MyCity » Ambulanta -> Arhiva Ambulante » Provera, usporen rad

Provera, usporen rad

Napisano na dan: 30.11.2012

Provera, usporen rad

Sledeća strana

Pagination

Odgovori

Nikolavla Poslao: 30 Nov 2012 16:50 Idi na vrh
offline Nikolavla Građanin Pridružio: 23 Mar 2008 Poruke: 68	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Uloguj se preko Facebooka da bi skinuo fajl: Pozdrav, Imam problem sa laptop vec neko vreme. Desava se da blokira na nekoliko sekundi a zatim odblokira i nastavi sa radom. Cesto radi sporo. Cini mi se i da sporo podize system posle restarta. Takodje, u google chrome-u, kada hocu da promenim tab, skoro uvek mu treba 1s-2s. Kada imam pokrenuta nekoliko programa kao npr. browser, Visual Studio i Total Commander, i ne maximizujem total commander neko vreme a zatim pokusam, treba mu neko vreme da ga prikaze, kao da ga izbaci iz memorije i ponovo vraca sto ne bi trebalo da radi s obzirom da imam 4GB RAM-a a ta 3 programa ne mogu da zauzmu toliko. Imam free antivirus Aviru. Skenirao sam ceo HDD juce i nasao je nekoliko detectiona ali i dalje radi lose. Koristim Windows 7 64-bit i raspolazem sa internet konekcijom DL/UL = 20Mbps/1Mbps OTL Log: OTL logfile created on: 11/30/2012 4:39:24 PM - Run 1 OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Freezing\Desktop 64bit- Enterprise Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation Internet Explorer (Version = 9.0.8112.16421) Locale: 00000409 \| Country: United States \| Language: ENU \| Date Format: M/d/yyyy 3.94 Gb Total Physical Memory \| 1.64 Gb Available Physical Memory \| 41.74% Memory free 7.87 Gb Paging File \| 4.06 Gb Available in Paging File \| 51.54% Paging File free Paging file location(s): ?:\pagefile.sys [binary data] %SystemDrive% = C: \| %SystemRoot% = C:\Windows \| %ProgramFiles% = C:\Program Files (x86) Drive C: \| 97.56 Gb Total Space \| 11.57 Gb Free Space \| 11.86% Space Free \| Partition Type: NTFS Drive D: \| 234.37 Gb Total Space \| 56.51 Gb Free Space \| 24.11% Space Free \| Partition Type: NTFS Drive E: \| 264.14 Gb Total Space \| 260.32 Gb Free Space \| 98.55% Space Free \| Partition Type: NTFS Unable to calculate disk information. Computer Name: FREEZING-PC \| User Name: Freezing \| Logged in as Administrator. Boot Mode: Normal \| Scan Mode: Current user \| Include 64bit Scans Company Name Whitelist: Off \| Skip Microsoft Files: Off \| No Company Name Whitelist: On \| File Age = 30 Days ========== Processes (SafeList) ========== PRC - [2012/11/30 16:37:30 \| 000,602,112 \| ---- \| M] (OldTimer Tools) -- C:\Users\Freezing\Desktop\OTL.exe PRC - [2012/07/18 17:05:01 \| 000,086,224 \| ---- \| M] (Avira Operations GmbH & Co. KG) -- C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe PRC - [2012/07/18 17:04:50 \| 000,348,664 \| ---- \| M] (Avira Operations GmbH & Co. KG) -- C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe PRC - [2012/07/18 17:04:50 \| 000,110,032 \| ---- \| M] (Avira Operations GmbH & Co. KG) -- C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe PRC - [2011/10/13 14:54:54 \| 000,049,664 \| ---- \| M] (Advanced Micro Devices, Inc.) -- c:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MMLoadDrvPXDiscrete.exe PRC - [2011/09/01 16:06:50 \| 000,227,896 \| ---- \| M] (Hewlett-Packard Company) -- C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe PRC - [2011/07/26 17:23:20 \| 000,397,992 \| ---- \| M] (Ask) -- C:\Program Files (x86)\Ask.com\Updater\Updater.exe PRC - [2011/04/14 17:17:18 \| 000,113,288 \| ---- \| M] (Renesas Electronics Corporation) -- C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe PRC - [2011/03/16 10:26:42 \| 000,070,256 \| ---- \| M] (Portrait Displays, Inc) -- C:\Program Files (x86)\Common Files\Portrait Displays\Drivers\SDKCOMServer.exe PRC - [2011/03/16 10:26:40 \| 000,113,264 \| ---- \| M] (Portrait Displays, Inc.) -- C:\Program Files (x86)\Common Files\Portrait Displays\Drivers\pdisrvc.exe PRC - [2011/01/26 08:00:32 \| 000,283,160 \| ---- \| M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe PRC - [2011/01/26 08:00:00 \| 000,013,336 \| ---- \| M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe PRC - [2011/01/17 09:42:04 \| 002,656,280 \| ---- \| M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe PRC - [2011/01/17 09:42:02 \| 000,326,168 \| ---- \| M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe PRC - [2007/01/01 22:22:02 \| 003,739,648 \| ---- \| M] (Google) -- C:\Program Files (x86)\Google\Google Talk\googletalk.exe ========== Modules (No Company Name) ========== MOD - [2012/11/14 03:10:59 \| 000,460,904 \| ---- \| M] () -- C:\Users\Freezing\AppData\Local\Google\Chrome\Application\23.0.1271.91\ppgooglenaclpluginchrome.dll MOD - [2012/11/14 03:10:58 \| 012,456,040 \| ---- \| M] () -- C:\Users\Freezing\AppData\Local\Google\Chrome\Application\23.0.1271.91\PepperFlash\pepflashplayer.dll MOD - [2012/11/14 03:10:57 \| 004,008,040 \| ---- \| M] () -- C:\Users\Freezing\AppData\Local\Google\Chrome\Application\23.0.1271.91\pdf.dll MOD - [2012/11/14 03:10:12 \| 000,587,880 \| ---- \| M] () -- C:\Users\Freezing\AppData\Local\Google\Chrome\Application\23.0.1271.91\libglesv2.dll MOD - [2012/11/14 03:10:11 \| 000,124,520 \| ---- \| M] () -- C:\Users\Freezing\AppData\Local\Google\Chrome\Application\23.0.1271.91\libegl.dll MOD - [2012/11/14 03:10:04 \| 000,157,304 \| ---- \| M] () -- C:\Users\Freezing\AppData\Local\Google\Chrome\Application\23.0.1271.91\avutil-51.dll MOD - [2012/11/14 03:10:03 \| 000,275,576 \| ---- \| M] () -- C:\Users\Freezing\AppData\Local\Google\Chrome\Application\23.0.1271.91\avformat-54.dll MOD - [2012/11/14 03:10:02 \| 002,168,952 \| ---- \| M] () -- C:\Users\Freezing\AppData\Local\Google\Chrome\Application\23.0.1271.91\avcodec-54.dll MOD - [2012/10/08 18:42:58 \| 000,070,536 \| ---- \| M] () -- C:\Program Files\TortoiseSVN\bin\libsasl32.dll MOD - [2012/05/31 13:59:45 \| 000,475,648 \| ---- \| M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\IAStorUtil\741f032e98c1f5fc85e87dc68ded6e88\IAStorUtil.ni.dll MOD - [2012/05/31 13:59:45 \| 000,014,336 \| ---- \| M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\IAStorCommon\b81e3e084d74df5d723dd33d6b9a2dff\IAStorCommon.ni.dll MOD - [2012/05/31 13:20:13 \| 000,771,584 \| ---- \| M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Remo#\03dee80574f4ec770b6f77ca030ded6c\System.Runtime.Remoting.ni.dll MOD - [2012/05/31 13:19:33 \| 012,433,408 \| ---- \| M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\90555968565afd59bce4b0974e9903bd\System.Windows.Forms.ni.dll MOD - [2012/05/31 13:19:23 \| 001,590,784 \| ---- \| M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\69f6e582cb79f107c61308b468c1a215\System.Drawing.ni.dll MOD - [2012/05/31 13:19:04 \| 003,347,968 \| ---- \| M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\46fce56db7685a586d3eeb7c373e3c1c\WindowsBase.ni.dll MOD - [2012/05/31 13:18:52 \| 005,452,800 \| ---- \| M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\ba3d70b651454c7d49b407b93663bfed\System.Xml.ni.dll MOD - [2012/05/31 13:18:45 \| 000,971,264 \| ---- \| M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\cfa9c506bfb9254c89dace7b83bc9f9d\System.Configuration.ni.dll MOD - [2012/05/31 13:18:43 \| 007,967,232 \| ---- \| M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System\ce9ff6baf9053ed2ed673d948179195c\System.ni.dll MOD - [2012/05/31 13:18:30 \| 011,492,864 \| ---- \| M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\acfc1391e45fedd2a359778ea57d914c\mscorlib.ni.dll MOD - [2011/03/16 23:11:16 \| 004,297,568 \| ---- \| M] () -- C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\Cultures\OFFICE.ODF MOD - [2010/10/20 14:45:26 \| 008,801,120 \| ---- \| M] () -- C:\Program Files (x86)\Microsoft Office\Office14\1033\GrooveIntlResource.dll ========== Services (SafeList) ========== SRV:64bit: - [2011/10/13 14:30:44 \| 000,204,288 \| ---- \| M] (AMD) [Auto \| Running] -- C:\Windows\SysNative\atiesrxx.exe -- (AMD External Events Utility) SRV:64bit: - [2011/09/12 16:08:46 \| 000,142,904 \| ---- \| M] (Hewlett-Packard Company) [Auto \| Running] -- C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Service.exe -- (HP Power Assistant Service) SRV:64bit: - [2011/09/08 04:42:28 \| 000,305,152 \| ---- \| M] (IDT, Inc.) [Auto \| Stopped] -- C:\Program Files\IDT\WDM\stacsv64.exe -- (STacSV) SRV:64bit: - [2011/05/13 17:58:10 \| 000,030,520 \| ---- \| M] (Hewlett-Packard Company) [Auto \| Running] -- C:\Windows\SysNative\hpservice.exe -- (hpsrv) SRV:64bit: - [2009/07/14 02:41:27 \| 001,011,712 \| ---- \| M] (Microsoft Corporation) [On_Demand \| Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend) SRV:64bit: - [2009/07/14 02:40:01 \| 000,193,536 \| ---- \| M] (Microsoft Corporation) [On_Demand \| Stopped] -- C:\Windows\SysNative\appmgmts.dll -- (AppMgmt) SRV:64bit: - [2009/03/03 01:42:58 \| 000,089,600 \| ---- \| M] (Andrea Electronics Corporation) [Auto \| Running] -- C:\Program Files\IDT\WDM\AESTSr64.exe -- (AESTFilters) SRV - [2012/11/09 11:21:24 \| 000,160,944 \| R--- \| M] (Skype Technologies) [Auto \| Stopped] -- C:\Program Files (x86)\Skype\Updater\Updater.exe -- (SkypeUpdate) SRV - [2012/10/02 12:13:44 \| 003,064,000 \| ---- \| M] (Skype Technologies S.A.) [On_Demand \| Stopped] -- C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe -- (Skype C2C Service) SRV - [2012/09/22 19:01:32 \| 000,114,144 \| ---- \| M] (Mozilla Foundation) [On_Demand \| Stopped] -- C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance) SRV - [2012/08/18 11:38:26 \| 000,022,016 \| ---- \| M] (Apache Software Foundation) [On_Demand \| Stopped] -- C:\xampp\apache\bin\httpd.exe -- (Apache2.4) SRV - [2012/07/27 21:51:26 \| 000,063,960 \| ---- \| M] (Adobe Systems Incorporated) [Disabled \| Stopped] -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice) SRV - [2012/07/20 19:08:04 \| 008,186,368 \| ---- \| M] () [On_Demand \| Stopped] -- c:\xampp\mysql\bin\mysqld.exe -- (mysql) SRV - [2012/07/18 17:05:01 \| 000,086,224 \| ---- \| M] (Avira Operations GmbH & Co. KG) [Auto \| Running] -- C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe -- (AntiVirSchedulerService) SRV - [2012/07/18 17:04:50 \| 000,110,032 \| ---- \| M] (Avira Operations GmbH & Co. KG) [Auto \| Running] -- C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe -- (AntiVirService) SRV - [2011/12/09 13:39:52 \| 000,135,584 \| ---- \| M] (Futuremark Corporation) [On_Demand \| Stopped] -- C:\Program Files (x86)\Futuremark\Futuremark SystemInfo\FMSISvc.exe -- (Futuremark SystemInfo Service) SRV - [2011/09/23 17:37:42 \| 000,641,832 \| ---- \| M] (Nero AG) [On_Demand \| Stopped] -- C:\Program Files (x86)\Nero\Update\NASvc.exe -- (NAUpdate) SRV - [2011/09/01 16:06:50 \| 000,227,896 \| ---- \| M] (Hewlett-Packard Company) [Auto \| Running] -- C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe -- (HPDrvMntSvc.exe) SRV - [2011/03/16 10:26:40 \| 000,113,264 \| ---- \| M] (Portrait Displays, Inc.) [Auto \| Running] -- C:\Program Files (x86)\Common Files\Portrait Displays\Drivers\pdisrvc.exe -- (PdiService) SRV - [2011/03/16 09:42:06 \| 000,407,336 \| ---- \| M] (Valve Corporation) [On_Demand \| Stopped] -- C:\Program Files (x86)\Common Files\Steam\SteamService.exe -- (Steam Client Service) SRV - [2011/01/26 08:00:00 \| 000,013,336 \| ---- \| M] (Intel Corporation) [Auto \| Running] -- C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe -- (IAStorDataMgrSvc) SRV - [2011/01/17 09:42:04 \| 002,656,280 \| ---- \| M] (Intel Corporation) [Auto \| Running] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe -- (UNS) SRV - [2011/01/17 09:42:02 \| 000,326,168 \| ---- \| M] (Intel Corporation) [Auto \| Running] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe -- (LMS) SRV - [2010/06/25 18:07:20 \| 000,117,264 \| ---- \| M] (CACE Technologies, Inc.) [On_Demand \| Stopped] -- C:\Program Files (x86)\WinPcap\rpcapd.exe -- (rpcapd) SRV - [2010/03/18 21:16:28 \| 000,130,384 \| ---- \| M] (Microsoft Corporation) [Auto \| Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32) SRV - [2010/02/19 12:37:14 \| 000,517,096 \| ---- \| M] (Adobe Systems Incorporated) [On_Demand \| Stopped] -- C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe -- (SwitchBoard) SRV - [2009/06/10 22:23:09 \| 000,066,384 \| ---- \| M] (Microsoft Corporation) [Disabled \| Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32) ========== Driver Services (SafeList) ========== DRV:64bit: - [2012/09/13 06:13:42 \| 000,131,416 \| ---- \| M] (Oracle Corporation) [Kernel \| On_Demand \| Stopped] -- C:\Windows\SysNative\drivers\VBoxNetAdp.sys -- (VBoxNetAdp) DRV:64bit: - [2012/07/18 17:05:10 \| 000,132,832 \| ---- \| M] (Avira GmbH) [Kernel \| System \| Running] -- C:\Windows\SysNative\drivers\avipbb.sys -- (avipbb) DRV:64bit: - [2012/07/18 17:05:10 \| 000,098,848 \| ---- \| M] (Avira GmbH) [File_System \| Auto \| Running] -- C:\Windows\SysNative\drivers\avgntflt.sys -- (avgntflt) DRV:64bit: - [2012/07/18 17:05:10 \| 000,027,760 \| ---- \| M] (Avira GmbH) [Kernel \| System \| Running] -- C:\Windows\SysNative\drivers\avkmgr.sys -- (avkmgr) DRV:64bit: - [2012/05/30 23:31:19 \| 000,259,480 \| ---- \| M] (Alcohol Soft Co., Ltd.) [Kernel \| On_Demand \| Stopped] -- C:\Windows\SysNative\drivers\vaxscsi.sys -- (vaxscsi) DRV:64bit: - [2012/05/30 23:01:49 \| 000,560,184 \| ---- \| M] (Duplex Secure Ltd.) [Kernel \| Boot \| Running] -- C:\Windows\SysNative\drivers\sptd.sys -- (sptd) DRV:64bit: - [2012/03/08 18:55:26 \| 000,425,232 \| ---- \| M] (Synaptics Incorporated) [Kernel \| On_Demand \| Running] -- C:\Windows\SysNative\drivers\SynTP.sys -- (SynTP) DRV:64bit: - [2012/03/01 07:46:16 \| 000,023,408 \| ---- \| M] (Microsoft Corporation) [Recognizer \| Boot \| Unknown] -- C:\Windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec) DRV:64bit: - [2011/10/13 15:37:30 \| 010,496,000 \| ---- \| M] (ATI Technologies Inc.) [Kernel \| On_Demand \| Running] -- C:\Windows\SysNative\drivers\atikmdag.sys -- (amdkmdag) DRV:64bit: - [2011/10/13 13:52:50 \| 000,326,656 \| ---- \| M] (Advanced Micro Devices, Inc.) [Kernel \| On_Demand \| Running] -- C:\Windows\SysNative\drivers\atikmpag.sys -- (amdkmdap) DRV:64bit: - [2011/09/08 04:42:28 \| 000,535,040 \| ---- \| M] (IDT, Inc.) [Kernel \| On_Demand \| Running] -- C:\Windows\SysNative\drivers\stwrt64.sys -- (STHDA) DRV:64bit: - [2011/08/31 11:53:20 \| 012,306,848 \| ---- \| M] (Intel Corporation) [Kernel \| On_Demand \| Running] -- C:\Windows\SysNative\drivers\igdpmd64.sys -- (intelkmd) DRV:64bit: - [2011/08/21 19:16:22 \| 002,769,408 \| ---- \| M] (Atheros Communications, Inc.) [Kernel \| On_Demand \| Running] -- C:\Windows\SysNative\drivers\athrx.sys -- (athr) DRV:64bit: - [2011/06/10 16:00:38 \| 000,208,896 \| ---- \| M] (Renesas Electronics Corporation) [Kernel \| On_Demand \| Running] -- C:\Windows\SysNative\drivers\nusb3xhc.sys -- (nusb3xhc) DRV:64bit: - [2011/06/10 16:00:36 \| 000,091,648 \| ---- \| M] (Renesas Electronics Corporation) [Kernel \| On_Demand \| Running] -- C:\Windows\SysNative\drivers\nusb3hub.sys -- (nusb3hub) DRV:64bit: - [2011/05/13 17:58:16 \| 000,030,008 \| ---- \| M] (Hewlett-Packard Company) [Kernel \| Boot \| Running] -- C:\Windows\SysNative\drivers\hpdskflt.sys -- (hpdskflt) DRV:64bit: - [2011/05/13 17:57:58 \| 000,043,320 \| ---- \| M] (Hewlett-Packard Company) [Kernel \| On_Demand \| Running] -- C:\Windows\SysNative\drivers\Accelerometer.sys -- (Accelerometer) DRV:64bit: - [2011/03/11 07:41:12 \| 000,107,904 \| ---- \| M] (Advanced Micro Devices) [Kernel \| On_Demand \| Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata) DRV:64bit: - [2011/03/11 07:41:12 \| 000,027,008 \| ---- \| M] (Advanced Micro Devices) [Kernel \| Boot \| Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata) DRV:64bit: - [2011/01/31 02:04:42 \| 000,174,168 \| ---- \| M] (JMicron Technology Corporation) [Kernel \| On_Demand \| Stopped] -- C:\Windows\SysNative\drivers\jmcr.sys -- (JMCR) DRV:64bit: - [2011/01/12 16:51:44 \| 000,439,320 \| ---- \| M] (Intel Corporation) [Kernel \| Boot \| Running] -- C:\Windows\SysNative\drivers\iaStor.sys -- (iaStor) DRV:64bit: - [2010/11/21 04:24:43 \| 000,020,992 \| ---- \| M] (Microsoft Corporation) [Kernel \| On_Demand \| Stopped] -- C:\Windows\SysNative\drivers\rdpvideominiport.sys -- (RdpVideoMiniport) DRV:64bit: - [2010/11/21 04:24:33 \| 000,059,392 \| ---- \| M] (Microsoft Corporation) [Kernel \| On_Demand \| Stopped] -- C:\Windows\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt) DRV:64bit: - [2010/11/21 04:23:48 \| 000,117,248 \| ---- \| M] (Microsoft Corporation) [Kernel \| On_Demand \| Stopped] -- C:\Windows\SysNative\drivers\tsusbhub.sys -- (tsusbhub) DRV:64bit: - [2010/11/21 04:23:48 \| 000,088,960 \| ---- \| M] (Microsoft Corporation) [Kernel \| On_Demand \| Stopped] -- C:\Windows\SysNative\drivers\Synth3dVsc.sys -- (Synth3dVsc) DRV:64bit: - [2010/11/21 04:23:48 \| 000,071,168 \| ---- \| M] (Microsoft Corporation) [Kernel \| On_Demand \| Stopped] -- C:\Windows\SysNative\drivers\dmvsc.sys -- (dmvsc) DRV:64bit: - [2010/11/21 04:23:48 \| 000,034,816 \| ---- \| M] (Microsoft Corporation) [Kernel \| On_Demand \| Stopped] -- C:\Windows\SysNative\drivers\terminpt.sys -- (terminpt) DRV:64bit: - [2010/11/21 04:23:47 \| 000,109,056 \| ---- \| M] (Microsoft Corporation) [Kernel \| On_Demand \| Stopped] -- C:\Windows\SysNative\drivers\sdbus.sys -- (sdbus) DRV:64bit: - [2010/11/21 04:23:47 \| 000,078,720 \| ---- \| M] (Hewlett-Packard Company) [Kernel \| On_Demand \| Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD) DRV:64bit: - [2010/11/21 04:23:47 \| 000,031,232 \| ---- \| M] (Microsoft Corporation) [Kernel \| On_Demand \| Stopped] -- C:\Windows\SysNative\drivers\TsUsbGD.sys -- (TsUsbGD) DRV:64bit: - [2010/10/26 10:08:08 \| 000,406,632 \| ---- \| M] (Realtek ) [Kernel \| On_Demand \| Running] -- C:\Windows\SysNative\drivers\Rt64win7.sys -- (RTL8167) DRV:64bit: - [2010/10/19 15:34:26 \| 000,056,344 \| ---- \| M] (Intel Corporation) [Kernel \| On_Demand \| Running] -- C:\Windows\SysNative\drivers\HECIx64.sys -- (MEIx64) DRV:64bit: - [2010/06/25 18:07:26 \| 000,035,344 \| ---- \| M] (CACE Technologies, Inc.) [Kernel \| On_Demand \| Stopped] -- C:\Windows\SysNative\drivers\npf.sys -- (NPF) DRV:64bit: - [2009/07/14 02:52:20 \| 000,194,128 \| ---- \| M] (AMD Technologies Inc.) [Kernel \| On_Demand \| Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs) DRV:64bit: - [2009/07/14 02:48:04 \| 000,065,600 \| ---- \| M] (LSI Corporation) [Kernel \| On_Demand \| Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2) DRV:64bit: - [2009/07/14 02:45:55 \| 000,024,656 \| ---- \| M] (Promise Technology) [Kernel \| On_Demand \| Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor) DRV:64bit: - [2009/07/09 02:00:00 \| 000,055,280 \| ---- \| M] (Sonic Solutions) [Kernel \| Boot \| Running] -- C:\Windows\SysNative\drivers\PxHlpa64.sys -- (PxHlpa64) DRV:64bit: - [2009/06/10 21:34:33 \| 003,286,016 \| ---- \| M] (Broadcom Corporation) [Kernel \| On_Demand \| Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv) DRV:64bit: - [2009/06/10 21:34:28 \| 000,468,480 \| ---- \| M] (Broadcom Corporation) [Kernel \| On_Demand \| Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv) DRV:64bit: - [2009/06/10 21:34:23 \| 000,270,848 \| ---- \| M] (Broadcom Corporation) [Kernel \| On_Demand \| Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a) DRV:64bit: - [2009/06/10 21:31:59 \| 000,031,232 \| ---- \| M] (Hauppauge Computer Works, Inc.) [Kernel \| On_Demand \| Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir) DRV - [2009/07/14 02:19:10 \| 000,019,008 \| ---- \| M] (Microsoft Corporation) [File_System \| On_Demand \| Stopped] -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount) ========== Standard Registry (SafeList) ========== ========== Internet Explorer ========== IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A} IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = bing.com/search?q={searchTerms}&FORM=IE8SRC IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm IE - HKLM\..\URLSearchHook: {7473b6bd-4691-4744-a82b-7854eb3d70b6} - C:\Program Files (x86)\uTorrentControl_v2\prxtbuTor.dll (Conduit Ltd.) IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A} IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = bing.com/search?q={searchTerms}&FORM=IE8SRC IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = msn.com/?ocid=iehp IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = en-US IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 40 B0 52 2B 9B 3E CD 01 [binary data] IE - HKCU\..\URLSearchHook: {7473b6bd-4691-4744-a82b-7854eb3d70b6} - C:\Program Files (x86)\uTorrentControl_v2\prxtbuTor.dll (Conduit Ltd.) IE - HKCU\..\SearchScopes,DefaultScope = {6A1806CD-94D4-4689-BA73-E35EA1EA9990} IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC IE - HKCU\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7 IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 ========== FireFox ========== FF - prefs.js..extensions.enabledAddons: {7473b6bd-4691-4744-a82b-7854eb3d70b6}:10.10.27.6 FF - user.js - File not found FF:64bit: - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF64_11_3_300_262.dll File not found FF:64bit: - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.3.1: C:\Windows\system32\npDeployJava1.dll (Oracle Corporation) FF:64bit: - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.3.1: C:\Program Files\Oracle\JavaFX 2.0 Runtime\bin\plugin2\npjp2.dll (Oracle Corporation) FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~1\MIF5BA~1\Office14\NPAUTHZ.DLL (Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_3_300_262.dll () FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.6.2: C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation) FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.6.2: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation) FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files (x86)\Microsoft Silverlight\4.1.10329.0\npctrl.dll ( Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~2\MIF5BA~1\Office14\NPAUTHZ.DLL (Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~2\MIF5BA~1\Office14\NPSPWRAP.DLL (Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.) FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Users\Freezing\AppData\Local\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.) FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Users\Freezing\AppData\Local\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.) FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 15.0.1\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2012/09/22 19:01:33 \| 000,000,000 \| ---D \| M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 15.0.1\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins [2012/05/30 21:55:01 \| 000,000,000 \| ---D \| M] (No name found) -- C:\Users\Freezing\AppData\Roaming\Mozilla\Extensions [2012/11/03 14:20:33 \| 000,000,000 \| ---D \| M] (No name found) -- C:\Users\Freezing\AppData\Roaming\Mozilla\Firefox\Profiles\chl6qdi5.default\extensions [2012/08/30 15:39:39 \| 000,000,000 \| ---D \| M] (uTorrentControl_v2) -- C:\Users\Freezing\AppData\Roaming\Mozilla\Firefox\Profiles\chl6qdi5.default\extensions\{7473b6bd-4691-4744-a82b-7854eb3d70b6} [2012/07/30 15:53:27 \| 000,000,000 \| ---D \| M] (Nero Toolbar) -- C:\Users\Freezing\AppData\Roaming\Mozilla\Firefox\Profiles\chl6qdi5.default\extensions\toolbar@ask.com [2012/05/30 22:45:57 \| 000,000,000 \| ---D \| M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\extensions [2012/11/03 10:55:35 \| 000,000,000 \| ---D \| M] (Skype Click to Call) -- C:\Program Files (x86)\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} [2012/09/22 19:01:33 \| 000,266,720 \| ---- \| M] (Mozilla Foundation) -- C:\Program Files (x86)\mozilla firefox\components\browsercomps.dll [2012/09/22 19:01:32 \| 000,002,465 \| ---- \| M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\bing.xml [2012/09/22 19:01:32 \| 000,002,253 \| ---- \| M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\twitter.xml ========== Chrome ========== CHR - homepage: google.com/ CHR - default_search_provider: Google (Enabled) CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}sourceid=chrome&ie={inputEncoding} CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&hl={language}&q={searchTerms}&sugkey={google:suggestAPIKeyParameter}, CHR - homepage: google.com/ CHR - plugin: Shockwave Flash (Enabled) = C:\Users\Freezing\AppData\Local\Google\Chrome\Application\22.0.1229.92\PepperFlash\pepflashplayer.dll CHR - plugin: Shockwave Flash (Enabled) = C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_3_300_262.dll CHR - plugin: Chrome Remote Desktop Viewer (Enabled) = internal-remoting-viewer CHR - plugin: Native Client (Enabled) = C:\Users\Freezing\AppData\Local\Google\Chrome\Application\23.0.1271.91\ppGoogleNaClPluginChrome.dll CHR - plugin: Chrome PDF Viewer (Disabled) = C:\Users\Freezing\AppData\Local\Google\Chrome\Application\23.0.1271.91\pdf.dll CHR - plugin: Skype Click to Call (Enabled) = C:\Users\Freezing\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl\6.2.0.10687_0\npSkypeChromePlugin.dll CHR - plugin: Adobe Acrobat (Enabled) = C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll CHR - plugin: Microsoft Office 2010 (Enabled) = C:\PROGRA~2\MIF5BA~1\Office14\NPAUTHZ.DLL CHR - plugin: Microsoft Office 2010 (Enabled) = C:\PROGRA~2\MIF5BA~1\Office14\NPSPWRAP.DLL CHR - plugin: Java(TM) Platform SE 7 U6 (Enabled) = C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll CHR - plugin: Java Deployment Toolkit 7.0.60.24 (Enabled) = C:\Windows\SysWOW64\npDeployJava1.dll CHR - plugin: Silverlight Plug-In (Enabled) = C:\Program Files (x86)\Microsoft Silverlight\4.1.10329.0\npctrl.dll CHR - plugin: Google Update (Enabled) = C:\Users\Freezing\AppData\Local\Google\Update\1.3.21.123\npGoogleUpdate3.dll CHR - Extension: YouTube = C:\Users\Freezing\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_1\ CHR - Extension: Google Search = C:\Users\Freezing\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_1\ CHR - Extension: Cookies = C:\Users\Freezing\AppData\Local\Google\Chrome\User Data\Default\Extensions\iphcomljdfghbkdcfndaijbokpgddeno\1.5_0\ CHR - Extension: Skype Click to Call = C:\Users\Freezing\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl\6.3.0.11079_0\ CHR - Extension: cookie.txt export = C:\Users\Freezing\AppData\Local\Google\Chrome\User Data\Default\Extensions\lopabhfecdfhgogdbojmaicoicjekelh\1.0_0\ CHR - Extension: Gmail = C:\Users\Freezing\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1\ O1 HOSTS File: ([2009/06/10 22:00:26 \| 000,000,824 \| ---- \| M]) - C:\Windows\SysNative\drivers\etc\hosts O2:64bit: - BHO: (Skype add-on for Internet Explorer) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Skype Technologies S.A.) O2:64bit: - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Oracle\JavaFX 2.0 Runtime\bin\jp2ssv.dll (Oracle Corporation) O2 - BHO: (uTorrentControl_v2 Toolbar) - {7473b6bd-4691-4744-a82b-7854eb3d70b6} - C:\Program Files (x86)\uTorrentControl_v2\prxtbuTor.dll (Conduit Ltd.) O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation) O2 - BHO: (Skype Browser Helper) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.) O2 - BHO: (Nero Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll (Ask) O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation) O3 - HKLM\..\Toolbar: (uTorrentControl_v2 Toolbar) - {7473b6bd-4691-4744-a82b-7854eb3d70b6} - C:\Program Files (x86)\uTorrentControl_v2\prxtbuTor.dll (Conduit Ltd.) O3 - HKLM\..\Toolbar: (Nero Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll (Ask) O4:64bit: - HKLM..\Run: [AdobeAAMUpdater-1.0] C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe (Adobe Systems Incorporated) O4:64bit: - HKLM..\Run: [HotKeysCmds] C:\Windows\SysNative\hkcmd.exe (Intel Corporation) O4:64bit: - HKLM..\Run: [HPPowerAssistant] C:\Program Files\Hewlett-Packard\HP Power Assistant\DelayedAppStarter.exe (Hewlett-Packard Company, L.P.) O4:64bit: - HKLM..\Run: [IgfxTray] C:\Windows\SysNative\igfxtray.exe (Intel Corporation) O4:64bit: - HKLM..\Run: [LifeChat] C:\Program Files\Microsoft LifeChat\LifeChat.exe (Microsoft Corporation) O4:64bit: - HKLM..\Run: [Persistence] C:\Windows\SysNative\igfxpers.exe (Intel Corporation) O4:64bit: - HKLM..\Run: [SysTrayApp] C:\Program Files\IDT\WDM\sttray64.exe (IDT, Inc.) O4:64bit: - HKLM..\Run: [TortoiseHgOverlayIconServer] C:\Program Files\TortoiseHg\TortoiseHgOverlayServer.exe () O4 - HKLM..\Run: [] File not found O4 - HKLM..\Run: [AdobeCS5.5ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS5.5ServiceManager\CS5.5ServiceManager.exe" -launchedbylogin File not found O4 - HKLM..\Run: [ApnUpdater] C:\Program Files (x86)\Ask.com\Updater\Updater.exe (Ask) O4 - HKLM..\Run: [avgnt] C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe (Avira Operations GmbH & Co. KG) O4 - HKLM..\Run: [googletalk] C:\Program Files (x86)\Google\Google Talk\googletalk.exe (Google) O4 - HKLM..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe (Intel Corporation) O4 - HKLM..\Run: [NUSB3MON] c:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe (Renesas Electronics Corporation) O4 - HKLM..\Run: [StartCCC] c:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.) O4 - HKLM..\Run: [SwitchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe (Adobe Systems Incorporated) O4 - HKCU..\Run: [DAEMON Tools Lite] C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe (DT Soft Ltd) O4 - HKCU..