Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- Additional scan result of Farbar Recovery Scan Tool (x86) Version:01-12-2015
- Ran by Sevgin (2015-12-01 22:52:19)
- Running from C:\Documents and Settings\Sevgin\Desktop
- Microsoft Windows XP Professional Service Pack 3 (X86) (2015-03-04 16:28:38)
- Boot Mode: Normal
- ==========================================================
- ==================== Accounts: =============================
- Administrator (S-1-5-21-1390067357-1292428093-1177238915-500 - Administrator - Enabled)
- Guest (S-1-5-21-1390067357-1292428093-1177238915-501 - Limited - Disabled)
- HelpAssistant (S-1-5-21-1390067357-1292428093-1177238915-1000 - Limited - Disabled)
- Sevgin (S-1-5-21-1390067357-1292428093-1177238915-1003 - Administrator - Enabled) => %SystemDrive%\Documents and Settings\Sevgin
- SUPPORT_388945a0 (S-1-5-21-1390067357-1292428093-1177238915-1002 - Limited - Disabled)
- ==================== Security Center ========================
- (If an entry is included in the fixlist, it will be removed.)
- ==================== Installed Programs ======================
- (Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
- µTorrent (HKU\S-1-5-21-1390067357-1292428093-1177238915-1003\...\uTorrent) (Version: 3.4.5.41372 - BitTorrent Inc.)
- ABBYY FineReader 5.0 Sprint (HKLM\...\{D1696920-9794-4BBC-8A30-7A88763DE5A2}) (Version: 5.0.482.3421 - ABBYY Software House)
- Adobe Flash Player 10 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 10.0.32.18 - Adobe Systems Incorporated)
- Adobe Flash Player 19 NPAPI (HKLM\...\Adobe Flash Player NPAPI) (Version: 19.0.0.245 - Adobe Systems Incorporated)
- Adobe Reader XI (11.0.08) (HKLM\...\{AC76BA86-7AD7-1033-7B44-AB0000000001}) (Version: 11.0.08 - Adobe Systems Incorporated)
- Chicken Invaders 2 (HKLM\...\Chicken Invaders 2_is1) (Version: - )
- Chicken Invaders 3 (HKLM\...\Chicken Invaders 3_is1) (Version: - )
- DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 5.0.1.0406 - Disc Soft Ltd)
- FaxTools (HKLM\...\{F45298E5-0083-426F-A668-1A2C5F04B8A0}) (Version: 5.10 - BVRP Software)
- GeoGebra 5 (HKLM\...\GeoGebra 5) (Version: 5.0.68.0 - International GeoGebra Institute)
- GOM Audio (HKLM\...\GomAudio) (Version: 2.0.7.1108 - Gretech Corporation)
- GOM Player (HKLM\...\GOM Player) (Version: 2.1.40.5106 - Gretech Corporation)
- istartsurf (HKLM\...\istartsurf) (Version: 1.0.0.2 - ) <==== ATTENTION
- Java 8 Update 60 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83218060F0}) (Version: 8.0.600.27 - Oracle Corporation)
- Lexmark 1200 Series (HKLM\...\Lexmark 1200 Series) (Version: - )
- Microsoft .NET Framework 2.0 Service Pack 2 (HKLM\...\{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}) (Version: 2.2.30729 - Microsoft Corporation)
- Microsoft Office Enterprise 2007 (HKLM\...\ENTERPRISE) (Version: 12.0.4518.1014 - Microsoft Corporation)
- Microsoft Save as PDF Add-in for 2007 Microsoft Office programs (HKLM\...\{90120000-00B0-0409-0000-0000000FF1CE}) (Version: 12.0.4518.1014 - Microsoft Corporation)
- Mozilla Firefox 42.0 (x86 en-US) (HKLM\...\Mozilla Firefox 42.0 (x86 en-US)) (Version: 42.0 - Mozilla)
- Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 42.0.0.5780 - Mozilla)
- MyPC Backup (HKLM\...\OLBPre) (Version: - MyPC Backup) <==== ATTENTION
- Nero 7 Premium (HKLM\...\{CF097717-F174-4144-954A-FBC4BF301033}) (Version: 7.02.9753 - Nero AG)
- NVIDIA Drivers (HKLM\...\NVIDIA Drivers) (Version: - )
- Platform (Version: 1.21 - VIA Technologies, Inc.) Hidden
- Realtek High Definition Audio Driver (HKLM\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 5.10.0.5296 - Realtek Semiconductor Corp.)
- Round World (HKLM\...\Round World) (Version: 2015.03.05.140426 - Round World) <==== ATTENTION
- Skype™ 7.2 (HKLM\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.2.103 - Skype Technologies S.A.)
- Software Version Updater (HKLM\...\{99C91FC5-DB5B-4AA0-BB70-5D89C5A4DF96}) (Version: 1.1.4.2 - ) <==== ATTENTION
- VIA Platform Device Manager (HKLM\...\InstallShield_{20D4A895-748C-4D88-871C-FDB1695B0169}) (Version: 1.21 - VIA Technologies, Inc.)
- VIA Rhine-Family Fast Ethernet Adapter (HKLM\...\VN_VUIns_Rhine_VIA) (Version: - )
- Vista Drive Indicator! (HKLM\...\VDrive) (Version: 2.2 - KelCorp)
- Vtune 4.6 (HKLM\...\Vtune_is1) (Version: - )
- WebFldrs XP (Version: 9.50.7523 - Microsoft Corporation) Hidden
- WinRAR 5.21 (32-bit) (HKLM\...\WinRAR archiver) (Version: 5.21.0 - win.rar GmbH)
- Zzoomit (HKLM\...\SeeWeblists) (Version: - SeeWeblists)
- ==================== Custom CLSID (Whitelisted): ==========================
- (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
- ==================== Restore Points =========================
- 27-10-2015 19:05:18 System Checkpoint
- 28-10-2015 19:32:38 System Checkpoint
- 29-10-2015 19:45:33 System Checkpoint
- 30-10-2015 20:41:19 System Checkpoint
- 31-10-2015 20:53:29 System Checkpoint
- 01-11-2015 21:30:48 System Checkpoint
- 03-11-2015 19:27:43 System Checkpoint
- 04-11-2015 20:13:50 System Checkpoint
- 05-11-2015 21:12:19 System Checkpoint
- 06-11-2015 23:14:00 System Checkpoint
- 09-11-2015 20:07:49 System Checkpoint
- 10-11-2015 20:33:27 System Checkpoint
- 11-11-2015 20:51:32 System Checkpoint
- 13-11-2015 17:28:47 System Checkpoint
- 15-11-2015 18:10:13 System Checkpoint
- 17-11-2015 20:22:50 System Checkpoint
- 18-11-2015 20:59:17 System Checkpoint
- 19-11-2015 21:50:06 System Checkpoint
- 21-11-2015 18:40:07 System Checkpoint
- 22-11-2015 19:18:35 System Checkpoint
- 23-11-2015 19:39:25 System Checkpoint
- 24-11-2015 20:13:59 System Checkpoint
- 25-11-2015 20:57:01 System Checkpoint
- 26-11-2015 21:24:54 System Checkpoint
- 27-11-2015 21:34:27 System Checkpoint
- 30-11-2015 16:59:12 System Checkpoint
- 01-12-2015 17:23:48 System Checkpoint
- ==================== Hosts content: ===============================
- (If needed Hosts: directive could be included in the fixlist to reset Hosts.)
- 2008-04-14 06:00 - 2008-04-14 06:00 - 00000734 ____A C:\WINDOWS.0\system32\Drivers\etc\hosts
- 127.0.0.1 localhost
- ==================== Scheduled Tasks (Whitelisted) =============
- (If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
- Task: C:\WINDOWS.0\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS.0\system32\Macromed\Flash\FlashPlayerUpdateService.exe
- Task: C:\WINDOWS.0\Tasks\AmiUpdXp.job => C:\Documents and Settings\Sevgin\Application Data\6772\Updater.exe <==== ATTENTION
- ==================== Shortcuts =============================
- (The entries could be listed to be restored or removed.)
