Jump to content

Welcome to Geeks to Go - Register now for FREE

Need help with your computer or device? Want to learn new tech skills? You're in the right place!
Geeks to Go is a friendly community of tech experts who can solve any problem you have. Just create a free account and post your question. Our volunteers will reply quickly and guide you through the steps. Don't let tech troubles stop you. Join Geeks to Go now and get the support you need!

How it Works Create Account
Photo

computer performance issues

Started by marsianer , Aug 28 2014 09:23 AM

  • This topic is locked This topic is locked

#1
marsianer
Posted 28 August 2014 - 09:23 AM

marsianer

    New Member

  • Member
  • Pip
  • 5 posts

Hi,

I have problems with pc performance. Week ago, I have restored a backup of system partition taken with Acronis, because my computer was slow. I had to wait cca. 20 sec. to open "my computer" or even longer for control panel, firefox was freezing all the time, and it took long to close programs after some time they were running. When I restored, earlier mentioned backup, it was ok, but then I installed about seven programs, restored firefox profile and did chrome sync with google account. Now I noticed a new problems, computer is not as slow as before, but is slow,  wlan transfers are slow, before, download speed on wlan was about 2.000 KB, and now its 300-700 KB. Also I've noticed higher ping results on xxx.pingtest.net with Google Chrome especially, 2 times higher than normal. I'm using Kaspersky Antivirus, didn't find anything suspicious.

Any help would be greatly appreciated.

 

OTL logfile created on: 28.8.2014 16:58:36 - Run 1
OTL by OldTimer - Version 3.2.69.0     Folder = C:\Users\Domagoj\Desktop
Windows Vista Home Premium Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 0000041A | Country: Croatia | Language: HRV | Date Format: d.M.yyyy
 
2,00 Gb Total Physical Memory | 0,67 Gb Available Physical Memory | 33,51% Memory free
4,23 Gb Paging File | 2,15 Gb Available in Paging File | 50,76% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 126,20 Gb Total Space | 81,49 Gb Free Space | 64,57% Space Free | Partition Type: NTFS
Drive D: | 106,68 Gb Total Space | 10,31 Gb Free Space | 9,66% Space Free | Partition Type: NTFS
 
Computer Name: DOMAGOJ-PC | User Name: Domagoj | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days
 
========== Processes (SafeList) ==========
 
PRC - [2014.08.28 16:58:01 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Domagoj\Desktop\OTL.exe
PRC - [2014.08.22 00:23:11 | 000,356,128 | ---- | M] (Kaspersky Lab ZAO) -- C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2013\avp.exe
PRC - [2014.08.12 10:58:04 | 001,801,960 | ---- | M] (SeriousBit) -- C:\Program Files\NetBalancer\SeriousBit.NetBalancer.Tray.exe
PRC - [2014.08.12 10:58:02 | 000,129,256 | ---- | M] (SeriousBit) -- C:\Program Files\NetBalancer\SeriousBit.NetBalancer.Service.exe
PRC - [2014.08.07 05:20:57 | 000,860,488 | ---- | M] (Google Inc.) -- C:\Program Files\Google\Chrome\Application\chrome.exe
PRC - [2014.07.17 07:42:02 | 000,275,568 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2013.04.30 05:53:00 | 000,453,632 | ---- | M] (AMD) -- C:\Windows\System32\atieclxx.exe
PRC - [2013.04.30 05:52:26 | 000,217,088 | ---- | M] (AMD) -- C:\Windows\System32\atiesrxx.exe
PRC - [2010.02.04 22:57:18 | 002,326,920 | ---- | M] (Acronis) -- C:\Program Files\Common Files\Acronis\CDP\afcdpsrv.exe
PRC - [2010.02.04 08:14:54 | 000,033,136 | ---- | M] () -- C:\Windows\ASScrPro.exe
PRC - [2009.09.23 14:38:18 | 000,935,208 | ---- | M] (Nero AG) -- C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe
PRC - [2009.09.12 17:31:36 | 000,357,384 | ---- | M] (Acronis) -- C:\Program Files\Common Files\Acronis\Schedule2\schedhlp.exe
PRC - [2009.09.12 17:31:30 | 000,660,520 | ---- | M] (Acronis) -- C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe
PRC - [2009.09.12 17:30:48 | 005,048,488 | ---- | M] (Acronis) -- C:\Program Files\Acronis\TrueImageHome\TrueImageMonitor.exe
PRC - [2009.04.11 08:27:36 | 002,926,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
PRC - [2008.07.09 19:14:06 | 000,191,032 | ---- | M] (ATK) -- C:\Program Files\P4G\BatteryLife.exe
PRC - [2008.06.25 05:01:08 | 000,159,744 | ---- | M] (ASUS) -- C:\Program Files\ASUS\ATK Media\DMedia.exe
PRC - [2008.06.19 22:18:12 | 000,154,168 | ---- | M] (ASUS) -- C:\Program Files\ASUS\ASUS CopyProtect\ASPG.exe
PRC - [2008.06.18 08:10:24 | 000,297,528 | ---- | M] (ASUS) -- C:\Program Files\ASUS\SmartLogon\sensorsrv.exe
PRC - [2008.06.04 03:29:08 | 000,851,968 | ---- | M] (ATK) -- C:\Program Files\ASUS\Splendid\ACMON.exe
PRC - [2008.05.27 21:59:08 | 001,845,800 | ---- | M] (Broadcom Corporation.) -- C:\Program Files\WIDCOMM\Bluetooth Software\BTStackServer.exe
PRC - [2008.05.27 21:59:08 | 000,752,168 | ---- | M] (Broadcom Corporation.) -- C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
PRC - [2008.03.18 06:27:12 | 000,013,312 | ---- | M] (Agere Systems) -- C:\Windows\System32\agrsmsvc.exe
PRC - [2008.03.18 03:06:00 | 001,848,648 | ---- | M] (CANON INC.) -- C:\Program Files\Canon\MyPrinter\BJMYPRT.EXE
PRC - [2008.01.07 10:25:14 | 004,853,760 | ---- | M] (Realtek Semiconductor) -- C:\Windows\RtHDVCpl.exe
PRC - [2007.11.30 21:20:44 | 000,051,768 | ---- | M] () -- C:\Program Files\ASUS\ASUS Live Update\ALU.exe
PRC - [2007.10.12 07:44:28 | 000,106,496 | ---- | M] (ASUS) -- C:\Windows\System32\ASUSTPE.exe
PRC - [2007.08.08 10:08:40 | 000,094,208 | ---- | M] () -- C:\Program Files\ATKGFNEX\GFNEXSrv.exe
PRC - [2007.08.03 22:24:54 | 000,125,496 | ---- | M] () -- C:\Program Files\ASUS\NB Probe\SPM\spmgr.exe
PRC - [2007.07.06 02:53:44 | 001,040,384 | ---- | M] () -- C:\Program Files\Wireless Console 2\wcourier.exe
PRC - [2007.05.18 12:31:16 | 000,073,728 | ---- | M] () -- C:\Program Files\ASUS\ASUS Data Security Manager\ADSMSrv.exe
PRC - [2007.04.19 21:32:08 | 000,225,280 | ---- | M] (ATK0100) -- C:\Program Files\ATK Hotkey\HControl.exe
PRC - [2007.04.17 23:39:42 | 000,077,824 | ---- | M] () -- C:\Program Files\ATK Hotkey\KBFiltr.exe
PRC - [2007.02.06 04:13:14 | 000,094,208 | ---- | M] () -- C:\Program Files\ATK Hotkey\ASLDRSrv.exe
PRC - [2007.01.18 05:26:36 | 007,708,672 | ---- | M] () -- C:\Program Files\ATKOSD2\ATKOSD2.exe
PRC - [2006.12.19 03:26:26 | 002,420,736 | ---- | M] () -- C:\Program Files\ATK Hotkey\ATKOSD.exe
PRC - [2005.07.07 01:43:42 | 000,155,648 | ---- | M] (ASUSTeK) -- C:\Windows\System32\ACEngSvr.exe
 