\Run: [Steam] C:\Program Files (x86)\Steam\Steam.exe (Valve Corporation) O4 - Startup: C:\Users\Freezing\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk = C:\Users\Freezing\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.) O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 0 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0 O9:64bit: - Extra Button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Skype Technologies S.A.) O9 - Extra Button: PokerStars - {3AD14F0C-ED16-4e43-B6D8-661B03F6A1EF} - C:\Program Files (x86)\PokerStars\PokerStarsUpdate.exe (PokerStars) O9 - Extra Button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.) O1364bit: - gopher Prefix: missing O13 - gopher Prefix: missing O16:64bit: - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} java.sun.com/update/1.7.0/jinstall-1_7_0_03-windows-i586.cab (Java Plug-in 10.3.1) O16:64bit: - DPF: {CAFEEFAC-0017-0000-0003-ABCDEFFEDCBA} java.sun.com/update/1.7.0/jinstall-1_7_0_03-windows-i586.cab (Java Plug-in 1.7.0_03) O16:64bit: - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} java.sun.com/update/1.7.0/jinstall-1_7_0_03-windows-i586.cab (Java Plug-in 1.7.0_03) O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 109.122.98.116 109.122.98.117 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{4F5CE352-8DC0-4B21-BACF-F4AB1E1C0EB3}: DhcpNameServer = 109.122.98.116 109.122.98.117 O18:64bit: - Protocol\Handler\livecall - No CLSID value found O18:64bit: - Protocol\Handler\msnim - No CLSID value found O18:64bit: - Protocol\Handler\skype4com - No CLSID value found O18:64bit: - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Skype Technologies S.A.) O18 - Protocol\Handler\ms-help - No CLSID value found O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies) O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.) O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation) O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation) O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation) O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\Windows\SysWow64\userinit.exe (Microsoft Corporation) O20:64bit: - Winlogon\Notify\igfxcui: DllName - (igfxdev.dll) - C:\Windows\SysNative\igfxdev.dll (Intel Corporation) O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found. O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found. O32 - HKLM CDRom: AutoRun - 1 O34 - HKLM BootExecute: (autocheck autochk ) O35:64bit: - HKLM\..comfile [open] -- "%1" % O35:64bit: - HKLM\..exefile [open] -- "%1" %* O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %* O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3) O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2) O38 - SubSystems\\Windows: (ServerDll=sxssrv,4) ========== Files/Folders - Created Within 30 Days ========== [2012/11/30 16:37:28 \| 000,602,112 \| ---- \| C] (OldTimer Tools) -- C:\Users\Freezing\Desktop\OTL.exe [2012/11/28 20:55:50 \| 000,000,000 \| ---D \| C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Van Aeken Software [2012/11/28 20:55:50 \| 000,000,000 \| ---D \| C] -- C:\Program Files (x86)\Van Aeken Software [2012/11/28 20:15:24 \| 000,000,000 \| ---D \| C] -- C:\Users\Freezing\Documents\Processing [2012/11/28 20:15:24 \| 000,000,000 \| ---D \| C] -- C:\Users\Freezing\AppData\Roaming\Processing [2012/11/28 00:26:04 \| 000,000,000 \| ---D \| C] -- C:\Users\Freezing\AppData\Local\{67F39245-2545-4CDB-8B48-12678C071AF0} [2012/11/27 22:48:54 \| 000,000,000 \| ---D \| C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype [2012/11/27 22:48:54 \| 000,000,000 \| ---D \| C] -- C:\Program Files (x86)\Common Files\Skype [2012/11/26 19:42:15 \| 000,000,000 \| RH-D \| C] -- C:\Users\Freezing\AppData\Roaming\SecuROM [2012/11/26 19:40:17 \| 000,000,000 \| ---D \| C] -- C:\Users\Freezing\Documents\Electronic Arts [2012/11/26 19:32:37 \| 000,000,000 \| ---D \| C] -- C:\ProgramData\Electronic Arts [2012/11/26 18:44:30 \| 000,000,000 \| ---D \| C] -- C:\Program Files (x86)\Microsoft WSE [2012/11/24 11:29:34 \| 000,000,000 \| ---D \| C] -- C:\Users\Freezing\AppData\Local\Vitalwerks [2012/11/24 11:15:06 \| 000,000,000 \| ---D \| C] -- C:\Users\Freezing\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\No-IP DUC [2012/11/24 11:15:05 \| 000,000,000 \| ---D \| C] -- C:\Program Files (x86)\No-IP [2012/11/24 00:41:03 \| 000,000,000 \| ---D \| C] -- C:\Users\Freezing\AppData\Local\PokerStars [2012/11/24 00:41:02 \| 000,000,000 \| ---D \| C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PokerStars [2012/11/24 00:40:50 \| 000,000,000 \| ---D \| C] -- C:\Program Files (x86)\PokerStars [2012/11/18 18:06:56 \| 000,000,000 \| ---D \| C] -- C:\Users\Freezing\AppData\Local\{7D3BBD4E-D1C9-4630-B53D-2E25009B20D7} [2012/11/09 04:06:02 \| 000,000,000 \| ---D \| C] -- C:\Users\Freezing\AppData\Local\cache [2012/11/09 03:23:29 \| 000,000,000 \| ---D \| C] -- C:\Users\Freezing\AppData\Local\FullTiltPoker [2012/11/09 03:23:08 \| 000,000,000 \| ---D \| C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Full Tilt Poker [2012/11/09 03:22:59 \| 000,000,000 \| ---D \| C] -- C:\Program Files (x86)\Full Tilt Poker [2012/11/07 22:52:25 \| 000,000,000 \| ---D \| C] -- C:\Users\Freezing\Desktop\TopCoder [2012/11/05 20:07:45 \| 000,000,000 \| ---D \| C] -- C:\Users\Freezing\AppData\Local\{C7B24075-95CE-4358-AFA4-E30D16A616A0} [2012/11/04 21:26:08 \| 000,000,000 \| ---D \| C] -- C:\Users\Freezing\AppData\Local\{A7CB6CAD-3545-4883-B507-F311F4FF4F93} ========== Files - Modified Within 30 Days ========== [2012/11/30 16:37:30 \| 000,602,112 \| ---- \| M] (OldTimer Tools) -- C:\Users\Freezing\Desktop\OTL.exe [2012/11/30 16:30:00 \| 000,000,920 \| ---- \| M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1207873499-861230106-4229845442-1000UA.job [2012/11/30 13:30:00 \| 000,000,868 \| ---- \| M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1207873499-861230106-4229845442-1000Core.job [2012/11/30 13:04:14 \| 000,067,584 \| --S- \| M] () -- C:\Windows\bootstat.dat [2012/11/28 21:15:20 \| 000,917,324 \| ---- \| M] () -- C:\Jackson.wav [2012/11/28 21:15:20 \| 000,000,020 \| ---- \| M] () -- C:\Jackson.csv [2012/11/28 20:55:50 \| 000,002,649 \| ---- \| M] () -- C:\Users\Public\Desktop\Jackson 1.34.lnk [2012/11/28 20:55:50 \| 000,002,625 \| ---- \| M] () -- C:\Users\Public\Desktop\Jackson 1.34 Manual.pdf.lnk [2012/11/28 20:55:50 \| 000,002,625 \| ---- \| M] () -- C:\Users\Public\Desktop\Jackson 1.34 BeatMapping Guide.pdf.lnk [2012/11/28 15:49:37 \| 000,003,161 \| ---- \| M] () -- C:\Users\Freezing\Desktop\Shortcut to SecureDownloadManager.exe.lnk [2012/11/28 15:40:38 \| 000,023,824 \| -H-- \| M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 [2012/11/28 15:40:38 \| 000,023,824 \| -H-- \| M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 [2012/11/28 00:29:16 \| 000,872,526 \| ---- \| M] () -- C:\Windows\SysNative\PerfStringBackup.INI [2012/11/28 00:29:16 \| 000,726,572 \| ---- \| M] () -- C:\Windows\SysNative\perfh009.dat [2012/11/28 00:29:16 \| 000,146,268 \| ---- \| M] () -- C:\Windows\SysNative\perfc009.dat [2012/11/28 00:24:05 \| 3169,603,584 \| -HS- \| M] () -- C:\hiberfil.sys [2012/11/27 22:48:54 \| 000,002,515 \| ---- \| M] () -- C:\Users\Public\Desktop\Skype.lnk [2012/11/27 17:38:01 \| 000,001,485 \| ---- \| M] () -- C:\Users\Freezing\Desktop\The Sims 3.lnk [2012/11/24 11:17:00 \| 000,000,999 \| ---- \| M] () -- C:\Users\Freezing\Desktop\DUC 3.0.lnk [2012/11/24 00:41:03 \| 000,001,085 \| ---- \| M] () -- C:\Users\Freezing\Application Data\Microsoft\Internet Explorer\Quick Launch\PokerStars.lnk [2012/11/16 20:34:55 \| 006,111,379 \| ---- \| M] () -- C:\Users\Freezing\Documents\test.wma [2012/11/10 20:28:59 \| 000,003,889 \| ---- \| M] () -- C:\Users\Freezing\contestapplet.conf.bak [2012/11/10 20:28:51 \| 000,003,889 \| ---- \| M] () -- C:\Users\Freezing\contestapplet.conf [2012/11/10 01:07:56 \| 000,350,709 \| ---- \| M] () -- C:\Users\Freezing\Documents\Untitled (7).wma [2012/11/09 03:23:08 \| 000,001,051 \| ---- \| M] () -- C:\Users\Public\Desktop\Full Tilt Poker.lnk ========== Files Created - No Company Name ========== [2012/11/28 21:13:55 \| 000,917,324 \| ---- \| C] () -- C:\Jackson.wav [2012/11/28 21:13:55 \| 000,000,020 \| ---- \| C] () -- C:\Jackson.csv [2012/11/28 20:55:50 \| 000,002,649 \| ---- \| C] () -- C:\Users\Public\Desktop\Jackson 1.34.lnk [2012/11/28 20:55:50 \| 000,002,625 \| ---- \| C] () -- C:\Users\Public\Desktop\Jackson 1.34 Manual.pdf.lnk [2012/11/28 20:55:50 \| 000,002,625 \| ---- \| C] () -- C:\Users\Public\Desktop\Jackson 1.34 BeatMapping Guide.pdf.lnk [2012/11/28 15:49:37 \| 000,003,161 \| ---- \| C] () -- C:\Users\Freezing\Desktop\Shortcut to SecureDownloadManager.exe.lnk [2012/11/27 17:38:01 \| 000,001,485 \| ---- \| C] () -- C:\Users\Freezing\Desktop\The Sims 3.lnk [2012/11/24 11:17:00 \| 000,000,999 \| ---- \| C] () -- C:\Users\Freezing\Desktop\DUC 3.0.lnk [2012/11/24 00:41:03 \| 000,001,085 \| ---- \| C] () -- C:\Users\Freezing\Application Data\Microsoft\Internet Explorer\Quick Launch\PokerStars.lnk [2012/11/16 20:26:28 \| 006,111,379 \| ---- \| C] () -- C:\Users\Freezing\Documents\test.wma [2012/11/10 01:07:55 \| 000,350,709 \| ---- \| C] () -- C:\Users\Freezing\Documents\Untitled (7).wma [2012/11/09 03:23:08 \| 000,001,051 \| ---- \| C] () -- C:\Users\Public\Desktop\Full Tilt Poker.lnk [2012/06/29 16:28:02 \| 000,045,270 \| ---- \| C] () -- C:\Users\Freezing\AppData\Roaming\room_v3.dat [2012/06/24 08:38:41 \| 000,001,456 \| ---- \| C] () -- C:\Users\Freezing\AppData\Local\Adobe Save for Web 12.0 Prefs [2012/06/18 13:26:15 \| 000,000,132 \| ---- \| C] () -- C:\Users\Freezing\AppData\Roaming\Adobe PNG Format CS5 Prefs [2012/06/17 10:00:44 \| 000,000,021 \| ---- \| C] () -- C:\Windows\SurCode.INI [2012/06/07 14:26:13 \| 000,003,889 \| ---- \| C] () -- C:\Users\Freezing\contestapplet.conf.bak [2012/06/07 14:26:13 \| 000,003,889 \| ---- \| C] () -- C:\Users\Freezing\contestapplet.conf [2012/05/31 13:01:29 \| 000,000,146 \| ---- \| C] () -- C:\Users\Freezing\.appletviewer [2012/05/30 22:33:45 \| 000,889,224 \| ---- \| C] () -- C:\Windows\SysWow64\PerfStringBackup.INI [2012/05/30 20:56:46 \| 000,000,000 \| ---- \| C] () -- C:\Windows\ativpsrm.bin [2012/05/30 20:55:18 \| 000,003,917 \| ---- \| C] () -- C:\Windows\SysWow64\atipblup.dat [2011/10/13 14:53:18 \| 000,056,832 \| ---- \| C] () -- C:\Windows\SysWow64\OpenVideo.dll [2011/10/13 14:53:02 \| 000,056,832 \| ---- \| C] () -- C:\Windows\SysWow64\OVDecoder.dll [2011/10/13 14:15:40 \| 000,204,952 \| ---- \| C] () -- C:\Windows\SysWow64\ativvsvl.dat [2011/10/13 14:15:40 \| 000,157,144 \| ---- \| C] () -- C:\Windows\SysWow64\ativvsva.dat [2011/09/12 16:06:18 \| 000,003,917 \| ---- \| C] () -- C:\Windows\SysWow64\atipblag.dat [2011/08/31 11:51:14 \| 000,963,116 \| ---- \| C] () -- C:\Windows\SysWow64\igkrng600.bin [2011/08/31 11:51:14 \| 000,216,000 \| ---- \| C] () -- C:\Windows\SysWow64\igfcg600m.bin [2011/08/31 11:51:14 \| 000,145,804 \| ---- \| C] () -- C:\Windows\SysWow64\igcompkrng600.bin [2011/08/31 11:45:58 \| 000,056,832 \| ---- \| C] () -- C:\Windows\SysWow64\igdde32.dll [2011/08/31 11:26:18 \| 013,903,872 \| ---- \| C] () -- C:\Windows\SysWow64\ig4icd32.dll ========== ZeroAccess Check ========== [2009/07/14 05:55:00 \| 000,000,227 \| RHS- \| M] () -- C:\Windows\assembly\Desktop.ini [HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64 [HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] [HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64 [HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64 "" = C:\Windows\SysNative\shell32.dll -- [2012/01/04 11:44:25 \| 014,172,672 \| ---- \| M] (Microsoft Corporation) "ThreadingModel" = Apartment [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] "" = %SystemRoot%\system32\shell32.dll -- [2012/01/04 09:59:38 \| 012,872,704 \| ---- \| M] (Microsoft Corporation) "ThreadingModel" = Apartment [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64 "" = C:\Windows\SysNative\wbem\fastprox.dll -- [2009/07/14 02:40:51 \| 000,909,312 \| ---- \| M] (Microsoft Corporation) "ThreadingModel" = Free [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] "" = %systemroot%\system32\wbem\fastprox.dll -- [2010/11/21 04:24:25 \| 000,606,208 \| ---- \| M] (Microsoft Corporation) "ThreadingModel" = Free [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64 "" = C:\Windows\SysNative\wbem\wbemess.dll -- [2009/07/14 02:41:56 \| 000,505,856 \| ---- \| M] (Microsoft Corporation) "ThreadingModel" = Both [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] ========== Alternate Data Streams ========== @Alternate Data Stream - 1266 bytes -> C:\ProgramData\Microsoft:89iecyuv8myjAJ25TV7 @Alternate Data Stream - 1220 bytes -> C:\Users\Freezing\AppData\Local\ZDFAa6sV9j:oxHExuKpcK9fvxdj6vQGqUMvmm @Alternate Data Stream - 1166 bytes -> C:\ProgramData\Microsoft:vEf1cHjEtRvEsqFeoN7L < End of report > mycity.rs/must-login.png

