About 2 days ago, I picked up what I believe to be some nasty malware preventing me from auto updating anything. While browsing a random website, avast antivirus warned me that a page contained malware, but I was unable to leave the page. I then rebooted my computer, and everything seemed to be ok for awhile, until I started to notice some strange abnormalities. The Windows Sidebar currency gadget was not updating, Avast was unable to auto-update, and then while trying to use a p2p connection, I was neither able to upload or download. I thought it might be an internet connection issue, but I am able to manually download updates and to browse the web as usual. When trying to run Windows Network diagnostics, it constantly tells me it cannot connect to microsoft.com. No redirects to other web pages or anything like that are happening. I also made sure I wasn't behind a proxy server by disabling proxy servers in Mozilla, my web browser. I frequently scan my PC, and I came up empty on malware bytes, avast, and superantispyware. I then tried to use combofix, but it freezes after making a back up each time. Root Repeal has similar results, it just freezes up and stops working altogether. To be certain, I tried to auto update several other apps, but none of them would auto update.
Here are the requested logs, I was unable to finish running GMER. The first time I ran GMER, it gave me the blue screen of death, then rebooted my PC. Everytime thereafter, It errors out during the scan of: 'hardisk volumeshadowcopy' and closes itself.
OTL logfile created on: 10/23/2010 18:07:13 - Run 1
OTL by OldTimer - Version 3.2.17.0 Folder = C:\Users\Owner\Desktop
Windows Vista Home Premium Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18975)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy
3.00 Gb Total Physical Memory | 2.00 Gb Available Physical Memory | 61.00% Memory free
7.00 Gb Paging File | 6.00 Gb Available in Paging File | 84.00% Paging File free
Paging file location(s): ?:\pagefile.sys
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 335.34 Gb Total Space | 85.40 Gb Free Space | 25.47% Space Free | Partition Type: NTFS
Drive D: | 465.76 Gb Total Space | 258.74 Gb Free Space | 55.55% Space Free | Partition Type: NTFS
Drive E: | 2.49 Gb Total Space | 0.00 Gb Free Space | 0.00% Space Free | Partition Type: UDF
Drive F: | 931.51 Gb Total Space | 657.56 Gb Free Space | 70.59% Space Free | Partition Type: NTFS
Computer Name: SUPERBAD | User Name: Owner | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days
========== Processes (SafeList) ==========
PRC - [2010/10/23 18:00:14 | 000,575,488 | ---- | M] (OldTimer Tools) -- C:\Users\Owner\Desktop\OTL.exe
PRC - [2010/10/08 01:57:32 | 000,792,168 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\Display\NvXDSync.exe
PRC - [2010/10/08 01:03:46 | 000,369,256 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
PRC - [2010/09/22 12:03:38 | 000,249,136 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
PRC - [2010/09/10 10:20:51 | 003,016,560 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\Setup\avast.setup
PRC - [2010/09/07 08:12:02 | 002,838,912 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\AvastUI.exe
PRC - [2010/09/07 08:11:59 | 000,040,384 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
PRC - [2010/08/31 23:39:18 | 001,164,584 | ---- | M] () -- C:\Program Files\DivX\DivX Update\DivXUpdate.exe
PRC - [2010/08/16 14:28:12 | 000,356,992 | ---- | M] (Privacyware/PWI, Inc.) -- C:\Program Files\Privacyware\Privatefirewall 7.0\pfsvc.exe
PRC - [2010/03/16 13:18:50 | 000,025,832 | ---- | M] (BioWare) -- d:\Steam\steamapps\common\dragon age origins\bin_ship\daupdatersvc.service.exe
PRC - [2009/07/20 11:51:52 | 000,935,208 | ---- | M] (Nero AG) -- C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe
PRC - [2009/04/10 23:27:36 | 002,926,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
PRC - [2009/03/16 13:27:34 | 000,290,816 | ---- | M] (AMD) -- C:\Windows\System32\atieclxx.exe
PRC - [2009/03/16 13:27:06 | 000,180,224 | ---- | M] (AMD) -- C:\Windows\System32\atiesrxx.exe
PRC - [2009/03/09 10:50:06 | 000,113,680 | ---- | M] () -- C:\Program Files\EVGA Precision\Bundle\OSDServer\RTSS.exe
PRC - [2009/03/09 10:50:04 | 000,248,848 | ---- | M] () -- C:\Program Files\EVGA Precision\EVGAPrecision.exe
PRC - [2008/08/21 11:16:56 | 000,267,296 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft LifeChat\LifeChat.exe
PRC - [2008/03/09 11:20:26 | 000,071,096 | ---- | M] () -- C:\Program Files\CDBurnerXP\NMSAccessU.exe
PRC - [2007/03/20 17:16:12 | 000,061,440 | ---- | M] () -- C:\Windows\System32\ASDR.exe
========== Modules (SafeList) ==========
MOD - [2010/10/23 18:00:14 | 000,575,488 | ---- | M] (OldTimer Tools) -- C:\Users\Owner\Desktop\OTL.exe
MOD - [2010/08/31 08:43:52 | 001,686,016 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6002.18305_none_5cb72f2a088b0ed3\comctl32.dll
MOD - [2009/03/03 16:24:48 | 000,049,152 | ---- | M] () -- C:\Program Files\EVGA Precision\Bundle\OSDServer\RTSSHooks.dll
========== Win32 Services (SafeList) ==========
SRV - File not found [Disabled | Stopped] -- C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe -- (NMIndexingService)
SRV - File not found [Disabled | Stopped] -- C:\Windows\System32\ati2sgag.exe -- (ATI Smart)
SRV - [2010/10/12 17:24:13 | 000,655,624 | ---- | M] (Acresso Software Inc.) [On_Demand | Stopped] -- C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe -- (FLEXnet Licensing Service)
SRV - [2010/10/08 01:03:46 | 000,369,256 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe -- (Stereo Service)
SRV - [2010/10/07 08:13:22 | 000,411,432 | ---- | M] (Valve Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\Steam\SteamService.exe -- (Steam Client Service)
SRV - [2010/09/23 00:21:24 | 001,493,352 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Live\Family Safety\fsssvc.exe -- (fsssvc)
SRV - [2010/09/22 12:03:38 | 000,249,136 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe -- (SeaPort)
SRV - [2010/09/07 08:11:59 | 000,040,384 | ---- | M] (AVAST Software) [On_Demand | Running] -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe -- (avast! Web Scanner)
SRV - [2010/09/07 08:11:59 | 000,040,384 | ---- | M] (AVAST Software) [On_Demand | Running] -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe -- (avast! Mail Scanner)
SRV - [2010/09/07 08:11:59 | 000,040,384 | ---- | M] (AVAST Software) [Auto | Running] -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe -- (avast! Antivirus)
SRV - [2010/08/16 14:28:12 | 000,356,992 | ---- | M] (Privacyware/PWI, Inc.) [Auto | Running] -- C:\Program Files\Privacyware\Privatefirewall 7.0\pfsvc.exe -- (PFNet)
SRV - [2010/03/18 13:16:28 | 000,753,504 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe -- (WPFFontCache_v0400)
SRV - [2010/03/18 13:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2010/03/16 13:18:50 | 000,025,832 | ---- | M] (BioWare) [Auto | Running] -- d:\Steam\steamapps\common\dragon age origins\bin_ship\daupdatersvc.service.exe -- (DAUpdaterSvc)
SRV - [2009/09/24 18:27:04 | 000,793,088 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\FntCache.dll -- (FontCache)
SRV - [2009/07/20 11:51:52 | 000,935,208 | ---- | M] (Nero AG) [Auto | Running] -- C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe -- (Nero BackItUp Scheduler 4.0)
SRV - [2009/03/16 13:27:06 | 000,180,224 | ---- | M] (AMD) [Auto | Running] -- C:\Windows\System32\atiesrxx.exe -- (AMD External Events Utility)
SRV - [2008/03/09 11:20:26 | 000,071,096 | ---- | M] () [Auto | Running] -- C:\Program Files\CDBurnerXP\NMSAccessU.exe -- (NMSAccessU)
SRV - [2008/01/18 23:38:26 | 000,272,952 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2007/03/20 17:16:12 | 000,061,440 | ---- | M] () [Auto | Running] -- C:\Windows\System32\ASDR.exe -- (ASDR)
========== Driver Services (SafeList) ==========
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Program Files\PeerGuardian2\pgfilter.sys -- (pgfilter)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Program Files\PeerBlock\pbfilter.sys -- (pbfilter)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Windows\System32\DRIVERS\nwlnkfwd.sys -- (NwlnkFwd)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Windows\System32\DRIVERS\nwlnkflt.sys -- (NwlnkFlt)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Windows\System32\DRIVERS\ipinip.sys -- (IpInIp)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\RTKVHDA.sys -- (IntcAzAudAddService) Service for Realtek HD Audio (WDM)
DRV - File not found [Kernel | On_Demand | Stopped] -- D:\INSTALL\GMSIPCI.SYS -- (GMSIPCI)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Users\Owner\AppData\Local\Temp\cpuz130\cpuz_x32.sys -- (cpuz130)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Users\Owner\AppData\Local\Temp\catchme.sys -- (catchme)
DRV - File not found [Kernel | Disabled | Stopped] -- C:\Windows\System32\drivers\blbdrive.sys -- (blbdrive)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ATKDispLowFilter.sys -- (atkdisplf)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\asusgsb.sys -- (asusgsb)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Users\Owner\AppData\Local\Temp\aaudstum.sys -- (aaudstum)
DRV - [2010/10/08 01:38:00 | 010,055,304 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\nvlddmkm.sys -- (nvlddmkm)
DRV - [2010/09/23 14:28:08 | 000,281,760 | ---- | M] () [Kernel | Auto | Running] -- C:\Windows\System32\drivers\atksgt.sys -- (atksgt)
DRV - [2010/09/23 00:21:24 | 000,039,272 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\fssfltr.sys -- (fssfltr)
DRV - [2010/09/22 08:35:18 | 000,436,792 | ---- | M] (Duplex Secure Ltd.) [Kernel | Disabled | Stopped] -- C:\Windows\System32\drivers\sptd.sys -- (sptd)
DRV - [2010/09/07 07:52:25 | 000,046,672 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\System32\drivers\aswTdi.sys -- (aswTdi)
DRV - [2010/09/07 07:52:03 | 000,165,584 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\System32\drivers\aswSP.sys -- (aswSP)
DRV - [2010/09/07 07:47:46 | 000,023,376 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\System32\drivers\aswRdr.sys -- (aswRdr)
DRV - [2010/09/07 07:47:30 | 000,050,768 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\Windows\System32\drivers\aswMonFlt.sys -- (aswMonFlt)
DRV - [2010/09/07 07:47:07 | 000,017,744 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\Windows\System32\drivers\aswFsBlk.sys -- (aswFsBlk)
DRV - [2010/08/10 16:10:28 | 000,112,984 | ---- | M] (Privacyware/PWI, Inc.) [Kernel | System | Running] -- C:\Windows\System32\drivers\pwipf6.sys -- (pwipf6)
DRV - [2010/07/09 13:18:54 | 000,020,328 | ---- | M] (Windows ® Win 7 DDK provider) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\cpuz134_x32.sys -- (cpuz134)
DRV - [2010/05/10 11:41:30 | 000,067,656 | ---- | M] (SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | System | Running] -- C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS -- (SASKUTIL)
DRV - [2010/04/12 01:44:34 | 000,059,388 | ---- | M] (PowerISO Computing, Inc.) [Kernel | System | Running] -- C:\Windows\System32\drivers\scdemu.sys -- (SCDEmu)
DRV - [2010/02/17 11:25:48 | 000,012,872 | ---- | M] (SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | System | Running] -- C:\Program Files\SUPERAntiSpyware\sasdifsv.sys -- (SASDIFSV)
DRV - [2010/01/14 04:07:26 | 000,025,888 | ---- | M] () [Kernel | Auto | Running] -- C:\Windows\System32\drivers\lirsgt.sys -- (lirsgt)
DRV - [2009/11/04 17:51:47 | 000,005,632 | ---- | M] () [File_System | System | Running] -- C:\Windows\System32\drivers\StarOpen.sys -- (StarOpen)
DRV - [2009/08/09 19:59:20 | 000,012,800 | ---- | M] (ASUSTeK Computer Inc.) [Kernel | System | Running] -- C:\Windows\System32\drivers\EIO.sys -- (EIO)
DRV - [2009/06/04 04:24:02 | 000,097,808 | ---- | M] (ATI Research Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\AtiHdmi.sys -- (AtiHdmiService)
DRV - [2009/04/10 21:42:54 | 000,073,216 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\USBAUDIO.sys -- (usbaudio) USB Audio Driver (WDM)
DRV - [2009/03/16 14:33:54 | 004,361,216 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\atikmdag.sys -- (atikmdag)
DRV - [2008/05/08 05:05:18 | 000,266,752 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\HSXHWBS2.sys -- (HSXHWBS2)
DRV - [2008/05/08 05:04:16 | 000,661,504 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\HSX_CNXT.sys -- (winachsf)
DRV - [2008/05/08 05:03:18 | 000,980,992 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\HSX_DP.sys -- (HSF_DP)
DRV - [2007/11/15 23:06:56 | 000,102,912 | ---- | M] (Realtek Corporation ) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\Rtlh86.sys -- (RTL8169)
DRV - [2007/10/18 07:36:54 | 000,008,704 | ---- | M] (Conexant Systems, Inc.) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\XAudio.sys -- (XAudio)
DRV - [2007/04/09 09:50:34 | 000,009,600 | ---- | M] (Waytech Development, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\UsbFltr.sys -- (UsbFltr)
DRV - [2006/11/02 02:51:45 | 000,900,712 | ---- | M] (QLogic Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\ql2300.sys -- (ql2300)
DRV - [2006/11/02 02:51:38 | 000,420,968 | ---- | M] (Adaptec, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\adp94xx.sys -- (adp94xx)
DRV - [2006/11/02 02:51:34 | 000,316,520 | ---- | M] (Emulex) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\elxstor.sys -- (elxstor)
DRV - [2006/11/02 02:51:32 | 000,297,576 | ---- | M] (Adaptec, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\adpahci.sys -- (adpahci)
DRV - [2006/11/02 02:51:25 | 000,235,112 | ---- | M] (ULi Electronics Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\uliahci.sys -- (uliahci)
DRV - [2006/11/02 02:51:25 | 000,232,040 | ---- | M] (Intel Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\iastorv.sys -- (iaStorV)
DRV - [2006/11/02 02:51:00 | 000,147,048 | ---- | M] (Adaptec, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\adpu320.sys -- (adpu320)
DRV - [2006/11/02 02:50:45 | 000,115,816 | ---- | M] (Promise Technology, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\ulsata2.sys -- (ulsata2)
DRV - [2006/11/02 02:50:41 | 000,112,232 | ---- | M] (VIA Technologies Inc.,Ltd) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\vsmraid.sys -- (vsmraid)
DRV - [2006/11/02 02:50:35 | 000,106,088 | ---- | M] (QLogic Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\ql40xx.sys -- (ql40xx)
DRV - [2006/11/02 02:50:35 | 000,098,408 | ---- | M] (Promise Technology, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\ulsata.sys -- (UlSata)
DRV - [2006/11/02 02:50:35 | 000,098,408 | ---- | M] (Adaptec, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\adpu160m.sys -- (adpu160m)
DRV - [2006/11/02 02:50:24 | 000,088,680 | ---- | M] (NVIDIA Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\nvraid.sys -- (nvraid)
DRV - [2006/11/02 02:50:19 | 000,045,160 | ---- | M] (IBM Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\nfrd960.sys -- (nfrd960)
DRV - [2006/11/02 02:50:17 | 000,041,576 | ---- | M] (Intel Corp./ICP vortex GmbH) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\iirsp.sys -- (iirsp)
DRV - [2006/11/02 02:50:16 | 000,071,784 | ---- | M] (Silicon Integrated Systems) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\sisraid4.sys -- (SiSRaid4)
DRV - [2006/11/02 02:50:13 | 000,040,040 | ---- | M] (NVIDIA Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\nvstor.sys -- (nvstor)
DRV - [2006/11/02 02:50:11 | 000,071,272 | ---- | M] (Adaptec, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\djsvs.sys -- (aic78xx)
DRV - [2006/11/02 02:50:10 | 000,067,688 | ---- | M] (Adaptec, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\arcsas.sys -- (arcsas)
DRV - [2006/11/02 02:50:10 | 000,065,640 | ---- | M] (LSI Logic) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\lsi_scsi.sys -- (LSI_SCSI)
DRV - [2006/11/02 02:50:10 | 000,038,504 | ---- | M] (Silicon Integrated Systems Corp.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\sisraid2.sys -- (SiSRaid2)
DRV - [2006/11/02 02:50:10 | 000,037,480 | ---- | M] (Hewlett-Packard Company) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\hpcisss.sys -- (HpCISSs)
DRV - [2006/11/02 02:50:09 | 000,067,688 | ---- | M] (Adaptec, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\arc.sys -- (arc)
DRV - [2006/11/02 02:50:09 | 000,035,944 | ---- | M] (Integrated Technology Express, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\iteraid.sys -- (iteraid)
DRV - [2006/11/02 02:50:07 | 000,035,944 | ---- | M] (Integrated Technology Express, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\iteatapi.sys -- (iteatapi)
DRV - [2006/11/02 02:50:05 | 000,065,640 | ---- | M] (LSI Logic) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\lsi_sas.sys -- (LSI_SAS)
DRV - [2006/11/02 02:50:05 | 000,035,944 | ---- | M] (LSI Logic) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\symc8xx.sys -- (Symc8xx)
DRV - [2006/11/02 02:50:04 | 000,065,640 | ---- | M] (LSI Logic) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\lsi_fc.sys -- (LSI_FC)
DRV - [2006/11/02 02:50:03 | 000,034,920 | ---- | M] (LSI Logic) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\sym_u3.sys -- (Sym_u3)
DRV - [2006/11/02 02:49:59 | 000,033,384 | ---- | M] (LSI Logic Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\mraid35x.sys -- (Mraid35x)
DRV - [2006/11/02 02:49:56 | 000,031,848 | ---- | M] (LSI Logic) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\sym_hi.sys -- (Sym_hi)
DRV - [2006/11/02 02:49:53 | 000,028,776 | ---- | M] (LSI Logic Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\megasas.sys -- (megasas)
DRV - [2006/11/02 02:49:30 | 000,017,512 | ---- | M] (VIA Technologies, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\viaide.sys -- (viaide)
DRV - [2006/11/02 02:49:28 | 000,016,488 | ---- | M] (CMD Technology, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\cmdide.sys -- (cmdide)
DRV - [2006/11/02 02:49:20 | 000,014,952 | ---- | M] (Acer Laboratories Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\aliide.sys -- (aliide)
DRV - [2006/11/02 01:25:24 | 000,071,808 | ---- | M] (Brother Industries Ltd.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\brserid.sys -- (Brserid) Brother MFC Serial Port Interface Driver (WDM)
DRV - [2006/11/02 01:24:47 | 000,011,904 | ---- | M] (Brother Industries Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\brusbser.sys -- (BrUsbSer)
DRV - [2006/11/02 01:24:46 | 000,005,248 | ---- | M] (Brother Industries, Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\brfiltup.sys -- (BrFiltUp)
DRV - [2006/11/02 01:24:45 | 000,013,568 | ---- | M] (Brother Industries, Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\brfiltlo.sys -- (BrFiltLo)
DRV - [2006/11/02 01:24:44 | 000,062,336 | ---- | M] (Brother Industries Ltd.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\brserwdm.sys -- (BrSerWdm)
DRV - [2006/11/02 01:24:44 | 000,012,160 | ---- | M] (Brother Industries Ltd.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\brusbmdm.sys -- (BrUsbMdm)
DRV - [2006/11/02 00:41:53 | 000,251,904 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\VSTBS23.SYS -- (VSTHWBS2)
DRV - [2006/11/02 00:41:50 | 000,987,648 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\VSTDPV3.SYS -- (VST_DPV)
DRV - [2006/11/02 00:36:50 | 000,020,608 | ---- | M] (N-trig Innovative Technologies) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\ntrigdigi.sys -- (ntrigdigi)
DRV - [2006/11/02 00:30:54 | 000,117,760 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\E1G60I32.sys -- (E1G60) Intel®
DRV - [2006/09/24 06:28:46 | 000,005,248 | ---- | M] (Windows ® 2000 DDK provider) [Kernel | Boot | Running] -- C:\Windows\system32\speedfan.sys -- (speedfan)
DRV - [2005/05/25 11:39:06 | 000,004,608 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Program Files\EVGA Precision\RTCore32.sys -- (RTCore32)
DRV - [2002/07/17 08:53:02 | 000,016,877 | ---- | M] (Adaptec) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\ASPI32.SYS -- (Aspi32)
DRV - [1996/04/03 12:33:26 | 000,005,248 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\system32\giveio.sys -- (giveio)
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = 1
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
========== FireFox ==========
FF - prefs.js..browser.search.defaultengine: "Ask.com"
FF - prefs.js..browser.search.defaultenginename: "Yahoo! Search"
FF - prefs.js..browser.search.order.1: "Ask.com"
FF - prefs.js..browser.search.selectedEngine: "Yahoo! Search"
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "http://www.google.com/"
FF - prefs.js..extensions.enabledItems: [email protected]:3.9.1.14019
FF - prefs.js..keyword.URL: "http://us.yhs.search...2-tb-web_us&p="
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.10\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2010/10/23 10:18:54 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.10\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2010/10/23 10:18:54 | 000,000,000 | ---D | M]
[2008/06/24 12:05:10 | 000,000,000 | ---D | M] -- C:\Users\Owner\AppData\Roaming\mozilla\Extensions
[2010/10/23 11:36:58 | 000,000,000 | ---D | M] -- C:\Users\Owner\AppData\Roaming\mozilla\Firefox\Profiles\duvvzztr.default\extensions
[2010/08/01 23:23:40 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Owner\AppData\Roaming\mozilla\Firefox\Profiles\duvvzztr.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2010/08/01 23:23:40 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Owner\AppData\Roaming\mozilla\Firefox\Profiles\duvvzztr.default\extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1}
[2010/10/22 22:11:16 | 000,000,000 | ---D | M] -- C:\Users\Owner\AppData\Roaming\mozilla\Firefox\Profiles\duvvzztr.default\extensions\[email protected]
[2009/08/09 20:08:52 | 000,002,233 | ---- | M] () -- C:\Users\Owner\AppData\Roaming\Mozilla\FireFox\Profiles\duvvzztr.default\searchplugins\askcom.xml
[2010/10/23 11:36:58 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions
[2010/03/17 09:58:57 | 000,000,000 | ---D | M] (Yahoo! Toolbar) -- C:\Program Files\Mozilla Firefox\extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1}
[2010/08/01 23:23:39 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}
[2010/08/08 05:31:02 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}
[2010/07/17 05:00:04 | 000,423,656 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npdeployJava1.dll
[2008/07/10 02:14:12 | 000,159,744 | ---- | M] (CNN) -- C:\Program Files\Mozilla Firefox\plugins\NPTURNMED.dll
O1 HOSTS File: ([2010/10/22 13:39:43 | 000,000,027 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {D4027C7F-154A-4066-A1AD-4243D8127440} - No CLSID value found.
O4 - HKLM..\Run: [] File not found
O4 - HKLM..\Run: [avast5] C:\Program Files\Alwil Software\Avast5\AvastUI.exe (AVAST Software)
O4 - HKLM..\Run: [DivXUpdate] C:\Program Files\DivX\DivX Update\DivXUpdate.exe ()
O4 - HKLM..\Run: [EVGAPrecision] C:\Program Files\EVGA Precision\EVGAPrecisionWrapper.exe ()
O4 - HKLM..\Run: [LifeChat] c:\Program Files\Microsoft LifeChat\LifeChat.exe (Microsoft Corporation)
O4 - HKLM..\Run: [RTSS] C:\Program Files\EVGA Precision\Bundle\OSDServer\RTSSWrapper.exe ()
O4 - HKLM..\Run: [Windows Defender] C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 68.87.69.150 68.87.85.102
O18 - Protocol\Handler\wlmailhtml {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - C:\Program Files\Windows Live\Mail\mailcomm.dll (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O24 - Desktop WallPaper: C:\Windows\Web\Wallpaper\w24.jpg
O24 - Desktop BackupWallPaper: C:\Windows\Web\Wallpaper\w24.jpg
O28 - HKLM ShellExecuteHooks: {AEB6717E-7E19-11d0-97EE-00C04FD91972} - Reg Error: Key error. File not found
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2006/09/18 14:43:36 | 000,000,024 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O32 - AutoRun File - [2006/11/02 13:00:00 | 000,000,043 | R--- | M] () - E:\autorun.inf -- [ UDF ]
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
NetSvcs: FastUserSwitchingCompatibility - File not found
NetSvcs: Ias - File not found
NetSvcs: Nla - File not found
NetSvcs: Ntmssvc - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: SRService - File not found
NetSvcs: WmdmPmSp - File not found
NetSvcs: LogonHours - File not found
NetSvcs: PCAudit - File not found
NetSvcs: helpsvc - File not found
NetSvcs: uploadmgr - File not found
Drivers32: msacm.l3acm - C:\Windows\System32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.sl_anet - C:\Windows\System32\sl_anet.acm (Sipro Lab Telecom Inc.)
Drivers32: msacm.trspch - C:\Windows\System32\tssoft32.acm (DSP GROUP, INC.)
Drivers32: MSVideo8 - C:\Windows\System32\vfwwdm32.dll (Microsoft Corporation)
Drivers32: vidc.asv2 - C:\Windows\System32\ASUSASV2.DLL ()
Drivers32: vidc.cvid - C:\Windows\System32\iccvid.dll (Radius Inc.)
Drivers32: vidc.DIVX - C:\Windows\System32\DivX.dll (DivX, Inc.)
Drivers32: vidc.i420 - C:\Windows\System32\i420vfw.dll (www.helixcommunity.org)
Drivers32: vidc.iv31 - C:\Windows\System32\ir32_32.dll (Intel® Corporation)
Drivers32: vidc.iv32 - C:\Windows\System32\ir32_32.dll (Intel® Corporation)
Drivers32: vidc.iv41 - C:\Windows\System32\ir41_32.ax (Intel Corporation)
Drivers32: vidc.iv50 - C:\Windows\System32\ir50_32.dll (Intel Corporation)
Drivers32: vidc.VP60 - C:\Windows\System32\vp6vfw.dll (On2.com)
Drivers32: vidc.VP61 - C:\Windows\System32\vp6vfw.dll (On2.com)
Drivers32: vidc.VSPX - C:\Windows\System32\vspxvfw.dll ()
Drivers32: vidc.XVID - xvidvfw.dll File not found
Drivers32: vidc.yv12 - C:\Windows\System32\DivX.dll (DivX, Inc.)
CREATERESTOREPOINT
Restore point Set: OTL Restore Point
========== Files/Folders - Created Within 30 Days ==========
[2010/10/23 18:00:14 | 000,575,488 | ---- | C] (OldTimer Tools) -- C:\Users\Owner\Desktop\OTL.exe
[2010/10/23 17:52:52 | 000,000,000 | ---D | C] -- C:\Users\Owner\Desktop\new logs
[2010/10/23 17:49:47 | 000,000,000 | ---D | C] -- C:\Program Files\ERUNT
[2010/10/23 10:43:03 | 000,000,000 | --SD | C] -- C:\ComboFix
[2010/10/23 10:42:45 | 000,212,480 | ---- | C] (SteelWerX) -- C:\Windows\SWXCACLS.exe
[2010/10/23 10:07:12 | 000,000,000 | --SD | C] -- C:\ComboFix(0)
[2010/10/23 09:30:02 | 000,000,000 | ---D | C] -- C:\ISeeYouXP
[2010/10/22 15:05:51 | 000,000,000 | ---D | C] -- C:\Users\Owner\AppData\Roaming\BitTorrent
[2010/10/22 14:03:34 | 000,000,000 | ---D | C] -- C:\Users\Owner\Desktop\logs
[2010/10/22 13:29:48 | 000,057,960 | ---- | C] (Khronos Group) -- C:\Windows\System32\OpenCL.dll
[2010/10/22 10:55:09 | 000,161,792 | ---- | C] (SteelWerX) -- C:\Windows\SWREG.exe
[2010/10/22 10:55:09 | 000,136,704 | ---- | C] (SteelWerX) -- C:\Windows\SWSC.exe
[2010/10/22 10:55:09 | 000,031,232 | ---- | C] (NirSoft) -- C:\Windows\NIRCMD.exe
[2010/10/22 10:53:07 | 000,000,000 | ---D | C] -- C:\Qoobox
[2010/10/22 10:41:52 | 000,289,144 | ---- | C] (S!Ri) -- C:\Windows\System32\VCCLSID.exe
[2010/10/22 10:41:52 | 000,288,417 | ---- | C] (S!Ri) -- C:\Windows\System32\SrchSTS.exe
[2010/10/22 10:41:52 | 000,087,552 | ---- | C] (S!Ri.URZ) -- C:\Windows\System32\VACFix.exe
[2010/10/22 10:41:52 | 000,082,944 | ---- | C] (S!Ri.URZ) -- C:\Windows\System32\IEDFix.exe
[2010/10/22 10:41:52 | 000,082,944 | ---- | C] (S!Ri.URZ) -- C:\Windows\System32\IEDFix.C.exe
[2010/10/22 10:41:52 | 000,082,432 | ---- | C] (S!Ri.URZ) -- C:\Windows\System32\404Fix.exe
[2010/10/22 10:41:52 | 000,080,384 | ---- | C] (S!Ri.URZ) -- C:\Windows\System32\o4Patch.exe
[2010/10/22 10:41:52 | 000,078,336 | ---- | C] (S!Ri.URZ) -- C:\Windows\System32\Agent.OMZ.Fix.exe
[2010/10/22 10:41:52 | 000,053,248 | ---- | C] (http://www.beyondlogic.org) -- C:\Windows\System32\Process.exe
[2010/10/22 10:17:01 | 000,000,000 | ---D | C] -- C:\Games
[2010/10/21 21:50:14 | 000,000,000 | ---D | C] -- C:\Program Files\Trend Micro
[2010/10/21 17:30:32 | 000,000,000 | ---D | C] -- C:\Users\Owner\Documents\ARC SYSTEM WORKS
[2010/10/21 17:29:03 | 000,000,000 | ---D | C] -- C:\Users\Owner\Documents\SETTEC
[2010/10/21 17:29:03 | 000,000,000 | ---D | C] -- C:\ProgramData\ASign
[2010/10/21 13:12:32 | 000,000,000 | ---D | C] -- C:\Program Files\Zone Labs
[2010/10/21 13:12:22 | 000,000,000 | ---D | C] -- C:\Windows\Internet Logs
[2010/10/21 13:12:22 | 000,000,000 | ---D | C] -- C:\ProgramData\CheckPoint
[2010/10/21 12:29:58 | 000,282,928 | ---- | C] (My Privacy Tools, Inc.) -- C:\Windows\System32\HMIPCore.dll
[2010/10/21 12:23:47 | 000,000,000 | ---D | C] -- C:\Users\Owner\AppData\Roaming\I2P
[2010/10/21 12:22:43 | 000,000,000 | ---D | C] -- C:\Program Files\i2p
[2010/10/21 08:33:16 | 000,000,000 | ---D | C] -- C:\Users\Owner\AppData\Local\Google
[2010/10/20 21:57:06 | 000,000,000 | ---D | C] -- C:\Windows\en
[2010/10/20 21:49:35 | 000,000,000 | ---D | C] -- C:\Users\Owner\AppData\Local\Windows Live
[2010/10/20 11:01:39 | 009,040,312 | ---- | C] (Vuze Inc.) -- C:\Users\Owner\Desktop\Vuze_4510a_windows.exe
[2010/10/19 19:06:18 | 000,000,000 | ---D | C] -- C:\Program Files\PeerGuardian2
[2010/10/19 06:03:51 | 000,000,000 | ---D | C] -- C:\Users\Owner\Documents\ArcaniA - Gothic 4
[2010/10/14 01:15:20 | 000,000,000 | ---D | C] -- C:\Users\Owner\AppData\Roaming\BlackBean
[2010/10/14 01:09:22 | 000,000,000 | ---D | C] -- C:\Program Files\BlackBeanGames
[2010/10/13 10:38:46 | 000,000,000 | ---D | C] -- C:\Program Files\Rosetta Stone
[2010/10/13 10:31:32 | 000,000,000 | ---D | C] -- C:\Users\Owner\AppData\Local\Privatefirewall
[2010/10/13 10:09:07 | 000,112,984 | ---- | C] (Privacyware/PWI, Inc.) -- C:\Windows\System32\drivers\pwipf6.sys
[2010/10/13 10:09:03 | 000,000,000 | ---D | C] -- C:\ProgramData\Privacyware
[2010/10/13 10:09:03 | 000,000,000 | ---D | C] -- C:\Program Files\Privacyware
[2010/10/13 09:46:07 | 000,000,000 | ---D | C] -- C:\Users\Owner\AppData\Local\Nero_AG
[2010/10/12 18:38:10 | 000,000,000 | ---D | C] -- C:\Program Files\Ask.com
[2010/10/12 18:28:06 | 000,000,000 | ---D | C] -- C:\Users\Owner\AppData\Local\PackageAware
[2010/10/12 17:24:29 | 000,000,000 | ---D | C] -- C:\ProgramData\FLEXnet
[2010/10/12 17:24:13 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Macrovision Shared
[2010/10/12 17:23:59 | 000,000,000 | ---D | C] -- C:\ProgramData\Rosetta Stone
[2010/10/12 14:05:45 | 000,000,000 | ---D | C] -- C:\ProgramData\WindowsSearch
[2010/10/12 11:59:09 | 000,000,000 | ---D | C] -- C:\Program Files\Sid Meier's Civilization V
[2010/10/12 11:35:58 | 000,000,000 | ---D | C] -- C:\Users\Owner\AppData\Local\Stardock
[2010/10/12 11:02:19 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\Stardock
[2010/10/12 11:02:18 | 000,042,672 | ---- | C] (Stardock.Net, Inc) -- C:\Windows\System32\wbsys.dll
[2010/10/12 11:02:18 | 000,000,000 | ---D | C] -- C:\Program Files\Stardock
[2010/10/12 09:55:37 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft WSE
[2010/10/12 09:35:52 | 000,000,000 | ---D | C] -- C:\Program Files\Unlocker
[2010/10/11 00:39:51 | 000,000,000 | ---D | C] -- C:\Users\Owner\Documents\Madden NFL 08
[2010/10/10 00:51:42 | 000,000,000 | ---D | C] -- C:\Users\Owner\AppData\Local\Deep Silver
[2010/10/09 10:22:49 | 000,000,000 | ---D | C] -- C:\Users\Owner\AppData\Roaming\2K Sports
[2010/10/09 02:00:42 | 000,000,000 | ---D | C] -- C:\ProgramData\SEGA Corporation
[2010/10/09 01:56:34 | 000,000,000 | ---D | C] -- C:\Users\Owner\Documents\Alpha Protocol
[2010/10/09 01:39:01 | 000,000,000 | ---D | C] -- C:\Windows\C5C1C0F0D62F4DBF81D4D7EF397C228B.TMP
[2010/10/09 01:10:21 | 000,000,000 | ---D | C] -- C:\Users\Owner\Desktop\new games
[2010/10/09 00:39:55 | 000,000,000 | ---D | C] -- C:\Users\Owner\AppData\Local\SKIDROW
[2010/10/09 00:39:03 | 000,000,000 | ---D | C] -- C:\Users\Owner\Documents\Front Mission Evolved
[2010/10/08 11:37:47 | 000,000,000 | ---D | C] -- C:\Users\Owner\AppData\Roaming\Microsoft Games
[2010/10/08 10:48:22 | 000,000,000 | ---D | C] -- C:\Users\Owner\Documents\My Downloads
[2010/10/07 23:55:40 | 000,000,000 | ---D | C] -- C:\Users\Owner\Documents\BFBC2
[2010/10/07 22:52:29 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Adobe
[2010/10/07 22:17:55 | 000,000,000 | ---D | C] -- C:\Users\Owner\AppData\Roaming\Casual Mechanics
[2010/10/07 22:14:12 | 000,000,000 | ---D | C] -- C:\Program Files\Games
[2010/10/07 22:04:58 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\iwin
[2010/10/07 22:04:36 | 000,000,000 | ---D | C] -- C:\Windows\Jojos Fashion Show World Tour
[2010/10/07 22:04:36 | 000,000,000 | ---D | C] -- C:\Program Files\Jojos Fashion Show World Tour
[2010/10/05 05:16:31 | 000,000,000 | ---D | C] -- C:\ProgramData\SpinTop Games
[2010/10/04 19:47:18 | 000,000,000 | ---D | C] -- C:\Windows\Zuma's Revenge!
[2010/10/04 19:47:18 | 000,000,000 | ---D | C] -- C:\Program Files\Zuma's Revenge!
[2010/10/04 19:41:06 | 000,000,000 | ---D | C] -- C:\Users\Owner\AppData\Local\id Software
[2010/10/03 19:53:11 | 000,000,000 | ---D | C] -- C:\Windows\DEA314C409294250BC9298E4C105F28D.TMP
[2010/10/03 19:35:55 | 000,000,000 | ---D | C] -- C:\Program Files\Activision
[2010/10/03 17:55:10 | 000,000,000 | ---D | C] -- C:\Program Files\Darksiders
[2010/10/02 23:15:44 | 000,000,000 | ---D | C] -- C:\Users\Owner\AppData\Roaming\AVS4YOU
[2010/10/02 23:14:42 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\AVSMedia
[2010/10/02 23:14:39 | 000,000,000 | ---D | C] -- C:\ProgramData\AVS4YOU
[2010/10/02 23:14:39 | 000,000,000 | ---D | C] -- C:\Program Files\AVS4YOU
[2010/10/02 14:51:50 | 000,000,000 | ---D | C] -- C:\Windows\Broadband Download Monitor
[2010/10/02 02:29:53 | 000,000,000 | ---D | C] -- C:\Users\Owner\AppData\Local\storage
[2010/09/28 22:48:48 | 000,000,000 | ---D | C] -- C:\Users\Owner\Documents\Singularity
[2010/09/28 22:46:47 | 000,000,000 | ---D | C] -- C:\Windows\E10DB5DAE57640EAA7FC1CB2A7B283A6.TMP
[2010/09/25 23:06:33 | 000,000,000 | ---D | C] -- C:\Program Files\PowerISO
[2 C:\Windows\System32\*.tmp files -> C:\Windows\System32\*.tmp -> ]
[10 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
========== Files - Modified Within 30 Days ==========
[2010/10/23 18:00:14 | 000,575,488 | ---- | M] (OldTimer Tools) -- C:\Users\Owner\Desktop\OTL.exe
[2010/10/23 17:54:17 | 000,002,528 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2010/10/23 17:54:17 | 000,002,528 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2010/10/23 17:54:10 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2010/10/23 17:54:05 | 354,113,925 | ---- | M] () -- C:\Windows\MEMORY.DMP
[2010/10/23 17:49:47 | 000,000,777 | ---- | M] () -- C:\Users\Owner\Desktop\NTREGOPT.lnk
[2010/10/23 17:49:47 | 000,000,758 | ---- | M] () -- C:\Users\Owner\Desktop\ERUNT.lnk
[2010/10/23 17:43:09 | 000,002,523 | ---- | M] () -- C:\Users\Owner\Desktop\HiJackThis.lnk
[2010/10/23 17:05:28 | 000,000,418 | -H-- | M] () -- C:\Windows\tasks\User_Feed_Synchronization-{A11D6238-2993-4382-9CD1-91CA0D79CA60}.job
[2010/10/23 11:50:37 | 031,180,072 | ---- | M] () -- C:\Users\Owner\Desktop\vpsupd.exe
[2010/10/23 08:01:26 | 000,000,015 | ---- | M] () -- C:\Users\Owner\Desktop\settings.dat
[2010/10/22 23:05:24 | 000,048,640 | ---- | M] () -- C:\Users\Owner\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010/10/22 22:13:44 | 003,884,020 | R--- | M] () -- C:\Users\Owner\Desktop\ComboFix.exe
[2010/10/22 15:50:31 | 000,000,146 | ---- | M] () -- C:\Users\Owner\Desktop\fixme.reg
[2010/10/22 15:35:07 | 000,001,905 | ---- | M] () -- C:\Windows\diagwrn.xml
[2010/10/22 15:35:07 | 000,001,905 | ---- | M] () -- C:\Windows\diagerr.xml
[2010/10/22 15:06:09 | 000,000,840 | ---- | M] () -- C:\Users\Owner\Application Data\Microsoft\Internet Explorer\Quick Launch\BitTorrent.lnk
[2010/10/22 15:06:09 | 000,000,816 | ---- | M] () -- C:\Users\Public\Desktop\BitTorrent.lnk
[2010/10/22 13:39:46 | 000,000,691 | ---- | M] () -- C:\Users\Owner\AppData\Roaming\GetValue.vbs
[2010/10/22 13:39:46 | 000,000,035 | ---- | M] () -- C:\Users\Owner\AppData\Roaming\SetValue.bat
[2010/10/22 13:39:45 | 000,002,620 | ---- | M] () -- C:\Windows\System32\tmp.reg
[2010/10/22 13:39:43 | 000,000,027 | ---- | M] () -- C:\Windows\System32\drivers\etc\hosts
[2010/10/22 13:28:16 | 000,002,032 | ---- | M] () -- C:\Users\Owner\AppData\Local\d3d9caps.dat
[2010/10/22 12:42:18 | 000,472,064 | ---- | M] ( ) -- C:\Users\Owner\Desktop\RootRepeal.exe
[2010/10/21 22:37:45 | 002,400,464 | ---- | M] () -- C:\Users\Owner\Desktop\MGtools.exe
[2010/10/21 22:37:36 | 000,464,491 | ---- | M] () -- C:\Users\Owner\Desktop\RootRepeal.zip
[2010/10/21 22:14:53 | 001,211,285 | ---- | M] () -- C:\Users\Owner\Desktop\tdsskiller.zip
[2010/10/21 13:55:33 | 000,000,239 | ---- | M] () -- C:\Users\Owner\AppData\Roaming\default.rss
[2010/10/21 12:33:55 | 000,379,880 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
[2010/10/20 11:01:39 | 009,040,312 | ---- | M] (Vuze Inc.) -- C:\Users\Owner\Desktop\Vuze_4510a_windows.exe
[2010/10/19 16:00:08 | 000,294,912 | ---- | M] () -- C:\Users\Owner\Desktop\gmer.exe
[2010/10/18 20:17:15 | 000,000,452 | ---- | M] () -- C:\Users\Owner\Desktop\Completed downloads - Shortcut.lnk
[2010/10/17 23:53:34 | 000,645,572 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2010/10/17 23:53:34 | 000,120,702 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2010/10/17 13:02:49 | 000,000,174 | ---- | M] () -- C:\Windows\thug.ini
[2010/10/13 10:09:04 | 000,000,146 | ---- | M] () -- C:\Windows\ODBC.INI
[2010/10/12 18:38:17 | 000,001,718 | ---- | M] () -- C:\Users\Owner\Application Data\Microsoft\Internet Explorer\Quick Launch\ImgBurn.lnk
[2010/10/12 18:38:17 | 000,001,694 | ---- | M] () -- C:\Users\Owner\Desktop\ImgBurn.lnk
[2010/10/12 11:07:39 | 000,000,000 | ---- | M] () -- C:\Windows\WB.ini
[2010/10/09 02:00:20 | 000,000,660 | ---- | M] () -- C:\Users\Owner\Desktop\Alpha Protocol.lnk
[2010/10/08 12:53:16 | 000,001,086 | ---- | M] () -- C:\Users\Owner\Desktop\AVS Audio Converter6.lnk
[2010/10/08 10:38:24 | 000,000,120 | ---- | M] () -- C:\Windows\disney.ini
[2010/10/08 01:38:00 | 000,057,960 | ---- | M] (Khronos Group) -- C:\Windows\System32\OpenCL.dll
[2010/10/08 01:38:00 | 000,004,577 | ---- | M] () -- C:\Windows\System32\nvinfo.pb
[2010/10/07 23:55:57 | 000,139,128 | ---- | M] () -- C:\Windows\System32\drivers\PnkBstrK.sys
[2010/10/07 23:55:48 | 000,215,128 | ---- | M] () -- C:\Windows\System32\PnkBstrB.xtr
[2010/10/07 23:51:12 | 000,138,056 | ---- | M] () -- C:\Users\Owner\AppData\Roaming\PnkBstrK.sys
[2010/10/07 23:50:32 | 002,434,856 | ---- | M] () -- C:\Windows\System32\pbsvc_bc2.exe
[2010/10/04 19:26:11 | 000,794,408 | ---- | M] () -- C:\Windows\System32\pbsvc.exe
[2010/10/02 23:23:00 | 000,001,074 | ---- | M] () -- C:\Users\Owner\Desktop\AVS Video Converter.lnk
[2010/10/02 16:05:07 | 000,000,997 | ---- | M] () -- C:\Users\Owner\Desktop\AssassinsCreedII-MCE.lnk
[2010/10/02 14:14:39 | 000,000,434 | ---- | M] () -- C:\Users\Owner\Desktop\BURN TO DISC (D) - Shortcut.lnk
[2010/09/28 04:03:46 | 000,000,848 | ---- | M] () -- C:\Users\Owner\Desktop\CCleaner.lnk
[2010/09/25 23:06:34 | 000,000,848 | ---- | M] () -- C:\Users\Owner\Desktop\PowerISO.lnk
[2 C:\Windows\System32\*.tmp files -> C:\Windows\System32\*.tmp -> ]
[10 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
========== Files Created - No Company Name ==========
[2010/10/23 17:54:05 | 354,113,925 | ---- | C] () -- C:\Windows\MEMORY.DMP
[2010/10/23 17:49:47 | 000,000,777 | ---- | C] () -- C:\Users\Owner\Desktop\NTREGOPT.lnk
[2010/10/23 17:49:47 | 000,000,758 | ---- | C] () -- C:\Users\Owner\Desktop\ERUNT.lnk
[2010/10/23 11:50:29 | 031,180,072 | ---- | C] () -- C:\Users\Owner\Desktop\vpsupd.exe
[2010/10/22 22:24:28 | 000,000,015 | ---- | C] () -- C:\Users\Owner\Desktop\settings.dat
[2010/10/22 22:13:44 | 003,884,020 | R--- | C] () -- C:\Users\Owner\Desktop\ComboFix.exe
[2010/10/22 15:50:31 | 000,000,146 | ---- | C] () -- C:\Users\Owner\Desktop\fixme.reg
[2010/10/22 15:06:09 | 000,000,816 | ---- | C] () -- C:\Users\Public\Desktop\BitTorrent.lnk
[2010/10/22 10:55:10 | 000,077,312 | ---- | C] () -- C:\Windows\MBR.exe
[2010/10/22 10:55:09 | 000,256,512 | ---- | C] () -- C:\Windows\PEV.exe
[2010/10/22 10:55:09 | 000,098,816 | ---- | C] () -- C:\Windows\sed.exe
[2010/10/22 10:55:09 | 000,080,412 | ---- | C] () -- C:\Windows\grep.exe
[2010/10/22 10:55:09 | 000,068,096 | ---- | C] () -- C:\Windows\zip.exe
[2010/10/22 10:44:54 | 000,000,691 | ---- | C] () -- C:\Users\Owner\AppData\Roaming\GetValue.vbs
[2010/10/22 10:44:54 | 000,000,035 | ---- | C] () -- C:\Users\Owner\AppData\Roaming\SetValue.bat
[2010/10/22 10:42:23 | 000,002,620 | ---- | C] () -- C:\Windows\System32\tmp.reg
[2010/10/22 10:41:52 | 000,075,776 | ---- | C] () -- C:\Windows\System32\WS2Fix.exe
[2010/10/22 10:41:52 | 000,051,200 | ---- | C] () -- C:\Windows\System32\dumphive.exe
[2010/10/22 10:41:52 | 000,040,960 | ---- | C] () -- C:\Windows\System32\swsc.exe
[2010/10/21 22:37:42 | 002,400,464 | ---- | C] () -- C:\Users\Owner\Desktop\MGtools.exe
[2010/10/21 22:37:03 | 000,464,491 | ---- | C] () -- C:\Users\Owner\Desktop\RootRepeal.zip
[2010/10/21 22:14:42 | 001,211,285 | ---- | C] () -- C:\Users\Owner\Desktop\tdsskiller.zip
[2010/10/21 21:50:14 | 000,002,523 | ---- | C] () -- C:\Users\Owner\Desktop\HiJackThis.lnk
[2010/10/21 21:19:45 | 000,000,840 | ---- | C] () -- C:\Users\Owner\Application Data\Microsoft\Internet Explorer\Quick Launch\BitTorrent.lnk
[2010/10/19 16:00:08 | 000,294,912 | ---- | C] () -- C:\Users\Owner\Desktop\gmer.exe
[2010/10/18 20:17:17 | 000,000,452 | ---- | C] () -- C:\Users\Owner\Desktop\Completed downloads - Shortcut.lnk
[2010/10/17 13:02:38 | 000,000,174 | ---- | C] () -- C:\Windows\thug.ini
[2010/10/13 10:09:04 | 000,000,146 | ---- | C] () -- C:\Windows\ODBC.INI
[2010/10/12 11:07:39 | 000,000,000 | ---- | C] () -- C:\Windows\WB.ini
[2010/10/09 02:00:22 | 000,000,660 | ---- | C] () -- C:\Users\Owner\Desktop\Alpha Protocol.lnk
[2010/10/08 12:53:16 | 000,001,086 | ---- | C] () -- C:\Users\Owner\Desktop\AVS Audio Converter6.lnk
[2010/10/07 23:55:48 | 000,215,128 | ---- | C] () -- C:\Windows\System32\PnkBstrB.xtr
[2010/10/07 23:50:32 | 002,434,856 | ---- | C] () -- C:\Windows\System32\pbsvc_bc2.exe
[2010/10/02 23:14:57 | 000,001,074 | ---- | C] () -- C:\Users\Owner\Desktop\AVS Video Converter.lnk
[2010/10/02 16:05:07 | 000,000,997 | ---- | C] () -- C:\Users\Owner\Desktop\AssassinsCreedII-MCE.lnk
[2010/10/02 14:14:42 | 000,000,434 | ---- | C] () -- C:\Users\Owner\Desktop\BURN TO DISC (D) - Shortcut.lnk
[2010/09/25 23:06:34 | 000,000,848 | ---- | C] () -- C:\Users\Owner\Desktop\PowerISO.lnk
[2010/09/16 09:14:05 | 000,000,000 | ---- | C] () -- C:\Users\Owner\AppData\Roaming\downloads.m3u
[2010/09/02 02:05:49 | 000,000,239 | ---- | C] () -- C:\Users\Owner\AppData\Roaming\default.rss
[2010/07/16 19:38:10 | 000,043,520 | ---- | C] () -- C:\Windows\System32\CmdLineExt03.dll
[2010/05/18 10:36:48 | 000,000,120 | ---- | C] () -- C:\Windows\disney.ini
[2010/05/07 02:30:16 | 000,000,023 | ---- | C] () -- C:\Windows\BlendSettings.ini
[2010/04/02 17:17:34 | 000,179,091 | ---- | C] () -- C:\Windows\System32\xlive.dll.cat
[2009/11/04 18:05:27 | 000,000,000 | ---- | C] () -- C:\ProgramData\LauncherAccess.dt
[2009/11/04 08:14:10 | 000,005,632 | ---- | C] () -- C:\Windows\System32\drivers\StarOpen.sys
[2009/09/16 01:38:51 | 000,000,262 | ---- | C] () -- C:\Windows\{789289CA-F73A-4A16-A331-54D498CE069F}_WiseFW.ini
[2009/08/12 21:04:41 | 000,117,248 | ---- | C] () -- C:\Windows\System32\EhStorAuthn.dll
[2009/08/03 16:07:42 | 000,403,816 | ---- | C] () -- C:\Windows\System32\OGACheckControl.dll
[2009/07/23 20:51:11 | 000,000,552 | ---- | C] () -- C:\Users\Owner\AppData\Local\d3d8caps.dat
[2009/06/09 09:55:58 | 000,057,904 | ---- | C] () -- C:\Windows\System32\wbload.dll
[2009/05/15 11:32:36 | 000,139,128 | ---- | C] () -- C:\Windows\System32\drivers\PnkBstrK.sys
[2009/05/03 02:52:45 | 000,159,744 | ---- | C] () -- C:\Windows\System32\atitmmxx.dll
[2009/04/28 11:17:19 | 000,027,648 | ---- | C] () -- C:\Windows\System32\AVSredirect.dll
[2009/03/27 07:58:40 | 000,138,056 | ---- | C] () -- C:\Users\Owner\AppData\Roaming\PnkBstrK.sys
[2009/03/19 20:36:20 | 000,000,000 | ---- | C] () -- C:\Windows\CastleMalloy.INI
[2008/10/28 14:56:45 | 000,281,760 | ---- | C] () -- C:\Windows\System32\drivers\atksgt.sys
[2008/10/28 14:56:45 | 000,025,888 | ---- | C] () -- C:\Windows\System32\drivers\lirsgt.sys
[2008/10/07 09:13:22 | 000,058,648 | ---- | C] () -- C:\Windows\System32\AgCPanelTraditionalChinese.dll
[2008/10/07 09:13:20 | 000,058,648 | ---- | C] () -- C:\Windows\System32\AgCPanelSwedish.dll
[2008/10/07 09:13:20 | 000,058,648 | ---- | C] () -- C:\Windows\System32\AgCPanelSpanish.dll
[2008/10/07 09:13:20 | 000,058,648 | ---- | C] () -- C:\Windows\System32\AgCPanelSimplifiedChinese.dll
[2008/10/07 09:13:20 | 000,058,648 | ---- | C] () -- C:\Windows\System32\AgCPanelPortugese.dll
[2008/10/07 09:13:20 | 000,058,648 | ---- | C] () -- C:\Windows\System32\AgCPanelKorean.dll
[2008/10/07 09:13:20 | 000,058,648 | ---- | C] () -- C:\Windows\System32\AgCPanelJapanese.dll
[2008/10/07 09:13:20 | 000,058,648 | ---- | C] () -- C:\Windows\System32\AgCPanelGerman.dll
[2008/10/07 09:13:20 | 000,058,648 | ---- | C] () -- C:\Windows\System32\AgCPanelFrench.dll
[2008/08/30 03:30:39 | 000,000,069 | ---- | C] () -- C:\Windows\NeroDigital.ini
[2008/07/08 02:30:03 | 000,000,093 | ---- | C] () -- C:\Users\Owner\AppData\Local\fusioncache.dat
[2008/07/03 19:10:34 | 000,048,640 | ---- | C] () -- C:\Users\Owner\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2008/06/22 23:19:22 | 000,217,088 | ---- | C] () -- C:\Windows\NVGfxOgl.dll
[2008/06/20 00:46:10 | 000,002,032 | ---- | C] () -- C:\Users\Owner\AppData\Local\d3d9caps.dat
[2008/06/15 07:06:37 | 000,004,161 | ---- | C] () -- C:\Windows\ODBCINST.INI
[2008/06/10 17:07:20 | 003,596,288 | ---- | C] () -- C:\Windows\System32\qt-dx331.dll
[2008/03/05 18:38:08 | 001,457,024 | ---- | C] () -- C:\Windows\System32\SSCProt.dll
[2006/11/02 05:35:32 | 000,005,632 | ---- | C] () -- C:\Windows\System32\sysprepMCE.dll
[2006/11/02 01:38:09 | 000,002,048 | ---- | C] () -- C:\Windows\System32\syscvchk.dll
[2006/11/02 00:40:29 | 000,013,750 | ---- | C] () -- C:\Windows\System32\pacerprf.ini
[2005/10/20 15:58:52 | 000,090,112 | ---- | C] () -- C:\Windows\System32\vspxvfw.dll
[2005/09/01 07:20:46 | 000,524,288 | ---- | C] () -- C:\Windows\System32\vspxcore.dll
[2004/10/11 11:19:00 | 000,092,672 | ---- | C] () -- C:\Windows\System32\ASUSASV2.DLL
[1996/04/03 12:33:26 | 000,005,248 | ---- | C] () -- C:\Windows\System32\giveio.sys
========== LOP Check ==========
[2010/10/09 10:22:49 | 000,000,000 | ---D | M] -- C:\Users\Owner\AppData\Roaming\2K Sports
[2009/05/17 16:16:25 | 000,000,000 | ---D | M] -- C:\Users\Owner\AppData\Roaming\Acreon
[2008/12/04 01:11:24 | 000,000,000 | -H-D | M] -- C:\Users\Owner\AppData\Roaming\ACV
[2009/06/14 18:08:20 | 000,000,000 | ---D | M] -- C:\Users\Owner\AppData\Roaming\Amazon
[2010/09/22 09:33:47 | 000,000,000 | ---D | M] -- C:\Users\Owner\AppData\Roaming\Astroburn Lite
[2010/01/14 04:09:43 | 000,000,000 | ---D | M] -- C:\Users\Owner\AppData\Roaming\Atari
[2010/07/19 01:43:21 | 000,000,000 | ---D | M] -- C:\Users\Owner\AppData\Roaming\Bioshock2
[2010/10/22 15:22:54 | 000,000,000 | ---D | M] -- C:\Users\Owner\AppData\Roaming\BitTorrent
[2010/10/14 01:15:20 | 000,000,000 | ---D | M] -- C:\Users\Owner\AppData\Roaming\BlackBean
[2010/10/07 22:17:55 | 000,000,000 | ---D | M] -- C:\Users\Owner\AppData\Roaming\Casual Mechanics
[2008/06/20 00:33:10 | 000,000,000 | ---D | M] -- C:\Users\Owner\AppData\Roaming\CDBurnerXP_Soft
[2008/09/08 18:20:36 | 000,000,000 | ---D | M] -- C:\Users\Owner\AppData\Roaming\Codemasters
[2009/05/02 20:29:40 | 000,000,000 | ---D | M] -- C:\Users\Owner\AppData\Roaming\DAEMON Tools
[2010/06/09 22:21:09 | 000,000,000 | ---D | M] -- C:\Users\Owner\AppData\Roaming\DAEMON Tools Lite
[2010/06/09 21:54:20 | 000,000,000 | ---D | M] -- C:\Users\Owner\AppData\Roaming\DAEMON Tools Pro
[2009/05/01 12:58:29 | 000,000,000 | ---D | M] -- C:\Users\Owner\AppData\Roaming\Electronic Arts
[2009/05/11 23:47:14 | 000,000,000 | ---D | M] -- C:\Users\Owner\AppData\Roaming\FOG Downloader
[2009/05/02 19:03:26 | 000,000,000 | ---D | M] -- C:\Users\Owner\AppData\Roaming\Folding@home-gpu
[2009/07/06 20:19:03 | 000,000,000 | ---D | M] -- C:\Users\Owner\AppData\Roaming\ForgottenRiddles
[2010/05/04 15:24:27 | 000,000,000 | ---D | M] -- C:\Users\Owner\AppData\Roaming\FUEL
[2010/01/03 22:45:56 | 000,000,000 | ---D | M] -- C:\Users\Owner\AppData\Roaming\Gearbox Software
[2009/11/21 22:28:59 | 000,000,000 | ---D | M] -- C:\Users\Owner\AppData\Roaming\GetRightToGo
[2009/12/29 18:09:01 | 000,000,000 | ---D | M] -- C:\Users\Owner\AppData\Roaming\GSplit
[2009/04/28 11:40:23 | 000,000,000 | ---D | M] -- C:\Users\Owner\AppData\Roaming\HandBrake
[2010/10/21 12:23:55 | 000,000,000 | ---D | M] -- C:\Users\Owner\AppData\Roaming\I2P
[2010/09/16 20:19:02 | 000,000,000 | ---D | M] -- C:\Users\Owner\AppData\Roaming\ImgBurn
[2010/05/18 11:11:17 | 000,000,000 | ---D | M] -- C:\Users\Owner\AppData\Roaming\Leadertech
[2009/11/08 19:24:53 | 000,000,000 | ---D | M] -- C:\Users\Owner\AppData\Roaming\Mount&Blade
[2009/11/03 01:18:13 | 000,000,000 | ---D | M] -- C:\Users\Owner\AppData\Roaming\NationRed
[2010/07/28 01:01:32 | 000,000,000 | ---D | M] -- C:\Users\Owner\AppData\Roaming\nHancer
[2009/12/29 15:38:29 | 000,000,000 | ---D | M] -- C:\Users\Owner\AppData\Roaming\Paquet Builder
[2010/01/02 23:50:34 | 000,000,000 | ---D | M] -- C:\Users\Owner\AppData\Roaming\Red Alert 3 Demo
[2009/10/28 10:57:47 | 000,000,000 | ---D | M] -- C:\Users\Owner\AppData\Roaming\runic games
[2009/11/05 21:37:15 | 000,000,000 | ---D | M] -- C:\Users\Owner\AppData\Roaming\Samsung
[2010/09/18 16:59:50 | 000,000,000 | ---D | M] -- C:\Users\Owner\AppData\Roaming\SystemRequirementsLab
[2010/02/14 02:05:32 | 000,000,000 | ---D | M] -- C:\Users\Owner\AppData\Roaming\The Creative Assembly
[2010/05/18 15:18:43 | 000,000,000 | ---D | M] -- C:\Users\Owner\AppData\Roaming\Touchstone
[2010/01/31 22:17:26 | 000,000,000 | ---D | M] -- C:\Users\Owner\AppData\Roaming\Tropico 3 Demo
[2008/07/08 03:05:59 | 000,000,000 | ---D | M] -- C:\Users\Owner\AppData\Roaming\Turbine
[2010/10/02 15:29:33 | 000,000,000 | ---D | M] -- C:\Users\Owner\AppData\Roaming\Ubisoft
[2010/03/06 23:37:43 | 000,000,000 | ---D | M] -- C:\Users\Owner\AppData\Roaming\Wizards of the Coast
[2010/02/25 03:12:44 | 000,000,000 | ---D | M] -- C:\Users\Owner\AppData\Roaming\XRay Engine
[2006/11/02 06:09:53 | 000,000,484 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT
[2010/10/23 17:05:28 | 000,000,418 | -H-- | M] () -- C:\Windows\Tasks\User_Feed_Synchronization-{A11D6238-2993-4382-9CD1-91CA0D79CA60}.job
========== Purity Check ==========
========== Custom Scans ==========
< %SYSTEMDRIVE%\*.* >
[2006/09/18 14:43:36 | 000,000,024 | ---- | M] () -- C:\AUTOEXEC.BAT
[2008/07/24 00:10:06 | 000,003,644 | ---- | M] () -- C:\bink_log.txt
[2008/06/20 00:11:10 | 000,000,355 | -HS- | M] () -- C:\Boot.BAK
[2008/06/20 01:24:42 | 000,000,355 | RHS- | M] () -- C:\Boot.ini.saved
[2009/04/10 23:36:36 | 000,333,257 | RHS- | M] () -- C:\bootmgr
[2008/06/20 01:24:43 | 000,008,192 | R-S- | M] () -- C:\BOOTSECT.BAK
[2006/09/18 14:43:37 | 000,000,010 | ---- | M] () -- C:\config.sys
[2008/04/11 10:07:18 | 000,003,820 | ---- | M] () -- C:\eula.1028.txt
[2008/04/11 10:07:18 | 000,015,428 | ---- | M] () -- C:\eula.1031.txt
[2008/04/11 10:07:18 | 000,010,058 | ---- | M] () -- C:\eula.1033.txt
[2008/04/11 10:07:18 | 000,012,246 | ---- | M] () -- C:\eula.1036.txt
[2008/04/11 10:07:18 | 000,013,912 | ---- | M] () -- C:\eula.1040.txt
[2008/04/11 10:07:18 | 000,005,868 | ---- | M] () -- C:\eula.1041.txt
[2008/04/11 10:07:18 | 000,005,970 | ---- | M] () -- C:\eula.1042.txt
[2008/04/11 10:07:18 | 000,010,134 | ---- | M] () -- C:\eula.1049.txt
[2008/04/11 10:07:18 | 000,003,814 | ---- | M] () -- C:\eula.2052.txt
[2008/04/11 10:07:18 | 000,012,936 | ---- | M] () -- C:\eula.3082.txt
[2008/04/11 11:07:18 | 000,001,110 | ---- | M] () -- C:\globdata.ini
[2009/11/27 23:32:57 | 000,000,079 | ---- | M] () -- C:\ifsverifylog.txt
[2008/04/11 11:07:18 | 000,000,843 | ---- | M] () -- C:\install.ini
[2008/04/11 09:03:48 | 000,076,304 | ---- | M] (Microsoft Corporation) -- C:\install.res.1028.dll
[2008/04/11 09:03:48 | 000,096,272 | ---- | M] (Microsoft Corporation) -- C:\install.res.1031.dll
[2008/04/11 09:03:48 | 000,091,152 | ---- | M] (Microsoft Corporation) -- C:\install.res.1033.dll
[2008/04/11 09:03:48 | 000,097,296 | ---- | M] (Microsoft Corporation) -- C:\install.res.1036.dll
[2008/04/11 09:03:48 | 000,095,248 | ---- | M] (Microsoft Corporation) -- C:\install.res.1040.dll
[2008/04/11 09:03:48 | 000,081,424 | ---- | M] (Microsoft Corporation) -- C:\install.res.1041.dll
[2008/04/11 09:03:48 | 000,079,888 | ---- | M] (Microsoft Corporation) -- C:\install.res.1042.dll
[2008/04/11 11:09:24 | 000,093,200 | ---- | M] (Microsoft Corporation) -- C:\install.res.1049.dll
[2008/04/11 09:03:48 | 000,075,792 | ---- | M] (Microsoft Corporation) -- C:\install.res.2052.dll
[2008/04/11 09:03:48 | 000,096,272 | ---- | M] (Microsoft Corporation) -- C:\install.res.3082.dll
[2008/06/15 13:14:08 | 000,000,000 | RHS- | M] () -- C:\IO.SYS
[2008/06/15 13:14:08 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS
[2004/08/04 05:00:00 | 000,047,564 | RHS- | M] () -- C:\NTDETECT.COM
[2004/08/04 05:00:00 | 000,250,032 | RHS- | M] () -- C:\ntldr
[2010/10/23 17:54:07 | 3802,546,176 | -HS- | M] () -- C:\pagefile.sys
[2010/10/22 13:41:29 | 000,002,242 | ---- | M] () -- C:\rapport.txt
[2010/10/22 23:07:27 | 000,000,016 | ---- | M] () -- C:\RootRepeal report 10-22-10 (23-07-27).txt
[2010/10/23 08:01:31 | 000,000,016 | ---- | M] () -- C:\RootRepeal report 10-23-10 (08-01-31).txt
[2008/07/24 00:08:08 | 000,000,478 | ---- | M] () -- C:\sound_bank_log.txt
[2010/08/19 23:48:07 | 000,060,096 | ---- | M] () -- C:\TDSSKiller.2.4.1.2_19.08.2010_23.45.21_log.txt
[2010/10/22 15:46:12 | 000,059,356 | ---- | M] () -- C:\TDSSKiller.2.4.4.0_22.10.2010_15.45.48_log.txt
[2008/04/11 10:07:18 | 000,005,686 | ---- | M] () -- C:\vcredist.bmp
[2008/04/11 11:09:38 | 003,797,292 | ---- | M] () -- C:\VC_RED.cab
[2008/04/11 11:11:40 | 000,233,472 | ---- | M] () -- C:\VC_RED.MSI
< %systemroot%\*. /mp /s >
< %systemroot%\System32\config\*.sav >
[2008/06/20 01:24:30 | 006,660,096 | ---- | M] () -- C:\Windows\System32\config\COMPONENTS.SAV
[2008/06/20 01:24:28 | 000,102,400 | ---- | M] () -- C:\Windows\System32\config\DEFAULT.SAV
[2008/06/20 01:24:30 | 000,036,864 | ---- | M] () -- C:\Windows\System32\config\SECURITY.SAV
[2008/06/20 01:24:37 | 015,618,048 | ---- | M] () -- C:\Windows\System32\config\SOFTWARE.SAV
[2008/06/20 01:24:38 | 006,066,176 | ---- | M] () -- C:\Windows\System32\config\SYSTEM.SAV
< HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate\AU >
< HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install|LastSuccessTime /rs >
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install\\LastSuccessTime: 2010-10-21 05:07:37
========== Alternate Data Streams ==========
@Alternate Data Stream - 123 bytes -> C:\ProgramData\TEMP:364682BC
@Alternate Data Stream - 120 bytes -> C:\ProgramData\TEMP:4D066AD2
@Alternate Data Stream - 100 bytes -> C:\ProgramData\TEMP:ADF211B1
< End of report >
OTL Extras logfile created on: 10/23/2010 18:07:14 - Run 1
OTL by OldTimer - Version 3.2.17.0 Folder = C:\Users\Owner\Desktop
Windows Vista Home Premium Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18975)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy
3.00 Gb Total Physical Memory | 2.00 Gb Available Physical Memory | 61.00% Memory free
7.00 Gb Paging File | 6.00 Gb Available in Paging File | 84.00% Paging File free
Paging file location(s): ?:\pagefile.sys
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 335.34 Gb Total Space | 85.40 Gb Free Space | 25.47% Space Free | Partition Type: NTFS
Drive D: | 465.76 Gb Total Space | 258.74 Gb Free Space | 55.55% Space Free | Partition Type: NTFS
Drive E: | 2.49 Gb Total Space | 0.00 Gb Free Space | 0.00% Space Free | Partition Type: UDF
Drive F: | 931.51 Gb Total Space | 657.56 Gb Free Space | 70.59% Space Free | Partition Type: NTFS
Computer Name: SUPERBAD | User Name: Owner | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days
========== Extra Registry (SafeList) ==========
========== File Associations ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation)
[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
========== Shell Spawning ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
https [open] -- "C:\Program Files\Mozilla Firefox\firefox.exe" -requestPending -osint -url "%1" (Mozilla Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe /separate,/idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /separate,/e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
========== Security Center Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
"FirewallDisableNotify" = 0x00000000
"AntiVirusDisableNotify" = 0x00000000
"UpdatesDisableNotify" = 0x00000000
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"AntiVirusOverride" = 1
"AntiSpywareOverride" = 1
"FirewallOverride" = 0
"VistaSp1" = Reg Error: Unknown registry data type -- File not found
"VistaSp2" = Reg Error: Unknown registry data type -- File not found
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\S-1-5-21-789336058-790525478-725345543-1003]
"EnableNotifications" = 1
"EnableNotificationsRef" = 1
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]
========== System Restore Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0
========== Firewall Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile]
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
"DefaultOutboundAction" = 0
"DefaultInboundAction" = 1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
========== Authorized Applications List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
"%windir%\system32\sessmgr.exe" = %windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019 -- File not found
"C:\Program Files\Windows Live\Messenger\livecall.exe" = C:\Program Files\Windows Live\Messenger\livecall.exe:*:Enabled:Windows Live Messenger (Phone) -- File not found
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"%windir%\system32\sessmgr.exe" = %windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019 -- File not found
"C:\Program Files\BitTorrent\bittorrent.exe" = C:\Program Files\BitTorrent\bittorrent.exe:*:Enabled:BitTorrent -- (BitTorrent, Inc.)
"C:\Program Files\DNA\btdna.exe" = C:\Program Files\DNA\btdna.exe:*:Enabled:DNA -- File not found
"C:\Program Files\Sierra\FEAR\FEAR.exe" = C:\Program Files\Sierra\FEAR\FEAR.exe:*:Enabled:FEAR -- File not found
"C:\Program Files\THQ\S.T.A.L.K.E.R. - Shadow of Chernobyl\bin\dedicated\XR_3DA.exe" = C:\Program Files\THQ\S.T.A.L.K.E.R. - Shadow of Chernobyl\bin\dedicated\XR_3DA.exe:*:Enabled:S.T.A.L.K.E.R. - Shadow of Chernobyl (SRV) -- File not found
"C:\Program Files\THQ\S.T.A.L.K.E.R. - Shadow of Chernobyl\bin\XR_3DA.exe" = C:\Program Files\THQ\S.T.A.L.K.E.R. - Shadow of Chernobyl\bin\XR_3DA.exe:*:Enabled:S.T.A.L.K.E.R. - Shadow of Chernobyl (CLI) -- File not found
"C:\Program Files\Windows Live\Messenger\livecall.exe" = C:\Program Files\Windows Live\Messenger\livecall.exe:*:Enabled:Windows Live Messenger (Phone) -- File not found
========== Vista Active Open Ports Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{06FB3E87-4D1E-430C-9C30-6FDE82D3F7FE}" = lport=2177 | protocol=17 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{0B84CD98-0530-4612-97F6-2B9F374F539F}" = lport=138 | protocol=17 | dir=in | app=system |
"{0BF2FEDA-F82C-4125-A888-6A4FE9FF4AB1}" = lport=2869 | protocol=6 | dir=in | app=system |
"{0D72B5FE-A616-47C1-89EB-4370D12946A0}" = lport=2177 | protocol=6 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{1D16C5EF-0B85-4FC3-9CD3-58D1A03C16D1}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{2763E76C-C6C7-4C27-986E-580B9A98724C}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=svchost.exe |
"{30B363D6-A30B-4EE8-B483-730392CC6F90}" = lport=2869 | protocol=6 | dir=in | app=system |
"{315BE49C-8053-405C-8C10-94053C1BA218}" = rport=138 | protocol=17 | dir=out | app=system |
"{3865F13F-C6C4-4D6A-A165-90214F370CBC}" = rport=139 | protocol=6 | dir=out | app=system |
"{42ED89AF-46FF-4306-A8F1-E03D60925EB8}" = lport=6004 | protocol=17 | dir=in | app=c:\program files\microsoft office\office12\outlook.exe |
"{50E584EA-D0B5-4B50-8590-CEE24F62B7B3}" = lport=1900 | protocol=17 | dir=in | name=windows live communications platform (ssdp) |
"{54FE9F16-261E-46F1-948E-313D0B2C52CB}" = rport=445 | protocol=6 | dir=out | app=system |
"{58526964-E7E5-4A84-AF80-50CDC46BB418}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
"{6BCFEF65-6A07-41E8-B518-D08832918BA2}" = lport=137 | protocol=17 | dir=in | app=system |
"{6E0A3C49-A60A-4285-BB07-42F9666326FA}" = rport=137 | protocol=17 | dir=out | app=system |
"{90BF7152-F714-44C3-B298-20ACA30D0BB9}" = lport=445 | protocol=6 | dir=in | app=system |
"{92138443-66E0-4DF9-B82B-C7142D7134C1}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | [email protected],-28539 |
"{967C83A4-5F1E-456C-9114-4A8F9A001610}" = rport=10243 | protocol=6 | dir=out | app=system |
"{9A682D68-8F29-4812-B7A3-B67FCD2F6846}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{9E248750-9D41-4CEE-BD99-828922F28BF3}" = lport=10243 | protocol=6 | dir=in | app=system |
"{D48062E8-9AF7-47FD-B8C7-603EB110D312}" = rport=2177 | protocol=17 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{DED60173-7C45-4F83-A691-7A28444BF35D}" = rport=2177 | protocol=6 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{DF82FF64-A966-412E-BBB2-0B6E70884C78}" = lport=139 | protocol=6 | dir=in | app=system |
"{F5CBD76D-DBD9-40EE-AD3C-8E83477492E2}" = lport=2869 | protocol=6 | dir=in | name=windows live communications platform (upnp) |
========== Vista Active Application Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{04A677DB-4D49-484A-B3D1-80441DEE9A6D}" = protocol=6 | dir=in | app=c:\program files\atari\neverwinter nights 2\nwn2main.exe |
"{04DEBBA9-8A09-4F57-B1B7-CEA1B6A7B770}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{051A3BAD-A072-4FA2-9915-467454084D64}" = protocol=17 | dir=in | app=d:\steam\steamapps\common\crysis\bin32\crysis.exe |
"{080CA9BF-72FB-4738-958F-0749B6E8D71C}" = protocol=17 | dir=in | app=d:\steam\steamapps\common\blazing angels 2 secret missions of wwii\bin\ba2.exe |
"{0EDD9D3C-AC36-4C68-B648-EB1209AF695A}" = protocol=6 | dir=in | app=d:\steam\steamapps\common\left 4 dead 2\left4dead2.exe |
"{0FED7D71-6827-4E79-BED9-A8D2ADC3C265}" = protocol=17 | dir=in | app=c:\program files\atari\neverwinter nights 2\nwupdate.exe |
"{128E98DD-403C-4875-B922-08237776E8EA}" = protocol=6 | dir=in | app=c:\program files\cyanide\gamecenter\gamecenter.exe |
"{12FBB7FA-7B06-43CE-819E-AB754C62CD03}" = protocol=17 | dir=in | app=d:\steam\steam.exe |
"{1465A86E-9D91-4A96-AA21-F4770F9956CD}" = protocol=17 | dir=in | app=c:\program files\mass effect\masseffectlauncher.exe |
"{15B87B48-0227-49D4-9622-62DE353FD88B}" = protocol=6 | dir=in | app=d:\steam\steamapps\common\jade empire\jadeempireconfig.exe |
"{1668C40C-5806-485A-943E-F73F5C11F468}" = protocol=6 | dir=in | app=d:\steam\steamapps\common\jade empire\jadeempirelauncher.exe |
"{167BD99F-A094-462F-B14F-E86425EB77CB}" = protocol=17 | dir=in | app=d:\steam\steamapps\common\max payne 2 the fall of max payne\maxpayne2.exe |
"{19C970C7-88E8-47E1-B998-9597DA5728C0}" = protocol=17 | dir=in | app=d:\blazblue -calamity trigger-\bbct.exe |
"{19CB7DBD-6DA8-4615-AEA3-5D5DF1C1C225}" = protocol=17 | dir=in | app=d:\steam\steamapps\common\grand theft auto iv\rgsc\rgsclauncher.exe |
"{1CD46B41-F93B-4A61-B1F8-A9835FFAF1D8}" = protocol=17 | dir=in | app=d:\steam\steamapps\common\fuel\gamesetup.exe |
"{1F25B5A7-8B72-4F58-B352-4F385E1FD9EC}" = dir=in | app=c:\program files\rosetta stone\rosetta stone version 3\support\bin\win\rosettastoneltdservices.exe |
"{24431546-C33E-4609-89CC-F93AB93A7661}" = protocol=6 | dir=in | app=d:\alpha protocol\binaries\apgame.exe |
"{28EA77DF-ACD6-4C5D-92AB-0629458AFEE9}" = protocol=6 | dir=in | app=c:\program files\ubisoft\tom clancy's splinter cell conviction\src\system\gu.exe |
"{2BC5AD63-8982-4FED-B7FE-387B0D55A67F}" = protocol=6 | dir=in | app=c:\program files\steam\steamapps\common\kings bounty armored princess\kb.exe |
"{2BC6AAAD-862A-4E99-A273-2F1157AAD64E}" = protocol=17 | dir=in | app=d:\steam\steamapps\common\street fighter iv\sf4launcher.exe |
"{2D35C0A8-02D0-40B2-AE5D-7542AD833374}" = protocol=6 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{2E20E634-BF1B-4853-8B80-DD50FE57D17E}" = protocol=17 | dir=in | app=c:\program files\ubisoft\assassin's creed\assassinscreed_dx10.exe |
"{2EA8270E-47C0-4FDB-9FB1-39AC690FB9A6}" = protocol=17 | dir=in | app=c:\program files\ubisoft\assassin's creed\assassinscreed_launcher.exe |
"{3007B60E-8655-4A9E-9EEE-7AE7C3A9F422}" = protocol=6 | dir=in | app=d:\steam\steamapps\common\grand theft auto iv\rgsc\rgsclauncher.exe |
"{306282B4-E4C7-4FBE-B5E5-1A54FE0ECD27}" = protocol=17 | dir=in | app=d:\steam\steamapps\common\il 2 sturmovik 1946\il2fb.exe |
"{31297D0F-D675-4541-A1A7-59C558B4CD8A}" = protocol=6 | dir=in | app=d:\steam\steamapps\common\cryostasis\cryostasis.exe |
"{315DE01E-1B8F-4A7A-88BE-6CC0CD5C2140}" = protocol=17 | dir=in | app=d:\steam\steamapps\common\torchlight\torchlight.exe |
"{31773B3F-D80B-465F-B5D7-A894E7325D5D}" = protocol=17 | dir=in | app=d:\dark void\launcher.exe |
"{31974EEB-B98F-4A52-9C1E-C2D411EE80AD}" = protocol=17 | dir=in | app=d:\lost planet 2\lp2dx11.exe |
"{333EA986-0C76-41EC-8859-6E36C1AFDB2E}" = protocol=17 | dir=in | app=d:\steam\steamapps\common\king's bounty - the legend\kb.exe |
"{3401BB55-2555-435F-A87B-F8AE65FFB843}" = protocol=17 | dir=in | app=d:\steam\steamapps\common\grand theft auto san andreas\gta-sa.exe |
"{35EBE0EC-CFDF-481A-845E-8E444DB584D3}" = protocol=17 | dir=in | app=c:\program files\ubisoft\ubisoft game launcher\ubisoftgamelauncher.exe |
"{36B08A9A-AA28-4E09-939A-F0A19186D45F}" = protocol=6 | dir=in | app=d:\steam\steamapps\common\prototype\prototypef.exe |
"{36C1B40F-8345-4E23-B9C9-77B92DA8F8FD}" = protocol=17 | dir=in | app=c:\program files\atari\neverwinter nights 2\nwn2server.exe |
"{37BCD0E9-0D63-4FB7-8147-032CF821744E}" = protocol=17 | dir=in | app=c:\program files\ubisoft\far cry 2\bin\farcry2.exe |
"{383BDB4F-8047-455B-A25E-A283D16260E6}" = protocol=6 | dir=in | app=c:\program files\ventrilo\ventrilo.exe |
"{3A45F6D9-4E7C-4438-819B-2941DDEB0E23}" = protocol=58 | dir=in | [email protected],-28545 |
"{3CCBA422-0024-4BA5-8AC1-7DB0C9AE8B08}" = protocol=6 | dir=in | app=c:\program files\deep silver\s.t.a.l.k.e.r. - clear sky\bin\xrengine.exe |
"{40A570EF-77FE-4614-9554-4DF5D301E5FA}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{40A813D7-EB35-40B7-853C-CB2B92C1218D}" = protocol=6 | dir=in | app=c:\program files\bittorrent\bittorrent.exe |
"{4202AD22-DF6E-4201-BE5A-37BC693DE233}" = protocol=6 | dir=in | app=d:\steam\steamapps\common\grand theft auto san andreas\gta-sa.exe |
"{4354F1E0-4C15-48E6-97DB-1F5C613E1830}" = protocol=6 | dir=in | app=c:\users\public\games\world of warcraft\wow-3.2.2.10482-to-3.2.2.10505-enus-downloader.exe |
"{44A7BB31-8561-4A62-B9B4-B15C362AF306}" = protocol=1 | dir=in | [email protected],-28543 |
"{44F8946A-B95B-4FC2-96F9-C9066AEE1E67}" = protocol=17 | dir=in | app=c:\program files\steam\steamapps\common\dragon age origins\bin_ship\daupdatersvc.service.exe |
"{450DB33D-6A6D-467B-9D5E-96E31A6609C2}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{4546D122-0822-46ED-BD13-BF8B82B3FA18}" = protocol=6 | dir=in | app=c:\program files\ubisoft\far cry 2\bin\fc2launcher.exe |
"{45B4456E-2BE3-4D1E-AC7E-CE0219F9AA20}" = protocol=17 | dir=in | app=d:\steam\steamapps\common\prototype\prototypef.exe |
"{460C4ADF-83CA-42C4-AD85-CBD349DAF0F3}" = protocol=6 | dir=in | app=d:\steam\steamapps\common\il 2 sturmovik 1946\il2fb.exe |
"{46E6FBF8-F8EA-4100-A33D-EDFCDFB9DC17}" = protocol=17 | dir=in | app=c:\program files\ubisoft\far cry 2\bin\fc2editor.exe |
"{47729FB0-62C1-4858-BD3C-BA543286CFF0}" = protocol=6 | dir=in | app=d:\steam\steamapps\common\mafia ii\pc\mafia2.exe |
"{47DD3705-0CCA-4647-B42A-ED1EC7E5FEE1}" = protocol=17 | dir=in | app=c:\windows\system32\pnkbstra.exe |
"{48834C27-9915-42E0-B197-49BFAFBA3BB3}" = protocol=6 | dir=in | app=c:\users\public\games\world of warcraft\wow-3.2.0.10314-to-3.2.2.10482-enus-downloader.exe |
"{4900CEF8-07A5-4ACF-A902-90C44F1952A7}" = protocol=6 | dir=in | app=d:\steam\steamapps\common\ghostbusters\ghost_w32.exe |
"{4BB49A67-E206-4B29-B885-21759A89120F}" = protocol=17 | dir=in | app=c:\users\public\games\world of warcraft\wow-3.2.2.10482-to-3.2.2.10505-enus-downloader.exe |
"{4BD38EAD-6E46-414E-8D5B-0FFBAC388EC5}" = protocol=6 | dir=in | app=d:\steam\steamapps\common\blazing angels 2 secret missions of wwii\bin\ba2.exe |
"{4D84FB99-D586-46BA-A331-4D35503B1013}" = protocol=17 | dir=in | app=c:\program files\deep silver\s.t.a.l.k.e.r. - clear sky\bin\dedicated\xrengine.exe |
"{4D8BC678-9445-45B8-960C-3892DDFC338D}" = protocol=6 | dir=in | app=d:\steam\steamapps\common\spectromancer\spectromancer.exe |
"{51E98227-9F12-494E-B8C5-291CB642E3E2}" = protocol=17 | dir=in | app=c:\program files\ventrilo\ventrilo.exe |
"{52F8C8CF-0ABC-42FF-AA88-124781DBA5B4}" = protocol=6 | dir=in | app=d:\dark void\launcher.exe |
"{53108CD2-A6E4-492F-B84E-FA71393C9C9F}" = protocol=17 | dir=in | app=c:\program files\steam\steamapps\common\kings bounty armored princess\kb.exe |
"{5405B82B-FD2A-4B12-9217-FD5D733115FD}" = protocol=6 | dir=in | app=c:\windows\system32\pnkbstra.exe |
"{54F627E9-2C6A-4923-9517-3469CB630806}" = protocol=6 | dir=in | app=c:\program files\ubisoft\assassin's creed ii\assassinscreedii.exe |
"{55E9F906-6649-4691-8B09-802C072EC550}" = protocol=17 | dir=in | app=c:\program files\steam\steamapps\common\risen - demo\bin\risen.exe |
"{563B80B6-8159-46D8-93DB-BD39D6866F17}" = protocol=6 | dir=in | app=d:\steam\steamapps\common\street fighter iv\sf4launcher.exe |
"{565FFD87-E5AF-45F4-B11E-EBADD1BF9B63}" = protocol=17 | dir=in | app=d:\steam\steamapps\common\torchlight\torched\editor.exe |
"{5781914E-2DAA-41FB-A6C0-E6D9E1122E06}" = protocol=6 | dir=in | app=c:\program files\ubisoft\ubisoft game launcher\ubisoftgamelauncher.exe |
"{587CBBFE-96B5-4B36-8500-B7CC12AB575D}" = protocol=17 | dir=in | app=c:\program files\mass effect\binaries\masseffect.exe |
"{59F629C6-2DD1-45F4-AFFD-F74D16CE4FE3}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{5C4C7812-C4AB-4CC0-A8C0-2C48CA858021}" = protocol=6 | dir=in | app=c:\program files\ubisoft\assassin's creed ii\uplaybrowser.exe |
"{610A3A80-E3F0-43D8-9731-B89BF8C5E2FB}" = protocol=17 | dir=in | app=d:\steam\steamapps\common\spectromancer\spectromancer.exe |
"{6494AB5F-3481-488A-9EDA-03383B94D035}" = protocol=17 | dir=in | app=c:\users\public\games\world of warcraft\wow-3.2.0.10314-to-3.2.2.10482-enus-downloader.exe |
"{68BD692A-CBFE-41C6-AEBD-AD64B3EAD8EF}" = protocol=6 | dir=in | app=c:\program files\deep silver\s.t.a.l.k.e.r. - clear sky\bin\dedicated\xrengine.exe |
"{68CE108A-F182-41FB-B53F-6DAC04E36654}" = protocol=6 | dir=in | app=c:\program files\steam\steamapps\common\tomb raider anniversary\tra.exe |
"{69CDFBC1-BDE0-4E96-971A-0C2AE9E30629}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{6BE46BF1-34F1-474A-B440-71F7D88935BB}" = protocol=17 | dir=in | app=d:\steam\steamapps\common\left 4 dead 2\left4dead2.exe |
"{6ECF377D-8287-488A-A594-CD04FF9B1066}" = protocol=17 | dir=in | app=c:\program files\bittorrent\bittorrent.exe |
"{702D79E3-88AC-466E-9CD1-5E934DBB8D45}" = protocol=6 | dir=in | app=d:\blazblue -calamity trigger-\bbct.exe |
"{72098CC9-72AE-43BD-A5CF-60C6BE45AECC}" = protocol=17 | dir=in | app=d:\steam\steamapps\common\alien swarm\srcds.exe |
"{7259C597-3A49-4EC5-B4C3-2DE8364AAD4F}" = protocol=17 | dir=in | app=c:\windows\system32\pnkbstra.exe |
"{726536D4-C6C4-4B66-B74E-7E5177EBA9C0}" = protocol=17 | dir=in | app=c:\program files\capcom\resident evil 5\re5dx10.exe |
"{7768BDBC-CBED-4883-81D6-551D379B78A5}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{78C59AAC-99A2-4358-A4B0-FCA1E6710632}" = protocol=17 | dir=in | app=d:\singularity\binaries\singularity.exe |
"{798F5177-6024-40E4-B831-CA70E5B9D7A9}" = protocol=17 | dir=in | app=c:\program files\activision\transformers - war for cybertron\binaries\twfc.exe |
"{7D5CE626-B444-43FA-A40B-E3A348CD6D59}" = protocol=6 | dir=in | app=d:\steam\steamapps\common\torchlight\torched\editor.exe |
"{7E353E2C-3317-4021-8349-D1E1C5DF1BF0}" = protocol=6 | dir=in | app=c:\program files\atari\neverwinter nights 2\nwupdate.exe |
"{7EA986B0-C5CD-426D-9504-7B999F283C80}" = protocol=17 | dir=in | app=c:\users\public\documents\blizzard entertainment\world of warcraft\wow-3.2.0.10192-to-3.2.0.10314-enus-downloader.exe |
"{7F48A57C-885E-4DA3-8E10-60C50DD0C0AE}" = protocol=6 | dir=in | app=c:\program files\mass effect\masseffectlauncher.exe |
"{802E31EE-4936-441D-8678-69E71D1D15E2}" = protocol=6 | dir=in | app=d:\steam\steam.exe |
"{8240065C-72B5-4498-B49A-A608A5BE0104}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{82C5F310-2973-46AA-A6C7-A42177CA92C8}" = dir=in | app=c:\program files\windows live\messenger\msnmsgr.exe |
"{85F514E3-71B8-445D-B502-A1F456B2456C}" = protocol=6 | dir=in | app=d:\steam\steamapps\common\swkotor\swkotor.exe |
"{878522F2-F747-4D06-BD06-A40A38EA8B5A}" = protocol=17 | dir=in | app=c:\program files\activision\wolfenstein\mp\wolf2mp.exe |
"{884D4514-BD58-4BB0-A3B9-4E2FF71045B8}" = protocol=17 | dir=in | app=d:\steam\steamapps\common\jade empire\jadeempireconfig.exe |
"{8854279E-980A-4614-BC01-F4FCF0530CC0}" = protocol=17 | dir=in | app=d:\steam\steamapps\common\silent hunter 3\sh3.exe |
"{8BD86760-016A-4CC8-A28D-0F88276546F4}" = dir=in | app=c:\program files\rosetta stone\rosetta stone version 3\rosettastoneversion3.exe |
"{8BE0BF39-59F8-44E5-B1DD-94775013A735}" = protocol=17 | dir=in | app=d:\steam\steamapps\common\ghostbusters\ghost_w32.exe |
"{8C0283F9-97B5-42A5-99C1-4EF1DBABB049}" = protocol=17 | dir=in | app=c:\program files\atari\neverwinter nights 2\nwn2main.exe |
"{943FD01D-4D67-468F-B4B6-3CE147C51BD6}" = protocol=17 | dir=in | app=c:\program files\atari\neverwinter nights 2\nwn2main_amdxp.exe |
"{94641A90-25A6-4D56-805F-9A72D8A5D9FC}" = protocol=6 | dir=in | app=c:\program files\capcom\dead rising 2\deadrising2.exe |
"{94B6C40D-8D74-4EFD-835C-67159023B5A1}" = protocol=6 | dir=out | app=%systemroot%\system32\msra.exe |
"{952EF440-8BC2-44F1-A92B-754751E3BB10}" = protocol=17 | dir=in | app=d:\steam\steamapps\common\batman arkham asylum - demo\binaries\shippingpc-bmgame.exe |
"{957D5F93-6FBD-48AF-9B8C-5063A64BBA30}" = protocol=17 | dir=in | app=d:\steam\steamapps\common\mafia ii\pc\mafia2.exe |
"{95B287E0-E709-431D-A1A0-8BC997E5A088}" = protocol=6 | dir=in | app=c:\program files\ubisoft\far cry 2\bin\fc2editor.exe |
"{95F3EF23-1592-4852-AB9A-7ED1D878464E}" = protocol=17 | dir=in | app=d:\steam\steamapps\common\left 4 dead\left4dead.exe |
"{96286C6B-0218-4A59-B4EF-23DC54DDC490}" = protocol=6 | dir=in | app=d:\lost planet 2\lp2dx11.exe |
"{987D6507-AE49-4BFA-8814-C7D3B6C02690}" = protocol=6 | dir=in | app=c:\program files\capcom\resident evil 5\re5dx10.exe |
"{9892962A-C3B4-4B1B-878C-47C30434B28D}" = protocol=6 | dir=in | app=c:\program files\steam\steamapps\common\risen - demo\bin\risen.exe |
"{99A96E70-6319-4924-9BA0-91191F4475E4}" = protocol=6 | dir=in | app=c:\program files\activision\wolfenstein\mp\wolf2mp.exe |
"{A071ECDB-0DED-46B8-BCA4-8866E53B7BBC}" = protocol=6 | dir=in | app=%systemroot%\system32\msra.exe |
"{A10B0E3C-B041-4995-B020-4C567DDDE65A}" = protocol=17 | dir=in | app=c:\program files\ubisoft\tom clancy's splinter cell conviction\src\system\gu.exe |
"{A4C0533D-5B8B-482E-A94D-9D7679169DB1}" = protocol=6 | dir=in | app=d:\steam\steamapps\common\alien swarm\srcds.exe |
"{A614D3FB-22D4-4D1B-94B3-0D08FF6DF46D}" = protocol=58 | dir=out | [email protected],-28546 |
"{AAA89F29-7685-48DC-B995-559352E4A439}" = protocol=17 | dir=in | app=c:\users\public\documents\blizzard entertainment\world of warcraft\wow-3.1.3.9947-to-3.2.0.10192-enus-downloader.exe |
"{AC111B1B-5B0F-43A3-9D83-A691204B3A15}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{AD96598D-AE3F-46EC-908F-DFFF4793C959}" = protocol=6 | dir=in | app=d:\steam\steamapps\common\crysis\bin32\crysis.exe |
"{AF28FDB2-7EA0-40CB-88F8-F224404F7CD6}" = protocol=6 | dir=in | app=c:\users\public\documents\blizzard entertainment\world of warcraft\wow-3.1.3.9947-to-3.2.0.10192-enus-downloader.exe |
"{AFAFABD8-B6C1-468F-9FB3-25100EBF3FF5}" = protocol=17 | dir=in | app=c:\program files\ubisoft\far cry 2\bin\fc2launcher.exe |
"{B0EDCFBF-4F71-4D11-B99F-B2710CEB5AAB}" = protocol=6 | dir=in | app=d:\steam\steamapps\common\brothers in arms road to hill 30\system\bia.exe |
"{B20D4929-558E-44BF-B8AA-59CD2078E604}" = protocol=17 | dir=in | app=c:\program files\capcom\resident evil 5\re5dx9.exe |
"{B366120E-2198-4BB8-9C86-6EEE960141A1}" = protocol=6 | dir=in | app=d:\steam\steamapps\common\max payne 2 the fall of max payne\maxpayne2.exe |
"{B7B49B36-91FD-4C3D-BDC5-250E68D5489E}" = protocol=17 | dir=in | app=c:\program files\ubisoft\assassin's creed ii\uplaybrowser.exe |
"{B837DB3B-6618-49B5-AC11-36F94F3D275F}" = protocol=6 | dir=in | app=d:\steam\steamapps\common\king's bounty - the legend\kb.exe |
"{BA4713EE-18AF-45DE-838C-3F8CE3B944A0}" = protocol=6 | dir=in | app=c:\users\public\documents\blizzard entertainment\world of warcraft\wow-3.2.0.10192-to-3.2.0.10314-enus-downloader.exe |
"{BA7C7F2B-0CBF-4B47-B160-CE554C0B4874}" = protocol=6 | dir=in | app=c:\windows\system32\pnkbstrb.exe |
"{BACED395-1970-4300-BDB8-2A356ED38220}" = protocol=6 | dir=in | app=c:\program files\steam\steamapps\common\left 4 dead\left4dead.exe |
"{BB1D7625-850A-4181-903F-DBDAC6F62A96}" = protocol=17 | dir=in | app=d:\steam\steamapps\common\trine\trine_launcher.exe |
"{BB381514-6E9E-4CFF-A888-995815EBB6CE}" = protocol=6 | dir=in | app=c:\program files\ubisoft\assassin's creed ii\assassinscreediigame.exe |
"{BBC0FAEC-F6B1-4D28-A349-AAA5E922CAFC}" = protocol=17 | dir=in | app=c:\program files\deep silver\s.t.a.l.k.e.r. - clear sky\bin\xrengine.exe |
"{BC38F4B1-F983-48AF-AC5D-92162B0F85D5}" = protocol=6 | dir=in | app=c:\program files\ubisoft\assassin's creed\assassinscreed_launcher.exe |
"{BD153CB5-3188-4082-8267-EE145D00711A}" = protocol=6 | dir=in | app=c:\program files\ubisoft\assassin's creed\assassinscreed_dx10.exe |
"{BD985898-7F77-4A8B-800C-5A11B71A226F}" = protocol=58 | dir=in | app=system |
"{BF1E2448-D261-43E4-8399-EF92C3220E85}" = dir=in | app=c:\program files\windows live\sync\windowslivesync.exe |
"{BF441D17-CDD7-401C-AB8C-7CE87F323668}" = protocol=6 | dir=in | app=d:\steam\steamapps\common\silent hunter 3\sh3.exe |
"{C26772C1-B819-4BAE-A8E3-BBF6956AEC24}" = protocol=17 | dir=in | app=c:\program files\cyanide\gamecenter\gamecenter.exe |
"{C2EF3E90-DAAB-45CA-B886-0E3C33FFBED7}" = protocol=17 | dir=in | app=d:\steam\steamapps\common\swkotor\swkotor.exe |
"{C4659AEE-E571-48C6-8A96-A089B24BC1B6}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{C4B8B33A-1F60-4F62-A8DD-543E0FE5941D}" = protocol=6 | dir=in | app=d:\steam\steamapps\common\trine\trine_launcher.exe |
"{C4E20E8E-7D48-4EA9-BEAB-68DD1EF9E944}" = protocol=6 | dir=out | app=system |
"{C502CD0D-3A05-445F-8423-940CADDECA65}" = protocol=17 | dir=in | app=c:\program files\steam\steamapps\common\tomb raider anniversary\tra.exe |
"{C7D0BA05-4CC9-45F0-BC2C-BD245B452574}" = protocol=17 | dir=in | app=c:\program files\ubisoft\tom clancy's splinter cell conviction\src\system\conviction_game.exe |
"{C9B683EC-7DB7-4985-89C0-9C7FCA4C64BD}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{CAD48057-B9B3-4A9D-9978-A43C04E97CAF}" = protocol=6 | dir=in | app=c:\program files\atari\neverwinter nights 2\nwn2main_amdxp.exe |
"{CD37591E-CF1B-4ED8-BDF3-A6DE13FC934B}" = protocol=6 | dir=in | app=d:\steam\steamapps\common\batman arkham asylum - demo\binaries\shippingpc-bmgame.exe |
"{CEBF84EE-C6B4-4D36-9D25-3116609A8E56}" = protocol=6 | dir=in | app=c:\program files\steam\steamapps\common\silent hill homecoming\bin\silenthill.exe |
"{CF256414-1D0F-4A32-9A33-45C3317140B9}" = dir=in | app=c:\program files\windows live\contacts\wlcomm.exe |
"{D1A449A5-E802-4A02-A3A0-D379FE587467}" = protocol=17 | dir=in | app=c:\program files\ubisoft\assassin's creed ii\assassinscreedii.exe |
"{D1E1A13A-F680-489B-B471-C6F593B11160}" = protocol=17 | dir=in | app=c:\program files\steam\steamapps\common\left 4 dead\left4dead.exe |
"{D2034C59-18A1-47AC-AC02-F70C62B423CD}" = protocol=17 | dir=in | app=d:\battlefield bad company 2\bfbc2updater.exe |
"{D33DCCBA-AD8C-4B89-9FDF-932D88E0516B}" = protocol=6 | dir=in | app=c:\program files\ubisoft\assassin's creed\assassinscreed_dx9.exe |
"{D52070BB-4FCB-4015-B5F9-B4120C8F2458}" = protocol=6 | dir=in | app=c:\program files\capcom\resident evil 5\re5dx9.exe |
"{D58DDB9A-CA52-4903-98F9-DCB9E53A5BF4}" = protocol=1 | dir=out | [email protected],-28544 |
"{D5CFE8E6-D51C-442F-B557-E15F0294B957}" = protocol=6 | dir=in | app=d:\battlefield bad company 2\bfbc2updater.exe |
"{D8F1E77C-24CC-4536-85C3-4710DF0A2AF8}" = protocol=6 | dir=in | app=c:\windows\system32\pnkbstrb.exe |
"{D9725DF1-72B5-410E-AD55-0B9F5BCC6646}" = protocol=17 | dir=in | app=c:\windows\system32\pnkbstrb.exe |
"{D9AD0147-F095-4BC8-A11D-B4576F5544D2}" = protocol=17 | dir=in | app=c:\program files\activision\wolfenstein\mp\wolf2mplite.exe |
"{DA6F784C-E643-424A-B326-89858649D055}" = protocol=17 | dir=in | app=d:\alpha protocol\binaries\apgame.exe |
"{DB28117B-454F-4AC1-AF8B-24B4EC56F293}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{DB63E9B3-53D9-4A3C-954B-96DAAA2E7E35}" = protocol=6 | dir=in | app=c:\program files\atari\neverwinter nights 2\nwn2server.exe |
"{DC6A98DD-37A7-4BB6-AFE5-D4FF1A5F7ECC}" = protocol=17 | dir=in | app=c:\program files\capcom\dead rising 2\deadrising2.exe |
"{E00F41E1-E895-4334-B040-653AFA1042D3}" = protocol=6 | dir=in | app=c:\program files\activision\wolfenstein\mp\wolf2mplite.exe |
"{E0C5D666-6213-4F19-92A8-4E8CF992ACFF}" = protocol=17 | dir=in | app=c:\windows\system32\pnkbstrb.exe |
"{E136B60E-04FB-4529-AB0D-79CF2FBDD4A5}" = protocol=17 | dir=in | app=c:\program files\ubisoft\assassin's creed\assassinscreed_dx9.exe |
"{E24E6B3C-9806-4408-B80F-3677F8E3889B}" = protocol=6 | dir=in | app=d:\steam\steamapps\common\king's bounty - the legend\save_fixer.exe |
"{E5C5B5E2-5538-4C03-A77B-1CE7ED2F1940}" = protocol=6 | dir=in | app=c:\program files\activision\transformers - war for cybertron\binaries\twfc.exe |
"{E5F33721-C953-4E59-80D8-83389A423665}" = protocol=6 | dir=out | app=c:\program files\rosetta stone\rosetta stone version 3\rosettastoneversion3.exe |
"{E5F60BD3-BC36-419E-89AE-26620E9F062B}" = protocol=6 | dir=in | app=c:\program files\mass effect\binaries\masseffect.exe |
"{E73C556A-AA1A-4460-B32F-4D0D27B3A1EC}" = protocol=17 | dir=in | app=d:\steam\steamapps\common\king's bounty - the legend\save_fixer.exe |
"{EAA180EE-107D-4A14-8EBA-4C8C5B3A4C87}" = protocol=6 | dir=in | app=c:\windows\system32\pnkbstra.exe |
"{EAEA3B8E-8C7D-4D26-8227-6C50DD6B7683}" = protocol=17 | dir=in | app=d:\steam\steamapps\common\cryostasis\cryostasis.exe |
"{EB333DA3-5A56-4313-AA8D-5B23DDB9561A}" = protocol=17 | dir=in | app=c:\program files\steam\steamapps\common\silent hill homecoming\bin\silenthill.exe |
"{EE7898EC-DD04-44C2-9A68-44A7E3314481}" = protocol=6 | dir=in | app=d:\singularity\binaries\singularity.exe |
"{EF15BB86-4171-44A4-A913-5C6CDDE8D5E6}" = protocol=6 | dir=in | app=c:\program files\steam\steamapps\common\dragon age origins\bin_ship\daupdatersvc.service.exe |
"{EF78842F-ECEF-4F46-A198-CCAE720F3E96}" = protocol=6 | dir=in | app=d:\steam\steamapps\common\left 4 dead\left4dead.exe |
"{EFFCF260-23DE-4F4A-B490-6E0640F1F0DA}" = protocol=17 | dir=in | app=c:\program files\ubisoft\assassin's creed ii\assassinscreediigame.exe |
"{F31F5F3C-624B-4480-8273-B142172CD38B}" = protocol=6 | dir=out | app=c:\program files\rosetta stone\rosetta stone version 3\support\bin\win\rosettastoneltdservices.exe |
"{F45F63DD-40EC-4DE9-8220-797D0D05E3FD}" = protocol=58 | dir=out | [email protected],-203 |
"{F81EE1E3-3A08-4EF7-9E92-92D87698D7A0}" = protocol=6 | dir=in | app=d:\steam\steamapps\common\torchlight\torchlight.exe |
"{F8718D2B-6652-4EFB-A656-9B33D0E5DA5E}" = protocol=6 | dir=in | app=d:\steam\steamapps\common\fuel\gamesetup.exe |
"{FA701CC0-83D4-4A97-A1D4-1557299285FE}" = protocol=6 | dir=in | app=c:\program files\ubisoft\tom clancy's splinter cell conviction\src\system\conviction_game.exe |
"{FCE1166E-0BCF-4F73-9F5A-D414B8E6532E}" = protocol=17 | dir=in | app=d:\steam\steamapps\common\brothers in arms road to hill 30\system\bia.exe |
"{FE80D1E8-BCAA-43E4-A481-3A0275852386}" = protocol=6 | dir=in | app=c:\program files\ubisoft\far cry 2\bin\farcry2.exe |
"{FFCD6DF2-BCCD-44D1-A5AA-AAA12A7B75EC}" = protocol=17 | dir=in | app=d:\steam\steamapps\common\jade empire\jadeempirelauncher.exe |
"TCP Query User{06947546-3AD5-43A6-9AB0-7C19109784B6}C:\program files\electronic arts\eadm\core.exe" = protocol=6 | dir=in | app=c:\program files\electronic arts\eadm\core.exe |
"TCP Query User{0C8B0AFB-198A-42EB-BA46-9DAC299E2DF7}D:\steam\steamapps\common\grand theft auto iv episodes from liberty city\eflc\eflc.exe" = protocol=6 | dir=in | app=d:\steam\steamapps\common\grand theft auto iv episodes from liberty city\eflc\eflc.exe |
"TCP Query User{0E6D6EFF-B371-4154-8E90-23E6FB26E4A4}C:\program files\ubisoft\far cry 2\bin\farcry2.exe" = protocol=6 | dir=in | app=c:\program files\ubisoft\far cry 2\bin\farcry2.exe |
"TCP Query User{0FD566E6-D803-46F8-8CBB-B951F17AE378}C:\program files\electronic arts\dead space\dead space.exe" = protocol=6 | dir=in | app=c:\program files\electronic arts\dead space\dead space.exe |
"TCP Query User{19A3D0C3-2EB7-498B-BCCB-6D647A16A76B}D:\front mission evolved\frontmissionevolved.exe" = protocol=6 | dir=in | app=d:\front mission evolved\frontmissionevolved.exe |
"TCP Query User{1D81FE4D-9823-4E99-B152-1AADC1A230F1}C:\users\owner\program files\dna\btdna.exe" = protocol=6 | dir=in | app=c:\users\owner\program files\dna\btdna.exe |
"TCP Query User{1FCF583D-4B50-448F-A596-31A0B0D4BAE7}C:\program files\mozilla firefox\firefox.exe" = protocol=6 | dir=in | app=c:\program files\mozilla firefox\firefox.exe |
"TCP Query User{253E01C3-8B26-4191-84CA-C106C6A1A18C}C:\team17\worms world party\wwp.exe" = protocol=6 | dir=in | app=c:\team17\worms world party\wwp.exe |
"TCP Query User{31275DB9-4671-4F5C-AE43-0B86F6F711AB}C:\program files\turbine\dungeons & dragons online - stormreach\dndclient.exe" = protocol=6 | dir=in | app=c:\program files\turbine\dungeons & dragons online - stormreach\dndclient.exe |
"TCP Query User{32EBF70D-C000-4931-AEE9-E5F06DDF7869}C:\users\owner\desktop\wow-2.3.0.7561-enus-downloader.exe" = protocol=6 | dir=in | app=c:\users\owner\desktop\wow-2.3.0.7561-enus-downloader.exe |
"TCP Query User{33B72E90-ADF9-4F05-ACCE-DBDF99CDF86A}C:\program files\sony\station\launchpad\launchpad.exe" = protocol=6 | dir=in | app=c:\program files\sony\station\launchpad\launchpad.exe |
"TCP Query User{3405AAB3-32CC-4587-9D3D-EDA87E6C23FE}C:\program files\steam\steamapps\common\left 4 dead 2 demo\left4dead2.exe" = protocol=6 | dir=in | app=c:\program files\steam\steamapps\common\left 4 dead 2 demo\left4dead2.exe |
"TCP Query User{359D25AA-2DB7-4E20-8411-E0EDF1499051}C:\users\owner\desktop\bittorrent-7.1.exe" = protocol=6 | dir=in | app=c:\users\owner\desktop\bittorrent-7.1.exe |
"TCP Query User{3A8448AA-37B0-4E61-8CD9-8150894939E2}C:\program files\nero\nero 7\nero home\nerohome.exe" = protocol=6 | dir=in | app=c:\program files\nero\nero 7\nero home\nerohome.exe |
"TCP Query User{4192EFA6-D7E1-4A5D-B6FE-CF164B53E882}C:\program files\java\jre6\bin\java.exe" = protocol=6 | dir=in | app=c:\program files\java\jre6\bin\java.exe |
"TCP Query User{53F90275-6E27-4522-BA39-B16C5B86F78F}D:\steam\steamapps\common\grand theft auto iv\gtaiv\gtaiv.exe" = protocol=6 | dir=in | app=d:\steam\steamapps\common\grand theft auto iv\gtaiv\gtaiv.exe |
"TCP Query User{5C7591F9-FF45-42B8-937F-574EAF24B452}D:\mlb 2k10\mlb2k10.exe" = protocol=6 | dir=in | app=d:\mlb 2k10\mlb2k10.exe |
"TCP Query User{5CAB807B-3969-4550-89B5-FA770E33FD51}D:\turok\binaries\turokgame.exe" = protocol=6 | dir=in | app=d:\turok\binaries\turokgame.exe |
"TCP Query User{621E9D3E-511A-4635-85D7-4DD513F4502D}D:\steam\steamapps\common\red faction guerrilla\rfg.exe" = protocol=6 | dir=in | app=d:\steam\steamapps\common\red faction guerrilla\rfg.exe |
"TCP Query User{697116E3-B754-484D-ADBB-F0D8727FF434}D:\lost planet 2\lp2dx9.exe" = protocol=6 | dir=in | app=d:\lost planet 2\lp2dx9.exe |
"TCP Query User{6D48E9AF-3BDC-46F2-BE51-7DA3F7966750}C:\program files\steam\steamapps\common\grand theft auto\wino\grand theft auto.exe" = protocol=6 | dir=in | app=c:\program files\steam\steamapps\common\grand theft auto\wino\grand theft auto.exe |
"TCP Query User{6D8B7B76-6465-4AE9-B4F8-CB2D458F5350}C:\program files\turbine\the lord of the rings online\lotroclient.exe" = protocol=6 | dir=in | app=c:\program files\turbine\the lord of the rings online\lotroclient.exe |
"TCP Query User{899C94DC-4F27-4378-BDEF-8919A1900B55}C:\users\public\games\world of warcraft\wow-3.3.3.11723-to-3.3.5.12213-enus-downloader.exe" = protocol=6 | dir=in | app=c:\users\public\games\world of warcraft\wow-3.3.3.11723-to-3.3.5.12213-enus-downloader.exe |
"TCP Query User{931666EA-4FEF-46A1-92DD-AAE0269054C1}C:\program files\2k games\gearbox software\borderlands\binaries\borderlands.exe" = protocol=6 | dir=in | app=c:\program files\2k games\gearbox software\borderlands\binaries\borderlands.exe |
"TCP Query User{93D1CD0B-561E-4A04-AE4C-39F9C7D063A0}C:\program files\bethesda softworks\fallout 3\fallout3.exe" = protocol=6 | dir=in | app=c:\program files\bethesda softworks\fallout 3\fallout3.exe |
"TCP Query User{99F8E7C8-57D5-480B-8B52-8EBD6D46A0E5}D:\steam\steamapps\berain666\team fortress 2\hl2.exe" = protocol=6 | dir=in | app=d:\steam\steamapps\berain666\team fortress 2\hl2.exe |
"TCP Query User{A1BD541B-84BF-4972-B2EF-915AB74E6712}C:\program files\sierra entertainment\timeshift\bin\timeshift.exe" = protocol=6 | dir=in | app=c:\program files\sierra entertainment\timeshift\bin\timeshift.exe |
"TCP Query User{A2518CFE-4A07-4B6B-B727-752E5FDAF32C}C:\program files\electronic arts\dead space\dead space.exe" = protocol=6 | dir=in | app=c:\program files\electronic arts\dead space\dead space.exe |
"TCP Query User{A5A6B79F-7503-44CE-AE3E-6A4A5452ABB7}D:\dark void\nativepc\binaries\shippingpc-skygame.exe" = protocol=6 | dir=in | app=d:\dark void\nativepc\binaries\shippingpc-skygame.exe |
"TCP Query User{A7090A10-A8E4-4926-8EC1-1C7121611A7E}C:\users\public\games\world of warcraft\wow-3.3.5.12213-to-3.3.5.12340-enus-downloader.exe" = protocol=6 | dir=in | app=c:\users\public\games\world of warcraft\wow-3.3.5.12213-to-3.3.5.12340-enus-downloader.exe |
"TCP Query User{A88F32F0-3460-438E-9C64-CBAE9FDB1B6C}C:\program files\steam\steamapps\common\grand theft auto iv\gtaiv\gtaiv.exe" = protocol=6 | dir=in | app=c:\program files\steam\steamapps\common\grand theft auto iv\gtaiv\gtaiv.exe |
"TCP Query User{A988460B-2914-4319-9ED4-C6BFFEAFF0F6}C:\program files\sony\everquest ii\everquest2.exe" = protocol=6 | dir=in | app=c:\program files\sony\everquest ii\everquest2.exe |
"TCP Query User{AA4AACBE-498E-4A3C-8762-8964A01CAF8D}C:\users\public\games\world of warcraft\launcher.exe" = protocol=6 | dir=in | app=c:\users\public\games\world of warcraft\launcher.exe |
"TCP Query User{B015CDE7-9116-4115-898F-ABBD7639AA42}D:\steam\steamapps\common\wings of prey demo\acess.exe" = protocol=6 | dir=in | app=d:\steam\steamapps\common\wings of prey demo\acess.exe |
"TCP Query User{B4E7CE91-5965-4B16-987D-64242657DFF9}C:\program files\electronic arts\eadm\core.exe" = protocol=6 | dir=in | app=c:\program files\electronic arts\eadm\core.exe |
"TCP Query User{BB85FB90-055D-43A0-84B6-4378C32A17A9}C:\users\owner\downloads\mtgoiii_helper.exe" = protocol=6 | dir=in | app=c:\users\owner\downloads\mtgoiii_helper.exe |
"TCP Query User{BDE9580C-F79F-4982-895A-4EE91AF39156}C:\program files\nero\nero 7\nero home\nerohome.exe" = protocol=6 | dir=in | app=c:\program files\nero\nero 7\nero home\nerohome.exe |
"TCP Query User{BE3E66B9-283C-4C7D-8A66-AD4ED9E27138}C:\program files\aspyr\dark sector\ds.exe" = protocol=6 | dir=in | app=c:\program files\aspyr\dark sector\ds.exe |
"TCP Query User{BED1C7F3-13AF-4302-ABAC-E6EF3B4520B1}C:\users\owner\program files\dna\btdna.exe" = protocol=6 | dir=in | app=c:\users\owner\program files\dna\btdna.exe |
"TCP Query User{CBC4168C-F0CB-4AD2-99A1-88FA2284DF49}C:\program files\gamespy\comrade\comrade.exe" = protocol=6 | dir=in | app=c:\program files\gamespy\comrade\comrade.exe |
"TCP Query User{EDF5F380-ED24-4CC7-89FB-A4DED143A77E}C:\users\public\games\world of warcraft\backgrounddownloader.exe" = protocol=6 | dir=in | app=c:\users\public\games\world of warcraft\backgrounddownloader.exe |
"TCP Query User{EFF78EDE-16E2-4004-91D6-18AF13FBEBEE}C:\unreal anthology\unrealtournament\system\unrealtournament.exe" = protocol=6 | dir=in | app=c:\unreal anthology\unrealtournament\system\unrealtournament.exe |
"TCP Query User{F510D47A-CF1A-48DE-B1C5-9A77D5B56B60}C:\games\batman.arkham.asylum-kaos\binaries\shippingpc-bmgame.exe" = protocol=6 | dir=in | app=c:\games\batman.arkham.asylum-kaos\binaries\shippingpc-bmgame.exe |
"TCP Query User{F5DE5F19-4226-49B0-AA47-BF25E0C7EF9C}C:\program files\gamespy\comrade\comrade.exe" = protocol=6 | dir=in | app=c:\program files\gamespy\comrade\comrade.exe |
"TCP Query User{F87E5EA5-A0BC-4CF1-A54D-333A6DAF9289}C:\windows\system32\java.exe" = protocol=6 | dir=in | app=c:\windows\system32\java.exe |
"TCP Query User{F8E95650-EA82-475F-B92F-0E1C778E3C0E}C:\users\owner\downloads\yuleech-runesofmagic2_0_1_1821-en.exe" = protocol=6 | dir=in | app=c:\users\owner\downloads\yuleech-runesofmagic2_0_1_1821-en.exe |
"UDP Query User{03D99AC2-52DB-4BD4-9150-EE073EDFD392}C:\users\public\games\world of warcraft\backgrounddownloader.exe" = protocol=17 | dir=in | app=c:\users\public\games\world of warcraft\backgrounddownloader.exe |
"UDP Query User{045612B1-BD06-4ECC-96D5-5E45971BE798}C:\users\owner\program files\dna\btdna.exe" = protocol=17 | dir=in | app=c:\users\owner\program files\dna\btdna.exe |
"UDP Query User{0C1F6E42-3384-4226-BC9F-6E05DE1F8A18}C:\program files\sierra entertainment\timeshift\bin\timeshift.exe" = protocol=17 | dir=in | app=c:\program files\sierra entertainment\timeshift\bin\timeshift.exe |
"UDP Query User{1B9F1471-2428-407C-B786-19EF7B534C6F}C:\users\owner\program files\dna\btdna.exe" = protocol=17 | dir=in | app=c:\users\owner\program files\dna\btdna.exe |
"UDP Query User{2F5E3474-B823-44DE-8C15-252F7248FE26}D:\steam\steamapps\berain666\team fortress 2\hl2.exe" = protocol=17 | dir=in | app=d:\steam\steamapps\berain666\team fortress 2\hl2.exe |
"UDP Query User{3408842C-9FEF-43FE-9119-1881EC2E88CF}C:\users\owner\downloads\yuleech-runesofmagic2_0_1_1821-en.exe" = protocol=17 | dir=in | app=c:\users\owner\downloads\yuleech-runesofmagic2_0_1_1821-en.exe |
"UDP Query User{3573EFD4-49AE-401B-BBF6-FABE651BB355}D:\steam\steamapps\common\wings of prey demo\acess.exe" = protocol=17 | dir=in | app=d:\steam\steamapps\common\wings of prey demo\acess.exe |
"UDP Query User{372B737C-3BF8-4226-9232-718A3B05B6F6}D:\steam\steamapps\common\grand theft auto iv\gtaiv\gtaiv.exe" = protocol=17 | dir=in | app=d:\steam\steamapps\common\grand theft auto iv\gtaiv\gtaiv.exe |
"UDP Query User{435A06AF-1254-4775-88DA-5EBE8461EBFB}C:\program files\electronic arts\dead space\dead space.exe" = protocol=17 | dir=in | app=c:\program files\electronic arts\dead space\dead space.exe |
"UDP Query User{482A412F-C699-4AED-B128-73C163998404}C:\program files\sony\everquest ii\everquest2.exe" = protocol=17 | dir=in | app=c:\program files\sony\everquest ii\everquest2.exe |
"UDP Query User{4D3A886E-2F8D-40E2-8A34-15AB59525E08}C:\users\public\games\world of warcraft\launcher.exe" = protocol=17 | dir=in | app=c:\users\public\games\world of warcraft\launcher.exe |
"UDP Query User{4EC10042-5640-4B23-A46C-393685F1F794}C:\team17\worms world party\wwp.exe" = protocol=17 | dir=in | app=c:\team17\worms world party\wwp.exe |
"UDP Query User{5011948E-D4C7-48AE-8862-50AA4329F838}C:\games\batman.arkham.asylum-kaos\binaries\shippingpc-bmgame.exe" = protocol=17 | dir=in | app=c:\games\batman.arkham.asylum-kaos\binaries\shippingpc-bmgame.exe |
"UDP Query User{534CE853-1626-4834-80F1-CBDA04CB87F7}C:\program files\aspyr\dark sector\ds.exe" = protocol=17 | dir=in | app=c:\program files\aspyr\dark sector\ds.exe |
"UDP Query User{5AD1A779-B99A-4009-B25E-A5A09D6CF3EC}C:\windows\system32\java.exe" = protocol=17 | dir=in | app=c:\windows\system32\java.exe |
"UDP Query User{6010F3F5-26E4-4FFD-A9FE-2E4660AAE9C4}D:\turok\binaries\turokgame.exe" = protocol=17 | dir=in | app=d:\turok\binaries\turokgame.exe |
"UDP Query User{624B0857-A89E-4DDE-AAD8-D1256270B5F5}C:\program files\nero\nero 7\nero home\nerohome.exe" = protocol=17 | dir=in | app=c:\program files\nero\nero 7\nero home\nerohome.exe |
"UDP Query User{645A50AE-012F-4DAF-88C3-50C051E75AA9}C:\program files\electronic arts\eadm\core.exe" = protocol=17 | dir=in | app=c:\program files\electronic arts\eadm\core.exe |
"UDP Query User{72155D87-DDE5-493E-9030-D741EC2BBEEA}D:\steam\steamapps\common\red faction guerrilla\rfg.exe" = protocol=17 | dir=in | app=d:\steam\steamapps\common\red faction guerrilla\rfg.exe |
"UDP Query User{74DE5256-1D3B-4AED-A83E-FC10F5D578A0}C:\program files\steam\steamapps\common\grand theft auto iv\gtaiv\gtaiv.exe" = protocol=17 | dir=in | app=c:\program files\steam\steamapps\common\grand theft auto iv\gtaiv\gtaiv.exe |
"UDP Query User{751D959A-E929-42C2-A6A8-7724C4F6C513}C:\users\public\games\world of warcraft\wow-3.3.3.11723-to-3.3.5.12213-enus-downloader.exe" = protocol=17 | dir=in | app=c:\users\public\games\world of warcraft\wow-3.3.3.11723-to-3.3.5.12213-enus-downloader.exe |
"UDP Query User{7680C6F3-AD51-41D6-A035-41A89D8C8A30}C:\program files\turbine\the lord of the rings online\lotroclient.exe" = protocol=17 | dir=in | app=c:\program files\turbine\the lord of the rings online\lotroclient.exe |
"UDP Query User{7777944E-9281-4737-8CFF-632A34E013ED}C:\program files\nero\nero 7\nero home\nerohome.exe" = protocol=17 | dir=in | app=c:\program files\nero\nero 7\nero home\nerohome.exe |
"UDP Query User{893DDCEA-C0F7-4FEE-A356-804639AE64B0}C:\program files\electronic arts\eadm\core.exe" = protocol=17 | dir=in | app=c:\program files\electronic arts\eadm\core.exe |
"UDP Query User{95D4333C-4BD9-43D8-A31C-40B730E0B583}C:\program files\steam\steamapps\common\left 4 dead 2 demo\left4dead2.exe" = protocol=17 | dir=in | app=c:\program files\steam\steamapps\common\left 4 dead 2 demo\left4dead2.exe |
"UDP Query User{973E44B9-7AEC-4F0E-B561-0D9EBEDBD026}C:\program files\bethesda softworks\fallout 3\fallout3.exe" = protocol=17 | dir=in | app=c:\program files\bethesda softworks\fallout 3\fallout3.exe |
"UDP Query User{A03CFB1E-248D-4236-8468-8A45E5399E8E}C:\program files\steam\steamapps\common\grand theft auto\wino\grand theft auto.exe" = protocol=17 | dir=in | app=c:\program files\steam\steamapps\common\grand theft auto\wino\grand theft auto.exe |
"UDP Query User{A1C06D63-D2A8-4092-99F7-4B11034F20D3}C:\unreal anthology\unrealtournament\system\unrealtournament.exe" = protocol=17 | dir=in | app=c:\unreal anthology\unrealtournament\system\unrealtournament.exe |
"UDP Query User{BC8A8871-7919-4667-A8EA-6A73592BFF75}C:\program files\turbine\dungeons & dragons online - stormreach\dndclient.exe" = protocol=17 | dir=in | app=c:\program files\turbine\dungeons & dragons online - stormreach\dndclient.exe |
"UDP Query User{BD09E45B-56C1-480F-9EBC-74202B2AABC2}C:\users\owner\desktop\wow-2.3.0.7561-enus-downloader.exe" = protocol=17 | dir=in | app=c:\users\owner\desktop\wow-2.3.0.7561-enus-downloader.exe |
"UDP Query User{C5113A5C-1B1B-4A3F-B037-C49341865570}C:\program files\gamespy\comrade\comrade.exe" = protocol=17 | dir=in | app=c:\program files\gamespy\comrade\comrade.exe |
"UDP Query User{C9E5FD68-A805-4D83-B1F3-D890889B245C}C:\users\owner\downloads\mtgoiii_helper.exe" = protocol=17 | dir=in | app=c:\users\owner\downloads\mtgoiii_helper.exe |
"UDP Query User{CF32E107-2F2B-4427-AFE8-F8D307B91EB1}C:\program files\mozilla firefox\firefox.exe" = protocol=17 | dir=in | app=c:\program files\mozilla firefox\firefox.exe |
"UDP Query User{D0AA79C1-A33A-440D-8164-3A9D90D018BD}D:\steam\steamapps\common\grand theft auto iv episodes from liberty city\eflc\eflc.exe" = protocol=17 | dir=in | app=d:\steam\steamapps\common\grand theft auto iv episodes from liberty city\eflc\eflc.exe |
"UDP Query User{D6F9960B-4655-4C8A-AAE6-04830C5B390E}C:\program files\gamespy\comrade\comrade.exe" = protocol=17 | dir=in | app=c:\program files\gamespy\comrade\comrade.exe |
"UDP Query User{DB2B06DA-FDCB-4846-A4D0-B3B40EE1ED59}C:\users\owner\desktop\bittorrent-7.1.exe" = protocol=17 | dir=in | app=c:\users\owner\desktop\bittorrent-7.1.exe |
"UDP Query User{DB6063BC-E4DF-439D-8A48-EA4AF0B904A7}C:\program files\2k games\gearbox software\borderlands\binaries\borderlands.exe" = protocol=17 | dir=in | app=c:\program files\2k games\gearbox software\borderlands\binaries\borderlands.exe |
"UDP Query User{DC5A821F-C4AC-479D-A2D7-A7EAA03809E0}D:\mlb 2k10\mlb2k10.exe" = protocol=17 | dir=in | app=d:\mlb 2k10\mlb2k10.exe |
"UDP Query User{E41BBCB3-3471-473B-83F5-4528BBBF8BC3}C:\program files\java\jre6\bin\java.exe" = protocol=17 | dir=in | app=c:\program files\java\jre6\bin\java.exe |
"UDP Query User{E59339D4-603E-481E-9D5D-C5AB03406468}C:\users\public\games\world of warcraft\wow-3.3.5.12213-to-3.3.5.12340-enus-downloader.exe" = protocol=17 | dir=in | app=c:\users\public\games\world of warcraft\wow-3.3.5.12213-to-3.3.5.12340-enus-downloader.exe |
"UDP Query User{EA2C01F4-CC6D-4FF7-AEA6-15B55C91B5A0}C:\program files\sony\station\launchpad\launchpad.exe" = protocol=17 | dir=in | app=c:\program files\sony\station\launchpad\launchpad.exe |
"UDP Query User{EB347E39-C05B-4A40-BF90-C71D31B1C171}D:\front mission evolved\frontmissionevolved.exe" = protocol=17 | dir=in | app=d:\front mission evolved\frontmissionevolved.exe |
"UDP Query User{EDD15AC4-DC5F-4D25-9961-6A8BE03C8426}D:\dark void\nativepc\binaries\shippingpc-skygame.exe" = protocol=17 | dir=in | app=d:\dark void\nativepc\binaries\shippingpc-skygame.exe |
"UDP Query User{F1D01F5C-37FC-4E32-9F06-9CD79D9BA6FA}C:\program files\ubisoft\far cry 2\bin\farcry2.exe" = protocol=17 | dir=in | app=c:\program files\ubisoft\far cry 2\bin\farcry2.exe |
"UDP Query User{F3644334-74E2-4E42-9515-FE9118E51BA7}C:\program files\electronic arts\dead space\dead space.exe" = protocol=17 | dir=in | app=c:\program files\electronic arts\dead space\dead space.exe |
"UDP Query User{F6E26F06-63AD-49B8-931D-CE893371C418}D:\lost planet 2\lp2dx9.exe" = protocol=17 | dir=in | app=d:\lost planet 2\lp2dx9.exe |
========== HKEY_LOCAL_MACHINE Uninstall List ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}" = Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148
"{00BD992A-D4C7-447D-8AA1-60B5759EA30D}" = SILENT HILL 4
"{01501EBA-EC35-4F9F-8889-3BE346E5DA13}" = MSXML4 Parser
"{01A9C1F8-9F3E-A0B9-B4DA-0D91D41BCF91}" = Catalyst Control Center HydraVision Full
"{01BA5911-933D-19B8-9AB2-7827BBE5F006}" = ccc-utility
"{02627EE5-EACA-4742-A9CC-E687631773E4}" = Nero ShowTime
"{02A10468-2F1C-447C-AD8E-4DEDDEA25AE2}" = Medieval II Total War : Kingdoms : Crusades
"{048298C9-A4D3-490B-9FF9-AB023A9238F3}" = Steam
"{0A3B1207-6E28-DD5E-323F-DBC6ADD5B7DA}" = Catalyst Control Center Graphics Previews Vista
"{0B0F231F-CE6A-483D-AA23-77B364F75917}" = Windows Live Installer
"{0CCC0F9A-81E6-3529-4394-86384585325C}" = Catalyst Control Center Graphics Light
"{106B839C-DBA9-0AA9-07E9-9A2597151FF6}" = Catalyst Control Center Graphics Full Existing
"{1134256A-384F-4AA1-8B5C-FE6688595093}" = ASUS Smart Doctor
"{11C3CF79-59FC-62D1-7339-0E5CA09CFE8A}" = Catalyst Control Center Graphics Full Existing
"{12453E04-9738-4D16-8408-D726532C2C69}" = ASUS VGA Driver
"{13CDB886-34E0-E8A4-A186-E735070DB5E9}" = Catalyst Control Center Graphics Previews Common
"{14D10AAC-9737-454E-A247-8075C26C30E1}" = SILENT HILL 3
"{152B782A-05F3-48EC-9AAC-4D3EB68D9E20}" = Quake 4™
"{153A64E0-7140-A1AE-C7ED-745A3218DFBD}" = ccc-utility
"{153C7D89-9CF4-4719-A551-C5BF45236DB5}" = redist
"{155F4A0E-76ED-45A2-91FB-FF2A2133C31A}" = Risen
"{19BA08F7-C728-469C-8A35-BFBD3633BE08}" = Windows Live Movie Maker
"{1BA7B068-4719-42A3-B553-D4ED97434F92}" = ASUS Utilities
"{1E99F5D7-4262-4C7C-9135-F066E7485811}" = System Requirements Lab
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{1F28237D-8AA8-45A5-86CF-F771BFD47EF7}" = Catalyst Control Center Core Implementation
"{1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4}" = Junk Mail filter update
"{200FEC62-3C34-4D60-9CE8-EC372E01C08F}" = Windows Live SOXE Definitions
"{20400DBD-E6DB-45B8-9B6B-1DD7033818EC}" = Nero InfoTool Help
"{2348B586-C9AE-46CE-936C-A68E9426E214}" = Nero StartSmart Help
"{23734E07-35AD-6E7F-AD27-CB906015BCCC}" = Catalyst Control Center Graphics Light
"{26A24AE4-039D-4CA4-87B4-2F83216020FF}" = Java™ 6 Update 21
"{287ECFA4-719A-2143-A09B-D6A12DE54E40}" = Acrobat.com
"{294BF709-D758-4363-8D75-01479AD20927}" = Windows Live Family Safety
"{2A96D655-4FEF-4512-9468-0AABA70CD389}" = Activision®
"{2D0B560E-493A-47EE-9132-6A47A44A437F}" = DARK VOID
"{3336F667-9049-4D46-98B6-4C743EEBC5B1}" = Windows Live Photo Gallery
"{3389299C-9F50-D0C4-197C-A8804303B79F}" = Catalyst Control Center Graphics Light
"{33CF58F5-48D8-4575-83D6-96F574E4D83A}" = Nero DriveSpeed
"{34306B7C-3556-DA75-EBEA-C2D8025D5C00}" = ccc-utility
"{34F4D9A4-42C2-4348-BEF4-E553C84549E7}" = Windows Live Photo Gallery
"{350C97B0-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{38677B61-F998-6EE4-1606-E6C3207E7B06}" = Catalyst Control Center Graphics Previews Vista
"{39DB116F-E088-486F-B13C-8925ECE7A6E5}" = 3D Sound Back Beta0.1
"{3AC8457C-0385-4BEA-A959-E095F05D6D67}" = Battlefield: Bad Company™ 2
"{3B1D4001-33A2-5E7B-98F3-A7CA96D4E8F6}" = CCC Help English
"{3C3901C5-3455-3E0A-A214-0B093A5070A6}" = Microsoft .NET Framework 4 Client Profile
"{3CC478BC-E194-C115-0A62-84D0F2708C16}" = CCC Help English
"{3FAD68D9-1FA1-4871-9ADF-9151D969E943}" = Activision®
"{415807D5-45E8-4635-A5A9-C81000008400}" = BLAZBLUE -CALAMITY TRIGGER-
"{42705D0C-0DF6-804C-D718-57C53F733C32}" = ccc-utility
"{4343080E-91B7-4388-AB4D-FB1000008200}" = Dead Rising 2
"{43545ABC-41F6-40E2-B0FF-B4735003A7CC}" = Catalyst Control Center Graphics Full Existing
"{43de820c-afd1-4e0e-a897-dcfd0d40c2c8}" = Nero 9 Essentials
"{43E39830-1826-415D-8BAE-86845787B54B}" = Nero Vision
"{45A66726-69BC-466B-A7A4-12FCBA4883D7}" = HiJackThis
"{45A8F574-2F1C-3696-B803-746965390DBB}" = Catalyst Control Center HydraVision Full
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4A8D323F-21EF-59CA-AD28-5A3DDB08A206}" = Catalyst Control Center Graphics Full New
"{4CBABDFD-49F8-47FD-BE7D-ECDE7270525A}" = Windows Live PIMT Platform
"{4D87DC92-C328-46EC-A7B4-9C88129DC696}" = Dead Space™
"{4E8C27C2-D727-4C00-A90E-C3F6376EEE70}" = Nero ControlCenter
"{5052F2A7-5DDE-47F5-BF29-673C10F3DA87}_is1" = Penumbra Black Plague
"{54510837-BD04-4C32-9676-DB1000028201}" = Red Faction: Guerrilla
"{559BA5B3-E3E1-C8A0-E301-5F50531BD44C}" = ccc-utility
"{56C049BE-79E9-4502-BEA7-9754A3E60F9B}" = neroxml
"{5872DE6D-DFC0-1D4C-E7EC-6D927B2F0285}" = Catalyst Control Center Localization All
"{595A3116-40BB-4E0F-A2E8-D7951DA56270}" = NeroExpress
"{5D9BE3C1-8BA4-4E7E-82FD-9F74FA6815D1}" = Nero Vision Help
"{5DA8F6CD-C70E-39D8-8430-3D9808D6BD17}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30411
"{5DD4FCBD-A3C1-4155-9E17-4161C70AAABA}" = Segoe UI
"{5EE7D259-D137-4438-9A5F-42F432EC0421}" = VC80CRTRedist - 8.0.50727.4053
"{61AD15B2-50DB-4686-A739-14FE180D4429}" = Windows Live ID Sign-in Assistant
"{62AC81F6-BDD3-4110-9D36-3E9EAAB40999}" = Nero CoverDesigner
"{66039B36-96AE-40D1-8A32-071F7A61B738}" = Microsoft LifeChat
"{6772B9B1-ACAE-ECF8-9C6F-DAD5A3C1A001}" = Skins
"{68116229-DF02-0B95-E906-1EA0664D164F}" = Catalyst Control Center Graphics Light
"{682B3E4F-696A-42DE-A41C-4C07EA1678B4}" = Windows Live SOXE
"{68A35043-C55A-4237-88C9-37EE1C63ED71}" = Microsoft Visual J# 2.0 Redistributable Package
"{68A6B380-32F8-DBD1-B856-9B1B1BC90C24}" = ccc-utility
"{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}" = Windows Media Player Firefox Plugin
"{6A05FEDF-662E-46BF-8A25-010E3F1C9C69}" = Windows Live UX Platform Language Pack
"{6B3CB2AF-0A96-4132-A5B4-562E160D5277}" = Obscure
"{6CC0C920-028D-7E7A-E3E5-44D02E3F3A85}" = Catalyst Control Center Graphics Full Existing
"{6D8DDB4A-C263-40DE-BA16-AFDAD159D59A}" = Tom Clancy's Splinter Cell Conviction
"{7157C65D-270C-F593-C873-FF9AD949E221}" = Skins
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{733C47BE-4A73-66BE-03EC-460AC98E550C}" = Catalyst Control Center Graphics Previews Vista
"{737369DC-08E8-4787-A78C-F86943247BDF}" = LOST PLANET 2
"{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
"{7748AC8C-18E3-43BB-959B-088FAEA16FB2}" = Nero StartSmart
"{7829DB6F-A066-4E40-8912-CB07887C20BB}" = Nero BurnRights
"{789289CA-F73A-4A16-A331-54D498CE069F}" = Ventrilo Client
"{79C051A5-3141-1CD2-D601-7127D0CD9E22}" = Catalyst Control Center HydraVision Full
"{79E88160-A5E4-F7D2-1314-DEB8AADD9C29}" = ccc-core-static
"{7A529246-912F-4C40-A82A-E608DB702FD7}" = ASUS VideoSecurity Online
"{7AEE1963-7001-4C37-BC20-2FAEB74AA41C}" = Medieval II Total War : Kingdoms : Teutonic
"{7DD0FFB0-387C-EF62-1591-41C05FE60642}" = Catalyst Control Center Graphics Previews Common
"{80956555-A512-4190-9CAD-B000C36D6B6B}" = Windows Live Messenger
"{83202942-84B3-4C50-8622-B8C0AA2D2885}" = Nero Express Help
"{83735930-0FB1-D871-8832-B5A9E27C93CA}" = CCC Help English
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{84EBDF39-4B33-49D7-A0BD-EB6E2C4E81C1}" = Windows Live Sync
"{8570BEE8-0CA3-4977-9AB1-80ED93F0513C}" = Assassin's Creed II
"{869200DB-287A-4DC0-B02B-2B6787FBCD4C}" = Nero DiscSpeed
"{869ACBAB-75CC-258E-9B2A-6B556442BA13}" = Catalyst Control Center Graphics Previews Vista
"{86D4B82A-ABED-442A-BE86-96357B70F4FE}" = Ask Toolbar
"{8833FFB6-5B0C-4764-81AA-06DFEED9A476}" = Realtek 8169 PCI, 8168 and 8101E PCIe Ethernet Network Card Driver for Windows Vista
"{888F1505-C2B3-4FDE-835D-36353EBD4754}" = Ubisoft Game Launcher
"{88AD1843-8E39-5215-7FC0-294B16C87C7C}" = CCC Help English
"{899FEBB5-CDF7-FD73-01B5-1381EAA75EED}" = CCC Help English
"{89DE67AD-08B8-4699-A55D-CA5C0AF82BF3}" = ATI AVIVO Codecs
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8ADF7789-32B6-8F06-5DD7-6BE172EA952D}" = ccc-core-static
"{8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}" = MSVCRT
"{8FB1B528-E260-451E-9B55-E9152F94B80B}" = Microsoft Games for Windows - LIVE Redistributable
"{90120000-0015-0409-0000-0000000FF1CE}" = Microsoft Office Access MUI (English) 2007
"{90120000-0015-0409-0000-0000000FF1CE}_PROR_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0016-0409-0000-0000000FF1CE}" = Microsoft Office Excel MUI (English) 2007
"{90120000-0016-0409-0000-0000000FF1CE}_PROR_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0018-0409-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (English) 2007
"{90120000-0018-0409-0000-0000000FF1CE}_PROR_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0019-0409-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (English) 2007
"{90120000-0019-0409-0000-0000000FF1CE}_PROR_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001A-0409-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (English) 2007
"{90120000-001A-0409-0000-0000000FF1CE}_PROR_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001B-0409-0000-0000000FF1CE}" = Microsoft Office Word MUI (English) 2007
"{90120000-001B-0409-0000-0000000FF1CE}_PROR_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-0409-0000-0000000FF1CE}_PROR_{ABDDE972-355B-4AF1-89A8-DA50B7B5C045}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-040C-0000-0000000FF1CE}" = Microsoft Office Proof (French) 2007
"{90120000-001F-040C-0000-0000000FF1CE}_PROR_{F580DDD5-8D37-4998-968E-EBB76BB86787}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-0C0A-0000-0000000FF1CE}" = Microsoft Office Proof (Spanish) 2007
"{90120000-001F-0C0A-0000-0000000FF1CE}_PROR_{187308AB-5FA7-4F14-9AB9-D290383A10D9}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-002C-0409-0000-0000000FF1CE}" = Microsoft Office Proofing (English) 2007
"{90120000-006E-0409-0000-0000000FF1CE}" = Microsoft Office Shared MUI (English) 2007
"{90120000-006E-0409-0000-0000000FF1CE}_PROR_{DE5A002D-8122-4278-A7EE-3121E7EA254E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0115-0409-0000-0000000FF1CE}" = Microsoft Office Shared Setup Metadata MUI (English) 2007
"{90120000-0115-0409-0000-0000000FF1CE}_PROR_{DE5A002D-8122-4278-A7EE-3121E7EA254E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0117-0409-0000-0000000FF1CE}" = Microsoft Office Access Setup Metadata MUI (English) 2007
"{90120000-0117-0409-0000-0000000FF1CE}_PROR_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90D43604-FAC9-62BD-186C-6F5692CBD48E}" = Catalyst Control Center Graphics Previews Vista
"{91120000-0014-0000-0000-0000000FF1CE}" = Microsoft Office Professional 2007
"{91120000-0014-0000-0000-0000000FF1CE}_PROR_{0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{91120000-0014-0000-0000-0000000FF1CE}_PROR_{3D019598-7B59-447A-80AE-815B703B84FF}" = Security Update for Microsoft Office system 2007 (972581)
"{92EA4134-10D1-418A-91E1-5A0453131A38}" = Windows Live Movie Maker
"{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting
"{95140000-007A-0409-0000-0000000FF1CE}" = Microsoft Office Outlook Connector
"{961D53EA-40DC-4156-AD74-25684CE05F81}" = Nero Installer
"{99011A6E-5200-11DE-BDB8-7ACD56D89593}" = Rosetta Stone Version 3
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9A875B56-A35C-46BA-A3AA-DF8D03EE9F2F}" = Nero ControlCenter
"{9D56775A-93F3-44A3-8092-840E3826DE30}" = Windows Live Mail
"{9E1BAB75-EB78-440D-94C0-A3857BE2E733}" = System Requirements Lab
"{9F3523F8-DAD7-AE52-6DA7-45CDDDF33726}" = Advertising Center
"{A126E617-63F0-4E57-BFA4-7190F5845C39}" = Guitar Hero World Tour
"{A3BC1DBD-64D6-4EBC-0091-24C811662D40}" = Madden NFL 08
"{A3BC9DDC-4B4C-F307-FEDC-7B77992FBC9F}" = Catalyst Control Center Graphics Full New
"{A49F249F-0C91-497F-86DF-B2585E8E76B7}" = Microsoft Visual C++ 2005 Redistributable
"{A726AE06-AAA3-43D1-87E3-70F510314F04}" = Windows Live Writer
"{A8F2089B-1F79-4BF6-B385-A2C2B0B9A74D}" = ImagXpress
"{A961C6FD-C583-45F6-A0A4-5E4376C29E41}" = Catalyst Control Center - Branding
"{A9BDCA6B-3653-467B-AC83-94367DA3BFE3}" = Windows Live Photo Common
"{AAAFC670-569B-4A2F-82B4-42945E0DE3EF}" = Windows Live Writer
"{AAF454FC-82CA-4F29-AB31-6A109485E76E}" = Windows Live Writer
"{AB49B509-8FCA-45E6-9FB9-9E4AEEB8F148}" = System Requirements Lab CYRI
"{AC08BBA0-96B9-431A-A7D0-D8598E493775}" = RESIDENT EVIL 5
"{AC76BA86-7AD7-1033-7B44-A94000000001}" = Adobe Reader 9.4.0
"{ADE26E16-EE97-4560-C804-4F9C6B1F5907}" = Catalyst Control Center Graphics Light
"{AF844339-2F8A-4593-81B3-9F4C54038C4E}" = Windows Live MIME IFilter
"{B13A7C41581B411290FBC0395694E2A9}" = DivX Converter
"{B194272D-1F92-46DF-99EB-8D5CE91CB4EC}" = Adobe AIR
"{B1ADF008-E898-4FE2-8A1F-690D9A06ACAF}" = DolbyFiles
"{B2544A03-10D0-4E5E-BA69-0362FFC20D18}" = OGA Notifier 2.0.0048.0
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision" = NVIDIA 3D Vision Driver 260.89
"{B2FE1952-0186-46c3-BAEC-A80AA35AC5B8}_Display.ControlPanel" = NVIDIA Control Panel 260.89
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver" = NVIDIA Graphics Driver 260.89
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX" = NVIDIA PhysX System Software 9.10.0514
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer" = NVIDIA Install Application
"{B52F879B-BC87-061E-3B0E-6A57F5960E24}" = Catalyst Control Center Graphics Full New
"{B55EF832-4613-A19B-A222-DDB8B6CE1B52}" = Catalyst Control Center Core Implementation
"{B78120A0-CF84-4366-A393-4D0A59BC546C}" = Menu Templates - Starter Kit
"{B9DB4C76-01A4-46D5-8910-F7AA6376DBAF}" = NVIDIA PhysX
"{BB47D7EA-7EF1-475C-9C14-AF5B8FCA45E2}" = Condemned - Criminal Origins
"{BD9137C8-98D0-5B0B-824D-07263F8CF39D}" = Catalyst Control Center Core Implementation
"{BEE64C14-BEF1-4610-8A68-A16EAA47B882}" = Futuremark SystemInfo
"{BFDEA2EF-35BB-8AD8-E113-67FE40A28F75}" = Catalyst Control Center Core Implementation
"{C0E3A9E4-CAAC-6C5C-E01A-9E4F288BC056}" = Skins
"{C194D333-B84A-4BB7-B35E-060732D98DC4}" = GPGNet
"{C2357811-40CF-F33E-51DC-19144868E72E}" = Catalyst Control Center Graphics Full New
"{C66824E4-CBB3-4851-BB3F-E8CFD6350923}" = Windows Live Mail
"{C81A2FE0-3574-00A9-CED4-BDAA334CBE8E}" = Nero Online Upgrade
"{C9AB3EB6-EC10-8171-4987-08C0405A3A88}" = Catalyst Control Center Core Implementation
"{CABD1344-150F-8A13-FE4F-64D18C6962AD}" = Catalyst Control Center Graphics Full New
"{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1
"{CC019E3F-59D2-4486-8D4B-878105B62A71}" = Nero DiscSpeed Help
"{CC8E94A2-55C7-4460-953C-2A790180578C}" = LightScribe System Software
"{CD3E2AB0-305C-84D6-4C6E-20BFC33C3ECA}" = Catalyst Control Center Graphics Light
"{CD960D1B-2D16-5A6A-FAD7-E5C32BB78CE7}" = Catalyst Control Center Graphics Full Existing
"{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}" = SUPERAntiSpyware
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{CE95A79E-E4FC-4FFF-8A75-29F04B942FF2}" = Windows Live UX Platform
"{CE96F5A5-584D-4F8F-AA3E-9BAED413DB72}" = Nero CoverDesigner Help
"{CED5BB5B-2A24-2F7F-61B1-2B557484084B}" = Catalyst Control Center Graphics Previews Common
"{CFF8B8E8-E086-4DE0-935F-FE22CAB54F80}" = Microsoft Search Enhancement Pack
"{D1268F56-DE79-19A8-C8EC-961D48FFD2FE}" = Skins
"{D191837E-0AE9-F062-9EE3-A97DD6D9A11D}" = Catalyst Control Center Core Implementation
"{D24DB8B9-BB6C-4334-9619-BA1C650E13D3}" = Microsoft Primary Interoperability Assemblies 2005
"{D37FE0E3-B1A9-4E41-AB5D-DA62E04D2C42}" = Alpha Protocol
"{D3B1C799-CB73-42DE-BA0F-2344793A095C}" = Catalyst Control Center - Branding
"{D436F577-1695-4D2F-8B44-AC76C99E0002}" = Windows Live Photo Common
"{D45240D3-B6B3-4FF9-B243-54ECE3E10066}" = Windows Live Communications Platform
"{D4EAC706-D24F-FB71-BA20-A143CC2ECBFF}" = Catalyst Control Center Graphics Full Existing
"{D5A9DA4B-E4F9-FB49-017D-769FC540F1F0}" = EA Download Manager UI
"{D5C92012-A0A0-53E1-4A18-8DCC4463CA34}" = CCC Help English
"{D7FA2982-EBD6-465B-BF6B-1956EA141D8F}" = Tony Hawk's Underground
"{D9DCF92E-72EB-412D-AC71-3B01276E5F8B}" = Nero ShowTime
"{DB5F474C-B584-417F-810B-DEBBC1893C2A}" = TBS WMP Plug-in
"{DDC8BDEE-DCAC-404D-8257-3E8D4B782467}" = Windows Live Writer Resources
"{DEB6C5B9-D5BB-D8AC-20F7-F1E0F8A67D5A}" = Catalyst Control Center Graphics Full New
"{E09C4DB7-630C-4F06-A631-8EA7239923AF}" = D3DX10
"{E14E7A11-01A4-A257-4FB0-7C2D5CEEF922}" = Skins
"{E3E71D07-CD27-46CB-8448-16D4FB29AA13}" = Microsoft WSE 3.0 Runtime
"{E498385E-1C51-459A-B45F-1721E37AA1A0}" = Movie Templates - Starter Kit
"{E5C7D048-F9B4-4219-B323-8BDB01A2563D}" = Nero DriveSpeed Help
"{E8EA933E-03A2-4E62-9F52-812C72BE2A6B}" = Privatefirewall 7.0
"{E94F42C9-75F5-FFA4-0112-37D2F040017F}" = Catalyst Control Center Graphics Previews Common
"{EB091AF7-A73B-4AD8-A40F-C0369BC9C269}" = Mids' Hero Designer
"{EB4DF488-AAEF-406F-A341-CB2AAA315B90}" = Windows Live Messenger
"{EDBE322C-5CF0-46AC-A6DE-C6713F84B68A}" = Syberia 2
"{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}" = Microsoft SQL Server 2005 Compact Edition [ENU]
"{F2835483-37F2-4123-B4FE-0E77D58447F2}" = Far Cry 2
"{F40BBEC7-C2A4-4A00-9B24-7A055A2C5262}" = Microsoft Office Live Add-in 1.5
"{F53D678E-238F-4A71-9742-08BB6774E9DC}" = Windows Live Family Safety
"{F6BDD7C5-89ED-4569-9318-469AA9732572}" = Nero BurnRights Help
"{F97E3841-CA9D-4964-9D64-26066241D26F}" = Microsoft Games for Windows - LIVE
"{F9B37992-968C-4264-8449-489032FC28DE}" = Wolfenstein
"{FBCDFD61-7DCF-4E71-9226-873BA0053139}" = Nero InfoTool
"{FE044230-9CA5-43F7-9B58-5AC5A28A1F33}" = Windows Live Essentials
"{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
"Adobe AIR" = Adobe AIR
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"AGON_CD" = AGON
"Amazon MP3 Downloader" = Amazon MP3 Downloader 1.0.3
"ArcaniA" = ArcaniA - Gothic 4
"avast5" = avast! Free Antivirus
"AVS Audio Converter 6.2_is1" = AVS Audio Converter version 6.2
"AVS Update Manager_is1" = AVS Update Manager 1.0
"AVS4YOU Software Navigator_is1" = AVS4YOU Software Navigator 1.4
"AVS4YOU Video Converter 7_is1" = AVS Video Converter 7
"BitTorrent" = BitTorrent
"CCleaner" = CCleaner
"CNXT_MODEM_PCI_VEN_14F1&DEV_2F20&SUBSYS_200C14F1" = Soft Data Fax Modem with SmartCP
"com.ea.Vault.919CACB699904AC5D41B606703500DD39747C02D.1" = EA Download Manager UI
"CPUID CPU-Z_is1" = CPUID CPU-Z 1.55
"DivX Setup.divx.com" = DivX Setup
"Dream Day Anniversary_is1" = Dream Day Anniversary
"Dream Day Wedding_is1" = Dream Day Wedding
"DualCoreCenter_is1" = DualCoreCenter
"EA Download Manager" = EA Download Manager
"ERUNT_is1" = ERUNT 1.1j
"Fallout2" = Fallout2
"Front Mission Evolved_is1" = Front Mission Evolved
"GFWL_{415807D5-45E8-4635-A5A9-C81000008400}" = BLAZBLUE -CALAMITY TRIGGER-
"GFWL_{4343080E-91B7-4388-AB4D-FB1000008200}" = Dead Rising 2
"GSplit3Set" = GSplit 3
"HandBrake" = HandBrake 0.9.3
"ImgBurn" = ImgBurn
"InstallShield_{14D10AAC-9737-454E-A247-8075C26C30E1}" = SILENT HILL 3
"InstallShield_{2A96D655-4FEF-4512-9468-0AABA70CD389}" = Transformers™ - War for Cybertron™
"InstallShield_{3FAD68D9-1FA1-4871-9ADF-9151D969E943}" = Singularity™
"InstallShield_{6B3CB2AF-0A96-4132-A5B4-562E160D5277}" = Obscure
"InstallShield_{DB5F474C-B584-417F-810B-DEBBC1893C2A}" = TBS WMP Plug-in
"InstallShield_{F9B37992-968C-4264-8449-489032FC28DE}" = Wolfenstein
"Jojos Fashion Show World Tour1.0" = Jojos Fashion Show World Tour
"Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware
"Microsoft .NET Framework 1.1 (1033)" = Microsoft .NET Framework 1.1
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Microsoft Visual J# 2.0 Redistributable Package" = Microsoft Visual J# 2.0 Redistributable Package
"Mozilla Firefox (3.6.10)" = Mozilla Firefox (3.6.10)
"NVIDIAStereo" = NVIDIA Stereoscopic 3D Driver
"OpenAL" = OpenAL
"PaquetBuilderSetup89" = Paquet Builder 2.9
"Paradise_is1" = Paradise
"Physicus_is1" = Physicus ´07
"PowerISO" = PowerISO
"Precision" = EVGA Precision 1.5.1
"PROR" = Microsoft Office Professional 2007
"PunkBusterSvc" = PunkBuster Services
"QuickTime" = QuickTime
"Riddle of the Sphinx" = Riddle of the Sphinx 2.0
"Star Crossed Love 1.00" = Star Crossed Love 1.00
"Steam App 10150" = Prototype
"Steam App 12120" = Grand Theft Auto: San Andreas
"Steam App 12150" = Max Payne 2: The Fall of Max Payne
"Steam App 12800" = FUEL
"Steam App 15190" = Brothers in Arms: Road to Hill 30
"Steam App 15210" = Silent Hunter III
"Steam App 15230" = Blazing Angels 2: Secret Missions of WWII
"Steam App 15320" = IL-2 Sturmovik: 1946
"Steam App 17300" = Crysis
"Steam App 21660" = Street Fighter IV
"Steam App 22500" = Spectromancer
"Steam App 25900" = King's Bounty: The Legend
"Steam App 32370" = Star Wars: Knights of the Old Republic
"Steam App 35700" = Trine
"Steam App 41500" = Torchlight
"Steam App 440" = Team Fortress 2
"Steam App 500" = Left 4 Dead
"Steam App 50130" = Mafia II
"Steam App 550" = Left 4 Dead 2
"Steam App 564" = Left 4 Dead 2 Add-on Support
"Steam App 7110" = Jade Empire
"Steam App 7850" = Cryostasis
"Steam App 9870" = Ghostbusters: The Video Game
"SUPER ©" = SUPER © Version 2009.bld.35 (Jan 5, 2009)
"SystemRequirementsLab" = System Requirements Lab
"The Omega Stone_is1" = The Omega Stone
"Universal Extractor_is1" = Universal Extractor 1.6.1
"WinLiveSuite" = Windows Live Essentials
"WinRAR archiver" = WinRAR archiver
"Wizardry 8" = Wizardry 8
"xvid" = XviD MPEG-4 Video Codec
"Zuma's Revenge!1.0" = Zuma's Revenge!
========== Last 10 Event Log Errors ==========
[ Application Events ]
Error - 8/2/2010 04:38:28 | Computer Name = superbad | Source = Windows Search Service | ID = 3013
Description =
Error - 8/2/2010 04:38:28 | Computer Name = superbad | Source = Windows Search Service | ID = 3013
Description =
Error - 8/2/2010 15:55:50 | Computer Name = superbad | Source = Application Error | ID = 1000
Description = Faulting application svchost.exe, version 6.0.6001.18000, time stamp
0x47918b89, faulting module ntdll.dll, version 6.0.6002.18005, time stamp 0x49e03821,
exception code 0xc000071b, fault offset 0x000888f5, process id 0x454, application
start time 0x01cb32715f61bc08.
Error - 8/2/2010 15:57:25 | Computer Name = superbad | Source = Application Error | ID = 1000
Description = Faulting application drakensang.exe, version 0.0.0.0, time stamp 0x48f3e2af,
faulting module drakensang.exe, version 0.0.0.0, time stamp 0x48f3e2af, exception
code 0xc0000005, fault offset 0x00f37c0f, process id 0x674, application start time
0x01cb3272e07bab44.
Error - 8/3/2010 02:52:52 | Computer Name = superbad | Source = Application Error | ID = 1000
Description = Faulting application svchost.exe, version 6.0.6001.18000, time stamp
0x47918b89, faulting module ntdll.dll, version 6.0.6002.18005, time stamp 0x49e03821,
exception code 0xc000071b, fault offset 0x000888f5, process id 0x454, application
start time 0x01cb32d58c370a12.
Error - 8/3/2010 05:04:54 | Computer Name = superbad | Source = Application Error | ID = 1000
Description = Faulting application svchost.exe, version 6.0.6001.18000, time stamp
0x47918b89, faulting module ntdll.dll, version 6.0.6002.18005, time stamp 0x49e03821,
exception code 0xc000071b, fault offset 0x000888f5, process id 0x768, application
start time 0x01cb32d8ac2c4a08.
Error - 8/3/2010 15:22:28 | Computer Name = superbad | Source = Application Error | ID = 1000
Description = Faulting application svchost.exe, version 6.0.6001.18000, time stamp
0x47918b89, faulting module ntdll.dll, version 6.0.6002.18005, time stamp 0x49e03821,
exception code 0xc000071b, fault offset 0x000888f5, process id 0x454, application
start time 0x01cb333e3d764f46.
Error - 8/3/2010 15:38:29 | Computer Name = superbad | Source = Application Error | ID = 1000
Description = Faulting application svchost.exe, version 6.0.6001.18000, time stamp
0x47918b89, faulting module Flash10a.ocx, version 10.0.12.36, time stamp 0x48e83175,
exception code 0xc0000005, fault offset 0x000e4da0, process id 0x484, application
start time 0x01cb33416328056a.
Error - 8/4/2010 03:07:28 | Computer Name = superbad | Source = Application Error | ID = 1000
Description = Faulting application svchost.exe, version 6.0.6001.18000, time stamp
0x47918b89, faulting module ntdll.dll, version 6.0.6002.18005, time stamp 0x49e03821,
exception code 0xc000071b, fault offset 0x000888f5, process id 0x454, application
start time 0x01cb33a0ab2adacc.
Error - 8/4/2010 04:29:28 | Computer Name = superbad | Source = Application Error | ID = 1000
Description = Faulting application svchost.exe, version 6.0.6001.18000, time stamp
0x47918b89, faulting module ntdll.dll, version 6.0.6002.18005, time stamp 0x49e03821,
exception code 0xc000071b, fault offset 0x000888f5, process id 0x57c, application
start time 0x01cb33a3e3146a89.
[ Media Center Events ]
Error - 9/8/2009 23:30:35 | Computer Name = superbad | Source = MCUpdate | ID = 0
Description = DownloadPackgeTask.SubTasksComplete: failed downloading package SportsSchedule.
[ System Events ]
Error - 7/10/2008 06:00:45 | Computer Name = superbad | Source = Microsoft-Windows-Servicing | ID = 4375
Description =
Error - 7/10/2008 06:00:45 | Computer Name = superbad | Source = Microsoft-Windows-Servicing | ID = 4375
Description =
Error - 7/10/2008 06:00:45 | Computer Name = superbad | Source = Microsoft-Windows-Servicing | ID = 4375
Description =
Error - 7/10/2008 06:00:45 | Computer Name = superbad | Source = Microsoft-Windows-Servicing | ID = 4375
Description =
Error - 7/10/2008 06:00:45 | Computer Name = superbad | Source = Microsoft-Windows-Servicing | ID = 4375
Description =
Error - 7/10/2008 06:00:50 | Computer Name = superbad | Source = Microsoft-Windows-WindowsUpdateClient | ID = 20
Description =
Error - 7/10/2008 06:18:23 | Computer Name = superbad | Source = HTTP | ID = 15016
Description =
Error - 7/10/2008 13:44:16 | Computer Name = superbad | Source = Service Control Manager | ID = 7011
Description = Timeout (30000 milliseconds) waiting for a transaction response from
the Netman service.
Error - 7/10/2008 13:58:12 | Computer Name = superbad | Source = HTTP | ID = 15016
Description =
Error - 7/10/2008 17:38:50 | Computer Name = superbad | Source = HTTP | ID = 15016
Description =
< End of report >
Malwarebytes' Anti-Malware 1.46
www.malwarebytes.org
Database version: 4874
Windows 6.0.6002 Service Pack 2
Internet Explorer 8.0.6001.18975
10/22/2010 21:25:34
mbam-log-2010-10-22 (21-25-34).txt
Scan type: Quick scan
Objects scanned: 146965
Time elapsed: 4 minute(s), 54 second(s)
Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 0
Memory Processes Infected:
(No malicious items detected)
Memory Modules Infected:
(No malicious items detected)
Registry Keys Infected:
(No malicious items detected)
Registry Values Infected:
(No malicious items detected)
Registry Data Items Infected:
(No malicious items detected)
Folders Infected:
(No malicious items detected)
Files Infected:
(No malicious items detected)
Sign In
Create Account