 
========== Modules (No Company Name) ==========
 
MOD - [2014.08.15 13:00:41 | 000,240,128 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\WindowsFormsIntegra#\f3dd6b1844843d83a07a6cc11d904e05\WindowsFormsIntegration.ni.dll
MOD - [2014.08.15 12:33:45 | 000,368,128 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\597c3cc5acbabed8f2629fbefa56b2ba\PresentationFramework.Aero.ni.dll
MOD - [2014.08.15 12:33:17 | 000,060,928 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\UIAutomationProvider\407df6a9b45bb43c4b3d2bb43720cf86\UIAutomationProvider.ni.dll
MOD - [2014.08.15 12:33:16 | 014,329,856 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\dc8366c89601bd8fec1a19c386b37ae7\PresentationFramework.ni.dll
MOD - [2014.08.15 12:32:41 | 012,218,880 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationCore\afd28f04c84e3208264eefd738034eaa\PresentationCore.ni.dll
MOD - [2014.08.15 12:32:24 | 003,325,440 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\984b9af993d4ded05cdf37862e86e45f\WindowsBase.ni.dll
MOD - [2014.08.15 12:31:52 | 002,295,808 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Core\232203cad82cb3f708bc8255becb7e24\System.Core.ni.dll
MOD - [2014.08.15 12:30:45 | 011,909,120 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Web\8a44c1bf2675899c9c560b0f0736e6c7\System.Web.ni.dll
MOD - [2014.08.15 12:30:29 | 000,774,656 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Remo#\eed41d41e4560a73d6e8bbb2a129ae5c\System.Runtime.Remoting.ni.dll
MOD - [2014.08.15 12:30:22 | 012,434,432 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\7a53a77976e7ba55c8dbb3fa24a602eb\System.Windows.Forms.ni.dll
MOD - [2014.08.15 12:30:09 | 001,593,344 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\47339bfd9789f465e59ffe95b5af79a3\System.Drawing.ni.dll
MOD - [2014.08.15 12:30:02 | 005,462,016 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\925daabf5f5867602c8665a37c185246\System.Xml.ni.dll
MOD - [2014.08.15 12:29:53 | 000,978,944 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\d78774d95861555af8af06a846f47453\System.Configuration.ni.dll
MOD - [2014.08.15 12:29:40 | 007,977,984 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System\537cfce77c578d6ff08175875fc689b5\System.ni.dll
MOD - [2014.08.15 12:29:27 | 011,497,984 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\7767c4821b2d4d32f63d0df3ea24e6b2\mscorlib.ni.dll
MOD - [2014.08.15 02:53:52 | 000,802,816 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Runt73a1fc9d#\034c34ee777c7a2efc9c631b1179211c\System.Runtime.Remoting.ni.dll
MOD - [2014.08.15 02:53:28 | 007,662,080 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Xml\d91f3556f8011a5d48e1448e3fa8df9e\System.Xml.ni.dll
MOD - [2014.08.15 02:53:20 | 000,976,384 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Configuration\1f56d5786274992934de0c900431c447\System.Configuration.ni.dll
MOD - [2014.08.15 02:53:18 | 012,894,208 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Windows.Forms\05ca0ca95b6fcc0d710b63b6200cc178\System.Windows.Forms.ni.dll
MOD - [2014.08.15 02:52:59 | 001,644,544 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Drawing\c4477b3ce64d0d612d1ab0dba425b77f\System.Drawing.ni.dll
MOD - [2014.08.15 02:52:57 | 010,060,800 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System\79f6324a598a7c4446a4a1168be7c4b1\System.ni.dll
MOD - [2014.08.15 02:52:51 | 000,045,056 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\Accessibility\ab5a4c4706329ed536e1f90ce81766f2\Accessibility.ni.dll
MOD - [2014.08.15 02:52:45 | 016,953,856 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\mscorlib\045c9588954c3662d542b53f4462268b\mscorlib.ni.dll
MOD - [2014.08.07 05:20:55 | 000,353,096 | ---- | M] () -- C:\Program Files\Google\Chrome\Application\36.0.1985.143\ppgooglenaclpluginchrome.dll
MOD - [2014.08.07 05:20:53 | 008,537,928 | ---- | M] () -- C:\Program Files\Google\Chrome\Application\36.0.1985.143\pdf.dll
MOD - [2014.08.07 05:20:46 | 001,732,936 | ---- | M] () -- C:\Program Files\Google\Chrome\Application\36.0.1985.143\ffmpegsumo.dll
MOD - [2014.07.17 07:42:24 | 003,800,688 | ---- | M] () -- C:\Program Files\Mozilla Firefox\mozjs.dll
MOD - [2014.02.10 13:44:24 | 004,592,128 | ---- | M] () -- C:\Users\Domagoj\AppData\Local\Google\Chrome\User Data\SwiftShader\3.2.6.45159\libGLESv2.dll
MOD - [2014.02.10 13:44:24 | 000,112,128 | ---- | M] () -- C:\Users\Domagoj\AppData\Local\Google\Chrome\User Data\SwiftShader\3.2.6.45159\libEGL.dll
MOD - [2013.06.18 15:49:28 | 000,016,384 | ---- | M] () -- C:\Program Files\ATI Technologies\ATI.ACE\Branding\Branding.dll
MOD - [2013.04.30 04:46:36 | 000,037,376 | ---- | M] () -- C:\Windows\System32\atitmpxx.dll
MOD - [2013.04.29 23:08:08 | 000,369,152 | ---- | M] () -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.CrossDisplay.Graphics.Dashboard.dll
MOD - [2012.08.17 21:38:56 | 000,479,160 | ---- | M] () -- C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2013\dblite.dll
MOD - [2010.02.04 08:14:54 | 000,033,136 | ---- | M] () -- C:\Windows\ASScrPro.exe
MOD - [2008.05.27 21:52:38 | 000,126,976 | ---- | M] () -- C:\Program Files\WIDCOMM\Bluetooth Software\BTKeyInd.dll
MOD - [2007.11.30 21:20:44 | 000,051,768 | ---- | M] () -- C:\Program Files\ASUS\ASUS Live Update\ALU.exe
MOD - [2007.06.15 20:28:36 | 000,147,456 | ---- | M] () -- C:\Program Files\ASUS\ASUS Data Security Manager\OverlayIconShlExt.dll
MOD - [2007.06.02 03:08:18 | 000,143,360 | ---- | M] () -- C:\Program Files\ASUS\ASUS Data Security Manager\OverlayIconShlExt1.dll
 