Profil

TwinHeadedEagle Poslao: 01 Dec 2012 11:10 Idi na vrh
offline TwinHeadedEagle Anti Malware Fighter Rank 2 Pridružio: 09 Avg 2011 Poruke: 15879 Gde živiš: Beograd	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Pozdra, Nikolavla Racunar je čist što se malware-a tiče. Potrebno je da ispratiš sledeće korake... Pokreni Start -> Control Panel -> Programs and Features i deinstaliraj sledece programe: Ask Toolbar uTorrentControl_v2 Toolbar Takode, isprati i temu "Kako izbeci i ukloniti toolbar-ove" , procitaj i isprati korake u njoj. Link do teme je: http://www.mycity.rs/Zastita/Kako-izbeci-i-ukloniti-toolbar-ove.html Ukoliko i dalje imas probleme, postavi temu u Windows potforumu i tamo iznesi problem. Preporučujem da za zaštitu USB memorijskih uredjaja koristiš MCShield v2. Nema nikakve veze sa AntiVirus-om tj. nece ometati njegov rad, a pokazao se kao jedan od najboljih vidova zaštite od malware-a koji se prenosi putem USB mem. uređaja. Skineš, instaliraš, ubodeš USB mem. uređaj, izvrši se skeniranje nakon čega dobiješ obaveštenje da je uređaj čist (ukoliko je stvarno tako); ili dobiješ log u kome vidiš informacije o malware-u koji je nađen i obrisan. Home Page MCShield-a ::Anti-Malware Tool:: v2: http://amf.mycity.rs/mcshield/ Više o MCShield-u možeš saznati u ovim temama: v1: http://www.mycity.rs/MyCity-Laboratorija/MCShield.html v2: http://www.mycity.rs/MyCity-Laboratorija/MCShield-v2.html Obavezno poseti temu "Testirajte da li vam je pretraživač ranjiv", pročitaj i isprati link koji stoji u njoj. Link do teme je: http://www.mycity.rs/Web-browseri/Testirajte-da-li.....anjiv.html TwinHeadedEagle (AMF Tim)

Profil

Nikolavla Poslao: 01 Dec 2012 14:30 Idi na vrh
offline Nikolavla Građanin Pridružio: 23 Mar 2008 Poruke: 68	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Hvala na odgovoru. Pozdrav

Profil

MyCity » Ambulanta -> Arhiva Ambulante » Provera, usporen rad

Ko je trenutno na forumu

Ukupno su 975 korisnika na forumu :: 51 registrovanih, 5 sakrivenih i 919 gosta :: [ Administrator ] [ Supermoderator ] [ Moderator ] :: Detaljnije

Najviše korisnika na forumu ikad bilo je 3466 - dana 01 Jun 2021 17:07

Korisnici koji su trenutno na forumu:: Korisnici trenutno na forumu: A.R.Chafee.Jr., Acivi, anta, aramis s, Ben Roj, bestguarder, bigfoot, BlekMen, bojankrstc, bokisha253, BraneS, cemix, CHARLIE JA., darcaud, darionis, darkojbn, deimos25, dejina811, djboj, drimer, havoc995, Ivica1102, ivica976, kobaja77, Koridor, Kriglord, Krvava Devetka, ljuba, MB120mm, mercedesamg, mgolub, mige, mile23, milenko crazy north, Ne doznajem se u oružje, Nemanja.M, nemkea71, nextyamb, Nobunaga, nuke92, Petar35, repac, RJ, shaja1, Srle993, uruk, vrag81, vukovi, wolf431, Zimbabwe, šumar bk2

Svaki korisnik ovog sajta je odgovoran za sadržaj svoje poruke koju objavi na sajtu. Sajt se odriče svake odgovornosti za sadržaj tih poruka.
Postavljanjem vaše poruke ili vašeg autorskog dela na ovaj sajt, saglasni ste da ovaj sajt postaje distributer vašeg dela, i odričete se mogućnosti njegovog povlačenja ili brisanja, bez saglasnosti uprave sajta.
Distribucija sadržaja sa ovog sajta je dozvoljena samo u nekomercijalne svrhe, uz obaveznu napomenu da je sadržaj preuzet sa ovog sajta, i uz obavezno navođenje adrese MyCity sajta. Za sve ostale vidove distribucije obavezni ste da prethodno zatražite odobrenje od vlasnika MyCity sajta.
MyCity pokrenuo, administrira i razvija Predrag Damnjanović, a o uređenju sajta se brine MyCity Tim.
Ukoliko želite da nas kontaktirate kliknite ovde.
Naši sajtovi:
Vesti, Vojni forum, Zaštita od virusa, TekstPesme.rs

This content is licensed under a Creative Commons License.
Based on phpBB 2, translated by Simke, designed by