Skocz do zawartości

  • 👋 Witaj na MPCForum!

    Przeglądasz forum jako gość, co oznacza, że wiele świetnych funkcji jest jeszcze przed Tobą! 😎

    • Pełny dostęp do działów i ukrytych treści
    • Możliwość pisania i odpowiadania w tematach
    • System prywatnych wiadomości
    • Zbieranie reputacji i rozwijanie swojego profilu
    • Członkostwo w jednej z największych społeczności graczy

    👉 Dołączenie zajmie Ci mniej niż minutę – a zyskasz znacznie więcej!

    Zarejestruj się teraz

[Problem]Komputer

CoKaMaN

Przez CoKaMaN
w Elektronika - Sprzęt

Rekomendowane odpowiedzi

CoKaMaN Bywalec

CoKaMaN

Opublikowano
Bywalec

CoKaMaN

Opublikowano

Witam !

 

Przez ostatnie dwa dni tak mi komputer "muli" że masakra, zawsze dobrze chodził itd. a teraz ...jak na starym kompie, wiecie może czym to jest spowodowane :)?

Nchf.png

lol

PingwineQ Odkrywca

PingwineQ

Opublikowano
Odkrywca

PingwineQ

Opublikowano

Dokładanie to się stało gdy pobierałem gre i tak nie zabardzo wiem co to te OverClocking ^^ ;S

OverClocking to jest podkręcanie procesora / lub procesora graficznego ...

Pewnie pobrałeś jakiegoś syfa bo patrzałeś na wagę żeby jak najmniej ważyła , ja też tak kiedyś pobrałem "simsy" ważyły zaledwie 50 mb a było to ok. 21 tyś plików! Które nieźle zmuliły mi laptopa , usunąłem to w pizdu i wszystko było ok .

Cześć.

Loocker Specjalista

Loocker

Opublikowano
Specjalista

Loocker

Opublikowano

Jedyna możliwosć to format. Pewnie narobiło Ci syfu w rejestrze itp. Jeżeli nie chcesz formata to sciągnij sobie CCLEANER przeczysc kompa + dobry antyvirus ; )

 

 

Chocaż najlepiej byłby format.

skpUo.png

CoKaMaN Bywalec

CoKaMaN

Opublikowano
Bywalec

CoKaMaN

  • Autor
Opublikowano

Przeczyściłem i przeskanowałem kompa, wszystko niby jest Ok, po przeczyszczeniu troche mnie muli komp, ale jednak to nie to samo co wcześniej :/

Nchf.png

lol

PingwineQ Odkrywca

PingwineQ

Opublikowano
Odkrywca

PingwineQ

Opublikowano

Przeczyściłem i przeskanowałem kompa, wszystko niby jest Ok, po przeczyszczeniu troche mnie muli komp, ale jednak to nie to samo co wcześniej :/

Usuń tą "grę" co chciałeś pobrać , ale do końca (do kosza i z kosza wypierdalaj z dysku:D)

Cześć.

PingwineQ Odkrywca

PingwineQ

Opublikowano
Odkrywca

PingwineQ

Opublikowano

Zainstaluj antyvirusa norton czy jak on tam miał bo wtedy zarządziłem kwarantanne i jak skończył było po sprawie ;)

Cześć.

CoKaMaN Bywalec

CoKaMaN

Opublikowano
Bywalec

CoKaMaN

  • Autor
Opublikowano

OTL

 

 

OTL logfile created on: 2012-07-21 20:21:00 - Run 1

OTL by OldTimer - Version 3.2.54.0 Folder = C:\Users\xxx\Downloads

64bit- Enterprise Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation

Internet Explorer (Version = 9.0.8112.16421)

Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd

 

3,87 Gb Total Physical Memory | 1,27 Gb Available Physical Memory | 32,89% Memory free

7,73 Gb Paging File | 5,39 Gb Available in Paging File | 69,76% Paging File free

Paging file location(s): ?:\pagefile.sys [binary data]

 

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)

Drive C: | 97,56 Gb Total Space | 14,00 Gb Free Space | 14,35% Space Free | Partition Type: NTFS

Drive D: | 292,97 Gb Total Space | 281,93 Gb Free Space | 96,23% Space Free | Partition Type: NTFS

Drive E: | 540,89 Gb Total Space | 252,87 Gb Free Space | 46,75% Space Free | Partition Type: NTFS

 

Computer Name: KUBA-PC | User Name: xxx | Logged in as Administrator.

Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans

Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

 

========== Processes (SafeList) ==========

 

PRC - [2012-07-21 20:19:51 | 000,596,480 | ---- | M] (OldTimer Tools) -- C:\Users\xxx\Downloads\OTL.exe

PRC - [2012-07-10 06:09:02 | 001,250,328 | ---- | M] (Google Inc.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

PRC - [2012-07-03 14:10:48 | 000,469,136 | ---- | M] () -- C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe

PRC - [2012-04-30 08:39:36 | 000,549,744 | ---- | M] () -- C:\ProgramData\UpdaterService\wsupdsvc.exe

PRC - [2012-04-29 22:47:36 | 000,076,888 | ---- | M] () -- C:\Windows\SysWOW64\PnkBstrA.exe

PRC - [2012-02-10 06:13:00 | 002,348,352 | ---- | M] (NVIDIA Corporation) -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe

PRC - [2012-02-09 21:05:32 | 000,382,272 | ---- | M] (NVIDIA Corporation) -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe

PRC - [2012-01-05 01:02:02 | 000,329,544 | ---- | M] () -- C:\Program Files (x86)\Hotspot Shield\bin\hsswd.exe

PRC - [2012-01-05 01:01:58 | 000,363,336 | ---- | M] (AnchorFree Inc.) -- C:\Program Files (x86)\Hotspot Shield\HssWPR\hsssrv.exe

PRC - [2011-12-12 04:04:30 | 000,011,776 | ---- | M] (Brand Affinity Technologies) -- C:\Program Files (x86)\Brand Affinity Technologies\Fantapper Player\FantapperUpdateService.exe

PRC - [2011-08-23 22:20:18 | 000,887,976 | ---- | M] (Ask) -- C:\Program Files (x86)\Ask.com\Updater\Updater.exe

PRC - [2011-05-28 22:03:11 | 001,093,632 | ---- | M] () -- C:\Program Files (x86)\WinRAR\WinRAR.exe

PRC - [2011-03-15 17:59:32 | 000,312,184 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\AAM Updates Notifier.exe

PRC - [2010-09-16 04:13:48 | 002,538,520 | R--- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe

PRC - [2010-09-16 04:13:44 | 000,325,656 | R--- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe

 

 

========== Modules (No Company Name) ==========

 

MOD - [2012-07-10 06:09:00 | 000,438,296 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\20.0.1132.57\ppGoogleNaClPluginChrome.dll

MOD - [2012-07-10 06:08:59 | 003,972,120 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\20.0.1132.57\pdf.dll

MOD - [2012-07-10 06:07:39 | 000,554,520 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\20.0.1132.57\libglesv2.dll

MOD - [2012-07-10 06:07:37 | 000,117,784 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\20.0.1132.57\libegl.dll

MOD - [2012-07-10 06:07:22 | 000,140,328 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\20.0.1132.57\avutil-51.dll

MOD - [2012-07-10 06:07:21 | 000,262,184 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\20.0.1132.57\avformat-54.dll

MOD - [2012-07-10 06:07:19 | 002,386,984 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\20.0.1132.57\avcodec-54.dll

MOD - [2012-07-10 04:17:27 | 009,255,112 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\20.0.1132.57\gcswf32.dll

MOD - [2012-07-10 04:17:27 | 009,255,112 | ---- | M] () -- C:\PROGRA~2\Google\Chrome\APPLIC~1\200113~1.57\gcswf32.dll

MOD - [2011-05-28 22:03:11 | 001,093,632 | ---- | M] () -- C:\Program Files (x86)\WinRAR\WinRAR.exe

 

 

========== Win32 Services (SafeList) ==========

 

SRV:64bit: - [2012-03-11 21:13:24 | 002,815,496 | ---- | M] (COMODO) [Auto | Running] -- C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe -- (cmdAgent)

SRV:64bit: - [2011-11-23 12:27:10 | 001,267,000 | ---- | M] (COMODO) [Auto | Running] -- C:\Program Files\COMODO\COMODO GeekBuddy\CLPSLS.exe -- (CLPSLS)

SRV:64bit: - [2009-07-14 03:41:27 | 001,011,712 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)

SRV:64bit: - [2009-07-14 03:40:01 | 000,193,536 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\appmgmts.dll -- (AppMgmt)

SRV - [2012-07-13 13:28:36 | 000,160,944 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files (x86)\Skype\Updater\Updater.exe -- (SkypeUpdate)

SRV - [2012-07-12 22:49:02 | 000,265,928 | ---- | M] (SpeedBit Ltd.) [Auto | Stopped] -- E:\Program Files (x86)\SpeedBit Video Accelerator\VideoAcceleratorService.exe -- (VideoAcceleratorService)

SRV - [2012-07-12 21:16:55 | 000,008,704 | ---- | M] (Hi-Rez Studios) [Auto | Running] -- D:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe -- (HiPatchService)

SRV - [2012-07-12 18:56:33 | 000,250,056 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)

SRV - [2012-07-10 20:30:54 | 004,419,392 | ---- | M] () [Auto | Running] -- c:\program files (x86)\common files\akamai/netsession_win_4f7fccd.dll -- (Akamai)

SRV - [2012-07-03 14:10:48 | 000,469,136 | ---- | M] () [Auto | Running] -- C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe -- (DragonUpdater)

SRV - [2012-06-27 12:29:24 | 002,369,960 | ---- | M] (LogMeIn Inc.) [Auto | Running] -- C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe -- (Hamachi2Svc)

SRV - [2012-06-25 20:22:26 | 000,529,232 | ---- | M] (Valve Corporation) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Steam\SteamService.exe -- (Steam Client Service)

SRV - [2012-04-30 08:39:36 | 000,549,744 | ---- | M] () [Auto | Running] -- C:\ProgramData\UpdaterService\wsupdsvc.exe -- (UpdaterService)

SRV - [2012-04-29 22:47:36 | 000,076,888 | ---- | M] () [Auto | Running] -- C:\Windows\SysWOW64\PnkBstrA.exe -- (PnkBstrA)

SRV - [2012-02-10 06:13:00 | 002,348,352 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe -- (nvUpdatusService)

SRV - [2012-02-09 21:05:32 | 000,382,272 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe -- (Stereo Service)

SRV - [2012-01-05 01:02:02 | 000,329,544 | ---- | M] () [Auto | Running] -- C:\Program Files (x86)\Hotspot Shield\bin\hsswd.exe -- (HssWd)

SRV - [2012-01-05 01:01:58 | 000,363,336 | ---- | M] (AnchorFree Inc.) [Auto | Running] -- C:\Program Files (x86)\Hotspot Shield\HssWPR\hsssrv.exe -- (HssSrv)

SRV - [2011-12-12 04:04:30 | 000,011,776 | ---- | M] (Brand Affinity Technologies) [Auto | Running] -- C:\Program Files (x86)\Brand Affinity Technologies\Fantapper Player\FantapperUpdateService.exe -- (FTSvc)

SRV - [2011-04-25 05:55:00 | 004,066,168 | ---- | M] (INCA Internet Co., Ltd.) [On_Demand | Stopped] -- C:\Windows\SysWOW64\GameMon.des -- (npggsvc)

SRV - [2010-09-16 04:13:48 | 002,538,520 | R--- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe -- (UNS) Intel®

SRV - [2010-09-16 04:13:44 | 000,325,656 | R--- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe -- (LMS) Intel®

SRV - [2010-03-18 13:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)

SRV - [2010-02-19 13:37:14 | 000,517,096 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe -- (SwitchBoard)

SRV - [2009-06-10 23:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)

SRV - [2006-10-23 14:50:35 | 000,046,640 | R--- | M] (AOL LLC) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\AOL\ACS\AOLAcsd.exe -- (AOL ACS)

 

 

========== Driver Services (SafeList) ==========

 

DRV:64bit: - [2012-03-11 21:13:40 | 000,022,696 | ---- | M] (COMODO) [File_System | System | Running] -- C:\Windows\SysNative\drivers\cmderd.sys -- (cmderd)

DRV:64bit: - [2012-03-01 08:46:16 | 000,023,408 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\Windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec)

DRV:64bit: - [2012-01-17 14:45:56 | 000,188,224 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\nvhda64v.sys -- (NVHDA)

DRV:64bit: - [2012-01-05 01:01:58 | 000,056,832 | ---- | M] (AnchorFree Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\HssDrv.sys -- (HssDrv)

DRV:64bit: - [2011-11-02 15:53:39 | 000,270,912 | ---- | M] (DT Soft Ltd) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\dtsoftbus01.sys -- (dtsoftbus01)

DRV:64bit: - [2011-10-21 18:30:04 | 012,310,112 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\igdkmd64.sys -- (igfx)

DRV:64bit: - [2011-03-21 15:22:06 | 000,452,200 | ---- | M] (Realtek ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Rt64win7.sys -- (RTL8167)

DRV:64bit: - [2011-03-11 08:41:12 | 000,107,904 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)

DRV:64bit: - [2011-03-11 08:41:12 | 000,027,008 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)

DRV:64bit: - [2011-03-10 18:36:24 | 000,029,488 | ---- | M] (Kaspersky Lab ZAO) [Kernel | System | Stopped] -- C:\Windows\SysNative\drivers\klim6.sys -- (KLIM6)

DRV:64bit: - [2010-11-20 15:33:35 | 000,078,720 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)

DRV:64bit: - [2010-11-20 13:07:05 | 000,059,392 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt)

DRV:64bit: - [2010-11-20 13:03:42 | 000,020,992 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\rdpvideominiport.sys -- (RdpVideoMiniport)

DRV:64bit: - [2010-11-20 12:49:51 | 000,146,432 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\rmcast.sys -- (RMCAST)

DRV:64bit: - [2010-08-31 00:07:04 | 000,317,440 | ---- | M] (Intel® Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\IntcDAud.sys -- (IntcDAud) Intel®

DRV:64bit: - [2009-09-17 06:54:54 | 000,056,344 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\HECIx64.sys -- (HECIx64) Intel®

DRV:64bit: - [2009-07-14 03:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)

DRV:64bit: - [2009-07-14 03:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)

DRV:64bit: - [2009-07-14 03:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)

DRV:64bit: - [2009-06-10 22:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)

DRV:64bit: - [2009-06-10 22:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)

DRV:64bit: - [2009-06-10 22:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)

DRV:64bit: - [2009-06-10 22:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)

DRV:64bit: - [2009-03-18 18:35:42 | 000,033,856 | -H-- | M] (LogMeIn, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\hamachi.sys -- (hamachi)

DRV:64bit: - [2008-09-18 20:54:48 | 000,056,320 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\CamSuiteVAC.sys -- (CamSuiteVAC)

DRV:64bit: - [2006-11-30 00:24:49 | 000,024,064 | ---- | M] (America Online, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\wanatw64.sys -- (wanatw) WAN Miniport (ATW)

DRV - [2012-03-20 08:24:59 | 000,040,056 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\AeriaGames\Wolfteam\wolf64.sys -- (wolf)

DRV - [2011-12-24 14:15:23 | 000,021,712 | ---- | M] (Phoenix Technologies) [Kernel | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\DrvAgent64.SYS -- (DrvAgent64)

DRV - [2011-10-23 12:24:03 | 000,164,992 | ---- | M] () [Kernel | Auto | Stopped] -- C:\Windows\SysWOW64\drivers\athsgt.sys -- (athsgt)

DRV - [2011-10-23 12:24:03 | 000,012,544 | ---- | M] () [Kernel | Auto | Stopped] -- C:\Windows\SysWOW64\drivers\limsgt.sys -- (limsgt)

DRV - [2009-07-14 03:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount)

DRV - [2005-01-01 11:43:08 | 000,004,682 | ---- | M] (INCA Internet Co., Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysWOW64\npptNT2.sys -- (NPPTNT2)

DRV - [2004-11-25 18:36:06 | 000,077,248 | ---- | M] (Protection Technology) [Kernel | Boot | Stopped] -- C:\Windows\SysWOW64\drivers\prohlp02.sys -- (prohlp02)

DRV - [2004-11-25 18:32:01 | 000,054,368 | ---- | M] (Protection Technology) [Kernel | System | Stopped] -- C:\Windows\SysWOW64\drivers\prodrv06.sys -- (prodrv06)

DRV - [2003-12-01 17:20:52 | 000,004,832 | ---- | M] (Protection Technology) [Kernel | Boot | Stopped] -- C:\Windows\SysWOW64\drivers\sfhlp01.sys -- (sfhlp01)

DRV - [2003-09-06 14:22:08 | 000,006,944 | ---- | M] (Protection Technology) [Kernel | Boot | Stopped] -- C:\Windows\SysWOW64\drivers\prosync1.sys -- (prosync1)

 

 

========== Standard Registry (SafeList) ==========

 

 

========== Internet Explorer ==========

 

IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}

IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...ms}&FORM=IE8SRC

IE:64bit: - HKLM\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.co...g}&sourceid=ie7

IE:64bit: - HKLM\..\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD21}: "URL" = http://dts.search-re...q={searchTerms}

IE:64bit: - HKLM\..\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}: "URL" = http://dts.search-re...q={searchTerms}

IE:64bit: - HKLM\..\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2410}: "URL" = http://www.searchqu....q={searchTerms}

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm

IE - HKLM\..\URLSearchHook: {57cc715d-37ca-44e4-9ec2-8c2cbddb25ec} - SOFTWARE\Classes\CLSID\{57cc715d-37ca-44e4-9ec2-8c2cbddb25ec}\InprocServer32 File not found

IE - HKLM\..\URLSearchHook: {8f3c1d75-d467-43c2-9a36-655366b76f5f} - C:\Program Files (x86)\Softonic-Polska_\prxtbSoft.dll (Conduit Ltd.)

IE - HKLM\..\URLSearchHook: {d40b90b4-d3b1-4d6b-a5d7-dc041c1b76c0} - C:\Program Files (x86)\IncrediMail_MediaBar_2\prxtbInc0.dll (Conduit Ltd.)