 
========== Services (SafeList) ==========
 
SRV - [2014.08.22 00:23:11 | 000,356,128 | ---- | M] (Kaspersky Lab ZAO) [Auto | Running] -- C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2013\avp.exe -- (AVP)
SRV - [2014.08.12 10:58:02 | 000,129,256 | ---- | M] (SeriousBit) [Auto | Running] -- C:\Program Files\NetBalancer\SeriousBit.NetBalancer.Service.exe -- (NetBalancerService)
SRV - [2014.07.17 07:42:17 | 000,119,408 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2014.04.03 20:21:48 | 000,315,008 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files\Skype\Updater\Updater.exe -- (SkypeUpdate)
SRV - [2013.04.30 05:52:26 | 000,217,088 | ---- | M] (AMD) [Auto | Running] -- C:\Windows\System32\atiesrxx.exe -- (AMD External Events Utility)
SRV - [2010.02.04 22:57:18 | 002,326,920 | ---- | M] (Acronis) [Auto | Running] -- C:\Program Files\Common Files\Acronis\CDP\afcdpsrv.exe -- (afcdpsrv)
SRV - [2009.09.23 14:38:18 | 000,935,208 | ---- | M] (Nero AG) [Auto | Running] -- C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe -- (Nero BackItUp Scheduler 4.0)
SRV - [2009.09.12 17:31:30 | 000,660,520 | ---- | M] (Acronis) [Auto | Running] -- C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe -- (AcrSch2Svc)
SRV - [2008.03.18 06:27:12 | 000,013,312 | ---- | M] (Agere Systems) [Auto | Running] -- C:\Windows\System32\agrsmsvc.exe -- (AgereModemAudio)
SRV - [2008.01.21 04:23:32 | 000,272,952 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2007.08.08 10:08:40 | 000,094,208 | ---- | M] () [Auto | Running] -- C:\Program Files\ATKGFNEX\GFNEXSrv.exe -- (ATKGFNEXSrv)
SRV - [2007.08.03 22:24:54 | 000,125,496 | ---- | M] () [Auto | Running] -- C:\Program Files\ASUS\NB Probe\SPM\spmgr.exe -- (spmgr)
SRV - [2007.05.18 12:31:16 | 000,073,728 | ---- | M] () [Auto | Running] -- C:\Program Files\ASUS\ASUS Data Security Manager\ADSMSrv.exe -- (ADSMService)
SRV - [2007.02.06 04:13:14 | 000,094,208 | ---- | M] () [Auto | Running] -- C:\Program Files\ATK Hotkey\ASLDRSrv.exe -- (ASLDRService)
 
