MyCity » Ambulanta -> Arhiva Ambulante » Sve crno

Sve crno

Napisano na dan: 20.2.2013

Strana:
1
2
3

Sve crno

Sledeća strana

Pagination

Odgovori

Strana:
1
2
3

ajzaklija Poslao: 20 Feb 2013 11:45 Idi na vrh
offline ajzaklija Građanin Pridružio: 14 Dec 2009 Poruke: 154	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Uloguj se preko Facebooka da bi skinuo fajl: Napisano: 20 Feb 2013 11:42 Pozdrav svima! Problem je sledeci: u pocetku problema, kada mi se pojavi desktop, ne ucitaju mi se neki widget-i i programi i tada win samo "zabode" i posle jednog (eventualno dva) restarta bude sve OK. To mi se desavalo s vremena na vreme (od pre nekih par meseci), dok danas posle "Welcome screen-a" bude sve crno i samo mi se vidi strelica od misa! Koristim Nod32 i Anti-Malware od zastite, a pokusao sam da resim problem sa TuneUp Utilities 2013 jer sam mislio da je problem do registry fajlova i sl. Koristim kablovski internet od 14mbps. Ovo sada postujem iz Safe mode-a, posto mi on na srecu radi! Hvala u napred! OTL logfile created on: 20-Feb-13 11:32:24 AM - Run 1 OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Milos\Desktop 64bit- Professional Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation Internet Explorer (Version = 9.0.8112.16421) Locale: 00000409 \| Country: United States \| Language: ENU \| Date Format: dd-MMM-yy 3.87 Gb Total Physical Memory \| 2.80 Gb Available Physical Memory \| 72.31% Memory free 7.73 Gb Paging File \| 6.57 Gb Available in Paging File \| 84.93% Paging File free Paging file location(s): ?:\pagefile.sys [binary data] %SystemDrive% = C: \| %SystemRoot% = C:\Windows \| %ProgramFiles% = C:\Program Files (x86) Drive C: \| 195.21 Gb Total Space \| 133.41 Gb Free Space \| 68.34% Space Free \| Partition Type: NTFS Drive D: \| 736.30 Gb Total Space \| 70.12 Gb Free Space \| 9.52% Space Free \| Partition Type: NTFS Computer Name: MILOS-PC_I3 \| User Name: Milos \| Logged in as Administrator. Boot Mode: SafeMode with Networking \| Scan Mode: Current user \| Include 64bit Scans Company Name Whitelist: Off \| Skip Microsoft Files: Off \| No Company Name Whitelist: On \| File Age = 30 Days ========== Processes (SafeList) ========== PRC - [2013-02-20 11:31:44 \| 000,602,112 \| ---- \| M] (OldTimer Tools) -- C:\Users\Milos\Desktop\OTL.exe PRC - [2012-08-21 15:58:22 \| 000,328,704 \| ---- \| M] (Microsoft Corporation) -- C:\Windows\SysWOW64\wbem\WmiPrvSE.exe ========== Modules (No Company Name) ========== MOD - [2013-01-26 03:35:06 \| 000,460,240 \| ---- \| M] () -- C:\Users\Milos\AppData\Local\Google\Chrome\Application\24.0.1312.57\ppgooglenaclpluginchrome.dll MOD - [2013-01-26 03:35:04 \| 004,012,496 \| ---- \| M] () -- C:\Users\Milos\AppData\Local\Google\Chrome\Application\24.0.1312.57\pdf.dll MOD - [2013-01-26 03:34:16 \| 001,552,848 \| ---- \| M] () -- C:\Users\Milos\AppData\Local\Google\Chrome\Application\24.0.1312.57\ffmpegsumo.dll MOD - [2011-03-17 00:11:16 \| 004,297,568 \| ---- \| M] () -- C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\Cultures\OFFICE.ODF ========== Services (SafeList) ========== SRV:64bit: - [2013-01-27 11:34:32 \| 000,379,360 \| ---- \| M] (Microsoft Corporation) [On_Demand \| Stopped] -- c:\Program Files\Microsoft Security Client\NisSrv.exe -- (NisSrv) SRV:64bit: - [2013-01-27 11:34:32 \| 000,022,056 \| ---- \| M] (Microsoft Corporation) [Auto \| Running] -- c:\Program Files\Microsoft Security Client\MsMpEng.exe -- (MsMpSvc) SRV:64bit: - [2012-10-19 19:42:37 \| 001,432,400 \| ---- \| M] (Flexera Software, Inc.) [On_Demand \| Stopped] -- C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe -- (FLEXnet Licensing Service 64) SRV:64bit: - [2012-09-19 11:10:54 \| 000,037,216 \| ---- \| M] (TuneUp Software) [Auto \| Stopped] -- C:\Windows\SysNative\uxtuneup.dll -- (UxTuneUp) SRV:64bit: - [2011-03-09 12:12:26 \| 005,352,960 \| ---- \| M] (Native Instruments GmbH) [Auto \| Stopped] -- C:\Program Files\Common Files\Native Instruments\Hardware\NIHardwareService.exe -- (NIHardwareService) SRV:64bit: - [2009-10-07 00:47:10 \| 000,191,000 \| ---- \| M] (Logitech Inc.) [Auto \| Stopped] -- C:\Program Files\Common Files\logishrd\LVMVFM\LVPrcSrv.exe -- (LVPrcS64) SRV:64bit: - [2009-07-14 02:41:27 \| 001,011,712 \| ---- \| M] (Microsoft Corporation) [On_Demand \| Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend) SRV:64bit: - [2009-07-14 02:40:01 \| 000,193,536 \| ---- \| M] (Microsoft Corporation) [On_Demand \| Stopped] -- C:\Windows\SysNative\appmgmts.dll -- (AppMgmt) SRV:64bit: - [2008-05-08 00:29:38 \| 000,122,880 \| ---- \| M] (CrypKey (Canada) Ltd.) [Auto \| Stopped] -- C:\Windows\SysNative\Crypserv.exe -- (Crypkey License) SRV - [2013-02-08 18:29:41 \| 000,251,248 \| ---- \| M] (Adobe Systems Incorporated) [On_Demand \| Stopped] -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc) SRV - [2013-01-08 12:55:20 \| 000,161,536 \| R--- \| M] (Skype Technologies) [Auto \| Stopped] -- C:\Program Files (x86)\Skype\Updater\Updater.exe -- (SkypeUpdate) SRV - [2012-12-21 13:08:56 \| 001,333,424 \| ---- \| M] (ESET) [Auto \| Stopped] -- D:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe -- (ekrn) SRV - [2012-12-19 09:49:34 \| 000,732,648 \| ---- \| M] (Nokia) [On_Demand \| Stopped] -- C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe -- (ServiceLayer) SRV - [2012-12-18 15:28:08 \| 000,065,192 \| ---- \| M] (Adobe Systems Incorporated) [Auto \| Stopped] -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice) SRV - [2012-12-14 16:49:28 \| 000,682,344 \| ---- \| M] (Malwarebytes Corporation) [Auto \| Stopped] -- D:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe -- (MBAMService) SRV - [2012-12-14 16:49:28 \| 000,398,184 \| ---- \| M] (Malwarebytes Corporation) [Auto \| Stopped] -- D:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe -- (MBAMScheduler) SRV - [2012-11-29 16:31:18 \| 002,401,632 \| ---- \| M] (TuneUp Software) [Auto \| Stopped] -- D:\Program Files\TuneUp Utilities 2013\TuneUpUtilitiesService64.exe -- (TuneUp.UtilitiesSvc) SRV - [2012-11-15 00:53:10 \| 000,529,744 \| ---- \| M] (Valve Corporation) [On_Demand \| Stopped] -- C:\Program Files (x86)\Common Files\Steam\SteamService.exe -- (Steam Client Service) SRV - [2012-10-23 10:47:48 \| 002,848,168 \| ---- \| M] (TeamViewer GmbH) [Auto \| Stopped] -- C:\Program Files (x86)\TeamViewer\Version7\TeamViewer_Service.exe -- (TeamViewer7) SRV - [2012-10-10 20:23:42 \| 001,258,856 \| ---- \| M] (NVIDIA Corporation) [Auto \| Stopped] -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe -- (nvUpdatusService) SRV - [2012-10-02 12:15:38 \| 000,382,824 \| ---- \| M] (NVIDIA Corporation) [Auto \| Stopped] -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe -- (Stereo Service) SRV - [2012-09-19 11:10:54 \| 000,029,536 \| ---- \| M] (TuneUp Software) [Auto \| Stopped] -- C:\Windows\SysWOW64\uxtuneup.dll -- (UxTuneUp) SRV - [2012-01-31 09:46:56 \| 000,019,232 \| ---- \| M] (Autodesk, Inc.) [Auto \| Stopped] -- C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe -- (Autodesk Content Service) SRV - [2011-11-03 19:25:09 \| 002,358,656 \| ---- \| M] (TeamViewer GmbH) [Auto \| Stopped] -- C:\Program Files (x86)\TeamViewer\Version6\TeamViewer_Service.exe -- (TeamViewer6) SRV - [2011-06-12 10:15:00 \| 031,125,880 \| ---- \| M] (Microsoft Corporation) [On_Demand \| Stopped] -- D:\Program Files\Microsoft Office\Office14\GROOVE.EXE -- (Microsoft SharePoint Workspace Audit Service) SRV - [2011-05-12 19:13:40 \| 000,008,192 \| ---- \| M] () [Auto \| Stopped] -- C:\Windows\SysWOW64\srvany.exe -- (KMService) SRV - [2010-05-04 11:07:22 \| 000,503,080 \| ---- \| M] (Nero AG) [Auto \| Stopped] -- C:\Program Files (x86)\Nero\Update\NASvc.exe -- (NAUpdate) SRV - [2010-03-18 12:16:28 \| 000,130,384 \| ---- \| M] (Microsoft Corporation) [Auto \| Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32) SRV - [2010-02-19 12:37:14 \| 000,517,096 \| ---- \| M] (Adobe Systems Incorporated) [On_Demand \| Stopped] -- C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe -- (SwitchBoard) SRV - [2009-08-27 16:09:10 \| 001,253,376 \| ---- \| M] (MAGIX AG) [Auto \| Stopped] -- C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe -- (Fabs) SRV - [2009-06-10 22:23:09 \| 000,066,384 \| ---- \| M] (Microsoft Corporation) [Disabled \| Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32) SRV - [2008-08-07 10:10:02 \| 003,276,800 \| ---- \| M] (MAGIX®) [On_Demand \| Stopped] -- C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\fbserver.exe -- (FirebirdServerMAGIXInstance) SRV - [2007-02-05 09:11:18 \| 000,075,320 \| ---- \| M] (Sony Corporation) [On_Demand \| Stopped] -- C:\Program Files (x86)\Common Files\Sony Shared\AVLib\SSScsiSV.exe -- (SSScsiSV) SRV - [2007-02-05 09:11:16 \| 000,112,184 \| ---- \| M] (Sony Corporation) [On_Demand \| Stopped] -- C:\Program Files (x86)\Common Files\Sony Shared\AVLib\SsBeSvc.exe -- (SonicStage Back-End Service) SRV - [2006-12-14 01:21:20 \| 000,045,056 \| ---- \| M] (Sony Corporation) [On_Demand \| Stopped] -- C:\Program Files (x86)\Common Files\Sony Shared\AVLib\MSCSPTISRV.exe -- (MSCSPTISRV) SRV - [2006-12-14 01:02:08 \| 000,069,632 \| ---- \| M] (Sony Corporation) [On_Demand \| Stopped] -- C:\Program Files (x86)\Common Files\Sony Shared\AVLib\SPTISRV.exe -- (SPTISRV) SRV - [2006-12-14 00:46:16 \| 000,057,344 \| ---- \| M] () [On_Demand \| Stopped] -- C:\Program Files (x86)\Common Files\Sony Shared\AVLib\PACSPTISVR.exe -- (PACSPTISVR) SRV - [2006-03-01 02:10:18 \| 000,069,632 \| ---- \| M] (CrypKey (Canada) Ltd.) [Auto \| Stopped] -- C:\Windows\SysWow64\Crypserv.exe -- (Crypkey License) SRV - [2004-12-13 03:34:32 \| 000,049,152 \| ---- \| M] (Ulead Systems, Inc.) [Auto \| Stopped] -- C:\Program Files (x86)\Common Files\Ulead Systems\DVD\ULCDRSvr.exe -- (UleadBurningHelper) ========== Driver Services (SafeList) ========== DRV:64bit: - [2013-01-20 15:59:04 \| 000,130,008 \| ---- \| M] (Microsoft Corporation) [Kernel \| Auto \| Stopped] -- C:\Windows\SysNative\drivers\NisDrvWFP.sys -- (NisDrv) DRV:64bit: - [2012-12-21 13:09:28 \| 000,057,904 \| ---- \| M] (ESET) [Kernel \| Boot \| Stopped] -- C:\Windows\SysNative\drivers\epfwwfp.sys -- (epfwwfp) DRV:64bit: - [2012-12-21 13:09:24 \| 000,190,232 \| ---- \| M] (ESET) [Kernel \| Auto \| Stopped] -- C:\Windows\SysNative\drivers\epfw.sys -- (epfw) DRV:64bit: - [2012-12-21 13:09:24 \| 000,059,440 \| ---- \| M] (ESET) [Kernel \| System \| Running] -- C:\Windows\SysNative\drivers\EpfwLWF.sys -- (EpfwLWF) DRV:64bit: - [2012-12-21 13:08:54 \| 000,150,616 \| ---- \| M] (ESET) [Kernel \| System \| Stopped] -- C:\Windows\SysNative\drivers\ehdrv.sys -- (ehdrv) DRV:64bit: - [2012-12-21 13:08:18 \| 000,213,416 \| ---- \| M] (ESET) [File_System \| System \| Stopped] -- C:\Windows\SysNative\drivers\eamonm.sys -- (eamonm) DRV:64bit: - [2012-12-14 16:49:28 \| 000,024,176 \| ---- \| M] (Malwarebytes Corporation) [File_System \| On_Demand \| Stopped] -- C:\Windows\SysNative\drivers\mbam.sys -- (MBAMProtector) DRV:64bit: - [2012-11-09 15:33:30 \| 000,027,136 \| ---- \| M] (Nokia) [Kernel \| On_Demand \| Stopped] -- C:\Windows\SysNative\drivers\ccdcmbox64.sys -- (nmwcdc) DRV:64bit: - [2012-11-09 15:33:30 \| 000,019,968 \| ---- \| M] (Nokia) [Kernel \| On_Demand \| Stopped] -- C:\Windows\SysNative\drivers\ccdcmbx64.sys -- (nmwcd) DRV:64bit: - [2012-11-09 15:33:30 \| 000,009,216 \| ---- \| M] (Nokia) [Kernel \| On_Demand \| Stopped] -- C:\Windows\SysNative\drivers\usbser_lowerfltjx64.sys -- (UsbserFilt) DRV:64bit: - [2012-11-09 15:33:30 \| 000,009,216 \| ---- \| M] (Nokia) [Kernel \| On_Demand \| Stopped] -- C:\Windows\SysNative\drivers\usbser_lowerfltx64.sys -- (upperdev) DRV:64bit: - [2012-10-17 13:53:46 \| 000,026,112 \| ---- \| M] (Nokia) [Kernel \| On_Demand \| Stopped] -- C:\Windows\SysNative\drivers\pccsmcfdx64.sys -- (pccsmcfd) DRV:64bit: - [2012-08-23 15:10:20 \| 000,019,456 \| ---- \| M] (Microsoft Corporation) [Kernel \| On_Demand \| Stopped] -- C:\Windows\SysNative\drivers\rdpvideominiport.sys -- (RdpVideoMiniport) DRV:64bit: - [2012-08-23 15:07:35 \| 000,057,856 \| ---- \| M] (Microsoft Corporation) [Kernel \| On_Demand \| Stopped] -- C:\Windows\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt) DRV:64bit: - [2012-05-15 11:47:06 \| 000,082,816 \| ---- \| M] (VSO Software) [Kernel \| On_Demand \| Stopped] -- C:\Windows\SysNative\drivers\pcouffin.sys -- (pcouffin) DRV:64bit: - [2012-03-01 07:46:16 \| 000,023,408 \| ---- \| M] (Microsoft Corporation) [Recognizer \| Boot \| Unknown] -- C:\Windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec) DRV:64bit: - [2012-02-22 11:34:36 \| 000,028,160 \| ---- \| M] (ManyCam LLC) [Kernel \| On_Demand \| Stopped] -- C:\Windows\SysNative\drivers\mcaudrv_x64.sys -- (mcaudrv_simple) DRV:64bit: - [2012-01-17 13:45:56 \| 000,188,224 \| ---- \| M] (NVIDIA Corporation) [Kernel \| On_Demand \| Stopped] -- C:\Windows\SysNative\drivers\nvhda64v.sys -- (NVHDA) DRV:64bit: - [2012-01-11 07:11:20 \| 000,034,304 \| ---- \| M] (ManyCam LLC) [Kernel \| On_Demand \| Stopped] -- C:\Windows\SysNative\drivers\mcvidrv_x64.sys -- (ManyCam) DRV:64bit: - [2011-06-10 05:34:52 \| 000,539,240 \| ---- \| M] (Realtek ) [Kernel \| On_Demand \| Running] -- C:\Windows\SysNative\drivers\Rt64win7.sys -- (RTL8167) DRV:64bit: - [2011-05-28 16:53:26 \| 000,314,016 \| ---- \| M] () [Kernel \| Auto \| Stopped] -- C:\Windows\SysNative\drivers\atksgt.sys -- (atksgt) DRV:64bit: - [2011-05-28 16:53:25 \| 000,043,680 \| ---- \| M] () [Kernel \| Auto \| Stopped] -- C:\Windows\SysNative\drivers\lirsgt.sys -- (lirsgt) DRV:64bit: - [2011-04-16 19:47:26 \| 000,254,528 \| ---- \| M] (DT Soft Ltd) [Kernel \| System \| Running] -- C:\Windows\SysNative\drivers\dtsoftbus01.sys -- (dtsoftbus01) DRV:64bit: - [2011-03-11 07:41:12 \| 000,107,904 \| ---- \| M] (Advanced Micro Devices) [Kernel \| On_Demand \| Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata) DRV:64bit: - [2011-03-11 07:41:12 \| 000,027,008 \| ---- \| M] (Advanced Micro Devices) [Kernel \| Boot \| Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata) DRV:64bit: - [2010-11-20 14:33:35 \| 000,078,720 \| ---- \| M] (Hewlett-Packard Company) [Kernel \| On_Demand \| Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD) DRV:64bit: - [2010-11-20 11:43:57 \| 000,032,768 \| ---- \| M] (Microsoft Corporation) [Kernel \| On_Demand \| Stopped] -- C:\Windows\SysNative\drivers\usbser.sys -- (usbser) DRV:64bit: - [2010-01-11 11:05:20 \| 001,290,752 \| ---- \| M] (VIA Technologies, Inc.) [Kernel \| On_Demand \| Stopped] -- C:\Windows\SysNative\drivers\viahduaa.sys -- (VIAHdAudAddService) DRV:64bit: - [2009-10-21 17:33:02 \| 000,474,240 \| ---- \| M] (Leadtek Research Inc.) [Kernel \| On_Demand \| Stopped] -- C:\Windows\SysNative\drivers\wfeaglxt.sys -- (WFLR6654) DRV:64bit: - [2009-10-07 07:49:28 \| 006,379,288 \| ---- \| M] (Logitech Inc.) [Kernel \| On_Demand \| Stopped] -- C:\Windows\SysNative\drivers\lvuvc64.sys -- (LVUVC64) DRV:64bit: - [2009-10-07 07:47:46 \| 000,327,704 \| ---- \| M] (Logitech Inc.) [Kernel \| On_Demand \| Stopped] -- C:\Windows\SysNative\drivers\lvrs64.sys -- (LVRS64) DRV:64bit: - [2009-10-07 00:45:50 \| 000,030,232 \| ---- \| M] () [Kernel \| On_Demand \| Stopped] -- C:\Windows\SysNative\drivers\LVPr2M64.sys -- (LVPr2Mon) DRV:64bit: - [2009-10-07 00:45:50 \| 000,030,232 \| ---- \| M] () [Kernel \| On_Demand \| Stopped] -- C:\Windows\SysNative\drivers\LVPr2M64.sys -- (LVPr2M64) DRV:64bit: - [2009-07-16 20:38:40 \| 000,015,416 \| ---- \| M] () [Kernel \| On_Demand \| Running] -- C:\Windows\SysNative\drivers\ASACPI.sys -- (MTsensor) DRV:64bit: - [2009-07-14 02:52:20 \| 000,194,128 \| ---- \| M] (AMD Technologies Inc.) [Kernel \| On_Demand \| Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs) DRV:64bit: - [2009-07-14 02:48:04 \| 000,065,600 \| ---- \| M] (LSI Corporation) [Kernel \| On_Demand \| Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2) DRV:64bit: - [2009-07-14 02:45:55 \| 000,024,656 \| ---- \| M] (Promise Technology) [Kernel \| On_Demand \| Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor) DRV:64bit: - [2009-06-10 21:34:33 \| 003,286,016 \| ---- \| M] (Broadcom Corporation) [Kernel \| On_Demand \| Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv) DRV:64bit: - [2009-06-10 21:34:28 \| 000,468,480 \| ---- \| M] (Broadcom Corporation) [Kernel \| On_Demand \| Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv) DRV:64bit: - [2009-06-10 21:34:23 \| 000,270,848 \| ---- \| M] (Broadcom Corporation) [Kernel \| On_Demand \| Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a) DRV:64bit: - [2009-06-10 21:31:59 \| 000,031,232 \| ---- \| M] (Hauppauge Computer Works, Inc.) [Kernel \| On_Demand \| Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir) DRV:64bit: - [2008-03-17 18:12:26 \| 000,028,664 \| ---- \| M] () [Kernel \| System \| Stopped] -- C:\Windows\SysNative\Ckldrv.sys -- (NetworkX) DRV:64bit: - [2006-10-18 01:00:00 \| 000,052,760 \| ---- \| M] (Sonic Solutions) [Kernel \| Boot \| Running] -- C:\Windows\SysNative\drivers\PxHlpa64.sys -- (PxHlpa64) DRV:64bit: - [2006-07-21 19:15:00 \| 000,469,888 \| ---- \| M] (Leadtek Research Inc.) [Kernel \| On_Demand \| Stopped] -- C:\Windows\SysNative\drivers\cxavsvid.sys -- (CX88VID) DRV - [2012-11-16 16:51:26 \| 000,011,880 \| ---- \| M] (TuneUp Software) [Kernel \| On_Demand \| Stopped] -- D:\Program Files\TuneUp Utilities 2013\TuneUpUtilitiesDriver64.sys -- (TuneUpUtilitiesDrv) DRV - [2009-07-14 02:19:10 \| 000,019,008 \| ---- \| M] (Microsoft Corporation) [File_System \| On_Demand \| Stopped] -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount) DRV - [2006-01-10 03:47:27 \| 000,031,846 \| ---- \| M] () [Kernel \| System \| Stopped] -- C:\Windows\SysWOW64\Ckldrv.sys -- (NetworkX) DRV - [2004-12-23 16:27:56 \| 000,027,392 \| ---- \| M] (Ulead Systems, Inc.) [Kernel \| On_Demand \| Stopped] -- C:\Windows\SysWOW64\drivers\ULCDRHlp.sys -- (ULCDRHlp) DRV - [1999-05-05 06:22:00 \| 000,008,944 \| ---- \| M] (Microsoft Corporation) [Kernel \| On_Demand \| Stopped] -- C:\Windows\SysWOW64\drivers\Usbscan.sys -- (usbscan) ========== Standard Registry (SafeList) ========== ========== Internet Explorer ========== IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A} IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = bing.com/search?q={searchTerms}&FORM=IE8SRC IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A} IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = bing.com/search?q={searchTerms}&FORM=IE8SRC IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = msn.com/ IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = en-us IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 54 F5 CF 9F 42 FC CB 01 [binary data] IE - HKCU\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A} IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = 127.0.0.1:9421;<local> ========== FireFox ========== FF:64bit: - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre7\bin\new_plugin\npjp2.dll (Oracle Corporation) FF:64bit: - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\5.1.10411.0\npctrl.dll ( Microsoft Corporation) FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@esn.me/esnsonar,version=0.70.0: C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.0\npesnsonar.dll File not found FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=1.6.0_39: C:\Windows\SysWOW64\npdeployJava1.dll (Sun Microsystems, Inc.) FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files (x86)\Java\jre6\bin\plugin2\npjp2.dll (Sun Microsystems, Inc.) FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files (x86)\Microsoft Silverlight\5.1.10411.0\npctrl.dll ( Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: D:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: D:\PROGRA~1\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@nokia.com/EnablerPlugin: C:\Program Files (x86)\Nokia\Nokia Suite\npNokiaSuiteEnabler.dll ( ) FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVision: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation) FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVisionStreaming: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation) FF - HKLM\Software\MozillaPlugins\@oberon-media.com/ONCAdapter: C:\Program Files (x86)\Common Files\Oberon Media\NCAdapter\1.0.0.8\npapicomadapter.dll File not found FF - HKLM\Software\MozillaPlugins\Adobe Reader: D:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.) FF - HKCU\Software\MozillaPlugins\@talk.google.com/GoogleTalkPlugin: C:\Users\Milos\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll (Google) FF - HKCU\Software\MozillaPlugins\@talk.google.com/O3DPlugin: C:\Users\Milos\AppData\Roaming\Mozilla\plugins\npgtpo3dautoplugin.dll () FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Users\Milos\AppData\Local\Google\Update\1.3.21.135\npGoogleUpdate3.dll (Google Inc.) FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Users\Milos\AppData\Local\Google\Update\1.3.21.135\npGoogleUpdate3.dll (Google Inc.) FF - HKCU\Software\MozillaPlugins\ubisoft.com/uplaypc: C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll (Ubisoft) FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\eplgTb@eset.com: D:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird [2013-01-21 17:05:46 \| 000,000,000 \| ---D \| M] FF - HKEY_CURRENT_USER\software\mozilla\SeaMonkey\Extensions\\mozilla_cc@internetdownloadmanager.com: C:\Users\Milos\AppData\Roaming\IDM\idmmzcc5 ========== Chrome ========== CHR - homepage: about:blank CHR - default_search_provider: Google (Enabled) CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}sourceid=chrome&ie={inputEncoding} CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&hl={language}&q={searchTerms}&sugkey={google:suggestAPIKeyParameter}, CHR - homepage: about:blank CHR - plugin: Remoting Viewer (Enabled) = internal-remoting-viewer CHR - plugin: Native Client (Enabled) = C:\Users\Milos\AppData\Local\Google\Chrome\Application\24.0.1312.57\ppGoogleNaClPluginChrome.dll CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Users\Milos\AppData\Local\Google\Chrome\Application\24.0.1312.57\pdf.dll CHR - plugin: Shockwave Flash (Enabled) = C:\Users\Milos\AppData\Local\Google\Chrome\Application\24.0.1312.57\gcswf32.dll CHR - plugin: Shockwave Flash (Disabled) = C:\Users\Milos\AppData\Local\Google\Chrome\User Data\PepperFlash\11.2.31.144\pepflashplayer.dll CHR - plugin: Google Talk Plugin (Enabled) = C:\Users\Milos\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll CHR - plugin: Google Talk Plugin Video Accelerator (Enabled) = C:\Users\Milos\AppData\Roaming\Mozilla\plugins\npgtpo3dautoplugin.dll CHR - plugin: Adobe Acrobat (Disabled) = D:\Program Files\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll CHR - plugin: QuickTime Plug-in 7.7 (Enabled) = D:\Program Files\QuickTime\plugins\npqtplugin.dll CHR - plugin: QuickTime Plug-in 7.7 (Enabled) = D:\Program Files\QuickTime\plugins\npqtplugin2.dll CHR - plugin: QuickTime Plug-in 7.7 (Enabled) = D:\Program Files\QuickTime\plugins\npqtplugin3.dll CHR - plugin: QuickTime Plug-in 7.7 (Enabled) = D:\Program Files\QuickTime\plugins\npqtplugin4.dll CHR - plugin: QuickTime Plug-in 7.7 (Enabled) = D:\Program Files\QuickTime\plugins\npqtplugin5.dll CHR - plugin: QuickTime Plug-in 7.7 (Enabled) = D:\Program Files\QuickTime\plugins\npqtplugin6.dll CHR - plugin: QuickTime Plug-in 7.7 (Enabled) = D:\Program Files\QuickTime\plugins\npqtplugin7.dll CHR - plugin: Java(TM) Platform SE 6 U31 (Enabled) = C:\Program Files (x86)\Java\jre6\bin\plugin2\npjp2.dll CHR - plugin: NVIDIA 3D Vision (Enabled) = C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll CHR - plugin: NVIDIA 3D VISION (Enabled) = C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll CHR - plugin: Google Update (Enabled) = C:\Users\Milos\AppData\Local\Google\Update\1.3.21.111\npGoogleUpdate3.dll CHR - plugin: Microsoft Office 2010 (Enabled) = D:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL CHR - plugin: Microsoft Office 2010 (Enabled) = D:\PROGRA~1\MICROS~1\Office14\NPSPWRAP.DLL CHR - plugin: Silverlight Plug-In (Enabled) = c:\Program Files (x86)\Microsoft Silverlight\5.1.10411.0\npctrl.dll CHR - Extension: Angry Birds = C:\Users\Milos\AppData\Local\Google\Chrome\User Data\Default\Extensions\aknpkdffaafgjchaibgeefbgmgeghloj\1.5.0.7_0\ CHR - Extension: Mp3Skull Toolbar = C:\Users\Milos\AppData\Local\Google\Chrome\User Data\Default\Extensions\baoibaaaddojlcbojfclgifomaofgogm\1.4_0\ CHR - Extension: CaptchaTrader Notifications = C:\Users\Milos\AppData\Local\Google\Chrome\User Data\Default\Extensions\dmbplgedknhmkolmdlcmgjhbjnhkaknc\1.0.3_0\ CHR - Extension: Photo Zoom for Facebook = C:\Users\Milos\AppData\Local\Google\Chrome\User Data\Default\Extensions\elioihkkcdgakfbahdoddophfngopipi\1.1208.30.1_0\ CHR - Extension: Type Scout = C:\Users\Milos\AppData\Local\Google\Chrome\User Data\Default\Extensions\fedokkaolmkkoeedicihicdeppjjeamj\4_0\ CHR - Extension: Go to IMDb = C:\Users\Milos\AppData\Local\Google\Chrome\User Data\Default\Extensions\fipkcplmpmhcmfgkgahliaabodplkjio\1.2.6_0\ CHR - Extension: Kat.ph torrent search = C:\Users\Milos\AppData\Local\Google\Chrome\User Data\Default\Extensions\ggijicjbckbcjopdpjlhgjeomikehknl\1.1_0\ CHR - Extension: AdBlock = C:\Users\Milos\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.5.60_0\ CHR - Extension: JDownloader Integration = C:\Users\Milos\AppData\Local\Google\Chrome\User Data\Default\Extensions\gmochcijbhgjfdmojjenfabpafelhgdc\1.0_0\ CHR - Extension: Troll Emoticons Plus = C:\Users\Milos\AppData\Local\Google\Chrome\User Data\Default\Extensions\hnomnkjliojhajcgajbjjckllbgcmpll\3.4.2_1\ CHR - Extension: Yahoo Mail Checker = C:\Users\Milos\AppData\Local\Google\Chrome\User Data\Default\Extensions\ijbgodfidfimmjgeapafonbdkkkndpmp\1.4.1_0\ CHR - Extension: Downloads = C:\Users\Milos\AppData\Local\Google\Chrome\User Data\Default\Extensions\jfchnphgogjhineanplmfkofljiagjfb\1_0\ CHR - Extension: YouTube Search = C:\Users\Milos\AppData\Local\Google\Chrome\User Data\Default\Extensions\kdaekfpegpnndokmkpngpnecogmbfalg\1.9_0\ CHR - Extension: Until AM = C:\Users\Milos\AppData\Local\Google\Chrome\User Data\Default\Extensions\kodigjkcpaoeodlnmcnekemakpnmegnk\0.203_0\ CHR - Extension: Webcam Toy = C:\Users\Milos\AppData\Local\Google\Chrome\User Data\Default\Extensions\lfbgimoladefibpklnfmkpknadbklade\1.4_0\ CHR - Extension: AudioSauna = C:\Users\Milos\AppData\Local\Google\Chrome\User Data\Default\Extensions\lkgfemnodkdnenmfkblebnkjpckkjcae\0.402_0\ CHR - Extension: Star Gazer = C:\Users\Milos\AppData\Local\Google\Chrome\User Data\Default\Extensions\mblmlcbknbnfebdfjnolmcapmdofhmme\1.1_0\ CHR - Extension: Google Mail Checker = C:\Users\Milos\AppData\Local\Google\Chrome\User Data\Default\Extensions\mihcahmgecmbnbcchbopgniflfhgnkff\4.4.0_0\ CHR - Extension: GIFPAL = C:\Users\Milos\AppData\Local\Google\Chrome\User Data\Default\Extensions\noohoboklgjeccnihfkbdakbchbhjlch\1.2_0\ CHR - Extension: (zabranjeno)-BB Search = C:\Users\Milos\AppData\Local\Google\Chrome\User Data\Default\Extensions\okfeeplagpidgdgceaicggccompdgcon\1.4.2_0\ CHR - Extension: Surplus = C:\Users\Milos\AppData\Local\Google\Chrome\User Data\Default\Extensions\pfphgaimeghgekhncbkfblhdhfaiaipf\4.0.6_0\ CHR - Extension: Psykopaint = C:\Users\Milos\AppData\Local\Google\Chrome\User Data\Default\Extensions\pgjchkcfmigkkhedgjedmffdepgmpfil\0.0.0.10_0\ CHR - Extension: Psykopaint = C:\Users\Milos\AppData\Local\Google\Chrome\User Data\Default\Extensions\pgjchkcfmigkkhedgjedmffdepgmpfil\0.0.0.10_0\.bak CHR - Extension: Gmail = C:\Users\Milos\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\ CHR - Extension: Canvas Rider = C:\Users\Milos\AppData\Local\Google\Chrome\User Data\Default\Extensions\poknhlcknimnnbfcombaooklofipaibk\0.71_0\ O1 HOSTS File: ([2009-06-10 22:00:26 \| 000,000,824 \| ---- \| M]) - C:\Windows\SysNative\drivers\etc\hosts O2:64bit: - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation) O2 - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - D:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation) O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.) O2 - BHO: (Skype Browser Helper) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.) O2 - BHO: (Office Document Cache Handler) - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - D:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation) O4:64bit: - HKLM..\Run: [AdobeAAMUpdater-1.0] C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe (Adobe Systems Incorporated) O4:64bit: - HKLM..\Run: [egui] D:\Program Files\ESET\ESET Smart Security\egui.exe (ESET) O4:64bit: - HKLM..\Run: [MSC] c:\Program Files\Microsoft Security Client\msseces.exe (Microsoft Corporation) O4 - HKLM..\Run: [HDAudDeck] C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe (VIA) O4 - HKLM..\Run: [LogitechQuickCamRibbon] C:\Program Files\Logitech\Logitech WebCam Software\LWS.exe () O4 - HKLM..\Run: [SwitchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe (Adobe Systems Incorporated) O4 - HKCU..\Run: [] File not found O4 - HKCU..\Run: [DAEMON Tools Lite] D:\Program Files\DAEMON Tools Lite\DTLite.exe (DT Soft Ltd) O4 - HKCU..\Run: [MCShield Monitor] D:\Program Files\MCShield\MCShieldRTM.exe (MyCity) O4 - HKCU..\Run: [NokiaSuite.exe] C:\Program Files (x86)\Nokia\Nokia Suite\NokiaSuite.exe (Nokia) O4 - HKCU..\Run: [TBPanel] C:\Program Files (x86)\Vtune\TBPanel.exe () O4 - HKCU..\RunOnce: [FlashPlayerUpdate] C:\Windows\system32\Macromed\Flash\FlashUtil64_11_5_502_149_ActiveX.exe -update activex File not found O4 - HKLM..\RunOnceEx: [Flag] Reg Error: Invalid data type. File not found O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoCDBurning = 0 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: = O8:64bit: - Extra context menu item: E&xport to Microsoft Excel - D:\Program Files\Microsoft Office\Office14\EXCEL.EXE (Microsoft Corporation) O8 - Extra context menu item: E&xport to Microsoft Excel - D:\Program Files\Microsoft Office\Office14\EXCEL.EXE (Microsoft Corporation) O9 - Extra Button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.) O9 - Extra 'Tools' menuitem : Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.) O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - D:\Program Files\Microsoft Office\Office12\REFIEBAR.DLL (Microsoft Corporation) O1364bit: - gopher Prefix: missing O13 - gopher Prefix: missing O16:64bit: - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} java.sun.com/update/1.7.0/jinstall-1_7_0-windows-i586.cab (Java Plug-in 10.0.0) O16:64bit: - DPF: {CAFEEFAC-0017-0000-0000-ABCDEFFEDCBA} java.sun.com/update/1.7.0/jinstall-1_7_0-windows-i586.cab (Java Plug-in 1.7.0) O16:64bit: - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} java.sun.com/update/1.7.0/jinstall-1_7_0-windows-i586.cab (Java Plug-in 1.7.0) O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} java.sun.com/update/1.6.0/jinstall-1_6_0_39-windows-i586.cab (Java Plug-in 1.6.0_39) O16 - DPF: {CAFEEFAC-0016-0000-0039-ABCDEFFEDCBA} java.sun.com/update/1.6.0/jinstall-1_6_0_39-windows-i586.cab (Java Plug-in 1.6.0_39) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} java.sun.com/update/1.6.0/jinstall-1_6_0_39-windows-i586.cab (Java Plug-in 1.6.0_39) O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object) O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 95.180.0.18 8.8.8.8 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{2D7825BC-6149-4217-8E78-F1BDE93A8263}: DhcpNameServer = 95.180.0.18 8.8.8.8 O18:64bit: - Protocol\Handler\livecall - No CLSID value found O18:64bit: - Protocol\Handler\msdaipp - No CLSID value found O18:64bit: - Protocol\Handler\msdaipp\0x00000001 - No CLSID value found O18:64bit: - Protocol\Handler\msdaipp\oledb - No CLSID value found O18:64bit: - Protocol\Handler\ms-help - No CLSID value found O18:64bit: - Protocol\Handler\msnim - No CLSID value found O18:64bit: - Protocol\Handler\mso-offdap - No CLSID value found O18:64bit: - Protocol\Handler\mso-offdap11 - No CLSID value found O18:64bit: - Protocol\Handler\skype4com - No CLSID value found O18:64bit: - Protocol\Handler\skype-ie-addon-data - No CLSID value found O18 - Protocol\Handler\livecall - No CLSID value found O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\msnim - No CLSID value found O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies) O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.) O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation) O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation) O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation) O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysWOW64\userinit.exe (Microsoft Corporation) O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found. O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found. O28 - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - D:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation) O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2011-11-10 18:52:28 \| 000,000,000 \| ---D \| M] - D:\Autodesk -- [ NTFS ] O34 - HKLM BootExecute: (autocheck autochk ) O35:64bit: - HKLM\..comfile [open] -- "%1" % O35:64bit: - HKLM\..exefile [open] -- "%1" %* O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %* O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3) O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2) O38 - SubSystems\\Windows: (ServerDll=sxssrv,4) ========== Files/Folders - Created Within 30 Days ========== [2013-02-20 11:31:41 \| 000,602,112 \| ---- \| C] (OldTimer Tools) -- C:\Users\Milos\Desktop\OTL.exe [2013-02-16 20:34:52 \| 000,000,000 \| ---D \| C] -- C:\Users\Milos\Desktop\Slender - The Eight Pages_Data [2013-02-16 18:52:09 \| 000,000,000 \| ---D \| C] -- C:\Program Files (x86)\PC Connectivity Solution [2013-02-13 11:33:00 \| 000,096,768 \| ---- \| C] (Microsoft Corporation) -- C:\Windows\SysNative\mshtmled.dll [2013-02-13 11:33:00 \| 000,073,216 \| ---- \| C] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmled.dll [2013-02-13 11:32:58 \| 000,176,640 \| ---- \| C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieui.dll [2013-02-13 11:32:57 \| 000,248,320 \| ---- \| C] (Microsoft Corporation) -- C:\Windows\SysNative\ieui.dll [2013-02-13 11:32:56 \| 000,237,056 \| ---- \| C] (Microsoft Corporation) -- C:\Windows\SysNative\url.dll [2013-02-13 11:32:56 \| 000,231,936 \| ---- \| C] (Microsoft Corporation) -- C:\Windows\SysWow64\url.dll [2013-02-13 11:32:56 \| 000,173,056 \| ---- \| C] (Microsoft Corporation) -- C:\Windows\SysNative\ieUnatt.exe [2013-02-13 11:32:56 \| 000,142,848 \| ---- \| C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieUnatt.exe [2013-02-13 11:32:55 \| 002,312,704 \| ---- \| C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript9.dll [2013-02-13 11:32:55 \| 001,494,528 \| ---- \| C] (Microsoft Corporation) -- C:\Windows\SysNative\inetcpl.cpl [2013-02-13 11:32:55 \| 001,427,968 \| ---- \| C] (Microsoft Corporation) -- C:\Windows\SysWow64\inetcpl.cpl [2013-02-13 11:32:54 \| 000,729,088 \| ---- \| C] (Microsoft Corporation) -- C:\Windows\SysNative\msfeeds.dll [2013-02-13 11:32:52 \| 000,717,824 \| ---- \| C] (Microsoft Corporation) -- C:\Windows\SysWow64\jscript.dll [2013-02-13 11:32:51 \| 000,816,640 \| ---- \| C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript.dll [2013-02-13 11:32:51 \| 000,599,040 \| ---- \| C] (Microsoft Corporation) -- C:\Windows\SysNative\vbscript.dll [2013-02-13 11:31:48 \| 005,553,512 \| ---- \| C] (Microsoft Corporation) -- C:\Windows\SysNative\ntoskrnl.exe [2013-02-13 11:31:47 \| 003,967,848 \| ---- \| C] (Microsoft Corporation) -- C:\Windows\SysWow64\ntkrnlpa.exe [2013-02-13 11:31:46 \| 003,913,064 \| ---- \| C] (Microsoft Corporation) -- C:\Windows\SysWow64\ntoskrnl.exe [2013-02-13 11:31:27 \| 000,215,040 \| ---- \| C] (Microsoft Corporation) -- C:\Windows\SysNative\winsrv.dll [2013-02-13 11:31:26 \| 000,025,600 \| ---- \| C] (Microsoft Corporation) -- C:\Windows\SysWow64\setup16.exe [2013-02-13 11:31:26 \| 000,014,336 \| ---- \| C] (Microsoft Corporation) -- C:\Windows\SysWow64\ntvdm64.dll [2013-02-13 11:31:25 \| 000,007,680 \| ---- \| C] (Microsoft Corporation) -- C:\Windows\SysWow64\instnm.exe [2013-02-13 11:31:25 \| 000,005,120 \| ---- \| C] (Microsoft Corporation) -- C:\Windows\SysWow64\wow32.dll [2013-02-13 11:31:24 \| 000,002,048 \| ---- \| C] (Microsoft Corporation) -- C:\Windows\SysWow64\user.exe [2013-02-13 11:30:46 \| 000,288,088 \| ---- \| C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\FWPKCLNT.SYS [2013-02-07 17:07:48 \| 000,627,600 \| ---- \| C] (Oracle Corporation) -- C:\Windows\SysNative\deployJava1.dll [2013-02-07 17:07:48 \| 000,252,296 \| ---- \| C] (Oracle Corporation) -- C:\Windows\SysNative\javaws.exe [2013-02-07 17:07:48 \| 000,188,808 \| ---- \| C] (Oracle Corporation) -- C:\Windows\SysNative\javaw.exe [2013-02-07 17:07:48 \| 000,188,808 \| ---- \| C] (Oracle Corporation) -- C:\Windows\SysNative\java.exe [2013-02-07 17:06:41 \| 000,000,000 \| ---D \| C] -- C:\Program Files\Java [2013-02-07 16:59:31 \| 000,000,000 \| ---D \| C] -- C:\Users\Milos\.android [2013-02-07 16:57:27 \| 000,000,000 \| ---D \| C] -- C:\Users\Milos\Desktop\Development [2013-02-06 12:20:38 \| 000,000,000 \| ---D \| C] -- C:\Users\Milos\AppData\Roaming\Mozilla [2013-02-05 22:18:22 \| 000,000,000 \| ---D \| C] -- C:\Users\Milos\AppData\Roaming\ActiveX [2013-02-04 12:20:54 \| 000,158,128 \| ---- \| C] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\javaws.exe [2013-02-04 12:20:54 \| 000,149,936 \| ---- \| C] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\javaw.exe [2013-02-04 12:20:54 \| 000,149,936 \| ---- \| C] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\java.exe [2013-01-31 15:55:56 \| 000,000,000 \| ---D \| C] -- C:\Users\Milos\AppData\Local\{2F185865-A176-42B0-88C8-E9DF3F477137} [2013-01-31 00:37:08 \| 000,000,000 \| ---D \| C] -- C:\Users\Milos\AppData\Local\{D2E8D144-E3A5-49B9-AEC7-9EB6255B531E} [2013-01-24 19:36:54 \| 000,000,000 \| ---D \| C] -- C:\Users\Milos\AppData\Local\{F73A9C5F-A5FA-44B4-9462-79C05BF7ECC0} [2013-01-23 00:11:24 \| 000,000,000 \| ---D \| C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype [2013-01-23 00:11:23 \| 000,000,000 \| ---D \| C] -- C:\Program Files (x86)\Common Files\Skype [2013-01-21 20:12:54 \| 000,000,000 \| ---D \| C] -- C:\Users\Milos\AppData\Local\{B4AABE66-9C5B-479E-A490-C97613FF26A4} [2013-01-21 17:04:32 \| 000,000,000 \| ---D \| C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ESET [2013-01-21 17:04:28 \| 000,000,000 \| ---D \| C] -- C:\ProgramData\ESET [2012-05-15 11:47:06 \| 000,082,816 \| ---- \| C] (VSO Software) -- C:\Users\Milos\AppData\Roaming\pcouffin.sys [2 C:\Windows\.tmp files -> C:\Windows\.tmp -> ] ========== Files - Modified Within 30 Days ========== [2013-02-20 11:31:44 \| 000,602,112 \| ---- \| M] (OldTimer Tools) -- C:\Users\Milos\Desktop\OTL.exe [2013-02-20 11:15:04 \| 000,067,584 \| --S- \| M] () -- C:\Windows\bootstat.dat [2013-02-20 11:14:58 \| 3113,525,248 \| -HS- \| M] () -- C:\hiberfil.sys [2013-02-20 11:13:26 \| 000,000,000 \| ---- \| M] () -- C:\Windows\SysNative\drivers\lvuvc.hs [2013-02-20 01:29:00 \| 000,000,830 \| ---- \| M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job [2013-02-20 01:25:00 \| 000,000,908 \| ---- \| M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1028166717-2969663755-3555985625-1000UA.job [2013-02-19 11:25:00 \| 000,000,856 \| ---- \| M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1028166717-2969663755-3555985625-1000Core.job [2013-02-19 10:34:09 \| 000,025,216 \| -H-- \| M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 [2013-02-19 10:34:09 \| 000,025,216 \| -H-- \| M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 [2013-02-17 22:56:16 \| 000,779,266 \| ---- \| M] () -- C:\Windows\SysNative\PerfStringBackup.INI [2013-02-17 22:56:16 \| 000,660,280 \| ---- \| M] () -- C:\Windows\SysNative\perfh009.dat [2013-02-17 22:56:16 \| 000,121,208 \| ---- \| M] () -- C:\Windows\SysNative\perfc009.dat [2013-02-16 04:20:27 \| 000,038,643 \| ---- \| M] () -- C:\Users\Milos\Desktop\48103_10200653809050931_1966944811_n.jpg [2013-02-13 11:49:01 \| 005,054,424 \| ---- \| M] () -- C:\Windows\SysNative\FNTCACHE.DAT [2013-02-13 11:35:31 \| 000,001,945 \| ---- \| M] () -- C:\Windows\epplauncher.mif [2013-02-08 18:29:40 \| 000,697,712 \| ---- \| M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerApp.exe [2013-02-08 18:29:40 \| 000,074,096 \| ---- \| M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl [2013-02-07 17:07:38 \| 000,252,296 \| ---- \| M] (Oracle Corporation) -- C:\Windows\SysNative\javaws.exe [2013-02-07 17:07:38 \| 000,188,808 \| ---- \| M] (Oracle Corporation) -- C:\Windows\SysNative\javaw.exe [2013-02-07 17:07:38 \| 000,188,808 \| ---- \| M] (Oracle Corporation) -- C:\Windows\SysNative\java.exe [2013-02-07 17:07:37 \| 000,627,600 \| ---- \| M] (Oracle Corporation) -- C:\Windows\SysNative\deployJava1.dll [2013-01-29 15:52:41 \| 000,169,569 \| ---- \| M] () -- C:\Users\Milos\Desktop\productimage-picture-heisenberg-crystal-meth-13550 (1).jpg [2013-01-29 15:47:34 \| 000,340,685 \| ---- \| M] () -- C:\Users\Milos\Desktop\tumblr_m5rvv0nbLC1ry7ppro1_1280.jpg [2013-01-29 15:42:32 \| 000,019,393 \| ---- \| M] () -- C:\Users\Milos\Desktop\Season_4_-_Heisenberg.jpg [2 C:\Windows\.tmp files -> C:\Windows\.tmp -> ] ========== Files Created - No Company Name ========== [2013-02-16 20:34:51 \| 009,152,000 \| ---- \| C] () -- C:\Users\Milos\Desktop\Slender - The Eight Pages.exe [2013-02-16 18:44:28 \| 000,501,474 \| ---- \| C] () -- C:\Users\Milos\Desktop\15122010005.jpg [2013-02-16 04:20:27 \| 000,038,643 \| ---- \| C] () -- C:\Users\Milos\Desktop\48103_10200653809050931_1966944811_n.jpg [2013-01-29 15:51:13 \| 000,169,569 \| ---- \| C] () -- C:\Users\Milos\Desktop\productimage-picture-heisenberg-crystal-meth-13550 (1).jpg [2013-01-29 15:47:34 \| 000,340,685 \| ---- \| C] () -- C:\Users\Milos\Desktop\tumblr_m5rvv0nbLC1ry7ppro1_1280.jpg [2013-01-29 15:42:28 \| 000,019,393 \| ---- \| C] () -- C:\Users\Milos\Desktop\Season_4_-_Heisenberg.jpg [2012-11-28 20:12:09 \| 000,000,384 \| ---- \| C] () -- C:\Users\Milos\AppData\Roaming\Network Meter_Settings.ini [2012-11-28 20:11:14 \| 000,000,546 \| ---- \| C] () -- C:\Users\Milos\AppData\Roaming\All CPU MeterV3_Settings.ini [2012-11-28 20:08:26 \| 000,000,285 \| ---- \| C] () -- C:\Users\Milos\AppData\Roaming\GPU MeterV2_Settings.ini [2012-09-14 13:13:31 \| 000,016,896 \| ---- \| C] () -- C:\Users\Milos\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2012-07-27 13:14:18 \| 000,170,734 \| ---- \| C] () -- C:\ProgramData\1343391053.bdinstall.bin [2012-07-26 17:48:14 \| 000,074,932 \| ---- \| C] () -- C:\ProgramData\1343321167.bdinstall.bin [2012-07-17 12:11:47 \| 000,000,196 \| ---- \| C] () -- C:\Windows\ulead32.ini [2012-07-16 23:47:20 \| 000,001,699 \| ---- \| C] () -- C:\ProgramData\1342478752.596.bin [2012-07-16 23:45:59 \| 000,182,150 \| ---- \| C] () -- C:\ProgramData\1342478752.2388.bin [2012-07-16 23:45:59 \| 000,013,106 \| ---- \| C] () -- C:\ProgramData\1342478752.4352.bin [2012-07-16 23:45:59 \| 000,008,548 \| ---- \| C] () -- C:\ProgramData\1342478752.3448.bin [2012-07-16 23:45:59 \| 000,007,399 \| ---- \| C] () -- C:\ProgramData\1342478752.3528.bin [2012-07-16 23:45:59 \| 000,003,042 \| ---- \| C] () -- C:\ProgramData\1342478752.4344.bin [2012-07-16 23:45:59 \| 000,000,558 \| ---- \| C] () -- C:\ProgramData\1342478752.4372.bin [2012-07-16 23:45:59 \| 000,000,558 \| ---- \| C] () -- C:\ProgramData\1342478752.4184.bin [2012-07-16 23:45:55 \| 000,025,587 \| ---- \| C] () -- C:\ProgramData\1342478752.4296.bin [2012-07-16 23:45:54 \| 000,017,464 \| ---- \| C] () -- C:\ProgramData\1342478752.3532.bin [2012-07-16 23:45:52 \| 000,096,135 \| ---- \| C] () -- C:\ProgramData\1342478752.5096.bin [2012-06-19 13:02:17 \| 003,123,272 \| R--- \| C] () -- C:\Windows\SysWow64\pbsvc.exe [2012-05-15 11:47:06 \| 000,099,384 \| ---- \| C] () -- C:\Users\Milos\AppData\Roaming\inst.exe [2012-05-15 11:47:06 \| 000,007,859 \| ---- \| C] () -- C:\Users\Milos\AppData\Roaming\pcouffin.cat [2012-05-15 11:47:06 \| 000,001,167 \| ---- \| C] () -- C:\Users\Milos\AppData\Roaming\pcouffin.inf [2012-01-24 15:08:47 \| 000,000,124 \| ---- \| C] () -- C:\Windows\WET.INI [2012-01-17 19:44:55 \| 000,159,839 \| ---- \| C] () -- C:\Windows\ScanWiz Uninstaller.exe [2012-01-15 15:55:15 \| 000,003,120 \| ---- \| C] () -- C:\Windows\SysWow64\2939cd20-1991-4ee1-a0b7-064641f81e3b.dll [2011-12-05 13:20:58 \| 000,049,152 \| ---- \| C] () -- C:\Windows\AutoSet.dll [2011-11-24 13:40:31 \| 000,000,376 \| ---- \| C] () -- C:\Windows\ODBC.INI [2011-11-13 18:17:50 \| 000,000,036 \| ---- \| C] () -- C:\Windows\mafosav.INI [2011-09-15 11:03:58 \| 000,772,990 \| ---- \| C] () -- C:\Windows\SysWow64\PerfStringBackup.INI [2011-09-06 16:18:56 \| 000,136,593 \| ---- \| C] () -- C:\Windows\hphins33.dat [2011-09-06 16:18:56 \| 000,000,512 \| ---- \| C] () -- C:\Windows\hphmdl33.dat [2011-08-26 15:09:13 \| 000,157,696 \| ---- \| C] () -- C:\Windows\SysWow64\OggEnc.exe [2011-08-26 15:09:13 \| 000,145,408 \| ---- \| C] () -- C:\Windows\SysWow64\Lame.exe [2011-08-26 15:09:13 \| 000,076,800 \| ---- \| C] () -- C:\Windows\SysWow64\Faac.exe [2011-06-27 14:03:03 \| 000,000,004 \| ---- \| C] () -- C:\Windows\SysWow64\WFSCHDL.dat [2011-06-27 14:02:53 \| 000,003,732 \| ---- \| C] () -- C:\Windows\SysWow64\FMCodec.dat [2011-06-27 14:02:51 \| 000,000,002 \| ---- \| C] () -- C:\Windows\SysWow64\Dvbpws.dll [2011-06-20 19:02:58 \| 001,524,112 \| ---- \| C] () -- C:\Windows\SysWow64\bandoolmx.dll [2011-06-18 18:45:22 \| 000,000,056 \| -H-- \| C] () -- C:\ProgramData\ezsidmv.dat [2011-06-15 21:31:33 \| 000,000,219 \| ---- \| C] () -- C:\Windows\spwdr.INI [2011-06-15 21:09:27 \| 000,000,145 \| ---- \| C] () -- C:\Windows\Crypkey.ini [2011-06-15 21:09:22 \| 000,031,846 \| ---- \| C] () -- C:\Windows\SysWow64\Ckldrv.sys [2011-06-15 21:09:22 \| 000,027,648 \| R--- \| C] () -- C:\Windows\Setup_ck.exe [2011-06-15 21:09:22 \| 000,018,432 \| ---- \| C] () -- C:\Windows\Setup_ck.dll [2011-06-15 21:09:22 \| 000,011,776 \| ---- \| C] () -- C:\Windows\Ckrfresh.exe [2011-05-12 19:14:08 \| 000,008,192 \| ---- \| C] () -- C:\Windows\SysWow64\srvany.exe [2011-04-17 13:41:56 \| 000,532,480 \| ---- \| C] () -- C:\Windows\SysWow64\CddbPlaylist2Sony.dll [2011-04-16 15:49:58 \| 000,000,097 \| ---- \| C] () -- C:\Windows\SCNDRVU.INI [2011-04-16 15:38:39 \| 000,018,337 \| ---- \| C] () -- C:\Windows\Ascd_tmp.ini [2011-04-16 15:36:05 \| 000,001,769 \| ---- \| C] () -- C:\Windows\Language_trs.ini [2011-04-09 17:55:28 \| 000,179,261 \| ---- \| C] () -- C:\Windows\SysWow64\xlive.dll.cat ========== ZeroAccess Check ========== [2009-07-14 05:55:00 \| 000,000,227 \| RHS- \| M] () -- C:\Windows\assembly\Desktop.ini [HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64 [HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] [HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64 [HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64 "" = C:\Windows\SysNative\shell32.dll -- [2012-06-09 06:43:10 \| 014,172,672 \| ---- \| M] (Microsoft Corporation) "ThreadingModel" = Apartment [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] "" = %SystemRoot%\system32\shell32.dll -- [2012-06-09 05:41:00 \| 012,873,728 \| ---- \| M] (Microsoft Corporation) "ThreadingModel" = Apartment [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64 "" = C:\Windows\SysNative\wbem\fastprox.dll -- [2012-08-21 14:11:31 \| 000,857,088 \| ---- \| M] (Microsoft Corporation) "ThreadingModel" = Free [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] "" = %systemroot%\system32\wbem\fastprox.dll -- [2012-08-21 14:37:44 \| 000,636,928 \| ---- \| M] (Microsoft Corporation) "ThreadingModel" = Free [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64 "" = C:\Windows\SysNative\wbem\wbemess.dll -- [2012-08-21 14:08:38 \| 000,453,120 \| ---- \| M] (Microsoft Corporation) "ThreadingModel" = Both [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] ========== Alternate Data Streams ========== @Alternate Data Stream - 228 bytes -> C:\ProgramData\TEMP:1CE11B51 @Alternate Data Stream - 128 bytes -> C:\ProgramData\TEMP:0F4A7B6A @Alternate Data Stream - 114 bytes -> C:\ProgramData\TEMP:A1EDB939 < End of report > mycity.rs/must-login.png Dopuna: 20 Feb 2013 11:45 Greskom je otvoren jos jedan ovakav identicni post!

