Skocz do zawartości

  • 👋 Witaj na MPCForum!

    Przeglądasz forum jako gość, co oznacza, że wiele świetnych funkcji jest jeszcze przed Tobą! 😎

    • Pełny dostęp do działów i ukrytych treści
    • Możliwość pisania i odpowiadania w tematach
    • System prywatnych wiadomości
    • Zbieranie reputacji i rozwijanie swojego profilu
    • Członkostwo w jednej z największych społeczności graczy

    👉 Dołączenie zajmie Ci mniej niż minutę – a zyskasz znacznie więcej!

    Zarejestruj się teraz

Help! Wirusy atakują!

Gość

Przez Gość
w Elektronika - Sprzęt

Rekomendowane odpowiedzi

Gość

Gość

Opublikowano

Gość

Opublikowano

Siema! Mam jakieś wirusy. Ciągle wyskakuje mi zapora internetowa i pozwolenia.

 

Tutaj screen:

wqero.png

 

Skanowałem internetowym antywirusem. 33/40 wir.

Mogę prosić o pomoc ? :/

 

I tak powstają bez przerwy.

 

@edit

dodatkowo autorun.inf na dysku D. AVG ciągle wykrywa w nim Worm , ale nie może go usunąć. Jak próbuje go odpalić pisze "odmowa dostępu".

Fr3shMak3r Pomocnik

Fr3shMak3r

Opublikowano
Pomocnik

Fr3shMak3r

Opublikowano

Wrzuc loga OTL oraz niech ktos przeniesie temat do komputerow

 

www.mpcforum.pl/topic/679592-tutlogi-co-i-jak/

1364047611-U477327.png

 

STOP komentarzom typu: "AMD to gówno"! Zanim coś napiszesz, to pomyśl jak odbiorą to inni !

 

 

 

Nie pisać mi na PW w sprawach pomocy od tego macie dział komputery!!!

I nie pomagam na PW!

 

 

 

 

gardenscapes cheats

 

bakery story 2 cheat

Poslaniec Mentor

Poslaniec

Opublikowano
Mentor

Poslaniec

Opublikowano

Format

ty zrób sobie format mózgu

 

pobierz z internetu web.doctor darmowy antyvirus ale bardzo skuteczny mi pomagał w takich przypadkach

za wysoka sygnatura

Gość

Gość

Opublikowano

Gość

Opublikowano

Mam 2 pliki tekstowe:

 

OTL

 

OTL logfile created on: 2013-02-23 11:43:38 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Krzyś\Pobrane
64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd

3,48 Gb Total Physical Memory | 1,82 Gb Available Physical Memory | 52,44% Memory free
6,95 Gb Paging File | 4,90 Gb Available in Paging File | 70,46% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 128,18 Gb Total Space | 71,63 Gb Free Space | 55,88% Space Free | Partition Type: NTFS
Drive D: | 144,91 Gb Total Space | 107,86 Gb Free Space | 74,43% Space Free | Partition Type: NTFS

Computer Name: ASUS | User Name: Krzyś | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2013-02-23 11:42:52 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Krzyś\Pobrane\OTL.exe
PRC - [2013-02-19 12:43:46 | 001,151,152 | ---- | M] () -- C:\Program Files (x86)\AVG Secure Search\vprot.exe
PRC - [2013-02-19 12:43:46 | 000,968,880 | ---- | M] () -- C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\14.2.0\ToolbarUpdater.exe
PRC - [2013-02-07 18:53:34 | 007,325,728 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files (x86)\AVG\AVG2013\avgmfapx.exe
PRC - [2013-02-06 16:54:42 | 000,917,400 | ---- | M] (Mozilla Corporation) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
PRC - [2012-12-14 11:08:52 | 002,255,360 | ---- | M] (LogMeIn Inc.) -- C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe
PRC - [2012-12-11 03:52:44 | 003,147,384 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files (x86)\AVG\AVG2013\avgui.exe
PRC - [2012-10-22 13:05:08 | 000,196,664 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files (x86)\AVG\AVG2013\avgwdsvc.exe
PRC - [2012-04-26 13:33:16 | 002,743,104 | ---- | M] (DT Soft Ltd) -- C:\Program Files (x86)\DAEMON Tools Pro\DTShellHlp.exe
PRC - [2012-02-09 14:48:04 | 000,224,096 | ---- | M] () -- C:\ProgramData\Internet Manager\OnlineUpdate\ouc.exe
PRC - [2011-12-22 08:37:52 | 003,058,304 | ---- | M] (ASUS) -- C:\Windows\AsScrPro.exe
PRC - [2011-11-23 00:09:34 | 000,101,544 | ---- | M] (ASUS) -- C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
PRC - [2011-11-23 00:09:30 | 000,162,456 | ---- | M] (ASUSTeK) -- C:\Windows\SysWOW64\ACEngSvr.exe
PRC - [2011-11-17 20:34:00 | 001,548,448 | ---- | M] (ASUSTeK Computer Inc.) -- C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe
PRC - [2011-10-15 03:04:40 | 000,504,488 | ---- | M] (ASUSTek Computer Inc.) -- C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe
PRC - [2011-10-04 00:17:40 | 000,166,528 | ---- | M] (ASUS) -- C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
PRC - [2011-10-03 20:45:58 | 000,375,424 | ---- | M] (ASUS) -- C:\Program Files (x86)\ASUS\FaceLogon\sensorsrv.exe
PRC - [2011-10-01 08:30:22 | 000,219,496 | ---- | M] (Microsoft Corporation) -- C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
PRC - [2011-10-01 08:30:18 | 000,508,776 | ---- | M] (Microsoft Corporation) -- C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
PRC - [2011-09-13 22:33:14 | 002,317,312 | ---- | M] (ASUS) -- C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe
PRC - [2011-07-22 00:49:10 | 005,716,608 | ---- | M] (ASUS) -- C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
PRC - [2011-03-14 16:27:28 | 000,236,384 | ---- | M] (Huawei Technologies Co., Ltd.) -- C:\ProgramData\DatacardService\DCSHelper.exe
PRC - [2011-02-25 18:46:22 | 000,249,648 | ---- | M] (Microsoft Corporation) -- C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE
PRC - [2010-10-07 23:05:14 | 000,170,624 | ---- | M] (ASUS) -- C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
PRC - [2009-12-15 19:39:38 | 000,096,896 | ---- | M] (ASUS) -- C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
PRC - [2009-06-19 19:29:42 | 000,105,016 | ---- | M] (ASUS) -- C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
PRC - [2009-06-19 19:29:26 | 002,488,888 | ---- | M] (ASUS) -- C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ATKOSD.exe
PRC - [2009-06-16 02:30:42 | 000,084,536 | ---- | M] (ASUS) -- C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
PRC - [2008-12-23 02:15:34 | 000,174,648 | ---- | M] (ASUS) -- C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\WDC.exe
PRC - [2008-08-14 06:00:08 | 000,113,208 | ---- | M] (ASUS) -- C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\KBFiltr.exe
PRC - [2006-11-03 10:01:16 | 000,319,488 | ---- | M] (PixArt Imaging Incorporation) -- C:\Windows\PixArt\Pac207\Monitor.exe


========== Modules (No Company Name) ==========

MOD - [2013-02-19 12:43:47 | 000,156,848 | ---- | M] () -- C:\Program Files (x86)\Common Files\AVG Secure Search\SiteSafetyInstaller\14.2.0\SiteSafety.dll
MOD - [2013-02-19 12:43:46 | 001,151,152 | ---- | M] () -- C:\Program Files (x86)\AVG Secure Search\vprot.exe
MOD - [2013-02-13 16:18:21 | 012,436,480 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\cb562e2e4f74ae607f1186f6ec50cec7\System.Windows.Forms.ni.dll
MOD - [2013-02-06 16:54:41 | 003,023,256 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefox\mozjs.dll
MOD - [2013-01-12 11:17:10 | 000,368,128 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\d7d20811a7ce7cc589153648cbb1ce5c\PresentationFramework.Aero.ni.dll
MOD - [2013-01-12 11:16:21 | 014,340,608 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\ff7c9a4f41f7cccc47e696c11b9f8469\PresentationFramework.ni.dll
MOD - [2013-01-12 11:15:47 | 001,592,832 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\eead6629e384a5b69f9ae35284b7eeed\System.Drawing.ni.dll
MOD - [2013-01-12 11:15:41 | 012,237,824 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationCore\19b3d17c3ce0e264c4fb62028161adf7\PresentationCore.ni.dll
MOD - [2013-01-12 11:15:24 | 003,347,968 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\cf827fe7bc99d9bcf0ba3621054ef527\WindowsBase.ni.dll
MOD - [2013-01-12 11:15:17 | 005,453,312 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\f687c43e9fdec031988b33ae722c4613\System.Xml.ni.dll
MOD - [2013-01-12 11:15:13 | 000,971,264 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\195a77fcc6206f8bb35d419ff2cf0d72\System.Configuration.ni.dll
MOD - [2013-01-12 11:15:11 | 007,989,760 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System\369f8bdca364e2b4936d18dea582912c\System.ni.dll
MOD - [2013-01-12 11:15:05 | 011,493,376 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\7150b9136fad5b79e88f6c7f9d3d2c39\mscorlib.ni.dll
MOD - [2011-11-23 00:09:30 | 000,009,216 | ---- | M] () -- C:\Program Files (x86)\ASUS\Splendid\GLCDdll.dll
MOD - [2011-11-17 20:33:58 | 000,209,920 | ---- | M] () -- C:\Program Files (x86)\ASUS\ASUS Live Update\alvupdt.dll
MOD - [2011-09-13 22:33:14 | 001,163,264 | ---- | M] () -- C:\Program Files (x86)\ASUS\Wireless Console 3\acAuth.dll
MOD - [2011-02-19 06:30:35 | 000,249,856 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\PresentationFramework.resources\3.0.0.0_pl_31bf3856ad364e35\PresentationFramework.resources.dll
MOD - [2011-02-19 06:30:35 | 000,110,592 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\PresentationCore.resources\3.0.0.0_pl_31bf3856ad364e35\PresentationCore.resources.dll
MOD - [2011-02-19 06:30:28 | 000,090,112 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\WindowsBase.resources\3.0.0.0_pl_31bf3856ad364e35\WindowsBase.resources.dll
MOD - [2010-11-13 03:03:49 | 000,311,296 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\mscorlib.resources\2.0.0.0_pl_b77a5c561934e089\mscorlib.resources.dll
MOD - [2009-02-27 15:38:20 | 000,139,264 | R--- | M] () -- C:\Program Files (x86)\Brother\BrUtilities\BrLogAPI.dll


========== Services (SafeList) ==========

SRV:64bit: - File not found [Auto | Running] -- C:\Program Files\Trend Micro\AMSP\coreServiceShell.exe coreFrameworkHost.exe -- (Amsp)
SRV:64bit: - [2012-01-26 15:47:10 | 000,235,520 | ---- | M] (AMD) [Auto | Running] -- C:\Windows\SysNative\atiesrxx.exe -- (AMD External Events Utility)
SRV:64bit: - [2011-03-04 01:57:58 | 000,379,520 | ---- | M] (ASUSTeK Computer Inc.) [Auto | Stopped] -- C:\Windows\SysNative\FBAgent.exe -- (AFBAgent)
SRV:64bit: - [2010-09-23 02:10:10 | 000,057,184 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Program Files\Windows Live\Mesh\wlcrasvc.exe -- (wlcrasvc)
SRV:64bit: - [2009-07-14 02:41:27 | 001,011,712 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2013-02-19 12:43:46 | 000,968,880 | ---- | M] () [Auto | Running] -- C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\14.2.0\ToolbarUpdater.exe -- (vToolbarUpdater14.2.0)
SRV - [2013-02-08 00:15:43 | 000,251,248 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2013-01-19 10:50:29 | 000,115,608 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2013-01-08 12:55:20 | 000,161,536 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files (x86)\Skype\Updater\Updater.exe -- (SkypeUpdate)
SRV - [2012-12-14 11:08:50 | 002,466,304 | ---- | M] (LogMeIn Inc.) [Auto | Running] -- C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe -- (Hamachi2Svc)
SRV - [2012-12-10 11:11:44 | 001,342,024 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Stopped] -- C:\Program Files (x86)\AVG\AVG2013\avgfws.exe -- (avgfws)
SRV - [2012-11-15 23:34:30 | 005,814,904 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Stopped] -- C:\Program Files (x86)\AVG\AVG2013\avgidsagent.exe -- (AVGIDSAgent)
SRV - [2012-10-22 13:05:08 | 000,196,664 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files (x86)\AVG\AVG2013\avgwdsvc.exe -- (avgwd)
SRV - [2012-02-09 14:48:04 | 000,224,096 | ---- | M] () [Auto | Stopped] -- C:\Program Files (x86)\T-Mobile\InternetManager_H\UpdateDog\ouc.exe -- (Internet Manager. RunOuc)
SRV - [2011-10-01 08:30:22 | 000,219,496 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe -- (sftvsa)
SRV - [2011-10-01 08:30:18 | 000,508,776 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe -- (sftlist)
SRV - [2011-03-14 16:27:34 | 000,346,976 | ---- | M] () [Auto | Running] -- C:\ProgramData\DatacardService\HWDeviceService64.exe -- (HWDeviceService64.exe)
SRV - [2011-03-02 05:23:36 | 000,183,560 | ---- | M] (Microsoft Corporation.) [On_Demand | Stopped] -- C:\Program Files (x86)\Microsoft\BingBar\BBSvc.EXE -- (BBSvc)
SRV - [2011-02-25 18:46:22 | 000,249,648 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE -- (SeaPort)
SRV - [2010-03-18 22:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2010-01-25 07:22:56 | 000,245,760 | ---- | M] (Brother Industries, Ltd.) [On_Demand | Stopped] -- C:\Program Files (x86)\Browny02\BrYNSvc.exe -- (BrYNSvc)
SRV - [2009-12-15 19:39:38 | 000,096,896 | ---- | M] (ASUS) [Auto | Running] -- C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe -- (ATKGFNEXSrv)
SRV - [2009-06-16 02:30:42 | 000,084,536 | ---- | M] (ASUS) [Auto | Running] -- C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe -- (ASLDRService)
SRV - [2009-06-10 22:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)


========== Driver Services (SafeList) ==========

DRV:64bit: - [2013-02-19 12:43:47 | 000,039,768 | ---- | M] (AVG Technologies) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\avgtpx64.sys -- (avgtp)
DRV:64bit: - [2012-11-15 02:38:20 | 000,040,712 | ---- | M] (Anchorfree Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\taphss6.sys -- (taphss6)
DRV:64bit: - [2012-10-15 03:48:50 | 000,063,328 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\avgidsha.sys -- (AVGIDSHA)
DRV:64bit: - [2012-09-12 12:36:37 | 000,035,112 | ---- | M] (TeamViewer GmbH) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\teamviewervpn.sys -- (teamviewervpn)
DRV:64bit: - [2012-07-17 13:28:36 | 000,283,200 | ---- | M] (DT Soft Ltd) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\dtsoftbus01.sys -- (dtsoftbus01)
DRV:64bit: - [2012-07-17 13:13:22 | 000,868,848 | ---- | M] (Duplex Secure Ltd.) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\sptd.sys -- (sptd)
DRV:64bit: - [2012-07-09 10:01:54 | 000,311,968 | ---- | M] () [Kernel | Auto | Stopped] -- C:\Windows\SysNative\drivers\atksgt.sys -- (atksgt)
DRV:64bit: - [2012-07-09 10:01:54 | 000,043,168 | ---- | M] () [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\lirsgt.sys -- (lirsgt)
DRV:64bit: - [2012-04-06 19:15:10 | 000,038,632 | ---- | M] (AnchorFree Inc) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\taphss.sys -- (taphss)
DRV:64bit: - [2012-03-08 17:40:52 | 000,048,488 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\fssfltr.sys -- (fssfltr)
DRV:64bit: - [2012-03-01 07:46:16 | 000,023,408 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\Windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
DRV:64bit: - [2012-02-09 14:48:07 | 000,212,992 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ew_juwwanecm.sys -- (huawei_wwanecm)
DRV:64bit: - [2012-02-09 14:48:07 | 000,117,248 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ew_hwusbdev.sys -- (ew_hwusbdev)
DRV:64bit: - [2012-02-09 14:48:07 | 000,098,816 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ew_jucdcacm.sys -- (huawei_cdcacm)
DRV:64bit: - [2012-02-09 14:48:07 | 000,086,016 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\ew_jubusenum.sys -- (huawei_enumerator)
DRV:64bit: - [2012-02-09 14:48:07 | 000,039,552 | ---- | M] (Bytemobile, Inc.) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\tcpipBM.sys -- (tcpipBM)
DRV:64bit: - [2012-02-09 14:48:07 | 000,028,672 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ew_juextctrl.sys -- (huawei_ext_ctrl)
DRV:64bit: - [2012-02-09 14:48:07 | 000,016,512 | ---- | M] (Bytemobile, Inc.) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\BMLoad.sys -- (BMLoad)
DRV:64bit: - [2012-02-09 14:48:07 | 000,013,952 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ew_usbenumfilter.sys -- (ew_usbenumfilter)
DRV:64bit: - [2012-01-26 16:41:52 | 010,819,584 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\atikmdag.sys -- (amdkmdag)
DRV:64bit: - [2012-01-26 14:52:44 | 000,328,192 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\atikmpag.sys -- (amdkmdap)
DRV:64bit: - [2011-12-01 10:42:44 | 000,072,240 | ---- | M] (Nero AG) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\NBVol.sys -- (NBVol)
DRV:64bit: - [2011-12-01 10:42:44 | 000,015,920 | ---- | M] (Nero AG) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\NBVolUp.sys -- (NBVolUp)
DRV:64bit: - [2011-10-28 11:41:28 | 000,042,624 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amd_xata.sys -- (amd_xata)
DRV:64bit: - [2011-10-28 11:41:26 | 000,080,512 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amd_sata.sys -- (amd_sata)
DRV:64bit: - [2011-10-25 19:16:46 | 000,219,776 | ---- | M] (Advanced Micro Devices, INC.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\amdxhc.sys -- (amdxhc)
DRV:64bit: - [2011-10-25 19:16:46 | 000,102,528 | ---- | M] (Advanced Micro Devices, INC.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\amdhub30.sys -- (amdhub30)
DRV:64bit: - [2011-10-19 22:29:28 | 000,107,904 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:64bit: - [2011-10-19 22:29:28 | 000,027,008 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:64bit: - [2011-10-17 18:40:50 | 000,093,712 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\AtihdW76.sys -- (AtiHDAudioService)
DRV:64bit: - [2011-10-15 03:04:40 | 000,017,152 | ---- | M] (ASUSTek Computer Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\AiCharger.sys -- (AiCharger)
DRV:64bit: - [2011-10-04 08:49:32 | 002,770,944 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\athrx.sys -- (athr)
DRV:64bit: - [2011-10-01 08:30:22 | 000,022,376 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Sftvollh.sys -- (Sftvol)
DRV:64bit: - [2011-10-01 08:30:18 | 000,268,648 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Sftplaylh.sys -- (Sftplay)
DRV:64bit: - [2011-10-01 08:30:18 | 000,025,960 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Running] -- C:\Windows\SysNative\drivers\Sftredirlh.sys -- (Sftredir)
DRV:64bit: - [2011-10-01 08:30:10 | 000,764,264 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Sftfslh.sys -- (Sftfs)
DRV:64bit: - [2011-06-10 05:34:52 | 000,539,240 | ---- | M] (Realtek ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Rt64win7.sys -- (RTL8167)
DRV:64bit: - [2011-01-18 10:16:46 | 000,250,984 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\RtsUStor.sys -- (RSUSBSTOR)
DRV:64bit: - [2010-12-31 11:30:10 | 000,138,024 | ---- | M] (ELAN Microelectronics Corp.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\ETD.sys -- (ETD)
DRV:64bit: - [2010-11-20 14:33:36 | 000,078,720 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:64bit: - [2010-11-20 12:07:06 | 000,059,392 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV:64bit: - [2010-11-20 12:07:06 | 000,031,232 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbGD.sys -- (TsUsbGD)
DRV:64bit: - [2010-11-20 10:37:44 | 000,109,056 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\sdbus.sys -- (sdbus)
DRV:64bit: - [2010-09-17 09:52:28 | 000,144,464 | ---- | M] (Trend Micro Inc.) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\tmcomm.sys -- (tmcomm)
DRV:64bit: - [2010-09-17 09:52:28 | 000,105,552 | ---- | M] (Trend Micro Inc.) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\tmtdi.sys -- (tmtdi)
DRV:64bit: - [2010-09-17 09:52:28 | 000,090,704 | ---- | M] (Trend Micro Inc.) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\tmactmon.sys -- (tmactmon)
DRV:64bit: - [2010-09-17 09:52:28 | 000,067,664 | ---- | M] (Trend Micro Inc.) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\tmevtmgr.sys -- (tmevtmgr)
DRV:64bit: - [2010-02-18 18:18:24 | 000,046,136 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdiox64.sys -- (amdiox64)
DRV:64bit: - [2009-07-20 10:29:40 | 000,015,416 | ---- | M] ( ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\kbfiltr.sys -- (kbfiltr)
DRV:64bit: - [2009-07-14 02:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:64bit: - [2009-07-14 02:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:64bit: - [2009-07-14 02:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:64bit: - [2009-07-14 01:35:32 | 000,012,288 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\serscan.sys -- (StillCam)
DRV:64bit: - [2009-06-10 21:35:57 | 000,056,832 | ---- | M] (Silicon Integrated Systems Corp.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\SiSG664.sys -- (SiSGbeLH)
DRV:64bit: - [2009-06-10 21:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:64bit: - [2009-06-10 21:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:64bit: - [2009-06-10 21:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:64bit: - [2009-06-10 21:34:18 | 000,057,344 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\L1C62x64.sys -- (L1C)
DRV:64bit: - [2009-06-10 21:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
DRV:64bit: - [2009-03-18 16:35:42 | 000,033,856 | -H-- | M] (LogMeIn, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\hamachi.sys -- (hamachi)
DRV:64bit: - [2008-05-24 02:27:28 | 000,154,168 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WimFltr.sys -- (WimFltr)
DRV:64bit: - [2006-12-05 10:34:26 | 000,572,416 | ---- | M] (PixArt Imaging Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\PFC027.SYS -- (PAC207)
DRV - [2011-10-15 03:04:40 | 000,017,152 | ---- | M] (ASUSTek Computer Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysWOW64\drivers\AiCharger.sys -- (AiCharger)
DRV - [2011-09-07 18:55:04 | 000,017,536 | ---- | M] (ASUS) [Kernel | System | Running] -- C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys -- (ATKWMIACPIIO)
DRV - [2010-07-01 18:11:24 | 000,012,352 | ---- | M] () [Kernel | Unavailable | Unknown] -- D:\Unlocker\UnlockerDriver5.sys -- (UnlockerDriver5)
DRV - [2009-07-14 02:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount)
DRV - [2009-07-03 02:36:14 | 000,015,416 | ---- | M] (ASUS) [Kernel | Auto | Running] -- C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\ASMMAP64.sys -- (ASMMAP64)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&form=ASUTDF&pc=NP06&src=IE-SearchBox
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.v9.com/?utm_source=b&utm_medium=ins&from=ins&uid=3149584_264192_8396809_395049983_6459E9A6&ts=1342467844
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&form=ASUTDF&pc=NP06&src=IE-SearchBox

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.v9.com/?utm_source=b&utm_medium=ins&from=ins&uid=3149584_264192_8396809_395049983_6459E9A6&ts=1342467844
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,DefaultNetworkProfile = 26963925
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://isearch.avg.com/?cid={46089398-8F28-4C7E-A15E-4CD369B3FC1C}&mid=6acad1a4f3ee4985a5d5ae219ca5fe9d-33d180ad9ebf91ed4407a3bd53601d0e89c7f2d0〈=pl&ds=xn011&pr=sa&d=2012-12-07 19:47:49&v=13.2.0.5&sap=hp
IE - HKCU\..\SearchScopes,DefaultScope = {95B7759C-8C7F-4BF1-B163-73684A933233}
IE - HKCU\..\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}: "URL" = http://search.v9.com/web/?q={searchTerms}
IE - HKCU\..\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}: "URL" = http://isearch.avg.com/search?cid={46089398-8F28-4C7E-A15E-4CD369B3FC1C}&mid=6acad1a4f3ee4985a5d5ae219ca5fe9d-33d180ad9ebf91ed4407a3bd53601d0e89c7f2d0〈=pl&ds=xn011&pr=sa&d=2012-12-07 19:47:49&v=14.2.0.1&pid=avg&sg=&sap=dsp&q={searchTerms}
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..browser.search.suggest.enabled: false
FF - prefs.js..browser.startup.homepage: "http://www.google.pl/"
FF - prefs.js..extensions.enabledAddons: %7Bb9db16a4-6edc-47ec-a1f4-b86292ed211d%7D:4.9.13
FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:18.0.2
FF - user.js - File not found

FF:64bit: - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF64_11_5_502_149.dll File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.13.2: C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF:64bit: - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.13.2: C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_5_502_149.dll ()
FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\Windows\SysWOW64\Adobe\Director\np32dsw_1167637.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin: C:\Program Files (x86)\Common Files\AVG Secure Search\SiteSafetyInstaller\14.2.0\\npsitesafety.dll ()
FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.13.2: C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.13.2: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files (x86)\Microsoft Silverlight\5.1.10411.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3538.0513: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3555.0308: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.21.135\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.21.135\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\ZEON/PDF,version=2.0: C:\Program Files (x86)\Nuance\PDF Reader\bin\nppdf.dll (Zeon Corporation)
FF - HKCU\Software\MozillaPlugins\@eximion.com/KalydoPlayer: C:\Users\Krzyś\AppData\Roaming\Kalydo\KalydoPlayer\bin2\npkalydo.dll (Eximion B.V.)
FF - HKCU\Software\MozillaPlugins\@talk.google.com/GoogleTalkPlugin: C:\Users\Krzyś\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll (Google)
FF - HKCU\Software\MozillaPlugins\@talk.google.com/O3DPlugin: C:\Users\Krzyś\AppData\Roaming\Mozilla\plugins\npgtpo3dautoplugin.dll ()
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Users\Krzyś\AppData\Local\Google\Update\1.3.21.135\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Users\Krzyś\AppData\Local\Google\Update\1.3.21.135\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@unity3d.com/UnityPlayer,version=1.0: C:\Users\Krzyś\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\extensions\\[email protected]: C:\Program Files\T-Mobile\InternetManager_H\OCx64\addon
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\extensions\\{22C7F6C6-8D67-4534-92B5-529A0EC09405}: C:\Program Files\Trend Micro\AMSP\Module\20004\1.5.1505\6.6.1088\firefoxextension\ [2013-02-07 10:03:39 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\extensions\\avg@toolbar: C:\ProgramData\AVG Secure Search\FireFoxExt\14.2.0.1 [2013-02-19 12:43:56 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 18.0.2\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2013-02-06 16:54:42 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 18.0.2\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins

[2012-02-09 19:04:52 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Krzyś\AppData\Roaming\mozilla\Extensions
[2013-01-11 21:56:50 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Krzyś\AppData\Roaming\mozilla\Firefox\Profiles\ffciur9n.default\extensions
[2013-01-11 21:56:50 | 000,000,000 | ---D | M] (DownloadHelper) -- C:\Users\Krzyś\AppData\Roaming\mozilla\Firefox\Profiles\ffciur9n.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}
[2013-01-19 10:50:22 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\extensions
[2013-01-19 10:50:22 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0035-ABCDEFFEDCBA}
[2013-01-19 10:50:22 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0037-ABCDEFFEDCBA}
File not found (No name found) -- C:\USERS\KRZYĹ›\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\FFCIUR9N.DEFAULT\EXTENSIONS\{B9DB16A4-6EDC-47EC-A1F4-B86292ED211D}
[2013-02-06 16:54:42 | 000,262,552 | ---- | M] (Mozilla Foundation) -- C:\Program Files (x86)\mozilla firefox\components\browsercomps.dll
[2012-10-11 03:58:06 | 000,002,767 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\allegro-pl.xml
[2013-02-19 12:43:57 | 000,003,716 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\avg-secure-search.xml
[2012-10-11 03:58:06 | 000,001,406 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\fbc-pl.xml
[2012-10-11 03:58:06 | 000,000,917 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\merlin-pl.xml
[2012-10-11 03:58:06 | 000,000,858 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\pwn-pl.xml
[2012-07-16 20:44:06 | 000,000,402 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\v9.xml
[2012-10-11 03:58:06 | 000,001,183 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\wikipedia-pl.xml
[2012-10-11 03:58:06 | 000,001,683 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\wp-pl.xml

O1 HOSTS File: ([2009-06-10 22:00:26 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O2:64bit: - BHO: (TmIEPlugInBHO Class) - {1CA1377B-DC1D-4A52-9585-6E06050FAC53} - C:\Program Files\Trend Micro\AMSP\module\20004\1.5.1505\6.6.1088\TmIEPlg.dll (Trend Micro Inc.)
O2:64bit: - BHO: (Java Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2:64bit: - BHO: (TmBpIeBHO Class) - {BBACBAFD-FA5E-4079-8B33-00EB9F13D4AC} - C:\Program Files\Trend Micro\AMSP\module\20002\6.6.1010\6.6.1010\TmBpIe64.dll (Trend Micro Inc.)
O2:64bit: - BHO: (Java Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O2:64bit: - BHO: (Hotspot Shield Class) - {F9E4A054-E9B1-4BC3-83A3-76A1AE736170} - C:\Program Files (x86)\Hotspot Shield\HssIE\HssIE_64.dll File not found
O2 - BHO: (TmIEPlugInBHO Class) - {1CA1377B-DC1D-4A52-9585-6E06050FAC53} - C:\Program Files\Trend Micro\AMSP\module\20004\1.5.1505\6.6.1088\TmIEPlg32.dll (Trend Micro Inc.)
O2 - BHO: (Java Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (AVG Security Toolbar) - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files (x86)\AVG Secure Search\14.2.0.1\AVG Secure Search_toolbar.dll ()
O2 - BHO: (TmBpIeBHO Class) - {BBACBAFD-FA5E-4079-8B33-00EB9F13D4AC} - C:\Program Files\Trend Micro\AMSP\module\20002\6.6.1010\6.6.1010\TmBpIe32.dll (Trend Micro Inc.)
O2 - BHO: (Bing Bar Helper) - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll (Microsoft Corporation.)
O2 - BHO: (Java Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O3:64bit: - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O3 - HKLM\..\Toolbar: (Bing Bar) - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll (Microsoft Corporation.)
O3 - HKLM\..\Toolbar: (AVG Security Toolbar) - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files (x86)\AVG Secure Search\14.2.0.1\AVG Secure Search_toolbar.dll ()
O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O4:64bit: - HKLM..\Run: [ETDCtrl] C:\Program Files\Elantech\ETDCtrl.exe (ELAN Microelectronics Corp.)
O4:64bit: - HKLM..\Run: [Monitor] C:\Windows\PixArt\Pac207\Monitor.exe (PixArt Imaging Incorporation)
O4:64bit: - HKLM..\Run: [RtHDVBg] C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe (Realtek Semiconductor)
O4:64bit: - HKLM..\Run: [Trend Micro Client Framework] C:\Program Files\Trend Micro\UniClient\UiFrmWrk\UIWatchDog.exe (Trend Micro Inc.)
O4:64bit: - HKLM..\Run: [Trend Micro Titanium] C:\Program Files\Trend Micro\Titanium\UIFramework\uiWinMgr.exe (Trend Micro Inc.)
O4 - HKLM..\Run: [ASUSPRP] C:\Program Files (x86)\ASUS\APRP\APRP.EXE (ASUSTek Computer Inc.)
O4 - HKLM..\Run: [ATKMEDIA] C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe (ASUS)
O4 - HKLM..\Run: [ATKOSD2] C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe (ASUS)
O4 - HKLM..\Run: [brStsMon00] C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe (Brother Industries, Ltd.)
O4 - HKLM..\Run: [ControlCenter3] C:\Program Files (x86)\Brother\ControlCenter3\brctrcen.exe (Brother Industries, Ltd.)
O4 - HKLM..\Run: [HControlUser] C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe (ASUS)
O4 - HKLM..\Run: [LogMeIn Hamachi Ui] C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe (LogMeIn Inc.)
O4 - HKLM..\Run: [Nuance PDF Reader-reminder] C:\Program Files (x86)\Nuance\PDF Reader\Ereg\Ereg.exe (Nuance Communications, Inc.)
O4 - HKLM..\Run: [vProt] C:\Program Files (x86)\AVG Secure Search\vprot.exe ()
O4 - HKLM..\Run: [Wireless Console 3] C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe (ASUS)
O4 - HKCU..\Run: [ChomikBox] C:\Program Files (x86)\ChomikBox\chomikbox.exe File not found
O4 - HKCU..\Run: [speedyDrive] "D:\SpeedyDrive\SpeedyDrive.exe" File not found
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 16
O1364bit: - gopher Prefix: missing
O13 - gopher Prefix: missing
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_37-windows-i586.cab (Reg Error: Value error.)
O16 - DPF: {CAFEEFAC-0016-0000-0037-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_37-windows-i586.cab (Java Plug-in 1.6.0_37)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_37-windows-i586.cab (Java Plug-in 10.13.2)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.20
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{3D7C90FA-FE43-41D8-87A4-2F03871C19B1}: NameServer = 213.158.199.1 213.158.199.5
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{8B2850C1-A7F9-457B-8DD5-69270ED27BA1}: NameServer = 213.158.199.1 213.158.199.5
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{911448AB-6DA1-411F-B3B4-888A5D8F284F}: DhcpNameServer = 192.168.1.20
O18:64bit: - Protocol\Handler\livecall - No CLSID value found
O18:64bit: - Protocol\Handler\ms-help - No CLSID value found
O18:64bit: - Protocol\Handler\msnim - No CLSID value found
O18:64bit: - Protocol\Handler\skype4com - No CLSID value found
O18:64bit: - Protocol\Handler\tmbp {1A77E7DC-C9A0-4110-8A37-2F36BAE71ECF} - C:\Program Files\Trend Micro\AMSP\module\20002\6.6.1010\6.6.1010\TmBpIe64.dll (Trend Micro Inc.)
O18:64bit: - Protocol\Handler\tmpx {0E526CB5-7446-41D1-A403-19BFE95E8C23} - C:\Program Files\Trend Micro\AMSP\module\20004\1.5.1505\6.6.1088\TmIEPlg.dll (Trend Micro Inc.)
O18:64bit: - Protocol\Handler\viprotocol - No CLSID value found
O18:64bit: - Protocol\Handler\wlmailhtml - No CLSID value found
O18:64bit: - Protocol\Handler\wlpg - No CLSID value found
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Handler\tmbp {1A77E7DC-C9A0-4110-8A37-2F36BAE71ECF} - C:\Program Files\Trend Micro\AMSP\module\20002\6.6.1010\6.6.1010\TmBpIe32.dll (Trend Micro Inc.)
O18 - Protocol\Handler\tmpx {0E526CB5-7446-41D1-A403-19BFE95E8C23} - C:\Program Files\Trend Micro\AMSP\module\20004\1.5.1505\6.6.1088\TmIEPlg32.dll (Trend Micro Inc.)
O18 - Protocol\Handler\viprotocol {B658800C-F66E-4EF3-AB85-6C0C227862A9} - C:\Program Files (x86)\Common Files\AVG Secure Search\ViProtocolInstaller\14.2.0\ViProtocol.dll ()
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\Windows\SysWow64\userinit.exe (Microsoft Corporation)
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2013-02-22 20:46:09 | 000,000,330 | RHS- | M] () - D:\autorun.inf -- [ NTFS ]
O33 - MountPoints2\{194a06c8-5323-11e1-a40b-5404a6e3a899}\Shell - "" = AutoRun
O33 - MountPoints2\{194a06c8-5323-11e1-a40b-5404a6e3a899}\Shell\AutoRun\command - "" = F:\AutoRun.exe
O33 - MountPoints2\{194a06e4-5323-11e1-a40b-5404a6e3a899}\Shell - "" = AutoRun
O33 - MountPoints2\{194a06e4-5323-11e1-a40b-5404a6e3a899}\Shell\AutoRun\command - "" = F:\AutoRun.exe
O33 - MountPoints2\{194a0839-5323-11e1-a40b-5404a6e3a899}\Shell - "" = AutoRun
O33 - MountPoints2\{194a0839-5323-11e1-a40b-5404a6e3a899}\Shell\AutoRun\command - "" = G:\AutoRun.exe
O33 - MountPoints2\{5290ff5b-77aa-11e2-a2d3-5404a6e3a899}\Shell - "" = AutoRun
O33 - MountPoints2\{5290ff5b-77aa-11e2-a2d3-5404a6e3a899}\Shell\AutoRun\command - "" = G:\AutoRun.exe
O33 - MountPoints2\{7842a207-a6ae-11e1-b059-5404a6e3a899}\Shell - "" = AutoRun
O33 - MountPoints2\{7842a207-a6ae-11e1-b059-5404a6e3a899}\Shell\AutoRun\command - "" = F:\Launcher.exe
O34 - HKLM BootExecute: (autocheck autochk *)
O34 - HKLM BootExecute: (MACHINE BootExecut)
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

========== Files/Folders - Created Within 30 Days ==========

[2013-02-23 01:10:05 | 000,000,000 | -H-D | C] -- C:\$AVG
[2013-02-23 01:10:04 | 000,000,000 | ---D | C] -- C:\ProgramData\AVG2013
[2013-02-23 01:08:50 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\AVG
[2013-02-23 01:04:45 | 000,000,000 | ---D | C] -- C:\Users\Krzyś\AppData\Local\MFAData
[2013-02-23 01:04:45 | 000,000,000 | ---D | C] -- C:\ProgramData\MFAData
[2013-02-23 01:04:45 | 000,000,000 | ---D | C] -- C:\Users\Krzyś\AppData\Local\Avg2013
[2013-02-22 17:54:45 | 000,000,000 | ---D | C] -- C:\Users\Krzyś\AppData\Local\{4AEAC4CA-64E0-4A41-AA36-30C08D686427}
[2013-02-21 00:15:51 | 000,000,000 | ---D | C] -- C:\Users\Krzyś\AppData\Roaming\PokCP
[2013-02-20 21:05:17 | 000,000,000 | ---D | C] -- C:\Users\Krzyś\AppData\Roaming\Minecraft Version Changer
[2013-02-20 21:05:17 | 000,000,000 | ---D | C] -- C:\Users\Krzyś\AppData\Local\http___mvc.craften.de
[2013-02-18 22:46:40 | 000,000,000 | ---D | C] -- C:\Users\Krzyś\AppData\Roaming\pverb
[2013-02-18 20:43:59 | 000,000,000 | ---D | C] -- C:\Users\Krzyś\AppData\Local\{D93C2C80-3409-4DF2-A5A6-B684C5C3D5C4}
[2013-02-18 15:05:31 | 000,000,000 | ---D | C] -- C:\Users\Krzyś\Documents\Warlords Battlecry III
[2013-02-18 14:05:08 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PLAY
[2013-02-17 19:43:38 | 000,000,000 | ---D | C] -- C:\Users\Krzyś\Documents\Moje dzieła SPORE
[2013-02-17 15:07:27 | 000,000,000 | ---D | C] -- C:\Users\Krzyś\AppData\Local\Skyrim
[2013-02-16 16:55:28 | 000,000,000 | ---D | C] -- C:\Users\Krzyś\AppData\Local\{CA6A4095-19DA-466F-A37A-62ED151AF133}
[2013-02-13 13:29:22 | 000,096,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mshtmled.dll
[2013-02-13 13:29:22 | 000,073,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmled.dll
[2013-02-13 13:29:21 | 000,248,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieui.dll
[2013-02-13 13:29:21 | 000,176,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieui.dll
[2013-02-13 13:29:21 | 000,173,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieUnatt.exe
[2013-02-13 13:29:20 | 002,312,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript9.dll
[2013-02-13 13:29:20 | 001,494,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\inetcpl.cpl
[2013-02-13 13:29:20 | 001,427,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\inetcpl.cpl
[2013-02-13 13:29:20 | 000,237,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\url.dll
[2013-02-13 13:29:20 | 000,231,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\url.dll
[2013-02-13 13:29:20 | 000,142,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieUnatt.exe
[2013-02-13 13:29:19 | 000,729,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msfeeds.dll
[2013-02-13 13:29:18 | 000,816,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript.dll
[2013-02-13 13:29:18 | 000,717,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\jscript.dll
[2013-02-13 13:29:18 | 000,599,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\vbscript.dll
[2013-02-13 12:00:27 | 005,553,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntoskrnl.exe
[2013-02-13 12:00:25 | 003,967,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ntkrnlpa.exe
[2013-02-13 12:00:25 | 003,913,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ntoskrnl.exe
[2013-02-13 12:00:16 | 000,215,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winsrv.dll
[2013-02-13 12:00:16 | 000,025,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\setup16.exe
[2013-02-13 12:00:16 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ntvdm64.dll
[2013-02-13 12:00:16 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\instnm.exe
[2013-02-13 12:00:16 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wow32.dll
[2013-02-13 12:00:15 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\user.exe
[2013-02-13 12:00:13 | 000,288,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\FWPKCLNT.SYS
[2013-02-12 16:55:04 | 000,310,688 | ---- | C] (Oracle Corporation) -- C:\Windows\SysNative\javaws.exe
[2013-02-12 16:54:54 | 000,188,832 | ---- | C] (Oracle Corporation) -- C:\Windows\SysNative\javaw.exe
[2013-02-12 16:54:54 | 000,188,320 | ---- | C] (Oracle Corporation) -- C:\Windows\SysNative\java.exe
[2013-02-12 16:54:54 | 000,108,448 | ---- | C] (Oracle Corporation) -- C:\Windows\SysNative\WindowsAccessBridge-64.dll
[2013-02-12 16:54:47 | 000,000,000 | ---D | C] -- C:\Program Files\Java
[2013-02-12 16:53:20 | 000,262,560 | ---- | C] (Oracle Corporation) -- C:\Windows\SysWow64\javaws.exe
[2013-02-12 16:53:08 | 000,095,648 | ---- | C] (Oracle Corporation) -- C:\Windows\SysWow64\WindowsAccessBridge-32.dll
[2013-02-12 16:33:17 | 000,000,000 | ---D | C] -- C:\Users\Krzyś\AppData\Roaming\.minecraft
[2013-02-08 11:31:06 | 000,000,000 | ---D | C] -- C:\Users\Krzyś\AppData\Roaming\op
[2013-02-07 23:49:18 | 000,000,000 | ---D | C] -- C:\Users\Krzyś\.thumbnails
[2013-02-06 15:28:01 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
[2013-02-06 15:28:01 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Skype
[2013-02-06 15:28:00 | 000,000,000 | R--D | C] -- C:\Program Files (x86)\Skype
[2013-02-06 15:07:38 | 000,000,000 | ---D | C] -- C:\Users\Krzyś\AppData\Local\{7AA77393-FAC6-4A2D-99E5-E8F96990D3EB}
[2013-02-03 19:11:48 | 000,000,000 | ---D | C] -- C:\Users\Krzyś\Documents\My Games
[2013-02-03 18:50:54 | 000,000,000 | ---D | C] -- C:\ProgramData\Solidshield
[2013-02-03 18:22:22 | 002,605,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_40.dll
[2013-02-03 18:22:22 | 002,036,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_40.dll
[2013-02-03 18:22:22 | 000,519,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_40.dll
[2013-02-03 18:22:22 | 000,452,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_40.dll
[2013-02-03 18:22:19 | 005,631,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DX9_40.dll
[2013-02-03 18:22:19 | 004,379,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_40.dll
[2013-02-02 21:46:22 | 000,000,000 | ---D | C] -- C:\Users\Krzyś\AppData\Local\{39306E89-5E68-4243-A974-7FBC763D15EF}
[2013-02-02 21:01:10 | 000,000,000 | ---D | C] -- C:\Users\Krzyś\AppData\Roaming\TuneUp Software
[2013-02-02 21:00:47 | 000,000,000 | ---D | C] -- C:\ProgramData\TuneUp Software
[2013-02-02 21:00:40 | 000,000,000 | -HSD | C] -- C:\ProgramData\{C4ABDBC8-1C81-42C9-BFFC-4A68511E9E4F}
[2013-02-02 20:56:45 | 000,000,000 | ---D | C] -- C:\Users\Krzyś\Documents\Freemake
[2013-02-02 20:56:40 | 000,000,000 | ---D | C] -- C:\Users\Krzyś\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Freemake
[2013-02-02 20:56:40 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Freemake
[2013-02-02 20:56:38 | 000,000,000 | ---D | C] -- C:\ProgramData\Freemake
[2013-02-02 20:56:06 | 000,000,000 | ---D | C] -- C:\Users\Krzyś\AppData\Roaming\OpenCandy
[2013-02-02 20:56:05 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Freemake
[2013-02-02 20:39:30 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\ConvertHelper
[2013-01-27 17:43:10 | 000,000,000 | ---D | C] -- C:\Users\Krzyś\Desktop\spr
[2013-01-26 15:03:33 | 000,000,000 | ---D | C] -- C:\Users\Krzyś\AppData\Local\{867B16A9-35F6-4FCB-9467-2561A9D912C3}
[2013-01-26 13:52:24 | 000,000,000 | R--D | C] -- C:\Sandbox
[2 C:\Windows\SysWow64\*.tmp files -> C:\Windows\SysWow64\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2013-02-23 11:42:01 | 000,001,058 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-3740202298-632069091-2289758739-1001UA.job
[2013-02-23 11:38:59 | 000,009,920 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2013-02-23 11:38:59 | 000,009,920 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2013-02-23 11:30:57 | 000,045,056 | ---- | M] () -- C:\Windows\SysWow64\acovcnt.exe
[2013-02-23 11:30:56 | 000,001,042 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2013-02-23 11:30:38 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2013-02-23 11:30:34 | 2800,361,472 | -HS- | M] () -- C:\hiberfil.sys
[2013-02-23 02:15:09 | 000,000,930 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2013-02-23 02:14:51 | 000,000,811 | ---- | M] () -- C:\Users\Krzyś\Desktop\Pokemon4Fun v1.2.lnk
[2013-02-23 02:05:03 | 000,001,046 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2013-02-20 21:44:12 | 000,000,702 | ---- | M] () -- C:\Users\Krzyś\Desktop\Minecraft.lnk
[2013-02-20 20:33:28 | 005,005,735 | ---- | M] () -- C:\Users\Krzyś\Desktop\minecraft.jar
[2013-02-20 15:27:07 | 000,002,190 | ---- | M] () -- C:\Windows\SysNative\AutoRunFilter.ini
[2013-02-20 14:42:00 | 000,001,006 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-3740202298-632069091-2289758739-1001Core.job
[2013-02-19 16:42:31 | 000,001,371 | ---- | M] () -- C:\Windows\SysNative\ServiceFilter.ini
[2013-02-19 12:43:47 | 000,039,768 | ---- | M] (AVG Technologies) -- C:\Windows\SysNative\drivers\avgtpx64.sys
[2013-02-18 20:45:55 | 000,990,368 | ---- | M] () -- C:\Windows\SysNative\perfh015.dat
[2013-02-18 20:45:55 | 000,749,002 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2013-02-18 20:45:55 | 000,242,774 | ---- | M] () -- C:\Windows\SysNative\perfc015.dat
[2013-02-18 20:45:55 | 000,206,368 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2013-02-18 20:45:55 | 000,006,752 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2013-02-17 19:25:41 | 000,000,774 | ---- | M] () -- C:\Users\Krzyś\Desktop\Obraz Płyty.lnk
[2013-02-14 16:38:50 | 000,027,675 | ---- | M] () -- C:\Users\Krzyś\AppData\Local\recently-used.xbel
[2013-02-13 16:15:13 | 000,362,232 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
[2013-02-12 16:54:49 | 000,108,448 | ---- | M] (Oracle Corporation) -- C:\Windows\SysNative\WindowsAccessBridge-64.dll
[2013-02-12 16:54:48 | 001,085,344 | ---- | M] (Oracle Corporation) -- C:\Windows\SysNative\npDeployJava1.dll
[2013-02-12 16:54:48 | 000,963,488 | ---- | M] (Oracle Corporation) -- C:\Windows\SysNative\deployJava1.dll
[2013-02-12 16:54:48 | 000,310,688 | ---- | M] (Oracle Corporation) -- C:\Windows\SysNative\javaws.exe
[2013-02-12 16:54:48 | 000,188,832 | ---- | M] (Oracle Corporation) -- C:\Windows\SysNative\javaw.exe
[2013-02-12 16:54:48 | 000,188,320 | ---- | M] (Oracle Corporation) -- C:\Windows\SysNative\java.exe
[2013-02-12 16:53:02 | 000,095,648 | ---- | M] (Oracle Corporation) -- C:\Windows\SysWow64\WindowsAccessBridge-32.dll
[2013-02-12 16:53:01 | 000,861,088 | ---- | M] (Oracle Corporation) -- C:\Windows\SysWow64\npdeployJava1.dll
[2013-02-12 16:53:01 | 000,782,240 | ---- | M] (Oracle Corporation) -- C:\Windows\SysWow64\deployJava1.dll
[2013-02-12 16:53:01 | 000,262,560 | ---- | M] (Oracle Corporation) -- C:\Windows\SysWow64\javaws.exe
[2013-02-12 16:53:01 | 000,174,496 | ---- | M] (Oracle Corporation) -- C:\Windows\SysWow64\javaw.exe
[2013-02-12 16:53:01 | 000,174,496 | ---- | M] (Oracle Corporation) -- C:\Windows\SysWow64\java.exe
[2013-02-08 16:13:34 | 000,001,070 | ---- | M] () -- C:\Windows\DCEBOOT.RST
[2013-02-08 12:12:13 | 000,234,544 | ---- | M] () -- C:\Windows\RegBootClean64.exe
[2013-02-08 11:00:48 | 000,022,064 | ---- | M] () -- C:\Windows\DCEBoot64.exe
[2013-02-08 00:15:43 | 000,697,712 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerApp.exe
[2013-02-08 00:15:43 | 000,074,096 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
[2013-01-27 16:02:05 | 000,001,528 | ---- | M] () -- C:\Windows\Sandboxie.ini
[2 C:\Windows\SysWow64\*.tmp files -> C:\Windows\SysWow64\*.tmp -> ]

========== Files Created - No Company Name ==========

[2013-02-23 02:14:51 | 000,000,811 | ---- | C] () -- C:\Users\Krzyś\Desktop\Pokemon4Fun v1.2.lnk
[2013-02-20 21:43:45 | 000,000,702 | ---- | C] () -- C:\Users\Krzyś\Desktop\Minecraft.lnk
[2013-02-20 20:35:15 | 005,005,735 | ---- | C] () -- C:\Users\Krzyś\Desktop\minecraft.jar
[2013-02-20 14:37:26 | 000,001,058 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-3740202298-632069091-2289758739-1001UA.job
[2013-02-20 14:37:25 | 000,001,006 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-3740202298-632069091-2289758739-1001Core.job
[2013-02-17 19:25:41 | 000,000,774 | ---- | C] () -- C:\Users\Krzyś\Desktop\Obraz Płyty.lnk
[2013-02-14 16:38:50 | 000,027,675 | ---- | C] () -- C:\Users\Krzyś\AppData\Local\recently-used.xbel
[2013-02-02 22:44:37 | 000,001,070 | ---- | C] () -- C:\Windows\DCEBOOT.RST
[2013-02-02 22:40:01 | 000,022,064 | ---- | C] () -- C:\Windows\DCEBoot64.exe
[2012-12-07 19:51:09 | 000,000,025 | ---- | C] () -- C:\Windows\emcore.INI
[2012-10-17 18:51:13 | 000,004,608 | ---- | C] () -- C:\Users\Krzyś\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2012-08-15 00:51:37 | 000,000,017 | ---- | C] () -- C:\Windows\SysWow64\shortcut_ex.dat
[2012-07-26 13:41:41 | 000,234,544 | ---- | C] () -- C:\Windows\RegBootClean64.exe
[2012-06-20 14:51:15 | 000,001,528 | ---- | C] () -- C:\Windows\Sandboxie.ini
[2012-05-25 22:26:51 | 000,089,407 | ---- | C] () -- C:\Windows\DIIUnin.dat
[2012-05-18 10:01:58 | 000,007,605 | ---- | C] () -- C:\Users\Krzyś\AppData\Local\Resmon.ResmonCfg
[2012-04-09 12:24:38 | 000,021,840 | ---- | C] () -- C:\Windows\SysWow64\SIntfNT.dll
[2012-04-09 12:24:38 | 000,017,212 | ---- | C] () -- C:\Windows\SysWow64\SIntf32.dll
[2012-04-09 12:24:38 | 000,012,067 | ---- | C] () -- C:\Windows\SysWow64\SIntf16.dll
[2012-03-25 16:48:22 | 000,000,404 | ---- | C] () -- C:\Windows\BRWMARK.INI
[2012-03-18 15:42:39 | 000,000,248 | ---- | C] () -- C:\Windows\SysWow64\secustat.dat
[2012-03-18 15:31:02 | 000,000,598 | ---- | C] () -- C:\Windows\SysWow64\secushr.dat
[2012-03-18 10:40:33 | 000,000,025 | ---- | C] () -- C:\Windows\libem.INI
[2012-01-26 15:18:28 | 000,204,960 | ---- | C] () -- C:\Windows\SysWow64\ativvsvl.dat
[2012-01-26 15:18:28 | 000,157,152 | ---- | C] () -- C:\Windows\SysWow64\ativvsva.dat
[2011-12-22 08:39:40 | 000,045,056 | ---- | C] () -- C:\Windows\SysWow64\acovcnt.exe
[2011-12-22 08:31:56 | 000,000,000 | ---- | C] () -- C:\Windows\ativpsrm.bin
[2011-11-02 07:59:32 | 000,056,832 | ---- | C] () -- C:\Windows\SysWow64\OpenVideo.dll
[2011-10-20 00:00:15 | 000,131,984 | ---- | C] () -- C:\ProgramData\FullRemove.exe
[2011-10-19 23:42:45 | 001,672,130 | ---- | C] () -- C:\Windows\SysWow64\PerfStringBackup.INI
[2011-09-12 14:06:18 | 000,003,917 | ---- | C] () -- C:\Windows\SysWow64\atipblag.dat

========== ZeroAccess Check ==========

[2009-07-14 05:55:00 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
"" = C:\Windows\SysNative\shell32.dll -- [2012-06-09 06:43:10 | 014,172,672 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2012-06-09 05:41:00 | 012,873,728 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\fastprox.dll -- [2009-07-14 02:40:51 | 000,909,312 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2010-11-20 13:19:04 | 000,606,208 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\wbemess.dll -- [2009-07-14 02:41:56 | 000,505,856 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]

========== Alternate Data Streams ==========

@Alternate Data Stream - 136 bytes -> C:\ProgramData\Temp:FEF919E6
@Alternate Data Stream - 132 bytes -> C:\ProgramData\Temp:AC57032B
@Alternate Data Stream - 119 bytes -> C:\ProgramData\Temp:D20FFA63
@Alternate Data Stream - 119 bytes -> C:\ProgramData\Temp:798A3728

< End of report >

 

EXtras

 

OTL Extras logfile created on: 2013-02-23 11:43:38 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Krzyś\Pobrane
64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd

3,48 Gb Total Physical Memory | 1,82 Gb Available Physical Memory | 52,44% Memory free
6,95 Gb Paging File | 4,90 Gb Available in Paging File | 70,46% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 128,18 Gb Total Space | 71,63 Gb Free Space | 55,88% Space Free | Partition Type: NTFS
Drive D: | 144,91 Gb Total Space | 107,86 Gb Free Space | 74,43% Space Free | Partition Type: NTFS

Computer Name: ASUS | User Name: Krzyś | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Extra Registry (SafeList) ==========


========== File Associations ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.html[@ = FirefoxHTML] -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation)
.url[@ = InternetShortcut] -- C:\Windows\SysNative\rundll32.exe (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation)
.html [@ = FirefoxHTML] -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation)

[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation)

========== Shell Spawning ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- Reg Error: Key error.
htmlfile [print] -- rundll32.exe %windir%\system32\mshtml.dll,PrintHTML "%1"
http [open] -- Reg Error: Key error.
https [open] -- "C:\Program Files (x86)\Mozilla Firefox\firefox.exe" -osint -url "%1" (Mozilla Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- Reg Error: Key error.
htmlfile [print] -- rundll32.exe %windir%\system32\mshtml.dll,PrintHTML "%1"
http [open] -- Reg Error: Key error.
https [open] -- "C:\Program Files (x86)\Mozilla Firefox\firefox.exe" -osint -url "%1" (Mozilla Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = 28 4D B2 76 41 04 CA 01 [binary data]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"C:\Program Files (x86)\FlashGet Network\FlashGet 3\FlashGet3.exe" = C:\Program Files (x86)\FlashGet Network\FlashGet 3\FlashGet3.exe:*:Enabled:Flashget3
"D:\FlashGet 3\FlashGet3.exe" = D:\FlashGet 3\FlashGet3.exe:*:Enabled:Flashget3
"C:\Program Files (x86)\FlashGet Network\FlashGet 3\FlashGet3.exe" = C:\Program Files (x86)\FlashGet Network\FlashGet 3\FlashGet3.exe:*:Enabled:Flashget3
"D:\FlashGet 3\FlashGet3.exe" = D:\FlashGet 3\FlashGet3.exe:*:Enabled:Flashget3


========== Vista Active Open Ports Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{05BA4E33-1F73-4180-97DB-0267D6E13ED0}" = lport=445 | protocol=6 | dir=in | app=system |
"{0B725EDF-99BF-4D19-9BC9-6BC375FF5E70}" = lport=6004 | protocol=17 | dir=in | app=c:\program files (x86)\microsoft office\office14\outlook.exe |
"{1DAAB11D-927F-42AC-96A9-2FD0BA8E7283}" = rport=137 | protocol=17 | dir=out | app=system |
"{213ACE83-E898-420B-89B4-659B39A76799}" = lport=137 | protocol=17 | dir=in | app=system |
"{23238A51-6A7B-42A6-AB42-FD9E82234E61}" = lport=808 | protocol=6 | dir=in | svc=nettcpactivator | app=c:\windows\microsoft.net\framework64\v4.0.30319\smsvchost.exe |
"{24A333BF-AE10-4E77-A0C4-C4AA2FC56E4E}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{28139490-8BF6-457D-A756-756B55787739}" = rport=445 | protocol=6 | dir=out | app=system |
"{30EAF665-F91C-4772-BF57-8941258C8DA5}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{33932EF9-18F2-48E6-922B-FE092E813730}" = lport=3702 | protocol=17 | dir=in | svc=fdrespub | app=%systemroot%\system32\svchost.exe |
"{356905D1-FF60-48FE-AC27-AEA441173B67}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{35D1B747-10A2-4917-A629-D70A26F57A0A}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{3D7F3D4E-8C23-436F-8F26-CBDE068051A2}" = rport=139 | protocol=6 | dir=out | app=system |
"{4574A171-7F5A-49E6-B18F-3FBCCA012050}" = lport=3702 | protocol=17 | dir=in | svc=fdphost | app=%systemroot%\system32\svchost.exe |
"{5FA6CD2B-E5B3-40B9-904B-498FDFB5B0DD}" = lport=2869 | protocol=6 | dir=in | name=windows live communications platform (upnp) |
"{6A0E2556-8E18-47EE-91AB-2456D2E3F7A5}" = lport=2177 | protocol=6 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{6E28DF3D-832D-41BC-B41E-BC31557B297F}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
"{7DB206E0-F21D-4405-831C-0F01E7D92DF2}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{91C4EEB9-C2A2-4E7E-B82E-2C1755ED33DF}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{957D59C5-FDE9-461A-BB7A-5B3CC48F99E1}" = rport=3702 | protocol=17 | dir=out | svc=fdrespub | app=%systemroot%\system32\svchost.exe |
"{9629C7B8-434B-4F05-8171-C61C5094A2DF}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{9BA034E2-6129-4308-85BE-110494A9B80C}" = lport=2869 | protocol=6 | dir=in | app=system |
"{9F84987E-28C0-4D8A-A206-CA72EA87871A}" = rport=138 | protocol=17 | dir=out | app=system |
"{A6AF41A0-FEA4-4026-A2FC-1BF85563D5C5}" = lport=10243 | protocol=6 | dir=in | app=system |
"{B766B14E-3E6A-4536-B707-C0A668FEDF7F}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | [email protected],-28539 |
"{B9602090-6131-4823-B8E5-4D6A70A023A3}" = rport=3702 | protocol=17 | dir=out | svc=fdphost | app=%systemroot%\system32\svchost.exe |
"{B990A26B-8A34-42A2-BC57-FECAB56B0A34}" = lport=2177 | protocol=17 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{BE157461-DE3E-4E5D-BF9E-601C69B8EE4E}" = rport=2177 | protocol=17 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{BE4F4636-8314-4F0B-8748-702AF44E6B57}" = lport=1900 | protocol=17 | dir=in | name=windows live communications platform (ssdp) |
"{C692EAF3-FE05-4FF8-877E-E7E3DDDBFD42}" = lport=138 | protocol=17 | dir=in | app=system |
"{D59FDE82-7CE9-4772-A4D8-43CA55F93C65}" = rport=2177 | protocol=6 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{D950FA02-1E8C-485D-A3C9-22185256C010}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{D98F11D6-1266-4ABB-8E7F-8B516349B7FC}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{DDA75853-60C4-49C3-AD68-1056D353093C}" = rport=25565 | protocol=17 | dir=out | name=minecraft |
"{DF640FCB-3C02-40F8-B73A-0AAE1E13ECA6}" = lport=139 | protocol=6 | dir=in | app=system |
"{F650A737-1324-46A7-BB70-CEBF0866B07C}" = rport=10243 | protocol=6 | dir=out | app=system |
"{FA259B6D-38AE-4801-B8C8-D25F8B57115D}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |

========== Vista Active Application Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{02687D8B-B475-457B-B95A-9F1A3091FB49}" = protocol=6 | dir=in | app=c:\program files (x86)\java\jre7\bin\javaw.exe |
"{03CB6D57-DC36-4524-B0D7-9845A8450E68}" = protocol=6 | dir=in | app=c:\program files (x86)\microsoft office\office14\onenote.exe |
"{05A360C4-3BD0-4763-97B3-7D52BD39FB44}" = protocol=58 | dir=in | app=system |
"{0D05729D-6285-4FE1-A493-AE43FB29C1E2}" = protocol=6 | dir=in | app=c:\users\krzyś\desktop\(tnpl) pokemon\pokemon serwer.exe |
"{0EFE5025-98FA-4625-B4A6-B7D9BD230271}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{11E84020-A1B6-4ADD-A48E-1A688C4A2B49}" = protocol=6 | dir=in | app=d:\gry\avatar\bin\avatarlauncher.exe |
"{13D109FD-9785-4CDB-9999-C718FD0C6128}" = dir=in | app=c:\program files (x86)\windows live\contacts\wlcomm.exe |
"{148D7720-FC1C-422B-B9D6-6542F52BF03B}" = protocol=58 | dir=in | [email protected],-28545 |
"{152FCC12-8770-4EFA-9B60-5988C45490A5}" = protocol=6 | dir=in | app=c:\program files\java\jre7\bin\javaw.exe |
"{1FA02DE2-0703-4375-9A0D-DBEB8913C390}" = protocol=6 | dir=in | app=c:\program files (x86)\java\jre7\bin\java.exe |
"{287E437D-3660-4E5D-9417-FFC5DC06896E}" = protocol=17 | dir=in | app=d:\gry\dow\dawn of war - dark crusade\darkcrusade.exe |
"{2BF86BB3-A44A-415D-88C0-2717B96C34E0}" = protocol=17 | dir=in | app=d:\gry\over2\overlord2.exe |
"{36ECEAC3-0806-4DFE-91E1-97B386210B6F}" = protocol=58 | dir=out | [email protected],-503 |
"{37435A12-8C8A-4A5B-BA44-CD6DAE9846BF}" = protocol=6 | dir=in | app=c:\program files (x86)\microsoft office\office14\onenote.exe |
"{38281759-B7BA-4364-B2B0-0AB7D2EECEA2}" = protocol=6 | dir=in | app=c:\users\krzyś\appdata\local\temp\winpvyv.exe |
"{3A141D19-827E-4107-866A-E2AC1C08EE22}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{3B763DBA-C17D-47F9-ADC7-715E080417AC}" = protocol=6 | dir=in | app=d:\gry\avatar\bin\avatar.exe |
"{3C7FF087-07AD-4A0F-8A55-813D22F771C5}" = protocol=6 | dir=in | app=c:\program files (x86)\mozilla firefox\firefox.exe |
"{3D84AF8B-5FAC-471A-9BFC-A38F4A3C9559}" = protocol=6 | dir=in | app=c:\program files (x86)\mozilla firefox\plugin-container.exe |
"{458FB3B5-4506-4275-9425-744946EAF042}" = protocol=17 | dir=in | app=c:\program files (x86)\microsoft office\office14\onenote.exe |
"{489ECF89-1367-4391-937E-ABC668D03C20}" = protocol=17 | dir=in | app=c:\users\krzyś\desktop\(tnpl) pokemon\pokemon serwer.exe |
"{4C7FA811-772B-4247-A6E9-A367FAE66536}" = protocol=17 | dir=in | app=c:\users\krzyś\appdata\local\temp\winplep.exe |
"{52FD210B-AA91-4961-99FB-76545190D160}" = protocol=1 | dir=out | [email protected],-28544 |
"{55A90296-D690-46AF-9E66-1C2971C93581}" = dir=in | app=c:\program files (x86)\windows live\mesh\moe.exe |
"{55F6BCBC-1A2A-4312-8904-D2C6678CE2D4}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{5957ECE0-3FE2-4F81-8B62-D7945676335D}" = protocol=6 | dir=in | app=c:\program files\java\jre7\bin\java.exe |
"{5A3ECBC0-76F0-4497-8807-B31C904C53AC}" = protocol=6 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{5BA34D4C-8F15-4681-991C-5392DA8DE1AD}" = protocol=17 | dir=in | app=c:\program files\java\jre7\bin\java.exe |
"{61231C26-67C1-421A-BB9D-9D9FBFCB46C8}" = protocol=17 | dir=in | app=c:\program files (x86)\microsoft office\office14\onenote.exe |
"{6124279A-17D1-4737-B119-B5B95E4152E0}" = protocol=6 | dir=in | app=d:\ut\utorrent.exe |
"{61B3FF2B-43E4-4258-BA90-E06CACE8B285}" = protocol=1 | dir=in | [email protected],-28543 |
"{6333793C-E24B-4740-91B7-D6E79DB76FA3}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.1267\agent.exe |
"{67D10934-0B00-41F7-AAC0-308DD2F2FBDA}" = protocol=6 | dir=in | app=c:\program files (x86)\avg\avg2013\avgmfapx.exe |
"{6956A9F3-C617-461F-A884-8D6889679C47}" = protocol=17 | dir=in | app=c:\program files (x86)\electronic arts\bioware\star wars - the old republic\launcher.exe |
"{6A29FCEB-4A60-4EBC-AF0D-8CC3DD7A2575}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.1040\agent.exe |
"{6D8FC564-313F-4D68-848D-0F09E677701E}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.1040\agent.exe |
"{6E2972DE-CACC-430B-8586-E4E05F888BB5}" = protocol=17 | dir=in | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{7C87A60A-2242-492F-A609-1D02EAB598DB}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{84C9C487-E396-45F3-BF0B-9C2E88831867}" = protocol=6 | dir=in | app=d:\gry\over2\overlord2.exe |
"{85FE50CC-3F86-4736-9D03-AE14ACFE1FF1}" = protocol=6 | dir=in | app=c:\program files (x86)\electronic arts\bioware\star wars - the old republic\launcher.exe |
"{86A79CFB-8D7E-4BCB-8A3C-5677B174620F}" = protocol=17 | dir=in | app=d:\gry\sw\gamedata\jamp.exe |
"{8ABD4A88-5AEB-468C-BDEA-F46A259FBE81}" = protocol=6 | dir=out | app=system |
"{8E7AF3B2-D19E-4840-BB77-7BBD25CEE4F7}" = protocol=17 | dir=in | app=c:\program files (x86)\avg\avg2013\avgmfapx.exe |
"{959CC9DB-34E9-4992-AD1A-8F64CB856505}" = protocol=17 | dir=in | app=d:\gry\avatar\bin\avatarlauncher.exe |
"{971BA560-1A8E-4672-8D11-6B6F9E611FB1}" = protocol=17 | dir=in | app=d:\nagrywanie\sony\vegsrv90.exe |
"{9A8B3535-6DC5-4692-887C-38CE466EFC79}" = protocol=17 | dir=in | app=c:\program files (x86)\electronic arts\bioware\star wars - the old republic\launcher.exe |
"{9FFF6432-85C2-47ED-9AAC-3A16726061FA}" = protocol=17 | dir=in | app=d:\ut\utorrent.exe |
"{A1C44E8B-9855-4307-A605-BE7EC6EA0086}" = protocol=17 | dir=in | app=c:\program files (x86)\java\jre7\bin\java.exe |
"{A2F39E3F-58DE-4C84-9CD3-DB60BDAB0B2A}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{A3A91EE0-25C7-4C0A-947A-F1953026C1F0}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{A59483F2-6D71-49F7-BD15-361078F4F9F4}" = protocol=17 | dir=in | app=c:\users\krzyś\appdata\local\temp\winpvyv.exe |
"{A619CE73-EDC8-4BE9-96CB-38AA4840DE01}" = protocol=6 | dir=in | app=d:\gry\starwars\gamedata\jamp.exe |
"{AA9FCEED-0A16-4DD3-8958-96146A7A29FF}" = protocol=6 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{AAA3A2F8-584C-4E3A-816B-D50815FCB191}" = protocol=17 | dir=in | app=c:\program files (x86)\java\jre7\bin\javaw.exe |
"{B2C25652-3AFC-460A-81B3-0D4ED2BA4C7C}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{B3CA773B-D2BE-4DC8-BA3F-CC56F0F35AD8}" = protocol=17 | dir=in | app=c:\program files\java\jre7\bin\javaw.exe |
"{B4F670F1-C0CB-4980-AD5A-DB057531D5AF}" = protocol=6 | dir=in | app=d:\gry\client enigma pokemon\enigma.exe |
"{B5623C93-8D71-481B-8B1A-11D8F791917F}" = protocol=6 | dir=in | app=d:\gry\dow\dawn of war - dark crusade\darkcrusade.exe |
"{BA728B4A-BE4B-4C89-9928-6E17DAE5D7CA}" = dir=in | app=c:\program files (x86)\windows live\messenger\msnmsgr.exe |
"{BE1CC2EF-EBE2-4B8F-ACD8-0543A665C2C1}" = protocol=17 | dir=in | app=d:\gry\avatar\bin\avatar.exe |
"{CBE698FD-9092-4021-AE03-DEF8B3F2856D}" = protocol=17 | dir=in | app=c:\program files (x86)\mozilla firefox\firefox.exe |
"{CDD6EAA8-4189-499B-B6C8-40327FF6E7E8}" = protocol=17 | dir=in | app=d:\gry\client enigma pokemon\enigma.exe |
"{D33F7BE5-FF56-41F7-8712-B3EB7D7F562C}" = protocol=6 | dir=in | app=c:\users\krzyś\appdata\local\temp\winplep.exe |
"{D684A86A-3BE3-4F82-91AA-559B85C2478A}" = protocol=17 | dir=in | app=d:\gry\starwars\gamedata\jamp.exe |
"{DA520CBE-B2A9-49D6-9243-2312F3ADA6CB}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{DB1E0FFA-32FE-4BAF-985A-E9818307E684}" = protocol=6 | dir=in | app=d:\nagrywanie\sony\vegsrv90.exe |
"{DB758436-B46C-4CDC-B499-A8923B9E355C}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{DD30EB6A-6266-4253-A7ED-18CB2DCE1A00}" = protocol=6 | dir=in | app=c:\program files (x86)\electronic arts\bioware\star wars - the old republic\launcher.exe |
"{DEB8A1BA-3DA0-422C-BD20-2BD531B72C3E}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{E0C703E9-84BF-48F9-A968-A473493192BD}" = protocol=17 | dir=in | app=c:\program files (x86)\mozilla firefox\plugin-container.exe |
"{E8B49A73-13B7-468A-A8CC-CAE86BB575D7}" = protocol=58 | dir=out | [email protected],-28546 |
"{EC66F58D-8502-48FF-AEA4-B0D5F18A8522}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{F053C84D-5B04-49A1-977B-88C9613C4211}" = protocol=6 | dir=in | app=d:\gry\sw\gamedata\jamp.exe |
"{F66679A4-7145-4DE9-991C-240057E624CC}" = protocol=17 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{F6DCCC51-AD26-49D4-B419-14A7B221BA8A}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.1267\agent.exe |
"{F769251A-857D-4312-A5C1-446E0EEDCA8C}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"TCP Query User{01F09973-6DE9-4DE1-9A06-C05AEF896893}C:\program files (x86)\java\jre6\bin\javaw.exe" = protocol=6 | dir=in | app=c:\program files (x86)\java\jre6\bin\javaw.exe |
"TCP Query User{024789D0-168C-4426-A8E9-97C62A2A0CC9}C:\users\krzyś\appdata\local\temp\winplep.exe" = protocol=6 | dir=in | app=c:\users\krzyś\appdata\local\temp\winplep.exe |
"TCP Query User{0502984C-A260-4618-AE9F-B76C48115447}C:\users\krzyś\appdata\local\temp\winqctjin.exe" = protocol=6 | dir=in | app=c:\users\krzyś\appdata\local\temp\winqctjin.exe |
"TCP Query User{15995BF9-2D69-4F6C-84EF-944D63297356}D:\gry\counter-strike\hlds.exe" = protocol=6 | dir=in | app=d:\gry\counter-strike\hlds.exe |
"TCP Query User{1B0064A1-C403-4C70-B6F6-CB6E2608187B}D:\gry\client enigma pokemon\enigma.exe" = protocol=6 | dir=in | app=d:\gry\client enigma pokemon\enigma.exe |
"TCP Query User{1EEEF33B-0ED8-49EE-A54B-311048AC0311}D:\totalcmd\totalcmd64.exe" = protocol=6 | dir=in | app=d:\totalcmd\totalcmd64.exe |
"TCP Query User{219F9D24-5E49-4899-BBF8-1242A81C268B}C:\users\krzyś\appdata\local\temp\qhvx.exe" = protocol=6 | dir=in | app=c:\users\krzyś\appdata\local\temp\qhvx.exe |
"TCP Query User{23445880-C78C-4BBC-9E14-98D10862ABE0}C:\program files\java\jre7\bin\java.exe" = protocol=6 | dir=in | app=c:\program files\java\jre7\bin\java.exe |
"TCP Query User{25E0E9B8-A934-4A44-A4C4-D730C2C9A6C0}C:\windows\syswow64\javaw.exe" = protocol=6 | dir=in | app=c:\windows\syswow64\javaw.exe |
"TCP Query User{2967A8DB-FCE7-4658-9F21-0870399EB654}D:\flashget 3\flashget3.exe" = protocol=6 | dir=in | app=d:\flashget 3\flashget3.exe |
"TCP Query User{2988E77F-2114-41BB-866C-14016522BCD7}C:\users\krzyś\appdata\local\temp\winpvyv.exe" = protocol=6 | dir=in | app=c:\users\krzyś\appdata\local\temp\winpvyv.exe |
"TCP Query User{38621E04-1DF8-4AA8-BE44-330246E666D8}C:\program files (x86)\flashget network\flashget 3\flashget3.exe" = protocol=6 | dir=in | app=c:\program files (x86)\flashget network\flashget 3\flashget3.exe |
"TCP Query User{3F1135C7-30D5-414C-80CD-541EC7A1EB31}C:\users\krzyś\desktop\xenoxmt2client_11.02.2012r_by_pawemol\xenoxmt2 launcher.exe" = protocol=6 | dir=in | app=c:\users\krzyś\desktop\xenoxmt2client_11.02.2012r_by_pawemol\xenoxmt2 launcher.exe |
"TCP Query User{4E339A49-3EC2-46A2-A159-4884A11D85B7}C:\users\krzyś\appdata\local\temp\winlypqs.exe" = protocol=6 | dir=in | app=c:\users\krzyś\appdata\local\temp\winlypqs.exe |
"TCP Query User{4E5F146C-9332-4284-90C6-38C51D8F63F7}D:\gry\over\overlord.exe" = protocol=6 | dir=in | app=d:\gry\over\overlord.exe |
"TCP Query User{4EA8DF98-9887-4ABF-80CD-FEAFDBE692D8}C:\program files (x86)\electronic arts\eadm\core.exe" = protocol=6 | dir=in | app=c:\program files (x86)\electronic arts\eadm\core.exe |
"TCP Query User{525F9BE9-AEA9-49FB-82D7-53E740BACEE9}D:\gry\mexiliamt2\mexiliamt2.exe" = protocol=6 | dir=in | app=d:\gry\mexiliamt2\mexiliamt2.exe |
"TCP Query User{52A1B474-BEE8-4C4F-8444-B746245E2848}D:\gry\diablo ii\game.exe" = protocol=6 | dir=in | app=d:\gry\diablo ii\game.exe |
"TCP Query User{53CBBB5C-D5B1-48BA-A23C-E4BC4B29716A}D:\gry\diablo ii\d2multiresgame.exe" = protocol=6 | dir=in | app=d:\gry\diablo ii\d2multiresgame.exe |
"TCP Query User{64F1A267-FB09-420F-BC00-00EAC04A19D5}G:\xenoxmt2client_11.02.2012r_by_pawemol\xenoxmt2 launcher.exe" = protocol=6 | dir=in | app=g:\xenoxmt2client_11.02.2012r_by_pawemol\xenoxmt2 launcher.exe |
"TCP Query User{7AF7C1B5-8CAF-4FE0-BBF2-720BF7541BE5}C:\programdata\datacardservice\dcshelper.exe" = protocol=6 | dir=in | app=c:\programdata\datacardservice\dcshelper.exe |
"TCP Query User{7E845CDD-434B-4982-A663-C97CD3604DB4}C:\users\krzyś\appdata\local\temp\jvrq.exe" = protocol=6 | dir=in | app=c:\users\krzyś\appdata\local\temp\jvrq.exe |
"TCP Query User{8018FD54-C16C-483E-A97C-DA1867F0A44F}D:\gry\warlords battlecry iii\battlecry iii.exe" = protocol=6 | dir=in | app=d:\gry\warlords battlecry iii\battlecry iii.exe |
"TCP Query User{80711EF8-B760-4400-A635-0F99FB7F2DEB}C:\windows\syswow64\javaw.exe" = protocol=6 | dir=in | app=c:\windows\syswow64\javaw.exe |
"TCP Query User{8B14AE9E-465C-4A54-B5D7-4AA960CB655D}C:\program files (x86)\mozilla firefox\firefox.exe" = protocol=6 | dir=in | app=c:\program files (x86)\mozilla firefox\firefox.exe |
"TCP Query User{9605B035-C963-49D5-86D8-750F7B5B4130}D:\nagrywanie\sony\vegsrv90.exe" = protocol=6 | dir=in | app=d:\nagrywanie\sony\vegsrv90.exe |
"TCP Query User{966DFFF1-50C6-402A-AA75-CD6AB2A84A63}C:\windows\syswow64\dpnsvr.exe" = protocol=6 | dir=in | app=c:\windows\syswow64\dpnsvr.exe |
"TCP Query User{970321A0-406C-42F9-932D-FDA935F42F6A}C:\program files (x86)\java\jre7\bin\java.exe" = protocol=6 | dir=in | app=c:\program files (x86)\java\jre7\bin\java.exe |
"TCP Query User{9CD9F65E-1594-4B1D-B939-BAE5BAFDF453}D:\gry\cs\cstrike.exe" = protocol=6 | dir=in | app=d:\gry\cs\cstrike.exe |
"TCP Query User{9FCCF1C8-7187-4C16-9040-A0A64C146752}C:\users\krzyś\desktop\(tnpl) pokemon\pokemon serwer.exe" = protocol=6 | dir=in | app=c:\users\krzyś\desktop\(tnpl) pokemon\pokemon serwer.exe |
"TCP Query User{A0941A6C-9FA2-46DB-B455-E4BD10D68A1F}D:\ut\utorrent.exe" = protocol=6 | dir=in | app=d:\ut\utorrent.exe |
"TCP Query User{A4809AFC-C129-4898-9514-28D52DB4A0CA}D:\serverplemiona7\plemiona 6.0\apache\bin\apache.exe" = protocol=6 | dir=in | app=d:\serverplemiona7\plemiona 6.0\apache\bin\apache.exe |
"TCP Query User{A62E22D3-ADE1-4699-9919-F35C071B8456}D:\gry\sw\gamedata\jamp.exe" = protocol=6 | dir=in | app=d:\gry\sw\gamedata\jamp.exe |
"TCP Query User{A713E533-83E7-4C6A-B89F-9C10E82F0BFE}D:\gry\counter-strike\cstrike.exe" = protocol=6 | dir=in | app=d:\gry\counter-strike\cstrike.exe |
"TCP Query User{A717D7E9-CA0F-4DAB-8573-57718F558A2C}D:\gry\mexiliamt\mexiliamt2.exe" = protocol=6 | dir=in | app=d:\gry\mexiliamt\mexiliamt2.exe |
"TCP Query User{A940B850-1777-4326-A449-111A31C13FA1}D:\gry\hammermt2\mss321.dll" = protocol=6 | dir=in | app=d:\gry\hammermt2\mss321.dll |
"TCP Query User{AD443D32-8668-49D9-9E9C-D31F81422279}C:\windows\syswow64\java.exe" = protocol=6 | dir=in | app=c:\windows\syswow64\java.exe |
"TCP Query User{B65D2B0F-8276-48F1-8A56-11BA7631157F}C:\program files (x86)\mozilla firefox\plugin-container.exe" = protocol=6 | dir=in | app=c:\program files (x86)\mozilla firefox\plugin-container.exe |
"TCP Query User{BCA68E82-E8FC-4E7B-A99B-85A0FD3164DB}C:\program files (x86)\java\jre6\bin\java.exe" = protocol=6 | dir=in | app=c:\program files (x86)\java\jre6\bin\java.exe |
"TCP Query User{BD63F5F2-326B-44E9-B911-EA53259524AA}D:\flashget 3\flashget3.exe" = protocol=6 | dir=in | app=d:\flashget 3\flashget3.exe |
"TCP Query User{CB4EA12F-CEFF-42BF-A39A-FBB51A62C6E7}D:\serverplemiona7\plemiona 6.0\mysql\bin\mysqld.exe" = protocol=6 | dir=in | app=d:\serverplemiona7\plemiona 6.0\mysql\bin\mysqld.exe |
"TCP Query User{CF8C95E8-BAD8-4D5D-BAA6-0791962370AE}D:\gry\dow\dawn of war - dark crusade\darkcrusade.exe" = protocol=6 | dir=in | app=d:\gry\dow\dawn of war - dark crusade\darkcrusade.exe |
"TCP Query User{D86A1681-E10A-4470-9CBA-CA1E713D90F8}C:\users\krzyś\appdata\local\temp\enbye.exe" = protocol=6 | dir=in | app=c:\users\krzyś\appdata\local\temp\enbye.exe |
"TCP Query User{DE363572-E8B1-45BC-AA14-483F6E3EAABC}D:\gry\starwars\gamedata\jamp.exe" = protocol=6 | dir=in | app=d:\gry\starwars\gamedata\jamp.exe |
"TCP Query User{DEE4FDCF-0FA2-4480-9A79-98F58DB2043C}C:\program files (x86)\flashget network\flashget 3\flashget3.exe" = protocol=6 | dir=in | app=c:\program files (x86)\flashget network\flashget 3\flashget3.exe |
"TCP Query User{DF607E40-B2AD-47A9-B97D-9425DAC0CC99}D:\gry\cs\hlds.exe" = protocol=6 | dir=in | app=d:\gry\cs\hlds.exe |
"TCP Query User{E20317F0-5C7F-4439-929D-C1AABFF5E3F8}D:\gry\wot\worldoftanks.exe" = protocol=6 | dir=in | app=d:\gry\wot\worldoftanks.exe |
"TCP Query User{E78C0BBE-0C16-4572-95E5-CD2F5631D1E5}C:\program files (x86)\java\jre7\bin\javaw.exe" = protocol=6 | dir=in | app=c:\program files (x86)\java\jre7\bin\javaw.exe |
"TCP Query User{FE8805A5-EF0A-4DFA-8C3A-F1D1569919B3}C:\program files\java\jre7\bin\javaw.exe" = protocol=6 | dir=in | app=c:\program files\java\jre7\bin\javaw.exe |
"UDP Query User{00E2C516-1FF5-4390-86FD-13794E283978}C:\programdata\datacardservice\dcshelper.exe" = protocol=17 | dir=in | app=c:\programdata\datacardservice\dcshelper.exe |
"UDP Query User{1914C905-61F6-4F95-8881-A8C245BFEF35}C:\windows\syswow64\javaw.exe" = protocol=17 | dir=in | app=c:\windows\syswow64\javaw.exe |
"UDP Query User{193298B2-9303-49C6-9467-58EEE6030779}D:\gry\diablo ii\d2multiresgame.exe" = protocol=17 | dir=in | app=d:\gry\diablo ii\d2multiresgame.exe |
"UDP Query User{1CCC1C14-4620-4798-96F9-1529080928E5}D:\totalcmd\totalcmd64.exe" = protocol=17 | dir=in | app=d:\totalcmd\totalcmd64.exe |
"UDP Query User{1D277F06-FD59-40B6-8B1B-BAF3D3A70A1A}C:\windows\syswow64\java.exe" = protocol=17 | dir=in | app=c:\windows\syswow64\java.exe |
"UDP Query User{1FCD1C62-0DBB-45B0-AD7B-880B45C4BAC0}D:\gry\diablo ii\game.exe" = protocol=17 | dir=in | app=d:\gry\diablo ii\game.exe |
"UDP Query User{220813D7-6AC0-4B80-9C80-7DCA381A06DC}C:\program files (x86)\flashget network\flashget 3\flashget3.exe" = protocol=17 | dir=in | app=c:\program files (x86)\flashget network\flashget 3\flashget3.exe |
"UDP Query User{26A0FB13-B269-471A-85D2-0ADCA50618A0}C:\program files (x86)\mozilla firefox\firefox.exe" = protocol=17 | dir=in | app=c:\program files (x86)\mozilla firefox\firefox.exe |
"UDP Query User{29E92453-718A-463E-80C3-47221CF64641}D:\gry\over\overlord.exe" = protocol=17 | dir=in | app=d:\gry\over\overlord.exe |
"UDP Query User{29FACDAD-A8B1-43D8-A2A4-9826EFC234D6}D:\serverplemiona7\plemiona 6.0\apache\bin\apache.exe" = protocol=17 | dir=in | app=d:\serverplemiona7\plemiona 6.0\apache\bin\apache.exe |
"UDP Query User{2AAD48B5-553F-4AEB-AAF8-B7B4166A05BB}D:\gry\client enigma pokemon\enigma.exe" = protocol=17 | dir=in | app=d:\gry\client enigma pokemon\enigma.exe |
"UDP Query User{41AADDE7-23D1-41AF-913B-96B038EA2FA5}D:\gry\hammermt2\mss321.dll" = protocol=17 | dir=in | app=d:\gry\hammermt2\mss321.dll |
"UDP Query User{44C199D9-F479-4C3A-B79B-568284879BFD}C:\users\krzyś\desktop\xenoxmt2client_11.02.2012r_by_pawemol\xenoxmt2 launcher.exe" = protocol=17 | dir=in | app=c:\users\krzyś\desktop\xenoxmt2client_11.02.2012r_by_pawemol\xenoxmt2 launcher.exe |
"UDP Query User{4832E0DA-60C9-40BC-8B4C-BF8C7AB4383B}D:\gry\mexiliamt2\mexiliamt2.exe" = protocol=17 | dir=in | app=d:\gry\mexiliamt2\mexiliamt2.exe |
"UDP Query User{4965C64B-30CA-4318-8671-4E1D66AE89CF}D:\gry\cs\cstrike.exe" = protocol=17 | dir=in | app=d:\gry\cs\cstrike.exe |
"UDP Query User{50EE7A7C-9023-4C3A-BA5B-C13DDA3744FE}C:\program files (x86)\flashget network\flashget 3\flashget3.exe" = protocol=17 | dir=in | app=c:\program files (x86)\flashget network\flashget 3\flashget3.exe |
"UDP Query User{51D118BB-EC7D-48C1-8473-F27650EEF5EB}D:\gry\cs\hlds.exe" = protocol=17 | dir=in | app=d:\gry\cs\hlds.exe |
"UDP Query User{56142EF2-B7AC-499E-A5AD-B2605BE75F95}C:\users\krzyś\appdata\local\temp\winpvyv.exe" = protocol=17 | dir=in | app=c:\users\krzyś\appdata\local\temp\winpvyv.exe |
"UDP Query User{5C703AD1-FE3C-4F56-A88B-5C743A0A1780}D:\flashget 3\flashget3.exe" = protocol=17 | dir=in | app=d:\flashget 3\flashget3.exe |
"UDP Query User{65CB2A6F-1241-401C-97AF-23B7D2ED7642}D:\gry\sw\gamedata\jamp.exe" = protocol=17 | dir=in | app=d:\gry\sw\gamedata\jamp.exe |
"UDP Query User{76D32055-4B37-4C7B-984D-2CAC65AD597A}D:\serverplemiona7\plemiona 6.0\mysql\bin\mysqld.exe" = protocol=17 | dir=in | app=d:\serverplemiona7\plemiona 6.0\mysql\bin\mysqld.exe |
"UDP Query User{795AB584-E3A2-416C-9778-33F0CF9FFA05}G:\xenoxmt2client_11.02.2012r_by_pawemol\xenoxmt2 launcher.exe" = protocol=17 | dir=in | app=g:\xenoxmt2client_11.02.2012r_by_pawemol\xenoxmt2 launcher.exe |
"UDP Query User{7C02975F-9566-4DAB-97CF-047ED01517B7}D:\ut\utorrent.exe" = protocol=17 | dir=in | app=d:\ut\utorrent.exe |
"UDP Query User{7E070996-B3D3-4953-A902-1E28FC36D309}C:\program files (x86)\mozilla firefox\plugin-container.exe" = protocol=17 | dir=in | app=c:\program files (x86)\mozilla firefox\plugin-container.exe |
"UDP Query User{80AD65DF-C086-4ACD-A60C-E0BABEEC96F6}C:\windows\syswow64\dpnsvr.exe" = protocol=17 | dir=in | app=c:\windows\syswow64\dpnsvr.exe |
"UDP Query User{81A3FEE4-D5ED-4301-B32F-1D3903AC3821}D:\gry\wot\worldoftanks.exe" = protocol=17 | dir=in | app=d:\gry\wot\worldoftanks.exe |
"UDP Query User{87D4BCA9-0446-4035-B3F5-C4035572789F}C:\program files\java\jre7\bin\javaw.exe" = protocol=17 | dir=in | app=c:\program files\java\jre7\bin\javaw.exe |
"UDP Query User{917E12B2-582E-4F35-A9EB-EBF136B5B305}C:\program files (x86)\java\jre7\bin\javaw.exe" = protocol=17 | dir=in | app=c:\program files (x86)\java\jre7\bin\javaw.exe |
"UDP Query User{922DD85E-6068-4945-A4C9-1FDBF777E97E}C:\program files (x86)\java\jre7\bin\java.exe" = protocol=17 | dir=in | app=c:\program files (x86)\java\jre7\bin\java.exe |
"UDP Query User{9D032766-5C67-405F-B50B-B6FE51060AFD}C:\users\krzyś\appdata\local\temp\qhvx.exe" = protocol=17 | dir=in | app=c:\users\krzyś\appdata\local\temp\qhvx.exe |
"UDP Query User{9E149E65-89E5-44A9-ABB5-E0DD62C8A92C}C:\users\krzyś\appdata\local\temp\winplep.exe" = protocol=17 | dir=in | app=c:\users\krzyś\appdata\local\temp\winplep.exe |
"UDP Query User{9F229147-85CB-43B2-ADC7-811BC428C8E3}D:\flashget 3\flashget3.exe" = protocol=17 | dir=in | app=d:\flashget 3\flashget3.exe |
"UDP Query User{9FB27842-5A18-40BD-BA01-0EC8D49FC8EC}D:\nagrywanie\sony\vegsrv90.exe" = protocol=17 | dir=in | app=d:\nagrywanie\sony\vegsrv90.exe |
"UDP Query User{A50AC2B4-6D65-48B7-9355-AFFDB6EB7DBF}C:\program files (x86)\java\jre6\bin\javaw.exe" = protocol=17 | dir=in | app=c:\program files (x86)\java\jre6\bin\javaw.exe |
"UDP Query User{A64AC4C9-5AA6-4714-B0E9-2618B7F5C21D}C:\users\krzyś\desktop\(tnpl) pokemon\pokemon serwer.exe" = protocol=17 | dir=in | app=c:\users\krzyś\desktop\(tnpl) pokemon\pokemon serwer.exe |
"UDP Query User{B648657B-928E-41B4-9014-0109C8B35C02}C:\program files (x86)\java\jre6\bin\java.exe" = protocol=17 | dir=in | app=c:\program files (x86)\java\jre6\bin\java.exe |
"UDP Query User{BCA8995B-EEFC-4920-A1E2-8E3736662BE7}C:\users\krzyś\appdata\local\temp\enbye.exe" = protocol=17 | dir=in | app=c:\users\krzyś\appdata\local\temp\enbye.exe |
"UDP Query User{BD85CDB5-D4D4-4558-AD12-7F754B403368}C:\users\krzyś\appdata\local\temp\winlypqs.exe" = protocol=17 | dir=in | app=c:\users\krzyś\appdata\local\temp\winlypqs.exe |
"UDP Query User{C482601B-2D8D-4ABA-B55D-8E816C44B258}D:\gry\mexiliamt\mexiliamt2.exe" = protocol=17 | dir=in | app=d:\gry\mexiliamt\mexiliamt2.exe |
"UDP Query User{C8C8768A-C67F-427E-8BBC-2AA0BBC5427A}C:\program files\java\jre7\bin\java.exe" = protocol=17 | dir=in | app=c:\program files\java\jre7\bin\java.exe |
"UDP Query User{D17D51F6-6EF8-4712-800A-64811E280DFF}D:\gry\warlords battlecry iii\battlecry iii.exe" = protocol=17 | dir=in | app=d:\gry\warlords battlecry iii\battlecry iii.exe |
"UDP Query User{D7D1DCA6-A321-4713-8C1A-F98B4D059B66}D:\gry\counter-strike\cstrike.exe" = protocol=17 | dir=in | app=d:\gry\counter-strike\cstrike.exe |
"UDP Query User{DE65E4DB-7AC9-4916-8101-B491623576DB}C:\windows\syswow64\javaw.exe" = protocol=17 | dir=in | app=c:\windows\syswow64\javaw.exe |
"UDP Query User{DEA07A2C-7BC9-41B0-B78D-F46FAD622CA2}C:\users\krzyś\appdata\local\temp\winqctjin.exe" = protocol=17 | dir=in | app=c:\users\krzyś\appdata\local\temp\winqctjin.exe |
"UDP Query User{EAD09DD6-9AEB-40BD-9149-5AD8E1FE3D93}D:\gry\dow\dawn of war - dark crusade\darkcrusade.exe" = protocol=17 | dir=in | app=d:\gry\dow\dawn of war - dark crusade\darkcrusade.exe |
"UDP Query User{F1361FBE-2921-4BDC-B3AA-8B8CB2602856}C:\program files (x86)\electronic arts\eadm\core.exe" = protocol=17 | dir=in | app=c:\program files (x86)\electronic arts\eadm\core.exe |
"UDP Query User{F9B32E06-372B-462B-B862-CE369BEA8228}C:\users\krzyś\appdata\local\temp\jvrq.exe" = protocol=17 | dir=in | app=c:\users\krzyś\appdata\local\temp\jvrq.exe |
"UDP Query User{FB6E575E-E88C-4B47-97D9-02E221045C9D}D:\gry\starwars\gamedata\jamp.exe" = protocol=17 | dir=in | app=d:\gry\starwars\gamedata\jamp.exe |
"UDP Query User{FEC1CACC-5A63-4A54-972A-CA2C854783E2}D:\gry\counter-strike\hlds.exe" = protocol=17 | dir=in | app=d:\gry\counter-strike\hlds.exe |

========== HKEY_LOCAL_MACHINE Uninstall List ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{027E5FAB-1476-4C59-AAB4-32EF28520399}" = Windows Live Language Selector
"{02A5BD31-16AC-45DF-BE9F-A3167BC4AFB2}" = Windows Live Family Safety
"{0AB1CEAD-FF24-33F8-8A25-292A8E835822}" = Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - PLK
"{0D87AE67-14EB-4C10-88A5-DA6C3181EB18}" = Windows Live Family Safety
"{13F4A7F3-EABC-4261-AF6B-1317777F0755}" = Fast Boot
"{1ACC8FFB-9D84-4C05-A4DE-D28A9BC91698}" = Windows Live ID Sign-in Assistant
"{1BF5ECDD-47AC-411B-9BC5-96F01346CD7C}" = Windows Live Family Safety
"{1C7C8AAF-A16D-32E8-89E5-F6D165DE0BCE}" = Microsoft Visual C++ 2010 x64 Runtime - 10.0.40219
"{1D2596F8-5EDD-4F8A-BA88-734E5549DD72}" = Windows Live Family Safety
"{1D8E6291-B0D5-35EC-8441-6616F567A0F7}" = Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219
"{21B133D6-5979-47F0-BE1C-F6A6B304693F}" = Visual Studio 2010 x64 Redistributables
"{22AB5CFD-B3DB-414E-9F99-4D024CCF1DA6}" = Windows Live Remote Client Resources
"{2426E29F-9E8C-4C0B-97FC-0DB690C1ED98}" = Windows Live Remote Client Resources
"{24A534BC-AC8B-44A8-A417-135F28F8E9EE}" = Windows Live Family Safety
"{26A24AE4-039D-4CA4-87B4-2F86417013FF}" = Java 7 Update 13 (64-bit)
"{27F3F8DE-AC95-4E10-90A6-EBA999DDBCAF}" = Windows Live Remote Service Resources
"{29CFD07F-4971-41B0-B14D-621ACCC264AC}" = Windows Live Remote Service Resources
"{2F304EF4-0C31-47F4-8557-0641AAE4197C}" = Windows Live Remote Client Resources
"{34384A2A-2CA2-4446-AB0E-1F360BA2AAC5}" = Windows Live Remote Service Resources
"{3921492E-82D2-4180-8124-E347AD2F2DB4}" = Windows Live Remote Client Resources
"{456FB9B5-AFBC-4761-BBDC-BA6BAFBB818F}" = Windows Live Remote Client Resources
"{480F28F0-8BCE-404A-A52E-0DBB7D1CE2EF}" = Windows Live Remote Service Resources
"{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148
"{4BB3027E-7ABE-43EA-BA1B-9521EF69B530}" = Windows Live Family Safety
"{5141AA6E-5FAC-4473-BFFB-BEE69DDC7F2B}" = Windows Live Remote Service Resources
"{5151E2DB-0748-4FD1-86A2-72E2F94F8BE7}" = Windows Live Remote Service Resources
"{5E9AC693-73C1-8ECA-1F31-BDB2C5A38512}" = AMD Fuel
"{5F44A3A1-5D24-4708-8776-66B42B174C64}" = Windows Live Remote Client Resources
"{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161
"{61407251-7F7D-4303-810D-226A04D5CFF3}" = Windows Live Remote Service Resources
"{641B32DB-8226-4250-86C9-34671162F5D5}" = Windows Live Remote Client Resources
"{656DEEDE-F6AC-47CA-A568-A1B4E34B5760}" = Windows Live Remote Service Resources
"{6A2482BC-733A-404A-939A-2D5BC636E6F9}" = Windows Live Remote Service Resources
"{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}" = Microsoft Visual C++ 2005 Redistributable (x64)
"{78654366-5889-4A70-90D9-04B00709EEE0}" = Windows Live Remote Client Resources
"{8220EEFE-38CD-377E-8595-13398D740ACE}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17
"{847B0532-55E3-4AAF-8D7B-E3A1A7CD17E5}" = Windows Live Remote Client Resources
"{8AAA8780-1D35-11E2-A3A6-F04DA23A5C58}" = MSVCRT Redists
"{8E34682C-8118-31F1-BC4C-98CD9675E1C2}" = Microsoft .NET Framework 4 Extended
"{90140000-002A-0000-1000-0000000FF1CE}" = Microsoft Office Office 64-bit Components 2010
"{90140000-002A-0407-1000-0000000FF1CE}" = Microsoft Office Shared 64-bit MUI (German) 2010
"{90140000-002A-0415-1000-0000000FF1CE}" = Microsoft Office Shared 64-bit MUI (Polish) 2010
"{90140000-006D-0415-1000-0000000FF1CE}" = Moduł Szybka instalacja pakietu Microsoft Office 2010
"{95120000-00B9-0409-1000-0000000FF1CE}" = Microsoft Application Error Reporting
"{97A295A7-8840-4B35-BB61-27A8F4512CA3}" = Windows Live Remote Service Resources
"{9B6239BF-4E85-4590-8D72-51E30DB1A9AA}" = ASUS Power4Gear Hybrid
"{9E9C960F-7F47-46D5-A95D-950B354DE2B8}" = Windows Live Remote Service Resources
"{A0CC1C12-528A-42A3-B9A3-10C4F9E65C9E}" = Windows Live Family Safety
"{A986CF32-C1C2-4B53-91AD-78EE027875C7}" = Windows Live Family Safety
"{AAE97E7E-B3A6-42BA-ADA5-04A0E6FD7224}" = Windows Live Family Safety
"{ABBD4BA8-6703-40D2-AB1E-5BB1F7DB49A4}" = Trend Micro Titanium Internet Security
"{ABBD4BA9-6703-40D2-AB1E-5BB1F7DB49A4}" = Trend Micro Titanium Internet Security
"{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}" = Microsoft Visual C++ 2005 Redistributable (x64)
"{B143BE44-8723-315E-9413-011C55873C0E}" = Microsoft Visual Studio 2010 Tools for Office Runtime (x64)
"{B680A663-1A15-47A5-A07C-7DF9A97558B7}" = Windows Live Remote Client Resources
"{BCA26999-EC22-3007-BB79-638913079C9A}" = Microsoft Visual Studio 2010 Express Prerequisites x64 - ENU
"{D0AB8C9D-93CE-4F48-A0D8-8A04D442F272}" = Windows Live Family Safety
"{D0C56275-9E7F-4BE5-AB37-15124BF808F2}" = Windows Live Family Safety
"{D157C6E7-5847-4FD1-BEDC-7389493874F6}" = Windows Live Remote Service Resources
"{D3E4F422-7E0F-49C7-8B00-F42490D7A385}" = Windows Live Remote Service Resources
"{D4761C4F-5ED9-11E1-9202-F04DA23A5C58}" = MSVCRT Redists
"{D4AD39AD-091E-4D33-BB2B-59F6FCB8ADC3}" = Microsoft SQL Server Compact 3.5 SP2 x64 ENU
"{D600D357-5CB9-4DE9-8FD4-14E208BD1970}" = Nero Backup Drivers
"{DA54F80E-261C-41A2-A855-549A144F2F59}" = Windows Live MIME IFilter
"{DF6D988A-EEA0-4277-AAB8-158E086E439B}" = Windows Live Remote Client
"{E02A6548-6FDE-40E2-8ED9-119D7D7E641F}" = Windows Live Remote Service
"{E10CB758-D5FD-4A2D-A1C9-459D6BB0C035}" = Windows Live Remote Client Resources
"{E3525BFB-1C0B-4022-98EE-824E3757E83F}" = Windows Live Family Safety
"{E5748D30-7E6D-3A8E-BFE6-C1D02C6DDABB}" = Microsoft Help Viewer 1.1
"{E892324D-9386-4105-806C-5550304CE519}" = Windows Live Family Safety
"{ED421F97-E1C3-4E78-9F54-A53888215D58}" = Windows Live Remote Client Resources
"{F0793412-6407-4870-9A8C-6FE198A4EB12}" = Windows Live Remote Client Resources
"{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}" = Microsoft .NET Framework 4 Client Profile
"{F71F4E15-C711-4010-B1BD-74EE2618B86F}" = Windows Live Family Safety
"{FBAAF933-878C-3F1E-3EC9-095463021A86}" = AMD Catalyst Install Manager
"Elantech" = ETDWare PS/2-X64 8.0.5.1_WHQL
"GIMP-2_is1" = GIMP 2.8.2
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Microsoft .NET Framework 4 Extended" = Microsoft .NET Framework 4 Extended
"Microsoft Help Viewer 1.1" = Microsoft Help Viewer 1.1
"Microsoft Visual Studio 2010 Tools for Office Runtime (x64)" = Microsoft Visual Studio 2010 Tools for Office Runtime (x64)
"Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - PLK" = Polski pakiet językowy dla narzędzi Microsoft Visual Studio 2010 Tools for Office Runtime (x64)
"Totalcmd64" = Total Commander 64-bit (Remove or Repair)
"Unlocker" = Unlocker 1.9.1-x64
"WinRAR archiver" = WinRAR 4.01 (64-bitowy)

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{021E3463-8E95-C7C9-6139-127E6191B813}" = CCC Help Turkish
"{047377C9-C74B-4345-82E8-03BAE5DF2C32}" = Windows Live Writer
"{0654EA5D-308A-4196-882B-5C09744A5D81}" = Windows Live Photo Common
"{073F306D-9851-4969-B828-7B6444D07D55}" = Windows Live Photo Common
"{0969AF05-4FF6-4C00-9406-43599238DE0D}" = ASUS Splendid Video Enhancement Technology
"{09922FFE-D153-44AE-8B60-EA3CB8088F93}" = Windows Live UX Platform Language Pack
"{0A093C39-CBB3-4142-B93F-562F176B6305}" = Windows Live Mesh
"{0B0F231F-CE6A-483D-AA23-77B364F75917}" = Windows Live Installer
"{0B80A0FD-755A-4796-BFB0-A7B07366F33A}" = Windows Live Mail
"{0C1931EB-8339-4837-8BEC-75029BF42734}" = Windows Live UX Platform Language Pack
"{1168ECF1-2932-4E86-BC83-560C256C8022}" = Windows Live Photo Common
"{11778DA1-0495-4ED9-972F-F9E0B0367CD5}" = Windows Live Writer
"{122800FE-3AAF-4974-9FBD-54B023FA756A}" = „Windows Live Messenger“
"{14DC0059-00F1-4F62-BD1A-AB23CD51A95E}" = Adobe AIR
"{17835B63-8308-427F-8CF5-D76E0D5FE457}" = Windows Live Essentials
"{1890E52E-1ABD-4D3E-3095-0CE6736964C9}" = CCC Help Portuguese
"{19ADD3BF-C42B-47DC-81C6-5E9731B668C4}" = „Windows Live Essentials“
"{19BA08F7-C728-469C-8A35-BFBD3633BE08}" = Windows Live Movie Maker
"{19CBDE24-2761-49A5-816B-D2BA65D0CA8D}" = Kontrola Windows Live Mesh ActiveX za daljinske veze
"{1CA8970E-C2A8-B5E0-5BDB-FDD0D15B6C97}" = CCC Help Czech
"{1D6C2068-807F-4B76-A0C2-62ED05656593}" = Windows Live Writer
"{1DA6D447-C54D-4833-84D4-3EA31CAECE9B}" = Windows Live UX Platform Language Pack
"{1DBD1F12-ED93-49C0-A7CC-56CBDE488158}" = ASUS LifeFrame3
"{1E03DB52-D5CB-4338-A338-E526DD4D4DB1}" = Bing Bar
"{1EECBA68-8BE4-4076-94DF-E9ED206B1D21}" = Star Wars Jedi Knight Jedi Academy
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4}" = Junk Mail filter update
"{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}" = CyberLink Media Suite
"{1FC83EAE-74C8-4C72-8400-2D8E40A017DE}" = Windows Live Writer
"{200FEC62-3C34-4D60-9CE8-EC372E01C08F}" = Windows Live SOXE Definitions
"{216ACEC1-4556-4717-A8DE-3F7F5F9C6F63}" = Windows Live Mesh ActiveX-i juhtelement kaugühendustele
"{2228A1E2-4538-EEA7-03C1-D839FCC2E794}" = CCC Help Polish
"{259A8A5E-2886-4BED-9EF1-D5485282CCC3}" = Overlord
"{260E3D78-94E6-47EC-8E29-46301572BB1E}" = Control ActiveX Windows Live Mesh pentru conexiuni la distanță
"{26A24AE4-039D-4CA4-87B4-2F83216035FF}" = Java 6 Update 37
"{26A24AE4-039D-4CA4-87B4-2F83217013FF}" = Java 7 Update 13
"{26E3C07C-7FF7-4362-9E99-9E49E383CF16}" = Windows Live Writer Resources
"{2720009D-9566-45A7-A370-0E6DAC313F3F}" = „Windows Live Mail“
"{27CC6AB1-E72B-4179-AF1A-EAE507EBAF51}_is1" = ConvertHelper 2.2
"{2875FA2F-D329-FD8E-DFE5-F84374A92C26}" = CCC Help Korean
"{2902F983-B4C1-44BA-B85D-5C6D52E2C441}" = Windows Live Mesh ActiveX Control for Remote Connections
"{2A3FC24C-6EC0-4519-A52B-FDA4EA9B2D24}" = Windows Live Messenger
"{2BA5FD10-653F-4CAF-9CCD-F685082A1DC1}" = Windows Live Writer
"{2CC0789D-D31B-445F-8970-6E058BE39754}" = Windows Live UX Platform Language Pack
"{2D3E034E-F76B-410A-A169-55755D2637BB}" = Windows Live Mesh
"{2F54E453-8C93-4B3B-936A-233C909E6CAC}" = Windows Live Messenger
"{2F8B731A-5F2D-3EA8-8B25-C3E5E43F4BDB}" = Microsoft Visual C++ Compilers 2010 Standard - enu - x86
"{32714B71-ECD4-FE25-AEB7-14600FF3D91B}" = CCC Help Norwegian
"{33286280-8617-11E1-8FF6-B8AC6F97B88E}" = Google Earth Plug-in
"{3336F667-9049-4D46-98B6-4C743EEBC5B1}" = Windows Live Photo Gallery
"{34F4D9A4-42C2-4348-BEF4-E553C84549E7}" = Windows Live Photo Gallery
"{3A9FC03D-C685-4831-94CF-4EDFD3749497}" = Microsoft SQL Server Compact 3.5 SP2 ENU
"{3B11D799-48E0-48ED-BFD7-EA655676D8BB}" = Star Wars: The Old Republic
"{3B8F240C-B75E-4A1E-BDCC-6C7F033078A3}" = Windows Live UX Platform Language Pack
"{3FA0579F-68B2-47B4-B6EC-691131ADAA1C}_is1" = ąâ֮ðĎŐ 2.0.0
"{40BF1E83-20EB-11D8-97C5-0009C5020658}" = CyberLink Power2Go
"{410DF0AA-882D-450D-9E1B-F5397ACFFA80}" = Windows Live Essentials
"{4264C020-850B-4F08-ACBE-98205D9C336C}" = Windows Live Writer
"{442032CB-900C-49C7-B4B4-2B76525DD403}" = Windows Live Photo Common
"{4444F27C-B1A8-464E-9486-4C37BAB39A09}" = Фотогалерия на Windows Live
"{458F399F-62AC-4747-99F5-499BBF073D29}" = Windows Live Writer Resources
"{46F8CF66-AB83-38A7-99B2-A5BE507EE472}" = Microsoft Visual C++ 2010 Express - ENU
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4B35F00C-E63D-40DC-9839-DF15A33EAC46}" = Grand Theft Auto Vice City
"{4C378B16-46B7-4DA1-A2CE-2EE676F74680}" = Windows Live UX Platform Language Pack
"{4D141929-141B-4605-95D6-2B8650C1C6DA}" = Windows Live UX Platform Language Pack
"{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}" = Skype™ 6.1
"{517EAAB9-C35E-4949-B8C2-20C241162BBB}" = Windows Live Pošta
"{5275D81E-83AD-4DE4-BC2B-6E6BA3A33244}" = Windows Live Writer Resources
"{52D1C69A-7896-836A-E9AE-D61BDBC7414A}" = CCC Help Dutch
"{545192D4-E817-4EAA-834D-623EA50CF268}" = Windows Live UX Platform Language Pack
"{579684A4-DDD5-4CA3-9EA8-7BE7D9593DB4}" = Windows Live UX Platform Language Pack
"{5AB7D739-1735-3A9E-BE73-C43507CB4E6F}" = Microsoft Visual Studio 2010 Service Pack 1
"{5CF5B1A5-CBC3-42F0-8533-5A5090665862}" = Windows Live Mesh
"{5D163056-96B7-440F-A836-89BA5D3CFF2F}" = Windows Live Photo Common
"{5D2E7BD7-4B6F-4086-BA8A-E88484750624}" = Windows Live Writer Resources
"{5D9ED403-94DE-3BA0-B1D6-71F4BDA412E6}" = Microsoft Visual C++ 2010 x86 Runtime - 10.0.40219
"{5E627606-53B9-42D1-97E1-D03F6229E248}" = Windows Live UX Platform Language Pack
"{5F448866-CE78-D188-3028-11687C850D97}" = CCC Help German
"{60C3C026-DB53-4DAB-8B97-7C1241F9A847}" = Windows Live Movie Maker
"{612C34C7-5E90-47D8-9B5C-0F717DD82726}" = swMSM
"{6294D49D-92E5-364A-ED97-2DF9C466469A}" = CCC Help Chinese Traditional
"{63CEA2E4-4FE7-4F2C-B388-C1313D24157C}" = SPORE™ Kosmiczne przygody
"{64376910-1860-4CEF-8B34-AA5D205FC5F1}" = Poczta usługi Windows Live
"{64452561-169F-4A36-A2FF-B5E118EC65F5}" = ASUS FaceLogon
"{6491AB99-A11E-41FD-A5E7-32DE8A097B8E}" = Windows Live Essentials
"{64B2D6B3-71AC-45A7-A6A1-2E07ABF58341}" = Windows Live Movie Maker
"{682B3E4F-696A-42DE-A41C-4C07EA1678B4}" = Windows Live SOXE
"{69C9C672-400A-43A0-B2DE-9DB38C371282}" = Windows Live Writer
"{6ABE832B-A5C7-44C1-B697-3E123B7B4D5B}" = Windows Live Mesh
"{6B3BAE39-4ED1-4EEB-9769-A3AA0AA58CB4}" = Windows Live Movie Maker
"{6B556C37-8919-4991-AC34-93D018B9EA49}" = Windows Live Photo Common
"{6DCE9C3E-3DB7-4C3C-8B80-BC55781BB7B6}" = Windows Live Writer Resources
"{6E29C4F7-C2C2-4B18-A15C-E09B92065F15}" = Windows Live Mesh ActiveX-vezérlő távoli kapcsolatokhoz
"{6EAFE93E-66E8-9CD8-4C34-F3F573FD9F63}" = CCC Help Hungarian
"{6F37D92B-41AA-44B7-80D2-457ABDE11896}" = Windows Live Photo Common
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{71684DFF-CDED-450C-AF0C-4A1A6438A1A5}" = Windows Live Essentials
"{718B4425-80EA-4F64-A05C-48285CE63F73}" = AMD System Monitor
"{7272F232-A7E0-4B2B-A5D2-71B7C5E2379C}" = Windows Live Fotótár
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{7373E17D-18E0-44A7-AC3A-6A3BFB85D3B3}" = Windows Live Movie Maker
"{77BC9EAF-14C7-4338-9B1C-D5A3E142C0B8}" = Windows Live Photo Common
"{77DAF553-291A-4471-988C-5677D90DB57E}" = Windows Live Writer Resources
"{78906B56-0E81-42A7-AC25-F54C946E1538}" = Windows Live Photo Common
"{78C72857-D3F9-FEA1-6248-A21FA7DD0FDF}" = Catalyst Control Center Profiles Mobile
"{7A9D47BA-6D50-4087-866F-0800D8B89383}" = Podstawowe programy Windows Live
"{7AF8E500-B349-4A77-8265-9854E9A47925}" = Windows Live Movie Maker
"{7BA19818-F717-4DFB-BC11-FAF17B2B8AEE}" = Pošta Windows Live
"{7CB529B2-6C74-4878-9C3F-C29C3C3BBDC6}" = Windows Live Writer Resources
"{7D0DE76C-874E-4BDE-A204-F4240160693E}" = Windows Live Photo Common
"{7D916FA5-DAE9-4A25-B089-655C70EAF607}" = Qualcomm Atheros WiFi Driver Installation
"{7E19B002-4CA3-4C9F-BA92-91D101B97219}" = James Cameron's AVATAR: THE GAME
"{7E90B133-FF47-48BB-91B8-36FC5A548FE9}" = Windows Live Writer Resources
"{80E8C65A-8F70-4585-88A2-ABC54BABD576}" = Windows Live Mesh
"{826A9D28-CAB2-4950-8AAA-B639DCA444CE}" = Windows Live UX Platform Language Pack
"{82803FF3-563F-414F-A403-8D4C167D4120}" = Windows Live Mail
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-111249233}" = Dream Vacation Solitaire
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-111307457}" = Galapago
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-113832110}" = Dream Day First Home
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-115065740}" = Bubbletown
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-115290153}" = Go Go Gourmet Chef of the Year
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-115320460}" = Turbo Fiesta
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-116672750}" = World of Goo
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-117948443}" = Mahjong Memoirs
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-118716773}" = Deadtime Stories
"{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-119205603}" = Farm Frenzy 3 - Madagascar
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{83C292B7-38A5-440B-A731-07070E81A64F}" = Windows Live PIMT Platform
"{84267681-BF16-40B6-9564-27BC57D7D71C}" = Windows Live Photo Common
"{86E6D3A7-3ADC-44C0-B94E-85D2A9DD36B0}" = Windows Live Writer
"{8706CFB5-6A8D-39FB-EACD-7EB1A822391C}" = CCC Help Russian
"{8833FFB6-5B0C-4764-81AA-06DFEED9A476}" = Realtek Ethernet Controller Driver
"{8985AE5E-622A-4980-8BF8-0A1830643220}" = Windows Live Mesh ActiveX kontrola za daljinske veze
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8B531332-0D5D-4B3B-A22C-8330DEA695A7}" = LogMeIn Hamachi
"{8C6D6116-B724-4810-8F2D-D047E6B7D68E}" = Mesh Runtime
"{8D33ECF4-1A77-4674-ABAE-DFF978C5BC0A}" = Windows Live Movie Maker
"{8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}" = MSVCRT
"{8EFCE1F8-8ADB-40F2-BED7-7728BED00EC0}" = Windows Live Essentials
"{8F21291E-0444-4B1D-B9F9-4370A73E346D}" = WinFlash
"{90140000-0015-0415-0000-0000000FF1CE}" = Microsoft Office Access MUI (Polish) 2010
"{90140000-0015-0415-0000-0000000FF1CE}_Office14.SingleImage_{39EFF327-D2C4-4C4B-B8EE-37325DECE1A4}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-0016-0415-0000-0000000FF1CE}" = Microsoft Office Excel MUI (Polish) 2010
"{90140000-0016-0415-0000-0000000FF1CE}_Office14.SingleImage_{39EFF327-D2C4-4C4B-B8EE-37325DECE1A4}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-0018-0407-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (German) 2010
"{90140000-0018-0407-0000-0000000FF1CE}_Office14.POWERPOINTR_{69E54534-4569-4639-89E9-305B60A11601}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-0018-0415-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (Polish) 2010
"{90140000-0018-0415-0000-0000000FF1CE}_Office14.SingleImage_{39EFF327-D2C4-4C4B-B8EE-37325DECE1A4}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-0019-0415-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (Polish) 2010
"{90140000-0019-0415-0000-0000000FF1CE}_Office14.SingleImage_{39EFF327-D2C4-4C4B-B8EE-37325DECE1A4}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001A-0415-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (Polish) 2010
"{90140000-001A-0415-0000-0000000FF1CE}_Office14.SingleImage_{39EFF327-D2C4-4C4B-B8EE-37325DECE1A4}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001B-0415-0000-0000000FF1CE}" = Microsoft Office Word MUI (Polish) 2010
"{90140000-001B-0415-0000-0000000FF1CE}_Office14.SingleImage_{39EFF327-D2C4-4C4B-B8EE-37325DECE1A4}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2010
"{90140000-001F-0407-0000-0000000FF1CE}_Office14.POWERPOINTR_{65A2328E-FDFB-4CA3-8582-357EA6825FEA}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001F-0407-0000-0000000FF1CE}_Office14.SingleImage_{65A2328E-FDFB-4CA3-8582-357EA6825FEA}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2010
"{90140000-001F-0409-0000-0000000FF1CE}_Office14.POWERPOINTR_{99ACCA38-6DD3-48A8-96AE-A283C9759279}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001F-0409-0000-0000000FF1CE}_Office14.SingleImage_{99ACCA38-6DD3-48A8-96AE-A283C9759279}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001F-040C-0000-0000000FF1CE}" = Microsoft Office Proof (French) 2010
"{90140000-001F-040C-0000-0000000FF1CE}_Office14.POWERPOINTR_{46298F6A-1E7E-4D4A-B5F5-106A4F0E48C6}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001F-0410-0000-0000000FF1CE}" = Microsoft Office Proof (Italian) 2010
"{90140000-001F-0410-0000-0000000FF1CE}_Office14.POWERPOINTR_{C0743197-FFEE-4C19-BAEB-8F7437DC4C8A}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001F-0415-0000-0000000FF1CE}" = Microsoft Office Proof (Polish) 2010
"{90140000-001F-0415-0000-0000000FF1CE}_Office14.SingleImage_{1D751709-BA6C-49E2-844B-4F4F20F410C9}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-002A-0000-1000-0000000FF1CE}_Office14.POWERPOINTR_{967EF02C-5C7E-4718-8FCB-BDC050190CCF}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-002A-0407-1000-0000000FF1CE}_Office14.POWERPOINTR_{594128C9-2CDF-43CE-8103-DC100CF013B6}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-002A-0415-1000-0000000FF1CE}_Office14.SingleImage_{0844B6E1-0A6F-4D81-8BCF-48F883F521FE}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-002C-0407-0000-0000000FF1CE}" = Microsoft Office Proofing (German) 2010
"{90140000-002C-0407-0000-0000000FF1CE}_Office14.POWERPOINTR_{4275FB46-ABDF-4456-876C-17CF64294D9A}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-002C-0415-0000-0000000FF1CE}" = Microsoft Office Proofing (Polish) 2010
"{90140000-002C-0415-0000-0000000FF1CE}_Office14.SingleImage_{6606F321-8216-466E-981E-B75A14C46894}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-003D-0000-0000-0000000FF1CE}" = Microsoft Office Single Image 2010
"{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{047B0968-E622-4FAA-9B4B-121FA109EDDE}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-006E-0407-0000-0000000FF1CE}" = Microsoft Office Shared MUI (German) 2010
"{90140000-006E-0407-0000-0000000FF1CE}_Office14.POWERPOINTR_{98EDFD9F-EA76-40CC-BCE9-92C69413F65B}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-006E-0415-0000-0000000FF1CE}" = Microsoft Office Shared MUI (Polish) 2010
"{90140000-006E-0415-0000-0000000FF1CE}_Office14.SingleImage_{6AF8887A-72F7-4FA0-ABE4-396172B64550}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-00A1-0415-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (Polish) 2010
"{90140000-00A1-0415-0000-0000000FF1CE}_Office14.SingleImage_{39EFF327-D2C4-4C4B-B8EE-37325DECE1A4}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-00BD-0415-0000-0000000FF1CE}" = Język etykietek ekranowych pakietu Microsoft Office 2010 — polski
"{90140011-0066-0415-0000-0000000FF1CE}" = Microsoft Office Starter 2010 - Polski
"{9024FE65-46B8-4C8A-9D98-8DCB6BD5F598}" = „Windows Live Mesh ActiveX“ nuotolinių ryšių valdiklis
"{91140000-0018-0000-0000-0000000FF1CE}" = Microsoft Office PowerPoint 2010
"{91140000-0018-0000-0000-0000000FF1CE}_Office14.POWERPOINTR_{047B0968-E622-4FAA-9B4B-121FA109EDDE}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{91448B3B-A0DE-F670-3348-3BEEA64BC274}" = MyHappyGames
"{91AE1C7D-E06B-4232-363A-E96E117C9552}" = Catalyst Control Center Localization All
"{92EA4134-10D1-418A-91E1-5A0453131A38}" = Windows Live Movie Maker
"{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting
"{95140000-0070-0000-0000-0000000FF1CE}" = Microsoft Office 2010
"{95140000-00AF-0415-0000-0000000FF1CE}" = Microsoft PowerPoint Viewer
"{96AE7E41-E34E-47D0-AC07-1091A8127911}" = Realtek USB 2.0 Card Reader
"{97F77D62-5110-4FA3-A2D3-410B92D31199}" = Windows Live Fotogaléria
"{997C656C-8BED-44DE-AB2D-A764EBDF565F}" = Overlord II
"{99BE7F5D-AB52-4404-9E03-4240FFAA7DE9}" = Windows Live Mesh
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9A6E2DCF-AD8C-22CB-957D-5A29B324DC87}" = CCC Help French
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{9C69323B-7D12-5CDA-0BF1-BC3B38DD3847}" = CCC Help Danish
"{9D56775A-93F3-44A3-8092-840E3826DE30}" = Windows Live Mail
"{9DF0196F-B6B8-4C3A-8790-DE42AA530101}" = SPORE™
"{9E771D5B-C429-4CBC-8730-3EBD9EC99E4C}" = Windows Live Movie Maker
"{A0C91188-C88F-4E86-93E6-CD7C9A266649}" = Windows Live Mesh
"{A101F637-2E56-42C0-8E08-F1E9086BFAF3}" = Windows Live Movie Maker
"{A1668729-C4D2-49AE-877B-FB608362FFF1}" = Windows Live Essentials
"{A3389C72-1782-4BB4-BBAA-33345DE52E3F}" = Windows Live Messenger
"{A3A775C9-5A63-4C55-8FDD-427A5B8F5D2B}" = Windows Live Mesh ActiveX vadīkla attālajiem savienojumiem
"{A591144C-C049-105E-D715-154E1F980A04}" = CCC Help Spanish
"{A6E98880-3A57-1DA3-18D3-1F8C3901DE66}" = Catalyst Control Center Graphics Previews Common
"{A7056D45-C63A-4FE4-A69D-FB54EF9B21BB}" = Windows Live Messenger
"{A726AE06-AAA3-43D1-87E3-70F510314F04}" = Windows Live Writer
"{A859E3E5-C62F-4BFA-AF1D-2B95E03166AF}" = ASUS USB Charger Plus
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{A9BDCA6B-3653-467B-AC83-94367DA3BFE3}" = Windows Live Photo Common
"{AAAFC670-569B-4A2F-82B4-42945E0DE3EF}" = Windows Live Writer
"{AAF454FC-82CA-4F29-AB31-6A109485E76E}" = Windows Live Writer
"{AB5C933E-5C7D-4D30-B314-9C83A49B94BE}" = ATK Package
"{AB68E53C-7874-A696-88B0-3FC7F91F61A3}" = CCC Help Swedish
"{AB78C965-5C67-409B-8433-D7B5BDB12073}" = Windows Live Writer Resources
"{ABE2F2AA-7ADC-4717-9573-BF3F83C696AC}" = Windows Live Mail
"{AD001A69-88CC-4766-B2DB-3C1DFAB9AC72}" = Windows Live Mesh
"{B0002707-4F7E-4745-88A7-852DA8A88635}" = ASUS Sonic Focus
"{B04A0E2F-1E4C-4E61-B18E-3B2BD6779CA7}" = Formant ActiveX programu Windows Live Mesh odpowiedzialny za obsługę połączeń zdalnych
"{B0AD205F-60D0-4084-AFB8-34D9A706D9A8}" = Windows Live Essentials
"{B3BA4D1C-23EF-4859-9C11-1B2CCB7FADBB}" = ActiveX контрола на Windows Live Mesh за отдалечени връзки
"{B480904D-F73F-4673-B034-8A5F492C9184}" = Nuance PDF Reader
"{B6190387-0036-4BEB-8D74-A0AFC5F14706}" = Ovládací prvek ActiveX platformy Windows Live Mesh pro vzdálená připojení
"{B76EDE91-BAE4-E20E-598C-5AACA63C4955}" = CCC Help English
"{B7B67AA5-12DA-4F01-918D-B1BF66779D8A}" = Windows Live Writer Resources
"{B81722D3-0A95-4BDE-AA1A-A2A5D12FCDB2}" = Windows Live Foto-galerija
"{B9B66F77-9D00-4CA4-BDF1-BBA8236B4DB6}" = Windows Live Writer
"{BD0C3887-64E6-41D8-9A38-BC6F34369352}" = Windows Live Messenger
"{BD215FCB-27E8-4C86-9251-8B8C1D548743}" = Windows Live Messenger
"{BD4EBDB5-EB14-4120-BB04-BE0A26C7FB3E}" = Windows Live Photo Common
"{BF35168D-F6F9-4202-BA87-86B5E3C9BF7A}" = Windows Live Mesh
"{C01FCACE-CC3D-49A2-ADC2-583A49857C58}" = Windows Live Essentials
"{C05D8CDB-417D-4335-A38C-A0659EDFD6B8}" = The Sims™ 3
"{C08D5964-C42F-48EE-A893-2396F9562A7C}" = Windows Live Mesh
"{C1C9D199-B4DD-4895-92DD-9A726A2FE341}" = Windows Live Writer
"{C2FD7DB5-FE30-49B6-8A2F-C5652E053C31}" = Ovládací prvok ActiveX programu Windows Live Mesh pre vzdialené pripojenia
"{C454280F-3C3E-4929-B60E-9E6CED5717E7}" = Windows Live Mail
"{C4BC5A5F-4A97-47CC-99C3-AB8E10572AFE}" = Wireless Console 3
"{C59C179C-668D-49A9-B6EA-0121CCFC1243}" = CyberLink LabelPrint
"{C66824E4-CBB3-4851-BB3F-E8CFD6350923}" = Windows Live Mail
"{C66A542D-B66B-4E67-84EA-F2D0383FBC14}" = TuneUp Utilities Language Pack (pl-PL)
"{C6B0D06D-7E83-8E13-195F-0EE6F8AE1A85}" = CCC Help Finnish
"{C75115A8-DEEC-B8C6-1FA6-617676DB4985}" = CCC Help Italian
"{C7DEE8F5-29D4-4A5E-823B-4A7850C5E53D}" = Windows Live'i fotogalerii
"{C8421D85-CA0E-4E93-A9A9-B826C4FB88EA}" = Windows Live Mail
"{C8773FDB-D0DB-BE52-D536-F48F9886B57B}" = Adobe Download Assistant
"{C877E454-FA36-409A-A00E-1240CEC61BBD}" = „Windows Live“ fotogalerija
"{CA227A9D-09BE-4BFB-9764-48FED2DA5454}" = Kontrolnik Windows Live Mesh ActiveX za oddaljene povezave
"{CB3F59BB-7858-41A1-A7EA-4B8A6FC7D431}" = Galeria fotografii usługi Windows Live
"{CB66242D-12B1-4494-82D2-6F53A7E024A3}" = Galerie foto Windows Live
"{CE95A79E-E4FC-4FFF-8A75-29F04B942FF2}" = Windows Live UX Platform
"{CF936193-C584-458C-B793-15FA945621AF}" = Windows Live fotoattēlu galerija
"{CF9DEFAA-12CD-4D04-AA45-F9F667D21E2E}" = Windows Live Movie Maker
"{CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE}" = Microsoft .NET Framework 4 Multi-Targeting Pack
"{D06F10C5-3EDD-4B29-A3B5-16BBB9A047F8}" = Windows Live Mesh
"{D07B1FDA-876B-4914-9E9A-309732B6D44F}" = Windows Live Mail
"{D0B44725-3666-492D-BEF6-587A14BD9BD9}" = MSVCRT_amd64
"{D14A8CCD-53AF-D5AF-A64C-54BF78026DE6}" = CCC Help Thai
"{D27DF849-C8C7-4892-A7F1-E0B381A1BD01}" = Windows Live Writer
"{D39F0676-163E-4595-A917-E28F99BBD4D2}" = ASUS AI Recovery
"{D417C96A-FCC7-4590-A1BB-FAF73F5BC98E}" = GTA San Andreas
"{D436F577-1695-4D2F-8B44-AC76C99E0002}" = Windows Live Photo Common
"{D45240D3-B6B3-4FF9-B243-54ECE3E10066}" = Windows Live Communications Platform
"{D47C66BE-0EB5-4587-93FE-D1E176C4B25C}" = Windows Live Messenger
"{D5A4E5F3-9ACD-412E-B380-F838DF9787B9}" = Windows Live Writer Resources
"{D952729C-FBCF-A0E6-844E-33D94E61AE7B}" = Catalyst Control Center InstallProxy
"{D952C4F9-2488-3723-84BE-1BFA907DCAC9}" = Google Talk Plugin
"{D987098B-3AD4-4E88-B80E-CF27A32D1955}" = Windows Live Writer Resources
"{DC3CF43E-7276-CD29-B7E6-9AF6164402BE}" = CCC Help Chinese Standard
"{DD1865F0-AD73-40FB-B23E-1822E02396FF}" = NVIDIA PhysX
"{DDC8BDEE-DCAC-404D-8257-3E8D4B782467}" = Windows Live Writer Resources
"{DECDCB7C-58CC-4865-91AF-627F9798FE48}" = Windows Live Mesh
"{E09C4DB7-630C-4F06-A631-8EA7239923AF}" = D3DX10
"{E19EB18F-5DBC-E5F9-0F4A-E562DB9A57D6}" = CCC Help Japanese
"{E3E71D07-CD27-46CB-8448-16D4FB29AA13}" = Microsoft WSE 3.0 Runtime
"{E5377D46-83C5-445A-A1F1-830336B42A10}" = Windows Live Galerija fotografija
"{E55E0C35-AC3C-4683-BA2F-834348577B80}" = Windows Live Writer
"{E59969EA-3B5B-4B24-8B94-43842A7FBFE9}" = Fotogalerija Windows Live
"{E5B21F11-6933-4E0B-A25C-7963E3C07D11}" = Windows Live Messenger
"{E9AD2143-26D5-4201-BED1-19DCC03B407D}" = Windows Live Messenger
"{EA777812-4905-4C08-8F6E-13BDCC734609}" = Windows Live UX Platform Language Pack
"{EAB1BDF2-734A-4D44-9169-7615D185C974}" = Windows Live Mesh
"{EBE030DD-D404-4D92-85E9-8C3624820808}_is1" = Light Image Resizer 4.3.1.0
"{EC20FB81-9B5E-4B97-92A2-8DC52548EFCE}" = Windows Live Mesh
"{EC8BD21F-0CA0-4BBF-97D9-4A52B30041A1}" = ASUS Virtual Camera
"{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}" = Microsoft SQL Server 2005 Compact Edition [ENU]
"{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F2979AAA-FDD7-4CB3-93BC-5C24D965D679}" = Windows Live Messenger
"{F35DC85A-E96B-496B-ABE7-F04192824856}" = Windows Live Messenger
"{F458788C-65EC-398F-7FFC-67D96A2EEE65}" = CCC Help Greek
"{F4BEA6C1-AAC3-4810-AAEA-588E26E0F237}" = Windows Live UX Platform Language Pack
"{F66430D8-08E6-4C96-B9B7-90E66E27D58C}" = Windows Live Mail
"{F783464C-C7C6-4E9B-AC40-BC90E5414BAF}" = Windows Live Messenger
"{F80E5450-3EF3-4270-B26C-6AC53BEC5E76}" = Windows Live Movie Maker
"{FA20D803-14E5-4B00-8F03-B519D46F9D4A}" = Windows Live Messenger
"{FA540E67-095C-4A1B-97BA-4D547DEC9AF4}" = ASUS Live Update
"{FA6CF94F-DACF-4FE7-959D-55C421B91B17}" = Windows Live Mail
"{FB3D07AE-73D0-47A9-AC12-6F50BF8B6202}" = Windows Live Movie Maker
"{FB79FDB7-4DE1-453D-99FE-9A880F57380E}" = Windows Live Fotogalerie
"{FB83EAC4-E3F6-4666-B45B-44522F2344B6}" = Brother MFL-Pro Suite DCP-J315W
"{FE044230-9CA5-43F7-9B58-5AC5A28A1F33}" = Windows Live Essentials
"{FE62C88B-425B-4BDE-8B70-CD5AE3B83176}" = Windows Live Essentials
"{FEEF7F78-5876-438B-B554-C4CC426A4302}" = Windows Live Essentials
"{FF737490-5A2D-4269-9D82-97DB2F7C0B09}" = Windows Live Movie Maker
"Adobe AIR" = Adobe AIR
"Adobe Flash Player ActiveX" = Adobe Flash Player 11 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin
"Adobe Shockwave Player" = Adobe Shockwave Player 11.6
"Asus Vibe2.0" = AsusVibe2.0
"ASUS WebStorage" = ASUS WebStorage
"ASUS_Screensaver" = ASUS_Screensaver
"Audacity_is1" = Audacity 2.0.2
"AutoItv3" = AutoIt v3.3.8.1
"AVG Secure Search" = AVG Security Toolbar
"Cheat Engine 6.2_is1" = Cheat Engine 6.2
"com.adobe.downloadassistant.AdobeDownloadAssistant" = Adobe Download Assistant
"DAEMON Tools Pro" = DAEMON Tools Pro
"Diablo II" = Diablo II
"Fraps" = Fraps (remove only)
"Freemake Video Converter_is1" = Freemake Video Converter wersja 3.2.1
"GoldWave v5.67" = GoldWave v5.67
"InstallShield_{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}" = CyberLink Media Suite
"InstallShield_{40BF1E83-20EB-11D8-97C5-0009C5020658}" = CyberLink Power2Go
"InstallShield_{C59C179C-668D-49A9-B6EA-0121CCFC1243}" = CyberLink LabelPrint
"Internet Manager" = Internet Manager
"LogMeIn Hamachi" = LogMeIn Hamachi
"Microsoft Visual C++ 2010 Express - ENU" = Microsoft Visual C++ 2010 Express - ENU
"Microsoft Visual Studio 2010 Service Pack 1" = Microsoft Visual Studio 2010 Service Pack 1
"Mozilla Firefox 18.0.2 (x86 pl)" = Mozilla Firefox 18.0.2 (x86 pl)
"MozillaMaintenanceService" = Mozilla Maintenance Service
"MyHappyGames" = MyHappyGames
"NosTale(DE)_is1" = Nostale(DE)
"NosTale(IT)_is1" = Nostale(IT)
"Notepad++" = Notepad++
"Office14.Click2Run" = Moduł Szybka instalacja pakietu Microsoft Office 2010
"Office14.POWERPOINTR" = Microsoft PowerPoint Home and Student 2010
"Office14.SingleImage" = Microsoft Office 2010 dla Użytkowników Domowych i Małych Firm
"OpenAL" = OpenAL
"SciTE4AutoIt3" = SciTE4AutoIt3 6/10/2012
"ST6UNST #1" = Hero Editor V0.96
"ST6UNST #2" = Hero Editor V1.04
"SubEdit-Player_is1" = SubEdit-Player
"uTorrent" = µTorrent
"Warlords Battlecry III_is1" = Warlords Battlecry III
"WinLiveSuite" = Podstawowe programy Windows Live

========== HKEY_CURRENT_USER Uninstall List ==========

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Kalydo App Nostale" = Nostale
"KalydoPlayer" = Kalydo Player 4.10.02
"UnityWebPlayer" = Unity Web Player

========== Last 20 Event Log Errors ==========

[ Application Events ]
Error - 2012-07-19 07:53:29 | Computer Name = Asus | Source = Application Error | ID = 1000
Description = Nazwa aplikacji powodującej błąd: FBAgent.exe, wersja: 1.0.10.0, sygnatura
czasowa: 0x4d6f576c Nazwa modułu powodującego błąd: ntdll.dll, wersja: 6.1.7601.17725,
sygnatura czasowa: 0x4ec4aa8e Kod wyjątku: 0xc0000005 Przesunięcie błędu: 0x00000000000532d0
Identyfikator
procesu powodującego błąd: 0x538 Godzina uruchomienia aplikacji powodującej błąd:
0x01cd65a50e33c8c1 Ścieżka aplikacji powodującej błąd: C:\Windows\system32\FBAgent.exe
Ścieżka
modułu powodującego błąd: C:\Windows\SYSTEM32\ntdll.dll Identyfikator raportu: 5ab767d3-d198-11e1-970f-5404a6e3a899

Error - 2012-07-19 08:04:04 | Computer Name = Asus | Source = CVHSVC | ID = 100
Description = Tylko informacje. (Patch task for {90140011-0066-0415-0000-0000000FF1CE}):
DownloadLatest Failed: Nie można określić nazwy serwera lub adresu.

Error - 2012-07-19 13:38:28 | Computer Name = Asus | Source = CVHSVC | ID = 100
Description = Tylko informacje. (Patch task for {90140011-0066-0415-0000-0000000FF1CE}):
DownloadLatest Failed: Nie można określić nazwy serwera lub adresu.

Error - 2012-07-20 04:16:40 | Computer Name = Asus | Source = CVHSVC | ID = 100
Description = Tylko informacje. (Patch task for {90140011-0066-0415-0000-0000000FF1CE}):
DownloadLatest Failed: Nie można określić nazwy serwera lub adresu.

Error - 2012-07-20 06:44:39 | Computer Name = Asus | Source = CVHSVC | ID = 100
Description = Tylko informacje. (Patch task for {90140011-0066-0415-0000-0000000FF1CE}):
DownloadLatest Failed:

Error - 2012-07-20 09:12:47 | Computer Name = Asus | Source = CVHSVC | ID = 100
Description = Tylko informacje. (Patch task for {90140011-0066-0415-0000-0000000FF1CE}):
DownloadLatest Failed: Nie można określić nazwy serwera lub adresu.

Error - 2012-07-21 15:06:26 | Computer Name = Asus | Source = CVHSVC | ID = 100
Description = Tylko informacje. (Patch task for {90140011-0066-0415-0000-0000000FF1CE}):
DownloadLatest Failed: Nie można określić nazwy serwera lub adresu.

Error - 2012-07-22 12:49:11 | Computer Name = Asus | Source = CVHSVC | ID = 100
Description = Tylko informacje. (Patch task for {90140011-0066-0415-0000-0000000FF1CE}):
DownloadLatest Failed: Nie można określić nazwy serwera lub adresu.

Error - 2012-07-23 06:33:10 | Computer Name = Asus | Source = Application Error | ID = 1000
Description = Nazwa aplikacji powodującej błąd: FBAgent.exe, wersja: 1.0.10.0, sygnatura
czasowa: 0x4d6f576c Nazwa modułu powodującego błąd: ntdll.dll, wersja: 6.1.7601.17725,
sygnatura czasowa: 0x4ec4aa8e Kod wyjątku: 0xc0000005 Przesunięcie błędu: 0x00000000000532d0
Identyfikator
procesu powodującego błąd: 0x514 Godzina uruchomienia aplikacji powodującej błąd:
0x01cd68be80f2f0fa Ścieżka aplikacji powodującej błąd: C:\Windows\system32\FBAgent.exe
Ścieżka
modułu powodującego błąd: C:\Windows\SYSTEM32\ntdll.dll Identyfikator raportu: cc2bb0c6-d4b1-11e1-9b7f-5404a6e3a899

Error - 2012-07-24 12:30:07 | Computer Name = Asus | Source = Application Error | ID = 1000
Description = Nazwa aplikacji powodującej błąd: FBAgent.exe, wersja: 1.0.10.0, sygnatura
czasowa: 0x4d6f576c Nazwa modułu powodującego błąd: ntdll.dll, wersja: 6.1.7601.17725,
sygnatura czasowa: 0x4ec4aa8e Kod wyjątku: 0xc0000005 Przesunięcie błędu: 0x00000000000532d0
Identyfikator
procesu powodującego błąd: 0x56c Godzina uruchomienia aplikacji powodującej błąd:
0x01cd69b988972102 Ścieżka aplikacji powodującej błąd: C:\Windows\system32\FBAgent.exe
Ścieżka
modułu powodującego błąd: C:\Windows\SYSTEM32\ntdll.dll Identyfikator raportu: d3a9cacb-d5ac-11e1-97a6-5404a6e3a899

[ Media Center Events ]
Error - 2012-02-22 11:33:01 | Computer Name = Asus | Source = MCUpdate | ID = 0
Description = 16:33:01 - Błąd podczas nawiązywania połączenia z Internetem. 16:33:01
- Nie można skontaktować się z serwerem..

Error - 2012-05-14 07:09:37 | Computer Name = Asus | Source = MCUpdate | ID = 0
Description = 13:09:37 - Błąd podczas nawiązywania połączenia z Internetem. 13:09:37
- Nie można skontaktować się z serwerem..

Error - 2012-05-14 07:09:46 | Computer Name = Asus | Source = MCUpdate | ID = 0
Description = 13:09:42 - Błąd podczas nawiązywania połączenia z Internetem. 13:09:42
- Nie można skontaktować się z serwerem..

Error - 2012-11-27 17:28:30 | Computer Name = Asus | Source = MCUpdate | ID = 0
Description = 22:28:30 - Nie można pobrać pakietu MCESpotlight (Błąd: Połączenie
podstawowe zostało zakończone: Nie można ustanowić relacji zaufania dla bezpiecznego
kanału SSL/TLS.)

[ System Events ]
Error - 2013-02-22 21:30:46 | Computer Name = Asus | Source = DCOM | ID = 10010
Description =

Error - 2013-02-23 06:30:18 | Computer Name = Asus | Source = sptd | ID = 262148
Description = Sterownik wykrył błąd wewnętrzny w swoich strukturach danych dla .

Error - 2013-02-23 06:30:54 | Computer Name = Asus | Source = Application Popup | ID = 875
Description = Sterownik atksgt.sys został zablokowany dla ładowania.

Error - 2013-02-23 06:30:54 | Computer Name = Asus | Source = Service Control Manager | ID = 7000
Description = Nie można uruchomić usługi atksgt z powodu następującego błędu: %%1275

Error - 2013-02-23 06:30:57 | Computer Name = Asus | Source = Service Control Manager | ID = 7001
Description = Usługa AVGIDSAgent zależy od usługi AVGIDSDriver, której nie można
uruchomić z powodu następującego błędu: %%1058

Error - 2013-02-23 06:30:58 | Computer Name = Asus | Source = Service Control Manager | ID = 7009
Description = Upłynął limit czasu (30000 ms) podczas oczekiwania na połączenie się
z usługą Internet Manager. OUC.

Error - 2013-02-23 06:30:58 | Computer Name = Asus | Source = Service Control Manager | ID = 7000
Description = Nie można uruchomić usługi Internet Manager. OUC z powodu następującego
błędu: %%1053

Error - 2013-02-23 06:31:01 | Computer Name = Asus | Source = Service Control Manager | ID = 7024
Description = Usługa Zapora AVG zakończyła działanie; wystąpił specyficzny dla niej
błąd %%-536805289.

Error - 2013-02-23 06:31:53 | Computer Name = Asus | Source = Service Control Manager | ID = 7034
Description = Usługa AFBAgent niespodziewanie zakończyła pracę. Wystąpiło to razy:
1.

Error - 2013-02-23 06:31:53 | Computer Name = Asus | Source = Service Control Manager | ID = 7026
Description = Nie można załadować następujących sterowników startu rozruchowego
lub systemowego: sptd


< End of report >

 

Gość

Gość

Opublikowano

Gość

Opublikowano

Użyj combofixa i pobierz Avirę. Za chwilę sprawdzę logi OTL.

Fr3shMak3r Pomocnik

Fr3shMak3r

Opublikowano
Pomocnik

Fr3shMak3r

Opublikowano

Uruchom OTL i w Oknie Własne Opcje Skanowania :

 

 

 

:OTL
SRV:[b]64bit:[/b] - File not found [Auto | Running] -- C:\Program Files\Trend Micro\AMSP\coreServiceShell.exe coreFrameworkHost.exe -- (Amsp)
O3:[b]64bit:[/b] - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O4 - HKLM..\Run: [vProt] C:\Program Files (x86)\AVG Secure Search\vprot.exe ()
O4 - HKCU..\Run: [ChomikBox] C:\Program Files (x86)\ChomikBox\chomikbox.exe File not found
O4 - HKCU..\Run: [SpeedyDrive] "D:\SpeedyDrive\SpeedyDrive.exe" File not found
O13[b]64bit:[/b] - gopher Prefix: missing
O13 - gopher Prefix: missing
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_37-windows-i586.cab (Reg Error: Value error.)
O16 - DPF: {CAFEEFAC-0016-0000-0037-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_37-windows-i586.cab (Java Plug-in 1.6.0_37)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_37-windows-i586.cab (Java Plug-in 10.13.2)
O18:[b]64bit:[/b] - Protocol\Handler\livecall - No CLSID value found
O18:[b]64bit:[/b] - Protocol\Handler\ms-help - No CLSID value found
O18:[b]64bit:[/b] - Protocol\Handler\msnim - No CLSID value found
O18:[b]64bit:[/b] - Protocol\Handler\skype4com - No CLSID value found
O18:[b]64bit:[/b] - Protocol\Handler\viprotocol - No CLSID value found
O18:[b]64bit:[/b] - Protocol\Handler\wlmailhtml - No CLSID value found
O18:[b]64bit:[/b] - Protocol\Handler\wlpg - No CLSID value found
O21:[b]64bit:[/b] - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O33 - MountPoints2\{194a06c8-5323-11e1-a40b-5404a6e3a899}\Shell - "" = AutoRun
O33 - MountPoints2\{194a06c8-5323-11e1-a40b-5404a6e3a899}\Shell\AutoRun\command - "" = F:\AutoRun.exe
O33 - MountPoints2\{194a06e4-5323-11e1-a40b-5404a6e3a899}\Shell - "" = AutoRun
O33 - MountPoints2\{194a06e4-5323-11e1-a40b-5404a6e3a899}\Shell\AutoRun\command - "" = F:\AutoRun.exe
O33 - MountPoints2\{194a0839-5323-11e1-a40b-5404a6e3a899}\Shell - "" = AutoRun
O33 - MountPoints2\{194a0839-5323-11e1-a40b-5404a6e3a899}\Shell\AutoRun\command - "" = G:\AutoRun.exe
O33 - MountPoints2\{5290ff5b-77aa-11e2-a2d3-5404a6e3a899}\Shell - "" = AutoRun
O33 - MountPoints2\{5290ff5b-77aa-11e2-a2d3-5404a6e3a899}\Shell\AutoRun\command - "" = G:\AutoRun.exe
O33 - MountPoints2\{7842a207-a6ae-11e1-b059-5404a6e3a899}\Shell - "" = AutoRun
O33 - MountPoints2\{7842a207-a6ae-11e1-b059-5404a6e3a899}\Shell\AutoRun\command - "" = F:\Launcher.exe


:Files


C:\Users\Krzyś\AppData\Local\{4AEAC4CA-64E0-4A41-AA36-30C08D686427}
C:\Users\Krzyś\AppData\Local\{D93C2C80-3409-4DF2-A5A6-B684C5C3D5C4}
C:\Users\Krzyś\AppData\Local\{CA6A4095-19DA-466F-A37A-62ED151AF133}
C:\Users\Krzyś\AppData\Local\{7AA77393-FAC6-4A2D-99E5-E8F96990D3EB}
C:\ProgramData\Solidshield
C:\Users\Krzyś\AppData\Local\{39306E89-5E68-4243-A974-7FBC763D15EF}
C:\ProgramData\{C4ABDBC8-1C81-42C9-BFFC-4A68511E9E4F}
C:\Users\Krzyś\AppData\Roaming\OpenCandy
C:\Users\Krzyś\AppData\Local\{867B16A9-35F6-4FCB-9467-2561A9D912C3}
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-3740202298-632069091-2289758739-1001UA.job
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\Adobe Flash Player Updater.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-3740202298-632069091-2289758739-1001Core.job
C:\Windows\SysNative\perfh015.dat
C:\Windows\SysNative\perfh009.dat
C:\Windows\SysNative\perfc015.dat
C:\Windows\SysNative\perfc009.dat
C:\Users\Krzyś\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini

:Reg
[-HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2]

:Commands
[emptytemp]

 

I klik na wykonaj skrypt i pokazujesz log z usuwania .

Te pliki sprawdź na virustotal.com

 

 

 

C:\Users\Krzyś\AppData\Local\Resmon.ResmonCfg
C:\Users\Krzyś\AppData\Local\http___mvc.craften.de

1364047611-U477327.png

 

STOP komentarzom typu: "AMD to gówno"! Zanim coś napiszesz, to pomyśl jak odbiorą to inni !

 

 

 

Nie pisać mi na PW w sprawach pomocy od tego macie dział komputery!!!

I nie pomagam na PW!

 

 

 

 

gardenscapes cheats

 

bakery story 2 cheat

Zumaari™ Pomocnik

Zumaari™

Opublikowano
Pomocnik

Zumaari™

Opublikowano

Użyj combofixa i pobierz Avirę. Za chwilę sprawdzę logi OTL.

Coś nie sprawdziłeś...

 

@Topic Ja bym kompa zresetował.Zawsze tak robie, jak mnie virusy atakują :D

Jeśli sądzisz, że choć trochę obchodzi mnie twoje zdanie i to co o mnie myślisz - jesteś wbłedzie.



>>>Zapraszam grafików<<<


Gość

Gość

Opublikowano

Gość

Opublikowano

@2up

Skanowałem ten cfg plik ale czysty, a tego drugiego nie ma.

 

 

OTL Mi się ciągle ładuje. Na początku był brak odpowiedzi.

dam edita jak powstanie log

 

@edit

Wyswietliło mi sie w notatniku coś pisało. Pierwsze zdanie "all process killed" Tylko ze nie zapisałem tego ... Myślałem że sie gdzieś zapisało.

matheeo1337 Pomocnik

matheeo1337

Opublikowano
Pomocnik

matheeo1337

Opublikowano

@edit

dodatkowo autorun.inf na dysku D. AVG ciągle wykrywa w nim Worm , ale nie może go usunąć. Jak próbuje go odpalić pisze "odmowa dostępu".

 

To weź uruchom komputer w trybie awaryjnym i zaloguj się na konto (musi mieć uprawnienia administratora) i wtedy skanuj kompa antywirusem i spybotem. Jak mi takie coś wyskakiwało to zawsze tak robiłem i pomagało.

Arnold Boczek Pasjonat

Arnold Boczek

Opublikowano
Pasjonat

Arnold Boczek

Opublikowano

Miałem podobne wirusy i w tym samym miejscu się tworzyły. Użyłem MalwareBytes i się pokasowały. Zostały jedynie stare wyjadacze, które nic nie robią.

photo261314.png


Fr3shMak3r Pomocnik

Fr3shMak3r

Opublikowano
Pomocnik

Fr3shMak3r

Opublikowano

Mizzer tak masz racje szczególnie te w TEMPACH zawsze się namnażały .

Tylko że ja nie widzę sterownika , autoryzacji w zaporze oraz polis w OTL .

Chociaż ten wirus bywa w plikach wykonywalnych cały czas coraz gorsze wirusy powstają .

A szczególnie Wirus Parite co nie posiada żadnej usługi ani nic i rozmnaża się w plikach wykonywalnych .

1364047611-U477327.png

 

STOP komentarzom typu: "AMD to gówno"! Zanim coś napiszesz, to pomyśl jak odbiorą to inni !

 

 

 

Nie pisać mi na PW w sprawach pomocy od tego macie dział komputery!!!

I nie pomagam na PW!

 

 

 

 

gardenscapes cheats

 

bakery story 2 cheat

Mizzer Mentor

Mizzer

Opublikowano
Mentor

Mizzer

Opublikowano

Przeczyść tym salitykillerem dopóty dopóki wynik zarażonych plików będzie równy 0. Dodatkowo możesz na końcu wykonać pełne skanowanie systemu jakimś dobrym antywirusem. Tylko nie Nodem.....

umarł Mizzer, niech żyje Mizzer...

Gość

Gość

Opublikowano

Gość

Opublikowano

Macie jakiś darmowy antywirus (dobry, nie jakiś tam AVG) który mógłbym na win 7 zainstalować

Fr3shMak3r Pomocnik

Fr3shMak3r

Opublikowano
Pomocnik

Fr3shMak3r

Opublikowano

Wątpie że to Sality ale warto zobaczyć.

Włącz na jakieś 3-5 min tego SalityKillera jeśli nic nie wykryje to nie Sality.

 

Uruchom OTL i w oknie własne opcje skanowania :

 

 

 

:Files
netsh firewall reset /C

 

I klik na wykonaj skrypt .

Użyj sprzątanie w OTL .

A co do antywirusa to poleciłbym ci Avasta .

1364047611-U477327.png

 

STOP komentarzom typu: "AMD to gówno"! Zanim coś napiszesz, to pomyśl jak odbiorą to inni !

 

 

 

Nie pisać mi na PW w sprawach pomocy od tego macie dział komputery!!!

I nie pomagam na PW!

 

 

 

 

gardenscapes cheats

 

bakery story 2 cheat

Mizzer Mentor

Mizzer

Opublikowano
Mentor

Mizzer

Opublikowano

Mój avast po zarejestrowaniu bezpłatnym wykrywa jak na razie wszystko więc chyba moge Ci go polecić.

umarł Mizzer, niech żyje Mizzer...

Gość

Gość

Opublikowano

Gość

Opublikowano

Ten salitykiller , możecie mi dać linka? bo nie chce jakiegoś syfu pobrać.

Zarchiwizowany

Ten temat przebywa obecnie w archiwum. Dodawanie nowych odpowiedzi zostało zablokowane.

Tematy
×
×
  • Dodaj nową pozycję...