Reklamy same sie otwierają po starcie systemu

pabloo67 · 21 Listopad 2012 13:03

Win 7 64 bit

jestem zielony help

Po wlaczeniu kompa otwiera sie okno opery i reklama o zarabianiu pieniedzy i tak zawsze

log:

Logfile of random’s system information tool 1.09 (written by random/random)

Run by Panek at 2012-11-21 13:54:41

Microsoft Windows 7 Enterprise

System drive C: has 20 GB (20%) free of 100 GB

Total RAM: 4055 MB (55% free)

Logfile of Trend Micro HijackThis v2.0.4

Scan saved at 13:54:51, on 2012-11-21

Platform: Windows 7 (WinNT 6.00.3504)

MSIE: Internet Explorer v8.00 (8.00.7600.16671)

Boot mode: Normal

Running processes:

C:\Program Files (x86)\EXPERTool\TBPANEL.exe

C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe

C:\Program Files (x86)\Nokia\Nokia Suite\NokiaSuite.exe

C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe

C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanionInfo.exe

C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe

C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe

C:\Program Files (x86)\Real\RealPlayer\Update\realsched.exe

C:\Program Files (x86)\Browsers Protector\regmon32.exe

C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe

C:\Program Files (x86)\AVG Secure Search\vprot.exe

C:\Program Files (x86)\PC Connectivity Solution\Transports\NclMSBTSrvEx.exe

C:\Program Files\trend micro\Panek.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.onet.pl/

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://startsear.ch/?aff=1&cf=4e61c2de- … 5b399679f8

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://start.facemoods.com/?a=ddr&s={searchTerms}&f=4

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =

R3 - URLSearchHook: uTorrentBar Toolbar - {bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} - C:\Program Files (x86)\uTorrentBar\tbuTor.dll (file missing)

F2 - REG:system.ini: UserInit=userinit.exe,

O2 - BHO: extrafind - {0ce9ec8a-4914-f030-f2e1-dfbb17f2a875} - C:\Windows\SysWow64\66c09d07.dll

O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll

O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll

O2 - BHO: Conduit Engine - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files (x86)\ConduitEngine\ConduitEngine.dll

O2 - BHO: Increase performance and video formats for your HTML5 - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files (x86)\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll

O2 - BHO: YouTube To ALLPlayer - {61DB16C5-B733-43F4-872E-B20DC9E72740} - C:\PROGRA~2\ALLPLA~1\YOUTUB~1.DLL (file missing)

O2 - BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre6\bin\ssv.dll

O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

O2 - BHO: AVG Security Toolbar - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files (x86)\AVG Secure Search\13.2.0.5\AVG Secure Search_toolbar.dll

O2 - BHO: uTorrentBar Toolbar - {bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} - C:\Program Files (x86)\uTorrentBar\tbuTor.dll (file missing)

O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll

O2 - BHO: BHO Project - {e78a5c92-6a2b-4369-ab14-0ed3b2b18584} - C:\Program Files (x86)\OApps\bho_project.dll

O3 - Toolbar: uTorrentBar Toolbar - {bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} - C:\Program Files (x86)\uTorrentBar\tbuTor.dll (file missing)

O3 - Toolbar: Conduit Engine - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files (x86)\ConduitEngine\ConduitEngine.dll

O3 - Toolbar: AVG Security Toolbar - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files (x86)\AVG Secure Search\13.2.0.5\AVG Secure Search_toolbar.dll

O4 - HKLM…\Run: [Adobe Reader Speed Launcher] “C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe”

O4 - HKLM…\Run: [Adobe ARM] “C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe”

O4 - HKLM…\Run: [DivXUpdate] “C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe” /CHECKNOW

O4 - HKLM…\Run: [HDAudDeck] C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe -r

O4 - HKLM…\Run: [TkBellExe] “C:\Program Files (x86)\Real\RealPlayer\Update\realsched.exe” -osboot

O4 - HKLM…\Run: [browsers Protector] C:\Program Files (x86)\Browsers Protector\regmon32.exe

O4 - HKLM…\Run: [sunJavaUpdateSched] “C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe”

O4 - HKLM…\Run: [vProt] “C:\Program Files (x86)\AVG Secure Search\vprot.exe”

O4 - HKLM…\Run: [ROC_roc_ssl_v12] “C:\Program Files (x86)\AVG Secure Search\ROC_roc_ssl_v12.exe” / /PROMPT /CMPID=roc_ssl_v12

O4 - HKCU…\Run: [GAINWARD] C:\Program Files (x86)\EXPERTool\TBPanel.exe /A

O4 - HKCU…\Run: [DAEMON Tools Lite] “C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe” -autorun

O4 - HKCU…\Run: [RGSC] C:\Program Files (x86)\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe /silent

O4 - HKCU…\Run: [NokiaSuite.exe] C:\Program Files (x86)\Nokia\Nokia Suite\NokiaSuite.exe -tray

O4 - HKCU…\Run: [sony PC Companion] “C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe” /Background

O4 - HKCU…\Run: [ALLUpdate] “C:\Program Files (x86)\ALLPlayer\ALLUpdate.exe” “sleep”

O4 - HKCU…\Run: [ufdiox] C:\Users\Panek\AppData\Roaming\Eqxy\ukdoa.exe

O4 - HKCU…\Run: [Windows Explorer] C:\Users\Panek\Drivers\msconfig.exe

O4 - HKCU…\Run: [winsvchost] C:\Users\Panek\AppData\Roaming\Identities{E7927442-8v23-436B-8409-951D004DCD3B}\winsvchost.exe

O4 - HKUS\S-1-5-19…\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User ‘LOCAL SERVICE’)

O4 - HKUS\S-1-5-19…\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User ‘LOCAL SERVICE’)

O4 - HKUS\S-1-5-20…\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User ‘NETWORK SERVICE’)

O4 - HKUS\S-1-5-20…\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User ‘NETWORK SERVICE’)

O4 - HKUS\S-1-5-21-2140450845-2228520220-4258520746-1003…\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User ‘UpdatusUser’)

O4 - HKUS\S-1-5-21-2140450845-2228520220-4258520746-1003…\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User ‘UpdatusUser’)

O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200

O9 - Extra button: Badanie - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\OFFICE11\REFIEBAR.DLL

O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll

O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/f … wflash.cab

O18 - Protocol: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - C:\Program Files (x86)\Common Files\AVG Secure Search\ViProtocolInstaller\13.2.0\ViProtocol.dll

O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll

O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe

O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)

O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)

O23 - Service: ESET HTTP Server (EhttpSrv) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe

O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe

O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)

O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe

O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)

O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)

O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe

O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe

O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)

O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: ServiceLayer - Nokia - C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe

O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)

O23 - Service: Sony PC Companion - Avanquest Software - C:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe

O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)

O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)

O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe

O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)

O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)

O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)

O23 - Service: vToolbarUpdater13.2.0 - Unknown owner - C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\13.2.0\ToolbarUpdater.exe

O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)

O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)

O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)

O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

–

End of file - 11794 bytes

======Listing Processes======

\SystemRoot\System32\smss.exe

%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16

wininit.exe

winlogon.exe

C:\Windows\system32\services.exe

C:\Windows\system32\lsass.exe

C:\Windows\system32\lsm.exe

C:\Windows\system32\svchost.exe -k DcomLaunch

C:\Windows\system32\nvvsvc.exe

“C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe”

C:\Windows\system32\svchost.exe -k RPCSS

C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted

C:\Windows\system32\svchost.exe -k netsvcs

C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted

C:\Windows\system32\svchost.exe -k LocalService

C:\Windows\system32\svchost.exe -k NetworkService

C:\Windows\System32\spoolsv.exe

C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork

“C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe”

“C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe”

C:\Windows\system32\nvvsvc.exe -session -first

C:\Windows\SysWOW64\PnkBstrA.exe

C:\Windows\system32\svchost.exe -k imgsvc

“C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\13.2.0\ToolbarUpdater.exe”

“C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE”

WLIDSvcM.exe 1672

“C:\Windows\system32\Dwm.exe”

C:\Windows\Explorer.EXE

“C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe” /hide /waitservice

“C:\Program Files (x86)\EXPERTool\TBPANEL.exe” /A

“C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe” -autorun

“C:\Program Files (x86)\Nokia\Nokia Suite\NokiaSuite.exe” -tray

C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted

“C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe” /Background

“C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanionInfo.exe”

“C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe”

“C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe” /CHECKNOW

“C:/Program Files/NVIDIA Corporation/Display/nvtray.exe” -user_has_logged_in 1

“C:\Program Files (x86)\Real\RealPlayer\Update\realsched.exe” -osboot

“C:\Program Files (x86)\Browsers Protector\regmon32.exe”

“C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe”

“C:\Program Files (x86)\AVG Secure Search\vprot.exe”

C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation

“C:\Users\Panek\Drivers\explorer.exe”

C:\Windows\system32\SearchIndexer.exe /Embedding

C:\Windows\system32\wbem\wmiprvse.exe

“C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe”

{C8DD900B-7F48-43BF-841D-A09723D6B72C}

{57A2039F-A4FC-455F-A122-9710C45B16F9}

“C:\Windows\system32\wuauclt.exe”

C:\Windows\servicing\TrustedInstaller.exe

{B3DE0636-EF2B-4D8E-AE6A-AA6549E4B6C7}

“C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe”

C:\Windows\System32\svchost.exe -k secsvcs

“C:\Program Files\Internet Explorer\iexplore.exe”

“C:\Program Files\Internet Explorer\iexplore.exe” SCODEF:660 CREDAT:79873

C:\Windows\system32\AUDIODG.EXE 0x4cc

“C:\Program Files\Internet Explorer\iexplore.exe” SCODEF:660 CREDAT:14342

“C:\Program Files\Internet Explorer\iexplore.exe” SCODEF:660 CREDAT:14348

“C:\Program Files\Internet Explorer\iexplore.exe” SCODEF:660 CREDAT:14349

“C:\Windows\system32\SearchProtocolHost.exe” Global\UsGthrFltPipeMssGthrPipe_S-1-5-21-2140450845-2228520220-4258520746-10006_ Global\UsGthrCtrlFltPipeMssGthrPipe_S-1-5-21-2140450845-2228520220-4258520746-10006 1 -2147483646 “Software\Microsoft\Windows Search” “Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)” “C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc” “DownLevelDaemon” “1”

“C:\Windows\system32\SearchFilterHost.exe” 0 528 532 540 65536 536

“C:\Windows\system32\SearchProtocolHost.exe” Global\UsGthrFltPipeMssGthrPipe7_ Global\UsGthrCtrlFltPipeMssGthrPipe7 1 -2147483646 “Software\Microsoft\Windows Search” “Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)” “C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc” “DownLevelDaemon”

“C:\Users\Panek\Desktop\RSITx64.exe”

======Scheduled tasks folder======

C:\Windows\tasks\Adobe Flash Player Updater.job

C:\Windows\tasks\RealUpgradeScheduledTaskS-1-5-21-2140450845-2228520220-4258520746-1000.job

C:\Windows\tasks\ReclaimerResumeInstall_Panek.job

C:\Windows\tasks{B3A5F977-B9DE-4345-B224-BFA926DD1DF7}.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects{9030D464-4C02-4ABF-8ECC-5164760863C6}]

Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-28 529280]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects{DBC80044-A445-435b-BC74-9C25C1C588A9}]

Java Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2010-12-08 49440]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects{0ce9ec8a-4914-f030-f2e1-dfbb17f2a875}]

extrafind - C:\Windows\SysWow64\66c09d07.dll [2012-09-08 1915904]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]

Adobe PDF Link Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2010-11-10 62376]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects{3049C3E9-B461-4BC5-8870-4C09146192CA}]

RealPlayer Download and Record Plugin for Internet Explorer - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll [2011-11-06 414416]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects{30F9B915-B755-4826-820B-08FBA6BD249D}]

Conduit Engine - C:\Program Files (x86)\ConduitEngine\ConduitEngine.dll [2010-12-09 3911776]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects{326E768D-4182-46FD-9C16-1449A49795F4}]

DivX Plus Web Player HTML5 - C:\Program Files (x86)\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll [2011-05-23 115072]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects{61DB16C5-B733-43F4-872E-B20DC9E72740}]

YouTube To ALLPlayer - C:\PROGRA~2\ALLPLA~1\YOUTUB~1.DLL []

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]

Java Plug-In SSV Helper - C:\Program Files (x86)\Java\jre6\bin\ssv.dll [2012-09-24 329712]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects{9030D464-4C02-4ABF-8ECC-5164760863C6}]

Windows Live ID Sign-in Helper - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-28 441216]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects{95B7759C-8C7F-4BF1-B163-73684A933233}]

AVG Security Toolbar - C:\Program Files (x86)\AVG Secure Search\13.2.0.5\AVG Secure Search_toolbar.dll [2012-11-08 1796552]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects{bf7380fa-e3b4-4db2-af3e-9d8783a45bfc}]

uTorrentBar Toolbar - C:\Program Files (x86)\uTorrentBar\tbuTor.dll []

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects{DBC80044-A445-435b-BC74-9C25C1C588A9}]

Java Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll [2012-09-24 59376]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects{e78a5c92-6a2b-4369-ab14-0ed3b2b18584}]

VideoFileDownload - C:\Program Files (x86)\OApps\bho_project.dll [2012-04-28 93184]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]

{bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} - uTorrentBar Toolbar - C:\Program Files (x86)\uTorrentBar\tbuTor.dll []

{30F9B915-B755-4826-820B-08FBA6BD249D} - Conduit Engine - C:\Program Files (x86)\ConduitEngine\ConduitEngine.dll [2010-12-09 3911776]

{95B7759C-8C7F-4BF1-B163-73684A933233} - AVG Security Toolbar - C:\Program Files (x86)\AVG Secure Search\13.2.0.5\AVG Secure Search_toolbar.dll [2012-11-08 1796552]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]

“egui”=C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe [2010-08-12 2916584]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]

“GAINWARD”=C:\Program Files (x86)\EXPERTool\TBPanel.exe [2010-07-15 2181744]

“DAEMON Tools Lite”=C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2010-04-01 357696]

“RGSC”=C:\Program Files (x86)\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe /silent []

“”= []

“NokiaSuite.exe”=C:\Program Files (x86)\Nokia\Nokia Suite\NokiaSuite.exe [2011-11-01 1053056]

“Sony PC Companion”=C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe [2012-09-12 445624]

“ALLUpdate”=C:\Program Files (x86)\ALLPlayer\ALLUpdate.exe sleep []

“Ufdiox”=C:\Users\Panek\AppData\Roaming\Eqxy\ukdoa.exe []

“Windows Explorer”=C:\Users\Panek\Drivers\msconfig.exe [2012-11-18 102912]

“winsvchost”=C:\Users\Panek\AppData\Roaming\Identities{E7927442-8v23-436B-8409-951D004DCD3B}\winsvchost.exe [2012-11-20 114176]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]

“Adobe Reader Speed Launcher”=C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe [2010-11-10 35736]

“Adobe ARM”=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2010-11-10 932288]

“DivXUpdate”=C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe [2011-03-21 1230704]

“HDAudDeck”=C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe [2010-02-10 2770432]

“TkBellExe”=C:\Program Files (x86)\Real\RealPlayer\Update\realsched.exe [2011-11-06 273528]

“Browsers Protector”=C:\Program Files (x86)\Browsers Protector\regmon32.exe [2012-07-06 207360]

“SunJavaUpdateSched”=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2012-09-17 254896]

“vProt”=C:\Program Files (x86)\AVG Secure Search\vprot.exe [2012-11-08 997320]

“ROC_roc_ssl_v12”=C:\Program Files (x86)\AVG Secure Search\ROC_roc_ssl_v12.exe [2012-11-01 1020512]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]

WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]

“SecurityProviders”=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]

“ConsentPromptBehaviorAdmin”=5

“ConsentPromptBehaviorUser”=3

“EnableUIADesktopToggle”=0

“dontdisplaylastusername”=0

“legalnoticecaption”=

“legalnoticetext”=

“shutdownwithoutlogon”=1

“undockwithoutlogon”=1

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]

“NoActiveDesktop”=1

“NoActiveDesktopChanges”=1

“ForceActiveDesktopOn”=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]

“vidc.mrle”=msrle32.dll

“vidc.msvc”=msvidc32.dll

“msacm.imaadpcm”=imaadp32.acm

“msacm.msg711”=msg711.acm

“msacm.msgsm610”=msgsm32.acm

“msacm.msadpcm”=msadp32.acm

“midimapper”=midimap.dll

“wavemapper”=msacm32.drv

“vidc.uyvy”=msyuv.dll

“vidc.yuy2”=msyuv.dll

“vidc.yvyu”=msyuv.dll

“vidc.iyuv”=iyuv_32.dll

“vidc.i420”=iyuv_32.dll

“vidc.yvu9”=tsbyuv.dll

“msacm.l3acm”=C:\Windows\System32\l3codeca.acm

“wave”=wdmaud.drv

“midi”=wdmaud.drv

“mixer”=wdmaud.drv

“aux”=wdmaud.drv

“wave1”=wdmaud.drv

“midi1”=wdmaud.drv

“mixer1”=wdmaud.drv

“wave2”=wdmaud.drv

“midi2”=wdmaud.drv

“mixer2”=wdmaud.drv

“wave3”=wdmaud.drv

“midi3”=wdmaud.drv

“mixer3”=wdmaud.drv

“wave4”=wdmaud.drv

“midi4”=wdmaud.drv

“mixer4”=wdmaud.drv

“vidc.XVID”=xvidvfw.dll

“msacm.ac3acm”=AC3ACM.acm

“msacm.ac3filter”=ac3filter64.acm

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1

.js - open - C:\Windows\System32\WScript.exe “%1” %*

======List of files/folders created in the last 1 month======

2012-11-21 13:54:41 ----D---- C:\rsit

2012-11-21 13:54:41 ----D---- C:\Program Files\trend micro

2012-11-20 16:21:08 ----D---- C:\Users\Panek\AppData\Roaming\Assassin’s Creed III

2012-11-20 15:52:19 ----D---- C:\Program Files (x86)\Ubisoft

2012-11-20 10:44:08 ----D---- C:\Windows\SYSWOW64\update

2012-11-20 10:44:08 ----A---- C:\Windows\system32\SearchIndexer.dll

2012-11-20 10:44:08 ----A---- C:\Windows\system32\SearchEngine.dat

2012-11-02 15:21:33 ----D---- C:\Users\Panek\AppData\Roaming\Qupu

2012-11-02 15:21:33 ----D---- C:\Users\Panek\AppData\Roaming\Nyper

2012-11-02 15:21:33 ----D---- C:\Users\Panek\AppData\Roaming\Eqxy

2012-11-01 14:29:31 ----D---- C:\Flashtool

2012-11-01 10:16:16 ----D---- C:\ProgramData\AVG Secure Search

2012-11-01 10:16:08 ----A---- C:\Windows\system32\drivers\avgtpx64.sys

2012-11-01 10:16:05 ----D---- C:\Program Files (x86)\AVG Secure Search

2012-10-22 06:00:15 ----A---- C:\Windows\SYSWOW64\javaws.exe

2012-10-22 06:00:15 ----A---- C:\Windows\SYSWOW64\javaw.exe

2012-10-22 06:00:15 ----A---- C:\Windows\SYSWOW64\java.exe

======List of files/folders modified in the last 1 month======

2012-11-21 13:54:44 ----D---- C:\Windows\Temp

2012-11-21 13:54:41 ----RD---- C:\Program Files

2012-11-21 13:44:16 ----D---- C:\Windows\system32\config

2012-11-21 13:42:08 ----D---- C:\ProgramData\NVIDIA

2012-11-20 20:49:49 ----D---- C:\Users\Panek\AppData\Roaming\uTorrent

2012-11-20 17:10:35 ----D---- C:\Users\Panek\AppData\Roaming\Identities

2012-11-20 16:21:08 ----SHD---- C:\Windows\Installer

2012-11-20 16:20:26 ----SHD---- C:\System Volume Information

2012-11-20 15:52:48 ----D---- C:\Windows\system32\catroot2

2012-11-20 15:52:19 ----RD---- C:\Program Files (x86)

2012-11-20 14:56:54 ----D---- C:\Windows\system32\NDF

2012-11-20 10:44:08 ----D---- C:\Windows\SysWOW64

2012-11-20 10:44:08 ----D---- C:\Windows\System32

2012-11-19 22:03:23 ----A---- C:\Windows\SYSWOW64\PnkBstrB.exe

2012-11-19 21:32:35 ----D---- C:\UTK

2012-11-13 21:06:37 ----D---- C:\Windows\inf

2012-11-13 21:06:37 ----A---- C:\Windows\system32\PerfStringBackup.INI

2012-11-09 22:13:15 ----D---- C:\Program Files (x86)\Battlelog Web Plugins

2012-11-09 16:52:59 ----D---- C:\Program Files (x86)\Opera

2012-11-05 18:13:11 ----D---- C:\Program Files (x86)\Origin

2012-11-04 17:42:24 ----D---- C:\Windows\Tasks

2012-11-02 15:23:30 ----SD---- C:\Users\Panek\AppData\Roaming\Microsoft

2012-11-01 21:57:11 ----D---- C:\Program Files (x86)\Sony Ericsson

2012-11-01 15:33:14 ----D---- C:\ProgramData\Sony Ericsson

2012-11-01 14:51:29 ----D---- C:\Windows\system32\DriverStore

2012-11-01 14:51:29 ----D---- C:\Windows\system32\catroot

2012-11-01 10:16:16 ----HD---- C:\ProgramData

2012-11-01 10:16:08 ----D---- C:\Windows\system32\drivers

2012-11-01 10:16:05 ----D---- C:\Program Files (x86)\Common Files

2012-10-30 18:16:03 ----HD---- C:\Program Files (x86)\InstallShield Installation Information

2012-10-25 15:06:14 ----RSD---- C:\Windows\assembly

2012-10-22 06:00:10 ----D---- C:\Program Files (x86)\Java

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 pciide;pciide; C:\Windows\system32\DRIVERS\pciide.sys [2009-07-14 12352]

R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2009-07-14 214096]

R0 speedfan;speedfan; C:\Windows\SysWOW64\speedfan.sys [2011-03-18 29592]

R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2011-02-09 503352]

R1 AsIO;AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [2009-08-04 13440]

R1 AsUpIO;AsUpIO; C:\Windows\SysWow64\drivers\AsUpIO.sys [2009-07-06 13368]

R1 avgtp;avgtp; ??\C:\Windows\system32\drivers\avgtpx64.sys [2012-11-01 30568]

R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2009-07-14 514048]

R1 ehdrv;ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [2010-07-29 141264]

R2 eamonm;eamonm; C:\Windows\system32\DRIVERS\eamonm.sys [2010-07-29 168544]

R2 epfwwfpr;epfwwfpr; C:\Windows\system32\DRIVERS\epfwwfpr.sys [2010-07-29 126320]

R2 lirsgt;lirsgt; C:\Windows\system32\DRIVERS\lirsgt.sys [2011-02-09 43168]

R3 MTsensor;ATK0110 ACPI UTILITY; C:\Windows\system32\DRIVERS\ASACPI.sys [2009-07-16 15416]

R3 NVHDA;Service for NVIDIA High Definition Audio Driver; C:\Windows\system32\drivers\nvhda64v.sys [2011-07-08 174184]

R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2009-06-10 187392]

R3 VIAHdAudAddService;VIA High Definition Audio Driver Service; C:\Windows\system32\drivers\viahduaa.sys [2010-05-15 1327520]

S2 atksgt;atksgt; C:\Windows\system32\DRIVERS\atksgt.sys [2011-02-09 312480]

S2 TBPanel;TBPanel; C:\Windows\system32\drivers\TBPanel.sys []

S3 a38jmh5n;a38jmh5n; C:\Windows\system32\drivers\a38jmh5n.sys []

S3 E1G60;Intel® PRO/1000 NDIS 6 Adapter Driver; C:\Windows\system32\DRIVERS\E1G6032E.sys [2009-06-10 145792]

S3 ggflt;SEMC USB Flash Driver Filter; C:\Windows\system32\DRIVERS\ggflt.sys [2012-03-11 13352]

S3 ggsemc;SEMC USB Flash Driver; C:\Windows\system32\DRIVERS\ggsemc.sys [2012-03-11 27176]

S3 nmwcd;Nokia USB Phone Parent Driver; C:\Windows\system32\drivers\ccdcmbx64.sys [2011-08-17 19968]

S3 nmwcdc;Nokia USB Communication Driver; C:\Windows\system32\drivers\ccdcmbox64.sys [2011-08-17 27136]

S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\Windows\system32\DRIVERS\pccsmcfdx64.sys [2008-08-28 25600]

S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2009-07-14 165376]

S3 s3cap;s3cap; C:\Windows\system32\DRIVERS\vms3cap.sys [2009-07-14 6656]

S3 storvsc;storvsc; C:\Windows\system32\DRIVERS\storvsc.sys [2009-07-14 34896]

S3 upperdev;upperdev; C:\Windows\system32\DRIVERS\usbser_lowerfltx64.sys [2011-08-17 9216]

S3 usbscan;USB Scanner Driver; C:\Windows\system32\DRIVERS\usbscan.sys [2009-07-14 41984]

S3 usbser;USB Modem Driver; C:\Windows\system32\drivers\usbser.sys [2009-07-14 32768]

S3 UsbserFilt;UsbserFilt; C:\Windows\system32\DRIVERS\usbser_lowerfltjx64.sys [2011-08-17 9216]

S3 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\system32\DRIVERS\vmbus.sys [2009-07-14 200272]

S3 VMBusHID;VMBusHID; C:\Windows\system32\DRIVERS\VMBusHID.sys [2009-07-14 21760]

S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2009-07-14 40448]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 27136]

R2 ekrn;ESET Service; C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe [2010-08-12 810144]

R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2011-11-08 1640768]

R2 nvUpdatusService;NVIDIA Update Service Daemon; C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe [2011-11-08 2253120]

R2 PnkBstrA;PnkBstrA; C:\Windows\syswow64\PnkBstrA.exe [2012-02-15 76888]

R2 SearchIndexer;Search Indexer; C:\Windows\system32\svchost.exe [2009-07-14 27136]

R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2011-11-07 381248]

R2 vToolbarUpdater13.2.0;vToolbarUpdater13.2.0; C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\13.2.0\ToolbarUpdater.exe [2012-11-01 711112]

R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2011-03-28 2292096]

R3 ServiceLayer;ServiceLayer; C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe [2011-10-27 718384]

S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]

S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]

S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-10-11 250808]

S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 27136]

S3 aspnet_state;„Usługa stanu ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2010-03-18 44376]

S3 EhttpSrv;ESET HTTP Server; C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe [2010-08-12 42360]

S3 gusvc;Google Updater Service; C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe [2011-02-08 136120]

S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2004-02-04 89136]

S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 27136]

S3 Sony PC Companion;Sony PC Companion; C:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe [2012-01-18 155320]

S3 StorSvc;@%SystemRoot%\System32\StorSvc.dll,-100; C:\Windows\System32\svchost.exe [2009-07-14 27136]

S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 27136]

S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2010-11-10 1255736]

S4 NetMsmqActivator;@c:\Windows\Microsoft.NET\Framework64\v4.0.30319\ServiceModelInstallRC.dll,-8195; c:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]

S4 NetPipeActivator;@c:\Windows\Microsoft.NET\Framework64\v4.0.30319\ServiceModelInstallRC.dll,-8197; c:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]

S4 NetTcpActivator;@c:\Windows\Microsoft.NET\Framework64\v4.0.30319\ServiceModelInstallRC.dll,-8199; c:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]

-----------------EOF-----------------

INFO

nfo.txt logfile of random’s system information tool 1.09 2012-11-21 13:54:52

======Uninstall list======

–>MsiExec /X{7F6D7FD9-648D-4DD9-BB6E-3990C675ECA4}

µTorrent–>“C:\Program Files (x86)\uTorrent\uTorrent.exe” /UNINSTALL

AC-3 ACM Codec x64 2.2–>C:\Windows\system32\rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\Windows\INF\AC3ACM64.inf

AC3Filter (remove only)–>C:\Program Files (x86)\AC3Filter\uninstall.exe

AC3Filter 1.63b–>“C:\Program Files (x86)\AC3Filter\unins000.exe”

Adobe AIR–>C:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Resources\Adobe AIR Updater.exe -arp:uninstall

Adobe AIR–>MsiExec.exe /I{ACEB2BAF-96DF-48FD-ADD5-43842D4C443D}

Adobe Flash Player 10 ActiveX 64-bit–>C:\Windows\system32\Macromed\Flash\FlashUtil64_10_2_161_ActiveX.exe -maintain activex

Adobe Flash Player 11 ActiveX–>C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_11_4_402_265_ActiveX.exe -maintain activex

Adobe Flash Player 11 Plugin–>C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_11_4_402_287_Plugin.exe -maintain plugin

Adobe Reader X–>MsiExec.exe /I{AC76BA86-7AD7-1033-7B44-AA0000000001}

Aktualizacje NVIDIA 1.5.20–>“C:\Windows\SysWOW64\RunDll32.EXE” “C:\Program Files\NVIDIA Corporation\Installer2\installer.2\NVI2.DLL”,UninstallPackage Display.Update

Apple Software Update–>MsiExec.exe /I{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}

Archiwizator WinRAR–>C:\Program Files\WinRAR\uninstall.exe

Assassin’s Creed III 1.01–>C:\Users\Panek\AppData\Roaming\Assassin’s Creed III\Uninstall\unins000.exe

Assassin’s Creed III–>“C:\Users\Panek\AppData\Roaming\Assassin’s Creed III\Uninstall\unins000.exe”

AVG Security Toolbar–>C:\Program Files (x86)\AVG Secure Search\UNINSTALL.exe /PROMPT /UNINSTALL

Avidemux 2.6–>C:\Program Files\Avidemux 2.6\uninstall.exe

Battlefield 3™–>“C:\Program Files (x86)\Common Files\EAInstaller\Battlefield 3\Cleanup.exe” uninstall_game -autologging

Battlelog Web Plugins–>C:\Program Files (x86)\Battlelog Web Plugins\uninstall.exe

Browsers Protector–>C:\Program Files (x86)\Browsers Protector\uninstall.exe

Call of Duty® 4 - Modern Warfare 1.6 Patch–>C:\Program Files (x86)\InstallShield Installation Information{8A15B7D9-908A-4EF9-BA84-5AEDE61743EE}\setup.exe -runfromtemp -l0x0409

Call of Duty® 4 - Modern Warfare 1.7 Patch–>C:\Program Files (x86)\InstallShield Installation Information{931C37FC-594D-43A9-B10F-A2F2B1F03498}\setup.exe -runfromtemp -l0x0409

Conduit Engine–>C:\PROGRA~2\CONDUI~1\ConduitEngineUninstall.exe

Contextual Tool Extrafind–>C:\Windows\system32\38dc55b4.exe

D3DX10–>MsiExec.exe /X{E09C4DB7-630C-4F06-A631-8EA7239923AF}

Digital Image Recovery 1.47–>“C:\Program Files (x86)\Digital Image Recovery\unins000.exe”

DivX Setup–>C:\ProgramData\DivX\Setup\DivXSetup.exe /uninstall /bundleGroupId divx.com

ESN Sonar–>C:\Program Files (x86)\Battlelog Web Plugins\Sonar\esnsonar_uninstall.exe

EXPERTool 7.11–>“C:\Program Files (x86)\EXPERTool\unins000.exe”

FilterPro Desktop–>MsiExec.exe /I{91B7C385-40A5-4DCF-AFF9-8A84B7DCA6B1}

Flashtool–>C:\Flashtool\uninstall.exe

Gadu-Gadu 10–>C:\Program Files (x86)\Gadu-Gadu 10\Uninstall.exe

Galeria fotografii usługi Windows Live–>MsiExec.exe /X{CB3F59BB-7858-41A1-A7EA-4B8A6FC7D431}

Grand Theft Auto IV–>“C:\Program Files (x86)\InstallShield Installation Information{579BA58C-F33D-4970-9953-B94B43768AC3}\setup.exe” -runfromtemp -l0x0009 -removeonly

Grand Theft Auto IV–>MsiExec.exe /I{5454083B-1308-4485-BF17-1110000B8301}

Grand Theft Auto IV–>MsiExec.exe /I{5454083B-1308-4485-BF17-1110000D8301}

Grand Theft Auto IV–>MsiExec.exe /I{5454083B-1308-4485-BF17-1110000D8302}

I-Doser Premium–>“C:\Program Files (x86)\I-Doser Premium\Uninstall.exe”

Java 6 Update 22 (64-bit)–>MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F86416022FF}

Java 6 Update 37–>MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83216035FF}

Łatka polonizacyjna GTA IV v1.0–>“C:\Program Files (x86)\Rockstar Games\Grand Theft Auto IV\Spolszczenie\Deinstalator.exe”

Microsoft .NET Framework 1.1–>MsiExec.exe /X{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}

Microsoft .NET Framework 4 Client Profile PLK Language Pack–>MsiExec.exe /X{A49402DD-2781-3782-B0CF-52BDA349E3F3}

Microsoft .NET Framework 4 Client Profile–>C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SetupCache\Client\Setup.exe /repair /x86 /x64 /parameterfolder Client

Microsoft .NET Framework 4 Client Profile–>MsiExec.exe /X{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}

Microsoft .NET Framework 4 Extended PLK Language Pack–>MsiExec.exe /X{8E5DA9A6-7A9F-3A6F-BC5C-D6CBCA6A29C7}

Microsoft .NET Framework 4 Extended–>C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SetupCache\Extended\Setup.exe /repair /x86 /x64 /parameterfolder Extended

Microsoft .NET Framework 4 Extended–>MsiExec.exe /X{8E34682C-8118-31F1-BC4C-98CD9675E1C2}

Microsoft Games for Windows - LIVE Redistributable–>MsiExec.exe /X{F2508213-9989-4E85-A078-72BE483917EF}

Microsoft Games for Windows Marketplace–>MsiExec.exe /X{4CB0307C-565E-4441-86BE-0DF2E4FB828C}

Microsoft Office Professional Edition 2003–>MsiExec.exe /I{90110415-6000-11D3-8CFE-0150048383C9}

Microsoft Silverlight–>MsiExec.exe /X{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}

Microsoft SQL Server 2005 Compact Edition [ENU]–>MsiExec.exe /I{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}

Microsoft Visual C++ 2005 Redistributable (x64)–>MsiExec.exe /X{071c9b48-7c32-4621-a0ac-3f809523288f}

Microsoft Visual C++ 2005 Redistributable–>MsiExec.exe /X{7299052b-02a4-4627-81f2-1818da5d550d}

Microsoft Visual C++ 2005 Redistributable–>MsiExec.exe /X{837b34e3-7c30-493c-8f6a-2b0f04e2912c}

Microsoft Visual C++ 2005 Redistributable–>MsiExec.exe /X{A49F249F-0C91-497F-86DF-B2585E8E76B7}

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17–>MsiExec.exe /X{9A25302D-30C0-39D9-BD6F-21E6EC160475}

Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219–>MsiExec.exe /X{1D8E6291-B0D5-35EC-8441-6616F567A0F7}

Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219–>MsiExec.exe /X{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}

Microsoft_VC100_CRT_SP1_x64–>MsiExec.exe /I{680EDA59-9266-44B4-949E-0C24F65DFF82}

Microsoft_VC100_CRT_SP1_x86–>MsiExec.exe /I{E3B64CC5-C011-40C0-92BC-7316CD5E5688}

MKV Player 2.0.1–>“C:\Program Files (x86)\MKV Player\unins000.exe”

Mozilla Thunderbird (3.1.20)–>C:\Program Files (x86)\Mozilla Thunderbird\uninstall\helper.exe

MSVC80_x64_v2–>MsiExec.exe /I{4D668D4F-FAA2-4726-834C-31F4614F312E}

MSVC80_x86_v2–>MsiExec.exe /I{6D3245B1-8DB8-4A23-9CD2-2C90F40ABAF6}

MSVC90_x64–>MsiExec.exe /I{AB071C8B-873C-459F-ACA9-9EBE03C3E89B}

MSVC90_x86–>MsiExec.exe /I{AF111648-99A1-453E-81DD-80DBBF6DAD0D}

MSVCRT–>MsiExec.exe /I{8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}

NapiProjekt 1.0.6.9–>“C:\Program Files (x86)\NAPI-PROJEKT\unins000.exe”

Nero 7 Lite 7.11.10.0–>“C:\Program Files (x86)\Nero\unins000.exe”

Nokia Connectivity Cable Driver–>MsiExec.exe /I{AF88496B-4BBA-4922-97E9-2582D3A28358}

Nokia PC Suite–>C:\ProgramData\Installations{D0D14551-3A2D-433B-861F-F4DCE5422759}\Nokia_PC_Suite_pol_web.exe

Nokia PC Suite–>MsiExec.exe /I{D0D14551-3A2D-433B-861F-F4DCE5422759}

Nokia Software Updater–>MsiExec.exe /X{4D568C38-0552-4CDD-A643-01FAFA2957EF}

Nokia Suite–>C:\ProgramData\NokiaInstallerCache\ProductCache{D5878294-C113-43c5-A24F-FC333C52015A}{DB24A9E5-A068-43DD-88D0-B51BED3C0B99}\Installer.exe

Nokia Suite–>MsiExec.exe /X{DB24A9E5-A068-43DD-88D0-B51BED3C0B99}

NVIDIA Oprogramowanie systemu PhysX 9.11.0621–>“C:\Windows\SysWOW64\RunDll32.EXE” “C:\Program Files\NVIDIA Corporation\Installer2\installer.1\NVI2.DLL”,UninstallPackage Display.PhysX

NVIDIA PhysX–>MsiExec.exe /X{7F6D7FD9-648D-4DD9-BB6E-3990C675ECA4}

NVIDIA Stereoscopic 3D Driver–>“C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvStInst.exe” /uninstall /ask

NVIDIA Sterownik 3D Vision 285.79–>“C:\Windows\SysWOW64\RunDll32.EXE” “C:\Program Files\NVIDIA Corporation\Installer2\installer.2\NVI2.DLL”,UninstallPackage Display.3DVision

NVIDIA Sterownik dźwięku HD 1.2.24.0–>“C:\Windows\SysWOW64\RunDll32.EXE” “C:\Program Files\NVIDIA Corporation\Installer2\installer.2\NVI2.DLL”,UninstallPackage HDAudio.Driver

NVIDIA Sterownik graficzny 285.79–>“C:\Windows\SysWOW64\RunDll32.EXE” “C:\Program Files\NVIDIA Corporation\Installer2\installer.2\NVI2.DLL”,UninstallPackage Display.Driver

NVIDIA Sterownik kontrolera 3D Vision 285.79–>“C:\Windows\SysWOW64\RunDll32.EXE” “C:\Program Files\NVIDIA Corporation\Installer2\installer.2\NVI2.DLL”,UninstallPackage Display.NVIRUSB

Obsługa programów Apple–>MsiExec.exe /I{6A3F9D74-BB80-4451-8CA1-4B3A857F1359}

OpenAL–>“C:\Program Files (x86)\OpenAL\OpenALwEAX.exe” /U

Opera 11.61–>“C:\Program Files (x86)\Opera\Opera.exe” /uninstall

Opera 12.10–>“C:\Program Files (x86)\Opera\Opera.exe” /uninstall

Origin–>C:\Program Files (x86)\Origin\OriginUninstall.exe

PC Connectivity Solution–>MsiExec.exe /I{55EB7967-5BB1-4EA2-8AFF-B2F9E487E553}

PhotoScape–>“C:\Program Files (x86)\PhotoScape\uninstall.exe”

Picasa 3–>“C:\Program Files (x86)\Google\Picasa3\Uninstall.exe”

Podstawowe programy Windows Live–>C:\Program Files (x86)\Windows Live\Installer\wlarp.exe

Podstawowe programy Windows Live–>MsiExec.exe /I{7A9D47BA-6D50-4087-866F-0800D8B89383}

Polski pakiet językowy dla programu Microsoft .NET Framework 4 Client Profile–>C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SetupCache\ClientLP\Setup.exe /repair /x86 /x64 /lcid 1045 /parameterfolder ClientLP

Polski pakiet językowy dla programu Microsoft .NET Framework 4 Extended–>C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SetupCache\ExtendedLP\Setup.exe /repair /x86 /x64 /lcid 1045 /parameterfolder ExtendedLP

PunkBuster Services–>C:\Program Files (x86)\Origin Games\Battlefield 3\pbsvc.exe -u

QuickTime Alternative 3.2.2–>“C:\Program Files (x86)\QuickTime Alternative\unins000.exe”

Rapture3D 2.4.8 Game–>“C:\Program Files (x86)\BRS\unins000.exe”

Real Alternative 2.0.2–>“C:\Program Files (x86)\Real Alternative\unins000.exe”

RealNetworks - Microsoft Visual C++ 2008 Runtime–>MsiExec.exe /X{7770E71B-2D43-4800-9CB3-5B6CAAEBEBEA}

RealPlayer–>C:\Program Files (x86)\Real\RealPlayer\Update\r1puninst.exe RealNetworks|RealPlayer|12.0

RealUpgrade 1.1–>MsiExec.exe /I{28C2DED6-325B-4CC7-983A-1777C8F7FBAB}

Security Update for Microsoft .NET Framework 4 Client Profile (KB2160841)–>c:\Windows\Microsoft.NET\Framework64\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {FD8D7C9A-E56A-3E7B-BA6D-FE68F13296E3} /parameterfolder Client

Skype™ 5.5–>MsiExec.exe /X{AA59DDE4-B672-4621-A016-4C248204957A}

Sony PC Companion 2.10.108–>“C:\Program Files (x86)\InstallShield Installation Information{F09EF8F2-0976-42C1-8D9D-8DF78337C6E3}\setup.exe” -runfromtemp -l0x0409 -removeonly

SopCast 3.3.2–>C:\Program Files (x86)\SopCast\uninst.exe

SpeedFan (remove only)–>“C:\Program Files (x86)\SpeedFan\uninstall.exe”

StartSearch Toolbar 1.3–>C:\Program Files (x86)\StartSearch plugin\uninst.exe

System Requirements Lab CYRI (64-bit)–>MsiExec.exe /I{D01E478E-05BE-46BC-AF96-DD40EABA1F6A}

VC80CRTRedist - 8.0.50727.4053–>MsiExec.exe /I{5EE7D259-D137-4438-9A5F-42F432EC0421}

VIA Platforma Menedżera urządzeń–>C:\PROGRA~2\COMMON~1\INSTAL~1\Driver\7\INTEL3~1\IDriver.exe /M{20D4A895-748C-4D88-871C-FDB1695B0169}

VideoFileDownload–>C:\Program Files (x86)\OApps\vfd-ob_uninstall.exe

Windows Driver Package - Nokia Modem (02/25/2011 4.7)–>C:\PROGRA~1\DIFX\0169CE3A95F06636\dpinst.exe /u C:\Windows\System32\DriverStore\FileRepository\nokia_bluetooth.inf_amd64_neutral_73c28da64803cefc\nokia_bluetooth.inf

Windows Driver Package - Nokia Modem (02/25/2011 7.01.0.9)–>C:\PROGRA~1\DIFX\0169CE3A95F06636\dpinst.exe /u C:\Windows\System32\DriverStore\FileRepository\nokbtmdm.inf_amd64_neutral_13826104cd8e800f\nokbtmdm.inf

Windows Driver Package - Nokia pccsmcfd (08/22/2008 7.0.0.0)–>C:\PROGRA~1\DIFX\F4092DA208C2C970\dpinst.exe /u C:\Windows\system32\DRVSTORE\pccsmcfdx6_8A3BAB842294F8D9255C3CF2A3B1CECAEEB8EA7E\pccsmcfdx64.inf

Windows Live Communications Platform–>MsiExec.exe /I{D45240D3-B6B3-4FF9-B243-54ECE3E10066}

Windows Live ID Sign-in Assistant–>MsiExec.exe /I{1ACC8FFB-9D84-4C05-A4DE-D28A9BC91698}

Windows Live Installer–>MsiExec.exe /I{0B0F231F-CE6A-483D-AA23-77B364F75917}

Windows Live Language Selector–>MsiExec.exe /I{027E5FAB-1476-4C59-AAB4-32EF28520399}

Windows Live Movie Maker–>MsiExec.exe /X{92EA4134-10D1-418A-91E1-5A0453131A38}

Windows Live Movie Maker–>MsiExec.exe /X{F80E5450-3EF3-4270-B26C-6AC53BEC5E76}

Windows Live Photo Common–>MsiExec.exe /X{0654EA5D-308A-4196-882B-5C09744A5D81}

Windows Live Photo Common–>MsiExec.exe /X{A9BDCA6B-3653-467B-AC83-94367DA3BFE3}

Windows Live Photo Gallery–>MsiExec.exe /X{3336F667-9049-4D46-98B6-4C743EEBC5B1}

Windows Live PIMT Platform–>MsiExec.exe /I{83C292B7-38A5-440B-A731-07070E81A64F}

Windows Live SOXE Definitions–>MsiExec.exe /I{200FEC62-3C34-4D60-9CE8-EC372E01C08F}

Windows Live SOXE–>MsiExec.exe /I{682B3E4F-696A-42DE-A41C-4C07EA1678B4}

Windows Live UX Platform Language Pack–>MsiExec.exe /I{0C1931EB-8339-4837-8BEC-75029BF42734}

Windows Live UX Platform–>MsiExec.exe /I{CE95A79E-E4FC-4FFF-8A75-29F04B942FF2}

Xvid 1.3.0–>C:\Program Files (x86)\Xvid\uninstall.exe

Xvid Video Codec–>C:\Program Files (x86)\Xvid\uninstall.exe

======Environment variables======

“ComSpec”=%SystemRoot%\system32\cmd.exe

“FP_NO_HOST_CHECK”=NO

“OS”=Windows_NT

“Path”=C:\Program Files\Common Files\Microsoft Shared\Windows Live;C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live;C:\Program Files (x86)\PC Connectivity Solution;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0;C:\Program Files (x86)\QuickTime Alternative\QTSystem;C:\Program Files (x86)\Windows Live\Shared

“PATHEXT”=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH;.MSC

“PROCESSOR_ARCHITECTURE”=AMD64

“TEMP”=%SystemRoot%\TEMP

“TMP”=%SystemRoot%\TEMP

“USERNAME”=SYSTEM

“windir”=%SystemRoot%

“PSModulePath”=%SystemRoot%\system32\WindowsPowerShell\v1.0\Modules\

“NUMBER_OF_PROCESSORS”=4

“PROCESSOR_LEVEL”=6

“PROCESSOR_IDENTIFIER”=Intel64 Family 6 Model 30 Stepping 5, GenuineIntel

“PROCESSOR_REVISION”=1e05

-----------------EOF-----------------

Agaton · 21 Listopad 2012 16:00

pabloo67 ,

Wklejanie logów na forum - przeczytaj i zastosuj się do Tematu

Zignorowanie zalecenia będzie skutkowało usunięciem tematu do Kosza.

analiza-dezynfekcja-zestaw-narzedzi-nieingerencyjnych-t485632.html