prosím o kontrolu...,díky
Logfile of random's system information tool 1.09 (written by random/random)
Run by opopop at 2012-07-25 20:32:02
Microsoft Windows 7 Ultimate
System drive C: has 2 GB (1%) free of 150 GB
Total RAM: 4094 MB (39% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 20:34:20, on 25.7.2012
Platform: Windows 7 (WinNT 6.00.3504)
MSIE: Internet Explorer v8.00 (8.00.7600.16671)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe
C:\Program Files (x86)\AVG\AVG2012\avgtray.exe
C:\Program Files (x86)\AVG Secure Search\vprot.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\TechSmith\Snagit 11\Snagit32.exe
C:\Program Files (x86)\AutoHotkey\AutoHotkey.exe
C:\Users\opopop\AppData\Roaming\Dropbox\bin\Dropbox.exe
C:\Program Files\Logitech\SetPoint\x86\SetPoint32.exe
C:\Program Files (x86)\eM Client\MailClient.exe
C:\Program Files (x86)\TechSmith\Snagit 11\TSCHelp.exe
C:\Program Files (x86)\TechSmith\Snagit 11\SnagPriv.exe
C:\Program Files (x86)\TechSmith\Snagit 11\snagiteditor.exe
C:\Users\opopop\AppData\Local\Google\Update\GoogleUpdate.exe
C:\Users\opopop\AppData\Local\Google\Update\1.3.21.115\GoogleCrashHandler.exe
C:\Program Files\trend micro\opopop.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://start.facemoods.com/?a=ddrnw&s={searchTerms}&f=4
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: (no name) - - (no file)
R3 - URLSearchHook: Free Lunch Design TB Toolbar - {a5ae8924-4036-420f-b7f6-a47e4b8f692e} - C:\Program Files (x86)\Free_Lunch_Design_TB\prxtbFree.dll
R3 - URLSearchHook: (no name) - {e8de9422-3b2c-4243-bf6f-235da84d8ef8} - (no file)
R3 - URLSearchHook: (no name) - {30421e54-3b57-4e5b-947c-9b6beea57683} - (no file)
R3 - URLSearchHook: (no name) - {51a86bb3-6602-4c85-92a5-130ee4864f13} - (no file)
F2 - REG:system.ini: UserInit=userinit.exe,
O1 - Hosts: ::1 localhost
O1 - Hosts: 68.168.222.226 http://www.google-analytics.com.
O1 - Hosts: 68.168.222.226 ad-emea.doubleclick.net.
O1 - Hosts: 68.168.222.226 http://www.statcounter.com.
O1 - Hosts: 108.163.215.51 http://www.google-analytics.com.
O1 - Hosts: 108.163.215.51 ad-emea.doubleclick.net.
O1 - Hosts: 108.163.215.51 http://www.statcounter.com.
O2 - BHO: SnagIt Toolbar Loader - {00C6482D-C502-44C8-8409-FCE54AD9C208} - C:\Program Files (x86)\TechSmith\Snagit 9\SnagitBHO.dll
O2 - BHO: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll
O2 - BHO: vShare Plugin - {043C5167-00BB-4324-AF7E-62013FAEDACF} - C:\Program Files (x86)\vShare\vshare_toolbar.dll
O2 - BHO: AskBar BHO - {201f27d4-3704-41d6-89c1-aa35e39143ed} - C:\Program Files (x86)\AskBarDis\bar\bin\askBar.dll
O2 - BHO: WebTransBHO Class - {2DB66063-BB98-466A-AA0D-3E7ACF5ED853} - C:\ProgramData\LangSoft\WebIE.dll
O2 - BHO: AVG Do Not Track - {31332EEF-CB9F-458F-AFEB-D30E9A66B6BA} - C:\Program Files (x86)\AVG\AVG2012\avgdtiex.dll
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files (x86)\AVG\AVG2012\avgssie.dll
O2 - BHO: facemoods Helper - {64182481-4F71-486b-A045-B233BD0DA8FC} - C:\Program Files (x86)\facemoods.com\facemoods\1.4.17.11\bh\facemoods.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre6\bin\ssv.dll
O2 - BHO: Pomocná služba pro přihlášení ke službě Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: AVG Security Toolbar - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files (x86)\AVG Secure Search\11.1.0.12\AVG Secure Search_toolbar.dll
O2 - BHO: (no name) - {9D717F81-9148-4f12-8568-69135F087DB0} - (no file)
O2 - BHO: Free Lunch Design TB - {a5ae8924-4036-420f-b7f6-a47e4b8f692e} - C:\Program Files (x86)\Free_Lunch_Design_TB\prxtbFree.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
O2 - BHO: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
O3 - Toolbar: DAEMON Tools Toolbar - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files (x86)\DAEMON Tools Toolbar\DTToolbar.dll
O3 - Toolbar: Snagit - {8FF5E183-ABDE-46EB-B09E-D2AAB95CABE3} - C:\Program Files (x86)\TechSmith\Snagit 9\SnagitIEAddin.dll
O3 - Toolbar: Foxit Toolbar - {3041d03e-fd4b-44e0-b742-2d9b88305f98} - C:\Program Files (x86)\AskBarDis\bar\bin\askBar.dll
O3 - Toolbar: WebTranslator - {BFC32E1D-EE75-4A48-BC60-104E11EE2431} - C:\ProgramData\LangSoft\WebIE.dll
O3 - Toolbar: vShare Plugin - {043C5167-00BB-4324-AF7E-62013FAEDACF} - C:\Program Files (x86)\vShare\vshare_toolbar.dll
O3 - Toolbar: Free Lunch Design TB Toolbar - {a5ae8924-4036-420f-b7f6-a47e4b8f692e} - C:\Program Files (x86)\Free_Lunch_Design_TB\prxtbFree.dll
O3 - Toolbar: facemoods Toolbar - {DB4E9724-F518-4dfd-9C7C-78B52103CAB9} - C:\Program Files (x86)\facemoods.com\facemoods\1.4.17.11\facemoodsTlbr.dll
O3 - Toolbar: &Save Flash - {4064EA35-578D-4073-A834-C96D82CBCF40} - C:\Program Files (x86)\Save Flash\SaveFlash.dll
O3 - Toolbar: (no name) - {99079a25-328f-4bd4-be04-00955acaa0a7} - (no file)
O3 - Toolbar: AVG Security Toolbar - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files (x86)\AVG Secure Search\11.1.0.12\AVG Secure Search_toolbar.dll
O4 - HKLM\..\Run: [AVG_TRAY] "C:\Program Files (x86)\AVG\AVG2012\avgtray.exe"
O4 - HKLM\..\Run: [vProt] "C:\Program Files (x86)\AVG Secure Search\vprot.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [Ad Muncher] "C:\Program Files (x86)\Ad Muncher\AdMunch.exe" /bt
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [Clownfish] "C:\Program Files (x86)\Clownfish\Clownfish.exe"
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - Startup: Dropbox.lnk = C:\Users\opopop\AppData\Roaming\Dropbox\bin\Dropbox.exe
O4 - Global Startup: Logitech SetPoint.lnk = ?
O4 - Global Startup: Snagit 11.lnk = C:\Program Files (x86)\TechSmith\Snagit 11\Snagit32.exe
O4 - Global Startup: tst.ahk
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200
O8 - Extra context menu item: Block frame with Ad Muncher - http://www.admuncher.com/request_will_b ... u_ie_frame
O8 - Extra context menu item: Block image with Ad Muncher - http://www.admuncher.com/request_will_b ... u_ie_image
O8 - Extra context menu item: Block link with Ad Muncher - http://www.admuncher.com/request_will_b ... nu_ie_link
O8 - Extra context menu item: Don't filter page with Ad Muncher - http://www.admuncher.com/request_will_b ... ie_exclude
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\PROGRA~1\MICROS~2\Office14\ONBttnIE.dll/105
O8 - Extra context menu item: Report page to the Ad Muncher developers - http://www.admuncher.com/request_will_b ... _ie_report
O8 - Extra context menu item: Sothink SWF Catcher - C:\Program Files (x86)\Common Files\SourceTec\SWF Catcher\InternetExplorer.htm
O8 - Extra context menu item: WikiKomentáře Google... - res://C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_96D6FF0C6D236BF8.dll/cmsidewiki.html
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: @C:\Windows\WindowsMobile\INetRepl.dll,-222 - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll
O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll
O9 - Extra 'Tools' menuitem: @C:\Windows\WindowsMobile\INetRepl.dll,-223 - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll
O9 - Extra button: AVG Do Not Track - {68BCFFE1-A2DA-4B40-9068-87ECBFC19D16} - C:\Program Files (x86)\AVG\AVG2012\avgdtiex.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra button: WebTran - {7E6A20FB-153F-402c-A84B-1A64E1955D3D} - C:\ProgramData\LangSoft\WebIE.dll
O9 - Extra button: (no name) - {BFC32E1D-EE75-4A48-BC60-104E11EE2431} - (no file)
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748449} - C:\ProgramData\LangSoft\WebIE.dll
O9 - Extra 'Tools' menuitem: &Nastavit překladač - {CC963627-B1DC-40E0-B52A-CF21EE748449} - C:\ProgramData\LangSoft\WebIE.dll
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748450} - C:\ProgramData\LangSoft\WebIE.dll
O9 - Extra 'Tools' menuitem: &Slovník - {CC963627-B1DC-40E0-B52A-CF21EE748450} - C:\ProgramData\LangSoft\WebIE.dll
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748451} - C:\ProgramData\LangSoft\WebIE.dll
O9 - Extra 'Tools' menuitem: Přeložit &označený text - {CC963627-B1DC-40E0-B52A-CF21EE748451} - C:\ProgramData\LangSoft\WebIE.dll
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748452} - C:\ProgramData\LangSoft\WebIE.dll
O9 - Extra 'Tools' menuitem: Přeložit &stránku - {CC963627-B1DC-40E0-B52A-CF21EE748452} - C:\ProgramData\LangSoft\WebIE.dll
O9 - Extra button: Zobrazit nebo skrýt HP Smart Web Printing - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
O9 - Extra button: Sothink SWF Catcher - {E19ADC6E-3909-43E4-9A89-B7B676377EE3} - C:\Program Files (x86)\Common Files\SourceTec\SWF Catcher\InternetExplorer.htm
O9 - Extra 'Tools' menuitem: Sothink SWF Catcher - {E19ADC6E-3909-43E4-9A89-B7B676377EE3} - C:\Program Files (x86)\Common Files\SourceTec\SWF Catcher\InternetExplorer.htm
O9 - Extra button: PokerStars.net - {FA9B9510-9FCB-4ca0-818C-5D0987B47C4D} - C:\Program Files (x86)\PokerStars.NET\PokerStarsUpdate.exe (file missing)
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O16 - DPF: {D4003189-95B1-4A2F-9A87-F2B03665960D} (VodClient Control Class) - http://www.spvod.com/soft/vjocx-ch-spvod.cab
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{AE74BE4B-2162-4B3F-865F-B6CEFCCEED22}: NameServer = 156.154.70.25,156.154.71.25
O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files (x86)\AVG\AVG2012\avgpp.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - C:\Program Files (x86)\Common Files\AVG Secure Search\ViProtocolInstaller\11.2.0\ViProtocol.dll
O18 - Protocol: vsharechrome - {3F3A4B8A-86FC-43A4-BB00-6D7EBE9D4484} - C:\Program Files (x86)\vShare\vshare_toolbar.dll
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O20 - AppInit_DLLs: C:\PROGRA~2\WI3C8A~1\Datamngr\datamngr.dll C:\PROGRA~2\WI3C8A~1\Datamngr\IEBHO.dll
O23 - Service: SAS Core Service (!SASCORE) - SUPERAntiSpyware.com - C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: AODService - Unknown owner - C:\Program Files (x86)\AMD\OverDrive\AODAssist.exe
O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG2012\avgidsagent.exe
O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG2012\avgwdsvc.exe
O23 - Service: Crypkey License - CrypKey (Canada) Ltd. - C:\Windows\SYSTEM32\crypserv.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: FLEXnet Licensing Service - Acresso Software Inc. - C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: FLEXnet Licensing Service 64 - Acresso Software Inc. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: LogMeIn Hamachi Tunneling Engine (Hamachi2Svc) - LogMeIn Inc. - C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Lavasoft Ad-Aware Service - Lavasoft Limited - C:\Program Files (x86)\Lavasoft\Ad-Aware\AAWService.exe
O23 - Service: Logitech Bluetooth Service (LBTServ) - Logitech, Inc. - C:\Program Files\Common Files\Logishrd\Bluetooth\LBTServ.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
O23 - Service: McAfee Security Scan Component Host Service (McComponentHostService) - McAfee, Inc. - C:\Program Files (x86)\McAfee Security Scan\2.0.189\McCHSvc.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: NBService - Nero AG - C:\Program Files (x86)\Nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NMIndexingService - Nero AG - C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe
O23 - Service: NMSAccessU - Unknown owner - C:\Program Files (x86)\CDBurnerXP\NMSAccessU.exe
O23 - Service: Internet Pass-Through Service (PassThru Service) - Unknown owner - C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: PS3 Media Server - Unknown owner - C:\Program Files (x86)\PS3 Media Server\win32\service\wrapper.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O23 - Service: tvMobiliService - Unknown owner - C:\Program Files (x86)\TVMOBiLi\bin\tvMobiliService.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: VLC-Win7_Service - Unknown owner - C:\Program Files (x86)\VideoLAN\VLC\vlc.exe
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: vToolbarUpdater11.2.0 - Unknown owner - C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\11.2.0\ToolbarUpdater.exe
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: soft Xpansion Print2Document (WPEServ) - soft Xpansion - C:\Program Files (x86)\Common Files\WPE\wpeserv.exe
--
End of file - 19765 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
C:\PROGRA~2\AVG\AVG2012\avgrsa.exe /boot
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Program Files (x86)\AVG\AVG2012\avgcsrva.exe /pipeName=ac01b530-d08a-4e78-83a7-e146e4e7ed4a /coreSdkOptions=286 /logConfFile="C:\ProgramData\AVG2012\temp\d4e7731c-2c21-4a58-8262-8244c6a90715-16c-oopp.tmp" /loggerName=AVG.RS.Core /binaryPath="C:\Program Files (x86)\AVG\AVG2012\" /registryPath="SYSTEM\CurrentControlSet\Services\Avg\Avg2012" /tempPath="C:\ProgramData\AVG2012\temp\"
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
winlogon.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k NetworkService
atieclxx
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
taskeng.exe {AF6C9DFF-5E0E-43AC-A04D-2FB6C2DFC172}
"C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE"
C:\Windows\system32\rundll32.exe "C:\Windows\SysWOW64\activedss.dll",Aqawrlytly
"C:\Program Files (x86)\AVG\AVG2012\avgwdsvc.exe"
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe" -s
C:\Windows\SysWOW64\svchost.exe -k hpdevmgmt
C:\Windows\System32\svchost.exe -k HPZ12
"C:\Program Files (x86)\CDBurnerXP\NMSAccessU.exe"
"C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe"
C:\Windows\System32\svchost.exe -k HPZ12
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\TVMOBiLi\bin\tvMobiliService.exe" /InstanceRoot:"C:\Program Files (x86)\TVMOBiLi" /PackageRoot:"C:\Program Files (x86)\TVMOBiLi"
"C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" -I ntservice --ntservice-extraintf http --no-qt-privacy-ask --no-qt-error-dialogs
"C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\11.2.0\ToolbarUpdater.exe"
"taskhost.exe"
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
WLIDSvcM.exe 2972
"C:\Program Files (x86)\AVG\AVG2012\avgidsagent.exe"
"C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
"C:\Program Files (x86)\AVG\AVG2012\avgtray.exe"
"C:\Program Files (x86)\AVG Secure Search\vprot.exe"
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
"C:\Program Files (x86)\AVG\AVG2012\avgnsa.exe"
"C:\Program Files (x86)\AVG\AVG2012\avgemca.exe"
"C:\Program Files\Logitech\SetPoint\SetPoint.exe"
"C:\Program Files (x86)\TechSmith\Snagit 11\Snagit32.exe"
"C:\Program Files (x86)\AutoHotkey\AutoHotkey.exe" "C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\tst.ahk"
"C:\Users\opopop\AppData\Roaming\Dropbox\bin\Dropbox.exe"
"C:\Program Files\Logitech\SetPoint\x86\SetPoint32.exe"
"C:\Program Files\Opera x64\opera.exe"
"C:\Program Files (x86)\eM Client\MailClient.exe"
KHALMNPR.EXE /API
"C:\Program Files (x86)\TechSmith\Snagit 11\TSCHelp.exe"
C:\Windows\system32\SearchIndexer.exe /Embedding
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\Program Files (x86)\TechSmith\Snagit 11\SnagPriv.exe"
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
"C:\Program Files (x86)\TechSmith\Snagit 11\snagiteditor.exe" /X
C:\Windows\splwow64.exe 1
"C:\Program Files (x86)\Lavasoft\Ad-Aware\AWSC.exe" /antispywareenable
"C:\Program Files (x86)\Lavasoft\Ad-Aware\AWSC.exe" /antivirusenable
"C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe"
C:\Windows\system32\svchost.exe -k WindowsMobile
"C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE"
taskeng.exe {783F6F43-A955-4DFF-B288-10905A95E5D7}
C:\Users\opopop\AppData\Local\Google\Update\GoogleUpdate.exe /c
C:\Users\opopop\AppData\Local\Google\Update\1.3.21.115\GoogleCrashHandler.exe
C:\Users\opopop\AppData\Local\Google\Update\1.3.21.115\GoogleCrashHandler64.exe
"C:\Program Files\Opera x64\pluginwrapper\opera_plugin_wrapper.exe" -newprocess "2684 2 0 1 187998" -logfolder "C:\Users\opopop\AppData\Local\Opera\Opera x64\logs"
"C:\Program Files (x86)\Lavasoft\Ad-Aware\AWSC.exe" /antispywaredisable
"C:\Program Files (x86)\Lavasoft\Ad-Aware\AWSC.exe" /antivirusdisable
"C:\Users\opopop\Desktop\RSITx64.exe"
C:\Windows\system32\wbem\wmiprvse.exe
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player Updater.job
C:\Windows\tasks\AutoKMS.job
C:\Windows\tasks\AutoKMSDaily.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{00C6482D-C502-44C8-8409-FCE54AD9C208}]
SnagIt Toolbar Loader - C:\Program Files (x86)\TechSmith\Snagit 9\DLLx64\SnagitBHO64.dll [2009-04-17 82248]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31332EEF-CB9F-458F-AFEB-D30E9A66B6BA}]
AVG Do Not Track - C:\Program Files (x86)\AVG\AVG2012\avgdtiea.dll [2012-06-13 1392760]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}]
AVG Safe Search - C:\Program Files (x86)\AVG\AVG2012\avgssiea.dll [2012-06-24 1968248]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2011-02-12 6718864]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-28 529280]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9D717F81-9148-4f12-8568-69135F087DB0}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL [2010-12-21 689040]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Oracle\JavaFX 2.0 Runtime\bin\jp2ssv.dll [2012-01-10 79240]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{00C6482D-C502-44C8-8409-FCE54AD9C208}]
SnagIt Toolbar Loader - C:\Program Files (x86)\TechSmith\Snagit 9\SnagitBHO.dll [2009-04-17 68936]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0347C33E-8762-4905-BF09-768834316C61}]
HP Print Enhancer - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll [2009-10-22 328248]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{043C5167-00BB-4324-AF7E-62013FAEDACF}]
vShare Plugin - C:\Program Files (x86)\vShare\vshare_toolbar.dll [2010-10-05 478800]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{201f27d4-3704-41d6-89c1-aa35e39143ed}]
AskBar BHO - C:\Program Files (x86)\AskBarDis\bar\bin\askBar.dll [2008-11-18 333192]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2DB66063-BB98-466A-AA0D-3E7ACF5ED853}]
WebTransBHO Class - C:\ProgramData\LangSoft\WebIE.dll [2011-12-28 798771]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31332EEF-CB9F-458F-AFEB-D30E9A66B6BA}]
AVG Do Not Track - C:\Program Files (x86)\AVG\AVG2012\avgdtiex.dll [2012-06-13 937592]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}]
AVG Safe Search - C:\Program Files (x86)\AVG\AVG2012\avgssie.dll [2012-06-24 1417336]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{64182481-4F71-486b-A045-B233BD0DA8FC}]
CescrtHlpr Object - C:\Program Files (x86)\facemoods.com\facemoods\1.4.17.11\bh\facemoods.dll [2011-09-05 265944]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL [2011-02-12 4220304]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre6\bin\ssv.dll [2012-07-09 329480]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Pomocná služba pro přihlášení ke službě Windows Live ID - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-28 441216]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}]
AVG Security Toolbar - C:\Program Files (x86)\AVG Secure Search\11.1.0.12\AVG Secure Search_toolbar.dll [2012-07-09 2074208]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9D717F81-9148-4f12-8568-69135F087DB0}]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{a5ae8924-4036-420f-b7f6-a47e4b8f692e}]
Free Lunch Design TB Toolbar - C:\Program Files (x86)\Free_Lunch_Design_TB\prxtbFree.dll [2011-01-03 175400]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL [2010-12-21 561552]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll [2012-07-09 59144]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856}]
HP Smart BHO Class - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll [2009-10-22 517688]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{32099AAC-C132-4136-9E9A-4E364A424E17} - DAEMON Tools Toolbar - C:\Program Files (x86)\DAEMON Tools Toolbar\DTToolbar64.dll [2010-03-25 1548096]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{32099AAC-C132-4136-9E9A-4E364A424E17} - DAEMON Tools Toolbar - C:\Program Files (x86)\DAEMON Tools Toolbar\DTToolbar.dll [2010-03-25 968000]
{8FF5E183-ABDE-46EB-B09E-D2AAB95CABE3} - Snagit - C:\Program Files (x86)\TechSmith\Snagit 9\SnagitIEAddin.dll [2009-04-17 211272]
{3041d03e-fd4b-44e0-b742-2d9b88305f98} - Foxit Toolbar - C:\Program Files (x86)\AskBarDis\bar\bin\askBar.dll [2008-11-18 333192]
{BFC32E1D-EE75-4A48-BC60-104E11EE2431} - WebTranslator - C:\ProgramData\LangSoft\WebIE.dll [2011-12-28 798771]
{043C5167-00BB-4324-AF7E-62013FAEDACF} - vShare Plugin - C:\Program Files (x86)\vShare\vshare_toolbar.dll [2010-10-05 478800]
{a5ae8924-4036-420f-b7f6-a47e4b8f692e} - Free Lunch Design TB Toolbar - C:\Program Files (x86)\Free_Lunch_Design_TB\prxtbFree.dll [2011-01-03 175400]
{DB4E9724-F518-4dfd-9C7C-78B52103CAB9} - facemoods Toolbar - C:\Program Files (x86)\facemoods.com\facemoods\1.4.17.11\facemoodsTlbr.dll [2011-09-05 220888]
{4064EA35-578D-4073-A834-C96D82CBCF40} - &Save Flash - C:\Program Files (x86)\Save Flash\SaveFlash.dll [2010-03-08 1210368]
{99079a25-328f-4bd4-be04-00955acaa0a7}
{95B7759C-8C7F-4BF1-B163-73684A933233} - AVG Security Toolbar - C:\Program Files (x86)\AVG Secure Search\11.1.0.12\AVG Secure Search_toolbar.dll [2012-07-09 2074208]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"AMD64 CPU Assistant"= []
"OEXPRESS"= []
"DAEMON Tools Lite"=C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2010-04-01 357696]
"Clownfish"=C:\Program Files (x86)\Clownfish\Clownfish.exe [2012-06-21 1097464]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BCSSync]
C:\Program Files\Microsoft Office\Office14\BCSSync.exe [2010-03-13 112512]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}]
C:\Program Files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe [2007-05-16 153136]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Clownfish]
C:\Program Files (x86)\Clownfish\Clownfish.exe [2012-06-21 1097464]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite]
C:\Program Files (x86)\DAEMON Tools Lite\daemon.exe -autorun []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Dexpot]
C:\Program Files (x86)\Dexpot\dexpot.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Update]
C:\Users\opopop\AppData\Local\Google\Update\GoogleUpdate.exe [2011-10-20 136176]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogMeIn Hamachi Ui]
C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [2012-06-27 1996200]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Malwarebytes' Anti-Malware]
C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe [2012-07-03 462920]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Sidebar]
C:\Program Files\Windows Sidebar\sidebar.exe [2009-07-14 1475072]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skype]
C:\Program Files (x86)\Skype\Phone\Skype.exe [2012-07-03 17417392]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SRDownloader]
C:\Users\opopop\Desktop\SRDownloader.exe [2012-02-20 904192]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\StartCCC]
C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2009-12-11 98304]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2012-01-18 254696]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SUPERAntiSpyware]
C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe [2012-06-21 4786048]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^HP Digital Imaging Monitor.lnk]
C:\PROGRA~2\HP\DIGITA~1\bin\hpqtra08.exe [2009-09-23 270336]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
""= []
"AMD64 CPU Assistant"= []
"AVG_TRAY"=C:\Program Files (x86)\AVG\AVG2012\avgtray.exe [2012-04-05 2587008]
"vProt"=C:\Program Files (x86)\AVG Secure Search\vprot.exe [2012-07-09 1107552]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2012-01-18 254696]
"Ad Muncher"=C:\Program Files (x86)\Ad Muncher\AdMunch.exe [2012-07-17 535752]
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Logitech SetPoint.lnk - C:\Program Files\Logitech\SetPoint\SetPoint.exe
Snagit 11.lnk - C:\Program Files (x86)\TechSmith\Snagit 11\Snagit32.exe
tst.ahk
C:\Users\opopop\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Dropbox.lnk - C:\Users\opopop\AppData\Roaming\Dropbox\bin\Dropbox.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="C:\PROGRA~2\WI3C8A~1\Datamngr\x64\datamngr.dll C:\PROGRA~2\WI3C8A~1\Datamngr\x64\IEBHO.dll "
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\LBTWlgn]
c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll [2008-11-07 76816]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2011-02-12 6718864]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL [2011-02-12 4220304]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\fsproflt]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Lavasoft Ad-Aware Service]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\!SASCORE]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\fsproflt]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Hamachi2Svc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Lavasoft Ad-Aware Service]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvyu"=msyuv.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"vidc.yvu9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"VIDC.FPS1"=frapsv64.dll
"vidc.mjpg"=bdmjpeg64.dll
"vidc.mpeg"=bdmpegv64.dll
"msacm.bdmpeg"=bdmpega64.acm
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - "C:\Program Files (x86)\Adobe\Adobe Dreamweaver CS5\dreamweaver.exe","%1"
======List of files/folders created in the last 1 month======
2012-07-25 20:32:03 ----D---- C:\Program Files\trend micro
2012-07-25 20:32:02 ----D---- C:\rsit
2012-07-25 20:18:56 ----D---- C:\Windows\system32\MpEngineStore
2012-07-25 20:18:56 ----A---- C:\Windows\system32\drivers\sxiszkln.sys
2012-07-22 15:39:54 ----A---- C:\Windows\system32\lsdelete.exe
2012-07-20 09:26:04 ----ASH---- C:\pagefile.sys
2012-07-19 14:49:30 ----D---- C:\Program Files (x86)\SecondLifeViewer
2012-07-19 12:45:43 ----D---- C:\Users\opopop\AppData\Roaming\BANDISOFT
2012-07-19 12:45:33 ----D---- C:\Program Files (x86)\BandiMPEG1
2012-07-19 12:07:29 ----D---- C:\Users\opopop\AppData\Roaming\.techniclauncher
2012-07-15 21:57:36 ----D---- C:\Program Files (x86)\GamePark
2012-07-09 08:23:25 ----A---- C:\Windows\SYSWOW64\npdeployJava1.dll
2012-07-09 08:23:25 ----A---- C:\Windows\SYSWOW64\javaws.exe
2012-07-09 08:23:25 ----A---- C:\Windows\SYSWOW64\javaw.exe
2012-07-09 08:23:25 ----A---- C:\Windows\SYSWOW64\java.exe
2012-07-09 08:23:20 ----D---- C:\Program Files (x86)\Java
2012-07-01 20:32:39 ----D---- C:\Program Files (x86)\Clownfish
2012-06-27 15:59:58 ----D---- C:\Program Files (x86)\LogMeIn Hamachi
======List of files/folders modified in the last 1 month======
2012-07-25 20:33:55 ----D---- C:\Windows\Temp
2012-07-25 20:32:03 ----RD---- C:\Program Files
2012-07-25 20:18:57 ----D---- C:\Windows\SYSWOW64\drivers
2012-07-25 20:18:56 ----D---- C:\Windows\system32\drivers
2012-07-25 20:18:56 ----D---- C:\Windows\System32
2012-07-25 20:18:56 ----D---- C:\Users\opopop\AppData\Roaming\OpenCandy
2012-07-25 20:18:42 ----D---- C:\Windows\Tasks
2012-07-25 20:18:42 ----D---- C:\Windows\SysWOW64
2012-07-25 20:18:42 ----D---- C:\Windows\system32\Tasks
2012-07-25 20:03:14 ----D---- C:\Windows\debug
2012-07-25 18:04:31 ----D---- C:\Users\opopop\AppData\Roaming\eM Client
2012-07-25 18:02:54 ----D---- C:\Windows\system32\drivers\AVG
2012-07-25 18:02:54 ----D---- C:\ProgramData\MFAData
2012-07-25 18:00:31 ----D---- C:\Users\opopop\AppData\Roaming\Dropbox
2012-07-25 09:30:30 ----SHD---- C:\Windows\Installer
2012-07-25 09:30:24 ----HD---- C:\Config.Msi
2012-07-23 13:28:25 ----D---- C:\Users\opopop\AppData\Roaming\Skype
2012-07-23 10:41:35 ----D---- C:\Users\opopop\AppData\Roaming\.minecraft
2012-07-22 15:39:54 ----D---- C:\Program Files (x86)\Ad Muncher
2012-07-20 09:26:03 ----D---- C:\Windows
2012-07-20 06:14:23 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2012-07-20 06:14:23 ----D---- C:\Program Files (x86)
2012-07-20 06:13:34 ----HD---- C:\ProgramData
2012-07-20 05:56:21 ----D---- C:\Program Files (x86)\Malwarebytes' Anti-Malware
2012-07-19 14:51:50 ----D---- C:\Users\opopop\AppData\Roaming\SecondLife
2012-07-17 16:02:15 ----A---- C:\Windows\system32\PerfStringBackup.INI
2012-07-17 14:30:17 ----D---- C:\ProgramData\Ad Muncher
2012-07-15 19:33:01 ----D---- C:\Program Files (x86)\Steam
2012-07-15 10:13:22 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2012-07-10 08:20:05 ----D---- C:\Windows\inf
2012-07-09 18:16:52 ----D---- C:\ProgramData\AVG Secure Search
2012-07-09 18:16:51 ----D---- C:\Program Files (x86)\AVG Secure Search
2012-07-09 12:27:34 ----D---- C:\ProgramData\Skype
2012-07-09 12:27:31 ----RD---- C:\Program Files (x86)\Skype
2012-07-09 08:23:21 ----A---- C:\Windows\SYSWOW64\deployJava1.dll
2012-07-08 20:37:12 ----D---- C:\ProgramData\TechSmith
2012-07-08 20:37:09 ----D---- C:\Program Files (x86)\TechSmith
2012-07-03 09:07:34 ----D---- C:\Program Files (x86)\Google
2012-07-03 07:33:03 ----D---- C:\Windows\system32\catroot2
2012-06-30 12:48:44 ----D---- C:\Users\opopop\AppData\Roaming\TS3Client
2012-06-30 12:48:44 ----D---- C:\Users\opopop\AppData\Roaming\DAEMON Tools Lite
2012-06-30 12:48:32 ----D---- C:\Windows\Logs
2012-06-26 21:29:49 ----D---- C:\Windows\Microsoft.NET
2012-06-26 17:59:05 ----RSD---- C:\Windows\assembly
2012-06-26 17:57:13 ----D---- C:\Program Files (x86)\eM Client
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 AtiPcie;AMD PCI Express (3GIO) Filter; C:\Windows\system32\DRIVERS\AtiPcie.sys [2009-05-04 16440]
R0 AVGIDSHA;AVGIDSHA; C:\Windows\system32\DRIVERS\avgidsha.sys [2012-04-19 28480]
R0 Avgrkx64;AVG Anti-Rootkit Driver; C:\Windows\system32\DRIVERS\avgrkx64.sys [2012-01-31 36944]
R0 FSProFilter;FSPro File Filter; C:\Windows\System32\Drivers\FSPFltd.sys [2010-07-22 54848]
R0 Lbd;Lbd; C:\Windows\system32\DRIVERS\Lbd.sys [2011-04-29 69376]
R0 pciide;pciide; C:\Windows\system32\DRIVERS\pciide.sys [2009-07-14 12352]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2009-07-14 214096]
R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2010-09-30 834544]
R1 Avgldx64;AVG AVI Loader Driver; C:\Windows\system32\DRIVERS\avgldx64.sys [2012-02-22 289872]
R1 Avgmfx64;AVG Mini-Filter Resident Anti-Virus Shield; C:\Windows\system32\DRIVERS\avgmfx64.sys [2011-12-23 47696]
R1 Avgtdia;AVG TDI Driver; C:\Windows\system32\DRIVERS\avgtdia.sys [2012-03-19 383808]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2009-07-14 514048]
R1 SASDIFSV;SASDIFSV; \??\C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [2011-07-22 14928]
R1 SASKUTIL;SASKUTIL; \??\C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [2011-07-12 12368]
R2 adfs;adfs; C:\Windows\system32\drivers\adfs.sys [2008-06-27 88632]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atipmdag.sys [2009-12-11 6228480]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2009-12-11 160256]
R3 AtiHdmiService;ATI Function Driver for High Definition Audio Service; C:\Windows\system32\drivers\AtiHdmi.sys [2009-11-19 123408]
R3 AVGIDSDriver;AVGIDSDriver; C:\Windows\system32\DRIVERS\avgidsdrivera.sys [2011-12-23 124496]
R3 AVGIDSFilter;AVGIDSFilter; C:\Windows\system32\DRIVERS\avgidsfiltera.sys [2011-12-23 29776]
R3 hamachi;Hamachi Network Interface; C:\Windows\system32\DRIVERS\hamachi.sys [2009-03-18 33856]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2009-06-02 1766944]
R3 LHidFilt;Logitech SetPoint KMDF HID Filter Driver; C:\Windows\system32\DRIVERS\LHidFilt.Sys [2008-09-26 55312]
R3 LMouFilt;Logitech SetPoint KMDF Mouse Filter Driver; C:\Windows\system32\DRIVERS\LMouFilt.Sys [2008-09-26 57872]
R3 MBAMProtector;MBAMProtector; \??\C:\Windows\system32\drivers\mbam.sys [2012-07-03 24904]
R3 RTL8167;Ovladač Realtek 8167 NT; C:\Windows\system32\DRIVERS\Rt64win7.sys [2009-06-10 187392]
R3 usbfilter;AMD USB Filter Driver; C:\Windows\system32\DRIVERS\usbfilter.sys [2009-04-03 34872]
S1 NetworkX;NetworkX; C:\Windows\syswow64\ckldrv.sys [2006-01-10 31846]
S1 sxiszkln;sxiszkln; \??\C:\Windows\system32\drivers\sxiszkln.sys [2012-07-25 50392]
S1 VD_FileDisk;VD_FileDisk; C:\Windows\system32\drivers\VD_FileDisk.sys []
S3 atikmdag;atikmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2009-12-11 6228480]
S3 Dot4;MS IEEE-1284.4 Driver; C:\Windows\system32\DRIVERS\Dot4.sys [2009-07-14 145920]
S3 Dot4Print;Print Class Driver for IEEE-1284.4; C:\Windows\system32\DRIVERS\Dot4Prt.sys [2009-07-14 19968]
S3 dot4usb;MS Dot4USB Filter Dot4USB Filter; C:\Windows\system32\DRIVERS\dot4usb.sys [2009-07-14 43008]
S3 EagleX64;EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys []
S3 HTCAND64;HTC Device Driver; C:\Windows\System32\Drivers\ANDROIDUSB.sys [2009-11-01 33736]
S3 htcnprot;HTC NDIS Protocol Driver; C:\Windows\system32\DRIVERS\htcnprot.sys [2010-06-25 36928]
S3 L8042Kbd;SetPoint Keyboard Driver; C:\Windows\system32\DRIVERS\L8042Kbd.sys [2008-09-26 35344]
S3 L8042mou;SetPoint PS/2 Mouse Filter Driver; C:\Windows\system32\DRIVERS\L8042mou.Sys [2008-09-26 113680]
S3 LMouKE;SetPoint Mouse Filter Driver; C:\Windows\system32\DRIVERS\LMouKE.Sys [2008-09-26 112144]
S3 massfilter_hs;ZTE HandSet Mass Storage Filter Driver; C:\Windows\system32\drivers\massfilter_hs.sys [2011-03-07 18456]
S3 pcouffin;VSO Software pcouffin; C:\Windows\System32\Drivers\pcouffin.sys [2009-09-13 82816]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2009-07-14 165376]
S3 RTHDMIAzAudService;Service for HDMI; C:\Windows\system32\drivers\RtHDMIVX.sys []
S3 s3cap;s3cap; C:\Windows\system32\DRIVERS\vms3cap.sys [2009-07-14 6656]
S3 SANDRA;SANDRA; \??\C:\Program Files\SiSoftware\SiSoftware Sandra Professional Home 2009.SP3\WNt500x64\Sandra.sys []
S3 StarOpen;StarOpen; C:\Windows\system32\drivers\StarOpen.sys [2009-11-12 5504]
S3 storvsc;storvsc; C:\Windows\system32\DRIVERS\storvsc.sys [2009-07-14 34896]
S3 usb_rndisx;Adaptér USB RNDIS; C:\Windows\system32\DRIVERS\usb8023x.sys [2009-07-14 19968]
S3 usbbus;LGE Mobile Composite USB Device; C:\Windows\system32\DRIVERS\lgx64bus.sys []
S3 UsbDiag;LGE Mobile USB Serial Port; C:\Windows\system32\DRIVERS\lgx64diag.sys []
S3 USBModem;LGE Mobile USB Modem; C:\Windows\system32\DRIVERS\lgx64modem.sys []
S3 usbscan;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2009-07-14 41984]
S3 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\system32\DRIVERS\vmbus.sys [2009-07-14 200272]
S3 VMBusHID;VMBusHID; C:\Windows\system32\DRIVERS\VMBusHID.sys [2009-07-14 21760]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 !SASCORE;SAS Core Service; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [2011-08-12 140672]
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2009-12-11 202752]
R2 AVGIDSAgent;AVGIDSAgent; C:\Program Files (x86)\AVG\AVG2012\avgidsagent.exe [2012-07-04 5160568]
R2 avgwd;AVG WatchDog; C:\Program Files (x86)\AVG\AVG2012\avgwdsvc.exe [2012-02-14 193288]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 Hamachi2Svc;LogMeIn Hamachi Tunneling Engine; C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe [2012-06-27 2369960]
R2 hpqddsvc;Služba HP CUE DeviceDiscovery; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R2 MBAMService;MBAMService; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2012-07-03 655944]
R2 Net Driver HPZ12;Net Driver HPZ12; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 NMSAccessU;NMSAccessU; C:\Program Files (x86)\CDBurnerXP\NMSAccessU.exe [2009-11-12 71096]
R2 PassThru Service;Internet Pass-Through Service; C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe [2011-03-31 80896]
R2 Pml Driver HPZ12;Pml Driver HPZ12; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 RapiMgr;@%windir%\WindowsMobile\rapimgr.dll,-104; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R2 tvMobiliService;tvMobiliService; C:\Program Files (x86)\TVMOBiLi\bin\tvMobiliService.exe [2010-11-12 819291]
R2 VLC-Win7_Service;VLC-Win7_Service; C:\Program Files (x86)\VideoLAN\VLC\vlc.exe [2011-04-12 107520]
R2 vToolbarUpdater11.2.0;vToolbarUpdater11.2.0; C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\11.2.0\ToolbarUpdater.exe [2012-07-09 935008]
R2 WcesComm;@%windir%\WindowsMobile\wcescomm.dll,-40079; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R3 hpqcxs08;hpqcxs08; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
S2 AODService;AODService; C:\Program Files (x86)\AMD\OverDrive\AODAssist.exe [2009-05-05 124256]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
S2 Crypkey License;Crypkey License; crypserv.exe []
S2 Lavasoft Ad-Aware Service;Lavasoft Ad-Aware Service; C:\Program Files (x86)\Lavasoft\Ad-Aware\AAWService.exe [2011-09-02 2152152]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2012-07-03 160944]
S2 vvdsvc;VJVodClientServices; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-07-15 250056]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S3 aspnet_state;ASP.NET State Service; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2010-03-18 44376]
S3 FLEXnet Licensing Service 64;FLEXnet Licensing Service 64; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe [2009-11-08 1038088]
S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2009-11-01 655624]
S3 gusvc;Google Updater Service; C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe [2011-05-10 136120]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S3 LBTServ;Logitech Bluetooth Service; C:\Program Files\Common Files\Logishrd\Bluetooth\LBTServ.exe [2008-11-07 160784]
S3 McComponentHostService;McAfee Security Scan Component Host Service; C:\Program Files (x86)\McAfee Security Scan\2.0.189\McCHSvc.exe [2010-09-02 227232]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service; C:\Program Files\Microsoft Office\Office14\GROOVE.EXE [2010-12-28 51727736]
S3 NBService;NBService; C:\Program Files (x86)\Nero\Nero 7\Nero BackItUp\NBService.exe [2007-04-13 792112]
S3 NMIndexingService;NMIndexingService; C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe [2007-05-16 271920]
S3 ose64;Office 64 Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 174440]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 PS3 Media Server;PS3 Media Server; C:\Program Files (x86)\PS3 Media Server\win32\service\wrapper.exe -s C:\Program Files (x86)\PS3 Media Server\win32\service\wrapper.conf []
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2012-05-23 529232]
S3 SwitchBoard;SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
-----------------EOF-----------------
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
kontrola logu
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Re: kontrola logu
Zdravim a pekny den preji 
Doporucuji odinstalovat (pokud nepouzivate) toolbary (listy prohlizecu) v Přidat nebo odebrat programy
Stahnete OTL http://oldtimer.geekstogo.com/OTL.exe a ulozte jej na plochu
Doporucuji odinstalovat (pokud nepouzivate) toolbary (listy prohlizecu) v Přidat nebo odebrat programy Stahnete OTL http://oldtimer.geekstogo.com/OTL.exe a ulozte jej na plochu
- Pokud pouzivate Win Vista ci W7, kliknete na OTL pravym a dejte Run As Administrator ci Spustit jako spravce
- Pokud pouzivate 64bitovy OS, zkontrolujte, zda-li je zaskrtnuty ctverecek u Pro 64 bitové OS, pokud ne, zaskrtnete jej
- Zaskrtnete okenko Pro vsechny uzivatele
- Zaskrtnete okenko Kontrola na havet "LOP"
- Zaskrtnete okenko Kontrola na havet "Purity"
- Stari souboru zmente z 30 dnu na 7 dnu
- Do spodniho okenka Vlastni skenovani/opravy vlozte skript nize
Kód: Vybrat vše
CREATERESTOREPOINT netsvcs drivers32 savembr:0 /md5start atapi.sys autochk.exe cdrom.sys explorer.exe hal.dll scecli.dll svchost.exe tcpip.sys userinit.exe winlogon.exe /md5stop %systemroot%*.* /U /s %SYSTEMDRIVE%\*.exe %ALLUSERSPROFILE%\Application Data\*. %ALLUSERSPROFILE%\Application Data\*.exe /s %APPDATA%\*. %APPDATA%\*.exe /s %systemroot%\*. /mp /s %systemroot%\system32\*.dll /lockedfiles %systemroot%\Tasks\*.job %systemroot%\system32\drivers\*.sys /lockedfiles %systemroot%\System32\config\*.sav %systemroot%\system32\*.dll /lockedfiles %systemroot%\system32\drivers\*.sys /3 %systemroot%\system32\*.* /3 %SYSTEMDRIVE%\*.exe HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s %PROGRAMFILES%\Mozilla Firefox\firefox.exe /md5 %PROGRAMFILES%\Internet Explorer\iexplore.exe /md5 %PROGRAMFILES%\Opera\opera.exe /md5 %PROGRAMFILES%\Google\Chrome\Application\chrome.exe /md5 %SystemDrive%\PhysicalMBR.bin /md5 *crack* /s *keygen* /s *loader* /s- Kliknete na tlacitko Prohledat
- Po dokonceni skenu (cca 10 az 15 min) se objevi logy OTL.txt a Extras.txt, oba sem vlozte
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen
od 1. února 2011.
Člen
od 1. února 2011.Re: kontrola logu
OTL logfile created on: 25.7.2012 20:58:48 - Run 1
OTL by OldTimer - Version 3.2.54.1 Folder = C:\Users\opopop\Desktop
64bit- Ultimate Edition (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7600.16385)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy
4,00 Gb Total Physical Memory | 1,65 Gb Available Physical Memory | 41,15% Memory free
8,00 Gb Paging File | 5,54 Gb Available in Paging File | 69,28% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 146,39 Gb Total Space | 2,04 Gb Free Space | 1,39% Space Free | Partition Type: NTFS
Drive D: | 449,68 Gb Total Space | 13,04 Gb Free Space | 2,90% Space Free | Partition Type: NTFS
Computer Name: OPOPOP-PC | User Name: opopop | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 7 Days
========== Processes (SafeList) ==========
PRC - [2012.07.25 20:55:59 | 000,596,480 | ---- | M] (OldTimer Tools) -- C:\Users\opopop\Desktop\OTL.exe
PRC - [2012.07.09 18:16:45 | 000,935,008 | ---- | M] () -- C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\11.2.0\ToolbarUpdater.exe
PRC - [2012.07.09 18:16:43 | 001,107,552 | ---- | M] () -- C:\Program Files (x86)\AVG Secure Search\vprot.exe
PRC - [2012.07.04 17:25:54 | 005,160,568 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files (x86)\AVG\AVG2012\avgidsagent.exe
PRC - [2012.07.03 13:46:44 | 000,655,944 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
PRC - [2012.06.17 18:25:29 | 000,186,832 | ---- | M] (Google Inc.) -- C:\Users\opopop\AppData\Local\Google\Update\1.3.21.115\GoogleCrashHandler.exe
PRC - [2012.06.15 11:29:58 | 013,332,480 | ---- | M] () -- C:\Program Files (x86)\eM Client\MailClient.exe
PRC - [2012.06.14 04:08:56 | 027,595,032 | ---- | M] (Dropbox, Inc.) -- C:\Users\opopop\AppData\Roaming\Dropbox\bin\Dropbox.exe
PRC - [2012.04.05 05:12:34 | 002,587,008 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files (x86)\AVG\AVG2012\avgtray.exe
PRC - [2012.02.14 04:53:38 | 000,193,288 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files (x86)\AVG\AVG2012\avgwdsvc.exe
PRC - [2012.01.23 14:25:14 | 000,097,696 | ---- | M] (TechSmith Corporation) -- C:\Program Files (x86)\TechSmith\Snagit 11\SnagPriv.exe
PRC - [2012.01.23 14:24:56 | 008,119,200 | ---- | M] (TechSmith Corporation) -- C:\Program Files (x86)\TechSmith\Snagit 11\SnagitEditor.exe
PRC - [2012.01.23 14:24:48 | 008,873,376 | ---- | M] (TechSmith Corporation) -- C:\Program Files (x86)\TechSmith\Snagit 11\Snagit32.exe
PRC - [2012.01.23 13:59:04 | 000,046,080 | ---- | M] (TechSmith Corporation) -- C:\Program Files (x86)\TechSmith\Snagit 11\TscHelp.exe
PRC - [2011.06.22 11:59:04 | 001,101,960 | ---- | M] () -- C:\Program Files (x86)\Lavasoft\Ad-Aware\AWSC.exe
PRC - [2011.04.12 02:45:30 | 000,107,520 | ---- | M] () -- C:\Program Files (x86)\VideoLAN\VLC\vlc.exe
PRC - [2011.03.31 17:08:14 | 000,080,896 | ---- | M] () -- C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe
PRC - [2010.11.12 15:54:50 | 000,819,291 | ---- | M] () -- C:\Program Files (x86)\TVMOBiLi\bin\tvMobiliService.exe
PRC - [2010.04.01 11:16:20 | 000,357,696 | ---- | M] (DT Soft Ltd) -- C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe
PRC - [2009.11.12 14:48:56 | 000,071,096 | ---- | M] () -- C:\Program Files (x86)\CDBurnerXP\NMSAccessU.exe
PRC - [2009.09.25 20:57:38 | 000,245,248 | ---- | M] () -- C:\Program Files (x86)\AutoHotkey\AutoHotkey.exe
PRC - [2008.11.07 05:00:00 | 000,077,824 | ---- | M] () -- C:\Program Files\Logitech\SetPoint\x86\SetPoint32.exe
========== Modules (No Company Name) ==========
MOD - [2012.07.09 18:16:46 | 000,132,704 | ---- | M] () -- C:\Program Files (x86)\Common Files\AVG Secure Search\SiteSafetyInstaller\11.2.0\SiteSafety.dll
MOD - [2012.07.09 18:16:43 | 001,107,552 | ---- | M] () -- C:\Program Files (x86)\AVG Secure Search\vprot.exe
MOD - [2012.06.26 17:57:44 | 000,240,128 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\MailClient.Imap.Base\87bb33e812b576c2cec8fe16968fe3ff\MailClient.Imap.Base.ni.dll
MOD - [2012.06.26 17:57:43 | 031,360,512 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\MailClient\0aaec1427a656136f122f19aa31f19d3\MailClient.ni.exe
MOD - [2012.06.26 17:57:28 | 000,494,592 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\MailClient.Mail\4a5d79164f2f7609fa7be9bb309bdd2b\MailClient.Mail.ni.dll
MOD - [2012.06.26 17:57:27 | 000,835,072 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\Google.Apis\a9b94d3f831897287bd43883f0706733\Google.Apis.ni.dll
MOD - [2012.06.26 17:57:27 | 000,116,224 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\MailClient.Collecti#\59f040fc9a32f43c2aafce2a07ecbe09\MailClient.Collections.ni.dll
MOD - [2012.06.15 11:29:58 | 013,332,480 | ---- | M] () -- C:\Program Files (x86)\eM Client\MailClient.exe
MOD - [2012.06.08 18:26:23 | 000,876,032 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\HTMLEditorControl\4293cc2d85caae983a144b0513d912cf\HTMLEditorControl.ni.dll
MOD - [2012.06.08 18:26:21 | 001,802,240 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\jabber-net\72ec49faa171d41170ad1b87faea7427\jabber-net.ni.dll
MOD - [2012.06.01 15:16:24 | 000,565,248 | ---- | M] () -- C:\Program Files (x86)\eM Client\cs\MailClient.resources.dll
MOD - [2012.04.18 17:55:26 | 000,240,640 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\SgmlReader\80d8a51ee0438b887d9c2a426f531b10\SgmlReader.ni.dll
MOD - [2012.03.14 21:37:02 | 000,109,568 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Search.In#\2c7f50ab585d4b986dfb1821cecfe474\Microsoft.Search.Interop.ni.dll
MOD - [2012.03.14 21:37:02 | 000,050,688 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\QuartzTypeLib\30794b3b498c3e1ad8593ced95e4e85a\QuartzTypeLib.ni.dll
MOD - [2012.03.14 21:37:02 | 000,027,648 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\MailClient.Exceptio#\474fc906a0bea2b8d2c1bf654dd2597c\MailClient.ExceptionUtils.ni.dll
MOD - [2012.03.14 21:37:01 | 000,140,288 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\RSS.NET\c348f43f1e0c32fe692d450312b2815f\RSS.NET.ni.dll
MOD - [2012.03.14 21:37:01 | 000,107,520 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\NSkype\e8b732f3cdf4889c855a0292ca97f88b\NSkype.ni.dll
MOD - [2012.03.14 21:36:44 | 001,190,912 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\Esent.Interop\eb0eb8d2047d93b95258e09643b81288\Esent.Interop.ni.dll
MOD - [2012.03.14 21:36:44 | 000,104,448 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\FacebookAPI\f4f9120d2e101a03865961630e54631b\FacebookAPI.ni.dll
MOD - [2012.03.14 21:36:42 | 000,362,496 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\HtmlInterop\14f612c867326ffcdd97d48da2465624\HtmlInterop.ni.dll
MOD - [2012.03.14 21:36:41 | 000,107,008 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\MailClient.Sasl\1827d6d8e06609e796ac61dd16ddc329\MailClient.Sasl.ni.dll
MOD - [2012.03.14 21:36:41 | 000,024,576 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\MailClient.Interop\ada0890a7227db210c4725adf1fa4019\MailClient.Interop.ni.dll
MOD - [2012.03.14 21:36:39 | 000,494,080 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\LinqBridge\ff8ba850c40fcb71cd1c54647502766c\LinqBridge.ni.dll
MOD - [2012.03.14 21:36:38 | 001,473,024 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\Newtonsoft.Json.Net#\ba8e608e2fc0a86edf6ede91b2b178dd\Newtonsoft.Json.Net20.ni.dll
MOD - [2012.03.14 21:36:36 | 000,513,024 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Data.SQLite\517f8e145fef16bb2bc4d3342418e8ae\System.Data.SQLite.ni.dll
MOD - [2012.02.22 18:32:00 | 000,590,336 | ---- | M] () -- C:\Program Files (x86)\eM Client\SQLite\x86\sqlite3.dll
MOD - [2011.08.07 15:29:15 | 008,007,680 | ---- | M] () -- C:\Windows\assembly\GAC\Microsoft.mshtml\7.0.3300.0__b03f5f7f11d50a3a\Microsoft.mshtml.dll
MOD - [2011.03.17 00:11:16 | 004,297,568 | ---- | M] () -- C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\Cultures\OFFICE.ODF
MOD - [2010.11.16 14:06:37 | 001,670,144 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\Microsoft.VisualBas#\401d4cd2a06122a32cf094d541dcdd63\Microsoft.VisualBasic.ni.dll
MOD - [2010.11.16 14:06:15 | 000,997,888 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Management\758e0ce53c80a7ad7cf76a4910d27762\System.Management.ni.dll
MOD - [2010.11.15 20:13:11 | 001,840,640 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Web.Services\eff56eb13480ff414dfca0496a3f572c\System.Web.Services.ni.dll
MOD - [2010.11.15 20:13:03 | 000,771,584 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Remo#\6afe3a43d112ed5356d73468c5c44045\System.Runtime.Remoting.ni.dll
MOD - [2010.11.15 20:13:02 | 000,628,224 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.EnterpriseSe#\7e94064464380c8a5d7315c8b5d312aa\System.EnterpriseServices.ni.dll
MOD - [2010.11.15 20:13:00 | 000,627,200 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Transactions\c744f0f95227e75796b8689801740d4b\System.Transactions.ni.dll
MOD - [2010.11.15 20:12:59 | 006,618,624 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Data\935ac020241e59cab3287d5eb38c592d\System.Data.ni.dll
MOD - [2010.11.15 20:12:35 | 012,430,848 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\f92c882fd4e7005c005e208daa04c28d\System.Windows.Forms.ni.dll
MOD - [2010.11.15 20:12:28 | 001,586,688 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\fdeec42fa02f3d789c42be2e33b130eb\System.Drawing.ni.dll
MOD - [2010.11.15 20:12:27 | 001,806,848 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Deployment\17acef277a65333d0cd2003266af184d\System.Deployment.ni.dll
MOD - [2010.11.15 20:12:11 | 005,452,800 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\3060dfcdecbeb8ee65077fb29b217c3d\System.Xml.ni.dll
MOD - [2010.11.15 20:12:07 | 000,971,264 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\4be2653d1c9804d2ff6e6b66d22764e1\System.Configuration.ni.dll
MOD - [2010.11.15 20:12:05 | 007,949,312 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System\500ddd904b1099f95552a81b54223b7f\System.ni.dll
MOD - [2010.11.15 20:11:59 | 011,490,304 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\f58ab951b57c8526430486dcf7ee38fd\mscorlib.ni.dll
MOD - [2010.09.25 12:30:00 | 001,776,640 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Xaml\035910922f160d304fb834aae41f45a6\System.Xaml.ni.dll
MOD - [2010.09.25 10:53:36 | 013,006,336 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Windows.Forms\17e020ae92d7fab33bcc1c98b25019d0\System.Windows.Forms.ni.dll
MOD - [2010.09.25 10:53:29 | 001,651,200 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Drawing\dd57bc19f5807c6dbe8f88d4a23277f6\System.Drawing.ni.dll
MOD - [2010.09.25 10:53:20 | 000,450,048 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\PresentationFramewo#\3555f5f74c56fa92c0ab7a635af91bfa\PresentationFramework.Aero.ni.dll
MOD - [2010.09.25 10:53:19 | 017,629,184 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\PresentationFramewo#\7f91eecda3ff7ce478146b6458580c98\PresentationFramework.ni.dll
MOD - [2010.09.25 10:53:07 | 011,057,664 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\PresentationCore\3963e9ce8d44f50e8367e92a8e3e42e6\PresentationCore.ni.dll
MOD - [2010.09.25 10:52:59 | 003,779,072 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\WindowsBase\d17606e813f01376bd0def23726ecc62\WindowsBase.ni.dll
MOD - [2010.09.25 10:52:47 | 007,025,664 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Core\713647b987b140a17e3c4ffe4c721f85\System.Core.ni.dll
MOD - [2010.09.25 10:52:42 | 009,000,960 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System\964da027ebca3b263a05cadb8eaa20a3\System.ni.dll
MOD - [2010.09.25 10:52:37 | 014,415,872 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\mscorlib\246f1a5abb686b9dcdf22d3505b08cea\mscorlib.ni.dll
MOD - [2009.09.25 20:57:38 | 000,245,248 | ---- | M] () -- C:\Program Files (x86)\AutoHotkey\AutoHotkey.exe
MOD - [2009.07.14 17:17:20 | 000,393,216 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\System.Deployment.resources\2.0.0.0_cs_b03f5f7f11d50a3a\System.Deployment.resources.dll
MOD - [2009.07.14 17:17:18 | 000,159,744 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\System.Xml.resources\2.0.0.0_cs_b77a5c561934e089\System.Xml.resources.dll
MOD - [2009.07.14 17:17:14 | 000,425,984 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\System.Windows.Forms.resources\2.0.0.0_cs_b77a5c561934e089\System.Windows.Forms.resources.dll
MOD - [2009.07.14 17:17:12 | 000,303,104 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\mscorlib.resources\2.0.0.0_cs_b77a5c561934e089\mscorlib.resources.dll
MOD - [2009.06.10 23:23:19 | 000,261,632 | ---- | M] () -- C:\Windows\assembly\GAC_32\System.Transactions\2.0.0.0__b77a5c561934e089\System.Transactions.dll
MOD - [2009.06.10 23:23:17 | 002,933,248 | ---- | M] () -- C:\Windows\assembly\GAC_32\System.Data\2.0.0.0__b77a5c561934e089\System.Data.dll
MOD - [2008.11.19 14:46:36 | 000,368,640 | ---- | M] () -- C:\Windows\SysWOW64\nagasoft\Codecs\RealMediaSplitter.ax
MOD - [2008.11.07 05:00:00 | 000,077,824 | ---- | M] () -- C:\Program Files\Logitech\SetPoint\x86\SetPoint32.exe
MOD - [2003.08.19 16:20:04 | 000,180,224 | ---- | M] () -- C:\Windows\SysWOW64\ac3filter.ax
========== Win32 Services (SafeList) ==========
SRV:64bit: - [2011.08.12 01:38:04 | 000,140,672 | ---- | M] (SUPERAntiSpyware.com) [Auto | Running] -- C:\Program Files\SUPERAntiSpyware\SASCore64.exe -- (!SASCORE)
SRV:64bit: - [2009.12.11 22:44:52 | 000,202,752 | ---- | M] (AMD) [Auto | Running] -- C:\Windows\SysNative\atiesrxx.exe -- (AMD External Events Utility)
SRV:64bit: - [2009.11.08 20:07:09 | 001,038,088 | ---- | M] (Acresso Software Inc.) [On_Demand | Stopped] -- C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe -- (FLEXnet Licensing Service 64)
SRV:64bit: - [2009.07.14 03:41:27 | 001,011,712 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV:64bit: - [2009.07.14 03:40:01 | 000,193,536 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\appmgmts.dll -- (AppMgmt)
SRV:64bit: - [2008.11.07 17:49:10 | 000,160,784 | ---- | M] (Logitech, Inc.) [On_Demand | Stopped] -- C:\Program Files\Common Files\Logishrd\Bluetooth\LBTServ.exe -- (LBTServ)
SRV - [2012.07.15 10:13:22 | 000,250,056 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2012.07.09 18:16:45 | 000,935,008 | ---- | M] () [Auto | Running] -- C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\11.2.0\ToolbarUpdater.exe -- (vToolbarUpdater11.2.0)
SRV - [2012.07.04 17:25:54 | 005,160,568 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files (x86)\AVG\AVG2012\avgidsagent.exe -- (AVGIDSAgent)
SRV - [2012.07.03 13:46:44 | 000,655,944 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe -- (MBAMService)
SRV - [2012.07.03 13:19:28 | 000,160,944 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files (x86)\Skype\Updater\Updater.exe -- (SkypeUpdate)
SRV - [2012.06.27 12:29:24 | 002,369,960 | ---- | M] (LogMeIn Inc.) [Auto | Running] -- C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe -- (Hamachi2Svc)
SRV - [2012.05.23 21:36:06 | 000,529,232 | ---- | M] (Valve Corporation) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Steam\SteamService.exe -- (Steam Client Service)
SRV - [2012.02.14 04:53:38 | 000,193,288 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files (x86)\AVG\AVG2012\avgwdsvc.exe -- (avgwd)
SRV - [2011.09.02 15:29:30 | 002,152,152 | ---- | M] (Lavasoft Limited) [Auto | Stopped] -- C:\Program Files (x86)\Lavasoft\Ad-Aware\AAWService.exe -- (Lavasoft Ad-Aware Service)
SRV - [2011.04.12 02:45:30 | 000,107,520 | ---- | M] () [Auto | Running] -- C:\Program Files (x86)\VideoLAN\VLC\vlc.exe -- (VLC-Win7_Service)
SRV - [2011.03.31 17:08:14 | 000,080,896 | ---- | M] () [Auto | Running] -- C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe -- (PassThru Service)
SRV - [2010.11.12 15:54:50 | 000,819,291 | ---- | M] () [Auto | Running] -- C:\Program Files (x86)\TVMOBiLi\bin\tvMobiliService.exe -- (tvMobiliService)
SRV - [2010.09.02 22:18:02 | 000,227,232 | ---- | M] (McAfee, Inc.) [On_Demand | Stopped] -- C:\Program Files (x86)\McAfee Security Scan\2.0.189\McCHSvc.exe -- (McComponentHostService)
SRV - [2010.03.18 13:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2010.02.19 14:37:14 | 000,517,096 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe -- (SwitchBoard)
SRV - [2009.11.12 14:48:56 | 000,071,096 | ---- | M] () [Auto | Running] -- C:\Program Files (x86)\CDBurnerXP\NMSAccessU.exe -- (NMSAccessU)
SRV - [2009.11.01 15:52:45 | 000,655,624 | ---- | M] (Acresso Software Inc.) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe -- (FLEXnet Licensing Service)
SRV - [2009.06.10 23:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)
SRV - [2009.05.05 05:45:50 | 000,124,256 | ---- | M] () [Auto | Stopped] -- C:\Program Files (x86)\AMD\OverDrive\AODAssist.exe -- (AODService)
SRV - [2009.04.03 18:04:42 | 001,685,024 | ---- | M] (南京纳加软件有限公司) [Auto | Stopped] -- C:\Windows\SysWOW64\nagasoft\vjocx.dll -- (vvdsvc)
SRV - [2007.05.08 15:30:50 | 000,323,584 | ---- | M] (soft Xpansion) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\wpe\wpeserv.exe -- (WPEServ)
SRV - [2007.02.23 12:06:54 | 000,438,152 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\WindowsMobile\wcescomm.dll -- (WcesComm)
SRV - [2007.02.23 12:06:46 | 000,215,944 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\WindowsMobile\rapimgr.dll -- (RapiMgr)
SRV - [2006.09.22 01:33:15 | 000,069,632 | ---- | M] (CrypKey (Canada) Ltd.) [Auto | Stopped] -- C:\Windows\SysWow64\Crypserv.exe -- (Crypkey License)
========== Driver Services (SafeList) ==========
DRV:64bit: - File not found [Kernel | On_Demand | Stopped] -- C:\Program Files\SiSoftware\SiSoftware Sandra Professional Home 2009.SP3\WNt500x64\Sandra.sys -- (SANDRA)
DRV:64bit: - [2012.07.25 20:18:56 | 000,050,392 | ---- | M] (Microsoft Corporation) [Kernel | System | Stopped] -- C:\Windows\SysNative\drivers\sxiszkln.sys -- (sxiszkln)
DRV:64bit: - [2012.07.03 13:46:44 | 000,024,904 | ---- | M] (Malwarebytes Corporation) [File_System | On_Demand | Running] -- C:\Windows\SysNative\drivers\mbam.sys -- (MBAMProtector)
DRV:64bit: - [2012.04.19 04:50:26 | 000,028,480 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\avgidsha.sys -- (AVGIDSHA)
DRV:64bit: - [2012.03.19 05:17:26 | 000,383,808 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\avgtdia.sys -- (Avgtdia)
DRV:64bit: - [2012.02.22 05:25:32 | 000,289,872 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\avgldx64.sys -- (Avgldx64)
DRV:64bit: - [2012.01.31 04:46:48 | 000,036,944 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | Boot | Running] -- C:\Windows\SysNative\drivers\avgrkx64.sys -- (Avgrkx64)
DRV:64bit: - [2011.12.23 13:32:14 | 000,047,696 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | System | Running] -- C:\Windows\SysNative\drivers\avgmfx64.sys -- (Avgmfx64)
DRV:64bit: - [2011.12.23 13:32:04 | 000,029,776 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\avgidsfiltera.sys -- (AVGIDSFilter)
DRV:64bit: - [2011.12.23 13:31:58 | 000,124,496 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\avgidsdrivera.sys -- (AVGIDSDriver)
DRV:64bit: - [2011.07.22 18:26:56 | 000,014,928 | ---- | M] (SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | System | Running] -- C:\Program Files\SUPERAntiSpyware\sasdifsv64.sys -- (SASDIFSV)
DRV:64bit: - [2011.07.12 23:55:18 | 000,012,368 | ---- | M] (SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | System | Running] -- C:\Program Files\SUPERAntiSpyware\saskutil64.sys -- (SASKUTIL)
DRV:64bit: - [2011.04.29 12:12:00 | 000,069,376 | ---- | M] (Lavasoft AB) [File_System | Boot | Running] -- C:\Windows\SysNative\drivers\Lbd.sys -- (Lbd)
DRV:64bit: - [2011.03.07 12:19:10 | 000,129,304 | ---- | M] (ZTE Incorporated) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\zghsmdm.sys -- (zghsmdm)
DRV:64bit: - [2011.03.07 12:18:48 | 000,018,456 | ---- | M] (HandSet Incorporated) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\massfilter_hs.sys -- (massfilter_hs)
DRV:64bit: - [2010.09.30 13:48:05 | 000,834,544 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\sptd.sys -- (sptd)
DRV:64bit: - [2010.07.22 17:13:28 | 000,054,848 | ---- | M] (FSPro Labs) [File_System | Boot | Running] -- C:\Windows\SysNative\drivers\FSPFltd.sys -- (FSProFilter)
DRV:64bit: - [2010.06.25 17:08:10 | 000,036,928 | ---- | M] (Windows (R) Win 7 DDK provider) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\htcnprot.sys -- (htcnprot)
DRV:64bit: - [2009.12.11 23:04:44 | 006,228,480 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\atikmdag.sys -- (atikmdag)
DRV:64bit: - [2009.12.11 23:04:44 | 006,228,480 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\atipmdag.sys -- (amdkmdag)
DRV:64bit: - [2009.12.11 21:51:08 | 000,160,256 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\atikmpag.sys -- (amdkmdap)
DRV:64bit: - [2009.11.19 01:30:56 | 000,123,408 | ---- | M] (ATI Technologies, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\AtiHdmi.sys -- (AtiHdmiService)
DRV:64bit: - [2009.11.12 14:48:56 | 000,005,504 | ---- | M] () [File_System | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\StarOpen.sys -- (StarOpen)
DRV:64bit: - [2009.11.01 20:16:50 | 000,033,736 | ---- | M] (HTC, Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ANDROIDUSB.sys -- (HTCAND64)
DRV:64bit: - [2009.09.13 15:56:01 | 000,082,816 | ---- | M] (VSO Software) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\pcouffin.sys -- (pcouffin)
DRV:64bit: - [2009.07.14 03:52:21 | 000,106,576 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:64bit: - [2009.07.14 03:52:21 | 000,028,752 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:64bit: - [2009.07.14 03:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:64bit: - [2009.07.14 03:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:64bit: - [2009.07.14 03:47:48 | 000,077,888 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:64bit: - [2009.07.14 03:47:48 | 000,023,104 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\Windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
DRV:64bit: - [2009.07.14 03:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:64bit: - [2009.07.14 02:09:50 | 000,019,968 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\usb8023x.sys -- (usb_rndisx)
DRV:64bit: - [2009.06.10 22:35:42 | 000,187,392 | ---- | M] (Realtek Corporation ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Rt64win7.sys -- (RTL8167)
DRV:64bit: - [2009.06.10 22:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:64bit: - [2009.06.10 22:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:64bit: - [2009.06.10 22:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:64bit: - [2009.06.10 22:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
DRV:64bit: - [2009.05.04 18:30:28 | 000,016,440 | ---- | M] (Advanced Micro Devices Inc.) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\AtiPcie.sys -- (AtiPcie)
DRV:64bit: - [2009.04.03 06:39:58 | 000,034,872 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\usbfilter.sys -- (usbfilter)
DRV:64bit: - [2009.03.18 18:35:42 | 000,033,856 | -H-- | M] (LogMeIn, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\hamachi.sys -- (hamachi)
DRV:64bit: - [2008.09.26 10:56:00 | 000,113,680 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\L8042mou.Sys -- (L8042mou)
DRV:64bit: - [2008.09.26 10:56:00 | 000,112,144 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\LMouKE.Sys -- (LMouKE)
DRV:64bit: - [2008.09.26 10:56:00 | 000,057,872 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\LMouFilt.Sys -- (LMouFilt)
DRV:64bit: - [2008.09.26 10:56:00 | 000,055,312 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\LHidFilt.Sys -- (LHidFilt)
DRV:64bit: - [2008.09.26 10:55:00 | 000,035,344 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\L8042Kbd.sys -- (L8042Kbd)
DRV:64bit: - [2008.06.27 08:51:10 | 000,088,632 | ---- | M] (Adobe Systems, Inc.) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\adfs.sys -- (adfs)
DRV - [2009.11.12 14:48:56 | 000,007,168 | ---- | M] () [File_System | On_Demand | Stopped] -- C:\Windows\SysWow64\drivers\StarOpen.sys -- (StarOpen)
DRV - [2009.07.14 03:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount)
DRV - [2008.08.14 08:57:42 | 000,074,720 | ---- | M] (Adobe Systems, Inc.) [Kernel | Auto | Running] -- C:\Windows\SysWow64\drivers\adfs.sys -- (adfs)
DRV - [2006.01.13 15:00:52 | 000,015,872 | ---- | M] (Flint Incorporation) [Kernel | System | Stopped] -- C:\Windows\SysWow64\drivers\vd_filedisk.sys -- (VD_FileDisk)
DRV - [2006.01.10 04:47:27 | 000,031,846 | ---- | M] () [Kernel | System | Stopped] -- C:\Windows\SysWOW64\Ckldrv.sys -- (NetworkX)
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}
IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE:64bit: - HKLM\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.com/search?q={searchT ... urceid=ie7
IE:64bit: - HKLM\..\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}: "URL" = http://dts.search-results.com/sr?src=ie ... earchTerms}
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://start.facemoods.com/?a=ddrnw&s={searchTerms}&f=4
IE - HKLM\..\URLSearchHook: - No CLSID value found
IE - HKLM\..\URLSearchHook: {855F3B16-6D32-4fe6-8A56-BBB695989046} - No CLSID value found
IE - HKLM\..\URLSearchHook: {a5ae8924-4036-420f-b7f6-a47e4b8f692e} - C:\Program Files (x86)\Free_Lunch_Design_TB\prxtbFree.dll (Conduit Ltd.)
IE - HKLM\..\SearchScopes,DefaultScope = {9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKLM\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.com/search?q={searchT ... urceid=ie7
IE - HKLM\..\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}: "URL" = http://dts.search-results.com/sr?src=ie ... earchTerms}
IE - HKLM\..\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}: "URL" = http://search.conduit.com/ResultsExt.as ... =CT2776682
IE - HKLM\..\SearchScopes\{EEE7E0A3-AE64-4dc8-84D1-F5D7BAF2DB0C}: "URL" = http://slirsredirect.search.aol.com/sli ... 0winampie7
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-177668100-1846633066-3982842387-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com/ie
IE - HKU\S-1-5-21-177668100-1846633066-3982842387-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://www.google.com/ie
IE - HKU\S-1-5-21-177668100-1846633066-3982842387-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
IE - HKU\S-1-5-21-177668100-1846633066-3982842387-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
IE - HKU\S-1-5-21-177668100-1846633066-3982842387-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 34 D4 22 4F 66 31 CA 01 [binary data]
IE - HKU\S-1-5-21-177668100-1846633066-3982842387-1001\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.google.com/ie
IE - HKU\S-1-5-21-177668100-1846633066-3982842387-1001\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com/ie
IE - HKU\S-1-5-21-177668100-1846633066-3982842387-1001\..\URLSearchHook: - No CLSID value found
IE - HKU\S-1-5-21-177668100-1846633066-3982842387-1001\..\URLSearchHook: {30421e54-3b57-4e5b-947c-9b6beea57683} - No CLSID value found
IE - HKU\S-1-5-21-177668100-1846633066-3982842387-1001\..\URLSearchHook: {51a86bb3-6602-4c85-92a5-130ee4864f13} - No CLSID value found
IE - HKU\S-1-5-21-177668100-1846633066-3982842387-1001\..\URLSearchHook: {a5ae8924-4036-420f-b7f6-a47e4b8f692e} - C:\Program Files (x86)\Free_Lunch_Design_TB\prxtbFree.dll (Conduit Ltd.)
IE - HKU\S-1-5-21-177668100-1846633066-3982842387-1001\..\URLSearchHook: {e8de9422-3b2c-4243-bf6f-235da84d8ef8} - No CLSID value found
IE - HKU\S-1-5-21-177668100-1846633066-3982842387-1001\..\SearchScopes,DefaultScope = {95B7759C-8C7F-4BF1-B163-73684A933233}
IE - HKU\S-1-5-21-177668100-1846633066-3982842387-1001\..\SearchScopes\{043C5167-00BB-4324-AF7E-62013FAEDACF}: "URL" = http://vshare.toolbarhome.com/search.as ... }&srch=dsp
IE - HKU\S-1-5-21-177668100-1846633066-3982842387-1001\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTer ... ORM=IE8SRC
IE - HKU\S-1-5-21-177668100-1846633066-3982842387-1001\..\SearchScopes\{0D7562AE-8EF6-416d-A838-AB665251703A}: "URL" = http://start.facemoods.com/?a=ddrnw&s={searchTerms}&f=4
IE - HKU\S-1-5-21-177668100-1846633066-3982842387-1001\..\SearchScopes\{6552C7DD-90A4-4387-B795-F8F96747DE19}: "URL" = http://search.icq.com/search/results.ph ... &ch_id=osd
IE - HKU\S-1-5-21-177668100-1846633066-3982842387-1001\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.com/search?q={searchT ... 1I7ADFA_cs
IE - HKU\S-1-5-21-177668100-1846633066-3982842387-1001\..\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}: "URL" = http://isearch.avg.com/search?cid={9F27 ... 2012-04-15 17:41:24&v=10.2.0.3&sap=dsp&q={searchTerms}
IE - HKU\S-1-5-21-177668100-1846633066-3982842387-1001\..\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}: "URL" = http://dts.search-results.com/sr?src=ie ... earchTerms}
IE - HKU\S-1-5-21-177668100-1846633066-3982842387-1001\..\SearchScopes\{AD22EBAF-0D18-4fc7-90CC-5EA0ABBE9EB8}: "URL" = http://www.daemon-search.com/search/web?q={searchTerms}
IE - HKU\S-1-5-21-177668100-1846633066-3982842387-1001\..\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}: "URL" = http://search.conduit.com/ResultsExt.as ... =CT2776682
IE - HKU\S-1-5-21-177668100-1846633066-3982842387-1001\..\SearchScopes\{EEE7E0A3-AE64-4dc8-84D1-F5D7BAF2DB0C}: "URL" = http://slirsredirect.search.aol.com/sli ... 0winampie7
IE - HKU\S-1-5-21-177668100-1846633066-3982842387-1001\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
========== FireFox ==========
FF - user.js - File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF64_11_3_300_265.dll File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.3.1: C:\Windows\system32\npDeployJava1.dll (Sun Microsystems, Inc.)
FF:64bit: - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.3.1: C:\Program Files\Oracle\JavaFX 2.0 Runtime\bin\plugin2\npjp2.dll (Oracle Corporation)
FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_3_300_265.dll ()
FF - HKLM\Software\MozillaPlugins\@avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin: C:\Program Files (x86)\Common Files\AVG Secure Search\SiteSafetyInstaller\11.2.0\\npsitesafety.dll ()
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX OVS Helper,version=1.0.0: C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF - HKLM\Software\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf: C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll (Foxit Corporation)
FF - HKLM\Software\MozillaPlugins\@google.com/npPicasa3,version=3.0.0: C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll (Google, Inc.)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=1.6.0_33: C:\Windows\SysWOW64\npdeployJava1.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files (x86)\Java\jre6\bin\plugin2\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files (x86)\Microsoft Silverlight\5.1.10411.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3555.0308: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@pandonetworks.com/PandoWebPlugin: C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll File not found
FF - HKCU\Software\MozillaPlugins\@octoshape.com/Octoshape Streaming Services,version=1.0: C:\Users\opopop\AppData\Roaming\Octoshape\Octoshape Streaming Services\sua-1002170-0-npoctoshape.dll (Octoshape ApS)
FF - HKCU\Software\MozillaPlugins\@talk.google.com/GoogleTalkPlugin: C:\Users\opopop\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll (Google)
FF - HKCU\Software\MozillaPlugins\@talk.google.com/O3DPlugin: C:\Users\opopop\AppData\Roaming\Mozilla\plugins\npgtpo3dautoplugin.dll ()
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Users\opopop\AppData\Local\Google\Update\1.3.21.115\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Users\opopop\AppData\Local\Google\Update\1.3.21.115\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@unity3d.com/UnityPlayer,version=1.0: C:\Users\opopop\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\smartwebprinting@hp.com: C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2010.06.02 16:50:02 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{3f963a5b-e555-4543-90e2-c3908898db71}: C:\Program Files (x86)\AVG\AVG2012\Firefox\ [2012.07.03 08:52:57 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{1E73965B-8B48-48be-9C8D-68B920ABC1C4}: C:\Program Files (x86)\AVG\AVG2012\Firefox4\ [2012.07.17 09:25:32 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{F53C93F1-07D5-430c-86D4-C9531B27DFAF}: C:\Program Files (x86)\AVG\AVG2012\Firefox\DoNotTrack\ [2012.07.03 08:52:57 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\avg@toolbar: C:\ProgramData\AVG Secure Search\11.1.0.12\ [2012.07.09 18:16:52 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{3ED591BC-7CC7-495B-A526-B2431356EDC1}: C:\Program Files (x86)\Ad Muncher\FirefoxExtension_2.0 [2012.07.17 14:31:44 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Thunderbird 8.0\extensions\\Components: C:\Program Files (x86)\Mozilla Thunderbird\components [2011.08.18 19:19:48 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Thunderbird 8.0\extensions\\Plugins: C:\Program Files (x86)\Mozilla Thunderbird\plugins
FF - HKEY_LOCAL_MACHINE\software\mozilla\SeaMonkey\Extensions\\{3ED591BC-7CC7-495B-A526-B2431356EDC1}: C:\Program Files (x86)\Ad Muncher\FirefoxExtension_2.0 [2012.07.17 14:31:44 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\smartwebprinting@hp.com: C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2010.06.02 16:50:02 | 000,000,000 | ---D | M]
[2010.05.28 21:34:38 | 000,000,000 | ---D | M] (No name found) -- C:\Users\opopop\AppData\Roaming\Mozilla\Extensions
[2010.05.28 21:34:38 | 000,000,000 | ---D | M] (No name found) -- C:\Users\opopop\AppData\Roaming\Mozilla\Extensions\{3550f703-e582-4d05-9a08-453d09bdfdc6}
[2009.10.18 20:56:13 | 000,000,000 | ---D | M] (No name found) -- C:\Users\opopop\AppData\Roaming\Mozilla\Firefox\extensions
[2009.10.18 20:56:13 | 000,000,000 | ---D | M] ("Ask Toolbar for Firefox") -- C:\Users\opopop\AppData\Roaming\Mozilla\Firefox\extensions\{E9A1DEE0-C623-4439-8932-001E7D17607D}
[2011.10.26 10:13:42 | 000,002,048 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\fcmdSrch.xml
========== Chrome ==========
CHR - homepage: http://www.google.cz/
CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:searchFieldtrialParameter}sourceid=chrome&ie={inputEncoding}&q={searchTerms}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&hl={language}&q={searchTerms}
CHR - homepage: http://www.google.cz/
CHR - plugin: Remoting Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Users\opopop\AppData\Local\Google\Chrome\Application\20.0.1132.57\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Users\opopop\AppData\Local\Google\Chrome\Application\20.0.1132.57\pdf.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Users\opopop\AppData\Local\Google\Chrome\Application\20.0.1132.57\gcswf32.dll
CHR - plugin: Shockwave Flash (Disabled) = C:\Users\opopop\AppData\Local\Google\Chrome\User Data\PepperFlash\11.2.31.144\pepflashplayer.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_2_202_235.dll
CHR - plugin: AVG Internet Security (Enabled) = C:\Users\opopop\AppData\Local\Google\Chrome\User Data\Default\Extensions\jmfkcklnlgedgbglfkkgedjfmejoahla\12.0.0.2161_0\plugins/avgnpss.dll
CHR - plugin: Google Talk Plugin (Enabled) = C:\Users\opopop\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll
CHR - plugin: Google Talk Plugin Video Accelerator (Enabled) = C:\Users\opopop\AppData\Roaming\Mozilla\plugins\npgtpo3dautoplugin.dll
CHR - plugin: Octoshape Streaming Services (Enabled) = C:\Users\opopop\AppData\Roaming\Mozilla\plugins\npoctoshape.dll
CHR - plugin: Octoshape Streaming Services (Enabled) = C:\Users\opopop\AppData\Roaming\Octoshape\Octoshape Streaming Services\sua-1002170-0-npoctoshape.dll
CHR - plugin: Microsoft Office 2010 (Enabled) = C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL
CHR - plugin: Microsoft Office 2010 (Enabled) = C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL
CHR - plugin: DivX OVS Helper Plug-in (Enabled) = C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll
CHR - plugin: Foxit Reader Plugin for Mozilla (Enabled) = C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll
CHR - plugin: Java(TM) Platform SE 6 U31 (Enabled) = C:\Program Files (x86)\Java\jre6\bin\plugin2\npjp2.dll
CHR - plugin: Silverlight Plug-In (Enabled) = C:\Program Files (x86)\Microsoft Silverlight\4.0.60831.0\npctrl.dll
CHR - plugin: Pando Web Plugin (Enabled) = C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll
CHR - plugin: Windows Live\u0099 Photo Gallery (Enabled) = C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
CHR - plugin: Unity Player (Enabled) = C:\Users\opopop\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll
CHR - plugin: Google Update (Enabled) = C:\Users\opopop\AppData\Local\Google\Update\1.3.21.111\npGoogleUpdate3.dll
CHR - Extension: Facebook! = C:\Users\opopop\AppData\Local\Google\Chrome\User Data\Default\Extensions\ainkhhbgcdbenmmbaoacambbhjfgnmmm\2.0.0.4_0\
CHR - Extension: YouTube = C:\Users\opopop\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\
CHR - Extension: Vyhled\u00E1v\u00E1n\u00ED Google = C:\Users\opopop\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\
CHR - Extension: Full Screen Weather = C:\Users\opopop\AppData\Local\Google\Chrome\User Data\Default\Extensions\fkkaebihfmbofclegkcfkkemepfehibg\1.3_0\
CHR - Extension: Facebook Meme Chat Emoticons Bar = C:\Users\opopop\AppData\Local\Google\Chrome\User Data\Default\Extensions\geambommijjphdlendibpfkndcmjeoml\1_0\
CHR - Extension: AdBlock = C:\Users\opopop\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.5.38_0\
CHR - Extension: Awesome Weather Widget [ANTP] = C:\Users\opopop\AppData\Local\Google\Chrome\User Data\Default\Extensions\goeepbfnllchoihkoiecpkkekbpfiboc\2012.104.116.101_0\
CHR - Extension: Facemoods = C:\Users\opopop\AppData\Local\Google\Chrome\User Data\Default\Extensions\ihflimipbcaljfnojhhknppphnnciiif\1.6.0_0\
CHR - Extension: Facemoods = C:\Users\opopop\AppData\Local\Google\Chrome\User Data\Default\Extensions\ihflimipbcaljfnojhhknppphnnciiif\1.6.0_0\facemoods\
CHR - Extension: AVG Safe Search = C:\Users\opopop\AppData\Local\Google\Chrome\User Data\Default\Extensions\jmfkcklnlgedgbglfkkgedjfmejoahla\12.0.0.2191_0\
CHR - Extension: Gestures for Chrome(TM) = C:\Users\opopop\AppData\Local\Google\Chrome\User Data\Default\Extensions\jpkfjicglakibpenojifdiepckckakgk\1.12.1_0\
CHR - Extension: AVG Do Not Track = C:\Users\opopop\AppData\Local\Google\Chrome\User Data\Default\Extensions\ndibdjnfmopecpmkdieinmbadjfpblof\12.0.0.2166_0\
CHR - Extension: Marc Ecko = C:\Users\opopop\AppData\Local\Google\Chrome\User Data\Default\Extensions\opjonmehjfmkejjifhhknofdnacklmjk\2_0\
CHR - Extension: Gmail = C:\Users\opopop\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\
O1 HOSTS File: ([2012.03.29 19:31:36 | 000,001,401 | RHS- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O1 - Hosts: 68.168.222.226 www.google-analytics.com.
O1 - Hosts: 68.168.222.226 ad-emea.doubleclick.net.
O1 - Hosts: 68.168.222.226 www.statcounter.com.
O1 - Hosts: 108.163.215.51 www.google-analytics.com.
O1 - Hosts: 108.163.215.51 ad-emea.doubleclick.net.
O1 - Hosts: 108.163.215.51 www.statcounter.com.
O2:64bit: - BHO: (SnagIt Toolbar Loader) - {00C6482D-C502-44C8-8409-FCE54AD9C208} - C:\Program Files (x86)\TechSmith\Snagit 9\DLLx64\SnagitBHO64.dll (TechSmith Corporation)
O2:64bit: - BHO: (AVG Do Not Track) - {31332EEF-CB9F-458F-AFEB-D30E9A66B6BA} - C:\Program Files (x86)\AVG\AVG2012\avgdtiea.dll (AVG Technologies CZ, s.r.o.)
O2:64bit: - BHO: (AVG Safe Search) - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files (x86)\AVG\AVG2012\avgssiea.dll (AVG Technologies CZ, s.r.o.)
O2:64bit: - BHO: (no name) - {9D717F81-9148-4f12-8568-69135F087DB0} - No CLSID value found.
O2:64bit: - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Oracle\JavaFX 2.0 Runtime\bin\jp2ssv.dll (Oracle Corporation)
O2 - BHO: (SnagIt Toolbar Loader) - {00C6482D-C502-44C8-8409-FCE54AD9C208} - C:\Program Files (x86)\TechSmith\Snagit 9\SnagitBHO.dll (TechSmith Corporation)
O2 - BHO: (vShare Plugin) - {043C5167-00BB-4324-AF7E-62013FAEDACF} - C:\Program Files (x86)\vShare\vshare_toolbar.dll ()
O2 - BHO: (AskBar BHO) - {201f27d4-3704-41d6-89c1-aa35e39143ed} - C:\Program Files (x86)\AskBarDis\bar\bin\askBar.dll (Ask.com)
O2 - BHO: (WebTransBHO Class) - {2DB66063-BB98-466A-AA0D-3E7ACF5ED853} - C:\ProgramData\LangSoft\WebIE.dll ()
O2 - BHO: (AVG Do Not Track) - {31332EEF-CB9F-458F-AFEB-D30E9A66B6BA} - C:\Program Files (x86)\AVG\AVG2012\avgdtiex.dll (AVG Technologies CZ, s.r.o.)
O2 - BHO: (AVG Safe Search) - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files (x86)\AVG\AVG2012\avgssie.dll (AVG Technologies CZ, s.r.o.)
O2 - BHO: (CescrtHlpr Object) - {64182481-4F71-486b-A045-B233BD0DA8FC} - C:\Program Files (x86)\facemoods.com\facemoods\1.4.17.11\bh\facemoods.dll (facemoods.com BHO)
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (AVG Security Toolbar) - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files (x86)\AVG Secure Search\11.1.0.12\AVG Secure Search_toolbar.dll ()
O2 - BHO: (no name) - {9D717F81-9148-4f12-8568-69135F087DB0} - No CLSID value found.
O2 - BHO: (Free Lunch Design TB Toolbar) - {a5ae8924-4036-420f-b7f6-a47e4b8f692e} - C:\Program Files (x86)\Free_Lunch_Design_TB\prxtbFree.dll (Conduit Ltd.)
O3:64bit: - HKLM\..\Toolbar: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files (x86)\DAEMON Tools Toolbar\DTToolbar64.dll ()
O3:64bit: - HKLM\..\Toolbar: (no name) - 10 - No CLSID value found.
O3 - HKLM\..\Toolbar: (vShare Plugin) - {043C5167-00BB-4324-AF7E-62013FAEDACF} - C:\Program Files (x86)\vShare\vshare_toolbar.dll ()
O3 - HKLM\..\Toolbar: (Foxit Toolbar) - {3041d03e-fd4b-44e0-b742-2d9b88305f98} - C:\Program Files (x86)\AskBarDis\bar\bin\askBar.dll (Ask.com)
O3 - HKLM\..\Toolbar: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files (x86)\DAEMON Tools Toolbar\DTToolbar.dll ()
O3 - HKLM\..\Toolbar: (&Save Flash) - {4064EA35-578D-4073-A834-C96D82CBCF40} - C:\Program Files (x86)\Save Flash\SaveFlash.dll (PilotGroup LLC)
O3 - HKLM\..\Toolbar: (Snagit) - {8FF5E183-ABDE-46EB-B09E-D2AAB95CABE3} - C:\Program Files (x86)\TechSmith\Snagit 9\SnagitIEAddin.dll (TechSmith Corporation)
O3 - HKLM\..\Toolbar: (AVG Security Toolbar) - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files (x86)\AVG Secure Search\11.1.0.12\AVG Secure Search_toolbar.dll ()
O3 - HKLM\..\Toolbar: (no name) - {99079a25-328f-4bd4-be04-00955acaa0a7} - No CLSID value found.
O3 - HKLM\..\Toolbar: (Free Lunch Design TB Toolbar) - {a5ae8924-4036-420f-b7f6-a47e4b8f692e} - C:\Program Files (x86)\Free_Lunch_Design_TB\prxtbFree.dll (Conduit Ltd.)
O3 - HKLM\..\Toolbar: (WebTranslator) - {BFC32E1D-EE75-4A48-BC60-104E11EE2431} - C:\ProgramData\LangSoft\WebIE.dll ()
O3 - HKLM\..\Toolbar: (facemoods Toolbar) - {DB4E9724-F518-4dfd-9C7C-78B52103CAB9} - C:\Program Files (x86)\facemoods.com\facemoods\1.4.17.11\facemoodsTlbr.dll (facemoods.com)
O3 - HKLM\..\Toolbar: (no name) - 10 - No CLSID value found.
O3 - HKU\S-1-5-21-177668100-1846633066-3982842387-1001\..\Toolbar\WebBrowser: (&Save Flash) - {4064EA35-578D-4073-A834-C96D82CBCF40} - C:\Program Files (x86)\Save Flash\SaveFlash.dll (PilotGroup LLC)
O4 - HKLM..\Run: [] File not found
O4 - HKLM..\Run: [Ad Muncher] C:\Program Files (x86)\Ad Muncher\AdMunch.exe (Murray Hurps Corp Pty Ltd)
O4 - HKLM..\Run: [AMD64 CPU Assistant] File not found
O4 - HKLM..\Run: [AVG_TRAY] C:\Program Files (x86)\AVG\AVG2012\avgtray.exe (AVG Technologies CZ, s.r.o.)
O4 - HKLM..\Run: [vProt] C:\Program Files (x86)\AVG Secure Search\vprot.exe ()
O4 - HKU\S-1-5-19..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-20..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-21-177668100-1846633066-3982842387-1001..\Run: [AMD64 CPU Assistant] File not found
O4 - HKU\S-1-5-21-177668100-1846633066-3982842387-1001..\Run: [Clownfish] C:\Program Files (x86)\Clownfish\Clownfish.exe (Bogdan Sharkov)
O4 - HKU\S-1-5-21-177668100-1846633066-3982842387-1001..\Run: [DAEMON Tools Lite] C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe (DT Soft Ltd)
O4 - HKU\S-1-5-21-177668100-1846633066-3982842387-1001..\Run: [OEXPRESS] File not found
O4 - HKU\S-1-5-19..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found
O4 - HKU\S-1-5-20..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found
O4 - Startup: C:\Users\opopop\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk = C:\Users\opopop\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0
O8:64bit: - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200 File not found
O8:64bit: - Extra context menu item: Block frame with Ad Muncher - http://www.admuncher.com/request_will_b ... u_ie_frame File not found
O8:64bit: - Extra context menu item: Block image with Ad Muncher - http://www.admuncher.com/request_will_b ... u_ie_image File not found
O8:64bit: - Extra context menu item: Block link with Ad Muncher - http://www.admuncher.com/request_will_b ... nu_ie_link File not found
O8:64bit: - Extra context menu item: Don't filter page with Ad Muncher - http://www.admuncher.com/request_will_b ... ie_exclude File not found
O8:64bit: - Extra context menu item: Report page to the Ad Muncher developers - http://www.admuncher.com/request_will_b ... _ie_report File not found
O8:64bit: - Extra context menu item: Sothink SWF Catcher - C:\Program Files (x86)\Common Files\SourceTec\SWF Catcher\InternetExplorer.htm ()
O8:64bit: - Extra context menu item: WikiKomentáře Google... - res://C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_96D6FF0C6D236BF8.dll/cmsidewiki.html File not found
O8 - Extra context menu item: Add to Google Photos Screensa&ver - C:\Windows\SysWow64\GPhotos.scr (Google Inc.)
O8 - Extra context menu item: Block frame with Ad Muncher - http://www.admuncher.com/request_will_b ... u_ie_frame File not found
O8 - Extra context menu item: Block image with Ad Muncher - http://www.admuncher.com/request_will_b ... u_ie_image File not found
O8 - Extra context menu item: Block link with Ad Muncher - http://www.admuncher.com/request_will_b ... nu_ie_link File not found
O8 - Extra context menu item: Don't filter page with Ad Muncher - http://www.admuncher.com/request_will_b ... ie_exclude File not found
O8 - Extra context menu item: Report page to the Ad Muncher developers - http://www.admuncher.com/request_will_b ... _ie_report File not found
O8 - Extra context menu item: Sothink SWF Catcher - C:\Program Files (x86)\Common Files\SourceTec\SWF Catcher\InternetExplorer.htm ()
O8 - Extra context menu item: WikiKomentáře Google... - res://C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_96D6FF0C6D236BF8.dll/cmsidewiki.html File not found
O9:64bit: - Extra Button: AVG Do Not Track - {68BCFFE1-A2DA-4B40-9068-87ECBFC19D16} - C:\Program Files (x86)\AVG\AVG2012\avgdtiea.dll (AVG Technologies CZ, s.r.o.)
O9 - Extra Button: @C:\Windows\WindowsMobile\INetRepl.dll,-222 - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : @C:\Windows\WindowsMobile\INetRepl.dll,-223 - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll (Microsoft Corporation)
O9 - Extra Button: AVG Do Not Track - {68BCFFE1-A2DA-4B40-9068-87ECBFC19D16} - C:\Program Files (x86)\AVG\AVG2012\avgdtiex.dll (AVG Technologies CZ, s.r.o.)
O9 - Extra Button: WebTran - {7E6A20FB-153F-402c-A84B-1A64E1955D3D} - C:\ProgramData\LangSoft\WebIE.dll ()
O9 - Extra 'Tools' menuitem : &Nastavit překladač - {CC963627-B1DC-40E0-B52A-CF21EE748449} - C:\ProgramData\LangSoft\WebIE.dll ()
O9 - Extra 'Tools' menuitem : &Slovník - {CC963627-B1DC-40E0-B52A-CF21EE748450} - C:\ProgramData\LangSoft\WebIE.dll ()
O9 - Extra 'Tools' menuitem : Přeložit &označený text - {CC963627-B1DC-40E0-B52A-CF21EE748451} - C:\ProgramData\LangSoft\WebIE.dll ()
O9 - Extra 'Tools' menuitem : Přeložit &stránku - {CC963627-B1DC-40E0-B52A-CF21EE748452} - C:\ProgramData\LangSoft\WebIE.dll ()
O9 - Extra Button: Sothink SWF Catcher - {E19ADC6E-3909-43E4-9A89-B7B676377EE3} - C:\Program Files (x86)\Common Files\SourceTec\SWF Catcher\InternetExplorer.htm ()
O9 - Extra 'Tools' menuitem : Sothink SWF Catcher - {E19ADC6E-3909-43E4-9A89-B7B676377EE3} - C:\Program Files (x86)\Common Files\SourceTec\SWF Catcher\InternetExplorer.htm ()
O9 - Extra Button: PokerStars.net - {FA9B9510-9FCB-4ca0-818C-5D0987B47C4D} - C:\Program Files (x86)\PokerStars.NET\PokerStarsUpdate.exe File not found
O1364bit: - gopher Prefix: missing
O13 - gopher Prefix: missing
O16:64bit: - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.7.0/jinsta ... s-i586.cab (Java Plug-in 10.3.1)
O16:64bit: - DPF: {CAFEEFAC-0017-0000-0003-ABCDEFFEDCBA} http://java.sun.com/update/1.7.0/jinsta ... s-i586.cab (Java Plug-in 1.7.0_03)
O16:64bit: - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.7.0/jinsta ... s-i586.cab (Java Plug-in 1.7.0_03)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_33)
O16 - DPF: {CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_33)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_33)
O16 - DPF: {D4003189-95B1-4A2F-9A87-F2B03665960D} http://www.spvod.com/soft/vjocx-ch-spvod.cab (VodClient Control Class)
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Key error.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 10.0.0.138
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{AE74BE4B-2162-4B3F-865F-B6CEFCCEED22}: DhcpNameServer = 10.0.0.138
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{AE74BE4B-2162-4B3F-865F-B6CEFCCEED22}: NameServer = 156.154.70.25,156.154.71.25
O18:64bit: - Protocol\Handler\linkscanner {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files (x86)\AVG\AVG2012\avgppa.dll (AVG Technologies CZ, s.r.o.)
O18:64bit: - Protocol\Handler\skype4com - No CLSID value found
O18:64bit: - Protocol\Handler\viprotocol - No CLSID value found
O18:64bit: - Protocol\Handler\vsharechrome - No CLSID value found
O18:64bit: - Protocol\Handler\wlpg - No CLSID value found
O18 - Protocol\Handler\linkscanner {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files (x86)\AVG\AVG2012\avgpp.dll (AVG Technologies CZ, s.r.o.)
O18 - Protocol\Handler\ms-help - No CLSID value found
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Handler\viprotocol {B658800C-F66E-4EF3-AB85-6C0C227862A9} - C:\Program Files (x86)\Common Files\AVG Secure Search\ViProtocolInstaller\11.2.0\ViProtocol.dll ()
O18 - Protocol\Handler\vsharechrome {3F3A4B8A-86FC-43A4-BB00-6D7EBE9D4484} - C:\Program Files (x86)\vShare\vshare_toolbar.dll ()
O20:64bit: - AppInit_DLLs: (C:\PROGRA~2\WI3C8A~1\Datamngr\x64\datamngr.dll) - File not found
O20:64bit: - AppInit_DLLs: (C:\PROGRA~2\WI3C8A~1\Datamngr\x64\IEBHO.dll) - File not found
O20 - AppInit_DLLs: (C:\PROGRA~2\WI3C8A~1\Datamngr\datamngr.dll) - File not found
O20 - AppInit_DLLs: (C:\PROGRA~2\WI3C8A~1\Datamngr\IEBHO.dll) - File not found
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\SysNative\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\Windows\SysWow64\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O20:64bit: - Winlogon\Notify\LBTWlgn: DllName - (c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll) - c:\Program Files\Common Files\Logishrd\Bluetooth\LBTWLgn.dll (Logitech, Inc.)
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O33 - MountPoints2\{7688af88-46cf-11df-9fc2-00241d82b71a}\Shell - "" = AutoRun
O33 - MountPoints2\{7688af88-46cf-11df-9fc2-00241d82b71a}\Shell\AutoRun\command - "" = J:\StartVMCLite.exe
O33 - MountPoints2\{bc2700dd-b79d-11dd-9de5-00241d82b71a}\Shell - "" = AutoRun
O33 - MountPoints2\{bc2700dd-b79d-11dd-9de5-00241d82b71a}\Shell\AutoRun\command - "" = F:\Setup.exe
O33 - MountPoints2\{bc2700df-b79d-11dd-9de5-00241d82b71a}\Shell - "" = AutoRun
O33 - MountPoints2\{bc2700df-b79d-11dd-9de5-00241d82b71a}\Shell\AutoRun\command - "" = I:\Machinarium_Setup_EN.exe
O33 - MountPoints2\{d38eea36-5feb-11df-ac8b-00241d82b71a}\Shell - "" = AutoRun
O33 - MountPoints2\{d38eea36-5feb-11df-ac8b-00241d82b71a}\Shell\AutoRun\command - "" = J:\USBAutoRun.exe
O33 - MountPoints2\{dd96bd2d-94c1-11de-aea9-00241d82b71a}\Shell - "" = AutoRun
O33 - MountPoints2\{dd96bd2d-94c1-11de-aea9-00241d82b71a}\Shell\AutoRun\command - "" = G:\setup.exe
O34 - HKLM BootExecute: (autocheck autochk *)
O34 - HKLM BootExecute: (C:\PROGRA~2\AVG\AVG2012\avgrsa.exe /sync /restart)
O34 - HKLM BootExecute: (lsdelete)
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)
OTL by OldTimer - Version 3.2.54.1 Folder = C:\Users\opopop\Desktop
64bit- Ultimate Edition (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7600.16385)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy
4,00 Gb Total Physical Memory | 1,65 Gb Available Physical Memory | 41,15% Memory free
8,00 Gb Paging File | 5,54 Gb Available in Paging File | 69,28% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 146,39 Gb Total Space | 2,04 Gb Free Space | 1,39% Space Free | Partition Type: NTFS
Drive D: | 449,68 Gb Total Space | 13,04 Gb Free Space | 2,90% Space Free | Partition Type: NTFS
Computer Name: OPOPOP-PC | User Name: opopop | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 7 Days
========== Processes (SafeList) ==========
PRC - [2012.07.25 20:55:59 | 000,596,480 | ---- | M] (OldTimer Tools) -- C:\Users\opopop\Desktop\OTL.exe
PRC - [2012.07.09 18:16:45 | 000,935,008 | ---- | M] () -- C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\11.2.0\ToolbarUpdater.exe
PRC - [2012.07.09 18:16:43 | 001,107,552 | ---- | M] () -- C:\Program Files (x86)\AVG Secure Search\vprot.exe
PRC - [2012.07.04 17:25:54 | 005,160,568 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files (x86)\AVG\AVG2012\avgidsagent.exe
PRC - [2012.07.03 13:46:44 | 000,655,944 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
PRC - [2012.06.17 18:25:29 | 000,186,832 | ---- | M] (Google Inc.) -- C:\Users\opopop\AppData\Local\Google\Update\1.3.21.115\GoogleCrashHandler.exe
PRC - [2012.06.15 11:29:58 | 013,332,480 | ---- | M] () -- C:\Program Files (x86)\eM Client\MailClient.exe
PRC - [2012.06.14 04:08:56 | 027,595,032 | ---- | M] (Dropbox, Inc.) -- C:\Users\opopop\AppData\Roaming\Dropbox\bin\Dropbox.exe
PRC - [2012.04.05 05:12:34 | 002,587,008 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files (x86)\AVG\AVG2012\avgtray.exe
PRC - [2012.02.14 04:53:38 | 000,193,288 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files (x86)\AVG\AVG2012\avgwdsvc.exe
PRC - [2012.01.23 14:25:14 | 000,097,696 | ---- | M] (TechSmith Corporation) -- C:\Program Files (x86)\TechSmith\Snagit 11\SnagPriv.exe
PRC - [2012.01.23 14:24:56 | 008,119,200 | ---- | M] (TechSmith Corporation) -- C:\Program Files (x86)\TechSmith\Snagit 11\SnagitEditor.exe
PRC - [2012.01.23 14:24:48 | 008,873,376 | ---- | M] (TechSmith Corporation) -- C:\Program Files (x86)\TechSmith\Snagit 11\Snagit32.exe
PRC - [2012.01.23 13:59:04 | 000,046,080 | ---- | M] (TechSmith Corporation) -- C:\Program Files (x86)\TechSmith\Snagit 11\TscHelp.exe
PRC - [2011.06.22 11:59:04 | 001,101,960 | ---- | M] () -- C:\Program Files (x86)\Lavasoft\Ad-Aware\AWSC.exe
PRC - [2011.04.12 02:45:30 | 000,107,520 | ---- | M] () -- C:\Program Files (x86)\VideoLAN\VLC\vlc.exe
PRC - [2011.03.31 17:08:14 | 000,080,896 | ---- | M] () -- C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe
PRC - [2010.11.12 15:54:50 | 000,819,291 | ---- | M] () -- C:\Program Files (x86)\TVMOBiLi\bin\tvMobiliService.exe
PRC - [2010.04.01 11:16:20 | 000,357,696 | ---- | M] (DT Soft Ltd) -- C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe
PRC - [2009.11.12 14:48:56 | 000,071,096 | ---- | M] () -- C:\Program Files (x86)\CDBurnerXP\NMSAccessU.exe
PRC - [2009.09.25 20:57:38 | 000,245,248 | ---- | M] () -- C:\Program Files (x86)\AutoHotkey\AutoHotkey.exe
PRC - [2008.11.07 05:00:00 | 000,077,824 | ---- | M] () -- C:\Program Files\Logitech\SetPoint\x86\SetPoint32.exe
========== Modules (No Company Name) ==========
MOD - [2012.07.09 18:16:46 | 000,132,704 | ---- | M] () -- C:\Program Files (x86)\Common Files\AVG Secure Search\SiteSafetyInstaller\11.2.0\SiteSafety.dll
MOD - [2012.07.09 18:16:43 | 001,107,552 | ---- | M] () -- C:\Program Files (x86)\AVG Secure Search\vprot.exe
MOD - [2012.06.26 17:57:44 | 000,240,128 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\MailClient.Imap.Base\87bb33e812b576c2cec8fe16968fe3ff\MailClient.Imap.Base.ni.dll
MOD - [2012.06.26 17:57:43 | 031,360,512 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\MailClient\0aaec1427a656136f122f19aa31f19d3\MailClient.ni.exe
MOD - [2012.06.26 17:57:28 | 000,494,592 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\MailClient.Mail\4a5d79164f2f7609fa7be9bb309bdd2b\MailClient.Mail.ni.dll
MOD - [2012.06.26 17:57:27 | 000,835,072 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\Google.Apis\a9b94d3f831897287bd43883f0706733\Google.Apis.ni.dll
MOD - [2012.06.26 17:57:27 | 000,116,224 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\MailClient.Collecti#\59f040fc9a32f43c2aafce2a07ecbe09\MailClient.Collections.ni.dll
MOD - [2012.06.15 11:29:58 | 013,332,480 | ---- | M] () -- C:\Program Files (x86)\eM Client\MailClient.exe
MOD - [2012.06.08 18:26:23 | 000,876,032 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\HTMLEditorControl\4293cc2d85caae983a144b0513d912cf\HTMLEditorControl.ni.dll
MOD - [2012.06.08 18:26:21 | 001,802,240 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\jabber-net\72ec49faa171d41170ad1b87faea7427\jabber-net.ni.dll
MOD - [2012.06.01 15:16:24 | 000,565,248 | ---- | M] () -- C:\Program Files (x86)\eM Client\cs\MailClient.resources.dll
MOD - [2012.04.18 17:55:26 | 000,240,640 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\SgmlReader\80d8a51ee0438b887d9c2a426f531b10\SgmlReader.ni.dll
MOD - [2012.03.14 21:37:02 | 000,109,568 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Search.In#\2c7f50ab585d4b986dfb1821cecfe474\Microsoft.Search.Interop.ni.dll
MOD - [2012.03.14 21:37:02 | 000,050,688 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\QuartzTypeLib\30794b3b498c3e1ad8593ced95e4e85a\QuartzTypeLib.ni.dll
MOD - [2012.03.14 21:37:02 | 000,027,648 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\MailClient.Exceptio#\474fc906a0bea2b8d2c1bf654dd2597c\MailClient.ExceptionUtils.ni.dll
MOD - [2012.03.14 21:37:01 | 000,140,288 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\RSS.NET\c348f43f1e0c32fe692d450312b2815f\RSS.NET.ni.dll
MOD - [2012.03.14 21:37:01 | 000,107,520 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\NSkype\e8b732f3cdf4889c855a0292ca97f88b\NSkype.ni.dll
MOD - [2012.03.14 21:36:44 | 001,190,912 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\Esent.Interop\eb0eb8d2047d93b95258e09643b81288\Esent.Interop.ni.dll
MOD - [2012.03.14 21:36:44 | 000,104,448 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\FacebookAPI\f4f9120d2e101a03865961630e54631b\FacebookAPI.ni.dll
MOD - [2012.03.14 21:36:42 | 000,362,496 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\HtmlInterop\14f612c867326ffcdd97d48da2465624\HtmlInterop.ni.dll
MOD - [2012.03.14 21:36:41 | 000,107,008 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\MailClient.Sasl\1827d6d8e06609e796ac61dd16ddc329\MailClient.Sasl.ni.dll
MOD - [2012.03.14 21:36:41 | 000,024,576 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\MailClient.Interop\ada0890a7227db210c4725adf1fa4019\MailClient.Interop.ni.dll
MOD - [2012.03.14 21:36:39 | 000,494,080 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\LinqBridge\ff8ba850c40fcb71cd1c54647502766c\LinqBridge.ni.dll
MOD - [2012.03.14 21:36:38 | 001,473,024 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\Newtonsoft.Json.Net#\ba8e608e2fc0a86edf6ede91b2b178dd\Newtonsoft.Json.Net20.ni.dll
MOD - [2012.03.14 21:36:36 | 000,513,024 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Data.SQLite\517f8e145fef16bb2bc4d3342418e8ae\System.Data.SQLite.ni.dll
MOD - [2012.02.22 18:32:00 | 000,590,336 | ---- | M] () -- C:\Program Files (x86)\eM Client\SQLite\x86\sqlite3.dll
MOD - [2011.08.07 15:29:15 | 008,007,680 | ---- | M] () -- C:\Windows\assembly\GAC\Microsoft.mshtml\7.0.3300.0__b03f5f7f11d50a3a\Microsoft.mshtml.dll
MOD - [2011.03.17 00:11:16 | 004,297,568 | ---- | M] () -- C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\Cultures\OFFICE.ODF
MOD - [2010.11.16 14:06:37 | 001,670,144 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\Microsoft.VisualBas#\401d4cd2a06122a32cf094d541dcdd63\Microsoft.VisualBasic.ni.dll
MOD - [2010.11.16 14:06:15 | 000,997,888 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Management\758e0ce53c80a7ad7cf76a4910d27762\System.Management.ni.dll
MOD - [2010.11.15 20:13:11 | 001,840,640 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Web.Services\eff56eb13480ff414dfca0496a3f572c\System.Web.Services.ni.dll
MOD - [2010.11.15 20:13:03 | 000,771,584 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Remo#\6afe3a43d112ed5356d73468c5c44045\System.Runtime.Remoting.ni.dll
MOD - [2010.11.15 20:13:02 | 000,628,224 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.EnterpriseSe#\7e94064464380c8a5d7315c8b5d312aa\System.EnterpriseServices.ni.dll
MOD - [2010.11.15 20:13:00 | 000,627,200 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Transactions\c744f0f95227e75796b8689801740d4b\System.Transactions.ni.dll
MOD - [2010.11.15 20:12:59 | 006,618,624 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Data\935ac020241e59cab3287d5eb38c592d\System.Data.ni.dll
MOD - [2010.11.15 20:12:35 | 012,430,848 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\f92c882fd4e7005c005e208daa04c28d\System.Windows.Forms.ni.dll
MOD - [2010.11.15 20:12:28 | 001,586,688 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\fdeec42fa02f3d789c42be2e33b130eb\System.Drawing.ni.dll
MOD - [2010.11.15 20:12:27 | 001,806,848 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Deployment\17acef277a65333d0cd2003266af184d\System.Deployment.ni.dll
MOD - [2010.11.15 20:12:11 | 005,452,800 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\3060dfcdecbeb8ee65077fb29b217c3d\System.Xml.ni.dll
MOD - [2010.11.15 20:12:07 | 000,971,264 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\4be2653d1c9804d2ff6e6b66d22764e1\System.Configuration.ni.dll
MOD - [2010.11.15 20:12:05 | 007,949,312 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System\500ddd904b1099f95552a81b54223b7f\System.ni.dll
MOD - [2010.11.15 20:11:59 | 011,490,304 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\f58ab951b57c8526430486dcf7ee38fd\mscorlib.ni.dll
MOD - [2010.09.25 12:30:00 | 001,776,640 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Xaml\035910922f160d304fb834aae41f45a6\System.Xaml.ni.dll
MOD - [2010.09.25 10:53:36 | 013,006,336 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Windows.Forms\17e020ae92d7fab33bcc1c98b25019d0\System.Windows.Forms.ni.dll
MOD - [2010.09.25 10:53:29 | 001,651,200 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Drawing\dd57bc19f5807c6dbe8f88d4a23277f6\System.Drawing.ni.dll
MOD - [2010.09.25 10:53:20 | 000,450,048 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\PresentationFramewo#\3555f5f74c56fa92c0ab7a635af91bfa\PresentationFramework.Aero.ni.dll
MOD - [2010.09.25 10:53:19 | 017,629,184 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\PresentationFramewo#\7f91eecda3ff7ce478146b6458580c98\PresentationFramework.ni.dll
MOD - [2010.09.25 10:53:07 | 011,057,664 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\PresentationCore\3963e9ce8d44f50e8367e92a8e3e42e6\PresentationCore.ni.dll
MOD - [2010.09.25 10:52:59 | 003,779,072 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\WindowsBase\d17606e813f01376bd0def23726ecc62\WindowsBase.ni.dll
MOD - [2010.09.25 10:52:47 | 007,025,664 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Core\713647b987b140a17e3c4ffe4c721f85\System.Core.ni.dll
MOD - [2010.09.25 10:52:42 | 009,000,960 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System\964da027ebca3b263a05cadb8eaa20a3\System.ni.dll
MOD - [2010.09.25 10:52:37 | 014,415,872 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\mscorlib\246f1a5abb686b9dcdf22d3505b08cea\mscorlib.ni.dll
MOD - [2009.09.25 20:57:38 | 000,245,248 | ---- | M] () -- C:\Program Files (x86)\AutoHotkey\AutoHotkey.exe
MOD - [2009.07.14 17:17:20 | 000,393,216 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\System.Deployment.resources\2.0.0.0_cs_b03f5f7f11d50a3a\System.Deployment.resources.dll
MOD - [2009.07.14 17:17:18 | 000,159,744 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\System.Xml.resources\2.0.0.0_cs_b77a5c561934e089\System.Xml.resources.dll
MOD - [2009.07.14 17:17:14 | 000,425,984 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\System.Windows.Forms.resources\2.0.0.0_cs_b77a5c561934e089\System.Windows.Forms.resources.dll
MOD - [2009.07.14 17:17:12 | 000,303,104 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\mscorlib.resources\2.0.0.0_cs_b77a5c561934e089\mscorlib.resources.dll
MOD - [2009.06.10 23:23:19 | 000,261,632 | ---- | M] () -- C:\Windows\assembly\GAC_32\System.Transactions\2.0.0.0__b77a5c561934e089\System.Transactions.dll
MOD - [2009.06.10 23:23:17 | 002,933,248 | ---- | M] () -- C:\Windows\assembly\GAC_32\System.Data\2.0.0.0__b77a5c561934e089\System.Data.dll
MOD - [2008.11.19 14:46:36 | 000,368,640 | ---- | M] () -- C:\Windows\SysWOW64\nagasoft\Codecs\RealMediaSplitter.ax
MOD - [2008.11.07 05:00:00 | 000,077,824 | ---- | M] () -- C:\Program Files\Logitech\SetPoint\x86\SetPoint32.exe
MOD - [2003.08.19 16:20:04 | 000,180,224 | ---- | M] () -- C:\Windows\SysWOW64\ac3filter.ax
========== Win32 Services (SafeList) ==========
SRV:64bit: - [2011.08.12 01:38:04 | 000,140,672 | ---- | M] (SUPERAntiSpyware.com) [Auto | Running] -- C:\Program Files\SUPERAntiSpyware\SASCore64.exe -- (!SASCORE)
SRV:64bit: - [2009.12.11 22:44:52 | 000,202,752 | ---- | M] (AMD) [Auto | Running] -- C:\Windows\SysNative\atiesrxx.exe -- (AMD External Events Utility)
SRV:64bit: - [2009.11.08 20:07:09 | 001,038,088 | ---- | M] (Acresso Software Inc.) [On_Demand | Stopped] -- C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe -- (FLEXnet Licensing Service 64)
SRV:64bit: - [2009.07.14 03:41:27 | 001,011,712 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV:64bit: - [2009.07.14 03:40:01 | 000,193,536 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\appmgmts.dll -- (AppMgmt)
SRV:64bit: - [2008.11.07 17:49:10 | 000,160,784 | ---- | M] (Logitech, Inc.) [On_Demand | Stopped] -- C:\Program Files\Common Files\Logishrd\Bluetooth\LBTServ.exe -- (LBTServ)
SRV - [2012.07.15 10:13:22 | 000,250,056 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2012.07.09 18:16:45 | 000,935,008 | ---- | M] () [Auto | Running] -- C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\11.2.0\ToolbarUpdater.exe -- (vToolbarUpdater11.2.0)
SRV - [2012.07.04 17:25:54 | 005,160,568 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files (x86)\AVG\AVG2012\avgidsagent.exe -- (AVGIDSAgent)
SRV - [2012.07.03 13:46:44 | 000,655,944 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe -- (MBAMService)
SRV - [2012.07.03 13:19:28 | 000,160,944 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files (x86)\Skype\Updater\Updater.exe -- (SkypeUpdate)
SRV - [2012.06.27 12:29:24 | 002,369,960 | ---- | M] (LogMeIn Inc.) [Auto | Running] -- C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe -- (Hamachi2Svc)
SRV - [2012.05.23 21:36:06 | 000,529,232 | ---- | M] (Valve Corporation) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Steam\SteamService.exe -- (Steam Client Service)
SRV - [2012.02.14 04:53:38 | 000,193,288 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files (x86)\AVG\AVG2012\avgwdsvc.exe -- (avgwd)
SRV - [2011.09.02 15:29:30 | 002,152,152 | ---- | M] (Lavasoft Limited) [Auto | Stopped] -- C:\Program Files (x86)\Lavasoft\Ad-Aware\AAWService.exe -- (Lavasoft Ad-Aware Service)
SRV - [2011.04.12 02:45:30 | 000,107,520 | ---- | M] () [Auto | Running] -- C:\Program Files (x86)\VideoLAN\VLC\vlc.exe -- (VLC-Win7_Service)
SRV - [2011.03.31 17:08:14 | 000,080,896 | ---- | M] () [Auto | Running] -- C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe -- (PassThru Service)
SRV - [2010.11.12 15:54:50 | 000,819,291 | ---- | M] () [Auto | Running] -- C:\Program Files (x86)\TVMOBiLi\bin\tvMobiliService.exe -- (tvMobiliService)
SRV - [2010.09.02 22:18:02 | 000,227,232 | ---- | M] (McAfee, Inc.) [On_Demand | Stopped] -- C:\Program Files (x86)\McAfee Security Scan\2.0.189\McCHSvc.exe -- (McComponentHostService)
SRV - [2010.03.18 13:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2010.02.19 14:37:14 | 000,517,096 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe -- (SwitchBoard)
SRV - [2009.11.12 14:48:56 | 000,071,096 | ---- | M] () [Auto | Running] -- C:\Program Files (x86)\CDBurnerXP\NMSAccessU.exe -- (NMSAccessU)
SRV - [2009.11.01 15:52:45 | 000,655,624 | ---- | M] (Acresso Software Inc.) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe -- (FLEXnet Licensing Service)
SRV - [2009.06.10 23:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)
SRV - [2009.05.05 05:45:50 | 000,124,256 | ---- | M] () [Auto | Stopped] -- C:\Program Files (x86)\AMD\OverDrive\AODAssist.exe -- (AODService)
SRV - [2009.04.03 18:04:42 | 001,685,024 | ---- | M] (南京纳加软件有限公司) [Auto | Stopped] -- C:\Windows\SysWOW64\nagasoft\vjocx.dll -- (vvdsvc)
SRV - [2007.05.08 15:30:50 | 000,323,584 | ---- | M] (soft Xpansion) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\wpe\wpeserv.exe -- (WPEServ)
SRV - [2007.02.23 12:06:54 | 000,438,152 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\WindowsMobile\wcescomm.dll -- (WcesComm)
SRV - [2007.02.23 12:06:46 | 000,215,944 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\WindowsMobile\rapimgr.dll -- (RapiMgr)
SRV - [2006.09.22 01:33:15 | 000,069,632 | ---- | M] (CrypKey (Canada) Ltd.) [Auto | Stopped] -- C:\Windows\SysWow64\Crypserv.exe -- (Crypkey License)
========== Driver Services (SafeList) ==========
DRV:64bit: - File not found [Kernel | On_Demand | Stopped] -- C:\Program Files\SiSoftware\SiSoftware Sandra Professional Home 2009.SP3\WNt500x64\Sandra.sys -- (SANDRA)
DRV:64bit: - [2012.07.25 20:18:56 | 000,050,392 | ---- | M] (Microsoft Corporation) [Kernel | System | Stopped] -- C:\Windows\SysNative\drivers\sxiszkln.sys -- (sxiszkln)
DRV:64bit: - [2012.07.03 13:46:44 | 000,024,904 | ---- | M] (Malwarebytes Corporation) [File_System | On_Demand | Running] -- C:\Windows\SysNative\drivers\mbam.sys -- (MBAMProtector)
DRV:64bit: - [2012.04.19 04:50:26 | 000,028,480 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\avgidsha.sys -- (AVGIDSHA)
DRV:64bit: - [2012.03.19 05:17:26 | 000,383,808 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\avgtdia.sys -- (Avgtdia)
DRV:64bit: - [2012.02.22 05:25:32 | 000,289,872 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\avgldx64.sys -- (Avgldx64)
DRV:64bit: - [2012.01.31 04:46:48 | 000,036,944 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | Boot | Running] -- C:\Windows\SysNative\drivers\avgrkx64.sys -- (Avgrkx64)
DRV:64bit: - [2011.12.23 13:32:14 | 000,047,696 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | System | Running] -- C:\Windows\SysNative\drivers\avgmfx64.sys -- (Avgmfx64)
DRV:64bit: - [2011.12.23 13:32:04 | 000,029,776 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\avgidsfiltera.sys -- (AVGIDSFilter)
DRV:64bit: - [2011.12.23 13:31:58 | 000,124,496 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\avgidsdrivera.sys -- (AVGIDSDriver)
DRV:64bit: - [2011.07.22 18:26:56 | 000,014,928 | ---- | M] (SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | System | Running] -- C:\Program Files\SUPERAntiSpyware\sasdifsv64.sys -- (SASDIFSV)
DRV:64bit: - [2011.07.12 23:55:18 | 000,012,368 | ---- | M] (SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | System | Running] -- C:\Program Files\SUPERAntiSpyware\saskutil64.sys -- (SASKUTIL)
DRV:64bit: - [2011.04.29 12:12:00 | 000,069,376 | ---- | M] (Lavasoft AB) [File_System | Boot | Running] -- C:\Windows\SysNative\drivers\Lbd.sys -- (Lbd)
DRV:64bit: - [2011.03.07 12:19:10 | 000,129,304 | ---- | M] (ZTE Incorporated) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\zghsmdm.sys -- (zghsmdm)
DRV:64bit: - [2011.03.07 12:18:48 | 000,018,456 | ---- | M] (HandSet Incorporated) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\massfilter_hs.sys -- (massfilter_hs)
DRV:64bit: - [2010.09.30 13:48:05 | 000,834,544 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\sptd.sys -- (sptd)
DRV:64bit: - [2010.07.22 17:13:28 | 000,054,848 | ---- | M] (FSPro Labs) [File_System | Boot | Running] -- C:\Windows\SysNative\drivers\FSPFltd.sys -- (FSProFilter)
DRV:64bit: - [2010.06.25 17:08:10 | 000,036,928 | ---- | M] (Windows (R) Win 7 DDK provider) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\htcnprot.sys -- (htcnprot)
DRV:64bit: - [2009.12.11 23:04:44 | 006,228,480 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\atikmdag.sys -- (atikmdag)
DRV:64bit: - [2009.12.11 23:04:44 | 006,228,480 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\atipmdag.sys -- (amdkmdag)
DRV:64bit: - [2009.12.11 21:51:08 | 000,160,256 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\atikmpag.sys -- (amdkmdap)
DRV:64bit: - [2009.11.19 01:30:56 | 000,123,408 | ---- | M] (ATI Technologies, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\AtiHdmi.sys -- (AtiHdmiService)
DRV:64bit: - [2009.11.12 14:48:56 | 000,005,504 | ---- | M] () [File_System | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\StarOpen.sys -- (StarOpen)
DRV:64bit: - [2009.11.01 20:16:50 | 000,033,736 | ---- | M] (HTC, Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ANDROIDUSB.sys -- (HTCAND64)
DRV:64bit: - [2009.09.13 15:56:01 | 000,082,816 | ---- | M] (VSO Software) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\pcouffin.sys -- (pcouffin)
DRV:64bit: - [2009.07.14 03:52:21 | 000,106,576 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:64bit: - [2009.07.14 03:52:21 | 000,028,752 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:64bit: - [2009.07.14 03:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:64bit: - [2009.07.14 03:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:64bit: - [2009.07.14 03:47:48 | 000,077,888 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:64bit: - [2009.07.14 03:47:48 | 000,023,104 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\Windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
DRV:64bit: - [2009.07.14 03:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:64bit: - [2009.07.14 02:09:50 | 000,019,968 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\usb8023x.sys -- (usb_rndisx)
DRV:64bit: - [2009.06.10 22:35:42 | 000,187,392 | ---- | M] (Realtek Corporation ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Rt64win7.sys -- (RTL8167)
DRV:64bit: - [2009.06.10 22:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:64bit: - [2009.06.10 22:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:64bit: - [2009.06.10 22:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:64bit: - [2009.06.10 22:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
DRV:64bit: - [2009.05.04 18:30:28 | 000,016,440 | ---- | M] (Advanced Micro Devices Inc.) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\AtiPcie.sys -- (AtiPcie)
DRV:64bit: - [2009.04.03 06:39:58 | 000,034,872 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\usbfilter.sys -- (usbfilter)
DRV:64bit: - [2009.03.18 18:35:42 | 000,033,856 | -H-- | M] (LogMeIn, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\hamachi.sys -- (hamachi)
DRV:64bit: - [2008.09.26 10:56:00 | 000,113,680 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\L8042mou.Sys -- (L8042mou)
DRV:64bit: - [2008.09.26 10:56:00 | 000,112,144 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\LMouKE.Sys -- (LMouKE)
DRV:64bit: - [2008.09.26 10:56:00 | 000,057,872 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\LMouFilt.Sys -- (LMouFilt)
DRV:64bit: - [2008.09.26 10:56:00 | 000,055,312 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\LHidFilt.Sys -- (LHidFilt)
DRV:64bit: - [2008.09.26 10:55:00 | 000,035,344 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\L8042Kbd.sys -- (L8042Kbd)
DRV:64bit: - [2008.06.27 08:51:10 | 000,088,632 | ---- | M] (Adobe Systems, Inc.) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\adfs.sys -- (adfs)
DRV - [2009.11.12 14:48:56 | 000,007,168 | ---- | M] () [File_System | On_Demand | Stopped] -- C:\Windows\SysWow64\drivers\StarOpen.sys -- (StarOpen)
DRV - [2009.07.14 03:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount)
DRV - [2008.08.14 08:57:42 | 000,074,720 | ---- | M] (Adobe Systems, Inc.) [Kernel | Auto | Running] -- C:\Windows\SysWow64\drivers\adfs.sys -- (adfs)
DRV - [2006.01.13 15:00:52 | 000,015,872 | ---- | M] (Flint Incorporation) [Kernel | System | Stopped] -- C:\Windows\SysWow64\drivers\vd_filedisk.sys -- (VD_FileDisk)
DRV - [2006.01.10 04:47:27 | 000,031,846 | ---- | M] () [Kernel | System | Stopped] -- C:\Windows\SysWOW64\Ckldrv.sys -- (NetworkX)
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}
IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE:64bit: - HKLM\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.com/search?q={searchT ... urceid=ie7
IE:64bit: - HKLM\..\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}: "URL" = http://dts.search-results.com/sr?src=ie ... earchTerms}
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://start.facemoods.com/?a=ddrnw&s={searchTerms}&f=4
IE - HKLM\..\URLSearchHook: - No CLSID value found
IE - HKLM\..\URLSearchHook: {855F3B16-6D32-4fe6-8A56-BBB695989046} - No CLSID value found
IE - HKLM\..\URLSearchHook: {a5ae8924-4036-420f-b7f6-a47e4b8f692e} - C:\Program Files (x86)\Free_Lunch_Design_TB\prxtbFree.dll (Conduit Ltd.)
IE - HKLM\..\SearchScopes,DefaultScope = {9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKLM\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.com/search?q={searchT ... urceid=ie7
IE - HKLM\..\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}: "URL" = http://dts.search-results.com/sr?src=ie ... earchTerms}
IE - HKLM\..\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}: "URL" = http://search.conduit.com/ResultsExt.as ... =CT2776682
IE - HKLM\..\SearchScopes\{EEE7E0A3-AE64-4dc8-84D1-F5D7BAF2DB0C}: "URL" = http://slirsredirect.search.aol.com/sli ... 0winampie7
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-177668100-1846633066-3982842387-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com/ie
IE - HKU\S-1-5-21-177668100-1846633066-3982842387-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://www.google.com/ie
IE - HKU\S-1-5-21-177668100-1846633066-3982842387-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
IE - HKU\S-1-5-21-177668100-1846633066-3982842387-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
IE - HKU\S-1-5-21-177668100-1846633066-3982842387-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 34 D4 22 4F 66 31 CA 01 [binary data]
IE - HKU\S-1-5-21-177668100-1846633066-3982842387-1001\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.google.com/ie
IE - HKU\S-1-5-21-177668100-1846633066-3982842387-1001\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com/ie
IE - HKU\S-1-5-21-177668100-1846633066-3982842387-1001\..\URLSearchHook: - No CLSID value found
IE - HKU\S-1-5-21-177668100-1846633066-3982842387-1001\..\URLSearchHook: {30421e54-3b57-4e5b-947c-9b6beea57683} - No CLSID value found
IE - HKU\S-1-5-21-177668100-1846633066-3982842387-1001\..\URLSearchHook: {51a86bb3-6602-4c85-92a5-130ee4864f13} - No CLSID value found
IE - HKU\S-1-5-21-177668100-1846633066-3982842387-1001\..\URLSearchHook: {a5ae8924-4036-420f-b7f6-a47e4b8f692e} - C:\Program Files (x86)\Free_Lunch_Design_TB\prxtbFree.dll (Conduit Ltd.)
IE - HKU\S-1-5-21-177668100-1846633066-3982842387-1001\..\URLSearchHook: {e8de9422-3b2c-4243-bf6f-235da84d8ef8} - No CLSID value found
IE - HKU\S-1-5-21-177668100-1846633066-3982842387-1001\..\SearchScopes,DefaultScope = {95B7759C-8C7F-4BF1-B163-73684A933233}
IE - HKU\S-1-5-21-177668100-1846633066-3982842387-1001\..\SearchScopes\{043C5167-00BB-4324-AF7E-62013FAEDACF}: "URL" = http://vshare.toolbarhome.com/search.as ... }&srch=dsp
IE - HKU\S-1-5-21-177668100-1846633066-3982842387-1001\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTer ... ORM=IE8SRC
IE - HKU\S-1-5-21-177668100-1846633066-3982842387-1001\..\SearchScopes\{0D7562AE-8EF6-416d-A838-AB665251703A}: "URL" = http://start.facemoods.com/?a=ddrnw&s={searchTerms}&f=4
IE - HKU\S-1-5-21-177668100-1846633066-3982842387-1001\..\SearchScopes\{6552C7DD-90A4-4387-B795-F8F96747DE19}: "URL" = http://search.icq.com/search/results.ph ... &ch_id=osd
IE - HKU\S-1-5-21-177668100-1846633066-3982842387-1001\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.com/search?q={searchT ... 1I7ADFA_cs
IE - HKU\S-1-5-21-177668100-1846633066-3982842387-1001\..\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}: "URL" = http://isearch.avg.com/search?cid={9F27 ... 2012-04-15 17:41:24&v=10.2.0.3&sap=dsp&q={searchTerms}
IE - HKU\S-1-5-21-177668100-1846633066-3982842387-1001\..\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}: "URL" = http://dts.search-results.com/sr?src=ie ... earchTerms}
IE - HKU\S-1-5-21-177668100-1846633066-3982842387-1001\..\SearchScopes\{AD22EBAF-0D18-4fc7-90CC-5EA0ABBE9EB8}: "URL" = http://www.daemon-search.com/search/web?q={searchTerms}
IE - HKU\S-1-5-21-177668100-1846633066-3982842387-1001\..\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}: "URL" = http://search.conduit.com/ResultsExt.as ... =CT2776682
IE - HKU\S-1-5-21-177668100-1846633066-3982842387-1001\..\SearchScopes\{EEE7E0A3-AE64-4dc8-84D1-F5D7BAF2DB0C}: "URL" = http://slirsredirect.search.aol.com/sli ... 0winampie7
IE - HKU\S-1-5-21-177668100-1846633066-3982842387-1001\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
========== FireFox ==========
FF - user.js - File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF64_11_3_300_265.dll File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.3.1: C:\Windows\system32\npDeployJava1.dll (Sun Microsystems, Inc.)
FF:64bit: - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.3.1: C:\Program Files\Oracle\JavaFX 2.0 Runtime\bin\plugin2\npjp2.dll (Oracle Corporation)
FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_3_300_265.dll ()
FF - HKLM\Software\MozillaPlugins\@avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin: C:\Program Files (x86)\Common Files\AVG Secure Search\SiteSafetyInstaller\11.2.0\\npsitesafety.dll ()
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX OVS Helper,version=1.0.0: C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF - HKLM\Software\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf: C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll (Foxit Corporation)
FF - HKLM\Software\MozillaPlugins\@google.com/npPicasa3,version=3.0.0: C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll (Google, Inc.)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=1.6.0_33: C:\Windows\SysWOW64\npdeployJava1.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files (x86)\Java\jre6\bin\plugin2\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files (x86)\Microsoft Silverlight\5.1.10411.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3555.0308: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@pandonetworks.com/PandoWebPlugin: C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll File not found
FF - HKCU\Software\MozillaPlugins\@octoshape.com/Octoshape Streaming Services,version=1.0: C:\Users\opopop\AppData\Roaming\Octoshape\Octoshape Streaming Services\sua-1002170-0-npoctoshape.dll (Octoshape ApS)
FF - HKCU\Software\MozillaPlugins\@talk.google.com/GoogleTalkPlugin: C:\Users\opopop\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll (Google)
FF - HKCU\Software\MozillaPlugins\@talk.google.com/O3DPlugin: C:\Users\opopop\AppData\Roaming\Mozilla\plugins\npgtpo3dautoplugin.dll ()
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Users\opopop\AppData\Local\Google\Update\1.3.21.115\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Users\opopop\AppData\Local\Google\Update\1.3.21.115\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@unity3d.com/UnityPlayer,version=1.0: C:\Users\opopop\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\smartwebprinting@hp.com: C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2010.06.02 16:50:02 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{3f963a5b-e555-4543-90e2-c3908898db71}: C:\Program Files (x86)\AVG\AVG2012\Firefox\ [2012.07.03 08:52:57 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{1E73965B-8B48-48be-9C8D-68B920ABC1C4}: C:\Program Files (x86)\AVG\AVG2012\Firefox4\ [2012.07.17 09:25:32 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{F53C93F1-07D5-430c-86D4-C9531B27DFAF}: C:\Program Files (x86)\AVG\AVG2012\Firefox\DoNotTrack\ [2012.07.03 08:52:57 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\avg@toolbar: C:\ProgramData\AVG Secure Search\11.1.0.12\ [2012.07.09 18:16:52 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{3ED591BC-7CC7-495B-A526-B2431356EDC1}: C:\Program Files (x86)\Ad Muncher\FirefoxExtension_2.0 [2012.07.17 14:31:44 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Thunderbird 8.0\extensions\\Components: C:\Program Files (x86)\Mozilla Thunderbird\components [2011.08.18 19:19:48 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Thunderbird 8.0\extensions\\Plugins: C:\Program Files (x86)\Mozilla Thunderbird\plugins
FF - HKEY_LOCAL_MACHINE\software\mozilla\SeaMonkey\Extensions\\{3ED591BC-7CC7-495B-A526-B2431356EDC1}: C:\Program Files (x86)\Ad Muncher\FirefoxExtension_2.0 [2012.07.17 14:31:44 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\smartwebprinting@hp.com: C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2010.06.02 16:50:02 | 000,000,000 | ---D | M]
[2010.05.28 21:34:38 | 000,000,000 | ---D | M] (No name found) -- C:\Users\opopop\AppData\Roaming\Mozilla\Extensions
[2010.05.28 21:34:38 | 000,000,000 | ---D | M] (No name found) -- C:\Users\opopop\AppData\Roaming\Mozilla\Extensions\{3550f703-e582-4d05-9a08-453d09bdfdc6}
[2009.10.18 20:56:13 | 000,000,000 | ---D | M] (No name found) -- C:\Users\opopop\AppData\Roaming\Mozilla\Firefox\extensions
[2009.10.18 20:56:13 | 000,000,000 | ---D | M] ("Ask Toolbar for Firefox") -- C:\Users\opopop\AppData\Roaming\Mozilla\Firefox\extensions\{E9A1DEE0-C623-4439-8932-001E7D17607D}
[2011.10.26 10:13:42 | 000,002,048 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\fcmdSrch.xml
========== Chrome ==========
CHR - homepage: http://www.google.cz/
CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:searchFieldtrialParameter}sourceid=chrome&ie={inputEncoding}&q={searchTerms}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&hl={language}&q={searchTerms}
CHR - homepage: http://www.google.cz/
CHR - plugin: Remoting Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Users\opopop\AppData\Local\Google\Chrome\Application\20.0.1132.57\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Users\opopop\AppData\Local\Google\Chrome\Application\20.0.1132.57\pdf.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Users\opopop\AppData\Local\Google\Chrome\Application\20.0.1132.57\gcswf32.dll
CHR - plugin: Shockwave Flash (Disabled) = C:\Users\opopop\AppData\Local\Google\Chrome\User Data\PepperFlash\11.2.31.144\pepflashplayer.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_2_202_235.dll
CHR - plugin: AVG Internet Security (Enabled) = C:\Users\opopop\AppData\Local\Google\Chrome\User Data\Default\Extensions\jmfkcklnlgedgbglfkkgedjfmejoahla\12.0.0.2161_0\plugins/avgnpss.dll
CHR - plugin: Google Talk Plugin (Enabled) = C:\Users\opopop\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll
CHR - plugin: Google Talk Plugin Video Accelerator (Enabled) = C:\Users\opopop\AppData\Roaming\Mozilla\plugins\npgtpo3dautoplugin.dll
CHR - plugin: Octoshape Streaming Services (Enabled) = C:\Users\opopop\AppData\Roaming\Mozilla\plugins\npoctoshape.dll
CHR - plugin: Octoshape Streaming Services (Enabled) = C:\Users\opopop\AppData\Roaming\Octoshape\Octoshape Streaming Services\sua-1002170-0-npoctoshape.dll
CHR - plugin: Microsoft Office 2010 (Enabled) = C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL
CHR - plugin: Microsoft Office 2010 (Enabled) = C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL
CHR - plugin: DivX OVS Helper Plug-in (Enabled) = C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll
CHR - plugin: Foxit Reader Plugin for Mozilla (Enabled) = C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll
CHR - plugin: Java(TM) Platform SE 6 U31 (Enabled) = C:\Program Files (x86)\Java\jre6\bin\plugin2\npjp2.dll
CHR - plugin: Silverlight Plug-In (Enabled) = C:\Program Files (x86)\Microsoft Silverlight\4.0.60831.0\npctrl.dll
CHR - plugin: Pando Web Plugin (Enabled) = C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll
CHR - plugin: Windows Live\u0099 Photo Gallery (Enabled) = C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
CHR - plugin: Unity Player (Enabled) = C:\Users\opopop\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll
CHR - plugin: Google Update (Enabled) = C:\Users\opopop\AppData\Local\Google\Update\1.3.21.111\npGoogleUpdate3.dll
CHR - Extension: Facebook! = C:\Users\opopop\AppData\Local\Google\Chrome\User Data\Default\Extensions\ainkhhbgcdbenmmbaoacambbhjfgnmmm\2.0.0.4_0\
CHR - Extension: YouTube = C:\Users\opopop\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\
CHR - Extension: Vyhled\u00E1v\u00E1n\u00ED Google = C:\Users\opopop\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\
CHR - Extension: Full Screen Weather = C:\Users\opopop\AppData\Local\Google\Chrome\User Data\Default\Extensions\fkkaebihfmbofclegkcfkkemepfehibg\1.3_0\
CHR - Extension: Facebook Meme Chat Emoticons Bar = C:\Users\opopop\AppData\Local\Google\Chrome\User Data\Default\Extensions\geambommijjphdlendibpfkndcmjeoml\1_0\
CHR - Extension: AdBlock = C:\Users\opopop\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.5.38_0\
CHR - Extension: Awesome Weather Widget [ANTP] = C:\Users\opopop\AppData\Local\Google\Chrome\User Data\Default\Extensions\goeepbfnllchoihkoiecpkkekbpfiboc\2012.104.116.101_0\
CHR - Extension: Facemoods = C:\Users\opopop\AppData\Local\Google\Chrome\User Data\Default\Extensions\ihflimipbcaljfnojhhknppphnnciiif\1.6.0_0\
CHR - Extension: Facemoods = C:\Users\opopop\AppData\Local\Google\Chrome\User Data\Default\Extensions\ihflimipbcaljfnojhhknppphnnciiif\1.6.0_0\facemoods\
CHR - Extension: AVG Safe Search = C:\Users\opopop\AppData\Local\Google\Chrome\User Data\Default\Extensions\jmfkcklnlgedgbglfkkgedjfmejoahla\12.0.0.2191_0\
CHR - Extension: Gestures for Chrome(TM) = C:\Users\opopop\AppData\Local\Google\Chrome\User Data\Default\Extensions\jpkfjicglakibpenojifdiepckckakgk\1.12.1_0\
CHR - Extension: AVG Do Not Track = C:\Users\opopop\AppData\Local\Google\Chrome\User Data\Default\Extensions\ndibdjnfmopecpmkdieinmbadjfpblof\12.0.0.2166_0\
CHR - Extension: Marc Ecko = C:\Users\opopop\AppData\Local\Google\Chrome\User Data\Default\Extensions\opjonmehjfmkejjifhhknofdnacklmjk\2_0\
CHR - Extension: Gmail = C:\Users\opopop\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\
O1 HOSTS File: ([2012.03.29 19:31:36 | 000,001,401 | RHS- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O1 - Hosts: 68.168.222.226 www.google-analytics.com.
O1 - Hosts: 68.168.222.226 ad-emea.doubleclick.net.
O1 - Hosts: 68.168.222.226 www.statcounter.com.
O1 - Hosts: 108.163.215.51 www.google-analytics.com.
O1 - Hosts: 108.163.215.51 ad-emea.doubleclick.net.
O1 - Hosts: 108.163.215.51 www.statcounter.com.
O2:64bit: - BHO: (SnagIt Toolbar Loader) - {00C6482D-C502-44C8-8409-FCE54AD9C208} - C:\Program Files (x86)\TechSmith\Snagit 9\DLLx64\SnagitBHO64.dll (TechSmith Corporation)
O2:64bit: - BHO: (AVG Do Not Track) - {31332EEF-CB9F-458F-AFEB-D30E9A66B6BA} - C:\Program Files (x86)\AVG\AVG2012\avgdtiea.dll (AVG Technologies CZ, s.r.o.)
O2:64bit: - BHO: (AVG Safe Search) - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files (x86)\AVG\AVG2012\avgssiea.dll (AVG Technologies CZ, s.r.o.)
O2:64bit: - BHO: (no name) - {9D717F81-9148-4f12-8568-69135F087DB0} - No CLSID value found.
O2:64bit: - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Oracle\JavaFX 2.0 Runtime\bin\jp2ssv.dll (Oracle Corporation)
O2 - BHO: (SnagIt Toolbar Loader) - {00C6482D-C502-44C8-8409-FCE54AD9C208} - C:\Program Files (x86)\TechSmith\Snagit 9\SnagitBHO.dll (TechSmith Corporation)
O2 - BHO: (vShare Plugin) - {043C5167-00BB-4324-AF7E-62013FAEDACF} - C:\Program Files (x86)\vShare\vshare_toolbar.dll ()
O2 - BHO: (AskBar BHO) - {201f27d4-3704-41d6-89c1-aa35e39143ed} - C:\Program Files (x86)\AskBarDis\bar\bin\askBar.dll (Ask.com)
O2 - BHO: (WebTransBHO Class) - {2DB66063-BB98-466A-AA0D-3E7ACF5ED853} - C:\ProgramData\LangSoft\WebIE.dll ()
O2 - BHO: (AVG Do Not Track) - {31332EEF-CB9F-458F-AFEB-D30E9A66B6BA} - C:\Program Files (x86)\AVG\AVG2012\avgdtiex.dll (AVG Technologies CZ, s.r.o.)
O2 - BHO: (AVG Safe Search) - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files (x86)\AVG\AVG2012\avgssie.dll (AVG Technologies CZ, s.r.o.)
O2 - BHO: (CescrtHlpr Object) - {64182481-4F71-486b-A045-B233BD0DA8FC} - C:\Program Files (x86)\facemoods.com\facemoods\1.4.17.11\bh\facemoods.dll (facemoods.com BHO)
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (AVG Security Toolbar) - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files (x86)\AVG Secure Search\11.1.0.12\AVG Secure Search_toolbar.dll ()
O2 - BHO: (no name) - {9D717F81-9148-4f12-8568-69135F087DB0} - No CLSID value found.
O2 - BHO: (Free Lunch Design TB Toolbar) - {a5ae8924-4036-420f-b7f6-a47e4b8f692e} - C:\Program Files (x86)\Free_Lunch_Design_TB\prxtbFree.dll (Conduit Ltd.)
O3:64bit: - HKLM\..\Toolbar: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files (x86)\DAEMON Tools Toolbar\DTToolbar64.dll ()
O3:64bit: - HKLM\..\Toolbar: (no name) - 10 - No CLSID value found.
O3 - HKLM\..\Toolbar: (vShare Plugin) - {043C5167-00BB-4324-AF7E-62013FAEDACF} - C:\Program Files (x86)\vShare\vshare_toolbar.dll ()
O3 - HKLM\..\Toolbar: (Foxit Toolbar) - {3041d03e-fd4b-44e0-b742-2d9b88305f98} - C:\Program Files (x86)\AskBarDis\bar\bin\askBar.dll (Ask.com)
O3 - HKLM\..\Toolbar: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files (x86)\DAEMON Tools Toolbar\DTToolbar.dll ()
O3 - HKLM\..\Toolbar: (&Save Flash) - {4064EA35-578D-4073-A834-C96D82CBCF40} - C:\Program Files (x86)\Save Flash\SaveFlash.dll (PilotGroup LLC)
O3 - HKLM\..\Toolbar: (Snagit) - {8FF5E183-ABDE-46EB-B09E-D2AAB95CABE3} - C:\Program Files (x86)\TechSmith\Snagit 9\SnagitIEAddin.dll (TechSmith Corporation)
O3 - HKLM\..\Toolbar: (AVG Security Toolbar) - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files (x86)\AVG Secure Search\11.1.0.12\AVG Secure Search_toolbar.dll ()
O3 - HKLM\..\Toolbar: (no name) - {99079a25-328f-4bd4-be04-00955acaa0a7} - No CLSID value found.
O3 - HKLM\..\Toolbar: (Free Lunch Design TB Toolbar) - {a5ae8924-4036-420f-b7f6-a47e4b8f692e} - C:\Program Files (x86)\Free_Lunch_Design_TB\prxtbFree.dll (Conduit Ltd.)
O3 - HKLM\..\Toolbar: (WebTranslator) - {BFC32E1D-EE75-4A48-BC60-104E11EE2431} - C:\ProgramData\LangSoft\WebIE.dll ()
O3 - HKLM\..\Toolbar: (facemoods Toolbar) - {DB4E9724-F518-4dfd-9C7C-78B52103CAB9} - C:\Program Files (x86)\facemoods.com\facemoods\1.4.17.11\facemoodsTlbr.dll (facemoods.com)
O3 - HKLM\..\Toolbar: (no name) - 10 - No CLSID value found.
O3 - HKU\S-1-5-21-177668100-1846633066-3982842387-1001\..\Toolbar\WebBrowser: (&Save Flash) - {4064EA35-578D-4073-A834-C96D82CBCF40} - C:\Program Files (x86)\Save Flash\SaveFlash.dll (PilotGroup LLC)
O4 - HKLM..\Run: [] File not found
O4 - HKLM..\Run: [Ad Muncher] C:\Program Files (x86)\Ad Muncher\AdMunch.exe (Murray Hurps Corp Pty Ltd)
O4 - HKLM..\Run: [AMD64 CPU Assistant] File not found
O4 - HKLM..\Run: [AVG_TRAY] C:\Program Files (x86)\AVG\AVG2012\avgtray.exe (AVG Technologies CZ, s.r.o.)
O4 - HKLM..\Run: [vProt] C:\Program Files (x86)\AVG Secure Search\vprot.exe ()
O4 - HKU\S-1-5-19..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-20..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-21-177668100-1846633066-3982842387-1001..\Run: [AMD64 CPU Assistant] File not found
O4 - HKU\S-1-5-21-177668100-1846633066-3982842387-1001..\Run: [Clownfish] C:\Program Files (x86)\Clownfish\Clownfish.exe (Bogdan Sharkov)
O4 - HKU\S-1-5-21-177668100-1846633066-3982842387-1001..\Run: [DAEMON Tools Lite] C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe (DT Soft Ltd)
O4 - HKU\S-1-5-21-177668100-1846633066-3982842387-1001..\Run: [OEXPRESS] File not found
O4 - HKU\S-1-5-19..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found
O4 - HKU\S-1-5-20..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found
O4 - Startup: C:\Users\opopop\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk = C:\Users\opopop\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0
O8:64bit: - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200 File not found
O8:64bit: - Extra context menu item: Block frame with Ad Muncher - http://www.admuncher.com/request_will_b ... u_ie_frame File not found
O8:64bit: - Extra context menu item: Block image with Ad Muncher - http://www.admuncher.com/request_will_b ... u_ie_image File not found
O8:64bit: - Extra context menu item: Block link with Ad Muncher - http://www.admuncher.com/request_will_b ... nu_ie_link File not found
O8:64bit: - Extra context menu item: Don't filter page with Ad Muncher - http://www.admuncher.com/request_will_b ... ie_exclude File not found
O8:64bit: - Extra context menu item: Report page to the Ad Muncher developers - http://www.admuncher.com/request_will_b ... _ie_report File not found
O8:64bit: - Extra context menu item: Sothink SWF Catcher - C:\Program Files (x86)\Common Files\SourceTec\SWF Catcher\InternetExplorer.htm ()
O8:64bit: - Extra context menu item: WikiKomentáře Google... - res://C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_96D6FF0C6D236BF8.dll/cmsidewiki.html File not found
O8 - Extra context menu item: Add to Google Photos Screensa&ver - C:\Windows\SysWow64\GPhotos.scr (Google Inc.)
O8 - Extra context menu item: Block frame with Ad Muncher - http://www.admuncher.com/request_will_b ... u_ie_frame File not found
O8 - Extra context menu item: Block image with Ad Muncher - http://www.admuncher.com/request_will_b ... u_ie_image File not found
O8 - Extra context menu item: Block link with Ad Muncher - http://www.admuncher.com/request_will_b ... nu_ie_link File not found
O8 - Extra context menu item: Don't filter page with Ad Muncher - http://www.admuncher.com/request_will_b ... ie_exclude File not found
O8 - Extra context menu item: Report page to the Ad Muncher developers - http://www.admuncher.com/request_will_b ... _ie_report File not found
O8 - Extra context menu item: Sothink SWF Catcher - C:\Program Files (x86)\Common Files\SourceTec\SWF Catcher\InternetExplorer.htm ()
O8 - Extra context menu item: WikiKomentáře Google... - res://C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_96D6FF0C6D236BF8.dll/cmsidewiki.html File not found
O9:64bit: - Extra Button: AVG Do Not Track - {68BCFFE1-A2DA-4B40-9068-87ECBFC19D16} - C:\Program Files (x86)\AVG\AVG2012\avgdtiea.dll (AVG Technologies CZ, s.r.o.)
O9 - Extra Button: @C:\Windows\WindowsMobile\INetRepl.dll,-222 - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : @C:\Windows\WindowsMobile\INetRepl.dll,-223 - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll (Microsoft Corporation)
O9 - Extra Button: AVG Do Not Track - {68BCFFE1-A2DA-4B40-9068-87ECBFC19D16} - C:\Program Files (x86)\AVG\AVG2012\avgdtiex.dll (AVG Technologies CZ, s.r.o.)
O9 - Extra Button: WebTran - {7E6A20FB-153F-402c-A84B-1A64E1955D3D} - C:\ProgramData\LangSoft\WebIE.dll ()
O9 - Extra 'Tools' menuitem : &Nastavit překladač - {CC963627-B1DC-40E0-B52A-CF21EE748449} - C:\ProgramData\LangSoft\WebIE.dll ()
O9 - Extra 'Tools' menuitem : &Slovník - {CC963627-B1DC-40E0-B52A-CF21EE748450} - C:\ProgramData\LangSoft\WebIE.dll ()
O9 - Extra 'Tools' menuitem : Přeložit &označený text - {CC963627-B1DC-40E0-B52A-CF21EE748451} - C:\ProgramData\LangSoft\WebIE.dll ()
O9 - Extra 'Tools' menuitem : Přeložit &stránku - {CC963627-B1DC-40E0-B52A-CF21EE748452} - C:\ProgramData\LangSoft\WebIE.dll ()
O9 - Extra Button: Sothink SWF Catcher - {E19ADC6E-3909-43E4-9A89-B7B676377EE3} - C:\Program Files (x86)\Common Files\SourceTec\SWF Catcher\InternetExplorer.htm ()
O9 - Extra 'Tools' menuitem : Sothink SWF Catcher - {E19ADC6E-3909-43E4-9A89-B7B676377EE3} - C:\Program Files (x86)\Common Files\SourceTec\SWF Catcher\InternetExplorer.htm ()
O9 - Extra Button: PokerStars.net - {FA9B9510-9FCB-4ca0-818C-5D0987B47C4D} - C:\Program Files (x86)\PokerStars.NET\PokerStarsUpdate.exe File not found
O1364bit: - gopher Prefix: missing
O13 - gopher Prefix: missing
O16:64bit: - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.7.0/jinsta ... s-i586.cab (Java Plug-in 10.3.1)
O16:64bit: - DPF: {CAFEEFAC-0017-0000-0003-ABCDEFFEDCBA} http://java.sun.com/update/1.7.0/jinsta ... s-i586.cab (Java Plug-in 1.7.0_03)
O16:64bit: - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.7.0/jinsta ... s-i586.cab (Java Plug-in 1.7.0_03)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_33)
O16 - DPF: {CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_33)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_33)
O16 - DPF: {D4003189-95B1-4A2F-9A87-F2B03665960D} http://www.spvod.com/soft/vjocx-ch-spvod.cab (VodClient Control Class)
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Key error.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 10.0.0.138
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{AE74BE4B-2162-4B3F-865F-B6CEFCCEED22}: DhcpNameServer = 10.0.0.138
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{AE74BE4B-2162-4B3F-865F-B6CEFCCEED22}: NameServer = 156.154.70.25,156.154.71.25
O18:64bit: - Protocol\Handler\linkscanner {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files (x86)\AVG\AVG2012\avgppa.dll (AVG Technologies CZ, s.r.o.)
O18:64bit: - Protocol\Handler\skype4com - No CLSID value found
O18:64bit: - Protocol\Handler\viprotocol - No CLSID value found
O18:64bit: - Protocol\Handler\vsharechrome - No CLSID value found
O18:64bit: - Protocol\Handler\wlpg - No CLSID value found
O18 - Protocol\Handler\linkscanner {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files (x86)\AVG\AVG2012\avgpp.dll (AVG Technologies CZ, s.r.o.)
O18 - Protocol\Handler\ms-help - No CLSID value found
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Handler\viprotocol {B658800C-F66E-4EF3-AB85-6C0C227862A9} - C:\Program Files (x86)\Common Files\AVG Secure Search\ViProtocolInstaller\11.2.0\ViProtocol.dll ()
O18 - Protocol\Handler\vsharechrome {3F3A4B8A-86FC-43A4-BB00-6D7EBE9D4484} - C:\Program Files (x86)\vShare\vshare_toolbar.dll ()
O20:64bit: - AppInit_DLLs: (C:\PROGRA~2\WI3C8A~1\Datamngr\x64\datamngr.dll) - File not found
O20:64bit: - AppInit_DLLs: (C:\PROGRA~2\WI3C8A~1\Datamngr\x64\IEBHO.dll) - File not found
O20 - AppInit_DLLs: (C:\PROGRA~2\WI3C8A~1\Datamngr\datamngr.dll) - File not found
O20 - AppInit_DLLs: (C:\PROGRA~2\WI3C8A~1\Datamngr\IEBHO.dll) - File not found
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\SysNative\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\Windows\SysWow64\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O20:64bit: - Winlogon\Notify\LBTWlgn: DllName - (c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll) - c:\Program Files\Common Files\Logishrd\Bluetooth\LBTWLgn.dll (Logitech, Inc.)
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O33 - MountPoints2\{7688af88-46cf-11df-9fc2-00241d82b71a}\Shell - "" = AutoRun
O33 - MountPoints2\{7688af88-46cf-11df-9fc2-00241d82b71a}\Shell\AutoRun\command - "" = J:\StartVMCLite.exe
O33 - MountPoints2\{bc2700dd-b79d-11dd-9de5-00241d82b71a}\Shell - "" = AutoRun
O33 - MountPoints2\{bc2700dd-b79d-11dd-9de5-00241d82b71a}\Shell\AutoRun\command - "" = F:\Setup.exe
O33 - MountPoints2\{bc2700df-b79d-11dd-9de5-00241d82b71a}\Shell - "" = AutoRun
O33 - MountPoints2\{bc2700df-b79d-11dd-9de5-00241d82b71a}\Shell\AutoRun\command - "" = I:\Machinarium_Setup_EN.exe
O33 - MountPoints2\{d38eea36-5feb-11df-ac8b-00241d82b71a}\Shell - "" = AutoRun
O33 - MountPoints2\{d38eea36-5feb-11df-ac8b-00241d82b71a}\Shell\AutoRun\command - "" = J:\USBAutoRun.exe
O33 - MountPoints2\{dd96bd2d-94c1-11de-aea9-00241d82b71a}\Shell - "" = AutoRun
O33 - MountPoints2\{dd96bd2d-94c1-11de-aea9-00241d82b71a}\Shell\AutoRun\command - "" = G:\setup.exe
O34 - HKLM BootExecute: (autocheck autochk *)
O34 - HKLM BootExecute: (C:\PROGRA~2\AVG\AVG2012\avgrsa.exe /sync /restart)
O34 - HKLM BootExecute: (lsdelete)
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)
Re: kontrola logu
CREATERESTOREPOINT
Restore point Set: OTL Restore Point
NetSvcs:64bit: AppMgmt - C:\Windows\SysNative\appmgmts.dll (Microsoft Corporation)
Drivers32:64bit: msacm.bdmpeg - bdmpega64.acm ()
Drivers32:64bit: msacm.l3acm - C:\Windows\System32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32:64bit: VIDC.FPS1 - frapsv64.dll (Beepa P/L)
Drivers32:64bit: vidc.mjpg - bdmjpeg64.dll ()
Drivers32:64bit: vidc.mpeg - bdmpegv64.dll ()
Drivers32: msacm.ac3filter - C:\Windows\SysWow64\ac3filter.acm ()
Drivers32: msacm.avis - C:\Windows\SysWow64\ff_acm.acm ()
Drivers32: msacm.bdmpeg - C:\Windows\SysWow64\bdmpega.acm ()
Drivers32: msacm.l3acm - C:\Windows\SysWOW64\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.l3codec - C:\Windows\SysWow64\l3codecp.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.lhacm - C:\Windows\SysWow64\lhacm.acm (Microsoft Corporation)
Drivers32: vidc.cvid - C:\Windows\SysWow64\iccvid.dll (Radius Inc.)
Drivers32: vidc.DIVX - C:\Windows\SysWow64\DivX.dll (DivX, Inc.)
Drivers32: VIDC.FFDS - C:\Program Files (x86)\Combined Community Codec Pack\Filters\FFDShow\ff_vfw.dll ()
Drivers32: VIDC.FPS1 - C:\Windows\SysWow64\frapsvid.dll (Beepa P/L)
Drivers32: vidc.mjpg - C:\Windows\SysWow64\bdmjpeg.dll ()
Drivers32: vidc.mpeg - C:\Windows\SysWow64\bdmpegv.dll ()
Drivers32: vidc.tscc - C:\Windows\SysWow64\tsccvid.dll (TechSmith Corporation)
Drivers32: vidc.XVID - C:\Windows\SysWow64\xvidvfw.dll ()
Drivers32: vidc.yv12 - C:\Windows\SysWow64\DivX.dll (DivX, Inc.)
PhysicalDisk0 MBR saved to C:\PhysicalMBR.bin
========== Files/Folders - Created Within 7 Days ==========
[2012.07.25 20:55:59 | 000,596,480 | ---- | C] (OldTimer Tools) -- C:\Users\opopop\Desktop\OTL.exe
[2012.07.25 20:32:03 | 000,000,000 | ---D | C] -- C:\Program Files\trend micro
[2012.07.25 20:32:02 | 000,000,000 | ---D | C] -- C:\rsit
[2012.07.25 20:18:56 | 000,050,392 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\sxiszkln.sys
[2012.07.25 20:18:56 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\MpEngineStore
[2012.07.25 20:00:59 | 072,854,560 | ---- | C] (Microsoft Corporation) -- C:\Users\opopop\Desktop\msert.exe
[2012.07.24 22:52:28 | 000,000,000 | -H-D | C] -- C:\Users\opopop\Desktop\.picasaoriginals
[2012.07.19 14:49:30 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\SecondLifeViewer
[2012.07.19 13:30:38 | 000,000,000 | ---D | C] -- C:\Users\opopop\AppData\Local\{25516E81-DCD3-41BC-8563-2E47DCA9FB37}
[2012.07.19 13:30:15 | 000,000,000 | ---D | C] -- C:\Users\opopop\AppData\Local\{B0CEEFEB-65F0-4673-B250-1FC4601D9D79}
[2012.07.19 12:45:43 | 000,000,000 | ---D | C] -- C:\Users\opopop\AppData\Roaming\BANDISOFT
[2012.07.19 12:45:39 | 000,000,000 | ---D | C] -- C:\Users\opopop\Documents\Bandicam
[2012.07.19 12:45:33 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\BandiMPEG1
[2012.07.19 12:07:29 | 000,000,000 | ---D | C] -- C:\Users\opopop\AppData\Roaming\.techniclauncher
[2009.09.13 15:56:01 | 000,082,816 | ---- | C] (VSO Software) -- C:\Users\opopop\AppData\Roaming\pcouffin.sys
[6 C:\ProgramData\*.tmp files -> C:\ProgramData\*.tmp -> ]
[6 C:\ProgramData\*.tmp files -> C:\ProgramData\*.tmp -> ]
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
========== Files - Modified Within 7 Days ==========
[2012.07.25 21:02:36 | 000,000,512 | ---- | M] () -- C:\PhysicalMBR.bin
[2012.07.25 20:55:59 | 000,596,480 | ---- | M] (OldTimer Tools) -- C:\Users\opopop\Desktop\OTL.exe
[2012.07.25 20:31:19 | 000,935,175 | ---- | M] () -- C:\Users\opopop\Desktop\RSITx64.exe
[2012.07.25 20:18:56 | 000,050,392 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\sxiszkln.sys
[2012.07.25 20:13:00 | 000,000,914 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2012.07.25 20:03:05 | 072,854,560 | ---- | M] (Microsoft Corporation) -- C:\Users\opopop\Desktop\msert.exe
[2012.07.25 18:04:04 | 000,014,016 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2012.07.25 18:04:04 | 000,014,016 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2012.07.25 18:02:51 | 102,141,859 | ---- | M] () -- C:\Windows\SysNative\drivers\AVG\incavi.avm
[2012.07.25 17:59:00 | 000,000,202 | ---- | M] () -- C:\Windows\tasks\AutoKMS.job
[2012.07.25 17:58:57 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2012.07.25 17:58:55 | 3220,037,632 | -HS- | M] () -- C:\hiberfil.sys
[2012.07.25 08:52:02 | 000,000,064 | ---- | M] () -- C:\Windows\SysWow64\rp_stats.dat
[2012.07.25 08:52:02 | 000,000,044 | ---- | M] () -- C:\Windows\SysWow64\rp_rules.dat
[2012.07.24 22:52:28 | 000,351,229 | ---- | M] () -- C:\Users\opopop\Desktop\CAM_0023.jpg
[2012.07.24 16:44:29 | 000,116,962 | ---- | M] () -- C:\Users\opopop\Desktop\Zivanice_0122.jpg
[2012.07.19 23:23:57 | 000,001,069 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
[2012.07.19 23:11:35 | 000,007,624 | ---- | M] () -- C:\Users\opopop\AppData\Local\resmon.resmoncfg
[6 C:\ProgramData\*.tmp files -> C:\ProgramData\*.tmp -> ]
[6 C:\ProgramData\*.tmp files -> C:\ProgramData\*.tmp -> ]
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
========== Files Created - No Company Name ==========
[2012.07.25 21:02:36 | 000,000,512 | ---- | C] () -- C:\PhysicalMBR.bin
[2012.07.25 20:31:19 | 000,935,175 | ---- | C] () -- C:\Users\opopop\Desktop\RSITx64.exe
[2012.07.24 22:52:28 | 000,351,229 | ---- | C] () -- C:\Users\opopop\Desktop\CAM_0023.jpg
[2012.07.24 16:44:29 | 000,116,962 | ---- | C] () -- C:\Users\opopop\Desktop\Zivanice_0122.jpg
[2012.07.22 15:39:54 | 000,016,432 | ---- | C] () -- C:\Windows\SysNative\lsdelete.exe
[2012.06.20 15:33:39 | 000,000,064 | ---- | C] () -- C:\Windows\SysWow64\rp_stats.dat
[2012.06.20 15:33:39 | 000,000,044 | ---- | C] () -- C:\Windows\SysWow64\rp_rules.dat
[2012.05.09 14:25:27 | 000,000,046 | ---- | C] () -- C:\Users\opopop\AppData\Roaming\mbam.context.scan
[2012.03.29 20:15:42 | 000,000,023 | ---- | C] () -- C:\Users\opopop\AppData\Roaming\815AF6.dat
[2012.02.26 14:00:37 | 000,584,584 | ---- | C] () -- C:\Windows\adb.exe
[2012.02.26 14:00:37 | 000,001,623 | ---- | C] () -- C:\Windows\InnoTipLanguage.ini
[2012.02.18 02:10:59 | 000,608,256 | ---- | C] () -- C:\Users\opopop\AppData\Roaming\chrtmp
[2012.02.12 10:35:57 | 000,000,132 | ---- | C] () -- C:\Users\opopop\AppData\Roaming\Adobe Formát PNG CS5 – předvolby
[2012.02.08 21:18:45 | 000,000,132 | ---- | C] () -- C:\Users\opopop\AppData\Roaming\Adobe PNG Format CS5 Prefs
[2011.12.13 12:48:38 | 000,000,000 | ---- | C] () -- C:\Users\opopop\AppData\Local\{52AA8F3D-5822-4539-BA36-5113BAD5C010}
[2011.09.19 09:07:46 | 000,015,360 | ---- | C] () -- C:\Windows\SysWow64\bdmjpeg.dll
[2011.09.19 09:07:32 | 000,058,368 | ---- | C] () -- C:\Windows\SysWow64\bdmpegv.dll
[2011.08.29 22:22:17 | 000,001,497 | ---- | C] () -- C:\Users\opopop\.recently-used.xbel
[2011.08.07 15:34:27 | 000,000,184 | ---- | C] () -- C:\Windows\AutoKMS.ini
[2011.07.30 11:51:07 | 000,000,103 | ---- | C] () -- C:\Windows\pro.INI
[2011.06.25 08:48:50 | 000,000,000 | ---- | C] () -- C:\Users\opopop\AppData\Local\{47E2818C-BBAC-4CE9-87C4-03D22BB103EE}
[2011.04.09 18:55:28 | 000,179,261 | ---- | C] () -- C:\Windows\SysWow64\xlive.dll.cat
[2011.03.08 07:27:14 | 000,098,304 | ---- | C] () -- C:\Windows\SysWow64\NtDirect.dll
[2010.12.29 02:23:14 | 000,079,360 | ---- | C] () -- C:\Windows\SysWow64\ff_vfw.dll
[2010.11.29 19:19:15 | 000,432,836 | ---- | C] () -- C:\Users\opopop\AppData\Local\SRDownloader.err
[2010.11.29 19:17:38 | 000,001,376 | ---- | C] () -- C:\Users\opopop\AppData\Local\SRDownloader.nast
[2010.10.25 17:21:58 | 000,000,129 | ---- | C] () -- C:\Users\opopop\jagex_runescape_preferences2.dat
[2010.10.25 17:20:35 | 000,000,046 | ---- | C] () -- C:\Users\opopop\jagex_runescape_preferences.dat
[2010.07.01 10:09:12 | 000,000,056 | -H-- | C] () -- C:\ProgramData\ezsidmv.dat
[2010.02.10 22:01:56 | 000,000,760 | ---- | C] () -- C:\Users\opopop\AppData\Roaming\setup_ldm.iss
[2010.01.26 07:20:26 | 000,007,624 | ---- | C] () -- C:\Users\opopop\AppData\Local\resmon.resmoncfg
[2009.12.28 14:30:24 | 000,000,033 | ---- | C] () -- C:\Users\opopop\AppData\Local\rssbuilder.ftpconfig
[2009.12.28 14:26:16 | 000,000,122 | ---- | C] () -- C:\Users\opopop\AppData\Local\rssbuilder.config
[2009.12.27 17:16:33 | 000,000,397 | ---- | C] () -- C:\Users\opopop\.jalbum-ftp-accounts.xml
[2009.12.01 13:18:26 | 000,024,064 | ---- | C] () -- C:\Users\opopop\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2009.11.01 17:44:40 | 000,000,255 | ---- | C] () -- C:\Users\opopop\.jalbum-recent-projects.properties
[2009.11.01 17:40:26 | 000,000,907 | ---- | C] () -- C:\Users\opopop\.jalbum-defaults.jap
[2009.09.17 18:27:32 | 000,000,000 | ---- | C] () -- C:\ProgramData\LauncherAccess.dt
[2009.09.13 15:56:32 | 000,001,041 | ---- | C] () -- C:\Users\opopop\AppData\Roaming\vso_ts_preview.xml
[2009.09.13 15:56:01 | 000,099,384 | ---- | C] () -- C:\Users\opopop\AppData\Roaming\inst.exe
[2009.09.13 15:56:01 | 000,007,859 | ---- | C] () -- C:\Users\opopop\AppData\Roaming\pcouffin.cat
[2009.09.13 15:56:01 | 000,001,167 | ---- | C] () -- C:\Users\opopop\AppData\Roaming\pcouffin.inf
[2002.08.29 18:33:56 | 000,319,488 | R--- | C] () -- C:\Users\opopop\AppData\Roaming\MafiaSetup.exe
========== LOP Check ==========
[2012.07.23 10:41:35 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\.minecraft
[2011.03.04 01:51:33 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\.purple
[2012.07.19 12:11:04 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\.techniclauncher
[2009.12.01 13:07:43 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\Apowersoft
[2010.11.28 15:54:29 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\Artisteer
[2009.09.05 16:55:16 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\Ashampoo
[2012.04.14 19:19:27 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\AVG2012
[2012.07.19 12:45:43 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\BANDISOFT
[2011.01.16 13:37:08 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\BetdaqAssistant.389FD738CB3FAA05327C60BCB3256FB4301F5711.1
[2009.08.28 18:35:16 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\Betting Assistant
[2011.07.08 16:03:05 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\Blueberry
[2010.02.04 23:07:32 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\Canneverbe Limited
[2012.02.06 02:50:51 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1
[2012.01.16 20:18:19 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\com.adobe.downloadassistant.AdobeDownloadAssistant
[2010.09.02 16:59:44 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\ct24crawl
[2012.06.30 12:48:44 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\DAEMON Tools Lite
[2012.02.24 01:18:50 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\DAEMON Tools Pro
[2012.02.04 00:57:21 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\Dexpot
[2012.07.25 18:00:31 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\Dropbox
[2012.07.25 18:04:31 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\eM Client
[2011.03.13 13:20:16 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\FileZilla
[2009.09.05 09:26:11 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\Foxit
[2011.02.25 17:41:05 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\Foxit Software
[2009.12.06 17:13:34 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\GARMIN
[2011.11.30 16:27:18 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\GetRightToGo
[2009.12.26 01:32:02 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\GHISLER
[2011.06.01 16:01:46 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\Gruss Software
[2011.08.29 22:22:18 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\gtk-2.0
[2009.11.04 23:05:46 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\HEXelon
[2012.01.18 17:31:54 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\HLSW
[2011.04.23 19:59:05 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\ICQ
[2011.06.19 11:05:46 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\Imagine
[2009.11.02 09:40:07 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\Inkscape
[2009.11.08 15:53:14 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\IrfanView
[2011.06.19 10:46:27 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\JAlbum
[2011.12.28 22:10:01 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\LangSoft
[2009.10.03 21:14:33 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\Leadertech
[2010.05.15 18:07:38 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\LG Electronics
[2011.09.12 13:42:50 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\LolClient
[2012.01.09 23:35:08 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\MOBILedit
[2012.05.07 12:00:37 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\Mumble
[2011.02.20 17:24:48 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\Notepad++
[2010.04.04 23:15:30 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\Octoshape
[2012.07.25 20:18:56 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\OpenCandy
[2012.06.09 05:57:03 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\Opera
[2011.02.12 11:15:02 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\PMS
[2011.12.14 08:56:45 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\Publish Providers
[2011.09.10 02:45:35 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\Samsung
[2012.07.19 14:51:50 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\SecondLife
[2011.07.21 14:08:51 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\SFBot
[2012.05.06 10:55:49 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\Sony
[2010.02.21 18:15:16 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\Stardock
[2012.02.08 14:57:06 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\TeamViewer
[2009.12.20 22:19:07 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\TennisNavigator
[2010.05.28 21:34:37 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\Thunderbird
[2012.06.30 12:48:44 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\TS3Client
[2011.01.15 12:02:09 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\Unity
[2011.01.28 19:17:35 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\uTorrent
[2011.07.19 01:25:40 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\VideoReDo-TVSuite4
[2009.09.29 18:44:44 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\VitySoft
[2012.02.24 01:18:50 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\Vso
[2011.01.29 22:20:10 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\Win7codecs
[2011.02.19 01:59:27 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\WinAVI
[2010.06.13 13:40:38 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\XnView
[2012.07.25 17:59:00 | 000,000,202 | ---- | M] () -- C:\Windows\Tasks\AutoKMS.job
[2012.07.17 07:05:00 | 000,000,202 | ---- | M] () -- C:\Windows\Tasks\AutoKMSDaily.job
[2012.05.19 09:18:27 | 000,032,586 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT
========== Purity Check ==========
========== Custom Scans ==========
< >
< >
< MD5 for: ATAPI.SYS >
[2009.07.14 03:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\SysNative\drivers\atapi.sys
[2009.07.14 03:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\SysNative\DriverStore\FileRepository\mshdc.inf_amd64_neutral_a69a58a4286f0b22\atapi.sys
[2009.07.14 03:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\winsxs\amd64_mshdc.inf_31bf3856ad364e35_6.1.7600.16385_none_392d19c13b3ad543\atapi.sys
< MD5 for: AUTOCHK.EXE >
[2009.07.14 03:14:12 | 000,668,160 | ---- | M] (Microsoft Corporation) MD5=41E4C8EBA464E7D6A5BA5E8827732AEB -- C:\Windows\SysWOW64\autochk.exe
[2009.07.14 03:14:12 | 000,668,160 | ---- | M] (Microsoft Corporation) MD5=41E4C8EBA464E7D6A5BA5E8827732AEB -- C:\Windows\winsxs\x86_microsoft-windows-autochk_31bf3856ad364e35_6.1.7600.16385_none_e1ca436d2314b860\autochk.exe
[2009.07.14 03:38:56 | 000,777,728 | ---- | M] (Microsoft Corporation) MD5=8B7F8E882A649D81CEA1EDE9BBB68FFF -- C:\Windows\SysNative\autochk.exe
[2009.07.14 03:38:56 | 000,777,728 | ---- | M] (Microsoft Corporation) MD5=8B7F8E882A649D81CEA1EDE9BBB68FFF -- C:\Windows\winsxs\amd64_microsoft-windows-autochk_31bf3856ad364e35_6.1.7600.16385_none_3de8def0db722996\autochk.exe
< MD5 for: CDROM.SYS >
[2009.07.14 01:19:54 | 000,147,456 | ---- | M] (Microsoft Corporation) MD5=83D2D75E1EFB81B3450C18131443F7DB -- C:\Windows\SysNative\drivers\cdrom.sys
[2009.07.14 01:19:54 | 000,147,456 | ---- | M] (Microsoft Corporation) MD5=83D2D75E1EFB81B3450C18131443F7DB -- C:\Windows\SysNative\DriverStore\FileRepository\cdrom.inf_amd64_neutral_8363d00ecae4322d\cdrom.sys
[2009.07.14 01:19:54 | 000,147,456 | ---- | M] (Microsoft Corporation) MD5=83D2D75E1EFB81B3450C18131443F7DB -- C:\Windows\winsxs\amd64_cdrom.inf_31bf3856ad364e35_6.1.7600.16385_none_bb9e4d89bd7870f1\cdrom.sys
< MD5 for: EXPLORER.EXE >
[2009.07.14 03:14:20 | 002,613,248 | ---- | M] (Microsoft Corporation) MD5=15BC38A7492BEFE831966ADB477CF76F -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16385_none_b7fe430bc7ce3761\explorer.exe
[2009.10.31 07:45:39 | 002,614,272 | ---- | M] (Microsoft Corporation) MD5=2626FC9755BE22F805D3CFA0CE3EE727 -- C:\Windows\SysWOW64\explorer.exe
[2009.10.31 07:45:39 | 002,614,272 | ---- | M] (Microsoft Corporation) MD5=2626FC9755BE22F805D3CFA0CE3EE727 -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16450_none_b819b343c7ba6202\explorer.exe
[2009.08.03 08:19:07 | 002,868,224 | ---- | M] (Microsoft Corporation) MD5=700073016DAC1C3D2E7E2CE4223334B6 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20500_none_ae84b558ac4eb41c\explorer.exe
[2009.10.31 08:34:59 | 002,870,272 | ---- | M] (Microsoft Corporation) MD5=9AAAEC8DAC27AA17B053E6352AD233AE -- C:\Windows\explorer.exe
[2009.10.31 08:34:59 | 002,870,272 | ---- | M] (Microsoft Corporation) MD5=9AAAEC8DAC27AA17B053E6352AD233AE -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16450_none_adc508f19359a007\explorer.exe
[2009.08.03 07:49:47 | 002,613,248 | ---- | M] (Microsoft Corporation) MD5=9FF6C4C91A3711C0A3B18F87B08B518D -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20500_none_b8d95faae0af7617\explorer.exe
[2009.10.31 08:38:38 | 002,870,272 | ---- | M] (Microsoft Corporation) MD5=B8EC4BD49CE8F6FC457721BFC210B67F -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20563_none_ae46d6aeac7ca7c7\explorer.exe
[2009.08.03 07:35:50 | 002,613,248 | ---- | M] (Microsoft Corporation) MD5=B95EEB0F4E5EFBF1038A35B3351CF047 -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16404_none_b853c407c78e3ba9\explorer.exe
[2009.07.14 03:39:10 | 002,868,224 | ---- | M] (Microsoft Corporation) MD5=C235A51CB740E45FFA0EBFB9BAFCDA64 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16385_none_ada998b9936d7566\explorer.exe
[2009.10.31 08:00:51 | 002,614,272 | ---- | M] (Microsoft Corporation) MD5=C76153C7ECA00FA852BB0C193378F917 -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20563_none_b89b8100e0dd69c2\explorer.exe
[2009.08.03 08:17:37 | 002,868,224 | ---- | M] (Microsoft Corporation) MD5=F170B4A061C9E026437B193B4D571799 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16404_none_adff19b5932d79ae\explorer.exe
< MD5 for: HAL.DLL >
[2009.07.14 03:47:48 | 000,263,232 | ---- | M] (Microsoft Corporation) MD5=C0A6F6E05E14FBCAEDE7796C8590B7AC -- C:\Windows\SysNative\hal.dll
[2009.07.14 03:47:48 | 000,263,232 | ---- | M] (Microsoft Corporation) MD5=C0A6F6E05E14FBCAEDE7796C8590B7AC -- C:\Windows\winsxs\amd64_microsoft-windows-hal_31bf3856ad364e35_6.1.7600.16385_none_071de44b735b3dfc\hal.dll
< MD5 for: SCECLI.DLL >
[2009.07.14 03:16:13 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=26073302DAEA83CC5B944C546D6B47D2 -- C:\Windows\SysWOW64\scecli.dll
[2009.07.14 03:16:13 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=26073302DAEA83CC5B944C546D6B47D2 -- C:\Windows\winsxs\wow64_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7600.16385_none_9e577e55272d37b4\scecli.dll
[2009.07.14 03:41:53 | 000,232,448 | ---- | M] (Microsoft Corporation) MD5=398712DDDAEFB85EDF61DF6A07B65C79 -- C:\Windows\SysNative\scecli.dll
[2009.07.14 03:41:53 | 000,232,448 | ---- | M] (Microsoft Corporation) MD5=398712DDDAEFB85EDF61DF6A07B65C79 -- C:\Windows\winsxs\amd64_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7600.16385_none_9402d402f2cc75b9\scecli.dll
< MD5 for: SVCHOST.EXE >
[2009.07.14 03:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\SysWOW64\svchost.exe
[2009.07.14 03:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\winsxs\x86_microsoft-windows-services-svchost_31bf3856ad364e35_6.1.7600.16385_none_b591afc466a15356\svchost.exe
[2012.07.03 13:46:42 | 000,217,672 | ---- | M] () MD5=8A7F34F0BBD076EC3815680A7309114F -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\Chameleon\svchost.exe
[2009.07.14 03:39:46 | 000,027,136 | ---- | M] (Microsoft Corporation) MD5=C78655BC80301D76ED4FEF1C1EA40A7D -- C:\Windows\SysNative\svchost.exe
[2009.07.14 03:39:46 | 000,027,136 | ---- | M] (Microsoft Corporation) MD5=C78655BC80301D76ED4FEF1C1EA40A7D -- C:\Windows\winsxs\amd64_microsoft-windows-services-svchost_31bf3856ad364e35_6.1.7600.16385_none_11b04b481efec48c\svchost.exe
< MD5 for: TCPIP.SYS >
[2010.06.14 08:39:16 | 001,889,152 | ---- | M] (Microsoft Corporation) MD5=542C6767C68C9D6AAACA59436B0D15C2 -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.20733_none_0fd0b57e990e2079\tcpip.sys
[2010.06.14 08:37:36 | 001,896,832 | ---- | M] (Microsoft Corporation) MD5=90A2D722CF64D911879D6C4A4F802A4D -- C:\Windows\SysNative\drivers\tcpip.sys
[2010.06.14 08:37:36 | 001,896,832 | ---- | M] (Microsoft Corporation) MD5=90A2D722CF64D911879D6C4A4F802A4D -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.16610_none_0f59b7ad7fe2fcc8\tcpip.sys
[2009.07.14 03:45:55 | 001,898,576 | ---- | M] (Microsoft Corporation) MD5=912107716BAB424C7870E8E6AF5E07E1 -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.16385_none_0f1303f98017479d\tcpip.sys
< MD5 for: USERINIT.EXE >
[2009.07.14 03:14:43 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=6DE80F60D7DE9CE6B8C2DDFDF79EF175 -- C:\Windows\SysWOW64\userinit.exe
[2009.07.14 03:14:43 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=6DE80F60D7DE9CE6B8C2DDFDF79EF175 -- C:\Windows\winsxs\x86_microsoft-windows-userinit_31bf3856ad364e35_6.1.7600.16385_none_dbff103933038d7c\userinit.exe
[2009.07.14 03:39:48 | 000,030,208 | ---- | M] (Microsoft Corporation) MD5=6F8F1376A13114CC10C0E69274F5A4DE -- C:\Windows\SysNative\userinit.exe
[2009.07.14 03:39:48 | 000,030,208 | ---- | M] (Microsoft Corporation) MD5=6F8F1376A13114CC10C0E69274F5A4DE -- C:\Windows\winsxs\amd64_microsoft-windows-userinit_31bf3856ad364e35_6.1.7600.16385_none_381dabbceb60feb2\userinit.exe
< MD5 for: WINLOGON.EXE >
[2009.07.14 03:39:52 | 000,389,120 | ---- | M] (Microsoft Corporation) MD5=132328DF455B0028F13BF0ABEE51A63A -- C:\Windows\winsxs\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7600.16385_none_cbb7f2bdeea2829c\winlogon.exe
[2012.07.03 13:46:42 | 000,217,672 | ---- | M] () MD5=8A7F34F0BBD076EC3815680A7309114F -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\Chameleon\winlogon.exe
[2009.10.28 09:01:57 | 000,389,632 | ---- | M] (Microsoft Corporation) MD5=A93D41A4D4B0D91C072D11DD8AF266DE -- C:\Windows\winsxs\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7600.20560_none_cc522fd507b468f8\winlogon.exe
[2009.10.28 08:24:40 | 000,389,632 | ---- | M] (Microsoft Corporation) MD5=DA3E2A6FA9660CC75B471530CE88453A -- C:\Windows\SysNative\winlogon.exe
[2009.10.28 08:24:40 | 000,389,632 | ---- | M] (Microsoft Corporation) MD5=DA3E2A6FA9660CC75B471530CE88453A -- C:\Windows\winsxs\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7600.16447_none_cbe534e7ee8042ad\winlogon.exe
< >
< %systemroot%*.* /U /s >
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
[1 C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp files -> C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp -> ]
[2 C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\*.tmp files -> C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\*.tmp -> ]
[31 C:\Windows\Installer\*.tmp files -> C:\Windows\Installer\*.tmp -> ]
[1 C:\Windows\System32\spool\drivers\x64\3\*.tmp files -> C:\Windows\System32\spool\drivers\x64\3\*.tmp -> ]
[1 C:\Windows\Temp\*.tmp files -> C:\Windows\Temp\*.tmp -> ]
[1 C:\Windows\twain_32\*.tmp files -> C:\Windows\twain_32\*.tmp -> ]
< %SYSTEMDRIVE%\*.exe >
[2006.11.01 13:05:58 | 000,154,424 | ---- | M] () -- C:\ChVID.exe
[2006.11.01 13:05:58 | 000,154,424 | ---- | M] () -- C:\Volumeid.exe
< %ALLUSERSPROFILE%\Application Data\*. >
< %ALLUSERSPROFILE%\Application Data\*.exe /s >
< %APPDATA%\*. >
[2012.07.23 10:41:35 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\.minecraft
[2011.03.04 01:51:33 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\.purple
[2012.07.19 12:11:04 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\.techniclauncher
[2012.01.28 16:46:59 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\Adobe
[2012.06.22 13:56:20 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\Ahead
[2009.12.01 13:07:43 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\Apowersoft
[2010.11.28 15:54:28 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\Apple Computer
[2010.11.28 15:54:29 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\Artisteer
[2009.09.05 16:55:16 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\Ashampoo
[2009.08.28 18:55:02 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\ATI
[2012.04.14 19:19:27 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\AVG2012
[2012.07.19 12:45:43 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\BANDISOFT
[2011.01.16 13:37:08 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\BetdaqAssistant.389FD738CB3FAA05327C60BCB3256FB4301F5711.1
[2009.08.28 18:35:16 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\Betting Assistant
[2011.07.08 16:03:05 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\Blueberry
[2010.02.04 23:07:32 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\Canneverbe Limited
[2012.02.06 02:50:51 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1
[2012.01.16 20:18:19 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\com.adobe.downloadassistant.AdobeDownloadAssistant
[2009.11.30 07:42:05 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\Creative
[2010.09.02 16:59:44 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\ct24crawl
[2012.06.30 12:48:44 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\DAEMON Tools Lite
[2012.02.24 01:18:50 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\DAEMON Tools Pro
[2012.02.04 00:57:21 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\Dexpot
[2011.02.02 00:56:44 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\DivX
[2012.07.25 18:00:31 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\Dropbox
[2011.10.28 14:35:59 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\dvdcss
[2012.07.25 18:04:31 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\eM Client
[2011.03.13 13:20:16 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\FileZilla
[2009.09.05 09:26:11 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\Foxit
[2011.02.25 17:41:05 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\Foxit Software
[2009.12.06 17:13:34 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\GARMIN
[2011.11.30 16:27:18 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\GetRightToGo
[2009.12.26 01:32:02 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\GHISLER
[2009.11.08 20:16:55 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\Google
[2011.06.01 16:01:46 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\Gruss Software
[2011.08.29 22:22:18 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\gtk-2.0
[2009.11.04 23:05:46 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\HEXelon
[2012.01.18 17:31:54 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\HLSW
[2010.01.23 16:56:57 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\HP
[2012.01.24 18:09:28 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\HpUpdate
[2011.04.23 19:59:05 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\ICQ
[2009.08.28 17:55:22 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\Identities
[2011.06.19 11:05:46 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\Imagine
[2009.11.02 09:40:07 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\Inkscape
[2010.05.15 17:28:56 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\InstallShield
[2009.11.08 15:53:14 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\IrfanView
[2011.06.19 10:46:27 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\JAlbum
[2011.12.28 22:10:01 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\LangSoft
[2009.10.03 21:14:33 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\Leadertech
[2010.05.15 18:07:38 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\LG Electronics
[2010.02.10 22:02:06 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\Logitech
[2011.09.12 13:42:50 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\LolClient
[2009.12.24 17:12:02 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\Macromedia
[2012.03.29 22:19:17 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\Malwarebytes
[2009.07.14 17:36:38 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\Media Center Programs
[2012.01.10 00:06:44 | 000,000,000 | --SD | M] -- C:\Users\opopop\AppData\Roaming\Microsoft
[2012.01.09 23:35:08 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\MOBILedit
[2010.05.28 21:34:38 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\Mozilla
[2012.05.07 12:00:37 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\Mumble
[2011.02.20 17:24:48 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\Notepad++
[2010.04.04 23:15:30 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\Octoshape
[2012.07.25 20:18:56 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\OpenCandy
[2012.06.09 05:57:03 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\Opera
[2011.02.12 11:15:02 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\PMS
[2011.08.02 19:23:18 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\PSpad
[2011.12.14 08:56:45 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\Publish Providers
[2010.03.01 18:17:57 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\Realtime Soft
[2011.09.10 02:45:35 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\Samsung
[2012.07.19 14:51:50 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\SecondLife
[2011.06.16 22:58:09 | 000,000,000 | RH-D | M] -- C:\Users\opopop\AppData\Roaming\SecuROM
[2011.07.21 14:08:51 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\SFBot
[2012.07.23 13:28:25 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\Skype
[2011.06.13 08:40:26 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\skypePM
[2012.04.14 14:38:25 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\SmartFTP
[2012.05.06 10:55:49 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\Sony
[2010.02.21 18:15:16 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\Stardock
[2012.05.27 08:12:32 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\SUPERAntiSpyware.com
[2010.01.02 23:32:32 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\teamspeak2
[2012.02.08 14:57:06 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\TeamViewer
[2009.12.20 22:19:07 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\TennisNavigator
[2010.05.28 21:34:37 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\Thunderbird
[2012.06.30 12:48:44 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\TS3Client
[2011.01.15 12:02:09 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\Unity
[2011.01.28 19:17:35 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\uTorrent
[2012.04.08 23:45:45 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\Ventrilo
[2011.07.19 01:25:40 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\VideoReDo-TVSuite4
[2009.09.29 18:44:44 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\VitySoft
[2012.03.25 16:04:53 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\vlc
[2012.02.24 01:18:50 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\Vso
[2011.01.29 22:20:10 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\Win7codecs
[2011.02.19 01:59:27 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\WinAVI
[2009.08.28 18:27:38 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\WinRAR
[2010.06.13 13:40:38 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\XnView
< %APPDATA%\*.exe /s >
[2011.01.28 19:07:13 | 000,099,384 | ---- | M] () -- C:\Users\opopop\AppData\Roaming\inst.exe
[2002.08.29 18:33:56 | 000,319,488 | R--- | M] () -- C:\Users\opopop\AppData\Roaming\MafiaSetup.exe
[2012.06.14 04:08:56 | 027,595,032 | ---- | M] (Dropbox, Inc.) -- C:\Users\opopop\AppData\Roaming\Dropbox\bin\Dropbox.exe
[2012.06.14 04:09:00 | 000,874,440 | ---- | M] (Dropbox, Inc.) -- C:\Users\opopop\AppData\Roaming\Dropbox\bin\DropboxUpdateHelper.exe
[2012.06.14 04:09:06 | 000,181,776 | ---- | M] (Dropbox, Inc.) -- C:\Users\opopop\AppData\Roaming\Dropbox\bin\Uninstall.exe
[2011.12.29 14:39:09 | 000,053,632 | ---- | M] (Adobe Systems Inc.) -- C:\Users\opopop\AppData\Roaming\Macromedia\Flash Player\www.macromedia.com\bin\airappinstaller\airappinstaller.exe
[2011.09.22 18:13:37 | 000,016,958 | R--- | M] () -- C:\Users\opopop\AppData\Roaming\Microsoft\Installer\{BC86ABDF-8148-44B3-8105-4AE9DDBFDCB6}\_6FEFF9B68218417F98F549.exe
[2011.09.22 18:13:37 | 000,016,958 | R--- | M] () -- C:\Users\opopop\AppData\Roaming\Microsoft\Installer\{BC86ABDF-8148-44B3-8105-4AE9DDBFDCB6}\_7FA0F4E67BDA4FF5803CC4.exe
[2011.09.22 18:13:37 | 000,016,958 | R--- | M] () -- C:\Users\opopop\AppData\Roaming\Microsoft\Installer\{BC86ABDF-8148-44B3-8105-4AE9DDBFDCB6}\_C6B24F7ED6B16D6CB95442.exe
[2009.12.22 12:57:00 | 000,010,134 | R--- | M] () -- C:\Users\opopop\AppData\Roaming\Microsoft\Installer\{DBC2CFCA-9BAE-45F6-A975-11B57BE01D18}\ARPPRODUCTICON.exe
[2009.12.22 12:57:00 | 000,012,862 | R--- | M] () -- C:\Users\opopop\AppData\Roaming\Microsoft\Installer\{DBC2CFCA-9BAE-45F6-A975-11B57BE01D18}\NewShortcut11_DBC2CFCA9BAE45F6A97511B57BE01D18_1.exe
[2009.12.22 12:57:00 | 000,012,862 | R--- | M] () -- C:\Users\opopop\AppData\Roaming\Microsoft\Installer\{DBC2CFCA-9BAE-45F6-A975-11B57BE01D18}\NewShortcut1_DBC2CFCA9BAE45F6A97511B57BE01D18_1.exe
[2009.12.22 12:57:00 | 000,008,854 | R--- | M] () -- C:\Users\opopop\AppData\Roaming\Microsoft\Installer\{DBC2CFCA-9BAE-45F6-A975-11B57BE01D18}\Uninstall_Sky_Aces_DBC2CFCA9BAE45F6A97511B57BE01D18.exe
[2010.02.20 10:04:01 | 000,010,134 | R--- | M] () -- C:\Users\opopop\AppData\Roaming\Microsoft\Installer\{F022B56C-2B90-B9E1-332E-5C1277A47E7B}\ARPPRODUCTICON.exe
[2008.12.02 08:40:14 | 000,028,672 | R--- | M] () -- C:\Users\opopop\AppData\Roaming\Microsoft\Windows\Templates\J\UnInstallMSI.exe
[2008.12.01 13:29:00 | 000,014,336 | R--- | M] () -- C:\Users\opopop\AppData\Roaming\Microsoft\Windows\Templates\J\UnInstallMSI32.exe
[2008.12.01 13:29:00 | 000,016,896 | R--- | M] () -- C:\Users\opopop\AppData\Roaming\Microsoft\Windows\Templates\J\UnInstallMSI64.exe
[2008.11.26 06:57:44 | 000,737,280 | R--- | M] () -- C:\Users\opopop\AppData\Roaming\Microsoft\Windows\Templates\J\USBAutoRun.exe
[2008.11.26 13:59:32 | 006,450,574 | R--- | M] (Macrovision Corporation) -- C:\Users\opopop\AppData\Roaming\Microsoft\Windows\Templates\J\tools\LGInternetKit_V3.0.0.24_Setup.exe
[2009.01.08 15:44:06 | 000,070,936 | ---- | M] (Octoshape ApS) -- C:\Users\opopop\AppData\Roaming\Octoshape\Octoshape Streaming Services\OctoshapeClient.exe
[2011.11.18 06:30:06 | 002,081,208 | ---- | M] (Speedchecker Limited ) -- C:\Users\opopop\AppData\Roaming\OpenCandy\59D65A5D9E344D3BA870F8074A7962BC\pcspeedup_oc.exe
[2010.08.21 01:16:42 | 012,284,672 | ---- | M] (ReviverSoft LLC.) -- C:\Users\opopop\AppData\Roaming\OpenCandy\OpenCandy_B92920F18CDC44ECBCD26F31D55B8901\AFIRegistryReviverSetup.exe
[2010.11.04 20:09:50 | 012,343,104 | ---- | M] () -- C:\Users\opopop\AppData\Roaming\OpenCandy\OpenCandy_B92920F18CDC44ECBCD26F31D55B8901\p1v1_AFIRegistryReviver_w.exe
< %systemroot%\*. /mp /s >
< %systemroot%\system32\*.dll /lockedfiles >
< %systemroot%\Tasks\*.job >
[2012.07.25 21:13:00 | 000,000,914 | ---- | M] () -- C:\Windows\Tasks\Adobe Flash Player Updater.job
[2012.07.25 17:59:00 | 000,000,202 | ---- | M] () -- C:\Windows\Tasks\AutoKMS.job
[2012.07.17 07:05:00 | 000,000,202 | ---- | M] () -- C:\Windows\Tasks\AutoKMSDaily.job
< %systemroot%\system32\drivers\*.sys /lockedfiles >
< %systemroot%\System32\config\*.sav >
< %systemroot%\system32\*.dll /lockedfiles >
< %systemroot%\system32\drivers\*.sys /3 >
< %systemroot%\system32\*.* /3 >
[2012.07.25 08:52:02 | 000,000,044 | ---- | M] () -- C:\Windows\system32\rp_rules.dat
[2012.07.25 08:52:02 | 000,000,064 | ---- | M] () -- C:\Windows\system32\rp_stats.dat
< %SYSTEMDRIVE%\*.exe >
[2006.11.01 13:05:58 | 000,154,424 | ---- | M] () -- C:\ChVID.exe
[2006.11.01 13:05:58 | 000,154,424 | ---- | M] () -- C:\Volumeid.exe
< >
< HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s >
"AMD64 CPU Assistant" =
"OEXPRESS" =
"DAEMON Tools Lite" = "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun -- [2010.04.01 11:16:20 | 000,357,696 | ---- | M] (DT Soft Ltd)
"Clownfish" = "C:\Program Files (x86)\Clownfish\Clownfish.exe" -- [2012.06.21 10:14:40 | 001,097,464 | ---- | M] (Bogdan Sharkov)
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\AdobeUpdater]
"" =
< >
< %PROGRAMFILES%\Mozilla Firefox\firefox.exe /md5 >
< %PROGRAMFILES%\Internet Explorer\iexplore.exe /md5 >
[2010.09.08 06:31:24 | 000,673,040 | ---- | M] (Microsoft Corporation) MD5=61EDBCE47ADF3E52AB0B9F49EE4AEBB8 -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
< %PROGRAMFILES%\Opera\opera.exe /md5 >
[2012.06.14 20:49:36 | 000,874,384 | ---- | M] (Opera Software) MD5=308AB9B6B7BEDF60E458D1B950F5CD80 -- C:\Program Files (x86)\Opera\opera.exe
< %PROGRAMFILES%\Google\Chrome\Application\chrome.exe /md5 >
< >
< %SystemDrive%\PhysicalMBR.bin /md5 >
[2012.07.25 21:02:36 | 000,000,512 | ---- | M] () MD5=90B9020190BD282AA278FDF67664AF56 -- C:\PhysicalMBR.bin
< >
< *crack* /s >
[2010.04.01 21:41:16 | 000,003,556 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Dreamweaver CS5\configuration\Content\Reference\PHP\CrackF.html
[2010.08.06 23:23:48 | 000,000,403 | ---- | M] () -- \Program Files (x86)\Amnesia\sounds\11\11_glass_crack.snt
[2010.08.06 23:23:48 | 000,020,362 | ---- | M] () -- \Program Files (x86)\Amnesia\sounds\11\11_glass_crack01.ogg
[2010.08.06 23:23:48 | 000,020,539 | ---- | M] () -- \Program Files (x86)\Amnesia\sounds\11\11_glass_crack02.ogg
[2010.08.06 23:23:48 | 000,019,081 | ---- | M] () -- \Program Files (x86)\Amnesia\sounds\11\11_glass_crack03.ogg
[2010.08.07 00:00:56 | 000,013,009 | ---- | M] () -- \Program Files (x86)\Amnesia\static_objects\castlebase\ceiling\corridor_crack.dae
[2010.08.27 07:33:12 | 000,014,477 | ---- | M] () -- \Program Files (x86)\Amnesia\static_objects\castlebase\ceiling\corridor_crack.msh
[2010.08.06 23:50:20 | 000,094,462 | ---- | M] () -- \Program Files (x86)\Amnesia\static_objects\cellarbase\special\cracked_ceiling.dae
[2010.08.27 07:33:24 | 000,065,436 | ---- | M] () -- \Program Files (x86)\Amnesia\static_objects\cellarbase\special\cracked_ceiling.msh
[2010.08.06 23:50:02 | 000,349,680 | ---- | M] () -- \Program Files (x86)\Amnesia\static_objects\decals\cracks_blue.dds
[2010.08.06 23:50:02 | 000,000,932 | ---- | M] () -- \Program Files (x86)\Amnesia\static_objects\decals\cracks_blue.mat
[2010.08.06 23:50:02 | 000,016,101 | ---- | M] () -- \Program Files (x86)\Amnesia\static_objects\decals\cracks_blue01.dae
[2010.08.27 07:33:34 | 000,001,220 | ---- | M] () -- \Program Files (x86)\Amnesia\static_objects\decals\cracks_blue01.msh
[2010.08.06 23:50:04 | 000,016,053 | ---- | M] () -- \Program Files (x86)\Amnesia\static_objects\decals\cracks_blue02.dae
[2010.08.27 07:33:34 | 000,001,220 | ---- | M] () -- \Program Files (x86)\Amnesia\static_objects\decals\cracks_blue02.msh
[2010.08.06 23:50:02 | 000,016,053 | ---- | M] () -- \Program Files (x86)\Amnesia\static_objects\decals\cracks_blue03.dae
[2010.08.27 07:33:34 | 000,001,220 | ---- | M] () -- \Program Files (x86)\Amnesia\static_objects\decals\cracks_blue03.msh
[2010.08.06 23:50:04 | 000,016,053 | ---- | M] () -- \Program Files (x86)\Amnesia\static_objects\decals\cracks_blue04.dae
[2010.08.27 07:33:34 | 000,001,220 | ---- | M] () -- \Program Files (x86)\Amnesia\static_objects\decals\cracks_blue04.msh
[2010.08.06 23:50:04 | 000,349,680 | ---- | M] () -- \Program Files (x86)\Amnesia\static_objects\decals\cracks_blue_back.dds
[2010.08.06 23:50:04 | 000,000,410 | ---- | M] () -- \Program Files (x86)\Amnesia\static_objects\decals\cracks_blue_back.mat
[2010.08.06 23:50:02 | 000,349,680 | ---- | M] () -- \Program Files (x86)\Amnesia\static_objects\decals\cracks_brown.dds
[2010.08.06 23:50:02 | 000,000,933 | ---- | M] () -- \Program Files (x86)\Amnesia\static_objects\decals\cracks_brown.mat
[2010.08.06 23:50:02 | 000,016,057 | ---- | M] () -- \Program Files (x86)\Amnesia\static_objects\decals\cracks_brown01.dae
[2010.08.27 07:33:34 | 000,001,222 | ---- | M] () -- \Program Files (x86)\Amnesia\static_objects\decals\cracks_brown01.msh
[2010.08.06 23:50:04 | 000,016,057 | ---- | M] () -- \Program Files (x86)\Amnesia\static_objects\decals\cracks_brown02.dae
[2010.08.27 07:33:34 | 000,001,222 | ---- | M] () -- \Program Files (x86)\Amnesia\static_objects\decals\cracks_brown02.msh
[2010.08.06 23:50:02 | 000,016,057 | ---- | M] () -- \Program Files (x86)\Amnesia\static_objects\decals\cracks_brown03.dae
[2010.08.27 07:33:34 | 000,001,222 | ---- | M] () -- \Program Files (x86)\Amnesia\static_objects\decals\cracks_brown03.msh
[2010.08.06 23:50:04 | 000,016,057 | ---- | M] () -- \Program Files (x86)\Amnesia\static_objects\decals\cracks_brown04.dae
[2010.08.27 07:33:34 | 000,001,222 | ---- | M] () -- \Program Files (x86)\Amnesia\static_objects\decals\cracks_brown04.msh
[2010.08.06 23:50:02 | 000,349,680 | ---- | M] () -- \Program Files (x86)\Amnesia\static_objects\decals\cracks_brown_back.dds
[2010.08.06 23:50:04 | 000,000,409 | ---- | M] () -- \Program Files (x86)\Amnesia\static_objects\decals\cracks_brown_back.mat
[2010.08.06 23:50:02 | 000,349,680 | ---- | M] () -- \Program Files (x86)\Amnesia\static_objects\decals\cracks_nrm.dds
[2010.08.06 23:50:02 | 000,174,904 | ---- | M] () -- \Program Files (x86)\Amnesia\static_objects\decals\cracks_spec.dds
[2010.08.06 23:49:16 | 000,062,915 | ---- | M] () -- \Program Files (x86)\Amnesia\static_objects\dungeonbase\ceiling\default_cracked.dae
[2010.08.27 07:33:40 | 000,037,741 | ---- | M] () -- \Program Files (x86)\Amnesia\static_objects\dungeonbase\ceiling\default_cracked.msh
[2010.08.06 23:48:40 | 000,019,532 | ---- | M] () -- \Program Files (x86)\Amnesia\static_objects\dungeonbase\wall\corridor_graves_cracked.dae
[2010.08.27 07:33:50 | 000,017,545 | ---- | M] () -- \Program Files (x86)\Amnesia\static_objects\dungeonbase\wall\corridor_graves_cracked.msh
[2009.12.19 13:45:08 | 000,003,460 | ---- | M] () -- \Program Files (x86)\Game_Maker8\Sprites\Maze - Platform\wall_block_cracked1.png
[2009.12.19 13:45:08 | 000,003,675 | ---- | M] () -- \Program Files (x86)\Game_Maker8\Sprites\Maze - Platform\wall_block_cracked2.png
[2009.12.19 13:45:08 | 000,004,107 | ---- | M] () -- \Program Files (x86)\Game_Maker8\Sprites\Maze - Platform\wall_block_cracked3.png
[2009.12.19 13:45:08 | 000,003,529 | ---- | M] () -- \Program Files (x86)\Game_Maker8\Sprites\Maze - Platform\wall_block_cracked4.png
[2009.08.14 01:13:44 | 000,062,238 | ---- | M] () -- \Program Files (x86)\GIMP-2.0\share\gimp\2.0\patterns\cracked.pat
[2008.05.08 16:50:24 | 000,114,533 | ---- | M] () -- \Program Files (x86)\Inkscape\python\Lib\site-packages\numpy\f2py\crackfortran.py
[2008.05.08 16:50:24 | 000,080,591 | ---- | M] () -- \Program Files (x86)\Inkscape\python\Lib\site-packages\numpy\f2py\crackfortran.pyc
[2008.05.08 16:50:24 | 000,080,434 | ---- | M] () -- \Program Files (x86)\Inkscape\python\Lib\site-packages\numpy\f2py\crackfortran.pyo
[2011.10.24 14:14:18 | 000,004,328 | ---- | M] () -- \Program Files (x86)\JDownloader\jd\plugins\hoster\CrackedCom.class
[2012.02.24 14:50:49 | 000,067,756 | ---- | M] () -- \Program Files (x86)\Steam\steamapps\steve8_4@yahoo.com\counter-strike\cstrike_czech\sound\misc\cracker1.wav
[2012.03.17 06:27:07 | 000,000,354 | ---- | M] () -- \Users\opopop\AppData\Local\Opera\Opera\icons\http%3A%2F%2Fwww.crackbox.org%2Ffavicon.png
[2011.08.30 19:45:54 | 000,000,776 | ---- | M] () -- \Users\opopop\AppData\Local\Opera\OperaNext\icons\http%3A%2F%2Fwww.downloadserialcrack.com%2Ffavicon.png
[2009.07.15 20:22:53 | 000,579,622 | ---- | M] () -- \Users\opopop\Desktop\Programy\.123.Flash.Menu.v4.1.5.1400.Cracked-F4CG\crack.zip
[2011.11.26 21:57:48 | 004,369,969 | ---- | M] () -- \Users\opopop\Desktop\Programy\Artisteer.3.0.0.45570\Lz0\cracked.rar
[2009.07.26 13:19:12 | 001,162,088 | ---- | M] () -- \Users\opopop\Desktop\Programy\Windows 7 Genuine\Windows_7_Genuine\W7democrack.wmv
[2012.02.07 17:48:06 | 000,001,866 | ---- | M] () -- \Users\opopop\Downloads\Adobe-Photoshop-CS5-Extended-(Crack-+-Instructions).zip
[2012.02.07 17:53:24 | 001,420,976 | ---- | M] () -- \Users\opopop\Downloads\Crack And Serial PS CS5.1 Extended (32-64 Bit).rar
[2012.02.07 17:35:45 | 000,315,616 | ---- | M] () -- \Users\opopop\Downloads\Crack-for-Photoshop-CS5.rar
< *keygen* /s >
[2010.04.01 21:41:02 | 000,013,367 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Dreamweaver CS5\configuration\Content\Reference\HTML\KEYGEN.html
[2009.07.24 21:40:02 | 000,235,008 | ---- | M] () -- \Program Files (x86)\Foxit Software\Foxit Reader\Foxit.Reader.Keygen-CORE.exe
[2008.01.05 19:15:42 | 000,335,872 | ---- | M] () -- \Program Files (x86)\Garmin\POI\Keygen - modded for Travel Guide ONLY.exe
[2012.07.22 15:39:53 | 000,198,660 | ---- | M] () -- \ProgramData\Lavasoft\Ad-Aware\Quarantine\keygen.exe.98f5ed96bfdbb3137941c2efa43a3f.e04bb1ac3a813fe12c3d3995c4f05224.aawqff
[2012.07.22 15:39:53 | 000,198,660 | ---- | M] () -- \Users\All Users\Lavasoft\Ad-Aware\Quarantine\keygen.exe.98f5ed96bfdbb3137941c2efa43a3f.e04bb1ac3a813fe12c3d3995c4f05224.aawqff
[2012.07.19 23:18:28 | 000,000,613 | ---- | M] () -- \Users\opopop\AppData\Roaming\Microsoft\Windows\Recent\SnagIt.v11.0.0.207.Incl.Keygen-MESMERiZE.lnk
[2010.09.30 14:11:40 | 000,000,539 | ---- | M] () -- \Users\opopop\AppData\Roaming\uTorrent\FIFA11 Keygen.torrent
[2012.07.08 13:24:57 | 066,293,055 | ---- | M] () -- \Users\opopop\Desktop\SnagIt.v11.0.0.207.Incl.Keygen-MESMERiZE.zip
Restore point Set: OTL Restore Point
NetSvcs:64bit: AppMgmt - C:\Windows\SysNative\appmgmts.dll (Microsoft Corporation)
Drivers32:64bit: msacm.bdmpeg - bdmpega64.acm ()
Drivers32:64bit: msacm.l3acm - C:\Windows\System32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32:64bit: VIDC.FPS1 - frapsv64.dll (Beepa P/L)
Drivers32:64bit: vidc.mjpg - bdmjpeg64.dll ()
Drivers32:64bit: vidc.mpeg - bdmpegv64.dll ()
Drivers32: msacm.ac3filter - C:\Windows\SysWow64\ac3filter.acm ()
Drivers32: msacm.avis - C:\Windows\SysWow64\ff_acm.acm ()
Drivers32: msacm.bdmpeg - C:\Windows\SysWow64\bdmpega.acm ()
Drivers32: msacm.l3acm - C:\Windows\SysWOW64\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.l3codec - C:\Windows\SysWow64\l3codecp.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.lhacm - C:\Windows\SysWow64\lhacm.acm (Microsoft Corporation)
Drivers32: vidc.cvid - C:\Windows\SysWow64\iccvid.dll (Radius Inc.)
Drivers32: vidc.DIVX - C:\Windows\SysWow64\DivX.dll (DivX, Inc.)
Drivers32: VIDC.FFDS - C:\Program Files (x86)\Combined Community Codec Pack\Filters\FFDShow\ff_vfw.dll ()
Drivers32: VIDC.FPS1 - C:\Windows\SysWow64\frapsvid.dll (Beepa P/L)
Drivers32: vidc.mjpg - C:\Windows\SysWow64\bdmjpeg.dll ()
Drivers32: vidc.mpeg - C:\Windows\SysWow64\bdmpegv.dll ()
Drivers32: vidc.tscc - C:\Windows\SysWow64\tsccvid.dll (TechSmith Corporation)
Drivers32: vidc.XVID - C:\Windows\SysWow64\xvidvfw.dll ()
Drivers32: vidc.yv12 - C:\Windows\SysWow64\DivX.dll (DivX, Inc.)
PhysicalDisk0 MBR saved to C:\PhysicalMBR.bin
========== Files/Folders - Created Within 7 Days ==========
[2012.07.25 20:55:59 | 000,596,480 | ---- | C] (OldTimer Tools) -- C:\Users\opopop\Desktop\OTL.exe
[2012.07.25 20:32:03 | 000,000,000 | ---D | C] -- C:\Program Files\trend micro
[2012.07.25 20:32:02 | 000,000,000 | ---D | C] -- C:\rsit
[2012.07.25 20:18:56 | 000,050,392 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\sxiszkln.sys
[2012.07.25 20:18:56 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\MpEngineStore
[2012.07.25 20:00:59 | 072,854,560 | ---- | C] (Microsoft Corporation) -- C:\Users\opopop\Desktop\msert.exe
[2012.07.24 22:52:28 | 000,000,000 | -H-D | C] -- C:\Users\opopop\Desktop\.picasaoriginals
[2012.07.19 14:49:30 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\SecondLifeViewer
[2012.07.19 13:30:38 | 000,000,000 | ---D | C] -- C:\Users\opopop\AppData\Local\{25516E81-DCD3-41BC-8563-2E47DCA9FB37}
[2012.07.19 13:30:15 | 000,000,000 | ---D | C] -- C:\Users\opopop\AppData\Local\{B0CEEFEB-65F0-4673-B250-1FC4601D9D79}
[2012.07.19 12:45:43 | 000,000,000 | ---D | C] -- C:\Users\opopop\AppData\Roaming\BANDISOFT
[2012.07.19 12:45:39 | 000,000,000 | ---D | C] -- C:\Users\opopop\Documents\Bandicam
[2012.07.19 12:45:33 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\BandiMPEG1
[2012.07.19 12:07:29 | 000,000,000 | ---D | C] -- C:\Users\opopop\AppData\Roaming\.techniclauncher
[2009.09.13 15:56:01 | 000,082,816 | ---- | C] (VSO Software) -- C:\Users\opopop\AppData\Roaming\pcouffin.sys
[6 C:\ProgramData\*.tmp files -> C:\ProgramData\*.tmp -> ]
[6 C:\ProgramData\*.tmp files -> C:\ProgramData\*.tmp -> ]
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
========== Files - Modified Within 7 Days ==========
[2012.07.25 21:02:36 | 000,000,512 | ---- | M] () -- C:\PhysicalMBR.bin
[2012.07.25 20:55:59 | 000,596,480 | ---- | M] (OldTimer Tools) -- C:\Users\opopop\Desktop\OTL.exe
[2012.07.25 20:31:19 | 000,935,175 | ---- | M] () -- C:\Users\opopop\Desktop\RSITx64.exe
[2012.07.25 20:18:56 | 000,050,392 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\sxiszkln.sys
[2012.07.25 20:13:00 | 000,000,914 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2012.07.25 20:03:05 | 072,854,560 | ---- | M] (Microsoft Corporation) -- C:\Users\opopop\Desktop\msert.exe
[2012.07.25 18:04:04 | 000,014,016 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2012.07.25 18:04:04 | 000,014,016 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2012.07.25 18:02:51 | 102,141,859 | ---- | M] () -- C:\Windows\SysNative\drivers\AVG\incavi.avm
[2012.07.25 17:59:00 | 000,000,202 | ---- | M] () -- C:\Windows\tasks\AutoKMS.job
[2012.07.25 17:58:57 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2012.07.25 17:58:55 | 3220,037,632 | -HS- | M] () -- C:\hiberfil.sys
[2012.07.25 08:52:02 | 000,000,064 | ---- | M] () -- C:\Windows\SysWow64\rp_stats.dat
[2012.07.25 08:52:02 | 000,000,044 | ---- | M] () -- C:\Windows\SysWow64\rp_rules.dat
[2012.07.24 22:52:28 | 000,351,229 | ---- | M] () -- C:\Users\opopop\Desktop\CAM_0023.jpg
[2012.07.24 16:44:29 | 000,116,962 | ---- | M] () -- C:\Users\opopop\Desktop\Zivanice_0122.jpg
[2012.07.19 23:23:57 | 000,001,069 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
[2012.07.19 23:11:35 | 000,007,624 | ---- | M] () -- C:\Users\opopop\AppData\Local\resmon.resmoncfg
[6 C:\ProgramData\*.tmp files -> C:\ProgramData\*.tmp -> ]
[6 C:\ProgramData\*.tmp files -> C:\ProgramData\*.tmp -> ]
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
========== Files Created - No Company Name ==========
[2012.07.25 21:02:36 | 000,000,512 | ---- | C] () -- C:\PhysicalMBR.bin
[2012.07.25 20:31:19 | 000,935,175 | ---- | C] () -- C:\Users\opopop\Desktop\RSITx64.exe
[2012.07.24 22:52:28 | 000,351,229 | ---- | C] () -- C:\Users\opopop\Desktop\CAM_0023.jpg
[2012.07.24 16:44:29 | 000,116,962 | ---- | C] () -- C:\Users\opopop\Desktop\Zivanice_0122.jpg
[2012.07.22 15:39:54 | 000,016,432 | ---- | C] () -- C:\Windows\SysNative\lsdelete.exe
[2012.06.20 15:33:39 | 000,000,064 | ---- | C] () -- C:\Windows\SysWow64\rp_stats.dat
[2012.06.20 15:33:39 | 000,000,044 | ---- | C] () -- C:\Windows\SysWow64\rp_rules.dat
[2012.05.09 14:25:27 | 000,000,046 | ---- | C] () -- C:\Users\opopop\AppData\Roaming\mbam.context.scan
[2012.03.29 20:15:42 | 000,000,023 | ---- | C] () -- C:\Users\opopop\AppData\Roaming\815AF6.dat
[2012.02.26 14:00:37 | 000,584,584 | ---- | C] () -- C:\Windows\adb.exe
[2012.02.26 14:00:37 | 000,001,623 | ---- | C] () -- C:\Windows\InnoTipLanguage.ini
[2012.02.18 02:10:59 | 000,608,256 | ---- | C] () -- C:\Users\opopop\AppData\Roaming\chrtmp
[2012.02.12 10:35:57 | 000,000,132 | ---- | C] () -- C:\Users\opopop\AppData\Roaming\Adobe Formát PNG CS5 – předvolby
[2012.02.08 21:18:45 | 000,000,132 | ---- | C] () -- C:\Users\opopop\AppData\Roaming\Adobe PNG Format CS5 Prefs
[2011.12.13 12:48:38 | 000,000,000 | ---- | C] () -- C:\Users\opopop\AppData\Local\{52AA8F3D-5822-4539-BA36-5113BAD5C010}
[2011.09.19 09:07:46 | 000,015,360 | ---- | C] () -- C:\Windows\SysWow64\bdmjpeg.dll
[2011.09.19 09:07:32 | 000,058,368 | ---- | C] () -- C:\Windows\SysWow64\bdmpegv.dll
[2011.08.29 22:22:17 | 000,001,497 | ---- | C] () -- C:\Users\opopop\.recently-used.xbel
[2011.08.07 15:34:27 | 000,000,184 | ---- | C] () -- C:\Windows\AutoKMS.ini
[2011.07.30 11:51:07 | 000,000,103 | ---- | C] () -- C:\Windows\pro.INI
[2011.06.25 08:48:50 | 000,000,000 | ---- | C] () -- C:\Users\opopop\AppData\Local\{47E2818C-BBAC-4CE9-87C4-03D22BB103EE}
[2011.04.09 18:55:28 | 000,179,261 | ---- | C] () -- C:\Windows\SysWow64\xlive.dll.cat
[2011.03.08 07:27:14 | 000,098,304 | ---- | C] () -- C:\Windows\SysWow64\NtDirect.dll
[2010.12.29 02:23:14 | 000,079,360 | ---- | C] () -- C:\Windows\SysWow64\ff_vfw.dll
[2010.11.29 19:19:15 | 000,432,836 | ---- | C] () -- C:\Users\opopop\AppData\Local\SRDownloader.err
[2010.11.29 19:17:38 | 000,001,376 | ---- | C] () -- C:\Users\opopop\AppData\Local\SRDownloader.nast
[2010.10.25 17:21:58 | 000,000,129 | ---- | C] () -- C:\Users\opopop\jagex_runescape_preferences2.dat
[2010.10.25 17:20:35 | 000,000,046 | ---- | C] () -- C:\Users\opopop\jagex_runescape_preferences.dat
[2010.07.01 10:09:12 | 000,000,056 | -H-- | C] () -- C:\ProgramData\ezsidmv.dat
[2010.02.10 22:01:56 | 000,000,760 | ---- | C] () -- C:\Users\opopop\AppData\Roaming\setup_ldm.iss
[2010.01.26 07:20:26 | 000,007,624 | ---- | C] () -- C:\Users\opopop\AppData\Local\resmon.resmoncfg
[2009.12.28 14:30:24 | 000,000,033 | ---- | C] () -- C:\Users\opopop\AppData\Local\rssbuilder.ftpconfig
[2009.12.28 14:26:16 | 000,000,122 | ---- | C] () -- C:\Users\opopop\AppData\Local\rssbuilder.config
[2009.12.27 17:16:33 | 000,000,397 | ---- | C] () -- C:\Users\opopop\.jalbum-ftp-accounts.xml
[2009.12.01 13:18:26 | 000,024,064 | ---- | C] () -- C:\Users\opopop\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2009.11.01 17:44:40 | 000,000,255 | ---- | C] () -- C:\Users\opopop\.jalbum-recent-projects.properties
[2009.11.01 17:40:26 | 000,000,907 | ---- | C] () -- C:\Users\opopop\.jalbum-defaults.jap
[2009.09.17 18:27:32 | 000,000,000 | ---- | C] () -- C:\ProgramData\LauncherAccess.dt
[2009.09.13 15:56:32 | 000,001,041 | ---- | C] () -- C:\Users\opopop\AppData\Roaming\vso_ts_preview.xml
[2009.09.13 15:56:01 | 000,099,384 | ---- | C] () -- C:\Users\opopop\AppData\Roaming\inst.exe
[2009.09.13 15:56:01 | 000,007,859 | ---- | C] () -- C:\Users\opopop\AppData\Roaming\pcouffin.cat
[2009.09.13 15:56:01 | 000,001,167 | ---- | C] () -- C:\Users\opopop\AppData\Roaming\pcouffin.inf
[2002.08.29 18:33:56 | 000,319,488 | R--- | C] () -- C:\Users\opopop\AppData\Roaming\MafiaSetup.exe
========== LOP Check ==========
[2012.07.23 10:41:35 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\.minecraft
[2011.03.04 01:51:33 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\.purple
[2012.07.19 12:11:04 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\.techniclauncher
[2009.12.01 13:07:43 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\Apowersoft
[2010.11.28 15:54:29 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\Artisteer
[2009.09.05 16:55:16 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\Ashampoo
[2012.04.14 19:19:27 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\AVG2012
[2012.07.19 12:45:43 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\BANDISOFT
[2011.01.16 13:37:08 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\BetdaqAssistant.389FD738CB3FAA05327C60BCB3256FB4301F5711.1
[2009.08.28 18:35:16 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\Betting Assistant
[2011.07.08 16:03:05 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\Blueberry
[2010.02.04 23:07:32 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\Canneverbe Limited
[2012.02.06 02:50:51 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1
[2012.01.16 20:18:19 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\com.adobe.downloadassistant.AdobeDownloadAssistant
[2010.09.02 16:59:44 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\ct24crawl
[2012.06.30 12:48:44 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\DAEMON Tools Lite
[2012.02.24 01:18:50 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\DAEMON Tools Pro
[2012.02.04 00:57:21 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\Dexpot
[2012.07.25 18:00:31 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\Dropbox
[2012.07.25 18:04:31 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\eM Client
[2011.03.13 13:20:16 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\FileZilla
[2009.09.05 09:26:11 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\Foxit
[2011.02.25 17:41:05 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\Foxit Software
[2009.12.06 17:13:34 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\GARMIN
[2011.11.30 16:27:18 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\GetRightToGo
[2009.12.26 01:32:02 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\GHISLER
[2011.06.01 16:01:46 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\Gruss Software
[2011.08.29 22:22:18 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\gtk-2.0
[2009.11.04 23:05:46 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\HEXelon
[2012.01.18 17:31:54 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\HLSW
[2011.04.23 19:59:05 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\ICQ
[2011.06.19 11:05:46 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\Imagine
[2009.11.02 09:40:07 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\Inkscape
[2009.11.08 15:53:14 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\IrfanView
[2011.06.19 10:46:27 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\JAlbum
[2011.12.28 22:10:01 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\LangSoft
[2009.10.03 21:14:33 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\Leadertech
[2010.05.15 18:07:38 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\LG Electronics
[2011.09.12 13:42:50 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\LolClient
[2012.01.09 23:35:08 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\MOBILedit
[2012.05.07 12:00:37 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\Mumble
[2011.02.20 17:24:48 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\Notepad++
[2010.04.04 23:15:30 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\Octoshape
[2012.07.25 20:18:56 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\OpenCandy
[2012.06.09 05:57:03 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\Opera
[2011.02.12 11:15:02 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\PMS
[2011.12.14 08:56:45 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\Publish Providers
[2011.09.10 02:45:35 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\Samsung
[2012.07.19 14:51:50 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\SecondLife
[2011.07.21 14:08:51 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\SFBot
[2012.05.06 10:55:49 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\Sony
[2010.02.21 18:15:16 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\Stardock
[2012.02.08 14:57:06 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\TeamViewer
[2009.12.20 22:19:07 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\TennisNavigator
[2010.05.28 21:34:37 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\Thunderbird
[2012.06.30 12:48:44 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\TS3Client
[2011.01.15 12:02:09 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\Unity
[2011.01.28 19:17:35 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\uTorrent
[2011.07.19 01:25:40 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\VideoReDo-TVSuite4
[2009.09.29 18:44:44 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\VitySoft
[2012.02.24 01:18:50 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\Vso
[2011.01.29 22:20:10 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\Win7codecs
[2011.02.19 01:59:27 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\WinAVI
[2010.06.13 13:40:38 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\XnView
[2012.07.25 17:59:00 | 000,000,202 | ---- | M] () -- C:\Windows\Tasks\AutoKMS.job
[2012.07.17 07:05:00 | 000,000,202 | ---- | M] () -- C:\Windows\Tasks\AutoKMSDaily.job
[2012.05.19 09:18:27 | 000,032,586 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT
========== Purity Check ==========
========== Custom Scans ==========
< >
< >
< MD5 for: ATAPI.SYS >
[2009.07.14 03:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\SysNative\drivers\atapi.sys
[2009.07.14 03:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\SysNative\DriverStore\FileRepository\mshdc.inf_amd64_neutral_a69a58a4286f0b22\atapi.sys
[2009.07.14 03:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\winsxs\amd64_mshdc.inf_31bf3856ad364e35_6.1.7600.16385_none_392d19c13b3ad543\atapi.sys
< MD5 for: AUTOCHK.EXE >
[2009.07.14 03:14:12 | 000,668,160 | ---- | M] (Microsoft Corporation) MD5=41E4C8EBA464E7D6A5BA5E8827732AEB -- C:\Windows\SysWOW64\autochk.exe
[2009.07.14 03:14:12 | 000,668,160 | ---- | M] (Microsoft Corporation) MD5=41E4C8EBA464E7D6A5BA5E8827732AEB -- C:\Windows\winsxs\x86_microsoft-windows-autochk_31bf3856ad364e35_6.1.7600.16385_none_e1ca436d2314b860\autochk.exe
[2009.07.14 03:38:56 | 000,777,728 | ---- | M] (Microsoft Corporation) MD5=8B7F8E882A649D81CEA1EDE9BBB68FFF -- C:\Windows\SysNative\autochk.exe
[2009.07.14 03:38:56 | 000,777,728 | ---- | M] (Microsoft Corporation) MD5=8B7F8E882A649D81CEA1EDE9BBB68FFF -- C:\Windows\winsxs\amd64_microsoft-windows-autochk_31bf3856ad364e35_6.1.7600.16385_none_3de8def0db722996\autochk.exe
< MD5 for: CDROM.SYS >
[2009.07.14 01:19:54 | 000,147,456 | ---- | M] (Microsoft Corporation) MD5=83D2D75E1EFB81B3450C18131443F7DB -- C:\Windows\SysNative\drivers\cdrom.sys
[2009.07.14 01:19:54 | 000,147,456 | ---- | M] (Microsoft Corporation) MD5=83D2D75E1EFB81B3450C18131443F7DB -- C:\Windows\SysNative\DriverStore\FileRepository\cdrom.inf_amd64_neutral_8363d00ecae4322d\cdrom.sys
[2009.07.14 01:19:54 | 000,147,456 | ---- | M] (Microsoft Corporation) MD5=83D2D75E1EFB81B3450C18131443F7DB -- C:\Windows\winsxs\amd64_cdrom.inf_31bf3856ad364e35_6.1.7600.16385_none_bb9e4d89bd7870f1\cdrom.sys
< MD5 for: EXPLORER.EXE >
[2009.07.14 03:14:20 | 002,613,248 | ---- | M] (Microsoft Corporation) MD5=15BC38A7492BEFE831966ADB477CF76F -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16385_none_b7fe430bc7ce3761\explorer.exe
[2009.10.31 07:45:39 | 002,614,272 | ---- | M] (Microsoft Corporation) MD5=2626FC9755BE22F805D3CFA0CE3EE727 -- C:\Windows\SysWOW64\explorer.exe
[2009.10.31 07:45:39 | 002,614,272 | ---- | M] (Microsoft Corporation) MD5=2626FC9755BE22F805D3CFA0CE3EE727 -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16450_none_b819b343c7ba6202\explorer.exe
[2009.08.03 08:19:07 | 002,868,224 | ---- | M] (Microsoft Corporation) MD5=700073016DAC1C3D2E7E2CE4223334B6 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20500_none_ae84b558ac4eb41c\explorer.exe
[2009.10.31 08:34:59 | 002,870,272 | ---- | M] (Microsoft Corporation) MD5=9AAAEC8DAC27AA17B053E6352AD233AE -- C:\Windows\explorer.exe
[2009.10.31 08:34:59 | 002,870,272 | ---- | M] (Microsoft Corporation) MD5=9AAAEC8DAC27AA17B053E6352AD233AE -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16450_none_adc508f19359a007\explorer.exe
[2009.08.03 07:49:47 | 002,613,248 | ---- | M] (Microsoft Corporation) MD5=9FF6C4C91A3711C0A3B18F87B08B518D -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20500_none_b8d95faae0af7617\explorer.exe
[2009.10.31 08:38:38 | 002,870,272 | ---- | M] (Microsoft Corporation) MD5=B8EC4BD49CE8F6FC457721BFC210B67F -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20563_none_ae46d6aeac7ca7c7\explorer.exe
[2009.08.03 07:35:50 | 002,613,248 | ---- | M] (Microsoft Corporation) MD5=B95EEB0F4E5EFBF1038A35B3351CF047 -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16404_none_b853c407c78e3ba9\explorer.exe
[2009.07.14 03:39:10 | 002,868,224 | ---- | M] (Microsoft Corporation) MD5=C235A51CB740E45FFA0EBFB9BAFCDA64 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16385_none_ada998b9936d7566\explorer.exe
[2009.10.31 08:00:51 | 002,614,272 | ---- | M] (Microsoft Corporation) MD5=C76153C7ECA00FA852BB0C193378F917 -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20563_none_b89b8100e0dd69c2\explorer.exe
[2009.08.03 08:17:37 | 002,868,224 | ---- | M] (Microsoft Corporation) MD5=F170B4A061C9E026437B193B4D571799 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16404_none_adff19b5932d79ae\explorer.exe
< MD5 for: HAL.DLL >
[2009.07.14 03:47:48 | 000,263,232 | ---- | M] (Microsoft Corporation) MD5=C0A6F6E05E14FBCAEDE7796C8590B7AC -- C:\Windows\SysNative\hal.dll
[2009.07.14 03:47:48 | 000,263,232 | ---- | M] (Microsoft Corporation) MD5=C0A6F6E05E14FBCAEDE7796C8590B7AC -- C:\Windows\winsxs\amd64_microsoft-windows-hal_31bf3856ad364e35_6.1.7600.16385_none_071de44b735b3dfc\hal.dll
< MD5 for: SCECLI.DLL >
[2009.07.14 03:16:13 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=26073302DAEA83CC5B944C546D6B47D2 -- C:\Windows\SysWOW64\scecli.dll
[2009.07.14 03:16:13 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=26073302DAEA83CC5B944C546D6B47D2 -- C:\Windows\winsxs\wow64_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7600.16385_none_9e577e55272d37b4\scecli.dll
[2009.07.14 03:41:53 | 000,232,448 | ---- | M] (Microsoft Corporation) MD5=398712DDDAEFB85EDF61DF6A07B65C79 -- C:\Windows\SysNative\scecli.dll
[2009.07.14 03:41:53 | 000,232,448 | ---- | M] (Microsoft Corporation) MD5=398712DDDAEFB85EDF61DF6A07B65C79 -- C:\Windows\winsxs\amd64_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7600.16385_none_9402d402f2cc75b9\scecli.dll
< MD5 for: SVCHOST.EXE >
[2009.07.14 03:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\SysWOW64\svchost.exe
[2009.07.14 03:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\winsxs\x86_microsoft-windows-services-svchost_31bf3856ad364e35_6.1.7600.16385_none_b591afc466a15356\svchost.exe
[2012.07.03 13:46:42 | 000,217,672 | ---- | M] () MD5=8A7F34F0BBD076EC3815680A7309114F -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\Chameleon\svchost.exe
[2009.07.14 03:39:46 | 000,027,136 | ---- | M] (Microsoft Corporation) MD5=C78655BC80301D76ED4FEF1C1EA40A7D -- C:\Windows\SysNative\svchost.exe
[2009.07.14 03:39:46 | 000,027,136 | ---- | M] (Microsoft Corporation) MD5=C78655BC80301D76ED4FEF1C1EA40A7D -- C:\Windows\winsxs\amd64_microsoft-windows-services-svchost_31bf3856ad364e35_6.1.7600.16385_none_11b04b481efec48c\svchost.exe
< MD5 for: TCPIP.SYS >
[2010.06.14 08:39:16 | 001,889,152 | ---- | M] (Microsoft Corporation) MD5=542C6767C68C9D6AAACA59436B0D15C2 -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.20733_none_0fd0b57e990e2079\tcpip.sys
[2010.06.14 08:37:36 | 001,896,832 | ---- | M] (Microsoft Corporation) MD5=90A2D722CF64D911879D6C4A4F802A4D -- C:\Windows\SysNative\drivers\tcpip.sys
[2010.06.14 08:37:36 | 001,896,832 | ---- | M] (Microsoft Corporation) MD5=90A2D722CF64D911879D6C4A4F802A4D -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.16610_none_0f59b7ad7fe2fcc8\tcpip.sys
[2009.07.14 03:45:55 | 001,898,576 | ---- | M] (Microsoft Corporation) MD5=912107716BAB424C7870E8E6AF5E07E1 -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.16385_none_0f1303f98017479d\tcpip.sys
< MD5 for: USERINIT.EXE >
[2009.07.14 03:14:43 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=6DE80F60D7DE9CE6B8C2DDFDF79EF175 -- C:\Windows\SysWOW64\userinit.exe
[2009.07.14 03:14:43 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=6DE80F60D7DE9CE6B8C2DDFDF79EF175 -- C:\Windows\winsxs\x86_microsoft-windows-userinit_31bf3856ad364e35_6.1.7600.16385_none_dbff103933038d7c\userinit.exe
[2009.07.14 03:39:48 | 000,030,208 | ---- | M] (Microsoft Corporation) MD5=6F8F1376A13114CC10C0E69274F5A4DE -- C:\Windows\SysNative\userinit.exe
[2009.07.14 03:39:48 | 000,030,208 | ---- | M] (Microsoft Corporation) MD5=6F8F1376A13114CC10C0E69274F5A4DE -- C:\Windows\winsxs\amd64_microsoft-windows-userinit_31bf3856ad364e35_6.1.7600.16385_none_381dabbceb60feb2\userinit.exe
< MD5 for: WINLOGON.EXE >
[2009.07.14 03:39:52 | 000,389,120 | ---- | M] (Microsoft Corporation) MD5=132328DF455B0028F13BF0ABEE51A63A -- C:\Windows\winsxs\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7600.16385_none_cbb7f2bdeea2829c\winlogon.exe
[2012.07.03 13:46:42 | 000,217,672 | ---- | M] () MD5=8A7F34F0BBD076EC3815680A7309114F -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\Chameleon\winlogon.exe
[2009.10.28 09:01:57 | 000,389,632 | ---- | M] (Microsoft Corporation) MD5=A93D41A4D4B0D91C072D11DD8AF266DE -- C:\Windows\winsxs\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7600.20560_none_cc522fd507b468f8\winlogon.exe
[2009.10.28 08:24:40 | 000,389,632 | ---- | M] (Microsoft Corporation) MD5=DA3E2A6FA9660CC75B471530CE88453A -- C:\Windows\SysNative\winlogon.exe
[2009.10.28 08:24:40 | 000,389,632 | ---- | M] (Microsoft Corporation) MD5=DA3E2A6FA9660CC75B471530CE88453A -- C:\Windows\winsxs\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7600.16447_none_cbe534e7ee8042ad\winlogon.exe
< >
< %systemroot%*.* /U /s >
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
[1 C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp files -> C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp -> ]
[2 C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\*.tmp files -> C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\*.tmp -> ]
[31 C:\Windows\Installer\*.tmp files -> C:\Windows\Installer\*.tmp -> ]
[1 C:\Windows\System32\spool\drivers\x64\3\*.tmp files -> C:\Windows\System32\spool\drivers\x64\3\*.tmp -> ]
[1 C:\Windows\Temp\*.tmp files -> C:\Windows\Temp\*.tmp -> ]
[1 C:\Windows\twain_32\*.tmp files -> C:\Windows\twain_32\*.tmp -> ]
< %SYSTEMDRIVE%\*.exe >
[2006.11.01 13:05:58 | 000,154,424 | ---- | M] () -- C:\ChVID.exe
[2006.11.01 13:05:58 | 000,154,424 | ---- | M] () -- C:\Volumeid.exe
< %ALLUSERSPROFILE%\Application Data\*. >
< %ALLUSERSPROFILE%\Application Data\*.exe /s >
< %APPDATA%\*. >
[2012.07.23 10:41:35 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\.minecraft
[2011.03.04 01:51:33 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\.purple
[2012.07.19 12:11:04 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\.techniclauncher
[2012.01.28 16:46:59 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\Adobe
[2012.06.22 13:56:20 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\Ahead
[2009.12.01 13:07:43 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\Apowersoft
[2010.11.28 15:54:28 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\Apple Computer
[2010.11.28 15:54:29 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\Artisteer
[2009.09.05 16:55:16 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\Ashampoo
[2009.08.28 18:55:02 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\ATI
[2012.04.14 19:19:27 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\AVG2012
[2012.07.19 12:45:43 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\BANDISOFT
[2011.01.16 13:37:08 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\BetdaqAssistant.389FD738CB3FAA05327C60BCB3256FB4301F5711.1
[2009.08.28 18:35:16 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\Betting Assistant
[2011.07.08 16:03:05 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\Blueberry
[2010.02.04 23:07:32 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\Canneverbe Limited
[2012.02.06 02:50:51 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1
[2012.01.16 20:18:19 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\com.adobe.downloadassistant.AdobeDownloadAssistant
[2009.11.30 07:42:05 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\Creative
[2010.09.02 16:59:44 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\ct24crawl
[2012.06.30 12:48:44 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\DAEMON Tools Lite
[2012.02.24 01:18:50 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\DAEMON Tools Pro
[2012.02.04 00:57:21 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\Dexpot
[2011.02.02 00:56:44 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\DivX
[2012.07.25 18:00:31 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\Dropbox
[2011.10.28 14:35:59 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\dvdcss
[2012.07.25 18:04:31 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\eM Client
[2011.03.13 13:20:16 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\FileZilla
[2009.09.05 09:26:11 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\Foxit
[2011.02.25 17:41:05 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\Foxit Software
[2009.12.06 17:13:34 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\GARMIN
[2011.11.30 16:27:18 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\GetRightToGo
[2009.12.26 01:32:02 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\GHISLER
[2009.11.08 20:16:55 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\Google
[2011.06.01 16:01:46 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\Gruss Software
[2011.08.29 22:22:18 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\gtk-2.0
[2009.11.04 23:05:46 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\HEXelon
[2012.01.18 17:31:54 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\HLSW
[2010.01.23 16:56:57 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\HP
[2012.01.24 18:09:28 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\HpUpdate
[2011.04.23 19:59:05 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\ICQ
[2009.08.28 17:55:22 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\Identities
[2011.06.19 11:05:46 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\Imagine
[2009.11.02 09:40:07 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\Inkscape
[2010.05.15 17:28:56 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\InstallShield
[2009.11.08 15:53:14 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\IrfanView
[2011.06.19 10:46:27 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\JAlbum
[2011.12.28 22:10:01 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\LangSoft
[2009.10.03 21:14:33 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\Leadertech
[2010.05.15 18:07:38 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\LG Electronics
[2010.02.10 22:02:06 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\Logitech
[2011.09.12 13:42:50 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\LolClient
[2009.12.24 17:12:02 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\Macromedia
[2012.03.29 22:19:17 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\Malwarebytes
[2009.07.14 17:36:38 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\Media Center Programs
[2012.01.10 00:06:44 | 000,000,000 | --SD | M] -- C:\Users\opopop\AppData\Roaming\Microsoft
[2012.01.09 23:35:08 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\MOBILedit
[2010.05.28 21:34:38 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\Mozilla
[2012.05.07 12:00:37 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\Mumble
[2011.02.20 17:24:48 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\Notepad++
[2010.04.04 23:15:30 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\Octoshape
[2012.07.25 20:18:56 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\OpenCandy
[2012.06.09 05:57:03 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\Opera
[2011.02.12 11:15:02 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\PMS
[2011.08.02 19:23:18 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\PSpad
[2011.12.14 08:56:45 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\Publish Providers
[2010.03.01 18:17:57 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\Realtime Soft
[2011.09.10 02:45:35 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\Samsung
[2012.07.19 14:51:50 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\SecondLife
[2011.06.16 22:58:09 | 000,000,000 | RH-D | M] -- C:\Users\opopop\AppData\Roaming\SecuROM
[2011.07.21 14:08:51 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\SFBot
[2012.07.23 13:28:25 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\Skype
[2011.06.13 08:40:26 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\skypePM
[2012.04.14 14:38:25 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\SmartFTP
[2012.05.06 10:55:49 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\Sony
[2010.02.21 18:15:16 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\Stardock
[2012.05.27 08:12:32 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\SUPERAntiSpyware.com
[2010.01.02 23:32:32 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\teamspeak2
[2012.02.08 14:57:06 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\TeamViewer
[2009.12.20 22:19:07 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\TennisNavigator
[2010.05.28 21:34:37 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\Thunderbird
[2012.06.30 12:48:44 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\TS3Client
[2011.01.15 12:02:09 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\Unity
[2011.01.28 19:17:35 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\uTorrent
[2012.04.08 23:45:45 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\Ventrilo
[2011.07.19 01:25:40 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\VideoReDo-TVSuite4
[2009.09.29 18:44:44 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\VitySoft
[2012.03.25 16:04:53 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\vlc
[2012.02.24 01:18:50 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\Vso
[2011.01.29 22:20:10 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\Win7codecs
[2011.02.19 01:59:27 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\WinAVI
[2009.08.28 18:27:38 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\WinRAR
[2010.06.13 13:40:38 | 000,000,000 | ---D | M] -- C:\Users\opopop\AppData\Roaming\XnView
< %APPDATA%\*.exe /s >
[2011.01.28 19:07:13 | 000,099,384 | ---- | M] () -- C:\Users\opopop\AppData\Roaming\inst.exe
[2002.08.29 18:33:56 | 000,319,488 | R--- | M] () -- C:\Users\opopop\AppData\Roaming\MafiaSetup.exe
[2012.06.14 04:08:56 | 027,595,032 | ---- | M] (Dropbox, Inc.) -- C:\Users\opopop\AppData\Roaming\Dropbox\bin\Dropbox.exe
[2012.06.14 04:09:00 | 000,874,440 | ---- | M] (Dropbox, Inc.) -- C:\Users\opopop\AppData\Roaming\Dropbox\bin\DropboxUpdateHelper.exe
[2012.06.14 04:09:06 | 000,181,776 | ---- | M] (Dropbox, Inc.) -- C:\Users\opopop\AppData\Roaming\Dropbox\bin\Uninstall.exe
[2011.12.29 14:39:09 | 000,053,632 | ---- | M] (Adobe Systems Inc.) -- C:\Users\opopop\AppData\Roaming\Macromedia\Flash Player\www.macromedia.com\bin\airappinstaller\airappinstaller.exe
[2011.09.22 18:13:37 | 000,016,958 | R--- | M] () -- C:\Users\opopop\AppData\Roaming\Microsoft\Installer\{BC86ABDF-8148-44B3-8105-4AE9DDBFDCB6}\_6FEFF9B68218417F98F549.exe
[2011.09.22 18:13:37 | 000,016,958 | R--- | M] () -- C:\Users\opopop\AppData\Roaming\Microsoft\Installer\{BC86ABDF-8148-44B3-8105-4AE9DDBFDCB6}\_7FA0F4E67BDA4FF5803CC4.exe
[2011.09.22 18:13:37 | 000,016,958 | R--- | M] () -- C:\Users\opopop\AppData\Roaming\Microsoft\Installer\{BC86ABDF-8148-44B3-8105-4AE9DDBFDCB6}\_C6B24F7ED6B16D6CB95442.exe
[2009.12.22 12:57:00 | 000,010,134 | R--- | M] () -- C:\Users\opopop\AppData\Roaming\Microsoft\Installer\{DBC2CFCA-9BAE-45F6-A975-11B57BE01D18}\ARPPRODUCTICON.exe
[2009.12.22 12:57:00 | 000,012,862 | R--- | M] () -- C:\Users\opopop\AppData\Roaming\Microsoft\Installer\{DBC2CFCA-9BAE-45F6-A975-11B57BE01D18}\NewShortcut11_DBC2CFCA9BAE45F6A97511B57BE01D18_1.exe
[2009.12.22 12:57:00 | 000,012,862 | R--- | M] () -- C:\Users\opopop\AppData\Roaming\Microsoft\Installer\{DBC2CFCA-9BAE-45F6-A975-11B57BE01D18}\NewShortcut1_DBC2CFCA9BAE45F6A97511B57BE01D18_1.exe
[2009.12.22 12:57:00 | 000,008,854 | R--- | M] () -- C:\Users\opopop\AppData\Roaming\Microsoft\Installer\{DBC2CFCA-9BAE-45F6-A975-11B57BE01D18}\Uninstall_Sky_Aces_DBC2CFCA9BAE45F6A97511B57BE01D18.exe
[2010.02.20 10:04:01 | 000,010,134 | R--- | M] () -- C:\Users\opopop\AppData\Roaming\Microsoft\Installer\{F022B56C-2B90-B9E1-332E-5C1277A47E7B}\ARPPRODUCTICON.exe
[2008.12.02 08:40:14 | 000,028,672 | R--- | M] () -- C:\Users\opopop\AppData\Roaming\Microsoft\Windows\Templates\J\UnInstallMSI.exe
[2008.12.01 13:29:00 | 000,014,336 | R--- | M] () -- C:\Users\opopop\AppData\Roaming\Microsoft\Windows\Templates\J\UnInstallMSI32.exe
[2008.12.01 13:29:00 | 000,016,896 | R--- | M] () -- C:\Users\opopop\AppData\Roaming\Microsoft\Windows\Templates\J\UnInstallMSI64.exe
[2008.11.26 06:57:44 | 000,737,280 | R--- | M] () -- C:\Users\opopop\AppData\Roaming\Microsoft\Windows\Templates\J\USBAutoRun.exe
[2008.11.26 13:59:32 | 006,450,574 | R--- | M] (Macrovision Corporation) -- C:\Users\opopop\AppData\Roaming\Microsoft\Windows\Templates\J\tools\LGInternetKit_V3.0.0.24_Setup.exe
[2009.01.08 15:44:06 | 000,070,936 | ---- | M] (Octoshape ApS) -- C:\Users\opopop\AppData\Roaming\Octoshape\Octoshape Streaming Services\OctoshapeClient.exe
[2011.11.18 06:30:06 | 002,081,208 | ---- | M] (Speedchecker Limited ) -- C:\Users\opopop\AppData\Roaming\OpenCandy\59D65A5D9E344D3BA870F8074A7962BC\pcspeedup_oc.exe
[2010.08.21 01:16:42 | 012,284,672 | ---- | M] (ReviverSoft LLC.) -- C:\Users\opopop\AppData\Roaming\OpenCandy\OpenCandy_B92920F18CDC44ECBCD26F31D55B8901\AFIRegistryReviverSetup.exe
[2010.11.04 20:09:50 | 012,343,104 | ---- | M] () -- C:\Users\opopop\AppData\Roaming\OpenCandy\OpenCandy_B92920F18CDC44ECBCD26F31D55B8901\p1v1_AFIRegistryReviver_w.exe
< %systemroot%\*. /mp /s >
< %systemroot%\system32\*.dll /lockedfiles >
< %systemroot%\Tasks\*.job >
[2012.07.25 21:13:00 | 000,000,914 | ---- | M] () -- C:\Windows\Tasks\Adobe Flash Player Updater.job
[2012.07.25 17:59:00 | 000,000,202 | ---- | M] () -- C:\Windows\Tasks\AutoKMS.job
[2012.07.17 07:05:00 | 000,000,202 | ---- | M] () -- C:\Windows\Tasks\AutoKMSDaily.job
< %systemroot%\system32\drivers\*.sys /lockedfiles >
< %systemroot%\System32\config\*.sav >
< %systemroot%\system32\*.dll /lockedfiles >
< %systemroot%\system32\drivers\*.sys /3 >
< %systemroot%\system32\*.* /3 >
[2012.07.25 08:52:02 | 000,000,044 | ---- | M] () -- C:\Windows\system32\rp_rules.dat
[2012.07.25 08:52:02 | 000,000,064 | ---- | M] () -- C:\Windows\system32\rp_stats.dat
< %SYSTEMDRIVE%\*.exe >
[2006.11.01 13:05:58 | 000,154,424 | ---- | M] () -- C:\ChVID.exe
[2006.11.01 13:05:58 | 000,154,424 | ---- | M] () -- C:\Volumeid.exe
< >
< HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s >
"AMD64 CPU Assistant" =
"OEXPRESS" =
"DAEMON Tools Lite" = "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun -- [2010.04.01 11:16:20 | 000,357,696 | ---- | M] (DT Soft Ltd)
"Clownfish" = "C:\Program Files (x86)\Clownfish\Clownfish.exe" -- [2012.06.21 10:14:40 | 001,097,464 | ---- | M] (Bogdan Sharkov)
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\AdobeUpdater]
"" =
< >
< %PROGRAMFILES%\Mozilla Firefox\firefox.exe /md5 >
< %PROGRAMFILES%\Internet Explorer\iexplore.exe /md5 >
[2010.09.08 06:31:24 | 000,673,040 | ---- | M] (Microsoft Corporation) MD5=61EDBCE47ADF3E52AB0B9F49EE4AEBB8 -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
< %PROGRAMFILES%\Opera\opera.exe /md5 >
[2012.06.14 20:49:36 | 000,874,384 | ---- | M] (Opera Software) MD5=308AB9B6B7BEDF60E458D1B950F5CD80 -- C:\Program Files (x86)\Opera\opera.exe
< %PROGRAMFILES%\Google\Chrome\Application\chrome.exe /md5 >
< >
< %SystemDrive%\PhysicalMBR.bin /md5 >
[2012.07.25 21:02:36 | 000,000,512 | ---- | M] () MD5=90B9020190BD282AA278FDF67664AF56 -- C:\PhysicalMBR.bin
< >
< *crack* /s >
[2010.04.01 21:41:16 | 000,003,556 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Dreamweaver CS5\configuration\Content\Reference\PHP\CrackF.html
[2010.08.06 23:23:48 | 000,000,403 | ---- | M] () -- \Program Files (x86)\Amnesia\sounds\11\11_glass_crack.snt
[2010.08.06 23:23:48 | 000,020,362 | ---- | M] () -- \Program Files (x86)\Amnesia\sounds\11\11_glass_crack01.ogg
[2010.08.06 23:23:48 | 000,020,539 | ---- | M] () -- \Program Files (x86)\Amnesia\sounds\11\11_glass_crack02.ogg
[2010.08.06 23:23:48 | 000,019,081 | ---- | M] () -- \Program Files (x86)\Amnesia\sounds\11\11_glass_crack03.ogg
[2010.08.07 00:00:56 | 000,013,009 | ---- | M] () -- \Program Files (x86)\Amnesia\static_objects\castlebase\ceiling\corridor_crack.dae
[2010.08.27 07:33:12 | 000,014,477 | ---- | M] () -- \Program Files (x86)\Amnesia\static_objects\castlebase\ceiling\corridor_crack.msh
[2010.08.06 23:50:20 | 000,094,462 | ---- | M] () -- \Program Files (x86)\Amnesia\static_objects\cellarbase\special\cracked_ceiling.dae
[2010.08.27 07:33:24 | 000,065,436 | ---- | M] () -- \Program Files (x86)\Amnesia\static_objects\cellarbase\special\cracked_ceiling.msh
[2010.08.06 23:50:02 | 000,349,680 | ---- | M] () -- \Program Files (x86)\Amnesia\static_objects\decals\cracks_blue.dds
[2010.08.06 23:50:02 | 000,000,932 | ---- | M] () -- \Program Files (x86)\Amnesia\static_objects\decals\cracks_blue.mat
[2010.08.06 23:50:02 | 000,016,101 | ---- | M] () -- \Program Files (x86)\Amnesia\static_objects\decals\cracks_blue01.dae
[2010.08.27 07:33:34 | 000,001,220 | ---- | M] () -- \Program Files (x86)\Amnesia\static_objects\decals\cracks_blue01.msh
[2010.08.06 23:50:04 | 000,016,053 | ---- | M] () -- \Program Files (x86)\Amnesia\static_objects\decals\cracks_blue02.dae
[2010.08.27 07:33:34 | 000,001,220 | ---- | M] () -- \Program Files (x86)\Amnesia\static_objects\decals\cracks_blue02.msh
[2010.08.06 23:50:02 | 000,016,053 | ---- | M] () -- \Program Files (x86)\Amnesia\static_objects\decals\cracks_blue03.dae
[2010.08.27 07:33:34 | 000,001,220 | ---- | M] () -- \Program Files (x86)\Amnesia\static_objects\decals\cracks_blue03.msh
[2010.08.06 23:50:04 | 000,016,053 | ---- | M] () -- \Program Files (x86)\Amnesia\static_objects\decals\cracks_blue04.dae
[2010.08.27 07:33:34 | 000,001,220 | ---- | M] () -- \Program Files (x86)\Amnesia\static_objects\decals\cracks_blue04.msh
[2010.08.06 23:50:04 | 000,349,680 | ---- | M] () -- \Program Files (x86)\Amnesia\static_objects\decals\cracks_blue_back.dds
[2010.08.06 23:50:04 | 000,000,410 | ---- | M] () -- \Program Files (x86)\Amnesia\static_objects\decals\cracks_blue_back.mat
[2010.08.06 23:50:02 | 000,349,680 | ---- | M] () -- \Program Files (x86)\Amnesia\static_objects\decals\cracks_brown.dds
[2010.08.06 23:50:02 | 000,000,933 | ---- | M] () -- \Program Files (x86)\Amnesia\static_objects\decals\cracks_brown.mat
[2010.08.06 23:50:02 | 000,016,057 | ---- | M] () -- \Program Files (x86)\Amnesia\static_objects\decals\cracks_brown01.dae
[2010.08.27 07:33:34 | 000,001,222 | ---- | M] () -- \Program Files (x86)\Amnesia\static_objects\decals\cracks_brown01.msh
[2010.08.06 23:50:04 | 000,016,057 | ---- | M] () -- \Program Files (x86)\Amnesia\static_objects\decals\cracks_brown02.dae
[2010.08.27 07:33:34 | 000,001,222 | ---- | M] () -- \Program Files (x86)\Amnesia\static_objects\decals\cracks_brown02.msh
[2010.08.06 23:50:02 | 000,016,057 | ---- | M] () -- \Program Files (x86)\Amnesia\static_objects\decals\cracks_brown03.dae
[2010.08.27 07:33:34 | 000,001,222 | ---- | M] () -- \Program Files (x86)\Amnesia\static_objects\decals\cracks_brown03.msh
[2010.08.06 23:50:04 | 000,016,057 | ---- | M] () -- \Program Files (x86)\Amnesia\static_objects\decals\cracks_brown04.dae
[2010.08.27 07:33:34 | 000,001,222 | ---- | M] () -- \Program Files (x86)\Amnesia\static_objects\decals\cracks_brown04.msh
[2010.08.06 23:50:02 | 000,349,680 | ---- | M] () -- \Program Files (x86)\Amnesia\static_objects\decals\cracks_brown_back.dds
[2010.08.06 23:50:04 | 000,000,409 | ---- | M] () -- \Program Files (x86)\Amnesia\static_objects\decals\cracks_brown_back.mat
[2010.08.06 23:50:02 | 000,349,680 | ---- | M] () -- \Program Files (x86)\Amnesia\static_objects\decals\cracks_nrm.dds
[2010.08.06 23:50:02 | 000,174,904 | ---- | M] () -- \Program Files (x86)\Amnesia\static_objects\decals\cracks_spec.dds
[2010.08.06 23:49:16 | 000,062,915 | ---- | M] () -- \Program Files (x86)\Amnesia\static_objects\dungeonbase\ceiling\default_cracked.dae
[2010.08.27 07:33:40 | 000,037,741 | ---- | M] () -- \Program Files (x86)\Amnesia\static_objects\dungeonbase\ceiling\default_cracked.msh
[2010.08.06 23:48:40 | 000,019,532 | ---- | M] () -- \Program Files (x86)\Amnesia\static_objects\dungeonbase\wall\corridor_graves_cracked.dae
[2010.08.27 07:33:50 | 000,017,545 | ---- | M] () -- \Program Files (x86)\Amnesia\static_objects\dungeonbase\wall\corridor_graves_cracked.msh
[2009.12.19 13:45:08 | 000,003,460 | ---- | M] () -- \Program Files (x86)\Game_Maker8\Sprites\Maze - Platform\wall_block_cracked1.png
[2009.12.19 13:45:08 | 000,003,675 | ---- | M] () -- \Program Files (x86)\Game_Maker8\Sprites\Maze - Platform\wall_block_cracked2.png
[2009.12.19 13:45:08 | 000,004,107 | ---- | M] () -- \Program Files (x86)\Game_Maker8\Sprites\Maze - Platform\wall_block_cracked3.png
[2009.12.19 13:45:08 | 000,003,529 | ---- | M] () -- \Program Files (x86)\Game_Maker8\Sprites\Maze - Platform\wall_block_cracked4.png
[2009.08.14 01:13:44 | 000,062,238 | ---- | M] () -- \Program Files (x86)\GIMP-2.0\share\gimp\2.0\patterns\cracked.pat
[2008.05.08 16:50:24 | 000,114,533 | ---- | M] () -- \Program Files (x86)\Inkscape\python\Lib\site-packages\numpy\f2py\crackfortran.py
[2008.05.08 16:50:24 | 000,080,591 | ---- | M] () -- \Program Files (x86)\Inkscape\python\Lib\site-packages\numpy\f2py\crackfortran.pyc
[2008.05.08 16:50:24 | 000,080,434 | ---- | M] () -- \Program Files (x86)\Inkscape\python\Lib\site-packages\numpy\f2py\crackfortran.pyo
[2011.10.24 14:14:18 | 000,004,328 | ---- | M] () -- \Program Files (x86)\JDownloader\jd\plugins\hoster\CrackedCom.class
[2012.02.24 14:50:49 | 000,067,756 | ---- | M] () -- \Program Files (x86)\Steam\steamapps\steve8_4@yahoo.com\counter-strike\cstrike_czech\sound\misc\cracker1.wav
[2012.03.17 06:27:07 | 000,000,354 | ---- | M] () -- \Users\opopop\AppData\Local\Opera\Opera\icons\http%3A%2F%2Fwww.crackbox.org%2Ffavicon.png
[2011.08.30 19:45:54 | 000,000,776 | ---- | M] () -- \Users\opopop\AppData\Local\Opera\OperaNext\icons\http%3A%2F%2Fwww.downloadserialcrack.com%2Ffavicon.png
[2009.07.15 20:22:53 | 000,579,622 | ---- | M] () -- \Users\opopop\Desktop\Programy\.123.Flash.Menu.v4.1.5.1400.Cracked-F4CG\crack.zip
[2011.11.26 21:57:48 | 004,369,969 | ---- | M] () -- \Users\opopop\Desktop\Programy\Artisteer.3.0.0.45570\Lz0\cracked.rar
[2009.07.26 13:19:12 | 001,162,088 | ---- | M] () -- \Users\opopop\Desktop\Programy\Windows 7 Genuine\Windows_7_Genuine\W7democrack.wmv
[2012.02.07 17:48:06 | 000,001,866 | ---- | M] () -- \Users\opopop\Downloads\Adobe-Photoshop-CS5-Extended-(Crack-+-Instructions).zip
[2012.02.07 17:53:24 | 001,420,976 | ---- | M] () -- \Users\opopop\Downloads\Crack And Serial PS CS5.1 Extended (32-64 Bit).rar
[2012.02.07 17:35:45 | 000,315,616 | ---- | M] () -- \Users\opopop\Downloads\Crack-for-Photoshop-CS5.rar
< *keygen* /s >
[2010.04.01 21:41:02 | 000,013,367 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Dreamweaver CS5\configuration\Content\Reference\HTML\KEYGEN.html
[2009.07.24 21:40:02 | 000,235,008 | ---- | M] () -- \Program Files (x86)\Foxit Software\Foxit Reader\Foxit.Reader.Keygen-CORE.exe
[2008.01.05 19:15:42 | 000,335,872 | ---- | M] () -- \Program Files (x86)\Garmin\POI\Keygen - modded for Travel Guide ONLY.exe
[2012.07.22 15:39:53 | 000,198,660 | ---- | M] () -- \ProgramData\Lavasoft\Ad-Aware\Quarantine\keygen.exe.98f5ed96bfdbb3137941c2efa43a3f.e04bb1ac3a813fe12c3d3995c4f05224.aawqff
[2012.07.22 15:39:53 | 000,198,660 | ---- | M] () -- \Users\All Users\Lavasoft\Ad-Aware\Quarantine\keygen.exe.98f5ed96bfdbb3137941c2efa43a3f.e04bb1ac3a813fe12c3d3995c4f05224.aawqff
[2012.07.19 23:18:28 | 000,000,613 | ---- | M] () -- \Users\opopop\AppData\Roaming\Microsoft\Windows\Recent\SnagIt.v11.0.0.207.Incl.Keygen-MESMERiZE.lnk
[2010.09.30 14:11:40 | 000,000,539 | ---- | M] () -- \Users\opopop\AppData\Roaming\uTorrent\FIFA11 Keygen.torrent
[2012.07.08 13:24:57 | 066,293,055 | ---- | M] () -- \Users\opopop\Desktop\SnagIt.v11.0.0.207.Incl.Keygen-MESMERiZE.zip
Re: kontrola logu
< *loader* /s >
[2008.08.28 20:34:20 | 004,965,736 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS4\Photodownloader.exe
[2008.08.28 17:42:12 | 000,011,161 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS4\apd\shared_assets\bitmaps\main_window\C_LoadError.png
[2008.08.28 17:42:14 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS4\apd\shared_assets\locales\da_dk\Photodownloader.ini
[2008.08.28 17:42:14 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS4\apd\shared_assets\locales\de_de\Photodownloader.ini
[2008.08.28 17:42:14 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS4\apd\shared_assets\locales\en_us\Photodownloader.ini
[2008.08.28 17:42:14 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS4\apd\shared_assets\locales\es_es\Photodownloader.ini
[2008.08.28 17:42:14 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS4\apd\shared_assets\locales\fi_fi\Photodownloader.ini
[2008.08.28 17:42:14 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS4\apd\shared_assets\locales\fr_fr\Photodownloader.ini
[2008.08.28 17:42:14 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS4\apd\shared_assets\locales\it_it\Photodownloader.ini
[2008.08.28 17:42:14 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS4\apd\shared_assets\locales\ja_jp\Photodownloader.ini
[2008.08.28 17:42:14 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS4\apd\shared_assets\locales\ko_kr\Photodownloader.ini
[2008.08.28 17:42:14 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS4\apd\shared_assets\locales\nl_nl\Photodownloader.ini
[2008.08.28 17:42:14 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS4\apd\shared_assets\locales\no_no\Photodownloader.ini
[2008.08.28 17:42:14 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS4\apd\shared_assets\locales\pt_br\Photodownloader.ini
[2008.08.28 17:42:14 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS4\apd\shared_assets\locales\sv_se\Photodownloader.ini
[2008.08.28 17:42:14 | 000,000,308 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS4\apd\shared_assets\locales\zh_cn\Photodownloader.ini
[2008.08.28 17:42:16 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS4\apd\shared_assets\locales\zh_tw\Photodownloader.ini
[2010.03.09 05:28:40 | 005,297,608 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS5\Photodownloader.exe
[2010.03.09 02:38:58 | 000,011,161 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS5\apd\shared_assets\bitmaps\main_window\C_LoadError.png
[2010.03.09 02:38:58 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS5\apd\shared_assets\locales\da_dk\Photodownloader.ini
[2010.03.09 02:39:00 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS5\apd\shared_assets\locales\de_de\Photodownloader.ini
[2010.03.09 02:39:00 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS5\apd\shared_assets\locales\en_us\Photodownloader.ini
[2010.03.09 02:39:00 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS5\apd\shared_assets\locales\es_es\Photodownloader.ini
[2010.03.09 02:39:00 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS5\apd\shared_assets\locales\fi_fi\Photodownloader.ini
[2010.03.09 02:39:00 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS5\apd\shared_assets\locales\fr_fr\Photodownloader.ini
[2010.03.09 02:39:00 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS5\apd\shared_assets\locales\it_it\Photodownloader.ini
[2010.03.09 02:39:00 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS5\apd\shared_assets\locales\ja_jp\Photodownloader.ini
[2010.03.09 02:39:00 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS5\apd\shared_assets\locales\ko_kr\Photodownloader.ini
[2010.03.09 02:39:00 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS5\apd\shared_assets\locales\nl_nl\Photodownloader.ini
[2010.03.09 02:39:00 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS5\apd\shared_assets\locales\no_no\Photodownloader.ini
[2010.03.09 02:39:00 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS5\apd\shared_assets\locales\pt_br\Photodownloader.ini
[2010.03.09 02:39:00 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS5\apd\shared_assets\locales\sv_se\Photodownloader.ini
[2010.03.09 02:39:00 | 000,000,308 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS5\apd\shared_assets\locales\zh_cn\Photodownloader.ini
[2010.03.09 02:39:00 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS5\apd\shared_assets\locales\zh_tw\Photodownloader.ini
[2010.04.01 21:42:36 | 000,037,112 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Dreamweaver CS5\configuration\Shared\MM\Media\FLVLoader.swf
[2010.06.02 14:27:12 | 000,006,746 | ---- | M] () -- \Program Files (x86)\Artisteer 3 (2)\Library\Images\loaderAnim.gif
[2010.04.14 14:17:08 | 000,000,477 | ---- | M] () -- \Program Files (x86)\Artisteer 3 (2)\Library\Images\loaderAnim2.gif
[2010.04.14 14:17:08 | 000,001,737 | ---- | M] () -- \Program Files (x86)\Artisteer 3 (2)\Library\Images\loaderSnake.gif
[2008.08.14 08:23:12 | 000,009,969 | ---- | M] () -- \Program Files (x86)\Common Files\Adobe\Startup Scripts CS4\Adobe Version Cue\VersionCueSDKLoader.jsx
[2007.05.16 09:26:06 | 000,177,712 | ---- | M] () -- \Program Files (x86)\Common Files\Ahead\Lib\NeGuideStoreLoader.dll
[2009.03.02 15:57:58 | 000,023,757 | ---- | M] () -- \Program Files (x86)\Common Files\GTK\2.0\bin\gdk-pixbuf-query-loaders.exe
[2009.03.02 15:57:58 | 000,003,657 | ---- | M] () -- \Program Files (x86)\Common Files\GTK\2.0\etc\gtk-2.0\gdk-pixbuf.loaders
[2009.03.02 15:56:44 | 000,028,560 | ---- | M] () -- \Program Files (x86)\Common Files\GTK\2.0\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-ani.dll
[2009.03.02 15:56:42 | 000,027,492 | ---- | M] () -- \Program Files (x86)\Common Files\GTK\2.0\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-bmp.dll
[2009.03.02 15:56:42 | 000,041,827 | ---- | M] () -- \Program Files (x86)\Common Files\GTK\2.0\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-gif.dll
[2009.03.02 15:56:40 | 000,020,750 | ---- | M] () -- \Program Files (x86)\Common Files\GTK\2.0\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-icns.dll
[2009.03.02 15:56:44 | 000,027,004 | ---- | M] () -- \Program Files (x86)\Common Files\GTK\2.0\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-ico.dll
[2009.03.02 15:56:42 | 000,033,364 | ---- | M] () -- \Program Files (x86)\Common Files\GTK\2.0\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-jpeg.dll
[2009.03.02 15:56:44 | 000,021,329 | ---- | M] () -- \Program Files (x86)\Common Files\GTK\2.0\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-pcx.dll
[2009.03.02 15:56:42 | 000,035,326 | ---- | M] () -- \Program Files (x86)\Common Files\GTK\2.0\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-png.dll
[2009.03.02 15:56:44 | 000,023,528 | ---- | M] () -- \Program Files (x86)\Common Files\GTK\2.0\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-pnm.dll
[2009.03.02 15:56:42 | 000,018,354 | ---- | M] () -- \Program Files (x86)\Common Files\GTK\2.0\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-ras.dll
[2009.03.02 15:56:44 | 000,023,858 | ---- | M] () -- \Program Files (x86)\Common Files\GTK\2.0\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-tga.dll
[2009.03.02 15:56:44 | 000,028,334 | ---- | M] () -- \Program Files (x86)\Common Files\GTK\2.0\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-tiff.dll
[2009.03.02 15:56:42 | 000,017,895 | ---- | M] () -- \Program Files (x86)\Common Files\GTK\2.0\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-wbmp.dll
[2009.03.02 15:56:42 | 000,023,851 | ---- | M] () -- \Program Files (x86)\Common Files\GTK\2.0\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-xbm.dll
[2009.03.02 15:56:42 | 000,041,060 | ---- | M] () -- \Program Files (x86)\Common Files\GTK\2.0\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-xpm.dll
[2010.10.07 04:36:40 | 000,265,552 | ---- | M] () -- \Program Files (x86)\Common Files\microsoft shared\VSTO\10.0\VSTOLoader.dll
[2010.10.07 04:36:40 | 000,018,264 | ---- | M] () -- \Program Files (x86)\Common Files\microsoft shared\VSTO\10.0\1033\VSTOLoaderUI.dll
[2009.12.17 01:07:42 | 000,000,123 | ---- | M] () -- \Program Files (x86)\Game_Maker8\html\Loader.htm
[2009.12.17 01:30:00 | 000,006,111 | ---- | M] () -- \Program Files (x86)\Game_Maker8\html\Loader2.htm
[2009.07.31 13:40:40 | 000,003,614 | ---- | M] () -- \Program Files (x86)\GIMP-2.0\etc\gtk-2.0\gdk-pixbuf.loaders
[2009.08.08 22:51:40 | 000,016,536 | ---- | M] () -- \Program Files (x86)\GIMP-2.0\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-ani.dll
[2009.08.08 22:51:42 | 000,019,096 | ---- | M] () -- \Program Files (x86)\GIMP-2.0\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-bmp.dll
[2009.08.08 22:51:44 | 000,027,288 | ---- | M] () -- \Program Files (x86)\GIMP-2.0\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-gif.dll
[2009.08.08 22:51:46 | 000,012,440 | ---- | M] () -- \Program Files (x86)\GIMP-2.0\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-icns.dll
[2009.08.08 22:51:48 | 000,017,048 | ---- | M] () -- \Program Files (x86)\GIMP-2.0\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-ico.dll
[2009.08.08 22:51:54 | 000,019,608 | ---- | M] () -- \Program Files (x86)\GIMP-2.0\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-jpeg.dll
[2009.08.08 22:51:56 | 000,014,488 | ---- | M] () -- \Program Files (x86)\GIMP-2.0\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-pcx.dll
[2009.08.08 22:52:02 | 000,019,096 | ---- | M] () -- \Program Files (x86)\GIMP-2.0\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-png.dll
[2009.08.08 22:52:04 | 000,016,024 | ---- | M] () -- \Program Files (x86)\GIMP-2.0\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-pnm.dll
[2009.08.08 22:52:06 | 000,011,928 | ---- | M] () -- \Program Files (x86)\GIMP-2.0\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-ras.dll
[2009.08.08 22:52:08 | 000,017,048 | ---- | M] () -- \Program Files (x86)\GIMP-2.0\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-tga.dll
[2009.08.08 22:52:10 | 000,016,536 | ---- | M] () -- \Program Files (x86)\GIMP-2.0\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-tiff.dll
[2009.08.08 22:52:14 | 000,011,416 | ---- | M] () -- \Program Files (x86)\GIMP-2.0\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-wbmp.dll
[2009.08.08 22:52:18 | 000,013,976 | ---- | M] () -- \Program Files (x86)\GIMP-2.0\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-xbm.dll
[2009.08.08 22:52:20 | 000,028,312 | ---- | M] () -- \Program Files (x86)\GIMP-2.0\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-xpm.dll
[2009.05.01 21:42:00 | 000,009,880 | ---- | M] () -- \Program Files (x86)\GIMP-2.0\lib\gtk-2.0\2.10.0\loaders\svg_loader.dll
[2012.01.18 17:41:54 | 000,169,384 | ---- | M] () -- \Program Files (x86)\HLDS\cstrike\models\qloader.mdl
[2012.01.18 17:43:19 | 000,352,548 | ---- | M] () -- \Program Files (x86)\HLDS\valve\models\loader.mdl
[2012.01.18 17:43:34 | 000,012,764 | ---- | M] () -- \Program Files (x86)\HLDS\valve\sound\ambience\loader_hydra1.wav
[2012.01.18 17:43:34 | 000,012,164 | ---- | M] () -- \Program Files (x86)\HLDS\valve\sound\ambience\loader_step1.wav
[2009.05.21 21:21:18 | 000,007,507 | ---- | M] () -- \Program Files (x86)\HP\Digital Imaging\HelpViewer\Resources\Loader.swf
[2009.10.22 05:29:58 | 000,030,776 | ---- | M] () -- \Program Files (x86)\HP\Digital Imaging\smart web printing\RsrcLoaderLib.dll
[2009.10.22 05:29:58 | 000,002,713 | ---- | M] () -- \Program Files (x86)\HP\Digital Imaging\smart web printing\MozillaAddOn3\xre\components\uriloader.xpt
[2009.09.01 13:57:38 | 000,003,614 | ---- | M] () -- \Program Files (x86)\Inkscape\etc\gtk-2.0\gdk-pixbuf.loaders
[2009.09.01 13:55:32 | 000,028,560 | ---- | M] () -- \Program Files (x86)\Inkscape\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-ani.dll
[2009.09.01 13:55:32 | 000,027,492 | ---- | M] () -- \Program Files (x86)\Inkscape\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-bmp.dll
[2009.09.01 13:55:32 | 000,041,827 | ---- | M] () -- \Program Files (x86)\Inkscape\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-gif.dll
[2009.09.01 13:55:32 | 000,020,750 | ---- | M] () -- \Program Files (x86)\Inkscape\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-icns.dll
[2009.09.01 13:55:32 | 000,027,004 | ---- | M] () -- \Program Files (x86)\Inkscape\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-ico.dll
[2009.09.01 13:55:32 | 000,033,364 | ---- | M] () -- \Program Files (x86)\Inkscape\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-jpeg.dll
[2009.09.01 13:55:32 | 000,021,329 | ---- | M] () -- \Program Files (x86)\Inkscape\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-pcx.dll
[2009.09.01 13:55:32 | 000,035,326 | ---- | M] () -- \Program Files (x86)\Inkscape\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-png.dll
[2009.09.01 13:55:32 | 000,023,528 | ---- | M] () -- \Program Files (x86)\Inkscape\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-pnm.dll
[2009.09.01 13:55:32 | 000,018,354 | ---- | M] () -- \Program Files (x86)\Inkscape\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-ras.dll
[2009.09.01 13:55:32 | 000,023,858 | ---- | M] () -- \Program Files (x86)\Inkscape\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-tga.dll
[2009.09.01 13:55:32 | 000,028,334 | ---- | M] () -- \Program Files (x86)\Inkscape\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-tiff.dll
[2009.09.01 13:55:32 | 000,017,895 | ---- | M] () -- \Program Files (x86)\Inkscape\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-wbmp.dll
[2009.09.01 13:55:32 | 000,023,851 | ---- | M] () -- \Program Files (x86)\Inkscape\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-xbm.dll
[2009.09.01 13:55:32 | 000,041,060 | ---- | M] () -- \Program Files (x86)\Inkscape\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-xpm.dll
[2008.05.08 16:53:38 | 000,018,909 | ---- | M] () -- \Program Files (x86)\Inkscape\lib\gtk-2.0\2.10.0\loaders\svg_loader.dll
[2008.05.08 16:53:38 | 000,002,026 | ---- | M] () -- \Program Files (x86)\Inkscape\lib\gtk-2.0\2.10.0\loaders\svg_loader.dll.a
[2009.09.01 13:53:30 | 000,033,006 | ---- | M] () -- \Program Files (x86)\Inkscape\python\Lib\site-packages\uniconvertor\app\plugins\Filters\ailoader.py
[2009.09.01 13:53:28 | 000,037,492 | ---- | M] () -- \Program Files (x86)\Inkscape\python\Lib\site-packages\uniconvertor\app\plugins\Filters\ailoader.pyc
[2009.09.01 13:53:28 | 000,037,492 | ---- | M] () -- \Program Files (x86)\Inkscape\python\Lib\site-packages\uniconvertor\app\plugins\Filters\ailoader.pyo
[2009.09.01 13:53:30 | 000,001,913 | ---- | M] () -- \Program Files (x86)\Inkscape\python\Lib\site-packages\uniconvertor\app\plugins\Filters\bziploader.py
[2009.09.01 13:53:28 | 000,001,916 | ---- | M] () -- \Program Files (x86)\Inkscape\python\Lib\site-packages\uniconvertor\app\plugins\Filters\bziploader.pyc
[2009.09.01 13:53:28 | 000,001,916 | ---- | M] () -- \Program Files (x86)\Inkscape\python\Lib\site-packages\uniconvertor\app\plugins\Filters\bziploader.pyo
[2009.09.01 13:53:28 | 000,059,660 | ---- | M] () -- \Program Files (x86)\Inkscape\python\Lib\site-packages\uniconvertor\app\plugins\Filters\ccxloader.py
[2009.09.01 13:53:28 | 000,065,718 | ---- | M] () -- \Program Files (x86)\Inkscape\python\Lib\site-packages\uniconvertor\app\plugins\Filters\ccxloader.pyc
[2009.09.01 13:53:28 | 000,065,718 | ---- | M] () -- \Program Files (x86)\Inkscape\python\Lib\site-packages\uniconvertor\app\plugins\Filters\ccxloader.pyo
[2009.09.01 13:53:28 | 000,021,178 | ---- | M] () -- \Program Files (x86)\Inkscape\python\Lib\site-packages\uniconvertor\app\plugins\Filters\cdrloader.py
[2009.09.01 13:53:28 | 000,020,681 | ---- | M] () -- \Program Files (x86)\Inkscape\python\Lib\site-packages\uniconvertor\app\plugins\Filters\cdrloader.pyc
[2009.09.01 13:53:28 | 000,020,497 | ---- | M] () -- \Program Files (x86)\Inkscape\python\Lib\site-packages\uniconvertor\app\plugins\Filters\cdrloader.pyo
[2009.09.01 13:53:30 | 000,001,381 | ---- | M] () -- \Program Files (x86)\Inkscape\python\Lib\site-packages\uniconvertor\app\plugins\Filters\cdrziploader.py
[2009.09.01 13:53:28 | 000,002,162 | ---- | M] () -- \Program Files (x86)\Inkscape\python\Lib\site-packages\uniconvertor\app\plugins\Filters\cdrziploader.pyc
[2009.09.01 13:53:28 | 000,002,162 | ---- | M] () -- \Program Files (x86)\Inkscape\python\Lib\site-packages\uniconvertor\app\plugins\Filters\cdrziploader.pyo
[2009.09.01 13:53:30 | 000,029,656 | ---- | M] () -- \Program Files (x86)\Inkscape\python\Lib\site-packages\uniconvertor\app\plugins\Filters\cgmloader.py
[2009.09.01 13:53:30 | 000,042,851 | ---- | M] () -- \Program Files (x86)\Inkscape\python\Lib\site-packages\uniconvertor\app\plugins\Filters\cgmloader.pyc
[2009.09.01 13:53:30 | 000,042,851 | ---- | M] () -- \Program Files (x86)\Inkscape\python\Lib\site-packages\uniconvertor\app\plugins\Filters\cgmloader.pyo
[2009.09.01 13:53:28 | 000,057,721 | ---- | M] () -- \Program Files (x86)\Inkscape\python\Lib\site-packages\uniconvertor\app\plugins\Filters\cmxloader.py
[2009.09.01 13:53:30 | 000,061,973 | ---- | M] () -- \Program Files (x86)\Inkscape\python\Lib\site-packages\uniconvertor\app\plugins\Filters\cmxloader.pyc
[2009.09.01 13:53:28 | 000,061,973 | ---- | M] () -- \Program Files (x86)\Inkscape\python\Lib\site-packages\uniconvertor\app\plugins\Filters\cmxloader.pyo
[2009.09.01 13:53:30 | 000,002,018 | ---- | M] () -- \Program Files (x86)\Inkscape\python\Lib\site-packages\uniconvertor\app\plugins\Filters\gziploader.py
[2009.09.01 13:53:28 | 000,002,001 | ---- | M] () -- \Program Files (x86)\Inkscape\python\Lib\site-packages\uniconvertor\app\plugins\Filters\gziploader.pyc
[2009.09.01 13:53:30 | 000,002,001 | ---- | M] () -- \Program Files (x86)\Inkscape\python\Lib\site-packages\uniconvertor\app\plugins\Filters\gziploader.pyo
[2009.09.01 13:53:28 | 000,017,222 | ---- | M] () -- \Program Files (x86)\Inkscape\python\Lib\site-packages\uniconvertor\app\plugins\Filters\sk1loader.py
[2009.09.01 13:53:28 | 000,022,472 | ---- | M] () -- \Program Files (x86)\Inkscape\python\Lib\site-packages\uniconvertor\app\plugins\Filters\sk1loader.pyc
[2009.09.01 13:53:28 | 000,022,351 | ---- | M] () -- \Program Files (x86)\Inkscape\python\Lib\site-packages\uniconvertor\app\plugins\Filters\sk1loader.pyo
[2009.09.01 13:53:28 | 000,015,751 | ---- | M] () -- \Program Files (x86)\Inkscape\python\Lib\site-packages\uniconvertor\app\plugins\Filters\skloader.py
[2009.09.01 13:53:28 | 000,020,914 | ---- | M] () -- \Program Files (x86)\Inkscape\python\Lib\site-packages\uniconvertor\app\plugins\Filters\skloader.pyc
[2009.09.01 13:53:28 | 000,020,793 | ---- | M] () -- \Program Files (x86)\Inkscape\python\Lib\site-packages\uniconvertor\app\plugins\Filters\skloader.pyo
[2009.09.01 13:53:30 | 000,029,609 | ---- | M] () -- \Program Files (x86)\Inkscape\python\Lib\site-packages\uniconvertor\app\plugins\Filters\svgloader.py
[2009.09.01 13:53:28 | 000,032,727 | ---- | M] () -- \Program Files (x86)\Inkscape\python\Lib\site-packages\uniconvertor\app\plugins\Filters\svgloader.pyc
[2009.09.01 13:53:28 | 000,032,727 | ---- | M] () -- \Program Files (x86)\Inkscape\python\Lib\site-packages\uniconvertor\app\plugins\Filters\svgloader.pyo
[2009.09.01 13:53:28 | 000,014,821 | ---- | M] () -- \Program Files (x86)\Inkscape\python\Lib\site-packages\uniconvertor\app\plugins\Filters\wmfloader.py
[2009.09.01 13:53:30 | 000,018,962 | ---- | M] () -- \Program Files (x86)\Inkscape\python\Lib\site-packages\uniconvertor\app\plugins\Filters\wmfloader.pyc
[2009.09.01 13:53:28 | 000,018,962 | ---- | M] () -- \Program Files (x86)\Inkscape\python\Lib\site-packages\uniconvertor\app\plugins\Filters\wmfloader.pyo
[2009.09.01 13:53:28 | 000,017,549 | ---- | M] () -- \Program Files (x86)\Inkscape\python\Lib\site-packages\uniconvertor\app\plugins\Filters\xfigloader.py
[2009.09.01 13:53:28 | 000,018,546 | ---- | M] () -- \Program Files (x86)\Inkscape\python\Lib\site-packages\uniconvertor\app\plugins\Filters\xfigloader.pyc
[2009.09.01 13:53:28 | 000,018,546 | ---- | M] () -- \Program Files (x86)\Inkscape\python\Lib\site-packages\uniconvertor\app\plugins\Filters\xfigloader.pyo
[2010.01.28 11:24:20 | 000,003,208 | ---- | M] () -- \Program Files (x86)\Jalbum\skins\Galleria\styles\Dark\loader.gif
[2010.06.23 13:59:26 | 000,003,208 | ---- | M] () -- \Program Files (x86)\Jalbum\skins\Galleria\styles\Gray\loader.gif
[2010.01.28 11:24:22 | 000,003,208 | ---- | M] () -- \Program Files (x86)\Jalbum\skins\Galleria\styles\Light\loader.gif
[2010.06.23 14:40:46 | 000,003,208 | ---- | M] () -- \Program Files (x86)\Jalbum\skins\Galleria\styles\Red\loader.gif
[2011.10.24 14:14:18 | 000,214,528 | ---- | M] () -- \Program Files (x86)\JDownloader\JDownloader.exe
[2011.10.24 14:14:18 | 000,593,293 | ---- | M] () -- \Program Files (x86)\JDownloader\JDownloader.jar
[2011.10.24 14:14:18 | 000,218,816 | ---- | M] () -- \Program Files (x86)\JDownloader\JDownloaderBETA.exe
[2011.10.24 14:14:18 | 000,218,816 | ---- | M] () -- \Program Files (x86)\JDownloader\JDownloaderD3D.exe
[2011.10.26 10:14:37 | 000,000,105 | ---- | M] () -- \Program Files (x86)\JDownloader\jd\img\hosterlogos\uploader.pl.png
[2011.10.24 14:14:18 | 000,007,069 | ---- | M] () -- \Program Files (x86)\JDownloader\jd\plugins\hoster\UploaderPl.class
[2011.10.24 14:14:18 | 000,032,222 | ---- | M] () -- \Program Files (x86)\JDownloader\licenses\jdownloader.license
[2005.08.10 20:01:12 | 000,044,934 | ---- | M] () -- \Program Files (x86)\Macromedia\Flash 8\en\Configuration\Components\User Interface\Loader.swc
[2005.06.20 16:45:24 | 000,000,544 | ---- | M] () -- \Program Files (x86)\Macromedia\Flash 8\en\First Run\Classes\FP7\MovieClipLoader.as
[2005.06.20 16:45:26 | 000,000,544 | ---- | M] () -- \Program Files (x86)\Macromedia\Flash 8\en\First Run\Classes\FP8\MovieClipLoader.as
[2005.07.13 13:06:52 | 000,010,454 | ---- | M] () -- \Program Files (x86)\Macromedia\Flash 8\en\First Run\Classes\mx\controls\Loader.as
[2009.05.31 03:21:00 | 000,071,008 | ---- | M] () -- \Program Files (x86)\NVIDIA Corporation\PhysX\Common\PhysXLoader.dll
[2009.05.31 03:21:00 | 000,073,568 | ---- | M] () -- \Program Files (x86)\NVIDIA Corporation\PhysX\Common\PhysXLoader64.dll
[2006.06.20 19:15:26 | 000,001,058 | ---- | M] () -- \Program Files (x86)\Selteco\Alligator Flash Designer 7\help\loader1.swf
[2006.06.20 19:18:56 | 000,001,240 | ---- | M] () -- \Program Files (x86)\Selteco\Alligator Flash Designer 7\help\loader2.swf
[2006.06.20 19:19:06 | 000,000,878 | ---- | M] () -- \Program Files (x86)\Selteco\Alligator Flash Designer 7\help\loader3.swf
[2006.06.20 19:19:14 | 000,001,832 | ---- | M] () -- \Program Files (x86)\Selteco\Alligator Flash Designer 7\help\loader4.swf
[2006.06.20 19:19:26 | 000,003,392 | ---- | M] () -- \Program Files (x86)\Selteco\Alligator Flash Designer 7\help\loader5.swf
[2007.02.12 19:46:06 | 000,005,583 | ---- | M] () -- \Program Files (x86)\Selteco\Alligator Flash Designer 7\help\preloader.htm
[2004.11.05 14:11:14 | 000,007,877 | ---- | M] () -- \Program Files (x86)\Selteco\Alligator Flash Designer 7\loaders\perloader1.sfd
[2004.11.05 14:41:38 | 000,001,278 | ---- | M] () -- \Program Files (x86)\Selteco\Alligator Flash Designer 7\loaders\perloader3.sfd
[2004.11.05 14:24:12 | 000,011,370 | ---- | M] () -- \Program Files (x86)\Selteco\Alligator Flash Designer 7\loaders\preloader2.sfd
[2004.11.05 15:36:34 | 000,001,463 | ---- | M] () -- \Program Files (x86)\Selteco\Alligator Flash Designer 7\loaders\preloader4.sfd
[2004.11.05 15:49:58 | 000,003,840 | ---- | M] () -- \Program Files (x86)\Selteco\Alligator Flash Designer 7\loaders\preloader5.sfd
[2008.02.25 08:05:22 | 000,856,064 | ---- | M] () -- \Program Files (x86)\TC UP\PLUGINS\Media\TheKMPlayer\ImLoader.dll
[2008.02.25 08:05:22 | 000,856,064 | ---- | M] () -- \Program Files (x86)\The KMPlayer\ImLoader.dll
[2010.10.07 04:36:40 | 000,387,408 | ---- | M] () -- \Program Files\Common Files\Microsoft Shared\VSTO\10.0\VSTOLoader.dll
[2010.10.07 04:36:40 | 000,018,264 | ---- | M] () -- \Program Files\Common Files\Microsoft Shared\VSTO\10.0\1033\VSTOLoaderUI.dll
[2012.03.05 21:15:44 | 000,002,941 | ---- | M] () -- \Program Files\Java\jdk1.7.0_03\lib\visualvm\platform\config\ModuleAutoDeps\org-openide-loaders.xml
[2012.03.05 21:15:45 | 000,000,411 | ---- | M] () -- \Program Files\Java\jdk1.7.0_03\lib\visualvm\platform\config\Modules\org-openide-loaders.xml
[2012.03.05 21:15:45 | 001,138,236 | ---- | M] () -- \Program Files\Java\jdk1.7.0_03\lib\visualvm\platform\modules\org-openide-loaders.jar
[2012.03.05 21:15:45 | 000,007,002 | ---- | M] () -- \Program Files\Java\jdk1.7.0_03\lib\visualvm\platform\modules\locale\org-openide-loaders_ja.jar
[2012.03.05 21:15:45 | 000,006,658 | ---- | M] () -- \Program Files\Java\jdk1.7.0_03\lib\visualvm\platform\modules\locale\org-openide-loaders_zh_CN.jar
[2012.03.05 21:15:45 | 000,000,457 | ---- | M] () -- \Program Files\Java\jdk1.7.0_03\lib\visualvm\platform\update_tracking\org-openide-loaders.xml
[2012.01.10 14:34:00 | 000,013,211 | ---- | M] () -- \Program Files\Oracle\JavaFX 2.0 SDK\docs\api\javafx\application\Preloader.ErrorNotification.html
[2012.01.10 14:34:02 | 000,020,432 | ---- | M] () -- \Program Files\Oracle\JavaFX 2.0 SDK\docs\api\javafx\application\Preloader.html
[2012.01.10 14:34:16 | 000,006,597 | ---- | M] () -- \Program Files\Oracle\JavaFX 2.0 SDK\docs\api\javafx\application\Preloader.PreloaderNotification.html
[2012.01.10 14:34:10 | 000,010,567 | ---- | M] () -- \Program Files\Oracle\JavaFX 2.0 SDK\docs\api\javafx\application\Preloader.ProgressNotification.html
[2012.01.10 14:34:14 | 000,015,082 | ---- | M] () -- \Program Files\Oracle\JavaFX 2.0 SDK\docs\api\javafx\application\Preloader.StateChangeNotification.html
[2012.01.10 14:34:04 | 000,014,414 | ---- | M] () -- \Program Files\Oracle\JavaFX 2.0 SDK\docs\api\javafx\application\Preloader.StateChangeNotification.Type.html
[2012.01.10 14:34:02 | 000,006,842 | ---- | M] () -- \Program Files\Oracle\JavaFX 2.0 SDK\docs\api\javafx\application\class-use\Preloader.ErrorNotification.html
[2012.01.10 14:34:12 | 000,004,449 | ---- | M] () -- \Program Files\Oracle\JavaFX 2.0 SDK\docs\api\javafx\application\class-use\Preloader.html
[2012.01.10 14:34:14 | 000,009,261 | ---- | M] () -- \Program Files\Oracle\JavaFX 2.0 SDK\docs\api\javafx\application\class-use\Preloader.PreloaderNotification.html
[2012.01.10 14:34:16 | 000,006,893 | ---- | M] () -- \Program Files\Oracle\JavaFX 2.0 SDK\docs\api\javafx\application\class-use\Preloader.ProgressNotification.html
[2012.01.10 14:34:14 | 000,006,977 | ---- | M] () -- \Program Files\Oracle\JavaFX 2.0 SDK\docs\api\javafx\application\class-use\Preloader.StateChangeNotification.html
[2012.01.10 14:34:18 | 000,011,165 | ---- | M] () -- \Program Files\Oracle\JavaFX 2.0 SDK\docs\api\javafx\application\class-use\Preloader.StateChangeNotification.Type.html
[2012.01.10 14:34:08 | 000,010,377 | ---- | M] () -- \Program Files\Oracle\JavaFX 2.0 SDK\docs\api\javafx\fxml\FXMLLoader.Attribute.html
[2012.01.10 14:34:14 | 000,012,768 | ---- | M] () -- \Program Files\Oracle\JavaFX 2.0 SDK\docs\api\javafx\fxml\FXMLLoader.ControllerMethodEventHandler.html
[2012.01.10 14:34:08 | 000,014,222 | ---- | M] () -- \Program Files\Oracle\JavaFX 2.0 SDK\docs\api\javafx\fxml\FXMLLoader.CopyElement.html
[2012.01.10 14:34:08 | 000,011,488 | ---- | M] () -- \Program Files\Oracle\JavaFX 2.0 SDK\docs\api\javafx\fxml\FXMLLoader.DefineElement.html
[2012.01.10 14:34:16 | 000,020,205 | ---- | M] () -- \Program Files\Oracle\JavaFX 2.0 SDK\docs\api\javafx\fxml\FXMLLoader.Element.html
[2012.01.10 14:34:02 | 000,014,212 | ---- | M] () -- \Program Files\Oracle\JavaFX 2.0 SDK\docs\api\javafx\fxml\FXMLLoader.ExpressionTargetMapping.html
[2012.01.10 14:34:10 | 000,044,046 | ---- | M] () -- \Program Files\Oracle\JavaFX 2.0 SDK\docs\api\javafx\fxml\FXMLLoader.html
[2012.01.10 14:34:12 | 000,014,967 | ---- | M] () -- \Program Files\Oracle\JavaFX 2.0 SDK\docs\api\javafx\fxml\FXMLLoader.IncludeElement.html
[2012.01.10 14:34:04 | 000,016,588 | ---- | M] () -- \Program Files\Oracle\JavaFX 2.0 SDK\docs\api\javafx\fxml\FXMLLoader.InstanceDeclarationElement.html
[2012.01.10 14:34:02 | 000,013,878 | ---- | M] () -- \Program Files\Oracle\JavaFX 2.0 SDK\docs\api\javafx\fxml\FXMLLoader.PropertyChangeListener.html
[2012.01.10 14:34:10 | 000,015,658 | ---- | M] () -- \Program Files\Oracle\JavaFX 2.0 SDK\docs\api\javafx\fxml\FXMLLoader.PropertyElement.html
[2012.01.10 14:33:56 | 000,014,271 | ---- | M] () -- \Program Files\Oracle\JavaFX 2.0 SDK\docs\api\javafx\fxml\FXMLLoader.ReferenceElement.html
[2012.01.10 14:34:14 | 000,015,319 | ---- | M] () -- \Program Files\Oracle\JavaFX 2.0 SDK\docs\api\javafx\fxml\FXMLLoader.ScriptElement.html
[2012.01.10 14:33:56 | 000,012,568 | ---- | M] () -- \Program Files\Oracle\JavaFX 2.0 SDK\docs\api\javafx\fxml\FXMLLoader.ScriptEventHandler.html
[2012.01.10 14:34:00 | 000,015,451 | ---- | M] () -- \Program Files\Oracle\JavaFX 2.0 SDK\docs\api\javafx\fxml\FXMLLoader.ValueElement.html
[2012.01.10 14:34:12 | 000,008,341 | ---- | M] () -- \Program Files\Oracle\JavaFX 2.0 SDK\docs\api\javafx\fxml\class-use\FXMLLoader.Attribute.html
[2012.01.10 14:34:12 | 000,004,702 | ---- | M] () -- \Program Files\Oracle\JavaFX 2.0 SDK\docs\api\javafx\fxml\class-use\FXMLLoader.ControllerMethodEventHandler.html
[2012.01.10 14:34:12 | 000,004,515 | ---- | M] () -- \Program Files\Oracle\JavaFX 2.0 SDK\docs\api\javafx\fxml\class-use\FXMLLoader.CopyElement.html
[2012.01.10 14:34:12 | 000,004,537 | ---- | M] () -- \Program Files\Oracle\JavaFX 2.0 SDK\docs\api\javafx\fxml\class-use\FXMLLoader.DefineElement.html
[2012.01.10 14:34:10 | 000,006,719 | ---- | M] () -- \Program Files\Oracle\JavaFX 2.0 SDK\docs\api\javafx\fxml\class-use\FXMLLoader.Element.html
[2012.01.10 14:34:14 | 000,004,647 | ---- | M] () -- \Program Files\Oracle\JavaFX 2.0 SDK\docs\api\javafx\fxml\class-use\FXMLLoader.ExpressionTargetMapping.html
[2012.01.10 14:34:16 | 000,007,272 | ---- | M] () -- \Program Files\Oracle\JavaFX 2.0 SDK\docs\api\javafx\fxml\class-use\FXMLLoader.html
[2012.01.10 14:34:14 | 000,004,548 | ---- | M] () -- \Program Files\Oracle\JavaFX 2.0 SDK\docs\api\javafx\fxml\class-use\FXMLLoader.IncludeElement.html
[2012.01.10 14:34:06 | 000,004,680 | ---- | M] () -- \Program Files\Oracle\JavaFX 2.0 SDK\docs\api\javafx\fxml\class-use\FXMLLoader.InstanceDeclarationElement.html
[2012.01.10 14:34:06 | 000,004,636 | ---- | M] () -- \Program Files\Oracle\JavaFX 2.0 SDK\docs\api\javafx\fxml\class-use\FXMLLoader.PropertyChangeListener.html
[2012.01.10 14:34:16 | 000,006,587 | ---- | M] () -- \Program Files\Oracle\JavaFX 2.0 SDK\docs\api\javafx\fxml\class-use\FXMLLoader.PropertyElement.html
[2012.01.10 14:34:16 | 000,004,570 | ---- | M] () -- \Program Files\Oracle\JavaFX 2.0 SDK\docs\api\javafx\fxml\class-use\FXMLLoader.ReferenceElement.html
[2012.01.10 14:34:18 | 000,004,537 | ---- | M] () -- \Program Files\Oracle\JavaFX 2.0 SDK\docs\api\javafx\fxml\class-use\FXMLLoader.ScriptElement.html
[2012.01.10 14:34:06 | 000,004,592 | ---- | M] () -- \Program Files\Oracle\JavaFX 2.0 SDK\docs\api\javafx\fxml\class-use\FXMLLoader.ScriptEventHandler.html
[2012.01.10 14:34:06 | 000,004,526 | ---- | M] () -- \Program Files\Oracle\JavaFX 2.0 SDK\docs\api\javafx\fxml\class-use\FXMLLoader.ValueElement.html
[2011.05.28 22:04:02 | 000,054,784 | ---- | M] () -- \Program Files\WinRAR\Formats\ace32loader.exe
[2012.04.15 17:41:29 | 000,006,494 | ---- | M] () -- \ProgramData\AVG Secure Search\10.2.0.3\modules\skin\ajax-loader.gif
[2012.04.15 17:41:29 | 000,000,729 | ---- | M] () -- \ProgramData\AVG Secure Search\10.2.0.3\modules\skin\loader.gif
[2012.07.09 18:16:52 | 000,006,494 | ---- | M] () -- \ProgramData\AVG Secure Search\11.1.0.12\modules\skin\ajax-loader.gif
[2012.07.09 18:16:52 | 000,000,729 | ---- | M] () -- \ProgramData\AVG Secure Search\11.1.0.12\modules\skin\loader.gif
[2012.06.12 22:20:21 | 000,006,494 | ---- | M] () -- \ProgramData\AVG Secure Search\11.1.0.7\modules\skin\ajax-loader.gif
[2012.06.12 22:20:21 | 000,000,729 | ---- | M] () -- \ProgramData\AVG Secure Search\11.1.0.7\modules\skin\loader.gif
[2011.10.26 10:13:21 | 000,001,905 | ---- | M] () -- \ProgramData\Microsoft\Windows\Start Menu\Programs\JDownloader Uninstaller.lnk
[2011.10.26 10:13:21 | 000,001,884 | ---- | M] () -- \ProgramData\Microsoft\Windows\Start Menu\Programs\JDownloader Update.lnk
[2011.10.26 10:13:21 | 000,001,926 | ---- | M] () -- \ProgramData\Microsoft\Windows\Start Menu\Programs\JDownloader.lnk
[2012.02.29 09:49:32 | 000,072,638 | ---- | M] () -- \ProgramData\Skype\Apps\login\images\loader.gif
[2012.02.29 09:49:32 | 000,003,032 | ---- | M] () -- \ProgramData\Skype\Apps\login\images\loader.png
[2012.04.15 17:41:29 | 000,006,494 | ---- | M] () -- \Users\All Users\AVG Secure Search\10.2.0.3\modules\skin\ajax-loader.gif
[2012.04.15 17:41:29 | 000,000,729 | ---- | M] () -- \Users\All Users\AVG Secure Search\10.2.0.3\modules\skin\loader.gif
[2012.07.09 18:16:52 | 000,006,494 | ---- | M] () -- \Users\All Users\AVG Secure Search\11.1.0.12\modules\skin\ajax-loader.gif
[2012.07.09 18:16:52 | 000,000,729 | ---- | M] () -- \Users\All Users\AVG Secure Search\11.1.0.12\modules\skin\loader.gif
[2012.06.12 22:20:21 | 000,006,494 | ---- | M] () -- \Users\All Users\AVG Secure Search\11.1.0.7\modules\skin\ajax-loader.gif
[2012.06.12 22:20:21 | 000,000,729 | ---- | M] () -- \Users\All Users\AVG Secure Search\11.1.0.7\modules\skin\loader.gif
[2011.10.26 10:13:21 | 000,001,905 | ---- | M] () -- \Users\All Users\Microsoft\Windows\Start Menu\Programs\JDownloader Uninstaller.lnk
[2011.10.26 10:13:21 | 000,001,884 | ---- | M] () -- \Users\All Users\Microsoft\Windows\Start Menu\Programs\JDownloader Update.lnk
[2011.10.26 10:13:21 | 000,001,926 | ---- | M] () -- \Users\All Users\Microsoft\Windows\Start Menu\Programs\JDownloader.lnk
[2012.02.29 09:49:32 | 000,072,638 | ---- | M] () -- \Users\All Users\Skype\Apps\login\images\loader.gif
[2012.02.29 09:49:32 | 000,003,032 | ---- | M] () -- \Users\All Users\Skype\Apps\login\images\loader.png
[2012.07.17 14:23:49 | 000,432,836 | ---- | M] () -- \Users\opopop\AppData\Local\SRDownloader.err
[2012.07.17 14:25:06 | 000,001,376 | ---- | M] () -- \Users\opopop\AppData\Local\SRDownloader.nast
[2012.06.15 20:48:31 | 000,000,723 | ---- | M] () -- \Users\opopop\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\ihflimipbcaljfnojhhknppphnnciiif\1.6.0_0\facemoods\img\ajax-loader.gif
[2012.06.15 20:48:31 | 000,001,866 | ---- | M] () -- \Users\opopop\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\ihflimipbcaljfnojhhknppphnnciiif\1.6.0_0\facemoods\js\FMLoader.js
[2012.07.20 11:02:49 | 000,001,304 | ---- | M] () -- \Users\opopop\AppData\Local\Google\Chrome\User Data\Default\Extensions\ainkhhbgcdbenmmbaoacambbhjfgnmmm\2.0.0.4_0\img\ajax-loader.gif
[2012.07.20 11:02:50 | 000,000,522 | ---- | M] () -- \Users\opopop\AppData\Local\Google\Chrome\User Data\Default\Extensions\ainkhhbgcdbenmmbaoacambbhjfgnmmm\2.0.0.4_0\img\fb_loader.gif
[2012.05.21 09:51:04 | 000,000,723 | ---- | M] () -- \Users\opopop\AppData\Local\Google\Chrome\User Data\Default\Extensions\ihflimipbcaljfnojhhknppphnnciiif\1.6.0_0\facemoods\img\ajax-loader.gif
[2012.05.21 09:51:03 | 000,001,866 | ---- | M] () -- \Users\opopop\AppData\Local\Google\Chrome\User Data\Default\Extensions\ihflimipbcaljfnojhhknppphnnciiif\1.6.0_0\facemoods\js\FMLoader.js
[2009.12.24 17:12:14 | 000,191,477 | ---- | M] () -- \Users\opopop\AppData\Local\Macromedia\Flash 8\en\Configuration\Classes\aso\mx\controls\mx.controls.Loader.aso
[2005.06.20 16:45:24 | 000,000,544 | ---- | M] () -- \Users\opopop\AppData\Local\Macromedia\Flash 8\en\Configuration\Classes\FP7\MovieClipLoader.as
[2005.06.20 16:45:26 | 000,000,544 | ---- | M] () -- \Users\opopop\AppData\Local\Macromedia\Flash 8\en\Configuration\Classes\FP8\MovieClipLoader.as
[2005.07.13 13:06:52 | 000,010,454 | ---- | M] () -- \Users\opopop\AppData\Local\Macromedia\Flash 8\en\Configuration\Classes\mx\controls\Loader.as
[2012.07.02 19:23:20 | 000,010,519 | ---- | M] () -- \Users\opopop\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\XADB5B9Q\AdLoader-aee74f28845638b42a47bb02dc06a7c6.min[1].js
[2011.10.26 10:10:38 | 000,000,914 | ---- | M] () -- \Users\opopop\AppData\Local\Opera\Opera\icons\http%3A%2F%2Fjdownloader.org%2Flib%2Ftpl%2Farctic%2Fimages%2Ffavicon.png
[2011.10.26 12:22:14 | 000,000,914 | ---- | M] () -- \Users\opopop\AppData\Local\Opera\Opera\icons\http%3A%2F%2Fwiki.jdownloader.org%2Flib%2Ftpl%2Farctic%2Fimages%2Ffavicon.png
[2011.09.10 13:16:51 | 000,000,749 | ---- | M] () -- \Users\opopop\AppData\Local\Opera\OperaNext\icons\http%3A%2F%2Fwww.youtubedownloadersite.com%2Ffavicon.png
[2005.07.13 12:06:36 | 000,000,766 | ---- | M] () -- \Users\opopop\AppData\Local\SourceTec\SWFDecompiler\Components\Loader.png
[2012.04.02 13:52:06 | 000,046,467 | ---- | M] () -- \Users\opopop\AppData\Local\Temp\Rar$DR65.968\ModLoader.class
[2012.07.10 17:05:40 | 000,015,360 | ---- | M] () -- \Users\opopop\AppData\Local\Temp\Rar$DR78.672\ModLoader.class
[2012.07.10 17:05:40 | 000,001,934 | ---- | M] () -- \Users\opopop\AppData\Local\Temp\Rar$DR78.672\cpw\mods\fml\common\FMLModLoaderContainer.class
[2012.07.10 17:05:40 | 000,001,221 | ---- | M] () -- \Users\opopop\AppData\Local\Temp\Rar$DR78.672\cpw\mods\fml\common\Loader$1.class
[2012.07.10 17:05:40 | 000,001,336 | ---- | M] () -- \Users\opopop\AppData\Local\Temp\Rar$DR78.672\cpw\mods\fml\common\Loader$State.class
[2012.07.10 17:05:40 | 000,018,501 | ---- | M] () -- \Users\opopop\AppData\Local\Temp\Rar$DR78.672\cpw\mods\fml\common\Loader.class
[2012.07.10 17:05:40 | 000,000,543 | ---- | M] () -- \Users\opopop\AppData\Local\Temp\Rar$DR78.672\cpw\mods\fml\common\LoaderException.class
[2012.07.10 17:05:40 | 000,002,686 | ---- | M] () -- \Users\opopop\AppData\Local\Temp\Rar$DR78.672\cpw\mods\fml\common\ModClassLoader.class
[2012.07.10 17:05:40 | 000,003,099 | ---- | M] () -- \Users\opopop\AppData\Local\Temp\Rar$DR78.672\cpw\mods\fml\common\modloader\ModLoaderHelper.class
[2012.07.10 17:05:40 | 000,019,734 | ---- | M] () -- \Users\opopop\AppData\Local\Temp\Rar$DR78.672\cpw\mods\fml\common\modloader\ModLoaderModContainer.class
[2012.04.02 13:52:06 | 000,046,467 | ---- | M] () -- \Users\opopop\AppData\Local\Temp\Rar$DR98.968\ModLoader.class
[2012.07.23 10:39:06 | 000,005,062 | ---- | M] () -- \Users\opopop\AppData\Roaming\.minecraft\ForgeModLoader-0.log
[2012.07.23 10:31:28 | 000,005,224 | ---- | M] () -- \Users\opopop\AppData\Roaming\.minecraft\ForgeModLoader-1.log
[2012.07.23 09:35:10 | 000,000,745 | ---- | M] () -- \Users\opopop\AppData\Roaming\.minecraft\ModLoader.txt
[2012.07.23 09:35:07 | 000,000,118 | ---- | M] () -- \Users\opopop\AppData\Roaming\.minecraft\config\ModLoader.cfg
[2011.11.30 16:27:18 | 000,001,366 | ---- | M] () -- \Users\opopop\AppData\Roaming\GetRightToGo\Brothersoftdownloader_for_Brawl_Busters.data
[2011.11.30 16:27:11 | 000,000,819 | ---- | M] () -- \Users\opopop\AppData\Roaming\GetRightToGo\Brothersoftdownloader_for_Brawl_Busters.data0
[2011.02.19 00:02:25 | 000,001,244 | ---- | M] () -- \Users\opopop\AppData\Roaming\GetRightToGo\Brothersoftdownloader_for_HL_TagConverter.data
[2011.02.19 00:02:15 | 000,000,839 | ---- | M] () -- \Users\opopop\AppData\Roaming\GetRightToGo\Brothersoftdownloader_for_HL_TagConverter.data0
[2011.06.08 15:03:16 | 000,000,753 | ---- | M] () -- \Users\opopop\AppData\Roaming\GetRightToGo\Brothersoftdownloader_for_TeamSpeak_Client.data
[2011.06.08 15:03:24 | 000,000,920 | ---- | M] () -- \Users\opopop\AppData\Roaming\GetRightToGo\Brothersoftdownloader_for_TeamSpeak_Client.data0
[2010.05.20 17:05:14 | 000,003,208 | ---- | M] () -- \Users\opopop\AppData\Roaming\JAlbum\skins\Galleria\styles\Dark\loader.gif
[2010.05.20 17:05:14 | 000,003,208 | ---- | M] () -- \Users\opopop\AppData\Roaming\JAlbum\skins\Galleria\styles\Light\loader.gif
[2012.07.23 10:26:52 | 000,000,748 | ---- | M] () -- \Users\opopop\AppData\Roaming\Microsoft\Windows\Recent\ModLoader.lnk
[2012.02.20 09:06:36 | 000,904,192 | ---- | M] () -- \Users\opopop\Desktop\SRDownloader.exe
[2007.09.11 10:59:27 | 000,112,476 | ---- | M] () -- \Users\opopop\Desktop\Joomla Artisteer\JOOMLA\Joomla_Big_Com_Pack\Components\Downloads & Links\Doc Man\Addons\mjaztools_dmuploader_v1.1.0.zip
[2010.05.28 03:20:18 | 000,004,050 | ---- | M] () -- \Users\opopop\Desktop\Joomla Artisteer\JOOMLA\joomla1518\libraries\loader.php
[2010.05.28 03:20:50 | 000,000,584 | ---- | M] () -- \Users\opopop\Desktop\Joomla Artisteer\JOOMLA\joomla1518\media\system\images\mootree_loader.gif
[2010.05.28 03:20:50 | 000,008,747 | ---- | M] () -- \Users\opopop\Desktop\Joomla Artisteer\JOOMLA\joomla1518\media\system\js\uploader.js
[2010.05.28 03:20:48 | 000,001,615 | ---- | M] () -- \Users\opopop\Desktop\Joomla Artisteer\JOOMLA\joomla1518\media\system\swf\uploader.swf
[2010.02.18 13:07:38 | 000,031,640 | ---- | M] () -- \Users\opopop\Desktop\web\wordpress\wp-includes\script-loader.php
[2010.02.18 13:07:36 | 000,002,184 | ---- | M] () -- \Users\opopop\Desktop\web\wordpress\wp-includes\template-loader.php
[2012.07.23 10:19:52 | 000,103,347 | ---- | M] () -- \Users\opopop\Downloads\ModLoader.zip
[2012.07.02 19:53:37 | 000,103,347 | ---- | M] () -- \Users\opopop\Downloads\ModLoader125.zip
[2010.03.24 20:35:48 | 000,018,264 | R--- | M] () -- \Windows\Installer\$PatchCache$\Managed\00004119110000000100000000F01FEC\14.0.4763\FL_VSTOLoaderUI_dll_amd64_ln.3643236F_FC70_11D3_A536_0090278A1BB8.41B86362_9D8B_4D9B_B426_8A6D1F809A25
[2010.03.24 20:12:34 | 000,018,264 | R--- | M] () -- \Windows\Installer\$PatchCache$\Managed\00004119110000000100000000F01FEC\14.0.4763\FL_VSTOLoaderUI_dll_x86_ln.3643236F_FC70_11D3_A536_0090278A1BB8.41B86362_9D8B_4D9B_B426_8A6D1F809A25
[2010.03.24 20:35:48 | 000,370,512 | R--- | M] () -- \Windows\Installer\$PatchCache$\Managed\00004119110000000100000000F01FEC\14.0.4763\VSTOLoader_dll_amd64.3643236F_FC70_11D3_A536_0090278A1BB8.41B86362_9D8B_4D9B_B426_8A6D1F809A25
[2010.03.24 20:12:34 | 000,249,680 | R--- | M] () -- \Windows\Installer\$PatchCache$\Managed\00004119110000000100000000F01FEC\14.0.4763\VSTOLoader_dll_x86.3643236F_FC70_11D3_A536_0090278A1BB8.41B86362_9D8B_4D9B_B426_8A6D1F809A25
[2009.07.14 03:03:49 | 000,003,584 | -H-- | M] () -- \Windows\System32\api-ms-win-core-libraryloader-l1-1-0.dll
[2009.07.14 03:15:12 | 000,038,400 | ---- | M] () -- \Windows\System32\dmloader.dll
[2009.07.14 03:03:49 | 000,003,584 | -H-- | M] () -- \Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
[2009.07.14 03:15:12 | 000,038,400 | ---- | M] () -- \Windows\SysWOW64\dmloader.dll
[2012.07.09 18:16:52 | 000,006,494 | ---- | M] () -- \Windows\Temp\avg@toolbar\modules\skin\ajax-loader.gif
[2012.07.09 18:16:52 | 000,000,729 | ---- | M] () -- \Windows\Temp\avg@toolbar\modules\skin\loader.gif
[2009.07.14 03:40:31 | 000,047,616 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-audio-dmusic_31bf3856ad364e35_6.1.7600.16385_none_a1e90d98a953d601\dmloader.dll
[2009.07.14 03:24:53 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.16385_none_66a6e19d9580f9e3\api-ms-win-core-libraryloader-l1-1-0.dll
[2009.07.14 17:17:49 | 000,004,431 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_8f37605116ba80bc.manifest
[2009.07.14 17:17:49 | 000,033,360 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_8f37605116ba80bc_winload.efi.mui_35ee487d
[2009.07.14 17:17:49 | 000,034,896 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_8f37605116ba80bc_winload.exe.mui_3bc5b827
[2009.07.14 17:17:49 | 000,029,776 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_8f37605116ba80bc_winresume.efi.mui_f412814e
[2009.07.14 17:17:49 | 000,030,288 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_8f37605116ba80bc_winresume.exe.mui_ff8b5358
[2009.07.14 04:58:45 | 000,005,745 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7600.16385_none_b71babd98657e6ef.manifest
[2009.07.14 04:58:45 | 000,641,088 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7600.16385_none_b71babd98657e6ef_winload.efi_75834aa0
[2009.07.14 04:58:45 | 000,604,192 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7600.16385_none_b71babd98657e6ef_winload.exe_75835076
[2009.07.14 04:58:45 | 000,557,136 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7600.16385_none_b71babd98657e6ef_winresume.efi_85cd069f
[2009.07.14 04:58:45 | 000,518,352 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7600.16385_none_b71babd98657e6ef_winresume.exe_85cd1215
[2009.07.14 04:57:50 | 000,002,896 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-s..ive-blackbox-loader_31bf3856ad364e35_6.1.7600.16385_none_c72819e06acceb59.manifest
[2009.07.14 04:57:50 | 000,019,008 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-s..ive-blackbox-loader_31bf3856ad364e35_6.1.7600.16385_none_c72819e06acceb59_spldr.sys_98bd87a0
[2009.07.14 17:15:51 | 000,004,431 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_8f37605116ba80bc.manifest
[2009.07.14 04:13:42 | 000,005,745 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7600.16385_none_b71babd98657e6ef.manifest
[2009.07.14 04:18:27 | 000,002,896 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-s..ive-blackbox-loader_31bf3856ad364e35_6.1.7600.16385_none_c72819e06acceb59.manifest
[2009.07.14 03:15:12 | 000,038,400 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-audio-dmusic_31bf3856ad364e35_6.1.7600.16385_none_45ca7214f0f664cb\dmloader.dll
[2009.07.14 03:03:49 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.16385_none_0a884619dd2388ad\api-ms-win-core-libraryloader-l1-1-0.dll
========== Alternate Data Streams ==========
@Alternate Data Stream - 150 bytes -> C:\ProgramData\TEMP:3440EB47
@Alternate Data Stream - 140 bytes -> C:\ProgramData\TEMP:0888F409
@Alternate Data Stream - 133 bytes -> C:\ProgramData\TEMP:66633281
@Alternate Data Stream - 128 bytes -> C:\ProgramData\TEMP:F93E1473
@Alternate Data Stream - 110 bytes -> C:\ProgramData\TEMP:888AFB86
< End of report >
[2008.08.28 20:34:20 | 004,965,736 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS4\Photodownloader.exe
[2008.08.28 17:42:12 | 000,011,161 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS4\apd\shared_assets\bitmaps\main_window\C_LoadError.png
[2008.08.28 17:42:14 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS4\apd\shared_assets\locales\da_dk\Photodownloader.ini
[2008.08.28 17:42:14 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS4\apd\shared_assets\locales\de_de\Photodownloader.ini
[2008.08.28 17:42:14 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS4\apd\shared_assets\locales\en_us\Photodownloader.ini
[2008.08.28 17:42:14 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS4\apd\shared_assets\locales\es_es\Photodownloader.ini
[2008.08.28 17:42:14 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS4\apd\shared_assets\locales\fi_fi\Photodownloader.ini
[2008.08.28 17:42:14 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS4\apd\shared_assets\locales\fr_fr\Photodownloader.ini
[2008.08.28 17:42:14 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS4\apd\shared_assets\locales\it_it\Photodownloader.ini
[2008.08.28 17:42:14 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS4\apd\shared_assets\locales\ja_jp\Photodownloader.ini
[2008.08.28 17:42:14 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS4\apd\shared_assets\locales\ko_kr\Photodownloader.ini
[2008.08.28 17:42:14 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS4\apd\shared_assets\locales\nl_nl\Photodownloader.ini
[2008.08.28 17:42:14 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS4\apd\shared_assets\locales\no_no\Photodownloader.ini
[2008.08.28 17:42:14 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS4\apd\shared_assets\locales\pt_br\Photodownloader.ini
[2008.08.28 17:42:14 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS4\apd\shared_assets\locales\sv_se\Photodownloader.ini
[2008.08.28 17:42:14 | 000,000,308 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS4\apd\shared_assets\locales\zh_cn\Photodownloader.ini
[2008.08.28 17:42:16 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS4\apd\shared_assets\locales\zh_tw\Photodownloader.ini
[2010.03.09 05:28:40 | 005,297,608 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS5\Photodownloader.exe
[2010.03.09 02:38:58 | 000,011,161 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS5\apd\shared_assets\bitmaps\main_window\C_LoadError.png
[2010.03.09 02:38:58 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS5\apd\shared_assets\locales\da_dk\Photodownloader.ini
[2010.03.09 02:39:00 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS5\apd\shared_assets\locales\de_de\Photodownloader.ini
[2010.03.09 02:39:00 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS5\apd\shared_assets\locales\en_us\Photodownloader.ini
[2010.03.09 02:39:00 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS5\apd\shared_assets\locales\es_es\Photodownloader.ini
[2010.03.09 02:39:00 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS5\apd\shared_assets\locales\fi_fi\Photodownloader.ini
[2010.03.09 02:39:00 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS5\apd\shared_assets\locales\fr_fr\Photodownloader.ini
[2010.03.09 02:39:00 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS5\apd\shared_assets\locales\it_it\Photodownloader.ini
[2010.03.09 02:39:00 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS5\apd\shared_assets\locales\ja_jp\Photodownloader.ini
[2010.03.09 02:39:00 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS5\apd\shared_assets\locales\ko_kr\Photodownloader.ini
[2010.03.09 02:39:00 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS5\apd\shared_assets\locales\nl_nl\Photodownloader.ini
[2010.03.09 02:39:00 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS5\apd\shared_assets\locales\no_no\Photodownloader.ini
[2010.03.09 02:39:00 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS5\apd\shared_assets\locales\pt_br\Photodownloader.ini
[2010.03.09 02:39:00 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS5\apd\shared_assets\locales\sv_se\Photodownloader.ini
[2010.03.09 02:39:00 | 000,000,308 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS5\apd\shared_assets\locales\zh_cn\Photodownloader.ini
[2010.03.09 02:39:00 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS5\apd\shared_assets\locales\zh_tw\Photodownloader.ini
[2010.04.01 21:42:36 | 000,037,112 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Dreamweaver CS5\configuration\Shared\MM\Media\FLVLoader.swf
[2010.06.02 14:27:12 | 000,006,746 | ---- | M] () -- \Program Files (x86)\Artisteer 3 (2)\Library\Images\loaderAnim.gif
[2010.04.14 14:17:08 | 000,000,477 | ---- | M] () -- \Program Files (x86)\Artisteer 3 (2)\Library\Images\loaderAnim2.gif
[2010.04.14 14:17:08 | 000,001,737 | ---- | M] () -- \Program Files (x86)\Artisteer 3 (2)\Library\Images\loaderSnake.gif
[2008.08.14 08:23:12 | 000,009,969 | ---- | M] () -- \Program Files (x86)\Common Files\Adobe\Startup Scripts CS4\Adobe Version Cue\VersionCueSDKLoader.jsx
[2007.05.16 09:26:06 | 000,177,712 | ---- | M] () -- \Program Files (x86)\Common Files\Ahead\Lib\NeGuideStoreLoader.dll
[2009.03.02 15:57:58 | 000,023,757 | ---- | M] () -- \Program Files (x86)\Common Files\GTK\2.0\bin\gdk-pixbuf-query-loaders.exe
[2009.03.02 15:57:58 | 000,003,657 | ---- | M] () -- \Program Files (x86)\Common Files\GTK\2.0\etc\gtk-2.0\gdk-pixbuf.loaders
[2009.03.02 15:56:44 | 000,028,560 | ---- | M] () -- \Program Files (x86)\Common Files\GTK\2.0\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-ani.dll
[2009.03.02 15:56:42 | 000,027,492 | ---- | M] () -- \Program Files (x86)\Common Files\GTK\2.0\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-bmp.dll
[2009.03.02 15:56:42 | 000,041,827 | ---- | M] () -- \Program Files (x86)\Common Files\GTK\2.0\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-gif.dll
[2009.03.02 15:56:40 | 000,020,750 | ---- | M] () -- \Program Files (x86)\Common Files\GTK\2.0\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-icns.dll
[2009.03.02 15:56:44 | 000,027,004 | ---- | M] () -- \Program Files (x86)\Common Files\GTK\2.0\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-ico.dll
[2009.03.02 15:56:42 | 000,033,364 | ---- | M] () -- \Program Files (x86)\Common Files\GTK\2.0\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-jpeg.dll
[2009.03.02 15:56:44 | 000,021,329 | ---- | M] () -- \Program Files (x86)\Common Files\GTK\2.0\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-pcx.dll
[2009.03.02 15:56:42 | 000,035,326 | ---- | M] () -- \Program Files (x86)\Common Files\GTK\2.0\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-png.dll
[2009.03.02 15:56:44 | 000,023,528 | ---- | M] () -- \Program Files (x86)\Common Files\GTK\2.0\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-pnm.dll
[2009.03.02 15:56:42 | 000,018,354 | ---- | M] () -- \Program Files (x86)\Common Files\GTK\2.0\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-ras.dll
[2009.03.02 15:56:44 | 000,023,858 | ---- | M] () -- \Program Files (x86)\Common Files\GTK\2.0\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-tga.dll
[2009.03.02 15:56:44 | 000,028,334 | ---- | M] () -- \Program Files (x86)\Common Files\GTK\2.0\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-tiff.dll
[2009.03.02 15:56:42 | 000,017,895 | ---- | M] () -- \Program Files (x86)\Common Files\GTK\2.0\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-wbmp.dll
[2009.03.02 15:56:42 | 000,023,851 | ---- | M] () -- \Program Files (x86)\Common Files\GTK\2.0\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-xbm.dll
[2009.03.02 15:56:42 | 000,041,060 | ---- | M] () -- \Program Files (x86)\Common Files\GTK\2.0\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-xpm.dll
[2010.10.07 04:36:40 | 000,265,552 | ---- | M] () -- \Program Files (x86)\Common Files\microsoft shared\VSTO\10.0\VSTOLoader.dll
[2010.10.07 04:36:40 | 000,018,264 | ---- | M] () -- \Program Files (x86)\Common Files\microsoft shared\VSTO\10.0\1033\VSTOLoaderUI.dll
[2009.12.17 01:07:42 | 000,000,123 | ---- | M] () -- \Program Files (x86)\Game_Maker8\html\Loader.htm
[2009.12.17 01:30:00 | 000,006,111 | ---- | M] () -- \Program Files (x86)\Game_Maker8\html\Loader2.htm
[2009.07.31 13:40:40 | 000,003,614 | ---- | M] () -- \Program Files (x86)\GIMP-2.0\etc\gtk-2.0\gdk-pixbuf.loaders
[2009.08.08 22:51:40 | 000,016,536 | ---- | M] () -- \Program Files (x86)\GIMP-2.0\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-ani.dll
[2009.08.08 22:51:42 | 000,019,096 | ---- | M] () -- \Program Files (x86)\GIMP-2.0\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-bmp.dll
[2009.08.08 22:51:44 | 000,027,288 | ---- | M] () -- \Program Files (x86)\GIMP-2.0\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-gif.dll
[2009.08.08 22:51:46 | 000,012,440 | ---- | M] () -- \Program Files (x86)\GIMP-2.0\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-icns.dll
[2009.08.08 22:51:48 | 000,017,048 | ---- | M] () -- \Program Files (x86)\GIMP-2.0\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-ico.dll
[2009.08.08 22:51:54 | 000,019,608 | ---- | M] () -- \Program Files (x86)\GIMP-2.0\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-jpeg.dll
[2009.08.08 22:51:56 | 000,014,488 | ---- | M] () -- \Program Files (x86)\GIMP-2.0\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-pcx.dll
[2009.08.08 22:52:02 | 000,019,096 | ---- | M] () -- \Program Files (x86)\GIMP-2.0\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-png.dll
[2009.08.08 22:52:04 | 000,016,024 | ---- | M] () -- \Program Files (x86)\GIMP-2.0\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-pnm.dll
[2009.08.08 22:52:06 | 000,011,928 | ---- | M] () -- \Program Files (x86)\GIMP-2.0\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-ras.dll
[2009.08.08 22:52:08 | 000,017,048 | ---- | M] () -- \Program Files (x86)\GIMP-2.0\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-tga.dll
[2009.08.08 22:52:10 | 000,016,536 | ---- | M] () -- \Program Files (x86)\GIMP-2.0\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-tiff.dll
[2009.08.08 22:52:14 | 000,011,416 | ---- | M] () -- \Program Files (x86)\GIMP-2.0\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-wbmp.dll
[2009.08.08 22:52:18 | 000,013,976 | ---- | M] () -- \Program Files (x86)\GIMP-2.0\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-xbm.dll
[2009.08.08 22:52:20 | 000,028,312 | ---- | M] () -- \Program Files (x86)\GIMP-2.0\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-xpm.dll
[2009.05.01 21:42:00 | 000,009,880 | ---- | M] () -- \Program Files (x86)\GIMP-2.0\lib\gtk-2.0\2.10.0\loaders\svg_loader.dll
[2012.01.18 17:41:54 | 000,169,384 | ---- | M] () -- \Program Files (x86)\HLDS\cstrike\models\qloader.mdl
[2012.01.18 17:43:19 | 000,352,548 | ---- | M] () -- \Program Files (x86)\HLDS\valve\models\loader.mdl
[2012.01.18 17:43:34 | 000,012,764 | ---- | M] () -- \Program Files (x86)\HLDS\valve\sound\ambience\loader_hydra1.wav
[2012.01.18 17:43:34 | 000,012,164 | ---- | M] () -- \Program Files (x86)\HLDS\valve\sound\ambience\loader_step1.wav
[2009.05.21 21:21:18 | 000,007,507 | ---- | M] () -- \Program Files (x86)\HP\Digital Imaging\HelpViewer\Resources\Loader.swf
[2009.10.22 05:29:58 | 000,030,776 | ---- | M] () -- \Program Files (x86)\HP\Digital Imaging\smart web printing\RsrcLoaderLib.dll
[2009.10.22 05:29:58 | 000,002,713 | ---- | M] () -- \Program Files (x86)\HP\Digital Imaging\smart web printing\MozillaAddOn3\xre\components\uriloader.xpt
[2009.09.01 13:57:38 | 000,003,614 | ---- | M] () -- \Program Files (x86)\Inkscape\etc\gtk-2.0\gdk-pixbuf.loaders
[2009.09.01 13:55:32 | 000,028,560 | ---- | M] () -- \Program Files (x86)\Inkscape\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-ani.dll
[2009.09.01 13:55:32 | 000,027,492 | ---- | M] () -- \Program Files (x86)\Inkscape\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-bmp.dll
[2009.09.01 13:55:32 | 000,041,827 | ---- | M] () -- \Program Files (x86)\Inkscape\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-gif.dll
[2009.09.01 13:55:32 | 000,020,750 | ---- | M] () -- \Program Files (x86)\Inkscape\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-icns.dll
[2009.09.01 13:55:32 | 000,027,004 | ---- | M] () -- \Program Files (x86)\Inkscape\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-ico.dll
[2009.09.01 13:55:32 | 000,033,364 | ---- | M] () -- \Program Files (x86)\Inkscape\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-jpeg.dll
[2009.09.01 13:55:32 | 000,021,329 | ---- | M] () -- \Program Files (x86)\Inkscape\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-pcx.dll
[2009.09.01 13:55:32 | 000,035,326 | ---- | M] () -- \Program Files (x86)\Inkscape\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-png.dll
[2009.09.01 13:55:32 | 000,023,528 | ---- | M] () -- \Program Files (x86)\Inkscape\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-pnm.dll
[2009.09.01 13:55:32 | 000,018,354 | ---- | M] () -- \Program Files (x86)\Inkscape\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-ras.dll
[2009.09.01 13:55:32 | 000,023,858 | ---- | M] () -- \Program Files (x86)\Inkscape\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-tga.dll
[2009.09.01 13:55:32 | 000,028,334 | ---- | M] () -- \Program Files (x86)\Inkscape\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-tiff.dll
[2009.09.01 13:55:32 | 000,017,895 | ---- | M] () -- \Program Files (x86)\Inkscape\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-wbmp.dll
[2009.09.01 13:55:32 | 000,023,851 | ---- | M] () -- \Program Files (x86)\Inkscape\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-xbm.dll
[2009.09.01 13:55:32 | 000,041,060 | ---- | M] () -- \Program Files (x86)\Inkscape\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-xpm.dll
[2008.05.08 16:53:38 | 000,018,909 | ---- | M] () -- \Program Files (x86)\Inkscape\lib\gtk-2.0\2.10.0\loaders\svg_loader.dll
[2008.05.08 16:53:38 | 000,002,026 | ---- | M] () -- \Program Files (x86)\Inkscape\lib\gtk-2.0\2.10.0\loaders\svg_loader.dll.a
[2009.09.01 13:53:30 | 000,033,006 | ---- | M] () -- \Program Files (x86)\Inkscape\python\Lib\site-packages\uniconvertor\app\plugins\Filters\ailoader.py
[2009.09.01 13:53:28 | 000,037,492 | ---- | M] () -- \Program Files (x86)\Inkscape\python\Lib\site-packages\uniconvertor\app\plugins\Filters\ailoader.pyc
[2009.09.01 13:53:28 | 000,037,492 | ---- | M] () -- \Program Files (x86)\Inkscape\python\Lib\site-packages\uniconvertor\app\plugins\Filters\ailoader.pyo
[2009.09.01 13:53:30 | 000,001,913 | ---- | M] () -- \Program Files (x86)\Inkscape\python\Lib\site-packages\uniconvertor\app\plugins\Filters\bziploader.py
[2009.09.01 13:53:28 | 000,001,916 | ---- | M] () -- \Program Files (x86)\Inkscape\python\Lib\site-packages\uniconvertor\app\plugins\Filters\bziploader.pyc
[2009.09.01 13:53:28 | 000,001,916 | ---- | M] () -- \Program Files (x86)\Inkscape\python\Lib\site-packages\uniconvertor\app\plugins\Filters\bziploader.pyo
[2009.09.01 13:53:28 | 000,059,660 | ---- | M] () -- \Program Files (x86)\Inkscape\python\Lib\site-packages\uniconvertor\app\plugins\Filters\ccxloader.py
[2009.09.01 13:53:28 | 000,065,718 | ---- | M] () -- \Program Files (x86)\Inkscape\python\Lib\site-packages\uniconvertor\app\plugins\Filters\ccxloader.pyc
[2009.09.01 13:53:28 | 000,065,718 | ---- | M] () -- \Program Files (x86)\Inkscape\python\Lib\site-packages\uniconvertor\app\plugins\Filters\ccxloader.pyo
[2009.09.01 13:53:28 | 000,021,178 | ---- | M] () -- \Program Files (x86)\Inkscape\python\Lib\site-packages\uniconvertor\app\plugins\Filters\cdrloader.py
[2009.09.01 13:53:28 | 000,020,681 | ---- | M] () -- \Program Files (x86)\Inkscape\python\Lib\site-packages\uniconvertor\app\plugins\Filters\cdrloader.pyc
[2009.09.01 13:53:28 | 000,020,497 | ---- | M] () -- \Program Files (x86)\Inkscape\python\Lib\site-packages\uniconvertor\app\plugins\Filters\cdrloader.pyo
[2009.09.01 13:53:30 | 000,001,381 | ---- | M] () -- \Program Files (x86)\Inkscape\python\Lib\site-packages\uniconvertor\app\plugins\Filters\cdrziploader.py
[2009.09.01 13:53:28 | 000,002,162 | ---- | M] () -- \Program Files (x86)\Inkscape\python\Lib\site-packages\uniconvertor\app\plugins\Filters\cdrziploader.pyc
[2009.09.01 13:53:28 | 000,002,162 | ---- | M] () -- \Program Files (x86)\Inkscape\python\Lib\site-packages\uniconvertor\app\plugins\Filters\cdrziploader.pyo
[2009.09.01 13:53:30 | 000,029,656 | ---- | M] () -- \Program Files (x86)\Inkscape\python\Lib\site-packages\uniconvertor\app\plugins\Filters\cgmloader.py
[2009.09.01 13:53:30 | 000,042,851 | ---- | M] () -- \Program Files (x86)\Inkscape\python\Lib\site-packages\uniconvertor\app\plugins\Filters\cgmloader.pyc
[2009.09.01 13:53:30 | 000,042,851 | ---- | M] () -- \Program Files (x86)\Inkscape\python\Lib\site-packages\uniconvertor\app\plugins\Filters\cgmloader.pyo
[2009.09.01 13:53:28 | 000,057,721 | ---- | M] () -- \Program Files (x86)\Inkscape\python\Lib\site-packages\uniconvertor\app\plugins\Filters\cmxloader.py
[2009.09.01 13:53:30 | 000,061,973 | ---- | M] () -- \Program Files (x86)\Inkscape\python\Lib\site-packages\uniconvertor\app\plugins\Filters\cmxloader.pyc
[2009.09.01 13:53:28 | 000,061,973 | ---- | M] () -- \Program Files (x86)\Inkscape\python\Lib\site-packages\uniconvertor\app\plugins\Filters\cmxloader.pyo
[2009.09.01 13:53:30 | 000,002,018 | ---- | M] () -- \Program Files (x86)\Inkscape\python\Lib\site-packages\uniconvertor\app\plugins\Filters\gziploader.py
[2009.09.01 13:53:28 | 000,002,001 | ---- | M] () -- \Program Files (x86)\Inkscape\python\Lib\site-packages\uniconvertor\app\plugins\Filters\gziploader.pyc
[2009.09.01 13:53:30 | 000,002,001 | ---- | M] () -- \Program Files (x86)\Inkscape\python\Lib\site-packages\uniconvertor\app\plugins\Filters\gziploader.pyo
[2009.09.01 13:53:28 | 000,017,222 | ---- | M] () -- \Program Files (x86)\Inkscape\python\Lib\site-packages\uniconvertor\app\plugins\Filters\sk1loader.py
[2009.09.01 13:53:28 | 000,022,472 | ---- | M] () -- \Program Files (x86)\Inkscape\python\Lib\site-packages\uniconvertor\app\plugins\Filters\sk1loader.pyc
[2009.09.01 13:53:28 | 000,022,351 | ---- | M] () -- \Program Files (x86)\Inkscape\python\Lib\site-packages\uniconvertor\app\plugins\Filters\sk1loader.pyo
[2009.09.01 13:53:28 | 000,015,751 | ---- | M] () -- \Program Files (x86)\Inkscape\python\Lib\site-packages\uniconvertor\app\plugins\Filters\skloader.py
[2009.09.01 13:53:28 | 000,020,914 | ---- | M] () -- \Program Files (x86)\Inkscape\python\Lib\site-packages\uniconvertor\app\plugins\Filters\skloader.pyc
[2009.09.01 13:53:28 | 000,020,793 | ---- | M] () -- \Program Files (x86)\Inkscape\python\Lib\site-packages\uniconvertor\app\plugins\Filters\skloader.pyo
[2009.09.01 13:53:30 | 000,029,609 | ---- | M] () -- \Program Files (x86)\Inkscape\python\Lib\site-packages\uniconvertor\app\plugins\Filters\svgloader.py
[2009.09.01 13:53:28 | 000,032,727 | ---- | M] () -- \Program Files (x86)\Inkscape\python\Lib\site-packages\uniconvertor\app\plugins\Filters\svgloader.pyc
[2009.09.01 13:53:28 | 000,032,727 | ---- | M] () -- \Program Files (x86)\Inkscape\python\Lib\site-packages\uniconvertor\app\plugins\Filters\svgloader.pyo
[2009.09.01 13:53:28 | 000,014,821 | ---- | M] () -- \Program Files (x86)\Inkscape\python\Lib\site-packages\uniconvertor\app\plugins\Filters\wmfloader.py
[2009.09.01 13:53:30 | 000,018,962 | ---- | M] () -- \Program Files (x86)\Inkscape\python\Lib\site-packages\uniconvertor\app\plugins\Filters\wmfloader.pyc
[2009.09.01 13:53:28 | 000,018,962 | ---- | M] () -- \Program Files (x86)\Inkscape\python\Lib\site-packages\uniconvertor\app\plugins\Filters\wmfloader.pyo
[2009.09.01 13:53:28 | 000,017,549 | ---- | M] () -- \Program Files (x86)\Inkscape\python\Lib\site-packages\uniconvertor\app\plugins\Filters\xfigloader.py
[2009.09.01 13:53:28 | 000,018,546 | ---- | M] () -- \Program Files (x86)\Inkscape\python\Lib\site-packages\uniconvertor\app\plugins\Filters\xfigloader.pyc
[2009.09.01 13:53:28 | 000,018,546 | ---- | M] () -- \Program Files (x86)\Inkscape\python\Lib\site-packages\uniconvertor\app\plugins\Filters\xfigloader.pyo
[2010.01.28 11:24:20 | 000,003,208 | ---- | M] () -- \Program Files (x86)\Jalbum\skins\Galleria\styles\Dark\loader.gif
[2010.06.23 13:59:26 | 000,003,208 | ---- | M] () -- \Program Files (x86)\Jalbum\skins\Galleria\styles\Gray\loader.gif
[2010.01.28 11:24:22 | 000,003,208 | ---- | M] () -- \Program Files (x86)\Jalbum\skins\Galleria\styles\Light\loader.gif
[2010.06.23 14:40:46 | 000,003,208 | ---- | M] () -- \Program Files (x86)\Jalbum\skins\Galleria\styles\Red\loader.gif
[2011.10.24 14:14:18 | 000,214,528 | ---- | M] () -- \Program Files (x86)\JDownloader\JDownloader.exe
[2011.10.24 14:14:18 | 000,593,293 | ---- | M] () -- \Program Files (x86)\JDownloader\JDownloader.jar
[2011.10.24 14:14:18 | 000,218,816 | ---- | M] () -- \Program Files (x86)\JDownloader\JDownloaderBETA.exe
[2011.10.24 14:14:18 | 000,218,816 | ---- | M] () -- \Program Files (x86)\JDownloader\JDownloaderD3D.exe
[2011.10.26 10:14:37 | 000,000,105 | ---- | M] () -- \Program Files (x86)\JDownloader\jd\img\hosterlogos\uploader.pl.png
[2011.10.24 14:14:18 | 000,007,069 | ---- | M] () -- \Program Files (x86)\JDownloader\jd\plugins\hoster\UploaderPl.class
[2011.10.24 14:14:18 | 000,032,222 | ---- | M] () -- \Program Files (x86)\JDownloader\licenses\jdownloader.license
[2005.08.10 20:01:12 | 000,044,934 | ---- | M] () -- \Program Files (x86)\Macromedia\Flash 8\en\Configuration\Components\User Interface\Loader.swc
[2005.06.20 16:45:24 | 000,000,544 | ---- | M] () -- \Program Files (x86)\Macromedia\Flash 8\en\First Run\Classes\FP7\MovieClipLoader.as
[2005.06.20 16:45:26 | 000,000,544 | ---- | M] () -- \Program Files (x86)\Macromedia\Flash 8\en\First Run\Classes\FP8\MovieClipLoader.as
[2005.07.13 13:06:52 | 000,010,454 | ---- | M] () -- \Program Files (x86)\Macromedia\Flash 8\en\First Run\Classes\mx\controls\Loader.as
[2009.05.31 03:21:00 | 000,071,008 | ---- | M] () -- \Program Files (x86)\NVIDIA Corporation\PhysX\Common\PhysXLoader.dll
[2009.05.31 03:21:00 | 000,073,568 | ---- | M] () -- \Program Files (x86)\NVIDIA Corporation\PhysX\Common\PhysXLoader64.dll
[2006.06.20 19:15:26 | 000,001,058 | ---- | M] () -- \Program Files (x86)\Selteco\Alligator Flash Designer 7\help\loader1.swf
[2006.06.20 19:18:56 | 000,001,240 | ---- | M] () -- \Program Files (x86)\Selteco\Alligator Flash Designer 7\help\loader2.swf
[2006.06.20 19:19:06 | 000,000,878 | ---- | M] () -- \Program Files (x86)\Selteco\Alligator Flash Designer 7\help\loader3.swf
[2006.06.20 19:19:14 | 000,001,832 | ---- | M] () -- \Program Files (x86)\Selteco\Alligator Flash Designer 7\help\loader4.swf
[2006.06.20 19:19:26 | 000,003,392 | ---- | M] () -- \Program Files (x86)\Selteco\Alligator Flash Designer 7\help\loader5.swf
[2007.02.12 19:46:06 | 000,005,583 | ---- | M] () -- \Program Files (x86)\Selteco\Alligator Flash Designer 7\help\preloader.htm
[2004.11.05 14:11:14 | 000,007,877 | ---- | M] () -- \Program Files (x86)\Selteco\Alligator Flash Designer 7\loaders\perloader1.sfd
[2004.11.05 14:41:38 | 000,001,278 | ---- | M] () -- \Program Files (x86)\Selteco\Alligator Flash Designer 7\loaders\perloader3.sfd
[2004.11.05 14:24:12 | 000,011,370 | ---- | M] () -- \Program Files (x86)\Selteco\Alligator Flash Designer 7\loaders\preloader2.sfd
[2004.11.05 15:36:34 | 000,001,463 | ---- | M] () -- \Program Files (x86)\Selteco\Alligator Flash Designer 7\loaders\preloader4.sfd
[2004.11.05 15:49:58 | 000,003,840 | ---- | M] () -- \Program Files (x86)\Selteco\Alligator Flash Designer 7\loaders\preloader5.sfd
[2008.02.25 08:05:22 | 000,856,064 | ---- | M] () -- \Program Files (x86)\TC UP\PLUGINS\Media\TheKMPlayer\ImLoader.dll
[2008.02.25 08:05:22 | 000,856,064 | ---- | M] () -- \Program Files (x86)\The KMPlayer\ImLoader.dll
[2010.10.07 04:36:40 | 000,387,408 | ---- | M] () -- \Program Files\Common Files\Microsoft Shared\VSTO\10.0\VSTOLoader.dll
[2010.10.07 04:36:40 | 000,018,264 | ---- | M] () -- \Program Files\Common Files\Microsoft Shared\VSTO\10.0\1033\VSTOLoaderUI.dll
[2012.03.05 21:15:44 | 000,002,941 | ---- | M] () -- \Program Files\Java\jdk1.7.0_03\lib\visualvm\platform\config\ModuleAutoDeps\org-openide-loaders.xml
[2012.03.05 21:15:45 | 000,000,411 | ---- | M] () -- \Program Files\Java\jdk1.7.0_03\lib\visualvm\platform\config\Modules\org-openide-loaders.xml
[2012.03.05 21:15:45 | 001,138,236 | ---- | M] () -- \Program Files\Java\jdk1.7.0_03\lib\visualvm\platform\modules\org-openide-loaders.jar
[2012.03.05 21:15:45 | 000,007,002 | ---- | M] () -- \Program Files\Java\jdk1.7.0_03\lib\visualvm\platform\modules\locale\org-openide-loaders_ja.jar
[2012.03.05 21:15:45 | 000,006,658 | ---- | M] () -- \Program Files\Java\jdk1.7.0_03\lib\visualvm\platform\modules\locale\org-openide-loaders_zh_CN.jar
[2012.03.05 21:15:45 | 000,000,457 | ---- | M] () -- \Program Files\Java\jdk1.7.0_03\lib\visualvm\platform\update_tracking\org-openide-loaders.xml
[2012.01.10 14:34:00 | 000,013,211 | ---- | M] () -- \Program Files\Oracle\JavaFX 2.0 SDK\docs\api\javafx\application\Preloader.ErrorNotification.html
[2012.01.10 14:34:02 | 000,020,432 | ---- | M] () -- \Program Files\Oracle\JavaFX 2.0 SDK\docs\api\javafx\application\Preloader.html
[2012.01.10 14:34:16 | 000,006,597 | ---- | M] () -- \Program Files\Oracle\JavaFX 2.0 SDK\docs\api\javafx\application\Preloader.PreloaderNotification.html
[2012.01.10 14:34:10 | 000,010,567 | ---- | M] () -- \Program Files\Oracle\JavaFX 2.0 SDK\docs\api\javafx\application\Preloader.ProgressNotification.html
[2012.01.10 14:34:14 | 000,015,082 | ---- | M] () -- \Program Files\Oracle\JavaFX 2.0 SDK\docs\api\javafx\application\Preloader.StateChangeNotification.html
[2012.01.10 14:34:04 | 000,014,414 | ---- | M] () -- \Program Files\Oracle\JavaFX 2.0 SDK\docs\api\javafx\application\Preloader.StateChangeNotification.Type.html
[2012.01.10 14:34:02 | 000,006,842 | ---- | M] () -- \Program Files\Oracle\JavaFX 2.0 SDK\docs\api\javafx\application\class-use\Preloader.ErrorNotification.html
[2012.01.10 14:34:12 | 000,004,449 | ---- | M] () -- \Program Files\Oracle\JavaFX 2.0 SDK\docs\api\javafx\application\class-use\Preloader.html
[2012.01.10 14:34:14 | 000,009,261 | ---- | M] () -- \Program Files\Oracle\JavaFX 2.0 SDK\docs\api\javafx\application\class-use\Preloader.PreloaderNotification.html
[2012.01.10 14:34:16 | 000,006,893 | ---- | M] () -- \Program Files\Oracle\JavaFX 2.0 SDK\docs\api\javafx\application\class-use\Preloader.ProgressNotification.html
[2012.01.10 14:34:14 | 000,006,977 | ---- | M] () -- \Program Files\Oracle\JavaFX 2.0 SDK\docs\api\javafx\application\class-use\Preloader.StateChangeNotification.html
[2012.01.10 14:34:18 | 000,011,165 | ---- | M] () -- \Program Files\Oracle\JavaFX 2.0 SDK\docs\api\javafx\application\class-use\Preloader.StateChangeNotification.Type.html
[2012.01.10 14:34:08 | 000,010,377 | ---- | M] () -- \Program Files\Oracle\JavaFX 2.0 SDK\docs\api\javafx\fxml\FXMLLoader.Attribute.html
[2012.01.10 14:34:14 | 000,012,768 | ---- | M] () -- \Program Files\Oracle\JavaFX 2.0 SDK\docs\api\javafx\fxml\FXMLLoader.ControllerMethodEventHandler.html
[2012.01.10 14:34:08 | 000,014,222 | ---- | M] () -- \Program Files\Oracle\JavaFX 2.0 SDK\docs\api\javafx\fxml\FXMLLoader.CopyElement.html
[2012.01.10 14:34:08 | 000,011,488 | ---- | M] () -- \Program Files\Oracle\JavaFX 2.0 SDK\docs\api\javafx\fxml\FXMLLoader.DefineElement.html
[2012.01.10 14:34:16 | 000,020,205 | ---- | M] () -- \Program Files\Oracle\JavaFX 2.0 SDK\docs\api\javafx\fxml\FXMLLoader.Element.html
[2012.01.10 14:34:02 | 000,014,212 | ---- | M] () -- \Program Files\Oracle\JavaFX 2.0 SDK\docs\api\javafx\fxml\FXMLLoader.ExpressionTargetMapping.html
[2012.01.10 14:34:10 | 000,044,046 | ---- | M] () -- \Program Files\Oracle\JavaFX 2.0 SDK\docs\api\javafx\fxml\FXMLLoader.html
[2012.01.10 14:34:12 | 000,014,967 | ---- | M] () -- \Program Files\Oracle\JavaFX 2.0 SDK\docs\api\javafx\fxml\FXMLLoader.IncludeElement.html
[2012.01.10 14:34:04 | 000,016,588 | ---- | M] () -- \Program Files\Oracle\JavaFX 2.0 SDK\docs\api\javafx\fxml\FXMLLoader.InstanceDeclarationElement.html
[2012.01.10 14:34:02 | 000,013,878 | ---- | M] () -- \Program Files\Oracle\JavaFX 2.0 SDK\docs\api\javafx\fxml\FXMLLoader.PropertyChangeListener.html
[2012.01.10 14:34:10 | 000,015,658 | ---- | M] () -- \Program Files\Oracle\JavaFX 2.0 SDK\docs\api\javafx\fxml\FXMLLoader.PropertyElement.html
[2012.01.10 14:33:56 | 000,014,271 | ---- | M] () -- \Program Files\Oracle\JavaFX 2.0 SDK\docs\api\javafx\fxml\FXMLLoader.ReferenceElement.html
[2012.01.10 14:34:14 | 000,015,319 | ---- | M] () -- \Program Files\Oracle\JavaFX 2.0 SDK\docs\api\javafx\fxml\FXMLLoader.ScriptElement.html
[2012.01.10 14:33:56 | 000,012,568 | ---- | M] () -- \Program Files\Oracle\JavaFX 2.0 SDK\docs\api\javafx\fxml\FXMLLoader.ScriptEventHandler.html
[2012.01.10 14:34:00 | 000,015,451 | ---- | M] () -- \Program Files\Oracle\JavaFX 2.0 SDK\docs\api\javafx\fxml\FXMLLoader.ValueElement.html
[2012.01.10 14:34:12 | 000,008,341 | ---- | M] () -- \Program Files\Oracle\JavaFX 2.0 SDK\docs\api\javafx\fxml\class-use\FXMLLoader.Attribute.html
[2012.01.10 14:34:12 | 000,004,702 | ---- | M] () -- \Program Files\Oracle\JavaFX 2.0 SDK\docs\api\javafx\fxml\class-use\FXMLLoader.ControllerMethodEventHandler.html
[2012.01.10 14:34:12 | 000,004,515 | ---- | M] () -- \Program Files\Oracle\JavaFX 2.0 SDK\docs\api\javafx\fxml\class-use\FXMLLoader.CopyElement.html
[2012.01.10 14:34:12 | 000,004,537 | ---- | M] () -- \Program Files\Oracle\JavaFX 2.0 SDK\docs\api\javafx\fxml\class-use\FXMLLoader.DefineElement.html
[2012.01.10 14:34:10 | 000,006,719 | ---- | M] () -- \Program Files\Oracle\JavaFX 2.0 SDK\docs\api\javafx\fxml\class-use\FXMLLoader.Element.html
[2012.01.10 14:34:14 | 000,004,647 | ---- | M] () -- \Program Files\Oracle\JavaFX 2.0 SDK\docs\api\javafx\fxml\class-use\FXMLLoader.ExpressionTargetMapping.html
[2012.01.10 14:34:16 | 000,007,272 | ---- | M] () -- \Program Files\Oracle\JavaFX 2.0 SDK\docs\api\javafx\fxml\class-use\FXMLLoader.html
[2012.01.10 14:34:14 | 000,004,548 | ---- | M] () -- \Program Files\Oracle\JavaFX 2.0 SDK\docs\api\javafx\fxml\class-use\FXMLLoader.IncludeElement.html
[2012.01.10 14:34:06 | 000,004,680 | ---- | M] () -- \Program Files\Oracle\JavaFX 2.0 SDK\docs\api\javafx\fxml\class-use\FXMLLoader.InstanceDeclarationElement.html
[2012.01.10 14:34:06 | 000,004,636 | ---- | M] () -- \Program Files\Oracle\JavaFX 2.0 SDK\docs\api\javafx\fxml\class-use\FXMLLoader.PropertyChangeListener.html
[2012.01.10 14:34:16 | 000,006,587 | ---- | M] () -- \Program Files\Oracle\JavaFX 2.0 SDK\docs\api\javafx\fxml\class-use\FXMLLoader.PropertyElement.html
[2012.01.10 14:34:16 | 000,004,570 | ---- | M] () -- \Program Files\Oracle\JavaFX 2.0 SDK\docs\api\javafx\fxml\class-use\FXMLLoader.ReferenceElement.html
[2012.01.10 14:34:18 | 000,004,537 | ---- | M] () -- \Program Files\Oracle\JavaFX 2.0 SDK\docs\api\javafx\fxml\class-use\FXMLLoader.ScriptElement.html
[2012.01.10 14:34:06 | 000,004,592 | ---- | M] () -- \Program Files\Oracle\JavaFX 2.0 SDK\docs\api\javafx\fxml\class-use\FXMLLoader.ScriptEventHandler.html
[2012.01.10 14:34:06 | 000,004,526 | ---- | M] () -- \Program Files\Oracle\JavaFX 2.0 SDK\docs\api\javafx\fxml\class-use\FXMLLoader.ValueElement.html
[2011.05.28 22:04:02 | 000,054,784 | ---- | M] () -- \Program Files\WinRAR\Formats\ace32loader.exe
[2012.04.15 17:41:29 | 000,006,494 | ---- | M] () -- \ProgramData\AVG Secure Search\10.2.0.3\modules\skin\ajax-loader.gif
[2012.04.15 17:41:29 | 000,000,729 | ---- | M] () -- \ProgramData\AVG Secure Search\10.2.0.3\modules\skin\loader.gif
[2012.07.09 18:16:52 | 000,006,494 | ---- | M] () -- \ProgramData\AVG Secure Search\11.1.0.12\modules\skin\ajax-loader.gif
[2012.07.09 18:16:52 | 000,000,729 | ---- | M] () -- \ProgramData\AVG Secure Search\11.1.0.12\modules\skin\loader.gif
[2012.06.12 22:20:21 | 000,006,494 | ---- | M] () -- \ProgramData\AVG Secure Search\11.1.0.7\modules\skin\ajax-loader.gif
[2012.06.12 22:20:21 | 000,000,729 | ---- | M] () -- \ProgramData\AVG Secure Search\11.1.0.7\modules\skin\loader.gif
[2011.10.26 10:13:21 | 000,001,905 | ---- | M] () -- \ProgramData\Microsoft\Windows\Start Menu\Programs\JDownloader Uninstaller.lnk
[2011.10.26 10:13:21 | 000,001,884 | ---- | M] () -- \ProgramData\Microsoft\Windows\Start Menu\Programs\JDownloader Update.lnk
[2011.10.26 10:13:21 | 000,001,926 | ---- | M] () -- \ProgramData\Microsoft\Windows\Start Menu\Programs\JDownloader.lnk
[2012.02.29 09:49:32 | 000,072,638 | ---- | M] () -- \ProgramData\Skype\Apps\login\images\loader.gif
[2012.02.29 09:49:32 | 000,003,032 | ---- | M] () -- \ProgramData\Skype\Apps\login\images\loader.png
[2012.04.15 17:41:29 | 000,006,494 | ---- | M] () -- \Users\All Users\AVG Secure Search\10.2.0.3\modules\skin\ajax-loader.gif
[2012.04.15 17:41:29 | 000,000,729 | ---- | M] () -- \Users\All Users\AVG Secure Search\10.2.0.3\modules\skin\loader.gif
[2012.07.09 18:16:52 | 000,006,494 | ---- | M] () -- \Users\All Users\AVG Secure Search\11.1.0.12\modules\skin\ajax-loader.gif
[2012.07.09 18:16:52 | 000,000,729 | ---- | M] () -- \Users\All Users\AVG Secure Search\11.1.0.12\modules\skin\loader.gif
[2012.06.12 22:20:21 | 000,006,494 | ---- | M] () -- \Users\All Users\AVG Secure Search\11.1.0.7\modules\skin\ajax-loader.gif
[2012.06.12 22:20:21 | 000,000,729 | ---- | M] () -- \Users\All Users\AVG Secure Search\11.1.0.7\modules\skin\loader.gif
[2011.10.26 10:13:21 | 000,001,905 | ---- | M] () -- \Users\All Users\Microsoft\Windows\Start Menu\Programs\JDownloader Uninstaller.lnk
[2011.10.26 10:13:21 | 000,001,884 | ---- | M] () -- \Users\All Users\Microsoft\Windows\Start Menu\Programs\JDownloader Update.lnk
[2011.10.26 10:13:21 | 000,001,926 | ---- | M] () -- \Users\All Users\Microsoft\Windows\Start Menu\Programs\JDownloader.lnk
[2012.02.29 09:49:32 | 000,072,638 | ---- | M] () -- \Users\All Users\Skype\Apps\login\images\loader.gif
[2012.02.29 09:49:32 | 000,003,032 | ---- | M] () -- \Users\All Users\Skype\Apps\login\images\loader.png
[2012.07.17 14:23:49 | 000,432,836 | ---- | M] () -- \Users\opopop\AppData\Local\SRDownloader.err
[2012.07.17 14:25:06 | 000,001,376 | ---- | M] () -- \Users\opopop\AppData\Local\SRDownloader.nast
[2012.06.15 20:48:31 | 000,000,723 | ---- | M] () -- \Users\opopop\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\ihflimipbcaljfnojhhknppphnnciiif\1.6.0_0\facemoods\img\ajax-loader.gif
[2012.06.15 20:48:31 | 000,001,866 | ---- | M] () -- \Users\opopop\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\ihflimipbcaljfnojhhknppphnnciiif\1.6.0_0\facemoods\js\FMLoader.js
[2012.07.20 11:02:49 | 000,001,304 | ---- | M] () -- \Users\opopop\AppData\Local\Google\Chrome\User Data\Default\Extensions\ainkhhbgcdbenmmbaoacambbhjfgnmmm\2.0.0.4_0\img\ajax-loader.gif
[2012.07.20 11:02:50 | 000,000,522 | ---- | M] () -- \Users\opopop\AppData\Local\Google\Chrome\User Data\Default\Extensions\ainkhhbgcdbenmmbaoacambbhjfgnmmm\2.0.0.4_0\img\fb_loader.gif
[2012.05.21 09:51:04 | 000,000,723 | ---- | M] () -- \Users\opopop\AppData\Local\Google\Chrome\User Data\Default\Extensions\ihflimipbcaljfnojhhknppphnnciiif\1.6.0_0\facemoods\img\ajax-loader.gif
[2012.05.21 09:51:03 | 000,001,866 | ---- | M] () -- \Users\opopop\AppData\Local\Google\Chrome\User Data\Default\Extensions\ihflimipbcaljfnojhhknppphnnciiif\1.6.0_0\facemoods\js\FMLoader.js
[2009.12.24 17:12:14 | 000,191,477 | ---- | M] () -- \Users\opopop\AppData\Local\Macromedia\Flash 8\en\Configuration\Classes\aso\mx\controls\mx.controls.Loader.aso
[2005.06.20 16:45:24 | 000,000,544 | ---- | M] () -- \Users\opopop\AppData\Local\Macromedia\Flash 8\en\Configuration\Classes\FP7\MovieClipLoader.as
[2005.06.20 16:45:26 | 000,000,544 | ---- | M] () -- \Users\opopop\AppData\Local\Macromedia\Flash 8\en\Configuration\Classes\FP8\MovieClipLoader.as
[2005.07.13 13:06:52 | 000,010,454 | ---- | M] () -- \Users\opopop\AppData\Local\Macromedia\Flash 8\en\Configuration\Classes\mx\controls\Loader.as
[2012.07.02 19:23:20 | 000,010,519 | ---- | M] () -- \Users\opopop\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\XADB5B9Q\AdLoader-aee74f28845638b42a47bb02dc06a7c6.min[1].js
[2011.10.26 10:10:38 | 000,000,914 | ---- | M] () -- \Users\opopop\AppData\Local\Opera\Opera\icons\http%3A%2F%2Fjdownloader.org%2Flib%2Ftpl%2Farctic%2Fimages%2Ffavicon.png
[2011.10.26 12:22:14 | 000,000,914 | ---- | M] () -- \Users\opopop\AppData\Local\Opera\Opera\icons\http%3A%2F%2Fwiki.jdownloader.org%2Flib%2Ftpl%2Farctic%2Fimages%2Ffavicon.png
[2011.09.10 13:16:51 | 000,000,749 | ---- | M] () -- \Users\opopop\AppData\Local\Opera\OperaNext\icons\http%3A%2F%2Fwww.youtubedownloadersite.com%2Ffavicon.png
[2005.07.13 12:06:36 | 000,000,766 | ---- | M] () -- \Users\opopop\AppData\Local\SourceTec\SWFDecompiler\Components\Loader.png
[2012.04.02 13:52:06 | 000,046,467 | ---- | M] () -- \Users\opopop\AppData\Local\Temp\Rar$DR65.968\ModLoader.class
[2012.07.10 17:05:40 | 000,015,360 | ---- | M] () -- \Users\opopop\AppData\Local\Temp\Rar$DR78.672\ModLoader.class
[2012.07.10 17:05:40 | 000,001,934 | ---- | M] () -- \Users\opopop\AppData\Local\Temp\Rar$DR78.672\cpw\mods\fml\common\FMLModLoaderContainer.class
[2012.07.10 17:05:40 | 000,001,221 | ---- | M] () -- \Users\opopop\AppData\Local\Temp\Rar$DR78.672\cpw\mods\fml\common\Loader$1.class
[2012.07.10 17:05:40 | 000,001,336 | ---- | M] () -- \Users\opopop\AppData\Local\Temp\Rar$DR78.672\cpw\mods\fml\common\Loader$State.class
[2012.07.10 17:05:40 | 000,018,501 | ---- | M] () -- \Users\opopop\AppData\Local\Temp\Rar$DR78.672\cpw\mods\fml\common\Loader.class
[2012.07.10 17:05:40 | 000,000,543 | ---- | M] () -- \Users\opopop\AppData\Local\Temp\Rar$DR78.672\cpw\mods\fml\common\LoaderException.class
[2012.07.10 17:05:40 | 000,002,686 | ---- | M] () -- \Users\opopop\AppData\Local\Temp\Rar$DR78.672\cpw\mods\fml\common\ModClassLoader.class
[2012.07.10 17:05:40 | 000,003,099 | ---- | M] () -- \Users\opopop\AppData\Local\Temp\Rar$DR78.672\cpw\mods\fml\common\modloader\ModLoaderHelper.class
[2012.07.10 17:05:40 | 000,019,734 | ---- | M] () -- \Users\opopop\AppData\Local\Temp\Rar$DR78.672\cpw\mods\fml\common\modloader\ModLoaderModContainer.class
[2012.04.02 13:52:06 | 000,046,467 | ---- | M] () -- \Users\opopop\AppData\Local\Temp\Rar$DR98.968\ModLoader.class
[2012.07.23 10:39:06 | 000,005,062 | ---- | M] () -- \Users\opopop\AppData\Roaming\.minecraft\ForgeModLoader-0.log
[2012.07.23 10:31:28 | 000,005,224 | ---- | M] () -- \Users\opopop\AppData\Roaming\.minecraft\ForgeModLoader-1.log
[2012.07.23 09:35:10 | 000,000,745 | ---- | M] () -- \Users\opopop\AppData\Roaming\.minecraft\ModLoader.txt
[2012.07.23 09:35:07 | 000,000,118 | ---- | M] () -- \Users\opopop\AppData\Roaming\.minecraft\config\ModLoader.cfg
[2011.11.30 16:27:18 | 000,001,366 | ---- | M] () -- \Users\opopop\AppData\Roaming\GetRightToGo\Brothersoftdownloader_for_Brawl_Busters.data
[2011.11.30 16:27:11 | 000,000,819 | ---- | M] () -- \Users\opopop\AppData\Roaming\GetRightToGo\Brothersoftdownloader_for_Brawl_Busters.data0
[2011.02.19 00:02:25 | 000,001,244 | ---- | M] () -- \Users\opopop\AppData\Roaming\GetRightToGo\Brothersoftdownloader_for_HL_TagConverter.data
[2011.02.19 00:02:15 | 000,000,839 | ---- | M] () -- \Users\opopop\AppData\Roaming\GetRightToGo\Brothersoftdownloader_for_HL_TagConverter.data0
[2011.06.08 15:03:16 | 000,000,753 | ---- | M] () -- \Users\opopop\AppData\Roaming\GetRightToGo\Brothersoftdownloader_for_TeamSpeak_Client.data
[2011.06.08 15:03:24 | 000,000,920 | ---- | M] () -- \Users\opopop\AppData\Roaming\GetRightToGo\Brothersoftdownloader_for_TeamSpeak_Client.data0
[2010.05.20 17:05:14 | 000,003,208 | ---- | M] () -- \Users\opopop\AppData\Roaming\JAlbum\skins\Galleria\styles\Dark\loader.gif
[2010.05.20 17:05:14 | 000,003,208 | ---- | M] () -- \Users\opopop\AppData\Roaming\JAlbum\skins\Galleria\styles\Light\loader.gif
[2012.07.23 10:26:52 | 000,000,748 | ---- | M] () -- \Users\opopop\AppData\Roaming\Microsoft\Windows\Recent\ModLoader.lnk
[2012.02.20 09:06:36 | 000,904,192 | ---- | M] () -- \Users\opopop\Desktop\SRDownloader.exe
[2007.09.11 10:59:27 | 000,112,476 | ---- | M] () -- \Users\opopop\Desktop\Joomla Artisteer\JOOMLA\Joomla_Big_Com_Pack\Components\Downloads & Links\Doc Man\Addons\mjaztools_dmuploader_v1.1.0.zip
[2010.05.28 03:20:18 | 000,004,050 | ---- | M] () -- \Users\opopop\Desktop\Joomla Artisteer\JOOMLA\joomla1518\libraries\loader.php
[2010.05.28 03:20:50 | 000,000,584 | ---- | M] () -- \Users\opopop\Desktop\Joomla Artisteer\JOOMLA\joomla1518\media\system\images\mootree_loader.gif
[2010.05.28 03:20:50 | 000,008,747 | ---- | M] () -- \Users\opopop\Desktop\Joomla Artisteer\JOOMLA\joomla1518\media\system\js\uploader.js
[2010.05.28 03:20:48 | 000,001,615 | ---- | M] () -- \Users\opopop\Desktop\Joomla Artisteer\JOOMLA\joomla1518\media\system\swf\uploader.swf
[2010.02.18 13:07:38 | 000,031,640 | ---- | M] () -- \Users\opopop\Desktop\web\wordpress\wp-includes\script-loader.php
[2010.02.18 13:07:36 | 000,002,184 | ---- | M] () -- \Users\opopop\Desktop\web\wordpress\wp-includes\template-loader.php
[2012.07.23 10:19:52 | 000,103,347 | ---- | M] () -- \Users\opopop\Downloads\ModLoader.zip
[2012.07.02 19:53:37 | 000,103,347 | ---- | M] () -- \Users\opopop\Downloads\ModLoader125.zip
[2010.03.24 20:35:48 | 000,018,264 | R--- | M] () -- \Windows\Installer\$PatchCache$\Managed\00004119110000000100000000F01FEC\14.0.4763\FL_VSTOLoaderUI_dll_amd64_ln.3643236F_FC70_11D3_A536_0090278A1BB8.41B86362_9D8B_4D9B_B426_8A6D1F809A25
[2010.03.24 20:12:34 | 000,018,264 | R--- | M] () -- \Windows\Installer\$PatchCache$\Managed\00004119110000000100000000F01FEC\14.0.4763\FL_VSTOLoaderUI_dll_x86_ln.3643236F_FC70_11D3_A536_0090278A1BB8.41B86362_9D8B_4D9B_B426_8A6D1F809A25
[2010.03.24 20:35:48 | 000,370,512 | R--- | M] () -- \Windows\Installer\$PatchCache$\Managed\00004119110000000100000000F01FEC\14.0.4763\VSTOLoader_dll_amd64.3643236F_FC70_11D3_A536_0090278A1BB8.41B86362_9D8B_4D9B_B426_8A6D1F809A25
[2010.03.24 20:12:34 | 000,249,680 | R--- | M] () -- \Windows\Installer\$PatchCache$\Managed\00004119110000000100000000F01FEC\14.0.4763\VSTOLoader_dll_x86.3643236F_FC70_11D3_A536_0090278A1BB8.41B86362_9D8B_4D9B_B426_8A6D1F809A25
[2009.07.14 03:03:49 | 000,003,584 | -H-- | M] () -- \Windows\System32\api-ms-win-core-libraryloader-l1-1-0.dll
[2009.07.14 03:15:12 | 000,038,400 | ---- | M] () -- \Windows\System32\dmloader.dll
[2009.07.14 03:03:49 | 000,003,584 | -H-- | M] () -- \Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
[2009.07.14 03:15:12 | 000,038,400 | ---- | M] () -- \Windows\SysWOW64\dmloader.dll
[2012.07.09 18:16:52 | 000,006,494 | ---- | M] () -- \Windows\Temp\avg@toolbar\modules\skin\ajax-loader.gif
[2012.07.09 18:16:52 | 000,000,729 | ---- | M] () -- \Windows\Temp\avg@toolbar\modules\skin\loader.gif
[2009.07.14 03:40:31 | 000,047,616 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-audio-dmusic_31bf3856ad364e35_6.1.7600.16385_none_a1e90d98a953d601\dmloader.dll
[2009.07.14 03:24:53 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.16385_none_66a6e19d9580f9e3\api-ms-win-core-libraryloader-l1-1-0.dll
[2009.07.14 17:17:49 | 000,004,431 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_8f37605116ba80bc.manifest
[2009.07.14 17:17:49 | 000,033,360 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_8f37605116ba80bc_winload.efi.mui_35ee487d
[2009.07.14 17:17:49 | 000,034,896 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_8f37605116ba80bc_winload.exe.mui_3bc5b827
[2009.07.14 17:17:49 | 000,029,776 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_8f37605116ba80bc_winresume.efi.mui_f412814e
[2009.07.14 17:17:49 | 000,030,288 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_8f37605116ba80bc_winresume.exe.mui_ff8b5358
[2009.07.14 04:58:45 | 000,005,745 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7600.16385_none_b71babd98657e6ef.manifest
[2009.07.14 04:58:45 | 000,641,088 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7600.16385_none_b71babd98657e6ef_winload.efi_75834aa0
[2009.07.14 04:58:45 | 000,604,192 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7600.16385_none_b71babd98657e6ef_winload.exe_75835076
[2009.07.14 04:58:45 | 000,557,136 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7600.16385_none_b71babd98657e6ef_winresume.efi_85cd069f
[2009.07.14 04:58:45 | 000,518,352 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7600.16385_none_b71babd98657e6ef_winresume.exe_85cd1215
[2009.07.14 04:57:50 | 000,002,896 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-s..ive-blackbox-loader_31bf3856ad364e35_6.1.7600.16385_none_c72819e06acceb59.manifest
[2009.07.14 04:57:50 | 000,019,008 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-s..ive-blackbox-loader_31bf3856ad364e35_6.1.7600.16385_none_c72819e06acceb59_spldr.sys_98bd87a0
[2009.07.14 17:15:51 | 000,004,431 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_8f37605116ba80bc.manifest
[2009.07.14 04:13:42 | 000,005,745 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7600.16385_none_b71babd98657e6ef.manifest
[2009.07.14 04:18:27 | 000,002,896 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-s..ive-blackbox-loader_31bf3856ad364e35_6.1.7600.16385_none_c72819e06acceb59.manifest
[2009.07.14 03:15:12 | 000,038,400 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-audio-dmusic_31bf3856ad364e35_6.1.7600.16385_none_45ca7214f0f664cb\dmloader.dll
[2009.07.14 03:03:49 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.16385_none_0a884619dd2388ad\api-ms-win-core-libraryloader-l1-1-0.dll
========== Alternate Data Streams ==========
@Alternate Data Stream - 150 bytes -> C:\ProgramData\TEMP:3440EB47
@Alternate Data Stream - 140 bytes -> C:\ProgramData\TEMP:0888F409
@Alternate Data Stream - 133 bytes -> C:\ProgramData\TEMP:66633281
@Alternate Data Stream - 128 bytes -> C:\ProgramData\TEMP:F93E1473
@Alternate Data Stream - 110 bytes -> C:\ProgramData\TEMP:888AFB86
< End of report >
Re: kontrola logu
OTL Extras logfile created on: 25.7.2012 20:58:48 - Run 1
OTL by OldTimer - Version 3.2.54.1 Folder = C:\Users\opopop\Desktop
64bit- Ultimate Edition (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7600.16385)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy
4,00 Gb Total Physical Memory | 1,65 Gb Available Physical Memory | 41,15% Memory free
8,00 Gb Paging File | 5,54 Gb Available in Paging File | 69,28% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 146,39 Gb Total Space | 2,04 Gb Free Space | 1,39% Space Free | Partition Type: NTFS
Drive D: | 449,68 Gb Total Space | 13,04 Gb Free Space | 2,90% Space Free | Partition Type: NTFS
Computer Name: OPOPOP-PC | User Name: opopop | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 7 Days
========== Extra Registry (SafeList) ==========
========== File Associations ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.html[@ = Opera.HTML] -- C:\Program Files\Opera x64\Opera.exe (Opera Software)
.url[@ = InternetShortcut] -- C:\Windows\SysNative\rundll32.exe (Microsoft Corporation)
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation)
.html [@ = Opera.HTML] -- C:\Program Files\Opera x64\Opera.exe (Opera Software)
========== Shell Spawning ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
http [open] -- "C:\Program Files (x86)\Opera\Opera.exe" "%1" (Opera Software)
https [open] -- "C:\Program Files (x86)\Opera\Opera.exe" "%1" (Opera Software)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [Bridge] -- C:\Program Files (x86)\Adobe\Adobe Bridge CS5\Bridge.exe "%L" (Adobe Systems, Inc.)
Directory [Browse with &IrfanView] -- "C:\Program Files (x86)\IrfanView\i_view32.exe" "%1 /thumbs" (Irfan Skiljan)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
http [open] -- "C:\Program Files (x86)\Opera\Opera.exe" "%1" (Opera Software)
https [open] -- "C:\Program Files (x86)\Opera\Opera.exe" "%1" (Opera Software)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [Bridge] -- C:\Program Files (x86)\Adobe\Adobe Bridge CS5\Bridge.exe "%L" (Adobe Systems, Inc.)
Directory [Browse with &IrfanView] -- "C:\Program Files (x86)\IrfanView\i_view32.exe" "%1 /thumbs" (Irfan Skiljan)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
========== Security Center Settings ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 0
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = 28 4D B2 76 41 04 CA 01 [binary data]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
========== Firewall Settings ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 0
"DoNotAllowExceptions" = 1
========== Authorized Applications List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
========== Vista Active Open Ports Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{109BB318-4144-4414-8A0E-25268F5A4D3C}" = lport=2177 | protocol=17 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{16DFDA44-03D8-4BF9-8F7C-F5093F64D09D}" = rport=139 | protocol=6 | dir=out | app=system |
"{1A1125E3-AA97-49A2-A9F6-63C33F854C38}" = rport=2177 | protocol=17 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{2098D6D0-B352-49C0-A52F-FBC4B72AFE1B}" = lport=10243 | protocol=6 | dir=in | app=system |
"{212630AA-B066-40F6-AF0B-42AC4EFB5752}" = lport=138 | protocol=17 | dir=in | app=system |
"{2A492F5B-22D6-4810-B8B8-4C1FE0AC040A}" = lport=137 | protocol=17 | dir=in | app=system |
"{35367003-FFF8-4F35-AF74-A05B83FF40AC}" = lport=445 | protocol=6 | dir=in | app=system |
"{487F4801-D70A-4AF1-A72C-B02A7DDDD89A}" = rport=2177 | protocol=6 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{5382A208-6619-4810-A2C0-56BFA5DE64A3}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{74CD4955-C1E3-4C46-BF73-E4D6299215A9}" = rport=137 | protocol=17 | dir=out | app=system |
"{7B34A98E-9BB0-4FF8-8373-FCBD3B937492}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{7CF02DB6-9859-4CF0-8E97-4FE315A2B008}" = lport=2177 | protocol=6 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{86130BCA-AD41-470D-BD3F-914D031027DA}" = lport=2869 | protocol=6 | dir=in | app=system |
"{9541C872-6DE3-4D78-A01C-2C8415C2AB0F}" = rport=445 | protocol=6 | dir=out | app=system |
"{A366AE88-2714-4B1E-8718-C15C71C0E392}" = rport=10243 | protocol=6 | dir=out | app=system |
"{A7DAF282-E192-4204-AB56-C30CC7B9E8CA}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{C0F90AD7-393D-4D38-809E-55EA86C8BA54}" = rport=138 | protocol=17 | dir=out | app=system |
"{C639B5E1-8FBC-4A7A-BB37-9DE6BA26D286}" = lport=139 | protocol=6 | dir=in | app=system |
"{C95FE200-0260-4FB7-A746-C5B70742A3DB}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{C9857113-BC6C-4451-BDE2-0B349ADE5FB9}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 |
"{D0993C51-8E99-4557-9D83-9C381BF729A8}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{D8659960-D394-478F-A70F-C156FDE9F915}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{EFB5A443-CF82-4EEE-9E0F-87E2BF0BEDD9}" = lport=5353 | protocol=6 | dir=in | name=adobe csi cs4 |
"{FF11474C-5D82-443F-B33F-0489A11F7A13}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
========== Vista Active Application Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{032A7FDB-134C-443D-8DD6-E6A3BA918B39}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{09F3647A-6B96-4B94-81B4-D3E12B25296B}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{0A3BFB77-31E5-447A-90C8-CA0C2540A7F7}" = protocol=6 | dir=out | app=system |
"{0B362158-CC01-4B6D-9137-AC6787DE0BA4}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{0D09329B-A602-474C-8171-BB617E49AED8}" = dir=in | app=c:\program files (x86)\hp\digital imaging\bin\hpqfxt08.exe |
"{0FA8D059-9A20-4D12-9474-2C258FCF938F}" = protocol=6 | dir=in | app=c:\program files (x86)\common files\adobe\cs4servicemanager\cs4servicemanager.exe |
"{14871DAA-CF7F-437C-B26A-BC0386CE3168}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 |
"{156457F9-3B2F-48E6-8BCB-DA276EECABD1}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{1A2B240A-B229-41F7-A86F-EA60709EE8AD}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{288A299A-FAE1-4B01-9584-2BDC45639266}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 |
"{2BD98C2E-61A3-4DD1-B348-7D5E891D2E0B}" = dir=in | app=c:\program files (x86)\hp\digital imaging\bin\hpiscnapp.exe |
"{2FE1370F-0D67-432F-AB59-23E7957B444E}" = dir=in | app=c:\program files (x86)\hp\digital imaging\bin\hpqusgh.exe |
"{3026FC25-5302-49D0-9FA5-81770AAB586D}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{3754991E-25DD-444E-A744-CCC66E3EB8FF}" = protocol=17 | dir=in | app=c:\program files (x86)\common files\adobe\cs4servicemanager\cs4servicemanager.exe |
"{488B9E7B-24BE-4874-857B-FF448300CD77}" = dir=in | app=c:\program files (x86)\hp\digital imaging\bin\hpofxm08.exe |
"{48B1A7F6-37A2-4276-8132-D3F5B9A9F631}" = dir=in | app=c:\program files (x86)\hp\digital imaging\bin\hpqgpc01.exe |
"{654599FC-52F8-45FE-B0B5-C83A893FEE60}" = protocol=17 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{6C45C947-8C78-4C67-BB6C-6AED4702091F}" = dir=in | app=c:\program files (x86)\hp\digital imaging\bin\hpqusgm.exe |
"{7244B4E3-4CA0-4158-A0E0-ADE431A13EC6}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{74C3B72A-585A-4EDF-8495-FFDAB2E0DC99}" = dir=in | app=c:\program files (x86)\hp\digital imaging\bin\hpqtra08.exe |
"{7872EEC8-0738-41B1-B4C5-D7ADD8091869}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{7955B35A-A298-4291-A0F2-A307D4685D46}" = dir=in | app=c:\program files (x86)\hp\digital imaging\bin\hpfccopy.exe |
"{7D1A3F1E-1A17-4D69-961D-445397EC2032}" = dir=in | app=c:\program files (x86)\hp\digital imaging\bin\hpqgplgtupl.exe |
"{7D6B0457-C2BD-4308-8AF1-C93A17558B63}" = protocol=6 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{89655197-4476-4B0D-B0CB-025BF5046C8A}" = protocol=6 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{96266A12-DBC8-43E0-AC2F-D8F718228111}" = dir=in | app=c:\program files (x86)\hp\hp software update\hpwucli.exe |
"{9B828670-9C81-49A1-A09D-E94E84808219}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{9D558DBA-836B-4B0C-8057-922F459606B9}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{9F5363DB-29D5-41B9-82A6-656C3D7D5326}" = dir=in | app=c:\program files (x86)\hp\digital imaging\bin\hpzwiz01.exe |
"{9F8A2B85-1AE0-4900-8B3C-B13E5C48EB51}" = dir=in | app=c:\program files (x86)\hp\digital imaging\bin\hpqkygrp.exe |
"{A1ADA88E-CD62-4C1C-903A-94A419B13217}" = dir=in | app=c:\program files (x86)\hp\digital imaging\bin\hpofxs08.exe |
"{A41BAB74-DBCB-495D-8098-A23413EB2670}" = dir=in | app=c:\program files (x86)\hp\digital imaging\bin\hposfx08.exe |
"{ADB67B30-6802-456D-ADF3-2ED3436390F0}" = dir=in | app=c:\program files (x86)\hp\digital imaging\bin\hpoews01.exe |
"{C01E7436-2566-4796-BAFF-3D7EC164707F}" = dir=in | app=c:\program files (x86)\hp\digital imaging\smart web printing\smartwebprintexe.exe |
"{D52B15D8-0FEB-46F2-A292-8A2993468432}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 |
"{E0DAE01A-024B-4D11-9735-BDDBD2087116}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{E1D369F4-09EF-4189-ABF8-123A71E82A00}" = dir=in | app=c:\program files (x86)\hp\digital imaging\bin\hposid01.exe |
"{E2BC7DBD-CF46-4AE3-87AE-01A6333CF53B}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 |
"{F1C66996-0E2C-43AE-80D1-2AF7BAD9720D}" = dir=in | app=c:\program files (x86)\hp\digital imaging\bin\hpqste08.exe |
"{FF3F920E-CB90-42B5-BE14-D73BE7BCD6EB}" = protocol=17 | dir=in | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"TCP Query User{3E4DAE9C-8007-417B-B678-292EA716F010}C:\totalcmd\totalcmd.exe" = protocol=6 | dir=in | app=c:\totalcmd\totalcmd.exe |
"TCP Query User{4543D43F-1A64-416E-8929-2CF4DAEC885B}C:\program files (x86)\electronic arts\eadm\core.exe" = protocol=6 | dir=in | app=c:\program files (x86)\electronic arts\eadm\core.exe |
"TCP Query User{637DB722-69A4-4B51-A8A9-2F503F4E4939}C:\program files (x86)\electronic arts\eadm\core.exe" = protocol=6 | dir=in | app=c:\program files (x86)\electronic arts\eadm\core.exe |
"TCP Query User{69E90446-3953-402D-ADD0-0D9FCE9A91D8}C:\program files (x86)\internet explorer\iexplore.exe" = protocol=6 | dir=in | app=c:\program files (x86)\internet explorer\iexplore.exe |
"TCP Query User{6B00D6E4-7379-4678-9EAF-EA1FC868730B}C:\program files\java\jre1.5.0_15\bin\javaw.exe" = protocol=6 | dir=in | app=c:\program files\java\jre1.5.0_15\bin\javaw.exe |
"TCP Query User{74FBCFE5-69E6-4BB7-87DF-160FDFC63121}C:\totalcmd\totalcmd.exe" = protocol=6 | dir=in | app=c:\totalcmd\totalcmd.exe |
"TCP Query User{8BA3FC0C-7C4D-4D05-BA6F-2326FD5C3992}C:\program files\java\jre1.5.0_15\bin\javaw.exe" = protocol=6 | dir=in | app=c:\program files\java\jre1.5.0_15\bin\javaw.exe |
"TCP Query User{B416F7BB-FAD5-4947-A65B-76052C466C43}C:\program files (x86)\itv\itv.exe" = protocol=6 | dir=in | app=c:\program files (x86)\itv\itv.exe |
"TCP Query User{DC322467-4ADB-4926-942F-FF6F91062759}C:\program files (x86)\itv\itv.exe" = protocol=6 | dir=in | app=c:\program files (x86)\itv\itv.exe |
"TCP Query User{E232528B-5C1D-4DB7-B0E1-01D1EB8BA35E}C:\windows\syswow64\dplaysvr.exe" = protocol=6 | dir=in | app=c:\windows\syswow64\dplaysvr.exe |
"TCP Query User{EFC561F4-5FB1-4F02-A969-617F92520A6A}C:\program files (x86)\videolan\vlc\vlc.exe" = protocol=6 | dir=in | app=c:\program files (x86)\videolan\vlc\vlc.exe |
"TCP Query User{F286D5F8-EA2C-47BD-89B9-3E74FE118283}C:\program files (x86)\java\jre6\bin\javaw.exe" = protocol=6 | dir=in | app=c:\program files (x86)\java\jre6\bin\javaw.exe |
"UDP Query User{1993B848-990A-471B-BA8B-3F2767DF1D4F}C:\program files (x86)\electronic arts\eadm\core.exe" = protocol=17 | dir=in | app=c:\program files (x86)\electronic arts\eadm\core.exe |
"UDP Query User{1A9624D8-667F-493C-B948-E0F4BF811355}C:\program files (x86)\electronic arts\eadm\core.exe" = protocol=17 | dir=in | app=c:\program files (x86)\electronic arts\eadm\core.exe |
"UDP Query User{4F3EB21F-E1F9-4E8B-B654-D3409DE18D59}C:\program files (x86)\internet explorer\iexplore.exe" = protocol=17 | dir=in | app=c:\program files (x86)\internet explorer\iexplore.exe |
"UDP Query User{6850BC75-61D8-46B6-8B38-9F43D70AEAC4}C:\program files\java\jre1.5.0_15\bin\javaw.exe" = protocol=17 | dir=in | app=c:\program files\java\jre1.5.0_15\bin\javaw.exe |
"UDP Query User{6D40C42C-2B84-4EEA-BE76-1385F45765B3}C:\totalcmd\totalcmd.exe" = protocol=17 | dir=in | app=c:\totalcmd\totalcmd.exe |
"UDP Query User{9A5CC5E7-7624-44CF-AB36-90289B2A76EE}C:\windows\syswow64\dplaysvr.exe" = protocol=17 | dir=in | app=c:\windows\syswow64\dplaysvr.exe |
"UDP Query User{A926F91B-64E1-418A-94F8-3536DAB880D0}C:\program files (x86)\itv\itv.exe" = protocol=17 | dir=in | app=c:\program files (x86)\itv\itv.exe |
"UDP Query User{B7E7F09D-6E71-4C3F-84BA-339F5D35A794}C:\program files (x86)\itv\itv.exe" = protocol=17 | dir=in | app=c:\program files (x86)\itv\itv.exe |
"UDP Query User{D1BCEF9A-7A28-44E0-B431-0337B077D34B}C:\program files (x86)\java\jre6\bin\javaw.exe" = protocol=17 | dir=in | app=c:\program files (x86)\java\jre6\bin\javaw.exe |
"UDP Query User{D907A424-DBF2-4E28-AB7A-1C38673C731C}C:\program files (x86)\videolan\vlc\vlc.exe" = protocol=17 | dir=in | app=c:\program files (x86)\videolan\vlc\vlc.exe |
"UDP Query User{E0286BAD-920D-46E9-9C5E-670C5F6F579A}C:\totalcmd\totalcmd.exe" = protocol=17 | dir=in | app=c:\totalcmd\totalcmd.exe |
"UDP Query User{EB35DD01-9D20-4A4A-868F-56D470C7A23A}C:\program files\java\jre1.5.0_15\bin\javaw.exe" = protocol=17 | dir=in | app=c:\program files\java\jre1.5.0_15\bin\javaw.exe |
========== HKEY_LOCAL_MACHINE Uninstall List ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{027E5FAB-1476-4C59-AAB4-32EF28520399}" = Windows Live Language Selector
"{071c9b48-7c32-4621-a0ac-3f809523288f}" = Microsoft Visual C++ 2005 Redistributable (x64)
"{0C826C5B-B131-423A-A229-C71B3CACCD6A}" = CDDRV_Installer
"{1111706F-666A-4037-7777-203648764D10}" = JavaFX 2.0.3 (64-bit)
"{1ACC8FFB-9D84-4C05-A4DE-D28A9BC91698}" = Windows Live ID Sign-in Assistant
"{1E9FC118-651D-4934-97BE-E53CAE5C7D45}" = Microsoft_VC80_MFCLOC_x86_x64
"{2222706F-666A-4037-7777-203648764D10}" = JavaFX 2.0.3 SDK (64-bit)
"{26A24AE4-039D-4CA4-87B4-2F86417003FF}" = Java(TM) 7 Update 3 (64-bit)
"{295CFB7C-A57E-4313-93E7-68E7CE1D0332}" = Adobe WinSoft Linguistics Plugin x64
"{2D74E972-5A85-44DC-9193-8A302BA8C181}" = Photoshop Camera Raw_x64
"{3A8386F4-A9CC-4395-B9D2-C7E864260B51}" = Aktualizace ovladače pro aplikaci program Windows Mobile Device Center
"{3C8159DD-1890-4625-A5B2-E3D8D78D4486}" = AVG 2012
"{4569AD91-47F4-4D9E-8FC9-717EC32D7AE1}" = Microsoft_VC80_CRT_x86_x64
"{49F6DFDE-8DF7-11E1-9E5F-F04DA23A5C58}" = MSVCRT Redists
"{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148
"{6448F0A8-6813-11D6-A77B-00B0D0150150}" = J2SE Runtime Environment 5.0 Update 15
"{64A3A4F4-B792-11D6-A78A-00B0D0170030}" = Java(TM) SE Development Kit 7 Update 3 (64-bit)
"{6631325A-9B1B-4EE7-8E64-8CC4A6F10643}" = Adobe Fonts All x64
"{8220EEFE-38CD-377E-8595-13398D740ACE}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17
"{8557397C-A42D-486F-97B3-A2CBC2372593}" = Microsoft_VC90_ATL_x86_x64
"{8875A1C0-6308-4790-8CF6-D34E89880052}" = Adobe Linguistics CS4 x64
"{887797BF-37A5-4199-B0C9-0D38D6196E9A}" = Adobe Anchor Service x64 CS4
"{8C8D673B-20FB-43E6-BCB7-9B3F78F2E762}" = Adobe Type Support x64 CS4
"{8DAA31EB-6830-4006-A99F-4DF8AB24714F}" = Adobe CSI CS4 x64
"{8E34682C-8118-31F1-BC4C-98CD9675E1C2}" = Microsoft .NET Framework 4 Extended
"{8E3DF98E-D719-390B-3367-64C01A3E259F}" = ATI Catalyst Install Manager
"{90140000-0015-0405-1000-0000000FF1CE}" = Microsoft Office Access MUI (Czech) 2010
"{90140000-0015-0405-1000-0000000FF1CE}_Office14.PROPLUSR_{9F412D54-AC04-46F9-AFE7-FE15DC0147A0}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-0016-0405-1000-0000000FF1CE}" = Microsoft Office Excel MUI (Czech) 2010
"{90140000-0016-0405-1000-0000000FF1CE}_Office14.PROPLUSR_{9F412D54-AC04-46F9-AFE7-FE15DC0147A0}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-0018-0405-1000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (Czech) 2010
"{90140000-0018-0405-1000-0000000FF1CE}_Office14.PROPLUSR_{9F412D54-AC04-46F9-AFE7-FE15DC0147A0}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-0019-0405-1000-0000000FF1CE}" = Microsoft Office Publisher MUI (Czech) 2010
"{90140000-0019-0405-1000-0000000FF1CE}_Office14.PROPLUSR_{9F412D54-AC04-46F9-AFE7-FE15DC0147A0}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001A-0405-1000-0000000FF1CE}" = Microsoft Office Outlook MUI (Czech) 2010
"{90140000-001A-0405-1000-0000000FF1CE}_Office14.PROPLUSR_{9F412D54-AC04-46F9-AFE7-FE15DC0147A0}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001B-0405-1000-0000000FF1CE}" = Microsoft Office Word MUI (Czech) 2010
"{90140000-001B-0405-1000-0000000FF1CE}_Office14.PROPLUSR_{9F412D54-AC04-46F9-AFE7-FE15DC0147A0}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001F-0405-1000-0000000FF1CE}" = Microsoft Office Proof (Czech) 2010
"{90140000-001F-0405-1000-0000000FF1CE}_Office14.PROPLUSR_{AEC2C00D-1E7E-45E3-9058-81EA2446B3CD}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001F-0407-1000-0000000FF1CE}" = Microsoft Office Proof (German) 2010
"{90140000-001F-0407-1000-0000000FF1CE}_Office14.PROPLUSR_{70A3169E-288F-454F-A08D-20DF66639B50}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001F-0409-1000-0000000FF1CE}" = Microsoft Office Proof (English) 2010
"{90140000-001F-0409-1000-0000000FF1CE}_Office14.PROPLUSR_{0242505C-4E90-407F-9299-B5B275F50D86}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001F-041B-1000-0000000FF1CE}" = Microsoft Office Proof (Slovak) 2010
"{90140000-001F-041B-1000-0000000FF1CE}_Office14.PROPLUSR_{4B806706-B352-42E8-8C8B-5CEBCEDBC4E0}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-002C-0405-1000-0000000FF1CE}" = Microsoft Office Proofing (Czech) 2010
"{90140000-002C-0405-1000-0000000FF1CE}_Office14.PROPLUSR_{715203B3-AD16-41A4-B13C-E1065EAB8963}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-0043-0000-1000-0000000FF1CE}" = Microsoft Office Office 32-bit Components 2010
"{90140000-0043-0000-1000-0000000FF1CE}_Office14.PROPLUSR_{E8B6D35B-0B6F-4DCE-9493-859BF3809A7F}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-0043-0405-1000-0000000FF1CE}" = Microsoft Office Shared 32-bit MUI (Czech) 2010
"{90140000-0043-0405-1000-0000000FF1CE}_Office14.PROPLUSR_{15D45352-C443-406A-9DF2-EF4A750A40CF}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-0044-0405-1000-0000000FF1CE}" = Microsoft Office InfoPath MUI (Czech) 2010
"{90140000-0044-0405-1000-0000000FF1CE}_Office14.PROPLUSR_{9F412D54-AC04-46F9-AFE7-FE15DC0147A0}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-006E-0405-1000-0000000FF1CE}" = Microsoft Office Shared MUI (Czech) 2010
"{90140000-006E-0405-1000-0000000FF1CE}_Office14.PROPLUSR_{4B8654FE-410D-462C-9B3C-09D031BF4534}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-00A1-0405-1000-0000000FF1CE}" = Microsoft Office OneNote MUI (Czech) 2010
"{90140000-00A1-0405-1000-0000000FF1CE}_Office14.PROPLUSR_{9F412D54-AC04-46F9-AFE7-FE15DC0147A0}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-00BA-0405-1000-0000000FF1CE}" = Microsoft Office Groove MUI (Czech) 2010
"{90140000-00BA-0405-1000-0000000FF1CE}_Office14.PROPLUSR_{9F412D54-AC04-46F9-AFE7-FE15DC0147A0}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90BA8112-80B3-4617-A3C1-BD2771B60F74}" = Adobe CMaps x64 CS4
"{91140000-0011-0000-1000-0000000FF1CE}" = Microsoft Office Professional Plus 2010
"{91140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUSR_{7BC9B5EB-125A-4E9B-97E1-8D85B5E960B8}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{925D058B-564A-443A-B4B2-7E90C6432E55}" = Microsoft_VC80_ATL_x86_x64
"{92A3CA0D-55CD-4C5D-BA95-5C2600C20F26}" = Microsoft_VC90_CRT_x86_x64
"{95120000-00B9-0409-1000-0000000FF1CE}" = Microsoft Application Error Reporting
"{A108BD40-0A8C-4385-8874-74C4B6086CC3}" = AVG 2012
"{A3454894-144A-4D80-B605-C128FE0D7329}" = Adobe Drive CS4 x64
"{A472B9E4-0AFF-4F7B-B25D-F64F8E928AAB}" = Microsoft_VC90_MFC_x86_x64
"{C8B84CBB-8F7D-B632-623C-28BBAA4347DB}" = ccc-utility64
"{C8C1BAD5-54E6-4146-AD07-3A8AD36569C3}" = Microsoft_VC80_MFC_x86_x64
"{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}" = SUPERAntiSpyware
"{D2D77DC2-8299-11D1-8949-444553540000}_is1" = ZTE Handset USB Driver 5.2066.1.8B02
"{D3A65B0A-403B-4C20-A488-BFED2BC5D2EF}" = HP OfficeJet J5700
"{D40172D6-CE2D-4B72-BF5F-26A04A900B7B}" = Adobe Photoshop CS4 (64 Bit)
"{DFFABE78-8173-4E97-9C5C-22FB26192FC5}" = Adobe PDF Library Files x64 CS4
"{F3F18612-7B5D-4C05-86C9-AB50F6F71727}" = KhalInstallWrapper
"{F44F6BAB-6988-4E61-A4B2-73E749F56A65}" = program Windows Mobile Device Center
"{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}" = Microsoft .NET Framework 4 Client Profile
"{FF21C3E6-97FD-474F-9518-8DCBE94C2854}" = 64 Bit HP CIO Components Installer
"AVG" = AVG 2012
"CCleaner" = CCleaner
"Defraggler" = Defraggler
"FinePrint" = FinePrint
"Hide Folders 2009_is1" = Hide Folders 2009 3.8
"HP Imaging Device Functions" = HP Imaging Device Functions 13.0
"HP Smart Web Printing" = HP Smart Web Printing 4.60
"HP Solution Center & Imaging Support Tools" = HP Solution Center 13.0
"HPExtendedCapabilities" = HP Customer Participation Program 13.0
"HPOCR" = OCR Software by I.R.I.S. 13.0
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Microsoft .NET Framework 4 Extended" = Microsoft .NET Framework 4 Extended
"Office14.PROPLUSR" = Microsoft Office Professional Plus 2010
"Opera 12.00.1467" = Opera 12.00
"SAMSUNG Mobile USB Modem" = SAMSUNG Mobile USB Modem Software
"SAMSUNG Mobile USB Modem 1.0" = SAMSUNG Mobile USB Modem 1.0 Software
"Shop for HP Supplies" = Shop for HP Supplies
"TeamSpeak 3 Client" = TeamSpeak 3 Client
"Totalcmd64" = Total Commander 64-bit (Remove or Repair)
"WinRAR archiver" = WinRAR 4.01 (64-bit)
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{00ADFB20-AE75-46F4-AD2C-F48B15AC3100}" = Adobe Color NA Recommended Settings CS4
"{033E378E-6AD3-4AD5-BDEB-CBD69B31046C}" = Microsoft_VC90_ATL_x86
"{048298C9-A4D3-490B-9FF9-AB023A9238F3}" = Steam
"{05308C4E-7285-4066-BAE3-6B50DA6ED755}" = Adobe Update Manager CS4
"{054EFA56-2AC1-48F4-A883-0AB89874B972}" = Adobe Extension Manager CS4
"{05F8C9BC-BB1D-642B-1134-6C992CAC81F8}" = Catalyst Control Center Graphics Light
"{06A1D88C-E102-4527-AF70-29FFD7AF215A}" = Scan
"{075315E8-E9E1-4DB3-8CBD-0BEBA9E2BAC3}" = ProductContext
"{08089098-2D08-E78C-08E3-21BE4B6AA029}" = ccc-core-static
"{08D2E121-7F6A-43EB-97FD-629B44903403}" = Microsoft_VC90_CRT_x86
"{098727E1-775A-4450-B573-3F441F1CA243}" = kuler
"{0B0F231F-CE6A-483D-AA23-77B364F75917}" = Windows Live Installer
"{0D2DBE8A-43D0-7830-7AE7-CA6C99A832E7}" = Adobe Community Help
"{0D6013AB-A0C7-41DC-973C-E93129C9A29F}" = Adobe Color JA Extra Settings CS4
"{0D67A4E4-5BE0-4C9A-8AD8-AB552B433F23}" = Adobe Setup
"{0EF5BEA9-B9D3-46d7-8958-FB69A0BAEACC}" = Status
"{0F3647F8-E51D-4FCC-8862-9A8D0C5ACF25}" = Microsoft_VC80_ATL_x86
"{0F723FC1-7606-4867-866C-CE80AD292DAF}" = Adobe CSI CS4
"{14DCD95A-EBA3-4BF0-B7EF-533852E99BE6}" = LG PC Suite II
"{15FEDA5F-141C-4127-8D7E-B962D1742728}" = Adobe Photoshop CS5
"{1618734A-3957-4ADD-8199-F973763109A8}" = Adobe Anchor Service CS4
"{16E16F01-2E2D-4248-A42F-76261C147B6C}" = Adobe Drive CS4
"{16E6D2C1-7C90-4309-8EC4-D2212690AAA4}" = AdobeColorCommonSetRGB
"{1742DE47-1693-4E7C-8121-8E1D6AED5B25}" = J5700
"{175F0111-2968-4935-8F70-33108C6A4DE3}" = MarketResearch
"{18028E0B-974B-B92F-E26F-209044508076}" = CCC Help English
"{1A834332-A9EE-440C-9505-2D07F445F05A}" = MOBILedit! Support Libraries
"{1DA6D447-C54D-4833-84D4-3EA31CAECE9B}" = Windows Live UX Platform Language Pack
"{1EC71BFB-01A3-4239-B6AF-B1AE656B15C0}" = TrayApp
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{200FEC62-3C34-4D60-9CE8-EC372E01C08F}" = Windows Live SOXE Definitions
"{20AEA7B1-6155-44A2-B58E-430F2C9F4ABD}" = AMD OverDrive
"{26A24AE4-039D-4CA4-87B4-2F83216033FF}" = Java(TM) 6 Update 33
"{28518792-DF27-42F1-B3F3-3B18B5CC023C}" = QuantSports
"{2BD5C305-1B27-4D41-B690-7A61172D2FEB}" = Macromedia Flash 8
"{2EEA7AA4-C203-4b90-A34F-19FB7EF1C81C}" = BufferChm
"{2FF8C687-DB7D-4adc-A5DC-57983EC25046}" = DeviceDiscovery
"{3336F667-9049-4D46-98B6-4C743EEBC5B1}" = Windows Live Photo Gallery
"{35D94F92-1D3A-43C5-8605-EA268B1A7BD9}" = PDF Settings CS4
"{39F6E2B4-CFE8-C30A-66E8-489651F0F34C}" = Adobe Media Player
"{3A4C1A78-2C31-7F3D-0AFF-F1AD8E04AD3E}" = Betdaq Assistant
"{3A4E8896-C2E7-4084-A4A4-B8FD1894E739}" = Adobe XMP Panels CS4
"{3D2C9DE6-9ADE-4252-A241-E43723B0CE02}" = Adobe Color - Photoshop Specific CS4
"{3DA8DF9A-044E-46C4-8531-DEDBB0EE37FF}" = Adobe WinSoft Linguistics Plugin
"{3DCF00F5-04A5-4543-A088-70548081120E}_is1" = Compiled Driver Disc (Full) 0.99
"{3E38250B-AEEE-4D75-B93E-A261E30C27C4}" = AGT Pro
"{3E5CBADD-2E51-47C1-BBE2-B802DB6DA56A}" = XTB-Trader 4.00
"{3F9FB449-93DB-4C47-BB5B-7334C4D1736E}" = SD Formatter
"{40BA976E-38B8-4C63-990C-50999C8C3521}" = BPD_Scan
"{43CDF946-F5D9-4292-B006-BA0D92013021}" = WebReg
"{440B915A-0C85-45DB-92AE-75AE14704A64}" = Fax
"{47DA7D2E-408C-4050-B75F-95F6D2E6A332}_is1" = MOBILedit! ver. 5.0.2.1015
"{4943EFF5-229F-435D-BEA9-BE3CAEA783A7}" = Adobe Service Manager Extension
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4A70EF07-7F88-4434-BB61-D1DE8AE93DD4}" = SolutionCenter
"{4CB0307C-565E-4441-86BE-0DF2E4FB828C}" = Microsoft Games for Windows Marketplace
"{521C9144-BD7D-D3A3-3B5C-93E4406F8DEA}" = Catalyst Control Center Graphics Previews Vista
"{53846028-98E3-457D-9A12-7A5F02FF06D2}" = NinjaTrader 6.5
"{5546CDB5-2CE2-498B-B059-5B3BF81FC41F}" = Macromedia Extension Manager
"{5570C7F0-43D0-4916-8A9E-AEDD52FA86F4}" = Adobe Color EU Extra Settings CS4
"{56C049BE-79E9-4502-BEA7-9754A3E60F9B}" = neroxml
"{58E5C3B9-7BED-3E6C-DB3A-C25D43792B9B}" = Catalyst Control Center Graphics Previews Common
"{5A78C15C-BCA3-A605-92A9-F55020DEFBD6}" = Catalyst Control Center HydraVision Full
"{5DC26B5D-B2FD-482C-BA70-D81400AAB374}" = Cleanlab Application
"{5DF7AA5E-A1CB-11E0-A7D6-0013D3D69929}" = MSVCRT Redists
"{5EE7D259-D137-4438-9A5F-42F432EC0421}" = VC80CRTRedist - 8.0.50727.4053
"{5FA2CA02-6E46-4152-AE5B-BAF76B004F9F}" = jAlbum
"{62C68336-B969-4097-B0BD-A3A0FBFD59C1}" = Mumble 1.2.3
"{635FED5B-2C6D-49BE-87E6-7A6FCD22BC5A}" = Microsoft_VC90_MFC_x86
"{63C24A08-70F3-4C8E-B9FB-9F21A903801D}" = Adobe Color Video Profiles CS CS4
"{63E5CDBF-8214-4F03-84F8-CD3CE48639AD}" = Adobe Photoshop CS4 Support
"{63FF21C9-A810-464F-B60A-3111747B1A6D}" = GPBaseService2
"{64B2D6B3-71AC-45A7-A6A1-2E07ABF58341}" = Windows Live Movie Maker
"{67F0E67A-8E93-4C2C-B29D-47C48262738A}" = Adobe Device Central CS4
"{68243FF8-83CA-466B-B2B8-9F99DA5479C4}" = AdobeColorCommonSetCMYK
"{682B3E4F-696A-42DE-A41C-4C07EA1678B4}" = Windows Live SOXE
"{6B2FFB21-AC88-45C3-9A7D-4BB3E744EC91}" = HPSSupply
"{6BBA26E9-AB03-4FE7-831A-3535584CA002}" = Toolbox
"{6D6664A9-3342-4948-9B7E-034EFE366F0F}" = HTC Driver Installer
"{7032B400-11EC-11E0-A9BF-0013D3D69929}" = MSVCRT Redists
"{70CAF6DA-C2F4-40C4-A0A4-10FB04701669}" = bpd_scan
"{72736F5F-520D-472A-88CC-7B02872FD34E}" = ATI Catalyst Registration
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{78906B56-0E81-42A7-AC25-F54C946E1538}" = Windows Live Photo Common
"{79872596-B887-E700-8D56-CADBC78BA5DE}" = Adobe Download Assistant
"{79F86C69-2B17-4368-9234-472A23639E16}" = Ad-Aware
"{7CA5C4DF-8327-4035-AE2B-CA76336A04FD}" = Snagit 11
"{7E265513-8CDA-4631-B696-F40D983F3B07}_is1" = CDBurnerXP
"{7FB413C8-3CAD-49F7-A67C-6EFEB4B04050}" = LogMeIn Hamachi
"{820D3F45-F6EE-4AAF-81EF-CE21FF21D230}" = Adobe Type Support CS4
"{82809116-D1EE-443C-AE31-F19E709DDF7A}" = AMD USB Filter Driver
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{83877DB1-8B77-45BC-AB43-2BAC22E093E0}" = Adobe Bridge CS4
"{83A5D4E9-7FE6-336D-9525-F1C879496014}" = Google Talk Plugin
"{83C292B7-38A5-440B-A731-07070E81A64F}" = Windows Live PIMT Platform
"{842B4B72-9E8F-4962-B3C1-1C422A5C4434}" = Suite Shared Configuration CS4
"{87BB78C4-F36D-4D93-A7C7-F80F18219848}" = AMD DnD V1.0.19
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8B0B72BC-3007-45E9-BBA3-7B7EF8819FA3}" = 5700_Help
"{8BF2C401-02CE-424D-BC26-6C4F9FB446B6}" = Macromedia Flash 8 Video Encoder
"{8C0CAA7A-3272-4991-A808-2C7559DE3409}" = Win7codecs
"{8D15E1B2-D2B7-4A17-B44B-D2DDE5981406}" = iLivid
"{8D7133DE-27D2-47E5-B248-4180278D32AA}" = Catalyst Control Center - Branding
"{8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}" = MSVCRT
"{8FF6F5CA-4E30-4E3B-B951-204CAAA2716A}" = SmartWebPrinting
"{92D58719-BBC1-4CC3-A08B-56C9E884CC2C}" = Microsoft_VC80_CRT_x86
"{92EA4134-10D1-418A-91E1-5A0453131A38}" = Windows Live Movie Maker
"{931AB7EA-3656-4BB7-864D-022B09E3DD67}" = Adobe Linguistics CS4
"{94D398EB-D2FD-4FD1-B8C4-592635E8A191}" = Adobe CMaps CS4
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9B362566-EC1B-4700-BB9C-EC661BDE2175}" = DocProc
"{A498D9EB-927B-459B-85D6-DD6EF8C2C564}" = erLT
"{A724904F-085B-D8BA-D5D4-DDC355F2028B}" = Catalyst Control Center Graphics Full Existing
"{A78FE97A-C0C8-49CE-89D0-EDD524A17392}" = PDF Settings CS5
"{A9BDCA6B-3653-467B-AC83-94367DA3BFE3}" = Windows Live Photo Common
"{B0069CFA-5BB9-4C03-B1C6-89CE290E5AFE}" = HP Update
"{B29AD377-CC12-490A-A480-1452337C618D}" = Connect
"{B3EBF7DE-2A5B-4E10-9438-931EE6B22C05}" = eM Client
"{B440D659-FECA-4BDD-A12B-5C9F05790FF3}" = Snagit 9.1.2
"{B65BA85C-0A27-4BC0-A22D-A66F0E5B9494}" = Adobe Photoshop CS4
"{B821B5FF-BC0E-42FE-96D8-E0FA023F69C7}" = BB FlashBack Free Edition
"{B9BB21C1-F676-405B-B6A6-92FDC400C819}" = Jalbum
"{BB4E33EC-8181-4685-96F7-8554293DEC6A}" = Adobe Output Module
"{BC86ABDF-8148-44B3-8105-4AE9DDBFDCB6}" = Betting Assistant
"{BCDB856C-D247-4DEE-9132-89C02F4D6B8C}_is1" = Sothink SWF Decompiler
"{BD7204BA-DD64-499E-9B55-6A282CDF4FA4}" = Destinations
"{BED5FA72-8D62-4214-A43E-F57A9BE7ADBB}_is1" = Amnesia: The Dark Descent version 1.0
"{C43326F5-F135-4551-8270-7F7ABA0462E1}" = HPProductAssistant
"{C52E3EC1-048C-45E1-8D53-10B0C6509683}" = Adobe Default Language CS4
"{C79312BD-3E76-4474-A10C-1435D1856A4B}" = Adobe Dreamweaver CS5
"{C8B3F209-76D5-4C8B-9CDE-A29F520F2C40}" = Trefík - podpora databází
"{CC75AB5C-2110-4A7F-AF52-708680D22FE8}" = Photoshop Camera Raw
"{CE95A79E-E4FC-4FFF-8A75-29F04B942FF2}" = Windows Live UX Platform
"{D1A19B02-817E-4296-A45B-07853FD74D57}" = Microsoft_VC80_MFC_x86
"{D43B1A55-6957-4E93-A674-338F78B4A202}" = BPDSoftware
"{D45240D3-B6B3-4FF9-B243-54ECE3E10066}" = Windows Live Communications Platform
"{D7BF3B76-EEF9-4868-9B2B-42ABF60B279A}" = Microsoft_VC80_CRT_x86
"{D866B594-7FDB-785A-93C3-33EE8B6153C6}" = Catalyst Control Center Core Implementation
"{D92BBB52-82FF-42ED-8A3C-4E062F944AB7}" = Microsoft_VC80_MFCLOC_x86
"{D98C0C51-F9BB-4EE4-B791-22BF6EE31029}" = Nero 7 Ultra Edition
"{DBC2CFCA-9BAE-45F6-A975-11B57BE01D18}" = Sky Aces
"{E09C4DB7-630C-4F06-A631-8EA7239923AF}" = D3DX10
"{E0A1335B-3D84-413B-B92C-DF2D4BAACA0C}" = BPDSoftware_Ini
"{E4848436-0345-47E2-B648-8B522FCDA623}" = Adobe Photoshop CS4
"{EC797AE2-3ED8-857D-3350-AA3EA43C24B4}" = Catalyst Control Center Graphics Full New
"{EE7257A2-39A2-4D2F-9DAC-F9F25B8AE1D8}" = Skype™ 5.10
"{EF5B1E83-1403-4F0E-A8E6-C169DF0CCE8C}" = LG PC Suite II
"{EF7E931D-DC84-471B-8DB6-A83358095474}" = EA Download Manager
"{F022B56C-2B90-B9E1-332E-5C1277A47E7B}" = Catalyst Control Center InstallProxy
"{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}" = Microsoft SQL Server 2005 Compact Edition [ENU]
"{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
"{F0E64E2E-3A60-40D8-A55D-92F6831875DA}" = Adobe Search for Help
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F2508213-9989-4E85-A078-72BE483917EF}" = Microsoft Games for Windows - LIVE Redistributable
"{F29B21BD-CAA6-445F-8EF7-A7E2B9D8B14E}" = Logitech SetPoint
"{F5EF5865-F91A-4AA5-9D04-A96FAC5E05CA}" = PDF Master SE 3.0
"{F8EF2B3F-C345-4F20-8FE4-791A20333CD5}" = Adobe ExtendScript Toolkit CS4
"{F93C84A6-0DC6-42AF-89FA-776F7C377353}" = Adobe PDF Library Files CS4
"{F9835182-794B-4F24-902A-E2CA9D43380F}" = NVIDIA PhysX
"{FB79FDB7-4DE1-453D-99FE-9A880F57380E}" = Windows Live Fotogalerie
"{FCDBEA60-79F0-4FAE-BBA8-55A26C609A49}" = Visual Studio 2008 x64 Redistributables
"{FCDD51BB-CAD0-4BB1-B7DF-CE86D1032794}" = Adobe Fonts All
"{FE23D063-934D-4829-A0D8-00634CE79B4A}" = Adobe AIR
"{FE62C88B-425B-4BDE-8B70-CD5AE3B83176}" = Windows Live Essentials
"{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
"123 Flash Menu" = 123 Flash Menu v4.1.5.1400
"5513-1208-7298-9440" = JDownloader 0.9
"6977-5381-5350-4941" = Swarm 3.0
"845CCCCA-B77C-43EA-9A43-62DACEA4F902" = DreamStream E2
"AAA Logo 3.10 Business_is1" = AAA Logo Business Edition 3.10
"Ad Muncher" = Ad Muncher v4.91 Build 32562
"Adobe AIR" = Adobe AIR
"Adobe Flash Player ActiveX" = Adobe Flash Player 11 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin
"Adobe_faf656ef605427ee2f42989c3ad31b8" = Adobe Photoshop CS4
"Agama Web Buttons_is1" = Agama Web Buttons
"Alligator Flash Designer 7" = Alligator Flash Designer 7 (7.0.3.3) Trial
"AMD64 CPU Assistant_is1" = AMD64 CPU Assistant 0.10
"Artisteer 3" = Artisteer 3
"Ashampoo Burning Studio 6 FREE_is1" = Ashampoo Burning Studio 6 FREE
"Ask Toolbar_is1" = Foxit Toolbar
"AutoHotkey" = AutoHotkey 1.0.48.05
"AviSynth" = AviSynth 2.5
"BackAndLay Calculator_is1" = BackAndLay - Version 0.9
"BandiMPEG1" = Bandisoft MPEG-1 Decoder
"BB FlashBack Free Edition" = BB FlashBack Free Edition
"BetdaqAssistant.389FD738CB3FAA05327C60BCB3256FB4301F5711.1" = Betdaq Assistant
"Clownfish" = Clownfish for Skype
"com.adobe.amp.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1" = Adobe Media Player
"com.adobe.downloadassistant.AdobeDownloadAssistant" = Adobe Download Assistant
"Combined Community Codec Pack_is1" = Combined Community Codec Pack 2010-10-10
"CoreAAC" = CoreAAC
"DAEMON Tools Toolbar" = DAEMON Tools Toolbar
"DivX Setup.divx.com" = DivX Setup
"DreamBoxEdit" = DreamBoxEdit -- The one and only settings editor for your Dreambox
"DVD Shrink_is1" = DVD Shrink 3.2
"EnigmEdit" = EnigmEdit (remove only)
"Enterra Icon Keeper_is1" = Enterra Icon Keeper 1.0.0.2
"facemoods" = Facemoods Toolbar
"Foxit Reader" = Foxit Reader
"Fraps" = Fraps (remove only)
"Free_Lunch_Design_TB Toolbar" = Free Lunch Design TB Toolbar
"Game Maker 8.0" = Game Maker 8.0
"GameParkClient_is1" = GamePark
"GTK 2.0" = GTK+ Runtime 2.14.7 rev a (odstranit)
"chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1" = Adobe Community Help
"iLivid" = iLivid
"Inkscape" = Inkscape 0.47
"IrfanView" = IrfanView (remove only)
"LogMeIn Hamachi" = LogMeIn Hamachi
"Malwarebytes' Anti-Malware_is1" = Malwarebytes Anti-Malware verze 1.62.0.1300
"McAfee Security Scan" = McAfee Security Scan Plus
"Mechanical Calculator_is1" = Mechanical Calculator 7 (7.0.3)
"Mort Hill's In Play Tennis Calculator" = Mort Hill's In Play Tennis Calculator 2.03
"Mozilla Thunderbird (8.0)" = Mozilla Thunderbird (8.0)
"NAVI GUI 2012 (1024x768) 1.00" = NAVI GUI 2012 (1024x768) 1.00
"Nezmeškej" = Nezmeškej
"Notepad++" = Notepad++
"OnCourt_is1" = OnCourt 5.6.0
"Opera 12.00.1433" = Opera Next 12.00 beta build 1433
"Opera 12.00.1467" = Opera 12.00
"Picasa 3" = Picasa 3
"ProgDVB" = ProgDVB
"PSPad editor_is1" = PSPad editor
"RonyaSoft Poster Printer (ProPoster)" = RonyaSoft Poster Printer (ProPoster) 3.01
"Save Flash" = Save Flash 4.3
"Steam App 10" = Counter-Strike
"Steam App 109410" = Brawl Busters
"Steam App 40" = Deathmatch Classic
"Steam App 5" = Dedicated Server
"Swarm Spawn 1.0.0" = Swarm Spawn 1.0.0
"TC UP" = Total Commander Ultima Prime 4.9.0.0
"Tennis_0" = Tennis Predictor 1.2.1 (Demo Version)
"The KMPlayer" = The KMPlayer (remove only)
"Totalcmd" = Total Commander (Remove or Repair)
"TVAnts 1.0" = TVAnts 1.0
"tvMobili" = tvMobili
"Ultra AVI Converter_is1" = Ultra AVI Converter 5.2.0326
"UnderCoverXP_is1" = UnderCoverXP 1.22
"VideoReDo4_is1" = VideoReDo TVSuite Version 4.20.6.619
"VLC media player" = VLC media player 1.1.9
"vShare" = vShare Plugin
"WinGimp-2.0_is1" = GIMP 2.6.7
"WinLiveSuite" = Windows Live Essentials
"YTdetect" = Yahoo! Detect
========== HKEY_USERS Uninstall List ==========
[HKEY_USERS\S-1-5-21-177668100-1846633066-3982842387-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"75c0e0ceac8ef0d4" = CZShare Manager - 1
"Dropbox" = Dropbox
"Google Chrome" = Google Chrome
"Google Chrome SxS" = Google Chrome Canary
"Octoshape Streaming Services" = Octoshape Streaming Services
"UnityWebPlayer" = Unity Web Player
========== Last 20 Event Log Errors ==========
[ Application Events ]
Error - 23.7.2012 5:11:13 | Computer Name = opopop-PC | Source = Application Hang | ID = 1002
Description = Program opera.exe verze 12.0.1467.0 přestal spolupracovat se systémem
Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací o tomto
problému, vyhledejte historii problému v ovládacím panelu Centrum akcí. ID procesu:
1874 Čas spuštění: 01cd68aca3ce0d5b Čas ukončení: 10 Cesta k aplikaci: C:\Program
Files\Opera x64\opera.exe ID hlášení: 57c75f9d-d4a6-11e1-93dc-00241d82b71a
Error - 23.7.2012 11:32:37 | Computer Name = opopop-PC | Source = Application Error | ID = 1000
Description = Název chybující aplikace: AdMunch.exe, verze: 4.91.0.32562, časové
razítko: 0x802b3e78 Název chybujícího modulu: AdMunch.exe, verze: 4.91.0.32562,
časové razítko: 0x802b3e78 Kód výjimky: 0xc0000005 Posun chyby: 0x0048fa5c ID chybujícího
procesu: 0xf38 Čas spuštění chybující aplikace: 0x01cd68e86051db78 Cesta k chybující
aplikaci: C:\Program Files (x86)\Ad Muncher\AdMunch.exe Cesta k chybujícímu modulu:
C:\Program Files (x86)\Ad Muncher\AdMunch.exe ID zprávy: a1434104-d4db-11e1-a4f1-00241d82b71a
Error - 24.7.2012 0:43:14 | Computer Name = opopop-PC | Source = Application Error | ID = 1000
Description = Název chybující aplikace: AdMunch.exe, verze: 4.91.0.32562, časové
razítko: 0x802b3e78 Název chybujícího modulu: AdMunch.exe, verze: 4.91.0.32562,
časové razítko: 0x802b3e78 Kód výjimky: 0xc0000005 Posun chyby: 0x0048fa5c ID chybujícího
procesu: 0xd8c Čas spuštění chybující aplikace: 0x01cd6956d17ecfb3 Cesta k chybující
aplikaci: C:\Program Files (x86)\Ad Muncher\AdMunch.exe Cesta k chybujícímu modulu:
C:\Program Files (x86)\Ad Muncher\AdMunch.exe ID zprávy: 13b80637-d54a-11e1-9062-00241d82b71a
Error - 24.7.2012 2:31:19 | Computer Name = opopop-PC | Source = Application Error | ID = 1000
Description = Název chybující aplikace: AdMunch.exe, verze: 4.91.0.32562, časové
razítko: 0x802b3e78 Název chybujícího modulu: AdMunch.exe, verze: 4.91.0.32562,
časové razítko: 0x802b3e78 Kód výjimky: 0xc0000005 Posun chyby: 0x0048fa5c ID chybujícího
procesu: 0xfdc Čas spuštění chybující aplikace: 0x01cd6965ebbf54cb Cesta k chybující
aplikaci: C:\Program Files (x86)\Ad Muncher\AdMunch.exe Cesta k chybujícímu modulu:
C:\Program Files (x86)\Ad Muncher\AdMunch.exe ID zprávy: 2d774bdc-d559-11e1-bf36-00241d82b71a
Error - 24.7.2012 17:33:33 | Computer Name = opopop-PC | Source = Application Error | ID = 1000
Description = Název chybující aplikace: AdMunch.exe, verze: 4.91.0.32562, časové
razítko: 0x802b3e78 Název chybujícího modulu: AdMunch.exe, verze: 4.91.0.32562,
časové razítko: 0x802b3e78 Kód výjimky: 0xc0000005 Posun chyby: 0x0048fa5c ID chybujícího
procesu: 0x4e88 Čas spuštění chybující aplikace: 0x01cd69e3f893e28c Cesta k chybující
aplikaci: C:\Program Files (x86)\Ad Muncher\AdMunch.exe Cesta k chybujícímu modulu:
C:\Program Files (x86)\Ad Muncher\AdMunch.exe ID zprávy: 3796ea59-d5d7-11e1-bf36-00241d82b71a
Error - 24.7.2012 17:33:44 | Computer Name = opopop-PC | Source = Application Error | ID = 1000
Description = Název chybující aplikace: AdMunch.exe, verze: 4.91.0.32562, časové
razítko: 0x802b3e78 Název chybujícího modulu: AdMunch.exe, verze: 4.91.0.32562,
časové razítko: 0x802b3e78 Kód výjimky: 0xc0000005 Posun chyby: 0x0048fa5c ID chybujícího
procesu: 0x4f08 Čas spuštění chybující aplikace: 0x01cd69e4005e79b1 Cesta k chybující
aplikaci: C:\Program Files (x86)\Ad Muncher\AdMunch.exe Cesta k chybujícímu modulu:
C:\Program Files (x86)\Ad Muncher\AdMunch.exe ID zprávy: 3e1881ed-d5d7-11e1-bf36-00241d82b71a
Error - 24.7.2012 17:39:17 | Computer Name = opopop-PC | Source = Application Error | ID = 1000
Description = Název chybující aplikace: AdMunch.exe, verze: 4.91.0.32562, časové
razítko: 0x802b3e78 Název chybujícího modulu: AdMunch.exe, verze: 4.91.0.32562,
časové razítko: 0x802b3e78 Kód výjimky: 0xc0000005 Posun chyby: 0x0048fa5c ID chybujícího
procesu: 0x44c4 Čas spuštění chybující aplikace: 0x01cd69e4c6158d91 Cesta k chybující
aplikaci: C:\Program Files (x86)\Ad Muncher\AdMunch.exe Cesta k chybujícímu modulu:
C:\Program Files (x86)\Ad Muncher\AdMunch.exe ID zprávy: 048a8419-d5d8-11e1-bf36-00241d82b71a
Error - 24.7.2012 17:45:55 | Computer Name = opopop-PC | Source = Application Error | ID = 1000
Description = Název chybující aplikace: opera_plugin_wrapper.exe, verze: 12.0.1467.0,
časové razítko: 0x4fd85908 Název chybujícího modulu: opera_plugin_wrapper.exe, verze:
12.0.1467.0, časové razítko: 0x4fd85908 Kód výjimky: 0xc0000005 Posun chyby: 0x0000000000018865
ID
chybujícího procesu: 0x540 Čas spuštění chybující aplikace: 0x01cd69a86268d45d Cesta
k chybující aplikaci: C:\Program Files\Opera x64\pluginwrapper\opera_plugin_wrapper.exe
Cesta
k chybujícímu modulu: C:\Program Files\Opera x64\pluginwrapper\opera_plugin_wrapper.exe
ID
zprávy: f1e51dbe-d5d8-11e1-bf36-00241d82b71a
Error - 25.7.2012 2:53:20 | Computer Name = opopop-PC | Source = Application Error | ID = 1000
Description = Název chybující aplikace: AdMunch.exe, verze: 4.91.0.32562, časové
razítko: 0x802b3e78 Název chybujícího modulu: AdMunch.exe, verze: 4.91.0.32562,
časové razítko: 0x802b3e78 Kód výjimky: 0xc0000005 Posun chyby: 0x0048fa5c ID chybujícího
procesu: 0x150 Čas spuštění chybující aplikace: 0x01cd6a322ad613ff Cesta k chybující
aplikaci: C:\Program Files (x86)\Ad Muncher\AdMunch.exe Cesta k chybujícímu modulu:
C:\Program Files (x86)\Ad Muncher\AdMunch.exe ID zprávy: 6abe46df-d625-11e1-9f6d-00241d82b71a
Error - 25.7.2012 2:55:17 | Computer Name = opopop-PC | Source = Lavasoft Ad-Aware Service | ID = 0
Description =
Error - 25.7.2012 11:59:34 | Computer Name = opopop-PC | Source = Application Error | ID = 1000
Description = Název chybující aplikace: AdMunch.exe, verze: 4.91.0.32562, časové
razítko: 0x802b3e78 Název chybujícího modulu: AdMunch.exe, verze: 4.91.0.32562,
časové razítko: 0x802b3e78 Kód výjimky: 0xc0000005 Posun chyby: 0x0048fa5c ID chybujícího
procesu: 0xc44 Čas spuštění chybující aplikace: 0x01cd6a7e728d25ee Cesta k chybující
aplikaci: C:\Program Files (x86)\Ad Muncher\AdMunch.exe Cesta k chybujícímu modulu:
C:\Program Files (x86)\Ad Muncher\AdMunch.exe ID zprávy: ba0d0391-d671-11e1-9400-00241d82b71a
[ System Events ]
Error - 24.7.2012 2:20:12 | Computer Name = opopop-PC | Source = Service Control Manager | ID = 7026
Description = Zavedení následujícího ovladače pro spouštění počítače nebo systému
se nezdařilo: NetworkX VD_FileDisk
Error - 24.7.2012 2:31:19 | Computer Name = opopop-PC | Source = Service Control Manager | ID = 7024
Description = Služba Naslouchací proces domácí skupiny ukončena s chybou %%-2147023143,
specifickou pro službu.
Error - 25.7.2012 2:50:45 | Computer Name = opopop-PC | Source = Application Popup | ID = 1060
Description = Načtení \SystemRoot\SysWow64\Drivers\VD_FileDisk.SYS bylo zablokováno
kvůli nekompatibilitě s tímto systémem. Požádejte dodavatele softwaru o kompatibilní
verzi ovladače.
Error - 25.7.2012 2:51:10 | Computer Name = opopop-PC | Source = Service Control Manager | ID = 7000
Description = Služba Crypkey License neuspěla při spuštění v důsledku následující
chyby: %%2
Error - 25.7.2012 2:51:32 | Computer Name = opopop-PC | Source = Service Control Manager | ID = 7026
Description = Zavedení následujícího ovladače pro spouštění počítače nebo systému
se nezdařilo: NetworkX VD_FileDisk
Error - 25.7.2012 2:54:19 | Computer Name = opopop-PC | Source = Service Control Manager | ID = 7024
Description = Služba Naslouchací proces domácí skupiny ukončena s chybou %%-2147023143,
specifickou pro službu.
Error - 25.7.2012 11:58:35 | Computer Name = opopop-PC | Source = Application Popup | ID = 1060
Description = Načtení \SystemRoot\SysWow64\Drivers\VD_FileDisk.SYS bylo zablokováno
kvůli nekompatibilitě s tímto systémem. Požádejte dodavatele softwaru o kompatibilní
verzi ovladače.
Error - 25.7.2012 11:59:00 | Computer Name = opopop-PC | Source = Service Control Manager | ID = 7000
Description = Služba Crypkey License neuspěla při spuštění v důsledku následující
chyby: %%2
Error - 25.7.2012 12:00:32 | Computer Name = opopop-PC | Source = Service Control Manager | ID = 7026
Description = Zavedení následujícího ovladače pro spouštění počítače nebo systému
se nezdařilo: NetworkX VD_FileDisk
Error - 25.7.2012 12:01:06 | Computer Name = opopop-PC | Source = Service Control Manager | ID = 7024
Description = Služba Naslouchací proces domácí skupiny ukončena s chybou %%-2147023143,
specifickou pro službu.
< End of report >
OTL by OldTimer - Version 3.2.54.1 Folder = C:\Users\opopop\Desktop
64bit- Ultimate Edition (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7600.16385)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy
4,00 Gb Total Physical Memory | 1,65 Gb Available Physical Memory | 41,15% Memory free
8,00 Gb Paging File | 5,54 Gb Available in Paging File | 69,28% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 146,39 Gb Total Space | 2,04 Gb Free Space | 1,39% Space Free | Partition Type: NTFS
Drive D: | 449,68 Gb Total Space | 13,04 Gb Free Space | 2,90% Space Free | Partition Type: NTFS
Computer Name: OPOPOP-PC | User Name: opopop | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 7 Days
========== Extra Registry (SafeList) ==========
========== File Associations ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.html[@ = Opera.HTML] -- C:\Program Files\Opera x64\Opera.exe (Opera Software)
.url[@ = InternetShortcut] -- C:\Windows\SysNative\rundll32.exe (Microsoft Corporation)
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation)
.html [@ = Opera.HTML] -- C:\Program Files\Opera x64\Opera.exe (Opera Software)
========== Shell Spawning ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
http [open] -- "C:\Program Files (x86)\Opera\Opera.exe" "%1" (Opera Software)
https [open] -- "C:\Program Files (x86)\Opera\Opera.exe" "%1" (Opera Software)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [Bridge] -- C:\Program Files (x86)\Adobe\Adobe Bridge CS5\Bridge.exe "%L" (Adobe Systems, Inc.)
Directory [Browse with &IrfanView] -- "C:\Program Files (x86)\IrfanView\i_view32.exe" "%1 /thumbs" (Irfan Skiljan)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
http [open] -- "C:\Program Files (x86)\Opera\Opera.exe" "%1" (Opera Software)
https [open] -- "C:\Program Files (x86)\Opera\Opera.exe" "%1" (Opera Software)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [Bridge] -- C:\Program Files (x86)\Adobe\Adobe Bridge CS5\Bridge.exe "%L" (Adobe Systems, Inc.)
Directory [Browse with &IrfanView] -- "C:\Program Files (x86)\IrfanView\i_view32.exe" "%1 /thumbs" (Irfan Skiljan)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
========== Security Center Settings ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 0
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = 28 4D B2 76 41 04 CA 01 [binary data]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
========== Firewall Settings ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 0
"DoNotAllowExceptions" = 1
========== Authorized Applications List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
========== Vista Active Open Ports Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{109BB318-4144-4414-8A0E-25268F5A4D3C}" = lport=2177 | protocol=17 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{16DFDA44-03D8-4BF9-8F7C-F5093F64D09D}" = rport=139 | protocol=6 | dir=out | app=system |
"{1A1125E3-AA97-49A2-A9F6-63C33F854C38}" = rport=2177 | protocol=17 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{2098D6D0-B352-49C0-A52F-FBC4B72AFE1B}" = lport=10243 | protocol=6 | dir=in | app=system |
"{212630AA-B066-40F6-AF0B-42AC4EFB5752}" = lport=138 | protocol=17 | dir=in | app=system |
"{2A492F5B-22D6-4810-B8B8-4C1FE0AC040A}" = lport=137 | protocol=17 | dir=in | app=system |
"{35367003-FFF8-4F35-AF74-A05B83FF40AC}" = lport=445 | protocol=6 | dir=in | app=system |
"{487F4801-D70A-4AF1-A72C-B02A7DDDD89A}" = rport=2177 | protocol=6 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{5382A208-6619-4810-A2C0-56BFA5DE64A3}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{74CD4955-C1E3-4C46-BF73-E4D6299215A9}" = rport=137 | protocol=17 | dir=out | app=system |
"{7B34A98E-9BB0-4FF8-8373-FCBD3B937492}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{7CF02DB6-9859-4CF0-8E97-4FE315A2B008}" = lport=2177 | protocol=6 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{86130BCA-AD41-470D-BD3F-914D031027DA}" = lport=2869 | protocol=6 | dir=in | app=system |
"{9541C872-6DE3-4D78-A01C-2C8415C2AB0F}" = rport=445 | protocol=6 | dir=out | app=system |
"{A366AE88-2714-4B1E-8718-C15C71C0E392}" = rport=10243 | protocol=6 | dir=out | app=system |
"{A7DAF282-E192-4204-AB56-C30CC7B9E8CA}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{C0F90AD7-393D-4D38-809E-55EA86C8BA54}" = rport=138 | protocol=17 | dir=out | app=system |
"{C639B5E1-8FBC-4A7A-BB37-9DE6BA26D286}" = lport=139 | protocol=6 | dir=in | app=system |
"{C95FE200-0260-4FB7-A746-C5B70742A3DB}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{C9857113-BC6C-4451-BDE2-0B349ADE5FB9}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 |
"{D0993C51-8E99-4557-9D83-9C381BF729A8}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{D8659960-D394-478F-A70F-C156FDE9F915}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{EFB5A443-CF82-4EEE-9E0F-87E2BF0BEDD9}" = lport=5353 | protocol=6 | dir=in | name=adobe csi cs4 |
"{FF11474C-5D82-443F-B33F-0489A11F7A13}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
========== Vista Active Application Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{032A7FDB-134C-443D-8DD6-E6A3BA918B39}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{09F3647A-6B96-4B94-81B4-D3E12B25296B}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{0A3BFB77-31E5-447A-90C8-CA0C2540A7F7}" = protocol=6 | dir=out | app=system |
"{0B362158-CC01-4B6D-9137-AC6787DE0BA4}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{0D09329B-A602-474C-8171-BB617E49AED8}" = dir=in | app=c:\program files (x86)\hp\digital imaging\bin\hpqfxt08.exe |
"{0FA8D059-9A20-4D12-9474-2C258FCF938F}" = protocol=6 | dir=in | app=c:\program files (x86)\common files\adobe\cs4servicemanager\cs4servicemanager.exe |
"{14871DAA-CF7F-437C-B26A-BC0386CE3168}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 |
"{156457F9-3B2F-48E6-8BCB-DA276EECABD1}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{1A2B240A-B229-41F7-A86F-EA60709EE8AD}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{288A299A-FAE1-4B01-9584-2BDC45639266}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 |
"{2BD98C2E-61A3-4DD1-B348-7D5E891D2E0B}" = dir=in | app=c:\program files (x86)\hp\digital imaging\bin\hpiscnapp.exe |
"{2FE1370F-0D67-432F-AB59-23E7957B444E}" = dir=in | app=c:\program files (x86)\hp\digital imaging\bin\hpqusgh.exe |
"{3026FC25-5302-49D0-9FA5-81770AAB586D}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{3754991E-25DD-444E-A744-CCC66E3EB8FF}" = protocol=17 | dir=in | app=c:\program files (x86)\common files\adobe\cs4servicemanager\cs4servicemanager.exe |
"{488B9E7B-24BE-4874-857B-FF448300CD77}" = dir=in | app=c:\program files (x86)\hp\digital imaging\bin\hpofxm08.exe |
"{48B1A7F6-37A2-4276-8132-D3F5B9A9F631}" = dir=in | app=c:\program files (x86)\hp\digital imaging\bin\hpqgpc01.exe |
"{654599FC-52F8-45FE-B0B5-C83A893FEE60}" = protocol=17 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{6C45C947-8C78-4C67-BB6C-6AED4702091F}" = dir=in | app=c:\program files (x86)\hp\digital imaging\bin\hpqusgm.exe |
"{7244B4E3-4CA0-4158-A0E0-ADE431A13EC6}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{74C3B72A-585A-4EDF-8495-FFDAB2E0DC99}" = dir=in | app=c:\program files (x86)\hp\digital imaging\bin\hpqtra08.exe |
"{7872EEC8-0738-41B1-B4C5-D7ADD8091869}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{7955B35A-A298-4291-A0F2-A307D4685D46}" = dir=in | app=c:\program files (x86)\hp\digital imaging\bin\hpfccopy.exe |
"{7D1A3F1E-1A17-4D69-961D-445397EC2032}" = dir=in | app=c:\program files (x86)\hp\digital imaging\bin\hpqgplgtupl.exe |
"{7D6B0457-C2BD-4308-8AF1-C93A17558B63}" = protocol=6 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{89655197-4476-4B0D-B0CB-025BF5046C8A}" = protocol=6 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{96266A12-DBC8-43E0-AC2F-D8F718228111}" = dir=in | app=c:\program files (x86)\hp\hp software update\hpwucli.exe |
"{9B828670-9C81-49A1-A09D-E94E84808219}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{9D558DBA-836B-4B0C-8057-922F459606B9}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{9F5363DB-29D5-41B9-82A6-656C3D7D5326}" = dir=in | app=c:\program files (x86)\hp\digital imaging\bin\hpzwiz01.exe |
"{9F8A2B85-1AE0-4900-8B3C-B13E5C48EB51}" = dir=in | app=c:\program files (x86)\hp\digital imaging\bin\hpqkygrp.exe |
"{A1ADA88E-CD62-4C1C-903A-94A419B13217}" = dir=in | app=c:\program files (x86)\hp\digital imaging\bin\hpofxs08.exe |
"{A41BAB74-DBCB-495D-8098-A23413EB2670}" = dir=in | app=c:\program files (x86)\hp\digital imaging\bin\hposfx08.exe |
"{ADB67B30-6802-456D-ADF3-2ED3436390F0}" = dir=in | app=c:\program files (x86)\hp\digital imaging\bin\hpoews01.exe |
"{C01E7436-2566-4796-BAFF-3D7EC164707F}" = dir=in | app=c:\program files (x86)\hp\digital imaging\smart web printing\smartwebprintexe.exe |
"{D52B15D8-0FEB-46F2-A292-8A2993468432}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 |
"{E0DAE01A-024B-4D11-9735-BDDBD2087116}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{E1D369F4-09EF-4189-ABF8-123A71E82A00}" = dir=in | app=c:\program files (x86)\hp\digital imaging\bin\hposid01.exe |
"{E2BC7DBD-CF46-4AE3-87AE-01A6333CF53B}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 |
"{F1C66996-0E2C-43AE-80D1-2AF7BAD9720D}" = dir=in | app=c:\program files (x86)\hp\digital imaging\bin\hpqste08.exe |
"{FF3F920E-CB90-42B5-BE14-D73BE7BCD6EB}" = protocol=17 | dir=in | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"TCP Query User{3E4DAE9C-8007-417B-B678-292EA716F010}C:\totalcmd\totalcmd.exe" = protocol=6 | dir=in | app=c:\totalcmd\totalcmd.exe |
"TCP Query User{4543D43F-1A64-416E-8929-2CF4DAEC885B}C:\program files (x86)\electronic arts\eadm\core.exe" = protocol=6 | dir=in | app=c:\program files (x86)\electronic arts\eadm\core.exe |
"TCP Query User{637DB722-69A4-4B51-A8A9-2F503F4E4939}C:\program files (x86)\electronic arts\eadm\core.exe" = protocol=6 | dir=in | app=c:\program files (x86)\electronic arts\eadm\core.exe |
"TCP Query User{69E90446-3953-402D-ADD0-0D9FCE9A91D8}C:\program files (x86)\internet explorer\iexplore.exe" = protocol=6 | dir=in | app=c:\program files (x86)\internet explorer\iexplore.exe |
"TCP Query User{6B00D6E4-7379-4678-9EAF-EA1FC868730B}C:\program files\java\jre1.5.0_15\bin\javaw.exe" = protocol=6 | dir=in | app=c:\program files\java\jre1.5.0_15\bin\javaw.exe |
"TCP Query User{74FBCFE5-69E6-4BB7-87DF-160FDFC63121}C:\totalcmd\totalcmd.exe" = protocol=6 | dir=in | app=c:\totalcmd\totalcmd.exe |
"TCP Query User{8BA3FC0C-7C4D-4D05-BA6F-2326FD5C3992}C:\program files\java\jre1.5.0_15\bin\javaw.exe" = protocol=6 | dir=in | app=c:\program files\java\jre1.5.0_15\bin\javaw.exe |
"TCP Query User{B416F7BB-FAD5-4947-A65B-76052C466C43}C:\program files (x86)\itv\itv.exe" = protocol=6 | dir=in | app=c:\program files (x86)\itv\itv.exe |
"TCP Query User{DC322467-4ADB-4926-942F-FF6F91062759}C:\program files (x86)\itv\itv.exe" = protocol=6 | dir=in | app=c:\program files (x86)\itv\itv.exe |
"TCP Query User{E232528B-5C1D-4DB7-B0E1-01D1EB8BA35E}C:\windows\syswow64\dplaysvr.exe" = protocol=6 | dir=in | app=c:\windows\syswow64\dplaysvr.exe |
"TCP Query User{EFC561F4-5FB1-4F02-A969-617F92520A6A}C:\program files (x86)\videolan\vlc\vlc.exe" = protocol=6 | dir=in | app=c:\program files (x86)\videolan\vlc\vlc.exe |
"TCP Query User{F286D5F8-EA2C-47BD-89B9-3E74FE118283}C:\program files (x86)\java\jre6\bin\javaw.exe" = protocol=6 | dir=in | app=c:\program files (x86)\java\jre6\bin\javaw.exe |
"UDP Query User{1993B848-990A-471B-BA8B-3F2767DF1D4F}C:\program files (x86)\electronic arts\eadm\core.exe" = protocol=17 | dir=in | app=c:\program files (x86)\electronic arts\eadm\core.exe |
"UDP Query User{1A9624D8-667F-493C-B948-E0F4BF811355}C:\program files (x86)\electronic arts\eadm\core.exe" = protocol=17 | dir=in | app=c:\program files (x86)\electronic arts\eadm\core.exe |
"UDP Query User{4F3EB21F-E1F9-4E8B-B654-D3409DE18D59}C:\program files (x86)\internet explorer\iexplore.exe" = protocol=17 | dir=in | app=c:\program files (x86)\internet explorer\iexplore.exe |
"UDP Query User{6850BC75-61D8-46B6-8B38-9F43D70AEAC4}C:\program files\java\jre1.5.0_15\bin\javaw.exe" = protocol=17 | dir=in | app=c:\program files\java\jre1.5.0_15\bin\javaw.exe |
"UDP Query User{6D40C42C-2B84-4EEA-BE76-1385F45765B3}C:\totalcmd\totalcmd.exe" = protocol=17 | dir=in | app=c:\totalcmd\totalcmd.exe |
"UDP Query User{9A5CC5E7-7624-44CF-AB36-90289B2A76EE}C:\windows\syswow64\dplaysvr.exe" = protocol=17 | dir=in | app=c:\windows\syswow64\dplaysvr.exe |
"UDP Query User{A926F91B-64E1-418A-94F8-3536DAB880D0}C:\program files (x86)\itv\itv.exe" = protocol=17 | dir=in | app=c:\program files (x86)\itv\itv.exe |
"UDP Query User{B7E7F09D-6E71-4C3F-84BA-339F5D35A794}C:\program files (x86)\itv\itv.exe" = protocol=17 | dir=in | app=c:\program files (x86)\itv\itv.exe |
"UDP Query User{D1BCEF9A-7A28-44E0-B431-0337B077D34B}C:\program files (x86)\java\jre6\bin\javaw.exe" = protocol=17 | dir=in | app=c:\program files (x86)\java\jre6\bin\javaw.exe |
"UDP Query User{D907A424-DBF2-4E28-AB7A-1C38673C731C}C:\program files (x86)\videolan\vlc\vlc.exe" = protocol=17 | dir=in | app=c:\program files (x86)\videolan\vlc\vlc.exe |
"UDP Query User{E0286BAD-920D-46E9-9C5E-670C5F6F579A}C:\totalcmd\totalcmd.exe" = protocol=17 | dir=in | app=c:\totalcmd\totalcmd.exe |
"UDP Query User{EB35DD01-9D20-4A4A-868F-56D470C7A23A}C:\program files\java\jre1.5.0_15\bin\javaw.exe" = protocol=17 | dir=in | app=c:\program files\java\jre1.5.0_15\bin\javaw.exe |
========== HKEY_LOCAL_MACHINE Uninstall List ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{027E5FAB-1476-4C59-AAB4-32EF28520399}" = Windows Live Language Selector
"{071c9b48-7c32-4621-a0ac-3f809523288f}" = Microsoft Visual C++ 2005 Redistributable (x64)
"{0C826C5B-B131-423A-A229-C71B3CACCD6A}" = CDDRV_Installer
"{1111706F-666A-4037-7777-203648764D10}" = JavaFX 2.0.3 (64-bit)
"{1ACC8FFB-9D84-4C05-A4DE-D28A9BC91698}" = Windows Live ID Sign-in Assistant
"{1E9FC118-651D-4934-97BE-E53CAE5C7D45}" = Microsoft_VC80_MFCLOC_x86_x64
"{2222706F-666A-4037-7777-203648764D10}" = JavaFX 2.0.3 SDK (64-bit)
"{26A24AE4-039D-4CA4-87B4-2F86417003FF}" = Java(TM) 7 Update 3 (64-bit)
"{295CFB7C-A57E-4313-93E7-68E7CE1D0332}" = Adobe WinSoft Linguistics Plugin x64
"{2D74E972-5A85-44DC-9193-8A302BA8C181}" = Photoshop Camera Raw_x64
"{3A8386F4-A9CC-4395-B9D2-C7E864260B51}" = Aktualizace ovladače pro aplikaci program Windows Mobile Device Center
"{3C8159DD-1890-4625-A5B2-E3D8D78D4486}" = AVG 2012
"{4569AD91-47F4-4D9E-8FC9-717EC32D7AE1}" = Microsoft_VC80_CRT_x86_x64
"{49F6DFDE-8DF7-11E1-9E5F-F04DA23A5C58}" = MSVCRT Redists
"{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148
"{6448F0A8-6813-11D6-A77B-00B0D0150150}" = J2SE Runtime Environment 5.0 Update 15
"{64A3A4F4-B792-11D6-A78A-00B0D0170030}" = Java(TM) SE Development Kit 7 Update 3 (64-bit)
"{6631325A-9B1B-4EE7-8E64-8CC4A6F10643}" = Adobe Fonts All x64
"{8220EEFE-38CD-377E-8595-13398D740ACE}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17
"{8557397C-A42D-486F-97B3-A2CBC2372593}" = Microsoft_VC90_ATL_x86_x64
"{8875A1C0-6308-4790-8CF6-D34E89880052}" = Adobe Linguistics CS4 x64
"{887797BF-37A5-4199-B0C9-0D38D6196E9A}" = Adobe Anchor Service x64 CS4
"{8C8D673B-20FB-43E6-BCB7-9B3F78F2E762}" = Adobe Type Support x64 CS4
"{8DAA31EB-6830-4006-A99F-4DF8AB24714F}" = Adobe CSI CS4 x64
"{8E34682C-8118-31F1-BC4C-98CD9675E1C2}" = Microsoft .NET Framework 4 Extended
"{8E3DF98E-D719-390B-3367-64C01A3E259F}" = ATI Catalyst Install Manager
"{90140000-0015-0405-1000-0000000FF1CE}" = Microsoft Office Access MUI (Czech) 2010
"{90140000-0015-0405-1000-0000000FF1CE}_Office14.PROPLUSR_{9F412D54-AC04-46F9-AFE7-FE15DC0147A0}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-0016-0405-1000-0000000FF1CE}" = Microsoft Office Excel MUI (Czech) 2010
"{90140000-0016-0405-1000-0000000FF1CE}_Office14.PROPLUSR_{9F412D54-AC04-46F9-AFE7-FE15DC0147A0}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-0018-0405-1000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (Czech) 2010
"{90140000-0018-0405-1000-0000000FF1CE}_Office14.PROPLUSR_{9F412D54-AC04-46F9-AFE7-FE15DC0147A0}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-0019-0405-1000-0000000FF1CE}" = Microsoft Office Publisher MUI (Czech) 2010
"{90140000-0019-0405-1000-0000000FF1CE}_Office14.PROPLUSR_{9F412D54-AC04-46F9-AFE7-FE15DC0147A0}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001A-0405-1000-0000000FF1CE}" = Microsoft Office Outlook MUI (Czech) 2010
"{90140000-001A-0405-1000-0000000FF1CE}_Office14.PROPLUSR_{9F412D54-AC04-46F9-AFE7-FE15DC0147A0}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001B-0405-1000-0000000FF1CE}" = Microsoft Office Word MUI (Czech) 2010
"{90140000-001B-0405-1000-0000000FF1CE}_Office14.PROPLUSR_{9F412D54-AC04-46F9-AFE7-FE15DC0147A0}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001F-0405-1000-0000000FF1CE}" = Microsoft Office Proof (Czech) 2010
"{90140000-001F-0405-1000-0000000FF1CE}_Office14.PROPLUSR_{AEC2C00D-1E7E-45E3-9058-81EA2446B3CD}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001F-0407-1000-0000000FF1CE}" = Microsoft Office Proof (German) 2010
"{90140000-001F-0407-1000-0000000FF1CE}_Office14.PROPLUSR_{70A3169E-288F-454F-A08D-20DF66639B50}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001F-0409-1000-0000000FF1CE}" = Microsoft Office Proof (English) 2010
"{90140000-001F-0409-1000-0000000FF1CE}_Office14.PROPLUSR_{0242505C-4E90-407F-9299-B5B275F50D86}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001F-041B-1000-0000000FF1CE}" = Microsoft Office Proof (Slovak) 2010
"{90140000-001F-041B-1000-0000000FF1CE}_Office14.PROPLUSR_{4B806706-B352-42E8-8C8B-5CEBCEDBC4E0}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-002C-0405-1000-0000000FF1CE}" = Microsoft Office Proofing (Czech) 2010
"{90140000-002C-0405-1000-0000000FF1CE}_Office14.PROPLUSR_{715203B3-AD16-41A4-B13C-E1065EAB8963}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-0043-0000-1000-0000000FF1CE}" = Microsoft Office Office 32-bit Components 2010
"{90140000-0043-0000-1000-0000000FF1CE}_Office14.PROPLUSR_{E8B6D35B-0B6F-4DCE-9493-859BF3809A7F}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-0043-0405-1000-0000000FF1CE}" = Microsoft Office Shared 32-bit MUI (Czech) 2010
"{90140000-0043-0405-1000-0000000FF1CE}_Office14.PROPLUSR_{15D45352-C443-406A-9DF2-EF4A750A40CF}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-0044-0405-1000-0000000FF1CE}" = Microsoft Office InfoPath MUI (Czech) 2010
"{90140000-0044-0405-1000-0000000FF1CE}_Office14.PROPLUSR_{9F412D54-AC04-46F9-AFE7-FE15DC0147A0}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-006E-0405-1000-0000000FF1CE}" = Microsoft Office Shared MUI (Czech) 2010
"{90140000-006E-0405-1000-0000000FF1CE}_Office14.PROPLUSR_{4B8654FE-410D-462C-9B3C-09D031BF4534}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-00A1-0405-1000-0000000FF1CE}" = Microsoft Office OneNote MUI (Czech) 2010
"{90140000-00A1-0405-1000-0000000FF1CE}_Office14.PROPLUSR_{9F412D54-AC04-46F9-AFE7-FE15DC0147A0}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-00BA-0405-1000-0000000FF1CE}" = Microsoft Office Groove MUI (Czech) 2010
"{90140000-00BA-0405-1000-0000000FF1CE}_Office14.PROPLUSR_{9F412D54-AC04-46F9-AFE7-FE15DC0147A0}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90BA8112-80B3-4617-A3C1-BD2771B60F74}" = Adobe CMaps x64 CS4
"{91140000-0011-0000-1000-0000000FF1CE}" = Microsoft Office Professional Plus 2010
"{91140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUSR_{7BC9B5EB-125A-4E9B-97E1-8D85B5E960B8}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{925D058B-564A-443A-B4B2-7E90C6432E55}" = Microsoft_VC80_ATL_x86_x64
"{92A3CA0D-55CD-4C5D-BA95-5C2600C20F26}" = Microsoft_VC90_CRT_x86_x64
"{95120000-00B9-0409-1000-0000000FF1CE}" = Microsoft Application Error Reporting
"{A108BD40-0A8C-4385-8874-74C4B6086CC3}" = AVG 2012
"{A3454894-144A-4D80-B605-C128FE0D7329}" = Adobe Drive CS4 x64
"{A472B9E4-0AFF-4F7B-B25D-F64F8E928AAB}" = Microsoft_VC90_MFC_x86_x64
"{C8B84CBB-8F7D-B632-623C-28BBAA4347DB}" = ccc-utility64
"{C8C1BAD5-54E6-4146-AD07-3A8AD36569C3}" = Microsoft_VC80_MFC_x86_x64
"{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}" = SUPERAntiSpyware
"{D2D77DC2-8299-11D1-8949-444553540000}_is1" = ZTE Handset USB Driver 5.2066.1.8B02
"{D3A65B0A-403B-4C20-A488-BFED2BC5D2EF}" = HP OfficeJet J5700
"{D40172D6-CE2D-4B72-BF5F-26A04A900B7B}" = Adobe Photoshop CS4 (64 Bit)
"{DFFABE78-8173-4E97-9C5C-22FB26192FC5}" = Adobe PDF Library Files x64 CS4
"{F3F18612-7B5D-4C05-86C9-AB50F6F71727}" = KhalInstallWrapper
"{F44F6BAB-6988-4E61-A4B2-73E749F56A65}" = program Windows Mobile Device Center
"{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}" = Microsoft .NET Framework 4 Client Profile
"{FF21C3E6-97FD-474F-9518-8DCBE94C2854}" = 64 Bit HP CIO Components Installer
"AVG" = AVG 2012
"CCleaner" = CCleaner
"Defraggler" = Defraggler
"FinePrint" = FinePrint
"Hide Folders 2009_is1" = Hide Folders 2009 3.8
"HP Imaging Device Functions" = HP Imaging Device Functions 13.0
"HP Smart Web Printing" = HP Smart Web Printing 4.60
"HP Solution Center & Imaging Support Tools" = HP Solution Center 13.0
"HPExtendedCapabilities" = HP Customer Participation Program 13.0
"HPOCR" = OCR Software by I.R.I.S. 13.0
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Microsoft .NET Framework 4 Extended" = Microsoft .NET Framework 4 Extended
"Office14.PROPLUSR" = Microsoft Office Professional Plus 2010
"Opera 12.00.1467" = Opera 12.00
"SAMSUNG Mobile USB Modem" = SAMSUNG Mobile USB Modem Software
"SAMSUNG Mobile USB Modem 1.0" = SAMSUNG Mobile USB Modem 1.0 Software
"Shop for HP Supplies" = Shop for HP Supplies
"TeamSpeak 3 Client" = TeamSpeak 3 Client
"Totalcmd64" = Total Commander 64-bit (Remove or Repair)
"WinRAR archiver" = WinRAR 4.01 (64-bit)
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{00ADFB20-AE75-46F4-AD2C-F48B15AC3100}" = Adobe Color NA Recommended Settings CS4
"{033E378E-6AD3-4AD5-BDEB-CBD69B31046C}" = Microsoft_VC90_ATL_x86
"{048298C9-A4D3-490B-9FF9-AB023A9238F3}" = Steam
"{05308C4E-7285-4066-BAE3-6B50DA6ED755}" = Adobe Update Manager CS4
"{054EFA56-2AC1-48F4-A883-0AB89874B972}" = Adobe Extension Manager CS4
"{05F8C9BC-BB1D-642B-1134-6C992CAC81F8}" = Catalyst Control Center Graphics Light
"{06A1D88C-E102-4527-AF70-29FFD7AF215A}" = Scan
"{075315E8-E9E1-4DB3-8CBD-0BEBA9E2BAC3}" = ProductContext
"{08089098-2D08-E78C-08E3-21BE4B6AA029}" = ccc-core-static
"{08D2E121-7F6A-43EB-97FD-629B44903403}" = Microsoft_VC90_CRT_x86
"{098727E1-775A-4450-B573-3F441F1CA243}" = kuler
"{0B0F231F-CE6A-483D-AA23-77B364F75917}" = Windows Live Installer
"{0D2DBE8A-43D0-7830-7AE7-CA6C99A832E7}" = Adobe Community Help
"{0D6013AB-A0C7-41DC-973C-E93129C9A29F}" = Adobe Color JA Extra Settings CS4
"{0D67A4E4-5BE0-4C9A-8AD8-AB552B433F23}" = Adobe Setup
"{0EF5BEA9-B9D3-46d7-8958-FB69A0BAEACC}" = Status
"{0F3647F8-E51D-4FCC-8862-9A8D0C5ACF25}" = Microsoft_VC80_ATL_x86
"{0F723FC1-7606-4867-866C-CE80AD292DAF}" = Adobe CSI CS4
"{14DCD95A-EBA3-4BF0-B7EF-533852E99BE6}" = LG PC Suite II
"{15FEDA5F-141C-4127-8D7E-B962D1742728}" = Adobe Photoshop CS5
"{1618734A-3957-4ADD-8199-F973763109A8}" = Adobe Anchor Service CS4
"{16E16F01-2E2D-4248-A42F-76261C147B6C}" = Adobe Drive CS4
"{16E6D2C1-7C90-4309-8EC4-D2212690AAA4}" = AdobeColorCommonSetRGB
"{1742DE47-1693-4E7C-8121-8E1D6AED5B25}" = J5700
"{175F0111-2968-4935-8F70-33108C6A4DE3}" = MarketResearch
"{18028E0B-974B-B92F-E26F-209044508076}" = CCC Help English
"{1A834332-A9EE-440C-9505-2D07F445F05A}" = MOBILedit! Support Libraries
"{1DA6D447-C54D-4833-84D4-3EA31CAECE9B}" = Windows Live UX Platform Language Pack
"{1EC71BFB-01A3-4239-B6AF-B1AE656B15C0}" = TrayApp
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{200FEC62-3C34-4D60-9CE8-EC372E01C08F}" = Windows Live SOXE Definitions
"{20AEA7B1-6155-44A2-B58E-430F2C9F4ABD}" = AMD OverDrive
"{26A24AE4-039D-4CA4-87B4-2F83216033FF}" = Java(TM) 6 Update 33
"{28518792-DF27-42F1-B3F3-3B18B5CC023C}" = QuantSports
"{2BD5C305-1B27-4D41-B690-7A61172D2FEB}" = Macromedia Flash 8
"{2EEA7AA4-C203-4b90-A34F-19FB7EF1C81C}" = BufferChm
"{2FF8C687-DB7D-4adc-A5DC-57983EC25046}" = DeviceDiscovery
"{3336F667-9049-4D46-98B6-4C743EEBC5B1}" = Windows Live Photo Gallery
"{35D94F92-1D3A-43C5-8605-EA268B1A7BD9}" = PDF Settings CS4
"{39F6E2B4-CFE8-C30A-66E8-489651F0F34C}" = Adobe Media Player
"{3A4C1A78-2C31-7F3D-0AFF-F1AD8E04AD3E}" = Betdaq Assistant
"{3A4E8896-C2E7-4084-A4A4-B8FD1894E739}" = Adobe XMP Panels CS4
"{3D2C9DE6-9ADE-4252-A241-E43723B0CE02}" = Adobe Color - Photoshop Specific CS4
"{3DA8DF9A-044E-46C4-8531-DEDBB0EE37FF}" = Adobe WinSoft Linguistics Plugin
"{3DCF00F5-04A5-4543-A088-70548081120E}_is1" = Compiled Driver Disc (Full) 0.99
"{3E38250B-AEEE-4D75-B93E-A261E30C27C4}" = AGT Pro
"{3E5CBADD-2E51-47C1-BBE2-B802DB6DA56A}" = XTB-Trader 4.00
"{3F9FB449-93DB-4C47-BB5B-7334C4D1736E}" = SD Formatter
"{40BA976E-38B8-4C63-990C-50999C8C3521}" = BPD_Scan
"{43CDF946-F5D9-4292-B006-BA0D92013021}" = WebReg
"{440B915A-0C85-45DB-92AE-75AE14704A64}" = Fax
"{47DA7D2E-408C-4050-B75F-95F6D2E6A332}_is1" = MOBILedit! ver. 5.0.2.1015
"{4943EFF5-229F-435D-BEA9-BE3CAEA783A7}" = Adobe Service Manager Extension
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4A70EF07-7F88-4434-BB61-D1DE8AE93DD4}" = SolutionCenter
"{4CB0307C-565E-4441-86BE-0DF2E4FB828C}" = Microsoft Games for Windows Marketplace
"{521C9144-BD7D-D3A3-3B5C-93E4406F8DEA}" = Catalyst Control Center Graphics Previews Vista
"{53846028-98E3-457D-9A12-7A5F02FF06D2}" = NinjaTrader 6.5
"{5546CDB5-2CE2-498B-B059-5B3BF81FC41F}" = Macromedia Extension Manager
"{5570C7F0-43D0-4916-8A9E-AEDD52FA86F4}" = Adobe Color EU Extra Settings CS4
"{56C049BE-79E9-4502-BEA7-9754A3E60F9B}" = neroxml
"{58E5C3B9-7BED-3E6C-DB3A-C25D43792B9B}" = Catalyst Control Center Graphics Previews Common
"{5A78C15C-BCA3-A605-92A9-F55020DEFBD6}" = Catalyst Control Center HydraVision Full
"{5DC26B5D-B2FD-482C-BA70-D81400AAB374}" = Cleanlab Application
"{5DF7AA5E-A1CB-11E0-A7D6-0013D3D69929}" = MSVCRT Redists
"{5EE7D259-D137-4438-9A5F-42F432EC0421}" = VC80CRTRedist - 8.0.50727.4053
"{5FA2CA02-6E46-4152-AE5B-BAF76B004F9F}" = jAlbum
"{62C68336-B969-4097-B0BD-A3A0FBFD59C1}" = Mumble 1.2.3
"{635FED5B-2C6D-49BE-87E6-7A6FCD22BC5A}" = Microsoft_VC90_MFC_x86
"{63C24A08-70F3-4C8E-B9FB-9F21A903801D}" = Adobe Color Video Profiles CS CS4
"{63E5CDBF-8214-4F03-84F8-CD3CE48639AD}" = Adobe Photoshop CS4 Support
"{63FF21C9-A810-464F-B60A-3111747B1A6D}" = GPBaseService2
"{64B2D6B3-71AC-45A7-A6A1-2E07ABF58341}" = Windows Live Movie Maker
"{67F0E67A-8E93-4C2C-B29D-47C48262738A}" = Adobe Device Central CS4
"{68243FF8-83CA-466B-B2B8-9F99DA5479C4}" = AdobeColorCommonSetCMYK
"{682B3E4F-696A-42DE-A41C-4C07EA1678B4}" = Windows Live SOXE
"{6B2FFB21-AC88-45C3-9A7D-4BB3E744EC91}" = HPSSupply
"{6BBA26E9-AB03-4FE7-831A-3535584CA002}" = Toolbox
"{6D6664A9-3342-4948-9B7E-034EFE366F0F}" = HTC Driver Installer
"{7032B400-11EC-11E0-A9BF-0013D3D69929}" = MSVCRT Redists
"{70CAF6DA-C2F4-40C4-A0A4-10FB04701669}" = bpd_scan
"{72736F5F-520D-472A-88CC-7B02872FD34E}" = ATI Catalyst Registration
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{78906B56-0E81-42A7-AC25-F54C946E1538}" = Windows Live Photo Common
"{79872596-B887-E700-8D56-CADBC78BA5DE}" = Adobe Download Assistant
"{79F86C69-2B17-4368-9234-472A23639E16}" = Ad-Aware
"{7CA5C4DF-8327-4035-AE2B-CA76336A04FD}" = Snagit 11
"{7E265513-8CDA-4631-B696-F40D983F3B07}_is1" = CDBurnerXP
"{7FB413C8-3CAD-49F7-A67C-6EFEB4B04050}" = LogMeIn Hamachi
"{820D3F45-F6EE-4AAF-81EF-CE21FF21D230}" = Adobe Type Support CS4
"{82809116-D1EE-443C-AE31-F19E709DDF7A}" = AMD USB Filter Driver
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{83877DB1-8B77-45BC-AB43-2BAC22E093E0}" = Adobe Bridge CS4
"{83A5D4E9-7FE6-336D-9525-F1C879496014}" = Google Talk Plugin
"{83C292B7-38A5-440B-A731-07070E81A64F}" = Windows Live PIMT Platform
"{842B4B72-9E8F-4962-B3C1-1C422A5C4434}" = Suite Shared Configuration CS4
"{87BB78C4-F36D-4D93-A7C7-F80F18219848}" = AMD DnD V1.0.19
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8B0B72BC-3007-45E9-BBA3-7B7EF8819FA3}" = 5700_Help
"{8BF2C401-02CE-424D-BC26-6C4F9FB446B6}" = Macromedia Flash 8 Video Encoder
"{8C0CAA7A-3272-4991-A808-2C7559DE3409}" = Win7codecs
"{8D15E1B2-D2B7-4A17-B44B-D2DDE5981406}" = iLivid
"{8D7133DE-27D2-47E5-B248-4180278D32AA}" = Catalyst Control Center - Branding
"{8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}" = MSVCRT
"{8FF6F5CA-4E30-4E3B-B951-204CAAA2716A}" = SmartWebPrinting
"{92D58719-BBC1-4CC3-A08B-56C9E884CC2C}" = Microsoft_VC80_CRT_x86
"{92EA4134-10D1-418A-91E1-5A0453131A38}" = Windows Live Movie Maker
"{931AB7EA-3656-4BB7-864D-022B09E3DD67}" = Adobe Linguistics CS4
"{94D398EB-D2FD-4FD1-B8C4-592635E8A191}" = Adobe CMaps CS4
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9B362566-EC1B-4700-BB9C-EC661BDE2175}" = DocProc
"{A498D9EB-927B-459B-85D6-DD6EF8C2C564}" = erLT
"{A724904F-085B-D8BA-D5D4-DDC355F2028B}" = Catalyst Control Center Graphics Full Existing
"{A78FE97A-C0C8-49CE-89D0-EDD524A17392}" = PDF Settings CS5
"{A9BDCA6B-3653-467B-AC83-94367DA3BFE3}" = Windows Live Photo Common
"{B0069CFA-5BB9-4C03-B1C6-89CE290E5AFE}" = HP Update
"{B29AD377-CC12-490A-A480-1452337C618D}" = Connect
"{B3EBF7DE-2A5B-4E10-9438-931EE6B22C05}" = eM Client
"{B440D659-FECA-4BDD-A12B-5C9F05790FF3}" = Snagit 9.1.2
"{B65BA85C-0A27-4BC0-A22D-A66F0E5B9494}" = Adobe Photoshop CS4
"{B821B5FF-BC0E-42FE-96D8-E0FA023F69C7}" = BB FlashBack Free Edition
"{B9BB21C1-F676-405B-B6A6-92FDC400C819}" = Jalbum
"{BB4E33EC-8181-4685-96F7-8554293DEC6A}" = Adobe Output Module
"{BC86ABDF-8148-44B3-8105-4AE9DDBFDCB6}" = Betting Assistant
"{BCDB856C-D247-4DEE-9132-89C02F4D6B8C}_is1" = Sothink SWF Decompiler
"{BD7204BA-DD64-499E-9B55-6A282CDF4FA4}" = Destinations
"{BED5FA72-8D62-4214-A43E-F57A9BE7ADBB}_is1" = Amnesia: The Dark Descent version 1.0
"{C43326F5-F135-4551-8270-7F7ABA0462E1}" = HPProductAssistant
"{C52E3EC1-048C-45E1-8D53-10B0C6509683}" = Adobe Default Language CS4
"{C79312BD-3E76-4474-A10C-1435D1856A4B}" = Adobe Dreamweaver CS5
"{C8B3F209-76D5-4C8B-9CDE-A29F520F2C40}" = Trefík - podpora databází
"{CC75AB5C-2110-4A7F-AF52-708680D22FE8}" = Photoshop Camera Raw
"{CE95A79E-E4FC-4FFF-8A75-29F04B942FF2}" = Windows Live UX Platform
"{D1A19B02-817E-4296-A45B-07853FD74D57}" = Microsoft_VC80_MFC_x86
"{D43B1A55-6957-4E93-A674-338F78B4A202}" = BPDSoftware
"{D45240D3-B6B3-4FF9-B243-54ECE3E10066}" = Windows Live Communications Platform
"{D7BF3B76-EEF9-4868-9B2B-42ABF60B279A}" = Microsoft_VC80_CRT_x86
"{D866B594-7FDB-785A-93C3-33EE8B6153C6}" = Catalyst Control Center Core Implementation
"{D92BBB52-82FF-42ED-8A3C-4E062F944AB7}" = Microsoft_VC80_MFCLOC_x86
"{D98C0C51-F9BB-4EE4-B791-22BF6EE31029}" = Nero 7 Ultra Edition
"{DBC2CFCA-9BAE-45F6-A975-11B57BE01D18}" = Sky Aces
"{E09C4DB7-630C-4F06-A631-8EA7239923AF}" = D3DX10
"{E0A1335B-3D84-413B-B92C-DF2D4BAACA0C}" = BPDSoftware_Ini
"{E4848436-0345-47E2-B648-8B522FCDA623}" = Adobe Photoshop CS4
"{EC797AE2-3ED8-857D-3350-AA3EA43C24B4}" = Catalyst Control Center Graphics Full New
"{EE7257A2-39A2-4D2F-9DAC-F9F25B8AE1D8}" = Skype™ 5.10
"{EF5B1E83-1403-4F0E-A8E6-C169DF0CCE8C}" = LG PC Suite II
"{EF7E931D-DC84-471B-8DB6-A83358095474}" = EA Download Manager
"{F022B56C-2B90-B9E1-332E-5C1277A47E7B}" = Catalyst Control Center InstallProxy
"{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}" = Microsoft SQL Server 2005 Compact Edition [ENU]
"{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
"{F0E64E2E-3A60-40D8-A55D-92F6831875DA}" = Adobe Search for Help
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F2508213-9989-4E85-A078-72BE483917EF}" = Microsoft Games for Windows - LIVE Redistributable
"{F29B21BD-CAA6-445F-8EF7-A7E2B9D8B14E}" = Logitech SetPoint
"{F5EF5865-F91A-4AA5-9D04-A96FAC5E05CA}" = PDF Master SE 3.0
"{F8EF2B3F-C345-4F20-8FE4-791A20333CD5}" = Adobe ExtendScript Toolkit CS4
"{F93C84A6-0DC6-42AF-89FA-776F7C377353}" = Adobe PDF Library Files CS4
"{F9835182-794B-4F24-902A-E2CA9D43380F}" = NVIDIA PhysX
"{FB79FDB7-4DE1-453D-99FE-9A880F57380E}" = Windows Live Fotogalerie
"{FCDBEA60-79F0-4FAE-BBA8-55A26C609A49}" = Visual Studio 2008 x64 Redistributables
"{FCDD51BB-CAD0-4BB1-B7DF-CE86D1032794}" = Adobe Fonts All
"{FE23D063-934D-4829-A0D8-00634CE79B4A}" = Adobe AIR
"{FE62C88B-425B-4BDE-8B70-CD5AE3B83176}" = Windows Live Essentials
"{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
"123 Flash Menu" = 123 Flash Menu v4.1.5.1400
"5513-1208-7298-9440" = JDownloader 0.9
"6977-5381-5350-4941" = Swarm 3.0
"845CCCCA-B77C-43EA-9A43-62DACEA4F902" = DreamStream E2
"AAA Logo 3.10 Business_is1" = AAA Logo Business Edition 3.10
"Ad Muncher" = Ad Muncher v4.91 Build 32562
"Adobe AIR" = Adobe AIR
"Adobe Flash Player ActiveX" = Adobe Flash Player 11 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin
"Adobe_faf656ef605427ee2f42989c3ad31b8" = Adobe Photoshop CS4
"Agama Web Buttons_is1" = Agama Web Buttons
"Alligator Flash Designer 7" = Alligator Flash Designer 7 (7.0.3.3) Trial
"AMD64 CPU Assistant_is1" = AMD64 CPU Assistant 0.10
"Artisteer 3" = Artisteer 3
"Ashampoo Burning Studio 6 FREE_is1" = Ashampoo Burning Studio 6 FREE
"Ask Toolbar_is1" = Foxit Toolbar
"AutoHotkey" = AutoHotkey 1.0.48.05
"AviSynth" = AviSynth 2.5
"BackAndLay Calculator_is1" = BackAndLay - Version 0.9
"BandiMPEG1" = Bandisoft MPEG-1 Decoder
"BB FlashBack Free Edition" = BB FlashBack Free Edition
"BetdaqAssistant.389FD738CB3FAA05327C60BCB3256FB4301F5711.1" = Betdaq Assistant
"Clownfish" = Clownfish for Skype
"com.adobe.amp.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1" = Adobe Media Player
"com.adobe.downloadassistant.AdobeDownloadAssistant" = Adobe Download Assistant
"Combined Community Codec Pack_is1" = Combined Community Codec Pack 2010-10-10
"CoreAAC" = CoreAAC
"DAEMON Tools Toolbar" = DAEMON Tools Toolbar
"DivX Setup.divx.com" = DivX Setup
"DreamBoxEdit" = DreamBoxEdit -- The one and only settings editor for your Dreambox
"DVD Shrink_is1" = DVD Shrink 3.2
"EnigmEdit" = EnigmEdit (remove only)
"Enterra Icon Keeper_is1" = Enterra Icon Keeper 1.0.0.2
"facemoods" = Facemoods Toolbar
"Foxit Reader" = Foxit Reader
"Fraps" = Fraps (remove only)
"Free_Lunch_Design_TB Toolbar" = Free Lunch Design TB Toolbar
"Game Maker 8.0" = Game Maker 8.0
"GameParkClient_is1" = GamePark
"GTK 2.0" = GTK+ Runtime 2.14.7 rev a (odstranit)
"chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1" = Adobe Community Help
"iLivid" = iLivid
"Inkscape" = Inkscape 0.47
"IrfanView" = IrfanView (remove only)
"LogMeIn Hamachi" = LogMeIn Hamachi
"Malwarebytes' Anti-Malware_is1" = Malwarebytes Anti-Malware verze 1.62.0.1300
"McAfee Security Scan" = McAfee Security Scan Plus
"Mechanical Calculator_is1" = Mechanical Calculator 7 (7.0.3)
"Mort Hill's In Play Tennis Calculator" = Mort Hill's In Play Tennis Calculator 2.03
"Mozilla Thunderbird (8.0)" = Mozilla Thunderbird (8.0)
"NAVI GUI 2012 (1024x768) 1.00" = NAVI GUI 2012 (1024x768) 1.00
"Nezmeškej" = Nezmeškej
"Notepad++" = Notepad++
"OnCourt_is1" = OnCourt 5.6.0
"Opera 12.00.1433" = Opera Next 12.00 beta build 1433
"Opera 12.00.1467" = Opera 12.00
"Picasa 3" = Picasa 3
"ProgDVB" = ProgDVB
"PSPad editor_is1" = PSPad editor
"RonyaSoft Poster Printer (ProPoster)" = RonyaSoft Poster Printer (ProPoster) 3.01
"Save Flash" = Save Flash 4.3
"Steam App 10" = Counter-Strike
"Steam App 109410" = Brawl Busters
"Steam App 40" = Deathmatch Classic
"Steam App 5" = Dedicated Server
"Swarm Spawn 1.0.0" = Swarm Spawn 1.0.0
"TC UP" = Total Commander Ultima Prime 4.9.0.0
"Tennis_0" = Tennis Predictor 1.2.1 (Demo Version)
"The KMPlayer" = The KMPlayer (remove only)
"Totalcmd" = Total Commander (Remove or Repair)
"TVAnts 1.0" = TVAnts 1.0
"tvMobili" = tvMobili
"Ultra AVI Converter_is1" = Ultra AVI Converter 5.2.0326
"UnderCoverXP_is1" = UnderCoverXP 1.22
"VideoReDo4_is1" = VideoReDo TVSuite Version 4.20.6.619
"VLC media player" = VLC media player 1.1.9
"vShare" = vShare Plugin
"WinGimp-2.0_is1" = GIMP 2.6.7
"WinLiveSuite" = Windows Live Essentials
"YTdetect" = Yahoo! Detect
========== HKEY_USERS Uninstall List ==========
[HKEY_USERS\S-1-5-21-177668100-1846633066-3982842387-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"75c0e0ceac8ef0d4" = CZShare Manager - 1
"Dropbox" = Dropbox
"Google Chrome" = Google Chrome
"Google Chrome SxS" = Google Chrome Canary
"Octoshape Streaming Services" = Octoshape Streaming Services
"UnityWebPlayer" = Unity Web Player
========== Last 20 Event Log Errors ==========
[ Application Events ]
Error - 23.7.2012 5:11:13 | Computer Name = opopop-PC | Source = Application Hang | ID = 1002
Description = Program opera.exe verze 12.0.1467.0 přestal spolupracovat se systémem
Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací o tomto
problému, vyhledejte historii problému v ovládacím panelu Centrum akcí. ID procesu:
1874 Čas spuštění: 01cd68aca3ce0d5b Čas ukončení: 10 Cesta k aplikaci: C:\Program
Files\Opera x64\opera.exe ID hlášení: 57c75f9d-d4a6-11e1-93dc-00241d82b71a
Error - 23.7.2012 11:32:37 | Computer Name = opopop-PC | Source = Application Error | ID = 1000
Description = Název chybující aplikace: AdMunch.exe, verze: 4.91.0.32562, časové
razítko: 0x802b3e78 Název chybujícího modulu: AdMunch.exe, verze: 4.91.0.32562,
časové razítko: 0x802b3e78 Kód výjimky: 0xc0000005 Posun chyby: 0x0048fa5c ID chybujícího
procesu: 0xf38 Čas spuštění chybující aplikace: 0x01cd68e86051db78 Cesta k chybující
aplikaci: C:\Program Files (x86)\Ad Muncher\AdMunch.exe Cesta k chybujícímu modulu:
C:\Program Files (x86)\Ad Muncher\AdMunch.exe ID zprávy: a1434104-d4db-11e1-a4f1-00241d82b71a
Error - 24.7.2012 0:43:14 | Computer Name = opopop-PC | Source = Application Error | ID = 1000
Description = Název chybující aplikace: AdMunch.exe, verze: 4.91.0.32562, časové
razítko: 0x802b3e78 Název chybujícího modulu: AdMunch.exe, verze: 4.91.0.32562,
časové razítko: 0x802b3e78 Kód výjimky: 0xc0000005 Posun chyby: 0x0048fa5c ID chybujícího
procesu: 0xd8c Čas spuštění chybující aplikace: 0x01cd6956d17ecfb3 Cesta k chybující
aplikaci: C:\Program Files (x86)\Ad Muncher\AdMunch.exe Cesta k chybujícímu modulu:
C:\Program Files (x86)\Ad Muncher\AdMunch.exe ID zprávy: 13b80637-d54a-11e1-9062-00241d82b71a
Error - 24.7.2012 2:31:19 | Computer Name = opopop-PC | Source = Application Error | ID = 1000
Description = Název chybující aplikace: AdMunch.exe, verze: 4.91.0.32562, časové
razítko: 0x802b3e78 Název chybujícího modulu: AdMunch.exe, verze: 4.91.0.32562,
časové razítko: 0x802b3e78 Kód výjimky: 0xc0000005 Posun chyby: 0x0048fa5c ID chybujícího
procesu: 0xfdc Čas spuštění chybující aplikace: 0x01cd6965ebbf54cb Cesta k chybující
aplikaci: C:\Program Files (x86)\Ad Muncher\AdMunch.exe Cesta k chybujícímu modulu:
C:\Program Files (x86)\Ad Muncher\AdMunch.exe ID zprávy: 2d774bdc-d559-11e1-bf36-00241d82b71a
Error - 24.7.2012 17:33:33 | Computer Name = opopop-PC | Source = Application Error | ID = 1000
Description = Název chybující aplikace: AdMunch.exe, verze: 4.91.0.32562, časové
razítko: 0x802b3e78 Název chybujícího modulu: AdMunch.exe, verze: 4.91.0.32562,
časové razítko: 0x802b3e78 Kód výjimky: 0xc0000005 Posun chyby: 0x0048fa5c ID chybujícího
procesu: 0x4e88 Čas spuštění chybující aplikace: 0x01cd69e3f893e28c Cesta k chybující
aplikaci: C:\Program Files (x86)\Ad Muncher\AdMunch.exe Cesta k chybujícímu modulu:
C:\Program Files (x86)\Ad Muncher\AdMunch.exe ID zprávy: 3796ea59-d5d7-11e1-bf36-00241d82b71a
Error - 24.7.2012 17:33:44 | Computer Name = opopop-PC | Source = Application Error | ID = 1000
Description = Název chybující aplikace: AdMunch.exe, verze: 4.91.0.32562, časové
razítko: 0x802b3e78 Název chybujícího modulu: AdMunch.exe, verze: 4.91.0.32562,
časové razítko: 0x802b3e78 Kód výjimky: 0xc0000005 Posun chyby: 0x0048fa5c ID chybujícího
procesu: 0x4f08 Čas spuštění chybující aplikace: 0x01cd69e4005e79b1 Cesta k chybující
aplikaci: C:\Program Files (x86)\Ad Muncher\AdMunch.exe Cesta k chybujícímu modulu:
C:\Program Files (x86)\Ad Muncher\AdMunch.exe ID zprávy: 3e1881ed-d5d7-11e1-bf36-00241d82b71a
Error - 24.7.2012 17:39:17 | Computer Name = opopop-PC | Source = Application Error | ID = 1000
Description = Název chybující aplikace: AdMunch.exe, verze: 4.91.0.32562, časové
razítko: 0x802b3e78 Název chybujícího modulu: AdMunch.exe, verze: 4.91.0.32562,
časové razítko: 0x802b3e78 Kód výjimky: 0xc0000005 Posun chyby: 0x0048fa5c ID chybujícího
procesu: 0x44c4 Čas spuštění chybující aplikace: 0x01cd69e4c6158d91 Cesta k chybující
aplikaci: C:\Program Files (x86)\Ad Muncher\AdMunch.exe Cesta k chybujícímu modulu:
C:\Program Files (x86)\Ad Muncher\AdMunch.exe ID zprávy: 048a8419-d5d8-11e1-bf36-00241d82b71a
Error - 24.7.2012 17:45:55 | Computer Name = opopop-PC | Source = Application Error | ID = 1000
Description = Název chybující aplikace: opera_plugin_wrapper.exe, verze: 12.0.1467.0,
časové razítko: 0x4fd85908 Název chybujícího modulu: opera_plugin_wrapper.exe, verze:
12.0.1467.0, časové razítko: 0x4fd85908 Kód výjimky: 0xc0000005 Posun chyby: 0x0000000000018865
ID
chybujícího procesu: 0x540 Čas spuštění chybující aplikace: 0x01cd69a86268d45d Cesta
k chybující aplikaci: C:\Program Files\Opera x64\pluginwrapper\opera_plugin_wrapper.exe
Cesta
k chybujícímu modulu: C:\Program Files\Opera x64\pluginwrapper\opera_plugin_wrapper.exe
ID
zprávy: f1e51dbe-d5d8-11e1-bf36-00241d82b71a
Error - 25.7.2012 2:53:20 | Computer Name = opopop-PC | Source = Application Error | ID = 1000
Description = Název chybující aplikace: AdMunch.exe, verze: 4.91.0.32562, časové
razítko: 0x802b3e78 Název chybujícího modulu: AdMunch.exe, verze: 4.91.0.32562,
časové razítko: 0x802b3e78 Kód výjimky: 0xc0000005 Posun chyby: 0x0048fa5c ID chybujícího
procesu: 0x150 Čas spuštění chybující aplikace: 0x01cd6a322ad613ff Cesta k chybující
aplikaci: C:\Program Files (x86)\Ad Muncher\AdMunch.exe Cesta k chybujícímu modulu:
C:\Program Files (x86)\Ad Muncher\AdMunch.exe ID zprávy: 6abe46df-d625-11e1-9f6d-00241d82b71a
Error - 25.7.2012 2:55:17 | Computer Name = opopop-PC | Source = Lavasoft Ad-Aware Service | ID = 0
Description =
Error - 25.7.2012 11:59:34 | Computer Name = opopop-PC | Source = Application Error | ID = 1000
Description = Název chybující aplikace: AdMunch.exe, verze: 4.91.0.32562, časové
razítko: 0x802b3e78 Název chybujícího modulu: AdMunch.exe, verze: 4.91.0.32562,
časové razítko: 0x802b3e78 Kód výjimky: 0xc0000005 Posun chyby: 0x0048fa5c ID chybujícího
procesu: 0xc44 Čas spuštění chybující aplikace: 0x01cd6a7e728d25ee Cesta k chybující
aplikaci: C:\Program Files (x86)\Ad Muncher\AdMunch.exe Cesta k chybujícímu modulu:
C:\Program Files (x86)\Ad Muncher\AdMunch.exe ID zprávy: ba0d0391-d671-11e1-9400-00241d82b71a
[ System Events ]
Error - 24.7.2012 2:20:12 | Computer Name = opopop-PC | Source = Service Control Manager | ID = 7026
Description = Zavedení následujícího ovladače pro spouštění počítače nebo systému
se nezdařilo: NetworkX VD_FileDisk
Error - 24.7.2012 2:31:19 | Computer Name = opopop-PC | Source = Service Control Manager | ID = 7024
Description = Služba Naslouchací proces domácí skupiny ukončena s chybou %%-2147023143,
specifickou pro službu.
Error - 25.7.2012 2:50:45 | Computer Name = opopop-PC | Source = Application Popup | ID = 1060
Description = Načtení \SystemRoot\SysWow64\Drivers\VD_FileDisk.SYS bylo zablokováno
kvůli nekompatibilitě s tímto systémem. Požádejte dodavatele softwaru o kompatibilní
verzi ovladače.
Error - 25.7.2012 2:51:10 | Computer Name = opopop-PC | Source = Service Control Manager | ID = 7000
Description = Služba Crypkey License neuspěla při spuštění v důsledku následující
chyby: %%2
Error - 25.7.2012 2:51:32 | Computer Name = opopop-PC | Source = Service Control Manager | ID = 7026
Description = Zavedení následujícího ovladače pro spouštění počítače nebo systému
se nezdařilo: NetworkX VD_FileDisk
Error - 25.7.2012 2:54:19 | Computer Name = opopop-PC | Source = Service Control Manager | ID = 7024
Description = Služba Naslouchací proces domácí skupiny ukončena s chybou %%-2147023143,
specifickou pro službu.
Error - 25.7.2012 11:58:35 | Computer Name = opopop-PC | Source = Application Popup | ID = 1060
Description = Načtení \SystemRoot\SysWow64\Drivers\VD_FileDisk.SYS bylo zablokováno
kvůli nekompatibilitě s tímto systémem. Požádejte dodavatele softwaru o kompatibilní
verzi ovladače.
Error - 25.7.2012 11:59:00 | Computer Name = opopop-PC | Source = Service Control Manager | ID = 7000
Description = Služba Crypkey License neuspěla při spuštění v důsledku následující
chyby: %%2
Error - 25.7.2012 12:00:32 | Computer Name = opopop-PC | Source = Service Control Manager | ID = 7026
Description = Zavedení následujícího ovladače pro spouštění počítače nebo systému
se nezdařilo: NetworkX VD_FileDisk
Error - 25.7.2012 12:01:06 | Computer Name = opopop-PC | Source = Service Control Manager | ID = 7024
Description = Služba Naslouchací proces domácí skupiny ukončena s chybou %%-2147023143,
specifickou pro službu.
< End of report >
Re: kontrola logu
Mohu mit dotaz, proc si bezny uzivatel kupuje nejvyssi licenci Windows Ultimate, ktera je urcena spise pro velke korporace, kdyz stejne nevyuzije nic vic nez nabizi verze Home Premium 
A nebo byla "koupena" nekde na internetu 
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen od 1. února 2011.
Člen
od 1. února 2011.Re: kontrola logu
no nevím....je pro mě lepší nižší verze?třeba kvůli zatížení systému nebo z jiných důvodů?
Re: kontrola logu
Ja se ptal proc jste vyhodil hruzu penez za drahou verzi ultimate a nekoupil o daleko levnejsi home premium?
Nebo jste se na nejake kupovani licence proste vykvaknul a jednoduse windows cracknul
Home Premium ma nizsi naroky, je jednodussi, mene mista na disku zabira a jak rikam z toho co nabizi navic ultimate nevyuzijete ani tak procento
Nebo jste se na nejake kupovani licence proste vykvaknul a jednoduse windows cracknul
Home Premium ma nizsi naroky, je jednodussi, mene mista na disku zabira a jak rikam z toho co nabizi navic ultimate nevyuzijete ani tak procento
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen od 1. února 2011.
Člen
od 1. února 2011.Re: kontrola logu
systém je nainstalovaný 3 roky a nijak jsem o tom tenkrát nepřemýšlel.vadí to nyní při kontrole?
Re: kontrola logu
Pravidla fora
Pomáhat NELZE:
2) Pokud stroj uživatele prokazatelně obsahuje nelegální hostitelský čí ochranný software
(operační systém, antivir, firewall, atd.)
Dnes to dokoncime, ale priste bude pomoc odmitnuta, jelikoz jsou tam patrne prvky warezu (crack na windows) Dejte mi par minut na sepsani skriptu pro OTL"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen od 1. února 2011.
Člen
od 1. února 2011.Re: kontrola logu
Spustte znovu OTL
- Pokud pouzivate Win Vista ci W7, kliknete na OTL pravym a dejte Run As Administrator ci Spustit jako spravce
- Do spodniho okenka Vlastni skenovani/opravy vlozte skript nize
Kód: Vybrat vše
:otl IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC IE:64bit: - HKLM\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7 IE:64bit: - HKLM\..\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}: "URL" = http://dts.search-results.com/sr?src=ie ... 06&sr=0&q={searchTerms} IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://start.facemoods.com/?a=ddrnw&s={searchTerms}&f=4 IE - HKLM\..\URLSearchHook: - No CLSID value found IE - HKLM\..\URLSearchHook: {855F3B16-6D32-4fe6-8A56-BBB695989046} - No CLSID value found IE - HKLM\..\URLSearchHook: {a5ae8924-4036-420f-b7f6-a47e4b8f692e} - C:\Program Files (x86)\Free_Lunch_Design_TB\prxtbFree.dll (Conduit Ltd.) IE - HKLM\..\SearchScopes,DefaultScope = {9BB47C17-9C68-4BB3-B188-DD9AF0FD2406} IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC IE - HKLM\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7 IE - HKLM\..\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}: "URL" = http://dts.search-results.com/sr?src=ie ... 06&sr=0&q={searchTerms} IE - HKLM\..\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}: "URL" = http://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT2776682 IE - HKLM\..\SearchScopes\{EEE7E0A3-AE64-4dc8-84D1-F5D7BAF2DB0C}: "URL" = http://slirsredirect.search.aol.com/sli ... 685&query={searchTerms}&invocationType=tb50winampie7 IE - HKU\S-1-5-21-177668100-1846633066-3982842387-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com/ie IE - HKU\S-1-5-21-177668100-1846633066-3982842387-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://www.google.com/ie IE - HKU\S-1-5-21-177668100-1846633066-3982842387-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com IE - HKU\S-1-5-21-177668100-1846633066-3982842387-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank IE - HKU\S-1-5-21-177668100-1846633066-3982842387-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 34 D4 22 4F 66 31 CA 01 [binary data] IE - HKU\S-1-5-21-177668100-1846633066-3982842387-1001\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.google.com/ie IE - HKU\S-1-5-21-177668100-1846633066-3982842387-1001\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com/ie IE - HKU\S-1-5-21-177668100-1846633066-3982842387-1001\..\URLSearchHook: - No CLSID value found IE - HKU\S-1-5-21-177668100-1846633066-3982842387-1001\..\URLSearchHook: {30421e54-3b57-4e5b-947c-9b6beea57683} - No CLSID value found IE - HKU\S-1-5-21-177668100-1846633066-3982842387-1001\..\URLSearchHook: {51a86bb3-6602-4c85-92a5-130ee4864f13} - No CLSID value found IE - HKU\S-1-5-21-177668100-1846633066-3982842387-1001\..\URLSearchHook: {a5ae8924-4036-420f-b7f6-a47e4b8f692e} - C:\Program Files (x86)\Free_Lunch_Design_TB\prxtbFree.dll (Conduit Ltd.) IE - HKU\S-1-5-21-177668100-1846633066-3982842387-1001\..\URLSearchHook: {e8de9422-3b2c-4243-bf6f-235da84d8ef8} - No CLSID value found IE - HKU\S-1-5-21-177668100-1846633066-3982842387-1001\..\SearchScopes,DefaultScope = {95B7759C-8C7F-4BF1-B163-73684A933233} IE - HKU\S-1-5-21-177668100-1846633066-3982842387-1001\..\SearchScopes\{043C5167-00BB-4324-AF7E-62013FAEDACF}: "URL" = http://vshare.toolbarhome.com/search.aspx?q={searchTerms}&srch=dsp IE - HKU\S-1-5-21-177668100-1846633066-3982842387-1001\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC IE - HKU\S-1-5-21-177668100-1846633066-3982842387-1001\..\SearchScopes\{0D7562AE-8EF6-416d-A838-AB665251703A}: "URL" = http://start.facemoods.com/?a=ddrnw&s={searchTerms}&f=4 IE - HKU\S-1-5-21-177668100-1846633066-3982842387-1001\..\SearchScopes\{6552C7DD-90A4-4387-B795-F8F96747DE19}: "URL" = http://search.icq.com/search/results.php?q={searchTerms}&ch_id=osd IE - HKU\S-1-5-21-177668100-1846633066-3982842387-1001\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7&rlz=1I7ADFA_cs IE - HKU\S-1-5-21-177668100-1846633066-3982842387-1001\..\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}: "URL" = http://isearch.avg.com/search?cid={9F276F13-6B79-41E0-9774-F85054BAAB75}&mid=4518f862b7d947d08d13d16d5b665ee9-d37fda8205eacc93668a3817195fdc15e7b7ee27&lang=cs&ds=AVG&pr=fr&d=2012-04-15 17:41:24&v=10.2.0.3&sap=dsp&q={searchTerms} IE - HKU\S-1-5-21-177668100-1846633066-3982842387-1001\..\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}: "URL" = http://dts.search-results.com/sr?src=ie ... 06&sr=0&q={searchTerms} IE - HKU\S-1-5-21-177668100-1846633066-3982842387-1001\..\SearchScopes\{AD22EBAF-0D18-4fc7-90CC-5EA0ABBE9EB8}: "URL" = http://www.daemon-search.com/search/web?q={searchTerms} IE - HKU\S-1-5-21-177668100-1846633066-3982842387-1001\..\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}: "URL" = http://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT2776682 IE - HKU\S-1-5-21-177668100-1846633066-3982842387-1001\..\SearchScopes\{EEE7E0A3-AE64-4dc8-84D1-F5D7BAF2DB0C}: "URL" = http://slirsredirect.search.aol.com/sli ... 685&query={searchTerms}&invocationType=tb50winampie7 [2009.10.18 20:56:13 | 000,000,000 | ---D | M] ("Ask Toolbar for Firefox") -- C:\Users\opopop\AppData\Roaming\Mozilla\Firefox\extensions\{E9A1DEE0-C623-4439-8932-001E7D17607D} O2 - BHO: (AskBar BHO) - {201f27d4-3704-41d6-89c1-aa35e39143ed} - C:\Program Files (x86)\AskBarDis\bar\bin\askBar.dll (Ask.com) O2:64bit: - BHO: (no name) - {9D717F81-9148-4f12-8568-69135F087DB0} - No CLSID value found. O2:64bit: - BHO: (SnagIt Toolbar Loader) - {00C6482D-C502-44C8-8409-FCE54AD9C208} - C:\Program Files (x86)\TechSmith\Snagit 9\DLLx64\SnagitBHO64.dll (TechSmith Corporation) O2 - BHO: (no name) - {9D717F81-9148-4f12-8568-69135F087DB0} - No CLSID value found. O2 - BHO: (Free Lunch Design TB Toolbar) - {a5ae8924-4036-420f-b7f6-a47e4b8f692e} - C:\Program Files (x86)\Free_Lunch_Design_TB\prxtbFree.dll (Conduit Ltd.) O3:64bit: - HKLM\..\Toolbar: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files (x86)\DAEMON Tools Toolbar\DTToolbar64.dll () O3:64bit: - HKLM\..\Toolbar: (no name) - 10 - No CLSID value found. O3 - HKLM\..\Toolbar: (vShare Plugin) - {043C5167-00BB-4324-AF7E-62013FAEDACF} - C:\Program Files (x86)\vShare\vshare_toolbar.dll () O3 - HKLM\..\Toolbar: (Foxit Toolbar) - {3041d03e-fd4b-44e0-b742-2d9b88305f98} - C:\Program Files (x86)\AskBarDis\bar\bin\askBar.dll (Ask.com) O3 - HKLM\..\Toolbar: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files (x86)\DAEMON Tools Toolbar\DTToolbar.dll () O3 - HKLM\..\Toolbar: (&Save Flash) - {4064EA35-578D-4073-A834-C96D82CBCF40} - C:\Program Files (x86)\Save Flash\SaveFlash.dll (PilotGroup LLC) O3 - HKLM\..\Toolbar: (Snagit) - {8FF5E183-ABDE-46EB-B09E-D2AAB95CABE3} - C:\Program Files (x86)\TechSmith\Snagit 9\SnagitIEAddin.dll (TechSmith Corporation) O3 - HKLM\..\Toolbar: (no name) - {99079a25-328f-4bd4-be04-00955acaa0a7} - No CLSID value found. O3 - HKLM\..\Toolbar: (Free Lunch Design TB Toolbar) - {a5ae8924-4036-420f-b7f6-a47e4b8f692e} - C:\Program Files (x86)\Free_Lunch_Design_TB\prxtbFree.dll (Conduit Ltd.) O3 - HKLM\..\Toolbar: (facemoods Toolbar) - {DB4E9724-F518-4dfd-9C7C-78B52103CAB9} - C:\Program Files (x86)\facemoods.com\facemoods\1.4.17.11\facemoodsTlbr.dll (facemoods.com) O3 - HKLM\..\Toolbar: (no name) - 10 - No CLSID value found. O8:64bit: - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200 File not found O8:64bit: - Extra context menu item: Block frame with Ad Muncher - http://www.admuncher.com/request_will_b ... u_ie_frame File not found O8:64bit: - Extra context menu item: Block image with Ad Muncher - http://www.admuncher.com/request_will_b ... u_ie_image File not found O8:64bit: - Extra context menu item: Block link with Ad Muncher - http://www.admuncher.com/request_will_b ... nu_ie_link File not found O8:64bit: - Extra context menu item: Don't filter page with Ad Muncher - http://www.admuncher.com/request_will_b ... ie_exclude File not found O8:64bit: - Extra context menu item: Report page to the Ad Muncher developers - http://www.admuncher.com/request_will_b ... _ie_report File not found O8:64bit: - Extra context menu item: WikiKomentáře Google... - res://C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_96D6FF0C6D236BF8.dll/cmsidewiki.html File not found O8 - Extra context menu item: Block frame with Ad Muncher - http://www.admuncher.com/request_will_b ... u_ie_frame File not found O8 - Extra context menu item: Block image with Ad Muncher - http://www.admuncher.com/request_will_b ... u_ie_image File not found O8 - Extra context menu item: Block link with Ad Muncher - http://www.admuncher.com/request_will_b ... nu_ie_link File not found O8 - Extra context menu item: Don't filter page with Ad Muncher - http://www.admuncher.com/request_will_b ... ie_exclude File not found O8 - Extra context menu item: Report page to the Ad Muncher developers - http://www.admuncher.com/request_will_b ... _ie_report File not found O9 - Extra Button: PokerStars.net - {FA9B9510-9FCB-4ca0-818C-5D0987B47C4D} - C:\Program Files (x86)\PokerStars.NET\PokerStarsUpdate.exe File not found O1364bit: - gopher Prefix: missing O13 - gopher Prefix: missing O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Key error.) O18:64bit: - Protocol\Handler\skype4com - No CLSID value found O18:64bit: - Protocol\Handler\viprotocol - No CLSID value found O18:64bit: - Protocol\Handler\vsharechrome - No CLSID value found O18:64bit: - Protocol\Handler\wlpg - No CLSID value found O18 - Protocol\Handler\ms-help - No CLSID value found O20:64bit: - AppInit_DLLs: (C:\PROGRA~2\WI3C8A~1\Datamngr\x64\datamngr.dll) - File not found O20:64bit: - AppInit_DLLs: (C:\PROGRA~2\WI3C8A~1\Datamngr\x64\IEBHO.dll) - File not found O20 - AppInit_DLLs: (C:\PROGRA~2\WI3C8A~1\Datamngr\datamngr.dll) - File not found O20 - AppInit_DLLs: (C:\PROGRA~2\WI3C8A~1\Datamngr\IEBHO.dll) - File not found O20:64bit: - HKLM Winlogon: VMApplet - (/pagefile) - File not found O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found. O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found. O33 - MountPoints2\{7688af88-46cf-11df-9fc2-00241d82b71a}\Shell - "" = AutoRun O33 - MountPoints2\{bc2700dd-b79d-11dd-9de5-00241d82b71a}\Shell - "" = AutoRun O33 - MountPoints2\{bc2700df-b79d-11dd-9de5-00241d82b71a}\Shell - "" = AutoRun O33 - MountPoints2\{d38eea36-5feb-11df-ac8b-00241d82b71a}\Shell - "" = AutoRun O33 - MountPoints2\{dd96bd2d-94c1-11de-aea9-00241d82b71a}\Shell - "" = AutoRun [2012.07.25 17:59:00 | 000,000,202 | ---- | M] () -- C:\Windows\tasks\AutoKMS.job [2012.07.25 17:59:00 | 000,000,202 | ---- | M] () -- C:\Windows\Tasks\AutoKMS.job [2012.07.17 07:05:00 | 000,000,202 | ---- | M] () -- C:\Windows\Tasks\AutoKMSDaily.job [1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ] [1 C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp files -> C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp -> ] [2 C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\*.tmp files -> C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\*.tmp -> ] [31 C:\Windows\Installer\*.tmp files -> C:\Windows\Installer\*.tmp -> ] [1 C:\Windows\System32\spool\drivers\x64\3\*.tmp files -> C:\Windows\System32\spool\drivers\x64\3\*.tmp -> ] [1 C:\Windows\Temp\*.tmp files -> C:\Windows\Temp\*.tmp -> ] [1 C:\Windows\twain_32\*.tmp files -> C:\Windows\twain_32\*.tmp -> ] [2012.07.25 21:13:00 | 000,000,914 | ---- | M] () -- C:\Windows\Tasks\Adobe Flash Player Updater.job @Alternate Data Stream - 150 bytes -> C:\ProgramData\TEMP:3440EB47 @Alternate Data Stream - 140 bytes -> C:\ProgramData\TEMP:0888F409 @Alternate Data Stream - 133 bytes -> C:\ProgramData\TEMP:66633281 @Alternate Data Stream - 128 bytes -> C:\ProgramData\TEMP:F93E1473 @Alternate Data Stream - 110 bytes -> C:\ProgramData\TEMP:888AFB86 :reg [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "AMD64 CPU Assistant"=- "OEXPRESS"=- "DAEMON Tools Lite"=- [-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] /64 [-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite] /64 [-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Dexpot] /64 [-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Update] /64 [-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogMeIn Hamachi Ui] /64 [-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Malwarebytes' Anti-Malware] /64 [-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skype] /64 [-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched] /64 [-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SUPERAntiSpyware] /64 [HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run] ""=- "AMD64 CPU Assistant"=- "SunJavaUpdateSched"=- :files C:\Program Files (x86)\DAEMON Tools Toolbar C:\Program Files (x86)\facemoods.com C:\Program Files (x86)\AskBarDis c:\Users\opopop\Desktop\Programy\.123.Flash.Menu.v4.1.5.1400.Cracked-F4CG\ c:\Users\opopop\Desktop\Programy\Artisteer.3.0.0.45570\Lz0\cracked.rar c:\Users\opopop\Desktop\Programy\Windows 7 Genuine\ c:\Users\opopop\Downloads\Adobe-Photoshop-CS5-Extended-(Crack-+-Instructions).zip c:\Users\opopop\Downloads\Crack And Serial PS CS5.1 Extended (32-64 Bit).rar c:\Users\opopop\Downloads\Crack-for-Photoshop-CS5.rar c:\Program Files (x86)\Adobe\Adobe Dreamweaver CS5\configuration\Content\Reference\HTML\KEYGEN.html c:\Program Files (x86)\Foxit Software\Foxit Reader\Foxit.Reader.Keygen-CORE.exe c:\Program Files (x86)\Garmin\POI\Keygen - modded for Travel Guide ONLY.exe %windir%\system32\*.tmp.dll /s %windir%\system32\SET*.tmp /s %windir%\*.tmp :commands [RESETHOSTS] [EMPTYTEMP] [EMPTYFLASH] [EMPTYJAVA]- Nasledne kliknete na Opravit
- PC provede opravu, restartuje se a da Vam log, jeho obsah vlozte sem
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen od 1. února 2011.
Člen
od 1. února 2011.Re: kontrola logu
Files\Folders moved on Reboot...
File move failed. C:\Windows\System32\drivers\etc\Hosts scheduled to be moved on reboot.
PendingFileRenameOperations files...
[2012.03.29 19:31:36 | 000,001,401 | RHS- | M] () C:\Windows\System32\drivers\etc\Hosts : MD5=591459B6D34F57D0DE31832BE7414A06
Registry entries deleted on Reboot...
File move failed. C:\Windows\System32\drivers\etc\Hosts scheduled to be moved on reboot.
PendingFileRenameOperations files...
[2012.03.29 19:31:36 | 000,001,401 | RHS- | M] () C:\Windows\System32\drivers\etc\Hosts : MD5=591459B6D34F57D0DE31832BE7414A06
Registry entries deleted on Reboot...
Re: kontrola logu
Log neni cely, mrknete do slozky c:\_OTL\MovedFiles jestli jej tam nemate
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen od 1. února 2011.
Člen
od 1. února 2011.Re: kontrola logu
no me to hodí vzdy chybu:
Cannot create files C:\Windows\System32\drivers\etc\Hosts
a po restartu jen to co jsem uz postnul....
Cannot create files C:\Windows\System32\drivers\etc\Hosts
a po restartu jen to co jsem uz postnul....
Přispějete na provoz fóra?