->Java cache emptied: 0 bytes

Total Java Files Cleaned = 0,00 mb

[EMPTYFLASH]

User: Administrator

User: All Users

User: Default User

User: LocalService

User: NetworkService

User: Raul
->Flash cache emptied: 0 bytes

Total Flash Files Cleaned = 0,00 mb

OTL by OldTimer - Version 3.2.69.0 log created on 04222013_072800
Files\Folders moved on Reboot...
PendingFileRenameOperations files...
Registry entries deleted on Reboot...

#26
rebroff

Posted 22 April 2013 - 09:55

Member

Grup: Members
Posts: 722
Înscris: 21.04.2011

N-am mai asteptat sfatul tau si i-am mai dat odata cu Hitman. Vad ca mizeria aia de Browse to Save a disparut de pe blogul meu.
Daca totusi ai mai observat ceva prin loguri, te rog sa-mi spui ce-ar mai trebui sa fac.
Multumesc foarte mult pentru ajutorul de pana acum.

#27
MhG_51

Posted 22 April 2013 - 16:38

Grup: Moderators
Posts: 3,319
Înscris: 04.05.2009

Buna.
A fost sters de OTL.
Acum arata bine.
Sa facem curat.

Ruleaza din nou OTL si apasa pe CleanUp.
Asta ar trebui sa scoata Junkware Removal Tool si pe el insasi.
RogueKiller si logurile ramase se pot sterge manual.
Numai bine.[ http://i1.ifrm.com/228/109/upload/p22002758.gif - Pentru incarcare in pagina (embed) Click aici ]

Edited by MhG_40, 22 April 2013 - 16:39.

#28
rebroff

Posted 22 April 2013 - 17:20

Member

Grup: Members
Posts: 722
Înscris: 21.04.2011

Done!

Anunturi

Second Opinion

Folosind serviciul second opinion ne puteți trimite RMN-uri, CT -uri, angiografii, fișiere .pdf, documente medicale.

Astfel vă vom putea da o opinie neurochirurgicală, fără ca aceasta să poată înlocui un consult de specialitate. Răspunsurile vor fi date prin e-mail în cel mai scurt timp posibil (de obicei în mai putin de 24 de ore, dar nu mai mult de 48 de ore). Second opinion – Neurohope este un serviciu gratuit.

www.neurohope.ro

Back to Solutii anti-malware

▶ 0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

© 2001-2024 Softpedia. All rights reserved. Softpedia® and the Softpedia logo are registered trademarks of SoftNews Net SRL.
Ora implicita a Forumului Softpedia este ora standard a Romaniei (GMT+2). Mai multe informatii →
⚠ Postarile afisate pe Forumul Softpedia reprezinta o opinie subiectiva a membrilor care le-au publicat si nu a SoftNews Net SRL.

Problema cu Browse to Save

#19 rebroff Posted 21 April 2013 - 20:05

#20 MhG_51 Posted 21 April 2013 - 20:18

#21 rebroff Posted 21 April 2013 - 20:22

#22 MhG_51 Posted 21 April 2013 - 20:23

#23 rebroff Posted 21 April 2013 - 21:43

#24 MhG_51 Posted 21 April 2013 - 22:28

#25 rebroff Posted 22 April 2013 - 07:33

#26 rebroff Posted 22 April 2013 - 09:55

#27 MhG_51 Posted 22 April 2013 - 16:38

#28 rebroff Posted 22 April 2013 - 17:20

Anunturi

▶ 0 user(s) are reading this topic

Sign In

#19
rebroff

Posted 21 April 2013 - 20:05

#20
MhG_51

Posted 21 April 2013 - 20:18

#21
rebroff

Posted 21 April 2013 - 20:22

#22
MhG_51

Posted 21 April 2013 - 20:23

#23
rebroff

Posted 21 April 2013 - 21:43

#24
MhG_51

Posted 21 April 2013 - 22:28

#25
rebroff

Posted 22 April 2013 - 07:33

#26
rebroff

Posted 22 April 2013 - 09:55

#27
MhG_51

Posted 22 April 2013 - 16:38

#28
rebroff

Posted 22 April 2013 - 17:20