Kontrola logu prosímm

crash40 · Příspěvekod **crash40** » 29 čer 2010 09:58

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 8:07:11, on 20.2.2009
Platform: Windows Vista SP1 (WinNT 6.00.1905)
MSIE: Internet Explorer v7.00 (7.00.6001.18000)
Boot mode: Normal

Running processes:
C:\Program Files\ASUS\Six Engine\SixEngine.exe
C:\Program Files (x86)\DAEMON Tools Lite\daemon.exe
C:\Program Files (x86)\Microsoft Office\Office12\ONENOTEM.EXE
C:\Program Files\Alwil Software\Avast4\ashDisp.exe
C:\Program Files (x86)\Winamp\winampa.exe
C:\Program Files (x86)\Java\jre6\bin\jusched.exe
C:\Program Files (x86)\SpeedFan\speedfan.exe
C:\Program Files (x86)\Trend Micro\HijackThis\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.daemon-search.com/startpage
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: Winamp Search Class - {57BCA5FA-5DBB-45a2-B558-1755C3F6253B} - C:\Program Files (x86)\Winamp Toolbar\winamptb.dll
R3 - URLSearchHook: (no name) - - (no file)
R3 - URLSearchHook: ICQToolBar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files (x86)\ICQ6Toolbar\ICQToolBar.dll
R3 - URLSearchHook: free-downloads.net Toolbar - {ecdee021-0d17-467f-a1ff-c7a115230949} - C:\Program Files (x86)\free-downloads.net\tbfree.dll
F2 - REG:system.ini: UserInit=userinit.exe
O1 - Hosts: ::1 localhost
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: Winamp Toolbar Loader - {25CEE8EC-5730-41bc-8B58-22DDC8AB8C20} - C:\Program Files (x86)\Winamp Toolbar\winamptb.dll
O2 - BHO: BitComet ClickCapture - {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} - C:\Program Files (x86)\BitComet\tools\BitCometBHO_1.2.8.7.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre6\bin\ssv.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
O2 - BHO: free-downloads.net Toolbar - {ecdee021-0d17-467f-a1ff-c7a115230949} - C:\Program Files (x86)\free-downloads.net\tbfree.dll
O3 - Toolbar: ICQToolBar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files (x86)\ICQ6Toolbar\ICQToolBar.dll
O3 - Toolbar: Winamp Toolbar - {EBF2BA02-9094-4c5a-858B-BB198F3D8DE2} - C:\Program Files (x86)\Winamp Toolbar\winamptb.dll
O3 - Toolbar: free-downloads.net Toolbar - {ecdee021-0d17-467f-a1ff-c7a115230949} - C:\Program Files (x86)\free-downloads.net\tbfree.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\yt.dll
O3 - Toolbar: DAEMON Tools Toolbar - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files (x86)\DAEMON Tools Toolbar\DTToolbar.dll
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [WinampAgent] "C:\Program Files (x86)\Winamp\winampa.exe"
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter
O4 - HKCU\..\Run: [ICQ] "C:\Program Files (x86)\ICQ6.5\ICQ.exe" silent
O4 - HKCU\..\Run: [BitComet] "C:\Program Files (x86)\BitComet\BitComet.exe" /tray
O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
O4 - HKCU\..\Run: [AlcoholAutomount] "C:\Program Files (x86)\Alcohol Soft\Alcohol 120\axcmd.exe" /automount
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\daemon.exe" -autorun
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETWORK SERVICE')
O4 - Startup: FIFA 09 Registration.lnk = C:\Program Files (x86)\EA Sports\FIFA 09\Support\EAregister.exe
O4 - Startup: Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk = C:\Program Files (x86)\Microsoft Office\Office12\ONENOTEM.EXE
O8 - Extra context menu item: &Winamp Search - C:\ProgramData\Winamp Toolbar\ieToolbar\resources\en-US\local\search.html
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Stáhnout odkaz s použitím BitCometu - res://C:\Program Files (x86)\BitComet\BitComet.exe/AddLink.htm
O8 - Extra context menu item: Stáhnout všechna videa s použitím BitCometu - res://C:\Program Files (x86)\BitComet\BitComet.exe/AddVideo.htm
O8 - Extra context menu item: Stáhnout všechny odkazy s použitím BitCometu - res://C:\Program Files (x86)\BitComet\BitComet.exe/AddAllLink.htm
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
O9 - Extra button: BitComet - {D18A0B52-D63C-4ed0-AFC6-C1E3DC1AF43A} - res://C:\Program Files (x86)\BitComet\tools\BitCometBHO_1.2.8.7.dll/206 (file missing)
O9 - Extra button: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files (x86)\ICQ6.5\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files (x86)\ICQ6.5\ICQ.exe
O13 - Gopher Prefix:
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/s ... wflash.cab
O23 - Service: Lavasoft Ad-Aware Service (aawservice) - Lavasoft - C:\Program Files (x86)\Lavasoft\Ad-Aware\aawservice.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: Stavová služba ASP.NET (aspnet_state) - Unknown owner - C:\Windows\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe (file missing)
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: Ati External Event Utility - Unknown owner - C:\Windows\system32\Ati2evxx.exe (file missing)
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: @dfsrres.dll,-101 (DFSR) - Unknown owner - C:\Windows\system32\DFSR.exe (file missing)
O23 - Service: ICQ Service - Unknown owner - C:\Program Files (x86)\ICQ6Toolbar\ICQ Service.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SLsvc.exe,-101 (slsvc) - Unknown owner - C:\Windows\system32\SLsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: StarWind AE Service (StarWindServiceAE) - Rocket Division Software - C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 10312 bytes

Reklama

Příspěvekod **jaro3** » 29 čer 2010 10:54

Odinstaluj:
Winamp Toolbar
ICQToolBar
free-downloads.net Toolbar
DAEMON Tools Toolbar

Zavři ostatní aplikace a prohlížeče, odpoj se od netu a fixni v HJT:
Návod

Kód: Vybrat vše

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.daemon-search.com/startpage
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = 
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = 
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = 
R3 - URLSearchHook: Winamp Search Class - {57BCA5FA-5DBB-45a2-B558-1755C3F6253B} - C:\Program Files (x86)\Winamp Toolbar\winamptb.dll
R3 - URLSearchHook: (no name) - - (no file)
R3 - URLSearchHook: ICQToolBar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files (x86)\ICQ6Toolbar\ICQToolBar.dll
R3 - URLSearchHook: free-downloads.net Toolbar - {ecdee021-0d17-467f-a1ff-c7a115230949} - C:\Program Files (x86)\free-downloads.net\tbfree.dll
F2 - REG:system.ini: UserInit=userinit.exe
O1 - Hosts: ::1 localhost
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: Winamp Toolbar Loader - {25CEE8EC-5730-41bc-8B58-22DDC8AB8C20} - C:\Program Files (x86)\Winamp Toolbar\winamptb.dll
2 - BHO: free-downloads.net Toolbar - {ecdee021-0d17-467f-a1ff-c7a115230949} - C:\Program Files (x86)\free-downloads.net\tbfree.dll
O3 - Toolbar: ICQToolBar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files (x86)\ICQ6Toolbar\ICQToolBar.dll
O3 - Toolbar: Winamp Toolbar - {EBF2BA02-9094-4c5a-858B-BB198F3D8DE2} - C:\Program Files (x86)\Winamp Toolbar\winamptb.dll
O3 - Toolbar: free-downloads.net Toolbar - {ecdee021-0d17-467f-a1ff-c7a115230949} - C:\Program Files (x86)\free-downloads.net\tbfree.dll
O3 - Toolbar: DAEMON Tools Toolbar - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files (x86)\DAEMON Tools Toolbar\DTToolbar.dll
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Java\jre6\bin\jusched.exe"
O8 - Extra context menu item: &Winamp Search - C:\ProgramData\Winamp Toolbar\ieToolbar\resources\en-US\local\search.html
O13 - Gopher Prefix: 
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/s ... wflash.cab

Stáhni si ATF Cleaner
Poklepej na ATF Cleaner.exe, klikni na select all found, poté:
-Když používáš Firefox (Mozzila), klikni na Firefox nahoře a vyber: Select All, poté klikni na Empty Selected.
-Když používáš Operu, klikni nahoře na Operu a vyber: Select All, poté klikni na Empty Selected.
Po vyčištění klikni na Exit k zavření programu.

Stáhni si Malwarebytes' Anti-Malware
Nainstaluj a spusť ho
- na konci instalace se ujisti že máš zvoleny/zatrhnuty obě možnosti:
Aktualizace Malwarebytes' Anti-Malware a Spustit aplikaci Malwarebytes' Anti-Malware, pokud jo tak klikni na tlačítko konec
- pokud bude nalezena aktualizace, tak se stáhne a nainstaluje
- program se po té spustí a nech vybranou možnost Provést rychlý sken a klikni na tlačítko Skenovat
- po proběhnutí programu se ti objeví hláška tak klikni na OK a pak na tlačítko Zobrazit výsledky
- pak zvol možnost uložit log a ulož si log na plochu
- po té klikni na tlačítko Exit, objeví se ti hláška tak zvol Ano
(zatím nic nemaž!).
Vlož sem pak obsah toho logu.

Pokud budou problémy , spusť v nouz. režimu.

crash40 · Příspěvekod **crash40** » 06 črc 2010 12:59

Jeste k tomu že mám odinstalovat iCQ toolbar atd. ale kdýt dám ovládácí panely odbrat program tak tak toolbar neni... co sním mám dělat?
Mlwarebytes' Anti-Malware 1.36
Verze databáze: 1962
Windows 6.0.6001 Service Pack 1

6.7.2010 12:56:35
mbam-log-2010-07-06 (12-56-35).txt

Typ skenu: Rychlý sken
Objektu skenováno: 62015
Uplynulý cas: 2 minute(s), 7 second(s)

Infikované procesy pameti: 0
Infikované pametové moduly: 0
Infikované klíce registru: 0
Infikované hodnoty registru: 0
Infikované položky dat registru: 0
Infikované složky: 0
Infikované soubory: 0

Infikované procesy pameti:
(Žádné zákerné položky nebyly zjišteny)

Infikované pametové moduly:
(Žádné zákerné položky nebyly zjišteny)

Infikované klíce registru:
(Žádné zákerné položky nebyly zjišteny)

Infikované hodnoty registru:
(Žádné zákerné položky nebyly zjišteny)

Infikované položky dat registru:
(Žádné zákerné položky nebyly zjišteny)

Infikované složky:
(Žádné zákerné položky nebyly zjišteny)

Infikované soubory:
(Žádné zákerné položky nebyly zjišteny)

Příspěvekod **jaro3** » 06 črc 2010 15:36

Tak ho odmažeme.

Stáhni si OTL
na plochu. Ujisti se , že máš zavřena všechna ostatní okna a poklepej na ikonu OTL.Nahoře v okně pod Výstup klikni na minimální výstup.Pod Běžné registry změň na Vše. Zatrhni Kontrola na havěť “LOP“ a Kontrola na havěť “ Purity“ . Klikni na Prohledat. Všechny ostatní nastavení ponech jak jsou. Sken může trvat dlouho, až skončí otevřou se dva logy:
OTL.Txt
Extras.Txt
Jsou uloženy ve stejném místě jako OTL. Oba logy sem prosím zkopíruj.

crash40 · Příspěvekod **crash40** » 08 črc 2010 09:13

OTL logfile created on: 8.7.2010 9:06:00 - Run 1
OTL by OldTimer - Version 3.2.8.1 Folder = C:\Users\Šimon\Desktop
64bit-Windows Vista Home Premium Edition Service Pack 1 (Version = 6.0.6001) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18928)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

4,00 Gb Total Physical Memory | 2,00 Gb Available Physical Memory | 56,00% Memory free
8,00 Gb Paging File | 6,00 Gb Available in Paging File | 74,00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 298,09 Gb Total Space | 25,71 Gb Free Space | 8,62% Space Free | Partition Type: NTFS
Drive D: | 7,03 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: UDF
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: POKOJÍK-PC
Current User Name: Šimon
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: Current user
Include 64bit Scans
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Minimal

========== Processes (SafeList) ==========

PRC - C:\Users\Šimon\Desktop\OTL.exe (OldTimer Tools)
PRC - C:\Program Files (x86)\Common Files\Steam\SteamService.exe (Valve Corporation)
PRC - C:\Users\Šimon\AppData\Local\Google\Chrome\Application\chrome.exe (Google Inc.)
PRC - C:\Program Files (x86)\Google\Update\1.2.183.29\GoogleCrashHandler.exe (Google Inc.)
PRC - C:\Program Files (x86)\Steam\steam.exe (Valve Corporation)
PRC - C:\Program Files\Alwil Software\Avast4\ashDisp.exe (ALWIL Software)
PRC - C:\Program Files\Alwil Software\Avast4\ashServ.exe (ALWIL Software)
PRC - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe (ALWIL Software)
PRC - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe (ALWIL Software)
PRC - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe (ALWIL Software)
PRC - C:\Program Files (x86)\Adobe\Reader 8.0\Reader\reader_sl.exe (Adobe Systems Incorporated)
PRC - C:\Program Files (x86)\Lavasoft\Ad-Aware\aawservice.exe (Lavasoft)
PRC - C:\Program Files (x86)\Winamp\winampa.exe ()
PRC - C:\Program Files\ASUS\Six Engine\SixEngine.exe ()
PRC - C:\Program Files (x86)\Common Files\Nero\Lib\NMIndexStoreSvr.exe (Nero AG)
PRC - C:\Program Files (x86)\Common Files\Nero\Lib\NMBgMonitor.exe (Nero AG)

========== Modules (SafeList) ==========

MOD - C:\Users\Šimon\Desktop\OTL.exe (OldTimer Tools)
MOD - C:\Windows\SysWOW64\msscript.ocx (Microsoft Corporation)
MOD - C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6001.18000_none_5cdbaa5a083979cc\comctl32.dll (Microsoft Corporation)

========== Win32 Services (SafeList) ==========

SRV:64bit: - (avast! Antivirus) -- C:\Program Files\Alwil Software\Avast4\ashServ.exe (ALWIL Software)
SRV:64bit: - (avast! Mail Scanner) -- C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe (ALWIL Software)
SRV:64bit: - (avast! Web Scanner) -- C:\Program Files\Alwil Software\Avast4\ashWebSv.exe (ALWIL Software)
SRV:64bit: - (aswUpdSv) -- C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe (ALWIL Software)
SRV:64bit: - (AMD External Events Utility) -- C:\Windows\SysNative\atiesrxx.exe ()
SRV:64bit: - (WinDefend) -- C:\Program Files\Windows Defender\MpSvc.dll (Microsoft Corporation)
SRV - (Steam Client Service) -- C:\Program Files (x86)\Common Files\Steam\SteamService.exe (Valve Corporation)
SRV - (Hamachi2Svc) -- C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe (LogMeIn Inc.)
SRV - (DAUpdaterSvc) -- C:\Program Files (x86)\Dragon Age\bin_ship\daupdatersvc.service.exe (BioWare)
SRV - (FLEXnet Licensing Service) -- C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe (Macrovision Europe Ltd.)
SRV - (Microsoft Office Groove Audit Service) -- C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe (Microsoft Corporation)
SRV - (aawservice) -- C:\Program Files (x86)\Lavasoft\Ad-Aware\aawservice.exe (Lavasoft)

========== Driver Services (SafeList) ==========

DRV:64bit: - (NwlnkFwd) -- C:\Windows\SysNative\DRIVERS\nwlnkfwd.sys File not found
DRV:64bit: - (NwlnkFlt) -- C:\Windows\SysNative\DRIVERS\nwlnkflt.sys File not found
DRV:64bit: - (IpInIp) -- C:\Windows\SysNative\DRIVERS\ipinip.sys File not found
DRV:64bit: - (hamachi) -- C:\Windows\SysNative\DRIVERS\hamachi.sys ()
DRV:64bit: - (aswFsBlk) -- C:\Windows\SysNative\DRIVERS\aswFsBlk.sys ()
DRV:64bit: - (aswMonFlt) -- C:\Windows\SysNative\DRIVERS\aswMonFlt.sys ()
DRV:64bit: - (atikmdag) -- C:\Windows\SysNative\DRIVERS\atikmdag.sys ()
DRV:64bit: - (AtiHdmiService) -- C:\Windows\SysNative\drivers\AtiHdmi.sys ()
DRV:64bit: - (sptd) -- C:\Windows\SysNative\Drivers\sptd.sys ()
DRV:64bit: - (L1E) -- C:\Windows\SysNative\DRIVERS\L1E60x64.sys ()
DRV:64bit: - (mv61xx) -- C:\Windows\SysNative\DRIVERS\mv61xx.sys ()
DRV:64bit: - (RMCAST) Ovladač protokolu RMCAST (Pgm) -- C:\Windows\SysNative\DRIVERS\RMCAST.sys ()
DRV:64bit: - (ENTECH64) -- C:\Windows\SysNative\DRIVERS\ENTECH64.sys ()
DRV:64bit: - (WpdUsb) -- C:\Windows\SysNative\DRIVERS\wpdusb.sys ()
DRV:64bit: - (MTsensor) -- C:\Windows\SysNative\DRIVERS\ASACPI.sys ()
DRV:64bit: - (Ntfs) -- C:\Windows\SysNative\Wbem\ntfs.mof ()
DRV - (WinVd32) -- C:\Windows\WinVd32.sys ()
DRV - (speedfan) -- C:\Windows\SysWOW64\speedfan.sys (Windows (R) Server 2003 DDK provider)
DRV - (LF30FS) -- C:\Program Files (x86)\Everstrike Software\Lock Folder XP 3.5\LF302K.sys ()
DRV - (ENTECH64) -- C:\Windows\SysWOW64\drivers\Entech64.sys (EnTech Taiwan)

========== Standard Registry (All) ==========

========== Internet Explorer ==========

IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL =
IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page =
IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page =
IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page =
IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL =
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page =
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page =
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page =
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page =

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page =
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = 1
IE - HKCU\..\URLSearchHook: {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - C:\Windows\SysWOW64\ieframe.dll (Microsoft Corporation)
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local

========== FireFox ==========

FF - prefs.js..browser.search.defaultenginename: ""
FF - prefs.js..browser.search.defaultthis.engineName: ""
FF - prefs.js..browser.search.defaulturl: ""
FF - prefs.js..browser.search.param.yahoo-fr: "chr-greentree_ff&type=937811"
FF - prefs.js..browser.search.selectedEngine: "Yahoo"
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0010-ABCDEFFEDCBA}:6.0.10
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0011-ABCDEFFEDCBA}:6.0.11
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA}:6.0.13
FF - prefs.js..extensions.enabledItems: {20a82645-c095-46ed-80e3-08825760534b}:1.1
FF - prefs.js..extensions.enabledItems: {D6D05E6F-D5C1-4e03-8E33-73F92B05E262}:10.2
FF - prefs.js..extensions.enabledItems: {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.5.10
FF - prefs.js..keyword.URL: "http://search.yahoo.com/search?fr=greentree_ff1&ei=utf-8&type=937811&p="
FF - prefs.js..sweetim.toolbar.previous.browser.search.defaultenginename: ""
FF - prefs.js..sweetim.toolbar.previous.browser.search.defaulturl: ""
FF - prefs.js..sweetim.toolbar.previous.browser.search.selectedEngine: ""
FF - prefs.js..browser.startup.homepage: "resource:/browserconfig.properties"

FF - HKLM\software\mozilla\Firefox\Extensions\\{20a82645-c095-46ed-80e3-08825760534b}: c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\ [2009.08.21 19:58:33 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.5.10\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2010.06.24 16:24:30 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.5.10\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins [2010.06.24 16:24:30 | 000,000,000 | ---D | M]

[2010.05.04 21:25:26 | 000,000,000 | ---D | M] -- C:\Users\Šimon\AppData\Roaming\Mozilla\Extensions
[2008.11.29 21:13:22 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Šimon\AppData\Roaming\Mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}
[2010.05.04 21:25:26 | 000,000,000 | ---D | M] -- C:\Users\Šimon\AppData\Roaming\Mozilla\Extensions\MediaCoder
[2010.07.07 17:46:22 | 000,000,000 | ---D | M] -- C:\Users\Šimon\AppData\Roaming\Mozilla\Firefox\Profiles\8p87cx02.default\extensions
[2009.08.21 21:08:04 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Users\Šimon\AppData\Roaming\Mozilla\Firefox\Profiles\8p87cx02.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2009.07.01 14:22:12 | 000,000,880 | ---- | M] () -- C:\Users\Šimon\AppData\Roaming\Mozilla\Firefox\Profiles\8p87cx02.default\searchplugins\conduit.xml
[2009.08.15 22:08:24 | 000,003,915 | ---- | M] () -- C:\Users\Šimon\AppData\Roaming\Mozilla\Firefox\Profiles\8p87cx02.default\searchplugins\sweetim.xml
[2008.11.29 22:16:03 | 000,001,196 | ---- | M] () -- C:\Users\Šimon\AppData\Roaming\Mozilla\Firefox\Profiles\8p87cx02.default\searchplugins\winamp-search.xml
[2010.05.04 21:33:38 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Mozilla Firefox\extensions
[2010.06.24 16:24:30 | 000,000,000 | ---D | M] (Default) -- C:\Program Files (x86)\Mozilla Firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
[2008.11.29 21:24:23 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0010-ABCDEFFEDCBA}
[2008.12.09 20:13:20 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0011-ABCDEFFEDCBA}
[2009.03.26 18:21:30 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA}
[2010.03.09 22:13:03 | 000,000,000 | ---D | M] (SMART Notebook Extension) -- C:\Program Files (x86)\Mozilla Firefox\extensions\{D6D05E6F-D5C1-4e03-8E33-73F92B05E262}
[2010.06.24 16:24:29 | 000,023,512 | ---- | M] (Mozilla Foundation) -- C:\Program Files (x86)\Mozilla Firefox\components\browserdirprovider.dll
[2010.06.24 16:24:29 | 000,137,176 | ---- | M] (Mozilla Foundation) -- C:\Program Files (x86)\Mozilla Firefox\components\brwsrcmp.dll
[2007.04.10 18:21:08 | 000,163,256 | ---- | M] (Microsoft Corporation) -- C:\Program Files (x86)\Mozilla Firefox\plugins\np-mswmp.dll
[2008.11.11 09:38:54 | 000,663,552 | ---- | M] (BitComet) -- C:\Program Files (x86)\Mozilla Firefox\plugins\npBitCometAgent.dll
[2009.03.09 06:19:09 | 000,410,984 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files (x86)\Mozilla Firefox\plugins\npdeploytk.dll
[2009.02.06 13:44:28 | 001,447,296 | ---- | M] (Microsoft Corporation) -- C:\Program Files (x86)\Mozilla Firefox\plugins\npLegitCheckPlugin.dll
[2010.06.24 16:24:29 | 000,064,984 | ---- | M] (mozilla.org) -- C:\Program Files (x86)\Mozilla Firefox\plugins\npnul32.dll
[2006.10.26 20:12:16 | 000,016,192 | ---- | M] (Microsoft Corporation) -- C:\Program Files (x86)\Mozilla Firefox\plugins\NPOFF12.DLL
[2008.10.14 21:33:30 | 000,095,600 | ---- | M] (Adobe Systems Inc.) -- C:\Program Files (x86)\Mozilla Firefox\plugins\nppdf32.dll
[2008.09.10 21:56:44 | 000,144,960 | ---- | M] (RealNetworks, Inc.) -- C:\Program Files (x86)\Mozilla Firefox\plugins\nppl3260.dll
[2008.09.10 21:37:54 | 000,094,208 | ---- | M] (RealNetworks, Inc.) -- C:\Program Files (x86)\Mozilla Firefox\plugins\nprpjplug.dll
[2010.01.06 18:05:14 | 000,002,371 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefox\searchplugins\google.xml
[2010.01.06 18:05:14 | 000,000,638 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefox\searchplugins\jyxo-cz.xml
[2010.01.06 18:05:14 | 000,001,687 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefox\searchplugins\mall-cz.xml
[2010.01.06 18:05:14 | 000,001,367 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefox\searchplugins\seznam-cz.xml
[2010.01.06 18:05:14 | 000,000,654 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefox\searchplugins\slunecnice-cz.xml
[2010.01.06 18:05:14 | 000,001,179 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefox\searchplugins\wikipedia-cz.xml
[2010.05.03 22:15:50 | 000,000,808 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefox\searchplugins\yahoo.xml

O1 HOSTS File: ([2006.09.18 23:37:24 | 000,000,761 | ---- | M]) - C:\Windows\SysNative\drivers\etc\Hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O2 - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
O3:64bit: - HKLM\..\Toolbar: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files (x86)\DAEMON Tools Toolbar\DTToolbar64.dll File not found
O3:64bit: - HKCU\..\Toolbar\WebBrowser: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files (x86)\DAEMON Tools Toolbar\DTToolbar64.dll File not found
O4:64bit: - HKLM..\Run: [Windows Defender] C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation)
O4 - HKLM..\Run: [Adobe Reader Speed Launcher] C:\Program Files (x86)\Adobe\Reader 8.0\Reader\Reader_sl.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [avast!] C:\Program Files\Alwil Software\Avast4\ashDisp.exe (ALWIL Software)
O4 - HKLM..\Run: [GrooveMonitor] C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe (Microsoft Corporation)
O4 - HKLM..\Run: [LFAgent] File not found
O4 - HKLM..\Run: [LogMeIn Hamachi Ui] C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe (LogMeIn Inc.)
O4 - HKLM..\Run: [NBKeyScan] C:\Program Files (x86)\Nero\Nero8\Nero BackItUp\NBKeyScan.exe (Nero AG)
O4 - HKLM..\Run: [StartCCC] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.)
O4 - HKLM..\Run: [SunJavaUpdateSched] C:\Program Files (x86)\Java\jre6\bin\jusched.exe (Sun Microsystems, Inc.)
O4 - HKLM..\Run: [WinampAgent] C:\Program Files (x86)\Winamp\winampa.exe ()
O4 - HKLM..\Run: [WinPatrol] C:\Program Files (x86)\BillP Studios\WinPatrol\winpatrol.exe (BillP Studios)
O4 - HKCU..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] C:\Program Files (x86)\Common Files\Nero\Lib\NMBgMonitor.exe (Nero AG)
O4 - HKCU..\Run: [DAEMON Tools Lite] C:\Program Files (x86)\DAEMON Tools Lite\daemon.exe (DT Soft Ltd)
O4 - HKCU..\Run: [ehTray.exe] C:\Windows\ehome\ehtray.exe (Microsoft Corporation)
O4 - HKCU..\Run: [Google Update] C:\Users\Šimon\AppData\Local\Google\Update\GoogleUpdate.exe (Google Inc.)
O4 - HKCU..\Run: [RGSC] C:\Program Files (x86)\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe (Take-Two Interactive Software, Inc.)
O4 - HKCU..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe (Microsoft Corporation)
O4 - HKCU..\Run: [Skype] C:\Program Files (x86)\Skype\Phone\Skype.exe (Skype Technologies S.A.)
O4 - HKCU..\Run: [Steam] c:\program files (x86)\steam\steam.exe (Valve Corporation)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: ForceActiveDesktopOn = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 2
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableInstallerDetection = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableSecureUIAPaths = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableVirtualization = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ValidateAdminCodeSignatures = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: dontdisplaylastusername = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticecaption =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticetext =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: scforceoption = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: shutdownwithoutlogon = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: undockwithoutlogon = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: FilterAdministratorToken = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableUIADesktopToggle = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_TEXT = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_BITMAP = 2
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_OEMTEXT = 7
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_DIB = 8
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_PALETTE = 9
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_UNICODETEXT = 13
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_DIBV5 = 17
O8:64bit: - Extra context menu item: E&xportovat do aplikace Microsoft Excel - C:\Program Files (x86)\Microsoft Office\Office12\EXCEL.EXE (Microsoft Corporation)
O8:64bit: - Extra context menu item: Stáhnout odkaz s použitím BitCometu - C:\Program Files (x86)\BitComet\BitComet.exe (www.BitComet.com)
O8:64bit: - Extra context menu item: Stáhnout všechna videa s použitím BitCometu - C:\Program Files (x86)\BitComet\BitComet.exe (www.BitComet.com)
O8:64bit: - Extra context menu item: Stáhnout všechny odkazy s použitím BitCometu - C:\Program Files (x86)\BitComet\BitComet.exe (www.BitComet.com)
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - C:\Program Files (x86)\Microsoft Office\Office12\EXCEL.EXE (Microsoft Corporation)
O8 - Extra context menu item: Stáhnout odkaz s použitím BitCometu - C:\Program Files (x86)\BitComet\BitComet.exe (www.BitComet.com)
O8 - Extra context menu item: Stáhnout všechna videa s použitím BitCometu - C:\Program Files (x86)\BitComet\BitComet.exe (www.BitComet.com)
O8 - Extra context menu item: Stáhnout všechny odkazy s použitím BitCometu - C:\Program Files (x86)\BitComet\BitComet.exe (www.BitComet.com)
O9 - Extra Button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra Button: PokerStars - {3AD14F0C-ED16-4e43-B6D8-661B03F6A1EF} - C:\Program Files (x86)\PokerStars\PokerStarsUpdate.exe (PokerStars)
O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\Program Files (x86)\Microsoft Office\Office12\REFIEBAR.DLL (Microsoft Corporation)
O9 - Extra Button: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files (x86)\ICQ6.5\ICQ.exe (ICQ, LLC.)
O9 - Extra 'Tools' menuitem : ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files (x86)\ICQ6.5\ICQ.exe (ICQ, LLC.)
O10:64bit: - NameSpace_Catalog5\Catalog_Entries\000000000001 [] - C:\Windows\SysNative\NLAapi.dll ()
O10:64bit: - NameSpace_Catalog5\Catalog_Entries\000000000002 [] - C:\Windows\SysNative\napinsp.dll ()
O10:64bit: - NameSpace_Catalog5\Catalog_Entries\000000000003 [] - C:\Windows\SysNative\pnrpnsp.dll ()
O10:64bit: - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Windows\SysNative\pnrpnsp.dll ()
O10:64bit: - NameSpace_Catalog5\Catalog_Entries\000000000005 [] - C:\Windows\SysNative\mswsock.dll ()
O10:64bit: - NameSpace_Catalog5\Catalog_Entries\000000000006 [] - C:\Windows\SysNative\winrnr.dll ()
O10:64bit: - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Program Files (x86)\Bonjour\mdnsNSP.dll (Apple Computer, Inc.)
O10:64bit: - Protocol_Catalog9\Catalog_Entries\000000000001 - C:\Windows\SysNative\mswsock.dll ()
O10:64bit: - Protocol_Catalog9\Catalog_Entries\000000000002 - C:\Windows\SysNative\mswsock.dll ()
O10:64bit: - Protocol_Catalog9\Catalog_Entries\000000000003 - C:\Windows\SysNative\mswsock.dll ()
O10:64bit: - Protocol_Catalog9\Catalog_Entries\000000000004 - C:\Windows\SysNative\mswsock.dll ()
O10:64bit: - Protocol_Catalog9\Catalog_Entries\000000000005 - C:\Windows\SysNative\mswsock.dll ()
O10:64bit: - Protocol_Catalog9\Catalog_Entries\000000000006 - C:\Windows\SysNative\mswsock.dll ()
O10:64bit: - Protocol_Catalog9\Catalog_Entries\000000000007 - C:\Windows\SysNative\mswsock.dll ()
O10:64bit: - Protocol_Catalog9\Catalog_Entries\000000000008 - C:\Windows\SysNative\mswsock.dll ()
O10:64bit: - Protocol_Catalog9\Catalog_Entries\000000000009 - C:\Windows\SysNative\mswsock.dll ()
O10:64bit: - Protocol_Catalog9\Catalog_Entries\000000000010 - C:\Windows\SysNative\mswsock.dll ()
O10:64bit: - Protocol_Catalog9\Catalog_Entries\000000000011 - C:\Windows\SysNative\mswsock.dll ()
O10:64bit: - Protocol_Catalog9\Catalog_Entries\000000000012 - C:\Windows\SysNative\mswsock.dll ()
O10 - NameSpace_Catalog5\Catalog_Entries\000000000001 [] - C:\Windows\SysWOW64\nlaapi.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000002 [] - C:\Windows\SysWOW64\NapiNSP.dll (Společnost Microsoft)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000003 [] - C:\Windows\SysWOW64\pnrpnsp.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Windows\SysWOW64\pnrpnsp.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000005 [] - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000006 [] - C:\Windows\SysWOW64\winrnr.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Program Files (x86)\Bonjour\mdnsNSP.dll (Apple Computer, Inc.)
O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000002 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000003 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000004 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000005 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000006 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000007 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000008 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000009 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000010 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000011 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000012 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O13 - gopher Prefix: missing
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.0.254
O18:64bit: - Protocol\Handler\about {3050F406-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysNative\mshtml.dll ()
O18:64bit: - Protocol\Handler\cdl {3dd53d40-7b8b-11D0-b013-00aa0059ce02} - C:\Windows\SysNative\urlmon.dll ()
O18:64bit: - Protocol\Handler\dvd {12D51199-0DB5-46FE-A120-47A3D7D937CC} - C:\Windows\SysNative\msvidctl.dll ()
O18:64bit: - Protocol\Handler\file {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysNative\urlmon.dll ()
O18:64bit: - Protocol\Handler\ftp {79eac9e3-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysNative\urlmon.dll ()
O18:64bit: - Protocol\Handler\grooveLocalGWS {88FED34C-F0CA-4636-A375-3CB6248B04CD} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\http {79eac9e2-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysNative\urlmon.dll ()
O18:64bit: - Protocol\Handler\https {79eac9e5-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysNative\urlmon.dll ()
O18:64bit: - Protocol\Handler\its {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\Windows\SysNative\itss.dll ()
O18:64bit: - Protocol\Handler\javascript {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysNative\mshtml.dll ()
O18:64bit: - Protocol\Handler\local {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysNative\urlmon.dll ()
O18:64bit: - Protocol\Handler\mailto {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysNative\mshtml.dll ()
O18:64bit: - Protocol\Handler\mhtml {05300401-BCBC-11d0-85E3-00C04FD85AB4} - C:\Windows\SysNative\inetcomm.dll ()
O18:64bit: - Protocol\Handler\mk {79eac9e6-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysNative\urlmon.dll ()
O18:64bit: - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\ms-its {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\Windows\SysNative\itss.dll ()
O18:64bit: - Protocol\Handler\res {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysNative\mshtml.dll ()
O18:64bit: - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\tv {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} - C:\Windows\SysNative\msvidctl.dll ()
O18:64bit: - Protocol\Handler\vbscript {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysNative\mshtml.dll ()
O18 - Protocol\Handler\about {3050F406-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysWOW64\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\cdl {3dd53d40-7b8b-11D0-b013-00aa0059ce02} - C:\Windows\SysWOW64\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\dvd {12D51199-0DB5-46FE-A120-47A3D7D937CC} - C:\Windows\SysWOW64\MSVidCtl.dll (Microsoft Corporation)
O18 - Protocol\Handler\file {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\ftp {79eac9e3-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\grooveLocalGWS {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll (Microsoft Corporation)
O18 - Protocol\Handler\http {79eac9e2-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\https {79eac9e5-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\its {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\Windows\SysWOW64\itss.dll (Microsoft Corporation)
O18 - Protocol\Handler\javascript {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysWOW64\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\local {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\mailto {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysWOW64\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\mhtml {05300401-BCBC-11d0-85E3-00C04FD85AB4} - C:\Windows\SysWOW64\inetcomm.dll (Microsoft Corporation)
O18 - Protocol\Handler\mk {79eac9e6-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Program Files (x86)\Common Files\microsoft shared\Help\hxds.dll (Microsoft Corporation)
O18 - Protocol\Handler\ms-its {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\Windows\SysWOW64\itss.dll (Microsoft Corporation)
O18 - Protocol\Handler\res {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysWOW64\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Handler\tv {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} - C:\Windows\SysWOW64\MSVidCtl.dll (Microsoft Corporation)
O18 - Protocol\Handler\vbscript {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysWOW64\mshtml.dll (Microsoft Corporation)
O18:64bit: - Protocol\Filter\application/octet-stream {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\SysNative\mscoree.dll ()
O18:64bit: - Protocol\Filter\application/x-complus {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\SysNative\mscoree.dll ()
O18:64bit: - Protocol\Filter\application/x-msdownload {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\SysNative\mscoree.dll ()
O18:64bit: - Protocol\Filter\deflate {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysNative\urlmon.dll ()
O18:64bit: - Protocol\Filter\gzip {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysNative\urlmon.dll ()
O18:64bit: - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
O18 - Protocol\Filter\application/octet-stream {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\SysWow64\mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/x-complus {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\SysWow64\mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/x-msdownload {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\SysWow64\mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\deflate {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysWOW64\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Filter\gzip {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysWOW64\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe ()
O20:64bit: - HKLM Winlogon: VMApplet - (rundll32 shell32) - C:\Windows\SysNative\shell32.dll ()
O20:64bit: - HKLM Winlogon: VMApplet - (Control_RunDLL "sysdm.cpl") - C:\Windows\SysNative\sysdm.cpl ()
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysWOW64\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (rundll32 shell32) - C:\Windows\SysWow64\shell32.dll (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (Control_RunDLL "sysdm.cpl") - C:\Windows\SysWow64\sysdm.cpl (Microsoft Corporation)
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - C:\Windows\SysNative\webcheck.dll ()
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - C:\Windows\SysWOW64\webcheck.dll (Microsoft Corporation)
O22:64bit: - SharedTaskScheduler: {8C7461EF-2B13-11d2-BE35-3078302C2030} - Component Categories cache daemon - C:\Windows\SysNative\browseui.dll ()
O22 - SharedTaskScheduler: {8C7461EF-2B13-11d2-BE35-3078302C2030} - Component Categories cache daemon - C:\Windows\SysWOW64\browseui.dll (Microsoft Corporation)
O24 - Desktop WallPaper: C:\Windows\Web\Wallpaper\img29.jpg
O24 - Desktop BackupWallPaper: C:\Windows\Web\Wallpaper\img29.jpg
O28 - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
O29:64bit: - HKLM SecurityProviders - (credssp.dll) - C:\Windows\SysWow64\credssp.dll (Microsoft Corporation)
O29 - HKLM SecurityProviders - (credssp.dll) - C:\Windows\SysWow64\credssp.dll (Microsoft Corporation)
O30:64bit: - LSA: Authentication Packages - (msv1_0) - C:\Windows\SysNative\msv1_0.dll ()
O30 - LSA: Authentication Packages - (msv1_0) - C:\Windows\SysWow64\msv1_0.dll (Microsoft Corporation)
O30:64bit: - LSA: Security Packages - (kerberos) - C:\Windows\SysNative\kerberos.dll ()
O30:64bit: - LSA: Security Packages - (msv1_0) - C:\Windows\SysNative\msv1_0.dll ()
O30:64bit: - LSA: Security Packages - (schannel) - C:\Windows\SysNative\schannel.dll ()
O30:64bit: - LSA: Security Packages - (wdigest) - C:\Windows\SysNative\wdigest.dll ()
O30:64bit: - LSA: Security Packages - (tspkg) - C:\Windows\SysNative\tspkg.dll ()
O30 - LSA: Security Packages - (kerberos) - C:\Windows\SysWow64\kerberos.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (msv1_0) - C:\Windows\SysWow64\msv1_0.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (schannel) - C:\Windows\SysWow64\schannel.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (wdigest) - C:\Windows\SysWow64\wdigest.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (tspkg) - C:\Windows\SysWow64\tspkg.dll (Microsoft Corporation)
O31 - SafeBoot: AlternateShell - cmd.exe
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2008.11.15 11:52:50 | 000,161,088 | R--- | M] (Take-Two Interactive Software, Inc.) - D:\Autorun.exe -- [ UDF ]
O32 - AutoRun File - [2008.10.11 19:03:48 | 000,000,054 | R--- | M] () - D:\Autorun.inf -- [ UDF ]
O33 - MountPoints2\{41178932-dc03-11dd-97ce-0023541c274e}\Shell - "" = AutoRun
O33 - MountPoints2\{41178932-dc03-11dd-97ce-0023541c274e}\Shell\AutoRun\command - "" = E:\AUTORUN.EXE -- File not found
O33 - MountPoints2\{c1394f47-be36-11dd-bd3c-806e6f6e6963}\Shell - "" = AutoRun
O33 - MountPoints2\{c1394f47-be36-11dd-bd3c-806e6f6e6963}\Shell\AutoRun\command - "" = D:\Autorun.exe -- [2008.11.15 11:52:50 | 000,161,088 | R--- | M] (Take-Two Interactive Software, Inc.)
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O34 - HKLM BootExecute: (lsdelete) - File not found
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

========== Files/Folders - Created Within 30 Days ==========

[2010.07.08 09:04:35 | 000,574,976 | ---- | C] (OldTimer Tools) -- C:\Users\Šimon\Desktop\OTL.exe
[2010.06.27 13:35:50 | 000,178,800 | ---- | C] (Sony DADC Austria AG.) -- C:\Windows\SysWow64\CmdLineExt_x64.dll
[2010.06.24 08:42:23 | 000,177,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mpg2splt.ax
[2010.06.24 08:42:23 | 000,080,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MSNP.ax
[2010.06.24 08:42:21 | 000,293,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\psisdecd.dll
[2010.06.24 08:42:20 | 000,428,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\EncDec.dll
[2010.06.24 08:42:20 | 000,217,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\psisrndr.ax
[2010.06.24 08:41:52 | 001,130,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dfshim.dll
[2010.06.24 08:41:52 | 000,295,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\PresentationHost.exe
[2010.06.24 08:41:52 | 000,099,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\PresentationHostProxy.dll
[2010.06.24 08:41:52 | 000,049,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\netfxperf.dll
[2010.06.23 18:06:33 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Apphlpdm.dll
[2010.06.23 18:06:32 | 004,240,384 | ---- | C] (Microsoft) -- C:\Windows\SysWow64\GameUXLegacyGDFs.dll
[2010.06.10 19:45:23 | 000,289,792 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\atmfd.dll
[2010.06.10 19:45:23 | 000,034,304 | ---- | C] (Adobe Systems) -- C:\Windows\SysWow64\atmlib.dll
[2010.06.10 19:45:13 | 000,599,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msfeeds.dll
[2010.06.10 19:45:13 | 000,206,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\occache.dll
[2010.06.10 19:45:12 | 001,469,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\inetcpl.cpl
[2010.06.10 19:45:12 | 000,184,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iepeers.dll
[2010.06.10 19:45:12 | 000,164,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieui.dll
[2010.06.10 19:45:12 | 000,133,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieUnatt.exe
[2010.06.10 19:45:12 | 000,109,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iesysprep.dll
[2010.06.10 19:45:11 | 000,173,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ie4uinit.exe
[2010.06.10 19:45:11 | 000,071,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iesetup.dll
[2010.06.10 19:45:11 | 000,055,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iernonce.dll
[2010.06.10 19:45:11 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msfeedssync.exe
[2010.06.10 19:41:48 | 001,314,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\quartz.dll
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2010.07.08 09:08:09 | 009,699,328 | -HS- | M] () -- C:\Users\Šimon\NTUSER.DAT
[2010.07.08 09:05:30 | 000,000,418 | -H-- | M] () -- C:\Windows\tasks\User_Feed_Synchronization-{7B187FD1-9D81-446E-A1DE-1972DDEE41BE}.job
[2010.07.08 09:02:57 | 000,574,976 | ---- | M] (OldTimer Tools) -- C:\Users\Šimon\Desktop\OTL.exe
[2010.07.08 09:01:17 | 000,000,946 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2010.07.08 09:01:03 | 000,003,840 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2010.07.08 09:01:03 | 000,003,840 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2010.07.08 09:01:02 | 000,000,006 | -H-- | M] () -- C:\Windows\tasks\SA.DAT
[2010.07.08 09:00:55 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2010.07.07 23:54:26 | 000,524,288 | -HS- | M] () -- C:\Users\Šimon\NTUSER.DAT{c328fef1-6a85-11db-9fbd-cf3689cba3de}.TMContainer00000000000000000002.regtrans-ms
[2010.07.07 23:54:26 | 000,065,536 | -HS- | M] () -- C:\Users\Šimon\NTUSER.DAT{c328fef1-6a85-11db-9fbd-cf3689cba3de}.TM.blf
[2010.07.07 23:54:09 | 003,930,944 | -H-- | M] () -- C:\Users\Šimon\AppData\Local\IconCache.db
[2010.07.07 23:11:00 | 000,000,962 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-4217620012-77691116-1275949338-1000UA.job
[2010.07.07 23:00:00 | 000,000,950 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2010.07.06 18:07:08 | 000,010,645 | ---- | M] () -- C:\Users\Šimon\Desktop\kola.docx
[2010.07.06 17:36:18 | 000,002,699 | ---- | M] () -- C:\Users\Šimon\Desktop\Microsoft Office Word 2007.lnk
[2010.07.03 11:05:35 | 000,000,000 | ---- | M] () -- C:\Users\Šimon\Desktop\Nový Dokument aplikace Microsoft Office Word.docx
[2010.07.01 00:11:00 | 000,000,910 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-4217620012-77691116-1275949338-1000Core.job
[2010.06.29 23:30:55 | 000,524,288 | -HS- | M] () -- C:\Users\Šimon\NTUSER.DAT{c328fef1-6a85-11db-9fbd-cf3689cba3de}.TMContainer00000000000000000001.regtrans-ms
[2010.06.27 13:35:50 | 000,178,800 | ---- | M] (Sony DADC Austria AG.) -- C:\Windows\SysWow64\CmdLineExt_x64.dll
[2010.06.27 13:07:17 | 000,000,136 | ---- | M] () -- C:\Users\Šimon\Desktop\Gothic 3 – zástupce.lnk
[2010.06.22 17:31:48 | 007,778,370 | ---- | M] () -- C:\Users\Šimon\Documents\čaje.xps
[2010.06.21 23:02:33 | 000,034,304 | ---- | M] () -- C:\Users\Šimon\Desktop\Sloh Šimon Machač.doc
[2010.06.20 21:31:47 | 001,595,014 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2010.06.20 21:31:47 | 000,664,224 | ---- | M] () -- C:\Windows\SysNative\perfh005.dat
[2010.06.20 21:31:47 | 000,655,020 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2010.06.20 21:31:47 | 000,149,426 | ---- | M] () -- C:\Windows\SysNative\perfc005.dat
[2010.06.20 21:31:47 | 000,128,814 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2010.06.18 18:39:10 | 000,061,440 | ---- | M] () -- C:\Users\Šimon\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010.06.16 20:57:21 | 000,116,375 | ---- | M] () -- C:\Users\Šimon\Documents\Rastrová grafika.pptx
[2010.06.16 19:33:11 | 000,002,617 | ---- | M] () -- C:\Users\Šimon\Desktop\Microsoft Office PowerPoint 2007.lnk
[2010.06.16 19:31:03 | 000,071,142 | ---- | M] () -- C:\Users\Šimon\Desktop\Počítačové Hry.pptx
[2010.06.11 15:06:23 | 002,309,168 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
[2010.06.10 22:42:16 | 000,148,480 | ---- | M] () -- C:\Users\Šimon\Desktop\Statistika. Šimon Machač.doc
[2010.06.10 21:42:56 | 000,012,321 | ---- | M] () -- C:\Users\Šimon\Documents\Marek Machač.docx
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

========== Files Created - No Company Name ==========

[2010.07.06 18:07:08 | 000,010,645 | ---- | C] () -- C:\Users\Šimon\Desktop\kola.docx
[2010.07.03 11:05:35 | 000,000,000 | ---- | C] () -- C:\Users\Šimon\Desktop\Nový Dokument aplikace Microsoft Office Word.docx
[2010.06.27 13:07:17 | 000,000,136 | ---- | C] () -- C:\Users\Šimon\Desktop\Gothic 3 – zástupce.lnk
[2010.06.24 08:42:24 | 000,227,328 | ---- | C] () -- C:\Windows\SysNative\mpg2splt.ax
[2010.06.24 08:42:24 | 000,101,376 | ---- | C] () -- C:\Windows\SysNative\MSNP.ax
[2010.06.24 08:42:21 | 000,375,808 | ---- | C] () -- C:\Windows\SysNative\psisdecd.dll
[2010.06.24 08:42:20 | 000,558,592 | ---- | C] () -- C:\Windows\SysNative\EncDec.dll
[2010.06.24 08:42:20 | 000,289,792 | ---- | C] () -- C:\Windows\SysNative\psisrndr.ax
[2010.06.24 08:41:52 | 001,942,856 | ---- | C] () -- C:\Windows\SysNative\dfshim.dll
[2010.06.24 08:41:52 | 000,444,752 | ---- | C] () -- C:\Windows\SysNative\mscoree.dll
[2010.06.24 08:41:52 | 000,320,352 | ---- | C] () -- C:\Windows\SysNative\PresentationHost.exe
[2010.06.24 08:41:52 | 000,109,912 | ---- | C] () -- C:\Windows\SysNative\PresentationHostProxy.dll
[2010.06.24 08:41:52 | 000,048,960 | ---- | C] () -- C:\Windows\SysNative\netfxperf.dll
[2010.06.23 18:06:33 | 000,032,256 | ---- | C] () -- C:\Windows\SysNative\Apphlpdm.dll
[2010.06.23 18:06:32 | 004,240,384 | ---- | C] () -- C:\Windows\SysNative\GameUXLegacyGDFs.dll
[2010.06.22 17:31:40 | 007,778,370 | ---- | C] () -- C:\Users\Šimon\Documents\čaje.xps
[2010.06.21 23:02:32 | 000,034,304 | ---- | C] () -- C:\Users\Šimon\Desktop\Sloh Šimon Machač.doc
[2010.06.16 20:57:20 | 000,116,375 | ---- | C] () -- C:\Users\Šimon\Documents\Rastrová grafika.pptx
[2010.06.16 19:30:42 | 000,071,142 | ---- | C] () -- C:\Users\Šimon\Desktop\Počítačové Hry.pptx
[2010.06.10 22:58:25 | 000,148,480 | ---- | C] () -- C:\Users\Šimon\Desktop\Statistika. Šimon Machač.doc
[2010.06.10 21:42:56 | 000,012,321 | ---- | C] () -- C:\Users\Šimon\Documents\Marek Machač.docx
[2010.06.10 19:45:23 | 000,366,080 | ---- | C] () -- C:\Windows\SysNative\atmfd.dll
[2010.06.10 19:45:23 | 000,048,128 | ---- | C] () -- C:\Windows\SysNative\atmlib.dll
[2010.06.10 19:45:17 | 012,468,736 | ---- | C] () -- C:\Windows\SysNative\ieframe.dll
[2010.06.10 19:45:17 | 009,250,816 | ---- | C] () -- C:\Windows\SysNative\mshtml.dll
[2010.06.10 19:45:14 | 002,334,208 | ---- | C] () -- C:\Windows\SysNative\iertutil.dll
[2010.06.10 19:45:13 | 001,484,288 | ---- | C] () -- C:\Windows\SysNative\urlmon.dll
[2010.06.10 19:45:13 | 001,147,904 | ---- | C] () -- C:\Windows\SysNative\wininet.dll
[2010.06.10 19:45:13 | 001,062,912 | ---- | C] () -- C:\Windows\SysNative\mstime.dll
[2010.06.10 19:45:13 | 000,459,776 | ---- | C] () -- C:\Windows\SysNative\iedkcs32.dll
[2010.06.10 19:45:13 | 000,243,712 | ---- | C] () -- C:\Windows\SysNative\occache.dll
[2010.06.10 19:45:12 | 001,538,560 | ---- | C] () -- C:\Windows\SysNative\inetcpl.cpl
[2010.06.10 19:45:12 | 000,706,048 | ---- | C] () -- C:\Windows\SysNative\msfeeds.dll
[2010.06.10 19:45:12 | 000,162,816 | ---- | C] () -- C:\Windows\SysNative\ieUnatt.exe
[2010.06.10 19:45:12 | 000,070,656 | ---- | C] () -- C:\Windows\SysNative\ie4uinit.exe
[2010.06.10 19:45:11 | 001,638,912 | ---- | C] () -- C:\Windows\SysNative\mshtml.tlb
[2010.06.10 19:45:11 | 000,252,416 | ---- | C] () -- C:\Windows\SysNative\iepeers.dll
[2010.06.10 19:45:11 | 000,219,136 | ---- | C] () -- C:\Windows\SysNative\ieui.dll
[2010.06.10 19:45:11 | 000,132,096 | ---- | C] () -- C:\Windows\SysNative\iesysprep.dll
[2010.06.10 19:45:11 | 000,077,312 | ---- | C] () -- C:\Windows\SysNative\iesetup.dll
[2010.06.10 19:45:11 | 000,072,192 | ---- | C] () -- C:\Windows\SysNative\iernonce.dll
[2010.06.10 19:45:11 | 000,071,680 | ---- | C] () -- C:\Windows\SysNative\msfeedsbs.dll
[2010.06.10 19:45:11 | 000,031,744 | ---- | C] () -- C:\Windows\SysNative\jsproxy.dll
[2010.06.10 19:45:11 | 000,012,288 | ---- | C] () -- C:\Windows\SysNative\msfeedssync.exe
[2010.06.10 19:42:29 | 000,084,480 | ---- | C] () -- C:\Windows\SysNative\asycfilt.dll
[2010.06.10 19:41:50 | 002,749,952 | ---- | C] () -- C:\Windows\SysNative\win32k.sys
[2010.06.10 19:41:49 | 001,570,816 | ---- | C] () -- C:\Windows\SysNative\quartz.dll
[2010.05.04 21:33:06 | 000,027,648 | ---- | C] () -- C:\Windows\SysWow64\AVSredirect.dll
[2010.04.02 17:17:34 | 000,179,091 | ---- | C] () -- C:\Windows\SysWow64\xlive.dll.cat
[2010.02.25 22:50:32 | 000,197,728 | ---- | C] () -- C:\Windows\WinVd32.sys
[2009.08.19 21:19:10 | 000,000,049 | ---- | C] () -- C:\Windows\NeroDigital.ini
[2009.03.01 18:25:01 | 000,021,840 | ---- | C] () -- C:\Windows\SysWow64\SIntfNT.dll
[2009.03.01 18:25:01 | 000,017,212 | ---- | C] () -- C:\Windows\SysWow64\SIntf32.dll
[2009.03.01 18:25:01 | 000,012,067 | ---- | C] () -- C:\Windows\SysWow64\SIntf16.dll
[2009.02.25 16:32:09 | 000,002,623 | ---- | C] () -- C:\Windows\Irremote.ini
[2009.01.15 19:43:57 | 003,596,288 | ---- | C] () -- C:\Windows\SysWow64\qt-dx331.dll
[2009.01.10 21:08:58 | 000,168,448 | ---- | C] () -- C:\Windows\SysWow64\unrar.dll
[2009.01.10 21:08:57 | 000,795,648 | ---- | C] () -- C:\Windows\SysWow64\xvidcore.dll
[2009.01.10 21:08:57 | 000,130,048 | ---- | C] () -- C:\Windows\SysWow64\xvidvfw.dll
[2009.01.10 21:08:56 | 000,057,344 | ---- | C] () -- C:\Windows\SysWow64\ff_vfw.dll
[2009.01.10 21:08:56 | 000,000,547 | ---- | C] () -- C:\Windows\SysWow64\ff_vfw.dll.manifest
[2008.12.29 22:51:13 | 001,491,824 | ---- | C] () -- C:\Windows\SysWow64\PerfStringBackup.INI
[2008.12.25 00:18:28 | 000,000,049 | ---- | C] () -- C:\Windows\wincheater.ini
[2008.12.16 16:01:22 | 000,003,972 | ---- | C] () -- C:\Windows\SysWow64\drivers\PciBus.sys
[2008.12.01 17:19:12 | 000,000,331 | ---- | C] () -- C:\Windows\game.ini
[2008.11.29 19:21:39 | 000,024,576 | R--- | C] () -- C:\Windows\SysWow64\AsIO.dll
[2008.11.29 19:21:39 | 000,014,392 | R--- | C] () -- C:\Windows\SysWow64\drivers\AsIO.sys
[2008.11.29 19:21:37 | 000,011,832 | ---- | C] () -- C:\Windows\SysWow64\drivers\AsInsHelp64.sys
[2008.11.29 19:21:37 | 000,010,216 | ---- | C] () -- C:\Windows\SysWow64\drivers\AsInsHelp32.sys
[2008.11.29 19:09:21 | 000,033,068 | ---- | C] () -- C:\Windows\Ascd_log.ini
[2008.11.29 19:09:11 | 000,032,674 | ---- | C] () -- C:\Windows\Ascd_tmp.ini
[2008.01.21 04:50:05 | 000,060,124 | ---- | C] () -- C:\Windows\SysWow64\tcpmon.ini
[2008.01.21 04:49:49 | 000,368,640 | ---- | C] () -- C:\Windows\SysWow64\msjetoledb40.dll
[2007.12.28 17:22:02 | 000,010,296 | ---- | C] () -- C:\Windows\SysWow64\drivers\ASUSHWIO.SYS

crash40 · Příspěvekod **crash40** » 08 črc 2010 09:14

========== LOP Check ==========

[2010.02.25 22:55:29 | 000,000,000 | -HSD | M] -- C:\Users\Šimon\AppData\Roaming\.#
[2010.02.06 22:21:25 | 000,000,000 | ---D | M] -- C:\Users\Šimon\AppData\Roaming\AnvSoft
[2010.05.22 21:55:00 | 000,000,000 | ---D | M] -- C:\Users\Šimon\AppData\Roaming\Broad Intelligence
[2010.04.20 20:25:44 | 000,000,000 | ---D | M] -- C:\Users\Šimon\AppData\Roaming\BSplayer
[2009.08.19 21:16:09 | 000,000,000 | ---D | M] -- C:\Users\Šimon\AppData\Roaming\BSplayer Pro
[2009.01.06 21:54:55 | 000,000,000 | ---D | M] -- C:\Users\Šimon\AppData\Roaming\DAEMON Tools
[2009.01.06 22:10:20 | 000,000,000 | ---D | M] -- C:\Users\Šimon\AppData\Roaming\DAEMON Tools Lite
[2009.08.06 10:41:48 | 000,000,000 | ---D | M] -- C:\Users\Šimon\AppData\Roaming\DAEMON Tools Pro
[2010.03.13 23:43:37 | 000,000,000 | ---D | M] -- C:\Users\Šimon\AppData\Roaming\Facebook
[2009.11.29 13:59:05 | 000,000,000 | ---D | M] -- C:\Users\Šimon\AppData\Roaming\Free Audio Editor
[2008.11.29 21:36:29 | 000,000,000 | ---D | M] -- C:\Users\Šimon\AppData\Roaming\GHISLER
[2010.06.30 11:02:12 | 000,000,000 | ---D | M] -- C:\Users\Šimon\AppData\Roaming\HLSW
[2010.06.29 16:24:08 | 000,000,000 | ---D | M] -- C:\Users\Šimon\AppData\Roaming\ICQ
[2009.02.08 19:41:08 | 000,000,000 | ---D | M] -- C:\Users\Šimon\AppData\Roaming\Leadertech
[2008.12.15 18:18:57 | 000,000,000 | ---D | M] -- C:\Users\Šimon\AppData\Roaming\Mikrotik
[2008.11.29 22:33:19 | 000,000,000 | ---D | M] -- C:\Users\Šimon\AppData\Roaming\Miranda
[2009.02.01 12:18:54 | 000,000,000 | ---D | M] -- C:\Users\Šimon\AppData\Roaming\My Games
[2010.05.04 20:59:51 | 000,000,000 | ---D | M] -- C:\Users\Šimon\AppData\Roaming\OpenCandy
[2009.11.26 20:31:42 | 000,000,000 | ---D | M] -- C:\Users\Šimon\AppData\Roaming\Opera
[2009.02.23 12:01:31 | 000,000,000 | ---D | M] -- C:\Users\Šimon\AppData\Roaming\PeerNetworking
[2009.03.12 18:34:51 | 000,000,000 | ---D | M] -- C:\Users\Šimon\AppData\Roaming\Red Alert 3
[2009.04.09 19:05:48 | 000,000,000 | ---D | M] -- C:\Users\Šimon\AppData\Roaming\Red Alert 3 Uprising
[2010.03.09 22:23:46 | 000,000,000 | ---D | M] -- C:\Users\Šimon\AppData\Roaming\SMART Technologies
[2010.03.09 22:14:25 | 000,000,000 | ---D | M] -- C:\Users\Šimon\AppData\Roaming\SMART Technologies Inc
[2009.10.10 10:27:12 | 000,000,000 | ---D | M] -- C:\Users\Šimon\AppData\Roaming\Ubisoft
[2008.11.30 15:35:56 | 000,000,000 | ---D | M] -- C:\Users\Šimon\AppData\Roaming\Ulead Systems
[2010.03.14 12:28:44 | 000,000,000 | ---D | M] -- C:\Users\Šimon\AppData\Roaming\uTorrent
[2010.02.06 13:48:47 | 000,000,000 | ---D | M] -- C:\Users\Šimon\AppData\Roaming\WinPatrol
[2010.07.07 23:54:38 | 000,032,584 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT
[2010.07.08 09:05:30 | 000,000,418 | -H-- | M] () -- C:\Windows\Tasks\User_Feed_Synchronization-{7B187FD1-9D81-446E-A1DE-1972DDEE41BE}.job

========== Purity Check ==========

========== Alternate Data Streams ==========

@Alternate Data Stream - 64 bytes -> C:\Users\Šimon\Desktop\video.mp4:TOC.WMV
< End of report >

crash40 · Příspěvekod **crash40** » 08 črc 2010 09:14

OTL Extras logfile created on: 8.7.2010 9:06:00 - Run 1
OTL by OldTimer - Version 3.2.8.1 Folder = C:\Users\Šimon\Desktop
64bit-Windows Vista Home Premium Edition Service Pack 1 (Version = 6.0.6001) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18928)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

4,00 Gb Total Physical Memory | 2,00 Gb Available Physical Memory | 56,00% Memory free
8,00 Gb Paging File | 6,00 Gb Available in Paging File | 74,00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 298,09 Gb Total Space | 25,71 Gb Free Space | 8,62% Space Free | Partition Type: NTFS
Drive D: | 7,03 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: UDF
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: POKOJÍK-PC
Current User Name: Šimon
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: Current user
Include 64bit Scans
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Minimal

========== Extra Registry (SafeList) ==========

========== File Associations ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation)

[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.html [@ = ChromeHTML] -- C:\Users\Šimon\AppData\Local\Google\Chrome\Application\chrome.exe (Google Inc.)

========== Shell Spawning ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %* File not found
cmdfile [open] -- "%1" %* File not found
comfile [open] -- "%1" %* File not found
exefile [open] -- "%1" %* File not found
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- "C:\Program Files (x86)\Microsoft Office\Office12\msohtmed.exe" %1 (Microsoft Corporation)
htmlfile [print] -- "C:\Program Files (x86)\Microsoft Office\Office12\msohtmed.exe" /p %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" ()
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %* File not found
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1" File not found
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l ()
scrfile [open] -- "%1" /S File not found
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1 File not found
Directory [cmd] -- cmd.exe /s /k pushd "%V" ()
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [OneNote.Open] -- C:\PROGRA~2\MICROS~1\Office12\ONENOTE.EXE "%L" (Microsoft Corporation)
Directory [Winamp.Bookmark] -- "C:\Program Files (x86)\Winamp\winamp.exe" /BOOKMARK "%1" (Nullsoft)
Directory [Winamp.Enqueue] -- "C:\Program Files (x86)\Winamp\winamp.exe" /ADD "%1" (Nullsoft)
Directory [Winamp.Play] -- "C:\Program Files (x86)\Winamp\winamp.exe" "%1" (Nullsoft)
Folder [open] -- %SystemRoot%\Explorer.exe /separate,/idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /separate,/e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- "C:\Program Files (x86)\Microsoft Office\Office12\msohtmed.exe" %1 (Microsoft Corporation)
htmlfile [print] -- "C:\Program Files (x86)\Microsoft Office\Office12\msohtmed.exe" /p %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [OneNote.Open] -- C:\PROGRA~2\MICROS~1\Office12\ONENOTE.EXE "%L" (Microsoft Corporation)
Directory [Winamp.Bookmark] -- "C:\Program Files (x86)\Winamp\winamp.exe" /BOOKMARK "%1" (Nullsoft)
Directory [Winamp.Enqueue] -- "C:\Program Files (x86)\Winamp\winamp.exe" /ADD "%1" (Nullsoft)
Directory [Winamp.Play] -- "C:\Program Files (x86)\Winamp\winamp.exe" "%1" (Nullsoft)
Folder [open] -- %SystemRoot%\Explorer.exe /separate,/idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /separate,/e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
"VistaSp1" = 9F 9E 16 8C DC 5B C8 01 [binary data]

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"oobe_av" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0

========== Authorized Applications List ==========

========== Vista Active Open Ports Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{0ABF8FFF-EC26-491F-8DA7-25D895821A72}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{0AD5EC50-D9B7-4233-8403-A2E8DA09667E}" = rport=3702 | protocol=17 | dir=out | svc=fdphost | app=%systemroot%\system32\svchost.exe |
"{3FE51E5E-8C0C-4179-B17C-DF1BC3095986}" = rport=445 | protocol=6 | dir=out | app=system |
"{4D786157-8637-4EAF-BCEC-24DFBB37DC4B}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
"{56E2602C-B88D-4589-95A1-1D041EC64618}" = rport=138 | protocol=17 | dir=out | app=system |
"{58814012-7E0A-4499-BC4D-80439D67E2F8}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{5C53DD26-B742-4883-91CC-7C852FCEE908}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{6B12996F-D304-46A7-B6FA-21237E517780}" = rport=3702 | protocol=17 | dir=out | svc=fdrespub | app=%systemroot%\system32\svchost.exe |
"{6F91A5B4-B192-4FDD-9927-E71CFAAC4911}" = lport=137 | protocol=17 | dir=in | app=system |
"{7241D9B1-9A05-492B-B3E1-DA4DE222DCF9}" = lport=3702 | protocol=17 | dir=in | svc=fdrespub | app=%systemroot%\system32\svchost.exe |
"{7E3DBDE3-6A94-463C-B026-50A9107BBD1E}" = rport=137 | protocol=17 | dir=out | app=system |
"{95FEE612-76BA-4D35-A359-55FDCF1825E3}" = lport=138 | protocol=17 | dir=in | app=system |
"{A40EEDA7-79CE-4867-9647-AC6C7C969D9C}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{A9936609-DA38-47DB-877C-B15C3311ECB0}" = lport=3702 | protocol=17 | dir=in | svc=fdphost | app=%systemroot%\system32\svchost.exe |
"{B4A78FAD-5FF7-42C8-9719-E72675353B1D}" = rport=139 | protocol=6 | dir=out | app=system |
"{D095808E-600F-4124-ACCC-7C4CC48E0907}" = lport=6004 | protocol=17 | dir=in | app=c:\program files (x86)\microsoft office\office12\outlook.exe |
"{DBAFEFA9-D48C-4038-A281-F1522D08FED6}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 |
"{F01FEEE2-B1F1-430A-BF2A-014B97122D67}" = lport=445 | protocol=6 | dir=in | app=system |
"{FD7FA5A2-C9EE-4D5C-BCCD-C6011FAA4142}" = lport=139 | protocol=6 | dir=in | app=system |

========== Vista Active Application Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{048D8887-C194-46A2-862C-D5FB3302340E}" = protocol=6 | dir=in | app=c:\program files (x86)\activision\call of duty - world at war\codwawmp.exe |
"{0AF8B0F3-D9F4-4853-A837-057CCA3205F6}" = protocol=17 | dir=in | app=c:\program files (x86)\electronic arts\crytek\crysis\bin32\crysis.exe |
"{120170C2-E2D5-48BD-A030-86555071B3B6}" = protocol=17 | dir=in | app=c:\program files (x86)\rockstar games\rockstar games social club\rgsclauncher.exe |
"{1AED25BE-2171-4D35-8F1D-B362E033C160}" = protocol=6 | dir=in | app=c:\program files (x86)\electronic arts\burnout(tm) paradise the ultimate box\burnoutparadise.exe |
"{202834D4-814A-435E-B477-7B5212622C29}" = protocol=6 | dir=in | app=c:\windows\syswow64\pnkbstra.exe |
"{21FA5901-D31A-4F85-94DD-3DDE4303C534}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\call of duty modern warfare 2\iw4mp.exe |
"{2376AF85-9BF5-473B-928A-863F802B01CE}" = protocol=6 | dir=in | app=c:\windows\syswow64\pnkbstra.exe |
"{24BBE959-DF0F-4D2A-95DC-47C431EDC458}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{2FB62A51-BBA9-41C0-A16B-2E80212684CB}" = protocol=17 | dir=in | app=c:\program files (x86)\ubisoft\far cry 2\bin\fc2launcher.exe |
"{33A0C7CD-AD42-4B6E-994C-A5C6684A7810}" = protocol=17 | dir=in | app=c:\program files (x86)\rockstar games\grand theft auto iv\launchgtaiv.exe |
"{39F26C78-2DED-4954-A652-CDCB9C84A2C2}" = protocol=6 | dir=in | app=c:\program files (x86)\microsoft office\office12\groove.exe |
"{3C84592D-9375-44EA-AF23-5E6248FD3ABD}" = protocol=17 | dir=in | app=c:\program files (x86)\microsoft office\office12\onenote.exe |
"{3E1C0718-F6F4-4EB3-B27C-62A944004C42}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 |
"{3EB673EF-159E-4646-843A-462805C237FF}" = protocol=17 | dir=in | app=c:\program files (x86)\electronic arts\crytek\crysis\bin64\crysisdedicatedserver.exe |
"{429B2ED7-3562-46BA-AF73-5A82EE950E4A}" = protocol=6 | dir=in | app=c:\program files (x86)\microsoft office\office12\onenote.exe |
"{478A98FF-321A-41B1-82E6-06D8ECDDDD46}" = protocol=6 | dir=in | app=c:\program files (x86)\ubisoft\far cry 2\bin\farcry2.exe |
"{4DED2383-5C2D-4BD9-9130-09E58277D06B}" = protocol=6 | dir=in | app=c:\windows\syswow64\pnkbstrb.exe |
"{4E1A4A99-FE31-4443-8F40-EB0B91F67528}" = protocol=6 | dir=in | app=c:\program files (x86)\rockstar games\rockstar games social club\rgsclauncher.exe |
"{514984D4-3B6F-432F-B908-DB03D4960B45}" = protocol=17 | dir=in | app=c:\program files (x86)\microsoft office\office12\groove.exe |
"{5769AA04-F615-4DF1-925A-DE2AC1501040}" = protocol=6 | dir=in | app=c:\program files (x86)\dragon age\daoriginslauncher.exe |
"{5939E494-80F9-4BD2-BC35-0A4061D6CEA2}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 |
"{5DB6ED7A-6744-45A5-9F98-E263F65BD815}" = protocol=6 | dir=in | app=c:\users\public\games\world of warcraft\wow-3.2.0-enus-downloader.exe |
"{6062789A-A9AE-43B7-9CE1-EE2A48C74BEE}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\call of duty modern warfare 2\iw4sp.exe |
"{60DF12FD-8153-4F7F-ACFF-182157289048}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\call of duty modern warfare 2\iw4sp.exe |
"{615F69F7-312B-4A66-A90C-E316551B361C}" = protocol=17 | dir=in | app=c:\windows\syswow64\pnkbstra.exe |
"{6482C0C7-DE99-4211-83BD-773491E960DA}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 |
"{6554F512-22A8-47D7-88D1-5C92DEAA7E4E}" = protocol=6 | dir=in | app=c:\program files (x86)\dragon age\bin_ship\daupdatersvc.service.exe |
"{66A7BBC9-5154-4D54-8D0B-BF328BE2CAED}" = protocol=6 | dir=in | app=c:\program files (x86)\electronic arts\burnout(tm) paradise the ultimate box\burnoutlauncher.exe |
"{66F0E2C9-FF4C-4480-A35C-314EF1969F0F}" = protocol=17 | dir=in | app=c:\program files (x86)\activision\call of duty 4 - modern warfare\iw3mp.exe |
"{685B1BF9-CA6B-43CD-8E36-B3AAC64E83D1}" = protocol=17 | dir=in | app=c:\program files (x86)\dragon age\bin_ship\daupdatersvc.service.exe |
"{6B0BB77F-538C-4F8D-97AE-D575145A1A22}" = protocol=6 | dir=in | app=c:\program files (x86)\firaxis games\sid meier's civilization 4\civilization4.exe |
"{6C9D535A-E9BD-4D1C-9252-40CBD7569350}" = protocol=6 | dir=in | app=c:\program files (x86)\electronic arts\crytek\crysis\bin64\crysisdedicatedserver.exe |
"{718EDB42-1794-4EA1-88B6-49DCC115539E}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 |
"{71BEF185-1350-48F5-9FC2-DD765CB2514D}" = protocol=17 | dir=in | app=c:\program files (x86)\electronic arts\burnout(tm) paradise the ultimate box\burnoutlauncher.exe |
"{7B923496-7254-47BC-AA37-2D17E4F452D4}" = protocol=6 | dir=in | app=c:\program files (x86)\rockstar games\grand theft auto iv\launchgtaiv.exe |
"{7EC6E412-4FCE-4921-A76B-2715EFBC1116}" = protocol=17 | dir=in | app=c:\program files (x86)\activision\call of duty 4 - modern warfare\iw3mp.exe |
"{81F5B341-61EF-4079-95FC-B01CC9960A99}" = protocol=17 | dir=in | app=c:\users\public\games\world of warcraft\wow-3.2.0-enus-downloader.exe |
"{8840C09F-FDAF-4E5E-BF87-E71079D9DA58}" = protocol=6 | dir=in | app=c:\program files (x86)\ubisoft\far cry 2\bin\fc2editor.exe |
"{8966F031-64AB-4CAC-BA8A-5379AF82A5C9}" = protocol=17 | dir=in | app=c:\program files (x86)\ubisoft\far cry 2\bin\fc2editor.exe |
"{89DD5E92-19F8-4E07-8ABB-9E338855072A}" = protocol=6 | dir=in | app=c:\program files (x86)\dragon age\bin_ship\daorigins.exe |
"{8B669B13-5FCA-4D93-941E-6D1B7E6E4BDC}" = protocol=6 | dir=in | app=c:\program files (x86)\electronic arts\crytek\crysis\bin32\crysis.exe |
"{8BE58334-DB6A-48CC-809E-08DE2B2D38D8}" = protocol=6 | dir=in | app=c:\program files (x86)\activision\call of duty 4 - modern warfare\iw3mp.exe |
"{92CAEB80-F9AD-4DEF-BD42-6791795198BE}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{9303A2D3-B838-4037-BC76-41A7ECD4C819}" = protocol=17 | dir=in | app=c:\program files (x86)\electronic arts\crytek\crysis\bin64\crysis.exe |
"{950164F1-1C69-44E5-B2DA-5B695F0593CD}" = protocol=17 | dir=in | app=c:\program files (x86)\firaxis games\sid meier's civilization 4\civilization4.exe |
"{95C6FE8F-BD8D-4CBB-B483-8824324FCD8A}" = protocol=6 | dir=in | app=c:\windows\syswow64\pnkbstrb.exe |
"{96284D10-177D-4D90-B2C3-0A9452D0F791}" = protocol=6 | dir=in | app=c:\program files (x86)\activision\call of duty 4 - modern warfare\iw3mp.exe |
"{99148D3B-4342-42D7-A5C0-24F8B1AC383B}" = protocol=6 | dir=in | app=c:\program files (x86)\ubisoft\far cry 2\bin\fc2launcher.exe |
"{9C2068F1-1F81-4476-8E01-E4A8672AFBB1}" = protocol=17 | dir=in | app=c:\program files (x86)\electronic arts\burnout(tm) paradise the ultimate box\burnoutparadise.exe |
"{9DD40B63-64A6-4A8C-ABEF-CDF0A4E06388}" = protocol=17 | dir=in | app=c:\program files (x86)\electronic arts\burnout(tm) paradise the ultimate box\burnoutconfigtool.exe |
"{9F2CAA07-E681-420B-B14E-17B2D8DFA9A7}" = protocol=17 | dir=in | app=c:\program files (x86)\microsoft office\office12\groove.exe |
"{A5DBF8DA-D8DA-4720-86E7-16413C8C9DEB}" = protocol=6 | dir=in | app=c:\program files (x86)\activision\wolfenstein\mp\wolf2mp.exe |
"{AA402581-90F1-4CA6-94D0-55FF9DE67FA3}" = protocol=6 | dir=in | app=c:\program files (x86)\activision\wolfenstein\mp\wolf2mplite.exe |
"{AE2782BF-78C0-49B4-A94C-D25DD25AF4B9}" = protocol=17 | dir=in | app=c:\program files (x86)\activision\call of duty - world at war\codwawmp.exe |
"{AF9409DB-832A-4E87-8EF4-576394D580BC}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\call of duty modern warfare 2\iw4mp.exe |
"{B0115267-E63C-4119-8903-C6DC43C72CB0}" = protocol=17 | dir=in | app=c:\windows\syswow64\pnkbstra.exe |
"{B1F88EEF-3060-439E-A829-5450EC1C5546}" = protocol=6 | dir=in | app=c:\program files (x86)\activision\call of duty - world at war\codwaw.exe |
"{B58EAD64-3B45-4F9E-9707-9285C68B252B}" = protocol=6 | dir=in | app=c:\program files (x86)\electronic arts\crytek\crysis\bin32\crysisdedicatedserver.exe |
"{C3873A93-FBAB-4749-9C7D-7A1D30B6B864}" = protocol=17 | dir=in | app=c:\program files (x86)\activision\wolfenstein\mp\wolf2mp.exe |
"{C75126BC-BFF8-4A42-9EC9-0FE393A9E020}" = protocol=6 | dir=in | app=c:\program files (x86)\microsoft office\office12\groove.exe |
"{CB6ED1EB-547F-4906-B9AC-FD09348B9CBF}" = protocol=17 | dir=in | app=c:\program files (x86)\electronic arts\crytek\crysis\bin32\crysisdedicatedserver.exe |
"{CDB9BFDC-BF7A-4C43-A1C7-FE8EA04C79D2}" = protocol=17 | dir=in | app=c:\program files (x86)\activision\wolfenstein\mp\wolf2mplite.exe |
"{CE6C808C-2E1B-44D1-802F-9E594B0CE99F}" = protocol=17 | dir=in | app=c:\windows\syswow64\pnkbstrb.exe |
"{D2036D81-DF07-470C-BA6B-3F45196A8BA4}" = protocol=6 | dir=in | app=c:\program files (x86)\microsoft office\office12\onenote.exe |
"{D8C09B53-CED6-40A5-B320-3B4121A5982E}" = protocol=6 | dir=in | app=c:\program files (x86)\electronic arts\burnout(tm) paradise the ultimate box\burnoutconfigtool.exe |
"{DAE7712C-72F9-4BF5-9A98-15FB9CFD1B1B}" = protocol=17 | dir=in | app=c:\program files (x86)\activision\call of duty - world at war\codwaw.exe |
"{DE760AB6-20CA-4CE3-8980-9EF505AD66D1}" = protocol=17 | dir=in | app=c:\program files (x86)\dragon age\bin_ship\daorigins.exe |
"{E7C14E8D-87AD-4828-810A-820C039801C4}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steam.exe |
"{E7D256FB-916D-4305-AECF-0C04FCB7A369}" = protocol=6 | dir=in | app=c:\program files (x86)\electronic arts\crytek\crysis\bin64\crysis.exe |
"{F1B3FB54-A54E-458E-B00C-9C5C7E953763}" = protocol=17 | dir=in | app=c:\program files (x86)\microsoft office\office12\onenote.exe |
"{F79020B1-F459-434E-8A06-AD1300364186}" = protocol=17 | dir=in | app=c:\program files (x86)\ubisoft\far cry 2\bin\farcry2.exe |
"{F7968B6C-E584-46E4-B0D1-FCA9FA3868D5}" = protocol=17 | dir=in | app=c:\windows\syswow64\pnkbstrb.exe |
"{FDA2D54D-0F48-4EB2-A03A-8B4AD11012AB}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steam.exe |
"{FEF655CC-09C7-4D61-8206-CFCA9F9C0627}" = protocol=17 | dir=in | app=c:\program files (x86)\dragon age\daoriginslauncher.exe |
"TCP Query User{03C5CA3A-2384-42C0-B4BA-5B64D0BD221F}C:\program files (x86)\rockstar games\grand theft auto iv\gtaiv.exe" = protocol=6 | dir=in | app=c:\program files (x86)\rockstar games\grand theft auto iv\gtaiv.exe |
"TCP Query User{09779C16-E108-4166-8EB3-B154F3D05B1C}C:\program files (x86)\counter-strike 1.6\hl.exe" = protocol=6 | dir=in | app=c:\program files (x86)\counter-strike 1.6\hl.exe |
"TCP Query User{1AC538B0-BEE0-4450-9C09-A86EE46FFCD6}C:\program files (x86)\left4dead\hl2.exe" = protocol=6 | dir=in | app=c:\program files (x86)\left4dead\hl2.exe |
"TCP Query User{1C942C1C-02B3-4178-AC74-56C20685F765}C:\users\šimon\appdata\local\temp\rar$ex00.399\tdu\testdriveunlimited.exe" = protocol=6 | dir=in | app=c:\users\šimon\appdata\local\temp\rar$ex00.399\tdu\testdriveunlimited.exe |
"TCP Query User{1CFD6D81-312B-40C1-A13A-82CBDFD68296}C:\users\public\games\world of warcraft\launcher.exe" = protocol=6 | dir=in | app=c:\users\public\games\world of warcraft\launcher.exe |
"TCP Query User{242E90EB-E401-42A1-946E-866B9ED3674B}C:\program files (x86)\hamachi\hamachi.exe" = protocol=6 | dir=in | app=c:\program files (x86)\hamachi\hamachi.exe |
"TCP Query User{251C27D8-BA68-428C-888D-974A0B43A552}C:\users\šimon\appdata\local\temp\rar$ex00.937\tdu\testdriveunlimited.exe" = protocol=6 | dir=in | app=c:\users\šimon\appdata\local\temp\rar$ex00.937\tdu\testdriveunlimited.exe |
"TCP Query User{2792FFF4-19EC-4761-9C3A-199D3E9ADC6A}C:\users\šimon\desktop\[pc] test drive unlimited [proper] [rip] [dopeman]\tdu\tdu\testdriveunlimited.exe" = protocol=6 | dir=in | app=c:\users\šimon\desktop\[pc] test drive unlimited [proper] [rip] [dopeman]\tdu\tdu\testdriveunlimited.exe |
"TCP Query User{2FCF4D4B-6EB7-41F6-B9D6-BAE4A42873EA}C:\program files (x86)\world of warcraft\launcher.exe" = protocol=6 | dir=in | app=c:\program files (x86)\world of warcraft\launcher.exe |
"TCP Query User{390908D9-5D2F-45FC-9CB3-1386159495D7}C:\program files (x86)\bitcomet\bitcomet.exe" = protocol=6 | dir=in | app=c:\program files (x86)\bitcomet\bitcomet.exe |
"TCP Query User{3FF726F0-DB40-41E5-93AB-080B189C0BE6}C:\program files (x86)\ea sports\fifa 10\fifa10.exe" = protocol=6 | dir=in | app=c:\program files (x86)\ea sports\fifa 10\fifa10.exe |
"TCP Query User{4B2440A5-932C-464A-AA00-4E91D035425F}C:\program files (x86)\world of warcraft\wow-3.2.0.10192-to-3.3.0.10958-enus-downloader.exe" = protocol=6 | dir=in | app=c:\program files (x86)\world of warcraft\wow-3.2.0.10192-to-3.3.0.10958-enus-downloader.exe |
"TCP Query User{4B54ACB0-2CFB-4249-9230-0929247D08B7}C:\program files (x86)\electronic arts\eadm\core.exe" = protocol=6 | dir=in | app=c:\program files (x86)\electronic arts\eadm\core.exe |
"TCP Query User{5156B44D-93B6-46FF-B6F9-41F29590CFE3}C:\program files (x86)\mozilla firefox\firefox.exe" = protocol=6 | dir=in | app=c:\program files (x86)\mozilla firefox\firefox.exe |
"TCP Query User{5663D38D-AB6E-4445-B7BE-CF63AFA3686C}C:\program files (x86)\tdu\testdriveunlimited.exe" = protocol=6 | dir=in | app=c:\program files (x86)\tdu\testdriveunlimited.exe |
"TCP Query User{61612263-4614-4909-8BC9-EB995A780DA0}C:\users\šimon\desktop\tdu\testdriveunlimited.exe" = protocol=6 | dir=in | app=c:\users\šimon\desktop\tdu\testdriveunlimited.exe |
"TCP Query User{6847C9F5-1755-4921-90FA-8F8595768BE9}C:\users\šimon\appdata\local\temp\rar$ex00.929\tdu\testdriveunlimited.exe" = protocol=6 | dir=in | app=c:\users\šimon\appdata\local\temp\rar$ex00.929\tdu\testdriveunlimited.exe |
"TCP Query User{6DAA46D5-0690-4AF0-B3BC-C3801565DDE9}C:\users\public\games\world of warcraft\repair.exe" = protocol=6 | dir=in | app=c:\users\public\games\world of warcraft\repair.exe |
"TCP Query User{7243192C-9A4F-450C-BD79-2C29615091C6}C:\program files (x86)\counter-strike 1.6\cstrike.exe" = protocol=6 | dir=in | app=c:\program files (x86)\counter-strike 1.6\cstrike.exe |
"TCP Query User{7284976D-64AF-4A5D-8CF6-6691B00F57E9}C:\users\šimon\appdata\local\temp\rar$ex00.805\tdu\testdriveunlimited.exe" = protocol=6 | dir=in | app=c:\users\šimon\appdata\local\temp\rar$ex00.805\tdu\testdriveunlimited.exe |
"TCP Query User{7624C5FB-31ED-40D5-BF55-C8CBFC79BF70}C:\users\šimon\appdata\local\temp\rar$ex00.883\tdu\testdriveunlimited.exe" = protocol=6 | dir=in | app=c:\users\šimon\appdata\local\temp\rar$ex00.883\tdu\testdriveunlimited.exe |
"TCP Query User{801CDEE3-DBCC-4B0E-A307-EA5C50426C11}C:\program files (x86)\yaho's miranda im\miranda32.exe" = protocol=6 | dir=in | app=c:\program files (x86)\yaho's miranda im\miranda32.exe |
"TCP Query User{80AC6AE2-A3C4-4F0D-9349-542A2461861E}C:\program files (x86)\hlsw\hlsw.exe" = protocol=6 | dir=in | app=c:\program files (x86)\hlsw\hlsw.exe |
"TCP Query User{925AED03-221E-410E-B305-2343FD324288}C:\users\šimon\appdata\local\temp\rar$ex63.116\tdu\testdriveunlimited.exe" = protocol=6 | dir=in | app=c:\users\šimon\appdata\local\temp\rar$ex63.116\tdu\testdriveunlimited.exe |
"TCP Query User{9532D7C1-2273-4DA5-BC63-156A806DB398}C:\program files (x86)\age of empires 2 & the conquerors expansion - full game\age2_x1.exe" = protocol=6 | dir=in | app=c:\program files (x86)\age of empires 2 & the conquerors expansion - full game\age2_x1.exe |
"TCP Query User{98FFA092-487B-49CB-A55C-75F5F980C8EB}C:\users\šimon\appdata\local\temp\rar$ex00.143\tdu\testdriveunlimited.exe" = protocol=6 | dir=in | app=c:\users\šimon\appdata\local\temp\rar$ex00.143\tdu\testdriveunlimited.exe |
"TCP Query User{9D63E481-B5A6-4153-8257-DAB3BA44395D}C:\users\šimon\appdata\local\temp\rar$ex00.867\tdu\testdriveunlimited.exe" = protocol=6 | dir=in | app=c:\users\šimon\appdata\local\temp\rar$ex00.867\tdu\testdriveunlimited.exe |
"TCP Query User{A1B6342A-1AD0-4510-9B80-18DBE713AA04}C:\users\šimon\desktop\miranda im\miranda32.exe" = protocol=6 | dir=in | app=c:\users\šimon\desktop\miranda im\miranda32.exe |
"TCP Query User{AA366382-6533-401E-8C23-9DFD21126F02}C:\users\šimon\miranda im\miranda32.exe" = protocol=6 | dir=in | app=c:\users\šimon\miranda im\miranda32.exe |
"TCP Query User{AB9DE897-2581-4E77-9830-5CCB75970D25}C:\program files (x86)\hlsw\hlsw.exe" = protocol=6 | dir=in | app=c:\program files (x86)\hlsw\hlsw.exe |
"TCP Query User{ABC6EA32-7A35-459D-8018-7EE469514ECB}C:\program files (x86)\yaho's miranda im\miranda32.exe" = protocol=6 | dir=in | app=c:\program files (x86)\yaho's miranda im\miranda32.exe |
"TCP Query User{AC6A4E0D-F86E-42F5-8EFD-7F3A4B68145E}C:\users\šimon\appdata\local\temp\rar$ex00.599\tdu\testdriveunlimited.exe" = protocol=6 | dir=in | app=c:\users\šimon\appdata\local\temp\rar$ex00.599\tdu\testdriveunlimited.exe |
"TCP Query User{BB484DC2-965D-4A67-83F1-CCEAA132084A}C:\program files (x86)\age of empires 2 & the conquerors expansion - full game\age2_x1.exe" = protocol=6 | dir=in | app=c:\program files (x86)\age of empires 2 & the conquerors expansion - full game\age2_x1.exe |
"TCP Query User{BDC76464-1DE2-4DED-B8DC-A4244598FD6B}C:\program files (x86)\miranda im\miranda32.exe" = protocol=6 | dir=in | app=c:\program files (x86)\miranda im\miranda32.exe |
"TCP Query User{BFD0C1E5-9E73-42B4-9496-B279331BE59D}C:\program files (x86)\icq6.5\icq.exe" = protocol=6 | dir=in | app=c:\program files (x86)\icq6.5\icq.exe |
"TCP Query User{C5C6D8CA-8EF1-4100-8FEA-8921A0986C03}C:\program files (x86)\left4dead\hl2.exe" = protocol=6 | dir=in | app=c:\program files (x86)\left4dead\hl2.exe |
"TCP Query User{CD43236F-0E14-41FC-8EBF-A0F6A5FA2CF3}C:\program files (x86)\mozilla firefox\firefox.exe" = protocol=6 | dir=in | app=c:\program files (x86)\mozilla firefox\firefox.exe |
"TCP Query User{CDC4A2EB-9CB5-48DF-AC41-559606F81652}C:\program files (x86)\electronic arts\eadm\core.exe" = protocol=6 | dir=in | app=c:\program files (x86)\electronic arts\eadm\core.exe |
"TCP Query User{CFE0277F-4784-44A4-9605-3B1098885A82}C:\program files (x86)\world of warcraft\wow-3.3.0.11159-to-3.3.2.11403-enus-downloader.exe" = protocol=6 | dir=in | app=c:\program files (x86)\world of warcraft\wow-3.3.0.11159-to-3.3.2.11403-enus-downloader.exe |
"TCP Query User{D0D2362E-DB11-4F37-A615-80CAD12F2811}C:\users\šimon\appdata\local\temp\rar$ex00.068\tdu\testdriveunlimited.exe" = protocol=6 | dir=in | app=c:\users\šimon\appdata\local\temp\rar$ex00.068\tdu\testdriveunlimited.exe |
"TCP Query User{D19A6D67-7C53-45AB-90E9-733BD2F9BC61}C:\users\šimon\desktop\miranda im\miranda32.exe" = protocol=6 | dir=in | app=c:\users\šimon\desktop\miranda im\miranda32.exe |
"TCP Query User{D36D522F-742A-4442-A2C8-52B3FB366409}C:\program files (x86)\ea sports\fifa 09\fifa09.exe" = protocol=6 | dir=in | app=c:\program files (x86)\ea sports\fifa 09\fifa09.exe |
"TCP Query User{D4F29BF2-96EB-4594-A562-DE6871AC9D51}C:\program files (x86)\miranda im\miranda32.exe" = protocol=6 | dir=in | app=c:\program files (x86)\miranda im\miranda32.exe |
"TCP Query User{D5964E6D-36BA-4787-B98B-B8B5E093B8A4}C:\users\šimon\appdata\local\temp\rar$ex01.605\tdu\testdriveunlimited.exe" = protocol=6 | dir=in | app=c:\users\šimon\appdata\local\temp\rar$ex01.605\tdu\testdriveunlimited.exe |
"TCP Query User{D6B7A95F-E3F4-41A2-8C62-CBCEF36AFCE6}C:\program files (x86)\opera\opera.exe" = protocol=6 | dir=in | app=c:\program files (x86)\opera\opera.exe |
"TCP Query User{DE546EDC-2D54-4562-A484-67D55AE12592}C:\users\šimon\appdata\local\google\chrome\application\chrome.exe" = protocol=6 | dir=in | app=c:\users\šimon\appdata\local\google\chrome\application\chrome.exe |
"TCP Query User{E242B22C-1E3A-476D-B1DD-16FB8649927B}C:\program files (x86)\bitcomet\bitcomet.exe" = protocol=6 | dir=in | app=c:\program files (x86)\bitcomet\bitcomet.exe |
"TCP Query User{E37F70F3-E0E2-41EB-A78F-E769F1971758}C:\program files (x86)\dragon age\bin_ship\daorigins.exe-enabledeveloperconsole.exe" = protocol=6 | dir=in | app=c:\program files (x86)\dragon age\bin_ship\daorigins.exe-enabledeveloperconsole.exe |
"TCP Query User{E610BEA7-F2E8-49D5-8094-FAE411B55FDA}C:\program files (x86)\icq6.5\icq.exe" = protocol=6 | dir=in | app=c:\program files (x86)\icq6.5\icq.exe |
"TCP Query User{E9C5F39F-64A6-4B46-9D97-6B86F785B333}C:\program files (x86)\counter-strike 1.6\cstrike.exe" = protocol=6 | dir=in | app=c:\program files (x86)\counter-strike 1.6\cstrike.exe |
"TCP Query User{F5EE43F1-A818-42F1-BF5A-611D302E9476}C:\users\šimon\appdata\local\temp\rar$ex00.209\tdu\testdriveunlimited.exe" = protocol=6 | dir=in | app=c:\users\šimon\appdata\local\temp\rar$ex00.209\tdu\testdriveunlimited.exe |
"TCP Query User{FB8C24D3-2347-4841-B961-85F77DE74E51}C:\program files (x86)\counter-strike 1.6\hl.exe" = protocol=6 | dir=in | app=c:\program files (x86)\counter-strike 1.6\hl.exe |
"UDP Query User{022ABA53-0D40-448B-BF08-33952BEB8DE4}C:\program files (x86)\age of empires 2 & the conquerors expansion - full game\age2_x1.exe" = protocol=17 | dir=in | app=c:\program files (x86)\age of empires 2 & the conquerors expansion - full game\age2_x1.exe |
"UDP Query User{0E3AD6B1-1884-408A-9B29-9D6B57393F85}C:\program files (x86)\opera\opera.exe" = protocol=17 | dir=in | app=c:\program files (x86)\opera\opera.exe |
"UDP Query User{0F924195-B454-485D-A652-0C60B1D09D01}C:\users\šimon\appdata\local\temp\rar$ex00.399\tdu\testdriveunlimited.exe" = protocol=17 | dir=in | app=c:\users\šimon\appdata\local\temp\rar$ex00.399\tdu\testdriveunlimited.exe |
"UDP Query User{164EA174-E04E-45FC-AD18-E56384BD8A4E}C:\program files (x86)\bitcomet\bitcomet.exe" = protocol=17 | dir=in | app=c:\program files (x86)\bitcomet\bitcomet.exe |
"UDP Query User{1680C946-1B3E-48DE-B7B4-6009D9E7FBE9}C:\program files (x86)\ea sports\fifa 09\fifa09.exe" = protocol=17 | dir=in | app=c:\program files (x86)\ea sports\fifa 09\fifa09.exe |
"UDP Query User{1B237CC2-6F17-4E59-8F56-CDEFB609253F}C:\users\šimon\appdata\local\google\chrome\application\chrome.exe" = protocol=17 | dir=in | app=c:\users\šimon\appdata\local\google\chrome\application\chrome.exe |
"UDP Query User{1C527806-1EBF-4412-BBB8-E11CDDFF0A1D}C:\users\šimon\desktop\tdu\testdriveunlimited.exe" = protocol=17 | dir=in | app=c:\users\šimon\desktop\tdu\testdriveunlimited.exe |
"UDP Query User{1EA74141-28E2-4A95-A393-3B60E9F045FA}C:\program files (x86)\world of warcraft\wow-3.2.0.10192-to-3.3.0.10958-enus-downloader.exe" = protocol=17 | dir=in | app=c:\program files (x86)\world of warcraft\wow-3.2.0.10192-to-3.3.0.10958-enus-downloader.exe |
"UDP Query User{37B8BFC1-F685-4CA4-8E75-F4BFEF827355}C:\program files (x86)\hlsw\hlsw.exe" = protocol=17 | dir=in | app=c:\program files (x86)\hlsw\hlsw.exe |
"UDP Query User{3844EE82-7DE3-4087-B188-9FE0C4C75023}C:\program files (x86)\icq6.5\icq.exe" = protocol=17 | dir=in | app=c:\program files (x86)\icq6.5\icq.exe |
"UDP Query User{3AEAF23F-F7F6-40F2-9137-907B0490BB47}C:\program files (x86)\yaho's miranda im\miranda32.exe" = protocol=17 | dir=in | app=c:\program files (x86)\yaho's miranda im\miranda32.exe |
"UDP Query User{3BBA634D-6BF3-44B8-ADB5-F0FAE5310EFD}C:\users\šimon\miranda im\miranda32.exe" = protocol=17 | dir=in | app=c:\users\šimon\miranda im\miranda32.exe |
"UDP Query User{3D8A8DA6-35E4-4DB5-B6E9-5617E9B1F6D9}C:\users\šimon\appdata\local\temp\rar$ex00.068\tdu\testdriveunlimited.exe" = protocol=17 | dir=in | app=c:\users\šimon\appdata\local\temp\rar$ex00.068\tdu\testdriveunlimited.exe |
"UDP Query User{45680DEC-57FF-41DB-89E6-BB262586B6BB}C:\users\šimon\appdata\local\temp\rar$ex00.209\tdu\testdriveunlimited.exe" = protocol=17 | dir=in | app=c:\users\šimon\appdata\local\temp\rar$ex00.209\tdu\testdriveunlimited.exe |
"UDP Query User{468FCC3A-F02B-4347-8866-731701A0D8D2}C:\users\šimon\appdata\local\temp\rar$ex01.605\tdu\testdriveunlimited.exe" = protocol=17 | dir=in | app=c:\users\šimon\appdata\local\temp\rar$ex01.605\tdu\testdriveunlimited.exe |
"UDP Query User{4A734E17-2D8C-4549-898C-F6A63E55B64B}C:\users\šimon\appdata\local\temp\rar$ex00.883\tdu\testdriveunlimited.exe" = protocol=17 | dir=in | app=c:\users\šimon\appdata\local\temp\rar$ex00.883\tdu\testdriveunlimited.exe |
"UDP Query User{4D2E9ED7-EBCB-4979-896A-28B6187C5D41}C:\program files (x86)\ea sports\fifa 10\fifa10.exe" = protocol=17 | dir=in | app=c:\program files (x86)\ea sports\fifa 10\fifa10.exe |
"UDP Query User{4FB2052E-8B0F-4313-8C91-0C5DB9ADDF30}C:\users\šimon\appdata\local\temp\rar$ex00.805\tdu\testdriveunlimited.exe" = protocol=17 | dir=in | app=c:\users\šimon\appdata\local\temp\rar$ex00.805\tdu\testdriveunlimited.exe |
"UDP Query User{5301AAB9-0F32-4BEB-AB1B-92E52260BAE8}C:\program files (x86)\icq6.5\icq.exe" = protocol=17 | dir=in | app=c:\program files (x86)\icq6.5\icq.exe |
"UDP Query User{541E6014-C432-4849-B49D-1BD274CEF4A4}C:\users\public\games\world of warcraft\repair.exe" = protocol=17 | dir=in | app=c:\users\public\games\world of warcraft\repair.exe |
"UDP Query User{54BE3865-4B3C-456E-85A3-C3B002CD72E3}C:\users\šimon\appdata\local\temp\rar$ex00.143\tdu\testdriveunlimited.exe" = protocol=17 | dir=in | app=c:\users\šimon\appdata\local\temp\rar$ex00.143\tdu\testdriveunlimited.exe |
"UDP Query User{639EC9F5-B942-4381-A3D5-532386C448C4}C:\program files (x86)\hlsw\hlsw.exe" = protocol=17 | dir=in | app=c:\program files (x86)\hlsw\hlsw.exe |
"UDP Query User{678538C1-DDF8-47E4-8198-71F8F15E1B78}C:\users\šimon\appdata\local\temp\rar$ex00.937\tdu\testdriveunlimited.exe" = protocol=17 | dir=in | app=c:\users\šimon\appdata\local\temp\rar$ex00.937\tdu\testdriveunlimited.exe |
"UDP Query User{67E694D3-E987-4A46-80A5-7ADA05D865C4}C:\program files (x86)\left4dead\hl2.exe" = protocol=17 | dir=in | app=c:\program files (x86)\left4dead\hl2.exe |
"UDP Query User{68601698-48B3-4FCD-A7A1-29B1B8AC5423}C:\users\šimon\desktop\miranda im\miranda32.exe" = protocol=17 | dir=in | app=c:\users\šimon\desktop\miranda im\miranda32.exe |
"UDP Query User{698D098A-0397-4AAA-B0F2-AF511A67C37A}C:\users\šimon\appdata\local\temp\rar$ex00.599\tdu\testdriveunlimited.exe" = protocol=17 | dir=in | app=c:\users\šimon\appdata\local\temp\rar$ex00.599\tdu\testdriveunlimited.exe |
"UDP Query User{6F15AA92-C38D-4E8D-9AAF-DCC7FA1FA810}C:\program files (x86)\tdu\testdriveunlimited.exe" = protocol=17 | dir=in | app=c:\program files (x86)\tdu\testdriveunlimited.exe |
"UDP Query User{714B4A66-7188-4D12-B0DB-2CBA67CBE551}C:\users\šimon\desktop\[pc] test drive unlimited [proper] [rip] [dopeman]\tdu\tdu\testdriveunlimited.exe" = protocol=17 | dir=in | app=c:\users\šimon\desktop\[pc] test drive unlimited [proper] [rip] [dopeman]\tdu\tdu\testdriveunlimited.exe |
"UDP Query User{74210B88-E9C6-4812-AE04-A839DA53E3F4}C:\program files (x86)\counter-strike 1.6\cstrike.exe" = protocol=17 | dir=in | app=c:\program files (x86)\counter-strike 1.6\cstrike.exe |
"UDP Query User{8C62778E-BE5A-4028-8BB9-AFAD8DD2330E}C:\program files (x86)\rockstar games\grand theft auto iv\gtaiv.exe" = protocol=17 | dir=in | app=c:\program files (x86)\rockstar games\grand theft auto iv\gtaiv.exe |
"UDP Query User{8CFF047E-7A0D-459B-8758-F602D3E646EE}C:\program files (x86)\counter-strike 1.6\cstrike.exe" = protocol=17 | dir=in | app=c:\program files (x86)\counter-strike 1.6\cstrike.exe |
"UDP Query User{91EE8020-1AAA-4E82-A3E2-E024A423D8BE}C:\program files (x86)\miranda im\miranda32.exe" = protocol=17 | dir=in | app=c:\program files (x86)\miranda im\miranda32.exe |
"UDP Query User{98E7E50F-2FFD-458D-A32D-28B00FA23548}C:\program files (x86)\electronic arts\eadm\core.exe" = protocol=17 | dir=in | app=c:\program files (x86)\electronic arts\eadm\core.exe |
"UDP Query User{AB0ABB00-D485-4BEB-AD4B-03B7BC756F64}C:\users\šimon\appdata\local\temp\rar$ex00.929\tdu\testdriveunlimited.exe" = protocol=17 | dir=in | app=c:\users\šimon\appdata\local\temp\rar$ex00.929\tdu\testdriveunlimited.exe |
"UDP Query User{AF812EA4-8361-4504-9E80-F3AB6FE127C0}C:\users\public\games\world of warcraft\launcher.exe" = protocol=17 | dir=in | app=c:\users\public\games\world of warcraft\launcher.exe |
"UDP Query User{B0F228B3-7FE4-4946-8338-9A89428F9F7F}C:\program files (x86)\mozilla firefox\firefox.exe" = protocol=17 | dir=in | app=c:\program files (x86)\mozilla firefox\firefox.exe |
"UDP Query User{B413110E-6709-4346-806B-B79CC66F5D6E}C:\users\šimon\desktop\miranda im\miranda32.exe" = protocol=17 | dir=in | app=c:\users\šimon\desktop\miranda im\miranda32.exe |
"UDP Query User{B41E0045-908D-483F-A450-6815BDD7A99D}C:\program files (x86)\yaho's miranda im\miranda32.exe" = protocol=17 | dir=in | app=c:\program files (x86)\yaho's miranda im\miranda32.exe |
"UDP Query User{BB6DD4DD-9774-47B0-9402-CB91FD641E13}C:\program files (x86)\world of warcraft\wow-3.3.0.11159-to-3.3.2.11403-enus-downloader.exe" = protocol=17 | dir=in | app=c:\program files (x86)\world of warcraft\wow-3.3.0.11159-to-3.3.2.11403-enus-downloader.exe |
"UDP Query User{BCD8CECB-6CDE-4423-9A7B-1A8EC0797316}C:\program files (x86)\bitcomet\bitcomet.exe" = protocol=17 | dir=in | app=c:\program files (x86)\bitcomet\bitcomet.exe |
"UDP Query User{BFFE4E35-1545-4AD4-A5B4-6A8BB954398A}C:\program files (x86)\counter-strike 1.6\hl.exe" = protocol=17 | dir=in | app=c:\program files (x86)\counter-strike 1.6\hl.exe |
"UDP Query User{C5AFFE44-E507-4444-83EB-E0C4F5D194BF}C:\program files (x86)\counter-strike 1.6\hl.exe" = protocol=17 | dir=in | app=c:\program files (x86)\counter-strike 1.6\hl.exe |
"UDP Query User{D1D771E2-8401-4F7D-B6CE-785A18528D0F}C:\users\šimon\appdata\local\temp\rar$ex00.867\tdu\testdriveunlimited.exe" = protocol=17 | dir=in | app=c:\users\šimon\appdata\local\temp\rar$ex00.867\tdu\testdriveunlimited.exe |
"UDP Query User{DDB308D6-0A12-4DE8-9951-98C72B460A32}C:\program files (x86)\hamachi\hamachi.exe" = protocol=17 | dir=in | app=c:\program files (x86)\hamachi\hamachi.exe |
"UDP Query User{E65BF9E7-8DC7-4719-848E-095024FF51C2}C:\program files (x86)\mozilla firefox\firefox.exe" = protocol=17 | dir=in | app=c:\program files (x86)\mozilla firefox\firefox.exe |
"UDP Query User{EFD46986-DFB8-4904-9CC1-FDA18FAFBDE1}C:\program files (x86)\electronic arts\eadm\core.exe" = protocol=17 | dir=in | app=c:\program files (x86)\electronic arts\eadm\core.exe |
"UDP Query User{F02FBAA5-8297-4269-960B-A3B2C1300E56}C:\program files (x86)\left4dead\hl2.exe" = protocol=17 | dir=in | app=c:\program files (x86)\left4dead\hl2.exe |
"UDP Query User{F23893C5-CCD1-4BDF-BF76-C2D7C23BEB97}C:\program files (x86)\miranda im\miranda32.exe" = protocol=17 | dir=in | app=c:\program files (x86)\miranda im\miranda32.exe |
"UDP Query User{F291140A-D6F1-46F4-AFDB-FD7280800B1D}C:\program files (x86)\dragon age\bin_ship\daorigins.exe-enabledeveloperconsole.exe" = protocol=17 | dir=in | app=c:\program files (x86)\dragon age\bin_ship\daorigins.exe-enabledeveloperconsole.exe |
"UDP Query User{F5334EBB-16F5-4C2B-9FA8-317A69C693E3}C:\program files (x86)\age of empires 2 & the conquerors expansion - full game\age2_x1.exe" = protocol=17 | dir=in | app=c:\program files (x86)\age of empires 2 & the conquerors expansion - full game\age2_x1.exe |
"UDP Query User{F6C9E825-77F2-4280-AAB4-C86FC71F9CE7}C:\program files (x86)\world of warcraft\launcher.exe" = protocol=17 | dir=in | app=c:\program files (x86)\world of warcraft\launcher.exe |
"UDP Query User{F87FC8F7-B762-4E19-864A-B626937CF0FA}C:\users\šimon\appdata\local\temp\rar$ex63.116\tdu\testdriveunlimited.exe" = protocol=17 | dir=in | app=c:\users\šimon\appdata\local\temp\rar$ex63.116\tdu\testdriveunlimited.exe |

========== HKEY_LOCAL_MACHINE Uninstall List ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{071c9b48-7c32-4621-a0ac-3f809523288f}" = Microsoft Visual C++ 2005 Redistributable (x64)
"{7353BAE6-5E49-46C4-A9B5-8A269A313789}" = Crysis WARHEAD(R)
"{88EB92AB-ABD3-E13C-3AEE-B7518354B55A}" = ATI Catalyst Install Manager
"{8AB5E15C-BDCB-7A93-9DBF-19C2DF39D0C7}" = ccc-utility64
"{90120000-002A-0000-1000-0000000FF1CE}" = Microsoft Office Office 64-bit Components 2007
"{90120000-002A-0405-1000-0000000FF1CE}" = Microsoft Office Shared 64-bit MUI (Czech) 2007
"{B6E3757B-5E77-3915-866A-CCFC4B8D194C}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{D1EF69B7-7A97-40FC-9AF1-6D6656FF874F}" = ATI AVIVO64 Codecs
"{DD73CA82-EA82-38AA-863D-9A24A018DC96}" = Microsoft .NET Framework 3.5 Language Pack SP1 - csy
"Crysis WARHEAD(R)" = Crysis WARHEAD(R)
"Lazarus_is1" = Lazarus 0.9.22
"Microsoft .NET Framework 3.5 Language Pack SP1 - csy" = Microsoft .NET Framework 3.5 SP1 – jazyková sada – CSY
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{000E79B7-E725-4F01-870A-C12942B7F8E4}" = Crysis(R)
"{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}" = Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148
"{0046FA01-C5B9-4985-BACB-398DC480FC05}" = Adobe Photoshop CS3
"{011F2CA9-AE14-4074-96A0-30AFB5851AB8}" = DopeCode Lock
"{02EBDBB9-4600-41D3-B566-40CB861511D2}" = World of Warcraft FREE Trial
"{048298C9-A4D3-490B-9FF9-AB023A9238F3}" = Steam
"{04AF207D-9A77-465A-8B76-991F6AB66245}" = Adobe Help Viewer CS3
"{07043840-8EBE-4287-85D8-8EC76D88B906}" = Microsoft Math 3.0
"{08B32819-6EEF-4057-AEDA-5AB681A36A23}" = Adobe Bridge Start Meeting
"{08B3869E-D282-424C-9AFC-870E04A4BA14}" = Rockstar Games Social Club
"{0A0719F0-AD56-42BA-B68C-EFFC330B6F13}" = SMART Notebook
"{11202615-E557-4ECF-9B86-F59C81E52909}" = FIFA 10
"{13B792AA-C078-43A4-8A3A-8B12D629940D}" = Counter-Strike 1.6
"{184CE391-7E0E-4C63-9935-D7A10EDFD3C6}" = Adobe WinSoft Linguistics Plugin
"{19DDEE14-1A97-196F-B33B-5F069C929ACA}" = HydraVision
"{1a413f37-ed88-4fec-9666-5c48dc4b7bb7}" = CENZURA 2.5.4
"{2315B23D-3E21-4920-837D-AE6460934ECB}" = FIFA 09
"{24D7346D-D4B4-45E8-98EA-75EC14B42DD8}" = Adobe ExtendScript Toolkit 2
"{26A24AE4-039D-4CA4-87B4-2F83216010FF}" = Java(TM) 6 Update 13
"{29E5EA97-5F74-4A57-B8B2-D4F169117183}" = Adobe Stock Photos CS3
"{3EA5D881-A648-B489-F113-3A7D99EC936F}" = Catalyst Control Center InstallProxy
"{3FE799B6-6493-AD47-A5FA-F3FE144C7EF0}" = Catalyst Control Center HydraVision Full
"{51846830-E7B2-4218-8968-B77F0FF475B8}" = Adobe Color EU Extra Settings
"{54793AA1-5001-42F4-ABB6-C364617C6078}" = Adobe Linguistics CS3
"{56B83336-FBC1-4C46-8613-90A9E3B440D6}" = EPU-6 Engine
"{579BA58C-F33D-4970-9953-B94B43768AC3}" = Grand Theft Auto IV
"{57CDBAE6-0896-4E78-88F0-C673E4BB44FD}" = Lock Folder XP 3.5
"{60DE4033-9503-48D1-A483-7846BD217CA9}" = ICQ6.5
"{64C1FA9A-FA94-4B6E-B3E4-8573738E4AD1}" = Adobe Setup
"{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}" = Windows Media Player Firefox Plugin
"{6ABE0BEE-D572-4FE8-B434-9E72A289431B}" = Adobe Fonts All
"{6D0C6BE4-F674-43D2-96BC-3509345108C9}_is1" = PokerStove version 1.23
"{6D4AC5A4-4CF9-4F90-8111-B9B53CE257BF}" = Adobe Color Common Settings
"{6FF5DD7A-FE28-4439-B8CF-1E9AF4EA0A61}" = Adobe Asset Services CS3
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{7353BAE6-5E49-46C4-A9B5-8A269A313789}" = Crysis WARHEAD(R)
"{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
"{7D21905A-5DB7-2F4C-4E97-80F352D2C3A9}" = Catalyst Control Center Graphics Previews Vista
"{802771A9-A856-4A41-ACF7-1450E523C923}" = Adobe XMP Panels CS3
"{8214D5AF-8BA8-3551-A859-5EBDBD30D2FA}" = Catalyst Control Center Core Implementation
"{85693740-CB33-8E46-D05A-22EEAC2C14C3}" = Catalyst Control Center Graphics Full New
"{8A0D9C6B-ACB8-738E-2D1A-B437E2CF36B6}" = Catalyst Control Center Graphics Full Existing
"{8A15B7D9-908A-4EF9-BA84-5AEDE61743EE}" = Call of Duty(R) 4 - Modern Warfare(TM) 1.6 Patch
"{8A74DEFD-A224-49CC-AB80-4E88BC730125}" = LogMeIn Hamachi
"{8AEA4BE2-2B52-41C0-BB7D-9F2D17AF1029}" = Nero 8
"{8D2BA474-F406-4710-9AE4-D4F22D21F0DD}" = Adobe Device Central CS3
"{8E6808E2-613D-4FCD-81A2-6C8FA8E03312}" = Adobe Type Support
"{8FB1B528-E260-451E-9B55-E9152F94B80B}" = Microsoft Games for Windows - LIVE Redistributable
"{90120000-0015-0405-0000-0000000FF1CE}" = Microsoft Office Access MUI (Czech) 2007
"{90120000-0015-0405-0000-0000000FF1CE}_ENTERPRISE_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0016-0405-0000-0000000FF1CE}" = Microsoft Office Excel MUI (Czech) 2007
"{90120000-0016-0405-0000-0000000FF1CE}_ENTERPRISE_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0018-0405-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (Czech) 2007
"{90120000-0018-0405-0000-0000000FF1CE}_ENTERPRISE_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0019-0405-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (Czech) 2007
"{90120000-0019-0405-0000-0000000FF1CE}_ENTERPRISE_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001A-0405-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (Czech) 2007
"{90120000-001A-0405-0000-0000000FF1CE}_ENTERPRISE_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001B-0405-0000-0000000FF1CE}" = Microsoft Office Word MUI (Czech) 2007
"{90120000-001B-0405-0000-0000000FF1CE}_ENTERPRISE_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001F-0405-0000-0000000FF1CE}" = Microsoft Office Proof (Czech) 2007
"{90120000-001F-0405-0000-0000000FF1CE}_ENTERPRISE_{294B4278-CF7B-40B9-86A1-2D3FF0C2C524}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2007
"{90120000-001F-0407-0000-0000000FF1CE}_ENTERPRISE_{A0516415-ED61-419A-981D-93596DA74165}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-0409-0000-0000000FF1CE}_ENTERPRISE_{ABDDE972-355B-4AF1-89A8-DA50B7B5C045}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-041B-0000-0000000FF1CE}" = Microsoft Office Proof (Slovak) 2007
"{90120000-001F-041B-0000-0000000FF1CE}_ENTERPRISE_{10EC59E5-9BCE-4884-BB1A-E28627220232}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-002A-0000-1000-0000000FF1CE}_ENTERPRISE_{E64BA721-2310-4B55-BE5A-2925F9706192}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-002A-0405-1000-0000000FF1CE}_ENTERPRISE_{E12F9D31-4025-4BC6-B1B2-AB262C5580B0}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-002C-0405-0000-0000000FF1CE}" = Microsoft Office Proofing (Czech) 2007
"{90120000-0030-0000-0000-0000000FF1CE}" = Microsoft Office Enterprise 2007
"{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{3D019598-7B59-447A-80AE-815B703B84FF}" = Security Update for Microsoft Office system 2007 (972581)
"{90120000-0044-0405-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (Czech) 2007
"{90120000-0044-0405-0000-0000000FF1CE}_ENTERPRISE_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-006E-0405-0000-0000000FF1CE}" = Microsoft Office Shared MUI (Czech) 2007
"{90120000-006E-0405-0000-0000000FF1CE}_ENTERPRISE_{E12F9D31-4025-4BC6-B1B2-AB262C5580B0}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-00A1-0405-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (Czech) 2007
"{90120000-00A1-0405-0000-0000000FF1CE}_ENTERPRISE_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-00BA-0405-0000-0000000FF1CE}" = Microsoft Office Groove MUI (Czech) 2007
"{90120000-00BA-0405-0000-0000000FF1CE}_ENTERPRISE_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90176341-0A8B-4CCC-A78D-F862228A6B95}" = Adobe Anchor Service CS3
"{92510C2A-30E3-4F8D-AE8A-93AB7B63EE8F}" = Gothic II Gold
"{931C37FC-594D-43A9-B10F-A2F2B1F03498}" = Call of Duty(R) 4 - Modern Warfare(TM) 1.7 Patch
"{95655ED4-7CA5-46DF-907F-7144877A32E5}" = Adobe Color NA Recommended Settings
"{97EA42A5-3FAB-4948-B74D-F3C44B13F5CE}" = Crysis WARHEAD(R) Patch
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9A996B6A-846E-4A89-B9C4-17546B7BE49F}" = Burnout(TM) Paradise The Ultimate Box
"{9C9824D9-9000-4373-A6A5-D0E5D4831394}" = Adobe Bridge CS3
"{A2B242BD-FF8D-4840-9DAA-9170EABEC59C}" = Adobe CMaps
"{A2D81E70-2A98-4A08-A628-94388B063C5E}" = Adobe Color - Photoshop Specific
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{AC5B0C19-D851-42F4-BDA0-410ECF7F70A5}" = PDF Settings
"{AC76BA86-7AD7-1033-7B44-A81300000003}" = Adobe Reader 8.1.3
"{AC76BA86-7AD7-5464-3428-800000000003}" = Spelling Dictionaries Support For Adobe Reader 8
"{AEC81925-9C76-4707-84A9-40696C613ED3}" = Dragon Age: Origins
"{B3BF6689-A81D-40D8-9A86-4AC4ACD9FC1C}" = Adobe Camera Raw 4.0
"{B3C02EC1-A7B0-4987-9A43-8789426AAA7D}" = Adobe Setup
"{B471481F-8743-85EF-B551-45ED91BEEE76}" = Catalyst Control Center Graphics Previews Common
"{B9B35331-B7E4-4E5C-BF4C-7BC87856124D}" = Adobe Default Language CS3
"{C874DC88-F5E2-D566-2880-22A2FDA0C69C}" = CCC Help English
"{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1
"{D0DFF92A-492E-4C40-B862-A74A173C25C5}" = Adobe Version Cue CS3 Client
"{D103C4BA-F905-437A-8049-DB24763BBE36}" = Skype™ 4.1
"{D1BB4446-AE9C-4256-9A7F-4D46604D2462}" = Adobe Setup
"{D2559B88-CC9D-4B48-81BB-F492BAA9C48C}" = Adobe PDF Library Files
"{D3B1C799-CB73-42DE-BA0F-2344793A095C}" = Catalyst Control Center - Branding
"{D6D425D2-803F-40E8-9D65-3DC00D577C11}" = NavyFIELD NorthAmerica
"{DD7DB3C5-6FA3-4FA3-8A71-C2F2940EB029}" = Adobe Color JA Extra Settings
"{DDE59617-F59A-473B-BC4E-C2B81F6CD38D}" = Command & Conquer™ Red Alert™ 3 Uprising
"{DED53B0B-B67C-4244-AE6A-D6FD3C28D1EF}" = Ad-Aware
"{E48469CC-635E-4FD5-A122-1497C286D217}" = Call of Duty(R) 4 - Modern Warfare(TM)
"{E69AE897-9E0B-485C-8552-7841F48D42D8}" = Adobe Update Manager CS3
"{E96A2C11-1139-7A34-C529-4D21832A34F6}" = Catalyst Control Center Graphics Light
"{EB2340D4-21DF-54B3-4C52-6C4F4B19F46D}" = ccc-core-static
"{F176F4DE-DF19-4CA2-9650-B1C2C81F993C}_is1" = Maple
"{F7B0939E-58DF-11DF-B3A6-005056806466}" = Google Earth
"{F97E3841-CA9D-4964-9D64-26066241D26F}" = Microsoft Games for Windows - LIVE
"{F9B37992-968C-4264-8449-489032FC28DE}" = Wolfenstein
"{FB8148DD-C575-4B0A-9F6C-0CFC46937930}" = Opera 10.10
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"Adobe_2ac78060bc5856b0c1cf873bb919b58" = Adobe Photoshop CS3
"Adobe_3e054d2218e7aa282c2369d939e58ff" = Adobe ExtendScript Toolkit 2
"Adobe_6c8e2cb4fd241c55406016127a6ab2e" = Adobe Color Common Settings
"avast!" = avast! Antivirus
"Battle.net" = Battle.net
"BeClean_is1" = BeClean
"BitComet" = BitComet 1.06
"BSPlayerf" = BS.Player FREE
"CCleaner" = CCleaner (remove only)
"Counter-Strike 1.6" = Counter-Strike 1.6
"CryptextNT4" = Cryptext (Remove Only)
"Crysis WARHEAD(R)" = Crysis WARHEAD(R)
"Crysis WARHEAD(R) Patch" = Crysis WARHEAD(R) Patch
"Čeština Dragon Age Origins 1.00" = Čeština Dragon Age Origins 1.00
"Diablo" = Diablo
"ENTERPRISE" = Microsoft Office Enterprise 2007
"EVEREST Ultimate Edition_is1" = EVEREST Ultimate Edition v4.50
"GameParkClient_is1" = GamePark
"GraphSight" = GraphSight
"HD Tune_is1" = HD Tune 2.55
"HijackThis" = HijackThis 2.0.2
"HLSW_is1" = HLSW v1.3.1
"InstallShield_{149464D9-B06F-4505-9968-FD1206F67AD3}" = Call of Duty(R) - World at War(TM) 1.3 Patch
"InstallShield_{2BF0AE92-C3BC-4112-9066-1546342B1FAE}" = Call of Duty(R) - World at War(TM) 1.2 Patch
"InstallShield_{8A15B7D9-908A-4EF9-BA84-5AEDE61743EE}" = Call of Duty(R) 4 - Modern Warfare(TM) 1.6 Patch
"InstallShield_{931C37FC-594D-43A9-B10F-A2F2B1F03498}" = Call of Duty(R) 4 - Modern Warfare(TM) 1.7 Patch
"InstallShield_{9F01A67B-7D67-482F-9D4F-D5980A440FD4}" = Call of Duty(R) - World at War(TM) 1.4 Patch
"InstallShield_{AFAE2B15-89A0-4215-A030-F7B5B478886B}" = Call of Duty(R) - World at War(TM) 1.1 Patch
"InstallShield_{E48469CC-635E-4FD5-A122-1497C286D217}" = Call of Duty(R) 4 - Modern Warfare(TM)
"InstallShield_{F9B37992-968C-4264-8449-489032FC28DE}" = Wolfenstein
"KLiteCodecPack_is1" = K-Lite Mega Codec Pack 4.4.5
"Left 4 Dead_is1" = Left 4 Dead v1.0.0.5
"LogMeIn Hamachi" = LogMeIn Hamachi
"Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware
"Microsoft .NET Framework 1.1 (1033)" = Microsoft .NET Framework 1.1
"Mozilla Firefox (3.5.10)" = Mozilla Firefox (3.5.10)
"mv61xxDriver" = marvell 61xx
"PokerStars" = PokerStars
"SpeedFan" = SpeedFan (remove only)
"Steam App 10180" = Call of Duty: Modern Warfare 2
"Steam App 10190" = Call of Duty: Modern Warfare 2 - Multiplayer
"SUPER ©" = SUPER © Version 2010.bld.38 (May 2, 2010)
"Teamspeak 2 RC2_is1" = TeamSpeak 2 RC2
"Totalcmd" = Total Commander (Remove or Repair)
"Winamp" = Winamp
"WinPatrol" = WinPatrol 2009
"WinRAR archiver" = WinRAR

crash40 · Příspěvekod **crash40** » 08 črc 2010 09:15

OTL Extras logfile created on: 8.7.2010 9:06:00 - Run 1
OTL by OldTimer - Version 3.2.8.1 Folder = C:\Users\Šimon\Desktop
64bit-Windows Vista Home Premium Edition Service Pack 1 (Version = 6.0.6001) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18928)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

4,00 Gb Total Physical Memory | 2,00 Gb Available Physical Memory | 56,00% Memory free
8,00 Gb Paging File | 6,00 Gb Available in Paging File | 74,00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 298,09 Gb Total Space | 25,71 Gb Free Space | 8,62% Space Free | Partition Type: NTFS
Drive D: | 7,03 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: UDF
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: POKOJÍK-PC
Current User Name: Šimon
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: Current user
Include 64bit Scans
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Minimal

========== Extra Registry (SafeList) ==========

========== File Associations ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation)

[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.html [@ = ChromeHTML] -- C:\Users\Šimon\AppData\Local\Google\Chrome\Application\chrome.exe (Google Inc.)

========== Shell Spawning ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %* File not found
cmdfile [open] -- "%1" %* File not found
comfile [open] -- "%1" %* File not found
exefile [open] -- "%1" %* File not found
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- "C:\Program Files (x86)\Microsoft Office\Office12\msohtmed.exe" %1 (Microsoft Corporation)
htmlfile [print] -- "C:\Program Files (x86)\Microsoft Office\Office12\msohtmed.exe" /p %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" ()
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %* File not found
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1" File not found
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l ()
scrfile [open] -- "%1" /S File not found
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1 File not found
Directory [cmd] -- cmd.exe /s /k pushd "%V" ()
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [OneNote.Open] -- C:\PROGRA~2\MICROS~1\Office12\ONENOTE.EXE "%L" (Microsoft Corporation)
Directory [Winamp.Bookmark] -- "C:\Program Files (x86)\Winamp\winamp.exe" /BOOKMARK "%1" (Nullsoft)
Directory [Winamp.Enqueue] -- "C:\Program Files (x86)\Winamp\winamp.exe" /ADD "%1" (Nullsoft)
Directory [Winamp.Play] -- "C:\Program Files (x86)\Winamp\winamp.exe" "%1" (Nullsoft)
Folder [open] -- %SystemRoot%\Explorer.exe /separate,/idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /separate,/e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- "C:\Program Files (x86)\Microsoft Office\Office12\msohtmed.exe" %1 (Microsoft Corporation)
htmlfile [print] -- "C:\Program Files (x86)\Microsoft Office\Office12\msohtmed.exe" /p %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [OneNote.Open] -- C:\PROGRA~2\MICROS~1\Office12\ONENOTE.EXE "%L" (Microsoft Corporation)
Directory [Winamp.Bookmark] -- "C:\Program Files (x86)\Winamp\winamp.exe" /BOOKMARK "%1" (Nullsoft)
Directory [Winamp.Enqueue] -- "C:\Program Files (x86)\Winamp\winamp.exe" /ADD "%1" (Nullsoft)
Directory [Winamp.Play] -- "C:\Program Files (x86)\Winamp\winamp.exe" "%1" (Nullsoft)
Folder [open] -- %SystemRoot%\Explorer.exe /separate,/idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /separate,/e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
"VistaSp1" = 9F 9E 16 8C DC 5B C8 01 [binary data]

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"oobe_av" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0

========== Authorized Applications List ==========

========== Vista Active Open Ports Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{0ABF8FFF-EC26-491F-8DA7-25D895821A72}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{0AD5EC50-D9B7-4233-8403-A2E8DA09667E}" = rport=3702 | protocol=17 | dir=out | svc=fdphost | app=%systemroot%\system32\svchost.exe |
"{3FE51E5E-8C0C-4179-B17C-DF1BC3095986}" = rport=445 | protocol=6 | dir=out | app=system |
"{4D786157-8637-4EAF-BCEC-24DFBB37DC4B}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
"{56E2602C-B88D-4589-95A1-1D041EC64618}" = rport=138 | protocol=17 | dir=out | app=system |
"{58814012-7E0A-4499-BC4D-80439D67E2F8}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{5C53DD26-B742-4883-91CC-7C852FCEE908}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{6B12996F-D304-46A7-B6FA-21237E517780}" = rport=3702 | protocol=17 | dir=out | svc=fdrespub | app=%systemroot%\system32\svchost.exe |
"{6F91A5B4-B192-4FDD-9927-E71CFAAC4911}" = lport=137 | protocol=17 | dir=in | app=system |
"{7241D9B1-9A05-492B-B3E1-DA4DE222DCF9}" = lport=3702 | protocol=17 | dir=in | svc=fdrespub | app=%systemroot%\system32\svchost.exe |
"{7E3DBDE3-6A94-463C-B026-50A9107BBD1E}" = rport=137 | protocol=17 | dir=out | app=system |
"{95FEE612-76BA-4D35-A359-55FDCF1825E3}" = lport=138 | protocol=17 | dir=in | app=system |
"{A40EEDA7-79CE-4867-9647-AC6C7C969D9C}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{A9936609-DA38-47DB-877C-B15C3311ECB0}" = lport=3702 | protocol=17 | dir=in | svc=fdphost | app=%systemroot%\system32\svchost.exe |
"{B4A78FAD-5FF7-42C8-9719-E72675353B1D}" = rport=139 | protocol=6 | dir=out | app=system |
"{D095808E-600F-4124-ACCC-7C4CC48E0907}" = lport=6004 | protocol=17 | dir=in | app=c:\program files (x86)\microsoft office\office12\outlook.exe |
"{DBAFEFA9-D48C-4038-A281-F1522D08FED6}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 |
"{F01FEEE2-B1F1-430A-BF2A-014B97122D67}" = lport=445 | protocol=6 | dir=in | app=system |
"{FD7FA5A2-C9EE-4D5C-BCCD-C6011FAA4142}" = lport=139 | protocol=6 | dir=in | app=system |

========== Vista Active Application Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{048D8887-C194-46A2-862C-D5FB3302340E}" = protocol=6 | dir=in | app=c:\program files (x86)\activision\call of duty - world at war\codwawmp.exe |
"{0AF8B0F3-D9F4-4853-A837-057CCA3205F6}" = protocol=17 | dir=in | app=c:\program files (x86)\electronic arts\crytek\crysis\bin32\crysis.exe |
"{120170C2-E2D5-48BD-A030-86555071B3B6}" = protocol=17 | dir=in | app=c:\program files (x86)\rockstar games\rockstar games social club\rgsclauncher.exe |
"{1AED25BE-2171-4D35-8F1D-B362E033C160}" = protocol=6 | dir=in | app=c:\program files (x86)\electronic arts\burnout(tm) paradise the ultimate box\burnoutparadise.exe |
"{202834D4-814A-435E-B477-7B5212622C29}" = protocol=6 | dir=in | app=c:\windows\syswow64\pnkbstra.exe |
"{21FA5901-D31A-4F85-94DD-3DDE4303C534}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\call of duty modern warfare 2\iw4mp.exe |
"{2376AF85-9BF5-473B-928A-863F802B01CE}" = protocol=6 | dir=in | app=c:\windows\syswow64\pnkbstra.exe |
"{24BBE959-DF0F-4D2A-95DC-47C431EDC458}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{2FB62A51-BBA9-41C0-A16B-2E80212684CB}" = protocol=17 | dir=in | app=c:\program files (x86)\ubisoft\far cry 2\bin\fc2launcher.exe |
"{33A0C7CD-AD42-4B6E-994C-A5C6684A7810}" = protocol=17 | dir=in | app=c:\program files (x86)\rockstar games\grand theft auto iv\launchgtaiv.exe |
"{39F26C78-2DED-4954-A652-CDCB9C84A2C2}" = protocol=6 | dir=in | app=c:\program files (x86)\microsoft office\office12\groove.exe |
"{3C84592D-9375-44EA-AF23-5E6248FD3ABD}" = protocol=17 | dir=in | app=c:\program files (x86)\microsoft office\office12\onenote.exe |
"{3E1C0718-F6F4-4EB3-B27C-62A944004C42}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 |
"{3EB673EF-159E-4646-843A-462805C237FF}" = protocol=17 | dir=in | app=c:\program files (x86)\electronic arts\crytek\crysis\bin64\crysisdedicatedserver.exe |
"{429B2ED7-3562-46BA-AF73-5A82EE950E4A}" = protocol=6 | dir=in | app=c:\program files (x86)\microsoft office\office12\onenote.exe |
"{478A98FF-321A-41B1-82E6-06D8ECDDDD46}" = protocol=6 | dir=in | app=c:\program files (x86)\ubisoft\far cry 2\bin\farcry2.exe |
"{4DED2383-5C2D-4BD9-9130-09E58277D06B}" = protocol=6 | dir=in | app=c:\windows\syswow64\pnkbstrb.exe |
"{4E1A4A99-FE31-4443-8F40-EB0B91F67528}" = protocol=6 | dir=in | app=c:\program files (x86)\rockstar games\rockstar games social club\rgsclauncher.exe |
"{514984D4-3B6F-432F-B908-DB03D4960B45}" = protocol=17 | dir=in | app=c:\program files (x86)\microsoft office\office12\groove.exe |
"{5769AA04-F615-4DF1-925A-DE2AC1501040}" = protocol=6 | dir=in | app=c:\program files (x86)\dragon age\daoriginslauncher.exe |
"{5939E494-80F9-4BD2-BC35-0A4061D6CEA2}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 |
"{5DB6ED7A-6744-45A5-9F98-E263F65BD815}" = protocol=6 | dir=in | app=c:\users\public\games\world of warcraft\wow-3.2.0-enus-downloader.exe |
"{6062789A-A9AE-43B7-9CE1-EE2A48C74BEE}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\call of duty modern warfare 2\iw4sp.exe |
"{60DF12FD-8153-4F7F-ACFF-182157289048}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\call of duty modern warfare 2\iw4sp.exe |
"{615F69F7-312B-4A66-A90C-E316551B361C}" = protocol=17 | dir=in | app=c:\windows\syswow64\pnkbstra.exe |
"{6482C0C7-DE99-4211-83BD-773491E960DA}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 |
"{6554F512-22A8-47D7-88D1-5C92DEAA7E4E}" = protocol=6 | dir=in | app=c:\program files (x86)\dragon age\bin_ship\daupdatersvc.service.exe |
"{66A7BBC9-5154-4D54-8D0B-BF328BE2CAED}" = protocol=6 | dir=in | app=c:\program files (x86)\electronic arts\burnout(tm) paradise the ultimate box\burnoutlauncher.exe |
"{66F0E2C9-FF4C-4480-A35C-314EF1969F0F}" = protocol=17 | dir=in | app=c:\program files (x86)\activision\call of duty 4 - modern warfare\iw3mp.exe |
"{685B1BF9-CA6B-43CD-8E36-B3AAC64E83D1}" = protocol=17 | dir=in | app=c:\program files (x86)\dragon age\bin_ship\daupdatersvc.service.exe |
"{6B0BB77F-538C-4F8D-97AE-D575145A1A22}" = protocol=6 | dir=in | app=c:\program files (x86)\firaxis games\sid meier's civilization 4\civilization4.exe |
"{6C9D535A-E9BD-4D1C-9252-40CBD7569350}" = protocol=6 | dir=in | app=c:\program files (x86)\electronic arts\crytek\crysis\bin64\crysisdedicatedserver.exe |
"{718EDB42-1794-4EA1-88B6-49DCC115539E}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 |
"{71BEF185-1350-48F5-9FC2-DD765CB2514D}" = protocol=17 | dir=in | app=c:\program files (x86)\electronic arts\burnout(tm) paradise the ultimate box\burnoutlauncher.exe |
"{7B923496-7254-47BC-AA37-2D17E4F452D4}" = protocol=6 | dir=in | app=c:\program files (x86)\rockstar games\grand theft auto iv\launchgtaiv.exe |
"{7EC6E412-4FCE-4921-A76B-2715EFBC1116}" = protocol=17 | dir=in | app=c:\program files (x86)\activision\call of duty 4 - modern warfare\iw3mp.exe |
"{81F5B341-61EF-4079-95FC-B01CC9960A99}" = protocol=17 | dir=in | app=c:\users\public\games\world of warcraft\wow-3.2.0-enus-downloader.exe |
"{8840C09F-FDAF-4E5E-BF87-E71079D9DA58}" = protocol=6 | dir=in | app=c:\program files (x86)\ubisoft\far cry 2\bin\fc2editor.exe |
"{8966F031-64AB-4CAC-BA8A-5379AF82A5C9}" = protocol=17 | dir=in | app=c:\program files (x86)\ubisoft\far cry 2\bin\fc2editor.exe |
"{89DD5E92-19F8-4E07-8ABB-9E338855072A}" = protocol=6 | dir=in | app=c:\program files (x86)\dragon age\bin_ship\daorigins.exe |
"{8B669B13-5FCA-4D93-941E-6D1B7E6E4BDC}" = protocol=6 | dir=in | app=c:\program files (x86)\electronic arts\crytek\crysis\bin32\crysis.exe |
"{8BE58334-DB6A-48CC-809E-08DE2B2D38D8}" = protocol=6 | dir=in | app=c:\program files (x86)\activision\call of duty 4 - modern warfare\iw3mp.exe |
"{92CAEB80-F9AD-4DEF-BD42-6791795198BE}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{9303A2D3-B838-4037-BC76-41A7ECD4C819}" = protocol=17 | dir=in | app=c:\program files (x86)\electronic arts\crytek\crysis\bin64\crysis.exe |
"{950164F1-1C69-44E5-B2DA-5B695F0593CD}" = protocol=17 | dir=in | app=c:\program files (x86)\firaxis games\sid meier's civilization 4\civilization4.exe |
"{95C6FE8F-BD8D-4CBB-B483-8824324FCD8A}" = protocol=6 | dir=in | app=c:\windows\syswow64\pnkbstrb.exe |
"{96284D10-177D-4D90-B2C3-0A9452D0F791}" = protocol=6 | dir=in | app=c:\program files (x86)\activision\call of duty 4 - modern warfare\iw3mp.exe |
"{99148D3B-4342-42D7-A5C0-24F8B1AC383B}" = protocol=6 | dir=in | app=c:\program files (x86)\ubisoft\far cry 2\bin\fc2launcher.exe |
"{9C2068F1-1F81-4476-8E01-E4A8672AFBB1}" = protocol=17 | dir=in | app=c:\program files (x86)\electronic arts\burnout(tm) paradise the ultimate box\burnoutparadise.exe |
"{9DD40B63-64A6-4A8C-ABEF-CDF0A4E06388}" = protocol=17 | dir=in | app=c:\program files (x86)\electronic arts\burnout(tm) paradise the ultimate box\burnoutconfigtool.exe |
"{9F2CAA07-E681-420B-B14E-17B2D8DFA9A7}" = protocol=17 | dir=in | app=c:\program files (x86)\microsoft office\office12\groove.exe |
"{A5DBF8DA-D8DA-4720-86E7-16413C8C9DEB}" = protocol=6 | dir=in | app=c:\program files (x86)\activision\wolfenstein\mp\wolf2mp.exe |
"{AA402581-90F1-4CA6-94D0-55FF9DE67FA3}" = protocol=6 | dir=in | app=c:\program files (x86)\activision\wolfenstein\mp\wolf2mplite.exe |
"{AE2782BF-78C0-49B4-A94C-D25DD25AF4B9}" = protocol=17 | dir=in | app=c:\program files (x86)\activision\call of duty - world at war\codwawmp.exe |
"{AF9409DB-832A-4E87-8EF4-576394D580BC}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\call of duty modern warfare 2\iw4mp.exe |
"{B0115267-E63C-4119-8903-C6DC43C72CB0}" = protocol=17 | dir=in | app=c:\windows\syswow64\pnkbstra.exe |
"{B1F88EEF-3060-439E-A829-5450EC1C5546}" = protocol=6 | dir=in | app=c:\program files (x86)\activision\call of duty - world at war\codwaw.exe |
"{B58EAD64-3B45-4F9E-9707-9285C68B252B}" = protocol=6 | dir=in | app=c:\program files (x86)\electronic arts\crytek\crysis\bin32\crysisdedicatedserver.exe |
"{C3873A93-FBAB-4749-9C7D-7A1D30B6B864}" = protocol=17 | dir=in | app=c:\program files (x86)\activision\wolfenstein\mp\wolf2mp.exe |
"{C75126BC-BFF8-4A42-9EC9-0FE393A9E020}" = protocol=6 | dir=in | app=c:\program files (x86)\microsoft office\office12\groove.exe |
"{CB6ED1EB-547F-4906-B9AC-FD09348B9CBF}" = protocol=17 | dir=in | app=c:\program files (x86)\electronic arts\crytek\crysis\bin32\crysisdedicatedserver.exe |
"{CDB9BFDC-BF7A-4C43-A1C7-FE8EA04C79D2}" = protocol=17 | dir=in | app=c:\program files (x86)\activision\wolfenstein\mp\wolf2mplite.exe |
"{CE6C808C-2E1B-44D1-802F-9E594B0CE99F}" = protocol=17 | dir=in | app=c:\windows\syswow64\pnkbstrb.exe |
"{D2036D81-DF07-470C-BA6B-3F45196A8BA4}" = protocol=6 | dir=in | app=c:\program files (x86)\microsoft office\office12\onenote.exe |
"{D8C09B53-CED6-40A5-B320-3B4121A5982E}" = protocol=6 | dir=in | app=c:\program files (x86)\electronic arts\burnout(tm) paradise the ultimate box\burnoutconfigtool.exe |
"{DAE7712C-72F9-4BF5-9A98-15FB9CFD1B1B}" = protocol=17 | dir=in | app=c:\program files (x86)\activision\call of duty - world at war\codwaw.exe |
"{DE760AB6-20CA-4CE3-8980-9EF505AD66D1}" = protocol=17 | dir=in | app=c:\program files (x86)\dragon age\bin_ship\daorigins.exe |
"{E7C14E8D-87AD-4828-810A-820C039801C4}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steam.exe |
"{E7D256FB-916D-4305-AECF-0C04FCB7A369}" = protocol=6 | dir=in | app=c:\program files (x86)\electronic arts\crytek\crysis\bin64\crysis.exe |
"{F1B3FB54-A54E-458E-B00C-9C5C7E953763}" = protocol=17 | dir=in | app=c:\program files (x86)\microsoft office\office12\onenote.exe |
"{F79020B1-F459-434E-8A06-AD1300364186}" = protocol=17 | dir=in | app=c:\program files (x86)\ubisoft\far cry 2\bin\farcry2.exe |
"{F7968B6C-E584-46E4-B0D1-FCA9FA3868D5}" = protocol=17 | dir=in | app=c:\windows\syswow64\pnkbstrb.exe |
"{FDA2D54D-0F48-4EB2-A03A-8B4AD11012AB}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steam.exe |
"{FEF655CC-09C7-4D61-8206-CFCA9F9C0627}" = protocol=17 | dir=in | app=c:\program files (x86)\dragon age\daoriginslauncher.exe |
"TCP Query User{03C5CA3A-2384-42C0-B4BA-5B64D0BD221F}C:\program files (x86)\rockstar games\grand theft auto iv\gtaiv.exe" = protocol=6 | dir=in | app=c:\program files (x86)\rockstar games\grand theft auto iv\gtaiv.exe |
"TCP Query User{09779C16-E108-4166-8EB3-B154F3D05B1C}C:\program files (x86)\counter-strike 1.6\hl.exe" = protocol=6 | dir=in | app=c:\program files (x86)\counter-strike 1.6\hl.exe |
"TCP Query User{1AC538B0-BEE0-4450-9C09-A86EE46FFCD6}C:\program files (x86)\left4dead\hl2.exe" = protocol=6 | dir=in | app=c:\program files (x86)\left4dead\hl2.exe |
"TCP Query User{1C942C1C-02B3-4178-AC74-56C20685F765}C:\users\šimon\appdata\local\temp\rar$ex00.399\tdu\testdriveunlimited.exe" = protocol=6 | dir=in | app=c:\users\šimon\appdata\local\temp\rar$ex00.399\tdu\testdriveunlimited.exe |
"TCP Query User{1CFD6D81-312B-40C1-A13A-82CBDFD68296}C:\users\public\games\world of warcraft\launcher.exe" = protocol=6 | dir=in | app=c:\users\public\games\world of warcraft\launcher.exe |
"TCP Query User{242E90EB-E401-42A1-946E-866B9ED3674B}C:\program files (x86)\hamachi\hamachi.exe" = protocol=6 | dir=in | app=c:\program files (x86)\hamachi\hamachi.exe |
"TCP Query User{251C27D8-BA68-428C-888D-974A0B43A552}C:\users\šimon\appdata\local\temp\rar$ex00.937\tdu\testdriveunlimited.exe" = protocol=6 | dir=in | app=c:\users\šimon\appdata\local\temp\rar$ex00.937\tdu\testdriveunlimited.exe |
"TCP Query User{2792FFF4-19EC-4761-9C3A-199D3E9ADC6A}C:\users\šimon\desktop\[pc] test drive unlimited [proper] [rip] [dopeman]\tdu\tdu\testdriveunlimited.exe" = protocol=6 | dir=in | app=c:\users\šimon\desktop\[pc] test drive unlimited [proper] [rip] [dopeman]\tdu\tdu\testdriveunlimited.exe |
"TCP Query User{2FCF4D4B-6EB7-41F6-B9D6-BAE4A42873EA}C:\program files (x86)\world of warcraft\launcher.exe" = protocol=6 | dir=in | app=c:\program files (x86)\world of warcraft\launcher.exe |
"TCP Query User{390908D9-5D2F-45FC-9CB3-1386159495D7}C:\program files (x86)\bitcomet\bitcomet.exe" = protocol=6 | dir=in | app=c:\program files (x86)\bitcomet\bitcomet.exe |
"TCP Query User{3FF726F0-DB40-41E5-93AB-080B189C0BE6}C:\program files (x86)\ea sports\fifa 10\fifa10.exe" = protocol=6 | dir=in | app=c:\program files (x86)\ea sports\fifa 10\fifa10.exe |
"TCP Query User{4B2440A5-932C-464A-AA00-4E91D035425F}C:\program files (x86)\world of warcraft\wow-3.2.0.10192-to-3.3.0.10958-enus-downloader.exe" = protocol=6 | dir=in | app=c:\program files (x86)\world of warcraft\wow-3.2.0.10192-to-3.3.0.10958-enus-downloader.exe |
"TCP Query User{4B54ACB0-2CFB-4249-9230-0929247D08B7}C:\program files (x86)\electronic arts\eadm\core.exe" = protocol=6 | dir=in | app=c:\program files (x86)\electronic arts\eadm\core.exe |
"TCP Query User{5156B44D-93B6-46FF-B6F9-41F29590CFE3}C:\program files (x86)\mozilla firefox\firefox.exe" = protocol=6 | dir=in | app=c:\program files (x86)\mozilla firefox\firefox.exe |
"TCP Query User{5663D38D-AB6E-4445-B7BE-CF63AFA3686C}C:\program files (x86)\tdu\testdriveunlimited.exe" = protocol=6 | dir=in | app=c:\program files (x86)\tdu\testdriveunlimited.exe |
"TCP Query User{61612263-4614-4909-8BC9-EB995A780DA0}C:\users\šimon\desktop\tdu\testdriveunlimited.exe" = protocol=6 | dir=in | app=c:\users\šimon\desktop\tdu\testdriveunlimited.exe |
"TCP Query User{6847C9F5-1755-4921-90FA-8F8595768BE9}C:\users\šimon\appdata\local\temp\rar$ex00.929\tdu\testdriveunlimited.exe" = protocol=6 | dir=in | app=c:\users\šimon\appdata\local\temp\rar$ex00.929\tdu\testdriveunlimited.exe |
"TCP Query User{6DAA46D5-0690-4AF0-B3BC-C3801565DDE9}C:\users\public\games\world of warcraft\repair.exe" = protocol=6 | dir=in | app=c:\users\public\games\world of warcraft\repair.exe |
"TCP Query User{7243192C-9A4F-450C-BD79-2C29615091C6}C:\program files (x86)\counter-strike 1.6\cstrike.exe" = protocol=6 | dir=in | app=c:\program files (x86)\counter-strike 1.6\cstrike.exe |
"TCP Query User{7284976D-64AF-4A5D-8CF6-6691B00F57E9}C:\users\šimon\appdata\local\temp\rar$ex00.805\tdu\testdriveunlimited.exe" = protocol=6 | dir=in | app=c:\users\šimon\appdata\local\temp\rar$ex00.805\tdu\testdriveunlimited.exe |
"TCP Query User{7624C5FB-31ED-40D5-BF55-C8CBFC79BF70}C:\users\šimon\appdata\local\temp\rar$ex00.883\tdu\testdriveunlimited.exe" = protocol=6 | dir=in | app=c:\users\šimon\appdata\local\temp\rar$ex00.883\tdu\testdriveunlimited.exe |
"TCP Query User{801CDEE3-DBCC-4B0E-A307-EA5C50426C11}C:\program files (x86)\yaho's miranda im\miranda32.exe" = protocol=6 | dir=in | app=c:\program files (x86)\yaho's miranda im\miranda32.exe |
"TCP Query User{80AC6AE2-A3C4-4F0D-9349-542A2461861E}C:\program files (x86)\hlsw\hlsw.exe" = protocol=6 | dir=in | app=c:\program files (x86)\hlsw\hlsw.exe |
"TCP Query User{925AED03-221E-410E-B305-2343FD324288}C:\users\šimon\appdata\local\temp\rar$ex63.116\tdu\testdriveunlimited.exe" = protocol=6 | dir=in | app=c:\users\šimon\appdata\local\temp\rar$ex63.116\tdu\testdriveunlimited.exe |
"TCP Query User{9532D7C1-2273-4DA5-BC63-156A806DB398}C:\program files (x86)\age of empires 2 & the conquerors expansion - full game\age2_x1.exe" = protocol=6 | dir=in | app=c:\program files (x86)\age of empires 2 & the conquerors expansion - full game\age2_x1.exe |
"TCP Query User{98FFA092-487B-49CB-A55C-75F5F980C8EB}C:\users\šimon\appdata\local\temp\rar$ex00.143\tdu\testdriveunlimited.exe" = protocol=6 | dir=in | app=c:\users\šimon\appdata\local\temp\rar$ex00.143\tdu\testdriveunlimited.exe |
"TCP Query User{9D63E481-B5A6-4153-8257-DAB3BA44395D}C:\users\šimon\appdata\local\temp\rar$ex00.867\tdu\testdriveunlimited.exe" = protocol=6 | dir=in | app=c:\users\šimon\appdata\local\temp\rar$ex00.867\tdu\testdriveunlimited.exe |
"TCP Query User{A1B6342A-1AD0-4510-9B80-18DBE713AA04}C:\users\šimon\desktop\miranda im\miranda32.exe" = protocol=6 | dir=in | app=c:\users\šimon\desktop\miranda im\miranda32.exe |
"TCP Query User{AA366382-6533-401E-8C23-9DFD21126F02}C:\users\šimon\miranda im\miranda32.exe" = protocol=6 | dir=in | app=c:\users\šimon\miranda im\miranda32.exe |
"TCP Query User{AB9DE897-2581-4E77-9830-5CCB75970D25}C:\program files (x86)\hlsw\hlsw.exe" = protocol=6 | dir=in | app=c:\program files (x86)\hlsw\hlsw.exe |
"TCP Query User{ABC6EA32-7A35-459D-8018-7EE469514ECB}C:\program files (x86)\yaho's miranda im\miranda32.exe" = protocol=6 | dir=in | app=c:\program files (x86)\yaho's miranda im\miranda32.exe |
"TCP Query User{AC6A4E0D-F86E-42F5-8EFD-7F3A4B68145E}C:\users\šimon\appdata\local\temp\rar$ex00.599\tdu\testdriveunlimited.exe" = protocol=6 | dir=in | app=c:\users\šimon\appdata\local\temp\rar$ex00.599\tdu\testdriveunlimited.exe |
"TCP Query User{BB484DC2-965D-4A67-83F1-CCEAA132084A}C:\program files (x86)\age of empires 2 & the conquerors expansion - full game\age2_x1.exe" = protocol=6 | dir=in | app=c:\program files (x86)\age of empires 2 & the conquerors expansion - full game\age2_x1.exe |
"TCP Query User{BDC76464-1DE2-4DED-B8DC-A4244598FD6B}C:\program files (x86)\miranda im\miranda32.exe" = protocol=6 | dir=in | app=c:\program files (x86)\miranda im\miranda32.exe |
"TCP Query User{BFD0C1E5-9E73-42B4-9496-B279331BE59D}C:\program files (x86)\icq6.5\icq.exe" = protocol=6 | dir=in | app=c:\program files (x86)\icq6.5\icq.exe |
"TCP Query User{C5C6D8CA-8EF1-4100-8FEA-8921A0986C03}C:\program files (x86)\left4dead\hl2.exe" = protocol=6 | dir=in | app=c:\program files (x86)\left4dead\hl2.exe |
"TCP Query User{CD43236F-0E14-41FC-8EBF-A0F6A5FA2CF3}C:\program files (x86)\mozilla firefox\firefox.exe" = protocol=6 | dir=in | app=c:\program files (x86)\mozilla firefox\firefox.exe |
"TCP Query User{CDC4A2EB-9CB5-48DF-AC41-559606F81652}C:\program files (x86)\electronic arts\eadm\core.exe" = protocol=6 | dir=in | app=c:\program files (x86)\electronic arts\eadm\core.exe |
"TCP Query User{CFE0277F-4784-44A4-9605-3B1098885A82}C:\program files (x86)\world of warcraft\wow-3.3.0.11159-to-3.3.2.11403-enus-downloader.exe" = protocol=6 | dir=in | app=c:\program files (x86)\world of warcraft\wow-3.3.0.11159-to-3.3.2.11403-enus-downloader.exe |
"TCP Query User{D0D2362E-DB11-4F37-A615-80CAD12F2811}C:\users\šimon\appdata\local\temp\rar$ex00.068\tdu\testdriveunlimited.exe" = protocol=6 | dir=in | app=c:\users\šimon\appdata\local\temp\rar$ex00.068\tdu\testdriveunlimited.exe |
"TCP Query User{D19A6D67-7C53-45AB-90E9-733BD2F9BC61}C:\users\šimon\desktop\miranda im\miranda32.exe" = protocol=6 | dir=in | app=c:\users\šimon\desktop\miranda im\miranda32.exe |
"TCP Query User{D36D522F-742A-4442-A2C8-52B3FB366409}C:\program files (x86)\ea sports\fifa 09\fifa09.exe" = protocol=6 | dir=in | app=c:\program files (x86)\ea sports\fifa 09\fifa09.exe |
"TCP Query User{D4F29BF2-96EB-4594-A562-DE6871AC9D51}C:\program files (x86)\miranda im\miranda32.exe" = protocol=6 | dir=in | app=c:\program files (x86)\miranda im\miranda32.exe |
"TCP Query User{D5964E6D-36BA-4787-B98B-B8B5E093B8A4}C:\users\šimon\appdata\local\temp\rar$ex01.605\tdu\testdriveunlimited.exe" = protocol=6 | dir=in | app=c:\users\šimon\appdata\local\temp\rar$ex01.605\tdu\testdriveunlimited.exe |
"TCP Query User{D6B7A95F-E3F4-41A2-8C62-CBCEF36AFCE6}C:\program files (x86)\opera\opera.exe" = protocol=6 | dir=in | app=c:\program files (x86)\opera\opera.exe |
"TCP Query User{DE546EDC-2D54-4562-A484-67D55AE12592}C:\users\šimon\appdata\local\google\chrome\application\chrome.exe" = protocol=6 | dir=in | app=c:\users\šimon\appdata\local\google\chrome\application\chrome.exe |
"TCP Query User{E242B22C-1E3A-476D-B1DD-16FB8649927B}C:\program files (x86)\bitcomet\bitcomet.exe" = protocol=6 | dir=in | app=c:\program files (x86)\bitcomet\bitcomet.exe |
"TCP Query User{E37F70F3-E0E2-41EB-A78F-E769F1971758}C:\program files (x86)\dragon age\bin_ship\daorigins.exe-enabledeveloperconsole.exe" = protocol=6 | dir=in | app=c:\program files (x86)\dragon age\bin_ship\daorigins.exe-enabledeveloperconsole.exe |
"TCP Query User{E610BEA7-F2E8-49D5-8094-FAE411B55FDA}C:\program files (x86)\icq6.5\icq.exe" = protocol=6 | dir=in | app=c:\program files (x86)\icq6.5\icq.exe |
"TCP Query User{E9C5F39F-64A6-4B46-9D97-6B86F785B333}C:\program files (x86)\counter-strike 1.6\cstrike.exe" = protocol=6 | dir=in | app=c:\program files (x86)\counter-strike 1.6\cstrike.exe |
"TCP Query User{F5EE43F1-A818-42F1-BF5A-611D302E9476}C:\users\šimon\appdata\local\temp\rar$ex00.209\tdu\testdriveunlimited.exe" = protocol=6 | dir=in | app=c:\users\šimon\appdata\local\temp\rar$ex00.209\tdu\testdriveunlimited.exe |
"TCP Query User{FB8C24D3-2347-4841-B961-85F77DE74E51}C:\program files (x86)\counter-strike 1.6\hl.exe" = protocol=6 | dir=in | app=c:\program files (x86)\counter-strike 1.6\hl.exe |
"UDP Query User{022ABA53-0D40-448B-BF08-33952BEB8DE4}C:\program files (x86)\age of empires 2 & the conquerors expansion - full game\age2_x1.exe" = protocol=17 | dir=in | app=c:\program files (x86)\age of empires 2 & the conquerors expansion - full game\age2_x1.exe |
"UDP Query User{0E3AD6B1-1884-408A-9B29-9D6B57393F85}C:\program files (x86)\opera\opera.exe" = protocol=17 | dir=in | app=c:\program files (x86)\opera\opera.exe |
"UDP Query User{0F924195-B454-485D-A652-0C60B1D09D01}C:\users\šimon\appdata\local\temp\rar$ex00.399\tdu\testdriveunlimited.exe" = protocol=17 | dir=in | app=c:\users\šimon\appdata\local\temp\rar$ex00.399\tdu\testdriveunlimited.exe |
"UDP Query User{164EA174-E04E-45FC-AD18-E56384BD8A4E}C:\program files (x86)\bitcomet\bitcomet.exe" = protocol=17 | dir=in | app=c:\program files (x86)\bitcomet\bitcomet.exe |
"UDP Query User{1680C946-1B3E-48DE-B7B4-6009D9E7FBE9}C:\program files (x86)\ea sports\fifa 09\fifa09.exe" = protocol=17 | dir=in | app=c:\program files (x86)\ea sports\fifa 09\fifa09.exe |
"UDP Query User{1B237CC2-6F17-4E59-8F56-CDEFB609253F}C:\users\šimon\appdata\local\google\chrome\application\chrome.exe" = protocol=17 | dir=in | app=c:\users\šimon\appdata\local\google\chrome\application\chrome.exe |
"UDP Query User{1C527806-1EBF-4412-BBB8-E11CDDFF0A1D}C:\users\šimon\desktop\tdu\testdriveunlimited.exe" = protocol=17 | dir=in | app=c:\users\šimon\desktop\tdu\testdriveunlimited.exe |
"UDP Query User{1EA74141-28E2-4A95-A393-3B60E9F045FA}C:\program files (x86)\world of warcraft\wow-3.2.0.10192-to-3.3.0.10958-enus-downloader.exe" = protocol=17 | dir=in | app=c:\program files (x86)\world of warcraft\wow-3.2.0.10192-to-3.3.0.10958-enus-downloader.exe |
"UDP Query User{37B8BFC1-F685-4CA4-8E75-F4BFEF827355}C:\program files (x86)\hlsw\hlsw.exe" = protocol=17 | dir=in | app=c:\program files (x86)\hlsw\hlsw.exe |
"UDP Query User{3844EE82-7DE3-4087-B188-9FE0C4C75023}C:\program files (x86)\icq6.5\icq.exe" = protocol=17 | dir=in | app=c:\program files (x86)\icq6.5\icq.exe |
"UDP Query User{3AEAF23F-F7F6-40F2-9137-907B0490BB47}C:\program files (x86)\yaho's miranda im\miranda32.exe" = protocol=17 | dir=in | app=c:\program files (x86)\yaho's miranda im\miranda32.exe |
"UDP Query User{3BBA634D-6BF3-44B8-ADB5-F0FAE5310EFD}C:\users\šimon\miranda im\miranda32.exe" = protocol=17 | dir=in | app=c:\users\šimon\miranda im\miranda32.exe |
"UDP Query User{3D8A8DA6-35E4-4DB5-B6E9-5617E9B1F6D9}C:\users\šimon\appdata\local\temp\rar$ex00.068\tdu\testdriveunlimited.exe" = protocol=17 | dir=in | app=c:\users\šimon\appdata\local\temp\rar$ex00.068\tdu\testdriveunlimited.exe |
"UDP Query User{45680DEC-57FF-41DB-89E6-BB262586B6BB}C:\users\šimon\appdata\local\temp\rar$ex00.209\tdu\testdriveunlimited.exe" = protocol=17 | dir=in | app=c:\users\šimon\appdata\local\temp\rar$ex00.209\tdu\testdriveunlimited.exe |
"UDP Query User{468FCC3A-F02B-4347-8866-731701A0D8D2}C:\users\šimon\appdata\local\temp\rar$ex01.605\tdu\testdriveunlimited.exe" = protocol=17 | dir=in | app=c:\users\šimon\appdata\local\temp\rar$ex01.605\tdu\testdriveunlimited.exe |
"UDP Query User{4A734E17-2D8C-4549-898C-F6A63E55B64B}C:\users\šimon\appdata\local\temp\rar$ex00.883\tdu\testdriveunlimited.exe" = protocol=17 | dir=in | app=c:\users\šimon\appdata\local\temp\rar$ex00.883\tdu\testdriveunlimited.exe |
"UDP Query User{4D2E9ED7-EBCB-4979-896A-28B6187C5D41}C:\program files (x86)\ea sports\fifa 10\fifa10.exe" = protocol=17 | dir=in | app=c:\program files (x86)\ea sports\fifa 10\fifa10.exe |
"UDP Query User{4FB2052E-8B0F-4313-8C91-0C5DB9ADDF30}C:\users\šimon\appdata\local\temp\rar$ex00.805\tdu\testdriveunlimited.exe" = protocol=17 | dir=in | app=c:\users\šimon\appdata\local\temp\rar$ex00.805\tdu\testdriveunlimited.exe |
"UDP Query User{5301AAB9-0F32-4BEB-AB1B-92E52260BAE8}C:\program files (x86)\icq6.5\icq.exe" = protocol=17 | dir=in | app=c:\program files (x86)\icq6.5\icq.exe |
"UDP Query User{541E6014-C432-4849-B49D-1BD274CEF4A4}C:\users\public\games\world of warcraft\repair.exe" = protocol=17 | dir=in | app=c:\users\public\games\world of warcraft\repair.exe |
"UDP Query User{54BE3865-4B3C-456E-85A3-C3B002CD72E3}C:\users\šimon\appdata\local\temp\rar$ex00.143\tdu\testdriveunlimited.exe" = protocol=17 | dir=in | app=c:\users\šimon\appdata\local\temp\rar$ex00.143\tdu\testdriveunlimited.exe |
"UDP Query User{639EC9F5-B942-4381-A3D5-532386C448C4}C:\program files (x86)\hlsw\hlsw.exe" = protocol=17 | dir=in | app=c:\program files (x86)\hlsw\hlsw.exe |
"UDP Query User{678538C1-DDF8-47E4-8198-71F8F15E1B78}C:\users\šimon\appdata\local\temp\rar$ex00.937\tdu\testdriveunlimited.exe" = protocol=17 | dir=in | app=c:\users\šimon\appdata\local\temp\rar$ex00.937\tdu\testdriveunlimited.exe |
"UDP Query User{67E694D3-E987-4A46-80A5-7ADA05D865C4}C:\program files (x86)\left4dead\hl2.exe" = protocol=17 | dir=in | app=c:\program files (x86)\left4dead\hl2.exe |
"UDP Query User{68601698-48B3-4FCD-A7A1-29B1B8AC5423}C:\users\šimon\desktop\miranda im\miranda32.exe" = protocol=17 | dir=in | app=c:\users\šimon\desktop\miranda im\miranda32.exe |
"UDP Query User{698D098A-0397-4AAA-B0F2-AF511A67C37A}C:\users\šimon\appdata\local\temp\rar$ex00.599\tdu\testdriveunlimited.exe" = protocol=17 | dir=in | app=c:\users\šimon\appdata\local\temp\rar$ex00.599\tdu\testdriveunlimited.exe |
"UDP Query User{6F15AA92-C38D-4E8D-9AAF-DCC7FA1FA810}C:\program files (x86)\tdu\testdriveunlimited.exe" = protocol=17 | dir=in | app=c:\program files (x86)\tdu\testdriveunlimited.exe |
"UDP Query User{714B4A66-7188-4D12-B0DB-2CBA67CBE551}C:\users\šimon\desktop\[pc] test drive unlimited [proper] [rip] [dopeman]\tdu\tdu\testdriveunlimited.exe" = protocol=17 | dir=in | app=c:\users\šimon\desktop\[pc] test drive unlimited [proper] [rip] [dopeman]\tdu\tdu\testdriveunlimited.exe |
"UDP Query User{74210B88-E9C6-4812-AE04-A839DA53E3F4}C:\program files (x86)\counter-strike 1.6\cstrike.exe" = protocol=17 | dir=in | app=c:\program files (x86)\counter-strike 1.6\cstrike.exe |
"UDP Query User{8C62778E-BE5A-4028-8BB9-AFAD8DD2330E}C:\program files (x86)\rockstar games\grand theft auto iv\gtaiv.exe" = protocol=17 | dir=in | app=c:\program files (x86)\rockstar games\grand theft auto iv\gtaiv.exe |
"UDP Query User{8CFF047E-7A0D-459B-8758-F602D3E646EE}C:\program files (x86)\counter-strike 1.6\cstrike.exe" = protocol=17 | dir=in | app=c:\program files (x86)\counter-strike 1.6\cstrike.exe |
"UDP Query User{91EE8020-1AAA-4E82-A3E2-E024A423D8BE}C:\program files (x86)\miranda im\miranda32.exe" = protocol=17 | dir=in | app=c:\program files (x86)\miranda im\miranda32.exe |
"UDP Query User{98E7E50F-2FFD-458D-A32D-28B00FA23548}C:\program files (x86)\electronic arts\eadm\core.exe" = protocol=17 | dir=in | app=c:\program files (x86)\electronic arts\eadm\core.exe |
"UDP Query User{AB0ABB00-D485-4BEB-AD4B-03B7BC756F64}C:\users\šimon\appdata\local\temp\rar$ex00.929\tdu\testdriveunlimited.exe" = protocol=17 | dir=in | app=c:\users\šimon\appdata\local\temp\rar$ex00.929\tdu\testdriveunlimited.exe |
"UDP Query User{AF812EA4-8361-4504-9E80-F3AB6FE127C0}C:\users\public\games\world of warcraft\launcher.exe" = protocol=17 | dir=in | app=c:\users\public\games\world of warcraft\launcher.exe |
"UDP Query User{B0F228B3-7FE4-4946-8338-9A89428F9F7F}C:\program files (x86)\mozilla firefox\firefox.exe" = protocol=17 | dir=in | app=c:\program files (x86)\mozilla firefox\firefox.exe |
"UDP Query User{B413110E-6709-4346-806B-B79CC66F5D6E}C:\users\šimon\desktop\miranda im\miranda32.exe" = protocol=17 | dir=in | app=c:\users\šimon\desktop\miranda im\miranda32.exe |
"UDP Query User{B41E0045-908D-483F-A450-6815BDD7A99D}C:\program files (x86)\yaho's miranda im\miranda32.exe" = protocol=17 | dir=in | app=c:\program files (x86)\yaho's miranda im\miranda32.exe |
"UDP Query User{BB6DD4DD-9774-47B0-9402-CB91FD641E13}C:\program files (x86)\world of warcraft\wow-3.3.0.11159-to-3.3.2.11403-enus-downloader.exe" = protocol=17 | dir=in | app=c:\program files (x86)\world of warcraft\wow-3.3.0.11159-to-3.3.2.11403-enus-downloader.exe |
"UDP Query User{BCD8CECB-6CDE-4423-9A7B-1A8EC0797316}C:\program files (x86)\bitcomet\bitcomet.exe" = protocol=17 | dir=in | app=c:\program files (x86)\bitcomet\bitcomet.exe |
"UDP Query User{BFFE4E35-1545-4AD4-A5B4-6A8BB954398A}C:\program files (x86)\counter-strike 1.6\hl.exe" = protocol=17 | dir=in | app=c:\program files (x86)\counter-strike 1.6\hl.exe |
"UDP Query User{C5AFFE44-E507-4444-83EB-E0C4F5D194BF}C:\program files (x86)\counter-strike 1.6\hl.exe" = protocol=17 | dir=in | app=c:\program files (x86)\counter-strike 1.6\hl.exe |
"UDP Query User{D1D771E2-8401-4F7D-B6CE-785A18528D0F}C:\users\šimon\appdata\local\temp\rar$ex00.867\tdu\testdriveunlimited.exe" = protocol=17 | dir=in | app=c:\users\šimon\appdata\local\temp\rar$ex00.867\tdu\testdriveunlimited.exe |
"UDP Query User{DDB308D6-0A12-4DE8-9951-98C72B460A32}C:\program files (x86)\hamachi\hamachi.exe" = protocol=17 | dir=in | app=c:\program files (x86)\hamachi\hamachi.exe |
"UDP Query User{E65BF9E7-8DC7-4719-848E-095024FF51C2}C:\program files (x86)\mozilla firefox\firefox.exe" = protocol=17 | dir=in | app=c:\program files (x86)\mozilla firefox\firefox.exe |
"UDP Query User{EFD46986-DFB8-4904-9CC1-FDA18FAFBDE1}C:\program files (x86)\electronic arts\eadm\core.exe" = protocol=17 | dir=in | app=c:\program files (x86)\electronic arts\eadm\core.exe |
"UDP Query User{F02FBAA5-8297-4269-960B-A3B2C1300E56}C:\program files (x86)\left4dead\hl2.exe" = protocol=17 | dir=in | app=c:\program files (x86)\left4dead\hl2.exe |
"UDP Query User{F23893C5-CCD1-4BDF-BF76-C2D7C23BEB97}C:\program files (x86)\miranda im\miranda32.exe" = protocol=17 | dir=in | app=c:\program files (x86)\miranda im\miranda32.exe |
"UDP Query User{F291140A-D6F1-46F4-AFDB-FD7280800B1D}C:\program files (x86)\dragon age\bin_ship\daorigins.exe-enabledeveloperconsole.exe" = protocol=17 | dir=in | app=c:\program files (x86)\dragon age\bin_ship\daorigins.exe-enabledeveloperconsole.exe |
"UDP Query User{F5334EBB-16F5-4C2B-9FA8-317A69C693E3}C:\program files (x86)\age of empires 2 & the conquerors expansion - full game\age2_x1.exe" = protocol=17 | dir=in | app=c:\program files (x86)\age of empires 2 & the conquerors expansion - full game\age2_x1.exe |
"UDP Query User{F6C9E825-77F2-4280-AAB4-C86FC71F9CE7}C:\program files (x86)\world of warcraft\launcher.exe" = protocol=17 | dir=in | app=c:\program files (x86)\world of warcraft\launcher.exe |
"UDP Query User{F87FC8F7-B762-4E19-864A-B626937CF0FA}C:\users\šimon\appdata\local\temp\rar$ex63.116\tdu\testdriveunlimited.exe" = protocol=17 | dir=in | app=c:\users\šimon\appdata\local\temp\rar$ex63.116\tdu\testdriveunlimited.exe |

========== HKEY_LOCAL_MACHINE Uninstall List ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{071c9b48-7c32-4621-a0ac-3f809523288f}" = Microsoft Visual C++ 2005 Redistributable (x64)
"{7353BAE6-5E49-46C4-A9B5-8A269A313789}" = Crysis WARHEAD(R)
"{88EB92AB-ABD3-E13C-3AEE-B7518354B55A}" = ATI Catalyst Install Manager
"{8AB5E15C-BDCB-7A93-9DBF-19C2DF39D0C7}" = ccc-utility64
"{90120000-002A-0000-1000-0000000FF1CE}" = Microsoft Office Office 64-bit Components 2007
"{90120000-002A-0405-1000-0000000FF1CE}" = Microsoft Office Shared 64-bit MUI (Czech) 2007
"{B6E3757B-5E77-3915-866A-CCFC4B8D194C}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{D1EF69B7-7A97-40FC-9AF1-6D6656FF874F}" = ATI AVIVO64 Codecs
"{DD73CA82-EA82-38AA-863D-9A24A018DC96}" = Microsoft .NET Framework 3.5 Language Pack SP1 - csy
"Crysis WARHEAD(R)" = Crysis WARHEAD(R)
"Lazarus_is1" = Lazarus 0.9.22
"Microsoft .NET Framework 3.5 Language Pack SP1 - csy" = Microsoft .NET Framework 3.5 SP1 – jazyková sada – CSY
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{000E79B7-E725-4F01-870A-C12942B7F8E4}" = Crysis(R)
"{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}" = Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148
"{0046FA01-C5B9-4985-BACB-398DC480FC05}" = Adobe Photoshop CS3
"{011F2CA9-AE14-4074-96A0-30AFB5851AB8}" = DopeCode Lock
"{02EBDBB9-4600-41D3-B566-40CB861511D2}" = World of Warcraft FREE Trial
"{048298C9-A4D3-490B-9FF9-AB023A9238F3}" = Steam
"{04AF207D-9A77-465A-8B76-991F6AB66245}" = Adobe Help Viewer CS3
"{07043840-8EBE-4287-85D8-8EC76D88B906}" = Microsoft Math 3.0
"{08B32819-6EEF-4057-AEDA-5AB681A36A23}" = Adobe Bridge Start Meeting
"{08B3869E-D282-424C-9AFC-870E04A4BA14}" = Rockstar Games Social Club
"{0A0719F0-AD56-42BA-B68C-EFFC330B6F13}" = SMART Notebook
"{11202615-E557-4ECF-9B86-F59C81E52909}" = FIFA 10
"{13B792AA-C078-43A4-8A3A-8B12D629940D}" = Counter-Strike 1.6
"{184CE391-7E0E-4C63-9935-D7A10EDFD3C6}" = Adobe WinSoft Linguistics Plugin
"{19DDEE14-1A97-196F-B33B-5F069C929ACA}" = HydraVision
"{1a413f37-ed88-4fec-9666-5c48dc4b7bb7}" = CENZURA 2.5.4
"{2315B23D-3E21-4920-837D-AE6460934ECB}" = FIFA 09
"{24D7346D-D4B4-45E8-98EA-75EC14B42DD8}" = Adobe ExtendScript Toolkit 2
"{26A24AE4-039D-4CA4-87B4-2F83216010FF}" = Java(TM) 6 Update 13
"{29E5EA97-5F74-4A57-B8B2-D4F169117183}" = Adobe Stock Photos CS3
"{3EA5D881-A648-B489-F113-3A7D99EC936F}" = Catalyst Control Center InstallProxy
"{3FE799B6-6493-AD47-A5FA-F3FE144C7EF0}" = Catalyst Control Center HydraVision Full
"{51846830-E7B2-4218-8968-B77F0FF475B8}" = Adobe Color EU Extra Settings
"{54793AA1-5001-42F4-ABB6-C364617C6078}" = Adobe Linguistics CS3
"{56B83336-FBC1-4C46-8613-90A9E3B440D6}" = EPU-6 Engine
"{579BA58C-F33D-4970-9953-B94B43768AC3}" = Grand Theft Auto IV
"{57CDBAE6-0896-4E78-88F0-C673E4BB44FD}" = Lock Folder XP 3.5
"{60DE4033-9503-48D1-A483-7846BD217CA9}" = ICQ6.5
"{64C1FA9A-FA94-4B6E-B3E4-8573738E4AD1}" = Adobe Setup
"{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}" = Windows Media Player Firefox Plugin
"{6ABE0BEE-D572-4FE8-B434-9E72A289431B}" = Adobe Fonts All
"{6D0C6BE4-F674-43D2-96BC-3509345108C9}_is1" = PokerStove version 1.23
"{6D4AC5A4-4CF9-4F90-8111-B9B53CE257BF}" = Adobe Color Common Settings
"{6FF5DD7A-FE28-4439-B8CF-1E9AF4EA0A61}" = Adobe Asset Services CS3
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{7353BAE6-5E49-46C4-A9B5-8A269A313789}" = Crysis WARHEAD(R)
"{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
"{7D21905A-5DB7-2F4C-4E97-80F352D2C3A9}" = Catalyst Control Center Graphics Previews Vista
"{802771A9-A856-4A41-ACF7-1450E523C923}" = Adobe XMP Panels CS3
"{8214D5AF-8BA8-3551-A859-5EBDBD30D2FA}" = Catalyst Control Center Core Implementation
"{85693740-CB33-8E46-D05A-22EEAC2C14C3}" = Catalyst Control Center Graphics Full New
"{8A0D9C6B-ACB8-738E-2D1A-B437E2CF36B6}" = Catalyst Control Center Graphics Full Existing
"{8A15B7D9-908A-4EF9-BA84-5AEDE61743EE}" = Call of Duty(R) 4 - Modern Warfare(TM) 1.6 Patch
"{8A74DEFD-A224-49CC-AB80-4E88BC730125}" = LogMeIn Hamachi
"{8AEA4BE2-2B52-41C0-BB7D-9F2D17AF1029}" = Nero 8
"{8D2BA474-F406-4710-9AE4-D4F22D21F0DD}" = Adobe Device Central CS3
"{8E6808E2-613D-4FCD-81A2-6C8FA8E03312}" = Adobe Type Support
"{8FB1B528-E260-451E-9B55-E9152F94B80B}" = Microsoft Games for Windows - LIVE Redistributable
"{90120000-0015-0405-0000-0000000FF1CE}" = Microsoft Office Access MUI (Czech) 2007
"{90120000-0015-0405-0000-0000000FF1CE}_ENTERPRISE_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0016-0405-0000-0000000FF1CE}" = Microsoft Office Excel MUI (Czech) 2007
"{90120000-0016-0405-0000-0000000FF1CE}_ENTERPRISE_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0018-0405-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (Czech) 2007
"{90120000-0018-0405-0000-0000000FF1CE}_ENTERPRISE_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0019-0405-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (Czech) 2007
"{90120000-0019-0405-0000-0000000FF1CE}_ENTERPRISE_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001A-0405-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (Czech) 2007
"{90120000-001A-0405-0000-0000000FF1CE}_ENTERPRISE_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001B-0405-0000-0000000FF1CE}" = Microsoft Office Word MUI (Czech) 2007
"{90120000-001B-0405-0000-0000000FF1CE}_ENTERPRISE_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001F-0405-0000-0000000FF1CE}" = Microsoft Office Proof (Czech) 2007
"{90120000-001F-0405-0000-0000000FF1CE}_ENTERPRISE_{294B4278-CF7B-40B9-86A1-2D3FF0C2C524}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2007
"{90120000-001F-0407-0000-0000000FF1CE}_ENTERPRISE_{A0516415-ED61-419A-981D-93596DA74165}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-0409-0000-0000000FF1CE}_ENTERPRISE_{ABDDE972-355B-4AF1-89A8-DA50B7B5C045}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-041B-0000-0000000FF1CE}" = Microsoft Office Proof (Slovak) 2007
"{90120000-001F-041B-0000-0000000FF1CE}_ENTERPRISE_{10EC59E5-9BCE-4884-BB1A-E28627220232}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-002A-0000-1000-0000000FF1CE}_ENTERPRISE_{E64BA721-2310-4B55-BE5A-2925F9706192}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-002A-0405-1000-0000000FF1CE}_ENTERPRISE_{E12F9D31-4025-4BC6-B1B2-AB262C5580B0}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-002C-0405-0000-0000000FF1CE}" = Microsoft Office Proofing (Czech) 2007
"{90120000-0030-0000-0000-0000000FF1CE}" = Microsoft Office Enterprise 2007
"{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{3D019598-7B59-447A-80AE-815B703B84FF}" = Security Update for Microsoft Office system 2007 (972581)
"{90120000-0044-0405-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (Czech) 2007
"{90120000-0044-0405-0000-0000000FF1CE}_ENTERPRISE_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-006E-0405-0000-0000000FF1CE}" = Microsoft Office Shared MUI (Czech) 2007
"{90120000-006E-0405-0000-0000000FF1CE}_ENTERPRISE_{E12F9D31-4025-4BC6-B1B2-AB262C5580B0}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-00A1-0405-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (Czech) 2007
"{90120000-00A1-0405-0000-0000000FF1CE}_ENTERPRISE_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-00BA-0405-0000-0000000FF1CE}" = Microsoft Office Groove MUI (Czech) 2007
"{90120000-00BA-0405-0000-0000000FF1CE}_ENTERPRISE_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90176341-0A8B-4CCC-A78D-F862228A6B95}" = Adobe Anchor Service CS3
"{92510C2A-30E3-4F8D-AE8A-93AB7B63EE8F}" = Gothic II Gold
"{931C37FC-594D-43A9-B10F-A2F2B1F03498}" = Call of Duty(R) 4 - Modern Warfare(TM) 1.7 Patch
"{95655ED4-7CA5-46DF-907F-7144877A32E5}" = Adobe Color NA Recommended Settings
"{97EA42A5-3FAB-4948-B74D-F3C44B13F5CE}" = Crysis WARHEAD(R) Patch
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9A996B6A-846E-4A89-B9C4-17546B7BE49F}" = Burnout(TM) Paradise The Ultimate Box
"{9C9824D9-9000-4373-A6A5-D0E5D4831394}" = Adobe Bridge CS3
"{A2B242BD-FF8D-4840-9DAA-9170EABEC59C}" = Adobe CMaps
"{A2D81E70-2A98-4A08-A628-94388B063C5E}" = Adobe Color - Photoshop Specific
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{AC5B0C19-D851-42F4-BDA0-410ECF7F70A5}" = PDF Settings
"{AC76BA86-7AD7-1033-7B44-A81300000003}" = Adobe Reader 8.1.3
"{AC76BA86-7AD7-5464-3428-800000000003}" = Spelling Dictionaries Support For Adobe Reader 8
"{AEC81925-9C76-4707-84A9-40696C613ED3}" = Dragon Age: Origins
"{B3BF6689-A81D-40D8-9A86-4AC4ACD9FC1C}" = Adobe Camera Raw 4.0
"{B3C02EC1-A7B0-4987-9A43-8789426AAA7D}" = Adobe Setup
"{B471481F-8743-85EF-B551-45ED91BEEE76}" = Catalyst Control Center Graphics Previews Common
"{B9B35331-B7E4-4E5C-BF4C-7BC87856124D}" = Adobe Default Language CS3
"{C874DC88-F5E2-D566-2880-22A2FDA0C69C}" = CCC Help English
"{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1
"{D0DFF92A-492E-4C40-B862-A74A173C25C5}" = Adobe Version Cue CS3 Client
"{D103C4BA-F905-437A-8049-DB24763BBE36}" = Skype™ 4.1
"{D1BB4446-AE9C-4256-9A7F-4D46604D2462}" = Adobe Setup
"{D2559B88-CC9D-4B48-81BB-F492BAA9C48C}" = Adobe PDF Library Files
"{D3B1C799-CB73-42DE-BA0F-2344793A095C}" = Catalyst Control Center - Branding
"{D6D425D2-803F-40E8-9D65-3DC00D577C11}" = NavyFIELD NorthAmerica
"{DD7DB3C5-6FA3-4FA3-8A71-C2F2940EB029}" = Adobe Color JA Extra Settings
"{DDE59617-F59A-473B-BC4E-C2B81F6CD38D}" = Command & Conquer™ Red Alert™ 3 Uprising
"{DED53B0B-B67C-4244-AE6A-D6FD3C28D1EF}" = Ad-Aware
"{E48469CC-635E-4FD5-A122-1497C286D217}" = Call of Duty(R) 4 - Modern Warfare(TM)
"{E69AE897-9E0B-485C-8552-7841F48D42D8}" = Adobe Update Manager CS3
"{E96A2C11-1139-7A34-C529-4D21832A34F6}" = Catalyst Control Center Graphics Light
"{EB2340D4-21DF-54B3-4C52-6C4F4B19F46D}" = ccc-core-static
"{F176F4DE-DF19-4CA2-9650-B1C2C81F993C}_is1" = Maple
"{F7B0939E-58DF-11DF-B3A6-005056806466}" = Google Earth
"{F97E3841-CA9D-4964-9D64-26066241D26F}" = Microsoft Games for Windows - LIVE
"{F9B37992-968C-4264-8449-489032FC28DE}" = Wolfenstein
"{FB8148DD-C575-4B0A-9F6C-0CFC46937930}" = Opera 10.10
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"Adobe_2ac78060bc5856b0c1cf873bb919b58" = Adobe Photoshop CS3
"Adobe_3e054d2218e7aa282c2369d939e58ff" = Adobe ExtendScript Toolkit 2
"Adobe_6c8e2cb4fd241c55406016127a6ab2e" = Adobe Color Common Settings
"avast!" = avast! Antivirus
"Battle.net" = Battle.net
"BeClean_is1" = BeClean
"BitComet" = BitComet 1.06
"BSPlayerf" = BS.Player FREE
"CCleaner" = CCleaner (remove only)
"Counter-Strike 1.6" = Counter-Strike 1.6
"CryptextNT4" = Cryptext (Remove Only)
"Crysis WARHEAD(R)" = Crysis WARHEAD(R)
"Crysis WARHEAD(R) Patch" = Crysis WARHEAD(R) Patch
"Čeština Dragon Age Origins 1.00" = Čeština Dragon Age Origins 1.00
"Diablo" = Diablo
"ENTERPRISE" = Microsoft Office Enterprise 2007
"EVEREST Ultimate Edition_is1" = EVEREST Ultimate Edition v4.50
"GameParkClient_is1" = GamePark
"GraphSight" = GraphSight
"HD Tune_is1" = HD Tune 2.55
"HijackThis" = HijackThis 2.0.2
"HLSW_is1" = HLSW v1.3.1
"InstallShield_{149464D9-B06F-4505-9968-FD1206F67AD3}" = Call of Duty(R) - World at War(TM) 1.3 Patch
"InstallShield_{2BF0AE92-C3BC-4112-9066-1546342B1FAE}" = Call of Duty(R) - World at War(TM) 1.2 Patch
"InstallShield_{8A15B7D9-908A-4EF9-BA84-5AEDE61743EE}" = Call of Duty(R) 4 - Modern Warfare(TM) 1.6 Patch
"InstallShield_{931C37FC-594D-43A9-B10F-A2F2B1F03498}" = Call of Duty(R) 4 - Modern Warfare(TM) 1.7 Patch
"InstallShield_{9F01A67B-7D67-482F-9D4F-D5980A440FD4}" = Call of Duty(R) - World at War(TM) 1.4 Patch
"InstallShield_{AFAE2B15-89A0-4215-A030-F7B5B478886B}" = Call of Duty(R) - World at War(TM) 1.1 Patch
"InstallShield_{E48469CC-635E-4FD5-A122-1497C286D217}" = Call of Duty(R) 4 - Modern Warfare(TM)
"InstallShield_{F9B37992-968C-4264-8449-489032FC28DE}" = Wolfenstein
"KLiteCodecPack_is1" = K-Lite Mega Codec Pack 4.4.5
"Left 4 Dead_is1" = Left 4 Dead v1.0.0.5
"LogMeIn Hamachi" = LogMeIn Hamachi
"Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware
"Microsoft .NET Framework 1.1 (1033)" = Microsoft .NET Framework 1.1
"Mozilla Firefox (3.5.10)" = Mozilla Firefox (3.5.10)
"mv61xxDriver" = marvell 61xx
"PokerStars" = PokerStars
"SpeedFan" = SpeedFan (remove only)
"Steam App 10180" = Call of Duty: Modern Warfare 2
"Steam App 10190" = Call of Duty: Modern Warfare 2 - Multiplayer
"SUPER ©" = SUPER © Version 2010.bld.38 (May 2, 2010)
"Teamspeak 2 RC2_is1" = TeamSpeak 2 RC2
"Totalcmd" = Total Commander (Remove or Repair)
"Winamp" = Winamp
"WinPatrol" = WinPatrol 2009
"WinRAR archiver" = WinRAR

Příspěvekod **jaro3** » 08 črc 2010 09:39

iCQ Toolbar jsem nenašel..

Poklepej na ikonu OTL na ploše.Ujisti se , že máš všechny ostatní aplikace a prohlížeče zavřeny.
Pod Vlastní skenování/opravy do okénka vlož následující text, zobrazený zeleně:

Kód: Vybrat vše

:OTL
PRC - C:\WINDOWS\explorer.exe (Microsoft Corporation)
PRC - C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
DRV:64bit: - (NwlnkFwd) -- C:\Windows\SysNative\DRIVERS\nwlnkfwd.sys File not found
DRV:64bit: - (NwlnkFlt) -- C:\Windows\SysNative\DRIVERS\nwlnkflt.sys File not found
DRV:64bit: - (IpInIp) -- C:\Windows\SysNative\DRIVERS\ipinip.sys File not found
O3:64bit: - HKLM\..\Toolbar: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files (x86)\DAEMON Tools Toolbar\DTToolbar64.dll File not found
O3:64bit: - HKCU\..\Toolbar\WebBrowser: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files (x86)\DAEMON Tools Toolbar\DTToolbar64.dll File not found
O4 - HKLM..\Run: [Adobe Reader Speed Launcher] C:\Program Files (x86)\Adobe\Reader 8.0\Reader\Reader_sl.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [LFAgent] File not found
O13 - gopher Prefix: missing
O18:64bit: - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - Reg Error: Key error. File not found
O32 - AutoRun File - [2008.11.15 11:52:50 | 000,161,088 | R--- | M] (Take-Two Interactive Software, Inc.) - D:\Autorun.exe -- [ UDF ]
O32 - AutoRun File - [2008.10.11 19:03:48 | 000,000,054 | R--- | M] () - D:\Autorun.inf -- [ UDF ]
O33 - MountPoints2\{41178932-dc03-11dd-97ce-0023541c274e}\Shell - "" = AutoRun
O33 - MountPoints2\{41178932-dc03-11dd-97ce-0023541c274e}\Shell\AutoRun\command - "" = E:\AUTORUN.EXE -- File not found
O33 - MountPoints2\{c1394f47-be36-11dd-bd3c-806e6f6e6963}\Shell - "" = AutoRun
O33 - MountPoints2\{c1394f47-be36-11dd-bd3c-806e6f6e6963}\Shell\AutoRun\command - "" = D:\Autorun.exe -- [2008.11.15 11:52:50 | 000,161,088 | R--- | M] (Take-Two Interactive Software, Inc.)
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O34 - HKLM BootExecute: (lsdelete) - File not found

:Files
C:\WINDOWS\System32\*.tmp 
C:\WINDOWS\*.tmp 
C:\WINDOWS\system32\*.tmp.dll 
C:\WINDOWS\system32\SET*.tmp 
c:\windows\Tasks\*.job 
C:\*.tmp
D:\Autorun.inf
D:\Autorun.exe
C:\Windows\tasks\SA.DAT
C:\Users\Šimon\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
C:\Windows\SysWow64\SIntf16.dll

:Reg
:Commands
[purity]
[emptytemp]
[start explorer]
[Reboot]

Poté klikni nahoře na Opravit. Nech program nerušeně běžet, na konci se provede restart PC.
Po restartu se objeví log , prosím zkopíruj sem celý jeho obsah.

crash40 · Příspěvekod **crash40** » 08 črc 2010 09:54

All processes killed
========== OTL ==========
No active process named explorer.exe was found!
No active process named firefox.exe was found!
Service NwlnkFwd stopped successfully!
Service NwlnkFwd deleted successfully!
File C:\Windows\SysNative\DRIVERS\nwlnkfwd.sys File not found not found.
Service NwlnkFlt stopped successfully!
Service NwlnkFlt deleted successfully!
File C:\Windows\SysNative\DRIVERS\nwlnkflt.sys File not found not found.
Service IpInIp stopped successfully!
Service IpInIp deleted successfully!
File C:\Windows\SysNative\DRIVERS\ipinip.sys File not found not found.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{32099AAC-C132-4136-9E9A-4E364A424E17}\ not found.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{32099AAC-C132-4136-9E9A-4E364A424E17} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{32099AAC-C132-4136-9E9A-4E364A424E17}\ not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\Adobe Reader Speed Launcher deleted successfully.
C:\Program Files (x86)\Adobe\Reader 8.0\Reader\reader_sl.exe moved successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\LFAgent deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\URL\Prefixes\\gopher|:gopher:// /E : value set successfully!
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\ms-help\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{314111c7-a502-11d2-bbca-00c04f8ec294}\ deleted successfully.
File {314111c7-a502-11d2-bbca-00c04f8ec294} - Reg Error: Key error. File not found not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\skype4com\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{FFC8B962-9B40-4DFF-9458-1830C7DD7F5D}\ deleted successfully.
File {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - Reg Error: Key error. File not found not found.
File move failed. D:\Autorun.exe scheduled to be moved on reboot.
File move failed. D:\Autorun.inf scheduled to be moved on reboot.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{41178932-dc03-11dd-97ce-0023541c274e}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{41178932-dc03-11dd-97ce-0023541c274e}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{41178932-dc03-11dd-97ce-0023541c274e}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{41178932-dc03-11dd-97ce-0023541c274e}\ not found.
File E:\AUTORUN.EXE not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{c1394f47-be36-11dd-bd3c-806e6f6e6963}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{c1394f47-be36-11dd-bd3c-806e6f6e6963}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{c1394f47-be36-11dd-bd3c-806e6f6e6963}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{c1394f47-be36-11dd-bd3c-806e6f6e6963}\ not found.
File move failed. D:\Autorun.exe scheduled to be moved on reboot.
Registry value HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session manager\\BootExecute:autocheck autochk * deleted successfully.
Registry value HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session manager\\BootExecute:lsdelete deleted successfully.
========== FILES ==========
File\Folder C:\WINDOWS\System32\*.tmp not found.
C:\WINDOWS\65F1CF6331E0450B96F34A88BE7361A6.TMP folder moved successfully.
File\Folder C:\WINDOWS\system32\*.tmp.dll not found.
File\Folder C:\WINDOWS\system32\SET*.tmp not found.
c:\windows\Tasks\GoogleUpdateTaskMachineCore.job moved successfully.
c:\windows\Tasks\GoogleUpdateTaskMachineUA.job moved successfully.
c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-4217620012-77691116-1275949338-1000Core.job moved successfully.
c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-4217620012-77691116-1275949338-1000UA.job moved successfully.
c:\windows\Tasks\User_Feed_Synchronization-{7B187FD1-9D81-446E-A1DE-1972DDEE41BE}.job moved successfully.
File\Folder C:\*.tmp not found.
File move failed. D:\Autorun.inf scheduled to be moved on reboot.
File move failed. D:\Autorun.exe scheduled to be moved on reboot.
C:\Windows\tasks\SA.DAT moved successfully.
C:\Users\Šimon\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini moved successfully.
C:\Windows\SysWow64\SIntf16.dll moved successfully.
========== REGISTRY ==========
========== COMMANDS ==========

[EMPTYTEMP]

User: All Users

User: AppData

User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Public

User: Šimon
->Temp folder emptied: 54088235 bytes
->Temporary Internet Files folder emptied: 33908610 bytes
->Java cache emptied: 83145883 bytes
->FireFox cache emptied: 87450522 bytes
->Google Chrome cache emptied: 280590558 bytes
->Flash cache emptied: 19162 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32 (64bit) .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 0 bytes
%systemroot%\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 33109 bytes
%systemroot%\system32\config\systemprofile\AppData\LocalLow\Sun\Java\Deployment folder emptied: 326 bytes
%systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 33170 bytes
RecycleBin emptied: 6873729 bytes

Total Files Cleaned = 521,00 mb

OTL by OldTimer - Version 3.2.8.1 log created on 07082010_094746

Files\Folders moved on Reboot...
File move failed. D:\Autorun.exe scheduled to be moved on reboot.
File move failed. D:\Autorun.inf scheduled to be moved on reboot.
File\Folder C:\Users\Šimon\AppData\Local\Temp\~DFA33D.tmp not found!
File\Folder C:\Users\Šimon\AppData\Local\Temp\~DFA379.tmp not found!
File\Folder C:\Users\Šimon\AppData\Local\Temp\~DFC518.tmp not found!
File\Folder C:\Users\Šimon\AppData\Local\Temp\~DFC640.tmp not found!
File\Folder C:\Users\Šimon\AppData\Local\Temp\~DFD9C9.tmp not found!
File\Folder C:\Users\Šimon\AppData\Local\Temp\~DFD9D3.tmp not found!
File move failed. C:\Windows\temp\_avast4_\Webshlock.txt scheduled to be moved on reboot.
File move failed. C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\MBEZZM58\desktop.ini scheduled to be moved on reboot.
File move failed. C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\HB6UUW17\desktop.ini scheduled to be moved on reboot.
File move failed. C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\FYFTTSWZ\desktop.ini scheduled to be moved on reboot.
File move failed. C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\ATVRSO7E\desktop.ini scheduled to be moved on reboot.
File move failed. C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\desktop.ini scheduled to be moved on reboot.
File move failed. C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\desktop.ini scheduled to be moved on reboot.

Registry entries deleted on Reboot...

Příspěvekod **jaro3** » 08 črc 2010 10:33

Mělo by to být OK.

Smaž OTL
C:\_OTL

Jestli nemáš problémy , můžeš dát zelenou fajfu.

crash40 · Příspěvekod **crash40** » 08 črc 2010 11:29

Vše OK dík moc:)

Kontrola logu prosímm Vyřešeno

Kontrola logu prosímm

Re: Kontrola logu prosímm

Re: Kontrola logu prosímm

Re: Kontrola logu prosímm

Re: Kontrola logu prosímm

Re: Kontrola logu prosímm

Re: Kontrola logu prosímm

Re: Kontrola logu prosímm

Re: Kontrola logu prosímm

Re: Kontrola logu prosímm

Re: Kontrola logu prosímm

Re: Kontrola logu prosímm

Kdo je online