- ShortcutWithArgument: C:\Documents and Settings\Sevgin\Application Data\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk -> C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation) -> hxxp://www.istartsurf.com/?type=sc&ts=1446906760&z=aadfbb4361316cb7292d87fg0z4zdq3tfebq9mbq6e&from=cor&uid=maxtorxstm3802110axxxxxxxxxxxxxxxx_9lr3ct6xxxxx9lr3ct6x <==== ATTENTION
- ==================== Loaded Modules (Whitelisted) ==============
- 2015-03-04 17:34 - 2006-08-09 11:04 - 00032768 _____ () C:\Program Files\Vtune\TBPanelExt.dll
- 2006-08-11 14:43 - 2006-08-11 14:43 - 00466944 _____ () C:\WINDOWS.0\system32\nvshell.dll
- 2006-08-11 14:43 - 2006-08-11 14:43 - 00196608 _____ () C:\WINDOWS.0\system32\nvapi.dll
- 2015-10-01 13:36 - 2006-01-19 05:33 - 00078336 _____ () C:\WINDOWS.0\System32\spool\PRTPROCS\W32X86\LXCZPP5C.dll
- 2015-03-04 17:12 - 2006-10-05 20:56 - 00280779 _____ () C:\WINDOWS.0\VistaDrive\VistaDrive.exe
- 2015-03-04 17:18 - 2009-07-11 11:11 - 01257472 _____ () C:\Program Files\AutorunRemover\AutorunRemover.exe
- 2015-03-04 17:34 - 2006-09-13 10:16 - 02154496 _____ () C:\Program Files\Vtune\TBPanel.exe
- 2015-03-04 17:34 - 1998-10-31 04:55 - 00005120 _____ () C:\Program Files\Vtune\TBManage.dll
- 2008-04-14 06:00 - 2008-04-14 06:00 - 00059904 _____ () C:\WINDOWS.0\system32\devenum.dll
- 2008-04-14 06:00 - 2008-04-14 06:00 - 00014336 _____ () C:\WINDOWS.0\system32\msdmo.dll
- 2015-11-03 09:14 - 2015-11-03 09:14 - 00271592 _____ () C:\Program Files\RayDld\ihpmServer.exe
- 2015-11-10 19:45 - 2015-11-10 19:45 - 17604296 _____ () C:\WINDOWS.0\system32\Macromed\Flash\NPSWF32_19_0_0_245.dll
- 2015-12-01 16:54 - 2015-12-01 16:54 - 02475520 _____ () C:\Program Files\OLBPre\OLBPre.exe
- 2015-12-01 16:54 - 2015-12-01 16:54 - 00060928 _____ () C:\Program Files\OLBPre\LinqBridge.dll
- 2015-11-12 22:55 - 2015-11-12 22:55 - 00379904 _____ () C:\Program Files\Dripkix\Dripkix.exe
- ==================== Alternate Data Streams (Whitelisted) =========
- (If an entry is included in the fixlist, only the ADS will be removed.)
- ==================== Safe Mode (Whitelisted) ===================
- (If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" value will be restored.)
- ==================== EXE Association (Whitelisted) ===============
- (If an entry is included in the fixlist, the registry item will be restored to default or removed.)
- ==================== Internet Explorer trusted/restricted ===============
- (If an entry is included in the fixlist, it will be removed from the registry.)
- ==================== Other Areas ============================
- (Currently there is no automatic fix for this section.)
- HKU\S-1-5-21-1390067357-1292428093-1177238915-1003\Control Panel\Desktop\\Wallpaper -> C:\Documents and Settings\Sevgin\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
- DNS Servers: 192.168.0.1
- Windows Firewall is enabled.
- ==================== MSCONFIG/TASK MANAGER disabled items ==
- (Currently there is no automatic fix for this section.)
- ==================== FirewallRules (Whitelisted) ===============
- (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
- StandardProfile\AuthorizedApplications: [C:\Program Files\Skype\Phone\Skype.exe] => Enabled:Skype
- StandardProfile\AuthorizedApplications: [C:\Documents and Settings\Sevgin\Application Data\uTorrent\uTorrent.exe] => Enabled:μTorrent
- StandardProfile\AuthorizedApplications: [C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE] => Enabled:Microsoft Office Outlook
- StandardProfile\AuthorizedApplications: [C:\Program Files\Microsoft Office\Office12\GROOVE.EXE] => Enabled:Microsoft Office Groove
- StandardProfile\AuthorizedApplications: [C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE] => Enabled:Microsoft Office OneNote
- StandardProfile\AuthorizedApplications: [D:\New Folder\age2_x1.exe] => Enabled:Age of Empires II Expansion
- StandardProfile\AuthorizedApplications: [C:\Program Files\Java\jre1.8.0_45\bin\jp2launcher.exe] => Enabled:Java(TM) Platform SE binary
- StandardProfile\AuthorizedApplications: [C:\Program Files\Mozilla Firefox\firefox.exe] => Enabled:'Firefox' (C:\Program Files\Mozilla Firefox)
- ==================== Faulty Device Manager Devices =============
- ==================== Event log errors: =========================
- Application errors:
- ==================
- Error: (11/26/2015 03:50:54 PM) (Source: Microsoft Office 12) (EventID: 2000) (User: )
- Description: Accepted Safe Mode action : Microsoft Office PowerPoint.
- Error: (09/10/2015 04:20:04 PM) (Source: Microsoft Office 12) (EventID: 1000) (User: )
- Description: Faulting application winword.exe, version 12.0.4518.1014, stamp 45428028, faulting module unknown, version 0.0.0.0, stamp 00000000, debug? 0, fault address 0x00d84baa.
- System errors:
- =============
- Error: (12/01/2015 03:02:46 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
- Description: The Cardex service failed to start due to the following error:
- %%183
- Error: (11/30/2015 03:25:59 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
- Description: The Cardex service failed to start due to the following error:
- %%183
- Error: (11/30/2015 07:24:53 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
- Description: The Cardex service failed to start due to the following error:
- %%183
- Error: (11/28/2015 03:28:04 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
- Description: The Cardex service failed to start due to the following error:
- %%183
- Error: (11/27/2015 04:04:11 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
- Description: The Cardex service failed to start due to the following error:
- %%183
- Error: (11/26/2015 03:21:26 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
- Description: The Cardex service failed to start due to the following error:
- %%183
- Error: (11/25/2015 04:33:42 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
- Description: The Cardex service failed to start due to the following error:
- %%183
- Error: (11/22/2015 09:50:46 PM) (Source: WPDMTPDriver) (EventID: 15301) (User: )
- Description: MTP USB Driver has detected that the device has failed to respond to the operation 0x1002 in 5 minutes, which resulted in an attempt to cancel the operation. Error 0x802a0006.
- Error: (11/22/2015 04:01:48 PM) (Source: WPDMTPDriver) (EventID: 15301) (User: )
- Description: MTP USB Driver has detected that the device has failed to respond to the operation 0x1002 in 5 minutes, which resulted in an attempt to cancel the operation. Error 0x802a0006.
- Error: (11/22/2015 03:01:20 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
- Description: The Cardex service failed to start due to the following error:
- %%183
- ==================== Memory info ===========================
- Processor: Intel(R) Celeron(R) CPU 2.53GHz
- Percentage of memory in use: 85%
- Total physical RAM: 1023.23 MB
- Available physical RAM: 148.13 MB
- Total Virtual: 2461.82 MB
- Available Virtual: 1392.37 MB
- ==================== Drives ================================
- Drive c: () (Fixed) (Total:24.41 GB) (Free:4.18 GB) NTFS ==>[drive with boot components (Windows XP)]
- Drive d: () (Fixed) (Total:50.11 GB) (Free:5.01 GB) NTFS
- Drive f: (C@RO) (Removable) (Total:7.25 GB) (Free:7.25 GB) FAT32
- ==================== MBR & Partition Table ==================
- ========================================================
- Disk: 0 (MBR Code: Windows XP) (Size: 74.5 GB) (Disk ID: A4F84A3F)
- Partition 1: (Active) - (Size=24.4 GB) - (Type=07 NTFS)
- Partition 2: (Not Active) - (Size=50.1 GB) - (Type=05)
- ========================================================
- Disk: 1 (MBR Code: Windows XP) (Size: 7.3 GB) (Disk ID: C3072E18)
- Partition 1: (Active) - (Size=7.3 GB) - (Type=0B)
- ==================== End of Addition.txt ============================
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement