It let me run malwarebytes in safe mode last night. It took about an hour to scan my machine, the pop ups have stoped. It removed about 11 trojans & stuff. However my internet explorer still isn't working? it fine if I use firefox but not explorer? can you help?
here are two files you asked for:
OTS.txt
[code]
OTS logfile created on: 19/05/2010 19:40:43 - Run 3
OTS by OldTimer - Version 3.1.31.0 Folder = C:\Users\Ans\Desktop
64bit-Windows Vista Ultimate Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
Internet Explorer (Version = 7.0.6002.18005)
Locale: 00000809 | Country: United Kingdom | Language: ENG | Date Format: dd/MM/yyyy
8.00 Gb Total Physical Memory | 6.00 Gb Available Physical Memory | 78.00% Memory free
16.00 Gb Paging File | 14.00 Gb Available in Paging File | 89.00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 465.76 Gb Total Space | 186.38 Gb Free Space | 40.02% Space Free | Partition Type: NTFS
D: Drive not present or media not loaded
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded
Computer Name: ICEMAN
Current User Name: Ans
Logged in as Administrator.
Current Boot Mode: Normal
Scan Mode: Current user
Include 64bit Scans
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
[Processes - Safe List]
ots.exe -> C:\Users\Ans\Desktop\OTS.exe -> [2010/05/18 22:03:32 | 000,640,000 | ---- | M] (OldTimer Tools)
pctsauxs.exe -> C:\Program Files (x86)\Spyware Doctor\pctsAuxs.exe -> [2010/03/11 11:09:22 | 000,366,840 | ---- | M] (PC Tools)
pctstray.exe -> C:\Program Files (x86)\Spyware Doctor\pctsTray.exe -> [2010/03/09 08:40:26 | 001,286,608 | ---- | M] (PC Tools)
realsched.exe -> C:\Program Files (x86)\Common Files\Real\Update_OB\realsched.exe -> [2010/03/06 22:15:52 | 000,198,160 | ---- | M] (RealNetworks, Inc.)
ssscheduler.exe -> C:\Program Files (x86)\McAfee Security Scan\2.0.181\SSScheduler.exe -> [2010/01/15 13:49:20 | 000,255,536 | ---- | M] (McAfee, Inc.)
googlequicksearchbox.exe -> C:\Program Files (x86)\Google\Quick Search Box\GoogleQuickSearchBox.exe -> [2009/12/11 21:45:19 | 000,122,880 | ---- | M] (Google Inc.)
firefox.exe -> C:\Program Files (x86)\Mozilla Firefox\firefox.exe -> [2009/12/02 15:20:19 | 000,908,248 | ---- | M] (Mozilla Corporation)
mcagent.exe -> c:\Program Files (x86)\McAfee.com\Agent\mcagent.exe -> [2009/10/29 07:54:44 | 001,218,008 | ---- | M] (McAfee, Inc.)
mpfsrv.exe -> C:\Program Files (x86)\McAfee\MPF\MpfSrv.exe -> [2009/10/27 12:19:46 | 000,895,696 | ---- | M] (McAfee, Inc.)
mcsysmon.exe -> C:\Program Files (x86)\McAfee\VirusScan\mcsysmon.exe -> [2009/09/16 09:28:38 | 000,606,736 | ---- | M] (McAfee, Inc.)
mcmscsvc.exe -> C:\Program Files (x86)\McAfee\MSC\mcmscsvc.exe -> [2009/07/10 00:26:20 | 000,865,832 | ---- | M] (McAfee, Inc.)
msksrver.exe -> C:\Program Files (x86)\McAfee\MSK\msksrver.exe -> [2009/07/08 14:48:48 | 000,026,640 | ---- | M] (McAfee, Inc.)
mcproxy.exe -> c:\Program Files (x86)\Common Files\McAfee\McProxy\McProxy.exe -> [2009/07/08 11:54:34 | 000,359,952 | ---- | M] (McAfee, Inc.)
mcnasvc.exe -> c:\Program Files (x86)\Common Files\McAfee\MNA\McNASvc.exe -> [2009/07/07 19:10:02 | 002,482,848 | ---- | M] (McAfee, Inc.)
seaport.exe -> C:\Program Files (x86)\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe -> [2009/05/19 11:36:18 | 000,240,512 | ---- | M] (Microsoft Corporation)
ieuser.exe -> C:\Program Files (x86)\Internet Explorer\ieuser.exe -> [2009/04/11 07:27:39 | 000,299,520 | ---- | M] (Microsoft Corporation)
googletoolbarnotifier.exe -> C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe -> [2008/08/20 23:42:21 | 000,039,408 | ---- | M] (Google Inc.)
tbpanel.exe -> C:\Program Files (x86)\VDOTool\TBPANEL.exe -> [2008/06/04 11:37:52 | 002,157,096 | ---- | M] (Palit Microsystems, Inc.)
affinegyservice.exe -> C:\Program Files (x86)\Virgin Broadband Wireless\AffinegyService.exe -> [2008/05/26 16:14:56 | 000,143,360 | ---- | M] (Affinegy, Inc.)
spuvolumewatcher.exe -> C:\Program Files (x86)\Sony\Sony Picture Utility\PMBCore\SPUVolumeWatcher.exe -> [2007/11/27 19:13:44 | 000,385,024 | ---- | M] (Sony Corporation)
mvraidsvc.exe -> C:\Program Files (x86)\Marvell\61xx\svc\mvraidsvc.exe -> [2007/06/12 19:54:12 | 000,061,440 | ---- | M] ()
apache.exe -> C:\Program Files (x86)\Marvell\61xx\Apache2\bin\Apache.exe -> [2007/05/23 01:17:02 | 000,020,539 | ---- | M] (Apache Software Foundation)
ctcmsgou.exe -> C:\Program Files (x86)\Creative\MediaSource5\Go\CTCMSGoU.exe -> [2006/11/09 10:19:14 | 000,204,800 | ---- | M] (Creative Technology Ltd)
[Modules - Safe List]
ots.exe -> C:\Users\Ans\Desktop\OTS.exe -> [2010/05/18 22:03:32 | 000,640,000 | ---- | M] (OldTimer Tools)
wininet.dll -> C:\Windows\SysWOW64\wininet.dll -> [2010/03/09 16:42:17 | 000,834,048 | ---- | M] (Microsoft Corporation)
sahook.dll -> c:\Program Files (x86)\McAfee\SiteAdvisor\sahook.dll -> [2009/12/23 17:11:18 | 000,015,056 | ---- | M] (McAfee, Inc.)
comdlg32.dll -> C:\Windows\SysWOW64\comdlg32.dll -> [2009/04/11 07:28:18 | 000,450,560 | ---- | M] (Microsoft Corporation)
msscript.ocx -> C:\Windows\SysWOW64\msscript.ocx -> [2008/01/21 03:49:08 | 000,110,592 | ---- | M] (Microsoft Corporation)
normaliz.dll -> C:\Windows\SysWOW64\normaliz.dll -> [2006/11/02 09:33:06 | 000,002,560 | ---- | M] (Microsoft Corporation)
[Win32 Services - Safe List]
64bit-(FontCache) [On_Demand | Stopped] -> C:\Windows\SysNative\FntCache.dll -> [2009/09/25 02:26:26 | 001,142,272 | ---- | M] (Microsoft Corporation)
64bit-(McODS) [On_Demand | Stopped] -> C:\Program Files\McAfee\VirusScan\mcods.exe -> [2009/09/16 11:23:32 | 000,696,848 | ---- | M] (McAfee, Inc.)
64bit-(McShield) [Unknown | Running] -> C:\Program Files\McAfee\VirusScan\Mcshield.exe -> [2009/09/16 10:15:32 | 000,155,456 | ---- | M] (McAfee, Inc.)
64bit-(UmRdpService) [On_Demand | Stopped] -> C:\Windows\SysNative\umrdp.dll -> [2009/04/11 08:11:27 | 000,252,928 | ---- | M] (Microsoft Corporation)
64bit-(CscService) [Auto | Running] -> C:\Windows\SysNative\cscsvc.dll -> [2009/04/11 08:11:14 | 000,604,672 | ---- | M] (Microsoft Corporation)
64bit-(BthServ) [Auto | Running] -> C:\Windows\SysNative\bthserv.dll -> [2009/04/11 08:11:13 | 000,053,760 | ---- | M] (Microsoft Corporation)
64bit-(wbengine) [On_Demand | Stopped] -> C:\Windows\SysNative\wbengine.exe -> [2009/04/11 08:11:04 | 001,149,440 | ---- | M] (Microsoft Corporation)
64bit-(AppMgmt) [On_Demand | Stopped] -> C:\Windows\SysNative\appmgmts.dll -> [2008/01/21 03:50:23 | 000,195,584 | ---- | M] (Microsoft Corporation)
64bit-(Fax) [On_Demand | Stopped] -> C:\Windows\SysNative\fxssvc.exe -> [2008/01/21 03:47:07 | 000,689,152 | ---- | M] (Microsoft Corporation)
64bit-(WinDefend) [Auto | Running] -> C:\Program Files\Windows Defender\MpSvc.dll -> [2008/01/21 03:46:39 | 000,383,544 | ---- | M] (Microsoft Corporation)
(sdAuxService) PC Tools Auxiliary Service [Auto | Running] -> C:\Program Files (x86)\Spyware Doctor\pctsAuxs.exe -> [2010/03/11 11:09:22 | 000,366,840 | ---- | M] (PC Tools)
(McComponentHostService) McAfee Security Scan Component Host Service [On_Demand | Stopped] -> C:\Program Files (x86)\McAfee Security Scan\2.0.181\McCHSvc.exe -> [2010/01/15 13:49:20 | 000,227,232 | ---- | M] (McAfee, Inc.)
(McAfee SiteAdvisor Service) McAfee SiteAdvisor Service [Auto | Running] -> C:\Program Files (x86)\McAfee\SiteAdvisor\McSACore.exe -> [2009/12/23 16:57:18 | 000,110,312 | ---- | M] (McAfee, Inc.)
(MpfService) McAfee Personal Firewall Service [Auto | Running] -> C:\Program Files (x86)\McAfee\MPF\MPFSrv.exe -> [2009/10/27 12:19:46 | 000,895,696 | ---- | M] (McAfee, Inc.)
(McSysmon) McAfee SystemGuards [On_Demand | Running] -> C:\Program Files (x86)\McAfee\VirusScan\mcsysmon.exe -> [2009/09/16 09:28:38 | 000,606,736 | ---- | M] (McAfee, Inc.)
(fsssvc) Windows Live Family Safety Service [On_Demand | Stopped] -> C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe -> [2009/08/05 22:48:42 | 000,704,864 | ---- | M] (Microsoft Corporation)
(mcmscsvc) McAfee Services [Auto | Running] -> C:\Program Files (x86)\McAfee\MSC\mcmscsvc.exe -> [2009/07/10 00:26:20 | 000,865,832 | ---- | M] (McAfee, Inc.)
(MSK80Service) McAfee Anti-Spam Service [Auto | Running] -> C:\Program Files (x86)\McAfee\MSK\MskSrver.exe -> [2009/07/08 14:48:48 | 000,026,640 | ---- | M] (McAfee, Inc.)
(McProxy) McAfee Proxy Service [Auto | Running] -> c:\Program Files (x86)\Common Files\McAfee\McProxy\McProxy.exe -> [2009/07/08 11:54:34 | 000,359,952 | ---- | M] (McAfee, Inc.)
(McNASvc) McAfee Network Agent [Auto | Running] -> c:\Program Files (x86)\Common Files\McAfee\MNA\McNASvc.exe -> [2009/07/07 19:10:02 | 002,482,848 | ---- | M] (McAfee, Inc.)
(ServiceLayer) ServiceLayer [On_Demand | Stopped] -> C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe -> [2009/06/02 10:10:08 | 000,637,952 | ---- | M] (Nokia.)
(SeaPort) SeaPort [Auto | Running] -> C:\Program Files (x86)\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe -> [2009/05/19 11:36:18 | 000,240,512 | ---- | M] (Microsoft Corporation)
(clr_optimization_v2.0.50727_64) Microsoft .NET Framework NGEN v2.0.50727_X64 [On_Demand | Stopped] -> C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe -> [2009/03/30 05:39:54 | 000,089,920 | ---- | M] (Microsoft Corporation)
(Microsoft Office Groove Audit Service) Microsoft Office Groove Audit Service [On_Demand | Stopped] -> C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe -> [2008/10/25 11:44:08 | 000,065,888 | ---- | M] (Microsoft Corporation)
(AffinegyService) AffinegyService [Auto | Running] -> C:\Program Files (x86)\Virgin Broadband Wireless\AffinegyService.exe -> [2008/05/26 16:14:56 | 000,143,360 | ---- | M] (Affinegy, Inc.)
(Marvell RAID) Marvell RAID Event Agent [Auto | Running] -> C:\Program Files (x86)\Marvell\61xx\svc\mvraidsvc.exe -> [2007/06/12 19:54:12 | 000,061,440 | ---- | M] ()
(MRUWebService) MRU Web Service [Auto | Running] -> C:\Program Files (x86)\Marvell\61xx\Apache2\bin\Apache.exe -> [2007/05/23 01:17:02 | 000,020,539 | ---- | M] (Apache Software Foundation)
(MSDTC) Distributed Transaction Coordinator [Unknown | Stopped] -> C:\Windows\SysWOW64\Msdtc -> [2006/11/02 14:34:14 | 000,000,000 | ---D | M]
(vds) Virtual Disk [On_Demand | Stopped] -> C:\Windows\SysWOW64\wbem\vds.mof -> [2006/11/02 07:35:15 | 000,060,994 | ---- | M] ()
(VSS) Volume Shadow Copy [On_Demand | Stopped] -> C:\Windows\SysWOW64\wbem\vss.mof -> [2006/11/02 07:35:15 | 000,055,846 | ---- | M] ()
[Driver Services - Safe List]
64bit-(PCTCore) PCTools KDS [Kernel | Boot | Running] -> C:\Windows\SysNative\drivers\PCTCore64.sys -> [2010/03/29 10:06:06 | 000,233,488 | ---- | M] (PC Tools)
64bit-(WpdUsb) WpdUsb [Kernel | On_Demand | Stopped] -> C:\Windows\SysNative\DRIVERS\wpdusb.sys -> [2009/10/01 01:51:42 | 000,046,592 | ---- | M] (Microsoft Corporation)
64bit-(mfehidk) McAfee Inc. mfehidk [Kernel | System | Running] -> C:\Windows\SysNative\drivers\mfehidk.sys -> [2009/09/16 10:22:40 | 000,308,296 | ---- | M] (McAfee, Inc.)
64bit-(mfeavfk) McAfee Inc. mfeavfk [Kernel | On_Demand | Running] -> C:\Windows\SysNative\drivers\mfeavfk.sys -> [2009/09/16 10:22:40 | 000,102,472 | ---- | M] (McAfee, Inc.)
64bit-(mfesmfk) McAfee Inc. mfesmfk [Kernel | On_Demand | Running] -> C:\Windows\SysNative\drivers\mfesmfk.sys -> [2009/09/16 10:22:40 | 000,049,480 | ---- | M] (McAfee, Inc.)
64bit-(mferkdk) McAfee Inc. mferkdk [Kernel | On_Demand | Stopped] -> C:\Windows\SysNative\drivers\mferkdk.sys -> [2009/09/16 10:15:38 | 000,040,904 | ---- | M] (McAfee, Inc.)
64bit-(fssfltr) fssfltr [Kernel | On_Demand | Stopped] -> C:\Windows\SysNative\DRIVERS\fssfltr.sys -> [2009/08/05 23:24:16 | 000,061,280 | ---- | M] (Microsoft Corporation)
64bit-(fvevol) BitLocker Drive Encryption Filter Driver [Kernel | Boot | Running] -> C:\Windows\SysNative\DRIVERS\fvevol.sys -> [2009/04/11 08:15:30 | 000,160,744 | ---- | M] (Microsoft Corporation)
64bit-(BTHPORT) Bluetooth Port Driver [Kernel | On_Demand | Stopped] -> C:\Windows\SysNative\Drivers\BTHport.sys -> [2009/04/11 06:40:06 | 000,694,272 | ---- | M] (Microsoft Corporation)
64bit-(RFCOMM) Bluetooth Device (RFCOMM Protocol TDI) [Kernel | On_Demand | Running] -> C:\Windows\SysNative\DRIVERS\rfcomm.sys -> [2009/04/11 06:39:57 | 000,178,176 | ---- | M] (Microsoft Corporation)
64bit-(BthEnum) Bluetooth Enumerator Service [Kernel | On_Demand | Running] -> C:\Windows\SysNative\DRIVERS\BthEnum.sys -> [2009/04/11 06:39:55 | 000,026,112 | ---- | M] (Microsoft Corporation)
64bit-(BTHUSB) Bluetooth Radio USB Driver [Kernel | On_Demand | Running] -> C:\Windows\SysNative\Drivers\BTHUSB.sys -> [2009/04/11 06:39:53 | 000,034,816 | ---- | M] (Microsoft Corporation)
64bit-(usbser) USB Modem Driver [Kernel | On_Demand | Stopped] -> C:\Windows\SysNative\drivers\usbser.sys -> [2009/04/11 06:39:37 | 000,032,768 | ---- | M] (Microsoft Corporation)
64bit-(CSC) Offline Files Driver [Kernel | System | Running] -> C:\Windows\SysNative\drivers\csc.sys -> [2009/04/11 05:56:24 | 000,460,800 | ---- | M] (Microsoft Corporation)
64bit-(MPFP) MPFP [Kernel | System | Running] -> C:\Windows\SysNative\Drivers\Mpfp.sys -> [2009/04/09 14:23:02 | 000,176,144 | ---- | M] (McAfee, Inc.)
64bit-(UsbserFilt) UsbserFilt [Kernel | On_Demand | Stopped] -> C:\Windows\SysNative\DRIVERS\usbser_lowerfltx64j.sys -> [2009/02/09 08:38:44 | 000,008,192 | ---- | M] (Nokia)
64bit-(nmwcdx64) Nokia USB Phone Parent [Kernel | On_Demand | Stopped] -> C:\Windows\SysNative\drivers\ccdcmbx64.sys -> [2009/02/09 08:38:34 | 000,018,944 | ---- | M] (Nokia)
64bit-(upperdev) upperdev [Kernel | On_Demand | Stopped] -> C:\Windows\SysNative\DRIVERS\usbser_lowerfltx64.sys -> [2009/02/09 08:38:34 | 000,008,192 | ---- | M] (Nokia)
64bit-(nmwcdcx64) Nokia USB Generic [Kernel | On_Demand | Stopped] -> C:\Windows\SysNative\drivers\ccdcmbox64.sys -> [2009/02/09 08:38:32 | 000,025,088 | ---- | M] (Nokia)
64bit-(ENTECH64) ENTECH64 [Kernel | On_Demand | Stopped] -> C:\Windows\SysNative\DRIVERS\ENTECH64.sys -> [2008/09/17 14:14:00 | 000,012,744 | R--- | M] (EnTech Taiwan)
64bit-(pccsmcfd) PCCS Mode Change Filter Driver [Kernel | On_Demand | Stopped] -> C:\Windows\SysNative\DRIVERS\pccsmcfdx64.sys -> [2008/08/28 12:44:42 | 000,025,600 | ---- | M] (Nokia)
64bit-(BthAvrcp) Bluetooth AVRCP Profile [Kernel | On_Demand | Running] -> C:\Windows\SysNative\DRIVERS\BthAvrcp.sys -> [2008/07/10 19:20:16 | 000,021,504 | ---- | M] (CSR, plc)
64bit-(716xBDA) 716xBDA service [Kernel | On_Demand | Running] -> C:\Windows\SysNative\DRIVERS\716xBDA.sys -> [2008/03/11 18:57:34 | 001,226,112 | ---- | M] (DTV-DVB)
64bit-(BthPan) Bluetooth Device (Personal Area Network) [Kernel | On_Demand | Running] -> C:\Windows\SysNative\DRIVERS\bthpan.sys -> [2008/01/21 03:46:10 | 000,115,712 | ---- | M] (Microsoft Corporation)
64bit-(AtcL001) NDIS Miniport Driver for Atheros L1 Gigabit Ethernet Controller [Kernel | On_Demand | Running] -> C:\Windows\SysNative\DRIVERS\l160x64.sys -> [2007/12/17 20:32:00 | 000,056,832 | ---- | M] (Atheros Communications, Inc.)
64bit-(P17) SB Live! 24-bit [Kernel | On_Demand | Running] -> C:\Windows\SysNative\drivers\P17.sys -> [2007/11/16 11:11:08 | 001,276,928 | ---- | M] (Creative Technology Ltd.)
64bit-(716xHID) 716xHID - PCIe HID Driver [Kernel | On_Demand | Running] -> C:\Windows\SysNative\drivers\716xHID.sys -> [2007/08/10 17:11:54 | 000,021,504 | ---- | M] (DTV-DVB)
64bit-(mv61xx) mv61xx [Kernel | Boot | Running] -> C:\Windows\SysNative\DRIVERS\mv61xx.sys -> [2007/06/15 08:52:26 | 000,163,736 | ---- | M] (Marvell Semiconductor, Inc.)
64bit-(HdAudAddService) Microsoft 1.1 UAA Function Driver for High Definition Audio Service [Kernel | On_Demand | Stopped] -> C:\Windows\SysNative\drivers\HdAudio.sys -> [2006/11/02 06:28:10 | 000,273,920 | ---- | M] (Microsoft Corporation)
64bit-(MTsensor) ATK0110 ACPI UTILITY [Kernel | On_Demand | Running] -> C:\Windows\SysNative\DRIVERS\ASACPI.sys -> [2006/11/01 08:23:42 | 000,015,680 | ---- | M] ()
(CSC) Offline Files Driver [Kernel | System | Running] -> C:\Windows\CSC -> [2008/08/20 21:15:31 | 000,000,000 | ---D | M]
(Tcpip) TCP/IP Protocol Driver [Kernel | System | Running] -> C:\Windows\SysWOW64\wbem\tcpip.mof -> [2006/09/18 22:36:40 | 000,003,066 | ---- | M] ()
(mpsdrv) Windows Firewall Authorization Driver [Kernel | On_Demand | Running] -> C:\Windows\SysWOW64\wbem\mpsdrv.mof -> [2006/09/18 22:35:23 | 000,001,088 | ---- | M] ()
[Registry - Safe List]
< 64bit-Internet Explorer Settings [HKEY_LOCAL_MACHINE\] > -> ->
HKEY_LOCAL_MACHINE\: Main\\"Local Page" -> %SystemRoot%\system32\blank.htm ->
< Internet Explorer Settings [HKEY_LOCAL_MACHINE\] > -> ->
HKEY_LOCAL_MACHINE\: Main\\"Local Page" -> %SystemRoot%\system32\blank.htm ->
HKEY_LOCAL_MACHINE\: URLSearchHooks\\"{7c5c0f58-e061-457d-9033-77307f5ed00c}" [HKLM] -> C:\Program Files (x86)\TorrentMan\tbTor1.dll [TorrentMan Toolbar] -> File not found
< Internet Explorer Settings [HKEY_CURRENT_USER\] > -> ->
HKEY_CURRENT_USER\: Main\\"Start Page" ->
http://google.com/ ->
HKEY_CURRENT_USER\: Main\\"StartPageCache" -> 1 ->
64bit-HKEY_CURRENT_USER\: URLSearchHooks\\"{0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064}" [HKLM] -> c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll [McAfee SiteAdvisor Toolbar] -> [2009/12/23 16:59:04 | 000,305,000 | ---- | M] (McAfee, Inc.)
HKEY_CURRENT_USER\: URLSearchHooks\\"{0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064}" [HKLM] -> c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll [McAfee SiteAdvisor Toolbar] -> [2009/12/23 16:59:04 | 000,251,416 | ---- | M] (McAfee, Inc.)
HKEY_CURRENT_USER\: URLSearchHooks\\"{7c5c0f58-e061-457d-9033-77307f5ed00c}" [HKLM] -> C:\Program Files (x86)\TorrentMan\tbTor1.dll [TorrentMan Toolbar] -> File not found
HKEY_CURRENT_USER\: "ProxyEnable" -> 1 ->
HKEY_CURRENT_USER\: "ProxyOverride" ->
->
HKEY_CURRENT_USER\: "ProxyServer" -> http=127.0.0.1:5555 ->
< FireFox Settings [Prefs.js] > -> C:\Users\Ans\AppData\Roaming\Mozilla\FireFox\Profiles\vm2xwwws.default\prefs.js ->
browser.search.defaultenginename -> "Live Search" ->
browser.search.defaulturl -> "http://search.live.com/results.aspx?FORM=IEFM1&q=" ->
browser.search.selectedEngine -> "Live Search" ->
browser.search.useDBForOrder -> true ->
browser.startup.homepage -> "http://go.microsoft.com/fwlink/?LinkId=69157" ->
extensions.enabledItems -> {b9db16a4-6edc-47ec-a1f4-b86292ed211d}:4.6.5 ->
extensions.enabledItems -> {B7082FAA-CB62-4872-9106-E42DD88EDE45}:3.1 ->
extensions.enabledItems -> {ABDE892B-13A8-4d1b-88E6-365A6E755758}:1.0 ->
extensions.enabledItems -> {7c5c0f58-e061-457d-9033-77307f5ed00c}:1.5.39.0 ->
extensions.enabledItems -> {a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7}:20091028 ->
keyword.URL -> "http://search.live.com/results.aspx?FORM=IEFM1&q=" ->
< FireFox Extensions [HKLM] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Mozilla
HKLM\software\mozilla\Firefox\Extensions -> ->
HKLM\software\mozilla\Firefox\Extensions\\{3112ca9c-de6d-4884-a869-9855de68056c} -> C:\ProgramData\Google\Toolbar for Firefox\{3112ca9c-de6d-4884-a869-9855de68056c} [C:\PROGRAMDATA\GOOGLE\TOOLBAR FOR FIREFOX\{3112CA9C-DE6D-4884-A869-9855DE68056C}] -> [2009/12/10 00:34:43 | 000,000,000 | ---D | M]
HKLM\software\mozilla\Firefox\Extensions\\{B7082FAA-CB62-4872-9106-E42DD88EDE45} -> C:\Program Files (x86)\McAfee\SiteAdvisor [C:\PROGRAM FILES (X86)\MCAFEE\SITEADVISOR] -> [2010/04/21 19:33:14 | 000,000,000 | ---D | M]
HKLM\software\mozilla\Firefox\Extensions\\bkmrksync@nokia.com -> C:\PROGRAM FILES (X86)\NOKIA\NOKIA PC SUITE 7\BKMRKSYNC\ [C:\PROGRAM FILES (X86)\NOKIA\NOKIA PC SUITE 7\BKMRKSYNC\] -> [2009/06/20 21:00:18 | 000,000,000 | ---D | M]
HKLM\software\mozilla\Firefox\Extensions\\{ABDE892B-13A8-4d1b-88E6-365A6E755758} -> C:\Program Files (x86)\Real\RealPlayer\browserrecord [C:\PROGRAM FILES (X86)\REAL\REALPLAYER\BROWSERRECORD] -> [2010/03/06 22:16:12 | 000,000,000 | ---D | M]
HKLM\software\mozilla\Mozilla Firefox 3.5.6\extensions -> ->
HKLM\software\mozilla\Mozilla Firefox 3.5.6\extensions\\Components -> C:\Program Files (x86)\Mozilla Firefox\components [C:\PROGRAM FILES (X86)\MOZILLA FIREFOX\COMPONENTS] -> [2010/03/06 22:16:05 | 000,000,000 | ---D | M]
HKLM\software\mozilla\Mozilla Firefox 3.5.6\extensions\\Plugins -> C:\Program Files (x86)\Mozilla Firefox\plugins [C:\PROGRAM FILES (X86)\MOZILLA FIREFOX\PLUGINS] -> [2010/03/16 19:59:20 | 000,000,000 | ---D | M]
< FireFox Extensions [User Folders] > ->
-> C:\Users\Ans\AppData\Roaming\mozilla\Extensions -> [2009/02/16 22:51:09 | 000,000,000 | ---D | M]
-> C:\Users\Ans\AppData\Roaming\mozilla\Extensions\mozswing@mozswing.org -> [2009/02/16 22:51:09 | 000,000,000 | ---D | M]
-> C:\Users\Ans\AppData\Roaming\mozilla\Firefox\Profiles\vm2xwwws.default\extensions -> [2010/05/18 20:53:07 | 000,000,000 | ---D | M]
Microsoft .NET Framework Assistant -> C:\Users\Ans\AppData\Roaming\mozilla\Firefox\Profiles\vm2xwwws.default\extensions\{20a82645-c095-46ed-80e3-08825760534b} -> [2009/08/31 10:56:01 | 000,000,000 | ---D | M]
Google Toolbar for Firefox -> C:\Users\Ans\AppData\Roaming\mozilla\Firefox\Profiles\vm2xwwws.default\extensions\{3112ca9c-de6d-4884-a869-9855de68056c} -> [2010/05/18 20:53:07 | 000,000,000 | ---D | M]
WOT -> C:\Users\Ans\AppData\Roaming\mozilla\Firefox\Profiles\vm2xwwws.default\extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7} -> [2009/12/29 20:40:56 | 000,000,000 | ---D | M]
DownloadHelper -> C:\Users\Ans\AppData\Roaming\mozilla\Firefox\Profiles\vm2xwwws.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d} -> [2009/12/29 20:41:57 | 000,000,000 | ---D | M]
< FireFox SearchPlugins [User Folders] > ->
bing.xml -> C:\Users\Ans\AppData\Roaming\Mozilla\FireFox\Profiles\vm2xwwws.default\searchplugins\bing.xml -> [2009/08/31 10:55:29 | 000,001,957 | ---- | M] ()
< FireFox Extensions [Program Folders] > ->
-> C:\Program Files (x86)\Mozilla Firefox\extensions -> [2010/03/30 21:59:44 | 000,000,000 | ---D | M]
TorrentMan Toolbar -> C:\Program Files (x86)\Mozilla Firefox\extensions\{7c5c0f58-e061-457d-9033-77307f5ed00c} -> [2008/11/26 20:38:13 | 000,000,000 | ---D | M]
-> C:\Program Files (x86)\Mozilla Firefox\extensions\google-cjk@partners.mozilla.com -> [2008/08/20 23:42:43 | 000,000,000 | ---D | M]
< HOSTS File > ([2006/09/18 22:37:24 | 000,000,761 | ---- | M] - 20 lines) -> C:\Windows\SysNative\Drivers\etc\hosts ->
Reset Hosts
127.0.0.1 localhost
::1 localhost
< 64bit-BHO's [HKEY_LOCAL_MACHINE] > -> 64bit-HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\ ->
{27B4851A-3207-45A2-B947-BE8AFE6163AB} [HKLM] -> c:\Program Files (x86)\McAfee\MSK\mskapbho64.dll [McAfee Phishing Filter] -> [2009/07/08 14:48:48 | 000,337,424 | ---- | M] ()
{4f3ed5cd-0726-42a9-87f5-d13f3d2976ac} [HKLM] -> C:\Program Files\Windows Live\Family Safety\fssbho.dll [Windows Live Family Safety Browser Helper Class] -> [2009/08/05 23:24:16 | 000,132,448 | ---- | M] (Microsoft Corporation)
{7DB2D5A0-7241-4E79-B68D-6309F01C5231} [HKLM] -> C:\Program Files\McAfee\VirusScan\scriptsn.dll [scriptproxy] -> [2009/09/16 10:15:38 | 000,060,224 | ---- | M] (McAfee, Inc.)
{AA58ED58-01DD-4d91-8333-CF10577473F7} [HKLM] -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [Google Toolbar Helper] -> [2010/03/06 21:20:14 | 000,373,872 | ---- | M] (Google Inc.)
{AF69DE43-7D58-4638-B6FA-CE66B5AD205D} [HKLM] -> C:\Program Files\Google\GoogleToolbarNotifier\5.5.4723.1820\swg64.dll [Google Toolbar Notifier BHO] -> [2010/03/06 21:22:14 | 000,319,984 | ---- | M] (Google Inc.)
{B164E929-A1B6-4A06-B104-2CD0E90A88FF} [HKLM] -> c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll [McAfee SiteAdvisor BHO] -> [2009/12/23 16:59:04 | 000,305,000 | ---- | M] (McAfee, Inc.)
< BHO's [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\ ->
{27B4851A-3207-45A2-B947-BE8AFE6163AB} [HKLM] -> c:\Program Files (x86)\McAfee\MSK\mskapbho.dll [McAfee Phishing Filter] -> [2009/07/08 14:48:48 | 000,246,800 | ---- | M] ()
{3049C3E9-B461-4BC5-8870-4C09146192CA} [HKLM] -> C:\Program Files (x86)\Real\RealPlayer\rpbrowserrecordplugin.dll [RealPlayer Download and Record Plugin for Internet Explorer] -> [2010/03/06 22:16:11 | 000,312,928 | ---- | M] (RealPlayer)
{39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} [HKLM] -> C:\Program Files (x86)\BitComet\tools\BitCometBHO_1.3.1.15.dll [BitComet Helper] -> [2009/01/16 10:02:24 | 000,656,696 | ---- | M] (BitComet)
{5C255C8A-E604-49b4-9D64-90988571CECB} [HKLM] -> Reg Error: Key error. [Reg Error: Key error.] -> File not found
{6EBF7485-159F-4bff-A14F-B9E3AAC4465B} [HKLM] -> C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll [Search Helper] -> [2009/05/19 11:36:18 | 000,137,600 | ---- | M] (Microsoft Corporation)
{72853161-30C5-4D22-B7F9-0BBC1D38A37E} [HKLM] -> C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [Groove GFS Browser Helper] -> [2009/02/12 15:19:32 | 002,217,848 | ---- | M] (Microsoft Corporation)
{7c5c0f58-e061-457d-9033-77307f5ed00c} [HKLM] -> C:\Program Files (x86)\TorrentMan\tbTor1.dll [TorrentMan Toolbar] -> File not found
{7DB2D5A0-7241-4E79-B68D-6309F01C5231} [HKLM] -> C:\Program Files (x86)\McAfee\VirusScan\scriptsn.dll [scriptproxy] -> [2009/09/16 10:22:16 | 000,062,784 | ---- | M] (McAfee, Inc.)
{9030D464-4C02-4ABF-8ECC-5164760863C6} [HKLM] -> C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WindowsLiveLogin.dll [Windows Live Sign-in Helper] -> [2009/01/22 16:41:30 | 000,408,448 | ---- | M] (Microsoft Corporation)
{AA58ED58-01DD-4d91-8333-CF10577473F7} [HKLM] -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [Google Toolbar Helper] -> [2010/03/06 21:20:09 | 000,279,664 | ---- | M] (Google Inc.)
{AF69DE43-7D58-4638-B6FA-CE66B5AD205D} [HKLM] -> C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.5.4723.1820\swg.dll [Google Toolbar Notifier BHO] -> [2010/03/06 21:22:14 | 000,812,528 | ---- | M] (Google Inc.)
{B164E929-A1B6-4A06-B104-2CD0E90A88FF} [HKLM] -> c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll [McAfee SiteAdvisor BHO] -> [2009/12/23 16:59:04 | 000,251,416 | ---- | M] (McAfee, Inc.)
{C84D72FE-E17D-4195-BB24-76C02E2E7C4E} [HKLM] -> C:\Program Files (x86)\Google\Google Toolbar\Component\fastsearch_B7C5AC242193BB3E.dll [Google Dictionary Compression sdch] -> File not found
{E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} [HKLM] -> C:\Program Files (x86)\Windows Live\Toolbar\wltcore.dll [Windows Live Toolbar Helper] -> [2009/02/06 19:17:46 | 001,068,904 | ---- | M] (Microsoft Corporation)
< 64bit-Internet Explorer ToolBars [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\ToolBar ->
"{0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064}" [HKLM] -> c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll [McAfee SiteAdvisor Toolbar] -> [2009/12/23 16:59:04 | 000,305,000 | ---- | M] (McAfee, Inc.)
"{2318C2B1-4965-11d4-9B18-009027A5CD4F}" [HKLM] -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [Google Toolbar] -> [2010/03/06 21:20:14 | 000,373,872 | ---- | M] (Google Inc.)
< Internet Explorer ToolBars [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\ToolBar ->
"{0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064}" [HKLM] -> c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll [McAfee SiteAdvisor Toolbar] -> [2009/12/23 16:59:04 | 000,251,416 | ---- | M] (McAfee, Inc.)
"{21FA44EF-376D-4D53-9B0F-8A89D3229068}" [HKLM] -> C:\Program Files (x86)\Windows Live\Toolbar\wltcore.dll [&Windows Live Toolbar] -> [2009/02/06 19:17:46 | 001,068,904 | ---- | M] (Microsoft Corporation)
"{2318C2B1-4965-11d4-9B18-009027A5CD4F}" [HKLM] -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [Google Toolbar] -> [2010/03/06 21:20:09 | 000,279,664 | ---- | M] (Google Inc.)
"{7c5c0f58-e061-457d-9033-77307f5ed00c}" [HKLM] -> C:\Program Files (x86)\TorrentMan\tbTor1.dll [TorrentMan Toolbar] -> File not found
< Internet Explorer ToolBars [HKEY_CURRENT_USER\] > -> HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\ ->
WebBrowser\\"{21FA44EF-376D-4D53-9B0F-8A89D3229068}" [HKLM] -> C:\Program Files (x86)\Windows Live\Toolbar\wltcore.dll [&Windows Live Toolbar] -> [2009/02/06 19:17:46 | 001,068,904 | ---- | M] (Microsoft Corporation)
64bit-WebBrowser\\"{2318C2B1-4965-11D4-9B18-009027A5CD4F}" [HKLM] -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [Google Toolbar] -> [2010/03/06 21:20:14 | 000,373,872 | ---- | M] (Google Inc.)
WebBrowser\\"{2318C2B1-4965-11D4-9B18-009027A5CD4F}" [HKLM] -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [Google Toolbar] -> [2010/03/06 21:20:09 | 000,279,664 | ---- | M] (Google Inc.)
WebBrowser\\"{7C5C0F58-E061-457D-9033-77307F5ED00C}" [HKLM] -> C:\Program Files (x86)\TorrentMan\tbTor1.dll [TorrentMan Toolbar] -> File not found
WebBrowser\\"{BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0}" [HKLM] -> Reg Error: Key error. [Reg Error: Key error.] -> File not found
< 64bit-Run [HKEY_LOCAL_MACHINE\] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run ->
"NvCplDaemon" -> C:\Windows\SysNative\NvCpl.DLL [RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup] -> [2008/05/03 04:16:00 | 015,845,920 | ---- | M] (NVIDIA Corporation)
"NvMediaCenter" -> C:\Windows\SysNative\NvMcTray.DLL [RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit] -> [2008/05/03 04:16:00 | 000,082,464 | ---- | M] (NVIDIA Corporation)
"RtHDVCpl" -> C:\Windows\RAVCpl64.exe [RAVCpl64.exe] -> [2007/03/23 20:04:00 | 005,055,488 | ---- | M] (Realtek Semiconductor)
"Skytel" -> C:\Windows\SkyTel.exe [Skytel.exe] -> [2007/03/16 16:06:54 | 001,822,720 | ---- | M] (Realtek Semiconductor Corp.)
"Windows Defender" -> C:\Program Files\Windows Defender\MSASCui.exe [%ProgramFiles%\Windows Defender\MSASCui.exe -hide] -> [2008/01/21 03:46:39 | 001,584,184 | ---- | M] (Microsoft Corporation)
< Run [HKEY_LOCAL_MACHINE\] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run ->
"Google Quick Search Box" -> C:\Program Files (x86)\Google\Quick Search Box\GoogleQuickSearchBox.exe ["C:\Program Files (x86)\Google\Quick Search Box\GoogleQuickSearchBox.exe" /autorun] -> [2009/12/11 21:45:19 | 000,122,880 | ---- | M] (Google Inc.)
"GrooveMonitor" -> C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe ["C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe"] -> [2008/10/25 11:44:34 | 000,031,072 | ---- | M] (Microsoft Corporation)
"ISTray" -> C:\Program Files (x86)\Spyware Doctor\pctsTray.exe ["C:\Program Files (x86)\Spyware Doctor\pctsTray.exe"] -> [2010/03/09 08:40:26 | 001,286,608 | ---- | M] (PC Tools)
"mcagent_exe" -> C:\Program Files (x86)\McAfee.com\Agent\mcagent.exe ["C:\Program Files (x86)\McAfee.com\Agent\mcagent.exe" /runkey] -> [2009/10/29 07:54:44 | 001,218,008 | ---- | M] (McAfee, Inc.)
"McENUI" -> C:\Program Files (x86)\McAfee\MHN\McENUI.exe [C:\PROGRA~2\McAfee\MHN\McENUI.exe /hide] -> [2009/07/07 21:02:26 | 001,176,808 | ---- | M] (McAfee, Inc.)
"NWEReboot" -> [] -> File not found
"P17RunE" -> C:\Windows\SysWow64\P17RunE.dll [RunDll32 P17RunE.dll,RunDLLEntry] -> [2007/04/09 02:40:00 | 000,014,848 | ---- | M] (Creative Technology Ltd.)
"TkBellExe" -> C:\Program Files (x86)\Common Files\Real\Update_OB\realsched.exe ["C:\Program Files (x86)\Common Files\Real\Update_OB\realsched.exe" -osboot] -> [2010/03/06 22:15:52 | 000,198,160 | ---- | M] (RealNetworks, Inc.)
"VolPanel" -> C:\Program Files (x86)\Creative\Sound Blaster X-Fi\Volume Panel\VolPanlu.exe ["C:\Program Files (x86)\Creative\Sound Blaster X-Fi\Volume Panel\VolPanlu.exe" /r] -> [2007/02/28 17:50:50 | 000,180,224 | ---- | M] (Creative Technology Ltd)
"Wireless Manager" -> C:\Program Files (x86)\Virgin Broadband Wireless\Wireless Manager.exe ["C:\Program Files (x86)\Virgin Broadband Wireless\Wireless Manager.exe" startup] -> [2008/05/26 16:20:50 | 000,585,728 | ---- | M] (Affinegy, Inc.)
< Run [HKEY_CURRENT_USER\] > -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run ->
"Creative MediaSource Go" -> C:\Program Files (x86)\Creative\MediaSource5\Go\CTCMSGoU.exe ["C:\Program Files (x86)\Creative\MediaSource5\Go\CTCMSGoU.exe" /SCB] -> [2006/11/09 10:19:14 | 000,204,800 | ---- | M] (Creative Technology Ltd)
"swg" -> C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe ["C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"] -> [2008/08/20 23:42:21 | 000,039,408 | ---- | M] (Google Inc.)
"TBPanel" -> C:\Program Files (x86)\VDOTool\TBPanel.exe [C:\Program Files (x86)\VDOTool\TBPanel.exe /A] -> [2008/06/04 11:37:52 | 002,157,096 | ---- | M] (Palit Microsystems, Inc.)
< RunOnce [HKEY_CURRENT_USER\] > -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce ->
"Shockwave Updater" -> C:\Windows\SysWOW64\Adobe\SHOCKW~1\SWHELP~2.EXE -Update -1103470 -Mozilla\4.0 ( [C:\Windows\SysWOW64\Adobe\SHOCKW~1\SWHELP~2.EXE -Update -1103470 -"Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0; WOW64; GTB6.3; SLCC1; .NET CLR 2.0.50727; Media Center PC 5.0; InfoPath.2; OfficeLiveConnector.1.3; OfficeLivePatch.0.0; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Creative AutoUpdate v1.10.10)" -"http://www.lapoo.nl/search.php?keyword=bmw1&action=search"] -> File not found
< CurrentVersion Policy Settings - Explorer [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer ->
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer
\\"NoActiveDesktop" -> [1] -> File not found
\\"NoActiveDesktopChanges" -> [1] -> File not found
< CurrentVersion Policy Settings - System [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System ->
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats
< 64bit-Internet Explorer Menu Extensions [HKEY_CURRENT_USER\] > -> HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\MenuExt\ ->
&D&ownload &with BitComet -> C:\Program Files (x86)\BitComet\BitComet.exe [res://C:\Program Files (x86)\BitComet\BitComet.exe/AddLink.htm] -> [2009/01/20 07:37:40 | 002,523,960 | ---- | M] (www.BitComet.com)
&D&ownload all video with BitComet -> C:\Program Files (x86)\BitComet\BitComet.exe [res://C:\Program Files (x86)\BitComet\BitComet.exe/AddVideo.htm] -> [2009/01/20 07:37:40 | 002,523,960 | ---- | M] (www.BitComet.com)
&D&ownload all with BitComet -> C:\Program Files (x86)\BitComet\BitComet.exe [res://C:\Program Files (x86)\BitComet\BitComet.exe/AddAllLink.htm] -> [2009/01/20 07:37:40 | 002,523,960 | ---- | M] (www.BitComet.com)
Google Sidewiki... -> C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_96D6FF0C6D236BF8.dll [res://C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_96D6FF0C6D236BF8.dll/cmsidewiki.html] -> [2010/03/06 21:20:47 | 000,848,896 | ---- | M] (Google Inc.)
< Internet Explorer Menu Extensions [HKEY_CURRENT_USER\] > -> HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\MenuExt\ ->
&D&ownload &with BitComet -> C:\Program Files (x86)\BitComet\BitComet.exe [res://C:\Program Files (x86)\BitComet\BitComet.exe/AddLink.htm] -> [2009/01/20 07:37:40 | 002,523,960 | ---- | M] (www.BitComet.com)
&D&ownload all video with BitComet -> C:\Program Files (x86)\BitComet\BitComet.exe [res://C:\Program Files (x86)\BitComet\BitComet.exe/AddVideo.htm] -> [2009/01/20 07:37:40 | 002,523,960 | ---- | M] (www.BitComet.com)
&D&ownload all with BitComet -> C:\Program Files (x86)\BitComet\BitComet.exe [res://C:\Program Files (x86)\BitComet\BitComet.exe/AddAllLink.htm] -> [2009/01/20 07:37:40 | 002,523,960 | ---- | M] (www.BitComet.com)
Add to Windows &Live Favorites -> [http://favorites.live.com/quickadd.aspx] -> File not found
Google Sidewiki... -> C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_96D6FF0C6D236BF8.dll [res://C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_96D6FF0C6D236BF8.dll/cmsidewiki.html] -> [2010/03/06 21:20:47 | 000,848,896 | ---- | M] (Google Inc.)
< Internet Explorer Extensions [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extensions\ ->
{219C3416-8CB2-491a-A3C7-D9FCDDC9D600}:{5F7B1267-94A9-47F5-98DB-E99415F33AEC} [HKLM] -> C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll [Button: Blog This] -> [2009/07/26 20:17:14 | 000,186,192 | ---- | M] (Microsoft Corporation)
{219C3416-8CB2-491a-A3C7-D9FCDDC9D600}:{5F7B1267-94A9-47F5-98DB-E99415F33AEC} [HKLM] -> C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll [Menu: &Blog This in Windows Live Writer] -> [2009/07/26 20:17:14 | 000,186,192 | ---- | M] (Microsoft Corporation)
{2670000A-7350-4f3c-8081-5663EE0C6C49}:{48E73304-E1D6-4330-914C-F5F514E3486C} [HKLM] -> C:\Program Files (x86)\Microsoft Office\Office12\ONBttnIE.dll [Button: Send to OneNote] -> [2009/02/26 19:45:52 | 000,603,040 | ---- | M] (Microsoft Corporation)
{2670000A-7350-4f3c-8081-5663EE0C6C49}:{48E73304-E1D6-4330-914C-F5F514E3486C} [HKLM] -> C:\Program Files (x86)\Microsoft Office\Office12\ONBttnIE.dll [Menu: S&end to OneNote] -> [2009/02/26 19:45:52 | 000,603,040 | ---- | M] (Microsoft Corporation)
{D18A0B52-D63C-4ed0-AFC6-C1E3DC1AF43A}:res://C:\Program Files (x86)\BitComet\tools\BitCometBHO_1.3.1.15.dll/206 [HKLM] -> C:\Program Files (x86)\BitComet\tools\BitCometBHO_1.3.1.15.dll [Button: BitComet] -> [2009/01/16 10:02:24 | 000,656,696 | ---- | M] (BitComet)
< 64bit-Internet Explorer Plugins [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Plugins\ ->
PluginsPageFriendlyName -> Microsoft ActiveX Gallery ->
PluginsPage -> http://activex.microsoft.com/controls/find.asp?ext=%s&mime=%s ->
< Internet Explorer Plugins [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Plugins\ ->
< 64bit-Default Prefix > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\URL\DefaultPrefix
"" -> http://
< Default Prefix > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\URL\DefaultPrefix
"" -> http://
< 64bit-Trusted Sites Domains [HKEY_LOCAL_MACHINE\] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\ ->
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\ -> [Key] 0 domain(s) found. ->
< 64bit-Trusted Sites Ranges [HKEY_LOCAL_MACHINE\] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges\ ->
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges\ -> [Key] 0 range(s) found. ->
< Trusted Sites Domains [HKEY_LOCAL_MACHINE\] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\ ->
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\ -> [Key] 0 domain(s) found. ->
< Trusted Sites Ranges [HKEY_LOCAL_MACHINE\] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges\ ->
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges\ -> [Key] 0 range(s) found. ->
< Trusted Sites Domains [HKEY_CURRENT_USER\] > -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\ ->
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\ -> [Key] 0 domain(s) found. ->
< Trusted Sites Ranges [HKEY_CURRENT_USER\] > -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges\ ->
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges\ -> [Key] 1 range(s) found. ->
Marvell [:Range = 127.0.0.1] -> http = Local intranet | ->
< Downloaded Program Files > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\ ->
{8AD9C840-044E-11D1-B3E9-00805F499D93} [HKLM] -> http://java.sun.com/update/1.6.0/jinstall-1_6_0_19-windows-i586.cab [Java Plug-in 1.6.0_19] ->
{8FFBE65D-2C9C-4669-84BD-5829DC0B603C} [HKLM] -> http://fpdownload.macromedia.com/get/flashplayer/current/ultrashim.cab [Reg Error: Key error.] ->
{CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA} [HKLM] -> http://java.sun.com/update/1.6.0/jinstall-1_6_0_07-windows-i586.cab [Java Plug-in 1.6.0_07] ->
{CAFEEFAC-0016-0000-0019-ABCDEFFEDCBA} [HKLM] -> http://java.sun.com/update/1.6.0/jinstall-1_6_0_19-windows-i586.cab [Java Plug-in 1.6.0_19] ->
{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} [HKLM] -> http://java.sun.com/update/1.6.0/jinstall-1_6_0_19-windows-i586.cab [Java Plug-in 1.6.0_19] ->
{D27CDB6E-AE6D-11CF-96B8-444553540000} [HKLM] -> http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab [Shockwave Flash Object] ->
{E2883E8F-472F-4FB0-9522-AC9BF37916A7} [HKLM] -> http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab [Reg Error: Key error.] ->
< Name Servers [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\ ->
DhcpNameServer -> 192.168.1.1 ->
< Name Servers [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\Adapters\ ->
{EDAF1010-7661-48C3-B844-F5D52837E327}\\DhcpNameServer -> 192.168.1.1 (Atheros L1 Gigabit Ethernet 10/100/1000Base-T Controller) ->
< 64bit-Winlogon settings [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon ->
64bit-*Shell* -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\\Shell ->
explorer.exe -> C:\Windows\explorer.exe -> [2009/04/11 08:10:17 | 003,079,168 | ---- | M] (Microsoft Corporation)
*MultiFile Done* -> ->
< Winlogon settings [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon ->
*Shell* -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\\Shell ->
explorer.exe -> C:\Windows\SysWow64\explorer.exe -> [2009/04/11 07:27:36 | 002,926,592 | ---- | M] (Microsoft Corporation)
*MultiFile Done* -> ->
< ShellExecuteHooks [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks ->
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}" [HKLM] -> C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [Groove GFS Stub Execution Hook] -> [2009/02/12 15:19:32 | 002,217,848 | ---- | M] (Microsoft Corporation)
< Vista Public Profile Authorized Applications List > -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile\AuthorizedApplications ->
< Vista Standard Profile Authorized Applications List > -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications ->
< Vista Active Firewall Rules > -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules ->
{0361C16E-3A26-467F-80FD-48698CDA19C2} -> lport=2869 | protocol=6 | dir=in | action=allow | name=windows live messenger (upnp-in) | app=system |
{08A09183-2EA4-4E2D-9CC0-53F8C57F189E} -> lport=2869 | protocol=6 | dir=in | action=allow | name=windows live messenger (upnp-in) | app=system |
{0B875F51-B6E3-4E1B-BD7D-F73E5717F6F9} -> lport=1900 | protocol=17 | dir=in | action=allow | name=windows live messenger (ssdp-in) | app=svchost.exe | svc=ssdpsrv |
{109F5C97-32F3-4C35-A8DB-90B71871D7AD} -> lport=1900 | protocol=17 | dir=in | action=allow | name=windows live messenger (ssdp-in) | app=svchost.exe | svc=ssdpsrv |
{13951E4F-9405-4E3A-A229-4FC16C20069A} -> lport=1900 | protocol=17 | dir=in | action=allow | name=windows live messenger (ssdp-in) | app=svchost.exe | svc=ssdpsrv |
{139A4B86-AF0B-4B58-81F8-F1F53F433C2E} -> lport=2869 | protocol=6 | dir=in | action=allow | name=windows live messenger (upnp-in) | app=system |
{13BE065B-F99C-4CEE-AC08-711FC6E48448} -> lport=11202 | profile=public | protocol=17 | dir=in | action=allow | name=bitcomet 11202 udp |
{17C3B956-0F9A-4C1D-84CF-E5DF2318470F} -> lport=1900 | protocol=17 | dir=in | action=allow | name=windows live messenger (ssdp-in) | app=svchost.exe | svc=ssdpsrv |
{18A738AB-D2EC-432B-9E6A-84DBE6862450} -> lport=2869 | protocol=6 | dir=in | action=allow | name=windows live messenger (upnp-in) | app=system |
{1B108FD4-BD98-4B25-B52E-2189D9B140A1} -> lport=1900 | protocol=17 | dir=in | action=allow | name=windows live messenger (ssdp-in) | app=svchost.exe | svc=ssdpsrv |
{1C59E11C-F86F-4727-9048-F6C35F9F901E} -> lport=2869 | protocol=6 | dir=in | action=allow | name=windows live messenger (upnp-in) | app=system |
{1FBACBAC-657B-4FE4-BA06-9D9D754ACEA5} -> lport=2869 | protocol=6 | dir=in | action=allow | name=windows live messenger (upnp-in) | app=system |
{1FBDAE0F-1592-4EB3-823E-001F215024ED} -> lport=1900 | protocol=17 | dir=in | action=allow | name=windows live messenger (ssdp-in) | app=svchost.exe | svc=ssdpsrv |
{221E648C-3BDC-4A30-B8FF-C7B3D855D88A} -> lport=2869 | protocol=6 | dir=in | action=allow | name=windows live messenger (upnp-in) | app=system |
{23EE8926-97F7-4A67-815C-118CE0E226B4} -> lport=1900 | protocol=17 | dir=in | action=allow | name=windows live messenger (ssdp-in) | app=svchost.exe | svc=ssdpsrv |
{262C56A7-9159-4674-9583-C47C45886A12} -> lport=1900 | protocol=17 | dir=in | action=allow | name=windows live messenger (ssdp-in) | app=svchost.exe | svc=ssdpsrv |
{2742733A-9202-4084-A88F-AEAC8FB0AA5F} -> lport=1900 | protocol=17 | dir=in | action=allow | name=windows live messenger (ssdp-in) | app=svchost.exe | svc=ssdpsrv |
{276278D4-7BEA-4580-B3C7-66F233D1863C} -> lport=2869 | protocol=6 | dir=in | action=allow | name=windows live messenger (upnp-in) | app=system |
{2BFA98E4-3F04-4D80-83CC-FDC714BD994B} -> lport=2869 | protocol=6 | dir=in | action=allow | name=windows live messenger (upnp-in) | app=system |
{2D611F5B-99CF-464E-B99D-8CFCAA99AEEC} -> lport=1900 | protocol=17 | dir=in | action=allow | name=windows live messenger (ssdp-in) | app=svchost.exe | svc=ssdpsrv |
{2E3E3337-1CCD-4175-8881-CE1F67A92AE0} -> lport=1900 | protocol=17 | dir=in | action=allow | name=windows live messenger (ssdp-in) | app=svchost.exe | svc=ssdpsrv |
{2E5DEEF3-53EB-4E75-820B-C602BCB39ED7} -> lport=1900 | protocol=17 | dir=in | action=allow | name=windows live messenger (ssdp-in) | app=svchost.exe | svc=ssdpsrv |
{2EB2531F-55EB-4FE3-8914-C814735D31B0} -> lport=1900 | protocol=17 | dir=in | action=allow | name=windows live messenger (ssdp-in) | app=svchost.exe | svc=ssdpsrv |
{3146FCF4-6A3D-4B2A-9501-8420A36B4A6D} -> lport=1900 | protocol=17 | dir=in | action=allow | name=windows live messenger (ssdp-in) | app=svchost.exe | svc=ssdpsrv |
{31880F7E-F7FB-4457-8AE3-BD53E7FD590C} -> lport=1900 | protocol=17 | dir=in | action=allow | name=windows live messenger (ssdp-in) | app=svchost.exe | svc=ssdpsrv |
{3664139F-E0C8-40A2-B9E7-3EC122FF2C5E} -> lport=1900 | protocol=17 | dir=in | action=allow | name=windows live messenger (ssdp-in) | app=svchost.exe | svc=ssdpsrv |
{3666C74C-6F2C-4661-85E9-596C49B9C6B5} -> lport=1900 | protocol=17 | dir=in | action=allow | name=windows live messenger (ssdp-in) | app=svchost.exe | svc=ssdpsrv |
{3869E370-3FF7-45C7-8872-7F954A70BCFC} -> lport=1900 | protocol=17 | dir=in | action=allow | name=windows live messenger (ssdp-in) | app=svchost.exe | svc=ssdpsrv |
{3A8FEFF6-CDF6-468A-B9C5-4C748C7A6120} -> lport=2869 | protocol=6 | dir=in | action=allow | name=windows live messenger (upnp-in) | app=system |
{3AA6FC7A-5B94-4098-9189-963E76254DC1} -> lport=2869 | protocol=6 | dir=in | action=allow | name=windows live messenger (upnp-in) | app=system |
{3B66B6ED-0AFC-4ED8-A10A-3F0AAF3BCBB1} -> lport=2869 | protocol=6 | dir=in | action=allow | name=windows live messenger (upnp-in) | app=system |
{3D12B99D-B7BA-4C64-9830-B56773528431} -> lport=1900 | protocol=17 | dir=in | action=allow | name=windows live messenger (ssdp-in) | app=svchost.exe | svc=ssdpsrv |
{3D5C5A57-2199-4D07-BBDF-99A2B0FF3106} -> lport=1900 | protocol=17 | dir=in | action=allow | name=windows live messenger (ssdp-in) | app=svchost.exe | svc=ssdpsrv |
{40084DB7-39C4-4F79-8453-094B27FE28AF} -> lport=1900 | protocol=17 | dir=in | action=allow | name=windows live messenger (ssdp-in) | app=svchost.exe | svc=ssdpsrv |
{44E332B6-D42D-4E06-A749-C7C5FC6A1805} -> lport=1900 | protocol=17 | dir=in | action=allow | name=windows live messenger (ssdp-in) | app=svchost.exe | svc=ssdpsrv |
{450E74E9-2BE0-4244-B088-C2497B854078} -> lport=2869 | protocol=6 | dir=in | action=allow | name=windows live messenger (upnp-in) | app=system |
{4EA8FA0F-8349-498F-AC99-88F1DEBE7DC0} -> lport=2869 | protocol=6 | dir=in | action=allow | name=windows live messenger (upnp-in) | app=system |
{52283CB8-9FEF-4252-8626-BAE12A71EC62} -> lport=2869 | protocol=6 | dir=in | action=allow | name=windows live messenger (upnp-in) | app=system |
{53C04F66-AE2A-473A-B099-DFE761D156E0} -> lport=2869 | protocol=6 | dir=in | action=allow | name=windows live messenger (upnp-in) | app=system |
{54B47797-7AEA-4850-81F0-FFC8DE86BAAD} -> lport=1900 | protocol=17 | dir=in | action=allow | name=windows live messenger (ssdp-in) | app=svchost.exe | svc=ssdpsrv |
{58BF44EC-5651-439D-9BB4-59F74525257D} -> lport=1900 | protocol=17 | dir=in | action=allow | name=windows live messenger (ssdp-in) | app=svchost.exe | svc=ssdpsrv |
{58DB0AB4-93A3-43AE-B730-CABEF5D40873} -> lport=1900 | protocol=17 | dir=in | action=allow | name=windows live messenger (ssdp-in) | app=svchost.exe | svc=ssdpsrv |
{5DF48A1C-669A-4885-856C-4CF790C1E41C} -> lport=1900 | protocol=17 | dir=in | action=allow | name=windows live messenger (ssdp-in) | app=svchost.exe | svc=ssdpsrv |
{5FDE8010-F8B5-4467-8A74-9AD6C814B8CF} -> lport=2869 | protocol=6 | dir=in | action=allow | name=windows live messenger (upnp-in) | app=system |
{607C7B8B-CB55-43FD-A5A8-E8FA4575F1E0} -> lport=1900 | protocol=17 | dir=in | action=allow | name=windows live messenger (ssdp-in) | app=svchost.exe | svc=ssdpsrv |
{60CC49CE-86EC-4808-86E0-C8DC729FFBDC} -> lport=2869 | protocol=6 | dir=in | action=allow | name=windows live messenger (upnp-in) | app=system |
{627511BE-6705-4DF1-8AA9-42AA455A92D5} -> lport=2869 | protocol=6 | dir=in | action=allow | name=windows live messenger (upnp-in) | app=system |
{6317C82D-E909-4D7C-B643-BBB4A3E6D22A} -> lport=1900 | protocol=17 | dir=in | action=allow | name=windows live messenger (ssdp-in) | app=svchost.exe | svc=ssdpsrv |
{645FC600-4586-4195-AC27-DE37BA36471D} -> lport=2869 | protocol=6 | dir=in | action=allow | name=windows live messenger (upnp-in) | app=system |
{6723B40A-E309-4123-A7FF-B1CFE897C31B} -> lport=2869 | protocol=6 | dir=in | action=allow | name=windows live messenger (upnp-in) | app=system |
{67C2017D-449D-4890-A63F-BF80E2ED68D6} -> lport=1900 | protocol=17 | dir=in | action=allow | name=windows live messenger (ssdp-in) | app=svchost.exe | svc=ssdpsrv |
{68F00C20-8DA6-4D15-A87D-01ECD8978FB3} -> lport=1900 | protocol=17 | dir=in | action=allow | name=windows live messenger (ssdp-in) | app=svchost.exe | svc=ssdpsrv |
{6A8CBB28-CF63-4D3D-A6E7-8A72E1D84EA6} -> lport=1900 | protocol=17 | dir=in | action=allow | name=windows live messenger (ssdp-in) | app=svchost.exe | svc=ssdpsrv |
{6D52F856-D503-4EF1-AD95-1516555051FA} -> lport=1900 | protocol=17 | dir=in | action=allow | name=windows live messenger (ssdp-in) | app=svchost.exe | svc=ssdpsrv |
{73F9FEC4-FA95-4D91-ADA2-165958B03D29} -> lport=2869 | protocol=6 | dir=in | action=allow | name=windows live messenger (upnp-in) | app=system |
{7753EFED-3408-49F2-B68F-1777153BB8EA} -> lport=1900 | protocol=17 | dir=in | action=allow | name=windows live messenger (ssdp-in) | app=svchost.exe | svc=ssdpsrv |
{7AC17FD0-6B9C-4981-9874-C3EC7E8C66AD} -> lport=2869 | protocol=6 | dir=in | action=allow | name=windows live messenger (upnp-in) | app=system |
{7C514123-A7C1-4798-92C2-41FB79E55449} -> lport=1900 | protocol=17 | dir=in | action=allow | name=windows live messenger (ssdp-in) | app=svchost.exe | svc=ssdpsrv |
{7E3C5259-117F-4978-BEC4-8530737E55DF} -> lport=2869 | protocol=6 | dir=in | action=allow | name=windows live messenger (upnp-in) | app=system |
{7EA99E76-DD94-40D9-ABA8-48B8D06D9B5C} -> lport=2869 | protocol=6 | dir=in | action=allow | name=windows live messenger (upnp-in) | app=system |
{80B69CCC-E6D9-42E5-BCAD-D121C1B7F4B5} -> lport=1900 | protocol=17 | dir=in | action=allow | name=windows live messenger (ssdp-in) | app=svchost.exe | svc=ssdpsrv |
{828E5FF1-4DB7-48CD-B067-B74306D0FA11} -> lport=2869 | protocol=6 | dir=in | action=allow | name=windows live messenger (upnp-in) | app=system |
{85C34359-F3AA-439F-9B5E-6EB66DCA17C6} -> lport=2869 | protocol=6 | dir=in | action=allow | name=windows live messenger (upnp-in) | app=system |
{881B5ABB-D1F4-4B06-8353-87C5BE3AA0FB} -> lport=1900 | protocol=17 | dir=in | action=allow | name=windows live messenger (ssdp-in) | app=svchost.exe | svc=ssdpsrv |
{89265673-2C7D-4DD7-BEDB-FBEEFAAB74D0} -> lport=2869 | protocol=6 | dir=in | action=allow | name=windows live messenger (upnp-in) | app=system |
{8A789DA3-0D8E-482B-B0F7-1F514150715A} -> lport=2869 | protocol=6 | dir=in | action=allow | name=windows live messenger (upnp-in) | app=system |
{8BEACD69-F967-48EB-98FA-5A62F6014091} -> lport=1900 | protocol=17 | dir=in | action=allow | name=windows live messenger (ssdp-in) | app=svchost.exe | svc=ssdpsrv |
{8C1EFED1-DE86-409B-AABF-FA1AD716D6E0} -> lport=2869 | protocol=6 | dir=in | action=allow | name=windows live messenger (upnp-in) | app=system |
{8F5BDE5A-6CD0-4F24-94AF-E25327BDB0F8} -> lport=1900 | protocol=17 | dir=in | action=allow | name=windows live messenger (ssdp-in) | app=svchost.exe | svc=ssdpsrv |
{903BFC6A-B256-4DB1-B713-5460E4B78804} -> lport=1900 | protocol=17 | dir=in | action=allow | name=windows live messenger (ssdp-in) | app=svchost.exe | svc=ssdpsrv |
{91345576-1E4F-4CF7-9116-45E7957DE2E5} -> lport=2869 | protocol=6 | dir=in | action=allow | name=windows live messenger (upnp-in) | app=system |
{94B3F2EC-F3F9-40EA-864C-2C5C31B20014} -> lport=1900 | protocol=17 | dir=in | action=allow | name=windows live messenger (ssdp-in) | app=svchost.exe | svc=ssdpsrv |
{95EB06F7-B61F-40AC-B871-6F784FA6909D} -> lport=2869 | protocol=6 | dir=in | action=allow | name=windows live messenger (upnp-in) | app=system |
{973DF149-560F-465E-BD2A-CC60F66565E2} -> lport=2869 | protocol=6 | dir=in | action=allow | name=windows live messenger (upnp-in) | app=system |
{979AE334-CFFD-4786-AFE1-A64A501FA582} -> lport=2869 | protocol=6 | dir=in | action=allow | name=windows live messenger (upnp-in) | app=system |
{9EB4B064-9085-41BB-9738-9C2D316C8E6A} -> lport=2869 | protocol=6 | dir=in | action=allow | name=windows live messenger (upnp-in) | app=system |
{9EC1798C-532D-4487-8AD5-A573E5ECA32C} -> lport=1900 | protocol=17 | dir=in | action=allow | name=windows live messenger (ssdp-in) | app=svchost.exe | svc=ssdpsrv |
{A0FE45FB-C213-4555-92E2-50A757A7DB8A} -> lport=2869 | protocol=6 | dir=in | action=allow | name=windows live messenger (upnp-in) | app=system |
{A13A31F2-30E2-4A6F-B8A6-DA63C471DA5D} -> lport=6004 | profile=public | protocol=17 | dir=in | action=allow | name=microsoft office outlook | app=c:\program files (x86)\microsoft office\office12\outlook.exe |
{A595AB48-96B2-4C8F-A480-E7F2B3B2280B} -> lport=2869 | protocol=6 | dir=in | action=allow | name=windows live messenger (upnp-in) | app=system |
{AD350750-480A-47E3-BA58-97967C5F904A} -> lport=2869 | protocol=6 | dir=in | action=allow | name=windows live messenger (upnp-in) | app=system |
{AD7AE0AA-EDB6-4DBE-9746-61319F61C780} -> lport=1900 | protocol=17 | dir=in | action=allow | name=windows live messenger (ssdp-in) | app=svchost.exe | svc=ssdpsrv |
{B3A8D968-89F9-4423-BD0B-8A29AFC19E75} -> lport=1900 | protocol=17 | dir=in | action=allow | name=windows live messenger (ssdp-in) | app=svchost.exe | svc=ssdpsrv |
{B539DF17-7921-4C3A-9FBF-D9C723B5B154} -> lport=2869 | protocol=6 | dir=in | action=allow | name=windows live messenger (upnp-in) | app=system |
{B7F48F0A-AD17-406B-9B97-2EE0573DC2D0} -> lport=1900 | protocol=17 | dir=in | action=allow | name=windows live messenger (ssdp-in) | app=svchost.exe | svc=ssdpsrv |
{BF66DB24-191A-4A7F-991F-EFCF2910B9DE} -> lport=1900 | protocol=17 | dir=in | action=allow | name=windows live messenger (ssdp-in) | app=svchost.exe | svc=ssdpsrv |
{BFFF53D9-0085-41B7-9EA4-276187F48E6E} -> lport=2869 | protocol=6 | dir=in | action=allow | name=windows live messenger (upnp-in) | app=system |
{C1F2F53F-1B7C-4A62-9722-50B491392626} -> lport=2869 | protocol=6 | dir=in | action=allow | name=windows live messenger (upnp-in) | app=system |
{C519E3BB-D355-43E3-91EB-B561E9E7E272} -> lport=1900 | protocol=17 | dir=in | action=allow | name=windows live messenger (ssdp-in) | app=svchost.exe | svc=ssdpsrv |