Profil

TwinHeadedEagle Poslao: 20 Feb 2013 12:57 Idi na vrh
offline TwinHeadedEagle Anti Malware Fighter Rank 2 Pridružio: 09 Avg 2011 Poruke: 15879 Gde živiš: Beograd	1Ovo se svidja korisniku: g[h]ost Registruj se da bi pohvalio/la poruku! Pozdrav, ajzaklija Problem izgleda prave ostaci Microsoft Security Essentials-a... Preuzmi Microsoft Security Essentials installer na Desktop: http://mse.dlservice.microsoft.com/download/A/3/8/.....nstall.exe Pritisni dugme i R, otvoriće se ovakav prozor: Prevuci fajl koji je predhodno preuzet u Open sekciju: Potrebno je da dodati na kraju " /U"(bez navodnika, i sa razmakom između putanje i /U). U prozoru koji se otvori, klikni na Uninstall. Restartuj racunar pa proveri stanje...

Profil

ajzaklija Poslao: 20 Feb 2013 13:03 Idi na vrh
offline ajzaklija Građanin Pridružio: 14 Dec 2009 Poruke: 154	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Napisano: 20 Feb 2013 13:01 Kada odem na link koji si postavio, pise mi "Page not found". Mozda je lose iskopiran? Dopuna: 20 Feb 2013 13:02 Uspeo sam da otvorim link preko IE! Javljam se kad uradim sve! Dopuna: 20 Feb 2013 13:03 Sada mi izbacuje gresku "mseinstall_exe couldn't be downloaded :/

Profil

TwinHeadedEagle Poslao: 20 Feb 2013 13:04 Idi na vrh
offline TwinHeadedEagle Anti Malware Fighter Rank 2 Pridružio: 09 Avg 2011 Poruke: 15879 Gde živiš: Beograd	1Ovo se svidja korisniku: g[h]ost Registruj se da bi pohvalio/la poruku! Ni meni iz nekog razloga ne radi Preuzmi ga sa ovog linka http://www.filehippo.com/download_security_essenti.....f79ed3e55/

Profil

ajzaklija Poslao: 20 Feb 2013 13:09 Idi na vrh
offline ajzaklija Građanin Pridružio: 14 Dec 2009 Poruke: 154	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Napisano: 20 Feb 2013 13:05 E sad sam i ja uspeo! Javljam cim restartujem! Hvala puno! Dopuna: 20 Feb 2013 13:09 Izbacuje mi gresku, da ne moze da instalira/uninstalira program, dok je win u Safe mode-u.

Profil

TwinHeadedEagle Poslao: 20 Feb 2013 13:23 Idi na vrh
offline TwinHeadedEagle Anti Malware Fighter Rank 2 Pridružio: 09 Avg 2011 Poruke: 15879 Gde živiš: Beograd	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Restartuj ga nekako u Normalan mod, rekao si da moze...

Profil

ajzaklija Poslao: 20 Feb 2013 13:28 Idi na vrh
offline ajzaklija Građanin Pridružio: 14 Dec 2009 Poruke: 154	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Moze ali mi je ceo displej crn i mogu samo misem da upravljam! Zato sam se i javio ovde Rekao sam da samo u Safe mode mogu da udjem... Pokusacu sada sa system restore opcijom, ali ako mozes samo da mi kazes koji datum od ova dva da izaberem?

Profil

TwinHeadedEagle Poslao: 20 Feb 2013 13:34 Idi na vrh
offline TwinHeadedEagle Anti Malware Fighter Rank 2 Pridružio: 09 Avg 2011 Poruke: 15879 Gde živiš: Beograd	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Nisam siguran da ce to sta poboljsati... Sta kazes da obrises ESET iz Safe Moda, posto je njega moguce obrisati pa nakon sto se stvari srede ti instaliraj ponovo...?

Profil

ajzaklija Poslao: 20 Feb 2013 13:36 Idi na vrh
offline ajzaklija Građanin Pridružio: 14 Dec 2009 Poruke: 154	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Ajde to cu onda prvo da probam (ako moze uopste i on da se obrise iz Safe moda) Javljam...

Profil

TwinHeadedEagle Poslao: 20 Feb 2013 13:37 Idi na vrh
offline TwinHeadedEagle Anti Malware Fighter Rank 2 Pridružio: 09 Avg 2011 Poruke: 15879 Gde živiš: Beograd	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Potreban ti je ovaj alat http://download.eset.com/special/ESETUninstaller.exe

Profil

MyCity » Ambulanta -> Arhiva Ambulante » Sve crno

Ko je trenutno na forumu

Ukupno su 955 korisnika na forumu :: 54 registrovanih, 9 sakrivenih i 892 gosta :: [ Administrator ] [ Supermoderator ] [ Moderator ] :: Detaljnije

Najviše korisnika na forumu ikad bilo je 3466 - dana 01 Jun 2021 17:07

Korisnici koji su trenutno na forumu:: Korisnici trenutno na forumu: 357magnum, A.R.Chafee.Jr., amaterSRB, amstel, aramis s, arsa, Atomski čoban, bankulen, bestguarder, Bojadin Strumski, bojankrstc, bojcistv, Boris90, BORUTUS, bufanje, celik, dane007, djboj, Doca, Dorcolac, dule10savic, FileFinder, JimmyNapoli, kolle.the.kid, kunktator, kybonacci, laki_bb, Litostroton, ljubacv, macak44, mercedesamg, Mercury, mikrimaus, MiroslavD, nebkv, nemkea71, pein, Petarvu, procesor, RJ, Shinobi, slonic_tonic, sombrero, sovanova95, SR-3m, StepskiVuk, Vatreni Zmaj, vlad4, vladaa012, voja64, VojvodaMisic, Zimbabwe, |_MeD_|, 79693

Svaki korisnik ovog sajta je odgovoran za sadržaj svoje poruke koju objavi na sajtu. Sajt se odriče svake odgovornosti za sadržaj tih poruka.
Postavljanjem vaše poruke ili vašeg autorskog dela na ovaj sajt, saglasni ste da ovaj sajt postaje distributer vašeg dela, i odričete se mogućnosti njegovog povlačenja ili brisanja, bez saglasnosti uprave sajta.
Distribucija sadržaja sa ovog sajta je dozvoljena samo u nekomercijalne svrhe, uz obaveznu napomenu da je sadržaj preuzet sa ovog sajta, i uz obavezno navođenje adrese MyCity sajta. Za sve ostale vidove distribucije obavezni ste da prethodno zatražite odobrenje od vlasnika MyCity sajta.
MyCity pokrenuo, administrira i razvija Predrag Damnjanović, a o uređenju sajta se brine MyCity Tim.
Ukoliko želite da nas kontaktirate kliknite ovde.
Naši sajtovi:
Vesti, Vojni forum, Zaštita od virusa, TekstPesme.rs

This content is licensed under a Creative Commons License.
Based on phpBB 2, translated by Simke, designed by