 
========== Driver Services (SafeList) ==========
 
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\nwlnkfwd.sys -- (NwlnkFwd)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\nwlnkflt.sys -- (NwlnkFlt)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\ipinip.sys -- (IpInIp)
DRV - [2014.08.22 10:46:32 | 000,145,040 | ---- | M] (Kaspersky Lab ZAO) [Kernel | System | Running] -- C:\Windows\System32\drivers\kneps.sys -- (kneps)
DRV - [2014.08.22 10:46:31 | 000,597,600 | ---- | M] (Kaspersky Lab ZAO) [File_System | System | Running] -- C:\Windows\System32\drivers\klif.sys -- (KLIF)
DRV - [2014.08.22 10:46:31 | 000,044,000 | ---- | M] (Kaspersky Lab ZAO) [Kernel | System | Running] -- C:\Windows\System32\drivers\kltdi.sys -- (kltdi)
DRV - [2014.08.22 10:46:31 | 000,025,696 | ---- | M] (Kaspersky Lab ZAO) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\klmouflt.sys -- (klmouflt)
DRV - [2014.08.22 10:46:31 | 000,025,696 | ---- | M] (Kaspersky Lab ZAO) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\klkbdflt.sys -- (klkbdflt)
DRV - [2014.08.22 10:46:31 | 000,025,696 | ---- | M] (Kaspersky Lab ZAO) [Kernel | System | Running] -- C:\Windows\System32\drivers\klim6.sys -- (KLIM6)
DRV - [2014.08.22 10:46:30 | 000,135,776 | ---- | M] (Kaspersky Lab ZAO) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\kl1.sys -- (kl1)
DRV - [2013.11.25 10:28:34 | 000,035,712 | ---- | M] (SeriousBit) [Kernel | System | Running] -- C:\Windows\System32\drivers\nbdrv.sys -- (nbdrv)
DRV - [2013.04.30 06:14:44 | 010,070,016 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\atikmdag.sys -- (atikmdag)
DRV - [2013.04.30 06:14:44 | 010,070,016 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\atikmdag.sys -- (amdkmdag)
DRV - [2013.04.30 04:47:52 | 000,290,304 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\atikmpag.sys -- (amdkmdap)
DRV - [2010.02.04 22:57:21 | 000,159,168 | ---- | M] (Acronis) [File_System | On_Demand | Running] -- C:\Windows\System32\drivers\afcdp.sys -- (afcdp)
DRV - [2010.02.04 22:57:13 | 000,902,432 | ---- | M] (Acronis) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\tdrpm251.sys -- (tdrpman251)
DRV - [2010.02.04 22:57:10 | 000,570,016 | ---- | M] (Acronis) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\timntr.sys -- (timounter)
DRV - [2010.02.04 22:56:54 | 000,157,248 | ---- | M] (Acronis) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\snapman.sys -- (snapman)
DRV - [2009.09.05 15:25:36 | 001,183,744 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\athr.sys -- (athr)
DRV - [2008.06.03 08:41:52 | 000,015,928 | ---- | M] ( ) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\kbfiltr.sys -- (kbfiltr)
DRV - [2008.05.29 20:21:02 | 000,015,416 | ---- | M] (Windows ® Codename Longhorn DDK provider) [File_System | Boot | Running] -- C:\Windows\System32\drivers\lullaby.sys -- (lullaby)
DRV - [2008.05.06 16:06:00 | 000,011,520 | ---- | M] (Western Digital Technologies) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\wdcsam.sys -- (WDC_SAM)
DRV - [2008.03.21 06:13:00 | 001,203,776 | ---- | M] (Agere Systems) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\AGRSM.sys -- (AgereSoftModem)
DRV - [2007.10.01 08:59:46 | 001,769,984 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\snp2uvc.sys -- (SNP2UVC)
DRV - [2007.08.11 06:19:26 | 000,029,752 | ---- | M] (Windows ® Codename Longhorn DDK provider) [File_System | Boot | Running] -- C:\Windows\System32\drivers\AsDsm.sys -- (AsDsm)
DRV - [2007.08.03 06:26:22 | 000,020,936 | ---- | M] () [Kernel | Auto | Running] -- C:\Program Files\ASUS\NB Probe\SPM\ghaio.sys -- (ghaio)
DRV - [2007.07.24 21:09:04 | 000,013,880 | ---- | M] () [Kernel | Auto | Running] -- C:\Program Files\ATKGFNEX\ASMMAP.sys -- (ASMMAP)
DRV - [2007.06.20 05:12:18 | 000,047,616 | ---- | M] (Silicon Integrated Systems Corp.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\SiSGB6.sys -- (SiSGbeLH)
DRV - [2006.12.14 09:11:58 | 000,007,680 | ---- | M] (ATK0100) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\ATKACPI.sys -- (MTsensor)
DRV - [2006.11.02 09:41:49 | 001,010,560 | ---- | M] (Motorola Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\smserial.sys -- (smserial)
DRV - [2006.11.02 09:30:56 | 000,044,544 | ---- | M] (Realtek Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\Rtlh86.sys -- (RTL8169)
 
 
========== Standard Registry (SafeList) ==========
 
 
========== Internet Explorer ==========
 
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.asus.com
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...ms}&FORM=IE8SRC
 
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.asus.com
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.hr/
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = 1
IE - HKCU\..\SearchScopes,DefaultScope = {76453B82-9FEE-4525-B0D9-F1BF442E6BFC}
IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...Box&FORM=IE8SRC
IE - HKCU\..\SearchScopes\{76453B82-9FEE-4525-B0D9-F1BF442E6BFC}: "URL" = http://www.google.co...age={startPage}
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
========== FireFox ==========
 
FF - prefs.js..browser.startup.homepage: "http://www.google.hr/"
FF - prefs.js..extensions.enabledAddons: histexp%40cycledlm.gmail.com:0.4
FF - prefs.js..extensions.enabledAddons: translator%40zoli.bod:2.1.0.3
FF - prefs.js..extensions.enabledAddons: %7B45d8ff86-d909-11db-9705-005056c00008%7D:1.2.0
FF - prefs.js..extensions.enabledAddons: %7B53A03D43-5363-4669-8190-99061B2DEBA5%7D:1.5.9
FF - prefs.js..extensions.enabledAddons: artur.dubovoy%40gmail.com:6.1.2
FF - prefs.js..extensions.enabledAddons: %7B37fa1426-b82d-11db-8314-0800200c9a66%7D:3.4.4
FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:31.0
FF - user.js - File not found
 
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF32_14_0_0_179.dll ()
FF - HKLM\Software\MozillaPlugins\@bittorrent.com/BitTorrentDNA: C:\Program Files\DNA\plugins\npbtdna.dll File not found
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.67.2: C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.67.2: C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
 
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\[email protected]: C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2013\FFExt\[email protected] [2014.08.22 10:47:00 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\[email protected]: C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2013\FFExt\[email protected] [2014.08.22 10:47:03 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\[email protected]: C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2013\FFExt\[email protected] [2014.08.22 10:46:52 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 31.0\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2010.02.04 21:24:23 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 31.0\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins
FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\[email protected]: C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird
 
[2014.08.15 15:07:46 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Domagoj\AppData\Roaming\Mozilla\Extensions
[2014.08.15 15:10:09 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Domagoj\AppData\Roaming\Mozilla\Firefox\Profiles\xd249pc5.default\extensions
[2014.08.15 15:10:13 | 000,000,000 | ---D | M] ("Flash Video Downloader - YouTube Full HD Download") -- C:\Users\Domagoj\AppData\Roaming\Mozilla\Firefox\Profiles\xd249pc5.default\extensions\[email protected]
[2013.04.25 13:17:58 | 000,042,931 | ---- | M] () (No name found) -- C:\Users\Domagoj\AppData\Roaming\Mozilla\Firefox\Profiles\xd249pc5.default\extensions\[email protected]
[2013.11.04 13:38:46 | 000,060,290 | ---- | M] () (No name found) -- C:\Users\Domagoj\AppData\Roaming\Mozilla\Firefox\Profiles\xd249pc5.default\extensions\[email protected]
[2014.08.04 18:17:58 | 000,220,548 | ---- | M] () (No name found) -- C:\Users\Domagoj\AppData\Roaming\Mozilla\Firefox\Profiles\xd249pc5.default\extensions\{37fa1426-b82d-11db-8314-0800200c9a66}.xpi
[2014.04.03 13:56:46 | 000,061,649 | ---- | M] () (No name found) -- C:\Users\Domagoj\AppData\Roaming\Mozilla\Firefox\Profiles\xd249pc5.default\extensions\{45d8ff86-d909-11db-9705-005056c00008}.xpi
[2014.04.10 20:15:00 | 000,872,680 | ---- | M] () (No name found) -- C:\Users\Domagoj\AppData\Roaming\Mozilla\Firefox\Profiles\xd249pc5.default\extensions\{53A03D43-5363-4669-8190-99061B2DEBA5}.xpi
[2014.07.24 11:42:48 | 000,967,685 | ---- | M] () (No name found) -- C:\Users\Domagoj\AppData\Roaming\Mozilla\Firefox\Profiles\xd249pc5.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
[2014.08.15 15:07:22 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\browser\extensions
[2014.08.15 15:07:22 | 000,000,000 | ---D | M] (Default) -- C:\Program Files\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
 
========== Chrome  ==========
 
CHR - default_search_provider:  ()
CHR - default_search_provider: search_url =
CHR - default_search_provider: suggest_url =
CHR - plugin: Error reading preferences file
CHR - Extension: Google Docs = C:\Users\Domagoj\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.7_0\
CHR - Extension: Google disk = C:\Users\Domagoj\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\
CHR - Extension: YouTube = C:\Users\Domagoj\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\
CHR - Extension: Google pretraĹľivanje = C:\Users\Domagoj\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\
CHR - Extension: Kaspersky URL Advisor = C:\Users\Domagoj\AppData\Local\Google\Chrome\User Data\Default\Extensions\dchlnpcodkpfdpacogkljefecpegganj\13.0.1.4190_0\
CHR - Extension: AdBlock = C:\Users\Domagoj\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.7.13_0\
CHR - Extension: Google NovÄŤanik = C:\Users\Domagoj\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.1_0\
CHR - Extension: Gmail = C:\Users\Domagoj\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1\
CHR - Extension: Streak = C:\Users\Domagoj\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnnfemgpilpdaojpnkjdgfgbnnjojfik\6.5_0\
 
O1 HOSTS File: ([2006.09.18 23:41:30 | 000,000,761 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1       localhost
O1 - Hosts: ::1             localhost
O2 - BHO: (Adobe PDF Reader Link Helper) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - No CLSID value found.
O2 - BHO: (Content Blocker Plugin) - {5564CC73-EFA7-4CBF-918A-5CF7FBBFFF4F} - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2013\IEExt\ContentBlocker\ie_content_blocker_plugin.dll (Kaspersky Lab ZAO)
O2 - BHO: (Virtual Keyboard Plugin) - {73455575-E40C-433C-9784-C78DC7761455} - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2013\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll (Kaspersky Lab ZAO)
O2 - BHO: (Java™ Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (Safe Money Plugin) - {9E6D0D23-3D72-4A94-AE1F-2D167624E3D9} - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2013\IEExt\OnlineBanking\online_banking_bho.dll (Kaspersky Lab ZAO)
O2 - BHO: (Java™ Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O2 - BHO: (URL Advisor Plugin) - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2013\IEExt\UrlAdvisor\klwtbbho.dll (Kaspersky Lab ZAO)
O4 - HKLM..\Run: [Acronis Scheduler2 Service] C:\Program Files\Common Files\Acronis\Schedule2\schedhlp.exe (Acronis)
O4 - HKLM..\Run: [ASUS Camera ScreenSaver] C:\Windows\AsScrProlog.exe ()
O4 - HKLM..\Run: [ASUS Screen Saver Protector] C:\Windows\ASScrPro.exe ()
O4 - HKLM..\Run: [ASUSTPE] C:\Windows\System32\ASUSTPE.exe (ASUS)
O4 - HKLM..\Run: [ATKMEDIA] C:\Program Files\ASUS\ATK Media\DMedia.exe (ASUS)
O4 - HKLM..\Run: [AVP] C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2013\avp.exe (Kaspersky Lab ZAO)
O4 - HKLM..\Run: [CanonMyPrinter] C:\Program Files\Canon\MyPrinter\BJMyPrt.exe (CANON INC.)
O4 - HKLM..\Run: [CanonSolutionMenu] C:\Program Files\Canon\SolutionMenu\CNSLMAIN.exe (CANON INC.)
O4 - HKLM..\Run: [RtHDVCpl] C:\Windows\RtHDVCpl.exe (Realtek Semiconductor)
O4 - HKLM..\Run: [StartCCC] C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.)
O4 - HKLM..\Run: [TrueImageMonitor.exe] C:\Program Files\Acronis\TrueImageHome\TrueImageMonitor.exe (Acronis)
O4 - HKLM..\Run: [Windows Defender] C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation)
O4 - HKCU..\Run: [NetBalancer] C:\Program Files\NetBalancer\SeriousBit.NetBalancer.Tray.exe (SeriousBit)
O4 - HKCU..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe File not found
O9 - Extra Button: Virtual Keyboard - {0C4CC089-D306-440D-9772-464E226F6539} - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2013\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll (Kaspersky Lab ZAO)
O9 - Extra Button: URLs check - {CCF151D8-D089-449F-A5A4-D9909053F20F} - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2013\IEExt\UrlAdvisor\klwtbbho.dll (Kaspersky Lab ZAO)
O13 - gopher Prefix: missing
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.ad...Plus/1.6/gp.cab (Reg Error: Key error.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{3FF21899-967F-4EFE-8005-E8A415D8AA58}: DhcpNameServer = 192.168.1.1
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\System32\userinit.exe (Microsoft Corporation)
O24 - Desktop WallPaper: C:\Windows\ASUS\wallpapers\ASUS.jpg
O24 - Desktop BackupWallPaper: C:\Windows\ASUS\wallpapers\ASUS.jpg
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2006.09.18 23:43:36 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
 
========== Files/Folders - Created Within 30 Days ==========
 
[2014.08.28 16:58:00 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\Domagoj\Desktop\OTL.exe
[2014.08.22 11:26:39 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
[2014.08.21 23:22:21 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky Anti-Virus 2013
[2014.08.21 23:13:36 | 000,597,600 | ---- | C] (Kaspersky Lab ZAO) -- C:\Windows\System32\drivers\klif.sys
[2014.08.21 23:13:36 | 000,074,848 | ---- | C] (Kaspersky Lab ZAO) -- C:\Windows\System32\drivers\klflt.sys
[2014.08.21 22:56:31 | 000,000,000 | ---D | C] -- C:\ProgramData\Kaspersky Lab
[2014.08.21 22:55:42 | 000,000,000 | ---D | C] -- C:\Program Files\Kaspersky Lab
[2014.08.18 00:15:56 | 000,000,000 | ---D | C] -- C:\Users\Domagoj\Documents\My Scans
[2014.08.18 00:12:45 | 000,000,000 | ---D | C] -- C:\Users\Domagoj\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\IrfanView
[2014.08.18 00:12:38 | 000,000,000 | ---D | C] -- C:\Users\Domagoj\AppData\Roaming\IrfanView
[2014.08.18 00:12:35 | 000,000,000 | ---D | C] -- C:\Program Files\IrfanView
[2014.08.18 00:07:35 | 000,000,000 | ---D | C] -- C:\Users\Domagoj\AppData\Roaming\HP
[2014.08.17 23:14:00 | 000,000,000 | ---D | C] -- C:\UniScan
[2014.08.17 19:07:39 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\HP
[2014.08.17 19:03:13 | 000,000,000 | ---D | C] -- C:\ProgramData\HP Product Assistant
[2014.08.17 19:01:30 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP
[2014.08.17 19:00:48 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Hewlett-Packard
[2014.08.17 19:00:45 | 000,000,000 | ---D | C] -- C:\Program Files\Hewlett-Packard
[2014.08.17 19:00:11 | 000,000,000 | -H-D | C] -- C:\Config.Msi
[2014.08.17 18:59:53 | 000,000,000 | ---D | C] -- C:\Program Files\HP
[2014.08.17 18:55:21 | 000,000,000 | ---D | C] -- C:\ProgramData\HP
[2014.08.17 18:48:26 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon iP3600 series User Registration
[2014.08.17 18:45:45 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon Utilities
[2014.08.17 18:44:44 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon iP3600 series Manual
[2014.08.17 18:42:01 | 000,000,000 | -H-D | C] -- C:\ProgramData\CanonBJ
[2014.08.17 18:41:39 | 000,000,000 | -H-D | C] -- C:\Windows\System32\CanonIJ Uninstaller Information
[2014.08.17 18:41:39 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon iP3600 series
[2014.08.17 18:39:06 | 000,000,000 | -H-D | C] -- C:\Program Files\CanonBJ
[2014.08.17 18:37:42 | 000,000,000 | ---D | C] -- C:\Program Files\Canon
[2014.08.16 22:41:47 | 000,000,000 | ---D | C] -- C:\Users\Domagoj\AppData\Roaming\cYo
[2014.08.16 22:41:47 | 000,000,000 | ---D | C] -- C:\Users\Domagoj\AppData\Local\cYo
[2014.08.16 22:31:01 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ComicRack
[2014.08.16 22:30:59 | 000,000,000 | ---D | C] -- C:\Program Files\ComicRack
[2014.08.16 14:42:04 | 000,000,000 | ---D | C] -- C:\ProgramData\ATI
[2014.08.16 14:20:51 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Catalyst Control Center
[2014.08.16 14:14:24 | 000,000,000 | ---D | C] -- C:\Program Files\ATI
[2014.08.16 14:13:18 | 000,000,000 | ---D | C] -- C:\Program Files\ATI Technologies
[2014.08.16 14:11:57 | 000,000,000 | ---D | C] -- C:\AMD
[2014.08.15 23:23:35 | 000,000,000 | ---D | C] -- C:\ProgramData\Oracle
[2014.08.15 23:04:22 | 000,000,000 | ---D | C] -- C:\ProgramData\Sun
[2014.08.15 23:04:17 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Java
[2014.08.15 23:03:19 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
[2014.08.15 23:02:04 | 000,000,000 | ---D | C] -- C:\Program Files\Java
[2014.08.15 22:35:06 | 000,000,000 | ---D | C] -- C:\Users\Domagoj\AppData\Local\Seterra
[2014.08.15 22:34:59 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Seterra
[2014.08.15 22:34:55 | 000,000,000 | ---D | C] -- C:\Program Files\Seterra
[2014.08.15 18:24:08 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Notepad++
[2014.08.15 18:24:07 | 000,000,000 | ---D | C] -- C:\Users\Domagoj\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Notepad++
[2014.08.15 18:24:03 | 000,000,000 | ---D | C] -- C:\Users\Domagoj\AppData\Roaming\Notepad++
[2014.08.15 18:24:03 | 000,000,000 | ---D | C] -- C:\Program Files\Notepad++
[2014.08.15 16:57:38 | 000,000,000 | ---D | C] -- C:\Users\Domagoj\AppData\Local\Skype
[2014.08.15 16:57:24 | 000,000,000 | ---D | C] -- C:\Users\Domagoj\AppData\Roaming\Skype
[2014.08.15 16:57:08 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
[2014.08.15 16:57:08 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Skype
[2014.08.15 16:57:04 | 000,000,000 | R--D | C] -- C:\Program Files\Skype
[2014.08.15 16:56:48 | 000,000,000 | ---D | C] -- C:\ProgramData\Skype
[2014.08.15 16:48:52 | 000,000,000 | ---D | C] -- C:\Program Files\uTorrent
[2014.08.15 16:47:21 | 000,000,000 | ---D | C] -- C:\Users\Domagoj\AppData\Roaming\uTorrent
[2014.08.15 15:51:36 | 000,000,000 | ---D | C] -- C:\Program Files\Google
[2014.08.15 15:15:09 | 000,000,000 | ---D | C] -- C:\Users\Domagoj\AppData\Local\Macromedia
[2014.08.15 15:07:35 | 000,000,000 | ---D | C] -- C:\Users\Domagoj\AppData\Roaming\Mozilla
[2014.08.15 15:07:35 | 000,000,000 | ---D | C] -- C:\Users\Domagoj\AppData\Local\Mozilla
[2014.08.15 15:07:26 | 000,000,000 | ---D | C] -- C:\ProgramData\Mozilla
[2014.08.15 15:07:25 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Maintenance Service
[2014.08.15 12:21:39 | 000,000,000 | ---D | C] -- C:\Windows\System32\WindowsPowerShell
[2014.08.15 02:48:48 | 000,000,000 | ---D | C] -- C:\Windows\Migration
[2014.08.15 02:25:49 | 000,000,000 | ---D | C] -- C:\Windows\System32\MRT
[2014.08.15 01:04:41 | 000,000,000 | ---D | C] -- C:\ProgramData\SeriousBit
[2014.08.15 00:58:20 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NetBalancer
[2014.08.15 00:58:19 | 000,035,712 | ---- | C] (SeriousBit) -- C:\Windows\System32\drivers\nbdrv.sys
[2014.08.15 00:58:14 | 000,000,000 | ---D | C] -- C:\Program Files\NetBalancer
[2014.08.15 00:56:30 | 005,093,168 | ---- | C] (SeriousBit                                                  ) -- C:\Users\Domagoj\Desktop\NetBalancerSetup.exe
[2014.08.14 19:15:35 | 000,000,000 | ---D | C] -- C:\Users\Domagoj\Desktop\sa desktopa II
[1 C:\Users\Domagoj\AppData\Local\*.tmp files -> C:\Users\Domagoj\AppData\Local\*.tmp -> ]
[1 C:\Program Files\*.tmp files -> C:\Program Files\*.tmp -> ]
[1 C:\*.tmp files -> C:\*.tmp -> ]
 
========== Files - Modified Within 30 Days ==========
 
[2014.08.28 16:58:01 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Domagoj\Desktop\OTL.exe
[2014.08.28 16:55:42 | 000,003,616 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2014.08.28 16:55:42 | 000,003,616 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2014.08.28 16:32:01 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2014.08.28 15:29:04 | 000,000,938 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2014.08.28 11:29:01 | 000,000,934 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2014.08.28 10:57:40 | 000,305,256 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
[2014.08.28 10:57:33 | 000,045,056 | ---- | M] () -- C:\Windows\System32\acovcnt.exe
[2014.08.28 10:56:57 | 2146,721,792 | -HS- | M] () -- C:\hiberfil.sys
[2014.08.27 23:00:18 | 000,000,012 | ---- | M] () -- C:\Windows\bthservsdp.dat
[2014.08.23 12:01:44 | 000,001,998 | ---- | M] () -- C:\Users\Domagoj\Application Data\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk
[2014.08.22 11:26:38 | 000,001,974 | ---- | M] () -- C:\Users\Public\Desktop\Google Chrome.lnk
[2014.08.22 11:11:07 | 000,002,489 | ---- | M] () -- C:\Users\Public\Desktop\Skype.lnk
[2014.08.22 10:46:32 | 000,145,040 | ---- | M] (Kaspersky Lab ZAO) -- C:\Windows\System32\drivers\kneps.sys
[2014.08.22 10:46:31 | 000,597,600 | ---- | M] (Kaspersky Lab ZAO) -- C:\Windows\System32\drivers\klif.sys
[2014.08.22 10:46:31 | 000,044,000 | ---- | M] (Kaspersky Lab ZAO) -- C:\Windows\System32\drivers\kltdi.sys
[2014.08.22 10:46:31 | 000,025,696 | ---- | M] (Kaspersky Lab ZAO) -- C:\Windows\System32\drivers\klmouflt.sys
[2014.08.22 10:46:31 | 000,025,696 | ---- | M] (Kaspersky Lab ZAO) -- C:\Windows\System32\drivers\klkbdflt.sys
[2014.08.22 10:46:31 | 000,025,696 | ---- | M] (Kaspersky Lab ZAO) -- C:\Windows\System32\drivers\klim6.sys
[2014.08.22 10:46:30 | 000,135,776 | ---- | M] (Kaspersky Lab ZAO) -- C:\Windows\System32\drivers\kl1.sys
[2014.08.22 10:46:30 | 000,074,848 | ---- | M] (Kaspersky Lab ZAO) -- C:\Windows\System32\drivers\klflt.sys
[2014.08.22 00:16:30 | 000,071,090 | ---- | M] () -- C:\Users\Domagoj\Desktop\IMG_0002.jpg
[2014.08.21 23:21:41 | 000,000,995 | ---- | M] () -- C:\Users\Public\Desktop\Kaspersky Anti-Virus 2013.lnk
[2014.08.18 21:15:32 | 000,633,712 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2014.08.18 21:15:32 | 000,119,278 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2014.08.17 23:14:57 | 000,127,767 | ---- | M] () -- C:\Windows\hpgins24.dat
[2014.08.17 19:07:40 | 000,002,034 | ---- | M] () -- C:\Users\Public\Desktop\HP Photosmart Essential.lnk
[2014.08.17 18:48:26 | 000,001,857 | ---- | M] () -- C:\Users\Public\Desktop\Canon iP3600 series User Registration.LNK
[2014.08.17 18:45:57 | 000,001,799 | ---- | M] () -- C:\Users\Public\Desktop\My Printer.lnk
[2014.08.17 18:45:45 | 000,001,827 | ---- | M] () -- C:\Users\Public\Desktop\Canon Solution Menu.lnk
[2014.08.17 18:45:25 | 000,002,118 | ---- | M] () -- C:\Users\Public\Desktop\iP3600 series On-screen Manual.lnk
[2014.08.17 17:51:34 | 000,005,632 | ---- | M] () -- C:\Users\Domagoj\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2014.08.16 17:50:24 | 105,164,202 | ---- | M] () -- C:\Users\Domagoj\Desktop\Archive-7678.zip
[2014.08.16 14:12:50 | 000,000,680 | ---- | M] () -- C:\Users\Domagoj\AppData\Local\d3d9caps.dat
[2014.08.15 15:07:33 | 000,000,877 | ---- | M] () -- C:\Users\Domagoj\Application Data\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk
[2014.08.15 15:07:28 | 000,000,853 | ---- | M] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk
[2014.08.15 12:28:49 | 000,000,950 | ---- | M] () -- C:\Users\Domagoj\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
[2014.08.15 02:27:34 | 000,008,798 | ---- | M] () -- C:\Windows\System32\icrav03.rat
[2014.08.15 02:27:34 | 000,001,988 | ---- | M] () -- C:\Windows\System32\ticrf.rat
[2014.08.15 02:27:11 | 000,072,822 | ---- | M] () -- C:\Windows\System32\ieuinit.inf
[2014.08.15 00:56:44 | 005,093,168 | ---- | M] (SeriousBit                                                  ) -- C:\Users\Domagoj\Desktop\NetBalancerSetup.exe
[1 C:\Users\Domagoj\AppData\Local\*.tmp files -> C:\Users\Domagoj\AppData\Local\*.tmp -> ]
[1 C:\Program Files\*.tmp files -> C:\Program Files\*.tmp -> ]
[1 C:\*.tmp files -> C:\*.tmp -> ]
 
