OTL logfile created on: 2012-08-08 12:23:04 - Run 1
OTL by OldTimer - Version 3.2.56.0     Folder = C:\Users\Dom\Desktop
 Ultimate Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd
 
3,50 Gb Total Physical Memory | 3,15 Gb Available Physical Memory | 90,00% Memory free
3,78 Gb Paging File | 3,46 Gb Available in Paging File | 91,50% Paging File free
Paging file location(s): C:\pagefile.sys 288 2048 [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 75,04 Gb Total Space | 13,79 Gb Free Space | 18,38% Space Free | Partition Type: NTFS
Drive D: | 390,62 Gb Total Space | 356,56 Gb Free Space | 91,28% Space Free | Partition Type: NTFS
Drive E: | 7,03 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: CDFS
Drive H: | 3,68 Gb Total Space | 3,52 Gb Free Space | 95,54% Space Free | Partition Type: FAT32
Drive I: | 32,01 Mb Total Space | 0,19 Mb Free Space | 0,60% Space Free | Partition Type: FAT
 
Computer Name: DOM-KOMPUTER | User Name: Dom | Logged in as Administrator.
Boot Mode: SafeMode | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
 
[color=#E56717]========== Processes (SafeList) ==========[/color]
 
PRC - [2012-08-08 12:08:28 | 000,596,480 | ---- | M] (OldTimer Tools) -- C:\Users\Dom\Desktop\OTL.com
PRC - [2010-11-20 14:17:09 | 002,616,320 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
 
 
[color=#E56717]========== Modules (No Company Name) ==========[/color]
 
MOD - [2011-05-28 22:04:56 | 000,140,288 | ---- | M] () -- C:\Program Files\WinRAR\RarExt.dll
MOD - [2011-03-17 00:11:16 | 004,297,568 | ---- | M] () -- C:\Program Files\Common Files\microsoft shared\OFFICE14\Cultures\OFFICE.ODF
 
 
[color=#E56717]========== Win32 Services (SafeList) ==========[/color]
 
SRV - [2012-08-04 11:24:27 | 000,114,144 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2012-08-01 13:00:07 | 000,529,232 | ---- | M] (Valve Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\Steam\SteamService.exe -- (Steam Client Service)
SRV - [2012-07-27 18:43:01 | 001,691,680 | ---- | M] (PerformerSoft LLC) [Auto | Stopped] -- C:\ProgramData\SearchAlgo Manager\2.2.509.39\c190e9c7-7f62-46de-bab3-8445c845b061\srchalgomngr.exe -- (SearchAlgo Manager)
SRV - [2012-07-10 20:19:23 | 004,419,392 | ---- | M] () [Auto | Stopped] -- c:\program files\common files\akamai/netsession_win_4f7fccd.dll -- (Akamai)
SRV - [2012-07-03 16:40:32 | 000,265,120 | ---- | M] () [Auto | Stopped] -- C:\Program Files\Common Files\WireHelpSvc.exe -- (WireHelpSvc)
SRV - [2012-05-03 08:31:10 | 000,158,856 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files\Skype\Updater\Updater.exe -- (SkypeUpdate)
SRV - [2012-02-09 00:00:12 | 000,198,136 | ---- | M] (Nitro PDF Software) [Auto | Stopped] -- C:\Program Files\Nitro PDF\Reader 2\NitroPDFReaderDriverService2.exe -- (NitroReaderDriverReadSpool2)
SRV - [2011-06-12 11:15:00 | 031,125,880 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Microsoft Office\Office14\GROOVE.EXE -- (Microsoft SharePoint Workspace Audit Service)
SRV - [2011-05-14 20:27:32 | 001,343,400 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\Wat\WatAdminSvc.exe -- (WatAdminSvc)
SRV - [2011-05-09 17:15:56 | 000,027,760 | ---- | M] (VIA Technologies, Inc.) [Auto | Stopped] -- C:\Windows\System32\ViakaraokeSrv.exe -- (VIAKaraokeService)
SRV - [2011-04-15 11:43:20 | 002,280,312 | ---- | M] (TeamViewer GmbH) [Auto | Stopped] -- C:\Program Files\TeamViewer\Version6\TeamViewer_Service.exe -- (TeamViewer6)
SRV - [2010-12-19 14:19:08 | 000,378,984 | ---- | M] (NVIDIA Corporation) [Auto | Stopped] -- C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe -- (Stereo Service)
SRV - [2009-10-13 08:39:04 | 000,935,208 | ---- | M] (Nero AG) [Auto | Stopped] -- C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe -- (Nero BackItUp Scheduler 4.0)
SRV - [2009-07-14 03:16:13 | 000,025,088 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\sensrsvc.dll -- (SensrSvc)
SRV - [2009-07-14 03:16:12 | 001,004,544 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\PeerDistSvc.dll -- (PeerDistSvc)
SRV - [2007-02-13 18:27:12 | 000,407,184 | ---- | M] (Cenega Poland) [Auto | Stopped] -- C:\Windows\System32\pr2ajfae.exe -- (pr2ajfae)
 
 
[color=#E56717]========== Driver Services (SafeList) ==========[/color]
 
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Windows\system32\XDva388.sys -- (XDva388)
DRV - File not found [Kernel | On_Demand | Stopped] -- System32\drivers\rdvgkmd.sys -- (VGPU)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\drivers\tsusbhub.sys -- (tsusbhub)
DRV - File not found [Kernel | On_Demand | Stopped] -- System32\drivers\synth3dvsc.sys -- (Synth3dVsc)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\EagleNT.sys -- (EagleNT)
DRV - [2012-07-03 16:40:26 | 000,836,496 | ---- | M] (<Turtle Entertainment>) [Kernel | Auto | Stopped] -- C:\Windows\System32\drivers\ESLWireACD.sys -- (ESLWireAC)
DRV - [2012-03-02 19:26:47 | 000,242,240 | ---- | M] (DT Soft Ltd) [Kernel | System | Running] -- C:\Windows\System32\drivers\dtsoftbus01.sys -- (dtsoftbus01)
DRV - [2012-02-04 11:25:05 | 000,278,984 | ---- | M] () [Kernel | Auto | Stopped] -- C:\Windows\System32\drivers\atksgt.sys -- (atksgt)
DRV - [2012-02-03 23:26:28 | 000,025,416 | ---- | M] () [Kernel | Auto | Stopped] -- C:\Windows\System32\drivers\lirsgt.sys -- (lirsgt)
DRV - [2011-11-15 05:50:16 | 000,112,096 | ---- | M] (Power Software Ltd) [Kernel | System | Stopped] -- C:\Windows\System32\drivers\scdemu.sys -- (SCDEmu)
DRV - [2011-06-22 15:38:26 | 000,024,504 | ---- | M] (Turtle Entertainment GmbH) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ESLvnic.sys -- (ESLvnic1)
DRV - [2011-05-09 17:15:50 | 001,805,936 | ---- | M] (VIA Technologies, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\viahduaa.sys -- (VIAHdAudAddService)
DRV - [2010-12-20 06:21:00 | 010,466,376 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\nvlddmkm.sys -- (nvlddmkm)
DRV - [2010-11-20 14:30:15 | 000,175,360 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\vmbus.sys -- (vmbus)
DRV - [2010-11-20 14:30:15 | 000,040,704 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\vmstorfl.sys -- (storflt)
DRV - [2010-11-20 14:30:15 | 000,028,032 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\storvsc.sys -- (storvsc)
DRV - [2010-11-20 12:24:41 | 000,052,224 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV - [2010-11-20 12:21:14 | 000,015,872 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\rdpvideominiport.sys -- (RdpVideoMiniport)
DRV - [2010-11-20 11:14:45 | 000,017,920 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\VMBusHID.sys -- (VMBusHID)
DRV - [2010-11-20 11:14:41 | 000,005,632 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\vms3cap.sys -- (s3cap)
DRV - [2010-11-12 07:10:52 | 000,122,984 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\nvhda32v.sys -- (NVHDA)
DRV - [2009-07-16 05:36:30 | 000,013,216 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\ASACPI.sys -- (MTsensor)
DRV - [2007-02-13 18:26:23 | 000,065,432 | ---- | M] (Cenega Poland) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\pe3ajfae.sys -- (pe3ajfae)
DRV - [2007-02-13 18:25:27 | 000,052,128 | ---- | M] (Cenega Poland) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\ps6ajfae.sys -- (ps6ajfae)
 
 
[color=#E56717]========== Standard Registry (SafeList) ==========[/color]
 
 
[color=#E56717]========== Internet Explorer ==========[/color]
 
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = www.v9.com/vlt/vlt_1329060637_958084
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.bigseekpro.com/extractnow/{191FFD4B-9663-4539-A0EB-9A8CCEC9158D}
IE - HKLM\..\URLSearchHook:  - No CLSID value found
IE - HKLM\..\URLSearchHook: {3B81079D-2AC9-425f-A494-A1C7D93AFA3C} - C:\Program Files\GadgetBox\gadgetBoxTB.dll (GadgetBox)
IE - HKLM\..\URLSearchHook: {57BCA5FA-5DBB-45a2-B558-1755C3F6253B} - C:\Program Files\Winamp Toolbar\winamptb.dll (AOL Inc.)
IE - HKLM\..\URLSearchHook: {687578b9-7132-4a7a-80e4-30ee31099e03} - C:\Program Files\uTorrentControl2\prxtbuTo0.dll (Conduit Ltd.)
IE - HKLM\..\URLSearchHook: {88c7f2aa-f93f-432c-8f0e-b7d85967a527} - C:\Program Files\BitTorrentBar\prxtbBitT.dll (Conduit Ltd.)
IE - HKLM\..\SearchScopes,Backup.Old.DefaultScope = {BB74DE59-BC4C-4172-9AC4-73315F71CFFE}
IE - HKLM\..\SearchScopes,DefaultScope = {30F5AB16-9F1E-4E99-93F2-ECB9ABB0EC12}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKLM\..\SearchScopes\{30F5AB16-9F1E-4E99-93F2-ECB9ABB0EC12}: "URL" = http://www.searchya.com/?q={searchTerms}&s=1&a=foxtab&chnl=ft-100&cd=2XzuyEtN2Y1L1Qzu0B0C0A0E0CyD0ByBtC0BtC0A0F0DyCtBtN0D0Tzu0CtBtCyDtN1L2XzutBtFtCtFtCtFtAtCtB&cr=420614754
IE - HKLM\..\SearchScopes\{4D066206-27C6-036F-A866-36302F641511}: "URL" = http://search.my-tools-app.com/?babsrc=home&s=web&as=0&isid=9848&q={searchTerms}
IE - HKLM\..\SearchScopes\{AA74FE59-BC4C-4172-9AC4-73315F71CFFE}: "URL" = http://search.gboxapp.com/?q={searchTerms}
IE - HKLM\..\SearchScopes\{BB74DE59-BC4C-4172-9AC4-73315F71CFFE}: "URL" = http://search.gboxapp.com/?q={searchTerms}
IE - HKLM\..\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847}: "URL" = http://search.sweetim.com/search.asp?src=6&q={searchTerms}&barid={B958B9F4-BE90-11E0-A4BF-00FF01000001}
IE - HKLM\..\SearchScopes\{EEE7E0A3-AE64-4dc8-84D1-F5D7BAF2DB0C}: "URL" = http://slirsredirect.search.aol.com/redirector/sredir?sredir=2685&query={searchTerms}&invocationType=tb50-ie-winamp-chromesbox-en-us&tb_uuid=20110507184006150&tb_oid=07-05-2011&tb_mrud=07-05-2011
 
 
IE - HKU\.DEFAULT\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = <local>
 
IE - HKU\S-1-5-18\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = <local>
 
 
 
IE - HKU\S-1-5-21-3369969887-839536815-1759217782-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Backup.Old.Start Page = http://search.conduit.com?SearchSource=10&ctid=CT2790392
IE - HKU\S-1-5-21-3369969887-839536815-1759217782-1000\SOFTWARE\Microsoft\Internet Explorer\Main,bProtector Start Page = http://www.searchalgo.com?ch=10&cid=273
IE - HKU\S-1-5-21-3369969887-839536815-1759217782-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = www.v9.com/vlt/vlt_1329060637_958084
IE - HKU\S-1-5-21-3369969887-839536815-1759217782-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.bigseekpro.com/extractnow/{191FFD4B-9663-4539-A0EB-9A8CCEC9158D}
IE - HKU\S-1-5-21-3369969887-839536815-1759217782-1000\..\URLSearchHook:  - No CLSID value found
IE - HKU\S-1-5-21-3369969887-839536815-1759217782-1000\..\URLSearchHook: {00000000-6E41-4FD3-8538-502F5495E5FC} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask)
IE - HKU\S-1-5-21-3369969887-839536815-1759217782-1000\..\URLSearchHook: {3B81079D-2AC9-425f-A494-A1C7D93AFA3C} - C:\Program Files\GadgetBox\gadgetBoxTB.dll (GadgetBox)
IE - HKU\S-1-5-21-3369969887-839536815-1759217782-1000\..\URLSearchHook: {57BCA5FA-5DBB-45a2-B558-1755C3F6253B} - C:\Program Files\Winamp Toolbar\winamptb.dll (AOL Inc.)
IE - HKU\S-1-5-21-3369969887-839536815-1759217782-1000\..\URLSearchHook: {687578b9-7132-4a7a-80e4-30ee31099e03} - C:\Program Files\uTorrentControl2\prxtbuTo0.dll (Conduit Ltd.)
IE - HKU\S-1-5-21-3369969887-839536815-1759217782-1000\..\URLSearchHook: {88c7f2aa-f93f-432c-8f0e-b7d85967a527} - C:\Program Files\BitTorrentBar\prxtbBitT.dll (Conduit Ltd.)
IE - HKU\S-1-5-21-3369969887-839536815-1759217782-1000\..\URLSearchHook: {CA3EB689-8F09-4026-AA10-B9534C691CE0} - C:\Program Files\DealBulldog Toolbar Toolbar\tbhelper.dll ()
IE - HKU\S-1-5-21-3369969887-839536815-1759217782-1000\..\URLSearchHook: {EEE6C35D-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgHelper.dll (SweetIM Technologies Ltd.)
IE - HKU\S-1-5-21-3369969887-839536815-1759217782-1000\..\SearchScopes,Backup.Old.DefaultScope = {EEE6C360-6118-11DC-9C72-001320C79847}
IE - HKU\S-1-5-21-3369969887-839536815-1759217782-1000\..\SearchScopes,bProtectorDefaultScope = {3BD44F0E-0596-4008-AEE0-45D47E3A8F0E}
IE - HKU\S-1-5-21-3369969887-839536815-1759217782-1000\..\SearchScopes,DefaultScope = {96bd48dd-741b-41ae-ac4a-aff96ba00f7e}
IE - HKU\S-1-5-21-3369969887-839536815-1759217782-1000\..\SearchScopes\{024C138C-1A58-44F9-8B48-60BA3EEA9461}: "URL" = http://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT3072253
IE - HKU\S-1-5-21-3369969887-839536815-1759217782-1000\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC
IE - HKU\S-1-5-21-3369969887-839536815-1759217782-1000\..\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}: "URL" = http://search.babylon.com/?q={searchTerms}&AF=108603&babsrc=SP_ss&mntrId=e662fd6200000000000000ff01000001
IE - HKU\S-1-5-21-3369969887-839536815-1759217782-1000\..\SearchScopes\{131283AF-4133-4890-8406-A4388D1BAE54}: "URL" = http://websearch.ask.com/redirect?client=ie&tb=STC-PO&o=1738&src=kw&q={searchTerms}&locale=&apn_ptnrs=^AAU&apn_dtid=^YYYYYY^YY^PL&apn_uid=F347D0C6-C7D0-4BB7-ADC8-5C69EA7E7BBE&apn_sauid=99F47476-7FEA-48F4-97A1-066B6A553DEB
IE - HKU\S-1-5-21-3369969887-839536815-1759217782-1000\..\SearchScopes\{30F5AB16-9F1E-4E99-93F2-ECB9ABB0EC12}: "URL" = http://www.searchya.com/?q={searchTerms}&s=1&a=foxtab&chnl=ft-100&cd=2XzuyEtN2Y1L1Qzu0B0C0A0E0CyD0ByBtC0BtC0A0F0DyCtBtN0D0Tzu0CtBtCyDtN1L2XzutBtFtCtFtCtFtAtCtB&cr=420614754
IE - HKU\S-1-5-21-3369969887-839536815-1759217782-1000\..\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}: "URL" = http://www.google.pl/cse?q={searchTerms}&cx=partner-pub-2489206448026482%3A4041638047&tbm=&ie=UTF-8#gsc.tab=0&gsc.q={searchTerms}
IE - HKU\S-1-5-21-3369969887-839536815-1759217782-1000\..\SearchScopes\{3BD44F0E-0596-4008-AEE0-45D47E3A8F0E}: "URL" = http://www.searchalgo.com/search.html?ch=10&cid=273&q={searchTerms}
IE - HKU\S-1-5-21-3369969887-839536815-1759217782-1000\..\SearchScopes\{4D066206-27C6-036F-A866-36302F641511}: "URL" = http://search.sweetim.com/search.asp?src=6&q={searchTerms}&barid={B958B9F4-BE90-11E0-A4BF-00FF01000001}
IE - HKU\S-1-5-21-3369969887-839536815-1759217782-1000\..\SearchScopes\{5E71BDD4-4013-48AD-89D0-E7B0C44ECBA2}: "URL" = http://search.softonic.com/MON00084/tb_v1?q={searchTerms}&SearchSource=4&cc=
IE - HKU\S-1-5-21-3369969887-839536815-1759217782-1000\..\SearchScopes\{5F3BEBD5-F6C6-A4B8-EDD2-A6F5F61813A8}: "URL" = http://www.buzqo.com/s/?q={searchTerms}&iesrc={referrer:source?}&cfg=2-401-0-...
IE - HKU\S-1-5-21-3369969887-839536815-1759217782-1000\..\SearchScopes\{96bd48dd-741b-41ae-ac4a-aff96ba00f7e}: "URL" = http://www.bigseekpro.com/search/browser/extractnow/{191FFD4B-9663-4539-A0EB-9A8CCEC9158D}?q={searchTerms}
IE - HKU\S-1-5-21-3369969887-839536815-1759217782-1000\..\SearchScopes\{AA74FE59-BC4C-4172-9AC4-73315F71CFFE}: "URL" = http://search.gboxapp.com/?q={searchTerms}
IE - HKU\S-1-5-21-3369969887-839536815-1759217782-1000\..\SearchScopes\{BB74DE59-BC4C-4172-9AC4-73315F71CFFE}: "URL" = http://search.gboxapp.com/?q={searchTerms}
IE - HKU\S-1-5-21-3369969887-839536815-1759217782-1000\..\SearchScopes\{CFF4DB9B-135F-47c0-9269-B4C6572FD61A}: "URL" = http://mystart.incredibar.com/mb119/?search={searchTerms}&loc=IB_DS&a=6Oys4Aa7iO&i=26
IE - HKU\S-1-5-21-3369969887-839536815-1759217782-1000\..\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847}: "URL" = http://start.funmoods.com/results.php?f=4&q={searchTerms}&a=nv1&chnl=nv1&cd=2XzuyEtN2Y1L1Qzu0B0C0A0E0CyD0ByBtC0BtC0A0F0DyCtBtN0D0Tzu0CtCzzzytN1L2XzutBtFtCtFtDtFtAtDtC&cr=1362061721
IE - HKU\S-1-5-21-3369969887-839536815-1759217782-1000\..\SearchScopes\{EEE7E0A3-AE64-4dc8-84D1-F5D7BAF2DB0C}: "URL" = http://slirsredirect.search.aol.com/redirector/sredir?sredir=2685&query={searchTerms}&invocationType=tb50-ie-winamp-chromesbox-en-us&tb_uuid=20110507184006150&tb_oid=07-05-2011&tb_mrud=07-05-2011
IE - HKU\S-1-5-21-3369969887-839536815-1759217782-1000\..\SearchScopes\{FC6AD3DE-E187-4FFF-BC95-E709381B38CE}: "URL" = http://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT2790392
IE - HKU\S-1-5-21-3369969887-839536815-1759217782-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-3369969887-839536815-1759217782-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = 127.0.0.1:9421;<local>
 
[color=#E56717]========== FireFox ==========[/color]
 
FF - user.js - File not found
 
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@gamersfirst.com/LiveLauncher: C:\Program Files\GamersFirst\LIVE!\nplivelauncher.dll File not found
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=1.6.0_32: C:\Windows\system32\npdeployJava1.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\plugin2\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\5.1.10411.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~1\MICROS~2\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@nitropdf.com/NitroPDF: C:\Program Files\Nitro PDF\Reader 2\npnitromozilla.dll ( )
FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVision: C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVisionStreaming: C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF - HKLM\Software\MozillaPlugins\@pandonetworks.com/PandoWebPlugin: C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.115\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.115\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\pandonetworks.com/PandoWebPlugin: C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
 
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 15.0\extensions\\Components: C:\Program Files\Mozilla Firefox 4.0 Beta 9\components [2012-08-04 11:24:27 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 15.0\extensions\\Plugins: C:\Program Files\Mozilla Firefox 4.0 Beta 9\plugins [2011-04-23 19:45:51 | 000,000,204 | ---- | M] ()
FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\eplgTb@eset.com: C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird
FF - HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\{b64982b1-d112-42b5-b1e4-d3867c4533f8}: C:\ProgramData\SearchAlgo Manager\2.2.509.39\c190e9c7-7f62-46de-bab3-8445c845b061\FirefoxExtension [2012-07-27 18:43:01 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 15.0\extensions\\Components: C:\Program Files\Mozilla Firefox 4.0 Beta 9\components [2012-08-04 11:24:27 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 15.0\extensions\\Plugins: C:\Program Files\Mozilla Firefox 4.0 Beta 9\plugins [2011-04-23 19:45:51 | 000,000,204 | ---- | M] ()
 
[2011-11-23 20:07:45 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Dom\AppData\Roaming\mozilla\Extensions
[2012-07-07 13:42:20 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Dom\AppData\Roaming\mozilla\Firefox\Profiles\extensions
[2012-08-02 14:12:59 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Dom\AppData\Roaming\mozilla\Firefox\Profiles\extensions\extensions
[2012-08-02 14:18:39 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Dom\AppData\Roaming\mozilla\Firefox\Profiles\dyr80y3u.default\extensions
[2012-07-16 19:52:26 | 000,000,000 | ---D | M] (uTorrentControl2 Community Toolbar) -- C:\Users\Dom\AppData\Roaming\mozilla\Firefox\Profiles\dyr80y3u.default\extensions\{687578b9-7132-4a7a-80e4-30ee31099e03}
[2012-08-02 14:18:39 | 000,000,000 | ---D | M] (DealBulldog Toolbar Toolbar) -- C:\Users\Dom\AppData\Roaming\mozilla\Firefox\Profiles\dyr80y3u.default\extensions\{75656794-AB59-4712-BFBC-5D816D56F3BC}
[2012-07-09 11:38:17 | 000,000,000 | ---D | M] (BitTorrentBar Community Toolbar) -- C:\Users\Dom\AppData\Roaming\mozilla\Firefox\Profiles\dyr80y3u.default\extensions\{88c7f2aa-f93f-432c-8f0e-b7d85967a527}
[2012-05-16 16:58:54 | 000,000,000 | ---D | M] (Bcool) -- C:\Users\Dom\AppData\Roaming\mozilla\Firefox\Profiles\dyr80y3u.default\extensions\4fb33f081acbb@4fb33f081acf4.info
[2012-07-07 14:02:18 | 000,000,000 | ---D | M] (ADDICT-THING) -- C:\Users\Dom\AppData\Roaming\mozilla\Firefox\Profiles\dyr80y3u.default\extensions\4ff821c17eac4@4ff821c17eafd.info
[2012-07-07 13:42:22 | 000,000,000 | ---D | M] (Funmoods.com) -- C:\Users\Dom\AppData\Roaming\mozilla\Firefox\Profiles\dyr80y3u.default\extensions\ffxtlbr@funmoods.com
[2012-02-06 17:46:46 | 000,000,000 | ---D | M] (Incredibar Toolbar) -- C:\Users\Dom\AppData\Roaming\mozilla\Firefox\Profiles\dyr80y3u.default\extensions\ffxtlbr@incredibar.com
[2012-08-02 14:13:57 | 000,000,000 | ---D | M] (searchya.com) -- C:\Users\Dom\AppData\Roaming\mozilla\Firefox\Profiles\dyr80y3u.default\extensions\ffxtlbr@searchya.com
[2012-02-05 20:56:17 | 000,000,000 | ---D | M] (Softonic Toolbar) -- C:\Users\Dom\AppData\Roaming\mozilla\Firefox\Profiles\dyr80y3u.default\extensions\ffxtlbra@softonic.com
[2012-07-07 14:02:18 | 000,000,000 | ---D | M] (GadgetBox) -- C:\Users\Dom\AppData\Roaming\mozilla\Firefox\Profiles\dyr80y3u.default\extensions\gadget@gadgetbox
[2012-02-11 23:11:18 | 000,000,000 | ---D | M] (MyTools extension) -- C:\Users\Dom\AppData\Roaming\mozilla\Firefox\Profiles\dyr80y3u.default\extensions\info@my-tools-app.com
[2012-02-11 23:11:18 | 000,000,000 | ---D | M] (Bflix) -- C:\Users\Dom\AppData\Roaming\mozilla\Firefox\Profiles\dyr80y3u.default\extensions\info@thebflix.com
[2012-07-07 13:42:08 | 000,000,000 | ---D | M] (OneClickDownloader) -- C:\Users\Dom\AppData\Roaming\mozilla\Firefox\Profiles\dyr80y3u.default\extensions\OneClickDownload@OneClickDownload.com
[2012-07-27 18:42:32 | 000,000,000 | ---D | M] (Yontoo) -- C:\Users\Dom\AppData\Roaming\mozilla\Firefox\Profiles\dyr80y3u.default\extensions\plugin@yontoo.com
[2012-07-30 01:03:39 | 000,000,000 | ---D | M] ("Softonic Toolbar") -- C:\Users\Dom\AppData\Roaming\mozilla\Firefox\Profiles\dyr80y3u.default\extensions\toolbar@ask.com
[2012-08-02 14:12:59 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Dom\AppData\Roaming\mozilla\Firefox\Profiles\emj9toh0.default\extensions
[2011-10-03 16:48:09 | 000,000,000 | ---D | M] ("Winamp Toolbar") -- C:\Users\Dom\AppData\Roaming\mozilla\Firefox\Profiles\emj9toh0.default\extensions\{0b38152b-1b20-484d-a11f-5e04a9b0661f}
[2011-06-15 22:28:18 | 000,000,000 | ---D | M] (Complitly - Speed up your search with your personal search suggestions tool) -- C:\Users\Dom\AppData\Roaming\mozilla\Firefox\Profiles\emj9toh0.default\extensions\{33e0daa6-3af3-d8b5-6752-10e949c61516}
[2011-08-04 13:56:14 | 000,000,000 | ---D | M] (SweetIM Toolbar for Firefox) -- C:\Users\Dom\AppData\Roaming\mozilla\Firefox\Profiles\emj9toh0.default\extensions\{EEE6C361-6118-11DC-9C72-001320C79847}
[2012-08-02 14:12:59 | 000,000,000 | ---D | M] (searchya.com) -- C:\Users\Dom\AppData\Roaming\mozilla\Firefox\Profiles\emj9toh0.default\extensions\ffxtlbr@searchya.com
[2012-07-27 18:42:33 | 000,000,000 | ---D | M] (Yontoo) -- C:\Users\Dom\AppData\Roaming\mozilla\Firefox\Profiles\emj9toh0.default\extensions\plugin@yontoo.com
[2012-08-02 14:08:24 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Dom\AppData\Roaming\mozilla\Firefox\Profiles\emj9toh0.default\extensions\staged
[2012-08-02 14:12:59 | 000,000,000 | ---D | M] (searchya.com) -- C:\Users\Dom\AppData\Roaming\mozilla\Firefox\Profiles\extensions\extensions\ffxtlbr@searchya.com
[2012-07-27 18:42:33 | 000,000,000 | ---D | M] (Yontoo) -- C:\Users\Dom\AppData\Roaming\mozilla\Firefox\Profiles\extensions\extensions\plugin@yontoo.com
[2012-08-02 14:08:24 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Dom\AppData\Roaming\mozilla\Firefox\Profiles\extensions\extensions\staged
[2012-02-04 14:50:59 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2012-02-04 14:50:59 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions\ffxtlbr@babylon.com
 
[color=#E56717]========== Chrome  ==========[/color]
 
CHR - default_search_provider: Web Search ()
CHR - default_search_provider: search_url = http://www.searchya.com/?q={searchTerms}&s=1&a=foxtab&chnl=ft-100&cd=2XzuyEtN2Y1L1Qzu0B0C0A0E0CyD0ByBtC0BtC0A0F0DyCtBtN0D0Tzu0CtBtCyDtN1L2XzutBtFtCtFtCtFtAtCtB&cr=420614754
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?client=chrome&hl={language}&q={searchTerms}
CHR - homepage: http://www.searchya.com/?s=0&a=foxtab&chnl=ft-100&cd=2XzuyEtN2Y1L1Qzu0B0C0A0E0CyD0ByBtC0BtC0A0F0DyCtBtN0D0Tzu0CtBtCyDtN1L2XzutBtFtCtFtCtFtAtCtB&cr=420614754
CHR - Extension: No name found = C:\Users\Dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaoeljheghbhpgohamdianlpdglflj\7.15.2.0\
CHR - Extension: No name found = C:\Users\Dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\cnkbppmdgdfccoihhajoeflficbpgcnm\1.0_0\
CHR - Extension: No name found = C:\Users\Dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\defdhglnppeioeflggkmglipcecffkhk\1.1_0\
CHR - Extension: No name found = C:\Users\Dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\kpojpihgafjhbgkgaglhighomjceieff\1.4_0\
CHR - Extension: No name found = C:\Users\Dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl\5.11.0.9874_0\
 
O1 HOSTS File: ([2009-06-10 23:39:37 | 000,000,824 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O2 - BHO: (TinyBHO Class) - {00e71626-0bef-11dc-8314-0800200c9a66} - C:\Users\Dom\AppData\Roaming\DownloaderGold\ieplug.dll ()
O2 - BHO: (TinyBHO Class) - {00e71626-0bef-11dc-8314-0864264c9a64} - C:\Users\Dom\AppData\Roaming\DownloaderGold\ieplug.dll ()
O2 - BHO: (BFlix Class) - {0C9F4179-6CE2-4c6a-A3E5-67FF3592A12E} - C:\Program Files\BFlix\Bflix.dll (BFlix)
O2 - BHO: (AC-Pro) - {0FB6A909-6086-458F-BD92-1F8EE10042A0} - C:\Users\Dom\AppData\Roaming\Complitly\AutocompletePro.dll (SimplyGen)
O2 - BHO: (Bcool Class) - {184D7067-2C3B-6EA1-D317-26884BC53B44} - C:\ProgramData\Bcool\bhoclass.dll ()
O2 - BHO: (Ironsource LTD Helper Object) - {25927741-5E5B-4D27-8D8B-9188FE64373F} - C:\Program Files\SearchYa!\1.5.25.0\bh\searchya.dll (Montera Technologeis LTD)
O2 - BHO: (Winamp Toolbar Loader) - {25CEE8EC-5730-41bc-8B58-22DDC8AB8C20} - C:\Program Files\Winamp Toolbar\winamptb.dll (AOL Inc.)
O2 - BHO: (Babylon toolbar helper) - {2EECD738-5844-4a99-B4B6-146BF802613B} - Reg Error: Value error. File not found
O2 - BHO: (uTorrentControl2 Toolbar) - {687578b9-7132-4a7a-80e4-30ee31099e03} - C:\Program Files\uTorrentControl2\prxtbuTo0.dll (Conduit Ltd.)
O2 - BHO: (Incredibar.com Helper Object) - {6E13DDE1-2B6E-46CE-8B66-DC8BF36F6B99} - C:\Program Files\Incredibar.com\incredibar\1.5.3.27\bh\incredibar.dll (Montera Technologeis LTD)
O2 - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
O2 - BHO: (no name) - {75EBB0AA-4214-4CB4-90EC-E3E07ECD04F7} - No CLSID value found.
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (BitTorrentBar Toolbar) - {88c7f2aa-f93f-432c-8f0e-b7d85967a527} - C:\Program Files\BitTorrentBar\prxtbBitT.dll (Conduit Ltd.)
O2 - BHO: (Skype Browser Helper) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O2 - BHO: (ADDICT-THING Class) - {AECEE380-806E-CE0D-E4BF-A1547C30A494} - C:\ProgramData\ADDICT-THING\bhoclass.dll ()
O2 - BHO: (Office Document Cache Handler) - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
O2 - BHO: (MyTools Class) - {C3A44133-7EAD-434C-AC9E-7F1DA176BA8C} - C:\Program Files\MyTools\mytools.dll (MyTools)
O2 - BHO: (Ask Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask)
O2 - BHO: (Softonic Helper Object) - {E87806B5-E908-45FD-AF5E-957D83E58E68} - C:\Program Files\Softonic\softonic\1.5.11.5\bh\softonic.dll (Softonic.com)
O2 - BHO: (SweetPacks Browser Helper) - {EEE6C35C-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll (SweetIM Technologies Ltd.)
O2 - BHO: (SMTTB2009 Class) - {FCBCCB87-9224-4B8D-B117-F56D924BEB18} - C:\Program Files\DealBulldog Toolbar Toolbar\tbcore3.dll ()
O2 - BHO: (Yontoo) - {FD72061E-9FDE-484D-A58A-0BAB4151CAD8} - C:\Program Files\Yontoo\YontooIEClient.dll (Yontoo LLC)
O3 - HKLM\..\Toolbar: (DealBulldog Toolbar Toolbar) - {338B4DFE-2E2C-4338-9E41-E176D497299E} - C:\Program Files\DealBulldog Toolbar Toolbar\tbcore3.dll ()
O3 - HKLM\..\Toolbar: (SearchYa Toolbar) - {33AA308B-B565-4376-AC66-59EE9B6AD13E} - C:\Program Files\SearchYa!\1.5.25.0\searchyaTlbr.dll (Montera Technologeis LTD)
O3 - HKLM\..\Toolbar: (GagetBox) - {3B81079D-2AC9-425f-A494-A1C7D93AFA3C} - C:\Program Files\GadgetBox\gadgetBoxTB.dll (GadgetBox)
O3 - HKLM\..\Toolbar: (Softonic Toolbar) - {5018CFD2-804D-4C99-9F81-25EAEA2769DE} - C:\Program Files\Softonic\softonic\1.5.11.5\softonicTlbr.dll (Softonic.com)
O3 - HKLM\..\Toolbar: (uTorrentControl2 Toolbar) - {687578b9-7132-4a7a-80e4-30ee31099e03} - C:\Program Files\uTorrentControl2\prxtbuTo0.dll (Conduit Ltd.)
O3 - HKLM\..\Toolbar: (BitTorrentBar Toolbar) - {88c7f2aa-f93f-432c-8f0e-b7d85967a527} - C:\Program Files\BitTorrentBar\prxtbBitT.dll (Conduit Ltd.)
O3 - HKLM\..\Toolbar: (no name) - {98889811-442D-49dd-99D7-DC866BE87DBC} - No CLSID value found.
O3 - HKLM\..\Toolbar: (no name) - {A4C272EC-ED9E-4ACE-A6F2-9558C7F29EF3} - No CLSID value found.
O3 - HKLM\..\Toolbar: (Ask Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask)
O3 - HKLM\..\Toolbar: (Winamp Toolbar) - {EBF2BA02-9094-4c5a-858B-BB198F3D8DE2} - C:\Program Files\Winamp Toolbar\winamptb.dll (AOL Inc.)
O3 - HKLM\..\Toolbar: (SweetPacks Toolbar for Internet Explorer) - {EEE6C35B-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll (SweetIM Technologies Ltd.)
O3 - HKLM\..\Toolbar: (Incredibar Toolbar) - {F9639E4A-801B-4843-AEE3-03D9DA199E77} - C:\Program Files\Incredibar.com\incredibar\1.5.3.27\incredibarTlbr.dll (Montera Technologeis LTD)
O3 - HKU\S-1-5-21-3369969887-839536815-1759217782-1000\..\Toolbar\WebBrowser: (uTorrentControl2 Toolbar) - {687578B9-7132-4A7A-80E4-30EE31099E03} - C:\Program Files\uTorrentControl2\prxtbuTo0.dll (Conduit Ltd.)
O3 - HKU\S-1-5-21-3369969887-839536815-1759217782-1000\..\Toolbar\WebBrowser: (BitTorrentBar Toolbar) - {88C7F2AA-F93F-432C-8F0E-B7D85967A527} - C:\Program Files\BitTorrentBar\prxtbBitT.dll (Conduit Ltd.)
O3 - HKU\S-1-5-21-3369969887-839536815-1759217782-1000\..\Toolbar\WebBrowser: (Winamp Toolbar) - {EBF2BA02-9094-4C5A-858B-BB198F3D8DE2} - C:\Program Files\Winamp Toolbar\winamptb.dll (AOL Inc.)
O3 - HKU\S-1-5-21-3369969887-839536815-1759217782-1000\..\Toolbar\WebBrowser: (SweetPacks Toolbar for Internet Explorer) - {EEE6C35B-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll (SweetIM Technologies Ltd.)
O4 - HKLM..\Run: []  File not found
O4 - HKLM..\Run: [ApnUpdater] C:\Program Files\Ask.com\Updater\Updater.exe (Ask)
O4 - HKLM..\Run: [BCSSync] C:\Program Files\Microsoft Office\Office14\BCSSync.exe (Microsoft Corporation)
O4 - HKLM..\Run: [HDAudDeck] C:\Program Files\VIA\VIAudioi\VDeck\VDeck.exe (VIA)
O4 - HKLM..\Run: [PWRISOVM.EXE] C:\Program Files\PowerISO\PWRISOVM.EXE (Power Software Ltd)
O4 - HKLM..\Run: [SweetIM] C:\Program Files\SweetIM\Messenger\SweetIM.exe (SweetIM Technologies Ltd.)
O4 - HKLM..\Run: [TaskTray]  File not found
O4 - HKU\S-1-5-21-3369969887-839536815-1759217782-1000..\Run: [Akamai NetSession Interface] C:\Users\Dom\AppData\Local\Akamai\netsession_win.exe (Akamai Technologies, Inc)
O4 - HKU\S-1-5-21-3369969887-839536815-1759217782-1000..\Run: [ares] C:\Program Files\Ares\Ares.exe (Ares Development Group)
O4 - HKU\S-1-5-21-3369969887-839536815-1759217782-1000..\Run: [BitTorrent] C:\Program Files\BitTorrent\BitTorrent.exe (BitTorrent, Inc.)
O4 - HKU\S-1-5-21-3369969887-839536815-1759217782-1000..\Run: [ChomikBox] C:\Program Files\ChomikBox\chomikbox.exe ( )
O4 - HKU\S-1-5-21-3369969887-839536815-1759217782-1000..\Run: [DAEMON Tools Lite] C:\Program Files\DAEMON Tools Lite\DTLite.exe (DT Soft Ltd)
O4 - HKU\S-1-5-21-3369969887-839536815-1759217782-1000..\Run: [DriverScanner] C:\Program Files\Uniblue\DriverScanner\launcher.exe (Uniblue Systems Limited)
O4 - HKU\S-1-5-21-3369969887-839536815-1759217782-1000..\Run: [ESL Wire] C:\Program Files\EslWire\wire.exe (Turtle Entertainment GmbH)
O4 - HKU\S-1-5-21-3369969887-839536815-1759217782-1000..\Run: [Gadu-Gadu 10] C:\Program Files\Gadu-Gadu 10\gg.exe (GG Network S.A.)
O4 - HKU\S-1-5-21-3369969887-839536815-1759217782-1000..\Run: [GG] C:\Users\Dom\AppData\Local\GG\Application\gghub.exe (GG Network S.A.)
O4 - HKU\S-1-5-21-3369969887-839536815-1759217782-1000..\Run: [Optimizer Pro] C:\Program Files\Optimizer Pro\OptProLauncher.exe (PC Utilities Pro)
O4 - HKU\S-1-5-21-3369969887-839536815-1759217782-1000..\Run: [Steam] D:\steam\steam.exe (Valve Corporation)
O4 - HKU\S-1-5-21-3369969887-839536815-1759217782-1000..\Run: [uTorrent] C:\Program Files\uTorrent\uTorrent.exe (BitTorrent, Inc.)
O4 - HKU\S-1-5-19..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (Microsoft Corporation)
O4 - HKU\S-1-5-20..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (Microsoft Corporation)
O4 - HKU\S-1-5-21-3369969887-839536815-1759217782-1000..\RunOnce: [036DFF850000E8987743B01CF875EF7E] C:\ProgramData\036DFF850000E8987743B01CF875EF7E\036DFF850000E8987743B01CF875EF7E.exe ()
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O7 - HKU\S-1-5-21-3369969887-839536815-1759217782-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 149
O8 - Extra context menu item: E&ksportuj do programu Microsoft Excel - C:\Program Files\Microsoft Office\Office14\EXCEL.EXE (Microsoft Corporation)
O8 - Extra context menu item: Search the Web - C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\MenuExt.html ()
O9 - Extra Button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra 'Tools' menuitem : Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O13 - gopher Prefix: missing
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_32-windows-i586.cab (Java Plug-in 1.6.0_32)
O16 - DPF: {CAFEEFAC-0016-0000-0032-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_32-windows-i586.cab (Java Plug-in 1.6.0_32)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_32-windows-i586.cab (Java Plug-in 1.6.0_32)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/pub/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.100
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{19F1BF0C-58E7-4D5F-801D-76AACF2F5A5E}: DhcpNameServer = 192.168.1.100
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O20 - AppInit_DLLs: (c:\progra~2\search~1\22509~1.39\c190e9~1\srchal~1.dll) - c:\ProgramData\SearchAlgo Manager\2.2.509.39\c190e9c7-7f62-46de-bab3-8445c845b061\srchalgomngr.dll ()
O20 - AppInit_DLLs: (c:\progra~1\sprote~1\sprote~1.dll) - c:\Program Files\SProtector\sprotector.dll ()
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\System32\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (/pagefile) -  File not found
O20 - HKU\.DEFAULT Winlogon: Shell - (Explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKU\S-1-5-18 Winlogon: Shell - (Explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKU\S-1-5-19 Winlogon: Shell - (Explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKU\S-1-5-20 Winlogon: Shell - (Explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKU\S-1-5-21-3369969887-839536815-1759217782-1000 Winlogon: Shell - (Explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O28 - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009-06-10 23:42:20 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O32 - AutoRun File - [2005-05-22 17:23:01 | 000,000,000 | ---D | M] - D:\autorun -- [ NTFS ]
O32 - AutoRun File - [2010-03-11 20:29:00 | 000,000,000 | ---D | M] - E:\Autorun -- [ CDFS ]
O32 - AutoRun File - [2009-11-14 07:15:13 | 024,319,488 | R--- | M] () - E:\autorun.dat -- [ CDFS ]
O32 - AutoRun File - [2009-11-14 04:25:10 | 000,000,154 | R--- | M] () - E:\autorun.inf -- [ CDFS ]
O33 - MountPoints2\{5714c79c-6d1f-11e0-aa3a-806e6f6e6963}\Shell - "" = AutoRun
O33 - MountPoints2\{5714c79c-6d1f-11e0-aa3a-806e6f6e6963}\Shell\AutoRun\command - "" = E:\SaboteurLauncher.exe -- [2009-11-14 07:15:15 | 001,045,776 | R--- | M] (Electronic Arts)
O33 - MountPoints2\{fe47ab6c-645c-11e1-9e78-00ff01000001}\Shell - "" = AutoRun
O33 - MountPoints2\{fe47ab6c-645c-11e1-9e78-00ff01000001}\Shell\AutoRun\command - "" = G:\Autorun.exe
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)
 
[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]
 
[2012-08-08 12:10:32 | 000,596,480 | ---- | C] (OldTimer Tools) -- C:\Users\Dom\Desktop\OTL.com
[2012-08-08 12:08:26 | 000,596,480 | ---- | C] (OldTimer Tools) -- C:\Users\Dom\Desktop\OTL.scr
[2012-08-08 12:06:11 | 000,596,480 | ---- | C] (OldTimer Tools) -- C:\Users\Dom\Desktop\OTL.exe
[2012-08-07 18:52:22 | 000,000,000 | ---D | C] -- C:\ProgramData\036DFF850000E8987743B01CF875EF7E
[2012-08-02 14:18:38 | 000,000,000 | ---D | C] -- C:\Program Files\DealBulldog Toolbar Toolbar
[2012-08-02 14:18:24 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ExtractNow
[2012-08-02 14:18:24 | 000,000,000 | ---D | C] -- C:\Program Files\ExtractNow
[2012-08-02 14:10:09 | 000,000,000 | ---D | C] -- C:\Program Files\DownloadManager
[2012-08-02 14:08:23 | 000,000,000 | ---D | C] -- C:\Program Files\SearchYa!
[2012-07-28 17:25:53 | 000,000,000 | ---D | C] -- C:\Program Files\Ask.com
[2012-07-28 17:25:43 | 000,000,000 | ---D | C] -- C:\Users\Dom\AppData\Local\APN
[2012-07-28 17:25:32 | 000,000,000 | ---D | C] -- C:\Program Files\Gadu-Gadu 10
[2012-07-27 19:09:36 | 000,000,000 | ---D | C] -- C:\Users\Dom\Documents\Moje Gry
[2012-07-27 18:43:09 | 000,000,000 | ---D | C] -- C:\ProgramData\IBUpdaterService
[2012-07-27 18:43:04 | 000,000,000 | ---D | C] -- C:\Windows\System32\searchplugins
[2012-07-27 18:43:01 | 000,000,000 | ---D | C] -- C:\ProgramData\SearchAlgo Manager
[2012-07-27 18:42:32 | 000,000,000 | ---D | C] -- C:\Program Files\Yontoo
[2012-07-27 18:42:31 | 000,000,000 | ---D | C] -- C:\ProgramData\Tarma Installer
[2012-07-16 21:15:26 | 000,000,000 | ---D | C] -- C:\Windows\rescache
[2012-07-12 01:48:54 | 002,382,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mshtml.tlb
[2012-07-12 01:48:54 | 000,176,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieui.dll
[2012-07-12 01:48:54 | 000,142,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieUnatt.exe
[2012-07-12 01:48:54 | 000,065,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jsproxy.dll
[2012-07-12 01:48:53 | 001,800,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jscript9.dll
[2012-07-12 01:48:53 | 001,427,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\inetcpl.cpl
[2012-07-12 01:48:53 | 000,231,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\url.dll
[2012-07-12 01:46:48 | 002,345,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\win32k.sys
[2012-07-11 22:01:18 | 000,219,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ncrypt.dll
[2012-07-11 22:01:17 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msxml3r.dll
[2012-07-11 22:01:16 | 000,805,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\cdosys.dll
[2012-07-11 00:50:52 | 000,000,000 | ---D | C] -- C:\Users\Dom\Documents\BFBC2
[2012-07-10 13:54:35 | 000,000,000 | ---D | C] -- C:\Program Files\batefild
[2012-03-05 22:43:11 | 002,447,264 | ---- | C] (DownVision                                                  ) -- C:\Users\Dom\AppData\Local\setup.exe
 
[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]
 
[2012-08-08 12:15:34 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2012-08-08 12:15:32 | 2817,826,816 | -HS- | M] () -- C:\hiberfil.sys
[2012-08-08 12:11:05 | 000,687,590 | ---- | M] () -- C:\Windows\System32\perfh015.dat
[2012-08-08 12:11:05 | 000,606,992 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2012-08-08 12:11:05 | 000,131,176 | ---- | M] () -- C:\Windows\System32\perfc015.dat
[2012-08-08 12:11:05 | 000,103,370 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2012-08-08 12:10:26 | 000,010,416 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2012-08-08 12:10:26 | 000,010,416 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2012-08-08 12:08:28 | 000,596,480 | ---- | M] (OldTimer Tools) -- C:\Users\Dom\Desktop\OTL.com
[2012-08-08 12:06:12 | 000,596,480 | ---- | M] (OldTimer Tools) -- C:\Users\Dom\Desktop\OTL.scr
[2012-08-08 12:03:58 | 000,000,324 | ---- | M] () -- C:\Windows\tasks\DriverScanner.job
[2012-08-08 12:03:25 | 000,000,372 | -H-- | M] () -- C:\Windows\tasks\OptimizerProUpdaterLogonTask.job
[2012-08-08 12:03:22 | 000,000,352 | -H-- | M] () -- C:\Windows\tasks\OptimizerProUpdaterRefreshTask.job
[2012-08-08 12:03:18 | 000,001,026 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2012-08-08 12:00:48 | 000,596,480 | ---- | M] (OldTimer Tools) -- C:\Users\Dom\Desktop\OTL.exe
[2012-08-08 11:30:00 | 000,001,030 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2012-08-03 16:32:56 | 000,002,286 | ---- | M] () -- C:\Users\Public\Desktop\Google Chrome.lnk
[2012-08-02 14:18:24 | 000,000,949 | ---- | M] () -- C:\Users\Dom\Desktop\ExtractNow.lnk
[2012-08-02 14:12:56 | 000,384,835 | ---- | M] () -- C:\Users\Dom\AppData\Local\speeddial.crx
[2012-07-28 17:26:57 | 000,001,610 | ---- | M] () -- C:\Users\Dom\Desktop\GG dysk.lnk
[2012-07-28 17:25:40 | 000,000,962 | ---- | M] () -- C:\Users\Public\Desktop\OpenFM.lnk
[2012-07-28 17:25:40 | 000,000,933 | ---- | M] () -- C:\Users\Public\Desktop\Gadu-Gadu 10.lnk
[2012-07-28 17:25:03 | 026,493,696 | ---- | M] () -- C:\Users\Dom\Desktop\gg10.exe
[2012-07-28 07:14:10 | 000,000,892 | ---- | M] () -- C:\Users\Public\Desktop\ESL Wire.lnk
[2012-07-27 18:42:05 | 000,001,135 | ---- | M] () -- C:\Users\Dom\Desktop\GG.lnk
[2012-07-27 18:39:56 | 039,948,312 | ---- | M] () -- C:\Users\Dom\Desktop\ggsetup.exe
[2012-07-23 12:52:05 | 002,733,770 | ---- | M] () -- C:\Users\Dom\Desktop\Syy By k[t]m.rar
[2012-07-23 12:51:28 | 002,733,766 | ---- | M] () -- C:\Users\Dom\Desktop\SSY bY k[t]m.rar
[2012-07-23 12:48:17 | 000,921,654 | ---- | M] () -- C:\Users\Dom\Desktop\de_dust20005.bmp
[2012-07-23 12:48:16 | 000,921,654 | ---- | M] () -- C:\Users\Dom\Desktop\de_dust20004.bmp
[2012-07-23 12:48:15 | 000,921,654 | ---- | M] () -- C:\Users\Dom\Desktop\de_dust20003.bmp
[2012-07-23 12:48:14 | 000,921,654 | ---- | M] () -- C:\Users\Dom\Desktop\de_dust20002.bmp
[2012-07-20 17:32:14 | 000,000,873 | ---- | M] () -- C:\Users\Public\Desktop\µTorrent.lnk
[2012-07-12 10:37:42 | 000,343,600 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
[2012-07-11 00:24:25 | 1525,846,015 | ---- | M] () -- C:\Users\Dom\Documents\rld-bbc2.iso
[2012-07-10 13:55:04 | 000,000,080 | ---- | M] () -- C:\Users\Dom\Documents\1Click.cfg
 
[color=#E56717]========== Files Created - No Company Name ==========[/color]
 
[2012-08-07 18:51:51 | 000,020,480 | ---- | C] () -- C:\Windows\Installer\{0e8e998b-6af5-ead1-fb49-58ff48b7baac}\U\800000cb.@
[2012-08-07 18:51:51 | 000,013,312 | ---- | C] () -- C:\Windows\Installer\{0e8e998b-6af5-ead1-fb49-58ff48b7baac}\U\80000000.@
[2012-08-07 18:51:50 | 000,001,712 | ---- | C] () -- C:\Windows\Installer\{0e8e998b-6af5-ead1-fb49-58ff48b7baac}\U\00000001.@
[2012-08-02 14:18:24 | 000,000,949 | ---- | C] () -- C:\Users\Dom\Desktop\ExtractNow.lnk
[2012-08-02 14:08:26 | 000,384,835 | ---- | C] () -- C:\Users\Dom\AppData\Local\speeddial.crx
[2012-07-28 17:25:40 | 000,000,962 | ---- | C] () -- C:\Users\Public\Desktop\OpenFM.lnk
[2012-07-28 17:25:40 | 000,000,933 | ---- | C] () -- C:\Users\Public\Desktop\Gadu-Gadu 10.lnk
[2012-07-28 17:25:34 | 000,000,929 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Gadu-Gadu 10.lnk
[2012-07-28 17:23:03 | 026,493,696 | ---- | C] () -- C:\Users\Dom\Desktop\gg10.exe
[2012-07-27 18:42:05 | 000,001,143 | ---- | C] () -- C:\Users\Dom\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\GG.lnk
[2012-07-27 18:42:05 | 000,001,135 | ---- | C] () -- C:\Users\Dom\Desktop\GG.lnk
[2012-07-27 18:36:12 | 039,948,312 | ---- | C] () -- C:\Users\Dom\Desktop\ggsetup.exe
[2012-07-23 12:52:04 | 002,733,770 | ---- | C] () -- C:\Users\Dom\Desktop\Syy By k[t]m.rar
[2012-07-23 12:51:27 | 002,733,766 | ---- | C] () -- C:\Users\Dom\Desktop\SSY bY k[t]m.rar
[2012-07-23 12:50:53 | 000,921,654 | ---- | C] () -- C:\Users\Dom\Desktop\de_dust20005.bmp
[2012-07-23 12:50:53 | 000,921,654 | ---- | C] () -- C:\Users\Dom\Desktop\de_dust20004.bmp
[2012-07-23 12:50:53 | 000,921,654 | ---- | C] () -- C:\Users\Dom\Desktop\de_dust20003.bmp
[2012-07-23 12:50:53 | 000,921,654 | ---- | C] () -- C:\Users\Dom\Desktop\de_dust20002.bmp
[2012-07-10 13:58:19 | 1525,846,015 | ---- | C] () -- C:\Users\Dom\Documents\rld-bbc2.iso
[2012-07-10 13:48:21 | 000,000,080 | ---- | C] () -- C:\Users\Dom\Documents\1Click.cfg
[2012-07-07 13:42:21 | 000,384,844 | ---- | C] () -- C:\Users\Dom\AppData\Local\funmoods-speeddial.crx
[2012-07-07 13:42:21 | 000,031,465 | ---- | C] () -- C:\Users\Dom\AppData\Local\funmoods.crx
[2012-02-22 23:43:27 | 000,022,328 | ---- | C] () -- C:\Users\Dom\AppData\Roaming\PnkBstrK.sys
[2012-02-22 23:43:08 | 000,000,307 | ---- | C] () -- C:\Windows\game.ini
[2012-02-03 23:26:29 | 000,278,984 | ---- | C] () -- C:\Windows\System32\drivers\atksgt.sys
[2012-02-03 23:26:28 | 000,025,416 | ---- | C] () -- C:\Windows\System32\drivers\lirsgt.sys
[2012-02-03 16:44:22 | 000,122,880 | ---- | C] () -- C:\Windows\UnGins.exe
[2012-01-11 22:54:41 | 000,001,315 | ---- | C] () -- C:\Windows\System32\.ini
[2012-01-11 12:24:21 | 000,002,048 | -HS- | C] () -- C:\Windows\Installer\{0e8e998b-6af5-ead1-fb49-58ff48b7baac}\@
[2012-01-11 12:24:21 | 000,002,048 | -HS- | C] () -- C:\Users\Dom\AppData\Local\{0e8e998b-6af5-ead1-fb49-58ff48b7baac}\@
[2011-10-31 22:22:43 | 000,007,595 | ---- | C] () -- C:\Users\Dom\AppData\Local\Resmon.ResmonCfg
[2011-08-18 21:47:12 | 000,066,872 | ---- | C] () -- C:\Windows\System32\PnkBstrA.exe
[2011-08-18 21:46:58 | 000,022,328 | ---- | C] () -- C:\Windows\System32\drivers\PnkBstrK.sys
[2011-08-18 21:45:10 | 000,103,736 | ---- | C] () -- C:\Windows\System32\PnkBstrB.exe
[2011-07-14 21:59:02 | 000,265,120 | ---- | C] () -- C:\Program Files\Common Files\WireHelpSvc.exe
[2011-06-24 00:14:21 | 000,080,896 | ---- | C] () -- C:\Windows\System32\RDVGHelper.exe
[2011-06-24 00:10:56 | 000,066,048 | ---- | C] () -- C:\Windows\System32\PrintBrmUi.exe
[2011-05-06 14:17:45 | 000,000,056 | -H-- | C] () -- C:\ProgramData\ezsidmv.dat
[2011-04-23 13:12:16 | 000,050,688 | ---- | C] () -- C:\Windows\X-Shield.exe
[2011-04-23 13:12:16 | 000,049,152 | ---- | C] () -- C:\Windows\X-ShieldCheck.exe
[2011-04-22 17:29:56 | 001,474,832 | ---- | C] () -- C:\Windows\System32\drivers\sfi.dat
[2011-04-22 17:25:42 | 000,165,376 | ---- | C] () -- C:\Windows\System32\unrar.dll
[2011-04-22 17:23:00 | 000,000,000 | ---- | C] () -- C:\Windows\nsreg.dat
[2011-04-22 16:37:33 | 000,073,728 | ---- | C] () -- C:\Windows\System32\RtNicProp32.dll
[2011-04-22 16:35:38 | 000,001,769 | ---- | C] () -- C:\Windows\Language_trs.ini
[2011-04-22 16:35:36 | 000,015,491 | ---- | C] () -- C:\Windows\Ascd_tmp.ini
 
[color=#E56717]========== LOP Check ==========[/color]
 
[2011-06-11 15:30:44 | 000,000,000 | -HSD | M] -- C:\Users\Dom\AppData\Roaming\.#
[2012-02-04 14:50:11 | 000,000,000 | ---D | M] -- C:\Users\Dom\AppData\Roaming\Babylon
[2012-08-08 12:03:40 | 000,000,000 | ---D | M] -- C:\Users\Dom\AppData\Roaming\BitTorrent
[2011-06-15 22:28:15 | 000,000,000 | ---D | M] -- C:\Users\Dom\AppData\Roaming\Complitly
[2012-08-02 13:54:11 | 000,000,000 | ---D | M] -- C:\Users\Dom\AppData\Roaming\DAEMON Tools Lite
[2012-08-05 13:07:15 | 000,000,000 | ---D | M] -- C:\Users\Dom\AppData\Roaming\DownloaderGold
[2011-12-11 23:49:25 | 000,000,000 | ---D | M] -- C:\Users\Dom\AppData\Roaming\Gadu-Gadu 10
[2012-08-08 12:03:39 | 000,000,000 | ---D | M] -- C:\Users\Dom\AppData\Roaming\GG
[2012-04-07 18:11:31 | 000,000,000 | ---D | M] -- C:\Users\Dom\AppData\Roaming\GrabIt
[2012-01-14 19:21:13 | 000,000,000 | ---D | M] -- C:\Users\Dom\AppData\Roaming\kakao2
[2012-01-14 19:21:15 | 000,000,000 | ---D | M] -- C:\Users\Dom\AppData\Roaming\kakao3
[2012-03-03 18:00:24 | 000,000,000 | ---D | M] -- C:\Users\Dom\AppData\Roaming\kakao4
[2011-08-18 21:34:58 | 000,000,000 | ---D | M] -- C:\Users\Dom\AppData\Roaming\Leadertech
[2012-07-03 10:05:36 | 000,000,000 | ---D | M] -- C:\Users\Dom\AppData\Roaming\Nitro PDF
[2012-03-05 22:47:28 | 000,000,000 | ---D | M] -- C:\Users\Dom\AppData\Roaming\OpenCandy
[2011-04-23 09:36:23 | 000,000,000 | ---D | M] -- C:\Users\Dom\AppData\Roaming\OpenFM
[2012-05-16 16:57:21 | 000,000,000 | ---D | M] -- C:\Users\Dom\AppData\Roaming\Optimizer Pro
[2012-03-08 17:40:27 | 000,000,000 | ---D | M] -- C:\Users\Dom\AppData\Roaming\Origin
[2012-02-23 00:16:45 | 000,000,000 | ---D | M] -- C:\Users\Dom\AppData\Roaming\PeaZip
[2012-03-07 08:19:24 | 000,000,000 | ---D | M] -- C:\Users\Dom\AppData\Roaming\Sports Interactive
[2011-05-05 14:45:51 | 000,000,000 | ---D | M] -- C:\Users\Dom\AppData\Roaming\SumatraPDF
[2011-04-27 20:51:08 | 000,000,000 | ---D | M] -- C:\Users\Dom\AppData\Roaming\TeamViewer
[2012-05-16 16:58:52 | 000,000,000 | ---D | M] -- C:\Users\Dom\AppData\Roaming\TP
[2012-03-10 17:32:03 | 000,000,000 | ---D | M] -- C:\Users\Dom\AppData\Roaming\TS3Client
[2012-03-02 19:27:18 | 000,000,000 | ---D | M] -- C:\Users\Dom\AppData\Roaming\Uniblue
[2012-08-08 12:03:40 | 000,000,000 | ---D | M] -- C:\Users\Dom\AppData\Roaming\uTorrent
[2012-08-08 12:03:58 | 000,000,324 | ---- | M] () -- C:\Windows\Tasks\DriverScanner.job
[2012-08-08 12:03:25 | 000,000,372 | -H-- | M] () -- C:\Windows\Tasks\OptimizerProUpdaterLogonTask.job
[2012-08-08 12:03:22 | 000,000,352 | -H-- | M] () -- C:\Windows\Tasks\OptimizerProUpdaterRefreshTask.job
[2012-07-22 15:01:53 | 000,032,604 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT
 
[color=#E56717]========== Purity Check ==========[/color]
 
 

< End of report >