Dzień dobry
czy mogę prosić o pomoc w zakresie wystąpienia błędu nengine.dll
postąpiłem wg zaleceń i oto co otrzymałem
otl.log
http://www.wklej.eu/index.php?id=801f43df79
extr.log
http://www.wklej.eu/index.php?id=6e58d512a0
gmer
http://www.wklej.eu/index.php?id=7f9d7f9d0e
z góry dziękuje za pomoc
Norbert
Problem RunDLL - nengine.dll
Regulamin forum
1. Każdy temat powinien odzwierciedlać treść wątku.
2. W przypadku wklejania logów; należy je wykonać od razu przynajmniej z dwóch narzędzi: FRST oraz z GMER
3. Wszelkie logi proszę publikować na przeznaczonych do tego stronach a w poście wklejać tylko link.
4. Nie wskazane jest skracanie logów, należy wkleić cały - od początku, do końca.
5. Nie wskazane jest podczepianie się do tematów innych użytkowników - proszę założyć nowy temat w dziale Bezpieczeństwo, ułatwi to pomoc sprawdzającemu.
6. Osoby nie posiadające odpowiedniej wiedzy, nie powinny sprawdzać logów, ponieważ grozi to poważnym uszkodzeniem systemu lub aplikacji zainstalowanych na komputerze.
7. Należy dokładnie opisać problem, występujące objawy oraz wszelkie podjęte działania.
8. Każdy skrypt jest unikatowy, napisany dla każdego przypadku z osobna, więc nie może być stosowany przez innych.
9. W przypadku zamieszczenia zrzutu ekranu (screenshot'a) proszę korzystać z zewnętrznego serwisu oferującego hosting zdjęć.
1. Każdy temat powinien odzwierciedlać treść wątku.
2. W przypadku wklejania logów; należy je wykonać od razu przynajmniej z dwóch narzędzi: FRST oraz z GMER
3. Wszelkie logi proszę publikować na przeznaczonych do tego stronach a w poście wklejać tylko link.
4. Nie wskazane jest skracanie logów, należy wkleić cały - od początku, do końca.
5. Nie wskazane jest podczepianie się do tematów innych użytkowników - proszę założyć nowy temat w dziale Bezpieczeństwo, ułatwi to pomoc sprawdzającemu.
6. Osoby nie posiadające odpowiedniej wiedzy, nie powinny sprawdzać logów, ponieważ grozi to poważnym uszkodzeniem systemu lub aplikacji zainstalowanych na komputerze.
7. Należy dokładnie opisać problem, występujące objawy oraz wszelkie podjęte działania.
8. Każdy skrypt jest unikatowy, napisany dla każdego przypadku z osobna, więc nie może być stosowany przez innych.
9. W przypadku zamieszczenia zrzutu ekranu (screenshot'a) proszę korzystać z zewnętrznego serwisu oferującego hosting zdjęć.
9 posty(ów)
• Strona 1 z 1
Problem RunDLL - nengine.dll
przez charhouli » 04 Maj 2015, 13:23
UA: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/42.0.2311.135 Safari/537.36
- charhouli
- Forumowicz
- Posty: 5
- Dołączenie: 04 Maj 2015, 13:20
- Sprzęt: toshiba
Re: Problem RunDLL - nengine.dll
przez mateo8898 » 04 Maj 2015, 16:13
UA: Mozilla/5.0 (Windows NT 6.2; WOW64; rv:36.0) Gecko/20100101 Firefox/36.0
Wydzielam.
Odinstaluj: Delta Chrome Toolbar, DealPly, PDF Creator Packages
Następnie podaj logi z FRST
otl-gmer-i-inne-poradnik-t13967-15.html#p164179
Odinstaluj: Delta Chrome Toolbar, DealPly, PDF Creator Packages
Następnie podaj logi z FRST
otl-gmer-i-inne-poradnik-t13967-15.html#p164179-
mateo8898 - Moderator
- Posty: 15377
- Dołączenie: 15 Maj 2009, 14:55
- Pochwały: 966
Re: Problem RunDLL - nengine.dll
przez charhouli » 05 Maj 2015, 21:57
UA: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/42.0.2311.135 Safari/537.36
załączam
FRST:
http://www.wklej.eu/index.php?id=84b1041366
ADDITION
http://www.wklej.eu/index.php?id=890efe3282
SHORTCUT
http://www.wklej.eu/index.php?id=8b0ee9134b
pzdr
NOrbert
FRST:
http://www.wklej.eu/index.php?id=84b1041366
ADDITION
http://www.wklej.eu/index.php?id=890efe3282
SHORTCUT
http://www.wklej.eu/index.php?id=8b0ee9134b
pzdr
NOrbert
- charhouli
- Forumowicz
- Posty: 5
- Dołączenie: 04 Maj 2015, 13:20
- Sprzęt: toshiba
Re: Problem RunDLL - nengine.dll
przez mateo8898 » 07 Maj 2015, 11:26
UA: Mozilla/5.0 (Windows NT 6.2; WOW64; rv:36.0) Gecko/20100101 Firefox/36.0
Wklej do notatnika:
Plik zapisujesz pod nazwą fixlist.txt i umieszczasz obok FRST. Uruchom FRST i kliknij w nim Fix. Powstanie plik fixlog.txt, który podajesz na forum.
Następnie podaj nowe logi z FRST.
Task: {4B7DC398-0397-4B3F-891E-03AF494B2BD7} - System32\Tasks\DealPly => C:\Users\Norbert\AppData\Roaming\DealPly\UPDATE~1\UPDATE~1.EXE <==== ATTENTION
Task: {697A2491-14D7-4B88-B023-5F100C3E6038} - System32\Tasks\DSite => C:\Users\Norbert\AppData\Roaming\DSite\UPDATE~1\UPDATE~1.EXE <==== ATTENTION
Task: {B24D8EFB-04F6-4593-A27E-FF57A035B884} - System32\Tasks\Digital Sites => C:\Users\Norbert\AppData\Roaming\DIGITA~1\UPDATE~1\UPDATE~1.EXE <==== ATTENTION
C:\Users\Norbert\AppData\Roaming\DIGITA~1
C:\Users\Norbert\AppData\Roaming\DSite
C:\Users\Norbert\AppData\Roaming\DealPly
Task: C:\Windows\Tasks\Digital Sites.job => C:\Users\Norbert\AppData\Roaming\DIGITA~1\UPDATE~1\UPDATE~1.EXE <==== ATTENTION
Task: C:\Windows\Tasks\DSite.job => C:\Users\Norbert\AppData\Roaming\DSite\UPDATE~1\UPDATE~1.EXE <==== ATTENTION
HKLM\...\Run: [00TCrdMain] => C:\Program Files\TOSHIBA\FlashCards\TCrdMain.exe [915320 2010-05-10] (TOSHIBA Corporation)
HKLM\...\Run: [Toshiba Registration] => C:\Program Files\Toshiba\Registration\ToshibaReminder.exe [136136 2010-04-19] (Toshiba Europe GmbH)
HKLM-x32\...\Run: [NBAgent] => c:\Program Files (x86)\Nero\Nero 10\Nero BackItUp\NBAgent.exe [1234216 2010-09-02] (Nero AG)
HKLM-x32\...\Run: [mobilegeni daemon] => C:\Program Files (x86)\Mobogenie\DaemonProcess.exe
C:\Program Files (x86)\Mobogenie
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard)
HKLM-x32\...\Run: [] => [X]
HKU\S-1-5-21-3790154479-1271345335-2488647480-1001\...\Run: [TOSHIBA Online Product Information] => C:\Program Files (x86)\TOSHIBA\TOSHIBA Online Product Information\topi.exe [4581280 2010-03-03] (TOSHIBA)
HKU\S-1-5-21-3790154479-1271345335-2488647480-1001\...\Run: [NextLive] => C:\Windows\SysWOW64\rundll32.exe "C:\Users\Norbert\AppData\Roaming\newnext.me\nengine.dll",EntryPoint -m l
C:\Users\Norbert\AppData\Roaming\newnext.me
HKU\S-1-5-21-3790154479-1271345335-2488647480-1001\...\Run: [OfficeSyncProcess] => "C:\Program Files\Microsoft Office\Office14\MSOSYNC.EXE"
