-
👋 Witaj na MPCForum!
Przeglądasz forum jako gość, co oznacza, że wiele świetnych funkcji jest jeszcze przed Tobą! 😎
- ✅ Pełny dostęp do działów i ukrytych treści
- ✅ Możliwość pisania i odpowiadania w tematach
- ✅ System prywatnych wiadomości
- ✅ Zbieranie reputacji i rozwijanie swojego profilu
- ✅ Członkostwo w jednej z największych społeczności graczy
👉 Dołączenie zajmie Ci mniej niż minutę – a zyskasz znacznie więcej!
Zarejestruj się teraz
- 0
Pytanie
Le petit nègre
Le petit nègre
witam, mam problem z internetem.
a wiec:
nie sciagaja mi sie avatary steam
nie moge sie zalogowac na origin
niektore serwery cs/innych gier nie lacza sie
strony lacza sie w c**j wolno, lagi :/
nie wiem czego to wina, bo na drugim pc wszystko dziala normalnie (siec wifi)
combofix:
ComboFix 14-08-21.01 - intel 2014-08-23 15:53:15.1.2 - x86
Microsoft Windows 7 Ultimate 6.1.7601.1.1250.48.1033.18.3545.1711 [GMT 2:00]
Uruchomiony z: c:\users\intel\Downloads\ComboFix.exe
AV: AVG Internet Security 2014 *Disabled/Updated* {0E9420C4-06B3-7FA0-3AB1-6E49CB52ECD9}
FW: AVG Internet Security 2014 *Disabled* {36AFA1E1-4CDC-7EF8-11EE-C77C3581ABA2}
SP: AVG Internet Security 2014 *Disabled/Updated* {B5F5C120-2089-702E-0001-553BB0D5A664}
SP: Windows Defender *Disabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
* Utworzono nowy punkt przywracania
.
.
((((((((((((((((((((((((((((((((((((((( Usunięto )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\program files\RichMediaViewV1
c:\program files\RichMediaViewV1\RichMediaViewV1release848\ch\RichMediaViewV1release848.crx
c:\program files\RichMediaViewV1\RichMediaViewV1release848\ff\chrome.manifest
c:\program files\RichMediaViewV1\RichMediaViewV1release848\ff\chrome\content\ffRichMediaViewV1release848.js
c:\program files\RichMediaViewV1\RichMediaViewV1release848\ff\chrome\content\ffRichMediaViewV1release848ffaction.js
c:\program files\RichMediaViewV1\RichMediaViewV1release848\ff\chrome\content\icons\default\RichMediaViewV1release848_32.png
c:\program files\RichMediaViewV1\RichMediaViewV1release848\ff\chrome\content\icons\Thumbs.db
c:\program files\RichMediaViewV1\RichMediaViewV1release848\ff\chrome\content\overlay.xul
c:\program files\RichMediaViewV1\RichMediaViewV1release848\ff\install.rdf
c:\program files\RichMediaViewV1\RichMediaViewV1release848\ie\RichMediaViewV1release848.dll
c:\program files\SearchProtect
c:\program files\SearchProtect\EULA.txt
c:\program files\SearchProtect\Main\rep\SystemRepository.dat
c:\program files\SearchProtect\UI\dialogs\Images\Apply-default.png
c:\program files\SearchProtect\UI\dialogs\Images\Apply-onclick.png
c:\program files\SearchProtect\UI\dialogs\Images\Apply-Rollover.png
c:\program files\SearchProtect\UI\dialogs\Images\bg-uninstall.png
c:\program files\SearchProtect\UI\dialogs\Images\bg-with-logo.png
c:\program files\SearchProtect\UI\dialogs\Images\bg.png
c:\program files\SearchProtect\UI\dialogs\Images\bgNotif.png
c:\program files\SearchProtect\UI\dialogs\Images\bgSettings.png
c:\program files\SearchProtect\UI\dialogs\Images\bgSettingsDS.png
c:\program files\SearchProtect\UI\dialogs\Images\bgUninstall.png
c:\program files\SearchProtect\UI\dialogs\Images\btnBlue.png
c:\program files\SearchProtect\UI\dialogs\Images\btnClose.png
c:\program files\SearchProtect\UI\dialogs\Images\btnSilver.png
c:\program files\SearchProtect\UI\dialogs\Images\button-bg.png
c:\program files\SearchProtect\UI\dialogs\Images\checkbox.png
c:\program files\SearchProtect\UI\dialogs\Images\checkbox_checked.png
c:\program files\SearchProtect\UI\dialogs\Images\checkbox_def.png
c:\program files\SearchProtect\UI\dialogs\Images\close-win-def.png
c:\program files\SearchProtect\UI\dialogs\Images\close-win-over-click.png
c:\program files\SearchProtect\UI\dialogs\Images\gray-bg.png
c:\program files\SearchProtect\UI\dialogs\Images\hez-def.png
c:\program files\SearchProtect\UI\dialogs\Images\hez-selected.png
c:\program files\SearchProtect\UI\dialogs\Images\hez.png
c:\program files\SearchProtect\UI\dialogs\Images\icon-win.png
c:\program files\SearchProtect\UI\dialogs\Images\info-icon.png
c:\program files\SearchProtect\UI\dialogs\Images\menu-rollover.png
c:\program files\SearchProtect\UI\dialogs\Images\menu-selected.png
c:\program files\SearchProtect\UI\dialogs\Images\radio-button-def.png
c:\program files\SearchProtect\UI\dialogs\Images\radio-button-selected.png
c:\program files\SearchProtect\UI\dialogs\Images\radio-button.png
c:\program files\SearchProtect\UI\dialogs\Images\radio-button2.png
c:\program files\SearchProtect\UI\dialogs\Images\Settings-icon.png
c:\program files\SearchProtect\UI\dialogs\Images\text-field.png
c:\program files\SearchProtect\UI\dialogs\Images\v.png
c:\program files\SearchProtect\UI\dialogs\Images\x.png
c:\program files\SearchProtect\UI\dialogs\libs\defaults.js
c:\program files\SearchProtect\UI\dialogs\libs\dialogUtils.js
c:\program files\SearchProtect\UI\dialogs\libs\jquery.1.7.1.min.js
c:\program files\SearchProtect\UI\dialogs\libs\json2.min.js
c:\program files\SearchProtect\UI\dialogs\libs\main.js
c:\program files\SearchProtect\UI\dialogs\libs\SPDialogAPI.js
c:\program files\SearchProtect\UI\dialogs\protection\defaults.js
c:\program files\SearchProtect\UI\dialogs\protection\protection.css
c:\program files\SearchProtect\UI\dialogs\protection\protection.html
c:\program files\SearchProtect\UI\dialogs\protection\protection.js
c:\program files\SearchProtect\UI\dialogs\protectionDS\defaults.js
c:\program files\SearchProtect\UI\dialogs\protectionDS\protectionDS.css
c:\program files\SearchProtect\UI\dialogs\protectionDS\protectionDS.html
c:\program files\SearchProtect\UI\dialogs\protectionDS\protectionDS.js
c:\program files\SearchProtect\UI\dialogs\settings.html
c:\program files\SearchProtect\UI\dialogs\settings\defaults.js
c:\program files\SearchProtect\UI\dialogs\settings\settings.css
c:\program files\SearchProtect\UI\dialogs\settings\settings.html
c:\program files\SearchProtect\UI\dialogs\settings\settings.js
c:\program files\SearchProtect\UI\dialogs\style.css
c:\program files\SearchProtect\UI\dialogs\uninstall\defaults.js
c:\program files\SearchProtect\UI\dialogs\uninstall\uninstall.css
c:\program files\SearchProtect\UI\dialogs\uninstall\uninstall.html
c:\program files\SearchProtect\UI\dialogs\uninstall\uninstall.js
c:\programdata\Amazon.ico
c:\users\Administrator\AppData\Local\Chromatic Browser\User Data\Default\Extensions\ipkfnchcgalnafehpglfbommidgmalan
c:\users\Administrator\AppData\Local\Chromatic Browser\User Data\Default\Extensions\ipkfnchcgalnafehpglfbommidgmalan\196\background.html
c:\users\Administrator\AppData\Local\Chromatic Browser\User Data\Default\Extensions\ipkfnchcgalnafehpglfbommidgmalan\196\content.js
c:\users\Administrator\AppData\Local\Chromatic Browser\User Data\Default\Extensions\ipkfnchcgalnafehpglfbommidgmalan\196\Il_L.js
c:\users\Administrator\AppData\Local\Chromatic Browser\User Data\Default\Extensions\ipkfnchcgalnafehpglfbommidgmalan\196\lsdb.js
c:\users\Administrator\AppData\Local\Chromatic Browser\User Data\Default\Extensions\ipkfnchcgalnafehpglfbommidgmalan\196\manifest.json
c:\users\Administrator\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\ipkfnchcgalnafehpglfbommidgmalan
c:\users\Administrator\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\ipkfnchcgalnafehpglfbommidgmalan\196\background.html
c:\users\Administrator\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\ipkfnchcgalnafehpglfbommidgmalan\196\content.js
c:\users\Administrator\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\ipkfnchcgalnafehpglfbommidgmalan\196\Il_L.js
c:\users\Administrator\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\ipkfnchcgalnafehpglfbommidgmalan\196\lsdb.js
c:\users\Administrator\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\ipkfnchcgalnafehpglfbommidgmalan\196\manifest.json
c:\users\Administrator\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\ipkfnchcgalnafehpglfbommidgmalan
c:\users\Administrator\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\ipkfnchcgalnafehpglfbommidgmalan\196\background.html
c:\users\Administrator\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\ipkfnchcgalnafehpglfbommidgmalan\196\content.js
c:\users\Administrator\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\ipkfnchcgalnafehpglfbommidgmalan\196\Il_L.js
c:\users\Administrator\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\ipkfnchcgalnafehpglfbommidgmalan\196\lsdb.js
c:\users\Administrator\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\ipkfnchcgalnafehpglfbommidgmalan\196\manifest.json
c:\users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\ipkfnchcgalnafehpglfbommidgmalan
c:\users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\ipkfnchcgalnafehpglfbommidgmalan\196\background.html
c:\users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\ipkfnchcgalnafehpglfbommidgmalan\196\content.js
c:\users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\ipkfnchcgalnafehpglfbommidgmalan\196\Il_L.js
c:\users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\ipkfnchcgalnafehpglfbommidgmalan\196\lsdb.js
c:\users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\ipkfnchcgalnafehpglfbommidgmalan\196\manifest.json
c:\users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\lggpgogcakgigceenajghcaboknloanj
c:\users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\lggpgogcakgigceenajghcaboknloanj\5.14\background.html
c:\users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\lggpgogcakgigceenajghcaboknloanj\5.14\content.js
c:\users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\lggpgogcakgigceenajghcaboknloanj\5.14\iju4J5Xy1v79.js
c:\users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\lggpgogcakgigceenajghcaboknloanj\5.14\lsdb.js
c:\users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\lggpgogcakgigceenajghcaboknloanj\5.14\manifest.json
c:\users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\ndeoeiaemccaflambcdjggfjjnlafcno
c:\users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\ndeoeiaemccaflambcdjggfjjnlafcno\1.0\background.html
c:\users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\ndeoeiaemccaflambcdjggfjjnlafcno\1.0\ckJ7xS3YIO.js
c:\users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\ndeoeiaemccaflambcdjggfjjnlafcno\1.0\content.js
c:\users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\ndeoeiaemccaflambcdjggfjjnlafcno\1.0\lsdb.js
c:\users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\ndeoeiaemccaflambcdjggfjjnlafcno\1.0\manifest.json
c:\users\Administrator\AppData\Local\Torch\User Data\Default\Extensions\ipkfnchcgalnafehpglfbommidgmalan
c:\users\Administrator\AppData\Local\Torch\User Data\Default\Extensions\ipkfnchcgalnafehpglfbommidgmalan\196\background.html
c:\users\Administrator\AppData\Local\Torch\User Data\Default\Extensions\ipkfnchcgalnafehpglfbommidgmalan\196\content.js
c:\users\Administrator\AppData\Local\Torch\User Data\Default\Extensions\ipkfnchcgalnafehpglfbommidgmalan\196\Il_L.js
c:\users\Administrator\AppData\Local\Torch\User Data\Default\Extensions\ipkfnchcgalnafehpglfbommidgmalan\196\lsdb.js
c:\users\Administrator\AppData\Local\Torch\User Data\Default\Extensions\ipkfnchcgalnafehpglfbommidgmalan\196\manifest.json
c:\users\Guest\AppData\Local\Chromatic Browser\User Data\Default\Extensions\ipkfnchcgalnafehpglfbommidgmalan
c:\users\Guest\AppData\Local\Chromatic Browser\User Data\Default\Extensions\ipkfnchcgalnafehpglfbommidgmalan\196\background.html
c:\users\Guest\AppData\Local\Chromatic Browser\User Data\Default\Extensions\ipkfnchcgalnafehpglfbommidgmalan\196\content.js
c:\users\Guest\AppData\Local\Chromatic Browser\User Data\Default\Extensions\ipkfnchcgalnafehpglfbommidgmalan\196\Il_L.js
c:\users\Guest\AppData\Local\Chromatic Browser\User Data\Default\Extensions\ipkfnchcgalnafehpglfbommidgmalan\196\lsdb.js
c:\users\Guest\AppData\Local\Chromatic Browser\User Data\Default\Extensions\ipkfnchcgalnafehpglfbommidgmalan\196\manifest.json
c:\users\Guest\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\ipkfnchcgalnafehpglfbommidgmalan
c:\users\Guest\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\ipkfnchcgalnafehpglfbommidgmalan\196\background.html
c:\users\Guest\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\ipkfnchcgalnafehpglfbommidgmalan\196\content.js
c:\users\Guest\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\ipkfnchcgalnafehpglfbommidgmalan\196\Il_L.js
c:\users\Guest\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\ipkfnchcgalnafehpglfbommidgmalan\196\lsdb.js
c:\users\Guest\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\ipkfnchcgalnafehpglfbommidgmalan\196\manifest.json
c:\users\Guest\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\ipkfnchcgalnafehpglfbommidgmalan
c:\users\Guest\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\ipkfnchcgalnafehpglfbommidgmalan\196\background.html
c:\users\Guest\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\ipkfnchcgalnafehpglfbommidgmalan\196\content.js
c:\users\Guest\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\ipkfnchcgalnafehpglfbommidgmalan\196\Il_L.js
c:\users\Guest\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\ipkfnchcgalnafehpglfbommidgmalan\196\lsdb.js
c:\users\Guest\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\ipkfnchcgalnafehpglfbommidgmalan\196\manifest.json
c:\users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\ipkfnchcgalnafehpglfbommidgmalan
c:\users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\ipkfnchcgalnafehpglfbommidgmalan\196\background.html
c:\users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\ipkfnchcgalnafehpglfbommidgmalan\196\content.js
c:\users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\ipkfnchcgalnafehpglfbommidgmalan\196\Il_L.js
c:\users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\ipkfnchcgalnafehpglfbommidgmalan\196\lsdb.js
c:\users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\ipkfnchcgalnafehpglfbommidgmalan\196\manifest.json
c:\users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\lggpgogcakgigceenajghcaboknloanj
c:\users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\lggpgogcakgigceenajghcaboknloanj\5.14\background.html
c:\users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\lggpgogcakgigceenajghcaboknloanj\5.14\content.js
c:\users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\lggpgogcakgigceenajghcaboknloanj\5.14\iju4J5Xy1v79.js
c:\users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\lggpgogcakgigceenajghcaboknloanj\5.14\lsdb.js
c:\users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\lggpgogcakgigceenajghcaboknloanj\5.14\manifest.json
c:\users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\ndeoeiaemccaflambcdjggfjjnlafcno
c:\users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\ndeoeiaemccaflambcdjggfjjnlafcno\1.0\background.html
c:\users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\ndeoeiaemccaflambcdjggfjjnlafcno\1.0\ckJ7xS3YIO.js
c:\users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\ndeoeiaemccaflambcdjggfjjnlafcno\1.0\content.js
c:\users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\ndeoeiaemccaflambcdjggfjjnlafcno\1.0\lsdb.js
c:\users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\ndeoeiaemccaflambcdjggfjjnlafcno\1.0\manifest.json
c:\users\Guest\AppData\Local\Torch\User Data\Default\Extensions\ipkfnchcgalnafehpglfbommidgmalan
c:\users\Guest\AppData\Local\Torch\User Data\Default\Extensions\ipkfnchcgalnafehpglfbommidgmalan\196\background.html
c:\users\Guest\AppData\Local\Torch\User Data\Default\Extensions\ipkfnchcgalnafehpglfbommidgmalan\196\content.js
c:\users\Guest\AppData\Local\Torch\User Data\Default\Extensions\ipkfnchcgalnafehpglfbommidgmalan\196\Il_L.js
c:\users\Guest\AppData\Local\Torch\User Data\Default\Extensions\ipkfnchcgalnafehpglfbommidgmalan\196\lsdb.js
c:\users\Guest\AppData\Local\Torch\User Data\Default\Extensions\ipkfnchcgalnafehpglfbommidgmalan\196\manifest.json
c:\users\HomeGroupUser$\AppData\Local\Chromatic Browser\User Data\Default\Extensions\ipkfnchcgalnafehpglfbommidgmalan
c:\users\HomeGroupUser$\AppData\Local\Chromatic Browser\User Data\Default\Extensions\ipkfnchcgalnafehpglfbommidgmalan\196\background.html
c:\users\HomeGroupUser$\AppData\Local\Chromatic Browser\User Data\Default\Extensions\ipkfnchcgalnafehpglfbommidgmalan\196\content.js
c:\users\HomeGroupUser$\AppData\Local\Chromatic Browser\User Data\Default\Extensions\ipkfnchcgalnafehpglfbommidgmalan\196\Il_L.js
c:\users\HomeGroupUser$\AppData\Local\Chromatic Browser\User Data\Default\Extensions\ipkfnchcgalnafehpglfbommidgmalan\196\lsdb.js
c:\users\HomeGroupUser$\AppData\Local\Chromatic Browser\User Data\Default\Extensions\ipkfnchcgalnafehpglfbommidgmalan\196\manifest.json
c:\users\HomeGroupUser$\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\ipkfnchcgalnafehpglfbommidgmalan
c:\users\HomeGroupUser$\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\ipkfnchcgalnafehpglfbommidgmalan\196\background.html
c:\users\HomeGroupUser$\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\ipkfnchcgalnafehpglfbommidgmalan\196\content.js
c:\users\HomeGroupUser$\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\ipkfnchcgalnafehpglfbommidgmalan\196\Il_L.js
c:\users\HomeGroupUser$\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\ipkfnchcgalnafehpglfbommidgmalan\196\lsdb.js
c:\users\HomeGroupUser$\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\ipkfnchcgalnafehpglfbommidgmalan\196\manifest.json
c:\users\HomeGroupUser$\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\ipkfnchcgalnafehpglfbommidgmalan
c:\users\HomeGroupUser$\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\ipkfnchcgalnafehpglfbommidgmalan\196\background.html
c:\users\HomeGroupUser$\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\ipkfnchcgalnafehpglfbommidgmalan\196\content.js
c:\users\HomeGroupUser$\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\ipkfnchcgalnafehpglfbommidgmalan\196\Il_L.js
c:\users\HomeGroupUser$\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\ipkfnchcgalnafehpglfbommidgmalan\196\lsdb.js
c:\users\HomeGroupUser$\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\ipkfnchcgalnafehpglfbommidgmalan\196\manifest.json
c:\users\HomeGroupUser$\AppData\Local\Google\Chrome\User Data\Default\Extensions\ipkfnchcgalnafehpglfbommidgmalan
c:\users\HomeGroupUser$\AppData\Local\Google\Chrome\User Data\Default\Extensions\ipkfnchcgalnafehpglfbommidgmalan\196\background.html
c:\users\HomeGroupUser$\AppData\Local\Google\Chrome\User Data\Default\Extensions\ipkfnchcgalnafehpglfbommidgmalan\196\content.js
c:\users\HomeGroupUser$\AppData\Local\Google\Chrome\User Data\Default\Extensions\ipkfnchcgalnafehpglfbommidgmalan\196\Il_L.js
c:\users\HomeGroupUser$\AppData\Local\Google\Chrome\User Data\Default\Extensions\ipkfnchcgalnafehpglfbommidgmalan\196\lsdb.js
c:\users\HomeGroupUser$\AppData\Local\Google\Chrome\User Data\Default\Extensions\ipkfnchcgalnafehpglfbommidgmalan\196\manifest.json
c:\users\HomeGroupUser$\AppData\Local\Google\Chrome\User Data\Default\Extensions\lggpgogcakgigceenajghcaboknloanj
c:\users\HomeGroupUser$\AppData\Local\Google\Chrome\User Data\Default\Extensions\lggpgogcakgigceenajghcaboknloanj\5.14\background.html
c:\users\HomeGroupUser$\AppData\Local\Google\Chrome\User Data\Default\Extensions\lggpgogcakgigceenajghcaboknloanj\5.14\content.js
c:\users\HomeGroupUser$\AppData\Local\Google\Chrome\User Data\Default\Extensions\lggpgogcakgigceenajghcaboknloanj\5.14\iju4J5Xy1v79.js
c:\users\HomeGroupUser$\AppData\Local\Google\Chrome\User Data\Default\Extensions\lggpgogcakgigceenajghcaboknloanj\5.14\lsdb.js
c:\users\HomeGroupUser$\AppData\Local\Google\Chrome\User Data\Default\Extensions\lggpgogcakgigceenajghcaboknloanj\5.14\manifest.json
c:\users\HomeGroupUser$\AppData\Local\Google\Chrome\User Data\Default\Extensions\ndeoeiaemccaflambcdjggfjjnlafcno
c:\users\HomeGroupUser$\AppData\Local\Google\Chrome\User Data\Default\Extensions\ndeoeiaemccaflambcdjggfjjnlafcno\1.0\background.html
c:\users\HomeGroupUser$\AppData\Local\Google\Chrome\User Data\Default\Extensions\ndeoeiaemccaflambcdjggfjjnlafcno\1.0\ckJ7xS3YIO.js
c:\users\HomeGroupUser$\AppData\Local\Google\Chrome\User Data\Default\Extensions\ndeoeiaemccaflambcdjggfjjnlafcno\1.0\content.js
c:\users\HomeGroupUser$\AppData\Local\Google\Chrome\User Data\Default\Extensions\ndeoeiaemccaflambcdjggfjjnlafcno\1.0\lsdb.js
c:\users\HomeGroupUser$\AppData\Local\Google\Chrome\User Data\Default\Extensions\ndeoeiaemccaflambcdjggfjjnlafcno\1.0\manifest.json
c:\users\HomeGroupUser$\AppData\Local\Torch\User Data\Default\Extensions\ipkfnchcgalnafehpglfbommidgmalan
c:\users\HomeGroupUser$\AppData\Local\Torch\User Data\Default\Extensions\ipkfnchcgalnafehpglfbommidgmalan\196\background.html
c:\users\HomeGroupUser$\AppData\Local\Torch\User Data\Default\Extensions\ipkfnchcgalnafehpglfbommidgmalan\196\content.js
c:\users\HomeGroupUser$\AppData\Local\Torch\User Data\Default\Extensions\ipkfnchcgalnafehpglfbommidgmalan\196\Il_L.js
c:\users\HomeGroupUser$\AppData\Local\Torch\User Data\Default\Extensions\ipkfnchcgalnafehpglfbommidgmalan\196\lsdb.js
c:\users\HomeGroupUser$\AppData\Local\Torch\User Data\Default\Extensions\ipkfnchcgalnafehpglfbommidgmalan\196\manifest.json
c:\users\intel\AppData\Local\Chromatic Browser\User Data\Default\Extensions\ipkfnchcgalnafehpglfbommidgmalan
c:\users\intel\AppData\Local\Chromatic Browser\User Data\Default\Extensions\ipkfnchcgalnafehpglfbommidgmalan\196\background.html
c:\users\intel\AppData\Local\Chromatic Browser\User Data\Default\Extensions\ipkfnchcgalnafehpglfbommidgmalan\196\content.js
c:\users\intel\AppData\Local\Chromatic Browser\User Data\Default\Extensions\ipkfnchcgalnafehpglfbommidgmalan\196\Il_L.js
c:\users\intel\AppData\Local\Chromatic Browser\User Data\Default\Extensions\ipkfnchcgalnafehpglfbommidgmalan\196\lsdb.js
c:\users\intel\AppData\Local\Chromatic Browser\User Data\Default\Extensions\ipkfnchcgalnafehpglfbommidgmalan\196\manifest.json
c:\users\intel\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\ipkfnchcgalnafehpglfbommidgmalan
c:\users\intel\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\ipkfnchcgalnafehpglfbommidgmalan\196\background.html
c:\users\intel\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\ipkfnchcgalnafehpglfbommidgmalan\196\content.js
c:\users\intel\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\ipkfnchcgalnafehpglfbommidgmalan\196\Il_L.js
c:\users\intel\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\ipkfnchcgalnafehpglfbommidgmalan\196\lsdb.js
c:\users\intel\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\ipkfnchcgalnafehpglfbommidgmalan\196\manifest.json
c:\users\intel\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\ipkfnchcgalnafehpglfbommidgmalan
c:\users\intel\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\ipkfnchcgalnafehpglfbommidgmalan\196\background.html
c:\users\intel\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\ipkfnchcgalnafehpglfbommidgmalan\196\content.js
c:\users\intel\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\ipkfnchcgalnafehpglfbommidgmalan\196\Il_L.js
c:\users\intel\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\ipkfnchcgalnafehpglfbommidgmalan\196\lsdb.js
c:\users\intel\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\ipkfnchcgalnafehpglfbommidgmalan\196\manifest.json
c:\users\intel\AppData\Local\Google\Chrome\User Data\Default\Extensions\ipkfnchcgalnafehpglfbommidgmalan
c:\users\intel\AppData\Local\Google\Chrome\User Data\Default\Extensions\ipkfnchcgalnafehpglfbommidgmalan\196\background.html
c:\users\intel\AppData\Local\Google\Chrome\User Data\Default\Extensions\ipkfnchcgalnafehpglfbommidgmalan\196\content.js
c:\users\intel\AppData\Local\Google\Chrome\User Data\Default\Extensions\ipkfnchcgalnafehpglfbommidgmalan\196\Il_L.js
c:\users\intel\AppData\Local\Google\Chrome\User Data\Default\Extensions\ipkfnchcgalnafehpglfbommidgmalan\196\lsdb.js
c:\users\intel\AppData\Local\Google\Chrome\User Data\Default\Extensions\ipkfnchcgalnafehpglfbommidgmalan\196\manifest.json
c:\users\intel\AppData\Local\Google\Chrome\User Data\Default\Extensions\ndeoeiaemccaflambcdjggfjjnlafcno
c:\users\intel\AppData\Local\Google\Chrome\User Data\Default\Extensions\ndeoeiaemccaflambcdjggfjjnlafcno\1.0\background.html
c:\users\intel\AppData\Local\Google\Chrome\User Data\Default\Extensions\ndeoeiaemccaflambcdjggfjjnlafcno\1.0\ckJ7xS3YIO.js
c:\users\intel\AppData\Local\Google\Chrome\User Data\Default\Extensions\ndeoeiaemccaflambcdjggfjjnlafcno\1.0\content.js
c:\users\intel\AppData\Local\Google\Chrome\User Data\Default\Extensions\ndeoeiaemccaflambcdjggfjjnlafcno\1.0\lsdb.js
c:\users\intel\AppData\Local\Google\Chrome\User Data\Default\Extensions\ndeoeiaemccaflambcdjggfjjnlafcno\1.0\manifest.json
c:\users\intel\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\ndeoeiaemccaflambcdjggfjjnlafcno
c:\users\intel\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\ndeoeiaemccaflambcdjggfjjnlafcno\000124.ldb
c:\users\intel\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\ndeoeiaemccaflambcdjggfjjnlafcno\000144.ldb
c:\users\intel\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\ndeoeiaemccaflambcdjggfjjnlafcno\000153.ldb
c:\users\intel\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\ndeoeiaemccaflambcdjggfjjnlafcno\000162.ldb
c:\users\intel\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\ndeoeiaemccaflambcdjggfjjnlafcno\000165.log
c:\users\intel\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\ndeoeiaemccaflambcdjggfjjnlafcno\CURRENT
c:\users\intel\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\ndeoeiaemccaflambcdjggfjjnlafcno\LOCK
c:\users\intel\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\ndeoeiaemccaflambcdjggfjjnlafcno\LOG
c:\users\intel\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\ndeoeiaemccaflambcdjggfjjnlafcno\LOG.old
c:\users\intel\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\ndeoeiaemccaflambcdjggfjjnlafcno\MANIFEST-000164
c:\users\intel\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_ipkfnchcgalnafehpglfbommidgmalan_0.localstorage-journal
c:\users\intel\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_ipkfnchcgalnafehpglfbommidgmalan_0.localstorage
c:\users\intel\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_ndeoeiaemccaflambcdjggfjjnlafcno_0.localstorage
c:\users\intel\AppData\Local\Google\Chrome\User Data\Default\Preferences
c:\users\intel\AppData\Local\Temp\VPN_FC07\9218E5A4.dll
c:\users\intel\AppData\Local\Torch\User Data\Default\Extensions\ipkfnchcgalnafehpglfbommidgmalan
c:\users\intel\AppData\Local\Torch\User Data\Default\Extensions\ipkfnchcgalnafehpglfbommidgmalan\196\background.html
c:\users\intel\AppData\Local\Torch\User Data\Default\Extensions\ipkfnchcgalnafehpglfbommidgmalan\196\content.js
c:\users\intel\AppData\Local\Torch\User Data\Default\Extensions\ipkfnchcgalnafehpglfbommidgmalan\196\Il_L.js
c:\users\intel\AppData\Local\Torch\User Data\Default\Extensions\ipkfnchcgalnafehpglfbommidgmalan\196\lsdb.js
c:\users\intel\AppData\Local\Torch\User Data\Default\Extensions\ipkfnchcgalnafehpglfbommidgmalan\196\manifest.json
c:\users\intel\AppData\Roaming\dclogs
c:\users\intel\AppData\Roaming\dclogs\2014-03-22-7.dc
c:\users\intel\AppData\Roaming\dclogs\2014-03-23-1.dc
c:\users\intel\AppData\Roaming\dclogs\2014-03-26-4.dc
c:\users\intel\AppData\Roaming\dclogs\2014-03-27-5.dc
c:\users\intel\AppData\Roaming\dclogs\2014-03-29-7.dc
c:\users\intel\AppData\Roaming\dclogs\2014-04-02-4.dc
c:\users\intel\AppData\Roaming\dclogs\2014-04-03-5.dc
c:\users\intel\AppData\Roaming\dclogs\2014-04-05-7.dc
c:\users\intel\AppData\Roaming\dclogs\2014-04-06-1.dc
c:\users\intel\AppData\Roaming\dclogs\2014-04-09-4.dc
c:\users\intel\AppData\Roaming\dclogs\2014-04-13-1.dc
c:\users\intel\AppData\Roaming\dclogs\2014-04-17-5.dc
c:\users\intel\AppData\Roaming\dclogs\2014-04-30-4.dc
c:\users\intel\AppData\Roaming\dclogs\2014-05-01-5.dc
c:\users\intel\AppData\Roaming\dclogs\2014-05-02-6.dc
c:\users\intel\AppData\Roaming\dclogs\2014-05-07-4.dc
c:\users\intel\AppData\Roaming\dclogs\2014-05-09-6.dc
c:\users\intel\AppData\Roaming\dclogs\2014-05-13-3.dc
c:\users\intel\AppData\Roaming\dclogs\2014-05-15-5.dc
c:\users\intel\AppData\Roaming\dclogs\2014-05-17-7.dc
c:\users\intel\AppData\Roaming\dclogs\2014-05-21-4.dc
c:\users\intel\AppData\Roaming\dclogs\2014-05-22-5.dc
c:\users\intel\AppData\Roaming\dclogs\2014-05-23-6.dc
c:\users\intel\AppData\Roaming\dclogs\2014-05-24-7.dc
c:\users\intel\AppData\Roaming\dclogs\2014-05-25-1.dc
c:\users\intel\AppData\Roaming\dclogs\2014-05-26-2.dc
c:\users\intel\AppData\Roaming\dclogs\2014-06-14-7.dc
c:\users\intel\AppData\Roaming\dclogs\2014-06-26-5.dc
c:\users\intel\AppData\Roaming\dclogs\2014-06-28-7.dc
c:\users\intel\AppData\Roaming\dclogs\2014-06-30-2.dc
c:\users\intel\AppData\Roaming\dclogs\2014-07-03-5.dc
c:\users\intel\AppData\Roaming\dclogs\2014-07-09-4.dc
c:\users\intel\AppData\Roaming\dclogs\2014-07-12-7.dc
c:\users\intel\AppData\Roaming\dclogs\2014-07-13-1.dc
c:\users\ja\AppData\Local\Chromatic Browser\User Data\Default\Extensions\ipkfnchcgalnafehpglfbommidgmalan
c:\users\ja\AppData\Local\Chromatic Browser\User Data\Default\Extensions\ipkfnchcgalnafehpglfbommidgmalan\196\background.html
c:\users\ja\AppData\Local\Chromatic Browser\User Data\Default\Extensions\ipkfnchcgalnafehpglfbommidgmalan\196\content.js
c:\users\ja\AppData\Local\Chromatic Browser\User Data\Default\Extensions\ipkfnchcgalnafehpglfbommidgmalan\196\Il_L.js
c:\users\ja\AppData\Local\Chromatic Browser\User Data\Default\Extensions\ipkfnchcgalnafehpglfbommidgmalan\196\lsdb.js
c:\users\ja\AppData\Local\Chromatic Browser\User Data\Default\Extensions\ipkfnchcgalnafehpglfbommidgmalan\196\manifest.json
c:\users\ja\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\ipkfnchcgalnafehpglfbommidgmalan
c:\users\ja\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\ipkfnchcgalnafehpglfbommidgmalan\196\background.html
c:\users\ja\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\ipkfnchcgalnafehpglfbommidgmalan\196\content.js
c:\users\ja\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\ipkfnchcgalnafehpglfbommidgmalan\196\Il_L.js
c:\users\ja\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\ipkfnchcgalnafehpglfbommidgmalan\196\lsdb.js
c:\users\ja\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\ipkfnchcgalnafehpglfbommidgmalan\196\manifest.json
c:\users\ja\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\ipkfnchcgalnafehpglfbommidgmalan
c:\users\ja\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\ipkfnchcgalnafehpglfbommidgmalan\196\background.html
c:\users\ja\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\ipkfnchcgalnafehpglfbommidgmalan\196\content.js
c:\users\ja\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\ipkfnchcgalnafehpglfbommidgmalan\196\Il_L.js
c:\users\ja\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\ipkfnchcgalnafehpglfbommidgmalan\196\lsdb.js
c:\users\ja\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\ipkfnchcgalnafehpglfbommidgmalan\196\manifest.json
c:\users\ja\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\ndeoeiaemccaflambcdjggfjjnlafcno
c:\users\ja\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\ndeoeiaemccaflambcdjggfjjnlafcno\000228.ldb
c:\users\ja\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\ndeoeiaemccaflambcdjggfjjnlafcno\000232.ldb
c:\users\ja\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\ndeoeiaemccaflambcdjggfjjnlafcno\000237.ldb
c:\users\ja\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\ndeoeiaemccaflambcdjggfjjnlafcno\000238.log
c:\users\ja\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\ndeoeiaemccaflambcdjggfjjnlafcno\CURRENT
c:\users\ja\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\ndeoeiaemccaflambcdjggfjjnlafcno\LOCK
c:\users\ja\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\ndeoeiaemccaflambcdjggfjjnlafcno\LOG
c:\users\ja\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\ndeoeiaemccaflambcdjggfjjnlafcno\LOG.old
c:\users\ja\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\ndeoeiaemccaflambcdjggfjjnlafcno\MANIFEST-000236
c:\users\ja\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_ipkfnchcgalnafehpglfbommidgmalan_0.localstorage-journal
c:\users\ja\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_ipkfnchcgalnafehpglfbommidgmalan_0.localstorage
c:\users\ja\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_ndeoeiaemccaflambcdjggfjjnlafcno_0.localstorage-journal
c:\users\ja\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_ndeoeiaemccaflambcdjggfjjnlafcno_0.localstorage
c:\users\ja\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_continuetosave.info_0.localstorage-journal
c:\users\ja\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_continuetosave.info_0.localstorage
c:\users\ja\AppData\Local\Google\Chrome\User Data\Default\Preferences
c:\users\ja\AppData\Local\Microsoft\Windows\Temporary Internet Files\{0E947BC2-5477-4D27-AAF0-9C050AA40D47}.xps
c:\users\ja\AppData\Local\Microsoft\Windows\Temporary Internet Files\{1D5DD8B3-D482-40AB-8706-A95D5AB14798}.xps
c:\users\ja\AppData\Local\Microsoft\Windows\Temporary Internet Files\{3608C026-129B-4E38-8B90-D898338234A5}.xps
c:\users\ja\AppData\Local\Microsoft\Windows\Temporary Internet Files\{41F35581-E0E4-4A6B-BA66-8595045B6A7E}.xps
c:\users\ja\AppData\Local\Microsoft\Windows\Temporary Internet Files\{65AE18D9-4835-4F77-BF08-A0E0CA8146D8}.xps
c:\users\ja\AppData\Local\Microsoft\Windows\Temporary Internet Files\{7D8C7927-E9B4-4B74-8D2E-B665DE48628B}.xps
c:\users\ja\AppData\Local\Microsoft\Windows\Temporary Internet Files\{CC9C5EC5-92FD-4380-BA49-DF9643EFAD1A}.xps
c:\users\ja\AppData\Local\Microsoft\Windows\Temporary Internet Files\{D879BE3F-3CF4-40DE-951E-E80E43B46603}.xps
c:\users\ja\AppData\Local\Torch\User Data\Default\Extensions\ipkfnchcgalnafehpglfbommidgmalan
c:\users\ja\AppData\Local\Torch\User Data\Default\Extensions\ipkfnchcgalnafehpglfbommidgmalan\196\background.html
c:\users\ja\AppData\Local\Torch\User Data\Default\Extensions\ipkfnchcgalnafehpglfbommidgmalan\196\content.js
c:\users\ja\AppData\Local\Torch\User Data\Default\Extensions\ipkfnchcgalnafehpglfbommidgmalan\196\Il_L.js
c:\users\ja\AppData\Local\Torch\User Data\Default\Extensions\ipkfnchcgalnafehpglfbommidgmalan\196\lsdb.js
c:\users\ja\AppData\Local\Torch\User Data\Default\Extensions\ipkfnchcgalnafehpglfbommidgmalan\196\manifest.json
c:\users\ja\AppData\Roaming\Origin
c:\users\ja\AppData\Roaming\Origin\Cloud Saves\blacklist
c:\users\ja\AppData\Roaming\Origin\local.xml
c:\windows\pkunzip.pif
c:\windows\pkzip.pif
c:\windows\TEMP\VPN_ACD5\9218E5A4.dll
.
.
((((((((((((((((((((((((((((((((((((((( Sterowniki/Usługi )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
-------\Legacy_NETHFDRV
.
.
((((((((((((((((((((((((( Pliki utworzone od 2014-07-23 do 2014-08-23 )))))))))))))))))))))))))))))))
.
.
2014-08-23 14:01 . 2014-08-23 14:01 -------- d-----w- c:\users\Default\AppData\Local\temp
2014-08-20 17:32 . 2014-08-20 17:32 -------- d-----w- c:\users\intel\AppData\Local\FluxSoftware
2014-08-20 16:29 . 2014-08-20 16:29 26208 ----a-w- c:\windows\system32\drivers\Neo_0118.sys
2014-08-20 15:35 . 2014-08-20 15:35 133688 ----a-w- c:\windows\system32\vpncmd.exe
2014-08-20 15:35 . 2014-08-23 07:41 -------- d-----w- c:\program files\SoftEther VPN Client
2014-08-15 11:57 . 2014-08-15 11:57 -------- d-----w- c:\program files\CPUID
2014-08-15 11:21 . 2014-08-15 11:21 -------- d-----w- c:\program files\Realmware
2014-08-13 06:54 . 2014-08-23 08:35 280904 ----a-w- c:\windows\system32\PnkBstrB.xtr
2014-08-13 06:54 . 2014-08-13 06:54 -------- d-----w- c:\users\intel\AppData\Local\PunkBuster
2014-08-13 06:54 . 2014-08-13 06:54 -------- d-----w- c:\users\intel\AppData\Local\ESN
2014-08-13 06:53 . 2014-08-13 06:53 -------- d-----w- c:\program files\Battlelog Web Plugins
2014-08-13 06:53 . 2014-08-13 06:53 -------- d-----w- c:\programdata\EA Core
2014-08-13 06:44 . 2014-08-23 08:35 140072 ----a-w- c:\windows\system32\drivers\PnkBstrK.sys
2014-08-13 06:44 . 2014-08-13 06:44 138056 ----a-w- c:\users\intel\AppData\Roaming\PnkBstrK.sys
2014-08-13 06:43 . 2014-08-23 08:35 280904 ----a-w- c:\windows\system32\PnkBstrB.exe
2014-08-13 06:43 . 2014-08-21 15:21 297088 ----a-w- c:\windows\system32\PnkBstrB.ex0
2014-08-13 06:43 . 2014-08-13 07:07 76152 ----a-w- c:\windows\system32\PnkBstrA.exe
2014-08-12 10:28 . 2014-08-12 10:24 51200 ----a-w- C:\hehehe.exe
2014-08-06 19:13 . 2014-08-06 19:13 -------- d-----w- c:\users\Guest.intel-PC
2014-08-03 09:59 . 2014-08-03 09:59 -------- d-----w- c:\program files\Mirillis
2014-07-29 18:31 . 2014-07-29 18:31 -------- d-----w- c:\users\ja\AppData\Local\Diagnostics
2014-07-27 20:16 . 2014-07-27 20:16 -------- d-----w- c:\users\intel\.idlerc
2014-07-26 14:20 . 2014-07-26 14:20 -------- d-----w- c:\program files\Microsoft Synchronization Services
2014-07-26 14:20 . 2014-07-26 14:20 -------- d-----w- c:\program files\Microsoft SQL Server Compact Edition
2014-07-26 14:19 . 2014-07-26 14:20 -------- d-----w- c:\program files\Microsoft Visual Studio 10.0
2014-07-26 14:19 . 2014-07-26 14:19 -------- d-----w- c:\program files\Microsoft SDKs
2014-07-26 14:19 . 2014-07-26 14:19 -------- d-----w- c:\program files\Microsoft Help Viewer
.
.
.
(((((((((((((((((((((((((((((((((((((((( Sekcja Find3M ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2014-07-26 14:20 . 2014-05-24 13:13 112832 ----a-w- c:\programdata\Microsoft\VCExpress\10.0\1033\ResourceCache.dll
2014-07-23 16:44 . 2014-07-23 16:44 119808 ----a-r- c:\users\intel\AppData\Roaming\Microsoft\Installer\{CCF298AF-9CE1-4B26-B251-486E98A34789}\icons.exe
2014-07-09 14:29 . 2014-03-10 18:09 71344 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2014-07-09 14:29 . 2014-03-10 18:09 699056 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2014-07-09 07:28 . 2014-07-09 07:28 108544 ----a-w- c:\windows\system32\hfnapi.dll
2014-06-30 10:43 . 2014-06-30 10:43 121624 ----a-w- c:\windows\system32\drivers\avgdiskx.sys
2014-06-27 06:59 . 2014-06-27 06:59 116320 ----a-w- c:\windows\system32\drivers\scdemu.sys
2014-06-17 14:22 . 2014-06-17 14:22 188696 ----a-w- c:\windows\system32\drivers\avgldx86.sys
2014-06-17 14:21 . 2014-06-17 14:21 197400 ----a-w- c:\windows\system32\drivers\avgtdix.sys
2014-06-17 14:18 . 2014-06-17 14:18 241944 ----a-w- c:\windows\system32\drivers\avglogx.sys
2014-06-17 14:17 . 2014-06-17 14:17 147736 ----a-w- c:\windows\system32\drivers\avgidshx.sys
2014-06-17 14:06 . 2014-06-17 14:06 199960 ----a-w- c:\windows\system32\drivers\avgidsdriverx.sys
2014-06-17 14:06 . 2014-06-17 14:06 98584 ----a-w- c:\windows\system32\drivers\avgmfx86.sys
2014-06-17 14:06 . 2014-06-17 14:06 27416 ----a-w- c:\windows\system32\drivers\avgrkx86.sys
2014-06-17 14:06 . 2014-06-17 14:06 21272 ----a-w- c:\windows\system32\drivers\avgidsshimx.sys
2014-06-14 16:26 . 2014-06-14 16:26 444952 ----a-w- c:\windows\system32\wrap_oal.dll
2014-06-14 16:26 . 2014-06-14 16:26 109080 ----a-w- c:\windows\system32\OpenAL32.dll
2014-05-26 18:55 . 2014-05-26 18:55 119808 ----a-r- c:\users\ja\AppData\Roaming\Microsoft\Installer\{CCF298AF-9CE1-4B26-B251-486E98A34789}\icons.exe
.
.
((((((((((((((((((((((((((((((((((((( Wpisy startowe rejestru ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Uwaga* puste wpisy oraz domyślne, prawidłowe wpisy nie są pokazane
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveBlacklistedOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42}]
2014-08-08 08:34 579400 ----a-w- c:\program files\Google\Drive\googledrivesync32.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSharedEditOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44}]
2014-08-08 08:34 579400 ----a-w- c:\program files\Google\Drive\googledrivesync32.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSharedViewOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D43}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D43}]
2014-08-08 08:34 579400 ----a-w- c:\program files\Google\Drive\googledrivesync32.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSyncedOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40}]
2014-08-08 08:34 579400 ----a-w- c:\program files\Google\Drive\googledrivesync32.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSyncingOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41}]
2014-08-08 08:34 579400 ----a-w- c:\program files\Google\Drive\googledrivesync32.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Steam"="d:\steam\steam.exe" [2014-08-13 1937600]
"LightShot"="c:\users\intel\AppData\Local\Skillbrains\lightshot\Lightshot.exe" [2014-03-06 226592]
"uTorrent"="c:\users\intel\AppData\Roaming\uTorrent\uTorrent.exe" [2014-04-27 1266520]
"Spotify Web Helper"="c:\users\intel\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe" [2014-08-20 1245752]
"f.lux"="c:\users\intel\AppData\Local\FluxSoftware\Flux\flux.exe" [2013-10-23 1017224]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2013-11-21 959904]
"AVG_UI"="c:\program files\AVG\AVG2014\avgui.exe" [2014-07-10 5187088]
"AdobeAAMUpdater-1.0"="c:\program files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" [2010-03-06 500208]
"SwitchBoard"="c:\program files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe" [2010-02-19 517096]
"AdobeCS5ServiceManager"="c:\program files\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe" [2010-02-22 406992]
"SoftEther VPN Client UI Helper"="c:\program files\SoftEther VPN Client\vpnclient.exe" [2014-08-20 3544632]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
SoftEther VPN Client Manager Startup.lnk - c:\program files\SoftEther VPN Client\vpncmgr.exe /startup [2014-8-20 3735608]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"wave3"=wdmaud.drv
.
R2 avgfws;Zapora AVG;c:\program files\AVG\AVG2014\avgfws.exe [2014-07-10 1417160]
R2 AVGIDSAgent;AVGIDSAgent;c:\program files\AVG\AVG2014\avgidsagent.exe [2014-07-10 3244048]
R2 SkypeUpdate;Skype Updater;c:\program files\Skype\Updater\Updater.exe [2013-10-23 172192]
R3 BBUpdate;BBUpdate;c:\program files\Microsoft\BingBar\7.1.355.0\SeaPort.exe [2012-01-25 240408]
R3 c2wts;Claims to Windows Token Service;c:\program files\Windows Identity Foundation\v3.5\c2wtshost.exe [2010-02-02 15768]
R3 cpuz137;cpuz137;c:\users\intel\AppData\Local\Temp\cpuz137\cpuz137_x32.sys [x]
R3 dmvsc;dmvsc;c:\windows\system32\drivers\dmvsc.sys [2010-11-20 62464]
R3 McComponentHostService;McAfee Security Scan Component Host Service;c:\program files\McAfee Security Scan\3.0.285\McCHSvc.exe [x]
R3 MSICDSetup;MSICDSetup;F:\CDriver.sys [x]
R3 OverwolfUpdaterService;Overwolf Updater Service;c:\program files\Overwolf\OverwolfUpdater.exe [2014-03-05 99616]
R3 PBDOWNFORCE_SERVICE;PBDOWNFORCE_SERVICE;c:\users\intel\Desktop\PBDownforce.sys [x]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys [2010-11-20 15872]
R3 SPPD;SPPD;c:\windows\system32\drivers\SPPD.sys [x]
R3 SwitchBoard;SwitchBoard;c:\program files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
R3 Synth3dVsc;Synth3dVsc;c:\windows\system32\drivers\synth3dvsc.sys [2010-11-20 77184]
R3 Te.Service;Te.Service;c:\program files\Windows Kits\8.1\Testing\Runtimes\TAEF\Wex.Services.exe [2013-08-21 91136]
R3 terminpt;Microsoft Remote Desktop Input Driver;c:\windows\system32\drivers\terminpt.sys [2010-11-20 25600]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2010-11-20 52224]
R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys [2010-11-20 27264]
R3 tsusbhub;tsusbhub;c:\windows\system32\drivers\tsusbhub.sys [2010-11-20 112640]
R3 VGPU;VGPU;c:\windows\system32\drivers\rdvgkmd.sys [x]
R3 VsEtwService120;Visual Studio ETW Event Collection Service;d:\program files\Microsoft Visual Studio 12.0\Common7\Packages\Debugger\Services\VsEtwService.exe [x]
S0 AVGIDSHX;AVGIDSHX;c:\windows\system32\DRIVERS\avgidshx.sys [2014-06-17 147736]
S0 Avglogx;AVG Logging Driver;c:\windows\system32\DRIVERS\avglogx.sys [2014-06-17 241944]
S0 Avgrkx86;AVG Anti-Rootkit Driver;c:\windows\system32\DRIVERS\avgrkx86.sys [2014-06-17 27416]
S1 Avgdiskx;AVG Disk Driver;c:\windows\system32\DRIVERS\avgdiskx.sys [2014-06-30 121624]
S1 Avgfwfd;AVG network filter service;c:\windows\system32\DRIVERS\avgfwd6x.sys [2013-09-26 47928]
S1 AVGIDSDriver;AVGIDSDriver;c:\windows\system32\DRIVERS\avgidsdriverx.sys [2014-06-17 199960]
S1 AVGIDSShim;AVGIDSShim;c:\windows\system32\DRIVERS\avgidsshimx.sys [2014-06-17 21272]
S1 Avgldx86;AVG AVI Loader Driver;c:\windows\system32\DRIVERS\avgldx86.sys [2014-06-17 188696]
S1 Avgtdix;AVG TDI Driver;c:\windows\system32\DRIVERS\avgtdix.sys [2014-06-17 197400]
S1 HssDRV6;Hotspot Shield Routing Driver 6;c:\windows\system32\DRIVERS\hssdrv6.sys [2014-02-27 39624]
S1 VBoxDrv;VirtualBox Service;c:\windows\system32\DRIVERS\VBoxDrv.sys [2014-05-16 204064]
S1 VBoxUSBMon;VirtualBox USB Monitor Driver;c:\windows\system32\DRIVERS\VBoxUSBMon.sys [2014-05-16 104736]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [2012-09-28 217600]
S2 avgwd;AVG WatchDog;c:\program files\AVG\AVG2014\avgwdsvc.exe [2014-07-10 289328]
S2 BBSvc;BingBar Service;c:\program files\Microsoft\BingBar\7.1.355.0\BBSvc.exe [2012-01-25 192792]
S2 CGVPNCliService;CyberGhost 5 Client Service;c:\program files\CyberGhost 5\Service.exe [2014-04-29 64624]
S2 hshld;Hotspot Shield Service;c:\program files\Hotspot Shield\bin\cmw_srv.exe [2014-02-28 975144]
S2 HssWd;Hotspot Shield Monitoring Service;c:\program files\Hotspot Shield\bin\hsswd.exe [2014-02-27 555304]
S2 Intel® Capability Licensing Service Interface;Intel® Capability Licensing Service Interface;c:\program files\Intel\iCLS Client\HeciServer.exe [2012-04-20 462048]
S2 jhi_service;Intel® Dynamic Application Loader Host Interface Service;c:\program files\Intel\Intel® Management Engine Components\DAL\jhi_service.exe [2012-06-25 166720]
S2 SEVPNCLIENT;SoftEther VPN Client;c:\program files\SoftEther VPN Client\vpnclient.exe [2014-08-20 3544632]
S2 TeamViewer9;TeamViewer 9;c:\program files\TeamViewer\Version9\TeamViewer_Service.exe [2014-08-06 5052224]
S2 UNS;Intel® Management and Security Application User Notification Service;c:\program files\Intel\Intel® Management Engine Components\UNS\UNS.exe [2012-07-17 365376]
S3 AtiHDAudioService;AMD Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdW73.sys [2012-05-14 86656]
S3 ManyCam;ManyCam Virtual Webcam;c:\windows\system32\DRIVERS\mcvidrv.sys [2013-11-27 40736]
S3 MBLAUDRV;Mobiola Audio Service;c:\windows\system32\drivers\BTCamAudioDrv.sys [2007-07-31 13312]
S3 mcaudrv_simple;ManyCam Virtual Microphone;c:\windows\system32\drivers\mcaudrv.sys [2013-12-06 29728]
S3 MEI;Intel® Management Engine Interface ;c:\windows\system32\DRIVERS\HECI.sys [2012-07-02 55104]
S3 Neo_VPN;VPN Client Device Driver - VPN;c:\windows\system32\DRIVERS\Neo_0118.sys [2014-08-20 26208]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt86win7.sys [2012-06-12 552080]
S3 taphss6;Anchorfree HSS VPN Adapter;c:\windows\system32\DRIVERS\taphss6.sys [2014-02-27 37064]
S3 VBoxNetAdp;VirtualBox Host-Only Ethernet Adapter;c:\windows\system32\DRIVERS\VBoxNetAdp.sys [2014-05-16 116512]
S3 VBoxNetFlt;VirtualBox Bridged Networking Service;c:\windows\system32\DRIVERS\VBoxNetFlt.sys [2014-05-16 126752]
.
.
--- Inne Usługi/Sterowniki w Pamięci ---
.
*NewlyCreated* - WS2IFSL
.
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2014-08-16 06:18 1104200 ----a-w- c:\program files\Google\Chrome\Application\36.0.1985.143\Installer\chrmstp.exe
.
Zawartość folderu 'Zaplanowane zadania'
.
2014-08-23 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2014-03-10 14:29]
.
2014-08-23 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2014-03-01 17:32]
.
2014-08-23 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2014-03-01 17:32]
.
2014-08-23 c:\windows\Tasks\update-S-1-5-21-398107741-305064594-4114302982-1000.job
- c:\program files\Skillbrains\Updater\Updater.exe [2014-03-01 16:44]
.
2014-08-23 c:\windows\Tasks\update-sys.job
- c:\program files\Skillbrains\Updater\Updater.exe [2014-03-01 16:44]
.
.
------- Skan uzupełniający -------
.
uStart Page =
uInternet Settings,ProxyServer = http=127.0.0.1:8888;https=127.0.0.1:8888;
uInternet Settings,ProxyOverride = <-loopback>
IE: E&xport to Microsoft Excel - c:\progra~1\MICROS~2\Office14\EXCEL.EXE/3000
IE: Se&nd to OneNote - c:\progra~1\MICROS~2\Office14\ONBttnIE.dll/105
TCP: DhcpNameServer = 192.168.1.20
FF - ProfilePath - c:\users\intel\AppData\Roaming\Mozilla\Firefox\Profiles\k0zy6stl.default\
FF - prefs.js: browser.startup.homepage - about:home
FF - prefs.js: network.proxy.type - 0
.
- - - - USUNIĘTO PUSTE WPISY - - - -
.
BHO-{a21f8526-0a33-4afc-a3a3-41c610be7bcc} - c:\program files\MediaBuzzV1\MediaBuzzV1mode5694\ie\MediaBuzzV1mode5694.dll
HKCU-Run-AVG-Secure-Search-Update_0614t - c:\users\intel\AppData\Roaming\Avg_Update_0614t\AVG-Secure-Search-Update_0614t.exe
AddRemove-Cool Edit Pro 2.1 - c:\program files\coolpro2\cep2unin.exe
AddRemove-Counter-Strike 1.6 - d:\cs hs serwer\uninst.exe
AddRemove-LinuxLive USB Creator - c:\program files\LinuxLive USB Creator\Uninstall.exe
AddRemove-McAfee Security Scan - c:\program files\McAfee Security Scan\uninstall.exe
AddRemove-MediaBuzzV1mode5694 - c:\program files\MediaBuzzV1\MediaBuzzV1mode5694\uninstall.exe
AddRemove-PowerISO - c:\program files\PowerISO\uninstall.exe
AddRemove-RichMediaViewV1release848 - c:\program files\RichMediaViewV1\RichMediaViewV1release848\uninstall.exe
AddRemove-UGFwZXJzUGxlYXNldjEwNDE=_is1 - c:\program files\Papers Please v1.0.41\unins000.exe
AddRemove-Wubi - e:\ubuntu\uninstall-wubi.exe
AddRemove-{5BBB8682-1335-410F-A79F-8E5611A54BD0}_is1 - c:\program files\Game Dev Tycoon\unins000.exe
AddRemove-{6D0042A0-9064-4C7F-B906-3EAC4427EE07}_is1 - d:\css v34\unins000.exe
AddRemove-{7DD5E91C-3864-77EC-7635-D14910C2A03E} - c:\programdata\Save nEt\9eLPhC.exe
AddRemove-{909F8EBC-EC7F-48FF-0085-475D818F0F31} - c:\nfsug2\EAUninstall.exe
AddRemove-{99C91FC5-DB5B-4AA0-BB70-5D89C5A4DF96} - c:\users\intel\AppData\Local\3fe6bda5-db37-4845-f8e9-db24a22dd893\3fe6bda5-db37-4845-f8e9-db24a22dd893.exe
AddRemove-{A7E19604-93AF-4611-8C9F-CE509C2B286F}_is1 - c:\program files\Free YouTube Downloader\unins000.exe
.
.
.
--------------------- ZABLOKOWANE KLUCZE REJESTRU ---------------------
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
------------------------ Pozostałe uruchomione procesy ------------------------
.
c:\windows\system32\atieclxx.exe
c:\program files\Common Files\Adobe\ARM\1.0\armsvc.exe
c:\windows\system32\PnkBstrA.exe
c:\program files\Microsoft SQL Server\90\Shared\sqlwriter.exe
c:\windows\system32\taskhost.exe
c:\windows\system32\conhost.exe
c:\program files\Intel\Intel® Management Engine Components\LMS\LMS.exe
c:\windows\system32\sppsvc.exe
c:\program files\Windows Media Player\wmpnetwk.exe
c:\windows\system32\DllHost.exe
.
**************************************************************************
.
Czas ukończenia: 2014-08-23 16:05:51 - komputer został uruchomiony ponownie
ComboFix-quarantined-files.txt 2014-08-23 14:05
.
Przed: 20 109 938 688 bytes free
Po: 19 893 555 200 bytes free
.
- - End Of File - - D8530D9A7CCC47FD7B8CBD9E58B928FE
A36C5E4F47E84449FF07ED3517B43A31
OTL:
OTL logfile created on: 2014-08-23 16:07:14 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\intel\Desktop\otl
Ultimate Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7601.17514)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd
3,46 Gb Total Physical Memory | 2,37 Gb Available Physical Memory | 68,48% Memory free
6,92 Gb Paging File | 5,79 Gb Available in Paging File | 83,70% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 97,56 Gb Total Space | 18,61 Gb Free Space | 19,07% Space Free | Partition Type: NTFS
Drive D: | 97,66 Gb Total Space | 65,48 Gb Free Space | 67,05% Space Free | Partition Type: NTFS
Drive E: | 195,31 Gb Total Space | 195,20 Gb Free Space | 99,94% Space Free | Partition Type: NTFS
Computer Name: INTEL-PC | User Name: intel | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Processes (SafeList) ==========
PRC - [2014-08-23 15:48:50 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\intel\Desktop\otl\OTL.exe
PRC - [2014-08-20 18:28:28 | 003,544,632 | ---- | M] (SoftEther VPN Project at University of Tsukuba, Japan.) -- C:\Program Files\SoftEther VPN Client\vpnclient.exe
PRC - [2014-08-06 11:34:34 | 005,052,224 | ---- | M] (TeamViewer GmbH) -- C:\Program Files\TeamViewer\Version9\TeamViewer_Service.exe
PRC - [2014-07-10 15:23:36 | 000,289,328 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2014\avgwdsvc.exe
PRC - [2014-04-29 09:14:56 | 000,064,624 | ---- | M] (CyberGhost S.R.L) -- C:\Program Files\CyberGhost 5\Service.exe
PRC - [2014-03-07 01:18:04 | 001,904,640 | ---- | M] (Don HO [email protected]) -- C:\Program Files\Notepad++\notepad++.exe
PRC - [2014-02-28 02:00:14 | 000,975,144 | ---- | M] (AnchorFree Inc.) -- C:\Program Files\Hotspot Shield\bin\cmw_srv.exe
PRC - [2014-02-28 00:39:22 | 000,555,304 | ---- | M] () -- C:\Program Files\Hotspot Shield\bin\hsswd.exe
PRC - [2013-12-21 08:04:16 | 000,065,432 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
PRC - [2012-09-28 03:38:42 | 000,473,088 | ---- | M] (AMD) -- C:\Windows\System32\atieclxx.exe
PRC - [2012-09-28 03:38:02 | 000,217,600 | ---- | M] (AMD) -- C:\Windows\System32\atiesrxx.exe
PRC - [2012-07-17 15:57:22 | 000,365,376 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\Intel® Management Engine Components\UNS\UNS.exe
PRC - [2012-07-17 15:57:20 | 000,277,824 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\Intel® Management Engine Components\LMS\LMS.exe
PRC - [2012-06-25 11:57:14 | 000,166,720 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\Intel® Management Engine Components\DAL\Jhi_service.exe
PRC - [2012-04-20 15:11:32 | 000,462,048 | ---- | M] (Intel® Corporation) -- C:\Program Files\Intel\iCLS Client\HeciServer.exe
PRC - [2012-01-25 16:23:54 | 000,192,792 | ---- | M] (Microsoft Corporation.) -- C:\Program Files\Microsoft\BingBar\7.1.355.0\BBSvc.EXE
PRC - [2010-11-20 23:29:20 | 002,616,320 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
PRC - [2010-11-20 23:29:19 | 000,049,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\taskhost.exe
========== Modules (No Company Name) ==========
MOD - [2014-01-07 01:42:32 | 001,611,264 | ---- | M] () -- C:\Program Files\Notepad++\plugins\NppFTP.dll
MOD - [2011-07-18 23:07:28 | 000,014,336 | ---- | M] () -- C:\Program Files\Notepad++\plugins\NppExport.dll
MOD - [2010-01-21 02:34:10 | 008,793,952 | ---- | M] () -- C:\Program Files\Microsoft Office\Office14\1033\GrooveIntlResource.dll
MOD - [2010-01-09 21:18:18 | 004,254,560 | ---- | M] () -- C:\Program Files\Common Files\microsoft shared\OFFICE14\Cultures\OFFICE.ODF
========== Services (SafeList) ==========
SRV - File not found [On_Demand | Stopped] -- D:\Program Files\Microsoft Visual Studio 12.0\Common7\Packages\Debugger\Services\VsEtwService.exe -- (VsEtwService120)
SRV - File not found [On_Demand | Stopped] -- C:\Program Files\McAfee Security Scan\3.0.285\McCHSvc.exe -- (McComponentHostService)
SRV - [2014-08-20 18:28:28 | 003,544,632 | ---- | M] (SoftEther VPN Project at University of Tsukuba, Japan.) [Auto | Running] -- C:\Program Files\SoftEther VPN Client\vpnclient.exe -- (SEVPNCLIENT)
SRV - [2014-08-14 00:30:50 | 000,833,728 | ---- | M] (Valve Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\Steam\SteamService.exe -- (Steam Client Service)
SRV - [2014-08-06 11:34:34 | 005,052,224 | ---- | M] (TeamViewer GmbH) [Auto | Running] -- C:\Program Files\TeamViewer\Version9\TeamViewer_Service.exe -- (TeamViewer9)
SRV - [2014-07-30 17:51:21 | 000,119,408 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2014-07-10 15:34:10 | 003,244,048 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Stopped] -- C:\Program Files\AVG\AVG2014\avgidsagent.exe -- (AVGIDSAgent)
SRV - [2014-07-10 15:32:46 | 001,417,160 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Stopped] -- C:\Program Files\AVG\AVG2014\avgfws.exe -- (avgfws)
SRV - [2014-07-10 15:23:36 | 000,289,328 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files\AVG\AVG2014\avgwdsvc.exe -- (avgwd)
SRV - [2014-07-09 16:29:32 | 000,262,320 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\System32\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2014-05-29 20:33:38 | 000,134,664 | ---- | M] (Sandboxie Holdings, LLC) [Auto | Stopped] -- D:\sandboxie\SbieSvc.exe -- (SbieSvc)
SRV - [2014-04-29 09:14:56 | 000,064,624 | ---- | M] (CyberGhost S.R.L) [Auto | Running] -- C:\Program Files\CyberGhost 5\Service.exe -- (CGVPNCliService)
SRV - [2014-03-05 20:29:48 | 000,099,616 | ---- | M] (Overwolf LTD) [On_Demand | Stopped] -- C:\Program Files\Overwolf\OverwolfUpdater.exe -- (OverwolfUpdaterService)
SRV - [2014-02-28 02:00:14 | 000,975,144 | ---- | M] (AnchorFree Inc.) [Auto | Running] -- C:\Program Files\Hotspot Shield\bin\cmw_srv.exe -- (hshld)
SRV - [2014-02-28 01:14:08 | 000,078,512 | ---- | M] () [On_Demand | Stopped] -- C:\Program Files\Hotspot Shield\bin\HSSTrayService.exe -- (HssTrayService)
SRV - [2014-02-28 00:39:22 | 000,555,304 | ---- | M] () [Auto | Running] -- C:\Program Files\Hotspot Shield\bin\hsswd.exe -- (HssWd)
SRV - [2013-12-21 08:04:16 | 000,065,432 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2013-10-23 08:15:08 | 000,172,192 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files\Skype\Updater\Updater.exe -- (SkypeUpdate)
SRV - [2013-08-21 21:55:10 | 000,091,136 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Kits\8.1\Testing\Runtimes\TAEF\Wex.Services.exe -- (Te.Service)
SRV - [2013-08-21 21:33:20 | 000,140,800 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Kits\8.1\App Certification Kit\fussvc.exe -- (fussvc)
SRV - [2012-09-28 03:38:02 | 000,217,600 | ---- | M] (AMD) [Auto | Running] -- C:\Windows\System32\atiesrxx.exe -- (AMD External Events Utility)
SRV - [2012-07-17 15:57:22 | 000,365,376 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files\Intel\Intel® Management Engine Components\UNS\UNS.exe -- (UNS)
SRV - [2012-07-17 15:57:20 | 000,277,824 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files\Intel\Intel® Management Engine Components\LMS\LMS.exe -- (LMS)
SRV - [2012-06-25 11:57:14 | 000,166,720 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files\Intel\Intel® Management Engine Components\DAL\Jhi_service.exe -- (jhi_service)
SRV - [2012-04-20 15:11:32 | 000,462,048 | ---- | M] (Intel® Corporation) [Auto | Running] -- C:\Program Files\Intel\iCLS Client\HeciServer.exe -- (Intel®
SRV - [2012-01-25 16:23:54 | 000,240,408 | ---- | M] (Microsoft Corporation.) [On_Demand | Stopped] -- C:\Program Files\Microsoft\BingBar\7.1.355.0\SeaPort.EXE -- (BBUpdate)
SRV - [2012-01-25 16:23:54 | 000,192,792 | ---- | M] (Microsoft Corporation.) [Auto | Running] -- C:\Program Files\Microsoft\BingBar\7.1.355.0\BBSvc.EXE -- (BBSvc)
SRV - [2010-02-19 13:37:14 | 000,517,096 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe -- (SwitchBoard)
SRV - [2010-02-03 01:03:04 | 000,015,768 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Identity Foundation\v3.5\c2wtshost.exe -- (c2wts)
SRV - [2010-01-21 18:51:12 | 030,963,576 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Microsoft Office\Office14\GROOVE.EXE -- (Microsoft SharePoint Workspace Audit Service)
SRV - [2009-07-14 03:16:13 | 000,025,088 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\sensrsvc.dll -- (SensrSvc)
SRV - [2009-07-14 03:16:12 | 001,004,544 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\PeerDistSvc.dll -- (PeerDistSvc)
SRV - [2009-07-14 03:15:41 | 000,680,960 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
========== Driver Services (SafeList) ==========
DRV - File not found [Kernel | On_Demand | Stopped] -- System32\drivers\rdvgkmd.sys -- (VGPU)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\SPPD.sys -- (SPPD)
DRV - File not found [Kernel | On_Demand | Stopped] -- D:\sandboxie\SbieDrv.sys -- (SbieDrv)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Users\intel\Desktop\PBDownforce.sys -- (PBDOWNFORCE_SERVICE)
DRV - File not found [Kernel | On_Demand | Stopped] -- F:\CDriver.sys -- (MSICDSetup)
DRV - File not found [Kernel | On_Demand | Unknown] -- C:\Users\intel\AppData\Local\Temp\mbr.sys -- (mbr)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Users\intel\AppData\Local\Temp\cpuz137\cpuz137_x32.sys -- (cpuz137)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Users\intel\AppData\Local\Temp\catchme.sys -- (catchme)
DRV - [2014-08-20 18:29:56 | 000,026,208 | ---- | M] (SoftEther VPN Project at University of Tsukuba, Japan.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\Neo_0118.sys -- (Neo_VPN)
DRV - [2014-06-30 12:43:12 | 000,121,624 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | System | Running] -- C:\Windows\System32\drivers\avgdiskx.sys -- (Avgdiskx)
DRV - [2014-06-27 08:59:18 | 000,116,320 | ---- | M] (Power Software Ltd) [Kernel | System | Running] -- C:\Windows\System32\drivers\scdemu.sys -- (SCDEmu)
DRV - [2014-06-17 16:22:02 | 000,188,696 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | System | Running] -- C:\Windows\System32\drivers\avgldx86.sys -- (Avgldx86)
DRV - [2014-06-17 16:21:22 | 000,197,400 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\Windows\System32\drivers\avgtdix.sys -- (Avgtdix)
DRV - [2014-06-17 16:18:00 | 000,241,944 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | Boot | Running] -- C:\Windows\System32\drivers\avglogx.sys -- (Avglogx)
DRV - [2014-06-17 16:17:58 | 000,147,736 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | Boot | Running] -- C:\Windows\System32\drivers\avgidshx.sys -- (AVGIDSHX)
DRV - [2014-06-17 16:06:40 | 000,199,960 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | System | Running] -- C:\Windows\System32\drivers\avgidsdriverx.sys -- (AVGIDSDriver)
DRV - [2014-06-17 16:06:24 | 000,098,584 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | Boot | Running] -- C:\Windows\System32\drivers\avgmfx86.sys -- (Avgmfx86)
DRV - [2014-06-17 16:06:22 | 000,027,416 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | Boot | Running] -- C:\Windows\System32\drivers\avgrkx86.sys -- (Avgrkx86)
DRV - [2014-06-17 16:06:20 | 000,021,272 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\Windows\System32\drivers\avgidsshimx.sys -- (AVGIDSShim)
DRV - [2014-05-16 15:25:48 | 000,204,064 | ---- | M] (Oracle Corporation) [Kernel | System | Running] -- C:\Windows\System32\drivers\VBoxDrv.sys -- (VBoxDrv)
DRV - [2014-05-16 15:24:56 | 000,126,752 | ---- | M] (Oracle Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\VBoxNetFlt.sys -- (VBoxNetFlt)
DRV - [2014-05-16 15:24:56 | 000,116,512 | ---- | M] (Oracle Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\VBoxNetAdp.sys -- (VBoxNetAdp)
DRV - [2014-05-16 15:24:54 | 000,104,736 | ---- | M] (Oracle Corporation) [Kernel | System | Running] -- C:\Windows\System32\drivers\VBoxUSBMon.sys -- (VBoxUSBMon)
DRV - [2014-05-15 15:33:40 | 000,231,760 | ---- | M] (TrueCrypt Foundation) [Kernel | System | Running] -- C:\Windows\System32\drivers\truecrypt.sys -- (truecrypt)
DRV - [2014-02-28 01:11:28 | 000,037,064 | ---- | M] (Anchorfree Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\taphss6.sys -- (taphss6)
DRV - [2014-02-28 01:07:28 | 000,039,624 | ---- | M] (AnchorFree Inc.) [Kernel | System | Running] -- C:\Windows\System32\drivers\hssdrv6.sys -- (HssDRV6)
DRV - [2013-12-06 15:37:48 | 000,029,728 | ---- | M] (Visicom Media Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\mcaudrv.sys -- (mcaudrv_simple)
DRV - [2013-11-27 03:54:00 | 000,040,736 | ---- | M] (Visicom Media Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\mcvidrv.sys -- (ManyCam)
DRV - [2013-09-26 11:00:38 | 000,047,928 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\Windows\System32\drivers\avgfwd6x.sys -- (Avgfwfd)
DRV - [2013-08-22 14:40:22 | 000,035,288 | ---- | M] (The OpenVPN Project) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\tap0901.sys -- (tap0901)
DRV - [2012-09-28 04:20:20 | 009,107,968 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\atikmdag.sys -- (amdkmdag)
DRV - [2012-09-28 03:12:10 | 000,370,176 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\atikmpag.sys -- (amdkmdap)
DRV - [2012-07-02 16:16:00 | 000,055,104 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\HECI.sys -- (MEI)
DRV - [2012-05-14 08:12:28 | 000,086,656 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\AtihdW73.sys -- (AtiHDAudioService)
DRV - [2010-11-20 23:29:34 | 000,015,872 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\rdpvideominiport.sys -- (RdpVideoMiniport)
DRV - [2010-11-20 23:29:24 | 000,052,224 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV - [2010-11-20 23:29:03 | 000,175,360 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\vmbus.sys -- (vmbus)
DRV - [2010-11-20 23:29:03 | 000,112,640 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\tsusbhub.sys -- (tsusbhub)
DRV - [2010-11-20 23:29:03 | 000,077,184 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\Synth3dVsc.sys -- (Synth3dVsc)
DRV - [2010-11-20 23:29:03 | 000,062,464 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\dmvsc.sys -- (dmvsc)
DRV - [2010-11-20 23:29:03 | 000,040,704 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\vmstorfl.sys -- (storflt)
DRV - [2010-11-20 23:29:03 | 000,035,968 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\winusb.sys -- (WinUsb)
DRV - [2010-11-20 23:29:03 | 000,028,032 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\storvsc.sys -- (storvsc)
DRV - [2010-11-20 23:29:03 | 000,027,264 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\TsUsbGD.sys -- (TsUsbGD)
DRV - [2010-11-20 23:29:03 | 000,025,600 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\terminpt.sys -- (terminpt)
DRV - [2010-11-20 23:29:03 | 000,017,920 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\VMBusHID.sys -- (VMBusHID)
DRV - [2010-11-20 23:29:03 | 000,005,632 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\vms3cap.sys -- (s3cap)
DRV - [2007-07-31 14:27:16 | 000,013,312 | ---- | M] (Windows ® 2000 DDK provider) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\BTCamAudioDrv.sys -- (MBLAUDRV)
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page =
IE - HKCU\..\SearchScopes,DefaultScope = {014DB5FA-EAFB-4592-A95B-F44D3EE87FA9}
IE - HKCU\..\SearchScopes\{014DB5FA-EAFB-4592-A95B-F44D3EE87FA9}: "URL" = http://www.trovi.com/Results.aspx?gd=&ctid=CT3321459&octid=EB_ORIGINAL_CTID&ISID=M1A0BB9CC-3F23-4A44-A31B-C73F7291ED2A&SearchSource=58&CUI=&UM=6&UP=SP98F97061-D24F-417B-8BCD-C362F34CDD0F&q={searchTerms}&SSPV=
IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = <-loopback>
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyServer" = http=127.0.0.1:8888;https=127.0.0.1:8888;
========== FireFox ==========
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "about:home"
FF - prefs.js..extensions.enabledAddons: https-everywhere%40eff.org:3.5.3
FF - prefs.js..extensions.enabledAddons: FireXPath%40pierre.tholence.com:0.9.7
FF - prefs.js..extensions.enabledAddons: %7Be4a8a97b-f2ed-450b-b12d-ee082ba24781%7D:2.1
FF - prefs.js..extensions.enabledAddons: %7B73a6fe31-595d-460b-a920-fcc0f8843232%7D:2.6.8.36
FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:31.0
FF - prefs.js..network.proxy.type: 0
FF - user.js - File not found
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF32_14_0_0_145.dll ()
FF - HKLM\Software\MozillaPlugins\@esn/npbattlelog,version=2.4.0: C:\Program Files\Battlelog Web Plugins\2.4.0\npbattlelog.dll (EA Digital Illusions CE AB)
FF - HKLM\Software\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42: C:\Program Files\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF - HKLM\Software\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater: C:\Program Files\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\5.1.20513.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~1\MICROS~2\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@pandonetworks.com/PandoWebPlugin: C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\@unity3d.com/UnityPlayer,version=1.0: C:\Users\intel\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF - HKCU\Software\MozillaPlugins\pandonetworks.com/PandoWebPlugin: C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\[email protected]: C:\Program Files\MediaBuzzV1\MediaBuzzV1mode5694\ff
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\[email protected]: C:\Program Files\RichMediaViewV1\RichMediaViewV1release848\ff
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\[email protected]: C:\Program Files\Fiddler2\FiddlerHook [2014-08-21 13:08:03 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 31.0\extensions\\Components: C:\Program Files\Mozilla Firefox\components
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 31.0\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins
FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 31.0\extensions\\Components: C:\Program Files\Mozilla Firefox\components
FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 31.0\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins
[2014-06-14 11:54:42 | 000,000,000 | ---D | M] (No name found) -- C:\Users\intel\AppData\Roaming\Mozilla\Extensions
[2014-08-23 14:34:45 | 000,000,000 | ---D | M] (No name found) -- C:\Users\intel\AppData\Roaming\Mozilla\Firefox\Profiles\k0zy6stl.default\extensions
[2014-06-27 13:16:17 | 000,000,000 | ---D | M] (HTTPS-Everywhere) -- C:\Users\intel\AppData\Roaming\Mozilla\Firefox\Profiles\k0zy6stl.default\extensions\[email protected]
[2014-07-26 15:11:55 | 000,126,171 | ---- | M] () (No name found) -- C:\Users\intel\AppData\Roaming\Mozilla\Firefox\Profiles\k0zy6stl.default\extensions\[email protected]
[2014-08-14 11:37:01 | 004,221,812 | ---- | M] () (No name found) -- C:\Users\intel\AppData\Roaming\Mozilla\Firefox\Profiles\k0zy6stl.default\extensions\[email protected]
[2014-08-23 14:34:45 | 003,639,839 | ---- | M] () (No name found) -- C:\Users\intel\AppData\Roaming\Mozilla\Firefox\Profiles\k0zy6stl.default\extensions\[email protected]
[2014-07-22 19:35:37 | 000,051,503 | ---- | M] () (No name found) -- C:\Users\intel\AppData\Roaming\Mozilla\Firefox\Profiles\k0zy6stl.default\extensions\[email protected]
[2014-08-02 12:40:25 | 000,414,727 | ---- | M] () (No name found) -- C:\Users\intel\AppData\Roaming\Mozilla\Firefox\Profiles\k0zy6stl.default\extensions\[email protected]
[2014-08-07 14:32:41 | 000,623,272 | ---- | M] () (No name found) -- C:\Users\intel\AppData\Roaming\Mozilla\Firefox\Profiles\k0zy6stl.default\extensions\[email protected]
[2014-07-25 13:30:52 | 000,036,781 | ---- | M] () (No name found) -- C:\Users\intel\AppData\Roaming\Mozilla\Firefox\Profiles\k0zy6stl.default\extensions\[email protected]
[2014-07-02 16:38:39 | 000,088,090 | ---- | M] () (No name found) -- C:\Users\intel\AppData\Roaming\Mozilla\Firefox\Profiles\k0zy6stl.default\extensions\[email protected]
[2014-07-30 16:54:42 | 000,538,675 | ---- | M] () (No name found) -- C:\Users\intel\AppData\Roaming\Mozilla\Firefox\Profiles\k0zy6stl.default\extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}.xpi
[2014-07-25 13:30:57 | 000,870,551 | ---- | M] () (No name found) -- C:\Users\intel\AppData\Roaming\Mozilla\Firefox\Profiles\k0zy6stl.default\extensions\{a7c6cf7f-112c-4500-a7ea-39801a327e5f}.xpi
[2014-07-25 13:18:10 | 000,967,685 | ---- | M] () (No name found) -- C:\Users\intel\AppData\Roaming\Mozilla\Firefox\Profiles\k0zy6stl.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
[2014-07-30 16:54:42 | 000,297,630 | ---- | M] () (No name found) -- C:\Users\intel\AppData\Roaming\Mozilla\Firefox\Profiles\k0zy6stl.default\extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}.xpi
[2014-07-24 15:50:52 | 000,001,014 | ---- | M] () -- C:\Users\intel\AppData\Roaming\Mozilla\Firefox\Profiles\k0zy6stl.default\searchplugins\trovi-search.xml
[2014-07-30 17:51:16 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\browser\extensions
[2014-07-30 17:51:21 | 000,000,000 | ---D | M] (Default) -- C:\Program Files\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
CHR - Extension: No name found = C:\Users\intel\AppData\Local\Google\Chrome\User Data\Default\Extensions\abjcfabbhafbcdfjoecdgepllmpfceif\6.7.9.2_0\
CHR - Extension: No name found = C:\Users\intel\AppData\Local\Google\Chrome\User Data\Default\Extensions\alelhddbbhepgpmgidjdcjakblofbmce\3.7.11_0\
CHR - Extension: No name found = C:\Users\intel\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_1\
CHR - Extension: No name found = C:\Users\intel\AppData\Local\Google\Chrome\User Data\Default\Extensions\beahobhgpojnjfdjglaehfhdanaioode\1.5.1_0\
CHR - Extension: No name found = C:\Users\intel\AppData\Local\Google\Chrome\User Data\Default\Extensions\beahobhgpojnjfdjglaehfhdanaioode\1.5.1_0\~
CHR - Extension: No name found = C:\Users\intel\AppData\Local\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn\0.1.1.5023_0\
CHR - Extension: No name found = C:\Users\intel\AppData\Local\Google\Chrome\User Data\Default\Extensions\bfbameneiokkgbdmiekhjnmfkcnldhhm\0.4.6_0\
CHR - Extension: No name found = C:\Users\intel\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\
CHR - Extension: No name found = C:\Users\intel\AppData\Local\Google\Chrome\User Data\Default\Extensions\cekmplngfogodkbjfbmfpejhlbjhldig\1.1_0\
CHR - Extension: No name found = C:\Users\intel\AppData\Local\Google\Chrome\User Data\Default\Extensions\ckibcdccnfeookdmbahgiakhnjcddpki\13.11_0\
CHR - Extension: No name found = C:\Users\intel\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\
CHR - Extension: No name found = C:\Users\intel\AppData\Local\Google\Chrome\User Data\Default\Extensions\fommidcneendjonelhhhkmoekeicedej\1.30_0\
CHR - Extension: No name found = C:\Users\intel\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.7.12_0\
CHR - Extension: No name found = C:\Users\intel\AppData\Local\Google\Chrome\User Data\Default\Extensions\hafdlehgocfcodbgjnpecfajgkeejnaa\1.1.2_0\
CHR - Extension: No name found = C:\Users\intel\AppData\Local\Google\Chrome\User Data\Default\Extensions\ifmhoabcaeehkljcfclfiieohkohdgbb\10.6_0\
CHR - Extension: No name found = C:\Users\intel\AppData\Local\Google\Chrome\User Data\Default\Extensions\ihamlfilbdodiokndlfmmlpjlnopaobi\2.2_1\
CHR - Extension: No name found = C:\Users\intel\AppData\Local\Google\Chrome\User Data\Default\Extensions\jjhaafelbmbpohgmabippkndaaikgdih\4.0.3_0\
CHR - Extension: No name found = C:\Users\intel\AppData\Local\Google\Chrome\User Data\Default\Extensions\jlgdloilieclkegafohackmhffbmdpko\2_0\
CHR - Extension: No name found = C:\Users\intel\AppData\Local\Google\Chrome\User Data\Default\Extensions\khpcanbeojalbkpgpmjpdkjnkfcgfkhb\1.3.6_0\
CHR - Extension: No name found = C:\Users\intel\AppData\Local\Google\Chrome\User Data\Default\Extensions\lomkpheldlbkkfiifcbfifipaofnmnkn\3.5.0_0\
CHR - Extension: No name found = C:\Users\intel\AppData\Local\Google\Chrome\User Data\Default\Extensions\memcdolmmnmnleeiodllgpibdjlkbpim\1.0.0_0\
CHR - Extension: No name found = C:\Users\intel\AppData\Local\Google\Chrome\User Data\Default\Extensions\nbiajhhibgfgkjegbnflpdccejocmbbn\0.6_0\
CHR - Extension: No name found = C:\Users\intel\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.1_1\
CHR - Extension: No name found = C:\Users\intel\AppData\Local\Google\Chrome\User Data\Default\Extensions\pdabfienifkbhoihedcgeogidfmibmhp\8.6_0\
O1 HOSTS File: ([2014-08-23 16:02:52 | 000,000,027 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
O2 - BHO: (Office Document Cache Handler) - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
O2 - BHO: (Bing Bar Helper) - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files\Microsoft\BingBar\7.1.355.0\BingExt.dll (Microsoft Corporation.)
O3 - HKLM\..\Toolbar: (Bing Bar) - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files\Microsoft\BingBar\7.1.355.0\BingExt.dll (Microsoft Corporation.)
O4 - HKLM..\Run: [AdobeAAMUpdater-1.0] C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [AdobeCS5ServiceManager] C:\Program Files\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [AVG_UI] C:\Program Files\AVG\AVG2014\avgui.exe (AVG Technologies CZ, s.r.o.)
O4 - HKLM..\Run: [softEther VPN Client UI Helper] C:\Program Files\SoftEther VPN Client\vpnclient.exe (SoftEther VPN Project at University of Tsukuba, Japan.)
O4 - HKLM..\Run: [switchBoard] C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe (Adobe Systems Incorporated)
O4 - HKCU..\Run: [f.lux] C:\Users\intel\AppData\Local\FluxSoftware\Flux\flux.exe (Flux Software LLC)
O4 - HKCU..\Run: [LightShot] C:\Users\intel\AppData\Local\Skillbrains\lightshot\Lightshot.exe ()
O4 - HKCU..\Run: [spotify Web Helper] C:\Users\intel\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe (Spotify Ltd)
O4 - HKCU..\Run: [steam] D:\Steam\steam.exe (Valve Corporation)
O4 - HKCU..\Run: [uTorrent] C:\Users\intel\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc.)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O8 - Extra context menu item: E&xport to Microsoft Excel - C:\Program Files\Microsoft Office\Office14\EXCEL.EXE (Microsoft Corporation)
O8 - Extra context menu item: Se&nd to OneNote - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra Button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra Button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll (Microsoft Corporation)
O9 - Extra Button: Fiddler - {CF819DA3-9882-4944-ADF5-6EF17ECF3C6E} - C:\Program Files\Fiddler2\Fiddler.exe (Telerik)
O9 - Extra 'Tools' menuitem : Fiddler - {CF819DA3-9882-4944-ADF5-6EF17ECF3C6E} - C:\Program Files\Fiddler2\Fiddler.exe (Telerik)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.20
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{7606881F-9516-43AE-B1B6-D6B6A4197A25}: DhcpNameServer = 192.168.1.20
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\System32\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O28 - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009-06-10 23:42:20 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = ComFile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)
========== Files/Folders - Created Within 30 Days ==========
[2014-08-23 16:05:29 | 000,000,000 | -HSD | C] -- C:\$RECYCLE.BIN
[2014-08-23 15:59:02 | 000,000,000 | ---D | C] -- C:\Users\intel\Desktop\otl
[2014-08-23 15:59:01 | 000,000,000 | ---D | C] -- C:\Users\intel\Desktop\New folder
[2014-08-23 15:50:32 | 000,518,144 | ---- | C] (SteelWerX) -- C:\Windows\SWREG.exe
[2014-08-23 15:50:32 | 000,406,528 | ---- | C] (SteelWerX) -- C:\Windows\SWSC.exe
[2014-08-23 15:50:32 | 000,060,416 | ---- | C] (NirSoft) -- C:\Windows\NIRCMD.exe
[2014-08-23 15:50:22 | 000,000,000 | ---D | C] -- C:\Qoobox
[2014-08-23 15:50:04 | 000,000,000 | ---D | C] -- C:\Windows\erdnt
[2014-08-23 14:47:00 | 000,000,000 | ---D | C] -- C:\Users\intel\Desktop\PubJoy h4x v1.0 LEAKED
[2014-08-23 11:45:14 | 000,121,344 | ---- | C] (musicinstructor [www.elitepvpers.de]) -- C:\Users\intel\Desktop\m2PythonLoader.mix
[2014-08-23 11:08:12 | 000,000,000 | ---D | C] -- C:\Users\intel\Desktop\Pangea
[2014-08-22 10:15:47 | 000,000,000 | ---D | C] -- C:\Users\intel\Desktop\Switchbotv3_0_0_5
[2014-08-22 10:15:47 | 000,000,000 | ---D | C] -- C:\Users\intel\Desktop\Spolszczenie BS
[2014-08-21 21:03:35 | 000,000,000 | ---D | C] -- C:\Users\intel\Desktop\dmg
[2014-08-21 17:24:57 | 000,000,000 | ---D | C] -- C:\Users\intel\Desktop\Ventea.eu
[2014-08-21 12:36:21 | 000,000,000 | ---D | C] -- C:\Users\intel\Desktop\ztype
[2014-08-21 11:47:26 | 000,000,000 | ---D | C] -- C:\Users\intel\Desktop\ollydbg
[2014-08-21 08:58:28 | 000,022,528 | ---- | C] (DeathSoft™) -- C:\Users\intel\Desktop\SetPriv.dll
[2014-08-21 08:40:06 | 000,000,000 | ---D | C] -- C:\Users\intel\Desktop\cache
[2014-08-20 19:32:19 | 000,000,000 | ---D | C] -- C:\Users\intel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Flux
[2014-08-20 19:32:17 | 000,000,000 | ---D | C] -- C:\Users\intel\AppData\Local\FluxSoftware
[2014-08-20 18:29:56 | 000,026,208 | ---- | C] (SoftEther VPN Project at University of Tsukuba, Japan.) -- C:\Windows\System32\drivers\Neo_0118.sys
[2014-08-20 18:28:38 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SoftEther VPN Client
[2014-08-20 17:35:53 | 000,133,688 | ---- | C] (SoftEther VPN Project at University of Tsukuba, Japan.) -- C:\Windows\System32\vpncmd.exe
[2014-08-20 17:35:42 | 000,000,000 | ---D | C] -- C:\Program Files\SoftEther VPN Client
[2014-08-20 15:17:21 | 000,000,000 | ---D | C] -- C:\Config.Msi
[2014-08-15 13:57:30 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CPUID
[2014-08-15 13:57:30 | 000,000,000 | ---D | C] -- C:\Program Files\CPUID
[2014-08-15 13:21:07 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Realmware BF3 Tools
[2014-08-15 13:21:07 | 000,000,000 | ---D | C] -- C:\Program Files\Realmware
[2014-08-13 17:09:25 | 001,342,976 | ---- | C] (master131) -- C:\Users\intel\Desktop\Extreme Injector v3.exe
[2014-08-13 08:54:54 | 000,000,000 | ---D | C] -- C:\Users\intel\AppData\Local\PunkBuster
[2014-08-13 08:54:22 | 000,000,000 | ---D | C] -- C:\Users\intel\AppData\Local\ESN
[2014-08-13 08:53:54 | 000,000,000 | ---D | C] -- C:\Program Files\Battlelog Web Plugins
[2014-08-13 08:53:02 | 000,000,000 | ---D | C] -- C:\ProgramData\EA Core
[2014-08-13 08:52:58 | 000,000,000 | ---D | C] -- C:\Users\intel\Documents\Battlefield 3
[2014-08-13 08:44:42 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Battlefield 3
[2014-08-07 17:07:34 | 000,000,000 | ---D | C] -- C:\Users\intel\Documents\SimBin
[2014-08-03 12:54:15 | 000,000,000 | ---D | C] -- C:\Windows\Minidump
[2014-08-03 11:59:05 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mirillis
[2014-08-03 11:59:03 | 000,000,000 | ---D | C] -- C:\Program Files\Mirillis
[2014-08-01 17:57:10 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Counter-Strike Source
[2014-07-30 17:51:16 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Firefox
[2014-07-30 17:06:37 | 000,000,000 | ---D | C] -- C:\Users\intel\Desktop\micspam
[2014-07-30 16:57:41 | 000,000,000 | ---D | C] -- C:\Users\intel\Desktop\hldj
[2014-07-27 22:16:21 | 000,000,000 | ---D | C] -- C:\Users\intel\.idlerc
[2014-07-26 16:20:58 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Synchronization Services
[2014-07-26 16:20:58 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft SQL Server Compact Edition
[2014-07-26 16:19:31 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Visual Studio 10.0
[2014-07-26 16:19:31 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft SDKs
[2014-07-26 16:19:31 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Help Viewer
[2 C:\Windows\System32\drivers\*.tmp files -> C:\Windows\System32\drivers\*.tmp -> ]
========== Files - Modified Within 30 Days ==========
[2014-08-23 16:02:52 | 000,000,027 | ---- | M] () -- C:\Windows\System32\drivers\etc\hosts
[2014-08-23 16:02:39 | 000,001,030 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2014-08-23 16:02:29 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2014-08-23 16:02:28 | 2788,085,760 | -HS- | M] () -- C:\hiberfil.sys
[2014-08-23 15:25:00 | 000,000,830 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2014-08-23 15:18:53 | 000,967,838 | ---- | M] () -- C:\Users\intel\Desktop\Desktop.rar
[2014-08-23 15:14:56 | 000,001,034 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2014-08-23 15:11:00 | 000,000,376 | ---- | M] () -- C:\Windows\tasks\update-S-1-5-21-398107741-305064594-4114302982-1000.job
[2014-08-23 13:29:00 | 000,000,376 | ---- | M] () -- C:\Windows\tasks\update-sys.job
[2014-08-23 11:05:47 | 1195,378,474 | ---- | M] () -- C:\Users\intel\Desktop\Pangea.zip
[2014-08-23 10:35:29 | 000,140,072 | ---- | M] () -- C:\Windows\System32\drivers\PnkBstrK.sys
[2014-08-23 10:35:23 | 000,280,904 | ---- | M] () -- C:\Windows\System32\PnkBstrB.xtr
[2014-08-23 09:48:19 | 000,026,544 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2014-08-23 09:48:19 | 000,026,544 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2014-08-22 08:10:17 | 1159,909,092 | ---- | M] () -- C:\Users\intel\Desktop\ShivaMt2 Official 24.07.2014.rar
[2014-08-21 17:21:42 | 000,297,088 | ---- | M] () -- C:\Windows\System32\PnkBstrB.ex0
[2014-08-21 11:50:19 | 000,000,318 | ---- | M] () -- C:\Windows\WPE PRO - modified.INI
[2014-08-21 11:49:56 | 000,001,973 | ---- | M] () -- C:\Users\intel\Desktop\game anarchy spoof pts.flt
[2014-08-21 08:58:19 | 000,411,452 | ---- | M] () -- C:\Users\intel\Desktop\wpepro09mod.zip
[2014-08-20 20:03:35 | 003,399,168 | ---- | M] () -- C:\Users\intel\Desktop\Client011614(1).exe
[2014-08-20 18:29:56 | 000,026,208 | ---- | M] (SoftEther VPN Project at University of Tsukuba, Japan.) -- C:\Windows\System32\drivers\Neo_0118.sys
[2014-08-20 18:28:39 | 000,002,158 | ---- | M] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\SoftEther VPN Client Manager Startup.lnk
[2014-08-20 17:35:53 | 000,133,688 | ---- | M] (SoftEther VPN Project at University of Tsukuba, Japan.) -- C:\Windows\System32\vpncmd.exe
[2014-08-18 12:35:58 | 000,487,936 | ---- | M] () -- C:\Users\intel\Desktop\bf3h.exe
[2014-08-16 14:10:40 | 000,029,184 | ---- | M] () -- C:\Users\intel\Desktop\asd.exe
[2014-08-13 08:44:42 | 000,000,855 | ---- | M] () -- C:\Users\Public\Desktop\Battlefield 3.lnk
[2014-08-13 08:44:22 | 000,138,056 | ---- | M] () -- C:\Users\intel\AppData\Roaming\PnkBstrK.sys
[2014-08-12 12:24:51 | 000,051,200 | ---- | M] () -- C:\hehehe.exe
[2014-08-03 11:59:07 | 000,002,033 | ---- | M] () -- C:\Users\Public\Desktop\Action!.lnk
[2 C:\Windows\System32\drivers\*.tmp files -> C:\Windows\System32\drivers\*.tmp -> ]
========== Files Created - No Company Name ==========
[2014-08-23 15:50:32 | 000,256,000 | ---- | C] () -- C:\Windows\PEV.exe
[2014-08-23 15:50:32 | 000,208,896 | ---- | C] () -- C:\Windows\MBR.exe
[2014-08-23 15:50:32 | 000,098,816 | ---- | C] () -- C:\Windows\sed.exe
[2014-08-23 15:50:32 | 000,080,412 | ---- | C] () -- C:\Windows\grep.exe
[2014-08-23 15:50:32 | 000,068,096 | ---- | C] () -- C:\Windows\zip.exe
[2014-08-23 15:18:47 | 000,967,838 | ---- | C] () -- C:\Users\intel\Desktop\Desktop.rar
[2014-08-23 12:57:14 | 000,015,872 | ---- | C] () -- C:\Users\intel\Desktop\multihack_gf.flt
[2014-08-23 11:45:14 | 000,042,524 | ---- | C] () -- C:\Users\intel\Desktop\Metin2MultihackbyKevke.pyc
[2014-08-23 11:45:14 | 000,000,029 | ---- | C] () -- C:\Users\intel\Desktop\logininfo.py
[2014-08-23 10:20:39 | 1195,378,474 | ---- | C] () -- C:\Users\intel\Desktop\Pangea.zip
[2014-08-22 08:03:58 | 1159,909,092 | ---- | C] () -- C:\Users\intel\Desktop\ShivaMt2 Official 24.07.2014.rar
[2014-08-21 21:03:37 | 000,039,424 | ---- | C] () -- C:\Users\intel\Desktop\damageload.mix
[2014-08-21 21:03:37 | 000,032,331 | ---- | C] () -- C:\Users\intel\Desktop\dmg22.pyc
[2014-08-21 21:03:37 | 000,025,547 | ---- | C] () -- C:\Users\intel\Desktop\dmg27.pyc
[2014-08-21 21:03:37 | 000,000,908 | ---- | C] () -- C:\Users\intel\Desktop\bindoubleclick.reg
[2014-08-21 21:03:37 | 000,000,146 | ---- | C] () -- C:\Users\intel\Desktop\damageload.py
[2014-08-21 11:46:00 | 000,001,973 | ---- | C] () -- C:\Users\intel\Desktop\game anarchy spoof pts.flt
[2014-08-21 09:27:48 | 000,000,318 | ---- | C] () -- C:\Windows\WPE PRO - modified.INI
[2014-08-21 08:58:28 | 000,831,488 | ---- | C] () -- C:\Users\intel\Desktop\WPE PRO - modified.exe
[2014-08-21 08:58:28 | 000,184,320 | ---- | C] () -- C:\Users\intel\Desktop\WpeSpy.dll
[2014-08-21 08:58:19 | 000,411,452 | ---- | C] () -- C:\Users\intel\Desktop\wpepro09mod.zip
[2014-08-20 20:03:27 | 003,399,168 | ---- | C] () -- C:\Users\intel\Desktop\Client011614(1).exe
[2014-08-20 17:35:49 | 000,002,158 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\SoftEther VPN Client Manager Startup.lnk
[2014-08-18 16:52:35 | 000,029,184 | ---- | C] () -- C:\Users\intel\Desktop\asd.exe
[2014-08-18 12:35:56 | 000,487,936 | ---- | C] () -- C:\Users\intel\Desktop\bf3h.exe
[2014-08-13 08:54:57 | 000,280,904 | ---- | C] () -- C:\Windows\System32\PnkBstrB.xtr
[2014-08-13 08:44:42 | 000,000,855 | ---- | C] () -- C:\Users\Public\Desktop\Battlefield 3.lnk
[2014-08-13 08:44:22 | 000,140,072 | ---- | C] () -- C:\Windows\System32\drivers\PnkBstrK.sys
[2014-08-13 08:44:22 | 000,138,056 | ---- | C] () -- C:\Users\intel\AppData\Roaming\PnkBstrK.sys
[2014-08-13 08:43:56 | 000,297,088 | ---- | C] () -- C:\Windows\System32\PnkBstrB.ex0
[2014-08-13 08:43:56 | 000,280,904 | ---- | C] () -- C:\Windows\System32\PnkBstrB.exe
[2014-08-13 08:43:43 | 000,076,152 | ---- | C] () -- C:\Windows\System32\PnkBstrA.exe
[2014-08-12 12:28:15 | 000,051,200 | ---- | C] () -- C:\hehehe.exe
[2014-08-03 11:59:07 | 000,002,033 | ---- | C] () -- C:\Users\Public\Desktop\Action!.lnk
[2014-07-13 13:20:40 | 000,000,000 | -HS- | C] () -- C:\Users\intel\AppData\Local\LumaEmu
[2014-07-09 09:28:08 | 000,108,544 | ---- | C] () -- C:\Windows\System32\hfnapi.dll
[2014-05-08 15:50:12 | 000,393,728 | ---- | C] () -- C:\Windows\System32\openssl.exe
[2014-05-08 15:50:12 | 000,059,392 | ---- | C] () -- C:\Windows\System32\gost.dll
[2014-05-08 15:50:12 | 000,052,736 | ---- | C] () -- C:\Windows\System32\ectest.exe
[2014-05-08 15:50:12 | 000,030,208 | ---- | C] () -- C:\Windows\System32\ssltest.exe
[2014-05-08 15:50:12 | 000,025,600 | ---- | C] () -- C:\Windows\System32\bntest.exe
[2014-05-08 15:50:12 | 000,023,552 | ---- | C] () -- C:\Windows\System32\capi.dll
[2014-05-08 15:50:12 | 000,019,456 | ---- | C] () -- C:\Windows\System32\destest.exe
[2014-05-08 15:50:12 | 000,017,408 | ---- | C] () -- C:\Windows\System32\sureware.dll
[2014-05-08 15:50:12 | 000,017,408 | ---- | C] () -- C:\Windows\System32\chil.dll
[2014-05-08 15:50:12 | 000,015,872 | ---- | C] () -- C:\Windows\System32\cswift.dll
[2014-05-08 15:50:12 | 000,014,848 | ---- | C] () -- C:\Windows\System32\ubsec.dll
[2014-05-08 15:50:12 | 000,014,336 | ---- | C] () -- C:\Windows\System32\4758cca.dll
[2014-05-08 15:50:12 | 000,013,312 | ---- | C] () -- C:\Windows\System32\bftest.exe
[2014-05-08 15:50:12 | 000,012,800 | ---- | C] () -- C:\Windows\System32\ecdsatest.exe
[2014-05-08 15:50:12 | 000,012,800 | ---- | C] () -- C:\Windows\System32\aep.dll
[2014-05-08 15:50:12 | 000,012,288 | ---- | C] () -- C:\Windows\System32\padlock.dll
[2014-05-08 15:50:12 | 000,011,776 | ---- | C] () -- C:\Windows\System32\evp_test.exe
[2014-05-08 15:50:12 | 000,011,776 | ---- | C] () -- C:\Windows\System32\atalla.dll
[2014-05-08 15:50:12 | 000,011,264 | ---- | C] () -- C:\Windows\System32\rsa_test.exe
[2014-05-08 15:50:12 | 000,010,752 | ---- | C] () -- C:\Windows\System32\nuron.dll
[2014-05-08 15:50:12 | 000,010,752 | ---- | C] () -- C:\Windows\System32\enginetest.exe
[2014-05-08 15:50:12 | 000,010,752 | ---- | C] () -- C:\Windows\System32\ecdhtest.exe
[2014-05-08 15:50:12 | 000,010,240 | ---- | C] () -- C:\Windows\System32\wp_test.exe
[2014-05-08 15:50:12 | 000,010,240 | ---- | C] () -- C:\Windows\System32\rc4test.exe
[2014-05-08 15:50:12 | 000,009,728 | ---- | C] () -- C:\Windows\System32\sha512t.exe
[2014-05-08 15:50:12 | 000,009,728 | ---- | C] () -- C:\Windows\System32\ideatest.exe
[2014-05-08 15:50:12 | 000,009,216 | ---- | C] () -- C:\Windows\System32\srptest.exe
[2014-05-08 15:50:12 | 000,009,216 | ---- | C] () -- C:\Windows\System32\sha256t.exe
[2014-05-08 15:50:12 | 000,009,216 | ---- | C] () -- C:\Windows\System32\exptest.exe
[2014-05-08 15:50:12 | 000,009,216 | ---- | C] () -- C:\Windows\System32\dsatest.exe
[2014-05-08 15:50:12 | 000,009,216 | ---- | C] () -- C:\Windows\System32\dhtest.exe
[2014-05-08 15:50:12 | 000,009,216 | ---- | C] () -- C:\Windows\System32\casttest.exe
[2014-05-08 15:50:12 | 000,008,704 | ---- | C] () -- C:\Windows\System32\shatest.exe
[2014-05-08 15:50:12 | 000,008,704 | ---- | C] () -- C:\Windows\System32\sha1test.exe
[2014-05-08 15:50:12 | 000,008,704 | ---- | C] () -- C:\Windows\System32\rmdtest.exe
[2014-05-08 15:50:12 | 000,008,704 | ---- | C] () -- C:\Windows\System32\rc2test.exe
[2014-05-08 15:50:12 | 000,008,704 | ---- | C] () -- C:\Windows\System32\randtest.exe
[2014-05-08 15:50:12 | 000,008,704 | ---- | C] () -- C:\Windows\System32\mdc2test.exe
[2014-05-08 15:50:12 | 000,008,192 | ---- | C] () -- C:\Windows\System32\md5test.exe
[2014-05-08 15:50:12 | 000,008,192 | ---- | C] () -- C:\Windows\System32\md4test.exe
[2014-05-08 15:50:12 | 000,008,192 | ---- | C] () -- C:\Windows\System32\hmactest.exe
[2014-05-08 15:50:12 | 000,007,168 | ---- | C] () -- C:\Windows\System32\gmp.dll
[2014-04-26 12:13:58 | 000,000,670 | RHS- | C] () -- C:\ProgramData\ntuser.pol
[2014-03-24 21:22:47 | 000,000,057 | ---- | C] () -- C:\ProgramData\Ament.ini
[2014-03-01 20:04:57 | 000,000,436 | ---- | C] () -- C:\Users\intel\AppData\Local\UserProducts.xml
[2014-03-01 19:54:40 | 000,000,000 | ---- | C] () -- C:\Windows\ativpsrm.bin
[2014-03-01 19:40:58 | 000,204,952 | ---- | C] () -- C:\Windows\System32\ativvsvl.dat
[2014-03-01 19:40:58 | 000,157,144 | ---- | C] () -- C:\Windows\System32\ativvsva.dat
[2014-03-01 19:40:58 | 000,003,917 | ---- | C] () -- C:\Windows\System32\atipblag.dat
[2014-03-01 19:31:25 | 000,001,769 | ---- | C] () -- C:\Windows\Language_trs.ini
[2014-03-01 19:31:19 | 000,034,838 | ---- | C] () -- C:\Windows\Ascd_tmp.ini
[2012-09-28 16:36:56 | 000,180,224 | ---- | C] () -- C:\Windows\System32\clinfo.exe
========== ZeroAccess Check ==========
[2009-07-14 06:42:31 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini
[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2010-11-20 23:29:11 | 012,872,192 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2010-11-20 23:29:20 | 000,606,208 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
"" = %systemroot%\system32\wbem\wbemess.dll -- [2009-07-14 03:16:17 | 000,342,528 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both
========== LOP Check ==========
========== Purity Check ==========
========== Alternate Data Streams ==========
@Alternate Data Stream - 127 bytes -> C:\ProgramData\Temp:BD3317DE
< End of report >
OTL extras:
OTL Extras logfile created on: 2014-08-23 16:07:14 - Run 1
.exe" = protocol=6 | dir=in | app=c:\ 
.exe |
.exe" = protocol=6 | dir=in | app=c:\users\intel\desktop\ 
.exe |
.exe" = protocol=17 | dir=in | app=c:\ 
.exe |
.exe" = protocol=17 | dir=in | app=c:\users\intel\desktop\ 
.exe |
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\intel\Desktop\otl
Ultimate Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7601.17514)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd
3,46 Gb Total Physical Memory | 2,37 Gb Available Physical Memory | 68,48% Memory free
6,92 Gb Paging File | 5,79 Gb Available in Paging File | 83,70% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 97,56 Gb Total Space | 18,61 Gb Free Space | 19,07% Space Free | Partition Type: NTFS
Drive D: | 97,66 Gb Total Space | 65,48 Gb Free Space | 67,05% Space Free | Partition Type: NTFS
Drive E: | 195,31 Gb Total Space | 195,20 Gb Free Space | 99,94% Space Free | Partition Type: NTFS
Computer Name: INTEL-PC | User Name: intel | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Extra Registry (SafeList) ==========
========== File Associations ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\System32\control.exe (Microsoft Corporation)
.hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation)
.html [@ = ChromeHTML] -- C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.)
[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
========== Shell Spawning ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
htmlfile [edit] -- Reg Error: Key error.
https [open] -- "C:\Program Files\Google\Chrome\Application\chrome.exe" -- "%1" (Google Inc.)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [bridge] -- C:\Program Files\Adobe\adobecs5\Adobe Bridge CS5\Bridge.exe "%L" (Adobe Systems, Inc.)
Directory [browse with &IrfanView] -- "C:\Program Files\IrfanView\i_view32.exe" "%1 /thumbs" (Irfan Skiljan)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
========== Security Center Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
"FirewallDisableNotify" = 0
"AntiVirusDisableNotify" = 0
"UpdatesDisableNotify" = 0
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = Reg Error: Unknown registry data type -- File not found
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]
========== System Restore Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0
========== Firewall Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile]
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
========== Authorized Applications List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
========== Vista Active Open Ports Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{0066479F-7E32-4F66-A256-0390031AB739}" = lport=57514 | protocol=17 | dir=in | name=pando media booster |
"{00B9971B-159B-45FE-8B6F-5A1672A936EA}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{02CC6B7E-CA19-4B29-8800-AF25BD8CDDE0}" = rport=2177 | protocol=17 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{0314DC7F-C593-4D1E-B2E6-197EB26AF4EA}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{0D11B101-FA17-4807-B4D4-5CD5DE078C78}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{0D7A3232-4F41-408E-9A2C-1E6FDD607A28}" = lport=2177 | protocol=17 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{0E5A3BDA-B4E3-45D4-B609-6C85DBF8999E}" = rport=139 | protocol=6 | dir=out | app=system |
"{22BF5560-C609-4570-98E7-E2839053EA72}" = lport=57514 | protocol=6 | dir=in | name=pando media booster |
"{28C4824C-2384-487E-80C2-1C37288FEB82}" = lport=2177 | protocol=6 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{31293555-7663-4F3A-BB0D-557FF843D066}" = lport=3702 | protocol=17 | dir=in | app=d:\program files\microsoft visual studio 12.0\common7\ide\devenv.exe |
"{385B030E-7F53-4576-92E2-31A26339A07D}" = rport=10243 | protocol=6 | dir=out | app=system |
"{4AEFB579-85B6-4A8E-9088-375A32AA1800}" = rport=138 | protocol=17 | dir=out | app=system |
"{577E17AE-FAF2-4A56-8A28-D4D146B86975}" = rport=137 | protocol=17 | dir=out | app=system |
"{59AE0687-D369-4BE2-BDB3-A4A6294FBCD1}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{62BF2196-CE7F-4E21-A9E7-4D1251764521}" = lport=6004 | protocol=17 | dir=in | app=c:\program files\microsoft office\office14\outlook.exe |
"{7670A03C-BB43-40F5-BBCC-78E439D5B635}" = lport=57514 | protocol=6 | dir=in | name=pando media booster |
"{841AF7FA-65FA-46D3-BEA1-B4152B21019F}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{9937A804-B9E9-48D6-886A-C3E4D584DB0F}" = rport=445 | protocol=6 | dir=out | app=system |
"{A7D28E7E-A59A-423D-A2E0-A1320F51A7F6}" = lport=139 | protocol=6 | dir=in | app=system |
"{AC58D6ED-53B2-4648-8F77-20AA4AF7E855}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
"{B54ACB27-013C-43D0-8E00-0A3B842D9127}" = lport=2869 | protocol=6 | dir=in | app=system |
"{BFA27314-962A-4DF3-B4B7-2E0FF22B774A}" = rport=2177 | protocol=6 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{C3C9C48B-DA57-4009-8B57-C39D233A1108}" = lport=137 | protocol=17 | dir=in | app=system |
"{C85E50E8-69B7-455A-A56F-ECF046BE26FA}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{C9CE4B8D-237D-4689-9DAE-3228EA0D53F3}" = lport=10243 | protocol=6 | dir=in | app=system |
"{D34C8B9E-6519-46BF-BAA8-E061C56446CE}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | [email protected],-28539 |
"{E02709C6-C413-4111-8C90-ABB6D581F082}" = lport=445 | protocol=6 | dir=in | app=system |
"{E9A06E2A-BBF6-4C0B-98B2-618BE61AA493}" = lport=57514 | protocol=17 | dir=in | name=pando media booster |
"{EC976B81-55F3-43BE-9DBE-3182AD7992FB}" = lport=5353 | protocol=17 | dir=in | app=c:\program files\google\chrome\application\chrome.exe |
"{EFD514AC-F213-4A13-8BFE-2556C065714F}" = lport=138 | protocol=17 | dir=in | app=system |
========== Vista Active Application Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{007671F3-F725-4697-A731-4E664C53DE2D}" = protocol=17 | dir=in | app=d:\steam\steamapps\common\warframe\tools\launcher.exe |
"{00BF05DF-A43A-4D8B-8669-2F61CC2B1497}" = protocol=17 | dir=in | app=c:\program files\maxthon\bin\mxup.exe |
"{02E1207B-8E9F-4BFA-B8FE-EB9B61CB8D31}" = protocol=17 | dir=in | app=d:\steam\steamapps\common\hacker evolution duality\hacker evolution duality.exe |
"{042ADEC9-C0B0-4F5F-BF70-793D1F196222}" = protocol=6 | dir=in | app=c:\program files\avg\avg2014\avgmfapx.exe |
"{08C8CACC-6DE5-4C78-9E22-6BCDE3A5E2F8}" = protocol=6 | dir=in | app=c:\program files\fiddler2\fiddler.exe |
"{0A6AA087-9DFA-4D03-9506-7EADA40F4C17}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{0B97ADB6-0B3E-4A3E-9861-8B41527693EF}" = protocol=6 | dir=in | app=c:\program files\microsoft office\office14\groove.exe |
"{0BA624ED-5934-4384-A83F-C54835EDE912}" = protocol=6 | dir=in | app=d:\steam\steamapps\common\race 07\config.exe |
"{0BF4EF30-4216-4C40-98A0-A5992181575D}" = protocol=6 | dir=in | app=c:\users\intel\downloads\utorrent.exe |
"{14B153B8-37B7-4B83-BA2F-E771391BD8B5}" = protocol=17 | dir=in | app=c:\program files\avg\avg2014\avgnsx.exe |
"{16826002-4172-41EC-BEBF-C91147F0461D}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{1C329602-B707-4A4C-8FC7-73ABA8BBA91F}" = protocol=17 | dir=in | app=c:\program files\raptr\raptr.exe |
"{1CF4B103-7CC7-481E-8DB8-7A5972FA1350}" = protocol=6 | dir=in | app=d:\steam\steamapps\common\warframe\tools\launcher.exe |
"{1F4B9F3A-5A57-4C16-B3B0-0A801A35ED6A}" = protocol=17 | dir=in | app=d:\program files\origin games\plants vs. zombies\plantsvszombies.exe |
"{219608F3-5CAB-460B-8FBD-26771FD5A00E}" = protocol=6 | dir=in | app=c:\program files\microsoft office\office14\onenote.exe |
"{265EF355-C201-4176-9556-3D4336AC2AB4}" = protocol=6 | dir=in | app=c:\program files\pando networks\media booster\pmb.exe |
"{2B26EEF8-55BF-49B3-B19C-FCA3BD2C3567}" = protocol=6 | dir=in | app=c:\program files\raptr\raptr_im.exe |
"{2C3F6553-890B-4356-A36F-1872497AC125}" = protocol=6 | dir=in | app=c:\program files\teamviewer\version9\teamviewer.exe |
"{2F81929D-BEEA-472B-BE8F-A18BFA03C40D}" = protocol=6 | dir=in | app=d:\steam\steamapps\common\half-life\hl.exe |
"{325D9A48-70BD-4AFA-A520-7C3B69CF4D41}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{326BD9E5-ABAD-498A-9F70-9C5B42F1EC64}" = protocol=17 | dir=in | app=c:\users\intel\downloads\utorrent.exe |
"{328C9512-5174-4838-8C59-770DC53CFE4B}" = protocol=6 | dir=in | app=d:\steam\steam.exe |
"{339DB28B-1213-45CF-89F7-53B4807329DE}" = protocol=6 | dir=in | app=d:\steam\steamapps\common\race 07\steamexpansionapp.exe |
"{3419D33E-507A-416C-8B42-EF95FFA9D1A9}" = protocol=17 | dir=in | app=c:\program files\raptr\raptr_im.exe |
"{35571A25-DA12-429F-9536-50B6CFF4DA15}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{394FF010-4166-4500-969B-95A0477BB7EC}" = protocol=17 | dir=in | app=c:\program files\pando networks\media booster\pmb.exe |
"{39887DAD-5E5B-4D9E-9E82-4E84AFEA889B}" = protocol=17 | dir=in | app=c:\program files\avg\avg2014\avgdiagex.exe |
"{39AB2374-06DC-4686-863C-DE39F785C5C1}" = protocol=6 | dir=out | app=system |
"{39B115BC-D004-4A99-BF7E-4CB060B71B12}" = dir=in | app=c:\program files\softether vpn client\vpncmgr.exe |
"{4184B496-0133-4FEB-B74D-7D82A1DEB6D3}" = protocol=17 | dir=in | app=c:\windows\system32\pnkbstra.exe |
"{44CA05B8-8A1A-416B-89F5-7F1954047E10}" = dir=in | app=c:\program files\hp\hp deskjet 1050 j410 series\bin\usbsetup.exe |
"{46D656C3-96D0-449F-8529-0F52BD98B164}" = protocol=6 | dir=in | app=d:\steam\steamapps\common\hacker evolution duality\hacker evolution duality.exe |
"{4C196EAD-9F8E-4AEE-AA3E-577323931CF3}" = protocol=1 | dir=out | [email protected],-28544 |
"{4DB23097-B907-470F-9ABA-7A1EE9F1C8FD}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{509CA4AE-E2EA-4557-A99A-101E2CC1133C}" = protocol=17 | dir=in | app=c:\program files\teamviewer\version9\teamviewer_service.exe |
"{5118A33A-66B2-4435-8B0E-42BB8537270F}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{518E0339-800A-4B11-B30B-C64D4609BC1F}" = dir=in | app=c:\program files\pando networks\media booster\pmb.exe |
"{6220D068-04BD-4CDB-8259-832A48C9C95E}" = protocol=6 | dir=in | app=c:\users\intel\appdata\roaming\utorrent\utorrent.exe |
"{682D7B02-0D63-4A78-98FB-A4B5C9D8825B}" = protocol=58 | dir=out | [email protected],-28546 |
"{709A271D-34FE-4565-B546-B9AF5912B58D}" = protocol=17 | dir=in | app=c:\program files\teamviewer\version9\teamviewer.exe |
"{71AA3F3E-B798-4B0D-BEDF-9F0F2430F310}" = protocol=17 | dir=in | app=c:\program files\maxthon\bin\maxthon.exe |
"{7444243E-2A25-41C5-A649-27415BF3ABD0}" = protocol=17 | dir=in | app=c:\users\intel\desktop\ventea.eu\ventea.exe |
"{748B00E2-7DFA-49B1-915D-8555025DC233}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{77440ADC-9C6B-4AE1-BBFD-FADCD134C5BF}" = protocol=17 | dir=in | app=c:\program files\maxthon\bin\maxthon.exe |
"{7B57275E-1FE7-4B2E-BDF5-2270AD4042CD}" = dir=in | app=c:\program files\softether vpn client\vpncmd.exe |
"{7BFEAE75-950B-4AC7-A4F6-6E22B39A08BF}" = protocol=17 | dir=in | app=c:\program files\avg\avg2014\avgemcx.exe |
"{7F33DFE3-1037-48FE-9D29-AB5B3927E90B}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{8A821081-037A-430E-8DBA-FA28BAD5919B}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{8AE7834E-6E24-4499-8F4A-9621C8D2D5FF}" = protocol=17 | dir=in | app=c:\program files\microsoft office\office14\groove.exe |
"{8BD2205A-323E-4E5A-8718-47C4D2EA1A5D}" = protocol=17 | dir=in | app=c:\windows\system32\pnkbstrb.exe |
"{8D7A5933-600C-48B5-BE68-9A8AF0DC00E1}" = dir=in | name=block internet in |
"{92209760-0609-46F1-80AA-52656AFFB5CD}" = dir=in | app=c:\program files\softether vpn client\vpnclient_x64.exe |
"{92A77332-A377-423F-88CA-6B5BF9FBAD31}" = protocol=6 | dir=in | app=c:\windows\system32\pnkbstrb.exe |
"{95459575-CD00-4C38-A603-163884D335C9}" = protocol=17 | dir=in | app=d:\steam\steamapps\common\race 07\steamproxy.exe |
"{965C68C1-51CF-4917-AE8D-48D0AB77DD7B}" = protocol=6 | dir=in | app=d:\program files\origin games\plants vs. zombies\plantsvszombies.exe |
"{9714DD10-7AAE-4472-894C-E71F0B732779}" = protocol=6 | dir=in | app=c:\program files\avg\avg2014\avgemcx.exe |
"{9A198619-1AB9-4DB2-BC25-B9315321C22F}" = protocol=17 | dir=in | app=c:\program files\pando networks\media booster\pmb.exe |
"{9BD63DF6-271F-432C-BD41-E9FFD9BD53C7}" = protocol=17 | dir=in | app=c:\program files\steam\steam.exe |
"{9CB1078A-3F1D-44EF-BEC5-740EF8BC091E}" = protocol=6 | dir=in | app=c:\windows\system32\pnkbstra.exe |
"{9DE34677-C2F5-4890-99C7-E175CC49FAD5}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{9E673C88-1418-4A90-BBEC-58F876D4D256}" = protocol=6 | dir=in | app=d:\steam\bin\steamwebhelper.exe |
"{A0E43D74-1FDF-4BA2-86F0-41577E1D821B}" = protocol=58 | dir=in | [email protected],-28545 |
"{A28A585D-D5DB-4E9A-AC27-776E7B57F8B9}" = protocol=17 | dir=in | app=d:\steam\steamapps\common\race 07\steamexpansionapp.exe |
"{A48DF6AA-6C21-4C92-8A02-884DF0FEB4AE}" = protocol=1 | dir=in | [email protected],-28543 |
"{A5E9FE5E-20A0-4FA4-8E24-A53F953581DE}" = protocol=17 | dir=in | app=c:\users\intel\appdata\roaming\utorrent\utorrent.exe |
"{A9C159BC-7BA7-422E-96F3-B20DA2CE2AEB}" = protocol=6 | dir=in | app=c:\program files\maxthon\bin\mxup.exe |
"{AA7425A1-3678-4F05-8F08-761A3B595546}" = protocol=6 | dir=in | app=c:\program files\steam\steam.exe |
"{AB1A8FA4-5363-49BB-A419-D54DDDFBCB10}" = dir=in | app=c:\program files\softether vpn client\vpncmd_x64.exe |
"{B0BB8740-3342-4BCA-B78B-13EA21D7E0A6}" = protocol=6 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{B185C02C-5DB7-4A9E-818F-C659E9D08E4C}" = protocol=6 | dir=in | app=c:\program files\maxthon\bin\maxthon.exe |
"{B27C3107-DF5A-400F-84DA-2613AE53693E}" = protocol=6 | dir=in | app=c:\program files\maxthon\bin\maxthon.exe |
"{B79C7CAC-F1EC-424A-A50A-647B0A9AE63A}" = protocol=6 | dir=in | app=d:\steam\steamapps\common\race 07\steamproxy.exe |
"{B8FD41A5-C577-4EE3-9EE9-C7D1C17BEC66}" = protocol=6 | dir=in | app=c:\program files\teamviewer\version9\teamviewer_service.exe |
"{BDDA2DE0-23E6-4493-98C2-71731CC847ED}" = protocol=6 | dir=in | app=c:\program files\raptr\raptr.exe |
"{BF830E23-23E9-49B1-B52E-10654E19092F}" = protocol=6 | dir=in | app=c:\users\intel\desktop\ventea.eu\ventea.exe |
"{C14770E5-FCB1-4A87-828F-02A6EC39D906}" = protocol=6 | dir=in | app=d:\steam\steamapps\common\counter-strike global offensive\csgo.exe |
"{C9E9D8BB-0B8B-4DF9-A068-029D1EDCF70E}" = protocol=6 | dir=in | app=c:\program files\avg\avg2014\avgdiagex.exe |
"{CCB7CDA1-8CF5-411E-BB14-88AB66702008}" = protocol=17 | dir=in | app=d:\steam\steamapps\common\race 07\config.exe |
"{CE8D07EA-DB02-4531-9353-BAD315EFB091}" = protocol=17 | dir=in | app=d:\steam\steamapps\common\counter-strike global offensive\csgo.exe |
"{D62BBF76-71AB-422F-92BD-51D39E8C45C3}" = protocol=17 | dir=in | app=d:\steam\bin\steamwebhelper.exe |
"{D72A1AE1-26C4-4EB0-BDB1-4B792FD4F4D2}" = protocol=17 | dir=in | app=d:\steam\steam.exe |
"{DA7299C4-6584-4A73-A87B-987FFF9706B6}" = protocol=17 | dir=in | app=d:\steam\steamapps\common\half-life\hl.exe |
"{DB838150-B8F2-41F6-A8FF-E3E2847B47D5}" = dir=in | app=c:\program files\softether vpn client\vpncmgr_x64.exe |
"{DCDE8F86-53B4-44E6-BF26-04064656D03A}" = protocol=17 | dir=in | app=c:\program files\maxthon\bin\mxup.exe |
"{DFF82595-169D-476C-9ED3-18A59EA30EF6}" = protocol=6 | dir=in | app=c:\program files\maxthon\bin\mxup.exe |
"{E4589BC6-DE5E-48CE-BAED-DC33D0AACCE6}" = protocol=6 | dir=in | app=d:\program files\origin games\battlefield 3\bf3.exe |
"{E52F1140-027F-44DE-96D0-44BCA8D81235}" = protocol=6 | dir=in | app=c:\program files\pando networks\media booster\pmb.exe |
"{E89FDB1E-637A-4614-B85D-385900715952}" = protocol=17 | dir=in | app=d:\program files\origin games\battlefield 3\bf3.exe |
"{F6DDAE79-E454-4D99-8BD4-7A8150A8DB0C}" = protocol=17 | dir=in | app=c:\program files\microsoft office\office14\onenote.exe |
"{F88163F9-A5B6-4FF7-9357-C9CC8D70BC5D}" = protocol=6 | dir=in | app=c:\program files\avg\avg2014\avgnsx.exe |
"{FCE9E9C3-9919-479F-9E82-F85F20E25951}" = protocol=17 | dir=in | app=c:\program files\avg\avg2014\avgmfapx.exe |
"{FD6CD158-FB56-473D-962D-FB9AD7119571}" = dir=in | app=c:\program files\softether vpn client\vpnclient.exe |
"{FE5C25D5-8A78-4D89-94D3-3867D6FDBEFB}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"TCP Query User{1DC152E1-3158-4253-A0A9-C941A7EFD35E}D:\cs v43\hl.exe" = protocol=6 | dir=in | app=d:\cs v43\hl.exe |
"TCP Query User{29763B65-F70F-4985-9B98-09721A2BE85E}D:\black ops2\call of duty - black ops\blackopsmp.exe" = protocol=6 | dir=in | app=d:\black ops2\call of duty - black ops\blackopsmp.exe |
"TCP Query User{51BD76D4-E647-446D-A4C6-D79A0C0E5F78}C:\users\intel\desktop\legitberg.exe" = protocol=6 | dir=in | app=c:\users\intel\desktop\legitberg.exe |
"TCP Query User{612A0C53-0847-4EF4-94EC-29B2F7A69EB7}D:\black ops2\call of duty - black ops\blackopszm.exe" = protocol=6 | dir=in | app=d:\black ops2\call of duty - black ops\blackopszm.exe |
"TCP Query User{807A021A-D4EE-4E2B-A252-DC184374AF6E}C:\users\intel\appdata\roaming\spotify\spotify.exe" = protocol=6 | dir=in | app=c:\users\intel\appdata\roaming\spotify\spotify.exe |
"TCP Query User{82F3EC46-A99E-42C5-BC24-24654CB845FD}D:\cs16\hl.exe" = protocol=6 | dir=in | app=d:\cs16\hl.exe |
"TCP Query User{8D94EEB4-8889-43AA-9A5B-A0646C3D4991}C:\users\intel\appdata\roaming\spotify\spotify.exe" = protocol=6 | dir=in | app=c:\users\intel\appdata\roaming\spotify\spotify.exe |
"TCP Query User{976232AC-F95E-4EBA-9473-E9F7C4403FE5}C:\
"TCP Query User{98CBEEC8-8A2A-451E-AEE7-4D6B4508586A}D:\black ops2\call of duty - black ops\blackops.exe" = protocol=6 | dir=in | app=d:\black ops2\call of duty - black ops\blackops.exe |
"TCP Query User{99D313F1-15FC-4540-9E8E-E3D93E704B32}C:\users\intel\desktop\
"TCP Query User{A2963395-1E07-4E54-970F-CEE000E97D9C}D:\cs 1.6\hl.exe" = protocol=6 | dir=in | app=d:\cs 1.6\hl.exe |
"TCP Query User{C7C95A52-D75D-4634-A2D9-7E1C6EA5F813}C:\users\intel\desktop\ventea.eu\ventea.exe" = protocol=6 | dir=in | app=c:\users\intel\desktop\ventea.eu\ventea.exe |
"TCP Query User{F5F90AE8-F696-4E30-83E6-6EB98701FFC4}E:\ida pro advanced edition\idaq.exe" = protocol=6 | dir=in | app=e:\ida pro advanced edition\idaq.exe |
"UDP Query User{18C21D60-09EA-4F11-B402-119E167E07DB}D:\black ops2\call of duty - black ops\blackops.exe" = protocol=17 | dir=in | app=d:\black ops2\call of duty - black ops\blackops.exe |
"UDP Query User{47A05320-EE10-4E3A-A56B-C3764B067B16}D:\cs16\hl.exe" = protocol=17 | dir=in | app=d:\cs16\hl.exe |
"UDP Query User{60B81940-998B-4055-9E32-54AEDF9D111E}C:\users\intel\appdata\roaming\spotify\spotify.exe" = protocol=17 | dir=in | app=c:\users\intel\appdata\roaming\spotify\spotify.exe |
"UDP Query User{65615BFF-2314-49AA-AA0C-162DE2F3BC94}D:\black ops2\call of duty - black ops\blackopszm.exe" = protocol=17 | dir=in | app=d:\black ops2\call of duty - black ops\blackopszm.exe |
"UDP Query User{6DA49658-9336-44C9-8481-BF81DDD7903B}C:\
"UDP Query User{8B96DE85-A137-4DCF-AEF8-8C669A91BD93}C:\users\intel\desktop\legitberg.exe" = protocol=17 | dir=in | app=c:\users\intel\desktop\legitberg.exe |
"UDP Query User{A77086B6-CB8D-48C3-A6D3-92D39C8FCA4A}C:\users\intel\desktop\
"UDP Query User{B162566E-7E7B-47E7-A4A2-3CE0BE317182}D:\black ops2\call of duty - black ops\blackopsmp.exe" = protocol=17 | dir=in | app=d:\black ops2\call of duty - black ops\blackopsmp.exe |
"UDP Query User{B82BD4D3-A444-460C-BC2A-D42263D6FDE3}E:\ida pro advanced edition\idaq.exe" = protocol=17 | dir=in | app=e:\ida pro advanced edition\idaq.exe |
"UDP Query User{CA84E233-9BC9-465F-93F4-D813426FA9EA}C:\users\intel\desktop\ventea.eu\ventea.exe" = protocol=17 | dir=in | app=c:\users\intel\desktop\ventea.eu\ventea.exe |
"UDP Query User{D22B848A-44EA-45D1-BD48-E669CF9257B2}D:\cs 1.6\hl.exe" = protocol=17 | dir=in | app=d:\cs 1.6\hl.exe |
"UDP Query User{D840037C-0D73-4D3E-8E60-2C8E737DBCF3}D:\cs v43\hl.exe" = protocol=17 | dir=in | app=d:\cs v43\hl.exe |
"UDP Query User{E7FE45AF-2B32-45F8-9B9B-0DA9E69F7224}C:\users\intel\appdata\roaming\spotify\spotify.exe" = protocol=17 | dir=in | app=c:\users\intel\appdata\roaming\spotify\spotify.exe |
========== HKEY_LOCAL_MACHINE Uninstall List ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{0099B899-7894-3B1D-9FF3-5992F84E631F}" = Microsoft LightSwitch for Visual Studio 2013 Core
"{0122EDA0-52FC-4EC2-9A31-A2A757A7D40E}" = BF3 Settings Editor
"{033E378E-6AD3-4AD5-BDEB-CBD69B31046C}" = Microsoft_VC90_ATL_x86
"{0398BFBC-991B-3275-9463-D2BF91B3C80B}" = Microsoft Help Viewer 2.1
"{04DD7AF4-A6D3-4E30-9BB9-3B3670719234}" = Microsoft SQL Server 2012 T-SQL Language Service
"{0610DFB0-CCEA-6EC0-E3C3-A0160AD7FD98}" = Windows Runtime Intellisense Content - en-us
"{06EEE072-B561-38E5-85D9-485ABCBE8342}" = Visual F# 3.1 SDK
"{070C38AC-05CE-43DF-9A20-141332F6AB2B}" = Microsoft System CLR Types for SQL Server 2012
"{08AEF86A-1956-4846-B906-B01350E96E30}" = Entity Framework Tools for Visual Studio 2013
"{08D2E121-7F6A-43EB-97FD-629B44903403}" = Microsoft_VC90_CRT_x86
"{0A17C91C-A455-3E89-B8B7-44E192F79635}" = Microsoft Visual Studio 2010 Tools for Office Runtime (x86)
"{0B5E43C7-965D-4AF4-A33E-5FA35B6660C8}" = Behaviors SDK (XAML) for Visual Studio
"{0B698858-DAB0-4F9E-A10A-125B274EDA06}" = Microsoft Visual C++ x64 Libraries
"{0C03A66F-1FF0-45F9-8D67-0D806EBFFBA1}" = Blend for Visual Studio SDK for Silverlight 5
"{0D2DBE8A-43D0-7830-7AE7-CA6C99A832E7}" = Adobe Community Help
"{0D7FCBFB-F478-4D32-901C-83F0BF5A3501}" = Microsoft SQL Server Data Tools - enu (12.0.30919.1)
"{0F3647F8-E51D-4FCC-8862-9A8D0C5ACF25}" = Microsoft_VC80_ATL_x86
"{0F7A6FD0-87F5-FB5D-973C-CF604DE1BC6B}" = CCC Help Polish
"{13A4EE12-23EA-3371-91EE-EFB36DDFFF3E}" = Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005
"{152A537F-45E9-4B15-8847-2E3E5BE61859}" = Intel® Trusted Connect Service Client
"{15FEDA5F-141C-4127-8D7E-B962D1742728}" = Adobe Photoshop CS5
"{1690CE56-2231-4E59-9006-A0876D949EA8}" = Tools for .Net 3.5
"{16A901BB-CD8E-3B48-9932-5927FB13508D}" = Microsoft SharePoint 2013 Developer Tools for Visual Studio
"{19A5926D-66E1-46FC-854D-163AA10A52D3}" = Microsoft .NET Framework 4.5.1 SDK
"{1A9BE3D6-4D53-2C9D-B77D-562D85936B91}" = CCC Help Norwegian
"{1B876496-B3A2-4D22-9B12-B608A3FD4B8B}" = Microsoft SQL Server 2012 Data-Tier App Framework
"{210DFA65-F805-1A2B-4F83-8E27279AE385}" = Catalyst Control Center Graphics Previews Common
"{2386192E-D6DB-4AD2-9564-65586A0AE53E}" = Dotfuscator and Analytics Community Edition
"{29822CAD-C76A-0BEE-55F5-AAA524DA814F}" = CCC Help Greek
"{2F7DBBE6-8EBC-495C-9041-46A772F4E311}" = Microsoft SQL Server 2012 Management Objects
"{30A5B3C9-2084-4063-A32A-628A98DE512B}_is1" = Lightshot-5.1.2.5
"{35C1D9D6-87C0-46A3-B1B4-EDBCC063221C}" = Prerequisites for SSDT
"{3611CA6C-5FCA-4900-A329-6A118123CCFC}" = Bing Bar
"{37464E70-B0B9-9DFF-649A-CBE169BAD657}" = Windows Software Development Kit for Windows Store Apps
"{37E53780-3944-4A6A-842F-727128E8616E}" = Blend for Visual Studio SDK for .NET 4.5
"{3A1293DF-7D09-BB0F-9576-EC47EE4A9362}" = CCC Help Italian
"{3A9FC03D-C685-4831-94CF-4EDFD3749497}" = Microsoft SQL Server Compact 3.5 SP2 ENU
"{3D6AD258-61EA-35F5-812C-B7A02152996E}" = Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.60610
"{3E456233-1EA5-42ED-8556-0481BA728B41}" = Microsoft NuGet - Visual Studio 2013
"{3EA16E23-14D2-466A-8268-D7CD40DC46B6}" = Open XML SDK 2.5 for Microsoft Office
"{3FBFCF2C-392A-4632-9442-14C305B44D5E}" = AzureTools.Notifications
"{430912D2-51D8-1CB9-3B38-79D570F034DC}" = AMD Accelerated Video Transcoding
"{4345E9A5-1300-4710-919D-077BA7E6B3DA}" = Windows Azure Mobile Services SDK
"{46910786-E4AC-41E4-A4A0-C086EA85242D}" = WCF Data Services 5.6.0 Runtime
"{46F8CF66-AB83-38A7-99B2-A5BE507EE472}" = Microsoft Visual C++ 2010 Express - ENU
"{47416F0B-6589-591E-C6F8-4235D2230B14}" = Catalyst Control Center InstallProxy
"{47C39E4A-28F2-33B1-B9B7-97F24E52D917}" = Microsoft Help Viewer 1.0
"{4903D172-DCCB-392F-93A3-34CA9D47FE3D}" = Microsoft .NET Framework 4.5.1
"{492498A3-F88C-FE2F-755C-9B1B91724CA5}" = LocalESPC Dev12
"{492FCC0B-45E1-383A-A2CF-9E7F305AC200}" = Microsoft Visual Studio 2013 Team Explorer Language Pack - ENU
"{4AE57014-05C4-4864-A13D-86517A7E1BA4}" = Microsoft .NET Framework 4.5 SDK
"{5285F904-1577-5F06-FF04-4FA4EBA52966}" = AMD Media Foundation Decoders
"{53DBDBE5-D55D-40C5-99CF-1A06D33FC440}" = Workflow Manager Client 1.0
"{5411060C-8F8C-393D-8D3B-26AF2C92FABB}" = Microsoft Visual Studio 2013 Shell (Minimum)
"{544ACD54-9FAA-4A60-A1E7-B2EC3AA75D24}" = Microsoft SQL Server 2012 Native Client
"{5481F163-B9E5-30A8-8441-4DBBB87D6AA2}" = Microsoft Visual C++ 2013 Microsoft Foundation Class Libraries
"{550760A2-DC4A-CD2B-3C1B-01E0F9F1279E}" = Windows App Certification Kit Native Components
"{56AD3004-0B49-967F-F682-B05650B61A78}" = Windows Software Development Kit for Windows Store Apps DirectX x86 Remote
"{56E962F0-4FB0-3C67-88DB-9EAA6EEFC493}" = Microsoft .NET Framework 4.5 Multi-Targeting Pack
"{5AB1493D-D1AB-3697-9B58-55EF48E565ED}" = Microsoft Office 2013 Developer Tools for Microsoft Visual Studio (x86)
"{5C90D8CF-F12A-41C6-9007-3B651A1F0D78}" = HP Deskjet 1050 J410 series Help
"{5CD1B40A-969C-4D7A-B5C2-DAFCB82C53CD}" = Microsoft Web Deploy 3.5
"{5D5CFAD6-9F93-8C63-3EB0-B6A0D3D4BD12}" = Windows Software Development Kit
"{5D8DD6A8-C4D7-4554-93F9-F1CC28C72600}" = WCF RIA Services V1.0 SP2
"{5DE67937-45D5-45E4-923C-0B7F7EC929A7}" = League of Legends
"{5E6536C2-E79A-49CF-83EA-817AD81F9FC8}" = Plants vs. Zombies™
"{5E83AB6E-2284-4468-BF97-A451904F186C}" = HP Deskjet 1050 J410 series Product Improvement Study
"{5EF1EBC5-4A40-4D1C-B02E-0C54BC93FD06}" = Microsoft SQL Server 2012 Command Line Utilities
"{625FC7D1-656D-1BEC-F86F-3EACAFDAA8FE}" = CCC Help English
"{6321F2D4-366B-3AE4-877A-8E539EC3331A}" = Visual F# 3.1 VS
"{635FED5B-2C6D-49BE-87E6-7A6FCD22BC5A}" = Microsoft_VC90_MFC_x86
"{64297226-2B81-4588-89BD-76440BC0BCFC}" = Microsoft ASP.NET Web Pages 2 - Visual Studio 2013 - ENU
"{65153EA5-8B6E-43B6-857B-C6E4FC25798A}" = Intel® Management Engine Components
"{6781FF9B-E87D-4A03-9373-A55A288B83FA}" = Microsoft SQL Server Data Tools Build Utilities - enu (12.0.30919.1)
"{6A0C6700-EA93-372C-8871-DCCF13D160A4}" = Microsoft .NET Framework 4.5.1 Multi-Targeting Pack
"{6AB13C21-C3EC-46E1-8009-6FD5EBEE515B}" = Microsoft Advertising SDK for Windows 8.1 - ENU
"{6AEFCA01-8DF1-11E1-A17B-F04DA23A5C58}" = Vegas Pro 11.0
"{6B4D9BCF-6CA1-4843-96B5-3421E1E2D6E9}" = Microsoft Visual Studio 2013 Performance Collection Tools - ENU
"{6C06FEE9-C64E-453F-B8A5-D9E9B79ED040}" = Microsoft Visual C++ 2013 32bit Compilers - ENU Resources
"{6dff50d0-3bc3-4a92-b724-bf6d6a99de4f}" = Microsoft Visual Studio Professional 2013
"{6EC29D9E-F229-4B07-AF22-7018AD29DAF0}" = Software Lag Switch
"{6EE9E2DF-2CD7-4952-A649-95DEA8697BD8}" = Microsoft Exchange Web Services Managed API 2.0
"{6F1C00D2-25C2-4CBA-8126-AE9A6E2E9CD5}" = HP Update
"{70CB6C40-8DF1-11E1-BDCF-F04DA23A5C58}" = MSVCRT Redists
"{72076159-B94A-42AE-A64C-CA3855E9CB28}" = Windows Azure Tools for LightSwitch for Visual Studio 2013 - v2.1
"{721C380F-E296-4118-9ACE-589E8EF86208}" = Microsoft Visual Studio 2013 Profiling Tools
"{731E4875-0F23-6005-7E18-C8FA23C8515A}" = AMD Drag and Drop Transcoding
"{7351EEF8-9D6C-5F46-5A19-F2C7456CE132}" = CCC Help German
"{759E97EC-9E3D-4F55-C321-7819C93F0887}" = ccc-utility
"{76285C16-411A-488A-BCE3-C83CB933D8CF}" = Battlefield 3™
"{76FF502F-6811-F75B-2FEB-0B69BB584031}" = Windows App Certification Kit x86
"{773AC1E4-5F27-4DF6-A932-7FDDE35C069D}" = Microsoft SQL Server Compact 4.0 SP1 ENU
"{794D38B6-C8B2-4DFC-BF1B-122233A336F3}" = Microsoft ASP.NET Web Frameworks and Tools - Visual Studio 2013 - ENU
"{7A3C7E05-EE37-47D6-99E1-2EB05A3DA3F7}" = Skype™ 6.14
"{7F172E34-4107-8964-6AEA-5051FFD265FF}" = CCC Help Portuguese
"{81DB4C1C-8B59-42D4-B94E-A9168F2FE1D7}" = Workflow Manager Tools 1.0 for Visual Studio
"{82DAD82D-0139-3F7A-A22F-67A694F9CAA4}" = Microsoft LightSwitch for Visual Studio 2013 CoreRes - ENU
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{84D88F57-4130-30FE-A0B6-1E04428FE1F6}" = Microsoft Visual C++ 2013 Core Libraries
"{86095E92-1959-8364-920E-82E81F64F8FB}" = Catalyst Control Center
"{8833FFB6-5B0C-4764-81AA-06DFEED9A476}" = Realtek Ethernet Controller Driver
"{89D05F35-933A-89C0-B935-C92BEE4229BD}" = CCC Help French
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{90140000-0011-0000-0000-0000000FF1CE}" = Microsoft Office Professional Plus 2010
"{90140000-0015-0409-0000-0000000FF1CE}" = Microsoft Office Access MUI (English) 2010
"{90140000-0016-0409-0000-0000000FF1CE}" = Microsoft Office Excel MUI (English) 2010
"{90140000-0018-0409-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (English) 2010
"{90140000-0019-0409-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (English) 2010
"{90140000-001A-0409-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (English) 2010
"{90140000-001B-0409-0000-0000000FF1CE}" = Microsoft Office Word MUI (English) 2010
"{90140000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2010
"{90140000-001F-040C-0000-0000000FF1CE}" = Microsoft Office Proof (French) 2010
"{90140000-001F-0C0A-0000-0000000FF1CE}" = Microsoft Office Proof (Spanish) 2010
"{90140000-002C-0409-0000-0000000FF1CE}" = Microsoft Office Proofing (English) 2010
"{90140000-0044-0409-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (English) 2010
"{90140000-006E-0409-0000-0000000FF1CE}" = Microsoft Office Shared MUI (English) 2010
"{90140000-00A1-0409-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (English) 2010
"{90140000-00BA-0409-0000-0000000FF1CE}" = Microsoft Office Groove MUI (English) 2010
"{90140000-0115-0409-0000-0000000FF1CE}" = Microsoft Office Shared Setup Metadata MUI (English) 2010
"{90140000-0117-0409-0000-0000000FF1CE}" = Microsoft Office Access Setup Metadata MUI (English) 2010
"{9027FE9C-5488-30C3-AA42-7330D25BF92D}" = Microsoft Portable Library Multi-Targeting Pack
"{92D58719-BBC1-4CC3-A08B-56C9E884CC2C}" = Microsoft_VC80_CRT_x86
"{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033" = Microsoft .NET Framework 4.5.1
"{9347889B-C22A-3905-901F-C05D8F73C929}" = Build Tools Language Resources - x86
"{943F3FB1-3F9C-4FB7-A4E2-6D53617068C3}" = PreEmptive Analytics Visual Studio Components
"{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting
"{95150001-1163-0409-0000-0000000FF1CE}" = SharePoint Client Components
"{95716cce-fc71-413f-8ad5-56c2892d4b3a}" = Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610
"{959E4378-CCA1-E4E4-2425-793DA92E8D95}" = CCC Help Czech
"{96BB3C67-4EB4-9757-E0C2-C0D2FE9053B1}" = CCC Help Turkish
"{974F4B73-2017-E174-9070-3F58F01B341F}" = CCC Help Danish
"{97592A5E-6A50-38E0-885C-7334BA7A43D8}" = Microsoft SharePoint 2013 Developer Tools for Visual Studio 2012 Nuget Package
"{976C3D92-0DEC-37A6-A870-FF4FC18CD029}" = Microsoft .NET Framework 4.5.1 RC Multi-Targeting Pack for Windows Store Apps
"{979C7495-FB42-484E-92EA-7F2A59DD7718}" = Microsoft ASP.NET MVC 4 - Visual Studio 2013 - ENU
"{980A182F-E0A2-4A40-94C1-AE0C1235902E}" = Pando Media Booster
"{984022F2-9BCA-A41D-6A38-1AE658F01415}" = Windows Software Development Kit
"{985EF141-95DD-3934-8F23-7C2C4C61E5F7}" = Microsoft Visual Studio 2013 Shell (Minimum) Resources
"{98E20A18-3C29-86FA-50B4-918C2B34A082}" = CCC Help Hungarian
"{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}" = Visual Studio 2012 x86 Redistributables
"{996E8B9B-33D8-369A-9DBE-D2776451FB53}" = Microsoft Office 2013 Developer Tools for Microsoft Visual Studio (x86) - ENU Language Pack
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9B3A1C97-A361-463E-8817-444F9F88CDFE}" = Microsoft Expression Blend SDK for .NET 4
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{9C593464-7F2F-37B3-89F8-7E894E3B09EA}" = Microsoft Visual Studio Professional 2013
"{9E2E5EB3-DC6E-9277-E9DB-13175E7DDA39}" = CCC Help Dutch
"{9E673C3F-423B-458E-8EA4-9AE87C49AFC8}" = Microsoft LightSwitch for Visual Studio 2013 v4.0 Tools
"{9ED1634C-4E71-4992-A1BA-7C4BE6EE39E1}" = Blend for Visual Studio 2013 ENU resources
"{A1CB8286-CFB3-A985-D799-721A0F2A27F3}" = Windows Software Development Kit DirectX x86 Remote
"{A1D06677-1103-32DE-AA74-6EE44DCF7F81}" = Microsoft Visual C++ 2013 Extended Libraries
"{A223B446-EC3D-3031-828D-5188800AB782}" = Microsoft .NET Framework 4.5.1 RC Multi-Targeting Pack for Windows Store Apps (ENU)
"{A25FF1C0-80B6-4B8B-A551-DC525697A408}" = AMD APP SDK Runtime
"{A2BCA9F1-566C-4805-97D1-7FDC93386723}" = Adobe AIR
"{A2CCB3C1-3DF9-4E3E-8D3F-DDBBCDDB28B5}" = Microsoft C++ REST SDK for Visual Studio 2013
"{A2EAE643-8804-9420-5DBE-2752D6957964}" = AMD Catalyst Install Manager
"{A2F8F3F6-5AE8-4BE7-AE0E-9FA930C8EE90}" = AVG 2014
"{A3B8D9FB-CA7D-4487-8CA2-A6A2C8AD1077}" = Microsoft Visual C++ x86 Libraries
"{A47FD1BF-A815-4A76-BE65-53A15BD5D25D}" = Microsoft SQL Server System CLR Types
"{A6030DAD-1600-F767-C8DD-C722ADFE8FBC}" = Windows Software Development Kit DirectX x86 Remote
"{A78FE97A-C0C8-49CE-89D0-EDD524A17392}" = PDF Settings CS5
"{A8229A09-E570-412B-8D18-E78985673E34}" = Microsoft Visual C++ ARM Libraries
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{AAACC0A5-4382-04D0-C75E-0669C7B949B6}" = CCC Help Japanese
"{AC76BA86-7AD7-1045-7B44-AB0000000001}" = Adobe Reader XI (11.0.08) - Polish
"{ACEF4078-9B86-2455-E18D-34D52D37D9D5}" = CCC Help Chinese Standard
"{AE937DBA-FEFD-3BFE-9860-0591C0F91D61}" = Microsoft Visual Studio 2013 Shell (Minimum) Interop Assemblies
"{B1C38F27-D377-8C98-D98D-29B67C0B978D}" = LocalESPCui for en-us Dev12
"{B536762B-1047-4B51-8ECF-46D5686E5416}" = Microsoft ASP.NET Web Pages 2 Runtime
"{B55FB422-B803-11F5-5582-B3666EA1B9AC}" = Catalyst Control Center Localization All
"{B6A0A174-33E0-3D42-92EA-547D318CB149}" = Microsoft Visual Studio 2013 Devenv
"{B7E38540-E355-3503-AFD7-635B2F2F76E1}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4974
"{B8010864-15F8-613B-20EF-AC35B14B3E0D}" = CCC Help Russian
"{B86C786E-11A2-4CAB-BB2E-D7CD5D65D552}" = Microsoft LightSwitch v4.0 SDK
"{B8FFB7D6-6ABD-47C3-8BAD-86FF5D8F3EDC}" = IIS 8.0 Express
"{BCAF3D46-3BDA-441F-97B9-3878ACD0CD4F}_is1" = Half-Life 2 (Addon) DZ
"{BD63060C-F4C7-4E86-9C2A-4A102E7EE12C}" = Microsoft Web Developer Tools 2013 - Visual Studio 2013
"{BD72C04F-892F-48EE-A236-CC10891610D6}" = Windows Azure Shared Components for Microsoft Visual Studio 2013 - v1.0
"{BDAF08A3-35A8-369E-8379-03BB6B78FBCF}" = Microsoft Team Foundation Server 2013 Object Model (x86)
"{BF3E2194-F89B-44FB-A801-464BF787599F}" = WCF Data Services Tools for Microsoft Visual Studio 2013
"{C00453B2-27AD-4858-A20D-F44E39481C7D}" = Microsoft Report Viewer Add-On for Visual Studio 2013
"{C0C31BCC-56FB-42a7-8766-D29E1BD74C7C}" = Python 2.7.3
"{C111B73A-93EA-4A12-80E2-0460F11D431F}" = HP Deskjet 1050 J410 series Basic Device Software
"{C1342411-5A98-DE8A-5629-D0C518E1C280}" = CCC Help Finnish
"{C26C1495-8EBE-3F71-BDA1-7DE2010840D8}" = Microsoft Visual Studio 2013 Devenv Resources
"{C5A17590-8CBE-3581-965D-EF183BE07920}" = Microsoft Visual Studio Ultimate 2013 XAML UI Designer Core
"{C6640705-7479-4EE5-BC86-879F05F65E74}" = Google Drive
"{C9811F26-3EF6-449A-9736-BB79A125D894}" = AVG 2014
"{C9E7751E-88ED-36CF-B610-71A1D262E906}" = Team Explorer for Microsoft Visual Studio 2013
"{CCF298AF-9CE1-4B26-B251-486E98A34789}" = Windows 7 USB/DVD Download Tool
"{CDECCD37-EBCE-4AF8-8D1C-5DF13194FEA1}" = Microsoft Advertising Service Extension for Visual Studio
"{CDF1E1B0-0DBB-44CA-A174-64C5C0F50BE8}" = Node.js
"{CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE}" = Microsoft .NET Framework 4 Multi-Targeting Pack
"{D08A30AC-A663-4EA8-8D81-B98E17F19F1C}_is1" = ISO to USB
"{D08B4177-5160-6B66-8934-2F9012134D61}" = CCC Help Thai
"{D1A19B02-817E-4296-A45B-07853FD74D57}" = Microsoft_VC80_MFC_x86
"{D34A6029-FB1A-9EA8-A938-5393F82A3A00}" = CCC Help Korean
"{D3517C62-68A5-37CF-92F7-93C029A89681}" = Microsoft .NET Framework 4.5.1 Multi-Targeting Pack (ENU)
"{D42681AA-BC16-3C84-949E-45F05D2AA997}" = Microsoft Visual C++ 2013 Core Libraries
"{D574CE3E-0376-4BED-B609-5C2C2AD655ED}" = Microsoft LightSwitch for Visual Studio 2013 v4.0 ToolsRes - ENU
"{D69874BF-D864-4EB2-91C3-2EDD05A64F70}" = Windows Azure Mobile Services Tools for Visual Studio 2013 Preview - v1.0
"{D81DDEE2-4D5F-4C08-95C9-C5967FBFB7B1}" = Action!
"{D90E08B8-E7BB-4D29-8249-8670D4CC24BD}" = Oracle VM VirtualBox 4.3.12
"{D92BBB52-82FF-42ED-8A3C-4E062F944AB7}" = Microsoft_VC80_MFCLOC_x86
"{DA37746C-C25C-341C-AAF6-4C23A30C882A}" = Microsoft Team Foundation Server 2013 Object Model Language Pack (x86) - ENU
"{DB5600F1-DE83-46DE-B162-5FC4400EAF5B}" = Microsoft Visual C++ 2013 Compilers
"{DE3A9DC5-9A5D-6485-9662-347162C7E4CA}" = Adobe Media Player
"{DF15CD8F-9295-3AD9-B814-7A60184AA1CD}" = Microsoft SharePoint 2013 Developer Tools for Visual Studio ENU Language Pack
"{E1FBB3D4-ADB0-4949-B101-855DA061C735}" = Microsoft Silverlight 5 SDK
"{E2F0AF23-FE2F-4222-9A43-55E63CC41EF1}" = Catalyst Control Center - Branding
"{E3A09D13-4D40-3CF8-7D32-8BD55F8D1533}" = CCC Help Spanish
"{E5CAE8D2-9F9F-3BEA-AA0F-B5B40611C704}" = Microsoft Visual C++ 2013 x86 Debug Runtime - 12.0.21005
"{E6F3851E-CEEB-4ECB-A6FA-337C8F662E3D}" = Microsoft Visual C++ 2013 Compilers - ENU Resources
"{E7654811-38F9-4225-9688-827FDA716582}" = Microsoft SQL Server 2012 Transact-SQL ScriptDom
"{E7D4E834-93EB-351F-B8FB-82CDAE623003}" = Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.60610
"{E9627240-E930-11E0-8690-F04DA23A5C58}" = MSVCRT Redists
"{E9674444-9491-3961-873C-017D8912185E}" = Microsoft Visual Studio Professional 2013 - ENU
"{EA3C25C3-9770-4E35-97D6-AC0D4D49B671}" = ActivePerl 5.18.2 Build 1802
"{EB25848D-AADC-40D7-914E-CB2E25AB5E59}" = Microsoft ASP.NET MVC 4 Runtime
"{EB37C117-9C83-4696-A493-8AFBAC8F9FFC}" = JavaScript Tooling
"{EB514FFD-5FBA-3C53-94F8-3A2B96C5E7A8}" = Microsoft Visual Studio Ultimate 2013 XAML UI Designer enu Resources
"{EBC890A6-DE7C-44B4-AA03-119B6190D3E1}" = Blend for Visual Studio 2013
"{EDB13CB8-993C-4D6F-B2BD-7A5800DF15FC}" = Microsoft Visual Studio 2013 Performance Collection Tools
"{EE541DCE-3018-4A12-B0A3-7C55D62B3D01}" = Python Tools Redirection Template
"{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
"{F13F89CB-448B-49B0-BC63-4746499167C6}" = ActivePerl 5.16.3 Build 1603
"{F20914BB-FD5F-3A3A-8CDF-DF5ADEFD9451}" = Microsoft Portable Library Multi-Targeting Pack Language Pack - enu
"{F2C35491-9323-3AE7-6023-6B4128045153}" = CCC Help Swedish
"{F361FE04-789E-42F3-BBAB-E7B380AA5E06}" = Windows XP Targeting with C++
"{F8CFEB22-A2E7-3971-9EDA-4B11EDEFC185}" = Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005
"{F99F24BF-0B90-463E-9658-3FD2EFC3C992}" = Microsoft Identity Extensions
"{FB3A15FD-FC67-3A2F-892B-6890B0C56EA9}" = Build Tools - x86
"{FB83467F-D8EB-43E6-8B3D-860B045C1C52}" = Overwolf
"{FC66A32F-1A57-AC5C-4F12-DAC2F4CB77A0}" = CCC Help Chinese Traditional
"{FD51D6A8-D687-463D-85AE-BBF1B650CD99}" = Microsoft Visual Studio 2013 Preparation
"{fdfba1f3-74ae-4255-9c10-a0f552b4610f}.sdb" = IIS Express Application Compatibility Database for x86
"{FE939060-416C-4ECD-890E-13776E2707C4}" = Microsoft SQL Server 2012 Express LocalDB
"{FF39514D-E2EB-40BA-A23F-C83B8E0ED110}" = Visual Studio Extensions for Windows Library for JavaScript
"Adobe AIR" = Adobe AIR
"Adobe Flash Player Plugin" = Adobe Flash Player 14 Plugin
"Advanced Port Scanner v1.3" = Advanced Port Scanner v1.3
"Afterburner" = MSI Afterburner 2.2.5
"AppSafe" = AppSafe
"ASIO4ALL" = ASIO4ALL
"AssaultCube" = AssaultCube v1.2.0.2
"Audacity_is1" = Audacity 2.0.5
"AVG" = AVG 2014
"Battlelog Web Plugins" = Battlelog Web Plugins
"CCleaner" = CCleaner
"chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1" = Adobe Community Help
"Cheat Engine 6.3_is1" = Cheat Engine 6.3
"com.adobe.amp.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1" = Adobe Media Player
"CPUID HWMonitor_is1" = CPUID HWMonitor 1.25
"CyberGhost 5_is1" = CyberGhost 5
"Fiddler2" = Fiddler
"FL Studio 11" = FL Studio 11
"FlowStone" = FlowStone FL 3.0
"Fraps" = Fraps (remove only)
"Google Chrome" = Google Chrome
"Graph_is1" = Graph 4.4.2
"HotspotShield" = Hotspot Shield 3.33
"HP Photo Creations" = HP Photo Creations
"IL Download Manager" = IL Download Manager
"IL Shared Libraries" = IL Shared Libraries
"inethnfd" = OffersWizard Network System Driver
"IrfanView" = IrfanView (remove only)
"League of Legends 3.0.1" = League of Legends
"ManyCam" = ManyCam 4.0.63
"Maxthon3" = Maxthon Cloud Browser
"Microsoft Help Viewer 1.0" = Microsoft Help Viewer 1.0
"Microsoft Help Viewer 2.1" = Microsoft Help Viewer 2.1
"Microsoft Visual C++ 2010 Express - ENU" = Microsoft Visual C++ 2010 Express - ENU
"Microsoft Visual Studio 2010 Tools for Office Runtime (x86)" = Microsoft Visual Studio 2010 Tools for Office Runtime (x86)
"Mobiola Microphone for S60 3rd Edition_is1" = Mobiola Microphone for S60 3rd Edition
"Mobiola Web Camera for S60_is1" = Mobiola Web Camera for S60 3.0.19
"Mozilla Firefox 31.0 (x86 pl)" = Mozilla Firefox 31.0 (x86 pl)
"MozillaMaintenanceService" = Mozilla Maintenance Service
"Notepad++" = Notepad++
"Office14.PROPLUS" = Microsoft Office Professional Plus 2010
"Open Broadcaster Software" = Open Broadcaster Software
"OpenAL" = OpenAL
"OpenSSL (32-bit)_is1" = OpenSSL 1.0.1g (32-bit)
"Origin" = Origin
"PIT Format 2013_is1" = PIT Format 2013
"Plague Inc Evolved v0.7.40.7.4" = Plague Inc Evolved v0.7.4
"PunkBusterSvc" = PunkBuster Services
"Rainmeter" = Rainmeter
"Raptr" = Raptr
"RegexBuddy 3" = JGsoft RegexBuddy 3 v.3.2.1
"softether_sevpnclient" = SoftEther VPN Client
"Soldat_is1" = Soldat 1.6.7
"Steam" = Steam
"Steam App 10" = Counter-Strike
"Steam App 201570" = Really Big Sky
"Steam App 230410" = Warframe
"Steam App 70120" = Hacker Evolution Duality
"Steam App 730" = Counter-Strike: Global Offensive
"Steam App 8660" = GTR Evolution
"TAP-Windows" = TAP-Windows 9.9.2
"TeamSpeak 3 Client" = TeamSpeak 3 Client
"TeamViewer 9" = TeamViewer 9
"Totalcmd" = Total Commander (Remove or Repair)
"TrueCrypt" = TrueCrypt
"Unity" = Unity
"VertrigoServ" = VertrigoServ (remove only)
"WinRAR archiver" = WinRAR 5.00 beta 7 (32-bitowy)
========== HKEY_CURRENT_USER Uninstall List ==========
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"CodeBlocks" = CodeBlocks
"Counter-Strike" = Counter-Strike
"Flux" = f.lux
"Spotify" = Spotify
"UnityWebPlayer" = Unity Web Player
"uTorrent" = µTorrent
========== Last 20 Event Log Errors ==========
[ Application Events ]
Error - 2014-08-21 14:12:36 | Computer Name = intel-PC | Source = WinMgmt | ID = 10
Description =
Error - 2014-08-22 01:53:58 | Computer Name = intel-PC | Source = WinMgmt | ID = 10
Description =
Error - 2014-08-23 03:31:01 | Computer Name = intel-PC | Source = WinMgmt | ID = 10
Description =
Error - 2014-08-23 03:42:51 | Computer Name = intel-PC | Source = WinMgmt | ID = 10
Description =
Error - 2014-08-23 04:18:03 | Computer Name = intel-PC | Source = Application Error | ID = 1000
Description = Faulting application name: Ventea.exe, version: 1.0.34669.0, time
stamp: 0x50a09766 Faulting module name: m2PythonLoader.mix_unloaded, version: 0.0.0.0,
time stamp: 0x4e0f8529 Exception code: 0xc0000005 Fault offset: 0x59c81870 Faulting
process id: 0x10cc Faulting application start time: 0x01cfbeaabb015bbc Faulting application
path: C:\Users\intel\Desktop\Ventea.eu\Ventea.exe Faulting module path: m2PythonLoader.mix
Report
Id: 00106952-2a9e-11e4-a13e-00acc59a0f6a
Error - 2014-08-23 06:28:22 | Computer Name = intel-PC | Source = Application Error | ID = 1000
Description = Faulting application name: plugin-container.exe, version: 31.0.0.5310,
time stamp: 0x53c75e91 Faulting module name: mozalloc.dll, version: 31.0.0.5310,
time stamp: 0x53c72e91 Exception code: 0x80000003 Fault offset: 0x0000141b Faulting
process id: 0x122c Faulting application start time: 0x01cfbebc8ad623ed Faulting application
path: C:\Program Files\Mozilla Firefox\plugin-container.exe Faulting module path:
C:\Program Files\Mozilla Firefox\mozalloc.dll Report Id: 349ce75d-2ab0-11e4-a13e-00acc59a0f6a
Error - 2014-08-23 09:19:29 | Computer Name = intel-PC | Source = Application Error | ID = 1000
Description = Faulting application name: Advanced Port Scanner.exe, version: 0.0.0.0,
time stamp: 0x4486d963 Faulting module name: ntdll.dll, version: 6.1.7601.17514,
time stamp: 0x4ce7b96e Exception code: 0xc0000005 Fault offset: 0x00052d37 Faulting
process id: 0x179c Faulting application start time: 0x01cfbed4d9b3cebc Faulting application
path: C:\Program Files\Advanced Port Scanner\Advanced Port Scanner.exe Faulting
module path: C:\Windows\SYSTEM32\ntdll.dll Report Id: 1c9f42ef-2ac8-11e4-a13e-00acc59a0f6a
Error - 2014-08-23 09:20:29 | Computer Name = intel-PC | Source = Application Error | ID = 1000
Description = Faulting application name: Advanced Port Scanner.exe, version: 0.0.0.0,
time stamp: 0x4486d963 Faulting module name: ntdll.dll, version: 6.1.7601.17514,
time stamp: 0x4ce7b96e Exception code: 0xc0000005 Fault offset: 0x00052d37 Faulting
process id: 0x1434 Faulting application start time: 0x01cfbed4fea5bef9 Faulting application
path: C:\Program Files\Advanced Port Scanner\Advanced Port Scanner.exe Faulting
module path: C:\Windows\SYSTEM32\ntdll.dll Report Id: 4026ef7d-2ac8-11e4-a13e-00acc59a0f6a
Error - 2014-08-23 09:20:32 | Computer Name = intel-PC | Source = Application Error | ID = 1000
Description = Faulting application name: Advanced Port Scanner.exe, version: 0.0.0.0,
time stamp: 0x4486d963 Faulting module name: ntdll.dll, version: 6.1.7601.17514,
time stamp: 0x4ce7b96e Exception code: 0xc0000005 Fault offset: 0x00052d37 Faulting
process id: 0x1434 Faulting application start time: 0x01cfbed4fea5bef9 Faulting application
path: C:\Program Files\Advanced Port Scanner\Advanced Port Scanner.exe Faulting
module path: C:\Windows\SYSTEM32\ntdll.dll Report Id: 41b1b3f5-2ac8-11e4-a13e-00acc59a0f6a
Error - 2014-08-23 10:04:13 | Computer Name = intel-PC | Source = WinMgmt | ID = 10
Description =
[ System Events ]
Error - 2014-07-02 14:52:51 | Computer Name = intel-PC | Source = bowser | ID = 8003
Description =
Error - 2014-07-02 14:59:56 | Computer Name = intel-PC | Source = bowser | ID = 8003
Description =
Error - 2014-07-02 15:04:46 | Computer Name = intel-PC | Source = bowser | ID = 8003
Description =
Error - 2014-07-02 15:08:45 | Computer Name = intel-PC | Source = bowser | ID = 8003
Description =
Error - 2014-07-03 05:52:54 | Computer Name = intel-PC | Source = bowser | ID = 8003
Description =
Error - 2014-07-03 05:58:17 | Computer Name = intel-PC | Source = bowser | ID = 8003
Description =
Error - 2014-07-03 06:12:22 | Computer Name = intel-PC | Source = WMPNetworkSvc | ID = 866333
Description =
Error - 2014-07-03 08:47:09 | Computer Name = intel-PC | Source = EventLog | ID = 6008
Description = The previous system shutdown at 14:37:07 on ?2014-?07-?03 was unexpected.
Error - 2014-07-03 11:58:58 | Computer Name = intel-PC | Source = Service Control Manager | ID = 7009
Description = A timeout was reached (30000 milliseconds) while waiting for the Steam
Client Service service to connect.
Error - 2014-07-03 11:58:58 | Computer Name = intel-PC | Source = Service Control Manager | ID = 7000
Description = The Steam Client Service service failed to start due to the following
error: %%1053
< End of report >
steam nie laduje nawet reklam :/
wydaje mi sie ze po combofixie pc chodzi plynniej, ale nadal mam problemy z siecia :/
Regulamin sygnatur
1 odpowiedź na to pytanie
Rekomendowane odpowiedzi
Zarchiwizowany
Ten temat przebywa obecnie w archiwum. Dodawanie nowych odpowiedzi zostało zablokowane.