========== Files Created - No Company Name ==========
 
[2014.08.22 11:26:38 | 000,001,998 | ---- | C] () -- C:\Users\Domagoj\Application Data\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk
[2014.08.22 11:26:38 | 000,001,974 | ---- | C] () -- C:\Users\Public\Desktop\Google Chrome.lnk
[2014.08.22 11:24:15 | 000,000,938 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2014.08.22 11:24:06 | 000,000,934 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2014.08.22 00:16:27 | 000,071,090 | ---- | C] () -- C:\Users\Domagoj\Desktop\IMG_0002.jpg
[2014.08.21 23:22:21 | 000,000,995 | ---- | C] () -- C:\Users\Public\Desktop\Kaspersky Anti-Virus 2013.lnk
[2014.08.17 19:07:40 | 000,002,034 | ---- | C] () -- C:\Users\Public\Desktop\HP Photosmart Essential.lnk
[2014.08.17 19:04:10 | 000,000,855 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\I.R.I.S. OCR Registration.lnk
[2014.08.17 18:55:26 | 000,127,767 | ---- | C] () -- C:\Windows\hpgins24.dat
[2014.08.17 18:55:26 | 000,000,308 | ---- | C] () -- C:\Windows\hpgmdl24.dat
[2014.08.17 18:48:26 | 000,001,857 | ---- | C] () -- C:\Users\Public\Desktop\Canon iP3600 series User Registration.LNK
[2014.08.17 18:45:57 | 000,001,799 | ---- | C] () -- C:\Users\Public\Desktop\My Printer.lnk
[2014.08.17 18:45:45 | 000,001,827 | ---- | C] () -- C:\Users\Public\Desktop\Canon Solution Menu.lnk
[2014.08.17 18:45:25 | 000,002,118 | ---- | C] () -- C:\Users\Public\Desktop\iP3600 series On-screen Manual.lnk
[2014.08.16 22:44:18 | 105,164,028 | ---- | C] () -- C:\Users\Domagoj\Desktop\014 - 1 2 3 4.cbr
[2014.08.16 17:50:23 | 105,164,202 | ---- | C] () -- C:\Users\Domagoj\Desktop\Archive-7678.zip
[2014.08.16 14:06:45 | 000,000,680 | ---- | C] () -- C:\Users\Domagoj\AppData\Local\d3d9caps.dat
[2014.08.15 16:57:08 | 000,002,489 | ---- | C] () -- C:\Users\Public\Desktop\Skype.lnk
[2014.08.15 15:09:46 | 000,005,632 | ---- | C] () -- C:\Users\Domagoj\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2014.08.15 15:07:33 | 000,000,877 | ---- | C] () -- C:\Users\Domagoj\Application Data\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk
[2014.08.15 15:07:28 | 000,000,865 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
[2014.08.15 15:07:28 | 000,000,853 | ---- | C] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk
[2014.08.15 02:27:11 | 000,072,822 | ---- | C] () -- C:\Windows\System32\ieuinit.inf
[2014.08.15 01:51:51 | 000,000,003 | ---- | C] () -- C:\Windows\System32\drivers\MsftWdf_User_01_11_00_Inbox_Critical.Wdf
[2014.08.15 01:35:24 | 000,201,184 | ---- | C] () -- C:\Windows\System32\winrm.vbs
[2014.08.15 01:35:24 | 000,004,675 | ---- | C] () -- C:\Windows\System32\wsmanconfig_schema.xml
[2014.08.15 01:35:24 | 000,002,426 | ---- | C] () -- C:\Windows\System32\WsmTxt.xsl
[2014.08.15 01:24:02 | 000,218,228 | ---- | C] () -- C:\Windows\System32\WFP.TMF
[2013.04.30 04:46:36 | 000,037,376 | ---- | C] () -- C:\Windows\System32\atitmpxx.dll
[2008.07.02 05:28:38 | 000,061,440 | ---- | C] () -- C:\Program Files\Common Files\CPInstallAction.dll
[2008.05.22 19:35:54 | 000,051,962 | ---- | C] () -- C:\Program Files\Common Files\banner.jpg
 
========== ZeroAccess Check ==========
 
[2006.11.02 14:54:22 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini
 
[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
 
[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]
 
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2014.03.25 15:26:04 | 011,587,584 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
 
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2009.04.11 08:28:19 | 000,614,912 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
 
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
"" = %systemroot%\system32\wbem\wbemess.dll -- [2009.04.11 08:28:25 | 000,347,648 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both
 
========== LOP Check ==========
 
[2014.08.15 17:54:27 | 000,000,000 | ---D | M] -- C:\Users\Domagoj\AppData\Roaming\Acronis
[2010.12.15 20:58:26 | 000,000,000 | ---D | M] -- C:\Users\Domagoj\AppData\Roaming\BitTorrent
[2014.08.16 22:41:47 | 000,000,000 | ---D | M] -- C:\Users\Domagoj\AppData\Roaming\cYo
[2010.12.15 16:09:55 | 000,000,000 | ---D | M] -- C:\Users\Domagoj\AppData\Roaming\GHISLER
[2014.08.18 00:12:38 | 000,000,000 | ---D | M] -- C:\Users\Domagoj\AppData\Roaming\IrfanView
[2014.08.15 18:27:05 | 000,000,000 | ---D | M] -- C:\Users\Domagoj\AppData\Roaming\Notepad++
[2014.08.15 18:42:47 | 000,000,000 | ---D | M] -- C:\Users\Domagoj\AppData\Roaming\uTorrent
 
========== Purity Check ==========
 
 

< End of report >
 


  • 0

Advertisements

#2
marsianer
Posted 29 August 2014 - 01:29 PM

marsianer

    New Member

  • Topic Starter
  • Member
  • Pip
  • 5 posts

The culprit for slow wlan is a program named Netbalancer. When is off, wlan is normal.

I still have some problems with flash in Google Chrome, but this is not a place for those.

Computer is just a little slow, but I can live with that.

 

Regards


  • 0
Back to Virus, Spyware, Malware Removal · Next Unread Topic →




Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

  1. Geeks to Go Community
  2. Security
  3. Virus, Spyware, Malware Removal

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP