@calexx
mislis reinstal sistema?
o tome sam razmisljao
juce sam trazio drajvere za graficku i maticnu,ono da se mi se nadje sve spremno kad zavrsim instalaciju ali nmg da nadjem drajvere ni za graf. ni za maticnu sad ni sam nznm sta da radim
@kristi1
imao sam ja i sp3.pre 10tak dana skinem sp3 i instaliram preko postojeceg sp2.posle par h poce da mi pisti kuciste,tininunu,tako nesto.sobzirom da sam skinuo samo sp3 pre pistanja odma sam posumnjao na njega i odem u add/remove program da obrisem kad tamo vidim da sfve moze da se brise samo sp3 nema opciju remove...na kraju sam uspeo da ga se resim uz pomoc revo uninstaler ja msm da se tako zove i od tad da kucnem u drvo nema ni t od tinuninu
evo ga i log
ComboFix 14-02-05.02 - rane 02/08/2014 12:15:05.1.2 - x86
Microsoft Windows XP Professional 5.1.2600.2.1252.1.1033.18.1013.592 [GMT 1:00]
Running from: c:\documents and settings\rane\Desktop\ComboFix.exe
.
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\documents and settings\All Users\Application Data\TEMP
c:\documents and settings\All Users\Application Data\TEMP\RAIDTest
C:\Thumbs.db
c:\windows\system32\PowerToyReadme.htm
c:\windows\system32\roboot.exe
.
.
((((((((((((((((((((((((( Files Created from 2014-01-08 to 2014-02-08 )))))))))))))))))))))))))))))))
.
.
2014-02-08 02:04 . 2014-02-08 02:04 -------- d-----w- C:\Intel
2014-02-07 15:49 . 2014-02-07 15:49 -------- d-----w- c:\documents and settings\rane\Local Settings\Application Data\eSupport.com
2014-02-07 15:33 . 2014-02-07 15:33 -------- d-----w- c:\documents and settings\All Users\Uniblue
2014-02-07 14:40 . 2014-02-07 14:40 -------- d-----w- c:\program files\Speccy
2014-02-06 21:47 . 2014-02-06 21:47 -------- d-----w- c:\program files\CCleaner
2014-02-05 19:15 . 2014-02-05 19:15 -------- d-----w- c:\documents and settings\rane\Local Settings\Application Data\Apps Hat
2014-02-05 19:15 . 2014-02-06 22:04 -------- d-----w- c:\documents and settings\rane\Local Settings\Application Data\AppsHat Mobile Apps
2014-02-05 15:24 . 2014-02-05 15:54 -------- d-sh--w- c:\documents and settings\All Users\Application Data\{01BD4FC9-2F86-4706-A62E-774BB7E9D308}
2014-01-21 17:44 . 2014-01-21 17:44 -------- d-----w- c:\documents and settings\All Users\Application Data\RoboForm
2014-01-21 13:14 . 2014-01-21 13:14 -------- d-----w- c:\documents and settings\rane\Application Data\Advanced System Protector
2014-01-20 16:04 . 2014-01-20 16:04 -------- d-----w- c:\program files\Common Files\Java
2014-01-20 16:04 . 2014-01-20 16:04 145408 ----a-w- c:\windows\system32\javacpl.cpl
2014-01-20 16:04 . 2014-01-20 16:04 94632 ----a-w- c:\windows\system32\WindowsAccessBridge.dll
2014-01-20 16:04 . 2014-01-20 16:04 -------- d-----w- c:\program files\Java
2014-01-20 14:36 . 2014-01-20 14:36 -------- d-----w- c:\documents and settings\rane\Local Settings\Application Data\Skillbrains
2014-01-20 14:26 . 2014-01-20 14:26 -------- d-s---w- c:\documents and settings\rane\IETldCache
2014-01-20 14:24 . 2010-05-06 10:41 12800 -c----w- c:\windows\system32\dllcache\xpshims.dll
2014-01-20 14:24 . 2010-05-06 10:41 599040 -c----w- c:\windows\system32\dllcache\msfeeds.dll
2014-01-20 14:24 . 2010-05-06 10:41 55296 -c----w- c:\windows\system32\dllcache\msfeedsbs.dll
2014-01-20 14:24 . 2010-05-06 10:41 247808 -c----w- c:\windows\system32\dllcache\ieproxy.dll
2014-01-20 14:24 . 2010-05-06 10:41 1985536 -c----w- c:\windows\system32\dllcache\iertutil.dll
2014-01-20 14:24 . 2010-05-06 10:41 11076096 -c----w- c:\windows\system32\dllcache\ieframe.dll
2014-01-20 14:24 . 2010-05-06 10:41 743424 -c----w- c:\windows\system32\dllcache\iedvtool.dll
2014-01-20 14:23 . 2014-01-20 14:23 -------- dc-h--w- c:\windows\ie8
2014-01-20 14:06 . 2004-08-03 21:10 274304 ----a-w- c:\windows\system32\dllcache\bthport.sys
2014-01-20 14:05 . 2004-08-03 21:08 31616 ----a-w- c:\windows\system32\dllcache\usbccgp.sys
2014-01-20 14:05 . 2004-08-03 21:08 142976 ----a-w- c:\windows\system32\dllcache\usbport.sys
2014-01-20 14:05 . 2004-08-03 21:08 26624 ----a-w- c:\windows\system32\dllcache\usbehci.sys
2014-01-20 14:04 . 2004-08-03 22:56 1028096 ----a-w- c:\windows\system32\dllcache\mfc42.dll
2014-01-20 14:04 . 2001-08-23 12:00 924432 ----a-w- c:\windows\system32\dllcache\mfc40u.dll
2014-01-20 14:01 . 2004-08-03 21:15 451456 ----a-w- c:\windows\system32\dllcache\mrxsmb.sys
2014-01-20 14:01 . 2004-08-03 22:56 611328 ----a-w- c:\windows\system32\dllcache\comctl32.dll
2014-01-20 14:01 . 2004-08-03 22:56 450048 ----a-w- c:\windows\system32\dllcache\aclayers.dll
2014-01-20 14:00 . 2004-08-03 22:56 743936 ----a-w- c:\windows\system32\dllcache\helpsvc.exe
2014-01-20 14:00 . 2004-08-03 21:08 24960 ----a-w- c:\windows\system32\dllcache\hidparse.sys
2014-01-20 14:00 . 2004-08-03 20:58 15104 ----a-w- c:\windows\system32\dllcache\usbscan.sys
2014-01-20 13:59 . 2004-08-03 22:56 210432 ----a-w- c:\windows\system32\dllcache\t2embed.dll
2014-01-20 13:59 . 2001-08-23 12:00 79360 ----a-w- c:\windows\system32\dllcache\fontsub.dll
2014-01-20 13:59 . 2004-08-03 22:56 395776 ----a-w- c:\windows\system32\dllcache\rpcss.dll
2014-01-20 13:59 . 2004-08-03 22:56 283648 ----a-w- c:\windows\system32\dllcache\pdh.dll
2014-01-20 13:59 . 2004-08-03 22:56 218112 ----a-w- c:\windows\system32\dllcache\wmiprvse.exe
2014-01-20 13:59 . 2004-08-03 22:56 108032 ----a-w- c:\windows\system32\dllcache\services.exe
2014-01-20 13:59 . 2004-08-03 22:56 437248 ----a-w- c:\windows\system32\dllcache\wmiprvsd.dll
2014-01-20 13:59 . 2004-08-03 22:56 721920 ----a-w- c:\windows\system32\dllcache\lsasrv.dll
2014-01-20 13:59 . 2004-08-03 22:56 472064 ----a-w- c:\windows\system32\dllcache\fastprox.dll
2014-01-20 13:59 . 2004-08-03 22:56 616960 ----a-w- c:\windows\system32\dllcache\advapi32.dll
2014-01-20 13:59 . 2004-08-03 22:56 153088 ----a-w- c:\windows\system32\dllcache\triedit.dll
2014-01-20 13:58 . 2004-08-03 21:14 138496 ----a-w- c:\windows\system32\dllcache\afd.sys
2014-01-20 13:58 . 2004-08-03 21:15 107904 ----a-w- c:\windows\system32\dllcache\mup.sys
2014-01-20 13:58 . 2014-01-20 14:01 -------- d-----w- c:\windows\system32\MRT
2014-01-20 13:58 . 2001-08-23 12:00 200064 ----a-w- c:\windows\system32\dllcache\rmcast.sys
2014-01-20 13:58 . 2004-08-03 21:04 12672 ----a-w- c:\windows\system32\dllcache\usb8023x.sys
2014-01-20 13:58 . 2004-08-03 21:04 12672 ----a-w- c:\windows\system32\dllcache\usb8023.sys
2014-01-20 13:58 . 2004-08-03 22:56 331776 ----a-w- c:\windows\system32\dllcache\msadce.dll
2014-01-20 13:58 . 2004-08-03 21:10 78464 ----a-w- c:\windows\system32\dllcache\usbvideo.sys
2014-01-20 13:58 . 2004-08-03 21:08 40832 ----a-w- c:\windows\system32\dllcache\irbus.sys
2014-01-20 13:58 . 2004-08-03 21:07 59264 ----a-w- c:\windows\system32\dllcache\usbaudio.sys
2014-01-20 13:57 . 2004-08-03 22:56 536576 ----a-w- c:\windows\system32\dllcache\msado15.dll
2014-01-20 13:56 . 2004-08-03 22:56 3555328 ----a-w- c:\windows\system32\dllcache\moviemk.exe
2014-01-20 13:56 . 2004-08-03 23:01 139400 ----a-w- c:\windows\system32\dllcache\rdpwd.sys
2014-01-20 13:50 . 2004-08-03 22:56 708096 ----a-w- c:\windows\system32\dllcache\ntdll.dll
2014-01-20 13:50 . 2004-08-03 23:05 2015232 ----a-w- c:\windows\system32\dllcache\ntkrpamp.exe
2014-01-20 13:50 . 2004-08-03 21:20 2180992 ----a-w- c:\windows\system32\dllcache\ntoskrnl.exe
2014-01-20 13:50 . 2004-08-03 21:18 2148352 ----a-w- c:\windows\system32\dllcache\ntkrnlmp.exe
2014-01-20 13:50 . 2004-08-03 20:59 2056832 ----a-w- c:\windows\system32\dllcache\ntkrnlpa.exe
2014-01-20 13:49 . 2001-08-23 12:00 9600 ----a-w- c:\windows\system32\dllcache\ndistapi.sys
2014-01-20 13:49 . 2012-01-11 19:06 3072 -c----w- c:\windows\system32\dllcache\iacenc.dll
2014-01-20 13:49 . 2012-01-11 19:06 3072 ------w- c:\windows\system32\iacenc.dll
2014-01-20 13:49 . 2001-08-23 12:00 38016 ----a-w- c:\windows\system32\dllcache\ndproxy.sys
2014-01-20 13:49 . 2014-01-20 13:49 -------- d-----w- c:\documents and settings\LocalService\Local Settings\Application Data\Sun
2014-01-20 13:48 . 2004-08-03 22:56 46080 ----a-w- c:\windows\system32\dllcache\wab.exe
2014-01-20 13:48 . 2014-01-21 10:07 -------- d--h--w- c:\windows\$hf_mig$
2014-01-20 13:48 . 2004-08-03 22:56 385024 ----a-w- c:\windows\system32\dllcache\qdvd.dll
2014-01-20 13:47 . 2004-08-03 22:56 290816 ----a-w- c:\windows\system32\dllcache\winsrv.dll
2014-01-20 13:47 . 2013-11-06 01:03 7168 ----a-w- c:\windows\system32\xpsp4res.dll
2014-01-20 13:47 . 2004-08-03 22:56 214528 ----a-w- c:\windows\system32\dllcache\wordpad.exe
2014-01-20 13:28 . 2008-04-14 04:42 221184 ----a-w- c:\windows\system32\wmpns.dll
2014-01-20 13:24 . 2004-08-03 22:56 96768 ----a-w- c:\windows\system32\dllcache\dpcdll.dll
2014-01-20 13:24 . 2014-01-21 12:32 -------- d-----w- c:\windows\system32\scripting
2014-01-20 13:24 . 2014-01-21 12:32 -------- d-----w- c:\windows\system32\bits
2014-01-20 13:24 . 2014-01-21 12:32 -------- d-----w- c:\windows\l2schemas
2014-01-20 13:24 . 2014-01-20 13:24 -------- d-----w- c:\windows\system32\en
2014-01-20 13:19 . 2004-08-03 22:56 220672 ----a-w- c:\windows\system32\dllcache\logon.scr
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2014-01-28 11:00 . 2013-01-12 10:52 71048 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2014-01-28 11:00 . 2013-01-12 10:52 692616 ----a-w- c:\windows\system32\FlashPlayerApp.exe
.
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"LightShot"="c:\documents and settings\rane\Local Settings\Application Data\Skillbrains\lightshot\LightShot.exe" [2013-09-27 226592]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2000-01-01 141336]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2000-01-01 173592]
"Persistence"="c:\windows\system32\igfxpers.exe" [2000-01-01 142360]
"RTHDCPL"="RTHDCPL.EXE" [2000-01-01 20143688]
"ISUSPM Startup"="c:\progra~1\COMMON~1\INSTAL~1\UPDATE~1\ISUSPM.exe" [2005-02-16 221184]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2013-07-02 254336]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\explorer]
"NoDevMgrUpdate"= 0 (0x0)
"NoDFSTab"= 0 (0x0)
"NoEncryptOnMove"= 0 (0x0)
"NoResolveTrack"= 0 (0x0)
"NoStartMenuSubFolders"= 0 (0x0)
.
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer]
"NoDevMgrUpdate"= 0 (0x0)
"NoDFSTab"= 0 (0x0)
"NoEncryptOnMove"= 0 (0x0)
"NoResolveTrack"= 0 (0x0)
"NoStartMenuSubFolders"= 0 (0x0)
.
[HKEY_USERS\.default\software\microsoft\windows\currentversion\policies\explorer]
"DisableLocalMachineRun"= 0 (0x0)
"DisableLocalMachineRunOnce"= 0 (0x0)
"DisableCurrentUserRun"= 0 (0x0)
"DisableCurrentUserRunOnce"= 0 (0x0)
"NoFile"= 0 (0x0)
"HideClock"= 0 (0x0)
"NoDevMgrUpdate"= 0 (0x0)
"NoDFSTab"= 0 (0x0)
"NoEncryptOnMove"= 0 (0x0)
"NoResolveTrack"= 0 (0x0)
"NoStartMenuSubFolders"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon]
"UIHost"=hex(2):6c,6f,67,6f,6e,75,69,2e,65,78,65,00,00
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WRSVC
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ctfmon.exe]
2004-08-03 22:56 15360 ----a-w- c:\windows\system32\ctfmon.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ISUSPM Startup]
2005-02-16 17:15 221184 ----a-w- c:\progra~1\COMMON~1\INSTAL~1\UPDATE~1\ISUSPM.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ISUSScheduler]
2005-02-16 17:15 81920 ----a-w- c:\program files\Common Files\InstallShield\UpdateService\issch.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LightShot]
2013-09-27 12:40 226592 ----a-w- c:\documents and settings\rane\Local Settings\Application Data\Skillbrains\lightshot\LightShot.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RTHDCPL]
2000-01-01 00:00 20143688 ----a-w- c:\windows\RTHDCPL.EXE
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
2013-07-02 08:16 254336 ----a-w- c:\program files\Common Files\Java\Java Update\jusched.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center]
"AntivirusOverride"=dword:00000001
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\WINDOWS\\system32\\dpnsvr.exe"=
"c:\\WINDOWS\\system32\\dxdiag.exe"=
"c:\\Program Files\\Java\\jre7\\bin\\java.exe"=
"c:\\WINDOWS\\system32\\PnkBstrA.exe"=
"c:\\WINDOWS\\system32\\PnkBstrB.exe"=
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"1723:TCP"= 1723:TCP:@xpsp2res.dll,-22015
"1701:UDP"= 1701:UDP:@xpsp2res.dll,-22016
"500:UDP"= 500:UDP:@xpsp2res.dll,-22017
.
R0 sptd;sptd;\SystemRoot\\SystemRoot\System32\Drivers\sptd.sys --> \SystemRoot\\SystemRoot\System32\Drivers\sptd.sys [?]
R3 JMCF;JMCF;c:\windows\system32\drivers\jmcf.sys [7/17/2013 10:24 PM 68720]
S3 Ambfilt;Ambfilt;c:\windows\system32\drivers\Ambfilt.sys [1/12/2013 11:13 AM 1691480]
S3 cpuz135;cpuz135;c:\program files\CPUID\PC Wizard 2012\pcwiz_x32.sys [7/17/2013 9:35 PM 24880]
S3 massfilter;Mass Storage Filter Driver;c:\windows\system32\drivers\massfilter.sys --> c:\windows\system32\drivers\massfilter.sys [?]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\drivers\Rt86win7.sys [7/25/2012 7:27 PM 340072]
.
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2014-02-07 21:45 1211720 ----a-w- c:\program files\Google\Chrome\Application\32.0.1700.107\Installer\chrmstp.exe
.
Contents of the 'Scheduled Tasks' folder
.
2014-02-08 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2013-01-12 11:00]
.
2014-02-08 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2014-02-07 21:43]
.
2014-02-08 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2014-02-07 21:43]
.
.
------- Supplementary Scan -------
.
uStart Page = hxxp://www.google.com
IE: {{c95fe080-8f5d-11d2-a20b-00aa003c157a} - c:\windows\web\related.htm
TCP: DhcpNameServer = 192.168.1.1
FF - ProfilePath - c:\documents and settings\rane\Application Data\Mozilla\Firefox\Profiles\ve0e44qq.default\
FF - prefs.js: browser.startup.homepage -
www.google.com
FF - prefs.js: keyword.URL -
.
.
------- File Associations -------
.
JSEFile="%SystemRoot%\System32\WScript.exe" "%1" %*
.
- - - - ORPHANS REMOVED - - - -
.
Toolbar-10 - (no file)
ShellIconOverlayIdentifiers-{472083B0-C522-11CF-8763-00608CC02F24} - (no file)
Notify-dimsntfy - (no file)
MSConfigStartUp-SlimDrivers - c:\program files\SlimDrivers\SlimDrivers.exe
.
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer,
http://www.gmer.net
Rootkit scan 2014-02-08 12:16
Windows 5.1.2600 Service Pack 2 NTFS
.
scanning hidden processes ...
.
scanning hidden autostart entries ...
.
scanning hidden files ...
.
scan completed successfully
hidden files: 0
.
**************************************************************************
.
--------------------- LOCKED REGISTRY KEYS ---------------------
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\WINDOWS\\system32\\Macromed\\Flash\\FlashUtil32_11_9_900_170_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\WINDOWS\\system32\\Macromed\\Flash\\FlashUtil32_11_9_900_170_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
Completion time: 2014-02-08 12:17:46
ComboFix-quarantined-files.txt 2014-02-08 11:17
.
Pre-Run: 22,314,831,872 bytes free
Post-Run: 22,359,044,096 bytes free
.
WindowsXP-KB310994-SP2-Pro-BootDisk-ENU.exe
[boot loader]
timeout=2
default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS
[operating systems]
c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons
UnsupportedDebug="do not select this" /debug
multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Professional" /noexecute=optin /fastdetect
.
- - End Of File - - D60F16DBA4C2E78ADEDFEA32F563C764
8F558EB6672622401DA993E1E865C861
Markovic Nikola