OTL logfile created on: 2012-07-15 16:42:41 - Run 1
OTL by OldTimer - Version 3.2.54.0     Folder = C:\Users\Dark\Downloads
64bit- Ultimate Edition  (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7600.16385)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd
 
7,91 Gb Total Physical Memory | 4,62 Gb Available Physical Memory | 58,39% Memory free
15,83 Gb Paging File | 11,88 Gb Available in Paging File | 75,06% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 244,14 Gb Total Space | 54,11 Gb Free Space | 22,16% Space Free | Partition Type: NTFS
Drive D: | 48,83 Gb Total Space | 33,09 Gb Free Space | 67,76% Space Free | Partition Type: NTFS
Drive E: | 244,14 Gb Total Space | 75,27 Gb Free Space | 30,83% Space Free | Partition Type: NTFS
Drive F: | 161,51 Gb Total Space | 85,64 Gb Free Space | 53,02% Space Free | Partition Type: NTFS
Drive H: | 3,25 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: CDFS
 
Computer Name: DARK-KOMPUTER | User Name: Dark | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
 
[color=#E56717]========== Processes (SafeList) ==========[/color]
 
PRC - [2012-07-15 16:41:13 | 000,596,480 | ---- | M] (OldTimer Tools) -- C:\Users\Dark\Downloads\OTL.exe
PRC - [2012-07-02 17:25:14 | 002,232,504 | ---- | M] (Giraffic) -- C:\Program Files (x86)\Giraffic\Veoh_GirafficWatchdog.exe
PRC - [2012-07-02 17:24:54 | 003,790,504 | ---- | M] (Giraffic) -- C:\Program Files (x86)\Giraffic\Veoh_Giraffic.exe
PRC - [2012-07-02 17:00:04 | 000,205,824 | ---- | M] (Skillbrains) -- C:\Users\Dark\AppData\Local\Skillbrains\lightshot\2.6.0.30\LightShot.exe
PRC - [2012-07-02 12:17:20 | 000,513,536 | ---- | M] (LOL Replay) -- E:\Programy\LOLReplay\LOLRecorder.exe
PRC - [2012-06-27 12:29:26 | 001,996,200 | ---- | M] (LogMeIn Inc.) -- E:\Programy\LogMeIn Hamachi\hamachi-2-ui.exe
PRC - [2012-06-11 13:24:28 | 004,692,840 | ---- | M] (Veoh Networks) -- C:\Program Files (x86)\Veoh Networks\VeohWebPlayer\veohwebplayer.exe
PRC - [2012-05-26 06:32:24 | 004,327,744 | ---- | M] (Akamai Technologies, Inc) -- C:\Users\Dark\AppData\Local\Akamai\netsession_win.exe
PRC - [2012-05-21 13:18:26 | 000,296,056 | ---- | M] (RealNetworks, Inc.) -- C:\Program Files (x86)\Real\realplayer\Update\realsched.exe
PRC - [2012-05-20 03:33:52 | 000,880,496 | ---- | M] (BitTorrent, Inc.) -- C:\Program Files (x86)\uTorrent\uTorrent.exe
PRC - [2012-05-03 04:54:42 | 003,553,176 | ---- | M] (Xfire Inc.) -- E:\Programy\Xfire\Xfire.exe
PRC - [2012-05-02 01:42:31 | 000,086,224 | ---- | M] (Avira Operations GmbH & Co. KG) -- C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
PRC - [2012-05-02 00:34:37 | 000,110,032 | ---- | M] (Avira Operations GmbH & Co. KG) -- C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
PRC - [2012-05-02 00:31:38 | 000,348,624 | ---- | M] (Avira Operations GmbH & Co. KG) -- C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
PRC - [2012-04-29 18:25:17 | 001,064,960 | ---- | M] () -- C:\Nexon\NEXON_EU_Downloader\NEXON_EU_Downloader_Engine.exe
PRC - [2012-03-06 20:36:37 | 000,075,136 | ---- | M] () -- C:\Windows\SysWOW64\PnkBstrA.exe
PRC - [2012-01-03 15:10:42 | 000,063,928 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
PRC - [2011-09-30 20:13:00 | 003,058,304 | ---- | M] (ASUS) -- C:\Windows\AsScrPro.exe
PRC - [2011-08-02 09:33:30 | 004,910,912 | ---- | M] (DT Soft Ltd) -- E:\Programy\DAEMON Tools Lite\DTLite.exe
PRC - [2011-07-29 01:08:12 | 001,259,376 | ---- | M] () -- C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe
PRC - [2011-03-13 10:59:18 | 000,138,400 | ---- | M] (Atheros) -- C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
PRC - [2011-01-25 11:32:28 | 000,166,528 | ---- | M] (ASUS) -- C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
PRC - [2010-11-15 11:42:12 | 000,305,792 | ---- | M] (ASUS) -- C:\Program Files (x86)\ASUS\SmartLogon\sensorsrv.exe
PRC - [2010-11-03 10:53:04 | 000,409,600 | ---- | M] (Compro Technology, Inc.) -- C:\Program Files (x86)\Common Files\VideoMate\ComproSchedulerDTV.exe
PRC - [2010-10-27 21:21:54 | 001,155,072 | ---- | M] (Last.fm) -- E:\Programy\Last.fm\LastFM.exe
PRC - [2010-10-26 20:10:20 | 013,365,248 | ---- | M] (Compro Technology, Inc.) -- C:\Program Files (x86)\Common Files\VideoMate\ComproRemote.exe
PRC - [2010-10-07 14:05:14 | 000,170,624 | ---- | M] (ASUS) -- C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
PRC - [2010-10-05 21:04:12 | 002,655,768 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
PRC - [2010-10-05 21:04:08 | 000,325,656 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
PRC - [2010-09-23 16:53:16 | 001,601,536 | ---- | M] () -- C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe
PRC - [2010-08-17 14:55:42 | 005,732,992 | ---- | M] (ASUS) -- C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
PRC - [2009-12-15 10:39:38 | 000,096,896 | ---- | M] (ASUS) -- C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
PRC - [2009-07-14 03:14:47 | 000,164,864 | ---- | M] (Microsoft Corporation) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe
PRC - [2009-06-19 10:29:42 | 000,105,016 | ---- | M] (ASUS) -- C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
PRC - [2009-06-19 10:29:26 | 002,488,888 | ---- | M] (ASUS) -- C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ATKOSD.exe
PRC - [2009-06-15 17:30:42 | 000,084,536 | ---- | M] (ASUS) -- C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe
PRC - [2008-12-22 17:15:34 | 000,174,648 | ---- | M] (ASUS) -- C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\WDC.exe
PRC - [2008-08-13 21:00:08 | 000,113,208 | ---- | M] (ASUS) -- C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\KBFiltr.exe
PRC - [2007-11-30 11:20:44 | 000,051,768 | ---- | M] () -- C:\Program Files (x86)\ASUS\ASUS Live Update\ALU.exe
PRC - [2007-01-01 23:22:02 | 003,739,648 | ---- | M] (Google) -- C:\Users\Dark\AppData\Roaming\Google\Google Talk\googletalk.exe
 
 
[color=#E56717]========== Modules (No Company Name) ==========[/color]
 
MOD - [2012-07-10 06:09:00 | 000,438,296 | ---- | M] () -- C:\Users\Dark\AppData\Local\Google\Chrome\Application\20.0.1132.57\ppGoogleNaClPluginChrome.dll
MOD - [2012-07-10 06:08:59 | 003,972,120 | ---- | M] () -- C:\Users\Dark\AppData\Local\Google\Chrome\Application\20.0.1132.57\pdf.dll
MOD - [2012-07-10 06:07:39 | 000,554,520 | ---- | M] () -- C:\Users\Dark\AppData\Local\Google\Chrome\Application\20.0.1132.57\libglesv2.dll
MOD - [2012-07-10 06:07:37 | 000,117,784 | ---- | M] () -- C:\Users\Dark\AppData\Local\Google\Chrome\Application\20.0.1132.57\libegl.dll
MOD - [2012-07-10 06:07:22 | 000,140,328 | ---- | M] () -- C:\Users\Dark\AppData\Local\Google\Chrome\Application\20.0.1132.57\avutil-51.dll
MOD - [2012-07-10 06:07:21 | 000,262,184 | ---- | M] () -- C:\Users\Dark\AppData\Local\Google\Chrome\Application\20.0.1132.57\avformat-54.dll
MOD - [2012-07-10 06:07:19 | 002,386,984 | ---- | M] () -- C:\Users\Dark\AppData\Local\Google\Chrome\Application\20.0.1132.57\avcodec-54.dll
MOD - [2012-07-10 04:17:27 | 009,255,112 | ---- | M] () -- C:\Users\Dark\AppData\Local\Google\Chrome\Application\20.0.1132.57\gcswf32.dll
MOD - [2012-07-10 04:17:27 | 009,255,112 | ---- | M] () -- C:\Users\Dark\AppData\Local\Google\Chrome\APPLIC~1\200113~1.57\gcswf32.dll
MOD - [2012-07-02 12:17:16 | 001,034,752 | ---- | M] () -- E:\Programy\LOLReplay\LOLUtils.dll
MOD - [2012-04-29 18:25:17 | 001,064,960 | ---- | M] () -- C:\Nexon\NEXON_EU_Downloader\NEXON_EU_Downloader_Engine.exe
MOD - [2012-02-20 09:52:41 | 008,358,400 | ---- | M] () -- E:\Programy\SplitMediaLabs\XSplit\avcodec-54.dll
MOD - [2012-02-20 09:52:41 | 001,152,512 | ---- | M] () -- E:\Programy\SplitMediaLabs\XSplit\avformat-54.dll
MOD - [2012-02-20 09:52:41 | 000,333,824 | ---- | M] () -- E:\Programy\SplitMediaLabs\XSplit\swscale-2.dll
MOD - [2012-02-20 09:52:41 | 000,151,040 | ---- | M] () -- E:\Programy\SplitMediaLabs\XSplit\avutil-51.dll
MOD - [2012-01-08 15:41:12 | 000,093,696 | ---- | M] () -- E:\Programy\FileZilla FTP Client\fzshellext.dll
MOD - [2011-07-29 01:09:42 | 000,096,112 | ---- | M] () -- C:\Program Files (x86)\DivX\DivX Update\DivXUpdateCheck.dll
MOD - [2011-07-29 01:08:12 | 001,259,376 | ---- | M] () -- C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe
MOD - [2011-06-21 15:48:28 | 000,910,336 | ---- | M] () -- C:\Program Files (x86)\Veoh Networks\VeohWebPlayer\QtNetwork4.dll
MOD - [2011-06-20 15:37:16 | 010,836,992 | ---- | M] () -- C:\Program Files (x86)\Veoh Networks\VeohWebPlayer\QtWebKit4.dll
MOD - [2011-06-20 13:52:20 | 001,283,584 | ---- | M] () -- C:\Program Files (x86)\Veoh Networks\VeohWebPlayer\QtScript4.dll
MOD - [2011-06-20 13:32:40 | 000,266,752 | ---- | M] () -- C:\Program Files (x86)\Veoh Networks\VeohWebPlayer\phonon4.dll
MOD - [2011-06-20 13:21:50 | 007,994,880 | ---- | M] () -- C:\Program Files (x86)\Veoh Networks\VeohWebPlayer\QtGui4.dll
MOD - [2011-06-20 13:04:56 | 002,233,344 | ---- | M] () -- C:\Program Files (x86)\Veoh Networks\VeohWebPlayer\QtCore4.dll
MOD - [2011-05-26 11:38:06 | 000,120,320 | ---- | M] () -- C:\Program Files (x86)\Veoh Networks\VeohWebPlayer\imageformats\qjpeg4.dll
MOD - [2011-05-26 11:38:06 | 000,022,016 | ---- | M] () -- C:\Program Files (x86)\Veoh Networks\VeohWebPlayer\imageformats\qgif4.dll
MOD - [2011-01-18 14:21:56 | 000,204,800 | ---- | M] () -- C:\Program Files (x86)\asus\VirtualCamera\virtualCamera.ax
MOD - [2010-10-27 21:23:04 | 000,106,496 | ---- | M] () -- E:\Programy\Last.fm\srv_rtaudioplayback.dll
MOD - [2010-10-27 21:22:52 | 000,057,344 | ---- | M] () -- E:\Programy\Last.fm\ext_messengernotify.dll
MOD - [2010-10-27 21:22:42 | 000,058,880 | ---- | M] () -- E:\Programy\Last.fm\ext_skypenotify.dll
MOD - [2010-10-27 21:22:08 | 000,147,456 | ---- | M] () -- E:\Programy\Last.fm\srv_madtranscode.dll
MOD - [2010-10-27 21:22:00 | 000,028,160 | ---- | M] () -- E:\Programy\Last.fm\srv_httpinput.dll
MOD - [2010-10-27 21:19:28 | 000,372,736 | ---- | M] () -- E:\Programy\Last.fm\LastFmFingerprint1.dll
MOD - [2010-10-27 21:19:06 | 000,025,088 | ---- | M] () -- E:\Programy\Last.fm\breakpad.dll
MOD - [2010-10-27 21:18:50 | 000,180,224 | ---- | M] () -- E:\Programy\Last.fm\Moose1.dll
MOD - [2010-10-27 21:18:34 | 000,540,672 | ---- | M] () -- E:\Programy\Last.fm\LastFmTools1.dll
MOD - [2010-10-27 21:13:52 | 001,382,507 | ---- | M] () -- E:\Programy\Last.fm\libfftw3f-3.dll
MOD - [2010-10-27 21:13:52 | 000,074,240 | ---- | M] () -- E:\Programy\Last.fm\zlibwapi.dll
MOD - [2010-09-23 16:53:16 | 001,601,536 | ---- | M] () -- C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe
MOD - [2009-07-14 06:56:14 | 002,295,296 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Core\1762137638019a091020b3baf52f6de3\System.Core.ni.dll
MOD - [2009-07-14 06:56:11 | 000,368,128 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\39f5a71b5185d267b0f55cd4cea26d6b\PresentationFramework.Aero.ni.dll
MOD - [2009-07-14 06:55:47 | 014,318,592 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\68e5eeb3c6ef18ba2dc1ad70eb74aeee\PresentationFramework.ni.dll
MOD - [2009-07-14 06:55:32 | 012,430,848 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\fedf1ba58dced4f0b3f8c457648ceed9\System.Windows.Forms.ni.dll
MOD - [2009-07-14 06:55:26 | 001,586,688 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\ead6be8b410d56b5576b10e56af2c180\System.Drawing.ni.dll
MOD - [2009-07-14 06:55:23 | 012,216,320 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationCore\7b459c5815af8123e4bf30d4e05bba65\PresentationCore.ni.dll
MOD - [2009-07-14 06:55:14 | 003,313,664 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\c2f9dd7db911053edcaaadf5fefc500a\WindowsBase.ni.dll
MOD - [2009-07-14 06:55:09 | 005,452,800 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\5dd9f783008543df3e642ff1e99de4e8\System.Xml.ni.dll
MOD - [2009-07-14 06:55:06 | 000,971,264 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\4b1350e31ff09cc583b34854816d8036\System.Configuration.ni.dll
MOD - [2009-07-14 06:55:05 | 007,949,312 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System\5ba3bf5367fc012300c6566f20cb7f54\System.ni.dll
MOD - [2009-07-14 06:55:00 | 011,490,816 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\8c1770d45c63cf5c462eeb945ef9aa5d\mscorlib.ni.dll
MOD - [2008-04-16 17:42:30 | 000,376,832 | ---- | M] () -- E:\Programy\Last.fm\QtNetwork4.dll
MOD - [2008-04-16 17:42:16 | 000,524,288 | ---- | M] () -- E:\Programy\Last.fm\QtSql4.dll
MOD - [2008-04-16 17:42:02 | 006,701,056 | ---- | M] () -- E:\Programy\Last.fm\QtGui4.dll
MOD - [2008-04-16 17:36:38 | 000,376,832 | ---- | M] () -- E:\Programy\Last.fm\QtXml4.dll
MOD - [2008-04-16 17:36:34 | 001,654,784 | ---- | M] () -- E:\Programy\Last.fm\QtCore4.dll
MOD - [2008-04-02 14:26:50 | 000,233,472 | ---- | M] () -- E:\Programy\Last.fm\imageformats\qmng4.dll
MOD - [2008-04-02 14:26:34 | 000,021,504 | ---- | M] () -- E:\Programy\Last.fm\imageformats\qgif4.dll
MOD - [2008-04-02 14:26:28 | 000,135,168 | ---- | M] () -- E:\Programy\Last.fm\imageformats\qjpeg4.dll
MOD - [2007-11-30 11:20:44 | 000,051,768 | ---- | M] () -- C:\Program Files (x86)\ASUS\ASUS Live Update\ALU.exe
 
 
[color=#E56717]========== Win32 Services (SafeList) ==========[/color]
 
SRV:[b]64bit:[/b] - File not found [On_Demand | Stopped] -- C:\Program Files\Trend Micro\AMSP\coreServiceShell.exe coreFrameworkHost.exe -- (Amsp)
SRV:[b]64bit:[/b] - [2010-11-30 13:19:52 | 000,379,520 | ---- | M] (ASUSTeK Computer Inc.) [Auto | Running] -- C:\Windows\SysNative\FBAgent.exe -- (AFBAgent)
SRV:[b]64bit:[/b] - [2010-11-29 15:00:56 | 000,149,504 | ---- | M] (Intel(R) Corporation) [On_Demand | Running] -- C:\Program Files\Intel\TurboBoost\TurboBoost.exe -- (TurboBoost) Intel(R)
SRV:[b]64bit:[/b] - [2010-09-17 10:32:56 | 000,241,488 | ---- | M] (Trend Micro Inc.) [Auto | Running] -- C:\Program Files\Trend Micro\Titanium\TiMiniService.exe -- (TiMiniService)
SRV:[b]64bit:[/b] - [2009-07-14 03:41:27 | 001,011,712 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV:[b]64bit:[/b] - [2009-07-14 03:40:01 | 000,193,536 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\appmgmts.dll -- (AppMgmt)
SRV - [2012-07-04 17:52:16 | 004,419,392 | ---- | M] () [Auto | Running] -- C:/Program Files (x86)/Common Files/Akamai/netsession_win_4f7fccd.dll -- (Akamai)
SRV - [2012-07-03 13:19:28 | 000,160,944 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files (x86)\Skype\Updater\Updater.exe -- (SkypeUpdate)
SRV - [2012-07-02 17:25:14 | 002,232,504 | ---- | M] (Giraffic) [Auto | Running] -- C:\Program Files (x86)\Giraffic\Veoh_GirafficWatchdog.exe -- (Giraffic)
SRV - [2012-06-27 12:29:24 | 002,369,960 | ---- | M] (LogMeIn Inc.) [Auto | Running] -- E:\Programy\LogMeIn Hamachi\hamachi-2.exe -- (Hamachi2Svc)
SRV - [2012-06-24 20:42:01 | 000,008,704 | ---- | M] (Hi-Rez Studios) [Auto | Running] -- E:\Gry\Hi-Rez Studios\HiPatchService.exe -- (HiPatchService)
SRV - [2012-06-10 15:20:52 | 000,129,976 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2012-05-21 21:11:57 | 000,529,232 | ---- | M] (Valve Corporation) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Steam\SteamService.exe -- (Steam Client Service)
SRV - [2012-05-15 12:48:00 | 001,262,400 | ---- | M] (NVIDIA Corporation) [Auto | Stopped] -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe -- (nvUpdatusService)
SRV - [2012-05-02 01:42:31 | 000,086,224 | ---- | M] (Avira Operations GmbH & Co. KG) [Auto | Running] -- C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe -- (AntiVirSchedulerService)
SRV - [2012-05-02 00:34:37 | 000,110,032 | ---- | M] (Avira Operations GmbH & Co. KG) [Auto | Running] -- C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe -- (AntiVirService)
SRV - [2012-03-06 20:36:37 | 000,075,136 | ---- | M] () [Auto | Running] -- C:\Windows\SysWOW64\PnkBstrA.exe -- (PnkBstrA)
SRV - [2012-01-03 15:10:42 | 000,063,928 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2011-08-23 22:34:24 | 004,729,616 | ---- | M] (INCA Internet Co., Ltd.) [On_Demand | Stopped] -- C:\Windows\SysWOW64\GameMon.des -- (npggsvc)
SRV - [2011-03-21 16:19:16 | 001,845,248 | ---- | M] (Locktime Software) [Auto | Running] -- E:\Programy\NetLimiter 3\nlsvc.exe -- (nlsvc)
SRV - [2011-03-13 10:59:18 | 000,138,400 | ---- | M] (Atheros) [Auto | Running] -- C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe -- (Atheros Bt&Wlan Coex Agent)
SRV - [2011-03-13 10:58:30 | 000,074,912 | ---- | M] (Atheros Commnucations) [Auto | Running] -- C:\Program Files (x86)\Bluetooth Suite\adminservice.exe -- (AtherosSvc)
SRV - [2010-10-05 21:04:12 | 002,655,768 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe -- (UNS) Intel(R)
SRV - [2010-10-05 21:04:08 | 000,325,656 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe -- (LMS) Intel(R)
SRV - [2010-03-18 14:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2009-12-15 10:39:38 | 000,096,896 | ---- | M] (ASUS) [Auto | Running] -- C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe -- (ATKGFNEXSrv)
SRV - [2009-06-15 17:30:42 | 000,084,536 | ---- | M] (ASUS) [Auto | Running] -- C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe -- (ASLDRService)
SRV - [2009-06-10 23:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)
 
 
[color=#E56717]========== Driver Services (SafeList) ==========[/color]
 
DRV:[b]64bit:[/b] - [2012-05-20 16:28:41 | 000,560,184 | ---- | M] (Duplex Secure Ltd.) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\sptd.sys -- (sptd)
DRV:[b]64bit:[/b] - [2012-05-15 12:48:00 | 000,028,992 | ---- | M] (NVIDIA Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\nvpciflt.sys -- (nvpciflt)
DRV:[b]64bit:[/b] - [2012-05-02 15:24:12 | 000,027,760 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\avkmgr.sys -- (avkmgr)
DRV:[b]64bit:[/b] - [2012-04-27 10:20:04 | 000,132,832 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\avipbb.sys -- (avipbb)
DRV:[b]64bit:[/b] - [2012-04-25 00:32:27 | 000,098,848 | ---- | M] (Avira GmbH) [File_System | Auto | Running] -- C:\Windows\SysNative\drivers\avgntflt.sys -- (avgntflt)
DRV:[b]64bit:[/b] - [2011-10-02 13:46:26 | 000,310,728 | ---- | M] () [Kernel | Auto | Stopped] -- C:\Windows\SysNative\drivers\atksgt.sys -- (atksgt)
DRV:[b]64bit:[/b] - [2011-10-02 13:46:25 | 000,042,696 | ---- | M] () [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\lirsgt.sys -- (lirsgt)
DRV:[b]64bit:[/b] - [2011-10-02 12:06:33 | 000,270,912 | ---- | M] (DT Soft Ltd) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\dtsoftbus01.sys -- (dtsoftbus01)
DRV:[b]64bit:[/b] - [2011-03-21 16:44:30 | 000,033,416 | ---- | M] (Locktime Software) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\nlndis.sys -- (NLNdisPT)
DRV:[b]64bit:[/b] - [2011-03-21 16:44:30 | 000,033,416 | ---- | M] (Locktime Software) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\nlndis.sys -- (NLNdisMP)
DRV:[b]64bit:[/b] - [2011-03-13 10:58:44 | 000,280,224 | ---- | M] (Atheros) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\btfilter.sys -- (BtFilter)
DRV:[b]64bit:[/b] - [2011-03-13 10:58:44 | 000,201,376 | ---- | M] (Atheros) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\btath_hcrp.sys -- (BTATH_HCRP)
DRV:[b]64bit:[/b] - [2011-03-13 10:58:44 | 000,154,272 | ---- | M] (Atheros) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\btath_rcp.sys -- (BTATH_RCP)
DRV:[b]64bit:[/b] - [2011-03-13 10:58:44 | 000,055,456 | ---- | M] (Atheros) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\btath_lwflt.sys -- (BTATH_LWFLT)
DRV:[b]64bit:[/b] - [2011-03-13 10:58:42 | 000,298,656 | ---- | M] (Atheros) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\btath_a2dp.sys -- (BTATH_A2DP)
DRV:[b]64bit:[/b] - [2011-03-13 10:58:42 | 000,036,000 | ---- | M] (Atheros) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\btath_flt.sys -- (AthBTPort)
DRV:[b]64bit:[/b] - [2011-03-13 10:58:42 | 000,028,832 | ---- | M] (Atheros) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\btath_bus.sys -- (BTATH_BUS)
DRV:[b]64bit:[/b] - [2011-01-27 02:57:12 | 012,273,408 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\igdkmd64.sys -- (igfx)
DRV:[b]64bit:[/b] - [2010-12-13 15:12:40 | 000,138,024 | ---- | M] (ELAN Microelectronics Corp.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\ETD.sys -- (ETD)
DRV:[b]64bit:[/b] - [2010-11-29 15:00:04 | 000,016,120 | ---- | M] (Intel(R) Corporation) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\TurboB.sys -- (TurboB)
DRV:[b]64bit:[/b] - [2010-11-05 17:45:48 | 000,438,808 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\iaStor.sys -- (iaStor)
DRV:[b]64bit:[/b] - [2010-10-14 18:28:16 | 000,317,440 | ---- | M] (Intel(R) Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\IntcDAud.sys -- (IntcDAud) Intel(R)
DRV:[b]64bit:[/b] - [2010-10-12 18:39:04 | 000,039,528 | ---- | M] (REALTEK SEMICONDUCTOR Corp.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\RTL2832UUSB.sys -- (RTL2832UUSB)
DRV:[b]64bit:[/b] - [2010-10-12 18:39:02 | 000,232,680 | ---- | M] (REALTEK SEMICONDUCTOR Corp.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\RTL2832UBDA.sys -- (RTL2832UBDA)
DRV:[b]64bit:[/b] - [2010-09-21 09:59:38 | 000,056,344 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\HECIx64.sys -- (MEIx64) Intel(R)
DRV:[b]64bit:[/b] - [2010-09-17 10:52:28 | 000,144,464 | ---- | M] (Trend Micro Inc.) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\tmcomm.sys -- (tmcomm)
DRV:[b]64bit:[/b] - [2010-09-17 10:52:28 | 000,105,552 | ---- | M] (Trend Micro Inc.) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\tmtdi.sys -- (tmtdi)
DRV:[b]64bit:[/b] - [2010-09-17 10:52:28 | 000,090,704 | ---- | M] (Trend Micro Inc.) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\tmactmon.sys -- (tmactmon)
DRV:[b]64bit:[/b] - [2010-09-17 10:52:28 | 000,067,664 | ---- | M] (Trend Micro Inc.) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\tmevtmgr.sys -- (tmevtmgr)
DRV:[b]64bit:[/b] - [2010-08-24 11:55:44 | 000,076,912 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\L1C62x64.sys -- (L1C)
DRV:[b]64bit:[/b] - [2010-08-11 08:11:26 | 000,044,032 | ---- | M] (Alcor Micro, Corp.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\AmUStor.sys -- (AmUStor)
DRV:[b]64bit:[/b] - [2010-07-08 02:03:48 | 002,228,736 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\athrx.sys -- (athr)
DRV:[b]64bit:[/b] - [2010-01-04 10:30:56 | 000,133,632 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ewusbnet.sys -- (ewusbnet)
DRV:[b]64bit:[/b] - [2010-01-04 10:30:56 | 000,117,120 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ewusbmdm.sys -- (hwdatacard)
DRV:[b]64bit:[/b] - [2010-01-04 10:30:56 | 000,114,304 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ewusbdev.sys -- (hwusbdev)
DRV:[b]64bit:[/b] - [2009-07-20 11:29:40 | 000,015,416 | ---- | M] ( ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\kbfiltr.sys -- (kbfiltr)
DRV:[b]64bit:[/b] - [2009-07-14 03:52:21 | 000,106,576 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:[b]64bit:[/b] - [2009-07-14 03:52:21 | 000,028,752 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:[b]64bit:[/b] - [2009-07-14 03:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:[b]64bit:[/b] - [2009-07-14 03:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:[b]64bit:[/b] - [2009-07-14 03:47:48 | 000,077,888 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:[b]64bit:[/b] - [2009-07-14 03:47:48 | 000,023,104 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\Windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
DRV:[b]64bit:[/b] - [2009-07-14 03:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:[b]64bit:[/b] - [2009-06-10 22:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:[b]64bit:[/b] - [2009-06-10 22:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:[b]64bit:[/b] - [2009-06-10 22:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:[b]64bit:[/b] - [2009-06-10 22:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
DRV:[b]64bit:[/b] - [2009-03-18 17:35:42 | 000,033,856 | -H-- | M] (LogMeIn, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\hamachi.sys -- (hamachi)
DRV:[b]64bit:[/b] - [2008-05-23 17:27:28 | 000,154,168 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WimFltr.sys -- (WimFltr)
DRV:[b]64bit:[/b] - [2007-10-01 09:56:12 | 000,009,088 | ---- | M] (Compro Tech., Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\ComproHID64.sys -- (ComproHID)
DRV - [2011-03-21 16:44:28 | 000,088,200 | ---- | M] (Locktime Software) [Kernel | System | Running] -- E:\Programy\NetLimiter 3\nltdi.sys -- (nltdi)
DRV - [2010-10-12 18:39:04 | 000,039,528 | ---- | M] (REALTEK SEMICONDUCTOR Corp.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\RTL2832UUSB.sys -- (RTL2832UUSB)
DRV - [2010-10-12 18:39:02 | 000,232,680 | ---- | M] (REALTEK SEMICONDUCTOR Corp.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\RTL2832UBDA.sys -- (RTL2832UBDA)
DRV - [2010-07-26 13:57:20 | 000,017,024 | ---- | M] (ASUS) [Kernel | System | Running] -- C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys -- (ATKWMIACPIIO)
DRV - [2009-07-14 03:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount)
DRV - [2009-07-02 17:36:14 | 000,015,416 | ---- | M] (ASUS) [Kernel | Auto | Running] -- C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\ASMMAP64.sys -- (ASMMAP64)
DRV - [2007-10-01 09:56:12 | 000,009,088 | ---- | M] (Compro Tech., Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysWOW64\drivers\ComproHID64.sys -- (ComproHID)
DRV - [2005-01-04 11:43:08 | 000,004,682 | ---- | M] (INCA Internet Co., Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysWOW64\npptNT2.sys -- (NPPTNT2)
 
 
[color=#E56717]========== Standard Registry (SafeList) ==========[/color]
 
 
[color=#E56717]========== Internet Explorer ==========[/color]
 
IE:[b]64bit:[/b] - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE:[b]64bit:[/b] - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\..\URLSearchHook: {5e5ab302-7f65-44cd-8211-c1d4caaccea3} - C:\Program Files (x86)\XfireXO\prxtbXfir.dll (Conduit Ltd.)
IE - HKLM\..\URLSearchHook: {687578b9-7132-4a7a-80e4-30ee31099e03} - C:\Program Files (x86)\uTorrentControl2\prxtbuTor.dll (Conduit Ltd.)
IE - HKLM\..\URLSearchHook: {cd90bf73-20f6-44ef-993d-bb920303bd2e} - C:\Program Files (x86)\Veoh_Web_Player\prxtbVeoh.dll (Conduit Ltd.)
IE - HKLM\..\SearchScopes,DefaultScope = {afdbddaa-5d3f-42ee-b79c-185a7020515b}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKLM\..\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}: "URL" = http://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT2653012
 
 
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
 
 
IE - HKU\S-1-5-21-485146331-2047535483-3402034541-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://search.conduit.com?SearchSource=10&ctid=CT2653012
IE - HKU\S-1-5-21-485146331-2047535483-3402034541-1000\..\URLSearchHook: {5e5ab302-7f65-44cd-8211-c1d4caaccea3} - C:\Program Files (x86)\XfireXO\prxtbXfir.dll (Conduit Ltd.)
IE - HKU\S-1-5-21-485146331-2047535483-3402034541-1000\..\URLSearchHook: {687578b9-7132-4a7a-80e4-30ee31099e03} - C:\Program Files (x86)\uTorrentControl2\prxtbuTor.dll (Conduit Ltd.)
IE - HKU\S-1-5-21-485146331-2047535483-3402034541-1000\..\URLSearchHook: {cd90bf73-20f6-44ef-993d-bb920303bd2e} - C:\Program Files (x86)\Veoh_Web_Player\prxtbVeoh.dll (Conduit Ltd.)
IE - HKU\S-1-5-21-485146331-2047535483-3402034541-1000\..\SearchScopes,DefaultScope = {95B7759C-8C7F-4BF1-B163-73684A933233}
IE - HKU\S-1-5-21-485146331-2047535483-3402034541-1000\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC
IE - HKU\S-1-5-21-485146331-2047535483-3402034541-1000\..\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}: "URL" = http://search.babylon.com/?q={searchTerms}&affID=110819&tt=100512_2_&babsrc=SP_ss&mntrId=5c9b55660000000000007e2f68409da1
IE - HKU\S-1-5-21-485146331-2047535483-3402034541-1000\..\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}: "URL" = http://isearch.avg.com/search?cid={BB743AA9-3481-4EE7-B65E-23DC1189C451}&mid=8301a8a3294547d1b555c593afe8322f-3d7dc32c04344ef341cc4ac39fc8f350b734b67f&lang=pl&ds=AVG&pr=fr&d=2012-06-06 19:31:12&v=11.1.0.7&sap=dsp&q={searchTerms}
IE - HKU\S-1-5-21-485146331-2047535483-3402034541-1000\..\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}: "URL" = http://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT2653012
IE - HKU\S-1-5-21-485146331-2047535483-3402034541-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-485146331-2047535483-3402034541-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = <local>
 
[color=#E56717]========== FireFox ==========[/color]
 
FF - prefs.js..browser.search.defaultenginename: "AVG Secure Search"
FF - prefs.js..browser.search.defaultthis.engineName: "Veoh Web Player Customized Web Search"
FF - prefs.js..browser.search.defaulturl: "http://search.conduit.com/ResultsExt.aspx?ctid=CT2653012&SearchSource=3&q={searchTerms}"
FF - prefs.js..browser.search.order.1: "Search the web (Babylon)"
FF - prefs.js..browser.search.selectedEngine: "Veoh Web Player Customized Web Search"
FF - prefs.js..browser.startup.homepage: "http://search.conduit.com/?ctid=CT2653012&SearchSource=13"
 
 
FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF64_11_3_300_262.dll File not found
FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\@divx.com/DivX VOD Helper,version=1.0.0: C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre7\bin\new_plugin\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_3_300_262.dll ()
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX Browser Plugin,version=1.0.0: C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX VOD Helper,version=1.0.0: C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files (x86)\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files (x86)\Microsoft Silverlight\5.1.10411.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@ngm.nexoneu.com/NxGame: C:\ProgramData\NexonEU\NGM\npNxGameeu.dll (Nexon)
FF - HKLM\Software\MozillaPlugins\@pandonetworks.com/PandoWebPlugin: C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll File not found
FF - HKLM\Software\MozillaPlugins\@real.com/nppl3260;version=15.0.4.53: c:\program files (x86)\real\realplayer\Netscape6\nppl3260.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprjplug;version=15.0.4.53: c:\program files (x86)\real\realplayer\Netscape6\nprjplug.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprpchromebrowserrecordext;version=15.0.4.53: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprpchromebrowserrecordext.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprphtml5videoshim;version=15.0.4.53: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprpplugin;version=15.0.4.53: c:\program files (x86)\real\realplayer\Netscape6\nprpplugin.dll (RealPlayer)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\@eximion.com/KalydoPlayer: C:\Users\Dark\AppData\Roaming\Kalydo\KalydoPlayer\bin\npkalydo.dll (Eximion B.V.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Users\Dark\AppData\Local\Google\Update\1.3.21.111\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Users\Dark\AppData\Local\Google\Update\1.3.21.111\npGoogleUpdate3.dll (Google Inc.)
 
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\extensions\\{22C7F6C6-8D67-4534-92B5-529A0EC09405}: C:\Program Files\Trend Micro\AMSP\Module\20004\1.5.1381\6.5.1234\firefoxextension\ [2011-09-30 20:23:30 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\extensions\\{23fcfd51-4958-4f00-80a3-ae97e717ed8b}: C:\Program Files (x86)\DivX\DivX Plus Web Player\firefox\DivXHTML5 [2012-01-24 17:46:54 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\extensions\\{97E22097-9A2F-45b1-8DAF-36AD648C7EF4}: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext [2012-05-21 13:18:43 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 12.0\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2012-06-10 15:20:53 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 12.0\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins [2012-05-21 13:18:53 | 000,000,000 | ---D | M]
 
[2011-10-17 15:43:52 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Dark\AppData\Roaming\mozilla\Extensions
[2012-07-15 15:11:36 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Dark\AppData\Roaming\mozilla\Firefox\Profiles\xknoufm2.default\extensions
[2012-06-28 22:13:54 | 000,000,000 | ---D | M] (Flagfox) -- C:\Users\Dark\AppData\Roaming\mozilla\Firefox\Profiles\xknoufm2.default\extensions\{1018e4d6-728f-4b20-ad56-37578a4de76b}
[2012-06-13 22:53:06 | 000,000,933 | ---- | M] () -- C:\Users\Dark\AppData\Roaming\Mozilla\Firefox\Profiles\xknoufm2.default\searchplugins\conduit.xml
[2011-12-30 10:51:24 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\mozilla firefox\extensions
[2012-06-28 22:13:54 | 000,205,369 | ---- | M] () (No name found) -- C:\USERS\DARK\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\XKNOUFM2.DEFAULT\EXTENSIONS\GMAILWATCHER@SONTHAKIT.XPI
[2012-06-10 15:20:53 | 000,097,208 | ---- | M] (Mozilla Foundation) -- C:\Program Files (x86)\mozilla firefox\components\browsercomps.dll
[2011-12-10 00:03:09 | 000,476,904 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files (x86)\mozilla firefox\plugins\npdeployJava1.dll
[2012-05-21 13:18:33 | 000,129,144 | ---- | M] (RealPlayer) -- C:\Program Files (x86)\mozilla firefox\plugins\nprpplugin.dll
[2012-06-10 15:20:50 | 000,002,767 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\allegro-pl.xml
[2012-06-06 19:31:08 | 000,003,747 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\avg-secure-search.xml
[2012-05-20 16:26:40 | 000,002,352 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\babylon.xml
[2012-06-10 15:20:50 | 000,001,406 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\fbc-pl.xml
[2012-06-10 15:20:50 | 000,000,917 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\merlin-pl.xml
[2012-06-10 15:20:50 | 000,000,858 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\pwn-pl.xml
[2012-06-10 15:20:50 | 000,001,183 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\wikipedia-pl.xml
[2012-06-10 15:20:50 | 000,001,683 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\wp-pl.xml
 
[color=#E56717]========== Chrome  ==========[/color]
 
CHR - homepage: 
CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:searchFieldtrialParameter}sourceid=chrome&ie={inputEncoding}&q={searchTerms}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&hl={language}&q={searchTerms}
CHR - plugin: Remoting Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Users\Dark\AppData\Local\Google\Chrome\Application\20.0.1132.57\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Users\Dark\AppData\Local\Google\Chrome\Application\20.0.1132.57\pdf.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Users\Dark\AppData\Local\Google\Chrome\Application\20.0.1132.57\gcswf32.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Users\Dark\AppData\Local\Google\Chrome\User Data\PepperFlash\11.2.31.144\pepflashplayer.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_2_202_233.dll
CHR - plugin: Babylon ToolBar (Enabled) = C:\Users\Dark\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhkplhfnhceodhffomolpfigojocbpcb\1.5_0\BabylonChromeToolBar.dll
CHR - plugin: AVG Internet Security (Enabled) = C:\Users\Dark\AppData\Local\Google\Chrome\User Data\Default\Extensions\jmfkcklnlgedgbglfkkgedjfmejoahla\12.0.0.2161_0\plugins/avgnpss.dll
CHR - plugin: Adobe Acrobat (Enabled) = C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll
CHR - plugin: Java Deployment Toolkit 6.0.290.11 (Enabled) = C:\Program Files (x86)\Java\jre6\bin\new_plugin\npdeployJava1.dll
CHR - plugin: Java(TM) Platform SE 6 U29 (Enabled) = C:\Program Files (x86)\Java\jre6\bin\new_plugin\npjp2.dll
CHR - plugin: 2007 Microsoft Office system (Enabled) = C:\Program Files (x86)\Mozilla Firefox\plugins\NPOFF12.DLL
CHR - plugin: RealPlayer(tm) G2 LiveConnect-Enabled Plug-In (32-bit)  (Enabled) = C:\Program Files (x86)\Mozilla Firefox\plugins\nppl3260.dll
CHR - plugin: RealPlayer Download Plugin (Enabled) = C:\Program Files (x86)\Mozilla Firefox\plugins\nprpplugin.dll
CHR - plugin: RealPlayer(tm) HTML5VideoShim Plug-In (32-bit)  (Enabled) = C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll
CHR - plugin: RealJukebox NS Plugin (Enabled) = C:\Program Files (x86)\Mozilla Firefox\plugins\nprjplug.dll
CHR - plugin: AVG SiteSafety plugin (Enabled) = C:\Program Files (x86)\Common Files\AVG Secure Search\SiteSafetyInstaller\11.1.0\\npsitesafety.dll
CHR - plugin: DivX VOD Helper Plug-in (Enabled) = C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll
CHR - plugin: DivX Plus Web Player (Enabled) = C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll
CHR - plugin: Silverlight Plug-In (Enabled) = C:\Program Files (x86)\Microsoft Silverlight\5.1.10411.0\npctrl.dll
CHR - plugin: Nexon Game Controller (Enabled) = C:\ProgramData\NexonEU\NGM\npNxGameeu.dll
CHR - plugin: RealNetworks(tm) Chrome Background Extension Plug-In (32-bit)  (Enabled) = C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprpchromebrowserrecordext.dll
CHR - plugin: Google Update (Enabled) = C:\Users\Dark\AppData\Local\Google\Update\1.3.21.111\npGoogleUpdate3.dll
CHR - plugin: Kalydo Player Plugin for Mozilla (Enabled) = C:\Users\Dark\AppData\Roaming\Kalydo\KalydoPlayer\bin\npkalydo.dll
CHR - Extension: Turn Off the Lights = C:\Users\Dark\AppData\Local\Google\Chrome\User Data\Default\Extensions\bfbmjmiodbnnpllbbbfblcplfjjepjdn\2.0.0.106_0\
CHR - Extension: YouTube = C:\Users\Dark\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\
CHR - Extension: XfireXO = C:\Users\Dark\AppData\Local\Google\Chrome\User Data\Default\Extensions\bmbpbcpokffodhpcdjaoopolhdlbconi\2.3.15.10_0\
CHR - Extension: Babylon Toolbar = C:\Users\Dark\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhkplhfnhceodhffomolpfigojocbpcb\1.5_0\
CHR - Extension: Veoh Web Player = C:\Users\Dark\AppData\Local\Google\Chrome\User Data\Default\Extensions\fealnpfjifonchkodiffbdkfaipmpkhe\2.3.15.10_0\
CHR - Extension: AdBlock = C:\Users\Dark\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.5.38_0\
CHR - Extension: Last.fm Scrobbler = C:\Users\Dark\AppData\Local\Google\Chrome\User Data\Default\Extensions\hhinaapppaileiechjoiifaancjggfjm\1.9_0\
CHR - Extension: Search Assistant = C:\Users\Dark\AppData\Local\Google\Chrome\User Data\Default\Extensions\jfelndikbdcohbdimnhdhhokfljdidgn\2.0.0\
CHR - Extension: RealPlayer HTML5Video Downloader Extension = C:\Users\Dark\AppData\Local\Google\Chrome\User Data\Default\Extensions\jfmjfhklogoienhpfnppmbcbjfjnkonk\1.5_0\
CHR - Extension: Sprawdzanie poczty Google = C:\Users\Dark\AppData\Local\Google\Chrome\User Data\Default\Extensions\mihcahmgecmbnbcchbopgniflfhgnkff\3.2_0\
CHR - Extension: DivX Plus Web Player HTML5 \u003Cvideo\u003E = C:\Users\Dark\AppData\Local\Google\Chrome\User Data\Default\Extensions\nneajnkjbffgblleaoojgaacokifdkhm\2.1.2.145_0\
CHR - Extension: Gmail = C:\Users\Dark\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\
 
O1 HOSTS File: ([2009-06-10 23:00:26 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O2:[b]64bit:[/b] - BHO: (TmIEPlugInBHO Class) - {1CA1377B-DC1D-4A52-9585-6E06050FAC53} - C:\Program Files\Trend Micro\AMSP\module\20004\1.5.1381\6.5.1234\TmIEPlg.dll (Trend Micro Inc.)
O2:[b]64bit:[/b] - BHO: (TmBpIeBHO Class) - {BBACBAFD-FA5E-4079-8B33-00EB9F13D4AC} - C:\Program Files\Trend Micro\AMSP\module\20002\6.5.1234\6.5.1234\TmBpIe64.dll (Trend Micro Inc.)
O2:[b]64bit:[/b] - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O2 - BHO: (TmIEPlugInBHO Class) - {1CA1377B-DC1D-4A52-9585-6E06050FAC53} - C:\Program Files\Trend Micro\AMSP\module\20004\1.5.1381\6.5.1234\TmIEPlg32.dll (Trend Micro Inc.)
O2 - BHO: (RealPlayer Download and Record Plugin for Internet Explorer) - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll (RealPlayer)
O2 - BHO: (DivX Plus Web Player HTML5 <video>) - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files (x86)\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll (DivX, LLC)
O2 - BHO: (XfireXO Toolbar) - {5e5ab302-7f65-44cd-8211-c1d4caaccea3} - C:\Program Files (x86)\XfireXO\prxtbXfir.dll (Conduit Ltd.)
O2 - BHO: (uTorrentControl2 Toolbar) - {687578b9-7132-4a7a-80e4-30ee31099e03} - C:\Program Files (x86)\uTorrentControl2\prxtbuTor.dll (Conduit Ltd.)
O2 - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~2\Office12\GR469A~1.DLL (Microsoft Corporation)
O2 - BHO: (CIESpeechBHO Class) - {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll (Atheros Commnucations)
O2 - BHO: (TmBpIeBHO Class) - {BBACBAFD-FA5E-4079-8B33-00EB9F13D4AC} - C:\Program Files\Trend Micro\AMSP\module\20002\6.5.1234\6.5.1234\TmBpIe32.dll (Trend Micro Inc.)
O2 - BHO: (Veoh Web Player Toolbar) - {cd90bf73-20f6-44ef-993d-bb920303bd2e} - C:\Program Files (x86)\Veoh_Web_Player\prxtbVeoh.dll (Conduit Ltd.)
O3 - HKLM\..\Toolbar: (XfireXO Toolbar) - {5e5ab302-7f65-44cd-8211-c1d4caaccea3} - C:\Program Files (x86)\XfireXO\prxtbXfir.dll (Conduit Ltd.)
O3 - HKLM\..\Toolbar: (uTorrentControl2 Toolbar) - {687578b9-7132-4a7a-80e4-30ee31099e03} - C:\Program Files (x86)\uTorrentControl2\prxtbuTor.dll (Conduit Ltd.)
O3 - HKLM\..\Toolbar: (Veoh Web Player Toolbar) - {cd90bf73-20f6-44ef-993d-bb920303bd2e} - C:\Program Files (x86)\Veoh_Web_Player\prxtbVeoh.dll (Conduit Ltd.)
O3 - HKU\S-1-5-21-485146331-2047535483-3402034541-1000\..\Toolbar\WebBrowser: (XfireXO Toolbar) - {5E5AB302-7F65-44CD-8211-C1D4CAACCEA3} - C:\Program Files (x86)\XfireXO\prxtbXfir.dll (Conduit Ltd.)
O3 - HKU\S-1-5-21-485146331-2047535483-3402034541-1000\..\Toolbar\WebBrowser: (uTorrentControl2 Toolbar) - {687578B9-7132-4A7A-80E4-30EE31099E03} - C:\Program Files (x86)\uTorrentControl2\prxtbuTor.dll (Conduit Ltd.)
O3 - HKU\S-1-5-21-485146331-2047535483-3402034541-1000\..\Toolbar\WebBrowser: (Veoh Web Player Toolbar) - {CD90BF73-20F6-44EF-993D-BB920303BD2E} - C:\Program Files (x86)\Veoh_Web_Player\prxtbVeoh.dll (Conduit Ltd.)
O4:[b]64bit:[/b] - HKLM..\Run: [AmIcoSinglun64] C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe (Alcor Micro Corp.)
O4:[b]64bit:[/b] - HKLM..\Run: [AthBtTray] C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe (Atheros Commnucations)
O4:[b]64bit:[/b] - HKLM..\Run: [AtherosBtStack] C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe (Atheros Communications)
O4:[b]64bit:[/b] - HKLM..\Run: [ETDCtrl] C:\Program Files\Elantech\ETDCtrl.exe (ELAN Microelectronics Corp.)
O4:[b]64bit:[/b] - HKLM..\Run: [HotKeysCmds] C:\Windows\SysNative\hkcmd.exe (Intel Corporation)
O4:[b]64bit:[/b] - HKLM..\Run: [IgfxTray] C:\Windows\SysNative\igfxtray.exe (Intel Corporation)
O4:[b]64bit:[/b] - HKLM..\Run: [IntelTBRunOnce] wscript.exe //b //nologo "C:\Program Files\Intel\TurboBoost\RunTBGadgetOnce.vbs" File not found
O4:[b]64bit:[/b] - HKLM..\Run: [Persistence] C:\Windows\SysNative\igfxpers.exe (Intel Corporation)
O4:[b]64bit:[/b] - HKLM..\Run: [RtHDVBg] C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe (Realtek Semiconductor)
O4:[b]64bit:[/b] - HKLM..\Run: [Trend Micro Client Framework] C:\Program Files\Trend Micro\UniClient\UiFrmWrk\UIWatchDog.exe (Trend Micro Inc.)
O4:[b]64bit:[/b] - HKLM..\Run: [Trend Micro Titanium] C:\Program Files\Trend Micro\Titanium\VizorShortCut.exe (Trend Micro Inc.)
O4:[b]64bit:[/b] - HKLM..\Run: [VizorHtmlDialog.exe] C:\Program Files\Trend Micro\Titanium\UIFramework\VizorHtmlDialog.exe (Trend Micro Inc.)
O4 - HKLM..\Run: [ATKMEDIA] C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe (ASUS)
O4 - HKLM..\Run: [ATKOSD2] C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe (ASUS)
O4 - HKLM..\Run: [avgnt] C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe (Avira Operations GmbH & Co. KG)
O4 - HKLM..\Run: [DivXUpdate] C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe ()
O4 - HKLM..\Run: [HControlUser] C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe (ASUS)
O4 - HKLM..\Run: [iPlusManager] C:\Program Files (x86)\iPlus\iPlusChecker.exe ()
O4 - HKLM..\Run: [IR_SERVER] C:\Program Files (x86)\Compro\VideoMate U600F & J500U Series \IR_SERVER.exe File not found
O4 - HKLM..\Run: [LogMeIn Hamachi Ui] E:\Programy\LogMeIn Hamachi\hamachi-2-ui.exe (LogMeIn Inc.)
O4 - HKLM..\Run: [TkBellExe] c:\program files (x86)\real\realplayer\Update\realsched.exe (RealNetworks, Inc.)
O4 - HKLM..\Run: [Wireless Console 3] C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe ()
O4 - HKU\S-1-5-19..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-20..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-21-485146331-2047535483-3402034541-1000..\Run: [Akamai NetSession Interface] C:\Users\Dark\AppData\Local\Akamai\netsession_win.exe (Akamai Technologies, Inc)
O4 - HKU\S-1-5-21-485146331-2047535483-3402034541-1000..\Run: [ALLUpdate] C:\Programy\ALLPlayer\ALLUpdate.exe ()
O4 - HKU\S-1-5-21-485146331-2047535483-3402034541-1000..\Run: [DAEMON Tools Lite] E:\Programy\DAEMON Tools Lite\DTLite.exe (DT Soft Ltd)
O4 - HKU\S-1-5-21-485146331-2047535483-3402034541-1000..\Run: [googletalk] C:\Users\Dark\AppData\Roaming\Google\Google Talk\googletalk.exe (Google)
O4 - HKU\S-1-5-21-485146331-2047535483-3402034541-1000..\Run: [KPeerNexonEU] C:\Nexon\NEXON_EU_Downloader\nxEULauncher.exe (NEXON Inc.)
O4 - HKU\S-1-5-21-485146331-2047535483-3402034541-1000..\Run: [LightShot] C:\Users\Dark\AppData\Local\Skillbrains\lightshot\LightShot.exe ()
O4 - HKU\S-1-5-21-485146331-2047535483-3402034541-1000..\Run: [NetLimiter] E:\Programy\NetLimiter 3\NLClientApp.exe (Locktime Software)
O4 - HKU\S-1-5-21-485146331-2047535483-3402034541-1000..\Run: [uTorrent] C:\Program Files (x86)\uTorrent\uTorrent.exe (BitTorrent, Inc.)
O4 - HKU\S-1-5-21-485146331-2047535483-3402034541-1000..\Run: [VeohPlugin] C:\Program Files (x86)\Veoh Networks\VeohWebPlayer\veohwebplayer.exe (Veoh Networks)
O4 - HKU\S-1-5-19..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found
O4 - HKU\S-1-5-20..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found
O4 - Startup: C:\Users\Dark\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Intel(R) Turbo Boost Technology Monitor 2.0.lnk =  File not found
O4 - Startup: C:\Users\Dark\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Xfire.lnk = E:\Programy\Xfire\Xfire.exe (Xfire Inc.)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O8:[b]64bit:[/b] - Extra context menu item: E&ksportuj do programu Microsoft Excel - res://C:\PROGRA~2\MICROS~2\Office12\EXCEL.EXE/3000 File not found
O8 - Extra context menu item: E&ksportuj do programu Microsoft Excel - res://C:\PROGRA~2\MICROS~2\Office12\EXCEL.EXE/3000 File not found
O9:[b]64bit:[/b] - Extra 'Tools' menuitem : Send by Bluetooth to - {7815BE26-237D-41A8-A98F-F7BD75F71086} - Reg Error: Value error. File not found
O9 - Extra Button: Wyślij do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~2\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Wyślij &do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~2\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Send by Bluetooth to - {7815BE26-237D-41A8-A98F-F7BD75F71086} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll (Atheros Commnucations)
O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~2\Office12\REFIEBAR.DLL (Microsoft Corporation)
O13[b]64bit:[/b] - gopher Prefix: missing
O13 - gopher Prefix: missing
O16:[b]64bit:[/b] - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.7.0/jinstall-1_7_0_01-windows-i586.cab (Java Plug-in 10.1.0)
O16:[b]64bit:[/b] - DPF: {CAFEEFAC-0016-0000-0029-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab (Java Plug-in 1.6.0_29)
O16:[b]64bit:[/b] - DPF: {CAFEEFAC-0017-0000-0001-ABCDEFFEDCBA} http://java.sun.com/update/1.7.0/jinstall-1_7_0_01-windows-i586.cab (Java Plug-in 1.7.0_01)
O16:[b]64bit:[/b] - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.7.0/jinstall-1_7_0_01-windows-i586.cab (Java Plug-in 1.7.0_01)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab (Java Plug-in 1.6.0_29)
O16 - DPF: {CAFEEFAC-0016-0000-0029-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab (Java Plug-in 1.6.0_29)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab (Java Plug-in 1.6.0_29)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{2C8DBF11-0211-47E2-B2FA-FBF02AE4B582}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{81EC2846-6372-45F0-B533-914890692150}: DhcpNameServer = 212.2.96.52 212.2.96.51
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{DF4620CC-D0A8-4D84-B8E5-B2D32A2CF473}: DhcpNameServer = 212.2.96.52 212.2.96.51
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{E5CD1D31-2E3F-4B5A-8B49-E00B68D9803E}: DhcpNameServer = 212.2.96.51 212.2.96.52
O18:[b]64bit:[/b] - Protocol\Handler\grooveLocalGWS - No CLSID value found
O18:[b]64bit:[/b] - Protocol\Handler\ms-help - No CLSID value found
O18:[b]64bit:[/b] - Protocol\Handler\skype4com - No CLSID value found
O18:[b]64bit:[/b] - Protocol\Handler\tmbp {1A77E7DC-C9A0-4110-8A37-2F36BAE71ECF} - C:\Program Files\Trend Micro\AMSP\module\20002\6.5.1234\6.5.1234\TmBpIe64.dll (Trend Micro Inc.)
O18:[b]64bit:[/b] - Protocol\Handler\tmpx {0E526CB5-7446-41D1-A403-19BFE95E8C23} - C:\Program Files\Trend Micro\AMSP\module\20004\1.5.1381\6.5.1234\TmIEPlg.dll (Trend Micro Inc.)
O18 - Protocol\Handler\grooveLocalGWS {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\PROGRA~2\MICROS~2\Office12\GRA32A~1.DLL (Microsoft Corporation)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL (Skype Technologies)
O18 - Protocol\Handler\tmbp {1A77E7DC-C9A0-4110-8A37-2F36BAE71ECF} - C:\Program Files\Trend Micro\AMSP\module\20002\6.5.1234\6.5.1234\TmBpIe32.dll (Trend Micro Inc.)
O18 - Protocol\Handler\tmpx {0E526CB5-7446-41D1-A403-19BFE95E8C23} - C:\Program Files\Trend Micro\AMSP\module\20004\1.5.1381\6.5.1234\TmIEPlg32.dll (Trend Micro Inc.)
O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\PROGRA~2\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
O20:[b]64bit:[/b] - AppInit_DLLs: (C:\Windows\system32\nvinitx.dll) - C:\Windows\SysNative\nvinitx.dll (NVIDIA Corporation)
O20 - AppInit_DLLs: (C:\Windows\SysWOW64\nvinit.dll) - C:\Windows\SysWOW64\nvinit.dll (NVIDIA Corporation)
O20:[b]64bit:[/b] - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:[b]64bit:[/b] - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20:[b]64bit:[/b] - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\SysNative\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20:[b]64bit:[/b] - HKLM Winlogon: VMApplet - (/pagefile) -  File not found
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\Windows\SysWow64\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (/pagefile) -  File not found
O20:[b]64bit:[/b] - Winlogon\Notify\igfxcui: DllName - (igfxdev.dll) - C:\Windows\SysNative\igfxdev.dll (Intel Corporation)
O21:[b]64bit:[/b] - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O28 - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\PROGRA~2\MICROS~2\Office12\GR469A~1.DLL (Microsoft Corporation)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2011-09-30 18:10:16 | 000,000,000 | ---- | M] () - D:\AUTOEXEC.BAT -- [ NTFS ]
O32 - AutoRun File - [2008-10-15 17:30:14 | 000,000,041 | R--- | M] () - H:\Autorun.inf -- [ CDFS ]
O33 - MountPoints2\{411ce0f4-ecda-11e0-b036-14dae90cdbdc}\Shell - "" = AutoRun
O33 - MountPoints2\{411ce0f4-ecda-11e0-b036-14dae90cdbdc}\Shell\AutoRun\command - "" = H:\Setup.exe -- [2008-10-15 17:28:32 | 001,564,672 | R--- | M] (Blizzard Entertainment                                      )
O33 - MountPoints2\{78d058e2-eb86-11e0-8205-806e6f6e6963}\Shell - "" = AutoRun
O33 - MountPoints2\{78d058e2-eb86-11e0-8205-806e6f6e6963}\Shell\AutoRun\command - "" = G:\InstAll.exe
O33 - MountPoints2\{8a7bf128-c704-11e1-b160-fbe1096558ac}\Shell - "" = AutoRun
O33 - MountPoints2\{8a7bf128-c704-11e1-b160-fbe1096558ac}\Shell\AutoRun\command - "" = J:\AutoRun.exe
O33 - MountPoints2\{8a7bf139-c704-11e1-b160-fbe1096558ac}\Shell - "" = AutoRun
O33 - MountPoints2\{8a7bf139-c704-11e1-b160-fbe1096558ac}\Shell\AutoRun\command - "" = J:\AutoRun.exe
O33 - MountPoints2\{b092ee7d-ca7c-11e1-82f5-faf7ea21c3a8}\Shell - "" = AutoRun
O33 - MountPoints2\{b092ee7d-ca7c-11e1-82f5-faf7ea21c3a8}\Shell\AutoRun\command - "" = K:\AutoRun.exe
O33 - MountPoints2\{fe295d18-cb49-11e1-912c-df8e71bef3ac}\Shell - "" = AutoRun
O33 - MountPoints2\{fe295d18-cb49-11e1-912c-df8e71bef3ac}\Shell\AutoRun\command - "" = J:\AutoRun.exe
O34 - HKLM BootExecute: (autocheck autochk *)
O35:[b]64bit:[/b] - HKLM\..comfile [open] -- "%1" %*
O35:[b]64bit:[/b] - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:[b]64bit:[/b] - HKLM\...com [@ = comfile] -- "%1" %*
O37:[b]64bit:[/b] - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)
 
[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]
 
[2012-07-15 13:39:35 | 000,000,000 | R--D | C] -- C:\Users\Dark\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BT Devices
[2012-07-10 12:52:04 | 000,000,000 | ---D | C] -- C:\Users\Dark\AppData\Roaming\iPlus
[2012-07-10 12:45:36 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iPlus
[2012-07-10 12:45:35 | 000,133,632 | ---- | C] (Huawei Technologies Co., Ltd.) -- C:\Windows\SysNative\drivers\ewusbnet.sys
[2012-07-10 12:45:35 | 000,117,120 | ---- | C] (Huawei Technologies Co., Ltd.) -- C:\Windows\SysNative\drivers\ewusbmdm.sys
[2012-07-10 12:45:35 | 000,114,304 | ---- | C] (Huawei Technologies Co., Ltd.) -- C:\Windows\SysNative\drivers\ewusbdev.sys
[2012-07-10 12:45:34 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\iPlus
[2012-07-04 17:56:39 | 652,634,170 | -H-- | C] (InstallShield Software Corporation) -- C:\Users\Dark\Desktop\S4_League_EU_v1167.exe.part
[2012-07-04 17:55:54 | 000,000,000 | ---D | C] -- C:\Users\Dark\AppData\Local\Akamai
[2012-07-04 17:51:37 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Akamai
[2012-06-28 22:19:51 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hi-Rez Studios
[2012-06-28 22:08:36 | 000,000,000 | ---D | C] -- C:\Users\Dark\AppData\Local\Macromedia
[2012-06-28 10:38:11 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogMeIn Hamachi
[2012-06-28 00:26:07 | 000,000,000 | ---D | C] -- C:\Users\Dark\AppData\Roaming\fretsonfire
[2012-06-28 00:26:04 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Frets on Fire
[2012-06-28 00:26:03 | 000,000,000 | ---D | C] -- C:\Users\Dark\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Frets on Fire
[2012-06-27 15:53:34 | 000,000,000 | ---D | C] -- C:\Users\Dark\Desktop\Zmierzch Saga
[2012-06-22 14:59:10 | 000,000,000 | ---D | C] -- C:\Users\Dark\AppData\Local\Module
[2012-06-22 13:48:34 | 000,000,000 | ---D | C] -- C:\Program Files\PlayReady
[2012-06-22 13:37:05 | 000,000,000 | ---D | C] -- C:\Users\Dark\AppData\Local\Ćscher
[2012-06-22 11:55:28 | 000,000,000 | ---D | C] -- C:\Users\Dark\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\San Andreas Multiplayer
[2012-06-22 11:55:28 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\San Andreas Multiplayer
[2012-06-22 11:12:11 | 000,000,000 | ---D | C] -- C:\Users\Dark\Documents\GTA San Andreas User Files
[2012-06-22 10:59:32 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Rockstar Games
[2012-06-22 03:02:17 | 000,000,000 | ---D | C] -- C:\Users\Dark\AppData\Roaming\Avira
[2012-06-22 03:00:01 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
[2012-06-22 02:59:50 | 000,132,832 | ---- | C] (Avira GmbH) -- C:\Windows\SysNative\drivers\avipbb.sys
[2012-06-22 02:59:50 | 000,098,848 | ---- | C] (Avira GmbH) -- C:\Windows\SysNative\drivers\avgntflt.sys
[2012-06-22 02:59:50 | 000,027,760 | ---- | C] (Avira GmbH) -- C:\Windows\SysNative\drivers\avkmgr.sys
[2012-06-22 02:59:49 | 000,000,000 | ---D | C] -- C:\ProgramData\Avira
[2012-06-22 02:59:49 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Avira
[2012-06-21 22:55:52 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\ESET
[2012-06-20 11:11:35 | 000,232,680 | ---- | C] (REALTEK SEMICONDUCTOR Corp.) -- C:\Windows\SysWow64\drivers\RTL2832UBDA.sys
[2012-06-20 11:11:35 | 000,044,320 | ---- | C] (Realtek) -- C:\Windows\SysWow64\drivers\RTL2832U_IRHID.sys
[2012-06-20 11:11:35 | 000,039,528 | ---- | C] (REALTEK SEMICONDUCTOR Corp.) -- C:\Windows\SysWow64\drivers\RTL2832UUSB.sys
[2012-06-20 11:11:35 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\SYSTEM32
[2012-06-20 11:11:34 | 000,232,680 | ---- | C] (REALTEK SEMICONDUCTOR Corp.) -- C:\Windows\SysNative\drivers\RTL2832UBDA.sys
[2012-06-20 11:11:34 | 000,039,528 | ---- | C] (REALTEK SEMICONDUCTOR Corp.) -- C:\Windows\SysNative\drivers\RTL2832UUSB.sys
[2012-06-20 11:11:28 | 005,775,436 | ---- | C] (Realtek) -- C:\Windows\SysWow64\RTKDAB.dll
[2012-06-20 11:11:28 | 000,352,335 | ---- | C] (Realtek) -- C:\Windows\SysWow64\RTKFM.dll
[2012-06-20 11:11:28 | 000,139,365 | ---- | C] (Realtek) -- C:\Windows\SysWow64\RTKDABSOURCE.dll
[2012-06-20 11:11:28 | 000,135,277 | ---- | C] (Realtek) -- C:\Windows\SysWow64\RTKFMSOURCE.dll
[2012-06-20 11:11:28 | 000,131,161 | ---- | C] (Realtek) -- C:\Windows\SysWow64\RTKISDBTSOURCE.dll
[2012-06-20 11:11:28 | 000,114,688 | ---- | C] (Realtek) -- C:\Windows\SysWow64\RTL283XACCESS.dll
[2012-06-20 11:11:28 | 000,090,213 | ---- | C] (Realtek) -- C:\Windows\SysWow64\SuperFrameSplitter.dll
[2012-06-20 11:11:28 | 000,069,632 | ---- | C] (Realtek) -- C:\Windows\SysWow64\RTKDABMWare.dll
[2012-06-20 11:11:24 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Compro
[2012-06-20 11:11:22 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\REALTEK DTV USB DEVICE
[2012-06-20 11:10:25 | 000,000,000 | ---D | C] -- C:\Windows\U6xx Driver
[2012-06-20 11:10:25 | 000,000,000 | ---D | C] -- C:\Windows\U100 Driver
[2012-06-20 11:09:06 | 000,000,000 | ---D | C] -- C:\Users\Dark\Documents\VideoMate
[2012-06-20 11:08:24 | 000,167,936 | ---- | C] (Compro Tech.) -- C:\Windows\SysWow64\InstallTool.dll
[2012-06-20 11:08:24 | 000,080,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\devcon64.exe
[2012-06-20 11:08:24 | 000,077,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\devcon.exe
[2012-06-20 11:08:24 | 000,009,088 | ---- | C] (Compro Tech., Inc.) -- C:\Windows\SysWow64\drivers\ComproHID64.sys
[2012-06-20 11:08:24 | 000,009,088 | ---- | C] (Compro Tech., Inc.) -- C:\Windows\SysNative\drivers\ComproHID64.sys
[2012-06-20 11:08:24 | 000,007,040 | ---- | C] (Compro Tech., Inc.) -- C:\Windows\SysWow64\drivers\ComproHID.sys
[2012-06-20 11:08:24 | 000,000,000 | ---D | C] -- C:\Windows\comproHID
[2012-06-20 11:08:19 | 000,106,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ATL71.DLL
[2012-06-20 11:08:18 | 001,060,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MFC71.dll
[2012-06-20 11:08:02 | 000,950,272 | ---- | C] (Ulead Systems, Inc.) -- C:\Windows\SysWow64\u32Prod.dll
[2012-06-20 11:08:02 | 000,053,248 | ---- | C] (Ulead) -- C:\Windows\SysWow64\UVSC.DLL
[2012-06-20 11:08:02 | 000,024,576 | ---- | C] (Ulead Systems, Inc.) -- C:\Windows\SysWow64\U32SN.DLL
[2012-06-20 11:08:01 | 000,122,880 | ---- | C] (Ulead Systems, Inc.) -- C:\Windows\SysWow64\u32Comm.dll
[2012-06-20 11:08:01 | 000,061,440 | ---- | C] (Ulead Systems, Inc.) -- C:\Windows\SysWow64\u32Cfg.dll
[2012-06-20 11:07:52 | 000,081,920 | ---- | C] (Philips Semiconductors) -- C:\Windows\SysWow64\PhilipsDVB_TXT.ax
[2012-06-20 11:07:52 | 000,077,824 | ---- | C] (Philips Semiconductors) -- C:\Windows\SysWow64\PhilipsAnalog_TXT.ax
[2012-06-20 11:07:49 | 002,277,376 | ---- | C] (Compro Technology, Inc.) -- C:\Windows\SysWow64\XDTVKernel.ax
[2012-06-20 11:07:46 | 000,290,304 | ---- | C] (Compro Tech.) -- C:\Windows\SysWow64\CpDTVMen64.dll
[2012-06-20 11:07:46 | 000,225,280 | ---- | C] (Compro Tech.) -- C:\Windows\SysWow64\CpDTVMen.dll
[2012-06-20 11:07:41 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\VideoMate
[2012-06-20 11:07:40 | 000,000,000 | ---D | C] -- C:\Windows\compro
[2012-06-20 11:06:04 | 000,000,000 | ---D | C] -- C:\Windows\Cache
[2012-06-20 11:04:51 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\VideoMate
[2012-06-20 11:04:48 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoMate
[2010-11-03 12:33:35 | 000,695,296 | ---- | C] (AnjoCaido) -- C:\Users\Dark\AppData\Roaming\MinecraftSP.exe
[3 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
 
[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]
 
[2012-07-15 16:52:00 | 000,001,054 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-485146331-2047535483-3402034541-1000UA.job
[2012-07-15 14:34:00 | 000,000,386 | ---- | M] () -- C:\Windows\tasks\update-S-1-5-21-485146331-2047535483-3402034541-1000.job
[2012-07-15 14:05:00 | 000,000,386 | ---- | M] () -- C:\Windows\tasks\update-sys.job
[2012-07-15 13:48:15 | 000,010,016 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2012-07-15 13:48:15 | 000,010,016 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2012-07-15 13:37:30 | 000,045,056 | ---- | M] () -- C:\Windows\SysNative\acovcnt.exe
[2012-07-15 13:37:00 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2012-07-15 13:36:55 | 715,916,258 | ---- | M] () -- C:\Windows\MEMORY.DMP
[2012-07-15 13:36:50 | 2078,400,511 | -HS- | M] () -- C:\hiberfil.sys
[2012-07-14 08:58:00 | 000,000,450 | -H-- | M] () -- C:\Windows\tasks\Norton Security Scan for Dark.job
[2012-07-14 03:21:16 | 000,001,002 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-485146331-2047535483-3402034541-1000Core.job
[2012-07-13 14:37:56 | 000,002,397 | ---- | M] () -- C:\Users\Dark\Desktop\Google Chrome.lnk
[2012-07-13 13:53:00 | 000,748,892 | ---- | M] () -- C:\Windows\SysNative\perfh015.dat
[2012-07-13 13:53:00 | 000,663,060 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2012-07-13 13:53:00 | 000,157,888 | ---- | M] () -- C:\Windows\SysNative\perfc015.dat
[2012-07-13 13:53:00 | 000,124,332 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2012-07-13 13:52:59 | 001,692,196 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2012-07-11 14:59:37 | 000,001,473 | ---- | M] () -- C:\Users\Dark\AppData\Local\UserProducts.xml
[2012-07-11 14:38:34 | 002,048,171 | ---- | M] () -- C:\Users\Dark\Desktop\DSC00824.JPG
[2012-07-11 14:38:12 | 002,315,761 | ---- | M] () -- C:\Users\Dark\Desktop\DSC00823.JPG
[2012-07-11 14:37:47 | 002,274,690 | ---- | M] () -- C:\Users\Dark\Desktop\DSC00822.JPG
[2012-07-10 12:49:10 | 000,002,300 | ---- | M] () -- C:\Windows\SysNative\AutoRunFilter.ini
[2012-07-10 12:45:36 | 000,001,002 | ---- | M] () -- C:\Users\Public\Desktop\iPlus.lnk
[2012-07-04 20:50:33 | 652,634,170 | -H-- | M] (InstallShield Software Corporation) -- C:\Users\Dark\Desktop\S4_League_EU_v1167.exe.part
[2012-07-02 21:37:29 | 000,000,807 | ---- | M] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\LOLRecorder.lnk
[2012-07-02 21:37:29 | 000,000,733 | ---- | M] () -- C:\Users\Public\Desktop\LOL Recorder.lnk
[2012-06-29 19:11:38 | 000,464,863 | ---- | M] () -- C:\Users\Dark\Desktop\łódź.pdf
[2012-06-29 18:52:47 | 000,172,682 | ---- | M] () -- C:\Users\Dark\Desktop\Wrocław inf i zarządzanie.pdf
[2012-06-29 18:45:12 | 000,172,650 | ---- | M] () -- C:\Users\Dark\Desktop\raport_R_KAN_PRZYJECIE.pdf
[2012-06-29 08:10:20 | 003,321,665 | ---- | M] () -- C:\Users\Dark\Desktop\DSCF3059.JPG
[2012-06-28 22:19:51 | 000,000,797 | ---- | M] () -- C:\Users\Public\Desktop\Smite Closed Beta.lnk
[2012-06-28 22:19:51 | 000,000,788 | ---- | M] () -- C:\Users\Public\Desktop\Hi-Rez Diagnostics and Support.lnk
[2012-06-28 20:51:14 | 003,203,876 | ---- | M] () -- C:\Users\Dark\Desktop\DSCF3056.JPG
[2012-06-28 10:38:15 | 000,000,648 | ---- | M] () -- C:\Users\Public\Desktop\LogMeIn Hamachi.lnk
[2012-06-22 09:22:38 | 000,001,375 | ---- | M] () -- C:\Windows\SysNative\ServiceFilter.ini
[2012-06-22 03:00:01 | 000,002,066 | ---- | M] () -- C:\Users\Public\Desktop\Avira Control Center.lnk
[2012-06-21 12:36:42 | 000,426,184 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerApp.exe
[2012-06-21 12:36:42 | 000,070,344 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
[2012-06-21 01:19:31 | 000,032,854 | ---- | M] () -- C:\Users\Dark\Desktop\cooltext718417332.png
[2012-06-21 01:19:31 | 000,001,471 | ---- | M] () -- C:\Users\Dark\.recently-used.xbel
[2012-06-20 14:03:12 | 047,165,440 | ---- | M] () -- C:\Users\Dark\Documents\CH002_0620_1402.ts
[2012-06-20 11:11:31 | 000,000,000 | ---- | M] () -- C:\Windows\SysNative\RTKISDBTSOURCE.DLL
[2012-06-20 11:08:24 | 000,000,844 | ---- | M] () -- C:\Users\Public\Desktop\ComproFM 2.lnk
[2012-06-20 11:07:45 | 000,001,149 | ---- | M] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\ComproSchedulerDTV.lnk
[2012-06-20 11:07:45 | 000,001,119 | ---- | M] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\ComproRemote.lnk
[2012-06-20 11:07:41 | 000,000,852 | ---- | M] () -- C:\Users\Public\Desktop\ComproDTV 4.lnk
[2012-06-15 17:01:19 | 000,029,696 | -H-- | M] () -- C:\MadCow2011.suo
[3 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
 
[color=#E56717]========== Files Created - No Company Name ==========[/color]
 
[2012-07-11 14:38:12 | 002,048,171 | ---- | C] () -- C:\Users\Dark\Desktop\DSC00824.JPG
[2012-07-11 14:37:47 | 002,315,761 | ---- | C] () -- C:\Users\Dark\Desktop\DSC00823.JPG
[2012-07-11 14:37:22 | 002,274,690 | ---- | C] () -- C:\Users\Dark\Desktop\DSC00822.JPG
[2012-07-10 12:45:36 | 000,001,002 | ---- | C] () -- C:\Users\Public\Desktop\iPlus.lnk
[2012-07-02 21:37:29 | 000,000,733 | ---- | C] () -- C:\Users\Public\Desktop\LOL Recorder.lnk
[2012-06-29 19:11:44 | 000,464,863 | ---- | C] () -- C:\Users\Dark\Desktop\łódź.pdf
[2012-06-29 18:53:06 | 000,172,682 | ---- | C] () -- C:\Users\Dark\Desktop\Wrocław inf i zarządzanie.pdf
[2012-06-29 18:45:20 | 000,172,650 | ---- | C] () -- C:\Users\Dark\Desktop\raport_R_KAN_PRZYJECIE.pdf
[2012-06-29 08:10:16 | 003,321,665 | ---- | C] () -- C:\Users\Dark\Desktop\DSCF3059.JPG
[2012-06-29 08:07:10 | 003,203,876 | ---- | C] () -- C:\Users\Dark\Desktop\DSCF3056.JPG
[2012-06-28 22:19:51 | 000,000,797 | ---- | C] () -- C:\Users\Public\Desktop\Smite Closed Beta.lnk
[2012-06-28 22:19:51 | 000,000,788 | ---- | C] () -- C:\Users\Public\Desktop\Hi-Rez Diagnostics and Support.lnk
[2012-06-22 03:00:01 | 000,002,066 | ---- | C] () -- C:\Users\Public\Desktop\Avira Control Center.lnk
[2012-06-21 01:19:31 | 000,001,471 | ---- | C] () -- C:\Users\Dark\.recently-used.xbel
[2012-06-21 01:11:37 | 000,032,854 | ---- | C] () -- C:\Users\Dark\Desktop\cooltext718417332.png
[2012-06-20 14:02:54 | 047,165,440 | ---- | C] () -- C:\Users\Dark\Documents\CH002_0620_1402.ts
[2012-06-20 11:11:31 | 000,000,000 | ---- | C] () -- C:\Windows\SysNative\RTKISDBTSOURCE.DLL
[2012-06-20 11:11:28 | 005,722,192 | ---- | C] ( ) -- C:\Windows\SysWow64\RTKISDBT.dll
[2012-06-20 11:08:24 | 000,000,844 | ---- | C] () -- C:\Users\Public\Desktop\ComproFM 2.lnk
[2012-06-20 11:07:49 | 000,000,111 | ---- | C] () -- C:\Windows\SysWow64\ReSidebar.bat
[2012-06-20 11:07:41 | 000,000,852 | ---- | C] () -- C:\Users\Public\Desktop\ComproDTV 4.lnk
[2012-06-20 11:04:51 | 000,001,149 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\ComproSchedulerDTV.lnk
[2012-06-20 11:04:51 | 000,001,119 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\ComproRemote.lnk
[2012-05-21 16:42:44 | 000,030,332 | ---- | C] () -- C:\Windows\DIIUnin.dat
[2012-05-03 04:54:46 | 000,042,392 | ---- | C] () -- C:\Windows\SysWow64\xfcodec.dll
[2012-05-01 18:48:07 | 001,668,462 | ---- | C] () -- C:\Windows\SysWow64\PerfStringBackup.INI
[2012-03-16 09:37:46 | 000,000,257 | ---- | C] () -- C:\Windows\{EEB3F6BB-318D-4CE5-989F-8191FCBFB578}_WiseFW.ini
[2012-03-06 20:36:39 | 000,189,248 | ---- | C] () -- C:\Windows\SysWow64\PnkBstrB.exe
[2012-03-06 20:36:37 | 000,075,136 | ---- | C] () -- C:\Windows\SysWow64\PnkBstrA.exe
[2012-01-07 22:16:50 | 024,457,004 | ---- | C] () -- C:\Users\Dark\ts3_recording_12_01_07_21_16_48.wav
[2012-01-07 18:35:50 | 000,000,030 | ---- | C] () -- C:\Windows\Q3version.ini
[2012-01-07 18:35:14 | 000,000,551 | ---- | C] () -- C:\Windows\Qiii.INI
[2011-12-11 22:48:42 | 224,419,244 | ---- | C] () -- C:\Users\Dark\ts3_recording_11_12_11_21_48_41.wav
[2011-12-11 02:09:08 | 141,872,684 | ---- | C] () -- C:\Users\Dark\ts3_recording_11_12_11_1_9_7.wav
[2011-12-11 01:48:41 | 195,911,084 | ---- | C] () -- C:\Users\Dark\ts3_recording_11_12_11_0_48_37.wav
[2011-12-11 01:40:57 | 040,158,764 | ---- | C] () -- C:\Users\Dark\ts3_recording_11_12_11_0_40_55.wav
[2011-12-10 22:28:07 | 026,256,044 | ---- | C] () -- C:\Users\Dark\Ballada do cycek.wav
[2011-11-07 23:06:14 | 000,001,473 | ---- | C] () -- C:\Users\Dark\AppData\Local\UserProducts.xml
[2011-10-28 21:04:57 | 000,000,032 | R--- | C] () -- C:\ProgramData\hash.dat
[2011-10-21 00:55:21 | 000,108,032 | ---- | C] () -- C:\Windows\SysWow64\ff_vfw.dll
[2011-10-08 20:13:23 | 000,007,604 | ---- | C] () -- C:\Users\Dark\AppData\Local\Resmon.ResmonCfg
[2011-10-08 15:58:21 | 000,007,168 | ---- | C] () -- C:\Users\Dark\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011-10-07 15:54:00 | 000,795,648 | ---- | C] () -- C:\Windows\SysWow64\xvidcore.dll
[2011-10-01 11:33:36 | 000,093,671 | ---- | C] () -- C:\Users\Dark\AppData\Roaming\Uninstal.exe
[2011-09-30 20:58:44 | 000,000,024 | ---- | C] () -- C:\Windows\ATKPF.ini
[2011-09-30 19:41:04 | 000,960,940 | ---- | C] () -- C:\Windows\SysWow64\igkrng600.bin
[2011-09-30 19:41:04 | 000,213,332 | ---- | C] () -- C:\Windows\SysWow64\igfcg600m.bin
[2011-09-30 19:41:04 | 000,145,804 | ---- | C] () -- C:\Windows\SysWow64\igcompkrng600.bin
[2011-09-30 19:37:44 | 000,008,192 | ---- | C] () -- C:\Windows\SysWow64\drivers\IntelMEFWVer.dll
[2011-05-31 08:39:50 | 000,058,368 | ---- | C] () -- C:\Windows\SysWow64\bdmpegv.dll
[2011-05-31 08:38:18 | 000,015,360 | ---- | C] () -- C:\Windows\SysWow64\bdmjpeg.dll
[2011-04-09 18:55:28 | 000,179,261 | ---- | C] () -- C:\Windows\SysWow64\xlive.dll.cat
 
[color=#E56717]========== LOP Check ==========[/color]
 
[2012-06-15 23:21:19 | 000,000,000 | ---D | M] -- C:\Users\Dark\AppData\Roaming\.minecraft
[2011-11-21 20:27:41 | 000,000,000 | ---D | M] -- C:\Users\Dark\AppData\Roaming\.wtw
[2012-05-20 17:59:34 | 000,000,000 | ---D | M] -- C:\Users\Dark\AppData\Roaming\Ashampoo
[2012-05-20 16:26:24 | 000,000,000 | ---D | M] -- C:\Users\Dark\AppData\Roaming\Babylon
[2012-05-20 16:27:12 | 000,000,000 | ---D | M] -- C:\Users\Dark\AppData\Roaming\BabylonToolbar
[2011-10-09 16:50:14 | 000,000,000 | ---D | M] -- C:\Users\Dark\AppData\Roaming\Bioshock
[2011-10-07 16:19:44 | 000,000,000 | ---D | M] -- C:\Users\Dark\AppData\Roaming\Bioshock2
[2011-10-02 13:35:29 | 000,000,000 | ---D | M] -- C:\Users\Dark\AppData\Roaming\DAEMON Tools Lite
[2012-05-18 17:18:52 | 000,000,000 | ---D | M] -- C:\Users\Dark\AppData\Roaming\FileZilla
[2012-06-28 00:26:39 | 000,000,000 | ---D | M] -- C:\Users\Dark\AppData\Roaming\fretsonfire
[2012-02-23 19:08:47 | 000,000,000 | ---D | M] -- C:\Users\Dark\AppData\Roaming\Gadu-Gadu 10
[2012-06-21 01:11:38 | 000,000,000 | ---D | M] -- C:\Users\Dark\AppData\Roaming\gtk-2.0
[2012-05-01 20:37:11 | 000,000,000 | ---D | M] -- C:\Users\Dark\AppData\Roaming\IDoser
[2012-07-10 12:52:08 | 000,000,000 | ---D | M] -- C:\Users\Dark\AppData\Roaming\iPlus
[2011-12-29 19:56:12 | 000,000,000 | ---D | M] -- C:\Users\Dark\AppData\Roaming\Kalydo
[2011-10-07 17:25:59 | 000,000,000 | ---D | M] -- C:\Users\Dark\AppData\Roaming\Lionhead Studios
[2011-11-13 16:19:09 | 000,000,000 | ---D | M] -- C:\Users\Dark\AppData\Roaming\LolClient
[2012-05-24 13:07:55 | 000,000,000 | ---D | M] -- C:\Users\Dark\AppData\Roaming\LolClient2
[2011-10-20 18:47:47 | 000,000,000 | ---D | M] -- C:\Users\Dark\AppData\Roaming\MargonemMapki
[2011-11-20 00:00:04 | 000,000,000 | ---D | M] -- C:\Users\Dark\AppData\Roaming\Mount&Blade
[2011-12-10 15:05:15 | 000,000,000 | ---D | M] -- C:\Users\Dark\AppData\Roaming\NapiProjekt
[2012-03-19 19:26:44 | 000,000,000 | ---D | M] -- C:\Users\Dark\AppData\Roaming\OpenFM
[2012-03-06 20:36:35 | 000,000,000 | ---D | M] -- C:\Users\Dark\AppData\Roaming\PunkBuster
[2012-01-21 16:44:37 | 000,000,000 | ---D | M] -- C:\Users\Dark\AppData\Roaming\runic games
[2012-01-12 19:17:05 | 000,000,000 | ---D | M] -- C:\Users\Dark\AppData\Roaming\Sony
[2012-02-17 15:18:45 | 000,000,000 | ---D | M] -- C:\Users\Dark\AppData\Roaming\SplitMediaLabs
[2012-02-26 00:43:32 | 000,000,000 | ---D | M] -- C:\Users\Dark\AppData\Roaming\Spotify
[2012-05-29 12:47:02 | 000,000,000 | ---D | M] -- C:\Users\Dark\AppData\Roaming\Teeworlds
[2011-12-02 22:42:29 | 000,000,000 | ---D | M] -- C:\Users\Dark\AppData\Roaming\Trine2
[2012-06-25 10:53:51 | 000,000,000 | ---D | M] -- C:\Users\Dark\AppData\Roaming\TS3Client
[2011-10-05 14:56:01 | 000,000,000 | ---D | M] -- C:\Users\Dark\AppData\Roaming\Ubisoft
[2012-07-15 16:54:08 | 000,000,000 | ---D | M] -- C:\Users\Dark\AppData\Roaming\uTorrent
[2011-12-28 16:09:55 | 000,000,000 | ---D | M] -- C:\Users\Dark\AppData\Roaming\wargaming.net
[2012-05-06 20:24:45 | 000,000,000 | ---D | M] -- C:\Users\Dark\AppData\Roaming\ZalmanInstaller_otshot
[2011-12-27 18:48:37 | 000,032,592 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT
[2012-07-15 14:34:00 | 000,000,386 | ---- | M] () -- C:\Windows\Tasks\update-S-1-5-21-485146331-2047535483-3402034541-1000.job
[2012-07-15 14:05:00 | 000,000,386 | ---- | M] () -- C:\Windows\Tasks\update-sys.job
 
[color=#E56717]========== Purity Check ==========[/color]
 
 
 
[color=#E56717]========== Alternate Data Streams ==========[/color]
 
@Alternate Data Stream - 129 bytes -> C:\ProgramData\TEMP:05EE1EEF

< End of report >