Jump to content

Welcome to Geeks to Go - Register now for FREE

Geeks To Go is a helpful hub, where thousands of volunteer geeks quickly serve friendly answers and support. Check out the forums and get free advice from the experts. Register now to gain access to all of our features, it's FREE and only takes one minute. Once registered and logged in, you will be able to create topics, post replies to existing threads, give reputation to your fellow members, get your own private messenger, post status updates, manage your profile and so much more.

Create Account How it Works
Photo

Super slow browsing and pc [Solved]


  • This topic is locked This topic is locked

#46
pystryker

pystryker

    Trusted Helper

  • Malware Removal
  • 3,886 posts
Ok, thank you :) I'm checking on something, and I'll post as soon as I can. :thumbsup:
  • 0

Advertisements


#47
pystryker

pystryker

    Trusted Helper

  • Malware Removal
  • 3,886 posts
Hi :)

Let's get rid of the temp files on your machine and then check out your system. :thumbsup:

Step 1: Re-Run Temporary File Cleaner (TFC)


Please re-run TFC to clear out the temp files on your machine. Once finished, if it doesn't reboot the machine, reboot it manually please. :)


Step 2: Scan Your System with Speccy


Scan with Speccy:

Please download the installer for Speccy from here to your desktop.

  • Right-click on spsetup125.exe and select Run as Administrator to install the application >> follow the prompts >> deselect the option Automatically check for updates to Speccy(the others leave as is per your preference) >> Install
  • Deselect View Release notes but leave Run Speccy vN.NN selected >> Finish
  • Speccy will now automatically scan your system, this may take some time etc.
  • Once it has completed scanning >> click on File >> Save as Text File... >> select the Desktop as the save destination >> Save
  • Close Speccy.
  • Open the notepad file you have just saved...
  • Scroll down to the heading Operating System >>next to Serial Number:
  • Delete/remove the actual serial number as prudent not to have that displayed in a open forum for security reasons etc.
  • Post the Speccy log in your next reply for my review.

Things I need to see in your next post

Speccy Log

  • 0

#48
assaf1

assaf1

    Member

  • Topic Starter
  • Member
  • PipPip
  • 26 posts
Hi :)

Here is the log:

Summary
Operating System
Windows 8.1 64-bit
CPU
AMD A4/A6 41 C
Kabini 28nm Technology
RAM
4.00GB Single-Channel DDR3 @ 798MHz (11-11-12-28)
Motherboard
LENOVO Kabini CRB (P0)
Graphics
Lenovo AIO PC ([email protected])
512MB ATI AMD Radeon HD 8280 (Lenovo) 44 C
Storage
931GB Seagate ST1000DM 003-1CH162 SATA Disk Device (SATA) 35 C
931GB Seagate FreeAgent USB Device (USB (SATA)) 35 C
Optical Drives
TSSTcorp CDDVDW SN-208DB SATA CdRom Device
Audio
Realtek High Definition Audio
Operating System
Windows 8.1 64-bit
Computer type: All in one
Installation Date: 03-Feb-14 23:44:11
Windows Security Center
User Account Control (UAC) Enabled
Notify level 2 - Default
Firewall Enabled
Windows Update
AutoUpdate Download Automatically and Install at Set Scheduled time
Schedule Frequency Every Day
Schedule Time
Windows Defender
Windows Defender Disabled
Antivirus
Antivirus Enabled
Company Name AVAST Software
Display Name avast! Antivirus
Product Version 9.0.2013
Virus Signature Database Up to date
.NET Frameworks installed
v4.5 Full
v4.5 Client
v3.5 SP1
v3.0 SP2
v2.0 SP2
Internet Explorer
Version 11.0.9600.16518
PowerShell
Version 4.0
Environment Variables
USERPROFILE C:\Users\Shlomi
SystemRoot C:\WINDOWS
User Variables
TEMP C:\Users\Shlomi\AppData\Local\Temp
TMP C:\Users\Shlomi\AppData\Local\Temp
Machine Variables
asl.log Destination=file
ComSpec C:\WINDOWS\system32\cmd.exe
configsetroot C:\WINDOWS\ConfigSetRoot
FP_NO_HOST_CHECK NO
NUMBER_OF_PROCESSORS 2
OS Windows_NT
Path C:\WINDOWS\system32
C:\WINDOWS
C:\WINDOWS\System32\Wbem
C:\WINDOWS\System32\WindowsPowerShell\v1.0\
C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static
PATHEXT .COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH;.MSC
PROCESSOR_ARCHITECTURE AMD64
PROCESSOR_IDENTIFIER AMD64 Family 22 Model 0 Stepping 1, AuthenticAMD
PROCESSOR_LEVEL 22
PROCESSOR_REVISION 0001
PSModulePath C:\WINDOWS\system32\WindowsPowerShell\v1.0\Modules\
TEMP C:\WINDOWS\TEMP
TMP C:\WINDOWS\TEMP
USERNAME SYSTEM
windir C:\WINDOWS
Power Profile
Active power scheme Balanced
Hibernation Enabled
Turn Off Monitor after: (On AC Power) 10 min
Turn Off Hard Disk after: (On AC Power) 20 min
Suspend after: (On AC Power) 25 min
Screen saver Disabled
Uptime
Current Session
Current Time 05-Mar-14 18:56:24
Current Uptime 376 sec (0 d, 00 h, 06 m, 16 s)
Last Boot Time 05-Mar-14 18:50:08
Services
Running Adobe Acrobat Update Service
Running AMD External Events Utility
Running AMD FUEL Service
Running Apple Mobile Device
Running Application Information
Running AppX Deployment Service (AppXSVC)
Running avast! Antivirus
Running Background Intelligent Transfer Service
Running Background Tasks Infrastructure Service
Running Base Filtering Engine
Running BingBar Service
Running Bonjour Service
Running COM+ Event System
Running Credential Manager
Running Cryptographic Services
Running Dashboard Service
Running DCOM Server Process Launcher
Running DHCP Client
Running Distributed Link Tracking Client
Running DNS Client
Running Function Discovery Provider Host
Running Function Discovery Resource Publication
Running Group Policy Client
Running HomeGroup Listener
Running HomeGroup Provider
Running HP CUE DeviceDiscovery Service
Running hpqcxs08
Running IconMan_R
Running IdeaTouch.LocalDataServer.Education
Running IKE and AuthIP IPsec Keying Modules
Running IP Helper
Running iPod Service
Running Local Session Manager
Running Multimedia Class Scheduler
Running Nalpeiron Licensing Service
Running Net Driver HPZ12
Running Network Connections
Running Network List Service
Running Network Location Awareness
Running Network Store Interface Service
Running NitroPDFDriverCreatorReadSpool8
Running Peer Name Resolution Protocol
Running Peer Networking Grouping
Running Peer Networking Identity Manager
Running Plug and Play
Running Pml Driver HPZ12
Running Power
Running Print Spooler
Running Program Compatibility Assistant Service
Running RealNetworks Downloader Resolver Service
Running Remote Procedure Call (RPC)
Running RPC Endpoint Mapper
Running Security Accounts Manager
Running Security Center
Running Server
Running Shell Hardware Detection
Running Superfetch
Running System Event Notification Service
Running System Events Broker
Running Task Scheduler
Running TCP/IP NetBIOS Helper
Running Themes
Running User Profile Service
Running Windows Audio
Running Windows Audio Endpoint Builder
Running Windows Connection Manager
Running Windows Event Log
Running Windows Firewall
Running Windows Font Cache Service
Running Windows Management Instrumentation
Running Windows Modules Installer
Running Windows Update
Running WinHTTP Web Proxy Auto-Discovery Service
Running WLAN AutoConfig
Running Workstation
Stopped ActiveX Installer (AxInstSV)
Stopped Adobe Flash Player Update Service
Stopped App Readiness
Stopped Application Experience
Stopped Application Identity
Stopped Application Layer Gateway Service
Stopped BBUpdate
Stopped BitLocker Drive Encryption Service
Stopped Block Level Backup Engine Service
Stopped Bluetooth Support Service
Stopped Certificate Propagation
Stopped CNG Key Isolation
Stopped COM+ System Application
Stopped Computer Browser
Stopped Device Association Service
Stopped Device Install Service
Stopped Device Setup Manager
Stopped Diagnostic Policy Service
Stopped Diagnostic Service Host
Stopped Diagnostic System Host
Stopped Distributed Transaction Coordinator
Stopped Encrypting File System (EFS)
Stopped Extensible Authentication Protocol
Stopped Family Safety
Stopped Fax
Stopped File History Service
Stopped Google Software Updater
Stopped Google Update Service (gupdate)
Stopped Google Update Service (gupdatem)
Stopped Health Key and Certificate Management
Stopped Human Interface Device Service
Stopped Hyper-V Data Exchange Service
Stopped Hyper-V Guest Service Interface
Stopped Hyper-V Guest Shutdown Service
Stopped Hyper-V Heartbeat Service
Stopped Hyper-V Remote Desktop Virtualization Service
Stopped Hyper-V Time Synchronization Service
Stopped Hyper-V Volume Shadow Copy Requestor
Stopped Interactive Services Detection
Stopped Internet Connection Sharing (ICS)
Stopped Internet Explorer ETW Collector Service
Stopped IPsec Policy Agent
Stopped KtmRm for Distributed Transaction Coordinator
Stopped Link-Layer Topology Discovery Mapper
Stopped LSCWinService
Stopped Microsoft Account Sign-in Assistant
Stopped Microsoft iSCSI Initiator Service
Stopped Microsoft SharePoint Workspace Audit Service
Stopped Microsoft Software Shadow Copy Provider
Stopped Microsoft Storage Spaces SMP
Stopped Mozilla Maintenance Service
Stopped Net.Tcp Port Sharing Service
Stopped Netlogon
Stopped Network Access Protection Agent
Stopped Network Connected Devices Auto-Setup
Stopped Network Connection Broker
Stopped Network Connectivity Assistant
Stopped Office Source Engine
Stopped Office Software Protection Platform
Stopped Optimize drives
Stopped Performance Counter DLL Host
Stopped Performance Logs & Alerts
Stopped PNRP Machine Name Publication Service
Stopped Portable Device Enumerator Service
Stopped Printer Extensions and Notifications
Stopped Problem Reports and Solutions Control Panel Support
Stopped Quality Windows Audio Video Experience
Stopped Remote Access Auto Connection Manager
Stopped Remote Access Connection Manager
Stopped Remote Desktop Configuration
Stopped Remote Desktop Services
Stopped Remote Desktop Services UserMode Port Redirector
Stopped Remote Procedure Call (RPC) Locator
Stopped Remote Registry
Stopped Routing and Remote Access
Stopped Secondary Logon
Stopped Secure Socket Tunneling Protocol Service
Stopped Sensor Monitoring Service
Stopped Skype Updater
Stopped Smart Card
Stopped Smart Card Device Enumeration Service
Stopped Smart Card Removal Policy
Stopped SNMP Trap
Stopped Software Protection
Stopped Spot Verifier
Stopped SSDP Discovery
Stopped Still Image Acquisition Events
Stopped Storage Service
Stopped Telephony
Stopped Thread Ordering Server
Stopped Time Broker
Stopped Touch Keyboard and Handwriting Panel Service
Stopped UPnP Device Host
Stopped Virtual Disk
Stopped Volume Shadow Copy
Stopped WebClient
Stopped Windows Biometric Service
Stopped Windows Color System
Stopped Windows Connect Now - Config Registrar
Stopped Windows Defender Network Inspection Service
Stopped Windows Defender Service
Stopped Windows Driver Foundation - User-mode Driver Framework
Stopped Windows Encryption Provider Host Service
Stopped Windows Error Reporting Service
Stopped Windows Event Collector
Stopped Windows Image Acquisition (WIA)
Stopped Windows Installer
Stopped Windows Location Framework Service
Stopped Windows Media Player Network Sharing Service
Stopped Windows Presentation Foundation Font Cache 3.0.0.0
Stopped Windows Remote Management (WS-Management)
Stopped Windows Search
Stopped Windows Store Service (WSService)
Stopped Windows Time
Stopped Wired AutoConfig
Stopped WMI Performance Adapter
Stopped Work Folders
Stopped WWAN AutoConfig
TimeZone
TimeZone GMT +2:00 Hours
Language English (United States)
Location Israel
Format English (United States)
Currency $
Date Format dd-MMM-yy
Time Format HH:mm:ss
Scheduler
05-Mar-14 19:02; GoogleUpdateTaskMachineUA
05-Mar-14 19:35; Adobe Flash Player Updater
06-Mar-14 06:02; GoogleUpdateTaskMachineCore
07-Mar-14 23:03; RealPlayerRealUpgradeScheduledTaskS-1-5-21-424950133-3584039098-4252772914-1002
12-Mar-14 18:51; RealDownloaderRealUpgradeScheduledTaskS-1-5-21-424950133-3584039098-4252772914-1002
14-Mar-14 23:45; RealDownloaderDownloaderScheduledTaskS-1-5-21-424950133-3584039098-4252772914-1002
Clean System Memory
Dolby Selector
OFFICE2013ACT
Optimize Start Menu Cache Files-S-1-5-21-424950133-3584039098-4252772914-1002
RealDownloaderRealUpgradeLogonTaskS-1-5-21-424950133-3584039098-4252772914-1002
RealPlayerRealUpgradeLogonTaskS-1-5-21-424950133-3584039098-4252772914-1002
System Folders
Application Data C:\ProgramData
Cookies C:\Users\Shlomi\AppData\Local\Microsoft\Windows\INetCookies
Desktop C:\Users\Shlomi\Desktop
Documents C:\Users\Public\Documents
Fonts C:\WINDOWS\Fonts
Global Favorites C:\Users\Shlomi\Favorites
Internet History C:\Users\Shlomi\AppData\Local\Microsoft\Windows\History
Local Application Data C:\Users\Shlomi\AppData\Local
Music C:\Users\Public\Music
Path for burning CD C:\Users\Shlomi\AppData\Local\Microsoft\Windows\Burn\Burn
Physical Desktop C:\Users\Shlomi\Desktop
Pictures C:\Users\Public\Pictures
Program Files C:\Program Files
Public Desktop C:\Users\Public\Desktop
Start Menu C:\ProgramData\Microsoft\Windows\Start Menu
Start Menu Programs C:\ProgramData\Microsoft\Windows\Start Menu\Programs
Startup C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Templates C:\ProgramData\Microsoft\Windows\Templates
Temporary Internet Files C:\Users\Shlomi\AppData\Local\Microsoft\Windows\INetCache
User Favorites C:\Users\Shlomi\Favorites
Videos C:\Users\Public\Videos
Windows Directory C:\WINDOWS
Windows/System C:\WINDOWS\system32
Process List
AppleMobileDeviceService.exe
Process ID 1592
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
Memory Usage 9.06 MB
Peak Memory Usage 9.14 MB
armsvc.exe
Process ID 1532
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
Memory Usage 4.01 MB
Peak Memory Usage 4.10 MB
atieclxx.exe
Process ID 712
User SYSTEM
Domain NT AUTHORITY
Path C:\WINDOWS\system32\atieclxx.exe
Memory Usage 7.28 MB
Peak Memory Usage 7.33 MB
atiesrxx.exe
Process ID 916
User SYSTEM
Domain NT AUTHORITY
Path C:\WINDOWS\system32\atiesrxx.exe
Memory Usage 3.18 MB
Peak Memory Usage 3.25 MB
audiodg.exe
Process ID 3808
User LOCAL SERVICE
Domain NT AUTHORITY
Memory Usage 13 MB
Peak Memory Usage 14 MB
AvastSvc.exe
Process ID 1196
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files\AVAST Software\Avast\AvastSvc.exe
Memory Usage 41 MB
Peak Memory Usage 64 MB
AvastUI.exe
Process ID 2240
User Shlomi
Domain SHLOMI-PC
Path C:\Program Files\AVAST Software\Avast\AvastUI.exe
Memory Usage 7.68 MB
Peak Memory Usage 23 MB
BBSvc.EXE
Process ID 1640
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files (x86)\Microsoft\BingBar\7.3.124.0\BBSvc.exe
Memory Usage 6.46 MB
Peak Memory Usage 6.52 MB
CCC.exe
Process ID 3292
User Shlomi
Domain SHLOMI-PC
Path C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
Memory Usage 4.07 MB
Peak Memory Usage 76 MB
ClassicStartMenu.exe
Process ID 2816
User Shlomi
Domain SHLOMI-PC
Path C:\Program Files\Classic Shell\ClassicStartMenu.exe
Memory Usage 8.31 MB
Peak Memory Usage 8.47 MB
CLMLSvc.exe
Process ID 4052
User Shlomi
Domain SHLOMI-PC
Path C:\Program Files (x86)\Lenovo\Power2Go\CLMLSvc.exe
Memory Usage 7.66 MB
Peak Memory Usage 7.72 MB
csrss.exe
Process ID 500
User SYSTEM
Domain NT AUTHORITY
Memory Usage 3.91 MB
Peak Memory Usage 3.93 MB
csrss.exe
Process ID 620
User SYSTEM
Domain NT AUTHORITY
Memory Usage 7.23 MB
Peak Memory Usage 14 MB
DdMgr.exe
Process ID 1800
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files (x86)\Lenovo\Lenovo Dashboard\DdMgr.exe
Memory Usage 19 MB
Peak Memory Usage 19 MB
dwm.exe
Process ID 964
User DWM-1
Domain Window Manager
Path C:\WINDOWS\system32\dwm.exe
Memory Usage 34 MB
Peak Memory Usage 35 MB
explorer.exe
Process ID 2476
User Shlomi
Domain SHLOMI-PC
Path C:\WINDOWS\Explorer.EXE
Memory Usage 79 MB
Peak Memory Usage 88 MB
firefox.exe
Process ID 4756
User Shlomi
Domain SHLOMI-PC
Path C:\Program Files (x86)\Mozilla Firefox\firefox.exe
Memory Usage 220 MB
Peak Memory Usage 240 MB
FlashPlayerPlugin_12_0_0_70.exe
Process ID 5088
User Shlomi
Domain SHLOMI-PC
Path C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerPlugin_12_0_0_70.exe
Memory Usage 9.88 MB
Peak Memory Usage 9.89 MB
FlashPlayerPlugin_12_0_0_70.exe
Process ID 5104
User Shlomi
Domain SHLOMI-PC
Path C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerPlugin_12_0_0_70.exe
Memory Usage 27 MB
Peak Memory Usage 27 MB
Fuel.Service.exe
Process ID 1560
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
Memory Usage 4.99 MB
Peak Memory Usage 6.43 MB
GoogleToolbarNotifier.exe
Process ID 4092
User Shlomi
Domain SHLOMI-PC
Path C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
Memory Usage 2.15 MB
Peak Memory Usage 7.71 MB
hpqbam08.exe
Process ID 2548
User Shlomi
Domain SHLOMI-PC
Path C:\Program Files (x86)\HP\Digital Imaging\bin\hpqbam08.exe
Memory Usage 5.70 MB
Peak Memory Usage 5.78 MB
hpqgpc01.exe
Process ID 4008
User Shlomi
Domain SHLOMI-PC
Path C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe
Memory Usage 9.85 MB
Peak Memory Usage 9.93 MB
hpqste08.exe
Process ID 4088
User Shlomi
Domain SHLOMI-PC
Path C:\Program Files (x86)\HP\Digital Imaging\bin\hpqSTE08.exe
Memory Usage 11 MB
Peak Memory Usage 11 MB
hpqtra08.exe
Process ID 1328
User Shlomi
Domain SHLOMI-PC
Path C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
Memory Usage 14 MB
Peak Memory Usage 14 MB
hpwuschd2.exe
Process ID 3528
User Shlomi
Domain SHLOMI-PC
Path C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
Memory Usage 3.68 MB
Peak Memory Usage 3.68 MB
IdeaTouch.LocalDataServer.Education.exe
Process ID 1972
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files (x86)\Lenovo\EducationPortal\Services\IdeaTouch.LocalDataServer.Education.exe
Memory Usage 25 MB
Peak Memory Usage 25 MB
iPodService.exe
Process ID 4384
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files\iPod\bin\iPodService.exe
Memory Usage 6.05 MB
Peak Memory Usage 6.13 MB
ipoint.exe
Process ID 2360
User Shlomi
Domain SHLOMI-PC
Path c:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe
Memory Usage 3.32 MB
Peak Memory Usage 11 MB
iTunesHelper.exe
Process ID 4328
User Shlomi
Domain SHLOMI-PC
Path C:\Program Files (x86)\iTunes\iTunesHelper.exe
Memory Usage 11 MB
Peak Memory Usage 11 MB
itype.exe
Process ID 2348
User Shlomi
Domain SHLOMI-PC
Path c:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe
Memory Usage 3.16 MB
Peak Memory Usage 12 MB
lsass.exe
Process ID 708
User SYSTEM
Domain NT AUTHORITY
Path C:\WINDOWS\system32\lsass.exe
Memory Usage 11 MB
Peak Memory Usage 11 MB
mDNSResponder.exe
Process ID 1772
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files\Bonjour\mDNSResponder.exe
Memory Usage 4.57 MB
Peak Memory Usage 4.67 MB
MOM.exe
Process ID 3864
User Shlomi
Domain SHLOMI-PC
Path C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
Memory Usage 3.36 MB
Peak Memory Usage 28 MB
NitroPDFDriverService8x64.exe
Process ID 1272
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files\Common Files\Nitro\Pro\8.0\NitroPDFDriverService8x64.exe
Memory Usage 3.36 MB
Peak Memory Usage 3.41 MB
NLSSRV32.EXE
Process ID 1812
User SYSTEM
Domain NT AUTHORITY
Path C:\windows\SysWOW64\NLSSRV32.EXE
Memory Usage 2.77 MB
Peak Memory Usage 2.80 MB
pcee4.exe
Process ID 3944
User Shlomi
Domain SHLOMI-PC
Path C:\Program Files (x86)\Dolby Advanced Audio v2\pcee4.exe
Memory Usage 3.80 MB
Peak Memory Usage 29 MB
PDVD10Serv.exe
Process ID 3020
User Shlomi
Domain SHLOMI-PC
Path C:\Program Files (x86)\Lenovo\PowerDVD10\PDVD10Serv.exe
Memory Usage 5.72 MB
Peak Memory Usage 5.77 MB
Pelico.exe
Process ID 4064
User Shlomi
Domain SHLOMI-PC
Path C:\Program Files\Lenovo\Lenovo Black Silk USB Keyboard\Pelico.exe
Memory Usage 3.71 MB
Peak Memory Usage 3.71 MB
plugin-container.exe
Process ID 5056
User Shlomi
Domain SHLOMI-PC
Path C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
Memory Usage 20 MB
Peak Memory Usage 21 MB
RAVBg64.exe
Process ID 4028
User Shlomi
Domain SHLOMI-PC
Path C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
Memory Usage 9.95 MB
Peak Memory Usage 10 MB
RAVCpl64.exe
Process ID 3964
User Shlomi
Domain SHLOMI-PC
Path C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
Memory Usage 10 MB
Peak Memory Usage 10 MB
realsched.exe
Process ID 4104
User Shlomi
Domain SHLOMI-PC
Path C:\Program Files (x86)\Real\RealPlayer\Update\realsched.exe
Memory Usage 888 KB
Peak Memory Usage 5.71 MB
RIconMan.exe
Process ID 1896
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
Memory Usage 5.60 MB
Peak Memory Usage 5.63 MB
rndlresolversvc.exe
Process ID 2100
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe
Memory Usage 4.04 MB
Peak Memory Usage 4.09 MB
services.exe
Process ID 700
User SYSTEM
Domain NT AUTHORITY
Memory Usage 6.29 MB
Peak Memory Usage 6.45 MB
SettingSyncHost.exe
Process ID 3264
User Shlomi
Domain SHLOMI-PC
Path C:\Windows\System32\SettingSyncHost.exe
Memory Usage 11 MB
Peak Memory Usage 26 MB
smss.exe
Process ID 340
User SYSTEM
Domain NT AUTHORITY
Memory Usage 1.03 MB
Peak Memory Usage 1.04 MB
Speccy64.exe
Process ID 4228
User Shlomi
Domain SHLOMI-PC
Path C:\Program Files\Speccy\Speccy64.exe
Memory Usage 21 MB
Peak Memory Usage 21 MB
spoolsv.exe
Process ID 1320
User SYSTEM
Domain NT AUTHORITY
Path C:\WINDOWS\System32\spoolsv.exe
Memory Usage 10 MB
Peak Memory Usage 10 MB
svchost.exe
Process ID 3592
User LOCAL SERVICE
Domain NT AUTHORITY
Path C:\WINDOWS\system32\svchost.exe
Memory Usage 6.73 MB
Peak Memory Usage 7.03 MB
svchost.exe
Process ID 3660
User LOCAL SERVICE
Domain NT AUTHORITY
Path C:\WINDOWS\System32\svchost.exe
Memory Usage 11 MB
Peak Memory Usage 11 MB
svchost.exe
Process ID 1044
User LOCAL SERVICE
Domain NT AUTHORITY
Path C:\windows\System32\svchost.exe
Memory Usage 3.30 MB
Peak Memory Usage 3.33 MB
svchost.exe
Process ID 1856
User SYSTEM
Domain NT AUTHORITY
Path C:\WINDOWS\SysWOW64\svchost.exe
Memory Usage 9.15 MB
Peak Memory Usage 9.27 MB
svchost.exe
Process ID 1364
User LOCAL SERVICE
Domain NT AUTHORITY
Path C:\WINDOWS\system32\svchost.exe
Memory Usage 17 MB
Peak Memory Usage 19 MB
svchost.exe
Process ID 696
User SYSTEM
Domain NT AUTHORITY
Path C:\WINDOWS\System32\svchost.exe
Memory Usage 58 MB
Peak Memory Usage 78 MB
svchost.exe
Process ID 520
User LOCAL SERVICE
Domain NT AUTHORITY
Path C:\WINDOWS\system32\svchost.exe
Memory Usage 16 MB
Peak Memory Usage 17 MB
svchost.exe
Process ID 360
User SYSTEM
Domain NT AUTHORITY
Path C:\WINDOWS\system32\svchost.exe
Memory Usage 43 MB
Peak Memory Usage 335 MB
svchost.exe
Process ID 976
User LOCAL SERVICE
Domain NT AUTHORITY
Path C:\WINDOWS\System32\svchost.exe
Memory Usage 27 MB
Peak Memory Usage 27 MB
svchost.exe
Process ID 824
User NETWORK SERVICE
Domain NT AUTHORITY
Path C:\WINDOWS\system32\svchost.exe
Memory Usage 7.75 MB
Peak Memory Usage 7.98 MB
svchost.exe
Process ID 1060
User NETWORK SERVICE
Domain NT AUTHORITY
Path C:\WINDOWS\system32\svchost.exe
Memory Usage 14 MB
Peak Memory Usage 16 MB
svchost.exe
Process ID 780
User SYSTEM
Domain NT AUTHORITY
Path C:\WINDOWS\system32\svchost.exe
Memory Usage 11 MB
Peak Memory Usage 12 MB
svchost.exe
Process ID 3932
User SYSTEM
Domain NT AUTHORITY
Memory Usage 14 MB
Peak Memory Usage 15 MB
svchost.exe
Process ID 2008
User LOCAL SERVICE
Domain NT AUTHORITY
Path C:\windows\System32\svchost.exe
Memory Usage 3.27 MB
Peak Memory Usage 3.30 MB
System
Process ID 4
Memory Usage 3.78 MB
Peak Memory Usage 17 MB
System Idle Process
Process ID 0
taskeng.exe
Process ID 2292
User SYSTEM
Domain NT AUTHORITY
Path C:\WINDOWS\system32\taskeng.exe
Memory Usage 4.48 MB
Peak Memory Usage 4.69 MB
taskhostex.exe
Process ID 2368
User Shlomi
Domain SHLOMI-PC
Path C:\WINDOWS\system32\taskhostex.exe
Memory Usage 9.78 MB
Peak Memory Usage 9.85 MB
wininit.exe
Process ID 612
User SYSTEM
Domain NT AUTHORITY
Path C:\WINDOWS\system32\wininit.exe
Memory Usage 3.57 MB
Peak Memory Usage 3.69 MB
winlogon.exe
Process ID 676
User SYSTEM
Domain NT AUTHORITY
Path C:\WINDOWS\system32\winlogon.exe
Memory Usage 7.93 MB
Peak Memory Usage 13 MB
WMIADAP.exe
Process ID 3236
User SYSTEM
Domain NT AUTHORITY
Path \\?\C:\WINDOWS\system32\wbem\WMIADAP.EXE
Memory Usage 4.65 MB
Peak Memory Usage 4.65 MB
WmiPrvSE.exe
Process ID 1524
User SYSTEM
Domain NT AUTHORITY
Path C:\WINDOWS\system32\wbem\wmiprvse.exe
Memory Usage 5.63 MB
Peak Memory Usage 5.66 MB
WmiPrvSE.exe
Process ID 1820
User NETWORK SERVICE
Domain NT AUTHORITY
Path C:\WINDOWS\system32\wbem\wmiprvse.exe
Memory Usage 8.93 MB
Peak Memory Usage 9.00 MB
YCMMirage.exe
Process ID 220
User Shlomi
Domain SHLOMI-PC
Path C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe
Memory Usage 2.54 MB
Peak Memory Usage 5.88 MB
YouCamTray.exe
Process ID 3028
User Shlomi
Domain SHLOMI-PC
Path C:\Program Files (x86)\Lenovo\YouCam\YouCamTray.exe
Memory Usage 7.60 MB
Peak Memory Usage 7.60 MB
Security Options
Accounts: Administrator account status Disabled
Accounts: Block Microsoft accounts Not Defined
Accounts: Guest account status Disabled
Accounts: Limit local account use of blank passwords to console logon only Enabled
Accounts: Rename administrator account Administrator
Accounts: Rename guest account Guest
Audit: Audit the access of global system objects Disabled
Audit: Audit the use of Backup and Restore privilege Disabled
Audit: Force audit policy subcategory settings (Windows Vista or later) to override audit policy category settings Not Defined
Audit: Shut down system immediately if unable to log security audits Disabled
DCOM: Machine Access Restrictions in Security Descriptor Definition Language (SDDL) syntax Not Defined
DCOM: Machine Launch Restrictions in Security Descriptor Definition Language (SDDL) syntax Not Defined
Devices: Allow undock without having to log on Enabled
Devices: Allowed to format and eject removable media Not Defined
Devices: Prevent users from installing printer drivers Disabled
Devices: Restrict CD-ROM access to locally logged-on user only Not Defined
Devices: Restrict floppy access to locally logged-on user only Not Defined
Domain controller: Allow server operators to schedule tasks Not Defined
Domain controller: LDAP server signing requirements Not Defined
Domain controller: Refuse machine account password changes Not Defined
Domain member: Digitally encrypt or sign secure channel data (always) Enabled
Domain member: Digitally encrypt secure channel data (when possible) Enabled
Domain member: Digitally sign secure channel data (when possible) Enabled
Domain member: Disable machine account password changes Disabled
Domain member: Maximum machine account password age 30 days
Domain member: Require strong (Windows 2000 or later) session key Enabled
Interactive logon: Display user information when the session is locked Not Defined
Interactive logon: Do not display last user name Disabled
Interactive logon: Do not require CTRL+ALT+DEL Not Defined
Interactive logon: Machine account lockout threshold Not Defined
Interactive logon: Machine inactivity limit Not Defined
Interactive logon: Message text for users attempting to log on
Interactive logon: Message title for users attempting to log on
Interactive logon: Number of previous logons to cache (in case domain controller is not available) 10 logons
Interactive logon: Prompt user to change password before expiration 5 days
Interactive logon: Require Domain Controller authentication to unlock workstation Disabled
Interactive logon: Require smart card Disabled
Interactive logon: Smart card removal behavior No Action
Microsoft network client: Digitally sign communications (always) Disabled
Microsoft network client: Digitally sign communications (if server agrees) Enabled
Microsoft network client: Send unencrypted password to third-party SMB servers Disabled
Microsoft network server: Amount of idle time required before suspending session -1 minutes
Microsoft network server: Attempt S4U2Self to obtain claim information Not Defined
Microsoft network server: Digitally sign communications (always) Disabled
Microsoft network server: Digitally sign communications (if client agrees) Disabled
Microsoft network server: Disconnect clients when logon hours expire Enabled
Microsoft network server: Server SPN target name validation level Not Defined
Network access: Allow anonymous SID/Name translation Disabled
Network access: Do not allow anonymous enumeration of SAM accounts Enabled
Network access: Do not allow anonymous enumeration of SAM accounts and shares Disabled
Network access: Do not allow storage of passwords and credentials for network authentication Disabled
Network access: Let Everyone permissions apply to anonymous users Disabled
Network access: Named Pipes that can be accessed anonymously
Network access: Remotely accessible registry paths System\CurrentControlSet\Control\ProductOptions,System\CurrentControlSet\Control\Server Applications,Software\Microsoft\Windows NT\CurrentVersion
Network access: Remotely accessible registry paths and sub-paths System\CurrentControlSet\Control\Print\Printers,System\CurrentControlSet\Services\Eventlog,Software\Microsoft\OLAP Server,Software\Microsoft\Windows NT\CurrentVersion\Print,Software\Microsoft\Windows NT\CurrentVersion\Windows,System\CurrentControlSet\Control\ContentIndex,System\CurrentControlSet\Control\Terminal Server,System\CurrentControlSet\Control\Terminal Server\UserConfig,System\CurrentControlSet\Control\Terminal Server\DefaultUserConfiguration,Software\Microsoft\Windows NT\CurrentVersion\Perflib,System\CurrentControlSet\Services\SysmonLog
Network access: Restrict anonymous access to Named Pipes and Shares Enabled
Network access: Shares that can be accessed anonymously Not Defined
Network access: Sharing and security model for local accounts Classic - local users authenticate as themselves
Network security: Allow Local System to use computer identity for NTLM Not Defined
Network security: Allow LocalSystem NULL session fallback Not Defined
Network security: Allow PKU2U authentication requests to this computer to use online identities.

Not Defined
Network security: Configure encryption types allowed for Kerberos Not Defined
Network security: Do not store LAN Manager hash value on next password change Enabled
Network security: Force logoff when logon hours expire Disabled
Network security: LAN Manager authentication level Not Defined
Network security: LDAP client signing requirements Negotiate signing
Network security: Minimum session security for NTLM SSP based (including secure RPC) clients Require 128-bit encryption
Network security: Minimum session security for NTLM SSP based (including secure RPC) servers Require 128-bit encryption
Network security: Restrict NTLM: Add remote server exceptions for NTLM authentication Not Defined
Network security: Restrict NTLM: Add server exceptions in this domain Not Defined
Network security: Restrict NTLM: Audit Incoming NTLM Traffic Not Defined
Network security: Restrict NTLM: Audit NTLM authentication in this domain Not Defined
Network security: Restrict NTLM: Incoming NTLM traffic Not Defined
Network security: Restrict NTLM: NTLM authentication in this domain Not Defined
Network security: Restrict NTLM: Outgoing NTLM traffic to remote servers Not Defined
Recovery console: Allow automatic administrative logon Enabled
Recovery console: Allow floppy copy and access to all drives and all folders Enabled
Shutdown: Allow system to be shut down without having to log on Enabled
Shutdown: Clear virtual memory pagefile Disabled
System cryptography: Force strong key protection for user keys stored on the computer Not Defined
System cryptography: Use FIPS compliant algorithms for encryption, hashing, and signing Disabled
System objects: Require case insensitivity for non-Windows subsystems Enabled
System objects: Strengthen default permissions of internal system objects (e.g. Symbolic Links) Enabled
System settings: Optional subsystems Posix
System settings: Use Certificate Rules on Windows Executables for Software Restriction Policies Disabled
User Account Control: Admin Approval Mode for the Built-in Administrator account Disabled
User Account Control: Allow UIAccess applications to prompt for elevation without using the secure desktop Disabled
User Account Control: Behavior of the elevation prompt for administrators in Admin Approval Mode Prompt for consent for non-Windows binaries
User Account Control: Behavior of the elevation prompt for standard users Prompt for credentials
User Account Control: Detect application installations and prompt for elevation Enabled
User Account Control: Only elevate executables that are signed and validated Disabled
User Account Control: Only elevate UIAccess applications that are installed in secure locations Enabled
User Account Control: Run all administrators in Admin Approval Mode Enabled
User Account Control: Switch to the secure desktop when prompting for elevation Enabled
User Account Control: Virtualize file and registry write failures to per-user locations Enabled
Device Tree
ACPI x64-based PC
Microsoft ACPI-Compliant System
ACPI Fixed Feature Button
ACPI Power Button
AMD E2-3000 APU with Radeon HD Graphics
AMD E2-3000 APU with Radeon HD Graphics
High precision event timer
Microsoft Windows Management Interface for ACPI
Motherboard resources
Motherboard resources
System board
PCI Express Root Complex
AMD SMBus
Motherboard resources
PCI standard host CPU bridge
PCI standard host CPU bridge
PCI standard host CPU bridge
PCI standard host CPU bridge
PCI standard host CPU bridge
PCI standard host CPU bridge
PCI standard host CPU bridge
System board
PCI standard host CPU bridge
Motherboard resources
AMD Radeon HD 8280
Generic PnP Monitor
High Definition Audio Controller
AMD High Definition Audio Device
PCI Express standard Root Port
Realtek PCIe GBE Family Controller
PCI Express standard Root Port
Realtek PCIE CardReader
PCI Express standard Root Port
Qualcomm Atheros AR9485 Wireless Network Adapter
AMD USB 3.0 eXtensible Host Controller - 0100 (Microsoft)
USB Root Hub (xHCI)
Microsoft Mouse and Keyboard Detection Driver (USB)
Microsoft Hardware USB Keyboard
Microsoft USB Dual Receiver Wireless Keyboard (Mouse and Keyboard Center)
Microsoft Hardware USB Mouse
HID-compliant consumer control device
Microsoft USB Dual Receiver Wireless Mouse (Mouse and Keyboard Center)
USB Input Device
HID-compliant consumer control device
HID-compliant consumer control device
HID-compliant system controller
HID-compliant vendor-defined device
AMD SATA Controller
ST1000DM 003-1CH162 SATA Disk Device
TSSTcorp CDDVDW SN-208DB SATA CdRom Device
Standard OpenHCD USB Host Controller
USB Root Hub
Standard Enhanced PCI to USB Host Controller
USB Root Hub
USB Mass Storage Device
Seagate FreeAgent USB Device
Standard OpenHCD USB Host Controller
USB Root Hub
Standard Enhanced PCI to USB Host Controller
USB Root Hub
USB Composite Device
Lenovo USB2.0 UVC Camera
Lenovo USB Audio
Microphone (Lenovo USB Audio)
High Definition Audio Controller
Realtek High Definition Audio
Speakers (Realtek High Definition Audio)
Stereo Mix (Realtek High Definition Audio)
PCI standard ISA bridge
Direct memory access controller
Microsoft ACPI-Compliant Embedded Controller
Motherboard resources
Motherboard resources
Motherboard resources
Numeric data processor
Programmable interrupt controller
Standard PS/2 Keyboard
System CMOS/real time clock
System speaker
System timer
Microsoft UEFI-Compliant System
System Firmware
CPU
AMD A4/A6
Cores 2
Threads 2
Name AMD A4/A6
Code Name Kabini
Package Socket FT3 (BGA769)
Technology 28nm
Specification AMD E2-3000 APU with Radeon HD Graphics
Family F
Extended Family 16
Model 0
Extended Model 0
Stepping 1
Revision KB-A1
Instructions MMX (+), SSE, SSE2, SSE3, SSSE3, SSE4.1, SSE4.2, SSE4A, AMD 64, NX, VMX, AES, AVX
Virtualization Supported, Enabled
Hyperthreading Not supported
Bus Speed 99.8 MHz
Stock Core Speed 1650 MHz
Stock Bus Speed 100 MHz
Average Temperature 41 C
Caches
L1 Data Cache Size 2 x 32 KBytes
L1 Instructions Cache Size 2 x 32 KBytes
L2 Unified Cache Size 1024 KBytes
Cores
Core 0
Core Speed 1647.0 MHz
Multiplier x 16.5
Bus Speed 99.8 MHz
Temperature 41 C
Threads APIC ID: 0
Core 1
Core Speed 798.5 MHz
Multiplier x 8.0
Bus Speed 99.8 MHz
Temperature 41 C
Threads APIC ID: 1
RAM
Memory slots
Total memory slots 2
Used memory slots 1
Free memory slots 1
Memory
Type DDR3
Size 4096 MBytes
Channels # Single
DRAM Frequency 798.5 MHz
CAS# Latency (CL) 11 clocks
RAS# to CAS# Delay (tRCD) 11 clocks
RAS# Precharge (tRP) 12 clocks
Cycle Time (tRAS) 28 clocks
Bank Cycle Time (tRC) 39 clocks
Physical Memory
Memory Usage 24 %
Total Physical 3.43 GB
Available Physical 2.59 GB
Total Virtual 4.06 GB
Available Virtual 2.60 GB
SPD
Number Of SPD Modules 1
Slot #1
Type DDR3
Size 4096 MBytes
Manufacturer Ramaxel Technology
Max Bandwidth PC3-12800 (800 MHz)
Part Number RMT3170EB68F9W1600
Serial Number 43A9203A
Week/year 33 / 13
JEDEC #7
Frequency 838.1 MHz
CAS# Latency 11.0
RAS# To CAS# 11
RAS# Precharge 11
tRAS 30
tRC 41
Voltage 1.280 V
JEDEC #6
Frequency 761.9 MHz
CAS# Latency 10.0
RAS# To CAS# 10
RAS# Precharge 10
tRAS 27
tRC 37
Voltage 1.280 V
JEDEC #5
Frequency 685.7 MHz
CAS# Latency 9.0
RAS# To CAS# 9
RAS# Precharge 9
tRAS 24
tRC 33
Voltage 1.280 V
JEDEC #4
Frequency 609.5 MHz
CAS# Latency 8.0
RAS# To CAS# 8
RAS# Precharge 8
tRAS 22
tRC 30
Voltage 1.280 V
JEDEC #3
Frequency 533.3 MHz
CAS# Latency 7.0
RAS# To CAS# 7
RAS# Precharge 7
tRAS 19
tRC 26
Voltage 1.280 V
JEDEC #2
Frequency 457.1 MHz
CAS# Latency 6.0
RAS# To CAS# 6
RAS# Precharge 6
tRAS 16
tRC 22
Voltage 1.280 V
JEDEC #1
Frequency 381.0 MHz
CAS# Latency 5.0
RAS# To CAS# 5
RAS# Precharge 5
tRAS 14
tRC 19
Voltage 1.280 V
Motherboard
Manufacturer LENOVO
Model Kabini CRB (P0)
Version Lenovo C355
Chipset Vendor AMD
Chipset Model ID1536
Chipset Revision 00
Southbridge Vendor AMD
Southbridge Model A55/A60M
Southbridge Revision 11
BIOS
Brand LENOVO
Version IJKT16AUS
Date 06-Aug-13
PCI Data
Slot PCI-E
Slot Type PCI-E
Slot Usage In Use
Data lanes x16
Slot Designation J6B2
Characteristics 3.3V, Shared, PME
Slot Number 0
Slot PCI-E
Slot Type PCI-E
Slot Usage In Use
Data lanes x1
Slot Designation J6B1
Characteristics 3.3V, Shared, PME
Slot Number 1
Slot PCI-E
Slot Type PCI-E
Slot Usage In Use
Data lanes x1
Slot Designation J6D1
Characteristics 3.3V, Shared, PME
Slot Number 2
Graphics
Monitor
Name Lenovo AIO PC on AMD Radeon HD 8280
Current Resolution 1600x900 pixels
Work Resolution 1600x860 pixels
State Enabled, Primary
Monitor Width 1600
Monitor Height 900
Monitor BPP 32 bits per pixel
Monitor Frequency 60 Hz
Device \\.\DISPLAY1\Monitor0
ATI AMD Radeon HD 8280
Manufacturer ATI
Model AMD Radeon HD 8280
Device ID 1002-9836
Subvendor Lenovo (17AA)
Current Performance Level Level 0
GPU Clock 450.0 MHz
Temperature 44 C
Driver version 13.251.0.0
Memory Type DDR3
Memory 512 MB
Bandwidth 12.8 GB/s
Count of performance levels : 2
Level 1
GPU Clock 266 MHz
Memory Clock 800 MHz
Level 2
GPU Clock 450 MHz
Memory Clock 800 MHz
Storage
Hard drives
ST1000DM 003-1CH162 SATA Disk Device
Manufacturer Seagate
Heads 16
Cylinders 121,601
Tracks 31,008,255
Sectors 1,953,520,065
SATA type SATA-III 6.0Gb/s
Device type Fixed
ATA Standard ATA8-ACS
Serial Number S1DE7YB3
LBA Size 48-bit LBA
Power On Count 32 times
Power On Time 31.3 days
Speed 7200 RPM
Features S.M.A.R.T., NCQ
Max. Transfer Mode SATA III 6.0Gb/s
Used Transfer Mode SATA III 6.0Gb/s
Interface SATA
Capacity 931 GB
Real size 1,000,204,886,016 bytes
RAID Type None
S.M.A.R.T
Status Good
Temperature 36 C
Temperature Range OK (less than 50 C)
01 Read Error Rate 113 (099) Data 00033F9860
03 Spin-Up Time 098 (097) Data 0000000000
04 Start/Stop Count 100 (100) Data 0000000022
05 Reallocated Sectors Count 100 (100) Data 0000000000
07 Seek Error Rate 071 (060) Data 0000D4E4AF
09 Power-On Hours (POH) 100 (100) Data 00000002EF
0A Spin Retry Count 100 (100) Data 0000000000
0C Device Power Cycle Count 100 (100) Data 0000000020
B7 SATA Downshift Error Count 100 (100) Data 0000000000
B8 End-to-End error / IOEDC 100 (100) Data 0000000000
BB Reported Uncorrectable Errors 100 (100) Data 0000000000
BC Command Timeout 100 (100) Data 0000000000
BD High Fly Writes (WDC) 100 (100) Data 0000000000
BE Temperature Difference from 100 065 (058) Data 00261F0023
BF G-sense error rate 100 (100) Data 0000000000
C0 Power-off Retract Count 100 (100) Data 0000000006
C1 Load/Unload Cycle Count 100 (100) Data 0000000022
C2 Temperature 035 (042) Data 0000000023
C5 Current Pending Sector Count 100 (100) Data 0000000000
C6 Uncorrectable Sector Count 100 (100) Data 0000000000
C7 UltraDMA CRC Error Count 200 (200) Data 0000000000
F0 Head Flying Hours 100 (253) Data 00000002F0
F1 Total LBAs Written 100 (253) Data 004B49172F
F2 Total LBAs Read 100 (253) Data 004D07221E
Partition 0
Partition ID Disk #0, Partition #0
Size 0.97 GB
Partition 1
Partition ID Disk #0, Partition #1
Size 260 MB
Partition 2
Partition ID Disk #0, Partition #2
Size 500 MB
Partition 3
Partition ID Disk #0, Partition #3
Disk Letter C:
File System NTFS
Volume Serial Number F8F1151E
Size 904 GB
Used Space 47 GB (6%)
Free Space 856 GB (94%)
Partition 4
Partition ID Disk #0, Partition #4
Size 350 MB
Partition 5
Partition ID Disk #0, Partition #5
Size 24.4 GB
Seagate FreeAgent USB Device
Heads 16
Cylinders 121,601
Tracks 31,008,255
Sectors 1,953,520,065
SATA type SATA-III 6.0Gb/s
Device type Fixed
ATA Standard ATA8-ACS
Serial Number S1DE7YB3
LBA Size 48-bit LBA
Power On Count 32 times
Power On Time 31.3 days
Speed 7200 RPM
Features S.M.A.R.T., NCQ
Max. Transfer Mode SATA III 6.0Gb/s
Used Transfer Mode SATA III 6.0Gb/s
Interface USB (SATA)
Capacity 931 GB
Real size 1,000,204,886,016 bytes
RAID Type None
S.M.A.R.T
Status Good
Temperature 35 C
Temperature Range OK (less than 50 C)
01 Read Error Rate 113 (099) Data 000341FB88
03 Spin-Up Time 098 (097) Data 0000000000
04 Start/Stop Count 100 (100) Data 0000000022
05 Reallocated Sectors Count 100 (100) Data 0000000000
07 Seek Error Rate 071 (060) Data 0000D4E525
09 Power-On Hours (POH) 100 (100) Data 00000002EF
0A Spin Retry Count 100 (100) Data 0000000000
0C Device Power Cycle Count 100 (100) Data 0000000020
B7 SATA Downshift Error Count 100 (100) Data 0000000000
B8 End-to-End error / IOEDC 100 (100) Data 0000000000
BB Reported Uncorrectable Errors 100 (100) Data 0000000000
BC Command Timeout 100 (100) Data 0000000000
BD High Fly Writes (WDC) 100 (100) Data 0000000000
BE Temperature Difference from 100 065 (058) Data 00261F0023
BF G-sense error rate 100 (100) Data 0000000000
C0 Power-off Retract Count 100 (100) Data 0000000006
C1 Load/Unload Cycle Count 100 (100) Data 0000000022
C2 Temperature 035 (042) Data 0000000023
C5 Current Pending Sector Count 100 (100) Data 0000000000
C6 Uncorrectable Sector Count 100 (100) Data 0000000000
C7 UltraDMA CRC Error Count 200 (200) Data 0000000000
F0 Head Flying Hours 100 (253) Data 00000002F0
F1 Total LBAs Written 100 (253) Data 004B491858
F2 Total LBAs Read 100 (253) Data 004D077E10
Partition 0
Partition ID Disk #1, Partition #0
Disk Letter E:
File System NTFS
Volume Serial Number A825DC4E
Size 931 GB
Used Space 240 GB (26%)
Free Space 691 GB (74%)
Optical Drives
TSSTcorp CDDVDW SN-208DB SATA CdRom Device
Media Type DVD Writer
Name TSSTcorp CDDVDW SN-208DB SATA CdRom Device
Availability Running/Full Power
Capabilities Random Access, Supports Writing, Supports Removable Media
Read capabilities CD-R, CD-RW, CD-ROM, DVD-RAM, DVD-ROM, DVD-R, DVD-RW, DVD+R, DVD+RW, DVD-R DL, DVD+R DL
Write capabilities CD-R, CD-RW, DVD-RAM, DVD-R, DVD-RW, DVD+R, DVD+RW, DVD-R DL, DVD+R DL
Config Manager Error Code Device is working properly
Config Manager User Config FALSE
Drive D:
Media Loaded FALSE
SCSI Bus 1
SCSI Logical Unit 0
SCSI Port 0
SCSI Target Id 0
Status OK
Audio
Sound Cards
Realtek High Definition Audio
Lenovo USB Audio
AMD High Definition Audio Device
Playback Device
Speakers (Realtek High Definition Audio)
Recording Devices
Stereo Mix (Realtek High Definition Audio)
Microphone (Lenovo USB Audio) (default)
Peripherals
Microsoft USB Dual Receiver Wireless Keyboard (Mouse and Keyboard Center)
Device Kind Keyboard
Device Name Microsoft USB Dual Receiver Wireless Keyboard (Mouse and Keyboard Center)
Vendor Microsoft
Location Microsoft Hardware USB Keyboard
Driver
Date 4-12-2013
Version 9.4.156.0
File C:\WINDOWS\system32\DRIVERS\kbdhid.sys
File C:\WINDOWS\system32\DRIVERS\kbdclass.sys
Standard PS/2 Keyboard
Device Kind Keyboard
Device Name Standard PS/2 Keyboard
Vendor MSFT
Location PCI standard ISA bridge
Driver
Date 6-21-2006
Version 6.3.9600.16384
File C:\WINDOWS\system32\DRIVERS\i8042prt.sys
File C:\WINDOWS\system32\DRIVERS\kbdclass.sys
Microsoft USB Dual Receiver Wireless Mouse (Mouse and Keyboard Center)
Device Kind Mouse
Device Name Microsoft USB Dual Receiver Wireless Mouse (Mouse and Keyboard Center)
Vendor Microsoft
Location Microsoft Hardware USB Mouse
Driver
Date 4-12-2013
Version 9.4.156.0
File C:\WINDOWS\system32\DRIVERS\point64.sys
File C:\WINDOWS\system32\DRIVERS\mouhid.sys
File C:\WINDOWS\system32\DRIVERS\mouclass.sys
File C:\WINDOWS\system32\WdfCoInstaller01011.dll
Lenovo USB2.0 UVC Camera
Device Kind Camera/scanner
Device Name Lenovo USB2.0 UVC Camera
Vendor Z-Star Microelectronics
Comment Lenovo USB2.0 UVC Camera
Location USB Composite Device
Driver
Date 9-24-2012
Version 332.6000.4017.93
File C:\WINDOWS\System32\Drivers\vmc412.sys
File C:\WINDOWS\VMC412\Keywest.dat
File C:\WINDOWS\System32\vmctrl.ax
File C:\WINDOWS\SysWow64\vmctrl.ax
File C:\WINDOWS\SysWow64\exvmuvc.ax
Lenovo USB Audio
Device Kind Audio device
Device Name Lenovo USB Audio
Vendor Z-Star Microelectronics
Location USB Composite Device
Driver
Date 4-22-2013
Version 6.0.2251.1
File C:\WINDOWS\system32\VimicroAPOX64.dll
File C:\WINDOWS\system32\VimicroApoPgExtX64.dll
File C:\WINDOWS\system32\drivers\vmuacflt.sys
File C:\WINDOWS\system32\drivers\USBAUDIO.sys
File C:\WINDOWS\system32\drivers\drmk.sys
File C:\WINDOWS\system32\drivers\portcls.sys
File C:\WINDOWS\system32\WMALFXGFXDSP.dll
File C:\WINDOWS\system32\SysFxUI.dll
Printers
Fax
Printer Port SHRFAX:
Print Processor winprint
Availability Always
Priority 1
Duplex None
Print Quality 200 * 200 dpi Monochrome
Status Unknown
Driver
Driver Name Microsoft Shared Fax Driver (v4.00)
Driver Path C:\WINDOWS\system32\spool\DRIVERS\x64\3\FXSDRV.DLL
HP Officejet 5600 series
Printer Port USB001
Print Processor hpzppwn7
Availability Always
Priority 1
Duplex None
Print Quality 600 * 600 dpi Color
Status Unknown
Driver
Driver Name HP Officejet 5600 series (v6.03)
Driver Path C:\WINDOWS\system32\spool\DRIVERS\x64\3\UNIDRV.DLL
Microsoft XPS Document Writer
Printer Port PORTPROMPT:
Print Processor winprint
Availability Always
Priority 1
Duplex None
Print Quality 600 * 600 dpi Color
Status Unknown
Driver
Driver Name Microsoft XPS Document Writer v4 (v6.03)
Driver Path C:\WINDOWS\System32\DriverStore\FileRepository\ntprint.inf_amd64_64a5c2d136933c8f\Amd64\mxdwdrv.dll
Nitro PDF Creator (Pro 8)
Printer Port Nitro PDF Port:
Print Processor winprint
Availability Always
Priority 1
Duplex None
Print Quality 4294967292 dpi Color
Status Unknown
Driver
Driver Name Nitro PDF Driver 8 (v5.00)
Driver Path C:\WINDOWS\system32\spool\DRIVERS\x64\3\NitroGraphics8.dll
??? ?? OneNote 2010 (Default Printer)
Printer Port nul:
Print Processor winprint
Availability Always
Priority 1
Duplex None
Print Quality 600 * 600 dpi Color
Status Unknown
Driver
Driver Name Send To Microsoft OneNote 2010 Driver (v6.03)
Driver Path C:\WINDOWS\system32\spool\DRIVERS\x64\3\mxdwdrv.dll
Network
You are connected to the internet
Connected through Realtek PCIe GBE Family Controller
IP Address 192.168.123.162
Subnet mask 255.255.255.0
Gateway server 192.168.123.254
Preferred DNS server 213.57.2.5
Alternate DNS server 192.168.123.254
DHCP Enabled
DHCP server 192.168.123.254
Adapter Type Ethernet
NetBIOS over TCP/IP Enabled via DHCP
NETBIOS Node Type Hybrid node
Link Speed 0 Bps
Computer Name
NetBIOS Name SHLOMI-PC
DNS Name Shlomi-PC
Membership Part of workgroup
Workgroup WORKGROUP
Remote Desktop
Disabled
Console
State Active
Domain SHLOMI-PC
WinInet Info
LAN Connection
Local system uses a local area network to connect to the Internet
Local system has RAS to connect to the Internet
Wi-Fi Info
Wi-Fi not enabled
WinHTTPInfo
WinHTTPSessionProxyType No proxy
Session Proxy
Session Proxy Bypass
Connect Retries 5
Connect Timeout (ms) 60,000
HTTP Version HTTP 1.1
Max Connects Per 1.0 Servers INFINITE
Max Connects Per Servers INFINITE
Max HTTP automatic redirects 10
Max HTTP status continue 10
Send Timeout (ms) 30,000
IEProxy Auto Detect Yes
IEProxy Auto Config
IEProxy
IEProxy Bypass
Default Proxy Config Access Type No proxy
Default Config Proxy
Default Config Proxy Bypass
Sharing and Discovery
Network Discovery Enabled
File and Printer Sharing Enabled
File and printer sharing service Enabled
Simple File Sharing Enabled
Administrative Shares Enabled
Network access: Sharing and security model for local accounts Classic - local users authenticate as themselves
Adapters List
Enabled
Realtek PCIe GBE Family Controller
Connection Name Ethernet
NetBIOS over TCPIP Yes
DHCP enabled Yes
MAC Address 00-25-AB-3F-D8-A1
IP Address 192.168.123.162
Subnet mask 255.255.255.0
Gateway server 192.168.123.254
DHCP 192.168.123.254
DNS Server 213.57.2.5
192.168.123.254
Disabled
Qualcomm Atheros AR9485 Wireless Network Adapter
Connection Name Wi-Fi
Network Shares
Users C:\Users
E E:\
Current TCP Connections
AppleMobileDeviceService.exe (1592)
Local 127.0.0.1:27015 LISTEN
Local 127.0.0.1:27015 ESTABLISHED Remote 127.0.0.1:49213 (Querying... )
Local 127.0.0.1:49156 ESTABLISHED Remote 127.0.0.1:5354 (Querying... )
Local 127.0.0.1:49157 ESTABLISHED Remote 127.0.0.1:5354 (Querying... )
AvastSvc.exe (1196)
Local 127.0.0.1:12025 LISTEN
Local 127.0.0.1:12110 LISTEN
Local 127.0.0.1:12119 LISTEN
Local 127.0.0.1:12143 LISTEN
Local 127.0.0.1:12465 LISTEN
Local 127.0.0.1:12563 LISTEN
Local 127.0.0.1:12993 LISTEN
Local 127.0.0.1:27275 LISTEN
Local 192.168.123.162:49169 ESTABLISHED Remote 77.234.41.51:80 (Querying... ) (HTTP)
Local 127.0.0.1:12995 LISTEN
C:\Program Files (x86)\iTunes\iTunesHelper.exe (4328)
Local 127.0.0.1:49213 ESTABLISHED Remote 127.0.0.1:27015 (Querying... )
C:\Program Files (x86)\Mozilla Firefox\firefox.exe (4756)
Local 192.168.123.162:49471 ESTABLISHED Remote 173.194.112.12:80 (Querying... ) (HTTP)
Local 192.168.123.162:49472 ESTABLISHED Remote 54.230.46.174:80 (Querying... ) (HTTP)
Local 192.168.123.162:49473 ESTABLISHED Remote 54.230.44.111:80 (Querying... ) (HTTP)
Local 192.168.123.162:49348 ESTABLISHED Remote 213.57.24.136:80 (Querying... ) (HTTP)
Local 192.168.123.162:49349 ESTABLISHED Remote 213.57.24.138:80 (Querying... ) (HTTP)
Local 192.168.123.162:49354 ESTABLISHED Remote 173.194.70.156:80 (Querying... ) (HTTP)
Local 192.168.123.162:49479 ESTABLISHED Remote 213.57.24.144:80 (Querying... ) (HTTP)
Local 192.168.123.162:49480 ESTABLISHED Remote 213.57.24.144:80 (Querying... ) (HTTP)
Local 192.168.123.162:49481 ESTABLISHED Remote 213.57.24.144:80 (Querying... ) (HTTP)
Local 192.168.123.162:49359 FIN-WAIT-2 Remote 173.194.39.190:80 (Querying... ) (HTTP)
Local 192.168.123.162:49361 ESTABLISHED Remote 173.194.70.157:80 (Querying... ) (HTTP)
Local 192.168.123.162:49363 ESTABLISHED Remote 31.13.81.33:80 (Querying... ) (HTTP)
Local 192.168.123.162:49365 ESTABLISHED Remote 80.70.128.55:80 (Querying... ) (HTTP)
Local 192.168.123.162:49368 FIN-WAIT-2 Remote 178.236.7.64:80 (Querying... ) (HTTP)
Local 192.168.123.162:49373 ESTABLISHED Remote 173.194.112.153:80 (Querying... ) (HTTP)
Local 192.168.123.162:49502 ESTABLISHED Remote 80.179.74.46:80 (Querying... ) (HTTP)
Local 192.168.123.162:49503 ESTABLISHED Remote 80.179.74.46:80 (Querying... ) (HTTP)
Local 192.168.123.162:49504 ESTABLISHED Remote 23.44.244.136:80 (Querying... ) (HTTP)
Local 192.168.123.162:49505 ESTABLISHED Remote 192.118.82.151:80 (Querying... ) (HTTP)
Local 192.168.123.162:49513 ESTABLISHED Remote 80.179.74.46:80 (Querying... ) (HTTP)
Local 192.168.123.162:49514 ESTABLISHED Remote 80.179.74.46:80 (Querying... ) (HTTP)
Local 192.168.123.162:49515 ESTABLISHED Remote 80.179.74.46:80 (Querying... ) (HTTP)
Local 192.168.123.162:49516 ESTABLISHED Remote 80.179.74.46:80 (Querying... ) (HTTP)
Local 192.168.123.162:49374 ESTABLISHED Remote 173.194.70.154:80 (Querying... ) (HTTP)
Local 192.168.123.162:49521 ESTABLISHED Remote 23.44.244.136:80 (Querying... ) (HTTP)
Local 192.168.123.162:49522 ESTABLISHED Remote 23.44.244.136:80 (Querying... ) (HTTP)
Local 192.168.123.162:49525 ESTABLISHED Remote 23.44.244.136:80 (Querying... ) (HTTP)
Local 192.168.123.162:49526 ESTABLISHED Remote 23.44.244.136:80 (Querying... ) (HTTP)
Local 192.168.123.162:49528 ESTABLISHED Remote 213.57.24.138:80 (Querying... ) (HTTP)
Local 192.168.123.162:49539 ESTABLISHED Remote 173.194.70.83:443 (Querying... ) (HTTPS)
Local 192.168.123.162:49540 ESTABLISHED Remote 173.194.70.84:443 (Querying... ) (HTTPS)
Local 192.168.123.162:49541 ESTABLISHED Remote 173.194.70.95:443 (Querying... ) (HTTPS)
Local 192.168.123.162:49542 ESTABLISHED Remote 173.194.70.120:443 (Querying... ) (HTTPS)
Local 192.168.123.162:49544 ESTABLISHED Remote 213.57.24.27:443 (Querying... ) (HTTPS)
Local 192.168.123.162:49545 ESTABLISHED Remote 173.194.112.12:443 (Querying... ) (HTTPS)
Local 192.168.123.162:49546 ESTABLISHED Remote 31.13.81.1:443 (Querying... ) (HTTPS)
Local 192.168.123.162:49547 ESTABLISHED Remote 213.57.24.138:443 (Querying... ) (HTTPS)
Local 192.168.123.162:49548 ESTABLISHED Remote 213.57.24.144:443 (Querying... ) (HTTPS)
Local 192.168.123.162:49549 ESTABLISHED Remote 213.57.24.144:443 (Querying... ) (HTTPS)
Local 192.168.123.162:49550 ESTABLISHED Remote 213.57.24.144:443 (Querying... ) (HTTPS)
Local 192.168.123.162:49551 ESTABLISHED Remote 213.57.24.144:443 (Querying... ) (HTTPS)
Local 192.168.123.162:49553 ESTABLISHED Remote 213.57.24.144:443 (Querying... ) (HTTPS)
Local 192.168.123.162:49554 ESTABLISHED Remote 213.57.24.144:443 (Querying... ) (HTTPS)
Local 192.168.123.162:49555 ESTABLISHED Remote 23.44.245.118:80 (Querying... ) (HTTP)
Local 192.168.123.162:49556 ESTABLISHED Remote 54.230.46.207:80 (Querying... ) (HTTP)
Local 192.168.123.162:49377 ESTABLISHED Remote 178.236.4.21:443 (Querying... ) (HTTPS)
Local 192.168.123.162:49565 ESTABLISHED Remote 213.57.24.137:80 (Querying... ) (HTTP)
Local 192.168.123.162:49566 ESTABLISHED Remote 213.57.24.137:80 (Querying... ) (HTTP)
Local 192.168.123.162:49567 ESTABLISHED Remote 213.57.24.137:80 (Querying... ) (HTTP)
Local 192.168.123.162:49568 ESTABLISHED Remote 213.57.24.137:80 (Querying... ) (HTTP)
Local 192.168.123.162:49569 ESTABLISHED Remote 213.57.24.137:80 (Querying... ) (HTTP)
Local 192.168.123.162:49570 ESTABLISHED Remote 213.57.24.137:80 (Querying... ) (HTTP)
Local 192.168.123.162:49571 ESTABLISHED Remote 213.57.24.144:80 (Querying... ) (HTTP)
Local 192.168.123.162:49572 ESTABLISHED Remote 213.57.24.144:80 (Querying... ) (HTTP)
Local 192.168.123.162:49573 ESTABLISHED Remote 173.194.70.120:80 (Querying... ) (HTTP)
Local 192.168.123.162:49576 ESTABLISHED Remote 213.57.24.144:80 (Querying... ) (HTTP)
Local 192.168.123.162:49577 ESTABLISHED Remote 213.57.24.144:80 (Querying... ) (HTTP)
Local 192.168.123.162:49378 ESTABLISHED Remote 176.32.109.113:80 (Querying... ) (HTTP)
Local 192.168.123.162:49379 ESTABLISHED Remote 176.32.109.113:80 (Querying... ) (HTTP)
Local 192.168.123.162:49380 ESTABLISHED Remote 176.32.109.113:80 (Querying... ) (HTTP)
Local 192.168.123.162:49381 ESTABLISHED Remote 176.32.109.113:80 (Querying... ) (HTTP)
Local 192.168.123.162:49382 ESTABLISHED Remote 176.32.109.113:80 (Querying... ) (HTTP)
Local 192.168.123.162:49592 ESTABLISHED Remote 213.57.24.144:80 (Querying... ) (HTTP)
Local 192.168.123.162:49593 ESTABLISHED Remote 88.221.154.110:443 (Querying... ) (HTTPS)
Local 192.168.123.162:49384 ESTABLISHED Remote 82.166.201.170:80 (Querying... ) (HTTP)
Local 192.168.123.162:49385 ESTABLISHED Remote 82.166.201.170:80 (Querying... ) (HTTP)
Local 192.168.123.162:49386 ESTABLISHED Remote 82.166.201.170:80 (Querying... ) (HTTP)
Local 192.168.123.162:49598 ESTABLISHED Remote 173.194.70.95:80 (Querying... ) (HTTP)
Local 192.168.123.162:49387 ESTABLISHED Remote 82.166.201.170:80 (Querying... ) (HTTP)
Local 192.168.123.162:49388 ESTABLISHED Remote 82.166.201.170:80 (Querying... ) (HTTP)
Local 192.168.123.162:49607 ESTABLISHED Remote 213.57.24.144:80 (Querying... ) (HTTP)
Local 192.168.123.162:49608 ESTABLISHED Remote 54.240.162.164:80 (Querying... ) (HTTP)
Local 192.168.123.162:49610 ESTABLISHED Remote 23.44.241.224:80 (Querying... ) (HTTP)
Local 192.168.123.162:49611 ESTABLISHED Remote 173.194.70.156:80 (Querying... ) (HTTP)
Local 192.168.123.162:49389 ESTABLISHED Remote 82.166.201.170:80 (Querying... ) (HTTP)
Local 192.168.123.162:49613 ESTABLISHED Remote 213.57.23.44:443 (Querying... ) (HTTPS)
Local 192.168.123.162:49390 ESTABLISHED Remote 213.57.24.139:80 (Querying... ) (HTTP)
Local 192.168.123.162:49397 ESTABLISHED Remote 213.57.24.139:80 (Querying... ) (HTTP)
Local 192.168.123.162:49623 ESTABLISHED Remote 173.194.70.157:80 (Querying... ) (HTTP)
Local 192.168.123.162:49625 ESTABLISHED Remote 23.44.241.224:80 (Querying... ) (HTTP)
Local 192.168.123.162:49626 ESTABLISHED Remote 173.194.112.153:80 (Querying... ) (HTTP)
Local 192.168.123.162:49627 ESTABLISHED Remote 173.194.70.120:80 (Querying... ) (HTTP)
Local 192.168.123.162:49399 ESTABLISHED Remote 173.194.70.155:80 (Querying... ) (HTTP)
Local 192.168.123.162:49400 ESTABLISHED Remote 80.70.128.55:80 (Querying... ) (HTTP)
Local 192.168.123.162:49402 ESTABLISHED Remote 173.194.70.155:80 (Querying... ) (HTTP)
Local 192.168.123.162:49404 ESTABLISHED Remote 178.236.7.64:443 (Querying... ) (HTTPS)
Local 192.168.123.162:49405 ESTABLISHED Remote 178.236.7.64:443 (Querying... ) (HTTPS)
Local 192.168.123.162:49636 ESTABLISHED Remote 23.44.251.27:80 (Querying... ) (HTTP)
Local 192.168.123.162:49637 ESTABLISHED Remote 173.194.70.84:443 (Querying... ) (HTTPS)
Local 192.168.123.162:49638 ESTABLISHED Remote 173.194.70.120:443 (Querying... ) (HTTPS)
Local 192.168.123.162:49639 ESTABLISHED Remote 173.194.112.10:443 (Querying... ) (HTTPS)
Local 192.168.123.162:49643 ESTABLISHED Remote 173.194.113.89:80 (Querying... ) (HTTP)
Local 192.168.123.162:49644 ESTABLISHED Remote 173.194.113.89:80 (Querying... ) (HTTP)
Local 192.168.123.162:49406 ESTABLISHED Remote 178.236.7.64:443 (Querying... ) (HTTPS)
Local 192.168.123.162:49407 ESTABLISHED Remote 178.236.7.64:443 (Querying... ) (HTTPS)
Local 192.168.123.162:49648 ESTABLISHED Remote 23.44.241.224:443 (Querying... ) (HTTPS)
Local 192.168.123.162:49650 ESTABLISHED Remote 173.194.70.155:443 (Querying... ) (HTTPS)
Local 192.168.123.162:49651 ESTABLISHED Remote 23.44.251.27:80 (Querying... ) (HTTP)
Local 192.168.123.162:49658 ESTABLISHED Remote 213.57.24.144:80 (Querying... ) (HTTP)
Local 192.168.123.162:49660 ESTABLISHED Remote 213.57.24.137:80 (Querying... ) (HTTP)
Local 192.168.123.162:49409 ESTABLISHED Remote 173.194.70.154:80 (Querying... ) (HTTP)
Local 192.168.123.162:49662 ESTABLISHED Remote 173.194.70.155:80 (Querying... ) (HTTP)
Local 192.168.123.162:49411 ESTABLISHED Remote 173.194.70.154:80 (Querying... ) (HTTP)
Local 192.168.123.162:49594 ESTABLISHED Remote 108.168.208.206:80 (Querying... ) (HTTP)
Local 192.168.123.162:49413 ESTABLISHED Remote 173.194.70.156:80 (Querying... ) (HTTP)
Local 192.168.123.162:49415 ESTABLISHED Remote 173.194.70.121:80 (Querying... ) (HTTP)
Local 192.168.123.162:49416 ESTABLISHED Remote 173.194.70.121:80 (Querying... ) (HTTP)
Local 192.168.123.162:49417 ESTABLISHED Remote 173.194.70.155:80 (Querying... ) (HTTP)
Local 192.168.123.162:49419 ESTABLISHED Remote 173.194.112.177:80 (Querying... ) (HTTP)
Local 192.168.123.162:49420 ESTABLISHED Remote 173.194.112.177:80 (Querying... ) (HTTP)
Local 192.168.123.162:49425 ESTABLISHED Remote 173.194.112.177:80 (Querying... ) (HTTP)
Local 192.168.123.162:49426 ESTABLISHED Remote 173.194.112.191:80 (Querying... ) (HTTP)
Local 192.168.123.162:49429 ESTABLISHED Remote 173.194.70.155:443 (Querying... ) (HTTPS)
Local 192.168.123.162:49430 ESTABLISHED Remote 173.194.113.106:80 (Querying... ) (HTTP)
Local 192.168.123.162:49431 ESTABLISHED Remote 173.194.112.12:80 (Querying... ) (HTTP)
Local 192.168.123.162:49438 ESTABLISHED Remote 173.194.70.95:80 (Querying... ) (HTTP)
Local 192.168.123.162:49440 ESTABLISHED Remote 173.194.112.10:80 (Querying... ) (HTTP)
Local 192.168.123.162:49441 ESTABLISHED Remote 173.194.112.10:80 (Querying... ) (HTTP)
Local 192.168.123.162:49443 ESTABLISHED Remote 173.194.112.10:80 (Querying... ) (HTTP)
Local 192.168.123.162:49686 ESTABLISHED Remote 173.194.70.156:80 (Querying... ) (HTTP)
Local 192.168.123.162:49687 ESTABLISHED Remote 173.194.70.156:80 (Querying... ) (HTTP)
Local 192.168.123.162:49446 ESTABLISHED Remote 173.194.113.106:80 (Querying... ) (HTTP)
Local 192.168.123.162:49447 ESTABLISHED Remote 173.194.113.106:80 (Querying... ) (HTTP)
Local 192.168.123.162:49448 ESTABLISHED Remote 173.194.112.12:80 (Querying... ) (HTTP)
Local 192.168.123.162:49449 ESTABLISHED Remote 173.194.112.12:80 (Querying... ) (HTTP)
Local 127.0.0.1:49217 ESTABLISHED Remote 127.0.0.1:49218 (Querying... )
Local 192.168.123.162:49453 ESTABLISHED Remote 23.44.251.27:80 (Querying... ) (HTTP)
Local 127.0.0.1:49218 ESTABLISHED Remote 127.0.0.1:49217 (Querying... )
Local 192.168.123.162:49456 ESTABLISHED Remote 192.116.71.92:80 (Querying... ) (HTTP)
Local 192.168.123.162:49236 ESTABLISHED Remote 173.194.70.155:80 (Querying... ) (HTTP)
Local 192.168.123.162:49299 ESTABLISHED Remote 213.57.24.48:80 (Querying... ) (HTTP)
Local 192.168.123.162:49459 ESTABLISHED Remote 173.194.70.95:80 (Querying... ) (HTTP)
Local 192.168.123.162:49301 ESTABLISHED Remote 31.13.81.33:443 (Querying... ) (HTTPS)
Local 192.168.123.162:49463 ESTABLISHED Remote 213.57.24.138:80 (Querying... ) (HTTP)
Local 192.168.123.162:49302 ESTABLISHED Remote 23.44.251.27:80 (Querying... ) (HTTP)
Local 192.168.123.162:49344 ESTABLISHED Remote 213.57.24.136:80 (Querying... ) (HTTP)
Local 192.168.123.162:49710 ESTABLISHED Remote 173.194.70.156:80 (Querying... ) (HTTP)
Local 192.168.123.162:49345 ESTABLISHED Remote 213.57.24.136:80 (Querying... ) (HTTP)
Local 192.168.123.162:49717 ESTABLISHED Remote 82.192.95.42:80 (Querying... ) (HTTP)
Local 192.168.123.162:49346 ESTABLISHED Remote 213.57.24.136:80 (Querying... ) (HTTP)
Local 192.168.123.162:49719 ESTABLISHED Remote 23.44.251.27:80 (Querying... ) (HTTP)
Local 192.168.123.162:49347 ESTABLISHED Remote 213.57.24.136:80 (Querying... ) (HTTP)
Local 192.168.123.162:49665 ESTABLISHED Remote 54.240.162.73:80 (Querying... ) (HTTP)
lsass.exe (708)
Local 0.0.0.0:49158 LISTEN
mDNSResponder.exe (1772)
Local 127.0.0.1:5354 LISTEN
Local 127.0.0.1:5354 ESTABLISHED Remote 127.0.0.1:49156 (Querying... )
Local 127.0.0.1:5354 ESTABLISHED Remote 127.0.0.1:49157 (Querying... )
services.exe (700)
Local 0.0.0.0:49167 LISTEN
spoolsv.exe (1320)
Local 0.0.0.0:49155 LISTEN
svchost.exe (360)
Local 0.0.0.0:49154 LISTEN
svchost.exe (824)
Local 0.0.0.0:135 (DCE) LISTEN
svchost.exe (976)
Local 0.0.0.0:49153 LISTEN
System Process
Local 192.168.123.162:49229 TIME-WAIT Remote 213.57.24.137:80 (Querying... ) (HTTP)
Local 192.168.123.162:49672 TIME-WAIT Remote 212.199.161.44:80 (Querying... ) (HTTP)
Local 192.168.123.162:49673 TIME-WAIT Remote 212.199.161.38:80 (Querying... ) (HTTP)
Local 192.168.123.162:49674 TIME-WAIT Remote 212.199.161.45:80 (Querying... ) (HTTP)
Local 192.168.123.162:49675 TIME-WAIT Remote 23.44.242.127:80 (Querying... ) (HTTP)
Local 192.168.123.162:49678 TIME-WAIT Remote 108.161.189.5:80 (Querying... ) (HTTP)
Local 192.168.123.162:49679 TIME-WAIT Remote 108.161.189.5:80 (Querying... ) (HTTP)
Local 192.168.123.162:49680 TIME-WAIT Remote 108.161.189.5:80 (Querying... ) (HTTP)
Local 192.168.123.162:49681 TIME-WAIT Remote 108.161.189.5:80 (Querying... ) (HTTP)
Local 192.168.123.162:49682 TIME-WAIT Remote 185.31.17.185:80 (Querying... ) (HTTP)
Local 192.168.123.162:49683 TIME-WAIT Remote 108.161.189.5:80 (Querying... ) (HTTP)
Local 192.168.123.162:49684 TIME-WAIT Remote 92.123.203.139:80 (Querying... ) (HTTP)
Local 192.168.123.162:49685 TIME-WAIT Remote 185.31.17.130:80 (Querying... ) (HTTP)
Local 192.168.123.162:49688 TIME-WAIT Remote 173.194.70.156:80 (Querying... ) (HTTP)
Local 192.168.123.162:49689 TIME-WAIT Remote 173.194.70.156:80 (Querying... ) (HTTP)
Local 192.168.123.162:49690 TIME-WAIT Remote 173.194.70.156:80 (Querying... ) (HTTP)
Local 192.168.123.162:49691 TIME-WAIT Remote 173.194.70.156:80 (Querying... ) (HTTP)
Local 192.168.123.162:49692 TIME-WAIT Remote 185.31.16.134:80 (Querying... ) (HTTP)
Local 192.168.123.162:49693 TIME-WAIT Remote 185.31.17.134:80 (Querying... ) (HTTP)
Local 192.168.123.162:49695 TIME-WAIT Remote 185.31.17.130:80 (Querying... ) (HTTP)
Local 192.168.123.162:49698 TIME-WAIT Remote 108.161.189.5:80 (Querying... ) (HTTP)
Local 192.168.123.162:49232 TIME-WAIT Remote 213.57.24.137:80 (Querying... ) (HTTP)
Local 192.168.123.162:49699 TIME-WAIT Remote 108.161.189.5:80 (Querying... ) (HTTP)
Local 192.168.123.162:49700 TIME-WAIT Remote 185.31.17.185:80 (Querying... ) (HTTP)
Local 192.168.123.162:49701 TIME-WAIT Remote 108.161.189.5:80 (Querying... ) (HTTP)
Local 192.168.123.162:49702 TIME-WAIT Remote 92.123.203.139:80 (Querying... ) (HTTP)
Local 192.168.123.162:49703 TIME-WAIT Remote 185.31.17.130:80 (Querying... ) (HTTP)
Local 192.168.123.162:49708 TIME-WAIT Remote 216.151.213.149:80 (Querying... ) (HTTP)
Local 192.168.123.162:49362 TIME-WAIT Remote 173.194.70.157:80 (Querying... ) (HTTP)
Local 192.168.123.162:49444 TIME-WAIT Remote 173.194.112.10:80 (Querying... ) (HTTP)
Local 192.168.123.162:49709 TIME-WAIT Remote 216.151.213.149:80 (Querying... ) (HTTP)
Local 192.168.123.162:49713 TIME-WAIT Remote 185.31.17.130:80 (Querying... ) (HTTP)
Local 192.168.123.162:49214 TIME-WAIT Remote 64.4.11.25:443 (Querying... ) (HTTPS)
Local 192.168.123.162:49219 TIME-WAIT Remote 213.57.24.137:80 (Querying... ) (HTTP)
Local 192.168.123.162:49220 TIME-WAIT Remote 213.57.24.137:80 (Querying... ) (HTTP)
Local 192.168.123.162:49221 TIME-WAIT Remote 213.57.24.137:80 (Querying... ) (HTTP)
Local 192.168.123.162:49222 TIME-WAIT Remote 213.57.24.137:80 (Querying... ) (HTTP)
Local 192.168.123.162:49225 TIME-WAIT Remote 213.57.24.137:80 (Querying... ) (HTTP)
Local 192.168.123.162:49228 TIME-WAIT Remote 213.57.24.137:80 (Querying... ) (HTTP)
Local 192.168.123.162:49316 TIME-WAIT Remote 194.90.203.9:80 (Querying... ) (HTTP)
Local 192.168.123.162:49230 TIME-WAIT Remote 213.57.24.137:80 (Querying... ) (HTTP)
Local 192.168.123.162:49231 TIME-WAIT Remote 213.57.24.137:80 (Querying... ) (HTTP)
Local 192.168.123.162:49718 TIME-WAIT Remote 77.234.41.66:80 (Querying... ) (HTTP)
Local 192.168.123.162:49233 TIME-WAIT Remote 213.57.24.137:80 (Querying... ) (HTTP)
Local 192.168.123.162:49383 TIME-WAIT Remote 176.32.109.113:80 (Querying... ) (HTTP)
Local 192.168.123.162:49239 TIME-WAIT Remote 213.57.24.137:80 (Querying... ) (HTTP)
Local 192.168.123.162:49241 TIME-WAIT Remote 213.57.24.144:80 (Querying... ) (HTTP)
Local 192.168.123.162:49243 TIME-WAIT Remote 178.236.4.21:80 (Querying... ) (HTTP)
Local 192.168.123.162:49244 TIME-WAIT Remote 149.126.72.5:80 (Querying... ) (HTTP)
Local 192.168.123.162:49245 TIME-WAIT Remote 213.57.24.144:80 (Querying... ) (HTTP)
Local 192.168.123.162:49246 TIME-WAIT Remote 213.57.24.144:80 (Querying... ) (HTTP)
Local 192.168.123.162:49248 TIME-WAIT Remote 213.57.24.137:80 (Querying... ) (HTTP)
Local 192.168.123.162:49249 TIME-WAIT Remote 213.57.24.137:80 (Querying... ) (HTTP)
Local 192.168.123.162:49250 TIME-WAIT Remote 213.57.24.137:80 (Querying... ) (HTTP)
Local 192.168.123.162:49251 TIME-WAIT Remote 213.57.24.137:80 (Querying... ) (HTTP)
Local 192.168.123.162:49252 TIME-WAIT Remote 213.57.24.137:80 (Querying... ) (HTTP)
Local 192.168.123.162:49253 TIME-WAIT Remote 149.126.72.5:80 (Querying... ) (HTTP)
Local 192.168.123.162:49254 TIME-WAIT Remote 149.126.72.5:80 (Querying... ) (HTTP)
Local 192.168.123.162:49255 TIME-WAIT Remote 149.126.72.5:80 (Querying... ) (HTTP)
Local 192.168.123.162:49263 TIME-WAIT Remote 173.194.70.154:80 (Querying... ) (HTTP)
Local 192.168.123.162:49264 TIME-WAIT Remote 173.194.70.154:80 (Querying... ) (HTTP)
Local 192.168.123.162:49265 TIME-WAIT Remote 212.29.248.226:80 (Querying... ) (HTTP)
Local 192.168.123.162:49266 TIME-WAIT Remote 213.57.24.137:80 (Querying... ) (HTTP)
Local 192.168.123.162:49268 TIME-WAIT Remote 173.194.70.155:80 (Querying... ) (HTTP)
Local 192.168.123.162:49273 TIME-WAIT Remote 173.194.112.177:80 (Querying... ) (HTTP)
Local 192.168.123.162:49274 TIME-WAIT Remote 173.194.112.177:80 (Querying... ) (HTTP)
Local 192.168.123.162:49292 TIME-WAIT Remote 194.90.203.14:80 (Querying... ) (HTTP)
Local 192.168.123.162:49293 TIME-WAIT Remote 194.90.203.14:80 (Querying... ) (HTTP)
Local 192.168.123.162:49294 TIME-WAIT Remote 194.90.203.14:80 (Querying... ) (HTTP)
Local 192.168.123.162:49295 TIME-WAIT Remote 194.90.203.14:80 (Querying... ) (HTTP)
Local 192.168.123.162:49296 TIME-WAIT Remote 194.90.203.14:80 (Querying... ) (HTTP)
Local 192.168.123.162:49297 TIME-WAIT Remote 194.90.203.14:80 (Querying... ) (HTTP)
Local 192.168.123.162:49367 TIME-WAIT Remote 178.236.7.64:80 (Querying... ) (HTTP)
Local 192.168.123.162:49300 TIME-WAIT Remote 31.13.81.33:80 (Querying... ) (HTTP)
Local 192.168.123.162:49442 TIME-WAIT Remote 173.194.112.10:80 (Querying... ) (HTTP)
Local 192.168.123.162:49369 TIME-WAIT Remote 31.13.81.1:80 (Querying... ) (HTTP)
Local 192.168.123.162:49314 TIME-WAIT Remote 194.90.203.9:80 (Querying... ) (HTTP)
Local 192.168.123.162:49315 TIME-WAIT Remote 194.90.203.9:80 (Querying... ) (HTTP)
Local 192.168.123.162:49721 TIME-WAIT Remote 77.234.41.66:80 (Querying... ) (HTTP)
Local 192.168.123.162:49318 TIME-WAIT Remote 62.90.90.210:80 (Querying... ) (HTTP)
Local 192.168.123.162:49319 TIME-WAIT Remote 194.90.203.9:80 (Querying... ) (HTTP)
Local 192.168.123.162:49320 TIME-WAIT Remote 194.90.203.9:80 (Querying... ) (HTTP)
Local 192.168.123.162:49414 TIME-WAIT Remote 213.57.24.144:80 (Querying... ) (HTTP)
Local 192.168.123.162:49403 TIME-WAIT Remote 38.102.157.143:80 (Querying... ) (HTTP)
Local 192.168.123.162:49375 TIME-WAIT Remote 173.194.70.154:80 (Querying... ) (HTTP)
Local 192.168.123.162:49376 TIME-WAIT Remote 173.194.112.153:80 (Querying... ) (HTTP)
Local 192.168.123.162:49432 TIME-WAIT Remote 213.57.24.139:80 (Querying... ) (HTTP)
Local 192.168.123.162:49427 TIME-WAIT Remote 173.194.112.191:80 (Querying... ) (HTTP)
Local 192.168.123.162:49351 TIME-WAIT Remote 23.44.240.151:80 (Querying... ) (HTTP)
Local 192.168.123.162:49352 TIME-WAIT Remote 23.44.240.151:80 (Querying... ) (HTTP)
Local 192.168.123.162:49353 TIME-WAIT Remote 213.189.48.220:80 (Querying... ) (HTTP)
Local 192.168.123.162:49428 TIME-WAIT Remote 173.194.70.104:80 (Querying... ) (HTTP)
Local 192.168.123.162:49355 TIME-WAIT Remote 173.194.70.156:80 (Querying... ) (HTTP)
Local 192.168.123.162:49418 TIME-WAIT Remote 173.194.70.155:80 (Querying... ) (HTTP)
Local 192.168.123.162:49360 TIME-WAIT Remote 173.194.39.190:80 (Querying... ) (HTTP)
Local 192.168.123.162:49433 TIME-WAIT Remote 173.194.112.175:80 (Querying... ) (HTTP)
Local 192.168.123.162:49450 TIME-WAIT Remote 68.232.35.121:80 (Querying... ) (HTTP)
Local 192.168.123.162:49454 TIME-WAIT Remote 173.194.70.121:80 (Querying... ) (HTTP)
Local 192.168.123.162:49457 TIME-WAIT Remote 212.199.161.37:80 (Querying... ) (HTTP)
Local 192.168.123.162:49458 TIME-WAIT Remote 212.199.161.37:80 (Querying... ) (HTTP)
Local 192.168.123.162:49461 TIME-WAIT Remote 176.34.247.204:80 (Querying... ) (HTTP)
Local 192.168.123.162:49464 TIME-WAIT Remote 213.57.24.138:80 (Querying... ) (HTTP)
Local 192.168.123.162:49465 TIME-WAIT Remote 95.172.94.30:80 (Querying... ) (HTTP)
Local 192.168.123.162:49466 TIME-WAIT Remote 213.57.24.139:80 (Querying... ) (HTTP)
Local 192.168.123.162:49467 TIME-WAIT Remote 173.194.112.175:80 (Querying... ) (HTTP)
Local 192.168.123.162:49470 TIME-WAIT Remote 95.172.94.30:80 (Querying... ) (HTTP)
Local 192.168.123.162:49474 TIME-WAIT Remote 54.230.44.111:80 (Querying... ) (HTTP)
Local 192.168.123.162:49475 TIME-WAIT Remote 54.230.46.174:80 (Querying... ) (HTTP)
Local 192.168.123.162:49477 TIME-WAIT Remote 23.44.242.127:80 (Querying... ) (HTTP)
Local 192.168.123.162:49482 TIME-WAIT Remote 213.57.24.144:80 (Querying... ) (HTTP)
Local 192.168.123.162:49483 TIME-WAIT Remote 213.57.24.144:80 (Querying... ) (HTTP)
Local 192.168.123.162:49484 TIME-WAIT Remote 213.57.24.144:80 (Querying... ) (HTTP)
Local 192.168.123.162:49491 TIME-WAIT Remote 199.203.85.5:80 (Querying... ) (HTTP)
Local 192.168.123.162:49500 TIME-WAIT Remote 199.203.85.5:80 (Querying... ) (HTTP)
Local 192.168.123.162:49501 TIME-WAIT Remote 199.203.85.5:80 (Querying... ) (HTTP)
Local 192.168.123.162:49520 TIME-WAIT Remote 195.28.181.138:80 (Querying... ) (HTTP)
Local 192.168.123.162:49563 TIME-WAIT Remote 77.234.41.67:80 (Querying... ) (HTTP)
Local 192.168.123.162:49578 TIME-WAIT Remote 213.57.24.144:80 (Querying... ) (HTTP)
Local 192.168.123.162:49579 TIME-WAIT Remote 213.57.24.144:80 (Querying... ) (HTTP)
Local 192.168.123.162:49584 TIME-WAIT Remote 182.50.136.239:80 (Querying... ) (HTTP)
Local 192.168.123.162:49585 TIME-WAIT Remote 182.50.136.239:80 (Querying... ) (HTTP)
Local 192.168.123.162:49586 TIME-WAIT Remote 182.50.136.239:80 (Querying... ) (HTTP)
Local 192.168.123.162:49723 TIME-WAIT Remote 77.234.41.66:80 (Querying... ) (HTTP)
Local 192.168.123.162:49595 TIME-WAIT Remote 108.168.208.206:80 (Querying... ) (HTTP)
Local 192.168.123.162:49597 TIME-WAIT Remote 184.72.230.141:80 (Querying... ) (HTTP)
Local 192.168.123.162:49603 TIME-WAIT Remote 173.194.70.95:80 (Querying... ) (HTTP)
Local 192.168.123.162:49606 TIME-WAIT Remote 213.57.24.144:80 (Querying... ) (HTTP)
Local 192.168.123.162:49612 TIME-WAIT Remote 92.123.203.139:80 (Querying... ) (HTTP)
Local 192.168.123.162:49620 TIME-WAIT Remote 216.151.213.149:80 (Querying... ) (HTTP)
Local 192.168.123.162:49621 TIME-WAIT Remote 216.151.213.149:80 (Querying... ) (HTTP)
Local 192.168.123.162:49628 TIME-WAIT Remote 173.194.70.120:80 (Querying... ) (HTTP)
Local 192.168.123.162:49631 TIME-WAIT Remote 173.194.112.153:80 (Querying... ) (HTTP)
Local 192.168.123.162:49632 TIME-WAIT Remote 146.185.23.162:80 (Querying... ) (HTTP)
Local 192.168.123.162:49633 TIME-WAIT Remote 146.185.23.162:80 (Querying... ) (HTTP)
Local 192.168.123.162:49635 TIME-WAIT Remote 185.31.17.134:80 (Querying... ) (HTTP)
Local 192.168.123.162:49645 TIME-WAIT Remote 173.194.113.89:80 (Querying... ) (HTTP)
Local 192.168.123.162:49647 TIME-WAIT Remote 185.31.17.130:80 (Querying... ) (HTTP)
Local 192.168.123.162:49661 TIME-WAIT Remote 212.199.161.37:80 (Querying... ) (HTTP)
Local 192.168.123.162:49664 TIME-WAIT Remote 173.194.70.157:80 (Querying... ) (HTTP)
Local 192.168.123.162:49666 TIME-WAIT Remote 54.240.162.73:80 (Querying... ) (HTTP)
Local 192.168.123.162:49669 TIME-WAIT Remote 184.72.230.141:80 (Querying... ) (HTTP)
Local 192.168.123.162:49671 TIME-WAIT Remote 212.199.161.38:80 (Querying... ) (HTTP)
System Process
Local 0.0.0.0:445 (Windows shares) LISTEN
Local 0.0.0.0:5357 LISTEN
Local 0.0.0.0:9876 LISTEN
Local 0.0.0.0:48989 LISTEN
Local 192.168.123.162:139 (NetBIOS session service) LISTEN
wininit.exe (612)
Local 0.0.0.0:49152 LISTEN
Generated with Speccy v1.25.674
  • 0

#49
pystryker

pystryker

    Trusted Helper

  • Malware Removal
  • 3,886 posts
Hello :)

Well, one more tool to take a look and see if it shows any problem. :thumbsup:



  • Download RogueKiller and save it on your desktop.
    If the program is blocked, do not hesitate to try several times. If it really does not work (it could happen), rename it to winlogon.com

    NOTE: If using IE8 or better Smartscreen Filter will need to be disabled
  • Quit all programs
  • Start RogueKiller.exe.
  • Wait until Prescan has finished ...
  • Click on Scan
Posted Image

  • Wait for the end of the scan.
  • The report has been created on the desktop.
  • Click on the Delete button.
Posted Image
  • The report has been created on the desktop.

  • Next click on the ShortcutsFix
Posted Image
  • The report has been created on the desktop.

Please post: All RKreport.txt text files located on your desktop.
  • 0

#50
assaf1

assaf1

    Member

  • Topic Starter
  • Member
  • PipPip
  • 26 posts
Hi :)

Here are the logs :
RogueKiller V8.8.10 [Feb 28 2014] by Adlice Software
mail : http://www.adlice.com/contact/
Feedback : http://forum.adlice.com
Website : http://www.adlice.co...es/roguekiller/
Blog : http://www.adlice.com

Operating System : Windows 8.1 (6.3.9200 ) 64 bits version
Started in : Normal mode
User : Shlomi [Admin rights]
Mode : Scan -- Date : 03/06/2014 18:53:47
| ARK || FAK || MBR |

Bad processes : 0

Registry Entries : 2
[HJ DESK][PUM] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> FOUND
[HJ DESK][PUM] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> FOUND

Scheduled tasks : 1
[V2][SUSP PATH] OFFICE2013ACT : C:\ProgramData\Microsoft\Windows\OFFICEICON.vbs [-] -> FOUND

Startup Entries : 0

Web browsers : 0

Browser Addons : 0

Particular Files / Folders:

Driver : [NOT LOADED 0x0]

External Hives:

Infection :

HOSTS File:
--> %SystemRoot%\System32\drivers\etc\hosts


127.0.0.1 localhost


MBR Check:

+++++ PhysicalDrive0: (\\.\PHYSICALDRIVE0 @ IDE) ST1000DM 003-1CH162 SATA Disk Device +++++
--- User ---
[MBR] e0387418fa2c84a523d174e78f847d04
[BSP] 25e017fb308518d8fe83353faeb9be46 : Empty MBR Code
Partition table:
0 - [XXXXXX] UNKNOWN (0x00) [VISIBLE] Offset (sectors): 1 | Size: 2097151 Mo
User = LL1 ... OK!
User = LL2 ... OK!

+++++ PhysicalDrive1: (\\.\PHYSICALDRIVE1 @ USB) Seagate FreeAgent USB Device +++++
--- User ---
[MBR] 5a7229887aae35ddbb5dd63b426ff2d8
[BSP] dee6925b0b8edfcc967a5b33d158c2da : Windows XP MBR Code
Partition table:
0 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 63 | Size: 953867 Mo
User = LL1 ... OK!
Error reading LL2 MBR! ([0x32] The request is not supported. )

Finished : << RKreport[0]_S_03062014_185347.txt >>




RogueKiller V8.8.10 [Feb 28 2014] by Adlice Software
mail : http://www.adlice.com/contact/
Feedback : http://forum.adlice.com
Website : http://www.adlice.co...es/roguekiller/
Blog : http://www.adlice.com

Operating System : Windows 8.1 (6.3.9200 ) 64 bits version
Started in : Normal mode
User : Shlomi [Admin rights]
Mode : Remove -- Date : 03/06/2014 19:23:01
| ARK || FAK || MBR |

Bad processes : 0

Registry Entries : 2
[HJ DESK][PUM] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> REPLACED (0)
[HJ DESK][PUM] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> REPLACED (0)

Scheduled tasks : 1
[V2][SUSP PATH] OFFICE2013ACT : C:\ProgramData\Microsoft\Windows\OFFICEICON.vbs [-] -> DELETED

Startup Entries : 0

Web browsers : 0

Browser Addons : 0

Particular Files / Folders:

Driver : [NOT LOADED 0x0]

External Hives:

Infection :

HOSTS File:
--> %SystemRoot%\System32\drivers\etc\hosts


127.0.0.1 localhost


MBR Check:

+++++ PhysicalDrive0: (\\.\PHYSICALDRIVE0 @ IDE) ST1000DM 003-1CH162 SATA Disk Device +++++
--- User ---
[MBR] e0387418fa2c84a523d174e78f847d04
[BSP] 25e017fb308518d8fe83353faeb9be46 : Empty MBR Code
Partition table:
0 - [XXXXXX] UNKNOWN (0x00) [VISIBLE] Offset (sectors): 1 | Size: 2097151 Mo
User = LL1 ... OK!
User = LL2 ... OK!

+++++ PhysicalDrive1: (\\.\PHYSICALDRIVE1 @ USB) Seagate FreeAgent USB Device +++++
--- User ---
[MBR] 5a7229887aae35ddbb5dd63b426ff2d8
[BSP] dee6925b0b8edfcc967a5b33d158c2da : Windows XP MBR Code
Partition table:
0 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 63 | Size: 953867 Mo
User = LL1 ... OK!
Error reading LL2 MBR! ([0x32] The request is not supported. )

Finished : << RKreport[0]_D_03062014_192301.txt >>
RKreport[0]_S_03062014_185347.txt



RogueKiller V8.8.10 [Feb 28 2014] by Adlice Software
mail : http://www.adlice.com/contact/
Feedback : http://forum.adlice.com
Website : http://www.adlice.co...es/roguekiller/
Blog : http://www.adlice.com

Operating System : Windows 8.1 (6.3.9200 ) 64 bits version
Started in : Normal mode
User : Shlomi [Admin rights]
Mode : Shortcuts HJfix -- Date : 03/06/2014 19:23:18
| ARK || FAK || MBR |

Bad processes : 0

Driver : [NOT LOADED 0x0]

External Hives:

File attributes restored:
Desktop: Success 0 / Fail 0
Quick launch: Success 0 / Fail 0
Programs: Success 0 / Fail 0
Start menu: Success 0 / Fail 0
User folder: Success 0 / Fail 0
My documents: Success 0 / Fail 0
My favorites: Success 0 / Fail 0
My pictures: Success 0 / Fail 0
My music: Success 0 / Fail 0
My videos: Success 0 / Fail 0
Local drives: Success 7 / Fail 6
Backup: [NOT FOUND]

Drives:
[C:] \Device\HarddiskVolume5 -- 0x3 --> Restored
[D:] \Device\CdRom0 -- 0x5 --> Skipped
[E:] \Device\HarddiskVolume8 -- 0x3 --> Restored

Infection :

Finished : << RKreport[0]_SC_03062014_192318.txt >>
RKreport[0]_D_03062014_192301.txt;RKreport[0]_S_03062014_185347.txt
  • 0

#51
pystryker

pystryker

    Trusted Helper

  • Malware Removal
  • 3,886 posts
Hello :)

Thank you for the logs. Any change in the speed loading the pages?
  • 0

#52
assaf1

assaf1

    Member

  • Topic Starter
  • Member
  • PipPip
  • 26 posts
Hi,

In Firefox there's no change.however IE is better now.
I noticed that once in a while IE is faster and then it become slower and Firefox is the faster and vice versa..
  • 0

#53
pystryker

pystryker

    Trusted Helper

  • Malware Removal
  • 3,886 posts
Well, I have reached the end of what I can do to try and solve it. :( I do have one last resort and that would be refreshing, or resetting or restoring Windows. I've included a link to instructions on how to do that. I think this is hardware related, and I'm also posting a link to our Hardware Support forum. The guys can run some tests on your machine and see if everything is ok.

How to refresh, reset, or restore your PC

Hardware Support Forum

Also, if you post in the Hardware Forum, please post a link to this topic so they can see what we have done hardware wise to alleviate the problem.

A good worker always cleans up after himself, so please follow the instructions below:


Step 1: Download and Run DelFix

  • Download Delfix from here
  • Ensure Remove disinfection tools is ticked
    Also tick:
    • Create registry backup
    • Purge system restore
    Posted Image
  • Click Run
The program will run for a few moments and then notepad will open with a log. Please paste the log in your next reply

  • I would leave Speccy as they will probably use that program in the Hardware forum.
  • You can uninstall ESET Online Scanner and Malwarebytes Anti-Rootkit at this time.
  • You can delete RogueKiller at this time.
  • I recommend keeping Malwarebytes Anti-Malware. Make sure you update it and then run it once a week.
  • I also recommend keeping TFC and running it once a week to clear out the temporary folders on your computer.

I do want to apologize for not completely solving your computers problem and I hope the Hardware boys can find out if something is amiss. :) I also want to thank you for your patience. :)
  • 0

#54
assaf1

assaf1

    Member

  • Topic Starter
  • Member
  • PipPip
  • 26 posts
Thank you so much for your kind help!!

# DelFix v10.6 - Logfile created 07/03/2014 at 13:49:10
# Updated 11/11/2013 by Xplode
# Username : Shlomi - SHLOMI-PC
# Operating System : Windows 8.1 (64 bits)

~ Removing disinfection tools ...

Deleted : C:\FRST
Deleted : C:\AdwCleaner
Deleted : C:\Users\Shlomi\Desktop\mbar
Deleted : C:\Users\Shlomi\Desktop\RK_Quarantine
Deleted : C:\TDSSKiller.2.8.16.0_27.02.2014_18.00.38_log.txt
Deleted : C:\TDSSKiller.2.8.16.0_27.02.2014_20.16.14_log.txt
Deleted : C:\TDSSKiller.2.8.16.0_27.02.2014_20.17.55_log.txt
Deleted : C:\Users\Shlomi\Desktop\Addition.txt
Deleted : C:\Users\Shlomi\Desktop\adwcleaner.exe
Deleted : C:\Users\Shlomi\Desktop\aswmbr.exe
Deleted : C:\Users\Shlomi\Desktop\ComboFix.exe
Deleted : C:\Users\Shlomi\Desktop\esetsmartinstaller_enu.exe
Deleted : C:\Users\Shlomi\Desktop\Fixlog.txt
Deleted : C:\Users\Shlomi\Desktop\FRST64.exe
Deleted : C:\Users\Shlomi\Desktop\FSS.exe
Deleted : C:\Users\Shlomi\Desktop\FSS.txt
Deleted : C:\Users\Shlomi\Desktop\JRT.exe
Deleted : C:\Users\Shlomi\Desktop\JRT.txt
Deleted : C:\Users\Shlomi\Desktop\MBR.dat
Deleted : C:\Users\Shlomi\Desktop\MiniToolBox.exe
Deleted : C:\Users\Shlomi\Desktop\Result.txt
Deleted : C:\Users\Shlomi\Desktop\RKreport[0]_D_03062014_192301.txt
Deleted : C:\Users\Shlomi\Desktop\RKreport[0]_SC_03062014_192318.txt
Deleted : C:\Users\Shlomi\Desktop\RKreport[0]_S_03062014_185347.txt
Deleted : C:\Users\Shlomi\Desktop\RogueKiller.exe
Deleted : C:\Users\Shlomi\Desktop\SecurityCheck.exe
Deleted : C:\Users\Shlomi\Desktop\tdsskiller.exe
Deleted : C:\Users\Shlomi\Desktop\TFC.exe
Deleted : HKLM\SOFTWARE\OldTimer Tools
Deleted : HKLM\SOFTWARE\AdwCleaner

~ Creating registry backup ... OK

~ Cleaning system restore ...

Deleted : RP #5 [Windows Update | 02/22/2014 01:11:30]
Deleted : RP #6 [Scheduled Checkpoint | 03/01/2014 03:27:21]

New restore point created !

########## - EOF - ##########
  • 0

#55
pystryker

pystryker

    Trusted Helper

  • Malware Removal
  • 3,886 posts

Thank you so much for your kind help!!


You're very welcome! :)
  • 0

Advertisements


#56
pystryker

pystryker

    Trusted Helper

  • Malware Removal
  • 3,886 posts
Since this issue appears to be resolved ... this Topic has been closed. Glad we could help. :)

If you're the topic starter, and need this topic reopened, please contact a staff member with the address of the thread.

Everyone else please begin a New Topic.
  • 0






Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP