x-kom hosting

Nagły spadek prędkości łącza.

verold
utworzono
utworzono (edytowane)

Od około tygodnia na moim łączu 5mb/s max prędkość pobierania nie przekracza 60kb/s. Problem dotyczy tylko mojego laptopa w całej sieci domowej. System sprawdzony Malwarebytes Anti-Malware, Ad - Aware, Spybot - Search & Destroy, Avastem i Adware Cleanerem bez skutku.

OTL:
[log]
OTL logfile created on: 2012-06-09 23:36:13 - Run 1
OTL by OldTimer - Version 3.2.48.0 Folder = C:\Users\Verold\Desktop\logi
Windows Vista Home Premium Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.19190)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd

2,00 Gb Total Physical Memory | 1,21 Gb Available Physical Memory | 60,74% Memory free
4,23 Gb Paging File | 2,76 Gb Available in Paging File | 65,18% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 93,16 Gb Total Space | 0,91 Gb Free Space | 0,98% Space Free | Partition Type: NTFS
Drive E: | 91,69 Gb Total Space | 1,21 Gb Free Space | 1,32% Space Free | Partition Type: NTFS
Drive G: | 596,17 Gb Total Space | 4,66 Gb Free Space | 0,78% Space Free | Partition Type: NTFS

Computer Name: LAPTOP-WARSZAWA | User Name: Verold | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

[color=#E56717]========== Processes (SafeList) ==========[/color]

PRC - [2012-06-09 23:23:57 | 000,596,480 | ---- | M] (OldTimer Tools) -- C:\Users\Verold\Desktop\logi\OTL.exe
PRC - [2012-04-04 15:56:40 | 000,654,408 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
PRC - [2012-03-07 01:15:17 | 004,241,512 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\AvastUI.exe
PRC - [2012-03-07 01:15:14 | 000,044,768 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
PRC - [2012-03-07 01:15:13 | 000,134,920 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\afwServ.exe
PRC - [2012-01-19 19:08:34 | 003,477,312 | ---- | M] (DT Soft Ltd) -- C:\Program Files\DAEMON Tools Lite\DTLite.exe
PRC - [2011-12-09 19:23:30 | 001,596,032 | ---- | M] (Nullsoft, Inc.) -- C:\Program Files\Winamp\winamp.exe
PRC - [2011-11-09 23:07:44 | 000,291,840 | ---- | M] (Advanced Micro Devices, Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
PRC - [2010-02-02 01:54:52 | 007,418,368 | ---- | M] (OpenOffice.org) -- C:\Program Files\OpenOffice.org 3\program\soffice.bin
PRC - [2010-02-02 01:54:50 | 007,424,000 | ---- | M] (OpenOffice.org) -- C:\Program Files\OpenOffice.org 3\program\soffice.exe
PRC - [2009-12-24 09:55:22 | 001,732,960 | ---- | M] (Diskeeper Corporation) -- E:\Program Files\Diskeeper Corporation\Diskeeper\DkService.exe
PRC - [2009-11-25 12:54:25 | 000,045,056 | ---- | M] () -- C:\Windows\System32\UTSCSI.EXE
PRC - [2009-09-12 01:34:12 | 001,488,128 | ---- | M] (O&O Software GmbH) -- C:\Program Files\OO Software\Defrag\oodag.exe
PRC - [2009-04-11 08:27:36 | 002,926,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
PRC - [2009-04-11 08:27:28 | 000,069,120 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\conime.exe
PRC - [2008-12-03 12:47:34 | 001,205,760 | ---- | M] (Nokia) -- C:\Program Files\Nokia\Nokia PC Suite 7\PCSuite.exe
PRC - [2008-11-11 09:38:06 | 000,620,544 | ---- | M] (Nokia.) -- C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
PRC - [2008-09-15 04:00:48 | 000,431,472 | ---- | M] (Juniper Networks) -- C:\Program Files\Juniper Networks\Common Files\dsNcService.exe
PRC - [2008-07-07 09:34:59 | 000,167,936 | ---- | M] (PowerISO Computing, Inc.) -- C:\Program Files\PowerISO\PWRISOVM.EXE
PRC - [2008-06-03 08:02:34 | 000,119,808 | ---- | M] () -- C:\Program Files\PC Connectivity Solution\Transports\NclRSSrv.exe
PRC - [2008-05-27 22:40:24 | 000,611,664 | ---- | M] (Lavasoft) -- E:\Program Files\Lavasoft\Ad-Aware\aawservice.exe
PRC - [2007-05-23 15:57:12 | 000,509,496 | ---- | M] (TOSHIBA Corporation) -- C:\Program Files\TOSHIBA\SmoothView\SmoothView.exe
PRC - [2007-05-22 16:32:00 | 000,538,744 | ---- | M] (TOSHIBA Corporation) -- C:\Program Files\TOSHIBA\FlashCards\TCrdMain.exe
PRC - [2007-05-17 20:12:30 | 000,114,688 | ---- | M] (TOSHIBA Corporation) -- C:\Program Files\TOSHIBA\TOSHIBA DVD PLAYER\TNaviSrv.exe
PRC - [2007-03-29 10:39:00 | 000,427,576 | ---- | M] (TOSHIBA Corporation) -- C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe
PRC - [2007-03-29 10:39:00 | 000,411,192 | ---- | M] (TOSHIBA Corporation) -- C:\Program Files\TOSHIBA\Power Saver\TPwrMain.exe
PRC - [2007-03-09 16:17:06 | 002,170,880 | ---- | M] (TOSHIBA CORPORATION.) -- C:\Program Files\TOSHIBA\Bluetooth Toshiba Stack\TosBtProc.exe
PRC - [2007-03-07 14:01:18 | 000,274,432 | ---- | M] (TOSHIBA CORPORATION.) -- c:\Program Files\TOSHIBA\Bluetooth Toshiba Stack\TosBtHSP.exe
PRC - [2007-02-27 20:21:10 | 000,278,528 | ---- | M] (TOSHIBA CORPORATION.) -- c:\Program Files\TOSHIBA\Bluetooth Toshiba Stack\TosA2dp.exe
PRC - [2007-02-27 19:57:56 | 000,278,528 | ---- | M] (TOSHIBA CORPORATION.) -- c:\Program Files\TOSHIBA\Bluetooth Toshiba Stack\TosAVRC.exe
PRC - [2007-02-27 14:31:34 | 002,756,608 | ---- | M] (TOSHIBA CORPORATION.) -- C:\Program Files\TOSHIBA\Bluetooth Toshiba Stack\TosBtMng.exe
PRC - [2007-02-25 21:55:18 | 000,125,048 | ---- | M] (TOSHIBA CORPORATION) -- c:\Program Files\TOSHIBA\Bluetooth Toshiba Stack\TosBtSrv.exe
PRC - [2007-01-30 17:47:48 | 000,307,200 | ---- | M] (TOSHIBA CORPORATION.) -- c:\Program Files\TOSHIBA\Bluetooth Toshiba Stack\TosOBEX.exe
PRC - [2006-11-14 22:02:36 | 001,372,160 | ---- | M] (TOSHIBA CORPORATION) -- C:\Program Files\TOSHIBA\ConfigFree\NDSTray.exe
PRC - [2006-11-14 21:19:42 | 000,405,504 | ---- | M] (TOSHIBA CORPORATION) -- C:\Program Files\TOSHIBA\ConfigFree\CFSwMgr.exe
PRC - [2006-11-14 20:33:10 | 000,040,960 | ---- | M] (TOSHIBA CORPORATION) -- C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe
PRC - [2006-11-06 17:14:44 | 000,034,352 | ---- | M] () -- C:\Program Files\TOSHIBA\Utilities\KeNotify.exe
PRC - [2006-11-02 11:45:59 | 000,215,552 | ---- | M] (Microsoft Corporation) -- C:\Windows\WindowsMobile\wmdSync.exe
PRC - [2006-10-05 13:10:12 | 000,009,216 | ---- | M] (Agere Systems) -- C:\Windows\System32\agrsmsvc.exe
PRC - [2006-05-25 19:30:16 | 000,114,688 | ---- | M] (TOSHIBA Corporation) -- C:\Windows\System32\TODDSrv.exe
PRC - [2006-01-23 23:14:10 | 000,069,632 | ---- | M] (TOSHIBA CORPORATION.) -- c:\Program Files\TOSHIBA\Bluetooth Toshiba Stack\TosBtHid.exe


[color=#E56717]========== Modules (No Company Name) ==========[/color]

MOD - [2012-06-09 20:12:52 | 000,014,848 | ---- | M] () -- C:\Users\Verold\AppData\Local\Temp\WLZA872.tmp\in_wm.lng
MOD - [2012-06-09 20:12:51 | 000,323,584 | ---- | M] () -- C:\Users\Verold\AppData\Local\Temp\WLZA872.tmp\winamp.lng
MOD - [2012-06-09 20:12:51 | 000,161,792 | ---- | M] () -- C:\Users\Verold\AppData\Local\Temp\WLZA872.tmp\vis_milk2.lng
MOD - [2012-06-09 20:12:51 | 000,087,552 | ---- | M] () -- C:\Users\Verold\AppData\Local\Temp\WLZA872.tmp\vis_avs.lng
MOD - [2012-06-09 20:12:51 | 000,046,592 | ---- | M] () -- C:\Users\Verold\AppData\Local\Temp\WLZA872.tmp\ml_pmp.lng
MOD - [2012-06-09 20:12:51 | 000,045,056 | ---- | M] () -- C:\Users\Verold\AppData\Local\Temp\WLZA872.tmp\pmp_wifi.lng
MOD - [2012-06-09 20:12:51 | 000,036,864 | ---- | M] () -- C:\Users\Verold\AppData\Local\Temp\WLZA872.tmp\ombrowser.lng
MOD - [2012-06-09 20:12:51 | 000,016,896 | ---- | M] () -- C:\Users\Verold\AppData\Local\Temp\WLZA872.tmp\out_ds.lng
MOD - [2012-06-09 20:12:51 | 000,014,336 | ---- | M] () -- C:\Users\Verold\AppData\Local\Temp\WLZA872.tmp\ml_wire.lng
MOD - [2012-06-09 20:12:51 | 000,013,312 | ---- | M] () -- C:\Users\Verold\AppData\Local\Temp\WLZA872.tmp\ml_playlists.lng
MOD - [2012-06-09 20:12:51 | 000,012,800 | ---- | M] () -- C:\Users\Verold\AppData\Local\Temp\WLZA872.tmp\ml_plg.lng
MOD - [2012-06-09 20:12:51 | 000,010,752 | ---- | M] () -- C:\Users\Verold\AppData\Local\Temp\WLZA872.tmp\pmp_usb.lng
MOD - [2012-06-09 20:12:51 | 000,010,752 | ---- | M] () -- C:\Users\Verold\AppData\Local\Temp\WLZA872.tmp\pmp_android.lng
MOD - [2012-06-09 20:12:51 | 000,008,192 | ---- | M] () -- C:\Users\Verold\AppData\Local\Temp\WLZA872.tmp\ml_transcode.lng
MOD - [2012-06-09 20:12:51 | 000,007,680 | ---- | M] () -- C:\Users\Verold\AppData\Local\Temp\WLZA872.tmp\vis_nsfs.lng
MOD - [2012-06-09 20:12:51 | 000,007,168 | ---- | M] () -- C:\Users\Verold\AppData\Local\Temp\WLZA872.tmp\out_wave.lng
MOD - [2012-06-09 20:12:51 | 000,006,656 | ---- | M] () -- C:\Users\Verold\AppData\Local\Temp\WLZA872.tmp\pmp_ipod.lng
MOD - [2012-06-09 20:12:51 | 000,006,144 | ---- | M] () -- C:\Users\Verold\AppData\Local\Temp\WLZA872.tmp\tagz.lng
MOD - [2012-06-09 20:12:51 | 000,006,144 | ---- | M] () -- C:\Users\Verold\AppData\Local\Temp\WLZA872.tmp\out_disk.lng
MOD - [2012-06-09 20:12:51 | 000,005,632 | ---- | M] () -- C:\Users\Verold\AppData\Local\Temp\WLZA872.tmp\ml_rg.lng
MOD - [2012-06-09 20:12:51 | 000,004,608 | ---- | M] () -- C:\Users\Verold\AppData\Local\Temp\WLZA872.tmp\pmp_activesync.lng
MOD - [2012-06-09 20:12:51 | 000,004,096 | ---- | M] () -- C:\Users\Verold\AppData\Local\Temp\WLZA872.tmp\pmp_p4s.lng
MOD - [2012-06-09 20:12:51 | 000,004,096 | ---- | M] () -- C:\Users\Verold\AppData\Local\Temp\WLZA872.tmp\ml_orb.lng
MOD - [2012-06-09 20:12:51 | 000,003,584 | ---- | M] () -- C:\Users\Verold\AppData\Local\Temp\WLZA872.tmp\winampa.lng
MOD - [2012-06-09 20:12:51 | 000,003,584 | ---- | M] () -- C:\Users\Verold\AppData\Local\Temp\WLZA872.tmp\pmp_njb.lng
MOD - [2012-06-09 20:12:51 | 000,003,072 | ---- | M] () -- C:\Users\Verold\AppData\Local\Temp\WLZA872.tmp\playlist.lng
MOD - [2012-06-09 20:12:50 | 000,066,560 | ---- | M] () -- C:\Users\Verold\AppData\Local\Temp\WLZA872.tmp\burnlib.lng
MOD - [2012-06-09 20:12:50 | 000,054,272 | ---- | M] () -- C:\Users\Verold\AppData\Local\Temp\WLZA872.tmp\ml_local.lng
MOD - [2012-06-09 20:12:50 | 000,047,616 | ---- | M] () -- C:\Users\Verold\AppData\Local\Temp\WLZA872.tmp\ml_disc.lng
MOD - [2012-06-09 20:12:50 | 000,040,960 | ---- | M] () -- C:\Users\Verold\AppData\Local\Temp\WLZA872.tmp\gen_jumpex.lng
MOD - [2012-06-09 20:12:50 | 000,022,528 | ---- | M] () -- C:\Users\Verold\AppData\Local\Temp\WLZA872.tmp\in_mp3.lng
MOD - [2012-06-09 20:12:50 | 000,022,016 | ---- | M] () -- C:\Users\Verold\AppData\Local\Temp\WLZA872.tmp\gen_ff.lng
MOD - [2012-06-09 20:12:50 | 000,021,504 | ---- | M] () -- C:\Users\Verold\AppData\Local\Temp\WLZA872.tmp\gen_ml.lng
MOD - [2012-06-09 20:12:50 | 000,020,992 | ---- | M] () -- C:\Users\Verold\AppData\Local\Temp\WLZA872.tmp\in_midi.lng
MOD - [2012-06-09 20:12:50 | 000,018,432 | ---- | M] () -- C:\Users\Verold\AppData\Local\Temp\WLZA872.tmp\in_mod.lng
MOD - [2012-06-09 20:12:50 | 000,014,336 | ---- | M] () -- C:\Users\Verold\AppData\Local\Temp\WLZA872.tmp\ml_online.lng
MOD - [2012-06-09 20:12:50 | 000,013,312 | ---- | M] () -- C:\Users\Verold\AppData\Local\Temp\WLZA872.tmp\in_cdda.lng
MOD - [2012-06-09 20:12:50 | 000,012,800 | ---- | M] () -- C:\Users\Verold\AppData\Local\Temp\WLZA872.tmp\dsp_sps.lng
MOD - [2012-06-09 20:12:50 | 000,011,264 | ---- | M] () -- C:\Users\Verold\AppData\Local\Temp\WLZA872.tmp\in_vorbis.lng
MOD - [2012-06-09 20:12:50 | 000,011,264 | ---- | M] () -- C:\Users\Verold\AppData\Local\Temp\WLZA872.tmp\in_nsv.lng
MOD - [2012-06-09 20:12:50 | 000,011,264 | ---- | M] () -- C:\Users\Verold\AppData\Local\Temp\WLZA872.tmp\gen_hotkeys.lng
MOD - [2012-06-09 20:12:50 | 000,011,264 | ---- | M] () -- C:\Users\Verold\AppData\Local\Temp\WLZA872.tmp\auth.lng
MOD - [2012-06-09 20:12:50 | 000,009,216 | ---- | M] () -- C:\Users\Verold\AppData\Local\Temp\WLZA872.tmp\ml_downloads.lng
MOD - [2012-06-09 20:12:50 | 000,008,704 | ---- | M] () -- C:\Users\Verold\AppData\Local\Temp\WLZA872.tmp\ml_history.lng
MOD - [2012-06-09 20:12:50 | 000,008,192 | ---- | M] () -- C:\Users\Verold\AppData\Local\Temp\WLZA872.tmp\ml_devices.lng
MOD - [2012-06-09 20:12:50 | 000,007,680 | ---- | M] () -- C:\Users\Verold\AppData\Local\Temp\WLZA872.tmp\gen_tray.lng
MOD - [2012-06-09 20:12:50 | 000,007,168 | ---- | M] () -- C:\Users\Verold\AppData\Local\Temp\WLZA872.tmp\ml_autotag.lng
MOD - [2012-06-09 20:12:50 | 000,007,168 | ---- | M] () -- C:\Users\Verold\AppData\Local\Temp\WLZA872.tmp\in_dshow.lng
MOD - [2012-06-09 20:12:50 | 000,007,168 | ---- | M] () -- C:\Users\Verold\AppData\Local\Temp\WLZA872.tmp\gen_orgler.lng
MOD - [2012-06-09 20:12:50 | 000,007,168 | ---- | M] () -- C:\Users\Verold\AppData\Local\Temp\WLZA872.tmp\gen_crasher.lng
MOD - [2012-06-09 20:12:50 | 000,006,656 | ---- | M] () -- C:\Users\Verold\AppData\Local\Temp\WLZA872.tmp\enc_fhgaac.lng
MOD - [2012-06-09 20:12:50 | 000,006,144 | ---- | M] () -- C:\Users\Verold\AppData\Local\Temp\WLZA872.tmp\in_flac.lng
MOD - [2012-06-09 20:12:50 | 000,006,144 | ---- | M] () -- C:\Users\Verold\AppData\Local\Temp\WLZA872.tmp\enc_wma.lng
MOD - [2012-06-09 20:12:50 | 000,005,632 | ---- | M] () -- C:\Users\Verold\AppData\Local\Temp\WLZA872.tmp\in_wave.lng
MOD - [2012-06-09 20:12:50 | 000,005,632 | ---- | M] () -- C:\Users\Verold\AppData\Local\Temp\WLZA872.tmp\enc_lame.lng
MOD - [2012-06-09 20:12:50 | 000,005,120 | ---- | M] () -- C:\Users\Verold\AppData\Local\Temp\WLZA872.tmp\ml_impex.lng
MOD - [2012-06-09 20:12:50 | 000,005,120 | ---- | M] () -- C:\Users\Verold\AppData\Local\Temp\WLZA872.tmp\ml_bookmarks.lng
MOD - [2012-06-09 20:12:50 | 000,005,120 | ---- | M] () -- C:\Users\Verold\AppData\Local\Temp\WLZA872.tmp\in_avi.lng
MOD - [2012-06-09 20:12:50 | 000,004,608 | ---- | M] () -- C:\Users\Verold\AppData\Local\Temp\WLZA872.tmp\in_mp4.lng
MOD - [2012-06-09 20:12:50 | 000,004,608 | ---- | M] () -- C:\Users\Verold\AppData\Local\Temp\WLZA872.tmp\in_mkv.lng
MOD - [2012-06-09 20:12:50 | 000,004,096 | ---- | M] () -- C:\Users\Verold\AppData\Local\Temp\WLZA872.tmp\enc_wav.lng
MOD - [2012-06-09 20:12:50 | 000,004,096 | ---- | M] () -- C:\Users\Verold\AppData\Local\Temp\WLZA872.tmp\enc_flac.lng
MOD - [2012-06-09 20:12:50 | 000,003,584 | ---- | M] () -- C:\Users\Verold\AppData\Local\Temp\WLZA872.tmp\ml_nowplaying.lng
MOD - [2012-06-09 20:12:50 | 000,003,584 | ---- | M] () -- C:\Users\Verold\AppData\Local\Temp\WLZA872.tmp\ml_addons.lng
MOD - [2012-06-09 20:12:50 | 000,003,584 | ---- | M] () -- C:\Users\Verold\AppData\Local\Temp\WLZA872.tmp\in_swf.lng
MOD - [2012-06-09 20:12:50 | 000,003,584 | ---- | M] () -- C:\Users\Verold\AppData\Local\Temp\WLZA872.tmp\in_linein.lng
MOD - [2012-06-09 20:12:50 | 000,003,584 | ---- | M] () -- C:\Users\Verold\AppData\Local\Temp\WLZA872.tmp\in_flv.lng
MOD - [2012-02-24 01:16:42 | 000,090,112 | ---- | M] () -- C:\Program Files\Winamp\System\xml.w5s
MOD - [2012-02-24 01:16:42 | 000,083,968 | ---- | M] () -- C:\Program Files\Winamp\tataki.dll
MOD - [2012-02-24 01:16:42 | 000,047,616 | ---- | M] () -- C:\Program Files\Winamp\zlib.dll
MOD - [2012-02-24 01:16:42 | 000,035,328 | ---- | M] () -- C:\Program Files\Winamp\System\timer.w5s
MOD - [2012-02-24 01:16:42 | 000,021,504 | ---- | M] () -- C:\Program Files\Winamp\System\tagz.w5s
MOD - [2012-02-24 01:16:41 | 000,103,936 | ---- | M] () -- C:\Program Files\Winamp\System\png.w5s
MOD - [2012-02-24 01:16:41 | 000,084,480 | ---- | M] () -- C:\Program Files\Winamp\System\playlist.w5s
MOD - [2012-02-24 01:16:41 | 000,013,824 | ---- | M] () -- C:\Program Files\Winamp\System\primo.w5s
MOD - [2012-02-24 01:16:40 | 000,623,616 | ---- | M] () -- C:\Program Files\Winamp\System\jnetlib.w5s
MOD - [2012-02-24 01:16:40 | 000,154,624 | ---- | M] () -- C:\Program Files\Winamp\System\jpeg.w5s
MOD - [2012-02-24 01:16:40 | 000,044,544 | ---- | M] () -- C:\Program Files\Winamp\System\devices.w5s
MOD - [2012-02-24 01:16:40 | 000,019,456 | ---- | M] () -- C:\Program Files\Winamp\System\gif.w5s
MOD - [2012-02-24 01:16:40 | 000,019,456 | ---- | M] () -- C:\Program Files\Winamp\System\bmp.w5s
MOD - [2012-02-24 01:16:40 | 000,016,896 | ---- | M] () -- C:\Program Files\Winamp\System\dlmgr.w5s
MOD - [2012-02-24 01:16:40 | 000,016,384 | ---- | M] () -- C:\Program Files\Winamp\System\gracenote.w5s
MOD - [2012-02-24 01:16:40 | 000,014,336 | ---- | M] () -- C:\Program Files\Winamp\System\filereader.w5s
MOD - [2012-02-24 01:16:39 | 000,922,624 | ---- | M] () -- C:\Program Files\Winamp\System\aacdec.w5s
MOD - [2012-02-24 01:16:39 | 000,174,080 | ---- | M] () -- C:\Program Files\Winamp\System\auth.w5s
MOD - [2012-02-24 01:16:39 | 000,023,040 | ---- | M] () -- C:\Program Files\Winamp\System\albumart.w5s
MOD - [2012-02-24 01:16:37 | 000,170,496 | ---- | M] () -- C:\Program Files\Winamp\Plugins\pmp_ipod.dll
MOD - [2012-02-24 01:16:37 | 000,118,272 | ---- | M] () -- C:\Program Files\Winamp\Plugins\pmp_p4s.dll
MOD - [2012-02-24 01:16:37 | 000,113,664 | ---- | M] () -- C:\Program Files\Winamp\Plugins\pmp_wifi.dll
MOD - [2012-02-24 01:16:37 | 000,060,928 | ---- | M] () -- C:\Program Files\Winamp\Plugins\pmp_android.dll
MOD - [2012-02-24 01:16:37 | 000,053,760 | ---- | M] () -- C:\Program Files\Winamp\Plugins\pmp_usb.dll
MOD - [2012-02-24 01:16:37 | 000,052,224 | ---- | M] () -- C:\Program Files\Winamp\Plugins\out_ds.dll
MOD - [2012-02-24 01:16:37 | 000,029,184 | ---- | M] () -- C:\Program Files\Winamp\Plugins\pmp_activesync.dll
MOD - [2012-02-24 01:16:37 | 000,022,528 | ---- | M] () -- C:\Program Files\Winamp\Plugins\out_disk.dll
MOD - [2012-02-24 01:16:37 | 000,020,480 | ---- | M] () -- C:\Program Files\Winamp\Plugins\pmp_njb.dll
MOD - [2012-02-24 01:16:37 | 000,018,432 | ---- | M] () -- C:\Program Files\Winamp\Plugins\out_wave.dll
MOD - [2012-02-24 01:16:36 | 000,241,152 | ---- | M] () -- C:\Program Files\Winamp\Plugins\ml_pmp.dll
MOD - [2012-02-24 01:16:36 | 000,033,792 | ---- | M] () -- C:\Program Files\Winamp\Plugins\ml_rg.dll
MOD - [2012-02-24 01:16:36 | 000,032,256 | ---- | M] () -- C:\Program Files\Winamp\Plugins\ml_transcode.dll
MOD - [2012-02-24 01:16:35 | 000,294,400 | ---- | M] () -- C:\Program Files\Winamp\Plugins\ml_local.dll
MOD - [2012-02-24 01:16:35 | 000,124,928 | ---- | M] () -- C:\Program Files\Winamp\Plugins\ml_online.dll
MOD - [2012-02-24 01:16:35 | 000,083,456 | ---- | M] () -- C:\Program Files\Winamp\Plugins\ml_plg.dll
MOD - [2012-02-24 01:16:35 | 000,082,944 | ---- | M] () -- C:\Program Files\Winamp\Plugins\ml_playlists.dll
MOD - [2012-02-24 01:16:35 | 000,057,344 | ---- | M] () -- C:\Program Files\Winamp\Plugins\ml_impex.dll
MOD - [2012-02-24 01:16:34 | 000,313,344 | ---- | M] () -- C:\Program Files\Winamp\Plugins\in_wm.dll
MOD - [2012-02-24 01:16:34 | 000,249,856 | ---- | M] () -- C:\Program Files\Winamp\Plugins\ml_devices.dll
MOD - [2012-02-24 01:16:34 | 000,200,192 | ---- | M] () -- C:\Program Files\Winamp\Plugins\ml_disc.dll
MOD - [2012-02-24 01:16:34 | 000,052,224 | ---- | M] () -- C:\Program Files\Winamp\Plugins\ml_history.dll
MOD - [2012-02-24 01:16:34 | 000,028,672 | ---- | M] () -- C:\Program Files\Winamp\Plugins\ml_autotag.dll
MOD - [2012-02-24 01:16:34 | 000,028,160 | ---- | M] () -- C:\Program Files\Winamp\Plugins\ml_bookmarks.dll
MOD - [2012-02-24 01:16:34 | 000,016,896 | ---- | M] () -- C:\Program Files\Winamp\Plugins\in_wave.dll
MOD - [2012-02-24 01:16:33 | 000,290,304 | ---- | M] () -- C:\Program Files\Winamp\Plugins\in_mp3.dll
MOD - [2012-02-24 01:16:33 | 000,253,440 | ---- | M] () -- C:\Program Files\Winamp\Plugins\in_vorbis.dll
MOD - [2012-02-24 01:16:33 | 000,165,376 | ---- | M] () -- C:\Program Files\Winamp\Plugins\in_mod.dll
MOD - [2012-02-24 01:16:33 | 000,109,568 | ---- | M] () -- C:\Program Files\Winamp\Plugins\in_midi.dll
MOD - [2012-02-24 01:16:33 | 000,075,264 | ---- | M] () -- C:\Program Files\Winamp\Plugins\in_nsv.dll
MOD - [2012-02-24 01:16:33 | 000,052,736 | ---- | M] () -- C:\Program Files\Winamp\Plugins\in_mp4.dll
MOD - [2012-02-24 01:16:33 | 000,049,152 | ---- | M] () -- C:\Program Files\Winamp\Plugins\in_mkv.dll
MOD - [2012-02-24 01:16:33 | 000,023,552 | ---- | M] () -- C:\Program Files\Winamp\Plugins\in_swf.dll
MOD - [2012-02-24 01:16:32 | 000,102,400 | ---- | M] () -- C:\Program Files\Winamp\Plugins\in_cdda.dll
MOD - [2012-02-24 01:16:32 | 000,072,192 | ---- | M] () -- C:\Program Files\Winamp\Plugins\in_dshow.dll
MOD - [2012-02-24 01:16:32 | 000,068,608 | ---- | M] () -- C:\Program Files\Winamp\Plugins\in_avi.dll
MOD - [2012-02-24 01:16:32 | 000,061,440 | ---- | M] () -- C:\Program Files\Winamp\Plugins\in_flac.dll
MOD - [2012-02-24 01:16:32 | 000,043,008 | ---- | M] () -- C:\Program Files\Winamp\Plugins\in_flv.dll
MOD - [2012-02-24 01:16:32 | 000,025,600 | ---- | M] () -- C:\Program Files\Winamp\Plugins\gen_tray.dll
MOD - [2012-02-24 01:16:32 | 000,007,168 | ---- | M] () -- C:\Program Files\Winamp\Plugins\in_linein.dll
MOD - [2012-02-24 01:16:31 | 001,737,728 | ---- | M] () -- C:\Program Files\Winamp\Plugins\gen_ff.dll
MOD - [2012-02-24 01:16:31 | 000,318,464 | ---- | M] () -- C:\Program Files\Winamp\Plugins\gen_ml.dll
MOD - [2012-02-24 01:16:31 | 000,185,344 | ---- | M] () -- C:\Program Files\Winamp\Plugins\gen_jumpex.dll
MOD - [2012-02-24 01:16:31 | 000,057,344 | ---- | M] () -- C:\Program Files\Winamp\Plugins\gen_orgler.dll
MOD - [2012-02-24 01:16:31 | 000,027,648 | ---- | M] () -- C:\Program Files\Winamp\Plugins\gen_hotkeys.dll
MOD - [2012-02-24 01:16:30 | 000,053,248 | ---- | M] () -- C:\Program Files\Winamp\Plugins\Gen_AlarmClock.dll
MOD - [2012-02-24 01:16:29 | 000,340,992 | ---- | M] () -- C:\Program Files\Winamp\Plugins\freeform\wacs\freetype\freetype.wac
MOD - [2012-02-24 01:16:27 | 000,417,280 | ---- | M] () -- C:\Program Files\Winamp\nsutil.dll
MOD - [2012-02-24 01:16:27 | 000,253,440 | ---- | M] () -- C:\Program Files\Winamp\libsndfile.dll
MOD - [2012-02-24 01:16:27 | 000,180,224 | ---- | M] () -- C:\Program Files\Winamp\libmp4v2.dll
MOD - [2012-02-24 01:16:27 | 000,078,848 | ---- | M] () -- C:\Program Files\Winamp\nde.dll
MOD - [2012-02-18 17:19:31 | 000,240,128 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\WindowsFormsIntegra#\9a22784f4af63232128cbaa639e1852b\WindowsFormsIntegration.ni.dll
MOD - [2012-02-18 17:19:20 | 011,820,032 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Web\2598077ccea480c6120d3a1ad4455be0\System.Web.ni.dll
MOD - [2012-02-18 17:19:08 | 000,771,584 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Remo#\5c3bfd69e0c268baff0d169e11a6a784\System.Runtime.Remoting.ni.dll
MOD - [2012-02-18 17:18:46 | 000,519,168 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\TCrdMain\49c69863d3fa6b95de2a4dd141e22644\TCrdMain.ni.exe
MOD - [2012-02-18 17:17:51 | 000,971,264 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\7fd6c62196829d1e2dce5a253145d51a\System.Configuration.ni.dll
MOD - [2012-02-18 17:15:21 | 005,450,752 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\d9f0f1dc8cbdb81f1ba122d77a6ab710\System.Xml.ni.dll
MOD - [2012-02-18 17:14:30 | 012,430,848 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\65450889f3742aada2a6c0cf8e6173e3\System.Windows.Forms.ni.dll
MOD - [2012-02-18 17:14:15 | 001,587,200 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\137696d0416b65dbc1561152971488b4\System.Drawing.ni.dll
MOD - [2012-02-18 17:13:40 | 002,295,296 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Core\bc01d91f95947c7f25f3ae4e16db2cb5\System.Core.ni.dll
MOD - [2012-02-18 17:13:33 | 000,224,768 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\b864ec9d102833ef1fa33daa1e16466e\PresentationFramework.Classic.ni.dll
MOD - [2012-02-18 17:13:30 | 014,328,832 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\56df3488472318c59d0a08ed10a065d3\PresentationFramework.ni.dll
MOD - [2012-02-18 17:13:02 | 012,216,832 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationCore\3951e0a359c004cd6ba268ff78ac62aa\PresentationCore.ni.dll
MOD - [2012-02-18 17:12:32 | 003,325,952 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\1e258a951222c818540b33880ca45f2e\WindowsBase.ni.dll
MOD - [2012-02-18 17:11:55 | 007,953,408 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System\c50133cb67d7c013fa31e1ffb942060b\System.ni.dll
MOD - [2011-11-09 23:10:38 | 000,369,152 | ---- | M] () -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.CrossDisplay.Graphics.Dashboard.dll
MOD - [2011-11-09 23:07:50 | 000,095,232 | ---- | M] () -- C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Proxy.Native.dll
MOD - [2011-10-14 19:21:21 | 000,060,928 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\UIAutomationProvider\5aab9bc687029a908fc01473f8e5f77b\UIAutomationProvider.ni.dll
MOD - [2011-10-14 19:15:36 | 011,490,816 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\b6632a8b2f276a8e31f5b0f6b2006cd1\mscorlib.ni.dll
MOD - [2010-03-24 15:05:42 | 000,970,752 | ---- | M] () -- C:\Program Files\OpenOffice.org 3\program\libxml2.dll
MOD - [2009-03-31 20:05:12 | 000,311,296 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\mscorlib.resources\2.0.0.0_pl_b77a5c561934e089\mscorlib.resources.dll
MOD - [2009-02-04 07:00:36 | 000,159,744 | ---- | M] () -- C:\Windows\System32\atitmmxx.dll
MOD - [2008-08-12 10:16:16 | 002,023,424 | ---- | M] () -- C:\Program Files\Nokia\Nokia PC Suite 7\QtCore4.dll
MOD - [2008-07-29 13:47:56 | 000,016,384 | ---- | M] () -- C:\Program Files\Nokia\Nokia PC Suite 7\imageformats\qsvg4.dll
MOD - [2008-07-29 13:47:38 | 000,135,168 | ---- | M] () -- C:\Program Files\Nokia\Nokia PC Suite 7\imageformats\qjpeg4.dll
MOD - [2008-07-29 13:11:18 | 000,253,952 | ---- | M] () -- C:\Program Files\Nokia\Nokia PC Suite 7\QtSvg4.dll
MOD - [2008-07-29 13:01:12 | 007,331,840 | ---- | M] () -- C:\Program Files\Nokia\Nokia PC Suite 7\QtGUI4.dll
MOD - [2008-07-29 12:51:22 | 000,806,912 | ---- | M] () -- C:\Program Files\Nokia\Nokia PC Suite 7\QtNetwork4.dll
MOD - [2008-07-29 12:50:26 | 000,364,544 | ---- | M] () -- C:\Program Files\Nokia\Nokia PC Suite 7\QtXml4.dll
MOD - [2007-09-20 18:34:58 | 000,129,024 | ---- | M] () -- C:\Program Files\WinRAR\RarExt.dll
MOD - [2007-05-31 16:39:08 | 000,958,464 | ---- | M] () -- C:\Program Files\TOSHIBA\FlashCards\pl\TCrdMain.resources.dll
MOD - [2007-04-23 10:38:08 | 000,009,216 | ---- | M] () -- C:\Program Files\TOSHIBA\ConfigFree\NotifyCFF.dll
MOD - [2006-12-01 18:55:42 | 000,009,216 | ---- | M] () -- C:\Program Files\TOSHIBA\TBS\NotifyTBS.dll
MOD - [2006-11-09 18:27:06 | 000,090,112 | ---- | M] () -- C:\Program Files\TOSHIBA\FlashCards\TWarnMsg\TWarnMsg.dll
MOD - [2006-11-08 19:08:30 | 000,009,216 | ---- | M] () -- C:\Program Files\TOSHIBA\PCDiag\NotifyPCD.dll
MOD - [2006-11-06 17:14:44 | 000,034,352 | ---- | M] () -- C:\Program Files\TOSHIBA\Utilities\KeNotify.exe
MOD - [2006-10-10 11:44:16 | 000,009,728 | ---- | M] () -- C:\Program Files\TOSHIBA\TOSHIBA Assist\NotifyX.dll
MOD - [2006-10-07 12:57:04 | 000,053,248 | ---- | M] () -- C:\Program Files\TOSHIBA\TOSHIBA Disc Creator\NotifyTDC.dll
MOD - [2005-09-05 07:27:28 | 000,077,824 | ---- | M] () -- C:\Program Files\Winamp\Plugins\in_mpc.dll
MOD - [2005-07-22 21:30:20 | 000,065,536 | ---- | M] () -- C:\Windows\System32\TosCommAPI.dll
MOD - [2004-10-14 10:18:24 | 000,040,960 | ---- | M] () -- C:\Program Files\TOSHIBA\Bluetooth Toshiba Stack\TosBtAfh.dll


[color=#E56717]========== Win32 Services (SafeList) ==========[/color]

SRV - File not found [On_Demand | Stopped] -- C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe -- (NMIndexingService)
SRV - File not found [Auto | Stopped] -- C:\Program Files\iolo\common\lib\ioloServiceManager.exe -- (ioloSystemService)
SRV - File not found [Auto | Stopped] -- C:\Program Files\iolo\common\lib\ioloServiceManager.exe -- (ioloFileInfoList)
SRV - [2012-05-15 21:55:56 | 000,129,976 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2012-04-04 15:56:40 | 000,654,408 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe -- (MBAMService)
SRV - [2012-03-07 01:15:14 | 000,044,768 | ---- | M] (AVAST Software) [Auto | Running] -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe -- (avast! Antivirus)
SRV - [2012-03-07 01:15:13 | 000,134,920 | ---- | M] (AVAST Software) [Auto | Running] -- C:\Program Files\Alwil Software\Avast5\afwServ.exe -- (avast! Firewall)
SRV - [2011-11-09 23:07:44 | 000,291,840 | ---- | M] (Advanced Micro Devices, Inc.) [Auto | Running] -- C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe -- (AMD FUEL Service)
SRV - [2009-12-24 09:55:22 | 001,732,960 | ---- | M] (Diskeeper Corporation) [Auto | Running] -- E:\Program Files\Diskeeper Corporation\Diskeeper\DkService.exe -- (Diskeeper)
SRV - [2009-11-25 12:54:25 | 000,045,056 | ---- | M] () [Auto | Running] -- C:\Windows\System32\UTSCSI.EXE -- (UTSCSI)
SRV - [2009-09-12 01:34:12 | 001,488,128 | ---- | M] (O&O Software GmbH) [Auto | Running] -- C:\Program Files\OO Software\Defrag\oodag.exe -- (O&O Defrag)
SRV - [2008-12-11 15:53:38 | 000,098,488 | ---- | M] (SiSoftware) [On_Demand | Stopped] -- C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2009.SP2\RpcAgentSrv.exe -- (SandraAgentSrv)
SRV - [2008-11-11 09:38:06 | 000,620,544 | ---- | M] (Nokia.) [On_Demand | Running] -- C:\Program Files\PC Connectivity Solution\ServiceLayer.exe -- (ServiceLayer)
SRV - [2008-09-15 04:00:48 | 000,431,472 | ---- | M] (Juniper Networks) [Auto | Running] -- C:\Program Files\Juniper Networks\Common Files\dsNcService.exe -- (dsNcService)
SRV - [2008-05-27 22:40:24 | 000,611,664 | ---- | M] (Lavasoft) [Auto | Running] -- E:\Program Files\Lavasoft\Ad-Aware\aawservice.exe -- (aawservice)
SRV - [2008-01-19 09:38:24 | 000,272,952 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2008-01-19 09:36:49 | 000,365,568 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\WindowsMobile\wcescomm.dll -- (WcesComm)
SRV - [2008-01-19 09:36:15 | 000,167,936 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\WindowsMobile\rapimgr.dll -- (RapiMgr)
SRV - [2007-05-17 20:12:30 | 000,114,688 | ---- | M] (TOSHIBA Corporation) [Auto | Running] -- C:\Program Files\TOSHIBA\TOSHIBA DVD PLAYER\TNaviSrv.exe -- (TNaviSrv)
SRV - [2007-03-29 10:39:00 | 000,427,576 | ---- | M] (TOSHIBA Corporation) [Auto | Running] -- C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe -- (TosCoSrv)
SRV - [2007-02-25 21:55:18 | 000,125,048 | ---- | M] (TOSHIBA CORPORATION) [Auto | Running] -- c:\Program Files\TOSHIBA\Bluetooth Toshiba Stack\TosBtSrv.exe -- (TOSHIBA Bluetooth Service)
SRV - [2007-02-05 11:11:18 | 000,075,320 | ---- | M] (Sony Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\Sony Shared\AVLib\SSScsiSV.exe -- (SSScsiSV)
SRV - [2007-02-05 11:11:16 | 000,112,184 | ---- | M] (Sony Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\Sony Shared\AVLib\SsBeSvc.exe -- (SonicStage Back-End Service)
SRV - [2006-12-14 03:21:20 | 000,045,056 | ---- | M] (Sony Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\Sony Shared\AVLib\MSCSPTISRV.exe -- (MSCSPTISRV)
SRV - [2006-12-14 03:02:08 | 000,069,632 | ---- | M] (Sony Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\Sony Shared\AVLib\SPTISRV.exe -- (SPTISRV)
SRV - [2006-12-14 02:46:16 | 000,057,344 | ---- | M] () [On_Demand | Stopped] -- C:\Program Files\Common Files\Sony Shared\AVLib\PACSPTISVR.exe -- (PACSPTISVR)
SRV - [2006-11-14 20:33:10 | 000,040,960 | ---- | M] (TOSHIBA CORPORATION) [Auto | Running] -- C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe -- (CFSvcs)
SRV - [2006-10-05 13:10:12 | 000,009,216 | ---- | M] (Agere Systems) [Auto | Running] -- C:\Windows\System32\agrsmsvc.exe -- (AgereModemAudio)
SRV - [2006-08-23 16:39:48 | 000,049,152 | ---- | M] (Ulead Systems, Inc.) [Disabled | Stopped] -- C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe -- (UleadBurningHelper)
SRV - [2006-05-25 19:30:16 | 000,114,688 | ---- | M] (TOSHIBA Corporation) [Auto | Running] -- C:\Windows\System32\TODDSrv.exe -- (TODDSrv)


[color=#E56717]========== Driver Services (SafeList) ==========[/color]

DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\TpChoice.sys -- (TpChoice)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\nwlnkfwd.sys -- (NwlnkFwd)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\nwlnkflt.sys -- (NwlnkFlt)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\ipinip.sys -- (IpInIp)
DRV - File not found [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\blbdrive.sys -- (blbdrive)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Users\Verold\AppData\Local\Temp\AMDPCI.sys -- (AMDPCI)
DRV - File not found [Kernel | Boot | Stopped] -- system32\DRIVERS\amdide.sys -- (amdide)
DRV - File not found [Kernel | On_Demand | Unknown] -- -- (a1dp0iel)
DRV - [2012-04-04 15:56:40 | 000,022,344 | ---- | M] (Malwarebytes Corporation) [File_System | On_Demand | Running] -- C:\Windows\System32\drivers\mbam.sys -- (MBAMProtector)
DRV - [2012-03-07 01:04:25 | 000,112,984 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\System32\drivers\aswFW.sys -- (aswFW)
DRV - [2012-03-07 01:03:51 | 000,612,184 | ---- | M] (AVAST Software) [File_System | System | Running] -- C:\Windows\System32\drivers\aswSnx.sys -- (aswSnx)
DRV - [2012-03-07 01:03:38 | 000,337,880 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\System32\drivers\aswSP.sys -- (aswSP)
DRV - [2012-03-07 01:03:23 | 000,196,440 | ---- | M] (AVAST Software) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\aswNdis2.sys -- (aswNdis2)
DRV - [2012-03-07 01:02:43 | 000,024,408 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\System32\drivers\aswKbd.sys -- (aswKbd)
DRV - [2012-03-07 01:02:00 | 000,035,672 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\System32\drivers\aswRdr.sys -- (aswRdr)
DRV - [2012-03-07 01:01:53 | 000,053,848 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\System32\drivers\aswTdi.sys -- (aswTdi)
DRV - [2012-03-07 01:01:48 | 000,057,688 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\Windows\System32\drivers\aswMonFlt.sys -- (aswMonFlt)
DRV - [2012-03-07 01:01:30 | 000,020,696 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\Windows\System32\drivers\aswFsBlk.sys -- (aswFsBlk)
DRV - [2012-03-07 00:44:51 | 000,012,112 | ---- | M] (ALWIL Software) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\aswNdis.sys -- (aswNdis)
DRV - [2012-01-30 01:43:06 | 000,473,656 | ---- | M] (Duplex Secure Ltd.) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\sptd.sys -- (sptd)
DRV - [2011-10-17 19:40:34 | 000,082,960 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\AtihdLH3.sys -- (AtiHDAudioService)
DRV - [2010-04-11 18:27:31 | 000,281,760 | ---- | M] () [Kernel | Auto | Running] -- C:\Windows\System32\drivers\atksgt.sys -- (atksgt)
DRV - [2010-04-11 18:27:30 | 000,025,888 | ---- | M] () [Kernel | Auto | Running] -- C:\Windows\System32\drivers\lirsgt.sys -- (lirsgt)
DRV - [2010-02-18 10:18:22 | 000,037,944 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\amdiox86.sys -- (amdiox86)
DRV - [2010-01-27 04:09:02 | 000,050,704 | ---- | M] (CACE Technologies, Inc.) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\npf.sys -- (npf)
DRV - [2009-12-10 15:48:40 | 000,045,616 | ---- | M] (Diskeeper Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\System32\drivers\DKRtWrt.sys -- (DKRtWrt)
DRV - [2009-02-04 09:29:03 | 004,303,360 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\atikmdag.sys -- (atikmdag)
DRV - [2008-12-09 10:59:30 | 000,020,392 | ---- | M] (EldoS Corporation) [Kernel | System | Running] -- C:\Windows\System32\drivers\elrawdsk.sys -- (ElRawDisk)
DRV - [2008-11-25 23:57:04 | 000,022,432 | ---- | M] (SiSoftware) [Kernel | On_Demand | Stopped] -- C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2009.SP2\WNt500x86\sandra.sys -- (SANDRA)
DRV - [2008-09-15 07:56:34 | 000,008,064 | ---- | M] (Windows ® Codename Longhorn DDK provider) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\usbser_lowerfltj.sys -- (UsbserFilt)
DRV - [2008-09-15 07:56:24 | 000,022,016 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ccdcmbo.sys -- (nmwcdc)
DRV - [2008-09-15 07:56:24 | 000,017,664 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ccdcmb.sys -- (nmwcd)
DRV - [2008-09-15 07:56:24 | 000,008,064 | ---- | M] (Windows ® Codename Longhorn DDK provider) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\usbser_lowerflt.sys -- (upperdev)
DRV - [2008-09-15 03:43:28 | 000,023,552 | ---- | M] (Juniper Networks) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\dsNcAdpt.sys -- (dsNcAdpt)
DRV - [2008-08-26 09:26:12 | 000,018,816 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\pccsmcfd.sys -- (pccsmcfd)
DRV - [2008-07-29 06:05:04 | 000,919,552 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\athr.sys -- (athr)
DRV - [2008-07-07 09:40:49 | 000,056,108 | ---- | M] (PowerISO Computing, Inc.) [Kernel | System | Running] -- C:\Windows\System32\drivers\scdemu.sys -- (SCDEmu)
DRV - [2008-04-28 15:26:42 | 000,014,352 | ---- | M] (ATI Technologies Inc.) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\AtiPcie.sys -- (AtiPcie) ATI PCI Express (3GIO)
DRV - [2008-02-20 13:47:34 | 000,027,936 | ---- | M] (RapidSolution Software AG) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\tbhsd.sys -- (tbhsd)
DRV - [2008-01-08 14:23:48 | 000,017,408 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\System32\drivers\vburner.sys -- (vburner)
DRV - [2007-11-09 05:00:52 | 000,023,640 | ---- | M] (TOSHIBA Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\TVALZ_O.SYS -- (TVALZ)
DRV - [2007-06-29 14:47:34 | 000,034,304 | ---- | M] (AMD, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\AmdLLD.sys -- (AmdLLD)
DRV - [2007-04-27 20:13:58 | 000,285,184 | ---- | M] (TOSHIBA Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\tos_sps32.sys -- (tos_sps32)
DRV - [2007-03-12 21:47:54 | 000,011,264 | ---- | M] (Chicony Electronics Co., Ltd.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\UVCFTR_S.SYS -- (UVCFTR)
DRV - [2007-03-01 16:53:12 | 000,073,728 | ---- | M] (TOSHIBA Corporation.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\Tosrfhid.sys -- (Tosrfhid)
DRV - [2007-02-28 22:27:06 | 000,041,344 | ---- | M] (TOSHIBA CORPORATION) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\tosrfusb.sys -- (Tosrfusb)
DRV - [2007-02-22 19:56:24 | 000,113,920 | ---- | M] (TOSHIBA CORPORATION) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\tosrfbd.sys -- (tosrfbd)
DRV - [2007-02-07 17:50:32 | 000,118,552 | ---- | M] (Analog Devices Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\adiusbaw.sys -- (adiusbaw)
DRV - [2007-02-07 17:50:14 | 000,056,088 | ---- | M] (Analog Deivces) [Kernel | Auto | Stopped] -- C:\Windows\System32\drivers\adildr.sys -- (ELOADER) General Purpose USB Driver (adildr.sys)
DRV - [2007-01-24 14:44:06 | 000,290,304 | ---- | M] (Texas Instruments) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\tifm21.sys -- (tifm21)
DRV - [2007-01-22 10:43:26 | 000,053,376 | ---- | M] (TOSHIBA Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\TosRfSnd.sys -- (TosRfSnd)
DRV - [2007-01-18 16:47:18 | 000,211,072 | ---- | M] (TOSHIBA CORPORATION) [Kernel | Disabled | Stopped] -- C:\Windows\System32\drivers\KR10N.sys -- (KR10N)
DRV - [2007-01-18 16:40:56 | 000,219,392 | ---- | M] (TOSHIBA CORPORATION) [Kernel | Disabled | Stopped] -- C:\Windows\System32\drivers\KR10I.sys -- (KR10I)
DRV - [2007-01-04 14:48:04 | 000,104,344 | ---- | M] (Analog Devices Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\e4usbaw.sys -- (e4usbaw)
DRV - [2007-01-04 14:47:48 | 000,069,656 | ---- | M] (Analog Deivces) [Kernel | Auto | Stopped] -- C:\Windows\System32\drivers\e4ldr.sys -- (E4LOADER) General Purpose USB Driver (e4ldr.sys)
DRV - [2006-12-25 18:35:08 | 000,067,072 | ---- | M] (Realtek Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\Rtlh86.sys -- (RTL8169)
DRV - [2006-11-28 16:11:00 | 001,161,888 | ---- | M] (Agere Systems) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\AGRSM.sys -- (AgereSoftModem)
DRV - [2006-11-20 17:55:16 | 000,036,480 | ---- | M] (TOSHIBA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\tosrfbnp.sys -- (tosrfbnp)
DRV - [2006-10-23 16:32:20 | 000,009,216 | ---- | M] (TOSHIBA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\tosrfec.sys -- (tosrfec)
DRV - [2006-10-18 12:50:04 | 000,016,128 | ---- | M] (TOSHIBA Corporation.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\tdcmdpst.sys -- (tdcmdpst)
DRV - [2006-10-10 19:33:00 | 000,041,600 | ---- | M] (TOSHIBA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\tosporte.sys -- (tosporte)
DRV - [2006-07-28 16:25:26 | 000,019,456 | ---- | M] (COMPAL ELECTRONIC INC.) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\LPCFilter.sys -- (LPCFilter)
DRV - [2005-08-01 16:45:00 | 000,064,896 | ---- | M] (TOSHIBA Corporation) [Kernel | System | Running] -- C:\Windows\System32\drivers\tosrfcom.sys -- (Tosrfcom)
DRV - [2005-01-06 13:42:00 | 000,018,612 | ---- | M] (TOSHIBA Corporation.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\tosrfnds.sys -- (tosrfnds)
DRV - [2004-06-10 01:42:38 | 000,015,429 | ---- | M] ( ) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\Sacm2A.sys -- (USBCM)
DRV - [2002-07-17 16:20:32 | 000,084,832 | ---- | M] (Adaptec) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ASPI32.SYS -- (ASPI)


[color=#E56717]========== Standard Registry (SafeList) ==========[/color]


[color=#E56717]========== Internet Explorer ==========[/color]

IE - HKLM\..\URLSearchHook: {ba14329e-9550-4989-b3f2-9732e92d17cc} - C:\Program Files\Vuze_Remote\tbVuze.dll (Conduit Ltd.)
IE - HKLM\..\SearchScopes,DefaultScope = {EEE7E0A3-AE64-4dc8-84D1-F5D7BAF2DB0C}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = [url="http://search.live.com/results.aspx?q={searchTerms}&src={referrer:source?}"]http://search.live.c...ferrer:source?}[/url]

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = [url="http://www.gazeta.pl/0,0.html?p=128"]http://www.gazeta.pl/0,0.html?p=128[/url]
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = 1
IE - HKCU\..\URLSearchHook: {ba14329e-9550-4989-b3f2-9732e92d17cc} - C:\Program Files\Vuze_Remote\tbVuze.dll (Conduit Ltd.)
IE - HKCU\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = [url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC"]http://www.bing.com/...Box&FORM=IE8SRC[/url]
IE - HKCU\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = [url="http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7&rlz=1I7BJYS"]http://www.google.co...ie7&rlz=1I7BJYS[/url]
IE - HKCU\..\SearchScopes\{B5B15B11-E3DF-41a6-AC32-2452FB61C94F}: "URL" = [url="http://www.ask.com/web?&o=13795&l=dis&q={searchTerms}"]http://www.ask.com/w...q={searchTerms}[/url]
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local

[color=#E56717]========== FireFox ==========[/color]

FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "http://www.gazeta.pl/0,0.html?p=128"
FF - user.js - File not found

FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF32_11_2_202_235.dll ()
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX Browser Plugin,version=1.0.0: C:\Program Files\DivX\DivX Web Player\npdivx32.dll (DivX,Inc.)
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX Content Upload Plugin,version=1.0.0: C:\Program Files\DivX\DivX Content Uploader\npUpload.dll (DivX,Inc.)
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX Player Plugin,version=1.0.0: C:\Program Files\DivX\DivX Player\npDivxPlayerPlugin.dll (DivX, Inc)
FF - HKLM\Software\MozillaPlugins\@docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf: C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll (Tracker Software Products (Canada) Ltd.)
FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF - HKLM\Software\MozillaPlugins\@idsoftware.com/QuakeLive: C:\ProgramData\id Software\QuakeLive\npquakezero.dll (id Software Inc.)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\plugin2\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\4.1.10111.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@pack.google.com/Google Updater;version=14: C:\Program Files\Google\Google Updater\2.4.2432.1652\npCIDetect14.dll (Google)
FF - HKLM\Software\MozillaPlugins\@rayv.com/rayvplugin: C:\Program Files\RayV\RayV\plugins\nprayvplugin.dll (RayV)
FF - HKLM\Software\MozillaPlugins\@real.com/nppl3260;version=6.0.12.450: C:\Program Files\Real Alternative\browser\plugins\nppl3260.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprpjplug;version=6.0.12.448: C:\Program Files\Real Alternative\browser\plugins\nprpjplug.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nsJSRealPlayerPlugin;version=: File not found
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.111\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.111\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@veetle.com/vbp;version=0.9.16: C:\Program Files\Veetle\VLCBroadcast\npvbp.dll File not found
FF - HKCU\Software\MozillaPlugins\@octoshape.com/Octoshape Streaming Services,version=1.0: C:\Users\Verold\AppData\Local\Octoshape\Octoshape Streaming Services\octoprogram-L03-N00-U00-C00_0804080_000\npoctoshape.dll ()
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Users\Verold\AppData\Local\Google\Update\1.3.21.111\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Users\Verold\AppData\Local\Google\Update\1.3.21.111\npGoogleUpdate3.dll (Google Inc.)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\bkmrksync@nokia.com: C:\Program Files\Nokia\Nokia PC Suite 7\bkmrksync\ [2009-04-18 21:27:54 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{0329E7D6-6F54-462D-93F6-F5C3118BADF2}: C:\Program Files\SpeedBit Video Downloader\SPFireFox [2010-02-15 22:50:38 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\wrc@avast.com: C:\Program Files\Alwil Software\Avast5\WebRep\FF [2012-06-09 01:23:14 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 12.0\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2012-05-19 15:09:44 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 12.0\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2012-05-19 15:09:44 | 000,000,000 | ---D | M]

[2010-01-05 22:41:03 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Verold\AppData\Roaming\mozilla\Extensions
[2012-05-14 23:39:14 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Verold\AppData\Roaming\mozilla\Firefox\Profiles\ywmsv06d.default\extensions
[2011-01-25 18:44:41 | 000,000,000 | ---D | M] (Winamp Toolbar) -- C:\Users\Verold\AppData\Roaming\mozilla\Firefox\Profiles\ywmsv06d.default\extensions\{0b38152b-1b20-484d-a11f-5e04a9b0661f}
[2010-04-27 15:34:15 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Users\Verold\AppData\Roaming\mozilla\Firefox\Profiles\ywmsv06d.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2010-10-23 19:19:56 | 000,000,000 | ---D | M] (vShare Plugin) -- C:\Users\Verold\AppData\Roaming\mozilla\Firefox\Profiles\ywmsv06d.default\extensions\vshare@toolbar
[2011-01-29 05:31:09 | 000,001,196 | ---- | M] () -- C:\Users\Verold\AppData\Roaming\Mozilla\Firefox\Profiles\ywmsv06d.default\searchplugins\winamp-search.xml
[2012-04-04 21:00:37 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2009-08-21 18:06:27 | 000,000,000 | ---D | M] (VideoGet FireFox extension) -- C:\Program Files\Mozilla Firefox\extensions\{85E85FF9-E50C-42DE-8A3D-61485FD6C8DB}
[2010-02-14 23:29:48 | 000,000,000 | ---D | M] (flashget3 Extension) -- C:\Program Files\Mozilla Firefox\extensions\{DB9127A2-3381-41ec-82B3-1B6ED4C6F29A}
[2012-05-15 21:55:55 | 000,097,208 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll
[2012-03-21 00:27:57 | 000,476,904 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\mozilla firefox\plugins\npdeployJava1.dll
[2012-01-23 12:50:38 | 000,170,080 | ---- | M] (Tracker Software Products (Canada) Ltd.) -- C:\Program Files\mozilla firefox\plugins\npPDFXCviewNPPlugin.dll
[2011-12-09 19:23:32 | 000,012,800 | ---- | M] (Nullsoft, Inc.) -- C:\Program Files\mozilla firefox\plugins\npwachk.dll
[2012-04-04 21:00:17 | 000,002,767 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\allegro-pl.xml
[2012-04-04 21:00:17 | 000,001,406 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\fbc-pl.xml
[2012-04-04 21:00:17 | 000,000,917 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\merlin-pl.xml
[2012-04-04 21:00:17 | 000,000,858 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\pwn-pl.xml
[2012-04-04 21:00:16 | 000,001,183 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-pl.xml
[2012-04-04 21:00:16 | 000,001,683 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wp-pl.xml

[color=#E56717]========== Chrome ==========[/color]


O1 HOSTS File: ([2012-02-22 02:10:23 | 000,000,027 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (Adobe PDF Reader Link Helper) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
O2 - BHO: (no name) - {1F364306-AA45-47B5-9F9D-39A8B94E7EF1} - No CLSID value found.
O2 - BHO: (Skype add-on (mastermind)) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Skype Technologies S.A.)
O2 - BHO: (SBCONVERT Class) - {3017FB3E-9A77-4396-88C5-0EC9548FB42F} - C:\Program Files\SpeedBit Video Downloader\Toolbar\tbcore3.dll ()
O2 - BHO: (Java™ Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll (AVAST Software)
O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.2.4204.1700\swg.dll (Google Inc.)
O2 - BHO: (no name) - {b070d3e3-fec0-47d9-8e8a-99d4eeb3d3b0} - No CLSID value found.
O2 - BHO: (Vuze Remote Toolbar) - {ba14329e-9550-4989-b3f2-9732e92d17cc} - C:\Program Files\Vuze_Remote\tbVuze.dll (Conduit Ltd.)
O2 - BHO: (GrabberObj Class) - {FF7C3CF0-4B15-11D1-ABED-709549C10000} - C:\Program Files\SpeedBit Video Downloader\Toolbar\Grabber.dll (Speedbit Ltd.)
O3 - HKLM\..\Toolbar: (SpeedBit Video Downloader) - {0329E7D6-6F54-462D-93F6-F5C3118BADF2} - C:\Program Files\SpeedBit Video Downloader\Toolbar\tbcore3.dll ()
O3 - HKLM\..\Toolbar: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll (AVAST Software)
O3 - HKLM\..\Toolbar: (Vuze Remote Toolbar) - {ba14329e-9550-4989-b3f2-9732e92d17cc} - C:\Program Files\Vuze_Remote\tbVuze.dll (Conduit Ltd.)
O3 - HKCU\..\Toolbar\WebBrowser: (SpeedBit Video Downloader) - {0329E7D6-6F54-462D-93F6-F5C3118BADF2} - C:\Program Files\SpeedBit Video Downloader\Toolbar\tbcore3.dll ()
O3 - HKCU\..\Toolbar\WebBrowser: (Vuze Remote Toolbar) - {BA14329E-9550-4989-B3F2-9732E92D17CC} - C:\Program Files\Vuze_Remote\tbVuze.dll (Conduit Ltd.)
O4 - HKLM..\Run: [00TCrdMain] C:\Program Files\TOSHIBA\FlashCards\TCrdMain.exe (TOSHIBA Corporation)
O4 - HKLM..\Run: [adiras] C:\Windows\adiras.exe ()
O4 - HKLM..\Run: [amd_dc_opt] C:\Program Files\AMD\Dual-Core Optimizer\amd_dc_opt.exe (AMD)
O4 - HKLM..\Run: [APSDaemon] C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc.)
O4 - HKLM..\Run: [avast] C:\Program Files\Alwil Software\Avast5\avastUI.exe (AVAST Software)
O4 - HKLM..\Run: [Camera Assistant Software] C:\Program Files\Camera Assistant Software for Toshiba\traybar.exe (Chicony)
O4 - HKLM..\Run: [HSON] C:\Program Files\TOSHIBA\TBS\HSON.exe (TOSHIBA Corporation)
O4 - HKLM..\Run: [KeNotify] C:\Program Files\TOSHIBA\Utilities\KeNotify.exe ()
O4 - HKLM..\Run: [Malwarebytes' Anti-Malware] C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation)
O4 - HKLM..\Run: [Malwarebytes Anti-Malware (reboot)] C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe (Malwarebytes Corporation)
O4 - HKLM..\Run: [NDSTray.exe] NDSTray.exe File not found
O4 - HKLM..\Run: [OODefragTray] C:\Program Files\OO Software\Defrag\oodtray.exe (O&O Software GmbH)
O4 - HKLM..\Run: [PWRISOVM.EXE] C:\Program Files\PowerISO\PWRISOVM.EXE (PowerISO Computing, Inc.)
O4 - HKLM..\Run: [QuickTime Task] C:\Program Files\QuickTime Alternative\QTTask.exe (Apple Inc.)
O4 - HKLM..\Run: [SmoothView] C:\Program Files\TOSHIBA\SmoothView\SmoothView.exe (TOSHIBA Corporation)
O4 - HKLM..\Run: [StartCCC] C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.)
O4 - HKLM..\Run: [SVPWUTIL] C:\Program Files\TOSHIBA\Utilities\SVPWUTIL.exe (TOSHIBA)
O4 - HKLM..\Run: [topi] C:\Program Files\TOSHIBA\Toshiba Online Product Information\topi.exe (TOSHIBA)
O4 - HKLM..\Run: [Toshiba Registration] C:\Program Files\TOSHIBA\Registration\ToshibaRegistration.exe (Toshiba)
O4 - HKLM..\Run: [TPwrMain] C:\Program Files\TOSHIBA\Power Saver\TPwrMain.exe (TOSHIBA Corporation)
O4 - HKLM..\Run: [Windows Mobile-based device management] C:\Windows\WindowsMobile\wmdSync.exe (Microsoft Corporation)
O4 - HKCU..\Run: [DAEMON Tools Lite] C:\Program Files\DAEMON Tools Lite\DTLite.exe (DT Soft Ltd)
O4 - HKCU..\Run: [PC Suite Tray] C:\Program Files\Nokia\Nokia PC Suite 7\PCSuite.exe (Nokia)
O4 - Startup: C:\Users\Verold\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 3.2.lnk = C:\Program Files\OpenOffice.org 3\program\quickstart.exe ()
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 227
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O8 - Extra context menu item: Download all by FlashGet3 - C:\Users\Verold\AppData\Roaming\FlashGetBHO\GetAllUrl.htm File not found
O8 - Extra context menu item: Download by FlashGet3 - C:\Users\Verold\AppData\Roaming\FlashGetBHO\GetUrl.htm File not found
O9 - Extra 'Tools' menuitem : Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.)
O9 - Extra Button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Skype Technologies S.A.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O15 - HKCU\..Trusted Domains: kuaiche.com ([software] http in Trusted sites)
O16 - DPF: {68282C51-9459-467B-95BF-3C0E89627E55} [url="http://www.mks.com.pl/skaner/SkanerOnline.cab"]http://www.mks.com.p...kanerOnline.cab[/url] (MksSkanerOnline Class)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} [url="http://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab"]http://java.sun.com/...indows-i586.cab[/url] (Java Plug-in 1.6.0_31)
O16 - DPF: {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA} [url="http://java.sun.com/update/1.6.0/jinstall-1_6_0_07-windows-i586.cab"]http://java.sun.com/...indows-i586.cab[/url] (Java Plug-in 1.6.0_07)
O16 - DPF: {CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA} [url="http://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab"]http://java.sun.com/...indows-i586.cab[/url] (Java Plug-in 1.6.0_31)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} [url="http://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab"]http://java.sun.com/...indows-i586.cab[/url] (Java Plug-in 1.6.0_31)
O16 - DPF: {F27237D7-93C8-44C2-AC6E-D6057B9A918F} [url="https://ssl.wum.edu.pl/dana-cached/sc/JuniperSetupClient.cab"]https://ssl.wum.edu....SetupClient.cab[/url] (JuniperSetupClientControl Class)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{5613A390-9D40-42C4-BFA2-7C8131254ED8}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{623B4FE2-D27F-4402-BB79-1DC5D6E9BE92}: DhcpNameServer = 62.179.1.62 62.179.1.63
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\System32\userinit.exe (Microsoft Corporation)
O24 - Desktop WallPaper: C:\Users\Verold\AppData\Roaming\Microsoft\Windows Photo Gallery\Tapeta z Galerii fotografii systemu Windows.jpg
O24 - Desktop BackupWallPaper: C:\Users\Verold\AppData\Roaming\Microsoft\Windows Photo Gallery\Tapeta z Galerii fotografii systemu Windows.jpg
O28 - HKLM ShellExecuteHooks: {AEB6717E-7E19-11d0-97EE-00C04FD91972} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2006-09-18 23:43:36 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O34 - HKLM BootExecute: (autocheck OODBS)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = ComFile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)

[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]

[2012-06-09 23:25:00 | 000,000,000 | ---D | C] -- C:\rsit
[2012-06-09 01:28:19 | 000,112,984 | ---- | C] (AVAST Software) -- C:\Windows\System32\drivers\aswFW.sys
[2012-06-09 01:23:35 | 000,196,440 | ---- | C] (AVAST Software) -- C:\Windows\System32\drivers\aswNdis2.sys
[2012-06-09 01:23:32 | 000,024,408 | ---- | C] (AVAST Software) -- C:\Windows\System32\drivers\aswKbd.sys
[2012-06-09 01:23:05 | 000,012,112 | ---- | C] (ALWIL Software) -- C:\Windows\System32\drivers\aswNdis.sys
[2012-06-09 00:39:39 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\avast! Internet Security
[2012-06-09 00:35:47 | 000,000,000 | ---D | C] -- C:\Program Files\SkanerOnline
[2012-06-08 01:05:54 | 000,000,000 | ---D | C] -- C:\Windows\temp
[2012-06-08 01:05:54 | 000,000,000 | ---D | C] -- C:\Users\Verold\AppData\Local\temp
[2012-06-08 01:03:54 | 000,000,000 | -HSD | C] -- C:\$RECYCLE.BIN
[2012-06-07 23:47:17 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot - Search & Destroy
[2012-06-07 23:47:07 | 000,000,000 | ---D | C] -- C:\ProgramData\Spybot - Search & Destroy
[2012-06-07 23:47:07 | 000,000,000 | ---D | C] -- C:\Program Files\Spybot - Search & Destroy
[2012-05-29 20:11:10 | 000,258,048 | ---- | C] (Peter Wimmer, Gabest) -- C:\Windows\System32\GplMpgDec.ax
[2012-05-29 20:11:10 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Allok 3GP PSP MP4 iPod Video Converter
[2012-05-29 20:11:05 | 000,000,000 | ---D | C] -- C:\Program Files\Allok 3GP PSP MP4 iPod Video Converter
[2012-05-29 20:04:27 | 000,000,000 | ---D | C] -- C:\Users\Verold\Desktop\aviproxy
[2012-05-29 20:01:12 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SubEdit-Player
[2012-05-29 20:01:02 | 000,000,000 | ---D | C] -- C:\Program Files\SubEdit-Player
[2012-05-19 15:09:25 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime
[2012-05-15 21:56:18 | 000,000,000 | ---D | C] -- C:\ProgramData\Mozilla
[2012-05-15 21:56:15 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Maintenance Service
[2012-05-14 23:36:38 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\id Software
[2012-05-14 23:36:37 | 000,000,000 | ---D | C] -- C:\ProgramData\id Software
[3 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
[1 C:\Users\Verold\*.tmp files -> C:\Users\Verold\*.tmp -> ]

[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]

[2012-06-09 23:40:00 | 000,001,036 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2012-06-09 23:04:00 | 000,001,062 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-3458874613-3300990240-4131716576-1000UA.job
[2012-06-09 22:40:01 | 000,001,032 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2012-06-09 22:28:14 | 000,003,696 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2012-06-09 22:28:14 | 000,003,696 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2012-06-09 18:04:04 | 000,001,010 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-3458874613-3300990240-4131716576-1000Core.job
[2012-06-09 16:28:34 | 000,065,536 | ---- | M] () -- C:\Windows\System32\Ikeext.etl
[2012-06-09 16:27:50 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2012-06-09 16:27:35 | 002,224,971 | ---- | M] () -- C:\Windows\System32\oodbs.lor
[2012-06-09 01:23:31 | 000,002,577 | ---- | M] () -- C:\Windows\System32\config.nt
[2012-06-09 01:06:21 | 000,279,624 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
[2012-06-09 00:39:39 | 000,001,805 | ---- | M] () -- C:\Users\Public\Desktop\avast! Internet Security.lnk
[2012-06-07 23:47:18 | 000,001,020 | ---- | M] () -- C:\Users\Verold\Desktop\Spybot - Search & Destroy.lnk
[2012-06-06 23:59:05 | 001,322,396 | ---- | M] () -- C:\Users\Verold\Desktop\NEUROLOGIA-nasz skrypt.pdf
[2012-06-06 02:35:58 | 030,244,110 | ---- | M] () -- C:\Users\Verold\Desktop\Ortopedia i traumatologia. Podręcznik dla studentów medycyny - Tadeusz Szymon Gaździk.pdf
[2012-06-06 01:36:39 | 000,342,116 | ---- | M] () -- C:\Users\Verold\Desktop\2000.pdf
[2012-06-06 01:36:30 | 000,203,346 | ---- | M] () -- C:\Users\Verold\Desktop\odpowiedzi.pdf
[2012-06-04 02:22:59 | 000,000,806 | ---- | M] () -- C:\Users\Public\Desktop\calibre - E-book management.lnk
[2012-05-31 03:23:18 | 000,237,056 | ---- | M] () -- C:\Users\Verold\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2012-05-30 02:21:04 | 175,067,767 | ---- | M] () -- C:\Users\Verold\Desktop\Antoni Prusiński Neurologia praktyczna.pdf
[2012-05-30 01:18:57 | 000,289,784 | ---- | M] () -- C:\Users\Verold\Desktop\J.R.R. Tolkien - Drzewo i Liść oraz Mythopoeia.rtf
[2012-05-29 20:11:10 | 000,001,017 | ---- | M] () -- C:\Users\Public\Desktop\Allok 3GP PSP MP4 iPod Video Converter.lnk
[2012-05-29 20:03:17 | 000,000,804 | ---- | M] () -- C:\Users\Verold\Desktop\subedit — skrót.lnk
[2012-05-24 14:14:14 | 000,002,096 | ---- | M] () -- C:\Users\Verold\Desktop\Google Chrome.lnk
[2012-05-17 19:50:01 | 000,000,992 | ---- | M] () -- C:\Users\Verold\Desktop\PES 2012.lnk
[2012-05-14 22:45:08 | 000,419,488 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerApp.exe
[2012-05-14 22:45:08 | 000,070,304 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerCPLApp.cpl
[2012-05-14 01:07:23 | 000,721,450 | ---- | M] () -- C:\Windows\System32\perfh015.dat
[2012-05-14 01:07:23 | 000,640,480 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2012-05-14 01:07:23 | 000,155,334 | ---- | M] () -- C:\Windows\System32\perfc015.dat
[2012-05-14 01:07:22 | 000,122,468 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2012-05-12 12:34:01 | 000,000,972 | ---- | M] () -- C:\Windows\tasks\Google Software Updater.job
[3 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
[1 C:\Users\Verold\*.tmp files -> C:\Users\Verold\*.tmp -> ]

[color=#E56717]========== Files Created - No Company Name ==========[/color]

[2012-06-09 00:39:39 | 000,001,805 | ---- | C] () -- C:\Users\Public\Desktop\avast! Internet Security.lnk
[2012-06-07 23:47:18 | 000,001,020 | ---- | C] () -- C:\Users\Verold\Desktop\Spybot - Search & Destroy.lnk
[2012-06-06 23:58:54 | 001,322,396 | ---- | C] () -- C:\Users\Verold\Desktop\NEUROLOGIA-nasz skrypt.pdf
[2012-06-06 02:35:11 | 030,244,110 | ---- | C] () -- C:\Users\Verold\Desktop\Ortopedia i traumatologia. Podręcznik dla studentów medycyny - Tadeusz Szymon Gaździk.pdf
[2012-06-06 01:36:38 | 000,342,116 | ---- | C] () -- C:\Users\Verold\Desktop\2000.pdf
[2012-06-06 01:36:29 | 000,203,346 | ---- | C] () -- C:\Users\Verold\Desktop\odpowiedzi.pdf
[2012-05-30 02:07:55 | 175,067,767 | ---- | C] () -- C:\Users\Verold\Desktop\Antoni Prusiński Neurologia praktyczna.pdf
[2012-05-30 01:18:57 | 000,289,784 | ---- | C] () -- C:\Users\Verold\Desktop\J.R.R. Tolkien - Drzewo i Liść oraz Mythopoeia.rtf
[2012-05-29 20:11:10 | 000,129,024 | ---- | C] () -- C:\Windows\System32\AVERM.dll
[2012-05-29 20:11:10 | 000,001,017 | ---- | C] () -- C:\Users\Public\Desktop\Allok 3GP PSP MP4 iPod Video Converter.lnk
[2012-05-29 20:11:09 | 000,028,672 | ---- | C] () -- C:\Windows\System32\AVEQT.dll
[2012-05-29 20:04:27 | 000,069,632 | ---- | C] ( ) -- C:\Users\Verold\Desktop\auxsetup.exe
[2012-05-29 20:03:17 | 000,000,804 | ---- | C] () -- C:\Users\Verold\Desktop\subedit — skrót.lnk
[2012-04-09 00:51:06 | 000,000,266 | RHS- | C] () -- C:\ProgramData\ntuser.pol
[2012-03-15 21:51:55 | 000,116,224 | ---- | C] () -- C:\Windows\System32\pdfmonnt.dll
[2012-03-15 21:51:42 | 000,000,164 | ---- | C] () -- C:\Windows\System32\psconv.ini
[2012-01-09 21:30:25 | 000,116,224 | ---- | C] () -- C:\Windows\System32\pdfcmnnt.dll
[2011-11-09 23:39:44 | 000,059,904 | ---- | C] () -- C:\Windows\System32\OpenVideo.dll
[2011-11-09 23:39:32 | 000,054,784 | ---- | C] () -- C:\Windows\System32\OVDecode.dll
[2011-09-28 18:44:14 | 000,179,271 | ---- | C] () -- C:\Windows\System32\xlive.dll.cat
[2011-04-10 22:45:09 | 000,000,128 | ---- | C] () -- C:\ProgramData\sandra.ldb
[2011-04-10 22:45:08 | 008,507,392 | ---- | C] () -- C:\ProgramData\sandra.mda
[2010-12-15 19:33:28 | 000,075,776 | ---- | C] () -- C:\Windows\cadkasdeinst01e.exe
[2010-11-21 03:11:50 | 000,444,283 | ---- | C] () -- C:\Program Files\Common Files\WinPcapNmap.exe

[color=#E56717]========== Alternate Data Streams ==========[/color]

@Alternate Data Stream - 498 bytes -> C:\ProgramData\TEMP:05EE1EEF
@Alternate Data Stream - 108 bytes -> C:\ProgramData\TEMP:3457FAC4

< End of report >
[/log]






[log]

OTL Extras logfile created on: 2012-06-09 23:36:13 - Run 1
OTL by OldTimer - Version 3.2.48.0 Folder = C:\Users\Verold\Desktop\logi
Windows Vista Home Premium Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.19190)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd

2,00 Gb Total Physical Memory | 1,21 Gb Available Physical Memory | 60,74% Memory free
4,23 Gb Paging File | 2,76 Gb Available in Paging File | 65,18% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 93,16 Gb Total Space | 0,91 Gb Free Space | 0,98% Space Free | Partition Type: NTFS
Drive E: | 91,69 Gb Total Space | 1,21 Gb Free Space | 1,32% Space Free | Partition Type: NTFS
Drive G: | 596,17 Gb Total Space | 4,66 Gb Free Space | 0,78% Space Free | Partition Type: NTFS

Computer Name: LAPTOP-WARSZAWA | User Name: Verold | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

[color=#E56717]========== Extra Registry (SafeList) ==========[/color]


[color=#E56717]========== File Associations ==========[/color]

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
.hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation)

[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.bat [@ = batfile] -- Reg Error: Key error. File not found

[color=#E56717]========== Shell Spawning ==========[/color]

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
htmlfile [edit] -- "E:\Program Files\Microsoft Office\OFFICE11\msohtmed.exe" %1 (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe /separate,/idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /separate,/e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

[color=#E56717]========== Security Center Settings ==========[/color]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
"FirewallDisableNotify" = 0
"AntiVirusDisableNotify" = 0
"UpdatesDisableNotify" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
"DisableMonitoring" = 1

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]
"DisableMonitoring" = 1

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]
"DisableMonitoring" = 1

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"AntiVirusOverride" = 1
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
"VistaSp1" = Reg Error: Unknown registry data type -- File not found
"VistaSp2" = Reg Error: Unknown registry data type -- File not found

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]

[color=#E56717]========== System Restore Settings ==========[/color]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0

[color=#E56717]========== Firewall Settings ==========[/color]

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile]

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 0

[color=#E56717]========== Authorized Applications List ==========[/color]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"C:\Program Files\uusee\UUSeePlayer.exe" = C:\Program Files\uusee\UUSeePlayer.exe:*:Enabled:UUPlayer
"C:\Program Files\PPMate\ppmate.exe" = C:\Program Files\PPMate\ppmate.exe:*:Enabled:PPMate
"C:\Program Files\PPMate\ppamnet.exe" = C:\Program Files\PPMate\ppamnet.exe:*:Enabled:PPMate
"C:\Program Files\PPStream\PPStream.exe" = C:\Program Files\PPStream\PPStream.exe:*:Enabled:PPSÍřÂçµçĘÓ
"C:\Program Files\PPStream\PPSAP.exe" = C:\Program Files\PPStream\PPSAP.exe:*:Enabled:PPStream ÍřÂçĽÓËŮĆ÷
"C:\Program Files\FlashGet Network\FlashGet universal\FlashGet.exe" = C:\Program Files\FlashGet Network\FlashGet universal\FlashGet.exe:*:Enabled:Flashget2
"C:\Program Files\FlashGet Network\FlashGet universal\LiveUpdate.exe" = C:\Program Files\FlashGet Network\FlashGet universal\LiveUpdate.exe:*:Enabled:FGLiveUpdate
"C:\Program Files\FlashGet Network\FlashGet universal\LiveUpdateEx.exe" = C:\Program Files\FlashGet Network\FlashGet universal\LiveUpdateEx.exe:*:Enabled:FGLiveUpdateEx
"C:\Program Files\FlashGet Network\FlashGet 3\FlashGet3.exe" = C:\Program Files\FlashGet Network\FlashGet 3\FlashGet3.exe:*:Enabled:Flashget3


[color=#E56717]========== Vista Active Open Ports Exception List ==========[/color]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{02CD1BDC-39C3-411C-89E1-D1BDE91282B8}" = lport=138 | protocol=17 | dir=in | app=system |
"{07BD11D2-3A8A-4B7B-A7B0-27D4BF655091}" = rport=3702 | protocol=17 | dir=out | svc=fdrespub | app=%systemroot%\system32\svchost.exe |
"{0C6F35F2-C973-4D0C-92AC-6E65EC0D5CA2}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{0E84EDB5-909D-4BF9-B0E3-BE9790C5725A}" = lport=139 | protocol=6 | dir=in | app=system |
"{13D6AE26-2555-4493-AC04-14C34208D08B}" = rport=3702 | protocol=17 | dir=out | svc=fdphost | app=%systemroot%\system32\svchost.exe |
"{14FFCFEA-68FD-4AAF-9D30-E39BB90D5426}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{151FFD70-D46D-4D3B-BA76-DB654EC82890}" = lport=rpc | protocol=6 | dir=in | app=c:\program files\sisoftware\sisoftware sandra lite 2009.sp2\wnt500x86\rpcsandrasrv.exe |
"{1BD88B03-EABB-4CEF-ADEC-4EE03A9755F7}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{22DC2EFC-464E-42E9-AD61-733AB251641B}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 |
"{2587A91E-DF34-4E9C-A620-A6D53B72631B}" = lport=3702 | protocol=17 | dir=in | svc=fdphost | app=%systemroot%\system32\svchost.exe |
"{3F79F4B9-DE51-46B5-98A1-37CC5316F785}" = lport=808 | protocol=6 | dir=in | svc=nettcpactivator | app=c:\windows\microsoft.net\framework\v4.0.30319\smsvchost.exe |
"{4041D099-6167-4250-90BA-9BA51FCD2745}" = lport=67 | protocol=17 | dir=in | svc=sharedaccess | app=%systemroot%\system32\svchost.exe |
"{473BF371-D1FF-436A-AB52-C296D3A2CDC9}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{4BF7494E-ED38-41EB-8A2B-B21402BA98AC}" = lport=68 | protocol=17 | dir=in | svc=sharedaccess | app=%systemroot%\system32\svchost.exe |
"{610A4DAA-9FDB-4C7F-8536-1B9AC026EABF}" = lport=3702 | protocol=17 | dir=in | svc=fdrespub | app=%systemroot%\system32\svchost.exe |
"{8CB5FCEA-3BE4-462B-A1C5-6AF731C8E0A3}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{998C9056-1B59-465A-838A-E27A4D2FE617}" = lport=990 | protocol=6 | dir=in | svc=rapimgr | app=%systemroot%\system32\svchost.exe |
"{9A54EBA7-4CA0-46CB-8F29-DA66FF5FB15F}" = lport=rpc | protocol=6 | dir=in | app=c:\program files\sisoftware\sisoftware sandra lite 2009.sp2\rpcagentsrv.exe |
"{9E770E4E-635B-4F43-A4C1-142BA86F751F}" = lport=547 | protocol=17 | dir=in | svc=sharedaccess | app=%systemroot%\system32\svchost.exe |
"{A8DB3EB0-6F89-470D-89A8-CADC45AB8B28}" = rport=2869 | protocol=6 | dir=out | app=system |
"{AF830A13-460F-4777-BA85-9C4F2E5EA7D2}" = lport=137 | protocol=17 | dir=in | app=system |
"{B08E845C-8D85-4246-A72B-7E961CC20F39}" = lport=445 | protocol=6 | dir=in | app=system |
"{B57FB009-DE2A-48C3-BF57-DDF13B98C7D0}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{B5DB870B-F8EE-40DD-AB4A-D91FB4E6BB4F}" = rport=139 | protocol=6 | dir=out | app=system |
"{B7B68655-223D-4E5E-8E95-D44EA6D3DBA8}" = rport=138 | protocol=17 | dir=out | app=system |
"{BBA7410D-4808-4A2F-A536-111F04938327}" = lport=rpc | protocol=6 | dir=in | app=c:\program files\sisoftware\sisoftware sandra lite 2009.sp2\wnt500x86\rpcsandrasrv.exe |
"{C254B90B-3A56-40B8-9DD7-34AA79898111}" = rport=445 | protocol=6 | dir=out | app=system |
"{C7F51C08-2A4B-4EE8-A58C-4A67E5842BD3}" = lport=2869 | protocol=6 | dir=in | app=system |
"{DCB2392B-A6E9-4849-A7E6-E2F923D2ACF9}" = rport=5679 | protocol=17 | dir=out | svc=rapimgr | app=%systemroot%\system32\svchost.exe |
"{DDCA6D61-E4B0-4230-B256-DD4A30A620A7}" = rport=137 | protocol=17 | dir=out | app=system |
"{E2BA8172-ACE6-41AC-9C30-6B4AC6E85757}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
"{FD89EC44-6287-4DF9-B118-1922BB5C0B14}" = lport=53 | protocol=17 | dir=in | svc=sharedaccess | app=%systemroot%\system32\svchost.exe |

[color=#E56717]========== Vista Active Application Exception List ==========[/color]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{00BB0C93-8BDE-40FB-842B-573CFA5B51C0}" = protocol=6 | dir=in | app=e:\program files\electronic arts\need for speed™ hot pursuit\launcher.exe |
"{03B764F4-3B87-4A35-908B-DA6A41FB9189}" = dir=in | app=c:\program files\common files\apple\apple application support\webkit2webprocess.exe |
"{05F5CEF8-4C0D-490F-83EC-1597DF1BDB0E}" = protocol=6 | dir=in | app=c:\program files\steam\steamapps\verold\counter-strike\hl.exe |
"{0A1560E2-331A-4D3F-883C-659EA2D2589E}" = protocol=6 | dir=in | app=e:\program files\electronic arts\battlefield bad company 2\bfbc2updater.exe |
"{0BA8AA5D-62E7-446C-8B7C-43950AA316AD}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 |
"{0CA68757-6A47-468F-8BB2-9BE0C72FB8BE}" = protocol=17 | dir=in | app=c:\windows\system32\pnkbstrb.exe |
"{0EBDB462-8D50-4703-B4D4-6393D28FE809}" = protocol=17 | dir=in | app=e:\program files\deep silver\s.t.a.l.k.e.r. - clear sky\bin\dedicated\xrengine.exe |
"{158FFB84-855E-419A-8FF6-D11434228BFF}" = protocol=17 | dir=in | app=c:\program files\winamp remote\bin\orb.exe |
"{15DDCBAE-10CC-4C81-BC0E-26082706F2ED}" = protocol=17 | dir=in | app=c:\program files\mass effect 2\masseffect2launcher.exe |
"{18B30F08-9217-443D-A92D-1F39A8B1096A}" = protocol=17 | dir=in | app=c:\program files\winamp remote\bin\orbstreamerclient.exe |
"{1DAB1399-DB9F-4663-A199-E016D71629D6}" = protocol=6 | dir=in | app=e:\program files\deep silver\s.t.a.l.k.e.r. - clear sky\bin\xrengine.exe |
"{39BD3BFE-593E-46DF-900C-B9C1C59E3EEB}" = protocol=17 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{3C93C5B8-2645-4EB7-AFCD-061902A66166}" = protocol=17 | dir=in | app=c:\windows\system32\pnkbstra.exe |
"{3DD14409-D5DB-45B4-BD99-04B9332A7FC8}" = protocol=17 | dir=in | app=e:\program files\electronic arts\need for speed™ hot pursuit\launcher.exe |
"{47A0E7D4-0ECD-40DF-8EB4-F147723464B6}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{483F7AD2-A5F3-4D30-8E38-C0E335580596}" = protocol=6 | dir=in | app=c:\program files\rapidsolution\tunebite\tunebitehelper.exe |
"{48901FDE-F197-4FC4-83C7-83C35DAC910B}" = protocol=6 | dir=in | app=c:\program files\winamp remote\bin\orb.exe |
"{4C061490-217F-47AE-8DF4-A03454B81455}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{4D078D4E-54DF-410C-B532-5ED73EA84D2D}" = protocol=6 | dir=in | app=e:\program files\deep silver\s.t.a.l.k.e.r. - clear sky\bin\dedicated\xrengine.exe |
"{5034ECE0-A827-4E73-AE0C-4A29B0BE9C96}" = protocol=17 | dir=in | app=e:\program files\deep silver\s.t.a.l.k.e.r. - clear sky\bin\xrengine.exe |
"{5088992C-553E-4AC9-A4F1-880E5C0C2565}" = protocol=6 | dir=in | app=c:\program files\ubisoft\ubisoft game launcher\ubisoftgamelauncher.exe |
"{50FC6A7D-2C60-4648-B588-6BE2D4450304}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 |
"{533AAF07-7F64-44C9-9BE6-9F836C27FB32}" = protocol=6 | dir=in | app=c:\program files\mass effect 2\masseffect2launcher.exe |
"{656FB6FB-B5AC-4E1A-81F2-0CB54C27F4A5}" = protocol=1 | dir=in | name=sisoftware deployment agent service (icmp-in) |
"{6B5C766F-F16F-473B-AFE7-99714F48F85C}" = protocol=17 | dir=in | app=c:\program files\rapidsolution\tunebite\tunebitehelper.exe |
"{70559216-6F10-41F2-A0F5-746BF292F2E4}" = protocol=17 | dir=in | app=e:\program files\activision\call of duty - world at war\codwawmp.exe |
"{7B74DF9C-114B-4BA8-A723-CC261B31A2B2}" = protocol=6 | dir=in | app=c:\program files\mass effect 2\binaries\masseffect2.exe |
"{7C12EF71-009E-40EB-89AC-370E64791721}" = protocol=1 | dir=in | name=sisoftware sandra agent service (icmp-in) |
"{834337DC-0975-491B-8739-AF6E5091C177}" = protocol=17 | dir=in | app=e:\program files\activision\call of duty - world at war\codwaw.exe |
"{83CED37D-2B5D-4F99-B839-41C636543271}" = protocol=6 | dir=in | app=e:\program files\eidos\kane and lynch dead men\kaneandlynch.exe |
"{8DD04BCC-D153-49E2-84DE-1BDD8C056AB4}" = protocol=6 | dir=in | app=e:\program files\azureus\azureus.exe |
"{8DDBF572-1D15-4799-A034-308AB8F0E2A2}" = protocol=6 | dir=in | app=c:\program files\winamp remote\bin\orbtray.exe |
"{993554D1-269B-4799-A8A6-E52526DFAB6D}" = dir=out | svc=sharedaccess | app=%systemroot%\system32\svchost.exe |
"{9A88E2CF-6201-4754-A765-D3119F6568A2}" = protocol=6 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{9DEEEE42-4853-4124-B8DD-A94790841521}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 |
"{9F1AF24E-AB04-4CA1-A150-443766B82593}" = protocol=58 | dir=in | name=@hnetcfg.dll,-148 |
"{A4208ADA-13B3-41EF-AEA4-182703E18290}" = protocol=17 | dir=in | app=e:\program files\activision\call of duty 4 - modern warfare\iw3mp.exe |
"{A4F7D999-D8F2-4305-98EF-D4B6B72B9ECA}" = protocol=6 | dir=in | app=c:\windows\system32\pnkbstra.exe |
"{A62E701C-59C9-4CED-BE96-085CCA7B603B}" = protocol=17 | dir=in | app=c:\program files\konami\pro evolution soccer 2012\pes2012.exe |
"{A9F6E897-971E-4ECE-9DE3-41625C4FC792}" = protocol=17 | dir=in | app=e:\program files\electronic arts\battlefield bad company 2\bfbc2updater.exe |
"{ADB7AB48-E126-4BCB-823D-1642E1239B82}" = protocol=6 | dir=in | app=e:\program files\activision\call of duty 4 - modern warfare\iw3mp.exe |
"{BD8C30B4-7844-459F-9D5B-51F0D9797CB8}" = protocol=6 | dir=in | app=c:\program files\konami\pro evolution soccer 2012\pes2012.exe |
"{BF8AE7D7-69A0-4BFF-B881-B9C031ABCF29}" = protocol=17 | dir=in | app=c:\program files\mass effect 2\binaries\masseffect2.exe |
"{C055751D-9221-4C08-A77C-71AB5F2A23D0}" = protocol=17 | dir=in | app=c:\program files\ubisoft\ubisoft game launcher\ubisoftgamelauncher.exe |
"{C07CC085-5DF3-4D4E-8E9C-BBA605AE3724}" = protocol=17 | dir=in | app=e:\program files\azureus\azureus.exe |
"{C919FEEA-EDA9-4A01-BA2B-80136EDFEB5F}" = protocol=6 | dir=in | app=e:\program files\activision\call of duty - world at war\codwawmp.exe |
"{C97E9557-2C2D-439C-B052-700CCC405B6E}" = protocol=17 | dir=in | app=e:\program files\eidos\kane and lynch dead men\kaneandlynch.exe |
"{CFADA050-58CA-4312-870C-EA2599CAFD00}" = protocol=6 | dir=in | app=c:\windows\system32\pnkbstrb.exe |
"{D53E9C14-6E73-4AD6-A74A-E54D8312744E}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 |
"{DD3E327F-2F38-4ACA-BD6C-467F595A87D6}" = protocol=6 | dir=in | app=c:\program files\winamp remote\bin\orbstreamerclient.exe |
"{E3471042-63C2-4044-A101-C401C17E947B}" = protocol=17 | dir=in | app=c:\program files\winamp remote\bin\orbtray.exe |
"{E70326EE-37AC-4842-BDF3-7D5956F41B51}" = protocol=6 | dir=in | app=c:\program files\winamp remote\bin\orbir.exe |
"{EF6D79D8-4919-46CD-87ED-78D4B5853897}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{F080F09C-BCAF-4EBA-ADD5-7EFABD2E33A1}" = protocol=17 | dir=in | app=c:\program files\winamp remote\bin\orbir.exe |
"{F5085371-C947-45B1-A1B3-F7E55460CDC2}" = protocol=17 | dir=in | app=c:\program files\steam\steamapps\verold\counter-strike\hl.exe |
"{F60867C4-9161-4246-B6E1-41B31D135ACA}" = protocol=1 | dir=in | name=sisoftware sandra agent service (icmp-in) |
"{F70E1722-22F4-42B3-A3E7-E75E3B87DF5E}" = protocol=6 | dir=in | app=e:\program files\activision\call of duty - world at war\codwaw.exe |
"TCP Query User{03844C9A-D2BF-4E07-B81E-C58D3B69C63F}C:\program files\limewire\limewire.exe" = protocol=6 | dir=in | app=c:\program files\limewire\limewire.exe |
"TCP Query User{06E93F61-64C3-4623-92C2-0FCE8705BDFA}E:\program files\kolekcja klasyki\commandos antologia\commandos3, destination berlin\comm3.exe" = protocol=6 | dir=in | app=e:\program files\kolekcja klasyki\commandos antologia\commandos3, destination berlin\comm3.exe |
"TCP Query User{184253BB-E8B0-4558-A6D9-89AE44D0F374}C:\program files\java\jre6\bin\javaw.exe" = protocol=6 | dir=in | app=c:\program files\java\jre6\bin\javaw.exe |
"TCP Query User{18EED810-BD87-42DF-8026-82A208AF797C}C:\program files\java\jre1.6.0\bin\javaw.exe" = protocol=6 | dir=in | app=c:\program files\java\jre1.6.0\bin\javaw.exe |
"TCP Query User{21BD56C7-C018-4560-99F2-037DC1AB2DA5}E:\downloads\ds_luksze\dead space.exe" = protocol=6 | dir=in | app=e:\downloads\ds_luksze\dead space.exe |
"TCP Query User{29892BD3-4FD8-48E0-B37B-7FB9367B1166}C:\program files\flashget network\flashget universal\flashget.exe" = protocol=6 | dir=in | app=c:\program files\flashget network\flashget universal\flashget.exe |
"TCP Query User{29E78883-B002-4BCF-ACC4-A723B82344D2}C:\program files\sopcast\adv\sopadver.exe" = protocol=6 | dir=in | app=c:\program files\sopcast\adv\sopadver.exe |
"TCP Query User{375E2EFB-BD87-4A40-81E4-A81F382C3E1D}C:\program files\free download manager\fdmwi.exe" = protocol=6 | dir=in | app=c:\program files\free download manager\fdmwi.exe |
"TCP Query User{3BF0F7C6-01EF-4CE8-9B60-2CB7750B938E}C:\program files\gadu-gadu 10\gg.exe" = protocol=6 | dir=in | app=c:\program files\gadu-gadu 10\gg.exe |
"TCP Query User{4C6E5A58-D52C-4BC8-9EBF-4CDFC45E1127}C:\program files\opera\opera.exe" = protocol=6 | dir=in | app=c:\program files\opera\opera.exe |
"TCP Query User{505D0FD9-6430-44A0-ACFB-71CA29986032}C:\program files\winamp\winamp.exe" = protocol=6 | dir=in | app=c:\program files\winamp\winamp.exe |
"TCP Query User{540A59F7-091F-4C4B-AC21-CD1206055487}C:\program files\warcraft iii\war3.exe" = protocol=6 | dir=in | app=c:\program files\warcraft iii\war3.exe |
"TCP Query User{6824508A-2D5B-452A-876C-EC4FDA5304ED}C:\program files\streamtorrent 1.0\streamtorrent.exe" = protocol=6 | dir=in | app=c:\program files\streamtorrent 1.0\streamtorrent.exe |
"TCP Query User{6C0F716D-0693-4945-8DC1-8204F5057557}C:\program files\flashget network\flashget 3\flashget3.exe" = protocol=6 | dir=in | app=c:\program files\flashget network\flashget 3\flashget3.exe |
"TCP Query User{7A8FA652-2A91-4B02-BD28-B1AB39D76A26}C:\program files\sopcast\sopcast.exe" = protocol=6 | dir=in | app=c:\program files\sopcast\sopcast.exe |
"TCP Query User{7F17A951-A864-4A6F-BFB1-7236DA529682}C:\program files\b2bpoker\frontpoker\jre\bin\javaw.exe" = protocol=6 | dir=in | app=c:\program files\b2bpoker\frontpoker\jre\bin\javaw.exe |
"TCP Query User{7F26604D-5748-47A2-ACFD-EEF935270CCC}C:\program files\rayv\rayv\rayv.exe" = protocol=6 | dir=in | app=c:\program files\rayv\rayv\rayv.exe |
"TCP Query User{95BAE0FA-69AA-4B34-82C2-7B2B765F3D83}C:\program files\ppmate\ppamnet.exe" = protocol=6 | dir=in | app=c:\program files\ppmate\ppamnet.exe |
"TCP Query User{9CC1AFBA-BD1C-46C8-AF9B-20A918EBC30D}E:\program files\codemasters\worms 4 totalna rozwałka\worms 4 mayhem.exe" = protocol=6 | dir=in | app=e:\program files\codemasters\worms 4 totalna rozwałka\worms 4 mayhem.exe |
"TCP Query User{9D479F31-B701-4CDD-A863-AC4F1BA4D79B}E:\program files\gadu-gadu\gg.exe" = protocol=6 | dir=in | app=e:\program files\gadu-gadu\gg.exe |
"TCP Query User{9D4A0466-9D8E-41B3-94A9-BF8D0F828FA2}C:\program files\id software\quake 4\quake4ded.exe" = protocol=6 | dir=in | app=c:\program files\id software\quake 4\quake4ded.exe |
"TCP Query User{A5CB7E4E-7D1D-4300-870A-FD3F1A7828D0}E:\program files\winamp\winamp.exe" = protocol=6 | dir=in | app=e:\program files\winamp\winamp.exe |
"TCP Query User{AA2DDF4F-3747-4443-9947-222AF6F8FF10}C:\program files\bearshare applications\bearshare\bearshare.exe" = protocol=6 | dir=in | app=c:\program files\bearshare applications\bearshare\bearshare.exe |
"TCP Query User{AB79E63B-5C88-49A5-8DFE-E531260E0678}E:\program files\konami\pro evolution soccer 2009\pes2009.exe" = protocol=6 | dir=in | app=e:\program files\konami\pro evolution soccer 2009\pes2009.exe |
"TCP Query User{AC497BE4-E4E5-4615-99B4-A130F91B6DB6}C:\program files\gumboy tournament\gumboytournament.exe" = protocol=6 | dir=in | app=c:\program files\gumboy tournament\gumboytournament.exe |
"TCP Query User{C44C72B4-8C1F-48D0-9FD6-07CB7C7F879F}C:\users\verold\temp\teamviewer\version4\teamviewer.exe" = protocol=6 | dir=in | app=c:\users\verold\temp\teamviewer\version4\teamviewer.exe |
"TCP Query User{CB779567-D1A5-4A0C-9747-A58823C13578}C:\program files\java\jre1.6.0\bin\java.exe" = protocol=6 | dir=in | app=c:\program files\java\jre1.6.0\bin\java.exe |
"TCP Query User{DA153273-30BE-4A38-8843-755A236CC663}E:\program files\electronic arts\need for speed™ hot pursuit\nfs11.exe" = protocol=6 | dir=in | app=e:\program files\electronic arts\need for speed™ hot pursuit\nfs11.exe |
"TCP Query User{E60FF9D4-95C0-4715-B2D0-0E655EE2D207}C:\users\verold\appdata\local\temp\hebat\opera.exe" = protocol=6 | dir=in | app=c:\users\verold\appdata\local\temp\hebat\opera.exe |
"TCP Query User{E792471C-B141-42D7-ACA4-9F1790E82505}C:\program files\dc++\dcplusplus.exe" = protocol=6 | dir=in | app=c:\program files\dc++\dcplusplus.exe |
"TCP Query User{F3667803-D04B-4FE3-A250-FEF78223678D}E:\games\xtcs counter-strike 1.6 final release\hltv.exe" = protocol=6 | dir=in | app=e:\games\xtcs counter-strike 1.6 final release\hltv.exe |
"TCP Query User{F63C88B6-E39D-4CBA-BC03-C15F354ED1AC}E:\program files\ea sports\fifa 11\game\fifa.exe" = protocol=6 | dir=in | app=e:\program files\ea sports\fifa 11\game\fifa.exe |
"TCP Query User{F9063025-9018-4E61-A857-CADCEB793279}C:\program files\dragon age\bin_ship\eacoreserver.exe" = protocol=6 | dir=in | app=c:\program files\dragon age\bin_ship\eacoreserver.exe |
"TCP Query User{FD5268E9-9CDF-43DE-89F7-F0237BE2D7B6}C:\program files\tvants\tvants.exe" = protocol=6 | dir=in | app=c:\program files\tvants\tvants.exe |
"TCP Query User{FF9104B0-D1BA-49C2-8F80-4396F4C428C0}C:\program files\internet explorer\iexplore.exe" = protocol=6 | dir=in | app=c:\program files\internet explorer\iexplore.exe |
"UDP Query User{0C6B408E-5277-4366-868A-CF75CE14DFC6}E:\games\xtcs counter-strike 1.6 final release\hltv.exe" = protocol=17 | dir=in | app=e:\games\xtcs counter-strike 1.6 final release\hltv.exe |
"UDP Query User{0CD4F05E-6F1D-43B3-B102-33D972339EE6}C:\program files\winamp\winamp.exe" = protocol=17 | dir=in | app=c:\program files\winamp\winamp.exe |
"UDP Query User{24018406-5097-405A-AC52-7705AB3826D4}C:\users\verold\appdata\local\temp\hebat\opera.exe" = protocol=17 | dir=in | app=c:\users\verold\appdata\local\temp\hebat\opera.exe |
"UDP Query User{37A70208-93D9-4910-BE47-46C8B3FE149C}C:\program files\gumboy tournament\gumboytournament.exe" = protocol=17 | dir=in | app=c:\program files\gumboy tournament\gumboytournament.exe |
"UDP Query User{3D1A0AC5-5613-4EFD-951E-4A95AC41D785}C:\program files\java\jre1.6.0\bin\javaw.exe" = protocol=17 | dir=in | app=c:\program files\java\jre1.6.0\bin\javaw.exe |
"UDP Query User{3EFEB6BD-85D0-4C3D-9175-03F81CEB8D57}E:\program files\electronic arts\need for speed™ hot pursuit\nfs11.exe" = protocol=17 | dir=in | app=e:\program files\electronic arts\need for speed™ hot pursuit\nfs11.exe |
"UDP Query User{426474A7-A50E-4D50-9FA0-98CAF199F3DD}C:\program files\ppmate\ppamnet.exe" = protocol=17 | dir=in | app=c:\program files\ppmate\ppamnet.exe |
"UDP Query User{430CAEA0-307C-44F6-B4AF-AC66263D28F2}C:\program files\flashget network\flashget universal\flashget.exe" = protocol=17 | dir=in | app=c:\program files\flashget network\flashget universal\flashget.exe |
"UDP Query User{4B5557AC-7AEF-4B0E-9D5B-47ADE477AB98}C:\program files\free download manager\fdmwi.exe" = protocol=17 | dir=in | app=c:\program files\free download manager\fdmwi.exe |
"UDP Query User{4BBF7415-1156-4DB8-AFC8-D865526DC3B4}C:\program files\bearshare applications\bearshare\bearshare.exe" = protocol=17 | dir=in | app=c:\program files\bearshare applications\bearshare\bearshare.exe |
"UDP Query User{55FD55FD-4627-416C-B265-3F10CCEF78C8}C:\program files\streamtorrent 1.0\streamtorrent.exe" = protocol=17 | dir=in | app=c:\program files\streamtorrent 1.0\streamtorrent.exe |
"UDP Query User{7627C776-07AE-4122-A428-43ED290B817F}C:\program files\sopcast\sopcast.exe" = protocol=17 | dir=in | app=c:\program files\sopcast\sopcast.exe |
"UDP Query User{7AAD07C1-23D2-4B7B-99CF-59E33B7235D4}C:\program files\opera\opera.exe" = protocol=17 | dir=in | app=c:\program files\opera\opera.exe |
"UDP Query User{7D824B72-0F5C-4B3F-B551-E137A597F46C}C:\program files\dc++\dcplusplus.exe" = protocol=17 | dir=in | app=c:\program files\dc++\dcplusplus.exe |
"UDP Query User{82C57865-B7F5-4B4E-B6FF-F400D9A2AFCA}C:\program files\tvants\tvants.exe" = protocol=17 | dir=in | app=c:\program files\tvants\tvants.exe |
"UDP Query User{877C37EE-11A3-44FC-B0F9-EAC2712E5A2C}C:\program files\flashget network\flashget 3\flashget3.exe" = protocol=17 | dir=in | app=c:\program files\flashget network\flashget 3\flashget3.exe |
"UDP Query User{89AA2FDF-EDCA-4C45-B430-D47ED28121CB}C:\program files\id software\quake 4\quake4ded.exe" = protocol=17 | dir=in | app=c:\program files\id software\quake 4\quake4ded.exe |
"UDP Query User{8BE6604A-4ECC-401E-92AE-A2F17F29802E}E:\program files\konami\pro evolution soccer 2009\pes2009.exe" = protocol=17 | dir=in | app=e:\program files\konami\pro evolution soccer 2009\pes2009.exe |
"UDP Query User{8CE3AD85-E391-49C3-BF9B-CCEF4656B4B9}C:\program files\limewire\limewire.exe" = protocol=17 | dir=in | app=c:\program files\limewire\limewire.exe |
"UDP Query User{9118FE09-6A00-44B8-9523-7FF8B51CC1B8}C:\users\verold\temp\teamviewer\version4\teamviewer.exe" = protocol=17 | dir=in | app=c:\users\verold\temp\teamviewer\version4\teamviewer.exe |
"UDP Query User{95447D14-3E2E-4651-92FD-6A584E6C14EA}C:\program files\b2bpoker\frontpoker\jre\bin\javaw.exe" = protocol=17 | dir=in | app=c:\program files\b2bpoker\frontpoker\jre\bin\javaw.exe |
"UDP Query User{9A0618EC-0216-4646-88A9-2DE1B7691364}E:\program files\winamp\winamp.exe" = protocol=17 | dir=in | app=e:\program files\winamp\winamp.exe |
"UDP Query User{9ADE3977-2E52-4AC4-AB4D-44BB1831518A}C:\program files\internet explorer\iexplore.exe" = protocol=17 | dir=in | app=c:\program files\internet explorer\iexplore.exe |
"UDP Query User{9B6E4616-51DC-43FA-B94B-0EBDE49311E6}C:\program files\java\jre6\bin\javaw.exe" = protocol=17 | dir=in | app=c:\program files\java\jre6\bin\javaw.exe |
"UDP Query User{A17F3A7A-53F2-4FEA-AAD1-8733E9D4B708}E:\program files\kolekcja klasyki\commandos antologia\commandos3, destination berlin\comm3.exe" = protocol=17 | dir=in | app=e:\program files\kolekcja klasyki\commandos antologia\commandos3, destination berlin\comm3.exe |
"UDP Query User{A92CB021-7DBF-4DBE-871C-BB5D722B9088}C:\program files\sopcast\adv\sopadver.exe" = protocol=17 | dir=in | app=c:\program files\sopcast\adv\sopadver.exe |
"UDP Query User{B4579AD6-A82C-49DE-AF79-B3117CE915CD}C:\program files\java\jre1.6.0\bin\java.exe" = protocol=17 | dir=in | app=c:\program files\java\jre1.6.0\bin\java.exe |
"UDP Query User{B9D1A2A8-4BC4-41F8-87FE-190AD72A66B1}C:\program files\rayv\rayv\rayv.exe" = protocol=17 | dir=in | app=c:\program files\rayv\rayv\rayv.exe |
"UDP Query User{BECEB4F8-9A01-4E8F-95C3-BD2912889608}C:\program files\warcraft iii\war3.exe" = protocol=17 | dir=in | app=c:\program files\warcraft iii\war3.exe |
"UDP Query User{D755232F-C3EE-4B0C-9001-756C517CB3A2}E:\downloads\ds_luksze\dead space.exe" = protocol=17 | dir=in | app=e:\downloads\ds_luksze\dead space.exe |
"UDP Query User{DC1A4723-A859-47FD-BCE7-BD5E5B7953CD}E:\program files\gadu-gadu\gg.exe" = protocol=17 | dir=in | app=e:\program files\gadu-gadu\gg.exe |
"UDP Query User{E3F0790F-927E-4DE5-8B90-FC23E2AF3C4E}C:\program files\dragon age\bin_ship\eacoreserver.exe" = protocol=17 | dir=in | app=c:\program files\dragon age\bin_ship\eacoreserver.exe |
"UDP Query User{E6012B40-B25F-46B8-B028-FA777A3C019A}C:\program files\gadu-gadu 10\gg.exe" = protocol=17 | dir=in | app=c:\program files\gadu-gadu 10\gg.exe |
"UDP Query User{ECDB3731-E250-4909-A884-46274F63E401}E:\program files\codemasters\worms 4 totalna rozwałka\worms 4 mayhem.exe" = protocol=17 | dir=in | app=e:\program files\codemasters\worms 4 totalna rozwałka\worms 4 mayhem.exe |
"UDP Query User{FA52650C-321D-4653-8C0C-37C45E575BAB}E:\program files\ea sports\fifa 11\game\fifa.exe" = protocol=17 | dir=in | app=e:\program files\ea sports\fifa 11\game\fifa.exe |

[color=#E56717]========== HKEY_LOCAL_MACHINE Uninstall List ==========[/color]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}" = PDFCreator
"{001E7FB6-BB6B-4ED0-BEDC-B5404ED96D4E}" = DocProc
"{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}" = Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148
"{0289B35E-DC07-4c7a-9710-BBD686EA4B7D}" = Status
"{0323731F-5EFF-C9AE-B398-6077AE9C67D9}" = Catalyst Control Center Localization Chinese Standard
"{05CAF469-9765-8FBF-10AD-FD621091824A}" = CCC Help English
"{0840B4D6-7DD1-4187-8523-E6FC0007EFB7}" = Windows Live ID Sign-in Assistant
"{084D94A9-D67E-D41B-6B4E-B6A481384D27}" = CCC Help Finnish
"{0A0CADCF-78DA-33C4-A350-CD51849B9702}" = Microsoft .NET Framework 4 Extended
"{0A8DA20B-1F01-D1C5-A24F-91EEE7A94A59}" = Catalyst Control Center Localization Korean
"{0E64B098-8018-4256-BA23-C316A43AD9B0}" = QuickTime
"{11D49772-0D06-0B31-DC09-CE413F9B0C93}" = CCC Help Chinese Traditional
"{12688FD7-CB92-4A5B-BEE4-5C8E0574434F}" = Utility Common Driver
"{12B3A009-A080-4619-9A2A-C6DB151D8D67}" = TOSHIBA Assist
"{13F00518-807A-4B3A-83B0-A7CD90F3A398}" = MarketResearch
"{15AC0C5D-A6FB-4CE2-8CD0-28179EEB5625}" = Nokia Connectivity Cable Driver
"{1701765B-6D93-43C6-A835-DD423517581F}" = OpenOffice.org 3.2
"{172423F9-522A-483A-AD65-03600CE4CA4F}" = Microsoft Works 6-9 Converter
"{1753255A-0AEB-4220-8C75-607B73F0C133}" = Copy
"{18D00C9F-B259-4838-871A-C61FCFF34C59}" = EA SPORTS™ Rugby 08
"{196BB40D-1578-3D01-B289-BEFC77A11A1E}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{212748BB-0DA5-46DE-82A1-403736DC9F27}" = MSVC80_x86
"{22721B8E-8D36-C102-8C79-925C221DD9B4}" = Catalyst Control Center Localization Russian
"{2290A680-4083-410A-ADCC-7092C67FC052}" = Toshiba Online Product Information
"{2614F54E-A828-49FA-93BA-45A3F756BFAA}" = 32 Bit HP CIO Components Installer
"{26A24AE4-039D-4CA4-87B4-2F83216031FF}" = Java™ 6 Update 31
"{26D4FB2E-BA55-3E2C-CC6F-97D6A0A74306}" = AMD Fuel
"{28006915-2739-4EBE-B5E8-49B25D32EB33}" = Atheros Driver Installation Program
"{28599CEE-974A-4AFA-8484-C6FC94984330}" = Majesty Złota Edycja
"{29FA38B4-0AE4-4D0D-8A51-6165BB990BB0}" = WebReg
"{2D1B9BD2-C430-C5D6-6A40-BD00956F9CA4}" = Catalyst Control Center Graphics Previews Vista
"{2ECA81CA-D932-4AD3-AD59-BF5CCF099C83}" = Catalyst Control Center - Branding
"{2F28B3C9-2C89-4206-8B33-8ADC9577C49B}" = Scan
"{3248F0A8-6813-11D6-A77B-00B0D0160000}" = Java™ SE Runtime Environment 6
"{3248F0A8-6813-11D6-A77B-00B0D0160070}" = Java™ 6 Update 7
"{342126E1-173C-4585-BFBE-3EBDD20E3E9E}" = Mobipocket Reader 6.2
"{34E2872D-1493-25E6-FBD8-98FCC1A96645}" = CCC Help Portuguese
"{36FDBE6E-6684-462B-AE98-9A39A1B200CC}" = HP Product Assistant
"{37C866E4-AA67-4725-9E95-A39968DD7960}" = Camera Assistant Software for Toshiba
"{3A6F4A31-8CFD-46B4-8385-E1F384DB121E}" = PDF-XChange Viewer
"{3AC8457C-0385-4BEA-A959-E095F05D6D67}" = Battlefield: Bad Company™ 2
"{3BF34856-1A5F-2AD8-7D50-66BE8A82B5C1}" = CCC Help Spanish
"{3C3901C5-3455-3E0A-A214-0B093A5070A6}" = Microsoft .NET Framework 4 Client Profile
"{415CDA53-9100-476F-A7B2-476691E117C7}" = HP Smart Web Printing
"{42442BC6-5A92-4BC2-9E0C-3D359D548A21}_is1" = Pazera Free MP4 to AVI Converter 1.6
"{45F00029-0A50-43AA-497A-67EFFF1E06F7}" = CCC Help Swedish
"{487B0B9B-DCD4-440D-89A0-A6EDE1A545A3}" = HPSSupply
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4A8B461A-9336-4CF9-98F4-14DD38E673F0}" = BioShock 2
"{4AE3A0CB-87B0-4F51-BECD-3D1F8DFDD62F}" = SAGEM F@st 800-840
"{4CB0307C-565E-4441-86BE-0DF2E4FB828C}" = Microsoft Games for Windows Marketplace
"{4DFF1415-4C29-44A8-BFD4-2BCE249C4991}" = SpPhones
"{4E1D0591-14F7-736E-143A-62DC3E552A1A}" = Catalyst Control Center InstallProxy
"{5034E4E7-A8E7-7BCA-0014-1534C77A7A5C}" = Catalyst Control Center Localization Turkish
"{51B4E156-14A5-4904-9AE4-B1AA2A0E46BE}" = TOSHIBA Supervisor Password
"{5279374D-87FE-4879-9385-F17278EBB9D3}" = TOSHIBA Hardware Setup
"{52EC92CA-771A-F8C8-95A2-37AFB43798B7}" = Catalyst Control Center Localization Spanish
"{543E938C-BDC4-4933-A612-01293996845F}" = UnloadSupport
"{5454085C-840F-4070-8FAA-441000018301}" = BioShock 2
"{55BDC5EB-A3CF-46D6-9F23-3144436AECAE}" = Podreczniki TOSHIBA
"{560F47F7-EB23-44B1-AAFC-667F1CD8FE5C}" = Sp5
"{56C049BE-79E9-4502-BEA7-9754A3E60F9B}" = neroxml
"{58FB2F9A-5F2D-40E8-82DF-4987E60AD8BD}" = Nokia PC Suite
"{5A3C1721-F8ED-11E0-8AFB-B8AC6F97B88E}" = Google Earth
"{5AEDCB07-25E3-4136-BE1E-BB2A2944355D}" = Game Graphic Studio
"{5C82DAE5-6EB0-4374-9254-BE3319BA4E82}" = Skype™ 3.8
"{5DA0E02F-970B-424B-BF41-513A5018E4C0}" = TOSHIBA Disc Creator
"{617C36FD-0CBE-4600-84B2-441CEB12FADF}" = TOSHIBA Extended Tiles for Windows Mobility Center
"{61A994FF-D39B-4937-9DB9-87EC4E91B316}" = USB GAMEPAD
"{61E3FE32-07B9-4563-A3E0-2DE2D620FE10}" = PixiePack Codec Pack
"{620BBA5E-F848-4D56-8BDA-584E44584C5E}" = TOSHIBA Flash Cards Support Utility
"{64FA2F4C-F61D-9A7C-318D-711C63308A61}" = CCC Help German
"{66E6CE0C-5A1E-430C-B40A-0C90FF1804A8}" = eSupportQFolder
"{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}" = Windows Media Player Firefox Plugin
"{6C3959C6-943E-44B3-BAAD-570B04B134E5}" = SpCommon
"{6C5F3BDC-0A1B-4436-A696-5939629D5C31}" = TOSHIBA DVD PLAYER
"{6CA1CD8C-2D65-491E-9467-00A3ACA4A0A9}" = Tropico 3
"{6F5E2F4A-377D-4700-B0E3-8F7F7507EA15}" = CustomerResearchQFolder
"{6F64A42C-6D93-6788-EB4F-07CC066DE194}" = Catalyst Control Center Graphics Previews Common
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{71929EC1-FDB2-4A67-AAAD-936E4539FA84}_is1" = Driver Sweeper 2.1.0
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{72E710CD-51E2-D3BA-108C-F00C54E5B7B0}" = CCC Help Japanese
"{75D84EF7-0D8C-4e70-B3FA-7B42A5D4E0EB}" = Mass Effect 2
"{76D1FBEB-FBBF-0D1E-BB0A-CAA0D19E2C7F}" = ccc-utility
"{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
"{789289CA-F73A-4A16-A331-54D498CE069F}" = Ventrilo
"{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}" = Apple Software Update
"{78C6A78A-8B03-48C8-A47C-78BA1FCA2307}" = TOSHIBA ConfigFree
"{79A4C5D0-EF1A-752A-43F9-C4E79341628A}" = Catalyst Control Center Localization Italian
"{7AC09EE2-08B0-7C97-B8ED-961C58AA9E96}" = Catalyst Control Center Localization Greek
"{7BD5E0A6-DB75-B763-CE09-0D883E97F5DF}" = Catalyst Control Center Localization Thai
"{7CF70E3E-BDC7-5F46-F806-49D8D104A0E3}" = CCC Help Danish
"{7D61830A-1867-6DFA-11FE-A64752B4658D}" = CCC Help Greek
"{80FEE630-084D-50F6-9FC8-75757A87F015}" = Catalyst Control Center Localization Polish
"{824D3839-DAA1-4315-A822-7AE3E620E528}" = VideoToolkit01
"{832D9DE0-8AFC-4689-9819-4DBBDEBD3E4F}" = Microsoft Games for Windows - LIVE Redistributable
"{8389382B-53BA-4A87-8854-91E3D80A5AC7}" = HP Photosmart Essential2.01
"{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}" = Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570
"{87E2B986-07E8-477a-93DC-AF0B6758B192}" = DocProcQFolder
"{8833FFB6-5B0C-4764-81AA-06DFEED9A476}" = Realtek 8169 PCI, 8168 and 8101E PCIe Ethernet Network Card Driver for Windows Vista
"{888F1505-C2B3-4FDE-835D-36353EBD4754}" = Ubisoft Game Launcher
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8ADFC4160D694100B5B8A22DE9DCABD9}" = DivX Player
"{8B743AA0-53B2-11D2-808A-00600895FB43}" = Heroes of Might and Magic III - Złota Edycja
"{8D8B8115-40C1-A707-B7DA-599514076A81}" = Catalyst Pro Control Center
"{8E8780B8-2924-B51D-976B-59EE97713659}" = CCC Help Russian
"{90840409-6000-11D3-8CFE-0150048383C9}" = Microsoft Office Excel Viewer 2003
"{90850415-6000-11D3-8CFE-0150048383C9}" = Microsoft Office Word Viewer 2003
"{95120000-00AF-0415-0000-0000000FF1CE}" = Microsoft Office PowerPoint Viewer 2007 (Polish)
"{95AEBA1F-23F4-3751-73FA-CFCFB962F789}" = CCC Help Polish
"{977D59F6-C638-B0AC-5CE4-D6A615D62033}" = Catalyst Control Center Localization Dutch
"{981FAFFC-35E9-42E0-9C58-9AADE646F92A}" = Diskeeper 2010
"{9954B400-AEB7-638D-E753-BB4ECE1064EE}" = CCC Help English
"{9A1EFCBB-5E3C-7E13-2AAD-7AFA4FD9DBD9}" = Catalyst Control Center Localization Swedish
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{9C2D4047-0E40-499a-AC7A-C4B9BB12FE03}" = TrayApp
"{9EFDFBA8-9174-3C61-8645-28376C5CA994}" = Microsoft .NET Framework 3.5 Language Pack SP1 - plk
"{9FD6F1A8-5550-46AF-8509-271DF0E768B5}" = Dual-Core Optimizer
"{9FE35071-CAB2-4E79-93E7-BFC6A2DC5C5D}" = Wyciszacz napędu CD/DVD
"{A036E231-5A03-4d63-94F6-7864CC77EC48}" = PS_AIO_ProductContext
"{A0EB195B-5876-48E6-879D-33D4B2102610}" = SonicStage 4.3
"{A1C98C40-F126-11D6-A72A-00E07D97B509}" = Syberia
"{A25FF1C0-80B6-4B8B-A551-DC525697A408}" = AMD APP SDK Runtime
"{A2BCA9F1-566C-4805-97D1-7FDC93386723}" = Adobe AIR
"{A66C4716-7E10-4A53-8101-00C3C11D6A9C}" = Kane and Lynch: Dead Men
"{A6D4234C-CB02-4048-AC3E-AD09404FA35A}" = Emdedded IR Driver
"{A73730D7-1D88-3DAB-9A3B-3959093347CC}" = CCC Help Chinese Standard
"{A7E19604-93AF-4611-8C9F-CE509C2B286E}_is1" = VDownloader 3.0.720
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{A942958E-AF92-7901-861B-7F373A1B6ABA}" = AMD Catalyst Install Manager
"{AAD49C89-CA9D-911E-0407-8EE0521EA24D}" = CCC Help Dutch
"{AAF80000-22B9-4CE9-98D6-2CCF359BAC07}" = ABBYY FineReader 8.0 Professional Edition
"{AB5D51AE-EBC3-438D-872C-705C7C2084B0}" = DeviceManagementQFolder
"{AC76BA86-7AD7-1033-7B44-A83000000003}" = Adobe Reader 8.3.1
"{AEA07F97-9088-497c-8821-0F36BD5DC251}" = HPProductAssistant
"{AF7FC1CA-79DF-43c3-90A3-33EFEB9294CE}" = AIO_Scan
"{AFE499B5-FCC4-45E6-A1A5-3C51AE0E539B}" = Mobipocket Creator 4.2
"{B040FEFE-B45F-4e30-B3C6-035F53F544A9}" = c4200_Help
"{B13A7C41581B411290FBC0395694E2A9}" = DivX Converter
"{B22C19AE-6A67-4f28-B541-5AE72FB17A25}" = HP Photosmart All-In-One Software 9.0
"{B4092C6D-E886-4CB2-BA68-FE5A88D31DE6}_is1" = Spybot - Search & Destroy
"{B5FDA445-CAC4-4BA6-A8FB-A7212BD439DE}" = Microsoft XML Parser
"{B7050CBDB2504B34BC2A9CA0A692CC29}" = DivX Web Player
"{B823632F-3B72-4514-8861-B961CE263224}" = PostgreSQL 8.3
"{B9F3A6E6-9C77-4535-9ED9-B16C1EBDFEC2}" = C4200
"{BC093E6F-61D2-4F6D-9463-ECDC2CA25462}" = calibre
"{BCD6CD1A-0DBE-412E-9F25-3B500D1E6BA1}" = SolutionCenter
"{BF49AD34-C4F3-115A-CACE-E06EA0B59EDC}" = CCC Help Korean
"{C23CD6DA-1958-43A5-ADD0-59396572E02E}" = Apple Mobile Device Support
"{C2E4B5BD-32DB-4817-A060-341AB17C3F90}" = Bonjour
"{C3075CFB-4EFE-AD80-587A-3FB74338A44D}" = Catalyst Control Center Localization Finnish
"{C3113E55-7BCB-4de3-8EBF-60E6CE6B2196}_is1" = SiSoftware Sandra Lite 2009.SP2
"{C705D235-051D-B65E-DAF2-E4D104F640A6}" = CCC Help Norwegian
"{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1
"{CCA5EAAD-92F4-4B7A-B5EE-14294C66AB61}" = PlayReady PC Runtime x86
"{CCD663AE-610D-4BDF-AAB0-E914B044527D}" = OpenMG Secure Module 4.7.00
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{CEBB6BFB-D708-4F99-A633-BC2600E01EF6}" = Bluetooth Stack for Windows by Toshiba
"{CEDFF4EA-DFCF-312A-773A-4F743AAF78E2}" = Catalyst Control Center Localization Japanese
"{D08A5DFE-F0C2-74FC-DD56-A3B371E9344D}" = EA Shared Game Component: Activation
"{D0E39A1D-0CEE-4D85-B4A2-E3BE990D075E}" = Destination Component
"{D2FCA41E-AC01-4DCD-B3A7-DC9E32363065}}_is1" = Rapture3D 2.4.4 Game
"{D55BA1E9-0517-C325-00BD-B68087923AE9}" = CCC Help Hungarian
"{D719E8F1-6931-40b4-AC0B-5FE2C097F995}" = C4200_doccd
"{D80A6A73-E58A-4673-AFF5-F12D7110661F}" = Call of Duty® - World at War™
"{D848D140-41C3-4A53-86D8-E866A100B4CD}" = PC Connectivity Solution
"{D99C322D-C21B-40C7-AE71-EE51AA096B6E}" = Nokia Flashing Cable Driver
"{DB780B85-B4B5-4864-A49C-9B706B169C93}" = TIPCI
"{DD3D3F5A-BFB9-CEC4-1A86-619E7FF83300}" = Catalyst Control Center Localization Chinese Traditional
"{DED53B0B-B67C-4244-AE6A-D6FD3C28D1EF}" = Ad-Aware
"{E10DB5DA-E576-40EA-A7FC-1CB2A7B283A6}" = NVIDIA PhysX
"{E1B530E5-3515-AC68-CA75-0932BA837A1A}" = CCC Help Thai
"{E2662C24-B31E-4349-A084-32EB76E8B760}" = BufferChm
"{E38C00D0-A68B-4318-A8A6-F7D4B5B1DF0E}" = Windows Media Encoder 9 Series
"{E39A3770-3DDE-404c-B91F-3522947874A3}" = PS_AIO_Software_min
"{E415C943-37E5-473F-8BAE-043C56734124}" = Sp5TTInt
"{E48469CC-635E-4FD5-A122-1497C286D217}" = Call of Duty® 4 - Modern Warfare™
"{E4A0225B-A975-416C-8CF7-C1C025FD32D6}" = YP-U1
"{E503B4BF-F7BB-3D5F-8BC8-F694B1CFF942}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022.218
"{E54F065A-4DCB-1875-222D-CF27620AF646}" = Catalyst Control Center Localization Portuguese
"{E6802BDF-0F93-6DB7-E542-B1B36BAA9FFF}" = Catalyst Control Center Localization French
"{E737A098-F161-4B6F-AF22-86AAE34F6FBD}" = Pro Evolution Soccer 2012
"{E858ECF5-7644-33F3-EBE5-1A6D4E606F5B}" = CCC Help Turkish
"{E91E8912-769D-42F0-8408-0E329443BABC}" = Ralink Wireless LAN Card
"{E9C18EBD-85BE-47D0-AA73-3FEDCC976B04}" = Toolbox
"{EA6DCFC6-BCA2-D901-7417-19261C50802A}" = Catalyst Control Center Localization Hungarian
"{EB879750-CCBD-4013-BFD5-0294D4DA5BD0}" = Apple Application Support
"{EBFF48F5-3CFA-436F-8FD5-94FB01D3A0A7}" = TOSHIBA SD Memory Utilities
"{ED6C5ECD-5AA4-4054-BF67-8F49526E5765}" = O&O Defrag Professional
"{EF1ADA5A-0B1A-4662-8C55-7475A61D8B65}" = DeviceDiscovery
"{EF4F620F-F295-41D7-92C0-6B635709C850}" = Nokia Software Updater
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F214EAA4-A069-4BAF-9DA4-4DB8BEEDE485}" = DVD MovieFactory for TOSHIBA
"{F6527F8D-F203-CD41-7D39-2C6FBB91DCAD}" = CCC Help Italian
"{F72E2DDC-3DB8-4190-A21D-63883D955FE7}" = PSSWCORE
"{FA4FA322-5C90-4d2b-A019-9E588273DED5}" = PS_AIO_Software
"{FA66CFD7-0977-4C45-AACD-A8BB994B1A05}" = Quake Live Mozilla Plugin
"{FBB22939-6AAD-A6EB-5AA1-BAA166F2D032}" = CCC Help Czech
"{FD4B33E1-24AE-4535-AA7B-162B30FB57CD}" = Sp5Intl
"{FE57DE70-95DE-4B64-9266-84DA811053DB}" = HP Update
"{FE890808-EE76-63DF-6D0E-4609D2520DF0}" = Catalyst Control Center Localization German
"{FEC7CD2E-2BB5-40C3-9592-078F64677E6C}" = PC TWIN SHOCK
"{FEDD27A0-B306-45EF-BF58-B527406B42C8}" = TOSHIBA Value Added Package
"{FEDD8B8B-6EA0-A35C-6CB4-06F1AF4D7769}" = Catalyst Control Center Localization Norwegian
"{FF62A079-FE47-C34A-AB88-C61CA838B007}" = CCC Help French
"{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
"4Musics OGG to MP3 Converter 4.3_is1" = 4Musics OGG to MP3 Converter 4.3
"504244733D18C8F63FF584AEB290E3904E791693" = Pakiet sterowników systemu Windows - Nokia pccsmcfd (08/22/2008 7.0.0.0)
"5986551A16FD8E9B1B4C89E7AAD17C1BB3196D28" = Pakiet sterowników systemu Windows - Nokia Modem (10/27/2008 7.01.0.1)
"6D296974BAB6CA8429D5E687B292A6DA3E9FBD4A" = Pakiet sterowników systemu Windows - Nokia Modem (10/27/2008 3.9)
"7-Zip" = 7-Zip 4.57
"8461-7759-5462-8226" = Vuze
"Adobe AIR" = Adobe AIR
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin
"Advanced MP3 Catalog_is1" = Advanced MP3 Catalog 3.36
"Advanced MP3 Sound Recorder_is1" = Advanced MP3 Sound Recorder 3.6
"All ATI Software" = ATI - Software Uninstall Utility
"Allok 3GP PSP MP4 iPod Video Converter_is1" = Allok 3GP PSP MP4 iPod Video Converter 6.2.0603
"ALLPlayer V3.1_is1" = ALLPlayer V3.X
"Any Video Converter_is1" = Any Video Converter 3.3.5
"Ashampoo Burning Studio 2009_is1" = Ashampoo Burning Studio 2009
"Audacity_is1" = Audacity 1.2.6
"AutoConnect" = AutoConnect v0.1.3.1
"avast" = avast! Internet Security
"Call of Duty: Black Ops_is1" = Call of Duty: Black Ops
"CCleaner" = CCleaner
"com.ea.Activation.919CACB699904AC5D41B606703500DD39747C02D.1" = EA Shared Game Component: Activation
"Convert PPT to PDF For PowerPoint_is1" = Convert PPT to PDF For PowerPoint 3.50
"DAEMON Tools Lite" = DAEMON Tools Lite
"Driver Cleaner" = Driver Cleaner 3
"DriverAgent.exe" = DriverAgent by eSupport.com
"EA Installer.-49286475" = EA Installer
"EncFlac" = EncFlac 1.1.2
"EVEREST Home Edition_is1" = EVEREST Home Edition v2.20
"ffdshow_is1" = ffdshow v1.1.4150 [2011-12-15]
"FLAC" = FLAC 1.2.1b (remove only)
"Free PS Convert driver_is1" = Free PS Convert driver 8.15
"Free WMA to MP3 Converter_is1" = Free WMA to MP3 Converter 1.16
"Gadu-Gadu 10" = Gadu-Gadu 10
"Google Updater" = Aktualizator Google
"HaaliMkx" = Haali Media Splitter
"HEXelon MAX_is1" = HEXelon MAX 6.07
"HijackThis" = HijackThis 2.0.2
"HP Imaging Device Functions" = HP Imaging Device Functions 9.0
"HP Photosmart Essential" = HP Photosmart Essential 2.01
"HP Solution Center & Imaging Support Tools" = HP Solution Center 9.0
"HPExtendedCapabilities" = HP Customer Participation Program 9.0
"HPOCR" = HP OCR Software 9.0
"ImageMagick 6.3.3 Q16_is1" = ImageMagick 6.3.3-7 Q16 (04/15/07)
"InstallShield_{050C1C8E-4A4D-4C2F-B9AE-67E60EE91B7F}" = Call of Duty® 4 - Modern Warfare™ 1.3 Patch
"InstallShield_{3BD633E0-4BF8-4499-9149-88F0767D449C}" = Call of Duty® 4 - Modern Warfare™ 1.4 Patch
"InstallShield_{51B4E156-14A5-4904-9AE4-B1AA2A0E46BE}" = TOSHIBA Hasło administratora
"InstallShield_{5279374D-87FE-4879-9385-F17278EBB9D3}" = Sprzęt instalacyjny TOSHIBA
"InstallShield_{617C36FD-0CBE-4600-84B2-441CEB12FADF}" = TOSHIBA Extended Tiles for Windows Mobility Center
"InstallShield_{620BBA5E-F848-4D56-8BDA-584E44584C5E}" = TOSHIBA Flash Cards Support Utility
"InstallShield_{8503C901-85D7-4262-88D2-8D8B2A7B08B8}" = Call of Duty® 4 - Modern Warfare™ 1.5 Multiplayer Patch
"InstallShield_{931C37FC-594D-43A9-B10F-A2F2B1F03498}" = Call of Duty® 4 - Modern Warfare™ 1.7 Patch
"InstallShield_{A6D4234C-CB02-4048-AC3E-AD09404FA35A}" = Emdedded IR Driver
"InstallShield_{CCD663AE-610D-4BDF-AAB0-E914B044527D}" = OpenMG Secure Module 4.7.00
"InstallShield_{D80A6A73-E58A-4673-AFF5-F12D7110661F}" = Call of Duty® - World at War™
"InstallShield_{DB780B85-B4B5-4864-A49C-9B706B169C93}" = Texas Instruments PCIxx21/x515/xx12 drivers.
"InstallShield_{E48469CC-635E-4FD5-A122-1497C286D217}" = Call of Duty® 4 - Modern Warfare™
"InstallShield_{FEDD27A0-B306-45EF-BF58-B527406B42C8}" = TOSHIBA Value Added Package
"ipla" = ipla 2.3.5
"IrfanView" = IrfanView (remove only)
"ISO Commander" = ISO Commander 1.6 (remove only)
"IVONA - syntezator mowy, wersja rehabilitacyjna" = IVONA - syntezator mowy, wersja rehabilitacyjna
"JDownloader" = JDownloader
"Juniper Network Connect 6.3.0" = Juniper Networks Network Connect 6.3.0
"Kingdoms of Amalur Reckoning_is1" = Kingdoms of Amalur Reckoning
"KLiteCodecPack_is1" = K-Lite Mega Codec Pack 4.3.4
"LADSPA_plugins-win_is1" = LADSPA_plugins-win-0.4.15
"LastFM_is1" = Last.fm 1.5.4.27091
"Machinarium" = Machinarium
"Malwarebytes' Anti-Malware_is1" = Malwarebytes Anti-Malware wersja 1.61.0.1400
"Mansion Poker" = MansionPoker
"MediaInfo" = MediaInfo 0.7.51
"Microsoft .NET Framework 1.1 (1033)" = Microsoft .NET Framework 1.1
"Microsoft .NET Framework 3.5 Language Pack SP1 - plk" = Pakiet językowy programu Microsoft .NET Framework 3.5 z dodatkiem SP1 — PLK
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Microsoft .NET Framework 4 Extended" = Microsoft .NET Framework 4 Extended
"MobilityDotNET" = DH Mobility Modder.NET
"Monkey's Audio_is1" = Monkey's Audio
"Mozilla Firefox 12.0 (x86 pl)" = Mozilla Firefox 12.0 (x86 pl)
"MozillaMaintenanceService" = Mozilla Maintenance Service
"Mp3tag" = Mp3tag v2.43
"mp4UI" = mp4UI
"Muti ID3 Tag Editor" = Alex Buturuga - Muti ID3 Tag Editor 1.3b1
"NAPIPROJEKT_is1" = NAPIPROJEKT 1.0.6.2
"Nero8Lite_is1" = Nero 8 Lite 8.3.6.0
"Nokia PC Suite" = Nokia PC Suite
"OpenAL" = OpenAL
"OpenMG HotFix4.7-07-13-22-01" = OpenMG Limited Patch 4.7-07-14-05-01
"Opera 11.64.1403" = Opera 11.64
"OSPS_is1" = OSPS-Odinstaluj
"PDFtoEPUB" = PDFtoEPUB
"PIXresizer_is1" = PIXresizer 2.0.3
"Postal 2_is1" = Portal 2
"PowerISO" = PowerISO
"PunkBusterSvc" = PunkBuster Services
"qt7lite_is1" = QT Lite 2.5.1
"QuicktimeAlt_is1" = QuickTime Alternative 1.56
"RayV" = PL-IPTV
"RealAlt_is1" = Real Alternative 2.0.2
"SC_UniPad_is1" = SC UniPad 1.20
"Sina Web TV" = Sina Web TV
"SopCast" = SopCast 3.0.1
"SpeedBit Video Accelerator" = SpeedBit Video Accelerator
"SpeedBit Video Downloader" = SpeedBit Video Downloader
"SubEdit - Vista WMP Patch_is1" = SubEdit - Vista WMP Patch
"SubEdit-Player_is1" = SubEdit-Player
"Syberia" = Syberia
"SynTPDeinstKey" = Synaptics Pointing Device Driver
"System Cleaner 5" = System Cleaner 5
"Teamspeak 2 RC2_is1" = TeamSpeak 2 RC2
"The Elder Scrolls V Skyrim_is1" = The Elder Scrolls V Skyrim
"TOSHIBA Software Modem" = TOSHIBA Software Modem
"VideoGet_is1" = VideoGet
"VistaGlazz_is1" = VistaGlazz 2.1
"WebSTAR DPC2100 Uninstall" = Scientific-Atlanta WebSTAR 2000 series Cable Modem
"Winamp" = Winamp
"Winamp Toolbar for Firefox" = Winamp Toolbar for Firefox
"WinAVI Video Converter 9.09.0" = WinAVI Video Converter 9.0
"Windows Media Encoder 9" = Windows Media Encoder 9 Series
"WinPcapInst" = WinPcap 4.1.1
"WinRAR archiver" = Archiwizator WinRAR
"winscp3_is1" = WinSCP 4.1.6
"World of Goo/PL-Polish_is1" = World of Goo

[color=#E56717]========== HKEY_CURRENT_USER Uninstall List ==========[/color]

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Amazon Kindle" = Amazon Kindle
"Google Chrome" = Google Chrome
"Juniper_Setup_Client" = Juniper Networks Setup Client
"Octoshape Streaming Services" = Octoshape Streaming Services
"Winamp Detect" = Detektor Winampa

[color=#E56717]========== Last 20 Event Log Errors ==========[/color]

[ Application Events ]
Error - 2012-06-07 13:18:27 | Computer Name = Laptop-Warszawa | Source = Application Hang | ID = 1002
Description = Program winamp.exe w wersji 5.6.2.3199 zatrzymał interakcję z systemem
Windows i został zamknięty. Aby zobaczyć, czy jest dostępnych więcej informacji
dotyczących tego problemu, sprawdź historię problemu w panelu sterowania raportami
i rozwiązaniami problemów. Identyfikator procesu: 9c8 Godzina rozpoczęcia: 01cd44c93660bc36
Godzina
zakończenia: 12

Error - 2012-06-07 16:28:40 | Computer Name = Laptop-Warszawa | Source = MsiInstaller | ID = 1024
Description =

Error - 2012-06-07 16:28:50 | Computer Name = Laptop-Warszawa | Source = MsiInstaller | ID = 1024
Description =

Error - 2012-06-07 16:28:59 | Computer Name = Laptop-Warszawa | Source = MsiInstaller | ID = 1024
Description =

Error - 2012-06-07 16:29:04 | Computer Name = Laptop-Warszawa | Source = MsiInstaller | ID = 1024
Description =

Error - 2012-06-07 16:29:08 | Computer Name = Laptop-Warszawa | Source = MsiInstaller | ID = 1024
Description =

Error - 2012-06-07 18:22:21 | Computer Name = Laptop-Warszawa | Source = Perflib | ID = 1008
Description =

Error - 2012-06-08 18:12:11 | Computer Name = Laptop-Warszawa | Source = Perflib | ID = 1010
Description =

Error - 2012-06-08 19:22:59 | Computer Name = Laptop-Warszawa | Source = Perflib | ID = 1008
Description =

Error - 2012-06-09 14:10:37 | Computer Name = Laptop-Warszawa | Source = Application Error | ID = 1000
Description = Aplikacja powodująca błąd winamp.exe, wersja 5.6.2.3199, sygnatura
czasowa 0x4ee2440b, moduł powodujący błąd gen_audioscrobbler.dll, wersja 1.1.11.0,
sygnatura czasowa 0x4714013b, kod wyjątku 0xc0000005, przesunięcie błędu 0x000321c0,
identyfikator
procesu 0x14cc, godzina rozpoczęcia aplikacji 0x01cd464e938add2d.

Error - 2012-06-09 14:11:59 | Computer Name = Laptop-Warszawa | Source = Application Error | ID = 1000
Description = Aplikacja powodująca błąd winamp.exe, wersja 5.6.2.3199, sygnatura
czasowa 0x4ee2440b, moduł powodujący błąd gen_audioscrobbler.dll, wersja 1.1.11.0,
sygnatura czasowa 0x4714013b, kod wyjątku 0xc0000005, przesunięcie błędu 0x000321c0,
identyfikator
procesu 0x1a70, godzina rozpoczęcia aplikacji 0x01cd466b322adc7d.

[ Media Center Events ]
Error - 2008-04-17 12:36:48 | Computer Name = Laptop-Warszawa | Source = MCUpdate | ID = 0
Description = DownloadPackgeTask.SubTasksComplete: nie można pobrać pakietu MCESpotlight.

[ System Events ]
Error - 2008-12-25 10:58:48 | Computer Name = Laptop-Warszawa | Source = Service Control Manager | ID = 7000
Description =

Error - 2008-12-25 10:58:48 | Computer Name = Laptop-Warszawa | Source = Service Control Manager | ID = 7000
Description =

Error - 2008-12-25 10:58:48 | Computer Name = Laptop-Warszawa | Source = Service Control Manager | ID = 7000
Description =

Error - 2008-12-25 11:14:50 | Computer Name = Laptop-Warszawa | Source = volsnap | ID = 393252
Description = Wykonywanie kopii w tle woluminu C: zostało przerwane, ponieważ nie
można powiększyć magazynu kopii w tle z powodu limitu wprowadzonego przez użytkownika.

Error - 2008-12-25 16:39:24 | Computer Name = Laptop-Warszawa | Source = EventLog | ID = 6008
Description = Poprzednie zamknięcie systemu przy 20:36:04 na 2008-12-25 było nieoczekiwane.

Error - 2008-12-25 16:39:33 | Computer Name = Laptop-Warszawa | Source = HTTP | ID = 15016
Description =

Error - 2008-12-25 16:40:54 | Computer Name = Laptop-Warszawa | Source = Service Control Manager | ID = 7000
Description =

Error - 2008-12-25 16:40:54 | Computer Name = Laptop-Warszawa | Source = Service Control Manager | ID = 7000
Description =

Error - 2008-12-25 16:40:54 | Computer Name = Laptop-Warszawa | Source = Service Control Manager | ID = 7000
Description =

Error - 2008-12-26 12:03:08 | Computer Name = Laptop-Warszawa | Source = EventLog | ID = 6008
Description = Poprzednie zamknięcie systemu przy 03:07:27 na 2008-12-26 było nieoczekiwane.


< End of report >
[/log]



RSIT:

[log]

Logfile of random's system information tool 1.09 (written by random/random)
Run by Verold at 2012-06-09 23:25:00
Microsoft® Windows Vista™ Home Premium Service Pack 2
System drive C: has 649 MB (1%) free of 95 GB
Total RAM: 2045 MB (51% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 23:26:06, on 2012-06-09
Platform: Windows Vista SP2 (WinNT 6.00.1906)
MSIE: Internet Explorer v8.00 (8.00.6001.19190)
Boot mode: Normal

Running processes:
C:\Windows\system32\taskeng.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\TOSHIBA\Power Saver\TPwrMain.exe
C:\Program Files\TOSHIBA\SmoothView\SmoothView.exe
C:\Program Files\TOSHIBA\FlashCards\TCrdMain.exe
C:\Program Files\TOSHIBA\Utilities\KeNotify.exe
C:\Program Files\TOSHIBA\ConfigFree\NDSTray.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\PowerISO\PWRISOVM.EXE
C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
C:\Program Files\TOSHIBA\ConfigFree\CFSwMgr.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Windows\WindowsMobile\wmdSync.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\Program Files\Alwil Software\Avast5\AvastUI.exe
C:\Windows\ehome\ehtray.exe
C:\Program Files\Nokia\Nokia PC Suite 7\PCSuite.exe
C:\Program Files\DAEMON Tools Lite\DTLite.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtMng.exe
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\Program Files\OpenOffice.org 3\program\soffice.exe
C:\Windows\ehome\ehmsas.exe
C:\Program Files\OpenOffice.org 3\program\soffice.bin
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
c:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosA2dp.exe
c:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtHid.exe
c:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtHsp.exe
c:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosAVRC.exe
c:\Program Files\Toshiba\Bluetooth Toshiba Stack\tosOBEX.exe
C:\Program Files\TOSHIBA\Bluetooth Toshiba Stack\TosBtProc.exe
C:\Windows\system32\wuauclt.exe
C:\Windows\system32\conime.exe
C:\Program Files\Winamp\winamp.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Users\Verold\Desktop\logi\RSIT.exe
C:\Program Files\trend micro\Verold.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = [url="http://www.gazeta.pl/0,0.html?p=128"]http://www.gazeta.pl/0,0.html?p=128[/url]
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = [url="http://go.microsoft.com/fwlink/?LinkId=69157"]http://go.microsoft....k/?LinkId=69157[/url]
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = [url="http://go.microsoft.com/fwlink/?LinkId=54896"]http://go.microsoft....k/?LinkId=54896[/url]
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = [url="http://go.microsoft.com/fwlink/?LinkId=54896"]http://go.microsoft....k/?LinkId=54896[/url]
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = [url="http://go.microsoft.com/fwlink/?LinkId=69157"]http://go.microsoft....k/?LinkId=69157[/url]
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: Vuze Remote Toolbar - {ba14329e-9550-4989-b3f2-9732e92d17cc} - C:\Program Files\Vuze_Remote\tbVuze.dll
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: flashget2 urlcatch - {1F364306-AA45-47B5-9F9D-39A8B94E7EF1} - (no file)
O2 - BHO: Skype add-on (mastermind) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O2 - BHO: SBCONVERT - {3017FB3E-9A77-4396-88C5-0EC9548FB42F} - C:\Program Files\SpeedBit Video Downloader\Toolbar\tbcore3.dll
O2 - BHO: Java™ Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll
O2 - BHO: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.2.4204.1700\swg.dll
O2 - BHO: FlashGetBHO - {b070d3e3-fec0-47d9-8e8a-99d4eeb3d3b0} - (no file)
O2 - BHO: Vuze Remote Toolbar - {ba14329e-9550-4989-b3f2-9732e92d17cc} - C:\Program Files\Vuze_Remote\tbVuze.dll
O2 - BHO: Java™ Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: GrabberObj Class - {FF7C3CF0-4B15-11D1-ABED-709549C10000} - C:\PROGRA~1\SpeedBit Video Downloader\Toolbar\grabber.dll
O3 - Toolbar: SpeedBit Video Downloader - {0329E7D6-6F54-462D-93F6-F5C3118BADF2} - C:\Program Files\SpeedBit Video Downloader\Toolbar\tbcore3.dll
O3 - Toolbar: Vuze Remote Toolbar - {ba14329e-9550-4989-b3f2-9732e92d17cc} - C:\Program Files\Vuze_Remote\tbVuze.dll
O3 - Toolbar: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll
O4 - HKLM\..\Run: [TPwrMain] %ProgramFiles%\TOSHIBA\Power Saver\TPwrMain.EXE
O4 - HKLM\..\Run: [HSON] %ProgramFiles%\TOSHIBA\TBS\HSON.exe
O4 - HKLM\..\Run: [SmoothView] %ProgramFiles%\Toshiba\SmoothView\SmoothView.exe
O4 - HKLM\..\Run: [00TCrdMain] %ProgramFiles%\TOSHIBA\FlashCards\TCrdMain.exe
O4 - HKLM\..\Run: [KeNotify] C:\Program Files\TOSHIBA\Utilities\KeNotify.exe
O4 - HKLM\..\Run: [SVPWUTIL] C:\Program Files\TOSHIBA\Utilities\SVPWUTIL.exe SVPwUTIL
O4 - HKLM\..\Run: [NDSTray.exe] NDSTray.exe
O4 - HKLM\..\Run: [topi] C:\Program Files\TOSHIBA\Toshiba Online Product Information\topi.exe -startup
O4 - HKLM\..\Run: [Camera Assistant Software] "C:\Program Files\Camera Assistant Software for Toshiba\traybar.exe"
O4 - HKLM\..\Run: [Toshiba Registration] C:\Program Files\Toshiba\Registration\ToshibaRegistration.exe
O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe" -start
O4 - HKLM\..\Run: [adiras] adiras.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [amd_dc_opt] C:\Program Files\AMD\Dual-Core Optimizer\amd_dc_opt.exe
O4 - HKLM\..\Run: [PWRISOVM.EXE] C:\Program Files\PowerISO\PWRISOVM.EXE
O4 - HKLM\..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
O4 - HKLM\..\Run: [OODefragTray] C:\Program Files\OO Software\Defrag\oodtray.exe
O4 - HKLM\..\Run: [Malwarebytes Anti-Malware (reboot)] "C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe" /runcleanupscript
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe"
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [Malwarebytes' Anti-Malware] "C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [Windows Mobile-based device management] %windir%\WindowsMobile\wmdSync.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime Alternative\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [avast] "C:\Program Files\Alwil Software\Avast5\avastUI.exe" /nogui
O4 - HKCU\..\Run: [ISUSPM Startup] C:\PROGRA~1\COMMON~1\INSTAL~1\UPDATE~1\isuspm.exe -startup
O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
O4 - HKCU\..\Run: [PC Suite Tray] "C:\Program Files\Nokia\Nokia PC Suite 7\PCSuite.exe" -onlytray
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
O4 - Startup: OpenOffice.org 3.2.lnk = C:\Program Files\OpenOffice.org 3\program\quickstart.exe
O4 - Global Startup: Bluetooth Manager.lnk = ?
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
O8 - Extra context menu item: Download all by FlashGet3 - C:\Users\Verold\AppData\Roaming\FlashGetBHO\GetAllUrl.htm
O8 - Extra context menu item: Download by FlashGet3 - C:\Users\Verold\AppData\Roaming\FlashGetBHO\GetUrl.htm
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre6\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre6\bin\ssv.dll
O9 - Extra button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O15 - Trusted Zone: [url="http://software.kuaiche.com"]http://software.kuaiche.com[/url]
O16 - DPF: {68282C51-9459-467B-95BF-3C0E89627E55} (MksSkanerOnline Class) - [url="http://www.mks.com.pl/skaner/SkanerOnline.cab"]http://www.mks.com.p...kanerOnline.cab[/url]
O16 - DPF: {F27237D7-93C8-44C2-AC6E-D6057B9A918F} (JuniperSetupClientControl Class) - [url="https://ssl.wum.edu.pl/dana-cached/sc/JuniperSetupClient.cab"]https://ssl.wum.edu....SetupClient.cab[/url]
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\Windows\system32\browseui.dll
O23 - Service: Lavasoft Ad-Aware Service (aawservice) - Lavasoft - E:\Program Files\Lavasoft\Ad-Aware\aawservice.exe
O23 - Service: Agere Modem Call Progress Audio (AgereModemAudio) - Agere Systems - C:\Windows\system32\agrsmsvc.exe
O23 - Service: AMD FUEL Service - Advanced Micro Devices, Inc. - C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: Ati External Event Utility - ATI Technologies Inc. - C:\Windows\system32\Ati2evxx.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: avast! Firewall - AVAST Software - C:\Program Files\Alwil Software\Avast5\afwServ.exe
O23 - Service: ConfigFree Service (CFSvcs) - TOSHIBA CORPORATION - C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe
O23 - Service: Diskeeper - Diskeeper Corporation - E:\Program Files\Diskeeper Corporation\Diskeeper\DkService.exe
O23 - Service: Juniper Network Connect Service (dsNcService) - Juniper Networks - C:\Program Files\Juniper Networks\Common Files\dsNcService.exe
O23 - Service: Usługa Google Update (gupdate1c995bddcd4e9da) (gupdate1c995bddcd4e9da) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Usługa Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: iolo FileInfoList Service (ioloFileInfoList) - Unknown owner - C:\Program Files\iolo\common\lib\ioloServiceManager.exe (file missing)
O23 - Service: iolo System Service (ioloSystemService) - Unknown owner - C:\Program Files\iolo\common\lib\ioloServiceManager.exe (file missing)
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: MSCSPTISRV - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\MSCSPTISRV.exe
O23 - Service: NMIndexingService - Unknown owner - C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe (file missing)
O23 - Service: O&O Defrag - O&O Software GmbH - C:\Program Files\OO Software\Defrag\oodag.exe
O23 - Service: PACSPTISVR - Unknown owner - C:\Program Files\Common Files\Sony Shared\AVLib\PACSPTISVR.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: SiSoftware Deployment Agent Service (SandraAgentSrv) - SiSoftware - C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2009.SP2\RpcAgentSrv.exe
O23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: SonicStage Back-End Service - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\SsBeSvc.exe
O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\SPTISRV.exe
O23 - Service: SonicStage SCSI Service (SSScsiSV) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\SSScsiSV.exe
O23 - Service: TOSHIBA Navi Support Service (TNaviSrv) - TOSHIBA Corporation - C:\Program Files\TOSHIBA\TOSHIBA DVD PLAYER\TNaviSrv.exe
O23 - Service: TOSHIBA Optical Disc Drive Service (TODDSrv) - TOSHIBA Corporation - C:\Windows\system32\TODDSrv.exe
O23 - Service: TOSHIBA Power Saver (TosCoSrv) - TOSHIBA Corporation - C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe
O23 - Service: TOSHIBA Bluetooth Service - TOSHIBA CORPORATION - c:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe
O23 - Service: CLCV0 (UTSCSI) - Unknown owner - C:\Windows\system32\UTSCSI.EXE

--
End of file - 13482 bytes

======Scheduled tasks folder======

C:\Windows\tasks\Google Software Updater.job
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-3458874613-3300990240-4131716576-1000Core.job
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-3458874613-3300990240-4131716576-1000UA.job

=========Mozilla firefox=========

ProfilePath - C:\Users\Verold\AppData\Roaming\Mozilla\Firefox\Profiles\ywmsv06d.default

prefs.js - "browser.search.useDBForOrder" - true
prefs.js - "browser.startup.homepage" - "http://www.gazeta.pl/0, 0.html?p=128"

"{20a82645-c095-46ed-80e3-08825760534b}"=c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
"bkmrksync@nokia.com"=C:\Program Files\Nokia\Nokia PC Suite 7\bkmrksync\
"{0329E7D6-6F54-462D-93F6-F5C3118BADF2}"=C:\Program Files\SpeedBit Video Downloader\SPFireFox
"wrc@avast.com"=C:\Program Files\Alwil Software\Avast5\WebRep\FF


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 11.2.202.235 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF32_11_2_202_235.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@divx.com/DivX Browser Plugin,version=1.0.0]
"Description"=DivX Web Player
"Path"=C:\Program Files\DivX\DivX Web Player\npdivx32.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@divx.com/DivX Content Upload Plugin,version=1.0.0]
"Description"=DivX® Content Upload Plugin
"Path"=C:\Program Files\DivX\DivX Content Uploader\npUpload.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@divx.com/DivX Player Plugin,version=1.0.0]
"Description"=DivX® Player Plugin for VOD Content
"Path"=C:\Program Files\DivX\DivX Player\npDivxPlayerPlugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf]
"Description"=
"Path"=C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Google.com/GoogleEarthPlugin]
"Description"=Google Earth in your browser
"Path"=C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@idsoftware.com/QuakeLive]
"Description"=
"Path"=C:\ProgramData\id Software\QuakeLive\npquakezero.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre6\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files\Microsoft Silverlight\4.1.10111.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WPF,version=3.5]
"Description"=Windows Presentation Foundation plug-in for Mozilla browsers
"Path"=C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@pack.google.com/Google Updater;version=14]
"Description"=Google Updater
"Path"=C:\Program Files\Google\Google Updater\2.4.2432.1652\npCIDetect14.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@rayv.com/rayvplugin]
"Description"=RayV Plugin
"Path"=C:\Program Files\RayV\RayV\plugins\nprayvplugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@real.com/nppl3260;version=6.0.12.450]
"Description"=RealPlayer™ LiveConnect-Enabled Plug-In
"Path"=C:\Program Files\Real Alternative\browser\plugins\nppl3260.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@real.com/nprpjplug;version=6.0.12.448]
"Description"=6.0.12.448
"Path"=C:\Program Files\Real Alternative\browser\plugins\nprpjplug.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@real.com/nsJSRealPlayerPlugin;version=]
"Description"=
"Path"=

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.21.111\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.21.111\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@veetle.com/vbp;version=0.9.16]
"Description"=Veetle Broadcaster Plugin
"Path"=C:\Program Files\Veetle\VLCBroadcast\npvbp.dll

C:\Program Files\Mozilla Firefox\extensions\
{85E85FF9-E50C-42DE-8A3D-61485FD6C8DB}
{972ce4c6-7e08-4474-a285-3208198ce6fd}
{DB9127A2-3381-41ec-82B3-1B6ED4C6F29A}

C:\Program Files\Mozilla Firefox\components\
binary.manifest
browsercomps.dll
FlashGet3_En.xpi
nsIQTScriptablePlugin.xpt

C:\Program Files\Mozilla Firefox\plugins\
npdeployJava1.dll
nppdf32.dll
npPDFXCviewNPPlugin.dll
npqtplugin.dll
npqtplugin2.dll
npqtplugin3.dll
npqtplugin4.dll
npqtplugin5.dll
npqtplugin6.dll
npqtplugin7.dll
npwachk.dll
QuickTimePlugin.class

C:\Program Files\Mozilla Firefox\searchplugins\
allegro-pl.xml
fbc-pl.xml
google.xml
merlin-pl.xml
pwn-pl.xml
wikipedia-pl.xml
wp-pl.xml

C:\Users\Verold\AppData\Roaming\Mozilla\Firefox\Profiles\ywmsv06d.default\extensions\
vshare@toolbar
{0b38152b-1b20-484d-a11f-5e04a9b0661f}
{20a82645-c095-46ed-80e3-08825760534b}

C:\Users\Verold\AppData\Roaming\Mozilla\Firefox\Profiles\ywmsv06d.default\searchplugins\
winamp-search.xml

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
Adobe PDF Reader Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2011-08-30 61888]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1F364306-AA45-47B5-9F9D-39A8B94E7EF1}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{22BF413B-C6D2-4d91-82A9-A0F997BA588C}]
Skype add-on (mastermind) - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2008-11-18 1082880]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3017FB3E-9A77-4396-88C5-0EC9548FB42F}]
SBCONVERT Class - C:\Program Files\SpeedBit Video Downloader\Toolbar\tbcore3.dll [2010-02-15 2447360]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java™ Plug-In SSV Helper - C:\Program Files\Java\jre6\bin\ssv.dll [2012-03-21 325408]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! WebRep - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll [2012-03-07 1003704]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-08-18 403840]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
Google Toolbar Notifier BHO - C:\Program Files\Google\GoogleToolbarNotifier\5.2.4204.1700\swg.dll [2011-09-27 761840]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{b070d3e3-fec0-47d9-8e8a-99d4eeb3d3b0}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{ba14329e-9550-4989-b3f2-9732e92d17cc}]
Vuze Remote Toolbar - C:\Program Files\Vuze_Remote\tbVuze.dll [2010-09-12 3863136]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java™ Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2012-03-21 42272]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FF7C3CF0-4B15-11D1-ABED-709549C10000}]
GrabberObj Class - C:\PROGRA~1\SpeedBit Video Downloader\Toolbar\grabber.dll [2010-02-15 185944]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{0329E7D6-6F54-462D-93F6-F5C3118BADF2} - SpeedBit Video Downloader - C:\Program Files\SpeedBit Video Downloader\Toolbar\tbcore3.dll [2010-02-15 2447360]
{ba14329e-9550-4989-b3f2-9732e92d17cc} - Vuze Remote Toolbar - C:\Program Files\Vuze_Remote\tbVuze.dll [2010-09-12 3863136]
{8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - avast! WebRep - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll [2012-03-07 1003704]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"TPwrMain"=C:\Program Files\TOSHIBA\Power Saver\TPwrMain.EXE [2007-03-29 411192]
"HSON"=C:\Program Files\TOSHIBA\TBS\HSON.exe [2006-12-07 55416]
"SmoothView"=C:\Program Files\Toshiba\SmoothView\SmoothView.exe [2007-05-23 509496]
"00TCrdMain"=C:\Program Files\TOSHIBA\FlashCards\TCrdMain.exe [2007-05-22 538744]
"KeNotify"=C:\Program Files\TOSHIBA\Utilities\KeNotify.exe [2006-11-06 34352]
"SVPWUTIL"=C:\Program Files\TOSHIBA\Utilities\SVPWUTIL.exe [2006-03-22 438272]
"NDSTray.exe"=NDSTray.exe []
"topi"=C:\Program Files\TOSHIBA\Toshiba Online Product Information\topi.exe [2007-04-02 577536]
"Camera Assistant Software"=C:\Program Files\Camera Assistant Software for Toshiba\traybar.exe [2007-04-10 413696]
"Toshiba Registration"=C:\Program Files\Toshiba\Registration\ToshibaRegistration.exe [2007-05-04 571024]
"ISUSScheduler"=C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe [2004-04-13 69632]
"adiras"=C:\Windows\adiras.exe [2007-02-13 194128]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2008-06-20 1316136]
"amd_dc_opt"=C:\Program Files\AMD\Dual-Core Optimizer\amd_dc_opt.exe [2008-07-22 77824]
"PWRISOVM.EXE"=C:\Program Files\PowerISO\PWRISOVM.EXE [2008-07-07 167936]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [2009-06-02 7518752]
"OODefragTray"=C:\Program Files\OO Software\Defrag\oodtray.exe [2009-09-12 2524416]
"Malwarebytes Anti-Malware (reboot)"=C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe [2012-04-04 981680]
"Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe [2011-08-31 40368]
"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2011-03-29 937920]
"APSDaemon"=C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe [2012-02-20 59240]
"StartCCC"=C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2011-11-09 343168]
"Malwarebytes' Anti-Malware"=C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe [2012-04-04 462408]
"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2012-01-18 254696]
"Windows Mobile-based device management"=C:\Windows\WindowsMobile\wmdSync.exe [2006-11-02 215552]
"QuickTime Task"=C:\Program Files\QuickTime Alternative\QTTask.exe [2012-04-18 421888]
"avast"=C:\Program Files\Alwil Software\Avast5\avastUI.exe [2012-03-07 4241512]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"ISUSPM Startup"=C:\PROGRA~1\COMMON~1\INSTAL~1\UPDATE~1\isuspm.exe [2004-04-17 196608]
"ehTray.exe"=C:\Windows\ehome\ehTray.exe [2008-01-19 125952]
"PC Suite Tray"=C:\Program Files\Nokia\Nokia PC Suite 7\PCSuite.exe [2008-12-03 1205760]
"DAEMON Tools Lite"=C:\Program Files\DAEMON Tools Lite\DTLite.exe [2012-01-19 3477312]
"WMPNSCFG"=C:\Program Files\Windows Media Player\WMPNSCFG.exe [2008-01-19 202240]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Bluetooth Manager.lnk - C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtMng.exe
HP Digital Imaging Monitor.lnk - C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe

C:\Users\Verold\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
OpenOffice.org 3.2.lnk - C:\Program Files\OpenOffice.org 3\program\quickstart.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{AEB6717E-7E19-11d0-97EE-00C04FD91972}"= []

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aawservice]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\aawservice]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfPf]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfRd]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfUsbccidDriver]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableUIADesktopToggle"=0

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=227
"NoDrives"=0
"BindDirectlyToPropertySetStorage"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"C:\Program Files\uusee\UUSeePlayer.exe"="C:\Program Files\uusee\UUSeePlayer.exe:*:Enabled:UUPlayer"
"C:\Program Files\PPMate\ppmate.exe"="C:\Program Files\PPMate\ppmate.exe:*:Enabled:PPMate"
"C:\Program Files\PPMate\ppamnet.exe"="C:\Program Files\PPMate\ppamnet.exe:*:Enabled:PPMate"
"C:\Program Files\PPStream\PPStream.exe"="C:\Program Files\PPStream\PPStream.exe:*:Enabled:PPSÍřÂçµçĘÓ"
"C:\Program Files\PPStream\PPSAP.exe"="C:\Program Files\PPStream\PPSAP.exe:*:Enabled:PPStream ÍřÂçĽÓËŮĆ÷"
"C:\Program Files\FlashGet Network\FlashGet universal\FlashGet.exe"="C:\Program Files\FlashGet Network\FlashGet universal\FlashGet.exe:*:Enabled:Flashget2"
"C:\Program Files\FlashGet Network\FlashGet universal\LiveUpdate.exe"="C:\Program Files\FlashGet Network\FlashGet universal\LiveUpdate.exe:*:Enabled:FGLiveUpdate"
"C:\Program Files\FlashGet Network\FlashGet universal\LiveUpdateEx.exe"="C:\Program Files\FlashGet Network\FlashGet universal\LiveUpdateEx.exe:*:Enabled:FGLiveUpdateEx"
"C:\Program Files\FlashGet Network\FlashGet 3\FlashGet3.exe"="C:\Program Files\FlashGet Network\FlashGet 3\FlashGet3.exe:*:Enabled:Flashget3"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.cvid"=iccvid.dll
"msacm.dvacm"=C:\PROGRA~1\COMMON~1\ULEADS~1\vio\dvacm.acm
"MSVideo8"=VfWWDM32.dll
"VIDC.FPS1"=frapsvid.dll
"msacm.lhacm"=lhacm.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"VIDC.DIVX"=divx.dll
"VIDC.YV12"=yv12vfw.dll
"msacm.ac3acm"=ac3acm.acm
"msacm.lameacm"=lameACM.acm
"vidc.tscc"=tsccvid.dll
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"wave5"=wdmaud.drv
"midi5"=wdmaud.drv
"mixer5"=wdmaud.drv
"aux2"=wdmaud.drv
"VIDC.FFDS"=ff_vfw.dll
"msacm.avis"=ff_acm.acm
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1

======List of files/folders created in the last 1 month======

2012-06-09 23:25:00 ----D---- C:\rsit
2012-06-09 04:07:27 ----A---- C:\TDSSKiller.2.7.36.0_09.06.2012_04.07.27_log.txt
2012-06-09 01:28:19 ----A---- C:\Windows\system32\drivers\aswFW.sys
2012-06-09 01:23:35 ----A---- C:\Windows\system32\drivers\aswNdis2.sys
2012-06-09 01:23:32 ----A---- C:\Windows\system32\drivers\aswKbd.sys
2012-06-09 01:23:05 ----A---- C:\Windows\system32\drivers\aswNdis.sys
2012-06-09 00:35:47 ----D---- C:\Program Files\SkanerOnline
2012-06-08 01:05:54 ----D---- C:\Windows\temp
2012-06-08 01:03:54 ----SHD---- C:\$RECYCLE.BIN
2012-06-07 23:47:07 ----D---- C:\ProgramData\Spybot - Search & Destroy
2012-06-07 23:47:07 ----D---- C:\Program Files\Spybot - Search & Destroy
2012-05-29 20:11:10 ----A---- C:\Windows\system32\AVERM.dll
2012-05-29 20:11:09 ----A---- C:\Windows\system32\AVEQT.dll
2012-05-29 20:11:05 ----D---- C:\Program Files\Allok 3GP PSP MP4 iPod Video Converter
2012-05-29 20:01:02 ----D---- C:\Program Files\SubEdit-Player
2012-05-15 21:56:18 ----D---- C:\ProgramData\Mozilla
2012-05-15 21:56:15 ----D---- C:\Program Files\Mozilla Maintenance Service
2012-05-14 23:36:37 ----D---- C:\ProgramData\id Software

======List of files/folders modified in the last 1 month======

2012-06-09 23:26:06 ----D---- C:\Program Files\Trend Micro
2012-06-09 23:25:43 ----D---- C:\Windows\Prefetch
2012-06-09 23:25:25 ----D---- C:\Windows\tracing
2012-06-09 04:07:32 ----D---- C:\Windows\system32\drivers
2012-06-09 02:13:42 ----SHD---- C:\System Volume Information
2012-06-09 01:37:26 ----D---- C:\Windows
2012-06-09 01:27:33 ----D---- C:\Windows\system32\catroot
2012-06-09 01:27:33 ----D---- C:\Windows\inf
2012-06-09 01:23:03 ----D---- C:\Windows\System32
2012-06-09 00:35:47 ----SD---- C:\Windows\Downloaded Program Files
2012-06-09 00:35:47 ----D---- C:\Program Files
2012-06-08 01:01:28 ----A---- C:\Windows\system.ini
2012-06-08 00:55:33 ----D---- C:\Windows\AppPatch
2012-06-08 00:55:31 ----D---- C:\Program Files\Common Files
2012-06-07 23:47:07 ----D---- C:\ProgramData
2012-06-07 22:29:08 ----SHD---- C:\Windows\Installer
2012-06-05 22:04:21 ----D---- C:\Users\Verold\AppData\Roaming\Azureus
2012-06-04 02:22:55 ----D---- C:\Program Files\Calibre2
2012-06-03 22:15:17 ----D---- C:\Downloads
2012-05-26 20:38:31 ----D---- C:\Users\Verold\AppData\Roaming\ipla
2012-05-26 20:38:17 ----D---- C:\Program Files\Mozilla Firefox
2012-05-20 16:54:32 ----D---- C:\ProgramData\ipla
2012-05-19 15:09:40 ----D---- C:\Program Files\QuickTime Alternative
2012-05-19 15:08:48 ----D---- C:\ProgramData\Apple Computer
2012-05-15 20:17:40 ----D---- C:\Program Files\Opera
2012-05-15 00:58:07 ----D---- C:\Windows\system32\catroot2
2012-05-14 22:45:08 ----A---- C:\Windows\system32\FlashPlayerApp.exe
2012-05-14 01:07:22 ----A---- C:\Windows\system32\PerfStringBackup.INI

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 aswNdis;avast! Firewall NDIS Filter Service; C:\Windows\system32\DRIVERS\aswNdis.sys [2012-03-07 12112]
R0 aswNdis2;avast! Firewall Core Firewall Service; C:\Windows\system32\drivers\aswNdis2.sys [2012-03-07 196440]
R0 AtiPcie;ATI PCI Express (3GIO) Filter; C:\Windows\system32\DRIVERS\AtiPcie.sys [2008-04-28 14352]
R0 LPCFilter;LPC Lower Filter Driver; C:\Windows\system32\DRIVERS\LPCFilter.sys [2006-07-28 19456]
R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2012-01-30 473656]
R0 tos_sps32;TOSHIBA tos_sps32 Service; C:\Windows\system32\DRIVERS\tos_sps32.sys [2007-04-27 285184]
R0 TVALZ;TOSHIBA ACPI-Based Value Added Logical and General Purpose Device Driver; C:\Windows\system32\DRIVERS\TVALZ_O.SYS [2007-11-09 23640]
R0 vburner;vburner; C:\Windows\system32\DRIVERS\vburner.sys [2008-01-08 17408]
R1 aswFW;avast! TDI Firewall driver; C:\Windows\system32\drivers\aswFW.sys [2012-03-07 112984]
R1 aswKbd;aswKbd; C:\Windows\system32\drivers\aswKbd.sys [2012-03-07 24408]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr.sys [2012-03-07 35672]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2012-03-07 612184]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2012-03-07 337880]
R1 aswTdi;avast! Network Shield Support; C:\Windows\system32\drivers\aswTdi.sys [2012-03-07 53848]
R1 ElRawDisk;ElRawDisk; \??\C:\Windows\system32\drivers\elrawdsk.sys [2008-12-09 20392]
R1 SCDEmu;SCDEmu; C:\Windows\system32\drivers\SCDEmu.sys [2008-07-07 56108]
R1 Tosrfcom;Bluetooth RFCOMM; C:\Windows\System32\Drivers\tosrfcom.sys [2005-08-01 64896]
R2 aswFsBlk;aswFsBlk; C:\Windows\system32\drivers\aswFsBlk.sys [2012-03-07 20696]
R2 aswMonFlt;aswMonFlt; \??\C:\Windows\system32\drivers\aswMonFlt.sys [2012-03-07 57688]
R2 atksgt;atksgt; C:\Windows\system32\DRIVERS\atksgt.sys [2010-04-11 281760]
R2 lirsgt;lirsgt; C:\Windows\system32\DRIVERS\lirsgt.sys [2010-04-11 25888]
R2 npf;NetGroup Packet Filter Driver; C:\Windows\system32\drivers\npf.sys [2010-01-27 50704]
R3 AgereSoftModem;TOSHIBA V92 Software Modem; C:\Windows\system32\DRIVERS\AGRSM.sys [2006-11-28 1161888]
R3 amdiox86;AMD IO Driver; C:\Windows\system32\DRIVERS\amdiox86.sys [2010-02-18 37944]
R3 AmdLLD;AMD Low Level Device Driver; C:\Windows\system32\DRIVERS\AmdLLD.sys [2007-06-29 34304]
R3 athr;Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athr.sys [2008-07-29 919552]
R3 AtiHDAudioService;AMD Function Driver for HD Audio Service; C:\Windows\system32\drivers\AtihdLH3.sys [2011-10-17 82960]
R3 atikmdag;atikmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2009-02-04 4303360]
R3 dsNcAdpt;Juniper Network Connect Adapter; C:\Windows\system32\DRIVERS\dsNcAdpt.sys [2008-09-15 23552]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2009-06-02 2364960]
R3 MBAMProtector;MBAMProtector; \??\C:\Windows\system32\drivers\mbam.sys [2012-04-04 22344]
R3 ROOTMODEM;Microsoft Legacy Modem Driver; C:\Windows\System32\Drivers\RootMdm.sys [2008-01-19 8192]
R3 RTL8169;Realtek 8169 NT Driver; C:\Windows\system32\DRIVERS\Rtlh86.sys [2006-12-25 67072]
R3 sdbus;sdbus; C:\Windows\system32\DRIVERS\sdbus.sys [2009-04-11 89088]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2008-06-20 200112]
R3 tdcmdpst;TOSHIBA Writing Engine Filter Driver; C:\Windows\system32\DRIVERS\tdcmdpst.sys [2006-10-18 16128]
R3 tifm21;tifm21; C:\Windows\system32\drivers\tifm21.sys [2007-01-24 290304]
R3 tosporte;Bluetooth COM Port; C:\Windows\system32\DRIVERS\tosporte.sys [2006-10-10 41600]
R3 tosrfbd;Bluetooth RFBUS; C:\Windows\system32\DRIVERS\tosrfbd.sys [2007-02-22 113920]
R3 tosrfbnp;Bluetooth RFBNEP; C:\Windows\System32\Drivers\tosrfbnp.sys [2006-11-20 36480]
R3 tosrfec;Bluetooth ACPI; C:\Windows\system32\DRIVERS\tosrfec.sys [2006-10-23 9216]
R3 Tosrfhid;Bluetooth RFHID; C:\Windows\system32\DRIVERS\Tosrfhid.sys [2007-03-01 73728]
R3 tosrfnds;Bluetooth Personal Area Network; C:\Windows\system32\DRIVERS\tosrfnds.sys [2005-01-06 18612]
R3 Tosrfusb;Bluetooth USB Controller; C:\Windows\system32\DRIVERS\tosrfusb.sys [2007-02-28 41344]
R3 usbvideo;Urządzenie wideo USB (WDM); C:\Windows\System32\Drivers\usbvideo.sys [2006-11-02 132352]
R3 UVCFTR;UVCFTR; C:\Windows\system32\DRIVERS\UVCFTR_S.SYS [2007-03-12 11264]
S2 E4LOADER;General Purpose USB Driver (e4ldr.sys); C:\Windows\System32\Drivers\e4ldr.sys [2007-01-04 69656]
S2 ELOADER;General Purpose USB Driver (adildr.sys); C:\Windows\System32\Drivers\adildr.sys [2007-02-07 56088]
S3 adiusbaw;USB ADSL WAN Adapter; C:\Windows\system32\DRIVERS\adiusbaw.sys [2007-02-07 118552]
S3 AMDPCI;AMDPCI; \??\C:\Users\Verold\AppData\Local\Temp\AMDPCI.sys []
S3 ASPI;Advanced SCSI Programming Interface Driver; \??\C:\Windows\System32\DRIVERS\ASPI32.sys [2002-07-17 84832]
S3 DKRtWrt;DKRtWrt; C:\Windows\system32\DRIVERS\DKRtWrt.sys [2009-12-10 45616]
S3 Dot4;Sterownik MS IEEE-1284.4; C:\Windows\system32\DRIVERS\Dot4.sys [2008-01-19 131584]
S3 Dot4Print;Sterownik klasy drukowania dla IEEE-1284.4; C:\Windows\system32\DRIVERS\Dot4Prt.sys [2008-01-19 16384]
S3 dot4usb;MS Dot4USB Filter Dot4USB Filter; C:\Windows\system32\DRIVERS\dot4usb.sys [2008-01-19 36864]
S3 drmkaud;Microsoft Kernel DRM Audio Descrambler; C:\Windows\system32\drivers\drmkaud.sys [2008-01-19 5632]
S3 e4usbaw;USB ADSL2 WAN Adapter; C:\Windows\system32\DRIVERS\e4usbaw.sys [2007-01-04 104344]
S3 HdAudAddService;Sterownik funkcji Microsoft 1.1 UAA dla usługi standardu High Definition Audio; C:\Windows\system32\drivers\HdAudio.sys [2009-04-11 236544]
S3 MSKSSRV;Serwer proxy usługi Microsoft Streaming; C:\Windows\system32\drivers\MSKSSRV.sys [2008-01-19 8192]
S3 MSPCLOCK;Serwer proxy zegara Microsoft Streaming; C:\Windows\system32\drivers\MSPCLOCK.sys [2008-01-19 5888]
S3 MSPQM;Serwer proxy menedżera jakości Microsoft Streaming; C:\Windows\system32\drivers\MSPQM.sys [2008-01-19 5504]
S3 MSTEE;Konwerter strumieni Tee/Sink-to-Sink Microsoft Streaming; C:\Windows\system32\drivers\MSTEE.sys [2008-01-19 6016]
S3 nmwcd;Nokia USB Phone Parent; C:\Windows\system32\drivers\ccdcmb.sys [2008-09-15 17664]
S3 nmwcdc;Nokia USB Generic; C:\Windows\system32\drivers\ccdcmbo.sys [2008-09-15 22016]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\Windows\system32\DRIVERS\pccsmcfd.sys [2008-08-26 18816]
S3 SANDRA;SANDRA; \??\C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2009.SP2\WNt500x86\Sandra.sys [2008-11-25 22432]
S3 tbhsd;Tunebite High-Speed Dubbing; C:\Windows\system32\drivers\tbhsd.sys [2008-02-20 27936]
S3 TosRfSnd;Bluetooth Audio; C:\Windows\system32\drivers\tosrfsnd.sys [2007-01-22 53376]
S3 TpChoice;Touch Pad Detection Filter driver; C:\Windows\system32\DRIVERS\TpChoice.sys []
S3 TVICHW32;TVICHW32; \??\C:\Windows\system32\DRIVERS\TVICHW32.SYS [2008-12-22 23600]
S3 upperdev;upperdev; C:\Windows\system32\DRIVERS\usbser_lowerflt.sys [2008-09-15 8064]
S3 usb_rndisx;Karta USB RNDIS; C:\Windows\system32\DRIVERS\usb8023x.sys [2009-04-11 15872]
S3 USBAAPL;Apple Mobile USB Driver; C:\Windows\System32\Drivers\usbaapl.sys [2010-09-28 41984]
S3 USBCM;Scientific-Atlanta USB Cable Modem Driver; C:\Windows\system32\DRIVERS\Sacm2A.sys [2004-06-10 15429]
S3 usbscan;Sterownik skanera USB; C:\Windows\system32\DRIVERS\usbscan.sys [2008-01-19 35328]
S3 usbser;USB Modem Driver; C:\Windows\system32\drivers\usbser.sys [2009-04-11 27648]
S3 UsbserFilt;UsbserFilt; C:\Windows\system32\DRIVERS\usbser_lowerfltj.sys [2008-09-15 8064]
S4 KR10I;KR10I; C:\Windows\system32\drivers\kr10i.sys [2007-01-18 219392]
S4 KR10N;KR10N; C:\Windows\system32\drivers\kr10n.sys [2007-01-18 211072]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 aawservice;Lavasoft Ad-Aware Service; E:\Program Files\Lavasoft\Ad-Aware\aawservice.exe [2008-05-27 611664]
R2 AgereModemAudio;Agere Modem Call Progress Audio; C:\Windows\system32\agrsmsvc.exe [2006-10-05 9216]
R2 AMD FUEL Service;AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [2011-11-09 291840]
R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2011-02-18 37664]
R2 Ati External Event Utility;Ati External Event Utility; C:\Windows\system32\Ati2evxx.exe [2009-02-04 729088]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2012-03-07 44768]
R2 CFSvcs;ConfigFree Service; C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe [2006-11-14 40960]
R2 Diskeeper;Diskeeper; E:\Program Files\Diskeeper Corporation\Diskeeper\DkService.exe [2009-12-24 1732960]
R2 dsNcService;Juniper Network Connect Service; C:\Program Files\Juniper Networks\Common Files\dsNcService.exe [2008-09-15 431472]
R2 FontCache;@%systemroot%\system32\FntCache.dll,-100; C:\Windows\system32\svchost.exe [2008-01-19 21504]
R2 hpqddsvc;Usługa HP CUE DeviceDiscovery; C:\Windows\system32\svchost.exe [2008-01-19 21504]
R2 MBAMService;MBAMService; C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe [2012-04-04 654408]
R2 Net Driver HPZ12;Net Driver HPZ12; C:\Windows\System32\svchost.exe [2008-01-19 21504]
R2 O&O Defrag;O&O Defrag; C:\Program Files\OO Software\Defrag\oodag.exe [2009-09-12 1488128]
R2 Pml Driver HPZ12;Pml Driver HPZ12; C:\Windows\System32\svchost.exe [2008-01-19 21504]
R2 PnkBstrA;PnkBstrA; C:\Windows\system32\PnkBstrA.exe [2010-04-21 75064]
R2 RapiMgr;@%windir%\WindowsMobile\rapimgr.dll,-104; C:\Windows\system32\svchost.exe [2008-01-19 21504]
R2 TNaviSrv;TOSHIBA Navi Support Service; C:\Program Files\TOSHIBA\TOSHIBA DVD PLAYER\TNaviSrv.exe [2007-05-17 114688]
R2 TODDSrv;TOSHIBA Optical Disc Drive Service; C:\Windows\system32\TODDSrv.exe [2006-05-25 114688]
R2 TosCoSrv;TOSHIBA Power Saver; C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe [2007-03-29 427576]
R2 TOSHIBA Bluetooth Service;TOSHIBA Bluetooth Service; c:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe [2007-02-25 125048]
R2 UTSCSI;CLCV0; C:\Windows\system32\UTSCSI.EXE [2009-11-25 45056]
R2 WcesComm;@%windir%\WindowsMobile\wcescomm.dll,-40079; C:\Windows\system32\svchost.exe [2008-01-19 21504]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2009-08-18 1529728]
R3 hpqcxs08;hpqcxs08; C:\Windows\system32\svchost.exe [2008-01-19 21504]
R3 ServiceLayer;ServiceLayer; C:\Program Files\PC Connectivity Solution\ServiceLayer.exe [2008-11-11 620544]
S2 avast! Firewall;avast! Firewall; C:\Program Files\Alwil Software\Avast5\afwServ.exe [2012-03-07 134920]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 gupdate1c995bddcd4e9da;Usługa Google Update (gupdate1c995bddcd4e9da); C:\Program Files\Google\Update\GoogleUpdate.exe [2009-02-23 133104]
S2 gusvc;Google Software Updater; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2011-09-27 194104]
S2 ioloFileInfoList;iolo FileInfoList Service; C:\Program Files\iolo\common\lib\ioloServiceManager.exe []
S2 ioloSystemService;iolo System Service; C:\Program Files\iolo\common\lib\ioloServiceManager.exe []
S2 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
S3 aspnet_state;ASP.NET State Service; C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2010-03-18 35160]
S3 gupdatem;Usługa Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2009-02-23 133104]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe [2005-11-14 69632]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2012-05-15 129976]
S3 MSCSPTISRV;MSCSPTISRV; C:\Program Files\Common Files\Sony Shared\AVLib\MSCSPTISRV.exe [2006-12-14 45056]
S3 NMIndexingService;NMIndexingService; C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe []
S3 PACSPTISVR;PACSPTISVR; C:\Program Files\Common Files\Sony Shared\AVLib\PACSPTISVR.exe [2006-12-14 57344]
S3 SandraAgentSrv;SiSoftware Deployment Agent Service; C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2009.SP2\RpcAgentSrv.exe [2008-12-11 98488]
S3 SonicStage Back-End Service;SonicStage Back-End Service; C:\Program Files\Common Files\Sony Shared\AVLib\SsBeSvc.exe [2007-02-05 112184]
S3 SPTISRV;Sony SPTI Service; C:\Program Files\Common Files\Sony Shared\AVLib\SPTISRV.exe [2006-12-14 69632]
S3 SSScsiSV;SonicStage SCSI Service; C:\Program Files\Common Files\Sony Shared\AVLib\SSScsiSV.exe [2007-02-05 75320]
S4 Bonjour Service;Usługa Bonjour; C:\Program Files\Bonjour\mDNSResponder.exe [2011-04-06 349472]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 UleadBurningHelper;Ulead Burning Helper; C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe [2006-08-23 49152]

-----------------EOF-----------------
[/log]



GMER:

[log]
GMER 1.0.15.15641 - http://www.gmer.net
Rootkit quick scan 2012-04-17 23:32:33
Windows 6.0.6002 Service Pack 2 Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-0 TOSHIBA_MK2035GSS rev.DK020M
Running: kkevmcdf.exe; Driver: C:\Users\Verold\AppData\Local\Temp\kgaoquoc.sys


---- System - GMER 1.0.15 ----

Code \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/AVAST Software) ZwCreateProcessEx [0x8F8C57A2]
Code \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/AVAST Software) ObInsertObject
Code \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/AVAST Software) ObMakeTemporaryObject

---- Devices - GMER 1.0.15 ----

Device \Driver\atapi \Device\Ide\IdeDeviceP0T0L0-0 860601E8
Device \Driver\atapi \Device\Ide\IdeDeviceP2T0L0-3 860601E8
Device \Driver\atapi \Device\Ide\IdePort0 860601E8
Device \Driver\atapi \Device\Ide\IdePort1 860601E8
Device \Driver\atapi \Device\Ide\IdePort2 860601E8
Device \Driver\atapi \Device\Ide\IdePort3 860601E8
Device \Driver\aw7bargn \Device\Scsi\aw7bargn1Port5Path0Target0Lun0 878F61E8
Device \Driver\aw7bargn \Device\Scsi\aw7bargn1Port5Path0Target1Lun0 878F61E8
Device \Driver\aw7bargn \Device\Scsi\aw7bargn1 878F61E8
Device \FileSystem\Ntfs \Ntfs aswSP.SYS (avast! self protection module/AVAST Software)
Device \FileSystem\Ntfs \Ntfs 860621E8

AttachedDevice \Driver\tdx \Device\Tcp aswTdi.SYS (avast! TDI Filter Driver/AVAST Software)
AttachedDevice \Driver\tdx \Device\Udp aswTdi.SYS (avast! TDI Filter Driver/AVAST Software)
AttachedDevice \Driver\kbdclass \Device\KeyboardClass0 Wdf01000.sys (Dynamiczna struktura WDF/Microsoft Corporation)
AttachedDevice \Driver\kbdclass \Device\KeyboardClass1 Wdf01000.sys (Dynamiczna struktura WDF/Microsoft Corporation)

---- EOF - GMER 1.0.15 ----
[/log]


Ma ktoś jeszcze jakiś pomysł co może być przyczyną???

Gość
komentarz
komentarz

Tu nie ma infekcji. Jeśli juz to sprawa dostawczy internetu.

Wciąż szukasz rozwiązania problemu? Napisz teraz na forum!

Możesz zadać pytanie bez konieczności rejestracji - wystarczy, że wypełnisz formularz.

×
×
  • Dodaj nową pozycję...

Powiadomienie o plikach cookie

Strona wykorzystuje pliki cookies w celu prawidłowego świadczenia usług i wygody użytkowników. Warunki przechowywania i dostępu do plików cookies możesz zmienić w ustawieniach przeglądarki.