IE - HKLM\..\SearchScopes,DefaultScope = {9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}

IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...ms}&FORM=IE8SRC

IE - HKLM\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.co...g}&sourceid=ie7

IE - HKLM\..\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD21}: "URL" = http://dts.search-re...q={searchTerms}

IE - HKLM\..\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}: "URL" = http://dts.search-re...q={searchTerms}

IE - HKLM\..\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2410}: "URL" = http://www.searchqu....q={searchTerms}

IE - HKLM\..\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}: "URL" = http://search.condui...&ctid=CT1708250

IE - HKLM\..\SearchScopes\{BFFED5CA-8BDF-47CC-AED0-23F4E6D77732}: "URL" = http://search.iminen...q={searchTerms}

 

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://search.speedbit.com/?aff=svd_VA

IE - HKCU\..\SearchScopes,DefaultScope = {7F4EFF06-7032-458e-AE16-1C1D8255C28A}

IE - HKCU\..\SearchScopes\{02F426DD-E7FF-4D2E-AB06-CDC7BDF249A2}: "URL" = http://websearch.ask...1-32ED6F6CBB2D

IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...Box&FORM=IE8SRC

IE - HKCU\..\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}: "URL" = http://search.babylo...P_def&AF=100482

IE - HKCU\..\SearchScopes\{1C4CC1F0-2375-42F3-B6C9-622A0F38D562}: "URL" = http://search.yahoo....0207,6900,0,6,0

IE - HKCU\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.co...1I7ADFA_plPL445

IE - HKCU\..\SearchScopes\{7F4EFF06-7032-458e-AE16-1C1D8255C28A}: "URL" = http://search.speedb...q={searchTerms}

IE - HKCU\..\SearchScopes\{91607fa7-3c2f-4f90-93e3-d5337a6b0ac2}: "URL" = playbryte/search/redirect/?type=default&user_id=9046e843-b135-459f-9439-2b2acdde9e57&query={searchTerms}

IE - HKCU\..\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD21}: "URL" = http://dts.search-re...q={searchTerms}

IE - HKCU\..\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}: "URL" = http://dts.search-re...q={searchTerms}

IE - HKCU\..\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2410}: "URL" = http://www.searchqu....q={searchTerms}

IE - HKCU\..\SearchScopes\{A531D99C-5A22-449b-83DA-872725C6D0ED}: "URL" = http://search.alot.c...ion=1.1.3001.0( B)

IE - HKCU\..\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}: "URL" = http://search.condui...&ctid=CT1708250

IE - HKCU\..\SearchScopes\{BFFED5CA-8BDF-47CC-AED0-23F4E6D77732}: "URL" = http://search.iminen...q={searchTerms}

IE - HKCU\..\SearchScopes\{c99fdc39-a1ae-4b24-8d71-e5274f8d7c54}: "URL" = http://search.hotspo...q={searchTerms}

IE - HKCU\..\SearchScopes\{CFF4DB9B-135F-47c0-9269-B4C6572FD61A}: "URL" = http://mystart.incre...6PQeUbice0&i=26

IE - HKCU\..\SearchScopes\{F5BAB04C-8414-4348-A592-F720478B9882}: "URL" = http://search.aol.co...ionType=msie70a

IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = <local>

 

========== FireFox ==========

 

FF - prefs.js..browser.search.defaultengine: "Ask.com"

FF - prefs.js..browser.search.defaultenginename: "MyStart Search"

FF - prefs.js..browser.search.order.1: "Ask.com"

FF - prefs.js..browser.search.selectedEngine: "MyStart Search"

FF - prefs.js..browser.search.useDBForOrder: true

FF - prefs.js..browser.startup.homepage: "http://mystart.incredibar.com/mb139?a=6PQeUbice0&i=26"

FF - prefs.js..keyword.URL: "http://mystart.incredibar.com/mb139/?loc=IB_DS&a=6PQeUbice0&&i=26&search="

FF - prefs.js..browser.search.defaultenginename: "Speedbit Search"

FF - prefs.js..browser.search.defaulturl: "http://search.speedbit.com/search.aspx?aff=svd_VA&q="

FF - prefs.js..browser.search.order.1: "Speedbit Search"

FF - prefs.js..browser.search.selectedEngine: "Speedbit Search"

FF - prefs.js..browser.startup.homepage: "http://search.speedbit.com/?aff=svd_VA"

FF - prefs.js..keyword.URL: "http://search.speedbit.com/search.aspx?aff=svd_VA&q="

 

 

FF:64bit: - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF64_11_3_300_265.dll File not found

FF:64bit: - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\plugin2\npjp2.dll (Sun Microsystems, Inc.)

FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found

FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_3_300_265.dll ()

FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\Windows\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)

FF - HKLM\Software\MozillaPlugins\@esn.me/esnsonar,version=0.70.4: C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll (ESN Social Software AB)

FF - HKLM\Software\MozillaPlugins\@esn/esnlaunch,version=1.110.0: C:\Program Files (x86)\Battlelog Web Plugins\1.110.0\npesnlaunch.dll File not found

FF - HKLM\Software\MozillaPlugins\@esn/esnlaunch,version=1.116.0: C:\Program Files (x86)\Battlelog Web Plugins\1.116.0\npesnlaunch.dll File not found

FF - HKLM\Software\MozillaPlugins\@esn/esnlaunch,version=1.122.0: C:\Program Files (x86)\Battlelog Web Plugins\1.122.0\npesnlaunch.dll (ESN Social Software AB)

FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.5.1: C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)

FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.5.1: C:\Program Files (x86)\Oracle\JavaFX 2.1 Runtime\bin\plugin2\npjp2.dll (Oracle Corporation)

FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found

FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files (x86)\Microsoft Silverlight\4.1.10329.0\npctrl.dll ( Microsoft Corporation)

FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVision: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)

FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVisionStreaming: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)

FF - HKLM\Software\MozillaPlugins\@pandonetworks.com/PandoWebPlugin: C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)

FF - HKLM\Software\MozillaPlugins\@real.com/nppl3260;version=15.0.2.72: c:\program files (x86)\real\realplayer\Netscape6\nppl3260.dll (RealNetworks, Inc.)

FF - HKLM\Software\MozillaPlugins\@real.com/nprjplug;version=15.0.2.72: c:\program files (x86)\real\realplayer\Netscape6\nprjplug.dll (RealNetworks, Inc.)

FF - HKLM\Software\MozillaPlugins\@real.com/npMPChromebrowserrecordext;version=15.0.2.72: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\npMPChromebrowserrecordext.dll (RealNetworks, Inc.)

FF - HKLM\Software\MozillaPlugins\@real.com/nprphtml5videoshim;version=15.0.2.72: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll (RealNetworks, Inc.)

FF - HKLM\Software\MozillaPlugins\@real.com/nprpjplug;version=15.0.2.72: c:\program files (x86)\real\realplayer\Netscape6\nprpjplug.dll (RealNetworks, Inc.)

FF - HKLM\Software\MozillaPlugins\@real.com/nsJSRealPlayerPlugin;version=: File not found

FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.21.115\npGoogleUpdate3.dll (Google Inc.)

FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.21.115\npGoogleUpdate3.dll (Google Inc.)

FF - HKLM\Software\MozillaPlugins\@viewpoint.com/VMP: C:\Program Files (x86)\Viewpoint\Viewpoint Experience Technology\npViewpoint.dll ()

FF - HKCU\Software\MozillaPlugins\pandonetworks.com/PandoWebPlugin: C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)

 

64bit-FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\[email protected]: C:\PROGRAM FILES\ESET\ESET NOD32 ANTIVIRUS\MOZILLA THUNDERBIRD

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{ABDE892B-13A8-4d1b-88E6-365A6E755758}: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext [2012-07-05 23:06:50 | 000,000,000 | ---D | M]

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\[email protected]: C:\Users\xxx\AppData\Local\RewardsArcadeSuite\1950\Firefox [2012-02-12 14:20:38 | 000,000,000 | ---D | M]

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\[email protected]: C:\Program Files (x86)\SearchPredict\PRFireFox [2012-07-12 22:49:15 | 000,000,000 | ---D | M]

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{0329E7D6-6F54-462D-93F6-F5C3118BADF2}: C:\Program Files (x86)\SPEEDbit Video Downloader\SPFireFox

FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 9.0.1\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2012-01-16 12:05:30 | 000,000,000 | ---D | M]

FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 9.0.1\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins [2012-06-21 17:54:49 | 000,000,000 | ---D | M]

FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\[email protected]: C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird

 

[2012-02-13 19:25:43 | 000,000,000 | ---D | M] (No name found) -- C:\Users\xxx\AppData\Roaming\mozilla\Extensions

[2012-04-28 11:34:45 | 000,000,000 | ---D | M] (No name found) -- C:\Users\xxx\AppData\Roaming\mozilla\Firefox\Profiles\wxjbie8w.default\extensions

[2012-02-13 19:25:40 | 000,000,000 | ---D | M] (Wincore Mediabar) -- C:\Users\xxx\AppData\Roaming\mozilla\Firefox\Profiles\wxjbie8w.default\extensions\{28387537-e3f9-4ed7-860c-11e69af4a8a0}

[2011-10-07 12:55:20 | 000,000,000 | ---D | M] (Free Lunch Design Toolbar) -- C:\Users\xxx\AppData\Roaming\mozilla\Firefox\Profiles\wxjbie8w.default\extensions\{57cc715d-37ca-44e4-9ec2-8c2cbddb25ec}

[2012-03-30 23:31:23 | 000,000,000 | ---D | M] (AOL Toolbar) -- C:\Users\xxx\AppData\Roaming\mozilla\Firefox\Profiles\wxjbie8w.default\extensions\{7affbfae-c4e2-4915-8c0f-00fa3ec610a1}

[2012-02-17 18:07:18 | 000,000,000 | ---D | M] (PriceGong) -- C:\Users\xxx\AppData\Roaming\mozilla\Firefox\Profiles\wxjbie8w.default\extensions\{8A9386B4-E958-4c4c-ADF4-8F26DB3E4829}

[2012-04-28 11:34:44 | 000,000,000 | ---D | M] (SFT_Polska_ Community Toolbar) -- C:\Users\xxx\AppData\Roaming\mozilla\Firefox\Profiles\wxjbie8w.default\extensions\{8f3c1d75-d467-43c2-9a36-655366b76f5f}

[2012-03-31 12:12:37 | 000,000,000 | ---D | M] (Searchqu Toolbar) -- C:\Users\xxx\AppData\Roaming\mozilla\Firefox\Profiles\wxjbie8w.default\extensions\{99079a25-328f-4bd4-be04-00955acaa0a7}

[2012-04-28 11:34:45 | 000,000,000 | ---D | M] (Hotspot Shield Community Toolbar) -- C:\Users\xxx\AppData\Roaming\mozilla\Firefox\Profiles\wxjbie8w.default\extensions\{c95a4e8e-816d-4655-8c79-d736da1adb6d}

[2012-02-11 10:06:34 | 000,000,000 | ---D | M] (IMinent Toolbar) -- C:\Users\xxx\AppData\Roaming\mozilla\Firefox\Profiles\wxjbie8w.default\extensions\{C9B68337-E93A-44EA-94DC-CB300EC06444}

[2012-03-30 23:31:26 | 000,000,000 | ---D | M] (IncrediMail MediaBar 2 Community Toolbar) -- C:\Users\xxx\AppData\Roaming\mozilla\Firefox\Profiles\wxjbie8w.default\extensions\{d40b90b4-d3b1-4d6b-a5d7-dc041c1b76c0}

[2012-02-07 15:32:02 | 000,000,000 | ---D | M] (DealPly) -- C:\Users\xxx\AppData\Roaming\mozilla\Firefox\Profiles\wxjbie8w.default\extensions\{EB9394A3-4AD6-4918-9537-31A1FD8E8EDF}

[2012-03-01 17:43:26 | 000,000,000 | ---D | M] (ALOT Appbar) -- C:\Users\xxx\AppData\Roaming\mozilla\Firefox\Profiles\wxjbie8w.default\extensions\[email protected]

[2012-02-12 00:17:08 | 000,000,000 | ---D | M] (Browse For Change) -- C:\Users\xxx\AppData\Roaming\mozilla\Firefox\Profiles\wxjbie8w.default\extensions\[email protected]

[2012-02-10 18:03:53 | 000,000,000 | ---D | M] (Babylon) -- C:\Users\xxx\AppData\Roaming\mozilla\Firefox\Profiles\wxjbie8w.default\extensions\[email protected]

[2012-02-12 14:26:57 | 000,000,000 | ---D | M] (GetDislike) -- C:\Users\xxx\AppData\Roaming\mozilla\Firefox\Profiles\wxjbie8w.default\extensions\getdislike@jetpack

[2012-02-19 01:56:23 | 000,000,000 | ---D | M] (PlayBryte) -- C:\Users\xxx\AppData\Roaming\mozilla\Firefox\Profiles\wxjbie8w.default\extensions\[email protected]

[2012-03-01 17:39:54 | 000,000,000 | ---D | M] ("Ask Toolbar") -- C:\Users\xxx\AppData\Roaming\mozilla\Firefox\Profiles\wxjbie8w.default\extensions [email protected]

[2012-02-12 00:05:45 | 000,000,000 | ---D | M] (ShopAtHome.com Intelligent Shopping Toolbar) -- C:\Users\xxx\AppData\Roaming\mozilla\Firefox\Profiles\wxjbie8w.default\extensions [email protected]

[2012-04-28 11:35:01 | 000,002,583 | ---- | M] () -- C:\Users\xxx\AppData\Roaming\Mozilla\Firefox\Profiles\wxjbie8w.default\searchplugins\askcom.xml

[2012-02-03 10:30:12 | 000,000,931 | ---- | M] () -- C:\Users\xxx\AppData\Roaming\Mozilla\Firefox\Profiles\wxjbie8w.default\searchplugins\conduit.xml

[2012-05-01 15:05:09 | 000,002,203 | ---- | M] () -- C:\Users\xxx\AppData\Roaming\Mozilla\Firefox\Profiles\wxjbie8w.default\searchplugins\MyStart Search.xml

[2011-11-08 20:33:38 | 000,002,520 | ---- | M] () -- C:\Users\xxx\AppData\Roaming\Mozilla\Firefox\Profiles\wxjbie8w.default\searchplugins\SearchResults.xml

[2012-02-11 10:06:48 | 000,002,270 | ---- | M] () -- C:\Users\xxx\AppData\Roaming\Mozilla\Firefox\Profiles\wxjbie8w.default\searchplugins\SearchTheWeb.xml

[2012-03-31 12:12:28 | 000,002,519 | ---- | M] () -- C:\Users\xxx\AppData\Roaming\Mozilla\Firefox\Profiles\wxjbie8w.default\searchplugins\Search_Results.xml

[2012-07-12 22:49:11 | 000,002,544 | ---- | M] () -- C:\Users\xxx\AppData\Roaming\Mozilla\Firefox\Profiles\wxjbie8w.default\searchplugins\speedbit.xml

[2011-12-15 16:43:40 | 000,003,910 | ---- | M] () -- C:\Users\xxx\AppData\Roaming\Mozilla\Firefox\Profiles\wxjbie8w.default\searchplugins\sweetim.xml

[2012-03-09 21:34:30 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\mozilla firefox\extensions

[2011-11-04 21:03:40 | 000,000,000 | ---D | M] (Skype Click to Call) -- C:\Program Files (x86)\mozilla firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}

[2012-03-09 21:34:30 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files (x86)\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA}

[2012-02-08 17:11:05 | 000,000,000 | ---D | M] (Hotspot Shield Helper (Please allow this installation)) -- C:\Program Files (x86)\mozilla firefox\extensions\[email protected]

[2012-02-11 10:06:29 | 000,000,000 | ---D | M] (Iminent WebBooster) -- C:\Program Files (x86)\mozilla firefox\extensions\[email protected]

[2012-04-28 11:34:42 | 000,335,950 | ---- | M] () (No name found) -- C:\USERS\XXX\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\WXJBIE8W.DEFAULT\EXTENSIONS\{19503E42-CA3C-4C27-B1E2-9CDB2170EE34}.XPI

[2012-02-10 18:03:45 | 000,021,707 | ---- | M] () (No name found) -- C:\USERS\XXX\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\WXJBIE8W.DEFAULT\EXTENSIONS\[email protected]

[2012-02-10 18:03:53 | 000,011,148 | ---- | M] () (No name found) -- C:\USERS\XXX\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\WXJBIE8W.DEFAULT\EXTENSIONS\[email protected]

[2012-01-16 12:05:29 | 000,121,816 | ---- | M] (Mozilla Foundation) -- C:\Program Files (x86)\mozilla firefox\components\browsercomps.dll

[2010-07-27 17:13:46 | 000,027,136 | ---- | M] (NHN USA Inc.) -- C:\Program Files (x86)\mozilla firefox\plugins\npijjiautoinstallpluginff.dll

[2011-10-01 20:22:45 | 000,002,767 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\allegro-pl.xml

[2012-04-13 08:44:19 | 000,005,142 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\arccosine.xml

[2012-02-18 18:07:48 | 000,002,311 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\babylon.xml

[2011-10-01 20:22:45 | 000,001,406 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\fbc-pl.xml

[2011-10-01 20:22:45 | 000,000,917 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\merlin-pl.xml

[2012-01-05 01:02:04 | 000,001,847 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\privatesearch.xml

[2011-10-01 20:22:45 | 000,000,858 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\pwn-pl.xml

[2011-11-08 20:33:38 | 000,002,520 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\SearchResults.xml

[2011-12-23 14:02:16 | 000,002,157 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\SearchTheWeb.xml

[2012-03-31 12:12:28 | 000,002,519 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\Search_Results.xml

[2011-10-01 20:22:45 | 000,001,183 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\wikipedia-pl.xml

[2011-10-01 20:22:45 | 000,001,683 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\wp-pl.xml

 

========== Chrome ==========

 

CHR - homepage: http://www.google.pl/

CHR - default_search_provider: Google (Enabled)

CHR - default_search_provider: search_url = http://www.google.co...8&oe=utf-8&aq=t

CHR - default_search_provider: suggest_url = http://suggestquerie...q={searchTerms}

CHR - homepage: http://www.google.pl/

CHR - plugin: Remoting Viewer (Enabled) = internal-remoting-viewer

CHR - plugin: Native Client (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\20.0.1132.57\ppGoogleNaClPluginChrome.dll

CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\20.0.1132.57\pdf.dll

CHR - plugin: Shockwave Flash (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\20.0.1132.57\gcswf32.dll

CHR - plugin: Shockwave Flash (Disabled) = C:\Users\xxx\AppData\Local\Google\Chrome\User Data\PepperFlash\11.1.31.203\pepflashplayer.dll

CHR - plugin: Shockwave Flash (Enabled) = C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_2_202_235.dll

CHR - plugin: EA Battlefield Heroes Updater (Enabled) = C:\Users\xxx\AppData\Local\Google\Chrome\User Data\Default\Extensions\gpdfjahpadlpfnfheehpddpcllihfkmm\5.0.137.0_1\npBFHUpdater.dll

CHR - plugin: EA Battlefield Heroes Updater (Enabled) = C:\Users\xxx\AppData\Local\Google\Chrome\User Data\Default\Extensions\gpdfjahpadlpfnfheehpddpcllihfkmm\5.0.137.0_1\BFHUpdater.exe

CHR - plugin: Adobe Acrobat (Enabled) = C:\Program Files (x86)\Adobe\Acrobat 7.0\Reader\Browser\nppdf32.dll

CHR - plugin: Java Deployment Toolkit 6.0.310.5 (Enabled) = C:\Program Files (x86)\Mozilla Firefox\plugins\npdeployJava1.dll

CHR - plugin: Java™ Platform SE 6 U31 (Enabled) = C:\Program Files (x86)\Java\jre6\bin\plugin2\npjp2.dll

CHR - plugin: downloadUpdater (Enabled) = C:\Program Files (x86)\Mozilla Firefox\plugins\npdnu.dll

CHR - plugin: downloadUpdater2 (Enabled) = C:\Program Files (x86)\Mozilla Firefox\plugins\npdnupdater2.dll

CHR - plugin: ijji Auto Install Plugin for Mozilla (Enabled) = C:\Program Files (x86)\Mozilla Firefox\plugins\npijjiautoinstallpluginff.dll

CHR - plugin: RealPlayer™ G2 LiveConnect-Enabled Plug-In (32-bit) (Enabled) = C:\Program Files (x86)\Mozilla Firefox\plugins\nppl3260.dll

CHR - plugin: RealPlayer Version Plugin (Enabled) = C:\Program Files (x86)\Mozilla Firefox\plugins\nprpjplug.dll

CHR - plugin: RealPlayer™ HTML5VideoShim Plug-In (32-bit) (Enabled) = C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll

CHR - plugin: RealJukebox NS Plugin (Enabled) = C:\Program Files (x86)\Mozilla Firefox\plugins\nprjplug.dll

CHR - plugin: ESN Launch Mozilla Plugin (Enabled) = C:\Program Files (x86)\Battlelog Web Plugins\1.110.0\npesnlaunch.dll

CHR - plugin: ESN Launch Mozilla Plugin (Enabled) = C:\Program Files (x86)\Battlelog Web Plugins\1.116.0\npesnlaunch.dll

CHR - plugin: ESN Launch Mozilla Plugin (Enabled) = C:\Program Files (x86)\Battlelog Web Plugins\1.118.0\npesnlaunch.dll

CHR - plugin: ESN Sonar API (Enabled) = C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll

CHR - plugin: Google Update (Enabled) = C:\Program Files (x86)\Google\Update\1.3.21.111\npGoogleUpdate3.dll

CHR - plugin: Silverlight Plug-In (Enabled) = C:\Program Files (x86)\Microsoft Silverlight\4.1.10111.0\npctrl.dll

CHR - plugin: NVIDIA 3D Vision (Enabled) = C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll

CHR - plugin: NVIDIA 3D VISION (Enabled) = C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll

CHR - plugin: Pando Web Plugin (Enabled) = C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll

CHR - plugin: MetaStream 3 Plugin (Enabled) = C:\Program Files (x86)\Viewpoint\Viewpoint Experience Technology\npViewpoint.dll

CHR - plugin: RealNetworks™ Chrome Background Extension Plug-In (32-bit) (Enabled) = C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\npMPChromebrowserrecordext.dll

CHR - plugin: Shockwave for Director (Enabled) = C:\Windows\system32\Adobe\Director\np32dsw.dll

CHR - Extension: Bob Marley = C:\Users\xxx\AppData\Local\Google\Chrome\User Data\Default\Extensions\alpnhingmddeadgmgjbfefmaanaeifak\1.2_0\

CHR - Extension: Gismeteo = C:\Users\xxx\AppData\Local\Google\Chrome\User Data\Default\Extensions\bfegaehidkkcfaikpaijcdahnpikhobf\2.0.4_0\

CHR - Extension: PriceGong = C:\Users\xxx\AppData\Local\Google\Chrome\User Data\Default\Extensions\bkomkajifikmkfnjgphkjcfeepbnojok\5.6.2_0\

CHR - Extension: YouTube = C:\Users\xxx\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\

CHR - Extension: Adblock Plus (Beta) = C:\Users\xxx\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.2_0\

CHR - Extension: Szukaj w Google = C:\Users\xxx\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\

CHR - Extension: Battlefield Play4Free = C:\Users\xxx\AppData\Local\Google\Chrome\User Data\Default\Extensions\dkejhbcdagodjdndmfnhaibnealjonei\1.0.80.2_0\

CHR - Extension: Browse For Change = C:\Users\xxx\AppData\Local\Google\Chrome\User Data\Default\Extensions\fnookbljklllllijpolanbmgllgifbgm\1.0_0\

CHR - Extension: DealPly = C:\Users\xxx\AppData\Local\Google\Chrome\User Data\Default\Extensions\gaiilaahiahdejapggenmdmafpmbipje\3.0.7.2_0\

CHR - Extension: Battlefield Heroes = C:\Users\xxx\AppData\Local\Google\Chrome\User Data\Default\Extensions\gpdfjahpadlpfnfheehpddpcllihfkmm\5.0.137.0_1\

CHR - Extension: RewardsArcade Suite = C:\Users\xxx\AppData\Local\Google\Chrome\User Data\Default\Extensions\ielefkgbofdpglioecfjcbikholflklb\1.18.35_1\crossrider

CHR - Extension: RewardsArcade Suite = C:\Users\xxx\AppData\Local\Google\Chrome\User Data\Default\Extensions\ielefkgbofdpglioecfjcbikholflklb\1.18.35_1\

CHR - Extension: Iminent = C:\Users\xxx\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\4.43.0_0\

CHR - Extension: RealPlayer HTML5Video Downloader Extension = C:\Users\xxx\AppData\Local\Google\Chrome\User Data\Default\Extensions\jfmjfhklogoienhpfnppmbcbjfjnkonk\1.5_0\

CHR - Extension: SpeedBit Search Predict = C:\Users\xxx\AppData\Local\Google\Chrome\User Data\Default\Extensions\ledcpigomgblcmofccnacobhmcdkpiea\2.0.2_0\

CHR - Extension: Skype Click to Call = C:\Users\xxx\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl\5.6.0.8442_0\

CHR - Extension: Fantapper = C:\Users\xxx\AppData\Local\Google\Chrome\User Data\Default\Extensions\ohgcjecomkebbohfjgmncelbhogbbokf\1.0.6_0\

CHR - Extension: Gmail = C:\Users\xxx\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\

 

O1 HOSTS File: ([2012-07-17 15:23:31 | 000,000,126 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts

O1 - Hosts: 127.0.0.1 localhost

O1 - Hosts: 127.0.0.1 genuine.microsoft.com

O1 - Hosts: 127.0.0.1 mpa.one.microsoft.com

O1 - Hosts: 127.0.0.1 sls.microsoft.com

O2:64bit: - BHO: (Java™ Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.)

O2:64bit: - BHO: (SearchCore for Browsers) - {9D717F81-9148-4f12-8568-69135F087DB0} - C:\PROGRA~2\SEARCH~1\SEARCH~1\x64\BROWSE~1.DLL (Bandoo Media, inc)

O2:64bit: - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)

O2:64bit: - BHO: (no name) - {BE7A24F5-69CB-4708-B77B-B1EDA6043B95} - No CLSID value found.

O2:64bit: - BHO: (Hotspot Shield Class) - {F9E4A054-E9B1-4BC3-83A3-76A1AE736170} - C:\Program Files (x86)\Hotspot Shield\HssIE\HssIE_64.dll (AnchorFree Inc.)

O2 - BHO: (AcroIEHlprObj Class) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files (x86)\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)

O2 - BHO: (Shopping Assistant Plugin) - {1631550F-191D-4826-B069-D9439253D926} - C:\Program Files (x86)\PriceGong\2.5.3\PriceGongIE.dll (PriceGong)

O2 - BHO: (RealPlayer Download and Record Plugin for Internet Explorer) - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll (RealPlayer)

O2 - BHO: (Conduit Engine ) - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files (x86)\ConduitEngine\prxConduitEngin.dll (Conduit Ltd.)

O2 - BHO: (SearchPredictObj Class) - {389943B0-C3A2-4E69-82CB-8596A84CB3DC} - C:\Program Files (x86)\SearchPredict\SearchPredict.dll (SpeedBit Ltd.)

O2 - BHO: (AOL Toolbar Loader) - {3ef64538-8b54-4573-b48f-4d34b0238ab2} - C:\Program Files (x86)\AOL Toolbar\aoltb.dll (AOL Inc.)

O2 - BHO: (Free Lunch Design Toolbar) - {57cc715d-37ca-44e4-9ec2-8c2cbddb25ec} - C:\Program Files (x86)\Free_Lunch_Design bFree.dll File not found

O2 - BHO: (TBSB01620 Class) - {58124A0B-DC32-4180-9BFF-E0E21AE34026} - C:\Program Files (x86)\IMinent Toolbar bcore3.dll ()

O2 - BHO: (Java™ Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Oracle\JavaFX 2.1 Runtime\bin\ssv.dll (Oracle Corporation)

O2 - BHO: (no name) - {84FF7BD6-B47F-46F8-9130-01B2696B36CB} - No CLSID value found.

O2 - BHO: (ALOT Appbar Helper) - {85F5CF95-EC8F-49fc-BB3F-38C79455CBA2} - C:\Program Files (x86)\alotappbar\bin\BHO\ALOTHelperBHO.dll (Vertro)

O2 - BHO: (Fantapper) - {8A86D350-37AB-410A-8531-7D1363F317B3} - C:\Program Files (x86)\Brand Affinity Technologies\Fantapper Player\\IEInstaller.dll ()

O2 - BHO: (Softonic-Polska_ Toolbar) - {8f3c1d75-d467-43c2-9a36-655366b76f5f} - C:\Program Files (x86)\Softonic-Polska_\prxtbSoft.dll (Conduit Ltd.)

O2 - BHO: (Searchqu Toolbar) - {99079a25-328f-4bd4-be04-00955acaa0a7} - C:\PROGRA~2\SEARCH~2\Datamngr\ToolBar\searchqudtx.dll ()

O2 - BHO: (SearchCore for Browsers) - {9D717F81-9148-4f12-8568-69135F087DB0} - C:\PROGRA~2\SEARCH~1\SEARCH~1\BROWSE~1.DLL (Bandoo Media, inc)

O2 - BHO: (IMinent WebBooster (BHO)) - {A09AB6EB-31B5-454C-97EC-9B294D92EE2A} - C:\Program Files (x86)\Iminent\Iminent.WebBooster.InternetExplorer.dll (Iminent)

O2 - BHO: (DealPly) - {A6174F27-1FFF-E1D6-A93F-BA48AD5DD448} - C:\Program Files (x86)\DealPly\DealPlyIE.dll (DealPly Technologies Ltd)

O2 - BHO: (Skype Browser Helper) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)

O2 - BHO: (RewardsArcadeSuite) - {B6EF6C45-5E8D-4c3b-B580-A5073261A381} - C:\Program Files (x86)\RewardsArcadeSuite\RewardsArcadeSuite.dll (215 Apps)

O2 - BHO: (no name) - {BE7A24F5-69CB-4708-B77B-B1EDA6043B95} - No CLSID value found.

O2 - BHO: (Ask Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll (Ask)

O2 - BHO: (IncrediMail MediaBar 2 Toolbar) - {d40b90b4-d3b1-4d6b-a5d7-dc041c1b76c0} - C:\Program Files (x86)\IncrediMail_MediaBar_2\prxtbInc0.dll (Conduit Ltd.)

O2 - BHO: (Java™ Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Oracle\JavaFX 2.1 Runtime\bin\jp2ssv.dll (Oracle Corporation)

O2 - BHO: (NetAssistant) - {E38FA08E-F56A-4169-ABF5-5C71E3C153A1} - C:\Program Files (x86)\Freeze.com\NetAssistant\NetAssistant.dll (W3i, LLC)

O2 - BHO: (ShopAtHomeIEHelper Class) - {E8DAAA30-6CAA-4b58-9603-8E54238219E2} - C:\Program Files (x86)\SelectRebates\Toolbar\ShopAtHomeToolbar.dll (ShopAtHome.com)

O2 - BHO: (Shop to Win) - {EE146ACC-D881-1414-2148-B1D008B47ADB} - C:\Program Files (x86)\Shop to Win 27\Shop to Win 27.dll (Shop To Win, LLC)

O2 - BHO: (GetDislike) - {F0E15660-5BE6-48b9-8ED6-F8C1643BD6B8} - C:\Users\xxx\AppData\Local\getdislike\ie\getdislike.dll ()

O2 - BHO: (Hotspot Shield Class) - {F9E4A054-E9B1-4BC3-83A3-76A1AE736170} - C:\Program Files (x86)\Hotspot Shield\HssIE\HssIE.dll (AnchorFree Inc.)

O3:64bit: - HKLM\..\Toolbar: (Google Toolbar) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)

O3:64bit: - HKLM\..\Toolbar: (no name) - 10 - No CLSID value found.

O3 - HKLM\..\Toolbar: (no name) - {0329E7D6-6F54-462D-93F6-F5C3118BADF2} - No CLSID value found.

O3 - HKLM\..\Toolbar: (no name) - {06C7AD57-B655-418D-9AB8-9526A6D2E052} - No CLSID value found.

O3 - HKLM\..\Toolbar: (no name) - {28387537-e3f9-4ed7-860c-11e69af4a8a0} - No CLSID value found.

O3 - HKLM\..\Toolbar: (Conduit Engine ) - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files (x86)\ConduitEngine\prxConduitEngin.dll (Conduit Ltd.)

O3 - HKLM\..\Toolbar: (Free Lunch Design Toolbar) - {57cc715d-37ca-44e4-9ec2-8c2cbddb25ec} - C:\Program Files (x86)\Free_Lunch_Design bFree.dll File not found

O3 - HKLM\..\Toolbar: (Softonic-Polska_ Toolbar) - {8f3c1d75-d467-43c2-9a36-655366b76f5f} - C:\Program Files (x86)\Softonic-Polska_\prxtbSoft.dll (Conduit Ltd.)

O3 - HKLM\..\Toolbar: (IMinent Toolbar) - {977AE9CC-AF83-45E8-9E03-E2798216E2D5} - C:\Program Files (x86)\IMinent Toolbar bcore3.dll ()

O3 - HKLM\..\Toolbar: (ShopAtHome.com Toolbar) - {98279C38-DE4B-4bcf-93C9-8EC26069D6F4} - C:\Program Files (x86)\SelectRebates\Toolbar\ShopAtHomeToolbar.dll (ShopAtHome.com)

O3 - HKLM\..\Toolbar: (no name) - {98889811-442D-49dd-99D7-DC866BE87DBC} - No CLSID value found.

O3 - HKLM\..\Toolbar: (Searchqu Toolbar) - {99079a25-328f-4bd4-be04-00955acaa0a7} - C:\PROGRA~2\SEARCH~2\Datamngr\ToolBar\searchqudtx.dll ()

O3 - HKLM\..\Toolbar: (ALOT Appbar) - {A531D99C-5A22-449b-83DA-872725C6D0ED} - C:\Program Files (x86)\alotappbar\bin\ALOTHelper.dll (Vertro)

O3 - HKLM\..\Toolbar: (no name) - {b278d9f8-0fa9-465e-9938-0c392605d8e3} - No CLSID value found.

O3 - HKLM\..\Toolbar: (AOL Toolbar) - {ba00b7b1-0351-477a-b948-23e3ee5a73d4} - C:\Program Files (x86)\AOL Toolbar\aoltb.dll (AOL Inc.)

O3 - HKLM\..\Toolbar: (Ask Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll (Ask)

O3 - HKLM\..\Toolbar: (IncrediMail MediaBar 2 Toolbar) - {d40b90b4-d3b1-4d6b-a5d7-dc041c1b76c0} - C:\Program Files (x86)\IncrediMail_MediaBar_2\prxtbInc0.dll (Conduit Ltd.)

O3 - HKLM\..\Toolbar: (no name) - 10 - No CLSID value found.

O3:64bit: - HKCU\..\Toolbar\WebBrowser: (Google Toolbar) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)

O3 - HKCU\..\Toolbar\WebBrowser: (Conduit Engine ) - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files (x86)\ConduitEngine\prxConduitEngin.dll (Conduit Ltd.)

O3 - HKCU\..\Toolbar\WebBrowser: (Free Lunch Design Toolbar) - {57CC715D-37CA-44E4-9EC2-8C2CBDDB25EC} - C:\Program Files (x86)\Free_Lunch_Design bFree.dll File not found

O3 - HKCU\..\Toolbar\WebBrowser: (Softonic-Polska_ Toolbar) - {8F3C1D75-D467-43C2-9A36-655366B76F5F} - C:\Program Files (x86)\Softonic-Polska_\prxtbSoft.dll (Conduit Ltd.)

O3 - HKCU\..\Toolbar\WebBrowser: (AOL Toolbar) - {BA00B7B1-0351-477A-B948-23E3EE5A73D4} - C:\Program Files (x86)\AOL Toolbar\aoltb.dll (AOL Inc.)

O3 - HKCU\..\Toolbar\WebBrowser: (Ask Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll (Ask)

O3 - HKCU\..\Toolbar\WebBrowser: (IncrediMail MediaBar 2 Toolbar) - {D40B90B4-D3B1-4D6B-A5D7-DC041C1B76C0} - C:\Program Files (x86)\IncrediMail_MediaBar_2\prxtbInc0.dll (Conduit Ltd.)

O4:64bit: - HKLM..\Run: [AdobeAAMUpdater-1.0] C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe (Adobe Systems Incorporated)

O4:64bit: - HKLM..\Run: [COMODO Internet Security] C:\Program Files\COMODO\COMODO Internet Security\cfp.exe (COMODO)

O4:64bit: - HKLM..\Run: [HotKeysCmds] C:\Windows\SysNative\hkcmd.exe (Intel Corporation)

O4:64bit: - HKLM..\Run: [igfxTray] C:\Windows\SysNative\igfxtray.exe (Intel Corporation)

O4:64bit: - HKLM..\Run: [Persistence] C:\Windows\SysNative\igfxpers.exe (Intel Corporation)

O4:64bit: - HKLM..\Run: [RTHDVCPL] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor)

O4 - HKLM..\Run: [] File not found

O4 - HKLM..\Run: [AdobeCS5.5ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS5.5ServiceManager\CS5.5ServiceManager.exe" -launchedbylogin File not found

O4 - HKLM..\Run: [ApnUpdater] C:\Program Files (x86)\Ask.com\Updater\Updater.exe (Ask)

O4 - HKLM..\Run: [COMODO] C:\Program Files\COMODO\COMODO GeekBuddy\CLPSLA.exe (COMODO)

O4 - HKLM..\Run: [CPA] C:\Program Files\COMODO\COMODO GeekBuddy\VALA.exe (COMODO)

O4 - HKLM..\Run: [iMSS] C:\Program Files (x86)\Intel\Intel® Management Engine Components\IMSS\PIconStartup.exe (Intel Corporation)

O4 - HKLM..\Run: [switchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe (Adobe Systems Incorporated)

O4 - HKCU..\Run: [AdobeBridge] File not found

O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1

O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1

O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5

O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3

O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145

O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: LogonHoursAction = 2

O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DontDisplayLogonHoursWarnings = 1

O9 - Extra Button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)

O9 - Extra 'Tools' menuitem : Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)

O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - E:\Program Files (x86)\SpeedBit Video Accelerator\SBLSP.dll (SpeedBit)

O10 - Protocol_Catalog9\Catalog_Entries\000000000002 - E:\Program Files (x86)\SpeedBit Video Accelerator\SBLSP.dll (SpeedBit)

O10 - Protocol_Catalog9\Catalog_Entries\000000000003 - E:\Program Files (x86)\SpeedBit Video Accelerator\SBLSP.dll (SpeedBit)

O10 - Protocol_Catalog9\Catalog_Entries\000000000004 - E:\Program Files (x86)\SpeedBit Video Accelerator\SBLSP.dll (SpeedBit)

O10 - Protocol_Catalog9\Catalog_Entries\000000000005 - C:\Windows\SysWow64\HMIPCore.dll (Hide My IP)

O10 - Protocol_Catalog9\Catalog_Entries\000000000006 - C:\Windows\SysWow64\HMIPCore.dll (Hide My IP)

O10 - Protocol_Catalog9\Catalog_Entries\000000000007 - C:\Windows\SysWow64\HMIPCore.dll (Hide My IP)

O10 - Protocol_Catalog9\Catalog_Entries\000000000008 - C:\Windows\SysWow64\HMIPCore.dll (Hide My IP)

O10 - Protocol_Catalog9\Catalog_Entries\000000000021 - C:\Windows\SysWow64\HMIPCore.dll (Hide My IP)

O10 - Protocol_Catalog9\Catalog_Entries\000000000022 - E:\Program Files (x86)\SpeedBit Video Accelerator\SBLSP.dll (SpeedBit)

O1364bit: - gopher Prefix: missing

O13 - gopher Prefix: missing

O15 - HKCU\..Trusted Domains: aol.com ([objects] * is out of zone range - 5)

O16:64bit: - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_31)

O16:64bit: - DPF: {CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_31)

O16:64bit: - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Reg Error: Key error.)

O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/...indows-i586.cab (Java Plug-in 10.5.1)

O16 - DPF: {CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_31)

O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 10.5.1)

O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 217.197.70.1 217.197.78.1 217.197.77.1

O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{F97A7637-2813-48F4-8C81-248C05FCAE01}: DhcpNameServer = 217.197.70.1 217.197.78.1 217.197.77.1

O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{F97A7637-2813-48F4-8C81-248C05FCAE01}: NameServer = 8.26.56.26,156.154.70.22

O18:64bit: - Protocol\Handler\skype4com - No CLSID value found

O18:64bit: - Protocol\Handler\skype-ie-addon-data - No CLSID value found

O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL (Skype Technologies)

O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)

O20:64bit: - AppInit_DLLs: (C:\PROGRA~2\IMESHA~1\MediaBar\Datamngr\x64\datamngr.dll) - File not found

O20:64bit: - AppInit_DLLs: (C:\PROGRA~2\IMESHA~1\MediaBar\Datamngr\x64\IEBHO.dll) - File not found

O20:64bit: - AppInit_DLLs: (C:\PROGRA~2\SEARCH~1\SEARCH~1\x64\datamngr.dll) - C:\PROGRA~2\SEARCH~1\SEARCH~1\x64\datamngr.dll (Bandoo Media, inc)

O20:64bit: - AppInit_DLLs: (C:\PROGRA~2\SEARCH~1\SEARCH~1\x64\IEBHO.dll) - C:\PROGRA~2\SEARCH~1\SEARCH~1\x64\IEBHO.dll (Bandoo Media, inc)

O20:64bit: - AppInit_DLLs: (C:\Windows\system32\guard64.dll) - C:\Windows\SysNative\guard64.dll (COMODO)

O20 - AppInit_DLLs: (C:\PROGRA~2\IMESHA~1\MediaBar\Datamngr\datamngr.dll) - File not found

O20 - AppInit_DLLs: (C:\PROGRA~2\IMESHA~1\MediaBar\Datamngr\IEBHO.dll) - File not found

O20 - AppInit_DLLs: (C:\Windows\SysWOW64\guard32.dll) - C:\Windows\SysWOW64\guard32.dll (COMODO)

O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)

O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)

O20:64bit: - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\SysNative\SystemPropertiesPerformance.exe (Microsoft Corporation)

O20:64bit: - HKLM Winlogon: VMApplet - (/pagefile) - File not found

O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)

O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\Windows\SysWow64\userinit.exe (Microsoft Corporation)

O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found

O20:64bit: - Winlogon\Notify\igfxcui: DllName - (igfxdev.dll) - C:\Windows\SysNative\igfxdev.dll (Intel Corporation)

O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.

O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.

O32 - HKLM CDRom: AutoRun - 1

O34 - HKLM BootExecute: (autocheck autochk *)

O35:64bit: - HKLM\..comfile [open] -- "%1" %*

O35:64bit: - HKLM\..exefile [open] -- "%1" %*

O35 - HKLM\..comfile [open] -- "%1" %*

O35 - HKLM\..exefile [open] -- "%1" %*

O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*

O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*

O37 - HKLM\...com [@ = comfile] -- "%1" %*

O37 - HKLM\...exe [@ = exefile] -- "%1" %*

O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)

O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)

O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

 

========== Files/Folders - Created Within 30 Days ==========

 

[2012-07-17 15:23:32 | 000,410,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\systemcpl.dll

[2012-07-17 15:23:32 | 000,001,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\sppcomapi.dll

[2012-07-16 17:39:49 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\TeamSpeak 3 Client

[2012-07-16 17:26:04 | 000,000,000 | ---D | C] -- C:\Users\xxx\AppData\Roaming\Patcher

[2012-07-16 14:09:45 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AriusMt2

[2012-07-15 23:39:42 | 000,000,000 | ---D | C] -- C:\Windows\rescache

[2012-07-15 19:10:30 | 000,000,000 | ---D | C] -- C:\Users\xxx\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Minecraft Mod Installer

[2012-07-15 19:10:30 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Minecraft Mod Installer

[2012-07-13 00:22:44 | 000,000,000 | ---D | C] -- C:\Users\xxx\AppData\Roaming\.techniclauncher

[2012-07-12 22:49:16 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SPEEDbit Video Downloader

[2012-07-12 22:49:15 | 000,000,000 | ---D | C] -- C:\ProgramData\SpeedBit

[2012-07-12 22:49:15 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\SearchPredict

[2012-07-12 22:49:05 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SpeedBit Video Accelerator

[2012-07-12 22:49:03 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\Speedbit

[2012-07-12 22:49:03 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\SpeedBit

[2012-07-12 22:49:01 | 000,172,032 | ---- | C] (Jin Hui E-mail: [email protected] Web: http://www.jcomsoft.com) -- C:\Windows\SysWow64\AniGIF.ocx

[2012-07-11 00:58:11 | 000,237,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\url.dll

[2012-07-11 00:58:11 | 000,231,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\url.dll

[2012-07-11 00:58:11 | 000,096,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mshtmled.dll

[2012-07-11 00:58:11 | 000,073,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmled.dll

[2012-07-11 00:58:10 | 000,248,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieui.dll

[2012-07-11 00:58:10 | 000,176,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieui.dll

[2012-07-11 00:58:10 | 000,173,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieUnatt.exe

[2012-07-11 00:58:10 | 000,142,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieUnatt.exe

[2012-07-11 00:58:09 | 002,311,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript9.dll

[2012-07-11 00:58:09 | 001,494,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\inetcpl.cpl

[2012-07-11 00:58:09 | 001,427,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\inetcpl.cpl

[2012-07-11 00:58:09 | 000,818,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript.dll

[2012-07-11 00:58:09 | 000,716,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\jscript.dll

[2012-07-10 23:29:25 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msxml3r.dll

[2012-07-10 23:29:25 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msxml3r.dll

[2012-07-10 23:29:10 | 000,307,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ncrypt.dll

[2012-07-10 23:28:53 | 001,462,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\crypt32.dll

[2012-07-10 23:28:53 | 000,140,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cryptnet.dll

[2012-07-10 23:27:04 | 000,805,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\cdosys.dll

[2012-07-10 23:27:02 | 001,133,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cdosys.dll

[2012-07-09 15:17:41 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hi-Rez Studios

[2012-07-09 15:17:40 | 000,000,000 | ---D | C] -- C:\ProgramData\Hi-Rez Studios

[2012-06-30 19:06:52 | 000,000,000 | ---D | C] -- C:\Users\xxx\AppData\Local\DNA

[2012-06-30 19:06:51 | 000,000,000 | ---D | C] -- C:\Users\xxx\Program Files (x86)

[2012-06-30 19:06:51 | 000,000,000 | ---D | C] -- C:\Users\xxx\AppData\Roaming\DNA

[2012-06-27 21:59:52 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogMeIn Hamachi

[2012-06-26 22:43:11 | 000,000,000 | ---D | C] -- C:\Users\xxx\AppData\Roaming\.minecraft

[2012-06-26 16:29:37 | 000,000,000 | ---D | C] -- C:\Users\xxx\AppData\Roaming\majnclaft

[2012-06-25 20:36:10 | 000,000,000 | ---D | C] -- C:\Users\xxx\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam

[2012-06-25 20:12:25 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Steam

[2012-06-25 20:12:21 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam

[2012-06-25 17:29:58 | 000,000,000 | ---D | C] -- C:\ProgramData\AVS4YOU

[2012-06-25 17:29:45 | 000,000,000 | ---D | C] -- C:\Users\xxx\AppData\Roaming\AVS4YOU

[2012-06-25 17:28:41 | 000,000,000 | ---D | C] -- C:\Users\xxx\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AVS4YOU

[2012-06-25 17:28:32 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\AVS4YOU

[2012-06-25 17:27:59 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVS4YOU

[2012-06-25 17:27:27 | 011,137,024 | ---- | C] (Intel Corporation) -- C:\Windows\SysWow64\libmfxsw32.dll

[2012-06-25 17:27:24 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\AVSMedia

[2 C:\Windows\SysWow64\*.tmp files -> C:\Windows\SysWow64\*.tmp -> ]

[1 C:\*.tmp files -> C:\*.tmp -> ]

 

========== Files - Modified Within 30 Days ==========

 

[2012-07-21 20:41:10 | 001,474,832 | ---- | M] () -- C:\Windows\SysNative\drivers\sfi.dat

[2012-07-21 20:04:07 | 000,001,042 | ---- | M] () -- C:\Windows asks\GoogleUpdateTaskMachineUA.job

[2012-07-21 19:54:08 | 000,000,930 | ---- | M] () -- C:\Windows asks\Adobe Flash Player Updater.job

[2012-07-21 10:31:21 | 000,001,038 | ---- | M] () -- C:\Windows asks\GoogleUpdateTaskMachineCore.job

[2012-07-21 10:30:58 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat

[2012-07-21 10:30:53 | 3113,574,400 | -HS- | M] () -- C:\hiberfil.sys

[2012-07-20 18:00:54 | 000,861,922 | ---- | M] () -- C:\Windows\SysNative\perfh015.dat

[2012-07-20 18:00:54 | 000,694,670 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat

[2012-07-20 18:00:54 | 000,196,650 | ---- | M] () -- C:\Windows\SysNative\perfc015.dat

[2012-07-20 18:00:54 | 000,161,682 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat

[2012-07-20 18:00:54 | 000,006,256 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI

[2012-07-18 23:30:15 | 000,017,304 | ---- | M] () -- C:\Users\xxx\.recently-used.xbel

[2012-07-18 11:29:35 | 000,000,288 | ---- | M] () -- C:\Windows asks\DLL-files.com Fixer_UPDATES.job

[2012-07-18 10:09:59 | 000,000,448 | -H-- | M] () -- C:\Windows asks\Norton Security Scan for xxx.job

[2012-07-17 15:23:49 | 000,010,528 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0

[2012-07-17 15:23:48 | 000,010,528 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0

[2012-07-17 15:23:37 | 000,002,048 | ---- | M] () -- C:\Windows\SysWow64\winver.exe

[2012-07-17 15:23:35 | 000,410,624 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\systemcpl.dll

[2012-07-17 15:23:33 | 000,001,536 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\sppcomapi.dll

[2012-07-17 15:23:32 | 000,113,543 | ---- | M] () -- C:\Windows\SysWow64\slmgr.vbs

[2012-07-17 15:23:31 | 000,000,126 | ---- | M] () -- C:\Windows\SysNative\drivers\etc\hosts

[2012-07-17 15:21:58 | 004,829,696 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT

[2012-07-17 14:50:08 | 000,626,554 | ---- | M] () -- C:\Users\xxx\Documents\cc_20120717_144959.reg

[2012-07-13 11:24:42 | 000,000,003 | ---- | M] () -- C:\Windows\SysNative\HRUPPROG.DIE.NOW

[2012-07-12 22:49:04 | 000,102,912 | ---- | M] () -- C:\Windows\SysWow64\EasyHook64.dll

[2012-07-12 22:49:04 | 000,084,480 | ---- | M] () -- C:\Windows\SysWow64\EasyHook32.dll

[2012-07-12 22:49:01 | 000,172,032 | ---- | M] (Jin Hui E-mail: [email protected] Web: http://www.jcomsoft.com) -- C:\Windows\SysWow64\AniGIF.ocx

[2012-07-12 18:56:33 | 000,426,184 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerApp.exe

[2012-07-12 18:56:33 | 000,070,344 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl

[2012-07-12 18:56:30 | 009,822,920 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerInstaller.exe

[2012-07-12 16:01:20 | 000,283,304 | ---- | M] () -- C:\Windows\SysWow64\PnkBstrB.xtr

[2012-07-12 16:01:20 | 000,283,304 | ---- | M] () -- C:\Windows\SysWow64\PnkBstrB.exe

[2012-07-12 15:15:44 | 000,283,304 | ---- | M] () -- C:\Windows\SysWow64\PnkBstrB.ex0

[2 C:\Windows\SysWow64\*.tmp files -> C:\Windows\SysWow64\*.tmp -> ]

[1 C:\*.tmp files -> C:\*.tmp -> ]

 

========== Files Created - No Company Name ==========

 

[2012-07-18 23:30:15 | 000,017,304 | ---- | C] () -- C:\Users\xxx\.recently-used.xbel

[2012-07-17 15:23:32 | 000,113,543 | ---- | C] () -- C:\Windows\SysWow64\slmgr.vbs

[2012-07-17 15:23:32 | 000,002,048 | ---- | C] () -- C:\Windows\SysWow64\winver.exe

[2012-07-17 15:16:03 | 004,829,696 | ---- | C] () -- C:\Windows\SysNative\FNTCACHE.DAT

[2012-07-17 14:50:01 | 000,626,554 | ---- | C] () -- C:\Users\xxx\Documents\cc_20120717_144959.reg

[2012-07-13 16:49:27 | 000,094,208 | ---- | C] () -- C:\Windows\ImageSearchDLL.dll

[2012-07-13 11:24:42 | 000,000,003 | ---- | C] () -- C:\Windows\SysNative\HRUPPROG.DIE.NOW

[2012-07-12 22:49:03 | 000,102,912 | ---- | C] () -- C:\Windows\SysWow64\EasyHook64.dll

[2012-07-12 22:49:03 | 000,084,480 | ---- | C] () -- C:\Windows\SysWow64\EasyHook32.dll

[2012-06-21 14:38:48 | 000,000,023 | -HS- | C] () -- C:\Windows\SysWow64\aaefb_d.dll

[2012-06-16 19:06:27 | 002,668,032 | ---- | C] () -- C:\Windows\SysWow64\elsword.exe

[2012-06-01 20:15:26 | 001,963,396 | ---- | C] () -- C:\Users\xxx\AppData\Roaming\minecraft.jar

[2012-05-17 17:01:59 | 000,000,640 | RHS- | C] () -- C:\Users\xxx\ntuser.pol

[2012-05-16 17:27:14 | 000,000,132 | ---- | C] () -- C:\Users\xxx\AppData\Roaming\Preferencje Adobe CS5 dla formatu PNG

[2012-04-08 15:14:52 | 000,000,000 | ---- | C] () -- C:\Windows\SysWow64\cd.dat

[2012-04-03 17:35:50 | 058,570,678 | ---- | C] () -- C:\Users\xxx\AppData\Roaming\.minecraft.rar

[2012-04-01 13:18:08 | 000,089,048 | -H-- | C] () -- C:\Windows\SysWow64\mlfcache.dat

[2012-03-29 23:17:29 | 000,017,408 | ---- | C] () -- C:\Users\xxx\AppData\Local\WebpageIcons.db

[2012-03-29 09:48:35 | 002,580,552 | ---- | C] () -- C:\Windows\SysWow64\pbsvc.exe

[2012-03-25 18:01:12 | 000,283,304 | ---- | C] () -- C:\Windows\SysWow64\PnkBstrB.exe

[2012-03-25 18:01:11 | 000,076,888 | ---- | C] () -- C:\Windows\SysWow64\PnkBstrA.exe

[2012-02-26 13:25:21 | 000,007,598 | ---- | C] () -- C:\Users\xxx\AppData\Local\Resmon.ResmonCfg

[2012-02-09 21:05:44 | 000,416,064 | ---- | C] () -- C:\Windows\SysWow64\nvStreaming.exe

[2012-02-08 16:37:57 | 000,000,335 | ---- | C] () -- C:\Windows\nsreg.dat

[2012-01-25 12:41:20 | 000,001,111 | ---- | C] () -- C:\Users\xxx\AppData\Local\{627F636B-D1FD-4080-BA55-E55C2DCB2484}

[2011-12-24 23:35:14 | 000,081,716 | ---- | C] () -- C:\Windows\SysWow64\wbers.dat.dmp

[2011-11-08 20:33:36 | 000,484,352 | ---- | C] () -- C:\Windows\SysWow64\lame_enc.dll

[2011-10-23 12:24:03 | 000,164,992 | ---- | C] () -- C:\Windows\SysWow64\drivers\athsgt.sys

[2011-10-23 12:24:03 | 000,012,544 | ---- | C] () -- C:\Windows\SysWow64\drivers\limsgt.sys

[2011-10-21 18:27:54 | 000,867,020 | ---- | C] () -- C:\Windows\SysWow64\igkrng575.bin

[2011-10-21 18:27:54 | 000,128,204 | ---- | C] () -- C:\Windows\SysWow64\igcompkrng575.bin

[2011-10-21 18:27:54 | 000,105,608 | ---- | C] () -- C:\Windows\SysWow64\igfcg575m.bin

[2011-10-21 18:03:04 | 013,903,872 | ---- | C] () -- C:\Windows\SysWow64\ig4icd32.dll

[2011-10-13 22:29:40 | 000,042,392 | ---- | C] () -- C:\Windows\SysWow64\xfcodec.dll

[2011-08-26 08:30:18 | 001,638,614 | ---- | C] () -- C:\Windows\SysWow64\PerfStringBackup.INI

[2011-08-23 07:36:13 | 000,000,000 | ---- | C] () -- C:\Users\xxx\AppData\Local\{A8A7DE10-9868-457A-8477-A9293DF6EDEC}

[2011-08-22 18:03:16 | 000,000,000 | ---- | C] () -- C:\Users\xxx\AppData\Local\{F890AB9E-A916-47A5-8AB3-5A8F9CADA90C}

[2011-08-22 17:22:19 | 000,008,704 | ---- | C] () -- C:\Users\xxx\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini

[2011-08-18 23:44:07 | 000,168,448 | ---- | C] () -- C:\Windows\SysWow64\unrar.dll

[2011-08-18 23:44:06 | 003,596,288 | ---- | C] () -- C:\Windows\SysWow64\qt-dx331.dll

[2011-08-18 23:44:06 | 000,795,648 | ---- | C] () -- C:\Windows\SysWow64\xvidcore.dll

[2011-08-18 23:44:06 | 000,130,048 | ---- | C] () -- C:\Windows\SysWow64\xvidvfw.dll

[2011-08-18 23:44:05 | 000,067,584 | ---- | C] () -- C:\Windows\SysWow64\ff_vfw.dll

 

========== Alternate Data Streams ==========

 

@Alternate Data Stream - 112 bytes -> C:\ProgramData\TEMP:D1B5B4F1

 

< End of report >

 

 

Extras

 

 

OTL Extras logfile created on: 2012-07-21 20:21:00 - Run 1

OTL by OldTimer - Version 3.2.54.0 Folder = C:\Users\xxx\Downloads

64bit- Enterprise Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation

Internet Explorer (Version = 9.0.8112.16421)

Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd

 

3,87 Gb Total Physical Memory | 1,27 Gb Available Physical Memory | 32,89% Memory free

7,73 Gb Paging File | 5,39 Gb Available in Paging File | 69,76% Paging File free

Paging file location(s): ?:\pagefile.sys [binary data]

 

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)

Drive C: | 97,56 Gb Total Space | 14,00 Gb Free Space | 14,35% Space Free | Partition Type: NTFS

Drive D: | 292,97 Gb Total Space | 281,93 Gb Free Space | 96,23% Space Free | Partition Type: NTFS

Drive E: | 540,89 Gb Total Space | 252,87 Gb Free Space | 46,75% Space Free | Partition Type: NTFS

 

Computer Name: KUBA-PC | User Name: xxx | Logged in as Administrator.

Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans

Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

 

========== Extra Registry (SafeList) ==========

 

 

========== File Associations ==========

 

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]

.html[@ = ChromeHTML] -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.)

.url[@ = InternetShortcut] -- C:\Windows\SysNative\rundll32.exe (Microsoft Corporation)

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]

.cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation)

.html [@ = ChromeHTML] -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.)

 

[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]

.html [@ = ChromeHTML] -- Reg Error: Key error. File not found

 

========== Shell Spawning ==========

 

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]

batfile [open] -- "%1" %*

cmdfile [open] -- "%1" %*

comfile [open] -- "%1" %*

exefile [open] -- "%1" %*

helpfile [open] -- Reg Error: Key error.

htmlfile [edit] -- Reg Error: Key error.

htmlfile [print] -- rundll32.exe %windir%\system32\mshtml.dll,PrintHTML "%1"

http [open] -- "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" -- "%1" (Google Inc.)

https [open] -- "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" -- "%1" (Google Inc.)

inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)

InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation)

InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)

piffile [open] -- "%1" %*

regfile [merge] -- Reg Error: Key error.

scrfile [config] -- "%1"

scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l

scrfile [open] -- "%1" /S

txtfile [edit] -- Reg Error: Key error.

Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1

Directory [bridge] -- E:\Program Files (x86)\Adobe Bridge CS5.1\Bridge.exe "%L" (Adobe Systems, Inc.)

Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)

Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

Folder [explore] -- Reg Error: Value error.

Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]

batfile [open] -- "%1" %*

cmdfile [open] -- "%1" %*

comfile [open] -- "%1" %*

cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)

exefile [open] -- "%1" %*

helpfile [open] -- Reg Error: Key error.

htmlfile [edit] -- Reg Error: Key error.

htmlfile [print] -- rundll32.exe %windir%\system32\mshtml.dll,PrintHTML "%1"

http [open] -- "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" -- "%1" (Google Inc.)

https [open] -- "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" -- "%1" (Google Inc.)

inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)

piffile [open] -- "%1" %*

regfile [merge] -- Reg Error: Key error.

scrfile [config] -- "%1"

scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l

scrfile [open] -- "%1" /S

txtfile [edit] -- Reg Error: Key error.

Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1

Directory [bridge] -- E:\Program Files (x86)\Adobe Bridge CS5.1\Bridge.exe "%L" (Adobe Systems, Inc.)

Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)

Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

Folder [explore] -- Reg Error: Value error.

Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

 

========== Security Center Settings ==========

 

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]

"cval" = 1

 

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

 

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]

"VistaSp1" = 28 4D B2 76 41 04 CA 01 [binary data]

"AntiVirusOverride" = 0

"AntiSpywareOverride" = 0

"FirewallOverride" = 0

 

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]

 

========== Firewall Settings ==========

 

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]

"DisableNotifications" = 0

"EnableFirewall" = 1

"DoNotAllowExceptions" = 0

 

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]

"DisableNotifications" = 0

"EnableFirewall" = 0

"DefaultOutboundAction" = 0

"DefaultInboundAction" = 1

"DoNotAllowExceptions" = 0

 

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]

"DisableNotifications" = 0

"EnableFirewall" = 0

"DefaultOutboundAction" = 0

"DefaultInboundAction" = 1

 

========== Authorized Applications List ==========

 

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]

"C:\Program Files (x86)\iBryte\browseforchange\ibrytedesktop.exe" = C:\Program Files (x86)\iBryte\browseforchange\ibrytedesktop.exe:*:Enabled:iBryteDesktop

"C:\Program Files (x86)\iBryte\playbryte\ibrytedesktop.exe" = C:\Program Files (x86)\iBryte\playbryte\ibrytedesktop.exe:*:Enabled:iBryteDesktop

"C:\Program Files (x86)\iBryte\browseforchange\ibrytedesktop.exe" = C:\Program Files (x86)\iBryte\browseforchange\ibrytedesktop.exe:*:Enabled:iBryteDesktop

"C:\Program Files (x86)\iBryte\playbryte\ibrytedesktop.exe" = C:\Program Files (x86)\iBryte\playbryte\ibrytedesktop.exe:*:Enabled:iBryteDesktop

 

 

========== Vista Active Open Ports Exception List ==========

 

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]

"{08FDA8A6-0CE3-4B25-AC59-E9AA9BE16BD0}" = lport=4000 | protocol=6 | dir=out | app=c:\program files (x86)\dll-files.com fixer\dllfixer.exe |

"{0D75CA85-8BA6-46D6-B697-6C4FC8664364}" = lport=4000 | protocol=6 | dir=out | app=c:\program files (x86)\dll-files.com fixer\dllfixer.exe |

"{149D8CA8-7090-4EF7-96F0-80182E3B1E0D}" = lport=4000 | protocol=6 | dir=out | app=c:\program files (x86)\dll-files.com fixer\dllfixer.exe |

"{15DAE284-731D-4AD6-AC0D-433752FB4173}" = lport=4000 | protocol=6 | dir=out | app=c:\program files (x86)\dll-files.com fixer\dllfixer.exe |

"{18165B6F-440E-41DB-9642-EF8A0195BF8E}" = lport=10243 | protocol=6 | dir=in | app=system |

"{1A627925-0D0F-43E0-A146-873AA1EEC4AF}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |

"{1B58676E-3515-4A99-909A-7A035EC56942}" = lport=4000 | protocol=6 | dir=out | app=c:\program files (x86)\dll-files.com fixer\dllfixer.exe |

"{1DC63612-F9FE-4DE6-B160-B643777B8B4A}" = lport=2869 | protocol=6 | dir=in | app=system |

"{2222F1FF-20D0-4527-A194-6A4BAE35B754}" = lport=57077 | protocol=17 | dir=in | name=pando media booster |

"{22D5CC83-8305-415F-9C94-7FCB3D29E76A}" = lport=58761 | protocol=6 | dir=in | name=pando media booster |

"{2524F7EE-A443-4CDE-B365-1D35172B7DA0}" = lport=4000 | protocol=6 | dir=out | app=c:\program files (x86)\dll-files.com fixer\dllfixer.exe |

"{25CE8662-9009-430E-BD36-CABDBFB821DB}" = lport=4000 | protocol=6 | dir=out | app=c:\program files (x86)\dll-files.com fixer\dllfixer.exe |

"{29B85389-88D9-47E9-AD6A-D2068D5536CB}" = lport=MPC | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |

"{2C9A7F35-BC3A-45E2-96F5-125DBAFCE1A9}" = rport=137 | protocol=17 | dir=out | app=system |

"{2CB6054F-5E26-4415-A547-88C41ED082FD}" = lport=58761 | protocol=17 | dir=in | name=pando media booster |

"{3861FAD0-AB03-403F-8E5C-831C17F1665F}" = lport=4000 | protocol=6 | dir=out | app=c:\program files (x86)\dll-files.com fixer\dllfixer.exe |

"{3F3FF631-A708-4DFF-B48A-F7C7E752FECA}" = lport=4000 | protocol=6 | dir=out | app=c:\program files (x86)\dll-files.com fixer\dllfixer.exe |

"{3FD8634D-78DC-429C-B1EA-3F40F9BE27BD}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |

"{4074FC58-DA55-4C0A-B115-48AA47C8FE2F}" = lport=4000 | protocol=6 | dir=out | app=c:\program files (x86)\dll-files.com fixer\dllfixer.exe |

"{461EF044-1F80-4969-BE51-007BAEF16218}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |

"{488DF2DA-2DDA-43F7-85D7-5F89A6ABD9B3}" = lport=57077 | protocol=6 | dir=in | name=pando media booster |

"{4B0E9024-F0D5-486B-A3A7-165FEE7E3B04}" = lport=4000 | protocol=6 | dir=out | app=c:\program files (x86)\dll-files.com fixer\dllfixer.exe |

"{4B652387-779E-4A13-AD07-437BCD56FBCD}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |

"{4D680CA0-7594-4D4E-8171-61B25EA9CE86}" = rport=445 | protocol=6 | dir=out | app=system |

"{5CFBE04D-BFE8-453A-867B-AD420FBF107C}" = lport=4000 | protocol=6 | dir=out | app=c:\program files (x86)\dll-files.com fixer\dllfixer.exe |

"{601E2FDF-AC0C-4915-8353-C07E4CD02EE9}" = lport=139 | protocol=6 | dir=in | app=system |

"{60E0001A-5ABD-40DD-869A-80DD916CD390}" = lport=4000 | protocol=6 | dir=out | app=c:\program files (x86)\dll-files.com fixer\dllfixer.exe |

"{65D6F86F-8C99-44EE-9257-F3FE10149052}" = lport=3702 | protocol=17 | dir=in | svc=fdrespub | app=%systemroot%\system32\svchost.exe |

"{67C059AE-FA2E-478C-A75B-F550479CD8E4}" = lport=4000 | protocol=6 | dir=out | app=c:\program files (x86)\dll-files.com fixer\dllfixer.exe |

"{6CE8B02C-66EB-48CB-AB7D-7CCF1519FFE2}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |

"{6F5123F1-CB6B-494D-A1B8-1E8D4C78C3F5}" = lport=4000 | protocol=6 | dir=out | app=c:\program files (x86)\dll-files.com fixer\dllfixer.exe |

"{6F840D1E-066D-4C1F-B227-92421630F548}" = rport=2177 | protocol=17 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |

"{7317650B-7AAF-48DE-9275-7A21DE2123B6}" = rport=10243 | protocol=6 | dir=out | app=system |

"{742EA4C8-F6B0-4DFE-9F34-7692B132A3DE}" = lport=137 | protocol=17 | dir=in | app=system |

"{7A29C90F-C80A-413A-9E25-9A3A32FB3BDC}" = lport=4000 | protocol=6 | dir=out | app=c:\program files (x86)\dll-files.com fixer\dllfixer.exe |

"{83D45A09-83B5-4FED-BC19-2AF66D0ADCD8}" = lport=57077 | protocol=6 | dir=in | name=pando media booster |

"{8548676A-C981-48C2-97B1-35F1FA6CE803}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |

"{88A8EF0D-3233-4A2E-854D-AEE2183DEDD9}" = lport=4000 | protocol=6 | dir=out | app=c:\program files (x86)\dll-files.com fixer\dllfixer.exe |

"{88CDDB1E-4456-4648-984D-713A1B97DA4B}" = lport=4000 | protocol=6 | dir=out | app=c:\program files (x86)\dll-files.com fixer\dllfixer.exe |

"{8C5B48D5-2006-4C60-8086-4079919F5057}" = lport=3702 | protocol=17 | dir=in | svc=fdphost | app=%systemroot%\system32\svchost.exe |

"{8C7A2ECA-FC6D-4C55-BAA9-D5C574199002}" = lport=4000 | protocol=6 | dir=out | app=c:\program files (x86)\dll-files.com fixer\dllfixer.exe |

"{90888FD6-F5A6-4E77-8F80-8DD1402D2FD6}" = lport=4000 | protocol=6 | dir=out | app=c:\program files (x86)\dll-files.com fixer\dllfixer.exe |

"{91061952-EA95-438C-83E8-BCA4D38631E2}" = lport=4000 | protocol=6 | dir=out | app=c:\program files (x86)\dll-files.com fixer\dllfixer.exe |

"{91319A0B-23A0-42FB-BF29-7DA09152360F}" = rport=3702 | protocol=17 | dir=out | svc=fdrespub | app=%systemroot%\system32\svchost.exe |

"{9174EE94-B357-4AD8-91D4-B9187CECD558}" = lport=4000 | protocol=6 | dir=out | app=c:\program files (x86)\dll-files.com fixer\dllfixer.exe |

"{92699A5B-705A-49A6-A546-D0BCCBCE1541}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |

"{92DDFA6F-3F46-4B0A-BFD5-9B611DCC891B}" = lport=4000 | protocol=6 | dir=out | app=c:\program files (x86)\dll-files.com fixer\dllfixer.exe |

"{9BD209E7-9AA0-4BF8-B939-71BF6A48AF3E}" = rport=138 | protocol=17 | dir=out | app=system |

"{9C3B8868-F23B-4D93-9653-E3CA80AEDB1E}" = lport=2177 | protocol=6 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |

"{9EC09680-3116-453B-AC9D-27AAD7FB21EB}" = rport=2177 | protocol=6 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |

"{9FE5AB87-4754-4708-868B-A5BB9BBE406C}" = lport=4000 | protocol=6 | dir=out | app=c:\program files (x86)\dll-files.com fixer\dllfixer.exe |

"{A1AA00E0-8DC3-4856-8E34-5334627F507E}" = lport=4000 | protocol=6 | dir=out | app=c:\program files (x86)\dll-files.com fixer\dllfixer.exe |

"{A995AFB9-C6B1-42CE-8C42-980C470B6628}" = lport=4000 | protocol=6 | dir=out | app=c:\program files (x86)\dll-files.com fixer\dllfixer.exe |

"{AD566010-E4C5-4AB5-8231-3358F6510E5E}" = rport=3702 | protocol=17 | dir=out | svc=fdphost | app=%systemroot%\system32\svchost.exe |

"{AE5DE05C-DF5E-4756-A951-A26ACEFC9605}" = lport=MPC-epmap | protocol=6 | dir=in | svc=MPCss | [email protected],-28539 |

"{B1E47AED-B85A-4B8D-AD11-CC4092500DB5}" = lport=4000 | protocol=6 | dir=out | app=c:\program files (x86)\dll-files.com fixer\dllfixer.exe |

"{B70A7E10-A6A6-4000-9B53-5783D2E15653}" = lport=4000 | protocol=6 | dir=out | app=c:\program files (x86)\dll-files.com fixer\dllfixer.exe |

"{B85BAFC3-F952-47CE-AA0E-E4923DFD95D4}" = lport=4000 | protocol=6 | dir=out | app=c:\program files (x86)\dll-files.com fixer\dllfixer.exe |

"{B9863C6A-89DE-4A56-B03B-63EB1A8EFCEF}" = lport=4000 | protocol=6 | dir=out | app=c:\program files (x86)\dll-files.com fixer\dllfixer.exe |

"{BBB31EC0-39B5-45B4-8D7D-0FACEAE75557}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |

"{C08BA69F-D6A7-494F-B294-6653773763F1}" = lport=4000 | protocol=6 | dir=out | app=c:\program files (x86)\dll-files.com fixer\dllfixer.exe |

"{C42A4B0C-F9E4-4D4C-B26D-A381113047E0}" = lport=4000 | protocol=6 | dir=out | app=c:\program files (x86)\dll-files.com fixer\dllfixer.exe |

"{C6E95703-7D3D-479C-AF0F-F5D05D1A03C1}" = lport=4000 | protocol=6 | dir=out | app=c:\program files (x86)\dll-files.com fixer\dllfixer.exe |

"{C77B20E3-8F77-4081-BF0E-CA3BA5D56B50}" = lport=4000 | protocol=6 | dir=out | app=c:\program files (x86)\dll-files.com fixer\dllfixer.exe |

"{C93C8098-E46F-4F3F-B418-909E84252727}" = lport=4000 | protocol=6 | dir=out | app=c:\program files (x86)\dll-files.com fixer\dllfixer.exe |

"{C9561F76-5DFF-4344-ABDF-DB1074F5F9C7}" = lport=5000 | protocol=17 | dir=in | name=akamai netsession interface |

"{CA3DB181-BFD1-40FD-A0EA-AB4265D9F8E9}" = lport=4000 | protocol=6 | dir=out | app=c:\program files (x86)\dll-files.com fixer\dllfixer.exe |

"{CBA3C521-E144-4BDA-84D7-E66C707C62C4}" = lport=4000 | protocol=6 | dir=out | app=c:\program files (x86)\dll-files.com fixer\dllfixer.exe |

"{CCE18268-11C2-47FA-9C39-972EE0C5EE68}" = rport=139 | protocol=6 | dir=out | app=system |

"{CFFCA02C-4E06-4DE3-8327-0132411AFE61}" = lport=51533 | protocol=6 | dir=in | name=akamai netsession interface |

"{DB17C5C3-BEBF-4BAA-8657-332422F2FF9D}" = lport=2177 | protocol=17 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |

"{DC920A69-F6C7-4782-99B3-F5399DD2053C}" = lport=4000 | protocol=6 | dir=out | app=c:\program files (x86)\dll-files.com fixer\dllfixer.exe |

"{DE867A85-0E3A-4971-9B1C-83B3A6651932}" = lport=58761 | protocol=17 | dir=in | name=pando media booster |

"{E7A6F6BC-163B-4FE1-853B-AFBEAA505286}" = lport=4000 | protocol=6 | dir=out | app=c:\program files (x86)\dll-files.com fixer\dllfixer.exe |

"{EE9BCE8E-48DE-428B-BD65-5D89A6B7B4C5}" = lport=4000 | protocol=6 | dir=out | app=c:\program files (x86)\dll-files.com fixer\dllfixer.exe |

"{F1E214C9-7E6A-4C54-87B3-D441BC65751B}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |

"{F258A528-83BF-4092-9BA1-BFE8B45E9C83}" = lport=57077 | protocol=17 | dir=in | name=pando media booster |

"{F568997A-4A4E-4AFB-8D4C-78B535C0A150}" = lport=445 | protocol=6 | dir=in | app=system |

"{F61736A2-C5BF-447C-BC89-733C9FA0F694}" = lport=4000 | protocol=6 | dir=out | app=c:\program files (x86)\dll-files.com fixer\dllfixer.exe |

"{F65C2DBE-B1C9-4FC7-851D-4F387FE79C79}" = lport=138 | protocol=17 | dir=in | app=system |

"{F684D260-F61F-4549-B8B9-4959A32BFE59}" = lport=808 | protocol=6 | dir=in | svc=nettcpactivator | app=c:\windows\microsoft.net\framework64\v4.0.30319\smsvchost.exe |

"{F8ACD9D8-2EE8-4A62-A2DB-DD7AB2DB664A}" = lport=58761 | protocol=6 | dir=in | name=pando media booster |

"{FBDC4D51-881B-464D-B1AC-8031C7596AB4}" = lport=4000 | protocol=6 | dir=out | app=c:\program files (x86)\dll-files.com fixer\dllfixer.exe |

"{FD2D5E04-BE33-4782-B93B-8ABE64F9CAA6}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |

 

========== Vista Active Application Exception List ==========

 

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]

"{006CF4FB-3593-429F-BD28-8FB7CF03A5B2}" = protocol=6 | dir=in | app=c:\windows\syswow64\pnkbstrb.exe |

"{013E271F-C69F-4B5A-93AD-17EA895D1487}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |

"{02DFAF7F-4B34-4C77-803C-43E93D2E4E5C}" = protocol=17 | dir=in | app=c:\program files (x86)\opera\pluginwrapper\opera_plugin_wrapper.exe |

"{04EA0937-F2F7-4F9A-92FE-927F2FC9D48C}" = protocol=17 | dir=in | app=c:\program files (x86)\common files\aol\1328712494\ee\aolsoftware.exe |

"{05DE01AD-594E-4000-952D-87271C1B3DF8}" = protocol=17 | dir=in | app=e:\aeriagames\repulse\repulse\repulse.exe |

"{067060F9-1293-467F-81A8-28F10EDC0B32}" = protocol=17 | dir=in | app=c:\program files (x86)\common files\aol\system information\sinf.exe |

"{09491C5E-E3FB-4364-A4C8-83A3C17BFABB}" = protocol=6 | dir=in | app=e:\sweetimsetusp.exe |

"{0C6F53D7-3A31-4FDE-A4A7-55C65BA257E7}" = protocol=6 | dir=in | app=c:\program files (x86)\common files\aol\system information\sinf.exe |

"{111B8060-783A-4B63-9591-B21A697F3C1A}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |

"{154B1EB3-CB8B-4FD0-80FC-29A85107F3D8}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |

"{17370A75-3B81-4C39-BD18-9B6780B0187C}" = protocol=6 | dir=in | app=c:\program files (x86)\pando networks\media booster\pmb.exe |

"{17CF4DB4-2C6B-49E8-B3CA-793A4DE53704}" = protocol=17 | dir=in | app=c:\program files (x86)\origin games\battlefield 3\bf3.exe |

"{17DA0FAF-0DB6-4ED1-ACE1-29F914F45DEF}" = protocol=17 | dir=in | app=c:\program files (x86)\common files\aol\acs\aolacsd.exe |

"{209DA79C-5EB4-4C4A-A796-C8F51F2E6442}" = protocol=6 | dir=in | app=c:\program files (x86)\common files\aol\acs\aoldial.exe |

"{21ADAFC8-1FFD-41E3-AEF0-9981D48584B6}" = protocol=17 | dir=in | app=c:\windows\syswow64\data\x2.exe |

"{22D3F062-4307-4FD8-B205-D50A4B18F6B9}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |

"{23B95458-D995-4074-A71A-1004D892E2E6}" = protocol=6 | dir=in | app=e:\program files (x86)\aol desktop 9.6\aolbrowser\aolbrowser.exe |

"{241C3C38-A375-4C3D-9ED8-DA26AD6B0E9B}" = protocol=6 | dir=in | app=c:\windows\system32\java.exe |

"{25878A1C-6F74-4C80-9468-A8CFA07BCB02}" = protocol=6 | dir=in | app=c:\program files (x86)\common files\aol\acs\aolacsd.exe |

"{2C63D371-7AD9-4B4E-8551-98C88BB1E5CF}" = protocol=17 | dir=in | app=c:\program files (x86)\opera\opera.exe |

"{2D1BA71A-3FEB-4D9D-8A08-32FF3F01AB7C}" = protocol=17 | dir=in | app=c:\program files (x86)\pando networks\media booster\pmb.exe |

"{2D338FBF-49B4-421A-A6AD-C10144082BAA}" = protocol=6 | dir=in | app=e:\sweetimsetup.exe |

"{305BCA6C-AA52-4336-9ACE-F8B6E6DB7DBA}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |

"{31A51C5D-40A6-498E-BDBB-C3544A2B9F2F}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |

"{3508BE92-4C83-444C-BD85-15DCCB71DAF0}" = protocol=6 | dir=in | app=c:\windows\syswow64\pnkbstra.exe |

"{35DB5AAD-AA54-42CA-B9F5-0A3AA1934B9F}" = protocol=17 | dir=in | app=e:\program files (x86)\valve1\hltv.exe |

"{3628C229-05A5-4962-8FF2-4F9136475E90}" = dir=in | app=c:\program files (x86)\pando networks\media booster\pmb.exe |

"{37567480-36B0-4A5D-AB27-99F7D302483B}" = protocol=17 | dir=in | app=e:\program files (x86)\aol desktop 9.6\waol.exe |

"{3EC0FE98-C30B-4550-852F-A67CC98863DC}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |

"{4AC95FFE-1E54-4F8C-B9D1-7E29AC435E75}" = protocol=17 | dir=in | app=c:\windows\system32\java.exe |

"{4D322CC1-89CD-4250-9872-50990409403B}" = protocol=17 | dir=in | app=e:\aeriagames\repulse\repulse\repulse.exe |

"{5BE0711A-649A-4ECA-8C3A-7FBADA02640D}" = protocol=6 | dir=in | app=c:\program files (x86)\common files\aol\1328712494\ee\aolsoftware.exe |

"{613EF0E4-0292-4BF0-8930-564FEC3A9257}" = protocol=17 | dir=in | app=c:\program files (x86)\common files\aol\loader\aolload.exe |

"{61699873-CEE0-471C-A20F-F428D6DFA56E}" = protocol=6 | dir=in | app=e:\aeriagames\repulse\repulse\repulse.exe |

"{63065709-301C-4B0B-9546-D72A09E35243}" = protocol=6 | dir=in | app=c:\program files (x86)\searchqu toolbar\datamngr oolbar\dtuser.exe |

"{6C2EC22A-B86F-400D-99E1-829FEC16F674}" = protocol=6 | dir=out | app=system |

"{6C38DBF7-A11D-4D2E-9041-75D6EA566F24}" = protocol=17 | dir=in | app=c:\windows\syswow64\pnkbstrb.exe |

"{6CCEA2FA-45AE-4642-80C3-872367590044}" = protocol=6 | dir=in | app=e:\aeriagames\repulse\repulse\gameconsole.bin |

"{6CDFC1B0-06B9-4F78-BA2C-BCE93EA605F0}" = protocol=6 | dir=in | app=e:\program files (x86)\aol desktop 9.6\waol.exe |

"{6E42E794-96E6-4382-AB18-21A83B510E69}" = protocol=1 | dir=in | [email protected],-28543 |

"{7028BD83-0F07-4EC7-AC06-56B55E3FD373}" = protocol=6 | dir=in | app=c:\program files (x86)\common files\aol opspeed\3.0\aoltpsd3.exe |

"{72C28853-DD35-4904-A81B-D2688521ECC7}" = protocol=17 | dir=in | app=c:\program files (x86)\reactor\ijjioptimizer.exe |

"{736F4D63-E1A9-4DAB-9CD6-CEF9E484A7F0}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |

"{75BC5621-B49F-49F9-A0DF-2BC968CE6D90}" = protocol=1 | dir=out | [email protected],-28544 |

"{76D7F24E-E7A4-4D71-9294-CE37F1D94F83}" = dir=in | app=e:\brickforce\bflauncher.exe |

"{7B198851-D499-482F-8B5D-2D71C43AD608}" = protocol=17 | dir=in | app=c:\program files (x86)\origin games\battlefield 3\bf3.exe |

"{7B478717-9386-4692-AAD0-1FD81231A66A}" = protocol=17 | dir=in | app=c:\program files (x86)\searchqu toolbar\datamngr oolbar\dtuser.exe |

"{7B8C5597-412E-47F5-B446-6935828D0B73}" = protocol=17 | dir=in | app=c:\windows\syswow64\pnkbstrb.exe |

"{7F0099F6-3DF4-4239-B1E2-406211684043}" = dir=in | app=c:\program files (x86)\pando networks\media booster\pmb.exe |

"{879A66D7-2F87-4A33-B3A9-6D3E47A22B9D}" = protocol=6 | dir=in | app=c:\program files (x86)\windows searchqu toolbar\datamngr oolbar\dtuser.exe |

"{88C5FF5C-0590-45AF-8AEB-708A00B50138}" = protocol=6 | dir=in | app=c:\program files (x86)\pando networks\media booster\pmb.exe |

"{895F3351-A7B6-4CB5-8DDC-B2A0B9D3E757}" = protocol=17 | dir=in | app=e:\sweetimsetusp.exe |

"{89CAE6BD-94B7-4976-AAD3-D5B0C6950B72}" = protocol=17 | dir=in | app=e:\sweetimsetup.exe |

"{8AD6E2B1-D97E-4094-AFB2-2DA8124F95E2}" = protocol=6 | dir=in | app=c:\program files (x86)\opera\pluginwrapper\opera_plugin_wrapper.exe |

"{8DBB27A9-4EBA-4842-BFD4-220066BE1ACB}" = protocol=17 | dir=in | app=c:\program files (x86)\common files\aol\acs\aoldial.exe |

"{8E02ADE6-9BB2-4576-BDB3-E0AE941E74A1}" = protocol=17 | dir=in | app=e:\program files (x86)\aol desktop 9.6\aolbrowser\aolbrowser.exe |

"{92F94247-B5DC-4D5B-AD94-53940A866370}" = protocol=6 | dir=in | app=c:\program files (x86)\origin games\battlefield 3\bf3.exe |

"{9A471B76-FC98-4E68-BA0F-98F27C89EE48}" = protocol=6 | dir=in | app=c:\program files (x86)\reactor\ijjioptimizer.exe |

"{9A6F0072-9C36-42AD-A5EE-71D27EC66EC0}" = protocol=6 | dir=in | app=c:\windows\syswow64\data\x2.exe |

"{9BFB987A-DB6A-4FC6-8A2B-AB5D8A96D568}" = protocol=6 | dir=in | app=e:\program files (x86)\steam\steam.exe |

"{A151F6DF-9114-4CC4-841E-7D0DBFC4EA3B}" = protocol=17 | dir=in | app=e:\aeriagames\wolfteam-pl\launcher.exe |

"{A418A0E7-03AA-4DA8-B8DC-06DBAD1F9275}" = protocol=6 | dir=in | app=e:\program files (x86)\valve1\hltv.exe |

"{A6CE6C72-F867-4D24-98BE-6B17000C0185}" = protocol=6 | dir=in | app=c:\windows\syswow64\pnkbstra.exe |

"{A7E98677-43E1-48AC-8C10-833153C47E4F}" = protocol=17 | dir=in | app=c:\windows\syswow64\pnkbstra.exe |

"{AB31E5D3-7C85-40CC-A23A-35E53744B018}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |

"{AB48EAA8-E731-4192-A875-F59846D6E280}" = protocol=6 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe |

"{AD939922-C08C-4F57-B094-6AB3639C81A0}" = protocol=6 | dir=in | app=c:\program files (x86)\origin games\battlefield 3\bf3.exe |

"{B417883E-A98C-4AAB-B306-0C79C054AADF}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |

"{B4F82F0E-98D6-45B0-8285-E96606A460B0}" = protocol=17 | dir=in | app=e:\aeriagames\repulse\repulse\gameconsole.bin |

"{B5D65AF1-62F2-44ED-96C2-8AE56BDFEF2E}" = protocol=6 | dir=in | app=c:\program files (x86)\opera\opera.exe |

"{B662A187-7AA7-4642-B2E9-A8BC3FE3EF58}" = dir=in | app=c:\program files (x86)\iminent\iminent.messengers.exe |

"{B814E710-7C76-497D-AAFD-3C3CFA79528D}" = protocol=17 | dir=in | app=e:\program files (x86)\steam\steam.exe |

"{B9E6101B-AB9F-4D89-B260-20AB2A202A2B}" = protocol=6 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |

"{BBF70212-E5CF-446E-81A3-D9467CFF06D2}" = dir=in | app=e:\brickforce\brickforce.exe |

"{C02C3140-CE1C-42E9-864C-31756A746332}" = protocol=58 | dir=out | [email protected],-28546 |

"{C4721F80-F1F5-475D-9ED0-012EA2EBF390}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |

"{C8AD0B17-A602-429C-8BEA-3023510627C1}" = protocol=17 | dir=in | app=e:\aeriagames\repulse\repulse\gameconsole.bin |

"{CD0E4074-F96F-49AF-B446-08DC7BC1A7F6}" = protocol=6 | dir=in | app=c:\program files (x86)\common files\aol\loader\aolload.exe |

"{D65E0887-77F9-4D2A-AB8A-3302E507206F}" = dir=in | app=c:\program files (x86)\iminent\iminent.exe |

"{D8BE5FF2-AAD1-4505-AF97-37700363995F}" = protocol=17 | dir=in | app=c:\program files (x86)\pando networks\media booster\pmb.exe |

"{DA068CD3-E0C7-40B0-B704-D1C53C96EEAC}" = protocol=6 | dir=in | app=c:\program files (x86)\battlelog web plugins\sonar\0.70.4\sonarhost.exe |

"{DCFE15C0-BE22-427C-8CAE-51D8D820A805}" = protocol=17 | dir=in | app=c:\program files (x86)\windows searchqu toolbar\datamngr oolbar\dtuser.exe |

"{E3791FB0-B8A1-4746-93A9-E8C276B34465}" = protocol=6 | dir=in | app=e:\aeriagames\wolfteam-pl\launcher.exe |

"{E3A75865-EAD5-4E1E-9A67-32139489ADEE}" = protocol=17 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe |

"{E3AA00B0-4CE2-4F9F-BA63-9E68CC4C48DC}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |

"{E734A2F6-FB4B-4B47-B3F4-F32C1C577D4B}" = protocol=6 | dir=in | app=c:\windows\syswow64\pnkbstrb.exe |

"{E9F71028-CAF3-4C03-A890-3A523466FE04}" = protocol=6 | dir=in | app=c:\program files (x86)\shop to win 27 roubleshooter.exe |

"{ED5CCE9F-3114-4815-A2FB-2631C40A905D}" = protocol=17 | dir=in | app=%programfiles(x86)%\windows media player\wmplayer.exe |

"{F0C66BBC-08A1-4BDD-9453-0A3AA49CE4B6}" = protocol=6 | dir=in | app=e:\aeriagames\repulse\repulse\repulse.exe |

"{F27308BA-7435-41DF-BEAB-4D4AFB18986B}" = protocol=17 | dir=in | app=c:\program files (x86)\battlelog web plugins\sonar\0.70.4\sonarhost.exe |

"{F3DBDDC4-0AB3-44ED-99DD-3E4400DB08BF}" = protocol=17 | dir=in | app=c:\program files (x86)\shop to win 27 roubleshooter.exe |

"{F5CF29FB-B5B1-4DB8-87B6-DA81246AE862}" = protocol=58 | dir=in | [email protected],-28545 |

"{F6EAB876-80F7-4C25-82C8-7CA326D7BBFE}" = protocol=17 | dir=in | app=c:\windows\syswow64\pnkbstra.exe |

"{FB12F98B-5ABD-4D51-8407-4E5CE31ADE6F}" = protocol=17 | dir=in | app=c:\program files (x86)\common files\aol opspeed\3.0\aoltpsd3.exe |

"{FCCD4F9C-44A6-4032-9B68-8D3828B7F0F3}" = protocol=6 | dir=in | app=e:\aeriagames\repulse\repulse\gameconsole.bin |

"TCP Query User{05F7FFB3-FE4F-4F7C-9CCA-F48C99110408}E:\program files (x86)\shain client\royalmt2.exe" = protocol=6 | dir=in | app=e:\program files (x86)\shain client\royalmt2.exe |

"TCP Query User{0B73371D-39F6-4F77-A8ED-694AD672BC64}E:\program files (x86)\valve\hl.exe" = protocol=6 | dir=in | app=e:\program files (x86)\valve\hl.exe |

"TCP Query User{0D508F3B-89D5-4BB3-87B6-99E6E6FCD16F}E:\program files (x86)\runes of magic\client.exe" = protocol=6 | dir=in | app=e:\program files (x86)\runes of magic\client.exe |

"TCP Query User{1BDFBA2B-E39F-4780-9C32-F23336C1C31A}C:\program files (x86)\gadu-gadu 10\gg.exe" = protocol=6 | dir=in | app=c:\program files (x86)\gadu-gadu 10\gg.exe |

"TCP Query User{1D3666A3-A039-4BDF-92F0-A6FD747907E7}D:\evora\evora.exe" = protocol=6 | dir=in | app=d:\evora\evora.exe |

"TCP Query User{3BFE9615-F7AF-4982-B3F5-9479FAD67E54}C:\users\xxx\appdata\local\virtualstore\program files (x86)\ongame\metin2\metin2.bin" = protocol=6 | dir=in | app=c:\users\xxx\appdata\local\virtualstore\program files (x86)\ongame\metin2\metin2.bin |

"TCP Query User{3CF44DA5-EBDC-44E4-91BD-F3358B79EED9}D:\program files (x86)\divineworldclient\metin2mod.exe" = protocol=6 | dir=in | app=d:\program files (x86)\divineworldclient\metin2mod.exe |

"TCP Query User{422E7487-DB53-4D2F-B2DB-AE9ED46A432B}E:\program files (x86)\valve1\hl.exe" = protocol=6 | dir=in | app=e:\program files (x86)\valve1\hl.exe |

"TCP Query User{52C56727-84D8-4908-B228-08915CD2DDDD}C:\program files (x86)\opera\opera.exe" = protocol=6 | dir=in | app=c:\program files (x86)\opera\opera.exe |

"TCP Query User{5A5EFEE0-2E51-449D-9EDE-31EC3192B40D}E:\program files (x86)\lathia\klient lathia.pl\lathia.exe" = protocol=6 | dir=in | app=e:\program files (x86)\lathia\klient lathia.pl\lathia.exe |

"TCP Query User{5A8E2558-67BE-4CEF-9431-4D04459ECFCC}E:\program files (x86)\ubisoft\heroes of might and magic iv - zlota edycja\heroes4p.exe" = protocol=6 | dir=in | app=e:\program files (x86)\ubisoft\heroes of might and magic iv - zlota edycja\heroes4p.exe |

"TCP Query User{5C4B8C99-7BC9-44AB-BB7F-A59650E97D8F}C:\windows\system32\java.exe" = protocol=6 | dir=in | app=c:\windows\system32\java.exe |

"TCP Query User{60A7BF08-2DA5-4FD1-A6F9-46B1B00A67C7}D:\program files (x86)\divineworldclient\smackdown.exe" = protocol=6 | dir=in | app=d:\program files (x86)\divineworldclient\smackdown.exe |

"TCP Query User{6932D8E1-D256-4D30-B2BB-E5387107A974}E:\program files (x86)\royalmt2\royalmt2.exe" = protocol=6 | dir=in | app=e:\program files (x86)\royalmt2\royalmt2.exe |

"TCP Query User{6B453184-F3B0-4A95-BF29-B425D392527D}C:\users\xxx\appdata\local\akamai\netsession_win.exe" = protocol=6 | dir=in | app=c:\users\xxx\appdata\local\akamai\netsession_win.exe |

"TCP Query User{77F9208A-B52D-4A65-9A5E-3A79126606FC}C:\program files (x86)\gadu-gadu 10\gg.exe" = protocol=6 | dir=in | app=c:\program files (x86)\gadu-gadu 10\gg.exe |

"TCP Query User{7FCAB971-26CB-40D2-AEC2-C98F6344CF46}C:\users\xxx\desktop\wszystko\nowy folder\xenox_mt2_klient(nowy patch 03.09.2011r)\xenoxmt2 launcher.exe" = protocol=6 | dir=in | app=c:\users\xxx\desktop\wszystko\nowy folder\xenox_mt2_klient(nowy patch 03.09.2011r)\xenoxmt2 launcher.exe |

"TCP Query User{8C1BE662-E775-4536-8B03-5E1D5064BA05}E:\ijji\english\ava\binaries\ava.exe" = protocol=6 | dir=in | app=e:\ijji\english\ava\binaries\ava.exe |

"TCP Query User{93AB2891-3E77-4A7C-BE69-BC7DF7520153}C:\users\xxx\appdata\local\akamai\netsession_win.exe" = protocol=6 | dir=in | app=c:\users\xxx\appdata\local\akamai\netsession_win.exe |

"TCP Query User{9655896D-923C-46E6-8F32-5D2AC7D5EC37}E:\program files (x86) axi 3 extreme rush\extreme rush.exe" = protocol=6 | dir=in | app=e:\program files (x86) axi 3 extreme rush\extreme rush.exe |

"TCP Query User{B3571C8F-D6D5-48BF-9078-3DD0E45ADD21}C:\aeriagames\wolfteam\wolfteam.bin" = protocol=6 | dir=in | app=c:\aeriagames\wolfteam\wolfteam.bin |

"TCP Query User{C3D6E9DF-60CE-4DD2-AC35-CA51AD81616F}E:\aeriagames\wolfteam-pl\wolfteam.bin" = protocol=6 | dir=in | app=e:\aeriagames\wolfteam-pl\wolfteam.bin |

"TCP Query User{CC630B90-38F0-4A14-A65F-92C97F1CCF11}E:\program files (x86)\valve\hl.exe" = protocol=6 | dir=in | app=e:\program files (x86)\valve\hl.exe |

"TCP Query User{DF9E6D31-7055-4B6E-9369-CCD03C7FADF8}E:\program files (x86)\heroes of newerth\hon.exe" = protocol=6 | dir=in | app=e:\program files (x86)\heroes of newerth\hon.exe |

"TCP Query User{ED744198-AF89-49B5-B793-E1A05EA274C0}C:\program files (x86)\java\jre6\bin\java.exe" = protocol=6 | dir=in | app=c:\program files (x86)\java\jre6\bin\java.exe |

"TCP Query User{F42CBC86-97D9-4AF8-80AA-FF700CAF0D05}C:\program files (x86)\xfire\xfire.exe" = protocol=6 | dir=in | app=c:\program files (x86)\xfire\xfire.exe |

"TCP Query User{F726AF96-B92D-4AEB-8683-BA00246B7C8C}D:\metin2\metin2client.bin" = protocol=6 | dir=in | app=d:\metin2\metin2client.bin |

"TCP Query User{FB5F0864-1BC2-4526-BC3C-AF3ED53796FF}E:\program files (x86)\valve1\hltv.exe" = protocol=6 | dir=in | app=e:\program files (x86)\valve1\hltv.exe |

"TCP Query User{FC4248DE-5865-429A-995D-04213D41F509}C:\program files (x86)\java\jre7\bin\java.exe" = protocol=6 | dir=in | app=c:\program files (x86)\java\jre7\bin\java.exe |

"UDP Query User{085C6DEE-C850-4CE2-A669-56CCD13020E7}C:\program files (x86)\opera\opera.exe" = protocol=17 | dir=in | app=c:\program files (x86)\opera\opera.exe |

"UDP Query User{1026E538-695F-4BB1-81B2-A51AC41A8DF1}E:\program files (x86)\ubisoft\heroes of might and magic iv - zlota edycja\heroes4p.exe" = protocol=17 | dir=in | app=e:\program files (x86)\ubisoft\heroes of might and magic iv - zlota edycja\heroes4p.exe |

"UDP Query User{214B6D13-A85F-4C8B-87F1-F635E0AF986C}E:\program files (x86)\valve\hl.exe" = protocol=17 | dir=in | app=e:\program files (x86)\valve\hl.exe |

"UDP Query User{2DBD1B0A-F14C-4233-BFB2-0FFEE8F77115}C:\users\xxx\desktop\wszystko\nowy folder\xenox_mt2_klient(nowy patch 03.09.2011r)\xenoxmt2 launcher.exe" = protocol=17 | dir=in | app=c:\users\xxx\desktop\wszystko\nowy folder\xenox_mt2_klient(nowy patch 03.09.2011r)\xenoxmt2 launcher.exe |

"UDP Query User{2DEF77EE-D00B-4B96-B012-85F7ACF435D8}E:\aeriagames\wolfteam-pl\wolfteam.bin" = protocol=17 | dir=in | app=e:\aeriagames\wolfteam-pl\wolfteam.bin |

"UDP Query User{31E5651B-1827-44A3-BDEC-4B1526B1D475}E:\program files (x86)\runes of magic\client.exe" = protocol=17 | dir=in | app=e:\program files (x86)\runes of magic\client.exe |

"UDP Query User{37863CE7-BF3B-446C-BAFA-4D333651F135}E:\program files (x86) axi 3 extreme rush\extreme rush.exe" = protocol=17 | dir=in | app=e:\program files (x86) axi 3 extreme rush\extreme rush.exe |

"UDP Query User{40C5DB93-0E36-411A-9C7A-AD22CAC9B479}D:\program files (x86)\divineworldclient\smackdown.exe" = protocol=17 | dir=in | app=d:\program files (x86)\divineworldclient\smackdown.exe |

"UDP Query User{51F20EB4-B9CA-4B60-96FB-D895D7A783E0}C:\program files (x86)\xfire\xfire.exe" = protocol=17 | dir=in | app=c:\program files (x86)\xfire\xfire.exe |

"UDP Query User{62EBE418-7788-481B-927A-DF74E1692AB5}E:\program files (x86)\heroes of newerth\hon.exe" = protocol=17 | dir=in | app=e:\program files (x86)\heroes of newerth\hon.exe |

"UDP Query User{6F9DBC86-8ED6-414D-A5E5-816278627F7A}E:\program files (x86)\valve1\hl.exe" = protocol=17 | dir=in | app=e:\program files (x86)\valve1\hl.exe |

"UDP Query User{71CE65E1-8B70-442E-AEFF-1A8BA5DCE7CC}C:\users\xxx\appdata\local\akamai\netsession_win.exe" = protocol=17 | dir=in | app=c:\users\xxx\appdata\local\akamai\netsession_win.exe |

"UDP Query User{71F21AA7-2C96-4EAB-9E51-155D108E489F}E:\program files (x86)\valve\hl.exe" = protocol=17 | dir=in | app=e:\program files (x86)\valve\hl.exe |

"UDP Query User{752F597F-3B3E-4E85-9F4C-0DAF893B942C}E:\program files (x86)\valve1\hltv.exe" = protocol=17 | dir=in | app=e:\program files (x86)\valve1\hltv.exe |

"UDP Query User{8AA9FFD6-7B86-4ECF-8E86-3AFC9ACBC6E9}C:\program files (x86)\java\jre6\bin\java.exe" = protocol=17 | dir=in | app=c:\program files (x86)\java\jre6\bin\java.exe |

"UDP Query User{90511C87-5E6D-400A-9BAF-39F2E5422173}C:\users\xxx\appdata\local\akamai\netsession_win.exe" = protocol=17 | dir=in | app=c:\users\xxx\appdata\local\akamai\netsession_win.exe |

"UDP Query User{979D3BF0-5348-48D8-9002-7727511554A2}C:\program files (x86)\gadu-gadu 10\gg.exe" = protocol=17 | dir=in | app=c:\program files (x86)\gadu-gadu 10\gg.exe |

"UDP Query User{B4DE300A-31C1-48C5-B38C-DCFC66760CED}D:\program files (x86)\divineworldclient\metin2mod.exe" = protocol=17 | dir=in | app=d:\program files (x86)\divineworldclient\metin2mod.exe |

"UDP Query User{B6010697-9115-42E1-BD38-0446F8199F80}E:\program files (x86)\royalmt2\royalmt2.exe" = protocol=17 | dir=in | app=e:\program files (x86)\royalmt2\royalmt2.exe |

"UDP Query User{D0BD7456-4311-4D92-AA70-7475D706F815}E:\program files (x86)\shain client\royalmt2.exe" = protocol=17 | dir=in | app=e:\program files (x86)\shain client\royalmt2.exe |

"UDP Query User{D6AEAA77-C330-40DB-BAC8-A98AA6D27B96}C:\program files (x86)\gadu-gadu 10\gg.exe" = protocol=17 | dir=in | app=c:\program files (x86)\gadu-gadu 10\gg.exe |

"UDP Query User{D6F79167-5BCE-46DB-A131-6279F1280D61}C:\aeriagames\wolfteam\wolfteam.bin" = protocol=17 | dir=in | app=c:\aeriagames\wolfteam\wolfteam.bin |

"UDP Query User{D71EEB76-0355-45F4-BB3C-B85013FDF435}E:\ijji\english\ava\binaries\ava.exe" = protocol=17 | dir=in | app=e:\ijji\english\ava\binaries\ava.exe |

"UDP Query User{D73D3D0D-CAA4-443E-BAC9-72FDD8B8AA61}C:\users\xxx\appdata\local\virtualstore\program files (x86)\ongame\metin2\metin2.bin" = protocol=17 | dir=in | app=c:\users\xxx\appdata\local\virtualstore\program files (x86)\ongame\metin2\metin2.bin |

"UDP Query User{E1640ACF-A159-45F0-81D3-B51209563DCD}E:\program files (x86)\lathia\klient lathia.pl\lathia.exe" = protocol=17 | dir=in | app=e:\program files (x86)\lathia\klient lathia.pl\lathia.exe |

"UDP Query User{ED95FFF0-6831-44B5-9072-A9D9C665D614}C:\program files (x86)\java\jre7\bin\java.exe" = protocol=17 | dir=in | app=c:\program files (x86)\java\jre7\bin\java.exe |

"UDP Query User{F12071EB-0071-4F28-AE25-85742D3E2C97}D:\evora\evora.exe" = protocol=17 | dir=in | app=d:\evora\evora.exe |

"UDP Query User{F6A66029-EE6E-48B9-9B13-2A6D55580F6E}D:\metin2\metin2client.bin" = protocol=17 | dir=in | app=d:\metin2\metin2client.bin |

"UDP Query User{FC9ECB96-309C-4825-BB41-D8510D37D193}C:\windows\system32\java.exe" = protocol=17 | dir=in | app=c:\windows\system32\java.exe |

 

========== HKEY_LOCAL_MACHINE Uninstall List ==========

 

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]

"{1D8E6291-B0D5-35EC-8441-6616F567A0F7}" = Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219

"{1E9FC118-651D-4934-97BE-E53CAE5C7D45}" = Microsoft_VC80_MFCLOC_x86_x64

"{26A24AE4-039D-4CA4-87B4-2F86416031FF}" = Java™ 6 Update 31 (64-bit)

"{4569AD91-47F4-4D9E-8FC9-717EC32D7AE1}" = Microsoft_VC80_CRT_x86_x64

"{8557397C-A42D-486F-97B3-A2CBC2372593}" = Microsoft_VC90_ATL_x86_x64

"{8E34682C-8118-31F1-BC4C-98CD9675E1C2}" = Microsoft .NET Framework 4 Extended

"{90BF0360-A1DB-4599-A643-95AB90A52C1E}" = Microsoft_VC90_MFCLOC_x86_x64

"{925D058B-564A-443A-B4B2-7E90C6432E55}" = Microsoft_VC80_ATL_x86_x64

"{92A3CA0D-55CD-4C5D-BA95-5C2600C20F26}" = Microsoft_VC90_CRT_x86_x64

"{A472B9E4-0AFF-4F7B-B25D-F64F8E928AAB}" = Microsoft_VC90_MFC_x86_x64

"{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}" = Microsoft Visual C++ 2005 Redistributable (x64)

"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision" = NVIDIA Sterownik 3D Vision 295.73

"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel" = Panel sterowania NVIDIA 295.73

"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver" = NVIDIA Sterownik graficzny 295.73

"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB" = NVIDIA Sterownik kontrolera 3D Vision 295.73

"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX" = NVIDIA Oprogramowanie systemu PhysX 9.12.0209

"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update" = Aktualizacje NVIDIA 1.7.11

"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver" = NVIDIA Sterownik dźwięku HD 1.3.12.0

"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer" = NVIDIA Install Application

"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NVIDIA.Update" = NVIDIA Update Components

"{C8C1BAD5-54E6-4146-AD07-3A8AD36569C3}" = Microsoft_VC80_MFC_x86_x64

"{CF411A4F-5ED9-11E1-B971-F04DA23A5C58}" = Vegas Pro 11.0 (64-bit)

"{D4761C4F-5ED9-11E1-9202-F04DA23A5C58}" = MSVCRT Redists

"{D6AB1F5B-FED6-49A9-9747-327BD28FB3C7}" = COMODO Internet Security

"{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}" = Microsoft .NET Framework 4 Client Profile

"CCleaner" = CCleaner

"DriverAgent.exe" = DriverAgent by eSupport.com

"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile

"Microsoft .NET Framework 4 Extended" = Microsoft .NET Framework 4 Extended

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]

"{033E378E-6AD3-4AD5-BDEB-CBD69B31046C}" = Microsoft_VC90_ATL_x86

"{048298C9-A4D3-490B-9FF9-AB023A9238F3}" = Steam

"{08D2E121-7F6A-43EB-97FD-629B44903403}" = Microsoft_VC90_CRT_x86

"{0C1DD35C-59F6-4292-9E61-823286BF31E1}_is1" = Shop To Win

"{0F3647F8-E51D-4FCC-8862-9A8D0C5ACF25}" = Microsoft_VC80_ATL_x86

"{1111706F-666A-4037-7777-211328764D10}" = JavaFX 2.1.1

"{18455581-E099-4BA8-BC6B-F34B2F06600C}" = Google Toolbar for Internet Explorer

"{18DB3375-0649-4EA3-959A-44F1ACD278BA}" = IncrediMail

"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148

"{2318C2B1-4965-11d4-9B18-009027A5CD4F}" = Google Toolbar for Internet Explorer

"{243165C5-949A-404D-AE94-A0A2C9CFD44C}" = The Westerner

"{259C0ABB-A3B2-4D70-008F-BF7EE491B70B}" = Need for Speed™ Carbon

"{26A24AE4-039D-4CA4-87B4-2F83216031FF}" = Java™ 6 Update 31

"{26A24AE4-039D-4CA4-87B4-2F83217005FF}" = Java™ 7 Update 5

"{28C2DED6-325B-4CC7-983A-1777C8F7FBAB}" = RealUpgrade 1.1

"{297DCADA-86A1-4A42-8A13-66B7D7A09FD2}" = WeatherBug

"{307B6058-05D2-4821-A12F-F221D36987EA}_is1" = Totem Destroyer Deluxe

"{3521BDBD-D453-5D9F-AA55-44B75D214629}" = Adobe Community Help

"{3AD22980-7E0B-11D6-9C4B-0001020AA251}" = GTA3 PL

"{3BD4C120-164D-11D6-BDEA-00C0CA129740}" = Śnieżny Rajd 2002

"{3C87E0FF-BC0A-4F5E-951B-68DC3F8DF017}" = Smite Closed Beta

"{3C87E0FF-BC0A-4F5E-951B-68DC3F8DF1FC}" = Hi-Rez Studios Authenticate and Update Service

"{3F32DCA5-625E-45A7-94CF-980AF578FE8C}_is1" = AriusMt2 wersja 1.5

"{47FA2C44-D148-4DBC-AF60-B91934AA4842}" = Adobe AIR

"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater

"{4BD8E034-E0F4-4509-A753-467A8E854CD8}" = Iminent

"{4EAE665D-957A-4D04-9679-3AD582008877}" = NVIDIA PhysX

"{553C904F-57A2-4113-888E-BA0C3D1C69C0}" = Microsoft VC9 runtime libraries

"{612C34C7-5E90-47D8-9B5C-0F717DD82726}" = swMSM

"{635FED5B-2C6D-49BE-87E6-7A6FCD22BC5A}" = Microsoft_VC90_MFC_x86

"{65153EA5-8B6E-43B6-857B-C6E4FC25798A}" = Intel® Management Engine Components

"{6D172D0A-B9F1-4046-AFAB-8599288545BF}" = Safari

"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable

"{716E0306-8318-4364-8B8F-0CC4E9376BAC}" = MSXML 4.0 SP2 Parser and SDK

"{76285C16-411A-488A-BCE3-C83CB933D8CF}" = Battlefield 3™

"{7770E71B-2D43-4800-9CB3-5B6CAAEBEBEA}" = RealNetworks - Microsoft Visual C++ 2008 Runtime

"{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}" = Apple Software Update

"{7F0C9055-E2CF-41B2-B8DC-E90E2D542F8A}" = Beyond Divinity

"{7FB413C8-3CAD-49F7-A67C-6EFEB4B04050}" = LogMeIn Hamachi

"{82559EBE-7535-4658-825D-45F59D75B240}_is1" = TaXi 3 eXtreme rush

"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable

"{86D4B82A-ABED-442A-BE86-96357B70F4FE}" = Ask Toolbar

"{8833FFB6-5B0C-4764-81AA-06DFEED9A476}" = Realtek Ethernet Controller Driver

"{8923337C-3A6F-8652-EC25-E1E6B0247E9F}" = FlipToast

"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight

"{8DC910CD-8EE3-4ffc-A4EB-9B02701059C4}" = Battlefield Heroes

"{901DC58A-5C1B-4315-BA40-5AD3D3A463B9}" = REACTOR

"{9158FF30-78D7-40EF-B83E-451AC5334640}" = Adobe Photoshop CS5.1

"{918A9082-6287-4D25-9002-5E5D5E4971CB}" = League of Legends

"{92B94569-6683-4617-8C54-EB27A1B51B30}" = GTAIII

"{92D58719-BBC1-4CC3-A08B-56C9E884CC2C}" = Microsoft_VC80_CRT_x86

"{93712806-272D-485E-8D8E-C08E861CF3E0}" = A.V.A

"{943A8D28-80D6-41DC-AE94-81FEB42041BF}" = System Requirements Lab CYRI

"{94B4E2D8-A184-415C-BF9E-F699D76466BD}" = Heroes of Might and Magic IV - Złota Edycja

"{969E11AA-8F3A-F162-1A5A-0965E216B6CE}" = Adobe Download Assistant

"{980A182F-E0A2-4A40-94C1-AE0C1235902E}" = Pando Media Booster

"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17

"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161

"{A2F166A0-F031-4E27-A057-C69733219434}_is1" = Runes of Magic

"{A76AA284-E52D-47E6-9E4F-B85DBF8E35C3}" = IMinent Toolbar

"{A78FE97A-C0C8-49CE-89D0-EDD524A17392}" = PDF Settings CS5

"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper

"{AA027AE9-DD20-4677-AA72-D760A358320B}" = Microsoft VC9 runtime libraries

"{AAC4463A-3575-4518-B0F2-1B47C01C6F0F}" = Rising Kingdoms

"{AC76BA86-7AD7-1045-7B44-A70000000000}" = Adobe Reader 7.0 - Polish

"{B25D67C4-E885-43F8-8085-B532F6261529}" = Fliptoast

"{B6CF2967-C81E-40C0-9815-C05774FEF120}" = Skype Click to Call

"{B6D38690-755E-4F40-A35A-23F8BC2B86AC}" = Microsoft_VC90_MFCLOC_x86

"{C0E8FE43-C35B-451D-B35F-D4BD056D70E7}" = Camtasia Studio 7

"{C792A75A-2A1F-4991-9B85-291745478A79}" = NetAssistant

"{C8FAFAEE-94E2-43D9-8046-87F96D0FD7CF}" = Fantapper Player

"{CCA5EAAD-92F4-4B7A-B5EE-14294C66AB61}" = PlayReady PC Runtime x86

"{D1504C77-1B19-4AF0-8DEC-946666123B55}" = CrazyTalk Cam Suite PRO

"{D1A19B02-817E-4296-A45B-07853FD74D57}" = Microsoft_VC80_MFC_x86

"{D92BBB52-82FF-42ED-8A3C-4E062F944AB7}" = Microsoft_VC80_MFCLOC_x86

"{E33F06B6-28C9-462F-A33A-BB945C7A13EC}" = Aeria Ignite

"{EDBE322C-5CF0-46AC-A6DE-C6713F84B68A}" = Syberia 2

"{EE7257A2-39A2-4D2F-9DAC-F9F25B8AE1D8}" = Skype™ 5.10

"{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219

"{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}" = Intel® Graphics Media Accelerator Driver

"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver

"{F2BBDD5D-7959-4F64-8737-F568092433F6}" = VideoBuzz

"{F8A9085D-4C7A-41a9-8A77-C8998A96C421}" = Intel® Control Center

"{FCDBEA60-79F0-4FAE-BBA8-55A26C609A49}" = Visual Studio 2008 x64 Redistributables

"Adobe AIR" = Adobe AIR

"Adobe Flash Player ActiveX" = Adobe Flash Player 11 ActiveX

"Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin

"Adobe Shockwave Player" = Adobe Shockwave Player 11.6

"Aeria Ignite" = Aeria Ignite

"Aeria Ignite 1.6.940" = Aeria Ignite

"Akamai" = Akamai NetSession Interface

"alotAppbar" = ALOT Appbar

"ALPlayer_is1" = ALPlayer

"ALUpdate_is1" = ALTools Update

"AmericanPunchOut" = AmericanPunchOut 1.0

"Angry Smileys" = Angry Smileys 1.0

"AOL Toolbar" = AOL Toolbar

"AOL Uninstaller" = AOL Uninstaller (Choose which Products to Remove)

"AVS Screen Capture_is1" = AVS Screen Capture version 2.0.1

"AVS Update Manager_is1" = AVS Update Manager 1.0

"AVS Video Editor_is1" = AVS Video Editor 6

"AVS Video Recorder_is1" = AVS Video Recorder 2.5

"AVS4YOU Software Navigator_is1" = AVS4YOU Software Navigator 1.4

"AVS4YOU Video Converter 7_is1" = AVS Video Converter 8

"BrickForce" = BrickForce 1.4.40

"Celtic Kings PL" = Celtic Kings PL

"Championsheep Rally" = Championsheep Rally

"chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1" = Adobe Community Help

"Cheat Engine 6.1_is1" = Cheat Engine 6.1

"com.adobe.downloadassistant.AdobeDownloadAssistant" = Adobe Download Assistant

"com.w3i.FlipToast" = FlipToast

"Comodo Dragon" = Comodo Dragon

"COMODO GeekBuddy" = COMODO GeekBuddy

"conduitEngine" = Conduit Engine

"Counter-Strike 1.6" = Counter-Strike 1.6 cs_v7+patch v43

"DAEMON Tools Lite" = DAEMON Tools Lite

"DCoTE_is1" = Call of Cthulhu - Mroczne Zakątki Świata

"DealPly" = DealPly

"Dll-Files.com Fixer_is1" = Dll-Files.com Fixer

"Elsword_PL_is1" = Elsword_PL

"ESN Sonar-0.70.4" = ESN Sonar

"Fraps" = Fraps (remove only)

"Free Mp3 Wma Converter_is1" = Free Mp3 Wma Converter V 2.1

"Gadu-Gadu 10" = Gadu-Gadu 10

"GameSpy Arcade" = GameSpy Arcade

"GetDislike" = GetDislike

"Google Chrome" = Google Chrome

"hon" = Heroes of Newerth

"IMBoosterARP" = Iminent

"iMetin" = iMetin

"IncrediMail" = IncrediMail 2.0

"IncrediMail_MediaBar_2 Toolbar" = IncrediMail MediaBar 2 Toolbar

"InstallShield_{243165C5-949A-404D-AE94-A0A2C9CFD44C}" = The Westerner

"Joanna d'Arc" = Joanna d'Arc

"KLiteCodecPack_is1" = K-Lite Codec Pack 4.6.2 (Full)

"Liquidator" = Liquidator

"LogMeIn Hamachi" = LogMeIn Hamachi

"Mozilla Firefox 9.0.1 (x86 pl)" = Mozilla Firefox 9.0.1 (x86 pl)

"MySSID_is1" = Vtune 7.21

"Notepad++" = Notepad++

"NSS" = Norton Security Scan

"NVIDIA StereoUSB Driver" = NVIDIA 3D Vision Controller Driver

"NVIDIAStereo" = NVIDIA Stereoscopic 3D Driver

"Opera 12.00.1467" = Opera 12.00

"Origin" = Origin

"PriceGong" = PriceGong 2.5.3

"PunkBusterSvc" = PunkBuster Services

"RealPlayer 15.0" = RealPlayer

"RegSupreme Pro_is1" = RegSupreme Pro

"Repulse" = Repulse

"Robin Hood - Legenda Sherwood" = Robin Hood - Legenda Sherwood

"Sąsiedzi z Piekła Rodem_is1" = Sąsiedzi z Pekła Rodem - Słodka zemsta

"Searchqu 410 MediaBar" = Windows Searchqu Toolbar

"Searchqu Toolbar" = Searchqu Toolbar

"SelectRebatesUninstall" = ShopAtHome.com Toolbar

"Softonic-Polska_ Toolbar" = Softonic-Polska_ Toolbar

"SoftwareUpdUtility" = Download Updater (AOL LLC)

"SpeedBit Video Accelerator" = SpeedBit Video Accelerator

"Steam App 440" = Team Fortress 2

"Super-Charger_is1" = Super-Charger

"TeamSpeak 3 Client" = TeamSpeak 3 Client

"The KMPlayer" = The KMPlayer (remove only)

"The Weather Channel Desktop 6" = The Weather Channel Desktop 6

"ViewpointMediaPlayer" = Viewpoint Media Player

"Western Shooter - Ernest Colt_is1" = Western Shooter - Ernest Colt 1.0.1

"WhiteSmoke" = WhiteSmoke

"WhiteSmoke Updater Service" = WhiteSmoke Updater Service

"WinGimp-2.0_is1" = GIMP 2.6.11

"WinRAR archiver" = WinRAR 4.01 (32-bit)

"Wolfteam" = Wolfteam

"WolfTeam-PL" = WolfTeam-PL

"Xfire" = Xfire (remove only)

 

========== HKEY_CURRENT_USER Uninstall List ==========

 

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]

"{8EB85C0E-DE7D-4A53-BD66-708B8F2C80B0}" = HHD Software Free Hex Editor Neo 4.97

"Akamai" = Akamai NetSession Interface

"AOL Toolbar" = AOL Toolbar

"Minecraft Mod Installer" = Minecraft Mod Installer

"NetAssistant 3.8.3" = Freeze.com NetAssistant

"RavenBleuSA" = RavenBleu

"RewardsArcadeSuite" = RewardsArcadeSuite

"RoyalMt2" = RoyalMt2

"SOE-DC Universe Online Live" = DC Universe Online Live

 

========== Last 20 Event Log Errors ==========

 

[ Application Events ]

Error - 2012-07-20 06:07:40 | Computer Name = KUBA-PC | Source = Application Error | ID = 1000

Description = Nazwa aplikacji powodującej błąd: SBUpdate.exe, wersja: 1.0.3.2, sygnatura

czasowa: 0x4feb1514 Nazwa modułu powodującego błąd: npggNT.des_unloaded, wersja:

0.0.0.0, sygnatura czasowa: 0x4db7c1f4 Kod wyjątku: 0xc0000005 Przesunięcie błędu:

0x458a941c Identyfikator procesu powodującego błąd: 0xdc8 Godzina uruchomienia aplikacji

powodującej błąd: 0x01cd665d2b3c5485 Ścieżka aplikacji powodującej błąd: C:\PROGRA~2\COMMON~1\SpeedBit\SBUpdate\SBUpdate.exe

Ścieżka

modułu powodującego błąd: npggNT.des Identyfikator raportu: bcde355a-d252-11e1-91f9-00038a000015

 

Error - 2012-07-20 07:48:36 | Computer Name = KUBA-PC | Source = Application Error | ID = 1000

Description = Nazwa aplikacji powodującej błąd: chrome.exe, wersja: 20.0.1132.57,

sygnatura czasowa: 0x4ffb8830 Nazwa modułu powodującego błąd: EasyHook32.dll, wersja:

0.0.0.0, sygnatura czasowa: 0x4bb09b66 Kod wyjątku: 0xc0000005 Przesunięcie błędu:

0x0000cc6e Identyfikator procesu powodującego błąd: 0x22c Godzina uruchomienia aplikacji

powodującej błąd: 0x01cd66583eab195d Ścieżka aplikacji powodującej błąd: C:\Program

Files (x86)\Google\Chrome\Application\chrome.exe Ścieżka modułu powodującego błąd:

C:\Windows\system32\EasyHook32.dll Identyfikator raportu: d660d061-d260-11e1-91f9-00038a000015

 

Error - 2012-07-20 12:00:51 | Computer Name = KUBA-PC | Source = Microsoft-Windows-LoadPerf | ID = 3012

Description = Ciągi wydajności w wartości rejestru wydajności są uszkodzone, kiedy

proces wykonuje następującą operację na dostawcy licznika rozszerzeń: Performance.

Wartość BaseIndex z rejestru wydajności to pierwszy wpis DWORD w sekcji danych

Data, wartość LastCounter to drugi wpis DWORD, a wartość LastHelp to trzeci wpis

DWORD w sekcji Data.

 

Error - 2012-07-20 12:00:51 | Computer Name = KUBA-PC | Source = Microsoft-Windows-LoadPerf | ID = 3012

Description = Ciągi wydajności w wartości rejestru wydajności są uszkodzone, kiedy

proces wykonuje następującą operację na dostawcy licznika rozszerzeń: Performance.

Wartość BaseIndex z rejestru wydajności to pierwszy wpis DWORD w sekcji danych

Data, wartość LastCounter to drugi wpis DWORD, a wartość LastHelp to trzeci wpis

DWORD w sekcji Data.

 

Error - 2012-07-20 12:00:51 | Computer Name = KUBA-PC | Source = Microsoft-Windows-LoadPerf | ID = 3011

Description = Nie można usunąć z pamięci ciągów licznika wydajności dla usługi WmiApRpl

(WmiApRpl). Pierwszy wpis DWORD w sekcji danych (Data) zawiera kod błędu.

 

Error - 2012-07-20 12:49:46 | Computer Name = KUBA-PC | Source = Application Error | ID = 1000

Description = Nazwa aplikacji powodującej błąd: SBUpdate.exe, wersja: 1.0.3.2, sygnatura

czasowa: 0x4feb1514 Nazwa modułu powodującego błąd: npggNT.des_unloaded, wersja:

0.0.0.0, sygnatura czasowa: 0x4db7c1f4 Kod wyjątku: 0xc0000005 Przesunięcie błędu:

0x458a948f Identyfikator procesu powodującego błąd: 0x14f8 Godzina uruchomienia aplikacji

powodującej błąd: 0x01cd668f75ccef7c Ścieżka aplikacji powodującej błąd: C:\PROGRA~2\COMMON~1\SpeedBit\SBUpdate\SBUpdate.exe

Ścieżka

modułu powodującego błąd: npggNT.des Identyfikator raportu: e94f7a8e-d28a-11e1-91f9-00038a000015

 

Error - 2012-07-21 04:31:15 | Computer Name = KUBA-PC | Source = Software Protection Platform Service | ID = 8198

Description = Wystąpił błąd aktywacji licencji (slui.exe), kod błędu: 0x800401F9

 

Error - 2012-07-21 04:31:17 | Computer Name = KUBA-PC | Source = Winlogon | ID = 4103

Description = Aktywacja licencji systemu Windows nie powiodła się. Błąd 0x00000000.

 

Error - 2012-07-21 04:51:17 | Computer Name = KUBA-PC | Source = Application Error | ID = 1000

Description = Nazwa aplikacji powodującej błąd: SBUpdate.exe, wersja: 1.0.3.2, sygnatura

czasowa: 0x4feb1514 Nazwa modułu powodującego błąd: ntdll.dll, wersja: 6.1.7601.17725,

sygnatura czasowa: 0x4ec49b8f Kod wyjątku: 0xc0000005 Przesunięcie błędu: 0x00033ab3

Identyfikator

procesu powodującego błąd: 0xdd0 Godzina uruchomienia aplikacji powodującej błąd:

0x01cd671df3f11162 Ścieżka aplikacji powodującej błąd: C:\PROGRA~2\COMMON~1\SpeedBit\SBUpdate\SBUpdate.exe

Ścieżka

modułu powodującego błąd: C:\Windows\SysWOW64\ntdll.dll Identyfikator raportu: 3b8585ac-d311-11e1-92f2-00038a000015

 

Error - 2012-07-21 13:53:50 | Computer Name = KUBA-PC | Source = Application Error | ID = 1000

Description = Nazwa aplikacji powodującej błąd: SBUpdate.exe, wersja: 1.0.3.2, sygnatura

czasowa: 0x4feb1514 Nazwa modułu powodującego błąd: ntdll.dll, wersja: 6.1.7601.17725,

sygnatura czasowa: 0x4ec49b8f Kod wyjątku: 0xc0000005 Przesunięcie błędu: 0x00033ab3

Identyfikator

procesu powodującego błąd: 0xf94 Godzina uruchomienia aplikacji powodującej błąd:

0x01cd676965f6f8db Ścieżka aplikacji powodującej błąd: C:\PROGRA~2\COMMON~1\SpeedBit\SBUpdate\SBUpdate.exe

Ścieżka

modułu powodującego błąd: C:\Windows\SysWOW64\ntdll.dll Identyfikator raportu: 069f01dc-d35d-11e1-92f2-00038a000015

 

[ Media Center Events ]

Error - 2011-12-21 10:39:42 | Computer Name = xxx-Komputer | Source = MCUpdate | ID = 0

Description = 15:39:21 - Nie można pobrać pakietu MCEClientUX (Błąd: Nie można połączyć

się z serwerem zdalnym)

 

Error - 2011-12-21 10:40:04 | Computer Name = xxx-Komputer | Source = MCUpdate | ID = 0

Description = 15:40:03 - Nie można pobrać pakietu Broadband (Błąd: Nie można połączyć

się z serwerem zdalnym)

 

Error - 2011-12-21 11:40:49 | Computer Name = xxx-Komputer | Source = MCUpdate | ID = 0

Description = 16:40:49 - Nie można pobrać pakietu Directory (Błąd: Nie można połączyć

się z serwerem zdalnym)

 

Error - 2011-12-21 11:41:52 | Computer Name = xxx-Komputer | Source = MCUpdate | ID = 0

Description = 16:41:31 - Nie można pobrać pakietu MCESpotlight (Błąd: Nie można

połączyć się z serwerem zdalnym)

 

Error - 2011-12-21 11:42:34 | Computer Name = xxx-Komputer | Source = MCUpdate | ID = 0

Description = 16:42:13 - Nie można pobrać pakietu MCEClientUX (Błąd: Nie można połączyć

się z serwerem zdalnym)

 

Error - 2011-12-21 11:42:56 | Computer Name = xxx-Komputer | Source = MCUpdate | ID = 0

Description = 16:42:55 - Nie można pobrać pakietu Broadband (Błąd: Nie można połączyć

się z serwerem zdalnym)

 

Error - 2011-12-23 04:21:55 | Computer Name = xxx-Komputer | Source = MCUpdate | ID = 0

Description = 09:21:55 - Nie można pobrać pakietu Directory (Błąd: Nie można połączyć

się z serwerem zdalnym)

 

Error - 2011-12-23 04:22:59 | Computer Name = xxx-Komputer | Source = MCUpdate | ID = 0

Description = 09:22:38 - Nie można pobrać pakietu MCESpotlight (Błąd: Nie można

połączyć się z serwerem zdalnym)

 

Error - 2011-12-23 04:23:41 | Computer Name = xxx-Komputer | Source = MCUpdate | ID = 0

Description = 09:23:20 - Nie można pobrać pakietu MCEClientUX (Błąd: Nie można połączyć

się z serwerem zdalnym)

 

Error - 2011-12-23 04:24:07 | Computer Name = xxx-Komputer | Source = MCUpdate | ID = 0

Description = 09:24:02 - Nie można pobrać pakietu Broadband (Błąd: Nie można połączyć

się z serwerem zdalnym)

 

[ System Events ]

Error - 2012-07-21 04:31:51 | Computer Name = KUBA-PC | Source = Service Control Manager | ID = 7026

Description = Nie można załadować następujących sterowników startu rozruchowego

lub systemowego: KLIM6 prodrv06 prohlp02 prosync1 sfhlp01

 

Error - 2012-07-21 04:32:03 | Computer Name = KUBA-PC | Source = PNRPSvc | ID = 102

Description =

 

Error - 2012-07-21 04:32:03 | Computer Name = KUBA-PC | Source = Service Control Manager | ID = 7023

Description = Usługa Protokół rozpoznawania nazw równorzędnych zakończyła działanie;

wystąpił następujący błąd: %%-2140993535

 

Error - 2012-07-21 04:32:03 | Computer Name = KUBA-PC | Source = Service Control Manager | ID = 7001

Description = Usługa Grupowanie sieci równorzędnej zależy od usługi Protokół rozpoznawania

nazw równorzędnych, której nie można uruchomić z powodu następującego błędu: %%-2140993535

 

Error - 2012-07-21 04:32:14 | Computer Name = KUBA-PC | Source = PNRPSvc | ID = 102

Description =

 

Error - 2012-07-21 04:32:14 | Computer Name = KUBA-PC | Source = PNRPSvc | ID = 102

Description =

 

Error - 2012-07-21 04:32:14 | Computer Name = KUBA-PC | Source = Service Control Manager | ID = 7023

Description = Usługa Protokół rozpoznawania nazw równorzędnych zakończyła działanie;

wystąpił następujący błąd: %%-2140993535

 

Error - 2012-07-21 04:32:14 | Computer Name = KUBA-PC | Source = Service Control Manager | ID = 7001

Description = Usługa Grupowanie sieci równorzędnej zależy od usługi Protokół rozpoznawania

nazw równorzędnych, której nie można uruchomić z powodu następującego błędu: %%-2140993535

 

Error - 2012-07-21 04:32:14 | Computer Name = KUBA-PC | Source = Service Control Manager | ID = 7023

Description = Usługa Protokół rozpoznawania nazw równorzędnych zakończyła działanie;

wystąpił następujący błąd: %%-2140993535

 

Error - 2012-07-21 04:32:14 | Computer Name = KUBA-PC | Source = Service Control Manager | ID = 7001

Description = Usługa Grupowanie sieci równorzędnej zależy od usługi Protokół rozpoznawania

nazw równorzędnych, której nie można uruchomić z powodu następującego błędu: %%-2140993535

 

 

< End of report >

 

Nchf.png

lol

Fr3shMak3r Pomocnik

Fr3shMak3r

Opublikowano
Pomocnik

Fr3shMak3r

Opublikowano

Ja pierd.... więcej się nie dało?

Wstaw na speedyshare i daj linka w nie wklejasz cały tekst.

Ja nawet nie wiem który log OTL a który extras.

1364047611-U477327.png

 

STOP komentarzom typu: "AMD to gówno"! Zanim coś napiszesz, to pomyśl jak odbiorą to inni !

 

 

 

Nie pisać mi na PW w sprawach pomocy od tego macie dział komputery!!!

I nie pomagam na PW!

 

 

 

 

gardenscapes cheats

 

bakery story 2 cheat

ZjeemCie Budowniczy

ZjeemCie

Opublikowano
Budowniczy

ZjeemCie

Opublikowano

przeskanuj antyvirem i ccleanerem rejestr wyczyść :P najlepiej kilka razy bo za pierwszym wszystkiego nie naprawi/usunie

groky02 Pomocnik

groky02

Opublikowano
Pomocnik

groky02

Opublikowano

Skasowac calkowicie, potem wyczyscic komputer ccleanerem

ask.com
media booster
Shopping Assistant Plugin
Free Lunch Design Toolbar
ALOT Appbar Helper
AOL Toolbar
Softonic-Polska_ Toolbar
Fantapper
IMinent WebBooster
SearchCore for Browsers
IncrediMail MediaBar 2 Toolbar
Shop to Win
GetDislike
Conduit Engine
ShopAtHome.com Toolbar
dll-files.com fixer
E:\sweetimsetusp.exe
VideoBuzz
GameSpy Arcade

Unbanned :]

Wszelkie pytania/wiadomości kierować na

Misiekantos253

Zarchiwizowany

Ten temat przebywa obecnie w archiwum. Dodawanie nowych odpowiedzi zostało zablokowane.

Tematy
×
×
  • Dodaj nową pozycję...