HKU\S-1-5-18\...\Run: [TOSHIBA Online Product Information] => C:\Program Files (x86)\TOSHIBA\TOSHIBA Online Product Information\topi.exe [4581280 2010-03-03] (TOSHIBA)
Startup: C:\Users\Norbert\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Wysyłanie do programu OneNote.lnk [2015-05-04]
SearchScopes: HKLM
SearchScopes: HKLM
SearchScopes: HKU\S-1-5-21-3790154479-1271345335-2488647480-1001
SearchScopes: HKU\S-1-5-21-3790154479-1271345335-2488647480-1001
FF SearchPlugin: C:\Users\Norbert\AppData\Roaming\Mozilla\Firefox\Profiles\okd9fk1u.default\searchplugins\Startsear.xml [2013-04-23]
FF Extension: Real Summer Sale - C:\Users\Norbert\AppData\Roaming\Mozilla\Firefox\Profiles\okd9fk1u.default\Extensions\[email protected] [2013-08-20]
FF Extension: Boston MarketOne - C:\Users\Norbert\AppData\Roaming\Mozilla\Firefox\Profiles\okd9fk1u.default\Extensions\[email protected] [2013-08-20]
FF Extension: BargainJoy - C:\Users\Norbert\AppData\Roaming\Mozilla\Firefox\Profiles\okd9fk1u.default\Extensions\{74fa6b20-2ae6-4584-a4fd-4ac734f8d210} [2013-09-11]
StartMenuInternet: FIREFOX.EXE - C:\Program Files (x86)\Mozilla Firefox\firefox.exe http://start.qone8.com/?type=sc&ts=1383046959&from=cor&uid=TOSHIBAXTHNSNC128GMLJ_Y05S1070TAFZ1070TAFZ
CHR Extension: (vShare.tv plugin) - C:\Users\Norbert\AppData\Local\Google\Chrome\User Data\Default\Extensions\kpionmjnkbpcdpcflammlgllecmejgjj [2013-09-25]
CHR Extension: (LiveVDO.tv plugin) - C:\Users\Norbert\AppData\Local\Google\Chrome\User Data\Default\Extensions\pbiamblgmkgbcgbcgejjgebalncpmhnp [2013-09-25]
CHR HKU\S-1-5-21-3790154479-1271345335-2488647480-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [apdfllckaahabafndbhieahigkjlhalf] - C:\Users\Norbert\AppData\Local\Google\Drive\apdfllckaahabafndbhieahigkjlhalf_live.crx [Not Found]
CHR HKLM-x32\...\Chrome\Extension: [cekcjpgehmohobmdiikfnopibipmgnml] - C:\Users\Norbert\AppData\Local\Google\Chrome\User Data\Default\Extensions\ [Not Found]
CHR HKLM-x32\...\Chrome\Extension: [kpionmjnkbpcdpcflammlgllecmejgjj] - C:\Program Files (x86)\vSharetv plugin\vshareplg.crx [2012-10-26]
CHR HKLM-x32\...\Chrome\Extension: [pbiamblgmkgbcgbcgejjgebalncpmhnp] - C:\Program Files (x86)\LiveVDO plugin\livevdoplg.crx [2012-10-29]
S2 Sage ACT! Scheduler; "D:\act\Act.Scheduler.exe" [X]
S3 ewusbmbb; system32\DRIVERS\ewusbwwan.sys [X]
S3 ew_hwusbdev; system32\DRIVERS\ew_hwusbdev.sys [X]
S3 ew_usbenumfilter; system32\DRIVERS\ew_usbenumfilter.sys [X]
S3 huawei_cdcacm; system32\DRIVERS\ew_jucdcacm.sys [X]
S3 huawei_enumerator; system32\DRIVERS\ew_jubusenum.sys [X]
S3 huawei_ext_ctrl; system32\DRIVERS\ew_juextctrl.sys [X]
S3 huawei_wwanecm; system32\DRIVERS\ew_juwwanecm.sys [X]
S3 hwdatacard; system32\DRIVERS\ewusbmdm.sys [X]
2015-05-04 11:42 - 2015-05-04 11:42 - 00000000 ____D () C:\_OTL
2015-05-04 11:05 - 2015-05-04 11:05 - 03109248 _____ (Enigma Software Group USA, LLC.) C:\Users\Norbert\Downloads\SpyHunter-Installer (1).exe
2015-05-04 11:04 - 2015-05-04 11:04 - 03109248 _____ (Enigma Software Group USA, LLC.) C:\Users\Norbert\Downloads\SpyHunter-Installer.exe
EmptyTemp:
Plik zapisujesz pod nazwą fixlist.txt i umieszczasz obok FRST. Uruchom FRST i kliknij w nim Fix. Powstanie plik fixlog.txt, który podajesz na forum.
Następnie podaj nowe logi z FRST.
-
mateo8898 - Moderator
- Posty: 15377
- Dołączenie: 15 Maj 2009, 14:55
- Pochwały: 966
Re: Problem RunDLL - nengine.dll
przez charhouli » 07 Maj 2015, 11:40
UA: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/42.0.2311.135 Safari/537.36
- Kod: Zaznacz wszystko
Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 06-05-2015 01
Ran by Norbert at 2015-05-07 11:36:31 Run:1
Running from C:\Users\Norbert\Downloads
Loaded Profiles: Norbert (Available profiles: Norbert)
Boot Mode: Normal
==============================================
Content of fixlist:
*****************
Task: {4B7DC398-0397-4B3F-891E-03AF494B2BD7} - System32\Tasks\DealPly => C:\Users\Norbert\AppData\Roaming\DealPly\UPDATE~1\UPDATE~1.EXE <==== ATTENTION
Task: {697A2491-14D7-4B88-B023-5F100C3E6038} - System32\Tasks\DSite => C:\Users\Norbert\AppData\Roaming\DSite\UPDATE~1\UPDATE~1.EXE <==== ATTENTION
Task: {B24D8EFB-04F6-4593-A27E-FF57A035B884} - System32\Tasks\Digital Sites => C:\Users\Norbert\AppData\Roaming\DIGITA~1\UPDATE~1\UPDATE~1.EXE <==== ATTENTION
C:\Users\Norbert\AppData\Roaming\DIGITA~1
C:\Users\Norbert\AppData\Roaming\DSite
C:\Users\Norbert\AppData\Roaming\DealPly
Task: C:\Windows\Tasks\Digital Sites.job => C:\Users\Norbert\AppData\Roaming\DIGITA~1\UPDATE~1\UPDATE~1.EXE <==== ATTENTION
Task: C:\Windows\Tasks\DSite.job => C:\Users\Norbert\AppData\Roaming\DSite\UPDATE~1\UPDATE~1.EXE <==== ATTENTION
HKLM\...\Run: [00TCrdMain] => C:\Program Files\TOSHIBA\FlashCards\TCrdMain.exe [915320 2010-05-10] (TOSHIBA Corporation)
HKLM\...\Run: [Toshiba Registration] => C:\Program Files\Toshiba\Registration\ToshibaReminder.exe [136136 2010-04-19] (Toshiba Europe GmbH)
HKLM-x32\...\Run: [NBAgent] => c:\Program Files (x86)\Nero\Nero 10\Nero BackItUp\NBAgent.exe [1234216 2010-09-02] (Nero AG)
HKLM-x32\...\Run: [mobilegeni daemon] => C:\Program Files (x86)\Mobogenie\DaemonProcess.exe
C:\Program Files (x86)\Mobogenie
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard)
HKLM-x32\...\Run: [] => [X]
HKU\S-1-5-21-3790154479-1271345335-2488647480-1001\...\Run: [TOSHIBA Online Product Information] => C:\Program Files (x86)\TOSHIBA\TOSHIBA Online Product Information\topi.exe [4581280 2010-03-03] (TOSHIBA)
HKU\S-1-5-21-3790154479-1271345335-2488647480-1001\...\Run: [NextLive] => C:\Windows\SysWOW64\rundll32.exe "C:\Users\Norbert\AppData\Roaming\newnext.me\nengine.dll",EntryPoint -m l
C:\Users\Norbert\AppData\Roaming\newnext.me
HKU\S-1-5-21-3790154479-1271345335-2488647480-1001\...\Run: [OfficeSyncProcess] => "C:\Program Files\Microsoft Office\Office14\MSOSYNC.EXE"
HKU\S-1-5-18\...\Run: [TOSHIBA Online Product Information] => C:\Program Files (x86)\TOSHIBA\TOSHIBA Online Product Information\topi.exe [4581280 2010-03-03] (TOSHIBA)
Startup: C:\Users\Norbert\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Wysyłanie do programu OneNote.lnk [2015-05-04]
SearchScopes: HKLM -> DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = http://start.qone8.com/web/?type=ds&ts=1383046963&from=cor&uid=TOSHIBAXTHNSNC128GMLJ_Y05S1070TAFZ1070TAFZ&q={searchTerms}
SearchScopes: HKLM -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = http://start.qone8.com/web/?type=ds&ts=1383046963&from=cor&uid=TOSHIBAXTHNSNC128GMLJ_Y05S1070TAFZ1070TAFZ&q={searchTerms}
SearchScopes: HKU\S-1-5-21-3790154479-1271345335-2488647480-1001 -> {DF3B07C2-E76F-44E5-B54D-2CCEEF49BD27} URL = http://www.amazon.co.uk/gp/search?ie=UTF8&keywords={searchTerms}&tag=tochibauk-win7-ie-search-21&index=blended&linkCode=ur2
SearchScopes: HKU\S-1-5-21-3790154479-1271345335-2488647480-1001 -> {F52D5EFE-E3F7-468A-9FAA-EE2FA16F5B87} URL = http://startsear.ch/?src=sp&aff=51&cf=54903296-ac4d-11e2-89aa-028037ec0200&q={searchTerms}
FF SearchPlugin: C:\Users\Norbert\AppData\Roaming\Mozilla\Firefox\Profiles\okd9fk1u.default\searchplugins\Startsear.xml [2013-04-23]
FF Extension: Real Summer Sale - C:\Users\Norbert\AppData\Roaming\Mozilla\Firefox\Profiles\okd9fk1u.default\Extensions\[email protected] [2013-08-20]
FF Extension: Boston MarketOne - C:\Users\Norbert\AppData\Roaming\Mozilla\Firefox\Profiles\okd9fk1u.default\Extensions\[email protected] [2013-08-20]
FF Extension: BargainJoy - C:\Users\Norbert\AppData\Roaming\Mozilla\Firefox\Profiles\okd9fk1u.default\Extensions\{74fa6b20-2ae6-4584-a4fd-4ac734f8d210} [2013-09-11]
StartMenuInternet: FIREFOX.EXE - C:\Program Files (x86)\Mozilla Firefox\firefox.exe http://start.qone8.com/?type=sc&ts=1383046959&from=cor&uid=TOSHIBAXTHNSNC128GMLJ_Y05S1070TAFZ1070TAFZ
CHR Extension: (vShare.tv plugin) - C:\Users\Norbert\AppData\Local\Google\Chrome\User Data\Default\Extensions\kpionmjnkbpcdpcflammlgllecmejgjj [2013-09-25]
CHR Extension: (LiveVDO.tv plugin) - C:\Users\Norbert\AppData\Local\Google\Chrome\User Data\Default\Extensions\pbiamblgmkgbcgbcgejjgebalncpmhnp [2013-09-25]
CHR HKU\S-1-5-21-3790154479-1271345335-2488647480-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [apdfllckaahabafndbhieahigkjlhalf] - C:\Users\Norbert\AppData\Local\Google\Drive\apdfllckaahabafndbhieahigkjlhalf_live.crx [Not Found]
CHR HKLM-x32\...\Chrome\Extension: [cekcjpgehmohobmdiikfnopibipmgnml] - C:\Users\Norbert\AppData\Local\Google\Chrome\User Data\Default\Extensions\ [Not Found]
CHR HKLM-x32\...\Chrome\Extension: [kpionmjnkbpcdpcflammlgllecmejgjj] - C:\Program Files (x86)\vSharetv plugin\vshareplg.crx [2012-10-26]
CHR HKLM-x32\...\Chrome\Extension: [pbiamblgmkgbcgbcgejjgebalncpmhnp] - C:\Program Files (x86)\LiveVDO plugin\livevdoplg.crx [2012-10-29]
S2 Sage ACT! Scheduler; "D:\act\Act.Scheduler.exe" [X]
S3 ewusbmbb; system32\DRIVERS\ewusbwwan.sys [X]
S3 ew_hwusbdev; system32\DRIVERS\ew_hwusbdev.sys [X]
S3 ew_usbenumfilter; system32\DRIVERS\ew_usbenumfilter.sys [X]
S3 huawei_cdcacm; system32\DRIVERS\ew_jucdcacm.sys [X]
S3 huawei_enumerator; system32\DRIVERS\ew_jubusenum.sys [X]
S3 huawei_ext_ctrl; system32\DRIVERS\ew_juextctrl.sys [X]
S3 huawei_wwanecm; system32\DRIVERS\ew_juwwanecm.sys [X]
S3 hwdatacard; system32\DRIVERS\ewusbmdm.sys [X]
2015-05-04 11:42 - 2015-05-04 11:42 - 00000000 ____D () C:\_OTL
2015-05-04 11:05 - 2015-05-04 11:05 - 03109248 _____ (Enigma Software Group USA, LLC.) C:\Users\Norbert\Downloads\SpyHunter-Installer (1).exe
2015-05-04 11:04 - 2015-05-04 11:04 - 03109248 _____ (Enigma Software Group USA, LLC.) C:\Users\Norbert\Downloads\SpyHunter-Installer.exe
EmptyTemp:
*****************
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{4B7DC398-0397-4B3F-891E-03AF494B2BD7}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{4B7DC398-0397-4B3F-891E-03AF494B2BD7}" => Key deleted successfully.
C:\Windows\System32\Tasks\DealPly => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\DealPly" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{697A2491-14D7-4B88-B023-5F100C3E6038}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{697A2491-14D7-4B88-B023-5F100C3E6038}" => Key deleted successfully.
C:\Windows\System32\Tasks\DSite => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\DSite" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{B24D8EFB-04F6-4593-A27E-FF57A035B884}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{B24D8EFB-04F6-4593-A27E-FF57A035B884}" => Key deleted successfully.
C:\Windows\System32\Tasks\Digital Sites => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Digital Sites" => Key deleted successfully.
C:\Users\Norbert\AppData\Roaming\DIGITA~1 => Moved successfully.
C:\Users\Norbert\AppData\Roaming\DSite => Moved successfully.
C:\Users\Norbert\AppData\Roaming\DealPly => Moved successfully.
C:\Windows\Tasks\Digital Sites.job => Moved successfully.
C:\Windows\Tasks\DSite.job => Moved successfully.
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\00TCrdMain => value deleted successfully.
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\Toshiba Registration => value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\NBAgent => value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\mobilegeni daemon => value deleted successfully.
"C:\Program Files (x86)\Mobogenie" => File/Directory not found.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\HP Software Update => value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\ => value deleted successfully.
HKU\S-1-5-21-3790154479-1271345335-2488647480-1001\Software\Microsoft\Windows\CurrentVersion\Run\\TOSHIBA Online Product Information => value deleted successfully.
HKU\S-1-5-21-3790154479-1271345335-2488647480-1001\Software\Microsoft\Windows\CurrentVersion\Run\\NextLive => value deleted successfully.
"C:\Users\Norbert\AppData\Roaming\newnext.me" => File/Directory not found.
HKU\S-1-5-21-3790154479-1271345335-2488647480-1001\Software\Microsoft\Windows\CurrentVersion\Run\\OfficeSyncProcess => value deleted successfully.
HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Run\\TOSHIBA Online Product Information => value deleted successfully.
C:\Users\Norbert\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Wysyłanie do programu OneNote.lnk => Moved successfully.
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => Value was restored successfully.
"HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}" => Key deleted successfully.
HKCR\CLSID\{33BB0A4E-99AF-4226-BDF6-49120163DE86} => Key not found.
"HKU\S-1-5-21-3790154479-1271345335-2488647480-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{DF3B07C2-E76F-44E5-B54D-2CCEEF49BD27}" => Key deleted successfully.
HKCR\CLSID\{DF3B07C2-E76F-44E5-B54D-2CCEEF49BD27} => Key not found.
"HKU\S-1-5-21-3790154479-1271345335-2488647480-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{F52D5EFE-E3F7-468A-9FAA-EE2FA16F5B87}" => Key deleted successfully.
HKCR\CLSID\{F52D5EFE-E3F7-468A-9FAA-EE2FA16F5B87} => Key not found.
C:\Users\Norbert\AppData\Roaming\Mozilla\Firefox\Profiles\okd9fk1u.default\searchplugins\Startsear.xml => Moved successfully.
C:\Users\Norbert\AppData\Roaming\Mozilla\Firefox\Profiles\okd9fk1u.default\Extensions\[email protected] => Moved successfully.
C:\Users\Norbert\AppData\Roaming\Mozilla\Firefox\Profiles\okd9fk1u.default\Extensions\[email protected] => Moved successfully.
C:\Users\Norbert\AppData\Roaming\Mozilla\Firefox\Profiles\okd9fk1u.default\Extensions\{74fa6b20-2ae6-4584-a4fd-4ac734f8d210} => Moved successfully.
HKLM\SOFTWARE\Clients\StartMenuInternet\FIREFOX.EXE\shell\open\command\\Default => Value was restored successfully.
C:\Users\Norbert\AppData\Local\Google\Chrome\User Data\Default\Extensions\kpionmjnkbpcdpcflammlgllecmejgjj => Moved successfully.
C:\Users\Norbert\AppData\Local\Google\Chrome\User Data\Default\Extensions\pbiamblgmkgbcgbcgejjgebalncpmhnp => Moved successfully.
"HKU\S-1-5-21-3790154479-1271345335-2488647480-1001\SOFTWARE\Google\Chrome\Extensions\apdfllckaahabafndbhieahigkjlhalf" => Key deleted successfully.
"HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\cekcjpgehmohobmdiikfnopibipmgnml" => Key deleted successfully.
"HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\kpionmjnkbpcdpcflammlgllecmejgjj" => Key deleted successfully.
C:\Program Files (x86)\vSharetv plugin\vshareplg.crx => Moved successfully.
"HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\pbiamblgmkgbcgbcgejjgebalncpmhnp" => Key deleted successfully.
C:\Program Files (x86)\LiveVDO plugin\livevdoplg.crx => Moved successfully.
Sage ACT! Scheduler => Service deleted successfully.
ewusbmbb => Service deleted successfully.
ew_hwusbdev => Service deleted successfully.
ew_usbenumfilter => Service deleted successfully.
huawei_cdcacm => Service deleted successfully.
huawei_enumerator => Service deleted successfully.
huawei_ext_ctrl => Service deleted successfully.
huawei_wwanecm => Service deleted successfully.
hwdatacard => Service deleted successfully.
C:\_OTL => Moved successfully.
C:\Users\Norbert\Downloads\SpyHunter-Installer (1).exe => Moved successfully.
C:\Users\Norbert\Downloads\SpyHunter-Installer.exe => Moved successfully.
EmptyTemp: => Removed 1 GB temporary data.
The system needed a reboot.
==== End of Fixlog 11:36:46 ====
- charhouli
- Forumowicz
- Posty: 5
- Dołączenie: 04 Maj 2015, 13:20
- Sprzęt: toshiba
Re: Problem RunDLL - nengine.dll
przez charhouli » 07 Maj 2015, 11:46
UA: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/42.0.2311.135 Safari/537.36
a tu wygenerowane logi
frst
http://www.wklej.eu/index.php?id=dcfb50fe7d
addition
http://www.wklej.eu/index.php?id=44f3488777
shortcut
http://www.wklej.eu/index.php?id=0dd956287d
frst
http://www.wklej.eu/index.php?id=dcfb50fe7d
addition
http://www.wklej.eu/index.php?id=44f3488777
shortcut
http://www.wklej.eu/index.php?id=0dd956287d
- charhouli
- Forumowicz
- Posty: 5
- Dołączenie: 04 Maj 2015, 13:20
- Sprzęt: toshiba
Re: Problem RunDLL - nengine.dll
przez mateo8898 » 07 Maj 2015, 12:29
UA: Mozilla/5.0 (Windows NT 6.2; WOW64; rv:36.0) Gecko/20100101 Firefox/36.0
Wklej do notatnika:
Plik zapisujesz pod nazwą fixlist.txt i umieszczasz obok FRST. Uruchom FRST i kliknij w nim Fix
Przeczyść dysk oraz rejestr CCleaner (zakładka Cleaner i Rejestr)
Zainstaluj http://www.instalki.pl/programy/downloa ... hecky.html
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npfflivevdoplg.dll [2012-10-29] (LiveVDO.tv)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npffvsharetvplg.dll [2012-10-26] (vShare.tv)
FF Extension: InfoBird Pro - C:\Users\Norbert\AppData\Roaming\Mozilla\Firefox\Profiles\okd9fk1u.default\Extensions\[email protected] [2013-08-20]
FF Extension: No Name - C:\Users\Norbert\AppData\Roaming\Mozilla\Firefox\Profiles\okd9fk1u.default\extensions\[email protected] [Not Found]
FF Extension: No Name - C:\Users\Norbert\AppData\Roaming\Mozilla\Firefox\Profiles\okd9fk1u.default\extensions\[email protected] [Not Found]
2015-05-07 11:36 - 2013-04-23 21:40 - 00000000 ____D () C:\Program Files (x86)\LiveVDO plugin
2015-05-07 11:36 - 2013-04-23 21:38 - 00000000 ____D () C:\Program Files (x86)\vSharetv plugin
DeleteQuarantine:
Plik zapisujesz pod nazwą fixlist.txt i umieszczasz obok FRST. Uruchom FRST i kliknij w nim Fix
Przeczyść dysk oraz rejestr CCleaner (zakładka Cleaner i Rejestr)
Zainstaluj
http://www.instalki.pl/programy/downloa ... hecky.html-
mateo8898 - Moderator
- Posty: 15377
- Dołączenie: 15 Maj 2009, 14:55
- Pochwały: 966
Re: Problem RunDLL - nengine.dll
przez charhouli » 07 Maj 2015, 13:26
UA: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/42.0.2311.135 Safari/537.36
zrobione
komunikat o błędzie już się nie pojawia.
Czy to znaczy że pacjent przeżył?
N
komunikat o błędzie już się nie pojawia.
Czy to znaczy że pacjent przeżył?
N
- charhouli
- Forumowicz
- Posty: 5
- Dołączenie: 04 Maj 2015, 13:20
- Sprzęt: toshiba
Re: Problem RunDLL - nengine.dll
przez mateo8898 » 08 Maj 2015, 20:03
UA: Mozilla/5.0 (Windows NT 6.2; WOW64; rv:37.0) Gecko/20100101 Firefox/37.0
Tak 
-
mateo8898 - Moderator
- Posty: 15377
- Dołączenie: 15 Maj 2009, 14:55
- Pochwały: 966
9 posty(ów)
• Strona 1 z 1
Kto jest na forum
Zarejestrowani użytkownicy: Bing [Bot]