Ahojte môžete mi skontrolovať log? V poslednej dobe sa mi zdá ,že je pc pomalšie ako bolo pred pár mesiacmi.
Logfile of random's system information tool 1.09 (written by random/random)
Run by Martin at 2012-09-25 07:57:21
Microsoft Windows 7 Ultimate
System drive C: has 196 GB (21%) free of 954 GB
Total RAM: 8162 MB (78% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 7:57:24, on 25. 9. 2012
Platform: Windows 7 (WinNT 6.00.3504)
MSIE: Internet Explorer v9.00 (9.00.8112.16446)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe
C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
C:\Program Files (x86)\SlySoft\CloneCD\CloneCDTray.exe
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
C:\Program Files (x86)\Guard-ICQ\GuardICQ.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanionInfo.exe
C:\Program Files (x86)\DAEMON Tools Lite\DTShellHlp.exe
C:\Program Files (x86)\MSI\Super-Charger\Super-Charger.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
C:\Program Files\trend micro\Martin.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Canon Easy-WebPrint EX BHO - {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O3 - Toolbar: Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll
O4 - HKLM\..\Run: [NUSB3MON] "C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe"
O4 - HKLM\..\Run: [Super-Charger] C:\Program Files (x86)\MSI\Super-Charger\StartSuperCharger.exe
O4 - HKLM\..\Run: [NBAgent] "C:\Program Files (x86)\Nero\Nero 11\Nero BackItUp\NBAgent.exe" /WinStart
O4 - HKLM\..\Run: [CloneCDTray] "C:\Program Files (x86)\SlySoft\CloneCD\CloneCDTray.exe" /s
O4 - HKLM\..\Run: [SwitchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O4 - HKLM\..\Run: [AdobeCS5.5ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS5.5ServiceManager\CS5.5ServiceManager.exe" -launchedbylogin
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [Guard.Mail.ru.gui] "C:\Program Files (x86)\Guard-ICQ\GuardICQ.exe" /gui
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [Sony PC Companion] "C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe" /Background
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-21-3230957621-2435849253-962487880-1004\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'UpdatusUser')
O4 - HKUS\S-1-5-21-3230957621-2435849253-962487880-1004\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'UpdatusUser')
O8 - Extra context menu item: E&xportovať do programu Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
O9 - Extra button: ICQ7.7 - {77F665FD-3F60-4B0A-AE14-EC124B7A7FCE} - C:\Program Files (x86)\ICQ7.7\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ7.7 - {77F665FD-3F60-4B0A-AE14-EC124B7A7FCE} - C:\Program Files (x86)\ICQ7.7\ICQ.exe
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Futuremark SystemInfo Service - Futuremark Corporation - C:\Program Files (x86)\Futuremark\Futuremark SystemInfo\FMSISvc.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: MBAMScheduler - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @C:\Program Files (x86)\Nero\Update\NASvc.exe,-200 (NAUpdate) - Nero AG - C:\Program Files (x86)\Nero\Update\NASvc.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (NVSvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: Sony Ericsson OMSI download service (OMSI download service) - Unknown owner - C:\Program Files (x86)\Sony Ericsson\Sony Ericsson PC Suite\SupServ.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: Sony PC Companion - Avanquest Software - C:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 10802 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
winlogon.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\nvvsvc.exe
"C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe"
C:\Windows\system32\svchost.exe -k RPCSS
"c:\Program Files\Microsoft Security Client\MsMpEng.exe"
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\Windows\system32\nvvsvc.exe -session -first
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"taskhost.exe"
"C:\Windows\system32\Dwm.exe"
"C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe"
C:\Windows\Explorer.EXE
"C:\Program Files (x86)\Sony Ericsson\Sony Ericsson PC Suite\SupServ.exe"
C:\Windows\SysWOW64\PnkBstrA.exe
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
WLIDSvcM.exe 2120
"C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe" -s
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1
"C:\Program Files\Canon\MyPrinter\BJMYPRT.EXE" /logon
"C:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey
"C:\Program Files\Windows Sidebar\sidebar.exe" /autoRun
"C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe" /Background
"C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe"
"C:\Program Files (x86)\SlySoft\CloneCD\CloneCDTray.exe" /s
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
"C:\Program Files (x86)\Guard-ICQ\GuardICQ.exe" /gui
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
"C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanionInfo.exe"
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files (x86)\DAEMON Tools Lite\DTShellHlp.exe"
C:\Windows\system32\DllHost.exe /Processid:{30D49246-D217-465F-B00B-AC9DDD652EB7}
"C:\Program Files (x86)\MSI\Super-Charger\Super-Charger.exe"
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\msiexec.exe /V
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe"
"C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray
"C:\Program Files (x86)\Nero\Update\NASvc.exe"
"C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe"
C:\Windows\system32\sppsvc.exe
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe1_ Global\UsGthrCtrlFltPipeMssGthrPipe1 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Windows\system32\SearchFilterHost.exe" 0 516 520 528 65536 524
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
C:\Windows\system32\wbem\WmiApSrv.exe
C:\Windows\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
C:\Windows\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
"C:\Users\Martin\Desktop\RSITx64.exe"
======Scheduled tasks folder======
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
=========Mozilla firefox=========
ProfilePath - C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\dsn6dm7q.default-1340042378436
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 11.2.202.235 Plugin
"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_2_202_235.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@canon.com/EPPEX]
"Description"=Canon Easy-PhotoPrint EX
"Path"=C:\Program Files (x86)\Canon\Easy-PhotoPrint EX\NPEZFFPI.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Google.com/GoogleEarthPlugin]
"Description"=Google Earth in your browser
"Path"=C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=10.7.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Windows\SysWOW64\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=10.7.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Nero.com/KM]
"Description"=
"Path"=C:\PROGRA~2\COMMON~1\Nero\BROWSE~1\NPBROW~1.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVision]
"Description"=NVIDIA stereo images plugin for Mozilla browsers
"Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVisionStreaming]
"Description"=NVIDIA 3D Vision Streaming plugin for Mozilla browsers
"Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.21.123\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.21.123\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.0.1]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.0.2]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll
C:\Program Files (x86)\Mozilla Firefox\extensions\
{972ce4c6-7e08-4474-a285-3208198ce6fd}
C:\Program Files (x86)\Mozilla Firefox\components\
binary.manifest
browsercomps.dll
C:\Program Files (x86)\Mozilla Firefox\plugins\
np-mswmp.dll
nppdf32.dll
WMP Firefox Plugin License.rtf
WMP Firefox Plugin RelNotes.txt
C:\Program Files (x86)\Mozilla Firefox\searchplugins\
atlas-sk.xml
azet-sk.xml
dunaj-sk.xml
eBay.xml
google.xml
slovnik-sk.xml
wikipedia-sk.xml
zoznam-sk.xml
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-08-18 532336]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-07-27 63944]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3785D0AD-BFFF-47F6-BF5B-A587C162FED9}]
Canon Easy-WebPrint EX BHO - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll [2010-11-08 202144]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2012-09-03 449512]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-08-18 403840]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2012-09-03 157672]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - Canon Easy-WebPrint EX - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll [2010-11-08 1619352]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [2011-06-24 7233640]
"AdobeAAMUpdater-1.0"=C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2011-03-15 499608]
"CanonMyPrinter"=C:\Program Files\Canon\MyPrinter\BJMyPrt.exe [2009-10-19 2185032]
"CanonSolutionMenu"=C:\Program Files (x86)\Canon\SolutionMenu\CNSLMAIN.exe [2009-09-04 767312]
"MSC"=c:\Program Files\Microsoft Security Client\msseces.exe [2012-03-26 1271168]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2009-07-14 1475072]
"AdobeBridge"= []
"DAEMON Tools Lite"=C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2012-04-11 3672384]
"Sony PC Companion"=C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe [2012-05-31 445624]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"NUSB3MON"=C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [2010-11-17 113288]
"Super-Charger"=C:\Program Files (x86)\MSI\Super-Charger\StartSuperCharger.exe [2011-01-25 303104]
"NBAgent"=C:\Program Files (x86)\Nero\Nero 11\Nero BackItUp\NBAgent.exe [2011-09-20 1493288]
"CloneCDTray"=C:\Program Files (x86)\SlySoft\CloneCD\CloneCDTray.exe [2009-01-30 57344]
"SwitchBoard"=C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
"AdobeCS5.5ServiceManager"=C:\Program Files (x86)\Common Files\Adobe\CS5.5ServiceManager\CS5.5ServiceManager.exe [2011-01-12 1523360]
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2012-07-27 919008]
"Guard.Mail.ru.gui"=C:\Program Files (x86)\Guard-ICQ\GuardICQ.exe [2012-01-14 1564368]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2012-07-03 252848]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MsMpSvc]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableLinkedConnections"=1
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvyu"=msyuv.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"vidc.yvu9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"VIDC.XFR1"=xfcodec64.dll
"VIDC.FPS1"=frapsv64.dll
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2012-09-25 07:46:25 ----D---- C:\temp
2012-09-25 07:45:22 ----A---- C:\Windows\SYSWOW64\nvumdshim.dll
2012-09-25 07:45:22 ----A---- C:\Windows\SYSWOW64\nvopencl.dll
2012-09-25 07:45:22 ----A---- C:\Windows\SYSWOW64\nvoglv32.dll
2012-09-25 07:45:22 ----A---- C:\Windows\SYSWOW64\nvinit.dll
2012-09-25 07:45:22 ----A---- C:\Windows\SYSWOW64\nvd3dum.dll
2012-09-25 07:45:22 ----A---- C:\Windows\SYSWOW64\nvcuvid.dll
2012-09-25 07:45:22 ----A---- C:\Windows\SYSWOW64\nvcuvenc.dll
2012-09-25 07:45:22 ----A---- C:\Windows\SYSWOW64\nvcuda.dll
2012-09-25 07:45:22 ----A---- C:\Windows\SYSWOW64\nvcompiler.dll
2012-09-25 07:45:22 ----A---- C:\Windows\system32\nvopencl.dll
2012-09-25 07:45:22 ----A---- C:\Windows\system32\nvoglv64.dll
2012-09-25 07:45:22 ----A---- C:\Windows\system32\nvinitx.dll
2012-09-25 07:45:22 ----A---- C:\Windows\system32\nvhdap64.dll
2012-09-25 07:45:22 ----A---- C:\Windows\system32\nvdispgenco64.dll
2012-09-25 07:45:22 ----A---- C:\Windows\system32\nvd3dumx.dll
2012-09-25 07:45:22 ----A---- C:\Windows\system32\nvcuvid.dll
2012-09-25 07:45:22 ----A---- C:\Windows\system32\nvcuvenc.dll
2012-09-25 07:45:22 ----A---- C:\Windows\system32\nvcuda.dll
2012-09-25 07:45:22 ----A---- C:\Windows\system32\nvcompiler.dll
2012-09-25 07:45:22 ----A---- C:\Windows\system32\drivers\nvlddmkm.sys
2012-09-25 07:45:22 ----A---- C:\Windows\system32\drivers\nvhda64v.sys
2012-09-24 09:41:29 ----D---- C:\Program Files (x86)\IPACS
2012-09-07 17:18:18 ----D---- C:\Program Files (x86)\Mozilla Firefox
2012-09-04 22:49:27 ----D---- C:\ProgramData\Pinnacle Studio Ultimate Collection
2012-09-04 22:43:35 ----D---- C:\ProgramData\Studio 15
2012-09-04 22:43:35 ----D---- C:\ProgramData\Pinnacle Studio Plus
2012-09-04 22:41:46 ----D---- C:\Program Files (x86)\Pinnacle
2012-09-04 22:40:03 ----D---- C:\ProgramData\Pinnacle
2012-09-03 07:41:03 ----A---- C:\Windows\SYSWOW64\javaws.exe
2012-09-03 07:40:44 ----A---- C:\Windows\SYSWOW64\WindowsAccessBridge-32.dll
2012-09-03 07:40:44 ----A---- C:\Windows\SYSWOW64\javaw.exe
2012-09-03 07:40:44 ----A---- C:\Windows\SYSWOW64\java.exe
2012-09-03 07:40:33 ----D---- C:\Program Files (x86)\Java
2012-08-30 10:40:14 ----A---- C:\Windows\SYSWOW64\nvStreaming.exe
======List of files/folders modified in the last 1 month======
2012-09-25 07:57:23 ----D---- C:\Program Files\trend micro
2012-09-25 07:56:17 ----D---- C:\Windows\Temp
2012-09-25 07:54:22 ----A---- C:\Windows\SYSWOW64\log.txt
2012-09-25 07:54:04 ----SHD---- C:\Windows\Installer
2012-09-25 07:54:04 ----SHD---- C:\Config.Msi
2012-09-25 07:52:52 ----D---- C:\Windows
2012-09-25 07:52:09 ----D---- C:\ProgramData\NVIDIA
2012-09-25 07:52:00 ----D---- C:\Windows\SysWOW64
2012-09-25 07:52:00 ----D---- C:\Windows\System32
2012-09-25 07:50:15 ----D---- C:\Windows\inf
2012-09-25 07:48:04 ----D---- C:\Program Files (x86)\NVIDIA Corporation
2012-09-25 07:47:41 ----D---- C:\Windows\system32\DriverStore
2012-09-25 07:47:41 ----D---- C:\Windows\system32\drivers
2012-09-25 07:47:41 ----D---- C:\Windows\system32\catroot
2012-09-25 07:47:02 ----D---- C:\Windows\Prefetch
2012-09-25 07:46:02 ----D---- C:\Program Files\NVIDIA Corporation
2012-09-25 07:39:08 ----SHD---- C:\System Volume Information
2012-09-25 07:37:01 ----A---- C:\Windows\system32\PerfStringBackup.INI
2012-09-25 07:36:20 ----D---- C:\Users\Martin\AppData\Roaming\vlc
2012-09-25 07:34:43 ----D---- C:\Games
2012-09-24 11:37:48 ----D---- C:\Windows\system32\config
2012-09-24 09:48:20 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2012-09-24 09:41:29 ----RD---- C:\Program Files (x86)
2012-09-24 09:40:15 ----D---- C:\Users\Martin\AppData\Roaming\uTorrent
2012-09-22 09:12:12 ----D---- C:\Program Files (x86)\Opera
2012-09-20 11:21:32 ----D---- C:\Filmy
2012-09-18 07:44:44 ----D---- C:\Windows\system32\catroot2
2012-09-18 07:44:15 ----D---- C:\Windows\system32\NDF
2012-09-13 15:33:08 ----D---- C:\Program Files (x86)\Malwarebytes' Anti-Malware
2012-09-08 07:38:44 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2012-09-07 21:53:01 ----D---- C:\Users\Martin\AppData\Roaming\ICQ
2012-09-07 21:22:12 ----D---- C:\Users\Martin\AppData\Roaming\Skype
2012-09-07 09:37:46 ----D---- C:\ProgramData\Skype
2012-09-07 09:37:42 ----RD---- C:\Program Files (x86)\Skype
2012-09-04 22:50:17 ----D---- C:\Program Files (x86)\Common Files
2012-09-04 22:49:27 ----HD---- C:\ProgramData
2012-09-04 22:48:35 ----D---- C:\Windows\winsxs
2012-09-04 22:47:33 ----RSD---- C:\Windows\Fonts
2012-09-03 07:40:34 ----A---- C:\Windows\SYSWOW64\npDeployJava1.dll
2012-09-03 07:40:34 ----A---- C:\Windows\SYSWOW64\deployJava1.dll
2012-08-30 21:14:00 ----A---- C:\Windows\SYSWOW64\nvwgf2um.dll
2012-08-30 21:14:00 ----A---- C:\Windows\SYSWOW64\nvapi.dll
2012-08-30 21:14:00 ----A---- C:\Windows\system32\nvwgf2umx.dll
2012-08-30 21:14:00 ----A---- C:\Windows\system32\nvumdshimx.dll
2012-08-30 21:14:00 ----A---- C:\Windows\system32\nvdispco64.dll
2012-08-30 21:14:00 ----A---- C:\Windows\system32\nvapi64.dll
2012-08-30 18:18:05 ----A---- C:\Windows\system32\nvvsvc.exe
2012-08-30 18:18:05 ----A---- C:\Windows\system32\nvshext.dll
2012-08-30 18:18:05 ----A---- C:\Windows\system32\nvmctray.dll
2012-08-30 18:18:01 ----A---- C:\Windows\system32\nvsvc64.dll
2012-08-30 18:17:59 ----A---- C:\Windows\system32\nvcpl.dll
2012-08-29 22:01:12 ----D---- C:\Program Files (x86)\Google
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 MpFilter;Microsoft Malware Protection Driver; C:\Windows\system32\DRIVERS\MpFilter.sys [2012-03-20 203888]
R0 NBVol;Nero Backup Volume Filter Driver; C:\Windows\system32\DRIVERS\NBVol.sys [2011-07-13 72240]
R0 NBVolUp;Nero Backup Volume Upper Filter Driver; C:\Windows\system32\DRIVERS\NBVolUp.sys [2011-07-13 15920]
R0 pciide;pciide; C:\Windows\system32\DRIVERS\pciide.sys [2009-07-14 12352]
R0 PxHlpa64;PxHlpa64; C:\Windows\System32\Drivers\PxHlpa64.sys [2009-07-09 55280]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2009-07-14 214096]
R0 speedfan;speedfan; C:\Windows\SysWOW64\speedfan.sys [2011-03-18 29592]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2009-07-14 514048]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2012-04-12 283200]
R1 ElbyCDIO;ElbyCDIO Driver; C:\Windows\System32\Drivers\ElbyCDIO.sys [2009-02-17 31400]
R1 VD_FileDisk;VD_FileDisk; C:\Windows\system32\drivers\VD_FileDisk.sys [2011-01-26 30312]
R3 ElbyCDFL;ElbyCDFL; C:\Windows\System32\Drivers\ElbyCDFL.sys [2007-02-16 40648]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2011-06-28 2905832]
R3 MarvinBus;Pinnacle Marvin Bus 64; C:\Windows\system32\DRIVERS\MarvinBus64.sys [2005-09-23 261120]
R3 MBAMProtector;MBAMProtector; \??\C:\Windows\system32\drivers\mbam.sys [2012-09-07 25928]
R3 MEIx64;Intel(R) Management Engine Interface; C:\Windows\system32\DRIVERS\HECIx64.sys [2010-10-19 56344]
R3 nusb3hub;Renesas Electronics USB 3.0 Hub Driver; C:\Windows\system32\DRIVERS\nusb3hub.sys [2011-02-10 82432]
R3 nusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver; C:\Windows\system32\DRIVERS\nusb3xhc.sys [2011-02-10 181760]
R3 NVHDA;Service for NVIDIA High Definition Audio Driver; C:\Windows\system32\drivers\nvhda64v.sys [2012-07-03 189288]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2011-06-10 539240]
S3 ALSysIO;ALSysIO; \??\C:\Users\Martin\AppData\Local\Temp\ALSysIO64.sys []
S3 cpuz135;cpuz135; \??\C:\Windows\TEMP\cpuz135\cpuz135_x64.sys []
S3 ggflt;SEMC USB Flash Driver Filter; C:\Windows\system32\DRIVERS\ggflt.sys [2012-07-19 14448]
S3 ggsemc;SEMC USB Flash Driver; C:\Windows\system32\DRIVERS\ggsemc.sys [2012-07-19 27760]
S3 NisDrv;Microsoft Network Inspection System; C:\Windows\system32\DRIVERS\NisDrvWFP.sys [2012-03-20 98688]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2009-07-14 165376]
S3 RivaTuner64;RivaTuner64; \??\C:\Program Files (x86)\RivaTuner v2.24 MSI Master Overclocking Arena 2009 edition\RivaTuner64.sys [2012-01-01 19952]
S3 s1039bus;Sony Ericsson Device 1039 driver (WDM); C:\Windows\system32\DRIVERS\s1039bus.sys [2010-03-15 127600]
S3 s1039mdfl;Sony Ericsson Device 1039 USB WMC Modem Filter; C:\Windows\system32\DRIVERS\s1039mdfl.sys [2010-03-15 19568]
S3 s1039mdm;Sony Ericsson Device 1039 USB WMC Modem Driver; C:\Windows\system32\DRIVERS\s1039mdm.sys [2010-03-15 161904]
S3 s1039mgmt;Sony Ericsson Device 1039 USB WMC Device Management Drivers (WDM); C:\Windows\system32\DRIVERS\s1039mgmt.sys [2010-03-15 141424]
S3 s1039nd5;Sony Ericsson Device 1039 USB Ethernet Emulation (NDIS); C:\Windows\system32\DRIVERS\s1039nd5.sys [2010-03-15 34416]
S3 s1039obex;Sony Ericsson Device 1039 USB WMC OBEX Interface; C:\Windows\system32\DRIVERS\s1039obex.sys [2010-03-15 137328]
S3 s1039unic;Sony Ericsson Device 1039 USB Ethernet Emulation (WDM); C:\Windows\system32\DRIVERS\s1039unic.sys [2010-03-15 158320]
S3 s3cap;s3cap; C:\Windows\system32\DRIVERS\vms3cap.sys [2009-07-14 6656]
S3 storvsc;storvsc; C:\Windows\system32\DRIVERS\storvsc.sys [2009-07-14 34896]
S3 usbscan;USB Scanner Driver; C:\Windows\system32\DRIVERS\usbscan.sys [2009-07-14 41984]
S3 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\system32\DRIVERS\vmbus.sys [2009-07-14 200272]
S3 VMBusHID;VMBusHID; C:\Windows\system32\DRIVERS\VMBusHID.sys [2009-07-14 21760]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2009-07-14 40448]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2011-02-22 326168]
R2 MBAMService;MBAMService; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2012-09-07 676936]
R2 MBAMScheduler;MBAMScheduler; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [2012-09-07 399432]
R2 MsMpSvc;Microsoft Antimalware Service; c:\Program Files\Microsoft Security Client\MsMpEng.exe [2012-03-26 12600]
R2 NAUpdate;@C:\Program Files (x86)\Nero\Update\NASvc.exe,-200; C:\Program Files (x86)\Nero\Update\NASvc.exe [2011-09-23 641832]
R2 NVSvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2012-08-30 891240]
R2 nvUpdatusService;NVIDIA Update Service Daemon; C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2012-08-30 1258856]
R2 OMSI download service;Sony Ericsson OMSI download service; C:\Program Files (x86)\Sony Ericsson\Sony Ericsson PC Suite\SupServ.exe [2009-04-30 90112]
R2 PnkBstrA;PnkBstrA; C:\Windows\syswow64\PnkBstrA.exe [2012-04-29 66872]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2012-08-30 382312]
R2 UNS;Intel(R) Management and Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2011-02-22 2656280]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2009-08-18 2291568]
S2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2012-07-27 63960]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2011-12-22 136176]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2012-07-03 160944]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S3 Futuremark SystemInfo Service;Futuremark SystemInfo Service; C:\Program Files (x86)\Futuremark\Futuremark SystemInfo\FMSISvc.exe [2011-12-09 135584]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2011-12-22 136176]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2012-09-07 114144]
S3 NisSrv;@c:\Program Files\Microsoft Security Client\MpAsDesc.dll,-243; c:\Program Files\Microsoft Security Client\NisSrv.exe [2012-03-26 291696]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2006-10-26 441136]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 Sony PC Companion;Sony PC Companion; C:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe [2012-01-18 155320]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2012-05-22 529232]
S3 SwitchBoard;SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S4 Guard.Mail.ru;Guard.Mail.ru; C:\Program Files (x86)\Guard-ICQ\GuardICQ.exe [2012-01-14 1564368]
-----------------EOF-----------------
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Pomalší Pc ako predtým (Rsit log)
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pomalší Pc ako predtým (Rsit log)
Naposledy upravil(a) vyosek dne 25 zář 2012 07:20, celkem upraveno 1 x.
Důvod: log odstranen z code
Důvod: log odstranen z code
Re: Pomalší Pc ako predtým (Rsit log)
Zdravim 
Jak je to s legalitou systemu? Ultimate neni zrovna bezna domaci verze 
Vidim tam MBAM. Delal jste uplnou kontrolu? Nasel neco?
Stahnete OTL http://oldtimer.geekstogo.com/OTL.exe a ulozte na plochu.
Kliknete na nej pravym mysidlem a levym na Spustit jako spravce
Oznacte polozky (dejte tam zatrzitka) Pro všechny uživatele, Kontrola na havěť "LOP" a Kontrola na havěť "Purity"
Do spodniho okna vlozte nasledujici text
Kliknete na Prohledat
Po skenu se vytvori dva logy (OTL.Txt a Extras.txt), oba sem vlozte (kdyz budou dlouhe, rozdelte je do vice prispevku).
Jak je to s legalitou systemu? Ultimate neni zrovna bezna domaci verze Vidim tam MBAM. Delal jste uplnou kontrolu? Nasel neco? Stahnete OTL http://oldtimer.geekstogo.com/OTL.exe a ulozte na plochu.Kliknete na nej pravym mysidlem a levym na Spustit jako spravce
Oznacte polozky (dejte tam zatrzitka) Pro všechny uživatele, Kontrola na havěť "LOP" a Kontrola na havěť "Purity"
Do spodniho okna vlozte nasledujici text
Kód: Vybrat vše
CREATERESTOREPOINT
netsvcs
drivers32
savembr:0
/md5start
adp3132.sys
AGP440.sys
ahcix86.sys
ahcix86s.sys
atapi.sys
autochk.exe
cdrom.sys
cngaudit.dll
cryptsvc.dll
eNetHook.dll
eventlog.dll
explorer.exe
hal.dll
Changer.sys
iaStor.sys
iastorv.sys
IdeChnDr.sys
isapnp.sys
JakNDis.sys
KR10N.sys
logevent.dll
lsass.exe
mv61xx.sys
ndis.sys
netlogon.dll
ntelogon.dll
nvata.sys
nvatabus.sys
nvgts.sys
nvraid.sys
nvrd32.sys
nvstor.sys
nvstor32.sys
scecli.dll
sceclt.dll
smss.exe
svchost.exe
symmpi.sys
tcpip.sys
userinit.exe
vaxscsi.sys
viamraid.sys
viasraid.sys
ViPrt.sys
winlogon.exe
ws2_32.dll
/md5stop
%systemroot%*.* /U /s
%SYSTEMDRIVE%\*.exe
%ALLUSERSPROFILE%\Application Data\*.
%ALLUSERSPROFILE%\Application Data\*.exe /s
%APPDATA%\*.
%APPDATA%\*.exe /s
%systemroot%\*. /mp /s
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\Tasks\*.job /lockedfiles
%systemroot%\system32\drivers\*.sys /lockedfiles
%systemroot%\System32\config\*.sav
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\system32\drivers\*.sys /3
%systemroot%\system32\*.* /3
%SYSTEMDRIVE%\*.exe
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s
reg query "HKLM\Software\Microsoft\Windows NT\CurrentVersion\winlogon" /v GinaDLL /c
reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv" /v ImagePath /c
reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS" /v ImagePath /c
type c:\boot.ini >> test.txt /c
%SystemDrive%\PhysicalMBR.bin /md5
*crack* /s
*keygen* /s
*loader* /s
*minodlogin* /s
*tnod* /s
*AutoKMS* /s
*activator* /s
*serial* /s
*w7lxe* /s
Po skenu se vytvori dva logy (OTL.Txt a Extras.txt), oba sem vlozte (kdyz budou dlouhe, rozdelte je do vice prispevku).
Pokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Re: Pomalší Pc ako predtým (Rsit log)
Tak toto je z OTL
OTL logfile created on: 25. 9. 2012 9:59:05 - Run 1
OTL by OldTimer - Version 3.2.68.0 Folder = C:\Users\Martin\Desktop
64bit- Ultimate Edition (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 0000041b | Country: Slovenská republika | Language: SKY | Date Format: d. M. yyyy
7,97 Gb Total Physical Memory | 5,95 Gb Available Physical Memory | 74,59% Memory free
15,94 Gb Paging File | 13,80 Gb Available in Paging File | 86,59% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 931,41 Gb Total Space | 191,11 Gb Free Space | 20,52% Space Free | Partition Type: NTFS
Drive E: | 7,71 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: UDF
Computer Name: MARTIN-PC | User Name: Martin | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Processes (SafeList) ==========
PRC - [2012/09/25 09:57:49 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Martin\Desktop\OTL.exe
PRC - [2012/09/07 17:18:37 | 000,917,984 | ---- | M] (Mozilla Corporation) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
PRC - [2012/09/07 17:04:46 | 000,676,936 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
PRC - [2012/09/07 17:04:46 | 000,399,432 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
PRC - [2012/09/07 17:04:44 | 000,766,536 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
PRC - [2012/08/30 21:14:00 | 001,258,856 | ---- | M] (NVIDIA Corporation) -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
PRC - [2012/08/30 10:40:00 | 000,382,312 | ---- | M] (NVIDIA Corporation) -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
PRC - [2012/05/31 15:00:22 | 000,445,624 | ---- | M] (Sony) -- C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe
PRC - [2012/04/30 11:57:42 | 000,067,072 | ---- | M] () -- C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanionInfo.exe
PRC - [2012/04/29 12:44:08 | 000,066,872 | ---- | M] () -- C:\Windows\SysWOW64\PnkBstrA.exe
PRC - [2012/04/11 11:54:20 | 002,607,424 | ---- | M] (DT Soft Ltd) -- C:\Program Files (x86)\DAEMON Tools Lite\DTShellHlp.exe
PRC - [2012/01/14 12:39:23 | 001,564,368 | ---- | M] () -- C:\Program Files (x86)\Guard-ICQ\GuardICQ.exe
PRC - [2011/09/23 19:37:42 | 000,641,832 | ---- | M] (Nero AG) -- C:\Program Files (x86)\Nero\Update\NASvc.exe
PRC - [2011/02/22 06:19:12 | 002,656,280 | R--- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
PRC - [2011/02/22 06:19:08 | 000,326,168 | R--- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
PRC - [2011/01/25 11:11:16 | 000,438,272 | ---- | M] (MSI CO.,LTD.) -- C:\Program Files (x86)\MSI\Super-Charger\Super-Charger.exe
PRC - [2010/11/17 10:53:16 | 000,113,288 | ---- | M] (Renesas Electronics Corporation) -- C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
PRC - [2009/04/30 12:23:26 | 000,090,112 | ---- | M] () -- C:\Program Files (x86)\Sony Ericsson\Sony Ericsson PC Suite\SupServ.exe
PRC - [2009/01/30 00:20:49 | 000,057,344 | ---- | M] (SlySoft, Inc.) -- C:\Program Files (x86)\SlySoft\CloneCD\CloneCDTray.exe
========== Modules (No Company Name) ==========
MOD - [2012/09/07 17:18:21 | 002,244,064 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefox\mozjs.dll
MOD - [2012/08/30 10:39:42 | 000,374,120 | ---- | M] () -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\Nv3DVStreaming.dll
MOD - [2012/06/25 08:07:13 | 008,797,856 | ---- | M] () -- C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_2_202_235.dll
MOD - [2012/05/24 11:50:32 | 000,203,776 | ---- | M] () -- C:\Program Files (x86)\Sony\Sony PC Companion\MExplorer.dll
MOD - [2012/05/23 11:38:36 | 000,583,680 | ---- | M] () -- C:\Program Files (x86)\Sony\Sony PC Companion\PhoneUpdate.dll
MOD - [2012/04/30 11:57:42 | 000,067,072 | ---- | M] () -- C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanionInfo.exe
MOD - [2012/04/30 11:57:42 | 000,039,936 | ---- | M] () -- C:\Program Files (x86)\Sony\Sony PC Companion\TMonitorAPI.dll
MOD - [2012/01/14 12:39:23 | 001,564,368 | ---- | M] () -- C:\Program Files (x86)\Guard-ICQ\GuardICQ.exe
MOD - [2011/07/07 14:54:36 | 000,233,984 | ---- | M] () -- C:\Program Files (x86)\Sony\Sony PC Companion\Report.dll
MOD - [2010/01/11 16:44:54 | 000,053,248 | ---- | M] () -- C:\Program Files (x86)\Sony\Sony PC Companion\VObject.dll
========== Services (SafeList) ==========
SRV:64bit: - [2012/03/26 18:49:56 | 000,291,696 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- c:\Program Files\Microsoft Security Client\NisSrv.exe -- (NisSrv)
SRV:64bit: - [2012/03/26 18:49:56 | 000,012,600 | ---- | M] (Microsoft Corporation) [Auto | Running] -- c:\Program Files\Microsoft Security Client\MsMpEng.exe -- (MsMpSvc)
SRV:64bit: - [2009/07/14 03:41:27 | 001,011,712 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV:64bit: - [2009/07/14 03:40:01 | 000,193,536 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\appmgmts.dll -- (AppMgmt)
SRV - [2012/09/07 17:18:36 | 000,114,144 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2012/09/07 17:04:46 | 000,676,936 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe -- (MBAMService)
SRV - [2012/09/07 17:04:46 | 000,399,432 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe -- (MBAMScheduler)
SRV - [2012/08/30 21:14:00 | 001,258,856 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe -- (nvUpdatusService)
SRV - [2012/08/30 10:40:00 | 000,382,312 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe -- (Stereo Service)
SRV - [2012/07/27 22:51:26 | 000,063,960 | ---- | M] (Adobe Systems Incorporated) [Auto | Stopped] -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2012/07/03 13:19:28 | 000,160,944 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files (x86)\Skype\Updater\Updater.exe -- (SkypeUpdate)
SRV - [2012/05/22 10:12:55 | 000,529,232 | ---- | M] (Valve Corporation) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Steam\SteamService.exe -- (Steam Client Service)
SRV - [2012/04/29 12:44:08 | 000,066,872 | ---- | M] () [Auto | Running] -- C:\Windows\SysWOW64\PnkBstrA.exe -- (PnkBstrA)
SRV - [2012/01/18 14:38:28 | 000,155,320 | ---- | M] (Avanquest Software) [On_Demand | Stopped] -- C:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe -- (Sony PC Companion)
SRV - [2012/01/14 12:39:23 | 001,564,368 | ---- | M] () [Disabled | Stopped] -- C:\Program Files (x86)\Guard-ICQ\GuardICQ.exe -- (Guard.Mail.ru)
SRV - [2011/12/09 15:39:52 | 000,135,584 | ---- | M] (Futuremark Corporation) [On_Demand | Stopped] -- C:\Program Files (x86)\Futuremark\Futuremark SystemInfo\FMSISvc.exe -- (Futuremark SystemInfo Service)
SRV - [2011/09/23 19:37:42 | 000,641,832 | ---- | M] (Nero AG) [Auto | Running] -- C:\Program Files (x86)\Nero\Update\NASvc.exe -- (NAUpdate)
SRV - [2011/02/22 06:19:12 | 002,656,280 | R--- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe -- (UNS)
SRV - [2011/02/22 06:19:08 | 000,326,168 | R--- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe -- (LMS)
SRV - [2010/03/18 13:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2010/02/19 13:37:14 | 000,517,096 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe -- (SwitchBoard)
SRV - [2009/06/10 23:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)
SRV - [2009/04/30 12:23:26 | 000,090,112 | ---- | M] () [Auto | Running] -- C:\Program Files (x86)\Sony Ericsson\Sony Ericsson PC Suite\SupServ.exe -- (OMSI download service)
========== Driver Services (SafeList) ==========
DRV:64bit: - [2012/09/07 17:04:46 | 000,025,928 | ---- | M] (Malwarebytes Corporation) [File_System | On_Demand | Running] -- C:\Windows\SysNative\drivers\mbam.sys -- (MBAMProtector)
DRV:64bit: - [2012/07/19 21:14:46 | 000,027,760 | ---- | M] (Sony Ericsson Mobile Communications) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ggsemc.sys -- (ggsemc)
DRV:64bit: - [2012/07/19 21:14:46 | 000,014,448 | ---- | M] (Sony Ericsson Mobile Communications) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ggflt.sys -- (ggflt)
DRV:64bit: - [2012/07/03 17:25:16 | 000,189,288 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\nvhda64v.sys -- (NVHDA)
DRV:64bit: - [2012/04/12 16:50:19 | 000,283,200 | ---- | M] (DT Soft Ltd) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\dtsoftbus01.sys -- (dtsoftbus01)
DRV:64bit: - [2012/03/20 20:44:12 | 000,098,688 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\NisDrvWFP.sys -- (NisDrv)
DRV:64bit: - [2011/07/13 14:59:54 | 000,072,240 | ---- | M] (Nero AG) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\NBVol.sys -- (NBVol)
DRV:64bit: - [2011/07/13 14:59:54 | 000,015,920 | ---- | M] (Nero AG) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\NBVolUp.sys -- (NBVolUp)
DRV:64bit: - [2011/06/10 08:34:52 | 000,539,240 | ---- | M] (Realtek ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Rt64win7.sys -- (RTL8167)
DRV:64bit: - [2011/02/10 15:52:34 | 000,181,760 | ---- | M] (Renesas Electronics Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\nusb3xhc.sys -- (nusb3xhc)
DRV:64bit: - [2011/02/10 15:52:34 | 000,082,432 | ---- | M] (Renesas Electronics Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\nusb3hub.sys -- (nusb3hub)
DRV:64bit: - [2011/01/26 19:27:48 | 000,030,312 | ---- | M] (CaptainFlint Software) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\vd_filedisk.sys -- (VD_FileDisk)
DRV:64bit: - [2010/10/19 10:34:26 | 000,056,344 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\HECIx64.sys -- (MEIx64)
DRV:64bit: - [2010/03/15 11:38:38 | 000,127,600 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\s1039bus.sys -- (s1039bus)
DRV:64bit: - [2010/03/15 10:38:46 | 000,161,904 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\s1039mdm.sys -- (s1039mdm)
DRV:64bit: - [2010/03/15 10:38:46 | 000,158,320 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\s1039unic.sys -- (s1039unic)
DRV:64bit: - [2010/03/15 10:38:46 | 000,141,424 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\s1039mgmt.sys -- (s1039mgmt)
DRV:64bit: - [2010/03/15 10:38:46 | 000,137,328 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\s1039obex.sys -- (s1039obex)
DRV:64bit: - [2010/03/15 10:38:46 | 000,034,416 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\s1039nd5.sys -- (s1039nd5)
DRV:64bit: - [2010/03/15 10:38:46 | 000,019,568 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\s1039mdfl.sys -- (s1039mdfl)
DRV:64bit: - [2009/07/14 03:52:21 | 000,106,576 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:64bit: - [2009/07/14 03:52:21 | 000,028,752 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:64bit: - [2009/07/14 03:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:64bit: - [2009/07/14 03:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:64bit: - [2009/07/14 03:47:48 | 000,077,888 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:64bit: - [2009/07/14 03:47:48 | 000,023,104 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\Windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
DRV:64bit: - [2009/07/14 03:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:64bit: - [2009/07/09 03:00:00 | 000,055,280 | ---- | M] (Sonic Solutions) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\PxHlpa64.sys -- (PxHlpa64)
DRV:64bit: - [2009/06/10 22:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:64bit: - [2009/06/10 22:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:64bit: - [2009/06/10 22:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:64bit: - [2009/06/10 22:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
DRV:64bit: - [2009/02/17 19:11:25 | 000,031,400 | ---- | M] (Elaborate Bytes AG) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\ElbyCDIO.sys -- (ElbyCDIO)
DRV:64bit: - [2007/02/16 02:57:06 | 000,040,648 | ---- | M] (SlySoft, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\ElbyCDFL.sys -- (ElbyCDFL)
DRV:64bit: - [2005/09/23 22:18:34 | 000,261,120 | ---- | M] (Pinnacle Systems GmbH) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\MarvinBus64.sys -- (MarvinBus)
DRV - [2012/01/01 16:01:57 | 000,019,952 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Program Files (x86)\RivaTuner v2.24 MSI Master Overclocking Arena 2009 edition\RivaTuner64.sys -- (RivaTuner64)
DRV - [2009/07/14 03:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount)
DRV - [2007/02/16 02:57:06 | 000,040,648 | ---- | M] (SlySoft, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysWOW64\drivers\ElbyCDFL.sys -- (ElbyCDFL)
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 87 59 E1 52 EC 51 CD 01 [binary data]
IE - HKCU\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTer ... ORM=IE8SRC
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
========== FireFox ==========
FF - user.js - File not found
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_2_202_235.dll ()
FF - HKLM\Software\MozillaPlugins\@canon.com/EPPEX: C:\Program Files (x86)\Canon\Easy-PhotoPrint EX\NPEZFFPI.DLL (CANON INC.)
FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.7.2: C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.7.2: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@Nero.com/KM: C:\PROGRA~2\COMMON~1\Nero\BROWSE~1\NPBROW~1.DLL (Nero AG)
FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVision: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVisionStreaming: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.0.1: C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.0.2: C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\www.floatingminds.com/Tunnelers: C:\Games\Tunnelers\npTunnelers.dll (Floating Minds)
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 15.0\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2012/09/07 17:18:37 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 15.0\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins [2012/09/25 07:53:53 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 15.0.1\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2012/09/07 17:18:37 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 15.0.1\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins [2012/09/25 07:53:53 | 000,000,000 | ---D | M]
[2011/12/17 19:28:07 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Martin\AppData\Roaming\mozilla\Extensions
[2012/07/28 16:01:36 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Martin\AppData\Roaming\mozilla\Firefox\Profiles\dsn6dm7q.default-1340042378436\extensions
[2012/05/02 19:21:32 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Martin\AppData\Roaming\mozilla\Firefox\Profiles\mthuczr4.default\extensions
[2012/07/28 16:01:36 | 000,013,951 | ---- | M] () (No name found) -- C:\Users\Martin\AppData\Roaming\mozilla\firefox\profiles\dsn6dm7q.default-1340042378436\extensions\olddefaultimagestyle@dagger2-addons.mozilla.org.xpi
[2012/07/26 16:01:43 | 000,741,958 | ---- | M] () (No name found) -- C:\Users\Martin\AppData\Roaming\mozilla\firefox\profiles\dsn6dm7q.default-1340042378436\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
[2012/04/27 17:24:55 | 000,272,844 | ---- | M] () (No name found) -- C:\Users\Martin\AppData\Roaming\mozilla\firefox\profiles\mthuczr4.default\extensions\jid1-F9UJ2thwoAm5gQ@jetpack.xpi
[2012/03/19 18:28:17 | 000,010,839 | ---- | M] () (No name found) -- C:\Users\Martin\AppData\Roaming\mozilla\firefox\profiles\mthuczr4.default\extensions\olddefaultimagestyle@dagger2-addons.mozilla.org.xpi
[2012/04/06 19:23:48 | 000,634,964 | ---- | M] () (No name found) -- C:\Users\Martin\AppData\Roaming\mozilla\firefox\profiles\mthuczr4.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
[2012/09/07 17:18:18 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\extensions
[2012/09/07 17:18:37 | 000,266,720 | ---- | M] (Mozilla Foundation) -- C:\Program Files (x86)\mozilla firefox\components\browsercomps.dll
[2012/01/13 11:21:39 | 000,001,583 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\atlas-sk.xml
[2012/01/13 11:21:39 | 000,001,380 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\azet-sk.xml
[2012/01/13 11:21:39 | 000,001,479 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\dunaj-sk.xml
[2012/01/13 11:21:39 | 000,001,473 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\slovnik-sk.xml
[2012/01/13 11:21:39 | 000,001,104 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\wikipedia-sk.xml
[2012/01/13 11:21:39 | 000,000,830 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\zoznam-sk.xml
O1 HOSTS File: ([2009/06/10 23:00:26 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O2 - BHO: (Canon Easy-WebPrint EX BHO) - {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll (CANON INC.)
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O3 - HKLM\..\Toolbar: (Canon Easy-WebPrint EX) - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll (CANON INC.)
O3 - HKCU\..\Toolbar\WebBrowser: (Canon Easy-WebPrint EX) - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll (CANON INC.)
O4:64bit: - HKLM..\Run: [AdobeAAMUpdater-1.0] C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe (Adobe Systems Incorporated)
O4:64bit: - HKLM..\Run: [CanonMyPrinter] C:\Program Files\Canon\MyPrinter\BJMyPrt.exe (CANON INC.)
O4:64bit: - HKLM..\Run: [CanonSolutionMenu] C:\Program Files (x86)\Canon\SolutionMenu\CNSLMAIN.exe (CANON INC.)
O4:64bit: - HKLM..\Run: [MSC] c:\Program Files\Microsoft Security Client\msseces.exe (Microsoft Corporation)
O4:64bit: - HKLM..\Run: [RTHDVCPL] C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe (Realtek Semiconductor)
O4 - HKLM..\Run: [AdobeCS5.5ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS5.5ServiceManager\CS5.5ServiceManager.exe" -launchedbylogin File not found
O4 - HKLM..\Run: [CloneCDTray] C:\Program Files (x86)\SlySoft\CloneCD\CloneCDTray.exe (SlySoft, Inc.)
O4 - HKLM..\Run: [Guard.Mail.ru.gui] C:\Program Files (x86)\Guard-ICQ\GuardICQ.exe ()
O4 - HKLM..\Run: [NBAgent] C:\Program Files (x86)\Nero\Nero 11\Nero BackItUp\NBAgent.exe (Nero AG)
O4 - HKLM..\Run: [NUSB3MON] C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe (Renesas Electronics Corporation)
O4 - HKLM..\Run: [Super-Charger] C:\Program Files (x86)\MSI\Super-Charger\StartSuperCharger.exe (TODO: <Company name>)
O4 - HKLM..\Run: [SwitchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe (Adobe Systems Incorporated)
O4 - HKCU..\Run: [AdobeBridge] File not found
O4 - HKCU..\Run: [DAEMON Tools Lite] C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe (DT Soft Ltd)
O4 - HKCU..\Run: [Sony PC Companion] C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe (Sony)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Low Rights present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLinkedConnections = 1
O9 - Extra Button: ICQ7.7 - {77F665FD-3F60-4B0A-AE14-EC124B7A7FCE} - C:\Program Files (x86)\ICQ7.7\ICQ.exe (ICQ, LLC.)
O9 - Extra 'Tools' menuitem : ICQ7.7 - {77F665FD-3F60-4B0A-AE14-EC124B7A7FCE} - C:\Program Files (x86)\ICQ7.7\ICQ.exe (ICQ, LLC.)
O1364bit: - gopher Prefix: missing
O13 - gopher Prefix: missing
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 85.237.225.250 192.168.0.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{EEFEFE6C-0833-4A35-91A9-73D6F1E2C319}: DhcpNameServer = 85.237.225.250 192.168.0.1
O18:64bit: - Protocol\Handler\ms-help - No CLSID value found
O18:64bit: - Protocol\Handler\skype4com - No CLSID value found
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysWOW64\userinit.exe (Microsoft Corporation)
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2008/08/29 09:54:47 | 000,000,048 | -H-- | M] () - E:\autorun.inf -- [ UDF ]
O33 - MountPoints2\{20d54004-ca6a-11e1-903a-8c89a554535d}\Shell - "" = AutoRun
O33 - MountPoints2\{20d54004-ca6a-11e1-903a-8c89a554535d}\Shell\AutoRun\command - "" = F:\Startme.exe
O33 - MountPoints2\{7d801433-846e-11e1-aab1-8c89a554535d}\Shell - "" = AutoRun
O33 - MountPoints2\{7d801433-846e-11e1-aab1-8c89a554535d}\Shell\AutoRun\command - "" = E:\Installer.exe -- [2008/08/29 09:54:44 | 001,407,832 | ---- | M] ()
O33 - MountPoints2\{a5eccf22-28d3-11e1-9363-8c89a554535d}\Shell - "" = AutoRun
O33 - MountPoints2\{a5eccf22-28d3-11e1-9363-8c89a554535d}\Shell\AutoRun\command - "" = E:\Oli_Rush_1.0.exe
O33 - MountPoints2\{d97b6751-6a84-11e1-a127-8c89a554535d}\Shell - "" = AutoRun
O33 - MountPoints2\{d97b6751-6a84-11e1-a127-8c89a554535d}\Shell\AutoRun\command - "" = F:\Startme.exe
O34 - HKLM BootExecute: (autocheck autochk *)
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)
========== Files/Folders - Created Within 30 Days ==========
[2012/09/25 09:57:47 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\Martin\Desktop\OTL.exe
[2012/09/25 07:46:25 | 000,000,000 | ---D | C] -- C:\temp
[2012/09/25 07:45:22 | 026,228,072 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvoglv64.dll
[2012/09/25 07:45:22 | 025,256,296 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcompiler.dll
[2012/09/25 07:45:22 | 019,828,584 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvoglv32.dll
[2012/09/25 07:45:22 | 018,229,096 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvd3dumx.dll
[2012/09/25 07:45:22 | 017,559,912 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcompiler.dll
[2012/09/25 07:45:22 | 015,291,752 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvd3dum.dll
[2012/09/25 07:45:22 | 009,066,344 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcuda.dll
[2012/09/25 07:45:22 | 007,626,088 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcuda.dll
[2012/09/25 07:45:22 | 007,397,736 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvopencl.dll
[2012/09/25 07:45:22 | 006,109,032 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvopencl.dll
[2012/09/25 07:45:22 | 002,745,192 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcuvid.dll
[2012/09/25 07:45:22 | 002,573,672 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcuvid.dll
[2012/09/25 07:45:22 | 002,216,808 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcuvenc.dll
[2012/09/25 07:45:22 | 001,866,088 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcuvenc.dll
[2012/09/25 07:45:22 | 001,482,600 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvdispgenco64.dll
[2012/09/25 07:45:22 | 000,830,312 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvumdshim.dll
[2012/09/25 07:45:22 | 000,247,144 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvinitx.dll
[2012/09/25 07:45:22 | 000,202,600 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvinit.dll
[2012/09/25 07:45:22 | 000,189,288 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\drivers\nvhda64v.sys
[2012/09/25 07:45:22 | 000,031,080 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvhdap64.dll
[2012/09/25 07:34:56 | 000,000,000 | ---D | C] -- C:\Users\Martin\Desktop\sam
[2012/09/25 07:33:28 | 000,000,000 | ---D | C] -- C:\Users\Martin\Desktop\Videá z kamery
[2012/09/24 09:41:29 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\IPACS
[2012/09/23 16:31:26 | 000,000,000 | ---D | C] -- C:\Users\Martin\Desktop\pzh 2000
[2012/09/10 16:02:04 | 000,000,000 | ---D | C] -- C:\Users\Martin\Desktop\tiger initial
[2012/09/07 17:18:18 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mozilla Firefox
[2012/09/05 08:22:40 | 000,000,000 | ---D | C] -- C:\Users\Martin\Documents\Pinnacle Studio
[2012/09/04 22:50:17 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Pinnacle
[2012/09/04 22:50:04 | 000,000,000 | ---D | C] -- C:\Users\Martin\AppData\Local\Downloaded Installations
[2012/09/04 22:49:44 | 000,000,000 | ---D | C] -- C:\Users\Martin\AppData\Local\Pinnacle
[2012/09/04 22:49:27 | 000,000,000 | ---D | C] -- C:\ProgramData\Pinnacle Studio Ultimate Collection
[2012/09/04 22:47:41 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Pinnacle Studio 15
[2012/09/04 22:47:14 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\My Projects
[2012/09/04 22:43:38 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Pegasus Imaging
[2012/09/04 22:43:36 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Yahoo!
[2012/09/04 22:43:35 | 000,000,000 | ---D | C] -- C:\ProgramData\Studio 15
[2012/09/04 22:43:35 | 000,000,000 | ---D | C] -- C:\ProgramData\Pinnacle Studio Plus
[2012/09/04 22:43:35 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\Pinnacle
[2012/09/04 22:41:46 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Pinnacle
[2012/09/04 22:40:03 | 000,000,000 | ---D | C] -- C:\ProgramData\Pinnacle
[2012/09/03 07:41:14 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Java
[2012/09/03 07:41:03 | 000,246,760 | ---- | C] (Oracle Corporation) -- C:\Windows\SysWow64\javaws.exe
[2012/09/03 07:40:44 | 000,174,056 | ---- | C] (Oracle Corporation) -- C:\Windows\SysWow64\javaw.exe
[2012/09/03 07:40:44 | 000,174,056 | ---- | C] (Oracle Corporation) -- C:\Windows\SysWow64\java.exe
[2012/09/03 07:40:44 | 000,095,208 | ---- | C] (Oracle Corporation) -- C:\Windows\SysWow64\WindowsAccessBridge-32.dll
[2012/09/03 07:40:33 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Java
[2012/08/29 22:01:17 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth
[2012/08/27 16:09:41 | 000,000,000 | ---D | C] -- C:\Users\Martin\Desktop\Nový priečinok (11)
[2012/03/10 10:43:32 | 000,148,736 | ---- | C] (Avanquest Software) -- C:\ProgramData\hpe3D7D.dll
[2 C:\Windows\SysWow64\*.tmp files -> C:\Windows\SysWow64\*.tmp -> ]
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
========== Files - Modified Within 30 Days ==========
[2012/09/25 09:57:49 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Martin\Desktop\OTL.exe
[2012/09/25 09:29:00 | 000,000,936 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2012/09/25 08:01:08 | 000,729,688 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2012/09/25 08:01:08 | 000,617,910 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2012/09/25 08:01:08 | 000,107,190 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2012/09/25 07:59:31 | 000,014,192 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2012/09/25 07:59:31 | 000,014,192 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2012/09/25 07:52:23 | 000,000,932 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2012/09/25 07:52:04 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2012/09/25 07:52:01 | 2123,931,647 | -HS- | M] () -- C:\hiberfil.sys
[2012/09/07 17:04:46 | 000,025,928 | ---- | M] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\mbam.sys
[2012/09/05 09:23:31 | 000,000,349 | ---- | M] () -- C:\Users\Public\Documents\PCLECHAL.INI
[2012/09/05 08:33:04 | 000,005,632 | ---- | M] () -- C:\Users\Martin\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2012/09/05 08:14:40 | 005,052,128 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
[2012/09/03 11:55:57 | 000,245,289 | ---- | M] () -- C:\Users\Martin\Documents\x.jpg
[2012/09/03 07:40:37 | 000,095,208 | ---- | M] (Oracle Corporation) -- C:\Windows\SysWow64\WindowsAccessBridge-32.dll
[2012/09/03 07:40:35 | 000,246,760 | ---- | M] (Oracle Corporation) -- C:\Windows\SysWow64\javaws.exe
[2012/09/03 07:40:35 | 000,174,056 | ---- | M] (Oracle Corporation) -- C:\Windows\SysWow64\javaw.exe
[2012/09/03 07:40:35 | 000,174,056 | ---- | M] (Oracle Corporation) -- C:\Windows\SysWow64\java.exe
[2012/09/03 07:40:34 | 000,821,736 | ---- | M] (Oracle Corporation) -- C:\Windows\SysWow64\npDeployJava1.dll
[2012/09/03 07:40:34 | 000,746,984 | ---- | M] (Oracle Corporation) -- C:\Windows\SysWow64\deployJava1.dll
[2012/08/30 21:14:00 | 026,228,072 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvoglv64.dll
[2012/08/30 21:14:00 | 025,256,296 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcompiler.dll
[2012/08/30 21:14:00 | 019,828,584 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvoglv32.dll
[2012/08/30 21:14:00 | 018,229,096 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvd3dumx.dll
[2012/08/30 21:14:00 | 017,559,912 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcompiler.dll
[2012/08/30 21:14:00 | 015,291,752 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvd3dum.dll
[2012/08/30 21:14:00 | 014,879,080 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvwgf2umx.dll
[2012/08/30 21:14:00 | 012,465,512 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvwgf2um.dll
[2012/08/30 21:14:00 | 009,066,344 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcuda.dll
[2012/08/30 21:14:00 | 007,626,088 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcuda.dll
[2012/08/30 21:14:00 | 007,397,736 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvopencl.dll
[2012/08/30 21:14:00 | 006,109,032 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvopencl.dll
[2012/08/30 21:14:00 | 002,745,192 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcuvid.dll
[2012/08/30 21:14:00 | 002,725,224 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvapi64.dll
[2012/08/30 21:14:00 | 002,573,672 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcuvid.dll
[2012/08/30 21:14:00 | 002,422,120 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvapi.dll
[2012/08/30 21:14:00 | 002,216,808 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcuvenc.dll
[2012/08/30 21:14:00 | 001,866,088 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcuvenc.dll
[2012/08/30 21:14:00 | 001,760,104 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvdispco64.dll
[2012/08/30 21:14:00 | 001,482,600 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvdispgenco64.dll
[2012/08/30 21:14:00 | 000,971,624 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvumdshimx.dll
[2012/08/30 21:14:00 | 000,830,312 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvumdshim.dll
[2012/08/30 21:14:00 | 000,247,144 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvinitx.dll
[2012/08/30 21:14:00 | 000,202,600 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvinit.dll
[2012/08/30 21:14:00 | 000,016,366 | ---- | M] () -- C:\Windows\SysNative\nvinfo.pb
[2012/08/30 18:18:05 | 000,118,120 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvmctray.dll
[2012/08/30 18:18:05 | 000,063,336 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvshext.dll
[2012/08/30 18:18:04 | 003,487,434 | ---- | M] () -- C:\Windows\SysNative\nvcoproc.bin
[2012/08/30 18:18:01 | 003,266,920 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvsvc64.dll
[2012/08/30 18:17:59 | 006,198,120 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcpl.dll
[2012/08/30 10:40:14 | 000,429,416 | ---- | M] () -- C:\Windows\SysWow64\nvStreaming.exe
[2012/08/29 22:02:51 | 000,002,228 | ---- | M] () -- C:\Users\Martin\Desktop\Google Earth.lnk
[2 C:\Windows\SysWow64\*.tmp files -> C:\Windows\SysWow64\*.tmp -> ]
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
========== Files Created - No Company Name ==========
[2012/09/04 22:42:16 | 000,000,349 | ---- | C] () -- C:\Users\Public\Documents\PCLECHAL.INI
[2012/09/03 11:55:47 | 000,245,289 | ---- | C] () -- C:\Users\Martin\Documents\x.jpg
[2012/08/30 10:40:14 | 000,429,416 | ---- | C] () -- C:\Windows\SysWow64\nvStreaming.exe
[2012/08/29 22:02:51 | 000,002,228 | ---- | C] () -- C:\Users\Martin\Desktop\Google Earth.lnk
[2012/07/23 11:30:21 | 000,000,218 | ---- | C] () -- C:\Users\Martin\AppData\Local\recently-used.xbel
[2012/06/08 16:02:42 | 000,005,632 | ---- | C] () -- C:\Users\Martin\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2012/06/04 13:54:56 | 000,734,810 | ---- | C] () -- C:\Windows\SysWow64\PerfStringBackup.INI
[2012/04/29 12:44:08 | 000,669,184 | ---- | C] () -- C:\Windows\SysWow64\pbsvc.exe
[2012/01/08 10:15:21 | 000,000,412 | ---- | C] () -- C:\Users\Martin\AppData\Roaming\All CPU Meter_Settings.ini
[2012/01/02 10:28:30 | 000,000,140 | ---- | C] () -- C:\Windows\ODBC.INI
[2012/01/02 10:10:18 | 000,081,920 | ---- | C] () -- C:\Windows\OLE2TASK.DAT
[2011/12/22 16:43:59 | 000,000,983 | ---- | C] () -- C:\Windows\eReg.dat
[2011/12/18 19:15:17 | 000,103,736 | ---- | C] () -- C:\Windows\SysWow64\PnkBstrB.exe
[2011/12/18 19:15:16 | 000,066,872 | ---- | C] () -- C:\Windows\SysWow64\PnkBstrA.exe
[2011/12/18 15:16:42 | 000,175,616 | ---- | C] () -- C:\Windows\SysWow64\unrar.dll
[2011/12/18 15:16:41 | 000,650,752 | ---- | C] () -- C:\Windows\SysWow64\xvidcore.dll
[2011/12/18 15:16:41 | 000,243,200 | ---- | C] () -- C:\Windows\SysWow64\xvidvfw.dll
[2011/12/18 15:16:41 | 000,079,872 | ---- | C] () -- C:\Windows\SysWow64\ff_vfw.dll
[2011/12/17 19:42:20 | 000,006,791 | ---- | C] () -- C:\Users\Martin\AppData\Local\SRDownloader.err
[2011/12/17 19:42:13 | 000,001,008 | ---- | C] () -- C:\Users\Martin\AppData\Local\SRDownloader.nast
[2011/12/15 06:39:42 | 000,042,392 | ---- | C] () -- C:\Windows\SysWow64\xfcodec.dll
[2011/04/09 19:55:28 | 000,179,261 | ---- | C] () -- C:\Windows\SysWow64\xlive.dll.cat
========== ZeroAccess Check ==========
[2009/07/14 06:55:00 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini
[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64
[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
"" = C:\Windows\SysNative\shell32.dll -- [2009/07/14 03:41:54 | 014,161,920 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2009/07/14 03:16:14 | 012,866,560 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\fastprox.dll -- [2009/07/14 03:40:51 | 000,909,312 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2009/07/14 03:15:20 | 000,605,696 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\wbemess.dll -- [2009/07/14 03:41:56 | 000,505,856 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
< End of report >
OTL logfile created on: 25. 9. 2012 9:59:05 - Run 1
OTL by OldTimer - Version 3.2.68.0 Folder = C:\Users\Martin\Desktop
64bit- Ultimate Edition (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 0000041b | Country: Slovenská republika | Language: SKY | Date Format: d. M. yyyy
7,97 Gb Total Physical Memory | 5,95 Gb Available Physical Memory | 74,59% Memory free
15,94 Gb Paging File | 13,80 Gb Available in Paging File | 86,59% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 931,41 Gb Total Space | 191,11 Gb Free Space | 20,52% Space Free | Partition Type: NTFS
Drive E: | 7,71 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: UDF
Computer Name: MARTIN-PC | User Name: Martin | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Processes (SafeList) ==========
PRC - [2012/09/25 09:57:49 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Martin\Desktop\OTL.exe
PRC - [2012/09/07 17:18:37 | 000,917,984 | ---- | M] (Mozilla Corporation) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
PRC - [2012/09/07 17:04:46 | 000,676,936 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
PRC - [2012/09/07 17:04:46 | 000,399,432 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
PRC - [2012/09/07 17:04:44 | 000,766,536 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
PRC - [2012/08/30 21:14:00 | 001,258,856 | ---- | M] (NVIDIA Corporation) -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
PRC - [2012/08/30 10:40:00 | 000,382,312 | ---- | M] (NVIDIA Corporation) -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
PRC - [2012/05/31 15:00:22 | 000,445,624 | ---- | M] (Sony) -- C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe
PRC - [2012/04/30 11:57:42 | 000,067,072 | ---- | M] () -- C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanionInfo.exe
PRC - [2012/04/29 12:44:08 | 000,066,872 | ---- | M] () -- C:\Windows\SysWOW64\PnkBstrA.exe
PRC - [2012/04/11 11:54:20 | 002,607,424 | ---- | M] (DT Soft Ltd) -- C:\Program Files (x86)\DAEMON Tools Lite\DTShellHlp.exe
PRC - [2012/01/14 12:39:23 | 001,564,368 | ---- | M] () -- C:\Program Files (x86)\Guard-ICQ\GuardICQ.exe
PRC - [2011/09/23 19:37:42 | 000,641,832 | ---- | M] (Nero AG) -- C:\Program Files (x86)\Nero\Update\NASvc.exe
PRC - [2011/02/22 06:19:12 | 002,656,280 | R--- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
PRC - [2011/02/22 06:19:08 | 000,326,168 | R--- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
PRC - [2011/01/25 11:11:16 | 000,438,272 | ---- | M] (MSI CO.,LTD.) -- C:\Program Files (x86)\MSI\Super-Charger\Super-Charger.exe
PRC - [2010/11/17 10:53:16 | 000,113,288 | ---- | M] (Renesas Electronics Corporation) -- C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
PRC - [2009/04/30 12:23:26 | 000,090,112 | ---- | M] () -- C:\Program Files (x86)\Sony Ericsson\Sony Ericsson PC Suite\SupServ.exe
PRC - [2009/01/30 00:20:49 | 000,057,344 | ---- | M] (SlySoft, Inc.) -- C:\Program Files (x86)\SlySoft\CloneCD\CloneCDTray.exe
========== Modules (No Company Name) ==========
MOD - [2012/09/07 17:18:21 | 002,244,064 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefox\mozjs.dll
MOD - [2012/08/30 10:39:42 | 000,374,120 | ---- | M] () -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\Nv3DVStreaming.dll
MOD - [2012/06/25 08:07:13 | 008,797,856 | ---- | M] () -- C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_2_202_235.dll
MOD - [2012/05/24 11:50:32 | 000,203,776 | ---- | M] () -- C:\Program Files (x86)\Sony\Sony PC Companion\MExplorer.dll
MOD - [2012/05/23 11:38:36 | 000,583,680 | ---- | M] () -- C:\Program Files (x86)\Sony\Sony PC Companion\PhoneUpdate.dll
MOD - [2012/04/30 11:57:42 | 000,067,072 | ---- | M] () -- C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanionInfo.exe
MOD - [2012/04/30 11:57:42 | 000,039,936 | ---- | M] () -- C:\Program Files (x86)\Sony\Sony PC Companion\TMonitorAPI.dll
MOD - [2012/01/14 12:39:23 | 001,564,368 | ---- | M] () -- C:\Program Files (x86)\Guard-ICQ\GuardICQ.exe
MOD - [2011/07/07 14:54:36 | 000,233,984 | ---- | M] () -- C:\Program Files (x86)\Sony\Sony PC Companion\Report.dll
MOD - [2010/01/11 16:44:54 | 000,053,248 | ---- | M] () -- C:\Program Files (x86)\Sony\Sony PC Companion\VObject.dll
========== Services (SafeList) ==========
SRV:64bit: - [2012/03/26 18:49:56 | 000,291,696 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- c:\Program Files\Microsoft Security Client\NisSrv.exe -- (NisSrv)
SRV:64bit: - [2012/03/26 18:49:56 | 000,012,600 | ---- | M] (Microsoft Corporation) [Auto | Running] -- c:\Program Files\Microsoft Security Client\MsMpEng.exe -- (MsMpSvc)
SRV:64bit: - [2009/07/14 03:41:27 | 001,011,712 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV:64bit: - [2009/07/14 03:40:01 | 000,193,536 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\appmgmts.dll -- (AppMgmt)
SRV - [2012/09/07 17:18:36 | 000,114,144 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2012/09/07 17:04:46 | 000,676,936 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe -- (MBAMService)
SRV - [2012/09/07 17:04:46 | 000,399,432 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe -- (MBAMScheduler)
SRV - [2012/08/30 21:14:00 | 001,258,856 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe -- (nvUpdatusService)
SRV - [2012/08/30 10:40:00 | 000,382,312 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe -- (Stereo Service)
SRV - [2012/07/27 22:51:26 | 000,063,960 | ---- | M] (Adobe Systems Incorporated) [Auto | Stopped] -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2012/07/03 13:19:28 | 000,160,944 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files (x86)\Skype\Updater\Updater.exe -- (SkypeUpdate)
SRV - [2012/05/22 10:12:55 | 000,529,232 | ---- | M] (Valve Corporation) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Steam\SteamService.exe -- (Steam Client Service)
SRV - [2012/04/29 12:44:08 | 000,066,872 | ---- | M] () [Auto | Running] -- C:\Windows\SysWOW64\PnkBstrA.exe -- (PnkBstrA)
SRV - [2012/01/18 14:38:28 | 000,155,320 | ---- | M] (Avanquest Software) [On_Demand | Stopped] -- C:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe -- (Sony PC Companion)
SRV - [2012/01/14 12:39:23 | 001,564,368 | ---- | M] () [Disabled | Stopped] -- C:\Program Files (x86)\Guard-ICQ\GuardICQ.exe -- (Guard.Mail.ru)
SRV - [2011/12/09 15:39:52 | 000,135,584 | ---- | M] (Futuremark Corporation) [On_Demand | Stopped] -- C:\Program Files (x86)\Futuremark\Futuremark SystemInfo\FMSISvc.exe -- (Futuremark SystemInfo Service)
SRV - [2011/09/23 19:37:42 | 000,641,832 | ---- | M] (Nero AG) [Auto | Running] -- C:\Program Files (x86)\Nero\Update\NASvc.exe -- (NAUpdate)
SRV - [2011/02/22 06:19:12 | 002,656,280 | R--- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe -- (UNS)
SRV - [2011/02/22 06:19:08 | 000,326,168 | R--- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe -- (LMS)
SRV - [2010/03/18 13:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2010/02/19 13:37:14 | 000,517,096 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe -- (SwitchBoard)
SRV - [2009/06/10 23:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)
SRV - [2009/04/30 12:23:26 | 000,090,112 | ---- | M] () [Auto | Running] -- C:\Program Files (x86)\Sony Ericsson\Sony Ericsson PC Suite\SupServ.exe -- (OMSI download service)
========== Driver Services (SafeList) ==========
DRV:64bit: - [2012/09/07 17:04:46 | 000,025,928 | ---- | M] (Malwarebytes Corporation) [File_System | On_Demand | Running] -- C:\Windows\SysNative\drivers\mbam.sys -- (MBAMProtector)
DRV:64bit: - [2012/07/19 21:14:46 | 000,027,760 | ---- | M] (Sony Ericsson Mobile Communications) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ggsemc.sys -- (ggsemc)
DRV:64bit: - [2012/07/19 21:14:46 | 000,014,448 | ---- | M] (Sony Ericsson Mobile Communications) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ggflt.sys -- (ggflt)
DRV:64bit: - [2012/07/03 17:25:16 | 000,189,288 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\nvhda64v.sys -- (NVHDA)
DRV:64bit: - [2012/04/12 16:50:19 | 000,283,200 | ---- | M] (DT Soft Ltd) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\dtsoftbus01.sys -- (dtsoftbus01)
DRV:64bit: - [2012/03/20 20:44:12 | 000,098,688 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\NisDrvWFP.sys -- (NisDrv)
DRV:64bit: - [2011/07/13 14:59:54 | 000,072,240 | ---- | M] (Nero AG) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\NBVol.sys -- (NBVol)
DRV:64bit: - [2011/07/13 14:59:54 | 000,015,920 | ---- | M] (Nero AG) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\NBVolUp.sys -- (NBVolUp)
DRV:64bit: - [2011/06/10 08:34:52 | 000,539,240 | ---- | M] (Realtek ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Rt64win7.sys -- (RTL8167)
DRV:64bit: - [2011/02/10 15:52:34 | 000,181,760 | ---- | M] (Renesas Electronics Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\nusb3xhc.sys -- (nusb3xhc)
DRV:64bit: - [2011/02/10 15:52:34 | 000,082,432 | ---- | M] (Renesas Electronics Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\nusb3hub.sys -- (nusb3hub)
DRV:64bit: - [2011/01/26 19:27:48 | 000,030,312 | ---- | M] (CaptainFlint Software) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\vd_filedisk.sys -- (VD_FileDisk)
DRV:64bit: - [2010/10/19 10:34:26 | 000,056,344 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\HECIx64.sys -- (MEIx64)
DRV:64bit: - [2010/03/15 11:38:38 | 000,127,600 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\s1039bus.sys -- (s1039bus)
DRV:64bit: - [2010/03/15 10:38:46 | 000,161,904 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\s1039mdm.sys -- (s1039mdm)
DRV:64bit: - [2010/03/15 10:38:46 | 000,158,320 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\s1039unic.sys -- (s1039unic)
DRV:64bit: - [2010/03/15 10:38:46 | 000,141,424 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\s1039mgmt.sys -- (s1039mgmt)
DRV:64bit: - [2010/03/15 10:38:46 | 000,137,328 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\s1039obex.sys -- (s1039obex)
DRV:64bit: - [2010/03/15 10:38:46 | 000,034,416 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\s1039nd5.sys -- (s1039nd5)
DRV:64bit: - [2010/03/15 10:38:46 | 000,019,568 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\s1039mdfl.sys -- (s1039mdfl)
DRV:64bit: - [2009/07/14 03:52:21 | 000,106,576 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:64bit: - [2009/07/14 03:52:21 | 000,028,752 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:64bit: - [2009/07/14 03:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:64bit: - [2009/07/14 03:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:64bit: - [2009/07/14 03:47:48 | 000,077,888 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:64bit: - [2009/07/14 03:47:48 | 000,023,104 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\Windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
DRV:64bit: - [2009/07/14 03:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:64bit: - [2009/07/09 03:00:00 | 000,055,280 | ---- | M] (Sonic Solutions) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\PxHlpa64.sys -- (PxHlpa64)
DRV:64bit: - [2009/06/10 22:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:64bit: - [2009/06/10 22:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:64bit: - [2009/06/10 22:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:64bit: - [2009/06/10 22:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
DRV:64bit: - [2009/02/17 19:11:25 | 000,031,400 | ---- | M] (Elaborate Bytes AG) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\ElbyCDIO.sys -- (ElbyCDIO)
DRV:64bit: - [2007/02/16 02:57:06 | 000,040,648 | ---- | M] (SlySoft, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\ElbyCDFL.sys -- (ElbyCDFL)
DRV:64bit: - [2005/09/23 22:18:34 | 000,261,120 | ---- | M] (Pinnacle Systems GmbH) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\MarvinBus64.sys -- (MarvinBus)
DRV - [2012/01/01 16:01:57 | 000,019,952 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Program Files (x86)\RivaTuner v2.24 MSI Master Overclocking Arena 2009 edition\RivaTuner64.sys -- (RivaTuner64)
DRV - [2009/07/14 03:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount)
DRV - [2007/02/16 02:57:06 | 000,040,648 | ---- | M] (SlySoft, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysWOW64\drivers\ElbyCDFL.sys -- (ElbyCDFL)
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 87 59 E1 52 EC 51 CD 01 [binary data]
IE - HKCU\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTer ... ORM=IE8SRC
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
========== FireFox ==========
FF - user.js - File not found
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_2_202_235.dll ()
FF - HKLM\Software\MozillaPlugins\@canon.com/EPPEX: C:\Program Files (x86)\Canon\Easy-PhotoPrint EX\NPEZFFPI.DLL (CANON INC.)
FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.7.2: C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.7.2: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@Nero.com/KM: C:\PROGRA~2\COMMON~1\Nero\BROWSE~1\NPBROW~1.DLL (Nero AG)
FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVision: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVisionStreaming: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.0.1: C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.0.2: C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\www.floatingminds.com/Tunnelers: C:\Games\Tunnelers\npTunnelers.dll (Floating Minds)
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 15.0\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2012/09/07 17:18:37 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 15.0\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins [2012/09/25 07:53:53 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 15.0.1\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2012/09/07 17:18:37 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 15.0.1\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins [2012/09/25 07:53:53 | 000,000,000 | ---D | M]
[2011/12/17 19:28:07 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Martin\AppData\Roaming\mozilla\Extensions
[2012/07/28 16:01:36 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Martin\AppData\Roaming\mozilla\Firefox\Profiles\dsn6dm7q.default-1340042378436\extensions
[2012/05/02 19:21:32 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Martin\AppData\Roaming\mozilla\Firefox\Profiles\mthuczr4.default\extensions
[2012/07/28 16:01:36 | 000,013,951 | ---- | M] () (No name found) -- C:\Users\Martin\AppData\Roaming\mozilla\firefox\profiles\dsn6dm7q.default-1340042378436\extensions\olddefaultimagestyle@dagger2-addons.mozilla.org.xpi
[2012/07/26 16:01:43 | 000,741,958 | ---- | M] () (No name found) -- C:\Users\Martin\AppData\Roaming\mozilla\firefox\profiles\dsn6dm7q.default-1340042378436\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
[2012/04/27 17:24:55 | 000,272,844 | ---- | M] () (No name found) -- C:\Users\Martin\AppData\Roaming\mozilla\firefox\profiles\mthuczr4.default\extensions\jid1-F9UJ2thwoAm5gQ@jetpack.xpi
[2012/03/19 18:28:17 | 000,010,839 | ---- | M] () (No name found) -- C:\Users\Martin\AppData\Roaming\mozilla\firefox\profiles\mthuczr4.default\extensions\olddefaultimagestyle@dagger2-addons.mozilla.org.xpi
[2012/04/06 19:23:48 | 000,634,964 | ---- | M] () (No name found) -- C:\Users\Martin\AppData\Roaming\mozilla\firefox\profiles\mthuczr4.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
[2012/09/07 17:18:18 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\extensions
[2012/09/07 17:18:37 | 000,266,720 | ---- | M] (Mozilla Foundation) -- C:\Program Files (x86)\mozilla firefox\components\browsercomps.dll
[2012/01/13 11:21:39 | 000,001,583 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\atlas-sk.xml
[2012/01/13 11:21:39 | 000,001,380 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\azet-sk.xml
[2012/01/13 11:21:39 | 000,001,479 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\dunaj-sk.xml
[2012/01/13 11:21:39 | 000,001,473 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\slovnik-sk.xml
[2012/01/13 11:21:39 | 000,001,104 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\wikipedia-sk.xml
[2012/01/13 11:21:39 | 000,000,830 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\zoznam-sk.xml
O1 HOSTS File: ([2009/06/10 23:00:26 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O2 - BHO: (Canon Easy-WebPrint EX BHO) - {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll (CANON INC.)
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O3 - HKLM\..\Toolbar: (Canon Easy-WebPrint EX) - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll (CANON INC.)
O3 - HKCU\..\Toolbar\WebBrowser: (Canon Easy-WebPrint EX) - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll (CANON INC.)
O4:64bit: - HKLM..\Run: [AdobeAAMUpdater-1.0] C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe (Adobe Systems Incorporated)
O4:64bit: - HKLM..\Run: [CanonMyPrinter] C:\Program Files\Canon\MyPrinter\BJMyPrt.exe (CANON INC.)
O4:64bit: - HKLM..\Run: [CanonSolutionMenu] C:\Program Files (x86)\Canon\SolutionMenu\CNSLMAIN.exe (CANON INC.)
O4:64bit: - HKLM..\Run: [MSC] c:\Program Files\Microsoft Security Client\msseces.exe (Microsoft Corporation)
O4:64bit: - HKLM..\Run: [RTHDVCPL] C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe (Realtek Semiconductor)
O4 - HKLM..\Run: [AdobeCS5.5ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS5.5ServiceManager\CS5.5ServiceManager.exe" -launchedbylogin File not found
O4 - HKLM..\Run: [CloneCDTray] C:\Program Files (x86)\SlySoft\CloneCD\CloneCDTray.exe (SlySoft, Inc.)
O4 - HKLM..\Run: [Guard.Mail.ru.gui] C:\Program Files (x86)\Guard-ICQ\GuardICQ.exe ()
O4 - HKLM..\Run: [NBAgent] C:\Program Files (x86)\Nero\Nero 11\Nero BackItUp\NBAgent.exe (Nero AG)
O4 - HKLM..\Run: [NUSB3MON] C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe (Renesas Electronics Corporation)
O4 - HKLM..\Run: [Super-Charger] C:\Program Files (x86)\MSI\Super-Charger\StartSuperCharger.exe (TODO: <Company name>)
O4 - HKLM..\Run: [SwitchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe (Adobe Systems Incorporated)
O4 - HKCU..\Run: [AdobeBridge] File not found
O4 - HKCU..\Run: [DAEMON Tools Lite] C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe (DT Soft Ltd)
O4 - HKCU..\Run: [Sony PC Companion] C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe (Sony)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Low Rights present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLinkedConnections = 1
O9 - Extra Button: ICQ7.7 - {77F665FD-3F60-4B0A-AE14-EC124B7A7FCE} - C:\Program Files (x86)\ICQ7.7\ICQ.exe (ICQ, LLC.)
O9 - Extra 'Tools' menuitem : ICQ7.7 - {77F665FD-3F60-4B0A-AE14-EC124B7A7FCE} - C:\Program Files (x86)\ICQ7.7\ICQ.exe (ICQ, LLC.)
O1364bit: - gopher Prefix: missing
O13 - gopher Prefix: missing
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 85.237.225.250 192.168.0.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{EEFEFE6C-0833-4A35-91A9-73D6F1E2C319}: DhcpNameServer = 85.237.225.250 192.168.0.1
O18:64bit: - Protocol\Handler\ms-help - No CLSID value found
O18:64bit: - Protocol\Handler\skype4com - No CLSID value found
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysWOW64\userinit.exe (Microsoft Corporation)
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2008/08/29 09:54:47 | 000,000,048 | -H-- | M] () - E:\autorun.inf -- [ UDF ]
O33 - MountPoints2\{20d54004-ca6a-11e1-903a-8c89a554535d}\Shell - "" = AutoRun
O33 - MountPoints2\{20d54004-ca6a-11e1-903a-8c89a554535d}\Shell\AutoRun\command - "" = F:\Startme.exe
O33 - MountPoints2\{7d801433-846e-11e1-aab1-8c89a554535d}\Shell - "" = AutoRun
O33 - MountPoints2\{7d801433-846e-11e1-aab1-8c89a554535d}\Shell\AutoRun\command - "" = E:\Installer.exe -- [2008/08/29 09:54:44 | 001,407,832 | ---- | M] ()
O33 - MountPoints2\{a5eccf22-28d3-11e1-9363-8c89a554535d}\Shell - "" = AutoRun
O33 - MountPoints2\{a5eccf22-28d3-11e1-9363-8c89a554535d}\Shell\AutoRun\command - "" = E:\Oli_Rush_1.0.exe
O33 - MountPoints2\{d97b6751-6a84-11e1-a127-8c89a554535d}\Shell - "" = AutoRun
O33 - MountPoints2\{d97b6751-6a84-11e1-a127-8c89a554535d}\Shell\AutoRun\command - "" = F:\Startme.exe
O34 - HKLM BootExecute: (autocheck autochk *)
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)
========== Files/Folders - Created Within 30 Days ==========
[2012/09/25 09:57:47 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\Martin\Desktop\OTL.exe
[2012/09/25 07:46:25 | 000,000,000 | ---D | C] -- C:\temp
[2012/09/25 07:45:22 | 026,228,072 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvoglv64.dll
[2012/09/25 07:45:22 | 025,256,296 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcompiler.dll
[2012/09/25 07:45:22 | 019,828,584 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvoglv32.dll
[2012/09/25 07:45:22 | 018,229,096 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvd3dumx.dll
[2012/09/25 07:45:22 | 017,559,912 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcompiler.dll
[2012/09/25 07:45:22 | 015,291,752 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvd3dum.dll
[2012/09/25 07:45:22 | 009,066,344 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcuda.dll
[2012/09/25 07:45:22 | 007,626,088 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcuda.dll
[2012/09/25 07:45:22 | 007,397,736 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvopencl.dll
[2012/09/25 07:45:22 | 006,109,032 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvopencl.dll
[2012/09/25 07:45:22 | 002,745,192 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcuvid.dll
[2012/09/25 07:45:22 | 002,573,672 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcuvid.dll
[2012/09/25 07:45:22 | 002,216,808 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcuvenc.dll
[2012/09/25 07:45:22 | 001,866,088 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcuvenc.dll
[2012/09/25 07:45:22 | 001,482,600 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvdispgenco64.dll
[2012/09/25 07:45:22 | 000,830,312 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvumdshim.dll
[2012/09/25 07:45:22 | 000,247,144 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvinitx.dll
[2012/09/25 07:45:22 | 000,202,600 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvinit.dll
[2012/09/25 07:45:22 | 000,189,288 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\drivers\nvhda64v.sys
[2012/09/25 07:45:22 | 000,031,080 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvhdap64.dll
[2012/09/25 07:34:56 | 000,000,000 | ---D | C] -- C:\Users\Martin\Desktop\sam
[2012/09/25 07:33:28 | 000,000,000 | ---D | C] -- C:\Users\Martin\Desktop\Videá z kamery
[2012/09/24 09:41:29 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\IPACS
[2012/09/23 16:31:26 | 000,000,000 | ---D | C] -- C:\Users\Martin\Desktop\pzh 2000
[2012/09/10 16:02:04 | 000,000,000 | ---D | C] -- C:\Users\Martin\Desktop\tiger initial
[2012/09/07 17:18:18 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mozilla Firefox
[2012/09/05 08:22:40 | 000,000,000 | ---D | C] -- C:\Users\Martin\Documents\Pinnacle Studio
[2012/09/04 22:50:17 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Pinnacle
[2012/09/04 22:50:04 | 000,000,000 | ---D | C] -- C:\Users\Martin\AppData\Local\Downloaded Installations
[2012/09/04 22:49:44 | 000,000,000 | ---D | C] -- C:\Users\Martin\AppData\Local\Pinnacle
[2012/09/04 22:49:27 | 000,000,000 | ---D | C] -- C:\ProgramData\Pinnacle Studio Ultimate Collection
[2012/09/04 22:47:41 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Pinnacle Studio 15
[2012/09/04 22:47:14 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\My Projects
[2012/09/04 22:43:38 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Pegasus Imaging
[2012/09/04 22:43:36 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Yahoo!
[2012/09/04 22:43:35 | 000,000,000 | ---D | C] -- C:\ProgramData\Studio 15
[2012/09/04 22:43:35 | 000,000,000 | ---D | C] -- C:\ProgramData\Pinnacle Studio Plus
[2012/09/04 22:43:35 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\Pinnacle
[2012/09/04 22:41:46 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Pinnacle
[2012/09/04 22:40:03 | 000,000,000 | ---D | C] -- C:\ProgramData\Pinnacle
[2012/09/03 07:41:14 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Java
[2012/09/03 07:41:03 | 000,246,760 | ---- | C] (Oracle Corporation) -- C:\Windows\SysWow64\javaws.exe
[2012/09/03 07:40:44 | 000,174,056 | ---- | C] (Oracle Corporation) -- C:\Windows\SysWow64\javaw.exe
[2012/09/03 07:40:44 | 000,174,056 | ---- | C] (Oracle Corporation) -- C:\Windows\SysWow64\java.exe
[2012/09/03 07:40:44 | 000,095,208 | ---- | C] (Oracle Corporation) -- C:\Windows\SysWow64\WindowsAccessBridge-32.dll
[2012/09/03 07:40:33 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Java
[2012/08/29 22:01:17 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth
[2012/08/27 16:09:41 | 000,000,000 | ---D | C] -- C:\Users\Martin\Desktop\Nový priečinok (11)
[2012/03/10 10:43:32 | 000,148,736 | ---- | C] (Avanquest Software) -- C:\ProgramData\hpe3D7D.dll
[2 C:\Windows\SysWow64\*.tmp files -> C:\Windows\SysWow64\*.tmp -> ]
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
========== Files - Modified Within 30 Days ==========
[2012/09/25 09:57:49 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Martin\Desktop\OTL.exe
[2012/09/25 09:29:00 | 000,000,936 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2012/09/25 08:01:08 | 000,729,688 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2012/09/25 08:01:08 | 000,617,910 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2012/09/25 08:01:08 | 000,107,190 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2012/09/25 07:59:31 | 000,014,192 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2012/09/25 07:59:31 | 000,014,192 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2012/09/25 07:52:23 | 000,000,932 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2012/09/25 07:52:04 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2012/09/25 07:52:01 | 2123,931,647 | -HS- | M] () -- C:\hiberfil.sys
[2012/09/07 17:04:46 | 000,025,928 | ---- | M] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\mbam.sys
[2012/09/05 09:23:31 | 000,000,349 | ---- | M] () -- C:\Users\Public\Documents\PCLECHAL.INI
[2012/09/05 08:33:04 | 000,005,632 | ---- | M] () -- C:\Users\Martin\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2012/09/05 08:14:40 | 005,052,128 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
[2012/09/03 11:55:57 | 000,245,289 | ---- | M] () -- C:\Users\Martin\Documents\x.jpg
[2012/09/03 07:40:37 | 000,095,208 | ---- | M] (Oracle Corporation) -- C:\Windows\SysWow64\WindowsAccessBridge-32.dll
[2012/09/03 07:40:35 | 000,246,760 | ---- | M] (Oracle Corporation) -- C:\Windows\SysWow64\javaws.exe
[2012/09/03 07:40:35 | 000,174,056 | ---- | M] (Oracle Corporation) -- C:\Windows\SysWow64\javaw.exe
[2012/09/03 07:40:35 | 000,174,056 | ---- | M] (Oracle Corporation) -- C:\Windows\SysWow64\java.exe
[2012/09/03 07:40:34 | 000,821,736 | ---- | M] (Oracle Corporation) -- C:\Windows\SysWow64\npDeployJava1.dll
[2012/09/03 07:40:34 | 000,746,984 | ---- | M] (Oracle Corporation) -- C:\Windows\SysWow64\deployJava1.dll
[2012/08/30 21:14:00 | 026,228,072 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvoglv64.dll
[2012/08/30 21:14:00 | 025,256,296 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcompiler.dll
[2012/08/30 21:14:00 | 019,828,584 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvoglv32.dll
[2012/08/30 21:14:00 | 018,229,096 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvd3dumx.dll
[2012/08/30 21:14:00 | 017,559,912 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcompiler.dll
[2012/08/30 21:14:00 | 015,291,752 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvd3dum.dll
[2012/08/30 21:14:00 | 014,879,080 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvwgf2umx.dll
[2012/08/30 21:14:00 | 012,465,512 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvwgf2um.dll
[2012/08/30 21:14:00 | 009,066,344 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcuda.dll
[2012/08/30 21:14:00 | 007,626,088 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcuda.dll
[2012/08/30 21:14:00 | 007,397,736 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvopencl.dll
[2012/08/30 21:14:00 | 006,109,032 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvopencl.dll
[2012/08/30 21:14:00 | 002,745,192 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcuvid.dll
[2012/08/30 21:14:00 | 002,725,224 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvapi64.dll
[2012/08/30 21:14:00 | 002,573,672 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcuvid.dll
[2012/08/30 21:14:00 | 002,422,120 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvapi.dll
[2012/08/30 21:14:00 | 002,216,808 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcuvenc.dll
[2012/08/30 21:14:00 | 001,866,088 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcuvenc.dll
[2012/08/30 21:14:00 | 001,760,104 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvdispco64.dll
[2012/08/30 21:14:00 | 001,482,600 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvdispgenco64.dll
[2012/08/30 21:14:00 | 000,971,624 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvumdshimx.dll
[2012/08/30 21:14:00 | 000,830,312 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvumdshim.dll
[2012/08/30 21:14:00 | 000,247,144 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvinitx.dll
[2012/08/30 21:14:00 | 000,202,600 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvinit.dll
[2012/08/30 21:14:00 | 000,016,366 | ---- | M] () -- C:\Windows\SysNative\nvinfo.pb
[2012/08/30 18:18:05 | 000,118,120 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvmctray.dll
[2012/08/30 18:18:05 | 000,063,336 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvshext.dll
[2012/08/30 18:18:04 | 003,487,434 | ---- | M] () -- C:\Windows\SysNative\nvcoproc.bin
[2012/08/30 18:18:01 | 003,266,920 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvsvc64.dll
[2012/08/30 18:17:59 | 006,198,120 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcpl.dll
[2012/08/30 10:40:14 | 000,429,416 | ---- | M] () -- C:\Windows\SysWow64\nvStreaming.exe
[2012/08/29 22:02:51 | 000,002,228 | ---- | M] () -- C:\Users\Martin\Desktop\Google Earth.lnk
[2 C:\Windows\SysWow64\*.tmp files -> C:\Windows\SysWow64\*.tmp -> ]
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
========== Files Created - No Company Name ==========
[2012/09/04 22:42:16 | 000,000,349 | ---- | C] () -- C:\Users\Public\Documents\PCLECHAL.INI
[2012/09/03 11:55:47 | 000,245,289 | ---- | C] () -- C:\Users\Martin\Documents\x.jpg
[2012/08/30 10:40:14 | 000,429,416 | ---- | C] () -- C:\Windows\SysWow64\nvStreaming.exe
[2012/08/29 22:02:51 | 000,002,228 | ---- | C] () -- C:\Users\Martin\Desktop\Google Earth.lnk
[2012/07/23 11:30:21 | 000,000,218 | ---- | C] () -- C:\Users\Martin\AppData\Local\recently-used.xbel
[2012/06/08 16:02:42 | 000,005,632 | ---- | C] () -- C:\Users\Martin\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2012/06/04 13:54:56 | 000,734,810 | ---- | C] () -- C:\Windows\SysWow64\PerfStringBackup.INI
[2012/04/29 12:44:08 | 000,669,184 | ---- | C] () -- C:\Windows\SysWow64\pbsvc.exe
[2012/01/08 10:15:21 | 000,000,412 | ---- | C] () -- C:\Users\Martin\AppData\Roaming\All CPU Meter_Settings.ini
[2012/01/02 10:28:30 | 000,000,140 | ---- | C] () -- C:\Windows\ODBC.INI
[2012/01/02 10:10:18 | 000,081,920 | ---- | C] () -- C:\Windows\OLE2TASK.DAT
[2011/12/22 16:43:59 | 000,000,983 | ---- | C] () -- C:\Windows\eReg.dat
[2011/12/18 19:15:17 | 000,103,736 | ---- | C] () -- C:\Windows\SysWow64\PnkBstrB.exe
[2011/12/18 19:15:16 | 000,066,872 | ---- | C] () -- C:\Windows\SysWow64\PnkBstrA.exe
[2011/12/18 15:16:42 | 000,175,616 | ---- | C] () -- C:\Windows\SysWow64\unrar.dll
[2011/12/18 15:16:41 | 000,650,752 | ---- | C] () -- C:\Windows\SysWow64\xvidcore.dll
[2011/12/18 15:16:41 | 000,243,200 | ---- | C] () -- C:\Windows\SysWow64\xvidvfw.dll
[2011/12/18 15:16:41 | 000,079,872 | ---- | C] () -- C:\Windows\SysWow64\ff_vfw.dll
[2011/12/17 19:42:20 | 000,006,791 | ---- | C] () -- C:\Users\Martin\AppData\Local\SRDownloader.err
[2011/12/17 19:42:13 | 000,001,008 | ---- | C] () -- C:\Users\Martin\AppData\Local\SRDownloader.nast
[2011/12/15 06:39:42 | 000,042,392 | ---- | C] () -- C:\Windows\SysWow64\xfcodec.dll
[2011/04/09 19:55:28 | 000,179,261 | ---- | C] () -- C:\Windows\SysWow64\xlive.dll.cat
========== ZeroAccess Check ==========
[2009/07/14 06:55:00 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini
[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64
[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
"" = C:\Windows\SysNative\shell32.dll -- [2009/07/14 03:41:54 | 014,161,920 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2009/07/14 03:16:14 | 012,866,560 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\fastprox.dll -- [2009/07/14 03:40:51 | 000,909,312 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2009/07/14 03:15:20 | 000,605,696 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\wbemess.dll -- [2009/07/14 03:41:56 | 000,505,856 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
< End of report >
Re: Pomalší Pc ako predtým (Rsit log)
a extras
OTL Extras logfile created on: 25. 9. 2012 9:59:05 - Run 1
OTL by OldTimer - Version 3.2.68.0 Folder = C:\Users\Martin\Desktop
64bit- Ultimate Edition (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 0000041b | Country: Slovenská republika | Language: SKY | Date Format: d. M. yyyy
7,97 Gb Total Physical Memory | 5,95 Gb Available Physical Memory | 74,59% Memory free
15,94 Gb Paging File | 13,80 Gb Available in Paging File | 86,59% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 931,41 Gb Total Space | 191,11 Gb Free Space | 20,52% Space Free | Partition Type: NTFS
Drive E: | 7,71 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: UDF
Computer Name: MARTIN-PC | User Name: Martin | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Extra Registry (SafeList) ==========
========== File Associations ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.html[@ = Opera.HTML] -- C:\Program Files (x86)\Opera\Opera.exe (Opera Software)
.url[@ = InternetShortcut] -- C:\Windows\SysNative\rundll32.exe (Microsoft Corporation)
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation)
.html [@ = Opera.HTML] -- C:\Program Files (x86)\Opera\Opera.exe (Opera Software)
[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation)
========== Shell Spawning ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
http [open] -- "C:\Program Files (x86)\Opera\Opera.exe" "%1" (Opera Software)
https [open] -- "C:\Program Files (x86)\Opera\Opera.exe" "%1" (Opera Software)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [Bridge] -- C:\Program Files (x86)\Adobe\Adobe Bridge CS5.1\Bridge.exe "%L" (Adobe Systems, Inc.)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
http [open] -- "C:\Program Files (x86)\Opera\Opera.exe" "%1" (Opera Software)
https [open] -- "C:\Program Files (x86)\Opera\Opera.exe" "%1" (Opera Software)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [Bridge] -- C:\Program Files (x86)\Adobe\Adobe Bridge CS5.1\Bridge.exe "%L" (Adobe Systems, Inc.)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
========== Security Center Settings ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = 28 4D B2 76 41 04 CA 01 [binary data]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
========== Firewall Settings ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
========== Authorized Applications List ==========
========== Vista Active Open Ports Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{01C642B3-EE16-4B01-AB0E-D46209BFAC8B}" = lport=6004 | protocol=17 | dir=in | app=c:\program files (x86)\microsoft office\office12\outlook.exe |
"{03F7336B-CAEE-4BBC-8CC1-B0A9AF586022}" = rport=139 | protocol=6 | dir=out | app=system |
"{03F8D0B0-E7CF-488F-A115-FC3C72BCA328}" = lport=138 | protocol=17 | dir=in | app=system |
"{0B9749DC-B5EB-4262-8FDE-052C860FEA79}" = rport=137 | protocol=17 | dir=out | app=system |
"{124097AD-02A1-48CA-8D9E-C1C413F43AFB}" = rport=445 | protocol=6 | dir=out | app=system |
"{2079DF73-A50F-4630-BF38-AE5A700770F7}" = rport=138 | protocol=17 | dir=out | app=system |
"{25D717F7-D81D-4134-9731-6D59CD52D2C5}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{716E2E70-FBCA-4AC6-BEDA-39B9C000584A}" = lport=2177 | protocol=17 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{7F04D270-85FB-454F-849D-63DB74017CD8}" = lport=2869 | protocol=6 | dir=in | app=system |
"{88BD1BC1-7A74-4ED9-A379-9C691395E45C}" = lport=2177 | protocol=6 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{905FBBC0-393B-4399-96EA-5620E9CA778E}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
"{9265D693-33EA-47EF-8D22-54367E352E97}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{BAC1C198-4A6E-4BD7-8E8F-62DE6DCF54C4}" = lport=445 | protocol=6 | dir=in | app=system |
"{C42F8AE4-CAD9-4311-86F0-09B0F6F726CF}" = rport=10243 | protocol=6 | dir=out | app=system |
"{C827F928-1FF3-4C7E-B253-AEC2D586434C}" = lport=10243 | protocol=6 | dir=in | app=system |
"{D35015AE-525C-4740-99E5-B658861459B4}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{D8FE3B74-E7E3-4619-A969-C83584AFC70A}" = rport=2177 | protocol=17 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{DB6ACF2F-1864-489B-B36F-4F686EFFC711}" = rport=2177 | protocol=6 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{DCDB707C-6FBD-4260-927E-0192AB8D18C0}" = lport=137 | protocol=17 | dir=in | app=system |
"{DE9806FA-F9FA-4607-AFF3-DBAEEEB9296D}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{ED4C716D-DC22-45C3-A6FF-F7F301E71D7F}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{ED977ED9-2750-4F2E-BC29-DBBFE3BAAD19}" = lport=139 | protocol=6 | dir=in | app=system |
"{F3D4B7BA-E56D-4EA7-B8EA-66B88AEB9DA2}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{FBDA7C3C-CCB5-418A-94C8-2D6EDF0F2D61}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 |
========== Vista Active Application Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{04FA7A73-E9EE-4971-BC78-A42AE87B4BD7}" = dir=out | app=%systemdrive%\games\maxpayne3\playmaxpayne3.exe |
"{05DF0710-986D-4E9F-9FB7-C59FF9D22DD7}" = protocol=6 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{08D3F5CC-82AF-4A42-A33B-A0CB394D9DCB}" = protocol=6 | dir=in | app=c:\program files (x86)\pinnacle\studio 15\programs\umi.exe |
"{0A413326-532C-46EC-B618-92ACAA2C3B1F}" = protocol=6 | dir=in | app=c:\games\ street fighter vs tekken\sftk.exe |
"{0A74E19E-3177-4161-B4E7-4E0F5498D6A7}" = dir=in | app=c:\games\port royal 3\portroyale3.exe |
"{0A8E169E-4233-40CD-AD0D-EECB39CB2F4B}" = protocol=6 | dir=in | app=c:\games\ rayman origins\gu.exe |
"{0BDA3A3B-97F0-47CB-8691-D97E7BA96B81}" = protocol=6 | dir=in | app=c:\windows\syswow64\pnkbstrb.exe |
"{1580FFAE-BDCC-47AC-B52E-383CCF60407D}" = protocol=6 | dir=in | app=c:\games\world in conflicts\wic_online.exe |
"{18857BBE-D8A6-444D-9540-8C1D4D9C39CC}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{1D75ED90-054C-451E-AA15-57E28A72AC9A}" = protocol=17 | dir=in | app=c:\program files (x86)\opera\pluginwrapper\opera_plugin_wrapper.exe |
"{1E4DD236-818E-4A67-A3D5-9FFCD5284D16}" = protocol=6 | dir=in | app=c:\program files (x86)\pinnacle\studio 15\programs\rm.exe |
"{1F7E3EF6-850E-47FC-AE58-CDC468D8F6C2}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.524\agent.exe |
"{207EA189-6732-45EE-8BF6-A90C1D1BE38C}" = protocol=17 | dir=in | app=c:\games\world of warcraft\wow-x.x.x.x-4.0.0.12911-eu-downloader.exe |
"{236F0A98-0945-4752-A42F-ECC70C785C3F}" = protocol=17 | dir=in | app=c:\games\world of warcraft\launcher.exe |
"{25A6E1C1-691D-43C0-A783-2C3BE514ABF8}" = protocol=17 | dir=in | app=c:\windows\syswow64\pnkbstrb.exe |
"{28316458-E6DE-4869-8D49-65E0F71DBFE0}" = protocol=6 | dir=in | app=c:\program files (x86)\opera\opera.exe |
"{29920F79-E631-47FA-A65E-84781E37F4B4}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.954\agent.exe |
"{2A895DA9-5A14-4E4F-8AB4-01554215D130}" = protocol=17 | dir=in | app=c:\games\world in conflicts\wic_ds.exe |
"{2BB8DE4A-32A2-4F2F-B561-615BFCA83D22}" = protocol=6 | dir=in | app=c:\games\shank 2\bin\shank2.exe |
"{2D5C7961-2669-4A01-B953-656168EF62C2}" = protocol=17 | dir=in | app=c:\games\world in conflicts\wic.exe |
"{2F04FAA4-C7F2-48F4-AAED-751B953228F7}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{32219961-3F5B-4F42-971B-16F2374E6EDA}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 |
"{35B3C755-6C5F-4CF9-8707-D5FA7D175118}" = dir=out | app=%systemdrive%\games\maxpayne3\maxpayne3.exe |
"{361CC872-3C3B-44BA-B189-5E10C1A0CD49}" = protocol=6 | dir=in | app=c:\games\men of war. condemned heroes\condemned heroes.exe |
"{3D267DDA-5D12-4FE4-9E01-0F87094CCD71}" = protocol=6 | dir=in | app=c:\games\world of warcraft\launcher.patch.exe |
"{4013DACC-02C2-4D2F-87CA-12D5EFAD727F}" = protocol=6 | dir=in | app=c:\games\world in conflicts\wic_ds.exe |
"{406F8AD2-F047-4354-8FF1-F70DDD842F24}" = protocol=17 | dir=in | app=c:\program files (x86)\icq7.7\icq.exe |
"{4259C287-38BC-48A8-9A90-B091A98F6869}" = protocol=6 | dir=in | app=c:\program files (x86)\icq7.7\icq.exe |
"{42E09A56-8C5E-44CD-823A-79416D8C4BCA}" = protocol=17 | dir=in | app=c:\games\world of warcraft\launcher.patch.exe |
"{4342A2D4-07B3-4EEB-934D-FC7ACDBC94BF}" = protocol=17 | dir=in | app=c:\users\public\documents\blizzard entertainment\world of warcraft\wow-x.x.x.x-4.0.0.12911-eu-downloader.exe |
"{4418430C-1435-4D05-94C7-26DF50D0DB0E}" = protocol=6 | dir=in | app=c:\games\crysis\bin32\crysisdedicatedserver.exe |
"{4F34754A-73E5-4718-A85D-4B1A6C880B4C}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{4F412C2B-E827-42E5-9CB4-311BA0894951}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{4FD00121-7558-4CD5-97CF-D2B7C0EB8012}" = protocol=17 | dir=in | app=c:\windows\syswow64\pnkbstra.exe |
"{51A73A57-50AE-43C0-B5AE-68950A36B989}" = protocol=6 | dir=in | app=c:\games\crysis\bin32\crysis.exe |
"{5A333188-8ABD-401D-844B-39D45070F4B8}" = protocol=6 | dir=in | app=c:\games\diablo iii\diablo iii.exe |
"{5ECA0764-54E9-45B6-ABDF-703BB10E9618}" = protocol=6 | dir=in | app=c:\games\ rayman origins\rayman origins.exe |
"{61999BAB-B75F-4AC0-ABD5-5E017C555CD8}" = protocol=6 | dir=in | app=c:\program files (x86)\pinnacle\studio 15\programs\studio.exe |
"{645C58B4-39A5-4550-9111-4FD71DA359BD}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{65AABF50-05CD-40F6-B30F-1017E10F166C}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{66472D02-1940-4FD1-8351-D2FDAF225BC7}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{66FD41D6-C987-4369-8018-DAF5BE538924}" = protocol=6 | dir=in | app=c:\games\crysis\bin64\crysis.exe |
"{6A0B2FD1-D92D-4C96-BA73-CCDA07675725}" = protocol=6 | dir=in | app=c:\games\world in conflicts\wic.exe |
"{6BFCB841-1B8E-4C72-AA07-02F84BAF9B03}" = protocol=6 | dir=in | app=c:\program files (x86)\sony ericsson\update engine\sony ericsson update engine.exe |
"{6D223963-72B5-405C-800B-656CAA8EE795}" = protocol=17 | dir=in | app=c:\program files (x86)\pinnacle\studio 15\programs\studio.exe |
"{6F744394-B004-4EE5-8810-004417A7BF08}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{6FFE3A82-1231-4E4B-BC58-530AA8B7BF10}" = protocol=17 | dir=in | app=c:\program files (x86)\pinnacle\studio 15\programs\umi.exe |
"{737CB6B1-3A64-4F3A-A5B0-DF1270D1D2D8}" = protocol=17 | dir=in | app=c:\games\crysis\bin32\crysis.exe |
"{7C877D52-01F1-4544-97FB-98A6CB211556}" = protocol=17 | dir=in | app=c:\games\crysis\bin64\crysis.exe |
"{7D76A097-4A10-4D08-9185-464603AC7BF4}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.954\agent.exe |
"{7E1CC105-99C5-45D1-8056-1313B72A5694}" = protocol=17 | dir=in | app=c:\games\crysis\bin64\crysisdedicatedserver.exe |
"{87A832E1-6974-4FB1-A243-893591AB5DC4}" = protocol=6 | dir=in | app=c:\program files (x86)\opera\pluginwrapper\opera_plugin_wrapper.exe |
"{8A51D2AB-332F-4A6B-8290-38F2D1DC09C0}" = protocol=6 | dir=out | app=system |
"{8F922705-9F67-4968-89D1-88E9F6B12412}" = protocol=17 | dir=in | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{924D314B-0CA1-400F-BE2E-F9C9F84FA593}" = protocol=6 | dir=in | app=c:\windows\syswow64\pnkbstra.exe |
"{96ADF980-96B6-4844-AB80-E1C82978F576}" = protocol=17 | dir=in | app=c:\games\world in conflicts\wic_online.exe |
"{9C44A726-AEA8-46F7-BE55-AE5BD7FA09E9}" = protocol=6 | dir=in | app=c:\games\starcraft ii\starcraft ii.exe |
"{9CD71072-07C7-4E10-B0AA-3F55BF294838}" = protocol=6 | dir=in | app=c:\games\maxpayne3\playmaxpayne3.exe |
"{A314B617-9B10-45F5-97E4-68388AB9BA85}" = protocol=17 | dir=in | app=c:\games\starcraft ii\starcraft ii.exe |
"{A39E2E1A-B9AA-4456-885A-B867CCD6FDB7}" = protocol=6 | dir=in | app=c:\program files (x86)\icq7.7\icq.exe |
"{A42CC9A1-7309-4506-96DF-DC832AEB0881}" = protocol=17 | dir=in | app=c:\games\men of war. condemned heroes\condemned heroes.exe |
"{A8C7BF54-FD08-4B4C-B64B-4D11AE29DE0B}" = protocol=17 | dir=in | app=c:\program files (x86)\opera\opera.exe |
"{AC214A9F-FAEB-4E83-8C9E-61CCD219A9D9}" = protocol=17 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{ACBB75EF-FC8F-4F2A-B8E6-34A6B7B9B29F}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{B316E2B4-225D-4388-8783-85B3F246FF73}" = protocol=17 | dir=in | app=c:\games\shank 2\bin\shank2.exe |
"{B41A4569-FD2F-4677-8999-8984BDC2922C}" = protocol=17 | dir=in | app=c:\games\crysis\bin32\crysisdedicatedserver.exe |
"{BA2CA7AD-0C6D-40C8-9F10-D8453BAB2B85}" = protocol=6 | dir=in | app=c:\games\crysis\bin64\crysisdedicatedserver.exe |
"{BB84CB5A-6757-488A-83E8-8A94A5A16665}" = protocol=17 | dir=in | app=c:\program files (x86)\pinnacle\studio 15\programs\rm.exe |
"{BBE6F6C7-3BF6-4CDA-82AB-FCC322137CD9}" = protocol=6 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{C13C3ED4-9B90-40B9-839E-8B7B19404DFC}" = protocol=6 | dir=in | app=c:\games\world of warcraft\launcher.exe |
"{C265DD79-7153-4174-BA19-5D15B29CE75A}" = protocol=6 | dir=in | app=c:\games\world of warcraft\wow-x.x.x.x-4.0.0.12911-eu-downloader.exe |
"{C6B9F512-5A83-4FF2-9802-0072B6FCF3D1}" = protocol=17 | dir=in | app=c:\games\ rayman origins\gu.exe |
"{CA765C58-E688-4E09-8FD9-0019160DB731}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 |
"{CF41A7EC-E89E-4665-AB0F-D0878E23B47E}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 |
"{D05F2F5A-B733-4CD9-B4D1-833511F82D75}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.524\agent.exe |
"{D8EC4F4B-277E-4F19-8299-9585E0D60987}" = protocol=17 | dir=in | app=c:\program files (x86)\utorrent\utorrent.exe |
"{D930B328-1074-4AA4-8A18-D27CA74538F5}" = protocol=6 | dir=in | app=c:\users\public\documents\blizzard entertainment\world of warcraft\wow-x.x.x.x-4.0.0.12911-eu-downloader.exe |
"{DD71937D-24BF-4993-9B58-E1ECE57D8C87}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{DE1B84F7-E779-4D7E-A6C5-A69D1D373599}" = protocol=6 | dir=in | app=c:\program files (x86)\utorrent\utorrent.exe |
"{E03B64BD-D4A8-4279-B292-05A1AC4DEF54}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{E11E550E-7D89-4BEE-A31A-F5D434241AD3}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 |
"{E5E8C88A-DB99-46DB-B5DC-F045BF433DDD}" = protocol=17 | dir=in | app=c:\games\ street fighter vs tekken\sftk.exe |
"{EA894008-2039-4035-BCA4-7B29FB63B16C}" = protocol=17 | dir=in | app=c:\games\ rayman origins\rayman origins.exe |
"{EDCE3F94-8938-4CB0-84FE-51789DD3DC0C}" = protocol=17 | dir=in | app=c:\games\maxpayne3\playmaxpayne3.exe |
"{F0F3E5B4-63A0-4271-9CED-3C44F3FC5819}" = protocol=17 | dir=in | app=c:\games\diablo iii\diablo iii.exe |
"{F42E40BF-20A8-44D6-9F13-68EF60B6029F}" = protocol=17 | dir=in | app=c:\program files (x86)\icq7.7\icq.exe |
"{F77D3608-1AAC-4AF0-98CB-CCF2B256FCC6}" = protocol=17 | dir=in | app=c:\program files (x86)\sony ericsson\update engine\sony ericsson update engine.exe |
"TCP Query User{1A99BA38-83A5-47C4-A652-F9A4DBFD0601}C:\program files (x86)\black_box\gta iv + eflc\eflc\eflc.exe" = protocol=6 | dir=in | app=c:\program files (x86)\black_box\gta iv + eflc\eflc\eflc.exe |
"TCP Query User{3B7FCF14-E1A4-44F7-AA8F-156E9FEB3C68}C:\games\world_of_tanks\wotlauncher.exe" = protocol=6 | dir=in | app=c:\games\world_of_tanks\wotlauncher.exe |
"TCP Query User{3DAF409C-7CE9-419F-90EA-4B8FAEDCA0A3}C:\games\starcraft ii\versions\base15405\sc2.exe" = protocol=6 | dir=in | app=c:\games\starcraft ii\versions\base15405\sc2.exe |
"TCP Query User{3FE36E82-9DC7-45F5-8DE9-DDBCDDB7BD3C}C:\games\batman arkham city\binaries\win32\batmanac.exe" = protocol=6 | dir=in | app=c:\games\batman arkham city\binaries\win32\batmanac.exe |
"TCP Query User{40204F1F-60B0-4F36-9ECD-509CFE4E988E}C:\games\nfs the run\need for speed the run\need for speed the run.exe" = protocol=6 | dir=in | app=c:\games\nfs the run\need for speed the run\need for speed the run.exe |
"TCP Query User{5337799C-953B-470C-9F22-01BF3404F687}C:\games\world of warcraft\temp\wow-4.2.1.2736-enus-tools-downloader.exe" = protocol=6 | dir=in | app=c:\games\world of warcraft\temp\wow-4.2.1.2736-enus-tools-downloader.exe |
"TCP Query User{5619FF9D-335F-41E9-A9BC-756474D4DF05}C:\games\dead island\deadislandgame.exe" = protocol=6 | dir=in | app=c:\games\dead island\deadislandgame.exe |
"TCP Query User{64795364-4235-4D6F-9DA0-F321B9E380E4}C:\users\martin\downloads\wotlk-gben.exe" = protocol=6 | dir=in | app=c:\users\martin\downloads\wotlk-gben.exe |
"TCP Query User{656ED980-E656-4396-87FE-49B4D1E2F7DD}C:\program files (x86)\xfire\xfire.exe" = protocol=6 | dir=in | app=c:\program files (x86)\xfire\xfire.exe |
"TCP Query User{6679C243-C814-4951-939A-CC0C3F2C946D}C:\games\world_of_tanks\worldoftanks.exe" = protocol=6 | dir=in | app=c:\games\world_of_tanks\worldoftanks.exe |
"TCP Query User{685CF804-93B7-4B8C-9F15-40DE10D6D558}C:\games\trackmania 2\maniaplanet.exe" = protocol=6 | dir=in | app=c:\games\trackmania 2\maniaplanet.exe |
"TCP Query User{736603AF-EF3F-4244-94FE-72D68B28359D}C:\program files (x86)\doublesix games\all zombies must die!\binaries\win32\shippingpc-bzb2game.exe" = protocol=6 | dir=in | app=c:\program files (x86)\doublesix games\all zombies must die!\binaries\win32\shippingpc-bzb2game.exe |
"TCP Query User{99B4CE9F-94E6-4DB7-ADDD-B6C5C6367C7F}C:\program files (x86)\black_box\gta iv + eflc\grand theft auto iv\gtaiv.exe" = protocol=6 | dir=in | app=c:\program files (x86)\black_box\gta iv + eflc\grand theft auto iv\gtaiv.exe |
"TCP Query User{9E9A1E49-E485-454B-A608-0ACD49DCE0E3}C:\assassins creed - revelations\acrsp.exe" = protocol=6 | dir=in | app=c:\assassins creed - revelations\acrsp.exe |
"TCP Query User{D36FB8C2-10CA-41F7-BF91-A4EAF16B32BD}C:\games\maxpayne3\maxpayne3.exe" = protocol=6 | dir=in | app=c:\games\maxpayne3\maxpayne3.exe |
"TCP Query User{ECF93737-6F75-4E0F-BC5C-B4FE10D79DCE}C:\program files (x86)\outerra\anteworld\outerra.exe" = protocol=6 | dir=in | app=c:\program files (x86)\outerra\anteworld\outerra.exe |
"UDP Query User{08B45041-6C72-4204-BDBF-0B85B1B038F8}C:\games\dead island\deadislandgame.exe" = protocol=17 | dir=in | app=c:\games\dead island\deadislandgame.exe |
"UDP Query User{116F4887-98ED-4931-BAAB-113DD68DA93A}C:\program files (x86)\xfire\xfire.exe" = protocol=17 | dir=in | app=c:\program files (x86)\xfire\xfire.exe |
"UDP Query User{16F169D3-339A-4F83-8D10-C895864F83E6}C:\games\world_of_tanks\worldoftanks.exe" = protocol=17 | dir=in | app=c:\games\world_of_tanks\worldoftanks.exe |
"UDP Query User{2E05D9DE-14D2-49A7-A87C-9BB298C7D5F5}C:\program files (x86)\black_box\gta iv + eflc\grand theft auto iv\gtaiv.exe" = protocol=17 | dir=in | app=c:\program files (x86)\black_box\gta iv + eflc\grand theft auto iv\gtaiv.exe |
"UDP Query User{56F22FE4-60A5-457F-80D9-EDDFDEA5D64B}C:\assassins creed - revelations\acrsp.exe" = protocol=17 | dir=in | app=c:\assassins creed - revelations\acrsp.exe |
"UDP Query User{659E1740-B47D-4E10-90D6-882F7E36589F}C:\games\world_of_tanks\wotlauncher.exe" = protocol=17 | dir=in | app=c:\games\world_of_tanks\wotlauncher.exe |
"UDP Query User{6C1C5065-6282-46F4-ADAF-2BF92B0F60E6}C:\games\nfs the run\need for speed the run\need for speed the run.exe" = protocol=17 | dir=in | app=c:\games\nfs the run\need for speed the run\need for speed the run.exe |
"UDP Query User{7A59B66A-A0FB-48DF-99C0-53CBD3BFA55B}C:\program files (x86)\outerra\anteworld\outerra.exe" = protocol=17 | dir=in | app=c:\program files (x86)\outerra\anteworld\outerra.exe |
"UDP Query User{AD7834BA-E62B-4FAA-B84B-7D1F9163CCD0}C:\users\martin\downloads\wotlk-gben.exe" = protocol=17 | dir=in | app=c:\users\martin\downloads\wotlk-gben.exe |
"UDP Query User{B0BBA82D-D578-4EC9-8454-9E91816DB773}C:\games\batman arkham city\binaries\win32\batmanac.exe" = protocol=17 | dir=in | app=c:\games\batman arkham city\binaries\win32\batmanac.exe |
"UDP Query User{B49F5A1C-2889-45DE-9450-35FCB2D180CB}C:\games\starcraft ii\versions\base15405\sc2.exe" = protocol=17 | dir=in | app=c:\games\starcraft ii\versions\base15405\sc2.exe |
"UDP Query User{C40976C6-13AC-405F-8654-D880372B70AB}C:\games\maxpayne3\maxpayne3.exe" = protocol=17 | dir=in | app=c:\games\maxpayne3\maxpayne3.exe |
"UDP Query User{C671A402-FB50-467C-A63A-AB7840109061}C:\program files (x86)\doublesix games\all zombies must die!\binaries\win32\shippingpc-bzb2game.exe" = protocol=17 | dir=in | app=c:\program files (x86)\doublesix games\all zombies must die!\binaries\win32\shippingpc-bzb2game.exe |
"UDP Query User{C9B803AE-2C06-49BC-B766-3150EFD6C5D7}C:\program files (x86)\black_box\gta iv + eflc\eflc\eflc.exe" = protocol=17 | dir=in | app=c:\program files (x86)\black_box\gta iv + eflc\eflc\eflc.exe |
"UDP Query User{CD7179EC-080A-4707-9542-4ADA5FCDB58A}C:\games\world of warcraft\temp\wow-4.2.1.2736-enus-tools-downloader.exe" = protocol=17 | dir=in | app=c:\games\world of warcraft\temp\wow-4.2.1.2736-enus-tools-downloader.exe |
"UDP Query User{F551ABEA-5678-4698-AE96-4E1F72890A76}C:\games\trackmania 2\maniaplanet.exe" = protocol=17 | dir=in | app=c:\games\trackmania 2\maniaplanet.exe |
========== HKEY_LOCAL_MACHINE Uninstall List ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{071c9b48-7c32-4621-a0ac-3f809523288f}" = Microsoft Visual C++ 2005 Redistributable (x64)
"{086D343F-8E78-4AFC-81AC-D6D414AFD8AC}_is1" = Core Temp 1.0 RC2
"{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MP250_series" = Canon MP250 series MP Drivers
"{1D8E6291-B0D5-35EC-8441-6616F567A0F7}" = Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219
"{1E9FC118-651D-4934-97BE-E53CAE5C7D45}" = Microsoft_VC80_MFCLOC_x86_x64
"{29AFE1B0-26A4-11E1-BFD4-F04DA23A5C58}" = MSVCRT Redists
"{4569AD91-47F4-4D9E-8FC9-717EC32D7AE1}" = Microsoft_VC80_CRT_x86_x64
"{6DE721A5-5E89-4D74-994C-652BB3C0672E}" = Ovladače videa společnosti Pinnacle
"{8557397C-A42D-486F-97B3-A2CBC2372593}" = Microsoft_VC90_ATL_x86_x64
"{90120000-002A-0000-1000-0000000FF1CE}" = Microsoft Office Office 64-bit Components 2007
"{90120000-002A-041B-1000-0000000FF1CE}" = Microsoft Office Shared 64-bit MUI (Slovak) 2007
"{90BF0360-A1DB-4599-A643-95AB90A52C1E}" = Microsoft_VC90_MFCLOC_x86_x64
"{925D058B-564A-443A-B4B2-7E90C6432E55}" = Microsoft_VC80_ATL_x86_x64
"{92A3CA0D-55CD-4C5D-BA95-5C2600C20F26}" = Microsoft_VC90_CRT_x86_x64
"{9B48B0AC-C813-4174-9042-476A887592C7}" = Windows Live ID Sign-in Assistant
"{9D046B26-7978-47CD-91E6-AC3C1DFBC3D0}" = Microsoft Security Client
"{A472B9E4-0AFF-4F7B-B25D-F64F8E928AAB}" = Microsoft_VC90_MFC_x86_x64
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision" = NVIDIA Ovládač 3D Vision 306.23
"{B2FE1952-0186-46c3-BAEC-A80AA35AC5B8}_Display.ControlPanel" = Ovládací panel NVIDIA 306.23
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver" = NVIDIA Grafický ovládač 306.23
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB" = NVIDIA 3D Vision radič ovládača 306.23
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX" = NVIDIA Softvér systému s podporou technológie PhysX 9.12.0604
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update" = Aktualizácie NVIDIA 1.10.8
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver" = NVIDIA Ovládač zvuku HD 1.3.18.0
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer" = NVIDIA Install Application
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NVIDIA.Update" = NVIDIA Update Components
"{C8C1BAD5-54E6-4146-AD07-3A8AD36569C3}" = Microsoft_VC80_MFC_x86_x64
"{D600D357-5CB9-4DE9-8FD4-14E208BD1970}" = Nero Backup Drivers
"{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}" = Microsoft .NET Framework 4 Client Profile
"CCleaner" = CCleaner
"CPUID HWMonitor_is1" = CPUID HWMonitor 1.18
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Microsoft Security Client" = Microsoft Security Essentials
"TeamSpeak 3 Client" = TeamSpeak 3 Client
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{000E79B7-E725-4F01-870A-C12942B7F8E4}" = Crysis(R)
"{01E9B2FF-DAF4-4529-9CC9-2101625517C7}" = nero.prerequisites.msi
"{024521CF-C07E-4F8E-8481-0D75695E03AF}" = PxMergeModule
"{033E378E-6AD3-4AD5-BDEB-CBD69B31046C}" = Microsoft_VC90_ATL_x86
"{034DCAF9-96E7-4936-9A07-712F80B5181E}" = Nero RescueAgent 11
"{0497EAED-70DA-4BBE-BEB3-AF77FD8788EA}" = Adobe Premiere Pro CS5.5
"{06F80017-8F98-4C94-B868-52358569FC32}" = Command & Conquer Generals
"{0713D1F9-DD77-42C1-8C7D-54D479E2E743}" = Nero SoundTrax 11
"{08D2E121-7F6A-43EB-97FD-629B44903403}" = Microsoft_VC90_CRT_x86
"{0D7A4289-99CF-4B8D-B812-86BE50A54552}" = Nero Video 11
"{0F3647F8-E51D-4FCC-8862-9A8D0C5ACF25}" = Microsoft_VC80_ATL_x86
"{1111706F-666A-4037-7777-211328764D10}" = JavaFX 2.1.1
"{11D3EF85-63E1-4AE4-A7C1-9241BDB16B51}" = Nero ControlCenter 11
"{1362E602-9625-42D3-B57F-CDA9D26F9DA8}" = Pinnacle Studio 15
"{137D91E1-2347-4EAC-BB0B-CC06C6B92A52}_is1" = Men of War (Remove Only)
"{1a413f37-ed88-4fec-9666-5c48dc4b7bb7}" = YTD YouTube Downloader & Converter 3.6
"{1AA94747-3BF6-4237-9E1A-7B3067738FE1}" = Max Payne 3
"{1EAC1D02-C6AC-4FA6-9A44-96258C37C812}_is1" = World of Tanks v.0.7.1
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{2397CAD4-2263-4CD0-96BE-E43A980B9C9A}_is1" = Geeks3D.com FurMark 1.9.2
"{26A24AE4-039D-4CA4-87B4-2F83217007FF}" = Java 7 Update 7
"{28E82311-8616-11E1-BEB0-B8AC6F97B88E}" = Google Earth
"{2CA7225D-CB12-462A-9DD1-50319E158BA5}" = Nero 11 PiP Effects Basic
"{2FDD750F-49B7-40C1-9D5E-D2955BC0E2D8}" = NVIDIA PhysX
"{2FFE93F0-BB72-4E52-8761-354D1AAA9387}" = Sony Ericsson PC Suite 6.011.00
"{30DD3A95-E1D6-47EA-A7FE-6E2236AD87D5}" = OMEGA 15.01.00
"{33A22B2D-55BA-4508-B767-BF2E9C21A73F}" = Assassin's Creed Revelations
"{3521BDBD-D453-5D9F-AA55-44B75D214629}" = Adobe Community Help
"{3571656A-575D-4CED-809D-5547587121FF}" = Yu-Gi-Oh! Power of Chaos YUGI THE DESTINY
"{390757AA-8830-43DC-AEE0-4E5B6F8439EB}" = Nero SoundTrax 11 Help (CHM)
"{3B418709-D688-4E3A-BE0E-7D71FA84C948}" = Nero 11 PiP Effects 1
"{43430FA5-AF68-4A2D-A7D4-891000008200}" = Street Fighter X Tekken
"{4382FC76-8100-4951-8658-31834E625E88}" = Nero 11 Video Transitions 1
"{46C045BF-2B3F-4BC4-8E4C-00E0CF8BD9DB}" = Adobe AIR
"{46EDCFA5-7EDB-46A9-B093-1C6237470CEC}" = 3DMark 11
"{485C9280-B899-4D46-86F3-B3E459636EE5}" = Yu-Gi-Oh! Power of Chaos KAIBA THE REVENGE
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4CB0307C-565E-4441-86BE-0DF2E4FB828C}" = Microsoft Games for Windows Marketplace
"{4D314806-D76E-47B4-89F1-B076A71F1FB0}_is1" = RCT3 - Custom Scenery and CTR Installer
"{526F1A57-F977-4EFB-B009-D971C5AD6348}" = OLYMP 12.01.00
"{53F7746A-96AA-49A5-86B8-59989680DAC5}" = Nero Burning ROM 11 Help (CHM)
"{5442DAB8-7177-49E1-8B22-09A049EA5996}" = Renesas Electronics USB 3.0 Host Controller Driver
"{5454083B-1308-4485-BF17-1110000D8301}" = Grand Theft Auto IV
"{5454083B-1308-4485-BF17-1110000D8302}" = Grand Theft Auto IV
"{55C2143E-FBA5-442F-9AFA-726FF068F39D}" = Nero CoverDesigner 11 Help (CHM)
"{57F80ECF-E27C-4EEE-AB58-E971BACE2639}" = Nero Recode 11 Help (CHM)
"{5A212B2D-140D-46F4-B625-2D1CA5A00594}" = Nero 11 Kwik Themes Basic
"{5E98FDD6-3672-4DBE-AB8B-2C9A0BED1382}" = Nero 11 Disc Menus 3
"{635FED5B-2C6D-49BE-87E6-7A6FCD22BC5A}" = Microsoft_VC90_MFC_x86
"{65153EA5-8B6E-43B6-857B-C6E4FC25798A}" = Intel(R) Management Engine Components
"{65BB0407-4CC8-4DC7-952E-3EEFDF05602A}" = Nero Update
"{68DED384-1F74-4AEE-8B8E-95AF15572FE3}" = Port Royale 3
"{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}" = Windows Media Player Firefox Plugin
"{6AB2427E-A18F-4809-9A12-29F5EBABBB3A}" = Nero BackItUp 11 Help (CHM)
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{77F665FD-3F60-4B0A-AE14-EC124B7A7FCE}" = ICQ7.7
"{7DF2B5EE-2C16-4E86-9C71-8678068AD805}" = Nero 11 Disc Menus 2
"{8014FACB-1D1D-48C2-94AA-E29EE2E6B9CE}" = Nero WaveEditor 11
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{8833FFB6-5B0C-4764-81AA-06DFEED9A476}" = Realtek Ethernet Controller Driver
"{8A7ABBD4-A617-4AE8-9C6D-1510DE46EC35}" = Nero 11
"{90120000-0011-0000-0000-0000000FF1CE}" = Microsoft Office Professional Plus 2007
"{90120000-0015-041B-0000-0000000FF1CE}" = Microsoft Office Access MUI (Slovak) 2007
"{90120000-0016-041B-0000-0000000FF1CE}" = Microsoft Office Excel MUI (Slovak) 2007
"{90120000-0018-041B-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (Slovak) 2007
"{90120000-0019-041B-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (Slovak) 2007
"{90120000-001A-041B-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (Slovak) 2007
"{90120000-001B-041B-0000-0000000FF1CE}" = Microsoft Office Word MUI (Slovak) 2007
"{90120000-001F-0405-0000-0000000FF1CE}" = Microsoft Office Proof (Czech) 2007
"{90120000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2007
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-040E-0000-0000000FF1CE}" = Microsoft Office Proof (Hungarian) 2007
"{90120000-001F-041B-0000-0000000FF1CE}" = Microsoft Office Proof (Slovak) 2007
"{90120000-002C-041B-0000-0000000FF1CE}" = Microsoft Office Proofing (Slovak) 2007
"{90120000-0044-041B-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (Slovak) 2007
"{90120000-006E-041B-0000-0000000FF1CE}" = Microsoft Office Shared MUI (Slovak) 2007
"{907B4640-266B-4A21-92FB-CD1A86CD0F63}" = RollerCoaster Tycoon 3 Platinum
"{9158FF30-78D7-40EF-B83E-451AC5334640}" = Adobe Photoshop CS5.1
"{9193490D-5229-4FC4-9BB9-A6D63C09574A}" = High-Definition Video Playback
"{92D58719-BBC1-4CC3-A08B-56C9E884CC2C}" = Microsoft_VC80_CRT_x86
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{A0F34849-D9AB-46DD-B1BE-BB0DB60B1FE8}" = Nero 11 Disc Menus 1
"{A2CDC001-F8B3-4C64-9E74-2E3FA0FAC9D9}" = Nero 11 Video Samples
"{A4F6BE36-4826-45BA-A396-04F265A3B61D}" = Nero 11 Kwik Themes 2
"{A78FE97A-C0C8-49CE-89D0-EDD524A17392}" = PDF Settings CS5
"{A7A0BF2E-31CC-49E3-9913-52C503EB969D}" = Nero Audio Pack 1
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{AB2BBC64-8AC8-4E66-BBF3-E22D5EACEECA}" = Nero BackItUp 11
"{AC76BA86-7AD7-1029-7B44-AA1000000001}" = Adobe Reader X (10.1.4) - Czech
"{ACD6B383-EC5B-4000-A455-CCB308B447FE}" = Nero 11 Kwik Themes 4
"{B160A672-F326-4414-9BB0-A056C61B357C}" = Nero 11 Cliparts
"{B1846721-A8E6-46C7-83B6-0DCF7ADB4267}" = Nero Burning ROM 11
"{B1F69AF3-B5B5-4CA5-ADC5-8A738EB6E574}" = Nero 11 Kwik Themes 1
"{B3DAF54F-DB25-4586-9EF1-96D24BB14088}" = Windows Movie Maker 2.6
"{B45A9A00-4016-AC3-A973-5A8AB70A03DE}_is1" = Assassins Creed - Revelations version 1.5
"{B531E735-8ED5-4270-ACCE-3809086FBD02}_is1" = Batman Arkham City version 1.0
"{B6D38690-755E-4F40-A35A-23F8BC2B86AC}" = Microsoft_VC90_MFCLOC_x86
"{B7B8D9A9-EFCB-4c2f-8117-7A2A32D0BC58}" = Shank 2
"{B95T9A00-40176-4AC6-N973-5A8AB71A09DJ}_is1" = GTA IV + EFLC version 1.5
"{B9B1BA7F-7E07-49DD-A713-5B397A5BB66B}" = Nero Kwik Media Help (CHM)
"{BA499CC0-12C0-4BA5-9007-76844B721158}" = Nero 11 Kwik Themes 3
"{BE814218-3919-4EA3-868A-2F60BC135CB4}" = Nero Kwik Media
"{BEBEE34D-84A2-4EDD-8BEA-96CC54371263}" = Nero Core Components 11
"{BEE64C14-BEF1-4610-8A68-A16EAA47B882}" = Futuremark SystemInfo
"{C28DD992-5B7B-D195-6841-4EC57DF512BD}" = Adobe Story
"{C9935C7E-ED44-427D-B8DF-39E2ACF1AA6A}_is1" = Men of War: Vietnam (Remove Only)
"{CCE210DF-7EEF-4A76-A63C-3EB091FDB992}" = welcome
"{D01CE99A-8802-483C-A79F-298B691EB432}" = Nero RescueAgent 11 Help (CHM)
"{D1A19B02-817E-4296-A45B-07853FD74D57}" = Microsoft_VC80_MFC_x86
"{D2CBEFA4-F2D3-4E97-A171-8BFD6A31A5EC}" = Nero Express 11 Help (CHM)
"{D2FCA41E-AC01-4DCD-B3A7-DC9E32363065}}_is1" = Rapture3D 2.4.8 Game
"{D4D66270-9147-4BDF-9946-FCA2B303AA8F}" = Nero ControlCenter 11 Help (CHM)
"{D8B5C1BB-5951-422D-A4D5-451675614956}_is1" = Men of War: Assault Squad (Remove Only)
"{D92BBB52-82FF-42ED-8A3C-4E062F944AB7}" = Microsoft_VC80_MFCLOC_x86
"{DE491AB9-1D47-4FED-A8F5-4D4325B2EB4B}" = Rayman Origins
"{DF6A13C0-77DF-41FE-BD05-6D5201EB0CE7}_is1" = Auslogics Disk Defrag
"{E10AAE4A-98B8-420A-BD93-E0520C23D624}" = Nero Express 11
"{E51BC4B0-EA5E-49CC-AF3B-93B5C627EC22}" = Nero 11 Effects Basic
"{E6F012B0-E930-11E0-A67A-F04DA23A5C58}" = Vegas Pro 11.0
"{E9627240-E930-11E0-8690-F04DA23A5C58}" = MSVCRT Redists
"{EB8DED20-A887-4A9C-BB5A-F3E7523DFB44}" = Nero WaveEditor 11 Help (CHM)
"{EE7257A2-39A2-4D2F-9DAC-F9F25B8AE1D8}" = Skype™ 5.10
"{EFE1AB94-5466-4B6E-BE31-FF4C115FD25D}" = Max Payne 2
"{F02C06B1-A687-4DD8-8F51-A02AC53D8785}_is1" = 3D Xtreme Mega Rides - Devil Rock 1.0
"{F09EF8F2-0976-42C1-8D9D-8DF78337C6E3}" = Sony PC Companion 2.10.094
"{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
"{F11ADC64-C89E-47F4-A0B3-3665FF859397}" = World in Conflict
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F2508213-9989-4E85-A078-72BE483917EF}" = Microsoft Games for Windows - LIVE Redistributable
"{F3743A2C-5D5F-4456-8F98-5DF36A954C50}" = Nero 11 Image Samples
"{F3E9C243-122E-4D6B-ACC1-E1FEC02F6CA1}" = Command and ConquerTM Generals Zero Hour
"{F3F5B440-0ACB-4F72-842D-E8DEC4236FFC}_is1" = Men of War: Condemned Heroes (Remove Only)
"{F49EF443-B2BD-4F10-8A46-87AFCDB90EDD}" = Nero 11 Disc Menus Basic
"{F69FB940-5031-4FE8-AFAD-085802D0BF63}" = Nero Recode 11
"{FAC3C37E-EDAB-4F3A-A173-A7C70CC88F09}" = Nero Video 11 Help (CHM)
"{FF44BCE5-5A18-4051-85F0-BC172D7B4695}" = Nero CoverDesigner 11
"Adobe AIR" = Adobe AIR
"Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin
"aerofly FS_is1" = aerofly FS
"Afterburner" = MSI Afterburner 1.6.0
"AIDA64 Extreme Edition_is1" = AIDA64 Extreme Edition v1.80
"Alan Wake_is1" = Alan Wake
"All Zombies Must Die!_is1" = All Zombies Must Die!
"Any Video Converter_is1" = Any Video Converter 3.3.9
"ASIO4ALL" = ASIO4ALL
"AviSynth" = AviSynth 2.5
"Battle City (VirtuaNES 0.97 emulation)" = Battle City (VirtuaNES 0.97 emulation)
"CameraWindowDC8" = Canon Utilities CameraWindow DC 8
"CameraWindowLauncher" = Canon Utilities CameraWindow Launcher
"Canon MP250 series User Registration" = Canon MP250 series User Registration
"CanonMyPrinter" = Canon Utilities My Printer
"CanonSolutionMenu" = Canon Utilities Solution Menu
"Cities XL 2012" = Cities XL 2012
"CloneCD" = CloneCD
"com.adobe.AdobeStory.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1" = Adobe Story
"Contra (VirtuaNES 0.97 emulation)" = Contra (VirtuaNES 0.97 emulation)
"DAEMON Tools Lite" = DAEMON Tools Lite
"Easy-PhotoPrint EX" = Canon Utilities Easy-PhotoPrint EX
"Easy-WebPrint EX" = Canon Easy-WebPrint EX
"Elcomm" = Elcomm
"ffdshow_is1" = ffdshow v1.2.4453 [2012-05-21]
"FL Studio 10" = FL Studio 10
"Flatout 3 Chaos Destruction_is1" = Flatout 3 Chaos Destruction
"Fraps" = Fraps
"Guard.Mail.ru" = Guard.ICQ
"HD Tune Pro_is1" = HD Tune Pro 4.01
"chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1" = Adobe Community Help
"IL Download Manager" = IL Download Manager
"Inkscape" = Inkscape 0.48.3.1
"Insanely Twisted Shadow Planet_is1" = skidrow
"InstallShield_{06F80017-8F98-4C94-B868-52358569FC32}" = Command & Conquer Generals
"InstallShield_{5442DAB8-7177-49E1-8B22-09A049EA5996}" = Renesas Electronics USB 3.0 Host Controller Driver
"InstallShield_{F3E9C243-122E-4D6B-ACC1-E1FEC02F6CA1}" = Command and ConquerTM Generals Zero Hour
"Iron Front" = Iron Front Uninstall
"KLiteCodecPack_is1" = K-Lite Codec Pack 8.0.0 (Full)
"Malwarebytes' Anti-Malware_is1" = Malwarebytes Anti-Malware verzia 1.65.0.1400
"MozBackup" = MozBackup 1.5.1
"Mozilla Firefox 15.0 (x86 sk)" = Mozilla Firefox 15.0 (x86 sk)
"MozillaMaintenanceService" = Mozilla Maintenance Service
"MP Navigator EX 3.0" = Canon MP Navigator EX 3.0
"MyCamera" = Canon Utilities MyCamera
"NoLimits Coasters full" = NoLimits Coasters 1.7 (remove only)
"NoLimits Fairground_is1" = NoLimits Fairground 1.0
"NVIDIAStereo" = NVIDIA Stereoscopic 3D Driver
"OCCT" = OCCT 4.0.0
"Oil Rush_is1" = Oil Rush version 1.00
"OpenAL" = OpenAL
"Opera 12.02.1578" = Opera 12.02
"Outerra Anteworld" = Outerra - Anteworld - Outerra Anteworld Demo
"PROPLUS" = Microsoft Office Professional Plus 2007
"PunkBusterSvc" = PunkBuster Services
"Rage_is1" = Rage
"Revo Uninstaller" = Revo Uninstaller 1.94
"RivaTuner" = RivaTuner v2.24 MSI Master Overclocking Arena 2009 edition
"Rockstar Games Social Club" = Rockstar Games Social Club
"Sniper Elite V2_is1" = Sniper Elite V2
"SpeedFan" = SpeedFan (remove only)
"StarCraft II" = StarCraft II
"Super Mario Bros (VirtuaNES 0.97 emulation)" = Super Mario Bros (VirtuaNES 0.97 emulation)
"Super-Charger_is1" = Super-Charger
"TC UP" = Total Commander Ultima Prime 5.6.0.0
"TeamSpeak 3 Client" = TeamSpeak 3 Client
"The Darkness II_is1" = The Darkness II
"Toy Soldiers_is1" = Toy Soldiers
"TrackMania 2_is1" = TrackMania 2
"Update Engine" = Sony Ericsson Update Engine
"uTorrent" = µTorrent
"VLC media player" = VLC media player 2.0.2
"WinRAR archiver" = WinRAR archiver
"World of Warcraft" = World of Warcraft
"Worms Reloaded_is1" = Worms Reloaded
"Xfire" = Xfire (remove only)
"Ynor9's Control Room CSO Setup_is1" = Ynor9's Control Room 1.0.0
"ZoomBrowser EX" = Canon Utilities ZoomBrowser EX
"ZoomBrowser EX Memory Card Utility" = Canon ZoomBrowser EX Memory Card Utility
========== HKEY_CURRENT_USER Uninstall List ==========
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Mozilla Firefox 15.0.1 (x86 sk)" = Mozilla Firefox 15.0.1 (x86 sk)
"ShockWave 1.1" = ShockWave 1.1
"Tropico 4" = Tropico 4 1.00
"Tunnelers" = Tunnelers
========== Last 20 Event Log Errors ==========
[ Application Events ]
Error - 24. 9. 2012 2:01:01 | Computer Name = Martin-PC | Source = Microsoft-Windows-LoadPerf | ID = 3006
Description = Unable to read the performance counter strings defined for the 01B
language ID. The first DWORD in the Data section contains the Win32 error code.
Error - 24. 9. 2012 3:40:26 | Computer Name = Martin-PC | Source = Application Hang | ID = 1002
Description = The program uTorrent.exe version 3.1.3.27207 stopped interacting with
Windows and was closed. To see if more information about the problem is available,
check the problem history in the Action Center control panel. Process ID: 130c Start
Time: 01cd9a264edb80be Termination Time: 2668 Application Path: C:\Program Files
(x86)\uTorrent\uTorrent.exe Report Id: 17cf0624-061b-11e2-9880-8c89a554535d
Error - 24. 9. 2012 7:08:20 | Computer Name = Martin-PC | Source = Microsoft-Windows-LoadPerf | ID = 3006
Description = Unable to read the performance counter strings defined for the 01B
language ID. The first DWORD in the Data section contains the Win32 error code.
Error - 24. 9. 2012 7:08:20 | Computer Name = Martin-PC | Source = Microsoft-Windows-LoadPerf | ID = 3006
Description = Unable to read the performance counter strings defined for the 01B
language ID. The first DWORD in the Data section contains the Win32 error code.
Error - 24. 9. 2012 7:40:44 | Computer Name = Martin-PC | Source = Microsoft-Windows-LoadPerf | ID = 3006
Description = Unable to read the performance counter strings defined for the 01B
language ID. The first DWORD in the Data section contains the Win32 error code.
Error - 24. 9. 2012 7:40:44 | Computer Name = Martin-PC | Source = Microsoft-Windows-LoadPerf | ID = 3006
Description = Unable to read the performance counter strings defined for the 01B
language ID. The first DWORD in the Data section contains the Win32 error code.
Error - 25. 9. 2012 1:37:01 | Computer Name = Martin-PC | Source = Microsoft-Windows-LoadPerf | ID = 3006
Description = Unable to read the performance counter strings defined for the 01B
language ID. The first DWORD in the Data section contains the Win32 error code.
Error - 25. 9. 2012 1:37:01 | Computer Name = Martin-PC | Source = Microsoft-Windows-LoadPerf | ID = 3006
Description = Unable to read the performance counter strings defined for the 01B
language ID. The first DWORD in the Data section contains the Win32 error code.
Error - 25. 9. 2012 2:01:08 | Computer Name = Martin-PC | Source = Microsoft-Windows-LoadPerf | ID = 3006
Description = Unable to read the performance counter strings defined for the 01B
language ID. The first DWORD in the Data section contains the Win32 error code.
Error - 25. 9. 2012 2:01:08 | Computer Name = Martin-PC | Source = Microsoft-Windows-LoadPerf | ID = 3006
Description = Unable to read the performance counter strings defined for the 01B
language ID. The first DWORD in the Data section contains the Win32 error code.
[ System Events ]
Error - 11. 6. 2012 11:32:10 | Computer Name = Martin-PC | Source = Disk | ID = 262155
Description = The driver detected a controller error on \Device\Harddisk3\DR9.
Error - 11. 6. 2012 11:32:11 | Computer Name = Martin-PC | Source = Disk | ID = 262155
Description = The driver detected a controller error on \Device\Harddisk3\DR9.
Error - 11. 6. 2012 11:32:11 | Computer Name = Martin-PC | Source = Disk | ID = 262155
Description = The driver detected a controller error on \Device\Harddisk3\DR9.
Error - 11. 6. 2012 11:32:12 | Computer Name = Martin-PC | Source = Disk | ID = 262155
Description = The driver detected a controller error on \Device\Harddisk3\DR9.
Error - 12. 6. 2012 2:05:25 | Computer Name = Martin-PC | Source = Application Popup | ID = 262200
Description = Driver PCI returned invalid ID for a child device (FFFFFFFFFFFFFFFF00).
Error - 13. 6. 2012 2:22:12 | Computer Name = Martin-PC | Source = Application Popup | ID = 262200
Description = Driver PCI returned invalid ID for a child device (FFFFFFFFFFFFFFFF00).
Error - 14. 6. 2012 2:01:56 | Computer Name = Martin-PC | Source = Application Popup | ID = 262200
Description = Driver PCI returned invalid ID for a child device (FFFFFFFFFFFFFFFF00).
Error - 14. 6. 2012 10:36:29 | Computer Name = Martin-PC | Source = Application Popup | ID = 262200
Description = Driver PCI returned invalid ID for a child device (FFFFFFFFFFFFFFFF00).
Error - 15. 6. 2012 2:17:37 | Computer Name = Martin-PC | Source = Application Popup | ID = 262200
Description = Driver PCI returned invalid ID for a child device (FFFFFFFFFFFFFFFF00).
Error - 16. 6. 2012 3:43:26 | Computer Name = Martin-PC | Source = Application Popup | ID = 262200
Description = Driver PCI returned invalid ID for a child device (FFFFFFFFFFFFFFFF00).
< End of report >
OTL Extras logfile created on: 25. 9. 2012 9:59:05 - Run 1
OTL by OldTimer - Version 3.2.68.0 Folder = C:\Users\Martin\Desktop
64bit- Ultimate Edition (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 0000041b | Country: Slovenská republika | Language: SKY | Date Format: d. M. yyyy
7,97 Gb Total Physical Memory | 5,95 Gb Available Physical Memory | 74,59% Memory free
15,94 Gb Paging File | 13,80 Gb Available in Paging File | 86,59% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 931,41 Gb Total Space | 191,11 Gb Free Space | 20,52% Space Free | Partition Type: NTFS
Drive E: | 7,71 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: UDF
Computer Name: MARTIN-PC | User Name: Martin | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Extra Registry (SafeList) ==========
========== File Associations ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.html[@ = Opera.HTML] -- C:\Program Files (x86)\Opera\Opera.exe (Opera Software)
.url[@ = InternetShortcut] -- C:\Windows\SysNative\rundll32.exe (Microsoft Corporation)
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation)
.html [@ = Opera.HTML] -- C:\Program Files (x86)\Opera\Opera.exe (Opera Software)
[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation)
========== Shell Spawning ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
http [open] -- "C:\Program Files (x86)\Opera\Opera.exe" "%1" (Opera Software)
https [open] -- "C:\Program Files (x86)\Opera\Opera.exe" "%1" (Opera Software)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [Bridge] -- C:\Program Files (x86)\Adobe\Adobe Bridge CS5.1\Bridge.exe "%L" (Adobe Systems, Inc.)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
http [open] -- "C:\Program Files (x86)\Opera\Opera.exe" "%1" (Opera Software)
https [open] -- "C:\Program Files (x86)\Opera\Opera.exe" "%1" (Opera Software)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [Bridge] -- C:\Program Files (x86)\Adobe\Adobe Bridge CS5.1\Bridge.exe "%L" (Adobe Systems, Inc.)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
========== Security Center Settings ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = 28 4D B2 76 41 04 CA 01 [binary data]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
========== Firewall Settings ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
========== Authorized Applications List ==========
========== Vista Active Open Ports Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{01C642B3-EE16-4B01-AB0E-D46209BFAC8B}" = lport=6004 | protocol=17 | dir=in | app=c:\program files (x86)\microsoft office\office12\outlook.exe |
"{03F7336B-CAEE-4BBC-8CC1-B0A9AF586022}" = rport=139 | protocol=6 | dir=out | app=system |
"{03F8D0B0-E7CF-488F-A115-FC3C72BCA328}" = lport=138 | protocol=17 | dir=in | app=system |
"{0B9749DC-B5EB-4262-8FDE-052C860FEA79}" = rport=137 | protocol=17 | dir=out | app=system |
"{124097AD-02A1-48CA-8D9E-C1C413F43AFB}" = rport=445 | protocol=6 | dir=out | app=system |
"{2079DF73-A50F-4630-BF38-AE5A700770F7}" = rport=138 | protocol=17 | dir=out | app=system |
"{25D717F7-D81D-4134-9731-6D59CD52D2C5}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{716E2E70-FBCA-4AC6-BEDA-39B9C000584A}" = lport=2177 | protocol=17 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{7F04D270-85FB-454F-849D-63DB74017CD8}" = lport=2869 | protocol=6 | dir=in | app=system |
"{88BD1BC1-7A74-4ED9-A379-9C691395E45C}" = lport=2177 | protocol=6 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{905FBBC0-393B-4399-96EA-5620E9CA778E}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
"{9265D693-33EA-47EF-8D22-54367E352E97}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{BAC1C198-4A6E-4BD7-8E8F-62DE6DCF54C4}" = lport=445 | protocol=6 | dir=in | app=system |
"{C42F8AE4-CAD9-4311-86F0-09B0F6F726CF}" = rport=10243 | protocol=6 | dir=out | app=system |
"{C827F928-1FF3-4C7E-B253-AEC2D586434C}" = lport=10243 | protocol=6 | dir=in | app=system |
"{D35015AE-525C-4740-99E5-B658861459B4}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{D8FE3B74-E7E3-4619-A969-C83584AFC70A}" = rport=2177 | protocol=17 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{DB6ACF2F-1864-489B-B36F-4F686EFFC711}" = rport=2177 | protocol=6 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{DCDB707C-6FBD-4260-927E-0192AB8D18C0}" = lport=137 | protocol=17 | dir=in | app=system |
"{DE9806FA-F9FA-4607-AFF3-DBAEEEB9296D}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{ED4C716D-DC22-45C3-A6FF-F7F301E71D7F}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{ED977ED9-2750-4F2E-BC29-DBBFE3BAAD19}" = lport=139 | protocol=6 | dir=in | app=system |
"{F3D4B7BA-E56D-4EA7-B8EA-66B88AEB9DA2}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{FBDA7C3C-CCB5-418A-94C8-2D6EDF0F2D61}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 |
========== Vista Active Application Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{04FA7A73-E9EE-4971-BC78-A42AE87B4BD7}" = dir=out | app=%systemdrive%\games\maxpayne3\playmaxpayne3.exe |
"{05DF0710-986D-4E9F-9FB7-C59FF9D22DD7}" = protocol=6 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{08D3F5CC-82AF-4A42-A33B-A0CB394D9DCB}" = protocol=6 | dir=in | app=c:\program files (x86)\pinnacle\studio 15\programs\umi.exe |
"{0A413326-532C-46EC-B618-92ACAA2C3B1F}" = protocol=6 | dir=in | app=c:\games\ street fighter vs tekken\sftk.exe |
"{0A74E19E-3177-4161-B4E7-4E0F5498D6A7}" = dir=in | app=c:\games\port royal 3\portroyale3.exe |
"{0A8E169E-4233-40CD-AD0D-EECB39CB2F4B}" = protocol=6 | dir=in | app=c:\games\ rayman origins\gu.exe |
"{0BDA3A3B-97F0-47CB-8691-D97E7BA96B81}" = protocol=6 | dir=in | app=c:\windows\syswow64\pnkbstrb.exe |
"{1580FFAE-BDCC-47AC-B52E-383CCF60407D}" = protocol=6 | dir=in | app=c:\games\world in conflicts\wic_online.exe |
"{18857BBE-D8A6-444D-9540-8C1D4D9C39CC}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{1D75ED90-054C-451E-AA15-57E28A72AC9A}" = protocol=17 | dir=in | app=c:\program files (x86)\opera\pluginwrapper\opera_plugin_wrapper.exe |
"{1E4DD236-818E-4A67-A3D5-9FFCD5284D16}" = protocol=6 | dir=in | app=c:\program files (x86)\pinnacle\studio 15\programs\rm.exe |
"{1F7E3EF6-850E-47FC-AE58-CDC468D8F6C2}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.524\agent.exe |
"{207EA189-6732-45EE-8BF6-A90C1D1BE38C}" = protocol=17 | dir=in | app=c:\games\world of warcraft\wow-x.x.x.x-4.0.0.12911-eu-downloader.exe |
"{236F0A98-0945-4752-A42F-ECC70C785C3F}" = protocol=17 | dir=in | app=c:\games\world of warcraft\launcher.exe |
"{25A6E1C1-691D-43C0-A783-2C3BE514ABF8}" = protocol=17 | dir=in | app=c:\windows\syswow64\pnkbstrb.exe |
"{28316458-E6DE-4869-8D49-65E0F71DBFE0}" = protocol=6 | dir=in | app=c:\program files (x86)\opera\opera.exe |
"{29920F79-E631-47FA-A65E-84781E37F4B4}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.954\agent.exe |
"{2A895DA9-5A14-4E4F-8AB4-01554215D130}" = protocol=17 | dir=in | app=c:\games\world in conflicts\wic_ds.exe |
"{2BB8DE4A-32A2-4F2F-B561-615BFCA83D22}" = protocol=6 | dir=in | app=c:\games\shank 2\bin\shank2.exe |
"{2D5C7961-2669-4A01-B953-656168EF62C2}" = protocol=17 | dir=in | app=c:\games\world in conflicts\wic.exe |
"{2F04FAA4-C7F2-48F4-AAED-751B953228F7}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{32219961-3F5B-4F42-971B-16F2374E6EDA}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 |
"{35B3C755-6C5F-4CF9-8707-D5FA7D175118}" = dir=out | app=%systemdrive%\games\maxpayne3\maxpayne3.exe |
"{361CC872-3C3B-44BA-B189-5E10C1A0CD49}" = protocol=6 | dir=in | app=c:\games\men of war. condemned heroes\condemned heroes.exe |
"{3D267DDA-5D12-4FE4-9E01-0F87094CCD71}" = protocol=6 | dir=in | app=c:\games\world of warcraft\launcher.patch.exe |
"{4013DACC-02C2-4D2F-87CA-12D5EFAD727F}" = protocol=6 | dir=in | app=c:\games\world in conflicts\wic_ds.exe |
"{406F8AD2-F047-4354-8FF1-F70DDD842F24}" = protocol=17 | dir=in | app=c:\program files (x86)\icq7.7\icq.exe |
"{4259C287-38BC-48A8-9A90-B091A98F6869}" = protocol=6 | dir=in | app=c:\program files (x86)\icq7.7\icq.exe |
"{42E09A56-8C5E-44CD-823A-79416D8C4BCA}" = protocol=17 | dir=in | app=c:\games\world of warcraft\launcher.patch.exe |
"{4342A2D4-07B3-4EEB-934D-FC7ACDBC94BF}" = protocol=17 | dir=in | app=c:\users\public\documents\blizzard entertainment\world of warcraft\wow-x.x.x.x-4.0.0.12911-eu-downloader.exe |
"{4418430C-1435-4D05-94C7-26DF50D0DB0E}" = protocol=6 | dir=in | app=c:\games\crysis\bin32\crysisdedicatedserver.exe |
"{4F34754A-73E5-4718-A85D-4B1A6C880B4C}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{4F412C2B-E827-42E5-9CB4-311BA0894951}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{4FD00121-7558-4CD5-97CF-D2B7C0EB8012}" = protocol=17 | dir=in | app=c:\windows\syswow64\pnkbstra.exe |
"{51A73A57-50AE-43C0-B5AE-68950A36B989}" = protocol=6 | dir=in | app=c:\games\crysis\bin32\crysis.exe |
"{5A333188-8ABD-401D-844B-39D45070F4B8}" = protocol=6 | dir=in | app=c:\games\diablo iii\diablo iii.exe |
"{5ECA0764-54E9-45B6-ABDF-703BB10E9618}" = protocol=6 | dir=in | app=c:\games\ rayman origins\rayman origins.exe |
"{61999BAB-B75F-4AC0-ABD5-5E017C555CD8}" = protocol=6 | dir=in | app=c:\program files (x86)\pinnacle\studio 15\programs\studio.exe |
"{645C58B4-39A5-4550-9111-4FD71DA359BD}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{65AABF50-05CD-40F6-B30F-1017E10F166C}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{66472D02-1940-4FD1-8351-D2FDAF225BC7}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{66FD41D6-C987-4369-8018-DAF5BE538924}" = protocol=6 | dir=in | app=c:\games\crysis\bin64\crysis.exe |
"{6A0B2FD1-D92D-4C96-BA73-CCDA07675725}" = protocol=6 | dir=in | app=c:\games\world in conflicts\wic.exe |
"{6BFCB841-1B8E-4C72-AA07-02F84BAF9B03}" = protocol=6 | dir=in | app=c:\program files (x86)\sony ericsson\update engine\sony ericsson update engine.exe |
"{6D223963-72B5-405C-800B-656CAA8EE795}" = protocol=17 | dir=in | app=c:\program files (x86)\pinnacle\studio 15\programs\studio.exe |
"{6F744394-B004-4EE5-8810-004417A7BF08}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{6FFE3A82-1231-4E4B-BC58-530AA8B7BF10}" = protocol=17 | dir=in | app=c:\program files (x86)\pinnacle\studio 15\programs\umi.exe |
"{737CB6B1-3A64-4F3A-A5B0-DF1270D1D2D8}" = protocol=17 | dir=in | app=c:\games\crysis\bin32\crysis.exe |
"{7C877D52-01F1-4544-97FB-98A6CB211556}" = protocol=17 | dir=in | app=c:\games\crysis\bin64\crysis.exe |
"{7D76A097-4A10-4D08-9185-464603AC7BF4}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.954\agent.exe |
"{7E1CC105-99C5-45D1-8056-1313B72A5694}" = protocol=17 | dir=in | app=c:\games\crysis\bin64\crysisdedicatedserver.exe |
"{87A832E1-6974-4FB1-A243-893591AB5DC4}" = protocol=6 | dir=in | app=c:\program files (x86)\opera\pluginwrapper\opera_plugin_wrapper.exe |
"{8A51D2AB-332F-4A6B-8290-38F2D1DC09C0}" = protocol=6 | dir=out | app=system |
"{8F922705-9F67-4968-89D1-88E9F6B12412}" = protocol=17 | dir=in | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{924D314B-0CA1-400F-BE2E-F9C9F84FA593}" = protocol=6 | dir=in | app=c:\windows\syswow64\pnkbstra.exe |
"{96ADF980-96B6-4844-AB80-E1C82978F576}" = protocol=17 | dir=in | app=c:\games\world in conflicts\wic_online.exe |
"{9C44A726-AEA8-46F7-BE55-AE5BD7FA09E9}" = protocol=6 | dir=in | app=c:\games\starcraft ii\starcraft ii.exe |
"{9CD71072-07C7-4E10-B0AA-3F55BF294838}" = protocol=6 | dir=in | app=c:\games\maxpayne3\playmaxpayne3.exe |
"{A314B617-9B10-45F5-97E4-68388AB9BA85}" = protocol=17 | dir=in | app=c:\games\starcraft ii\starcraft ii.exe |
"{A39E2E1A-B9AA-4456-885A-B867CCD6FDB7}" = protocol=6 | dir=in | app=c:\program files (x86)\icq7.7\icq.exe |
"{A42CC9A1-7309-4506-96DF-DC832AEB0881}" = protocol=17 | dir=in | app=c:\games\men of war. condemned heroes\condemned heroes.exe |
"{A8C7BF54-FD08-4B4C-B64B-4D11AE29DE0B}" = protocol=17 | dir=in | app=c:\program files (x86)\opera\opera.exe |
"{AC214A9F-FAEB-4E83-8C9E-61CCD219A9D9}" = protocol=17 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{ACBB75EF-FC8F-4F2A-B8E6-34A6B7B9B29F}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{B316E2B4-225D-4388-8783-85B3F246FF73}" = protocol=17 | dir=in | app=c:\games\shank 2\bin\shank2.exe |
"{B41A4569-FD2F-4677-8999-8984BDC2922C}" = protocol=17 | dir=in | app=c:\games\crysis\bin32\crysisdedicatedserver.exe |
"{BA2CA7AD-0C6D-40C8-9F10-D8453BAB2B85}" = protocol=6 | dir=in | app=c:\games\crysis\bin64\crysisdedicatedserver.exe |
"{BB84CB5A-6757-488A-83E8-8A94A5A16665}" = protocol=17 | dir=in | app=c:\program files (x86)\pinnacle\studio 15\programs\rm.exe |
"{BBE6F6C7-3BF6-4CDA-82AB-FCC322137CD9}" = protocol=6 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{C13C3ED4-9B90-40B9-839E-8B7B19404DFC}" = protocol=6 | dir=in | app=c:\games\world of warcraft\launcher.exe |
"{C265DD79-7153-4174-BA19-5D15B29CE75A}" = protocol=6 | dir=in | app=c:\games\world of warcraft\wow-x.x.x.x-4.0.0.12911-eu-downloader.exe |
"{C6B9F512-5A83-4FF2-9802-0072B6FCF3D1}" = protocol=17 | dir=in | app=c:\games\ rayman origins\gu.exe |
"{CA765C58-E688-4E09-8FD9-0019160DB731}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 |
"{CF41A7EC-E89E-4665-AB0F-D0878E23B47E}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 |
"{D05F2F5A-B733-4CD9-B4D1-833511F82D75}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.524\agent.exe |
"{D8EC4F4B-277E-4F19-8299-9585E0D60987}" = protocol=17 | dir=in | app=c:\program files (x86)\utorrent\utorrent.exe |
"{D930B328-1074-4AA4-8A18-D27CA74538F5}" = protocol=6 | dir=in | app=c:\users\public\documents\blizzard entertainment\world of warcraft\wow-x.x.x.x-4.0.0.12911-eu-downloader.exe |
"{DD71937D-24BF-4993-9B58-E1ECE57D8C87}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{DE1B84F7-E779-4D7E-A6C5-A69D1D373599}" = protocol=6 | dir=in | app=c:\program files (x86)\utorrent\utorrent.exe |
"{E03B64BD-D4A8-4279-B292-05A1AC4DEF54}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{E11E550E-7D89-4BEE-A31A-F5D434241AD3}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 |
"{E5E8C88A-DB99-46DB-B5DC-F045BF433DDD}" = protocol=17 | dir=in | app=c:\games\ street fighter vs tekken\sftk.exe |
"{EA894008-2039-4035-BCA4-7B29FB63B16C}" = protocol=17 | dir=in | app=c:\games\ rayman origins\rayman origins.exe |
"{EDCE3F94-8938-4CB0-84FE-51789DD3DC0C}" = protocol=17 | dir=in | app=c:\games\maxpayne3\playmaxpayne3.exe |
"{F0F3E5B4-63A0-4271-9CED-3C44F3FC5819}" = protocol=17 | dir=in | app=c:\games\diablo iii\diablo iii.exe |
"{F42E40BF-20A8-44D6-9F13-68EF60B6029F}" = protocol=17 | dir=in | app=c:\program files (x86)\icq7.7\icq.exe |
"{F77D3608-1AAC-4AF0-98CB-CCF2B256FCC6}" = protocol=17 | dir=in | app=c:\program files (x86)\sony ericsson\update engine\sony ericsson update engine.exe |
"TCP Query User{1A99BA38-83A5-47C4-A652-F9A4DBFD0601}C:\program files (x86)\black_box\gta iv + eflc\eflc\eflc.exe" = protocol=6 | dir=in | app=c:\program files (x86)\black_box\gta iv + eflc\eflc\eflc.exe |
"TCP Query User{3B7FCF14-E1A4-44F7-AA8F-156E9FEB3C68}C:\games\world_of_tanks\wotlauncher.exe" = protocol=6 | dir=in | app=c:\games\world_of_tanks\wotlauncher.exe |
"TCP Query User{3DAF409C-7CE9-419F-90EA-4B8FAEDCA0A3}C:\games\starcraft ii\versions\base15405\sc2.exe" = protocol=6 | dir=in | app=c:\games\starcraft ii\versions\base15405\sc2.exe |
"TCP Query User{3FE36E82-9DC7-45F5-8DE9-DDBCDDB7BD3C}C:\games\batman arkham city\binaries\win32\batmanac.exe" = protocol=6 | dir=in | app=c:\games\batman arkham city\binaries\win32\batmanac.exe |
"TCP Query User{40204F1F-60B0-4F36-9ECD-509CFE4E988E}C:\games\nfs the run\need for speed the run\need for speed the run.exe" = protocol=6 | dir=in | app=c:\games\nfs the run\need for speed the run\need for speed the run.exe |
"TCP Query User{5337799C-953B-470C-9F22-01BF3404F687}C:\games\world of warcraft\temp\wow-4.2.1.2736-enus-tools-downloader.exe" = protocol=6 | dir=in | app=c:\games\world of warcraft\temp\wow-4.2.1.2736-enus-tools-downloader.exe |
"TCP Query User{5619FF9D-335F-41E9-A9BC-756474D4DF05}C:\games\dead island\deadislandgame.exe" = protocol=6 | dir=in | app=c:\games\dead island\deadislandgame.exe |
"TCP Query User{64795364-4235-4D6F-9DA0-F321B9E380E4}C:\users\martin\downloads\wotlk-gben.exe" = protocol=6 | dir=in | app=c:\users\martin\downloads\wotlk-gben.exe |
"TCP Query User{656ED980-E656-4396-87FE-49B4D1E2F7DD}C:\program files (x86)\xfire\xfire.exe" = protocol=6 | dir=in | app=c:\program files (x86)\xfire\xfire.exe |
"TCP Query User{6679C243-C814-4951-939A-CC0C3F2C946D}C:\games\world_of_tanks\worldoftanks.exe" = protocol=6 | dir=in | app=c:\games\world_of_tanks\worldoftanks.exe |
"TCP Query User{685CF804-93B7-4B8C-9F15-40DE10D6D558}C:\games\trackmania 2\maniaplanet.exe" = protocol=6 | dir=in | app=c:\games\trackmania 2\maniaplanet.exe |
"TCP Query User{736603AF-EF3F-4244-94FE-72D68B28359D}C:\program files (x86)\doublesix games\all zombies must die!\binaries\win32\shippingpc-bzb2game.exe" = protocol=6 | dir=in | app=c:\program files (x86)\doublesix games\all zombies must die!\binaries\win32\shippingpc-bzb2game.exe |
"TCP Query User{99B4CE9F-94E6-4DB7-ADDD-B6C5C6367C7F}C:\program files (x86)\black_box\gta iv + eflc\grand theft auto iv\gtaiv.exe" = protocol=6 | dir=in | app=c:\program files (x86)\black_box\gta iv + eflc\grand theft auto iv\gtaiv.exe |
"TCP Query User{9E9A1E49-E485-454B-A608-0ACD49DCE0E3}C:\assassins creed - revelations\acrsp.exe" = protocol=6 | dir=in | app=c:\assassins creed - revelations\acrsp.exe |
"TCP Query User{D36FB8C2-10CA-41F7-BF91-A4EAF16B32BD}C:\games\maxpayne3\maxpayne3.exe" = protocol=6 | dir=in | app=c:\games\maxpayne3\maxpayne3.exe |
"TCP Query User{ECF93737-6F75-4E0F-BC5C-B4FE10D79DCE}C:\program files (x86)\outerra\anteworld\outerra.exe" = protocol=6 | dir=in | app=c:\program files (x86)\outerra\anteworld\outerra.exe |
"UDP Query User{08B45041-6C72-4204-BDBF-0B85B1B038F8}C:\games\dead island\deadislandgame.exe" = protocol=17 | dir=in | app=c:\games\dead island\deadislandgame.exe |
"UDP Query User{116F4887-98ED-4931-BAAB-113DD68DA93A}C:\program files (x86)\xfire\xfire.exe" = protocol=17 | dir=in | app=c:\program files (x86)\xfire\xfire.exe |
"UDP Query User{16F169D3-339A-4F83-8D10-C895864F83E6}C:\games\world_of_tanks\worldoftanks.exe" = protocol=17 | dir=in | app=c:\games\world_of_tanks\worldoftanks.exe |
"UDP Query User{2E05D9DE-14D2-49A7-A87C-9BB298C7D5F5}C:\program files (x86)\black_box\gta iv + eflc\grand theft auto iv\gtaiv.exe" = protocol=17 | dir=in | app=c:\program files (x86)\black_box\gta iv + eflc\grand theft auto iv\gtaiv.exe |
"UDP Query User{56F22FE4-60A5-457F-80D9-EDDFDEA5D64B}C:\assassins creed - revelations\acrsp.exe" = protocol=17 | dir=in | app=c:\assassins creed - revelations\acrsp.exe |
"UDP Query User{659E1740-B47D-4E10-90D6-882F7E36589F}C:\games\world_of_tanks\wotlauncher.exe" = protocol=17 | dir=in | app=c:\games\world_of_tanks\wotlauncher.exe |
"UDP Query User{6C1C5065-6282-46F4-ADAF-2BF92B0F60E6}C:\games\nfs the run\need for speed the run\need for speed the run.exe" = protocol=17 | dir=in | app=c:\games\nfs the run\need for speed the run\need for speed the run.exe |
"UDP Query User{7A59B66A-A0FB-48DF-99C0-53CBD3BFA55B}C:\program files (x86)\outerra\anteworld\outerra.exe" = protocol=17 | dir=in | app=c:\program files (x86)\outerra\anteworld\outerra.exe |
"UDP Query User{AD7834BA-E62B-4FAA-B84B-7D1F9163CCD0}C:\users\martin\downloads\wotlk-gben.exe" = protocol=17 | dir=in | app=c:\users\martin\downloads\wotlk-gben.exe |
"UDP Query User{B0BBA82D-D578-4EC9-8454-9E91816DB773}C:\games\batman arkham city\binaries\win32\batmanac.exe" = protocol=17 | dir=in | app=c:\games\batman arkham city\binaries\win32\batmanac.exe |
"UDP Query User{B49F5A1C-2889-45DE-9450-35FCB2D180CB}C:\games\starcraft ii\versions\base15405\sc2.exe" = protocol=17 | dir=in | app=c:\games\starcraft ii\versions\base15405\sc2.exe |
"UDP Query User{C40976C6-13AC-405F-8654-D880372B70AB}C:\games\maxpayne3\maxpayne3.exe" = protocol=17 | dir=in | app=c:\games\maxpayne3\maxpayne3.exe |
"UDP Query User{C671A402-FB50-467C-A63A-AB7840109061}C:\program files (x86)\doublesix games\all zombies must die!\binaries\win32\shippingpc-bzb2game.exe" = protocol=17 | dir=in | app=c:\program files (x86)\doublesix games\all zombies must die!\binaries\win32\shippingpc-bzb2game.exe |
"UDP Query User{C9B803AE-2C06-49BC-B766-3150EFD6C5D7}C:\program files (x86)\black_box\gta iv + eflc\eflc\eflc.exe" = protocol=17 | dir=in | app=c:\program files (x86)\black_box\gta iv + eflc\eflc\eflc.exe |
"UDP Query User{CD7179EC-080A-4707-9542-4ADA5FCDB58A}C:\games\world of warcraft\temp\wow-4.2.1.2736-enus-tools-downloader.exe" = protocol=17 | dir=in | app=c:\games\world of warcraft\temp\wow-4.2.1.2736-enus-tools-downloader.exe |
"UDP Query User{F551ABEA-5678-4698-AE96-4E1F72890A76}C:\games\trackmania 2\maniaplanet.exe" = protocol=17 | dir=in | app=c:\games\trackmania 2\maniaplanet.exe |
========== HKEY_LOCAL_MACHINE Uninstall List ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{071c9b48-7c32-4621-a0ac-3f809523288f}" = Microsoft Visual C++ 2005 Redistributable (x64)
"{086D343F-8E78-4AFC-81AC-D6D414AFD8AC}_is1" = Core Temp 1.0 RC2
"{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MP250_series" = Canon MP250 series MP Drivers
"{1D8E6291-B0D5-35EC-8441-6616F567A0F7}" = Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219
"{1E9FC118-651D-4934-97BE-E53CAE5C7D45}" = Microsoft_VC80_MFCLOC_x86_x64
"{29AFE1B0-26A4-11E1-BFD4-F04DA23A5C58}" = MSVCRT Redists
"{4569AD91-47F4-4D9E-8FC9-717EC32D7AE1}" = Microsoft_VC80_CRT_x86_x64
"{6DE721A5-5E89-4D74-994C-652BB3C0672E}" = Ovladače videa společnosti Pinnacle
"{8557397C-A42D-486F-97B3-A2CBC2372593}" = Microsoft_VC90_ATL_x86_x64
"{90120000-002A-0000-1000-0000000FF1CE}" = Microsoft Office Office 64-bit Components 2007
"{90120000-002A-041B-1000-0000000FF1CE}" = Microsoft Office Shared 64-bit MUI (Slovak) 2007
"{90BF0360-A1DB-4599-A643-95AB90A52C1E}" = Microsoft_VC90_MFCLOC_x86_x64
"{925D058B-564A-443A-B4B2-7E90C6432E55}" = Microsoft_VC80_ATL_x86_x64
"{92A3CA0D-55CD-4C5D-BA95-5C2600C20F26}" = Microsoft_VC90_CRT_x86_x64
"{9B48B0AC-C813-4174-9042-476A887592C7}" = Windows Live ID Sign-in Assistant
"{9D046B26-7978-47CD-91E6-AC3C1DFBC3D0}" = Microsoft Security Client
"{A472B9E4-0AFF-4F7B-B25D-F64F8E928AAB}" = Microsoft_VC90_MFC_x86_x64
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision" = NVIDIA Ovládač 3D Vision 306.23
"{B2FE1952-0186-46c3-BAEC-A80AA35AC5B8}_Display.ControlPanel" = Ovládací panel NVIDIA 306.23
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver" = NVIDIA Grafický ovládač 306.23
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB" = NVIDIA 3D Vision radič ovládača 306.23
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX" = NVIDIA Softvér systému s podporou technológie PhysX 9.12.0604
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update" = Aktualizácie NVIDIA 1.10.8
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver" = NVIDIA Ovládač zvuku HD 1.3.18.0
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer" = NVIDIA Install Application
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NVIDIA.Update" = NVIDIA Update Components
"{C8C1BAD5-54E6-4146-AD07-3A8AD36569C3}" = Microsoft_VC80_MFC_x86_x64
"{D600D357-5CB9-4DE9-8FD4-14E208BD1970}" = Nero Backup Drivers
"{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}" = Microsoft .NET Framework 4 Client Profile
"CCleaner" = CCleaner
"CPUID HWMonitor_is1" = CPUID HWMonitor 1.18
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Microsoft Security Client" = Microsoft Security Essentials
"TeamSpeak 3 Client" = TeamSpeak 3 Client
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{000E79B7-E725-4F01-870A-C12942B7F8E4}" = Crysis(R)
"{01E9B2FF-DAF4-4529-9CC9-2101625517C7}" = nero.prerequisites.msi
"{024521CF-C07E-4F8E-8481-0D75695E03AF}" = PxMergeModule
"{033E378E-6AD3-4AD5-BDEB-CBD69B31046C}" = Microsoft_VC90_ATL_x86
"{034DCAF9-96E7-4936-9A07-712F80B5181E}" = Nero RescueAgent 11
"{0497EAED-70DA-4BBE-BEB3-AF77FD8788EA}" = Adobe Premiere Pro CS5.5
"{06F80017-8F98-4C94-B868-52358569FC32}" = Command & Conquer Generals
"{0713D1F9-DD77-42C1-8C7D-54D479E2E743}" = Nero SoundTrax 11
"{08D2E121-7F6A-43EB-97FD-629B44903403}" = Microsoft_VC90_CRT_x86
"{0D7A4289-99CF-4B8D-B812-86BE50A54552}" = Nero Video 11
"{0F3647F8-E51D-4FCC-8862-9A8D0C5ACF25}" = Microsoft_VC80_ATL_x86
"{1111706F-666A-4037-7777-211328764D10}" = JavaFX 2.1.1
"{11D3EF85-63E1-4AE4-A7C1-9241BDB16B51}" = Nero ControlCenter 11
"{1362E602-9625-42D3-B57F-CDA9D26F9DA8}" = Pinnacle Studio 15
"{137D91E1-2347-4EAC-BB0B-CC06C6B92A52}_is1" = Men of War (Remove Only)
"{1a413f37-ed88-4fec-9666-5c48dc4b7bb7}" = YTD YouTube Downloader & Converter 3.6
"{1AA94747-3BF6-4237-9E1A-7B3067738FE1}" = Max Payne 3
"{1EAC1D02-C6AC-4FA6-9A44-96258C37C812}_is1" = World of Tanks v.0.7.1
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{2397CAD4-2263-4CD0-96BE-E43A980B9C9A}_is1" = Geeks3D.com FurMark 1.9.2
"{26A24AE4-039D-4CA4-87B4-2F83217007FF}" = Java 7 Update 7
"{28E82311-8616-11E1-BEB0-B8AC6F97B88E}" = Google Earth
"{2CA7225D-CB12-462A-9DD1-50319E158BA5}" = Nero 11 PiP Effects Basic
"{2FDD750F-49B7-40C1-9D5E-D2955BC0E2D8}" = NVIDIA PhysX
"{2FFE93F0-BB72-4E52-8761-354D1AAA9387}" = Sony Ericsson PC Suite 6.011.00
"{30DD3A95-E1D6-47EA-A7FE-6E2236AD87D5}" = OMEGA 15.01.00
"{33A22B2D-55BA-4508-B767-BF2E9C21A73F}" = Assassin's Creed Revelations
"{3521BDBD-D453-5D9F-AA55-44B75D214629}" = Adobe Community Help
"{3571656A-575D-4CED-809D-5547587121FF}" = Yu-Gi-Oh! Power of Chaos YUGI THE DESTINY
"{390757AA-8830-43DC-AEE0-4E5B6F8439EB}" = Nero SoundTrax 11 Help (CHM)
"{3B418709-D688-4E3A-BE0E-7D71FA84C948}" = Nero 11 PiP Effects 1
"{43430FA5-AF68-4A2D-A7D4-891000008200}" = Street Fighter X Tekken
"{4382FC76-8100-4951-8658-31834E625E88}" = Nero 11 Video Transitions 1
"{46C045BF-2B3F-4BC4-8E4C-00E0CF8BD9DB}" = Adobe AIR
"{46EDCFA5-7EDB-46A9-B093-1C6237470CEC}" = 3DMark 11
"{485C9280-B899-4D46-86F3-B3E459636EE5}" = Yu-Gi-Oh! Power of Chaos KAIBA THE REVENGE
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4CB0307C-565E-4441-86BE-0DF2E4FB828C}" = Microsoft Games for Windows Marketplace
"{4D314806-D76E-47B4-89F1-B076A71F1FB0}_is1" = RCT3 - Custom Scenery and CTR Installer
"{526F1A57-F977-4EFB-B009-D971C5AD6348}" = OLYMP 12.01.00
"{53F7746A-96AA-49A5-86B8-59989680DAC5}" = Nero Burning ROM 11 Help (CHM)
"{5442DAB8-7177-49E1-8B22-09A049EA5996}" = Renesas Electronics USB 3.0 Host Controller Driver
"{5454083B-1308-4485-BF17-1110000D8301}" = Grand Theft Auto IV
"{5454083B-1308-4485-BF17-1110000D8302}" = Grand Theft Auto IV
"{55C2143E-FBA5-442F-9AFA-726FF068F39D}" = Nero CoverDesigner 11 Help (CHM)
"{57F80ECF-E27C-4EEE-AB58-E971BACE2639}" = Nero Recode 11 Help (CHM)
"{5A212B2D-140D-46F4-B625-2D1CA5A00594}" = Nero 11 Kwik Themes Basic
"{5E98FDD6-3672-4DBE-AB8B-2C9A0BED1382}" = Nero 11 Disc Menus 3
"{635FED5B-2C6D-49BE-87E6-7A6FCD22BC5A}" = Microsoft_VC90_MFC_x86
"{65153EA5-8B6E-43B6-857B-C6E4FC25798A}" = Intel(R) Management Engine Components
"{65BB0407-4CC8-4DC7-952E-3EEFDF05602A}" = Nero Update
"{68DED384-1F74-4AEE-8B8E-95AF15572FE3}" = Port Royale 3
"{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}" = Windows Media Player Firefox Plugin
"{6AB2427E-A18F-4809-9A12-29F5EBABBB3A}" = Nero BackItUp 11 Help (CHM)
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{77F665FD-3F60-4B0A-AE14-EC124B7A7FCE}" = ICQ7.7
"{7DF2B5EE-2C16-4E86-9C71-8678068AD805}" = Nero 11 Disc Menus 2
"{8014FACB-1D1D-48C2-94AA-E29EE2E6B9CE}" = Nero WaveEditor 11
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{8833FFB6-5B0C-4764-81AA-06DFEED9A476}" = Realtek Ethernet Controller Driver
"{8A7ABBD4-A617-4AE8-9C6D-1510DE46EC35}" = Nero 11
"{90120000-0011-0000-0000-0000000FF1CE}" = Microsoft Office Professional Plus 2007
"{90120000-0015-041B-0000-0000000FF1CE}" = Microsoft Office Access MUI (Slovak) 2007
"{90120000-0016-041B-0000-0000000FF1CE}" = Microsoft Office Excel MUI (Slovak) 2007
"{90120000-0018-041B-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (Slovak) 2007
"{90120000-0019-041B-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (Slovak) 2007
"{90120000-001A-041B-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (Slovak) 2007
"{90120000-001B-041B-0000-0000000FF1CE}" = Microsoft Office Word MUI (Slovak) 2007
"{90120000-001F-0405-0000-0000000FF1CE}" = Microsoft Office Proof (Czech) 2007
"{90120000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2007
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-040E-0000-0000000FF1CE}" = Microsoft Office Proof (Hungarian) 2007
"{90120000-001F-041B-0000-0000000FF1CE}" = Microsoft Office Proof (Slovak) 2007
"{90120000-002C-041B-0000-0000000FF1CE}" = Microsoft Office Proofing (Slovak) 2007
"{90120000-0044-041B-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (Slovak) 2007
"{90120000-006E-041B-0000-0000000FF1CE}" = Microsoft Office Shared MUI (Slovak) 2007
"{907B4640-266B-4A21-92FB-CD1A86CD0F63}" = RollerCoaster Tycoon 3 Platinum
"{9158FF30-78D7-40EF-B83E-451AC5334640}" = Adobe Photoshop CS5.1
"{9193490D-5229-4FC4-9BB9-A6D63C09574A}" = High-Definition Video Playback
"{92D58719-BBC1-4CC3-A08B-56C9E884CC2C}" = Microsoft_VC80_CRT_x86
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{A0F34849-D9AB-46DD-B1BE-BB0DB60B1FE8}" = Nero 11 Disc Menus 1
"{A2CDC001-F8B3-4C64-9E74-2E3FA0FAC9D9}" = Nero 11 Video Samples
"{A4F6BE36-4826-45BA-A396-04F265A3B61D}" = Nero 11 Kwik Themes 2
"{A78FE97A-C0C8-49CE-89D0-EDD524A17392}" = PDF Settings CS5
"{A7A0BF2E-31CC-49E3-9913-52C503EB969D}" = Nero Audio Pack 1
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{AB2BBC64-8AC8-4E66-BBF3-E22D5EACEECA}" = Nero BackItUp 11
"{AC76BA86-7AD7-1029-7B44-AA1000000001}" = Adobe Reader X (10.1.4) - Czech
"{ACD6B383-EC5B-4000-A455-CCB308B447FE}" = Nero 11 Kwik Themes 4
"{B160A672-F326-4414-9BB0-A056C61B357C}" = Nero 11 Cliparts
"{B1846721-A8E6-46C7-83B6-0DCF7ADB4267}" = Nero Burning ROM 11
"{B1F69AF3-B5B5-4CA5-ADC5-8A738EB6E574}" = Nero 11 Kwik Themes 1
"{B3DAF54F-DB25-4586-9EF1-96D24BB14088}" = Windows Movie Maker 2.6
"{B45A9A00-4016-AC3-A973-5A8AB70A03DE}_is1" = Assassins Creed - Revelations version 1.5
"{B531E735-8ED5-4270-ACCE-3809086FBD02}_is1" = Batman Arkham City version 1.0
"{B6D38690-755E-4F40-A35A-23F8BC2B86AC}" = Microsoft_VC90_MFCLOC_x86
"{B7B8D9A9-EFCB-4c2f-8117-7A2A32D0BC58}" = Shank 2
"{B95T9A00-40176-4AC6-N973-5A8AB71A09DJ}_is1" = GTA IV + EFLC version 1.5
"{B9B1BA7F-7E07-49DD-A713-5B397A5BB66B}" = Nero Kwik Media Help (CHM)
"{BA499CC0-12C0-4BA5-9007-76844B721158}" = Nero 11 Kwik Themes 3
"{BE814218-3919-4EA3-868A-2F60BC135CB4}" = Nero Kwik Media
"{BEBEE34D-84A2-4EDD-8BEA-96CC54371263}" = Nero Core Components 11
"{BEE64C14-BEF1-4610-8A68-A16EAA47B882}" = Futuremark SystemInfo
"{C28DD992-5B7B-D195-6841-4EC57DF512BD}" = Adobe Story
"{C9935C7E-ED44-427D-B8DF-39E2ACF1AA6A}_is1" = Men of War: Vietnam (Remove Only)
"{CCE210DF-7EEF-4A76-A63C-3EB091FDB992}" = welcome
"{D01CE99A-8802-483C-A79F-298B691EB432}" = Nero RescueAgent 11 Help (CHM)
"{D1A19B02-817E-4296-A45B-07853FD74D57}" = Microsoft_VC80_MFC_x86
"{D2CBEFA4-F2D3-4E97-A171-8BFD6A31A5EC}" = Nero Express 11 Help (CHM)
"{D2FCA41E-AC01-4DCD-B3A7-DC9E32363065}}_is1" = Rapture3D 2.4.8 Game
"{D4D66270-9147-4BDF-9946-FCA2B303AA8F}" = Nero ControlCenter 11 Help (CHM)
"{D8B5C1BB-5951-422D-A4D5-451675614956}_is1" = Men of War: Assault Squad (Remove Only)
"{D92BBB52-82FF-42ED-8A3C-4E062F944AB7}" = Microsoft_VC80_MFCLOC_x86
"{DE491AB9-1D47-4FED-A8F5-4D4325B2EB4B}" = Rayman Origins
"{DF6A13C0-77DF-41FE-BD05-6D5201EB0CE7}_is1" = Auslogics Disk Defrag
"{E10AAE4A-98B8-420A-BD93-E0520C23D624}" = Nero Express 11
"{E51BC4B0-EA5E-49CC-AF3B-93B5C627EC22}" = Nero 11 Effects Basic
"{E6F012B0-E930-11E0-A67A-F04DA23A5C58}" = Vegas Pro 11.0
"{E9627240-E930-11E0-8690-F04DA23A5C58}" = MSVCRT Redists
"{EB8DED20-A887-4A9C-BB5A-F3E7523DFB44}" = Nero WaveEditor 11 Help (CHM)
"{EE7257A2-39A2-4D2F-9DAC-F9F25B8AE1D8}" = Skype™ 5.10
"{EFE1AB94-5466-4B6E-BE31-FF4C115FD25D}" = Max Payne 2
"{F02C06B1-A687-4DD8-8F51-A02AC53D8785}_is1" = 3D Xtreme Mega Rides - Devil Rock 1.0
"{F09EF8F2-0976-42C1-8D9D-8DF78337C6E3}" = Sony PC Companion 2.10.094
"{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
"{F11ADC64-C89E-47F4-A0B3-3665FF859397}" = World in Conflict
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F2508213-9989-4E85-A078-72BE483917EF}" = Microsoft Games for Windows - LIVE Redistributable
"{F3743A2C-5D5F-4456-8F98-5DF36A954C50}" = Nero 11 Image Samples
"{F3E9C243-122E-4D6B-ACC1-E1FEC02F6CA1}" = Command and ConquerTM Generals Zero Hour
"{F3F5B440-0ACB-4F72-842D-E8DEC4236FFC}_is1" = Men of War: Condemned Heroes (Remove Only)
"{F49EF443-B2BD-4F10-8A46-87AFCDB90EDD}" = Nero 11 Disc Menus Basic
"{F69FB940-5031-4FE8-AFAD-085802D0BF63}" = Nero Recode 11
"{FAC3C37E-EDAB-4F3A-A173-A7C70CC88F09}" = Nero Video 11 Help (CHM)
"{FF44BCE5-5A18-4051-85F0-BC172D7B4695}" = Nero CoverDesigner 11
"Adobe AIR" = Adobe AIR
"Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin
"aerofly FS_is1" = aerofly FS
"Afterburner" = MSI Afterburner 1.6.0
"AIDA64 Extreme Edition_is1" = AIDA64 Extreme Edition v1.80
"Alan Wake_is1" = Alan Wake
"All Zombies Must Die!_is1" = All Zombies Must Die!
"Any Video Converter_is1" = Any Video Converter 3.3.9
"ASIO4ALL" = ASIO4ALL
"AviSynth" = AviSynth 2.5
"Battle City (VirtuaNES 0.97 emulation)" = Battle City (VirtuaNES 0.97 emulation)
"CameraWindowDC8" = Canon Utilities CameraWindow DC 8
"CameraWindowLauncher" = Canon Utilities CameraWindow Launcher
"Canon MP250 series User Registration" = Canon MP250 series User Registration
"CanonMyPrinter" = Canon Utilities My Printer
"CanonSolutionMenu" = Canon Utilities Solution Menu
"Cities XL 2012" = Cities XL 2012
"CloneCD" = CloneCD
"com.adobe.AdobeStory.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1" = Adobe Story
"Contra (VirtuaNES 0.97 emulation)" = Contra (VirtuaNES 0.97 emulation)
"DAEMON Tools Lite" = DAEMON Tools Lite
"Easy-PhotoPrint EX" = Canon Utilities Easy-PhotoPrint EX
"Easy-WebPrint EX" = Canon Easy-WebPrint EX
"Elcomm" = Elcomm
"ffdshow_is1" = ffdshow v1.2.4453 [2012-05-21]
"FL Studio 10" = FL Studio 10
"Flatout 3 Chaos Destruction_is1" = Flatout 3 Chaos Destruction
"Fraps" = Fraps
"Guard.Mail.ru" = Guard.ICQ
"HD Tune Pro_is1" = HD Tune Pro 4.01
"chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1" = Adobe Community Help
"IL Download Manager" = IL Download Manager
"Inkscape" = Inkscape 0.48.3.1
"Insanely Twisted Shadow Planet_is1" = skidrow
"InstallShield_{06F80017-8F98-4C94-B868-52358569FC32}" = Command & Conquer Generals
"InstallShield_{5442DAB8-7177-49E1-8B22-09A049EA5996}" = Renesas Electronics USB 3.0 Host Controller Driver
"InstallShield_{F3E9C243-122E-4D6B-ACC1-E1FEC02F6CA1}" = Command and ConquerTM Generals Zero Hour
"Iron Front" = Iron Front Uninstall
"KLiteCodecPack_is1" = K-Lite Codec Pack 8.0.0 (Full)
"Malwarebytes' Anti-Malware_is1" = Malwarebytes Anti-Malware verzia 1.65.0.1400
"MozBackup" = MozBackup 1.5.1
"Mozilla Firefox 15.0 (x86 sk)" = Mozilla Firefox 15.0 (x86 sk)
"MozillaMaintenanceService" = Mozilla Maintenance Service
"MP Navigator EX 3.0" = Canon MP Navigator EX 3.0
"MyCamera" = Canon Utilities MyCamera
"NoLimits Coasters full" = NoLimits Coasters 1.7 (remove only)
"NoLimits Fairground_is1" = NoLimits Fairground 1.0
"NVIDIAStereo" = NVIDIA Stereoscopic 3D Driver
"OCCT" = OCCT 4.0.0
"Oil Rush_is1" = Oil Rush version 1.00
"OpenAL" = OpenAL
"Opera 12.02.1578" = Opera 12.02
"Outerra Anteworld" = Outerra - Anteworld - Outerra Anteworld Demo
"PROPLUS" = Microsoft Office Professional Plus 2007
"PunkBusterSvc" = PunkBuster Services
"Rage_is1" = Rage
"Revo Uninstaller" = Revo Uninstaller 1.94
"RivaTuner" = RivaTuner v2.24 MSI Master Overclocking Arena 2009 edition
"Rockstar Games Social Club" = Rockstar Games Social Club
"Sniper Elite V2_is1" = Sniper Elite V2
"SpeedFan" = SpeedFan (remove only)
"StarCraft II" = StarCraft II
"Super Mario Bros (VirtuaNES 0.97 emulation)" = Super Mario Bros (VirtuaNES 0.97 emulation)
"Super-Charger_is1" = Super-Charger
"TC UP" = Total Commander Ultima Prime 5.6.0.0
"TeamSpeak 3 Client" = TeamSpeak 3 Client
"The Darkness II_is1" = The Darkness II
"Toy Soldiers_is1" = Toy Soldiers
"TrackMania 2_is1" = TrackMania 2
"Update Engine" = Sony Ericsson Update Engine
"uTorrent" = µTorrent
"VLC media player" = VLC media player 2.0.2
"WinRAR archiver" = WinRAR archiver
"World of Warcraft" = World of Warcraft
"Worms Reloaded_is1" = Worms Reloaded
"Xfire" = Xfire (remove only)
"Ynor9's Control Room CSO Setup_is1" = Ynor9's Control Room 1.0.0
"ZoomBrowser EX" = Canon Utilities ZoomBrowser EX
"ZoomBrowser EX Memory Card Utility" = Canon ZoomBrowser EX Memory Card Utility
========== HKEY_CURRENT_USER Uninstall List ==========
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Mozilla Firefox 15.0.1 (x86 sk)" = Mozilla Firefox 15.0.1 (x86 sk)
"ShockWave 1.1" = ShockWave 1.1
"Tropico 4" = Tropico 4 1.00
"Tunnelers" = Tunnelers
========== Last 20 Event Log Errors ==========
[ Application Events ]
Error - 24. 9. 2012 2:01:01 | Computer Name = Martin-PC | Source = Microsoft-Windows-LoadPerf | ID = 3006
Description = Unable to read the performance counter strings defined for the 01B
language ID. The first DWORD in the Data section contains the Win32 error code.
Error - 24. 9. 2012 3:40:26 | Computer Name = Martin-PC | Source = Application Hang | ID = 1002
Description = The program uTorrent.exe version 3.1.3.27207 stopped interacting with
Windows and was closed. To see if more information about the problem is available,
check the problem history in the Action Center control panel. Process ID: 130c Start
Time: 01cd9a264edb80be Termination Time: 2668 Application Path: C:\Program Files
(x86)\uTorrent\uTorrent.exe Report Id: 17cf0624-061b-11e2-9880-8c89a554535d
Error - 24. 9. 2012 7:08:20 | Computer Name = Martin-PC | Source = Microsoft-Windows-LoadPerf | ID = 3006
Description = Unable to read the performance counter strings defined for the 01B
language ID. The first DWORD in the Data section contains the Win32 error code.
Error - 24. 9. 2012 7:08:20 | Computer Name = Martin-PC | Source = Microsoft-Windows-LoadPerf | ID = 3006
Description = Unable to read the performance counter strings defined for the 01B
language ID. The first DWORD in the Data section contains the Win32 error code.
Error - 24. 9. 2012 7:40:44 | Computer Name = Martin-PC | Source = Microsoft-Windows-LoadPerf | ID = 3006
Description = Unable to read the performance counter strings defined for the 01B
language ID. The first DWORD in the Data section contains the Win32 error code.
Error - 24. 9. 2012 7:40:44 | Computer Name = Martin-PC | Source = Microsoft-Windows-LoadPerf | ID = 3006
Description = Unable to read the performance counter strings defined for the 01B
language ID. The first DWORD in the Data section contains the Win32 error code.
Error - 25. 9. 2012 1:37:01 | Computer Name = Martin-PC | Source = Microsoft-Windows-LoadPerf | ID = 3006
Description = Unable to read the performance counter strings defined for the 01B
language ID. The first DWORD in the Data section contains the Win32 error code.
Error - 25. 9. 2012 1:37:01 | Computer Name = Martin-PC | Source = Microsoft-Windows-LoadPerf | ID = 3006
Description = Unable to read the performance counter strings defined for the 01B
language ID. The first DWORD in the Data section contains the Win32 error code.
Error - 25. 9. 2012 2:01:08 | Computer Name = Martin-PC | Source = Microsoft-Windows-LoadPerf | ID = 3006
Description = Unable to read the performance counter strings defined for the 01B
language ID. The first DWORD in the Data section contains the Win32 error code.
Error - 25. 9. 2012 2:01:08 | Computer Name = Martin-PC | Source = Microsoft-Windows-LoadPerf | ID = 3006
Description = Unable to read the performance counter strings defined for the 01B
language ID. The first DWORD in the Data section contains the Win32 error code.
[ System Events ]
Error - 11. 6. 2012 11:32:10 | Computer Name = Martin-PC | Source = Disk | ID = 262155
Description = The driver detected a controller error on \Device\Harddisk3\DR9.
Error - 11. 6. 2012 11:32:11 | Computer Name = Martin-PC | Source = Disk | ID = 262155
Description = The driver detected a controller error on \Device\Harddisk3\DR9.
Error - 11. 6. 2012 11:32:11 | Computer Name = Martin-PC | Source = Disk | ID = 262155
Description = The driver detected a controller error on \Device\Harddisk3\DR9.
Error - 11. 6. 2012 11:32:12 | Computer Name = Martin-PC | Source = Disk | ID = 262155
Description = The driver detected a controller error on \Device\Harddisk3\DR9.
Error - 12. 6. 2012 2:05:25 | Computer Name = Martin-PC | Source = Application Popup | ID = 262200
Description = Driver PCI returned invalid ID for a child device (FFFFFFFFFFFFFFFF00).
Error - 13. 6. 2012 2:22:12 | Computer Name = Martin-PC | Source = Application Popup | ID = 262200
Description = Driver PCI returned invalid ID for a child device (FFFFFFFFFFFFFFFF00).
Error - 14. 6. 2012 2:01:56 | Computer Name = Martin-PC | Source = Application Popup | ID = 262200
Description = Driver PCI returned invalid ID for a child device (FFFFFFFFFFFFFFFF00).
Error - 14. 6. 2012 10:36:29 | Computer Name = Martin-PC | Source = Application Popup | ID = 262200
Description = Driver PCI returned invalid ID for a child device (FFFFFFFFFFFFFFFF00).
Error - 15. 6. 2012 2:17:37 | Computer Name = Martin-PC | Source = Application Popup | ID = 262200
Description = Driver PCI returned invalid ID for a child device (FFFFFFFFFFFFFFFF00).
Error - 16. 6. 2012 3:43:26 | Computer Name = Martin-PC | Source = Application Popup | ID = 262200
Description = Driver PCI returned invalid ID for a child device (FFFFFFFFFFFFFFFF00).
< End of report >
Re: Pomalší Pc ako predtým (Rsit log)
No mate tam teda peknou mrchu. ZeroAccess 
Nicmene jste nejak pozapomnel odpovedet
Nicmene jste nejak pozapomnel odpovedet
Márty84 píše:
Pokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Re: Pomalší Pc ako predtým (Rsit log)
Je to toto http://operacne-systemy.heureka.sk/micr ... timate-sk/ , z alzy...
Re: Pomalší Pc ako predtým (Rsit log)
Aha, no dobra.
Problem je, ze log z OTL neni zdaleka cely. Kopiroval jste tam ten text podle navodu? Pokud ano, zkuste to jeste jednou, tentokrat ale v nouzovem rezimu.
Problem je, ze log z OTL neni zdaleka cely. Kopiroval jste tam ten text podle navodu? Pokud ano, zkuste to jeste jednou, tentokrat ale v nouzovem rezimu.
Pokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Re: Pomalší Pc ako predtým (Rsit log)
Tak som to spravil v nudzovom režime . no vyplulo mi len log OTL a extra nie 
OTL logfile created on: 26. 9. 2012 15:56:01 - Run 2
OTL by OldTimer - Version 3.2.68.0 Folder = C:\Users\Martin\Desktop
64bit- Ultimate Edition (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 0000041b | Country: Slovenská republika | Language: SKY | Date Format: d. M. yyyy
7,97 Gb Total Physical Memory | 6,78 Gb Available Physical Memory | 85,08% Memory free
15,94 Gb Paging File | 14,78 Gb Available in Paging File | 92,70% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 931,41 Gb Total Space | 191,20 Gb Free Space | 20,53% Space Free | Partition Type: NTFS
Computer Name: MARTIN-PC | User Name: Martin | Logged in as Administrator.
Boot Mode: SafeMode | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Processes (SafeList) ==========
PRC - [2012/09/25 09:57:49 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Martin\Desktop\OTL.exe
========== Modules (No Company Name) ==========
========== Services (SafeList) ==========
SRV:64bit: - [2012/03/26 18:49:56 | 000,291,696 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- c:\Program Files\Microsoft Security Client\NisSrv.exe -- (NisSrv)
SRV:64bit: - [2012/03/26 18:49:56 | 000,012,600 | ---- | M] (Microsoft Corporation) [Auto | Running] -- c:\Program Files\Microsoft Security Client\MsMpEng.exe -- (MsMpSvc)
SRV:64bit: - [2009/07/14 03:41:27 | 001,011,712 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV:64bit: - [2009/07/14 03:40:01 | 000,193,536 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\appmgmts.dll -- (AppMgmt)
SRV - [2012/09/07 17:18:36 | 000,114,144 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2012/09/07 17:04:46 | 000,676,936 | ---- | M] (Malwarebytes Corporation) [Auto | Stopped] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe -- (MBAMService)
SRV - [2012/09/07 17:04:46 | 000,399,432 | ---- | M] (Malwarebytes Corporation) [Auto | Stopped] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe -- (MBAMScheduler)
SRV - [2012/08/30 21:14:00 | 001,258,856 | ---- | M] (NVIDIA Corporation) [Auto | Stopped] -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe -- (nvUpdatusService)
SRV - [2012/08/30 10:40:00 | 000,382,312 | ---- | M] (NVIDIA Corporation) [Auto | Stopped] -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe -- (Stereo Service)
SRV - [2012/07/27 22:51:26 | 000,063,960 | ---- | M] (Adobe Systems Incorporated) [Auto | Stopped] -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2012/07/03 13:19:28 | 000,160,944 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files (x86)\Skype\Updater\Updater.exe -- (SkypeUpdate)
SRV - [2012/05/22 10:12:55 | 000,529,232 | ---- | M] (Valve Corporation) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Steam\SteamService.exe -- (Steam Client Service)
SRV - [2012/04/29 12:44:08 | 000,066,872 | ---- | M] () [Auto | Stopped] -- C:\Windows\SysWOW64\PnkBstrA.exe -- (PnkBstrA)
SRV - [2012/01/18 14:38:28 | 000,155,320 | ---- | M] (Avanquest Software) [On_Demand | Stopped] -- C:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe -- (Sony PC Companion)
SRV - [2012/01/14 12:39:23 | 001,564,368 | ---- | M] () [Disabled | Stopped] -- C:\Program Files (x86)\Guard-ICQ\GuardICQ.exe -- (Guard.Mail.ru)
SRV - [2011/12/09 15:39:52 | 000,135,584 | ---- | M] (Futuremark Corporation) [On_Demand | Stopped] -- C:\Program Files (x86)\Futuremark\Futuremark SystemInfo\FMSISvc.exe -- (Futuremark SystemInfo Service)
SRV - [2011/09/23 19:37:42 | 000,641,832 | ---- | M] (Nero AG) [Auto | Stopped] -- C:\Program Files (x86)\Nero\Update\NASvc.exe -- (NAUpdate)
SRV - [2011/02/22 06:19:12 | 002,656,280 | R--- | M] (Intel Corporation) [Auto | Stopped] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe -- (UNS)
SRV - [2011/02/22 06:19:08 | 000,326,168 | R--- | M] (Intel Corporation) [Auto | Stopped] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe -- (LMS)
SRV - [2010/03/18 13:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2010/02/19 13:37:14 | 000,517,096 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe -- (SwitchBoard)
SRV - [2009/06/10 23:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)
SRV - [2009/04/30 12:23:26 | 000,090,112 | ---- | M] () [Auto | Stopped] -- C:\Program Files (x86)\Sony Ericsson\Sony Ericsson PC Suite\SupServ.exe -- (OMSI download service)
========== Driver Services (SafeList) ==========
DRV:64bit: - [2012/09/07 17:04:46 | 000,025,928 | ---- | M] (Malwarebytes Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\mbam.sys -- (MBAMProtector)
DRV:64bit: - [2012/07/19 21:14:46 | 000,027,760 | ---- | M] (Sony Ericsson Mobile Communications) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ggsemc.sys -- (ggsemc)
DRV:64bit: - [2012/07/19 21:14:46 | 000,014,448 | ---- | M] (Sony Ericsson Mobile Communications) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ggflt.sys -- (ggflt)
DRV:64bit: - [2012/07/03 17:25:16 | 000,189,288 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\nvhda64v.sys -- (NVHDA)
DRV:64bit: - [2012/04/12 16:50:19 | 000,283,200 | ---- | M] (DT Soft Ltd) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\dtsoftbus01.sys -- (dtsoftbus01)
DRV:64bit: - [2012/03/20 20:44:12 | 000,098,688 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\NisDrvWFP.sys -- (NisDrv)
DRV:64bit: - [2011/07/13 14:59:54 | 000,072,240 | ---- | M] (Nero AG) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\NBVol.sys -- (NBVol)
DRV:64bit: - [2011/07/13 14:59:54 | 000,015,920 | ---- | M] (Nero AG) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\NBVolUp.sys -- (NBVolUp)
DRV:64bit: - [2011/06/10 08:34:52 | 000,539,240 | ---- | M] (Realtek ) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\Rt64win7.sys -- (RTL8167)
DRV:64bit: - [2011/02/10 15:52:34 | 000,181,760 | ---- | M] (Renesas Electronics Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\nusb3xhc.sys -- (nusb3xhc)
DRV:64bit: - [2011/02/10 15:52:34 | 000,082,432 | ---- | M] (Renesas Electronics Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\nusb3hub.sys -- (nusb3hub)
DRV:64bit: - [2011/01/26 19:27:48 | 000,030,312 | ---- | M] (CaptainFlint Software) [Kernel | System | Stopped] -- C:\Windows\SysNative\drivers\vd_filedisk.sys -- (VD_FileDisk)
DRV:64bit: - [2010/10/19 10:34:26 | 000,056,344 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\HECIx64.sys -- (MEIx64)
DRV:64bit: - [2010/03/15 11:38:38 | 000,127,600 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\s1039bus.sys -- (s1039bus)
DRV:64bit: - [2010/03/15 10:38:46 | 000,161,904 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\s1039mdm.sys -- (s1039mdm)
DRV:64bit: - [2010/03/15 10:38:46 | 000,158,320 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\s1039unic.sys -- (s1039unic)
DRV:64bit: - [2010/03/15 10:38:46 | 000,141,424 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\s1039mgmt.sys -- (s1039mgmt)
DRV:64bit: - [2010/03/15 10:38:46 | 000,137,328 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\s1039obex.sys -- (s1039obex)
DRV:64bit: - [2010/03/15 10:38:46 | 000,034,416 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\s1039nd5.sys -- (s1039nd5)
DRV:64bit: - [2010/03/15 10:38:46 | 000,019,568 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\s1039mdfl.sys -- (s1039mdfl)
DRV:64bit: - [2009/07/14 03:52:21 | 000,106,576 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:64bit: - [2009/07/14 03:52:21 | 000,028,752 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:64bit: - [2009/07/14 03:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:64bit: - [2009/07/14 03:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:64bit: - [2009/07/14 03:47:48 | 000,077,888 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:64bit: - [2009/07/14 03:47:48 | 000,023,104 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\Windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
DRV:64bit: - [2009/07/14 03:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:64bit: - [2009/07/09 03:00:00 | 000,055,280 | ---- | M] (Sonic Solutions) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\PxHlpa64.sys -- (PxHlpa64)
DRV:64bit: - [2009/06/10 22:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:64bit: - [2009/06/10 22:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:64bit: - [2009/06/10 22:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:64bit: - [2009/06/10 22:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
DRV:64bit: - [2009/02/17 19:11:25 | 000,031,400 | ---- | M] (Elaborate Bytes AG) [Kernel | System | Stopped] -- C:\Windows\SysNative\drivers\ElbyCDIO.sys -- (ElbyCDIO)
DRV:64bit: - [2007/02/16 02:57:06 | 000,040,648 | ---- | M] (SlySoft, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\ElbyCDFL.sys -- (ElbyCDFL)
DRV:64bit: - [2005/09/23 22:18:34 | 000,261,120 | ---- | M] (Pinnacle Systems GmbH) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\MarvinBus64.sys -- (MarvinBus)
DRV - [2012/01/01 16:01:57 | 000,019,952 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Program Files (x86)\RivaTuner v2.24 MSI Master Overclocking Arena 2009 edition\RivaTuner64.sys -- (RivaTuner64)
DRV - [2009/07/14 03:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount)
DRV - [2007/02/16 02:57:06 | 000,040,648 | ---- | M] (SlySoft, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysWOW64\drivers\ElbyCDFL.sys -- (ElbyCDFL)
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-3230957621-2435849253-962487880-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 87 59 E1 52 EC 51 CD 01 [binary data]
IE - HKU\S-1-5-21-3230957621-2435849253-962487880-1000\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKU\S-1-5-21-3230957621-2435849253-962487880-1000\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTer ... ORM=IE8SRC
IE - HKU\S-1-5-21-3230957621-2435849253-962487880-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
========== FireFox ==========
FF - user.js - File not found
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_2_202_235.dll ()
FF - HKLM\Software\MozillaPlugins\@canon.com/EPPEX: C:\Program Files (x86)\Canon\Easy-PhotoPrint EX\NPEZFFPI.DLL (CANON INC.)
FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.7.2: C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.7.2: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@Nero.com/KM: C:\PROGRA~2\COMMON~1\Nero\BROWSE~1\NPBROW~1.DLL (Nero AG)
FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVision: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVisionStreaming: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.0.1: C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.0.2: C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\www.floatingminds.com/Tunnelers: C:\Games\Tunnelers\npTunnelers.dll (Floating Minds)
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 15.0\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2012/09/07 17:18:37 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 15.0\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins [2012/09/25 07:53:53 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 15.0.1\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2012/09/07 17:18:37 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 15.0.1\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins [2012/09/25 07:53:53 | 000,000,000 | ---D | M]
[2011/12/17 19:28:07 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Martin\AppData\Roaming\mozilla\Extensions
[2012/07/28 16:01:36 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Martin\AppData\Roaming\mozilla\Firefox\Profiles\dsn6dm7q.default-1340042378436\extensions
[2012/05/02 19:21:32 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Martin\AppData\Roaming\mozilla\Firefox\Profiles\mthuczr4.default\extensions
[2012/07/28 16:01:36 | 000,013,951 | ---- | M] () (No name found) -- C:\Users\Martin\AppData\Roaming\mozilla\firefox\profiles\dsn6dm7q.default-1340042378436\extensions\olddefaultimagestyle@dagger2-addons.mozilla.org.xpi
[2012/07/26 16:01:43 | 000,741,958 | ---- | M] () (No name found) -- C:\Users\Martin\AppData\Roaming\mozilla\firefox\profiles\dsn6dm7q.default-1340042378436\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
[2012/04/27 17:24:55 | 000,272,844 | ---- | M] () (No name found) -- C:\Users\Martin\AppData\Roaming\mozilla\firefox\profiles\mthuczr4.default\extensions\jid1-F9UJ2thwoAm5gQ@jetpack.xpi
[2012/03/19 18:28:17 | 000,010,839 | ---- | M] () (No name found) -- C:\Users\Martin\AppData\Roaming\mozilla\firefox\profiles\mthuczr4.default\extensions\olddefaultimagestyle@dagger2-addons.mozilla.org.xpi
[2012/04/06 19:23:48 | 000,634,964 | ---- | M] () (No name found) -- C:\Users\Martin\AppData\Roaming\mozilla\firefox\profiles\mthuczr4.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
[2012/09/07 17:18:18 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\extensions
[2012/09/07 17:18:37 | 000,266,720 | ---- | M] (Mozilla Foundation) -- C:\Program Files (x86)\mozilla firefox\components\browsercomps.dll
[2012/01/13 11:21:39 | 000,001,583 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\atlas-sk.xml
[2012/01/13 11:21:39 | 000,001,380 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\azet-sk.xml
[2012/01/13 11:21:39 | 000,001,479 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\dunaj-sk.xml
[2012/01/13 11:21:39 | 000,001,473 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\slovnik-sk.xml
[2012/01/13 11:21:39 | 000,001,104 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\wikipedia-sk.xml
[2012/01/13 11:21:39 | 000,000,830 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\zoznam-sk.xml
O1 HOSTS File: ([2009/06/10 23:00:26 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O2 - BHO: (Canon Easy-WebPrint EX BHO) - {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll (CANON INC.)
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O3 - HKLM\..\Toolbar: (Canon Easy-WebPrint EX) - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll (CANON INC.)
O3 - HKU\S-1-5-21-3230957621-2435849253-962487880-1000\..\Toolbar\WebBrowser: (Canon Easy-WebPrint EX) - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll (CANON INC.)
O4:64bit: - HKLM..\Run: [AdobeAAMUpdater-1.0] C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe (Adobe Systems Incorporated)
O4:64bit: - HKLM..\Run: [CanonMyPrinter] C:\Program Files\Canon\MyPrinter\BJMyPrt.exe (CANON INC.)
O4:64bit: - HKLM..\Run: [CanonSolutionMenu] C:\Program Files (x86)\Canon\SolutionMenu\CNSLMAIN.exe (CANON INC.)
O4:64bit: - HKLM..\Run: [MSC] c:\Program Files\Microsoft Security Client\msseces.exe (Microsoft Corporation)
O4:64bit: - HKLM..\Run: [RTHDVCPL] C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe (Realtek Semiconductor)
O4 - HKLM..\Run: [AdobeCS5.5ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS5.5ServiceManager\CS5.5ServiceManager.exe" -launchedbylogin File not found
O4 - HKLM..\Run: [CloneCDTray] C:\Program Files (x86)\SlySoft\CloneCD\CloneCDTray.exe (SlySoft, Inc.)
O4 - HKLM..\Run: [Guard.Mail.ru.gui] C:\Program Files (x86)\Guard-ICQ\GuardICQ.exe ()
O4 - HKLM..\Run: [NBAgent] C:\Program Files (x86)\Nero\Nero 11\Nero BackItUp\NBAgent.exe (Nero AG)
O4 - HKLM..\Run: [NUSB3MON] C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe (Renesas Electronics Corporation)
O4 - HKLM..\Run: [Super-Charger] C:\Program Files (x86)\MSI\Super-Charger\StartSuperCharger.exe (TODO: <Company name>)
O4 - HKLM..\Run: [SwitchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe (Adobe Systems Incorporated)
O4 - HKU\S-1-5-19..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-20..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-21-3230957621-2435849253-962487880-1000..\Run: [AdobeBridge] File not found
O4 - HKU\S-1-5-21-3230957621-2435849253-962487880-1000..\Run: [DAEMON Tools Lite] C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe (DT Soft Ltd)
O4 - HKU\S-1-5-21-3230957621-2435849253-962487880-1000..\Run: [Sony PC Companion] C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe (Sony)
O4 - HKU\S-1-5-19..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found
O4 - HKU\S-1-5-20..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Low Rights present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLinkedConnections = 1
O9 - Extra Button: ICQ7.7 - {77F665FD-3F60-4B0A-AE14-EC124B7A7FCE} - C:\Program Files (x86)\ICQ7.7\ICQ.exe (ICQ, LLC.)
O9 - Extra 'Tools' menuitem : ICQ7.7 - {77F665FD-3F60-4B0A-AE14-EC124B7A7FCE} - C:\Program Files (x86)\ICQ7.7\ICQ.exe (ICQ, LLC.)
O1364bit: - gopher Prefix: missing
O13 - gopher Prefix: missing
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 85.237.225.250 192.168.0.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{EEFEFE6C-0833-4A35-91A9-73D6F1E2C319}: DhcpNameServer = 85.237.225.250 192.168.0.1
O18:64bit: - Protocol\Handler\ms-help - No CLSID value found
O18:64bit: - Protocol\Handler\skype4com - No CLSID value found
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysWOW64\userinit.exe (Microsoft Corporation)
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O33 - MountPoints2\{20d54004-ca6a-11e1-903a-8c89a554535d}\Shell - "" = AutoRun
O33 - MountPoints2\{20d54004-ca6a-11e1-903a-8c89a554535d}\Shell\AutoRun\command - "" = F:\Startme.exe
O33 - MountPoints2\{7d801433-846e-11e1-aab1-8c89a554535d}\Shell - "" = AutoRun
O33 - MountPoints2\{7d801433-846e-11e1-aab1-8c89a554535d}\Shell\AutoRun\command - "" = E:\Installer.exe
O33 - MountPoints2\{a5eccf22-28d3-11e1-9363-8c89a554535d}\Shell - "" = AutoRun
O33 - MountPoints2\{a5eccf22-28d3-11e1-9363-8c89a554535d}\Shell\AutoRun\command - "" = E:\Oli_Rush_1.0.exe
O33 - MountPoints2\{d97b6751-6a84-11e1-a127-8c89a554535d}\Shell - "" = AutoRun
O33 - MountPoints2\{d97b6751-6a84-11e1-a127-8c89a554535d}\Shell\AutoRun\command - "" = F:\Startme.exe
O34 - HKLM BootExecute: (autocheck autochk *)
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)
CREATERESTOREPOINT
Unable to start System Restore Service. Error code 1084
NetSvcs:64bit: AppMgmt - C:\Windows\SysNative\appmgmts.dll (Microsoft Corporation)
Drivers32:64bit: msacm.l3acm - C:\Windows\System32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32:64bit: VIDC.FPS1 - frapsv64.dll (Beepa P/L)
Drivers32:64bit: VIDC.XFR1 - xfcodec64.dll ()
Drivers32: msacm.ac3acm - C:\Windows\SysWow64\ac3acm.acm (fccHandler)
Drivers32: msacm.l3acm - C:\Windows\SysWOW64\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.lameacm - C:\Windows\SysWow64\lameACM.acm (http://www.mp3dev.org/)
Drivers32: msacm.vorbis - C:\Windows\SysWow64\vorbis.acm (HMS http://hp.vector.co.jp/authors/VA012897/)
Drivers32: vidc.cvid - C:\Windows\SysWow64\iccvid.dll (Radius Inc.)
Drivers32: VIDC.FFDS - C:\Windows\SysWow64\ff_vfw.dll ()
Drivers32: VIDC.FPS1 - C:\Windows\SysWow64\frapsvid.dll (Beepa P/L)
Drivers32: vidc.mjpg - pvmjpg30.dll File not found
Drivers32: VIDC.XFR1 - C:\Windows\SysWow64\xfcodec.dll ()
Drivers32: VIDC.XVID - C:\Windows\SysWow64\xvidvfw.dll ()
Drivers32: VIDC.YV12 - C:\Windows\SysWow64\xvidvfw.dll ()
PhysicalDisk0 MBR saved to C:\PhysicalMBR.bin
========== Files/Folders - Created Within 30 Days ==========
[2012/09/25 09:57:47 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\Martin\Desktop\OTL.exe
[2012/09/25 07:46:25 | 000,000,000 | ---D | C] -- C:\temp
[2012/09/25 07:45:22 | 026,228,072 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvoglv64.dll
[2012/09/25 07:45:22 | 025,256,296 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcompiler.dll
[2012/09/25 07:45:22 | 019,828,584 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvoglv32.dll
[2012/09/25 07:45:22 | 018,229,096 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvd3dumx.dll
[2012/09/25 07:45:22 | 017,559,912 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcompiler.dll
[2012/09/25 07:45:22 | 015,291,752 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvd3dum.dll
[2012/09/25 07:45:22 | 009,066,344 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcuda.dll
[2012/09/25 07:45:22 | 007,626,088 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcuda.dll
[2012/09/25 07:45:22 | 007,397,736 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvopencl.dll
[2012/09/25 07:45:22 | 006,109,032 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvopencl.dll
[2012/09/25 07:45:22 | 002,745,192 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcuvid.dll
[2012/09/25 07:45:22 | 002,573,672 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcuvid.dll
[2012/09/25 07:45:22 | 002,216,808 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcuvenc.dll
[2012/09/25 07:45:22 | 001,866,088 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcuvenc.dll
[2012/09/25 07:45:22 | 001,482,600 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvdispgenco64.dll
[2012/09/25 07:45:22 | 000,830,312 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvumdshim.dll
[2012/09/25 07:45:22 | 000,247,144 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvinitx.dll
[2012/09/25 07:45:22 | 000,202,600 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvinit.dll
[2012/09/25 07:45:22 | 000,189,288 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\drivers\nvhda64v.sys
[2012/09/25 07:45:22 | 000,031,080 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvhdap64.dll
[2012/09/25 07:34:56 | 000,000,000 | ---D | C] -- C:\Users\Martin\Desktop\sam
[2012/09/25 07:33:28 | 000,000,000 | ---D | C] -- C:\Users\Martin\Desktop\Videá z kamery
[2012/09/24 09:41:29 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\IPACS
[2012/09/23 16:31:26 | 000,000,000 | ---D | C] -- C:\Users\Martin\Desktop\pzh 2000
[2012/09/10 16:02:04 | 000,000,000 | ---D | C] -- C:\Users\Martin\Desktop\tiger initial
[2012/09/07 17:18:18 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mozilla Firefox
[2012/09/05 08:22:40 | 000,000,000 | ---D | C] -- C:\Users\Martin\Documents\Pinnacle Studio
[2012/09/04 22:50:17 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Pinnacle
[2012/09/04 22:50:04 | 000,000,000 | ---D | C] -- C:\Users\Martin\AppData\Local\Downloaded Installations
[2012/09/04 22:49:44 | 000,000,000 | ---D | C] -- C:\Users\Martin\AppData\Local\Pinnacle
[2012/09/04 22:49:27 | 000,000,000 | ---D | C] -- C:\ProgramData\Pinnacle Studio Ultimate Collection
[2012/09/04 22:47:41 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Pinnacle Studio 15
[2012/09/04 22:47:14 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\My Projects
[2012/09/04 22:43:38 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Pegasus Imaging
[2012/09/04 22:43:36 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Yahoo!
[2012/09/04 22:43:35 | 000,000,000 | ---D | C] -- C:\ProgramData\Studio 15
[2012/09/04 22:43:35 | 000,000,000 | ---D | C] -- C:\ProgramData\Pinnacle Studio Plus
[2012/09/04 22:43:35 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\Pinnacle
[2012/09/04 22:41:46 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Pinnacle
[2012/09/04 22:40:03 | 000,000,000 | ---D | C] -- C:\ProgramData\Pinnacle
[2012/09/03 07:41:14 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Java
[2012/09/03 07:41:03 | 000,246,760 | ---- | C] (Oracle Corporation) -- C:\Windows\SysWow64\javaws.exe
[2012/09/03 07:40:44 | 000,174,056 | ---- | C] (Oracle Corporation) -- C:\Windows\SysWow64\javaw.exe
[2012/09/03 07:40:44 | 000,174,056 | ---- | C] (Oracle Corporation) -- C:\Windows\SysWow64\java.exe
[2012/09/03 07:40:44 | 000,095,208 | ---- | C] (Oracle Corporation) -- C:\Windows\SysWow64\WindowsAccessBridge-32.dll
[2012/09/03 07:40:33 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Java
[2012/08/29 22:01:17 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth
[2012/08/27 16:09:41 | 000,000,000 | ---D | C] -- C:\Users\Martin\Desktop\Nový priečinok (11)
[2012/03/10 10:43:32 | 000,148,736 | ---- | C] (Avanquest Software) -- C:\ProgramData\hpe3D7D.dll
[2 C:\Windows\SysWow64\*.tmp files -> C:\Windows\SysWow64\*.tmp -> ]
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
========== Files - Modified Within 30 Days ==========
[2012/09/26 15:56:53 | 000,000,512 | ---- | M] () -- C:\PhysicalMBR.bin
[2012/09/26 15:54:35 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2012/09/26 15:54:32 | 2123,931,647 | -HS- | M] () -- C:\hiberfil.sys
[2012/09/26 15:52:18 | 000,000,932 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2012/09/26 15:29:00 | 000,000,936 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2012/09/26 08:19:12 | 000,014,192 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2012/09/26 08:19:12 | 000,014,192 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2012/09/26 08:12:35 | 000,729,688 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2012/09/26 08:12:35 | 000,617,910 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2012/09/26 08:12:35 | 000,107,190 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2012/09/25 09:57:49 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Martin\Desktop\OTL.exe
[2012/09/07 17:04:46 | 000,025,928 | ---- | M] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\mbam.sys
[2012/09/05 09:23:31 | 000,000,349 | ---- | M] () -- C:\Users\Public\Documents\PCLECHAL.INI
[2012/09/05 08:33:04 | 000,005,632 | ---- | M] () -- C:\Users\Martin\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2012/09/05 08:14:40 | 005,052,128 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
[2012/09/03 11:55:57 | 000,245,289 | ---- | M] () -- C:\Users\Martin\Documents\x.jpg
[2012/09/03 07:40:37 | 000,095,208 | ---- | M] (Oracle Corporation) -- C:\Windows\SysWow64\WindowsAccessBridge-32.dll
[2012/09/03 07:40:35 | 000,246,760 | ---- | M] (Oracle Corporation) -- C:\Windows\SysWow64\javaws.exe
[2012/09/03 07:40:35 | 000,174,056 | ---- | M] (Oracle Corporation) -- C:\Windows\SysWow64\javaw.exe
[2012/09/03 07:40:35 | 000,174,056 | ---- | M] (Oracle Corporation) -- C:\Windows\SysWow64\java.exe
[2012/09/03 07:40:34 | 000,821,736 | ---- | M] (Oracle Corporation) -- C:\Windows\SysWow64\npDeployJava1.dll
[2012/09/03 07:40:34 | 000,746,984 | ---- | M] (Oracle Corporation) -- C:\Windows\SysWow64\deployJava1.dll
[2012/08/30 21:14:00 | 026,228,072 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvoglv64.dll
[2012/08/30 21:14:00 | 025,256,296 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcompiler.dll
[2012/08/30 21:14:00 | 019,828,584 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvoglv32.dll
[2012/08/30 21:14:00 | 018,229,096 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvd3dumx.dll
[2012/08/30 21:14:00 | 017,559,912 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcompiler.dll
[2012/08/30 21:14:00 | 015,291,752 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvd3dum.dll
[2012/08/30 21:14:00 | 014,879,080 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvwgf2umx.dll
[2012/08/30 21:14:00 | 012,465,512 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvwgf2um.dll
[2012/08/30 21:14:00 | 009,066,344 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcuda.dll
[2012/08/30 21:14:00 | 007,626,088 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcuda.dll
[2012/08/30 21:14:00 | 007,397,736 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvopencl.dll
[2012/08/30 21:14:00 | 006,109,032 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvopencl.dll
[2012/08/30 21:14:00 | 002,745,192 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcuvid.dll
[2012/08/30 21:14:00 | 002,725,224 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvapi64.dll
[2012/08/30 21:14:00 | 002,573,672 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcuvid.dll
[2012/08/30 21:14:00 | 002,422,120 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvapi.dll
[2012/08/30 21:14:00 | 002,216,808 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcuvenc.dll
[2012/08/30 21:14:00 | 001,866,088 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcuvenc.dll
[2012/08/30 21:14:00 | 001,760,104 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvdispco64.dll
[2012/08/30 21:14:00 | 001,482,600 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvdispgenco64.dll
[2012/08/30 21:14:00 | 000,971,624 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvumdshimx.dll
[2012/08/30 21:14:00 | 000,830,312 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvumdshim.dll
[2012/08/30 21:14:00 | 000,247,144 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvinitx.dll
[2012/08/30 21:14:00 | 000,202,600 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvinit.dll
[2012/08/30 21:14:00 | 000,016,366 | ---- | M] () -- C:\Windows\SysNative\nvinfo.pb
[2012/08/30 18:18:05 | 000,118,120 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvmctray.dll
[2012/08/30 18:18:05 | 000,063,336 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvshext.dll
[2012/08/30 18:18:04 | 003,487,434 | ---- | M] () -- C:\Windows\SysNative\nvcoproc.bin
[2012/08/30 18:18:01 | 003,266,920 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvsvc64.dll
[2012/08/30 18:17:59 | 006,198,120 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcpl.dll
[2012/08/30 10:40:14 | 000,429,416 | ---- | M] () -- C:\Windows\SysWow64\nvStreaming.exe
[2012/08/29 22:02:51 | 000,002,228 | ---- | M] () -- C:\Users\Martin\Desktop\Google Earth.lnk
[2 C:\Windows\SysWow64\*.tmp files -> C:\Windows\SysWow64\*.tmp -> ]
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
========== Files Created - No Company Name ==========
[2012/09/25 10:06:39 | 000,000,512 | ---- | C] () -- C:\PhysicalMBR.bin
[2012/09/04 22:42:16 | 000,000,349 | ---- | C] () -- C:\Users\Public\Documents\PCLECHAL.INI
[2012/09/03 11:55:47 | 000,245,289 | ---- | C] () -- C:\Users\Martin\Documents\x.jpg
[2012/08/30 10:40:14 | 000,429,416 | ---- | C] () -- C:\Windows\SysWow64\nvStreaming.exe
[2012/08/29 22:02:51 | 000,002,228 | ---- | C] () -- C:\Users\Martin\Desktop\Google Earth.lnk
[2012/07/23 11:30:21 | 000,000,218 | ---- | C] () -- C:\Users\Martin\AppData\Local\recently-used.xbel
[2012/06/08 16:02:42 | 000,005,632 | ---- | C] () -- C:\Users\Martin\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2012/06/04 13:54:56 | 000,734,810 | ---- | C] () -- C:\Windows\SysWow64\PerfStringBackup.INI
[2012/04/29 12:44:08 | 000,669,184 | ---- | C] () -- C:\Windows\SysWow64\pbsvc.exe
[2012/01/08 10:15:21 | 000,000,412 | ---- | C] () -- C:\Users\Martin\AppData\Roaming\All CPU Meter_Settings.ini
[2012/01/02 10:28:30 | 000,000,140 | ---- | C] () -- C:\Windows\ODBC.INI
[2012/01/02 10:10:18 | 000,081,920 | ---- | C] () -- C:\Windows\OLE2TASK.DAT
[2011/12/22 16:43:59 | 000,000,983 | ---- | C] () -- C:\Windows\eReg.dat
[2011/12/18 19:15:17 | 000,103,736 | ---- | C] () -- C:\Windows\SysWow64\PnkBstrB.exe
[2011/12/18 19:15:16 | 000,066,872 | ---- | C] () -- C:\Windows\SysWow64\PnkBstrA.exe
[2011/12/18 15:16:42 | 000,175,616 | ---- | C] () -- C:\Windows\SysWow64\unrar.dll
[2011/12/18 15:16:41 | 000,650,752 | ---- | C] () -- C:\Windows\SysWow64\xvidcore.dll
[2011/12/18 15:16:41 | 000,243,200 | ---- | C] () -- C:\Windows\SysWow64\xvidvfw.dll
[2011/12/18 15:16:41 | 000,079,872 | ---- | C] () -- C:\Windows\SysWow64\ff_vfw.dll
[2011/12/17 19:42:20 | 000,006,791 | ---- | C] () -- C:\Users\Martin\AppData\Local\SRDownloader.err
[2011/12/17 19:42:13 | 000,001,008 | ---- | C] () -- C:\Users\Martin\AppData\Local\SRDownloader.nast
[2011/12/15 06:39:42 | 000,042,392 | ---- | C] () -- C:\Windows\SysWow64\xfcodec.dll
[2011/04/09 19:55:28 | 000,179,261 | ---- | C] () -- C:\Windows\SysWow64\xlive.dll.cat
========== ZeroAccess Check ==========
[2009/07/14 06:55:00 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini
[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64
[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
"" = C:\Windows\SysNative\shell32.dll -- [2009/07/14 03:41:54 | 014,161,920 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2009/07/14 03:16:14 | 012,866,560 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\fastprox.dll -- [2009/07/14 03:40:51 | 000,909,312 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2009/07/14 03:15:20 | 000,605,696 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\wbemess.dll -- [2009/07/14 03:41:56 | 000,505,856 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
========== LOP Check ==========
[2012/07/04 18:33:57 | 000,000,000 | ---D | M] -- C:\Users\Martin\AppData\Roaming\AnvSoft
[2012/03/05 10:37:46 | 000,000,000 | ---D | M] -- C:\Users\Martin\AppData\Roaming\Atari
[2012/05/28 15:52:33 | 000,000,000 | ---D | M] -- C:\Users\Martin\AppData\Roaming\Auslogics
[2012/02/29 19:00:19 | 000,000,000 | ---D | M] -- C:\Users\Martin\AppData\Roaming\Canon
[2012/07/06 11:30:13 | 000,000,000 | ---D | M] -- C:\Users\Martin\AppData\Roaming\DAEMON Tools Lite
[2012/04/02 12:50:48 | 000,000,000 | ---D | M] -- C:\Users\Martin\AppData\Roaming\DarknessII
[2012/04/16 18:00:00 | 000,000,000 | ---D | M] -- C:\Users\Martin\AppData\Roaming\Gatling Gears
[2012/05/28 17:37:23 | 000,000,000 | ---D | M] -- C:\Users\Martin\AppData\Roaming\HD Tune Pro
[2011/12/21 15:30:14 | 000,000,000 | ---D | M] -- C:\Users\Martin\AppData\Roaming\HEXelon
[2012/09/07 21:53:01 | 000,000,000 | ---D | M] -- C:\Users\Martin\AppData\Roaming\ICQ
[2012/07/15 15:28:14 | 000,000,000 | ---D | M] -- C:\Users\Martin\AppData\Roaming\inkscape
[2012/05/04 10:19:07 | 000,000,000 | ---D | M] -- C:\Users\Martin\AppData\Roaming\Kalypso Media
[2012/03/02 19:20:10 | 000,000,000 | ---D | M] -- C:\Users\Martin\AppData\Roaming\Leadertech
[2011/12/18 09:19:02 | 000,000,000 | ---D | M] -- C:\Users\Martin\AppData\Roaming\Opera
[2012/08/15 11:14:50 | 000,000,000 | ---D | M] -- C:\Users\Martin\AppData\Roaming\PACE Anti-Piracy
[2012/06/08 15:49:02 | 000,000,000 | ---D | M] -- C:\Users\Martin\AppData\Roaming\Publish Providers
[2011/12/18 19:15:15 | 000,000,000 | ---D | M] -- C:\Users\Martin\AppData\Roaming\PunkBuster
[2012/01/14 21:37:32 | 000,000,000 | ---D | M] -- C:\Users\Martin\AppData\Roaming\Rovio
[2012/06/08 15:53:31 | 000,000,000 | ---D | M] -- C:\Users\Martin\AppData\Roaming\Sony
[2012/08/15 10:00:31 | 000,000,000 | ---D | M] -- C:\Users\Martin\AppData\Roaming\Sony Creative Software Inc
[2012/03/10 10:42:46 | 000,000,000 | ---D | M] -- C:\Users\Martin\AppData\Roaming\Sony Setup
[2012/08/15 11:16:12 | 000,000,000 | ---D | M] -- C:\Users\Martin\AppData\Roaming\StageManager.BD092818F67280F4B42B04877600987F0111B594.1
[2012/01/03 18:02:52 | 000,000,000 | ---D | M] -- C:\Users\Martin\AppData\Roaming\Tropico 4
[2012/08/04 16:44:04 | 000,000,000 | ---D | M] -- C:\Users\Martin\AppData\Roaming\TS3Client
[2011/12/19 16:45:25 | 000,000,000 | ---D | M] -- C:\Users\Martin\AppData\Roaming\Ubisoft
[2012/09/24 09:40:15 | 000,000,000 | ---D | M] -- C:\Users\Martin\AppData\Roaming\uTorrent
[2011/12/17 23:01:07 | 000,000,000 | ---D | M] -- C:\Users\Martin\AppData\Roaming\wargaming.net
========== Purity Check ==========
========== Custom Scans ==========
< >
[2009/07/14 07:08:49 | 000,000,006 | -H-- | C] () -- C:\Windows\Tasks\SA.DAT
[2009/07/14 07:08:49 | 000,032,578 | ---- | C] () -- C:\Windows\Tasks\SCHEDLGU.TXT
[2011/12/22 09:59:10 | 000,000,932 | ---- | C] () -- C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
[2011/12/22 09:59:11 | 000,000,936 | ---- | C] () -- C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
< >
< MD5 for: AGP440.SYS >
[2009/07/14 03:52:21 | 000,061,008 | ---- | M] (Microsoft Corporation) MD5=608C14DBA7299D8CB6ED035A68A15799 -- C:\Windows\SysNative\drivers\AGP440.sys
[2009/07/14 03:52:21 | 000,061,008 | ---- | M] (Microsoft Corporation) MD5=608C14DBA7299D8CB6ED035A68A15799 -- C:\Windows\SysNative\DriverStore\FileRepository\machine.inf_amd64_neutral_9e6bb86c3b39a3e9\AGP440.sys
[2009/07/14 03:52:21 | 000,061,008 | ---- | M] (Microsoft Corporation) MD5=608C14DBA7299D8CB6ED035A68A15799 -- C:\Windows\winsxs\amd64_machine.inf_31bf3856ad364e35_6.1.7600.16385_none_1607dee2d861e021\AGP440.sys
< MD5 for: ATAPI.SYS >
[2009/07/14 03:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\SysNative\drivers\atapi.sys
[2009/07/14 03:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\SysNative\DriverStore\FileRepository\mshdc.inf_amd64_neutral_a69a58a4286f0b22\atapi.sys
[2009/07/14 03:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\winsxs\amd64_mshdc.inf_31bf3856ad364e35_6.1.7600.16385_none_392d19c13b3ad543\atapi.sys
< MD5 for: AUTOCHK.EXE >
[2009/07/14 03:14:12 | 000,668,160 | ---- | M] (Microsoft Corporation) MD5=41E4C8EBA464E7D6A5BA5E8827732AEB -- C:\Windows\SysWOW64\autochk.exe
[2009/07/14 03:14:12 | 000,668,160 | ---- | M] (Microsoft Corporation) MD5=41E4C8EBA464E7D6A5BA5E8827732AEB -- C:\Windows\winsxs\x86_microsoft-windows-autochk_31bf3856ad364e35_6.1.7600.16385_none_e1ca436d2314b860\autochk.exe
[2009/07/14 03:38:56 | 000,777,728 | ---- | M] (Microsoft Corporation) MD5=8B7F8E882A649D81CEA1EDE9BBB68FFF -- C:\Windows\SysNative\autochk.exe
[2009/07/14 03:38:56 | 000,777,728 | ---- | M] (Microsoft Corporation) MD5=8B7F8E882A649D81CEA1EDE9BBB68FFF -- C:\Windows\winsxs\amd64_microsoft-windows-autochk_31bf3856ad364e35_6.1.7600.16385_none_3de8def0db722996\autochk.exe
< MD5 for: CDROM.SYS >
[2009/07/14 01:19:54 | 000,147,456 | ---- | M] (Microsoft Corporation) MD5=83D2D75E1EFB81B3450C18131443F7DB -- C:\Windows\SysNative\drivers\cdrom.sys
[2009/07/14 01:19:54 | 000,147,456 | ---- | M] (Microsoft Corporation) MD5=83D2D75E1EFB81B3450C18131443F7DB -- C:\Windows\SysNative\DriverStore\FileRepository\cdrom.inf_amd64_neutral_8363d00ecae4322d\cdrom.sys
[2009/07/14 01:19:54 | 000,147,456 | ---- | M] (Microsoft Corporation) MD5=83D2D75E1EFB81B3450C18131443F7DB -- C:\Windows\winsxs\amd64_cdrom.inf_31bf3856ad364e35_6.1.7600.16385_none_bb9e4d89bd7870f1\cdrom.sys
< MD5 for: CNGAUDIT.DLL >
[2009/07/14 03:15:06 | 000,012,288 | ---- | M] (Microsoft Corporation) MD5=50BA656134F78AF64E4DD3C8B6FEFD7E -- C:\Windows\SysWOW64\cngaudit.dll
[2009/07/14 03:15:06 | 000,012,288 | ---- | M] (Microsoft Corporation) MD5=50BA656134F78AF64E4DD3C8B6FEFD7E -- C:\Windows\winsxs\x86_microsoft-windows-cngaudit-dll_31bf3856ad364e35_6.1.7600.16385_none_e83a414890e8132b\cngaudit.dll
[2009/07/14 03:40:20 | 000,018,944 | ---- | M] (Microsoft Corporation) MD5=86FE1B1F8FD42CD0DB641AB1CDB13093 -- C:\Windows\SysNative\cngaudit.dll
[2009/07/14 03:40:20 | 000,018,944 | ---- | M] (Microsoft Corporation) MD5=86FE1B1F8FD42CD0DB641AB1CDB13093 -- C:\Windows\winsxs\amd64_microsoft-windows-cngaudit-dll_31bf3856ad364e35_6.1.7600.16385_none_4458dccc49458461\cngaudit.dll
< MD5 for: CRYPTSVC.DLL >
[2009/07/14 03:40:24 | 000,175,104 | ---- | M] (Microsoft Corporation) MD5=8C57411B66282C01533CB776F98AD384 -- C:\Windows\SysNative\cryptsvc.dll
[2009/07/14 03:40:24 | 000,175,104 | ---- | M] (Microsoft Corporation) MD5=8C57411B66282C01533CB776F98AD384 -- C:\Windows\winsxs\amd64_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7600.16385_none_d1f48b0bb4805490\cryptsvc.dll
[2009/07/14 03:15:07 | 000,135,680 | ---- | M] (Microsoft Corporation) MD5=9C231178CE4FB385F4B54B0A9080B8A4 -- C:\Windows\SysWOW64\cryptsvc.dll
[2009/07/14 03:15:07 | 000,135,680 | ---- | M] (Microsoft Corporation) MD5=9C231178CE4FB385F4B54B0A9080B8A4 -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7600.16385_none_75d5ef87fc22e35a\cryptsvc.dll
< MD5 for: EXPLORER.EXE >
[2009/07/14 03:14:20 | 002,613,248 | ---- | M] (Microsoft Corporation) MD5=15BC38A7492BEFE831966ADB477CF76F -- C:\Windows\SysWOW64\explorer.exe
[2009/07/14 03:14:20 | 002,613,248 | ---- | M] (Microsoft Corporation) MD5=15BC38A7492BEFE831966ADB477CF76F -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16385_none_b7fe430bc7ce3761\explorer.exe
[2009/10/31 07:45:39 | 002,614,272 | ---- | M] (Microsoft Corporation) MD5=2626FC9755BE22F805D3CFA0CE3EE727 -- C:\Windows\SoftwareDistribution\Download\0cfc8dbf763c806fb82e646c7352a6fc\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16450_none_b819b343c7ba6202\explorer.exe
[2009/08/03 08:19:07 | 002,868,224 | ---- | M] (Microsoft Corporation) MD5=700073016DAC1C3D2E7E2CE4223334B6 -- C:\Windows\SoftwareDistribution\Download\00236e2e422dab929dcda56260d05350\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20500_none_ae84b558ac4eb41c\explorer.exe
[2009/10/31 08:34:59 | 002,870,272 | ---- | M] (Microsoft Corporation) MD5=9AAAEC8DAC27AA17B053E6352AD233AE -- C:\Windows\SoftwareDistribution\Download\0cfc8dbf763c806fb82e646c7352a6fc\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16450_none_adc508f19359a007\explorer.exe
[2009/08/03 07:49:47 | 002,613,248 | ---- | M] (Microsoft Corporation) MD5=9FF6C4C91A3711C0A3B18F87B08B518D -- C:\Windows\SoftwareDistribution\Download\00236e2e422dab929dcda56260d05350\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20500_none_b8d95faae0af7617\explorer.exe
[2009/10/31 08:38:38 | 002,870,272 | ---- | M] (Microsoft Corporation) MD5=B8EC4BD49CE8F6FC457721BFC210B67F -- C:\Windows\SoftwareDistribution\Download\0cfc8dbf763c806fb82e646c7352a6fc\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20563_none_ae46d6aeac7ca7c7\explorer.exe
[2009/08/03 07:35:50 | 002,613,248 | ---- | M] (Microsoft Corporation) MD5=B95EEB0F4E5EFBF1038A35B3351CF047 -- C:\Windows\SoftwareDistribution\Download\00236e2e422dab929dcda56260d05350\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16404_none_b853c407c78e3ba9\explorer.exe
[2009/07/14 03:39:10 | 002,868,224 | ---- | M] (Microsoft Corporation) MD5=C235A51CB740E45FFA0EBFB9BAFCDA64 -- C:\Windows\explorer.exe
[2009/07/14 03:39:10 | 002,868,224 | ---- | M] (Microsoft Corporation) MD5=C235A51CB740E45FFA0EBFB9BAFCDA64 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16385_none_ada998b9936d7566\explorer.exe
[2009/10/31 08:00:51 | 002,614,272 | ---- | M] (Microsoft Corporation) MD5=C76153C7ECA00FA852BB0C193378F917 -- C:\Windows\SoftwareDistribution\Download\0cfc8dbf763c806fb82e646c7352a6fc\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20563_none_b89b8100e0dd69c2\explorer.exe
[2009/08/03 08:17:37 | 002,868,224 | ---- | M] (Microsoft Corporation) MD5=F170B4A061C9E026437B193B4D571799 -- C:\Windows\SoftwareDistribution\Download\00236e2e422dab929dcda56260d05350\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16404_none_adff19b5932d79ae\explorer.exe
< MD5 for: HAL.DLL >
[2009/07/14 03:47:48 | 000,263,232 | ---- | M] (Microsoft Corporation) MD5=C0A6F6E05E14FBCAEDE7796C8590B7AC -- C:\Windows\SysNative\hal.dll
[2009/07/14 03:47:48 | 000,263,232 | ---- | M] (Microsoft Corporation) MD5=C0A6F6E05E14FBCAEDE7796C8590B7AC -- C:\Windows\winsxs\amd64_microsoft-windows-hal_31bf3856ad364e35_6.1.7600.16385_none_071de44b735b3dfc\hal.dll
< MD5 for: IASTORV.SYS >
[2009/07/14 03:48:04 | 000,410,688 | ---- | M] (Intel Corporation) MD5=D83EFB6FD45DF9D55E9A1AFC63640D50 -- C:\Windows\SysNative\drivers\iaStorV.sys
[2009/07/14 03:48:04 | 000,410,688 | ---- | M] (Intel Corporation) MD5=D83EFB6FD45DF9D55E9A1AFC63640D50 -- C:\Windows\SysNative\DriverStore\FileRepository\iastorv.inf_amd64_neutral_18cccb83b34e1453\iaStorV.sys
[2009/07/14 03:48:04 | 000,410,688 | ---- | M] (Intel Corporation) MD5=D83EFB6FD45DF9D55E9A1AFC63640D50 -- C:\Windows\winsxs\amd64_iastorv.inf_31bf3856ad364e35_6.1.7600.16385_none_0b06441fa1790136\iaStorV.sys
< MD5 for: ISAPNP.SYS >
[2009/07/14 03:48:04 | 000,020,544 | ---- | M] (Microsoft Corporation) MD5=2F7B28DC3E1183E5EB418DF55C204F38 -- C:\Windows\SysNative\drivers\isapnp.sys
[2009/07/14 03:48:04 | 000,020,544 | ---- | M] (Microsoft Corporation) MD5=2F7B28DC3E1183E5EB418DF55C204F38 -- C:\Windows\SysNative\DriverStore\FileRepository\machine.inf_amd64_neutral_9e6bb86c3b39a3e9\isapnp.sys
[2009/07/14 03:48:04 | 000,020,544 | ---- | M] (Microsoft Corporation) MD5=2F7B28DC3E1183E5EB418DF55C204F38 -- C:\Windows\winsxs\amd64_machine.inf_31bf3856ad364e35_6.1.7600.16385_none_1607dee2d861e021\isapnp.sys
< MD5 for: LSASS.EXE >
[2009/07/14 03:39:16 | 000,031,232 | ---- | M] (Microsoft Corporation) MD5=0793F40B9B8A1BDD266296409DBD91EA -- C:\Windows\SysNative\lsass.exe
[2009/07/14 03:39:16 | 000,031,232 | ---- | M] (Microsoft Corporation) MD5=0793F40B9B8A1BDD266296409DBD91EA -- C:\Windows\winsxs\amd64_microsoft-windows-lsa_31bf3856ad364e35_6.1.7600.16385_none_023f7c69767c3edd\lsass.exe
< MD5 for: NDIS.SYS >
[2009/07/14 03:48:27 | 000,947,776 | ---- | M] (Microsoft Corporation) MD5=CAD515DBD07D082BB317D9928CE8962C -- C:\Windows\SysNative\drivers\ndis.sys
[2009/07/14 03:48:27 | 000,947,776 | ---- | M] (Microsoft Corporation) MD5=CAD515DBD07D082BB317D9928CE8962C -- C:\Windows\winsxs\amd64_microsoft-windows-ndis_31bf3856ad364e35_6.1.7600.16385_none_03bc1d6e35c013bf\ndis.sys
< MD5 for: NETLOGON.DLL >
[2009/07/14 03:41:52 | 000,692,736 | ---- | M] (Microsoft Corporation) MD5=956D030D375F207B22FB111E06EF9C35 -- C:\Windows\SysNative\netlogon.dll
[2009/07/14 03:41:52 | 000,692,736 | ---- | M] (Microsoft Corporation) MD5=956D030D375F207B22FB111E06EF9C35 -- C:\Windows\winsxs\amd64_microsoft-windows-security-netlogon_31bf3856ad364e35_6.1.7600.16385_none_59aca8ea51aaeefe\netlogon.dll
[2009/07/14 03:16:02 | 000,563,712 | ---- | M] (Microsoft Corporation) MD5=EAA75D9000B71F10EEC04D2AE6C60E81 -- C:\Windows\SysWOW64\netlogon.dll
[2009/07/14 03:16:02 | 000,563,712 | ---- | M] (Microsoft Corporation) MD5=EAA75D9000B71F10EEC04D2AE6C60E81 -- C:\Windows\winsxs\wow64_microsoft-windows-security-netlogon_31bf3856ad364e35_6.1.7600.16385_none_6401533c860bb0f9\netlogon.dll
< MD5 for: NVRAID.SYS >
[2009/07/14 03:48:27 | 000,149,056 | ---- | M] (NVIDIA Corporation) MD5=3E38712941E9BB4DDBEE00AFFE3FED3D -- C:\Windows\SysNative\drivers\nvraid.sys
[2009/07/14 03:48:27 | 000,149,056 | ---- | M] (NVIDIA Corporation) MD5=3E38712941E9BB4DDBEE00AFFE3FED3D -- C:\Windows\SysNative\DriverStore\FileRepository\nvraid.inf_amd64_neutral_5bde3fe2945bce9e\nvraid.sys
[2009/07/14 03:48:27 | 000,149,056 | ---- | M] (NVIDIA Corporation) MD5=3E38712941E9BB4DDBEE00AFFE3FED3D -- C:\Windows\winsxs\amd64_nvraid.inf_31bf3856ad364e35_6.1.7600.16385_none_95cfb4ced8afab0e\nvraid.sys
< MD5 for: NVSTOR.SYS >
[2009/07/14 03:45:45 | 000,167,488 | ---- | M] (NVIDIA Corporation) MD5=477DC4D6DEB99BE37084C9AC6D013DA1 -- C:\Windows\SysNative\drivers\nvstor.sys
[2009/07/14 03:45:45 | 000,167,488 | ---- | M] (NVIDIA Corporation) MD5=477DC4D6DEB99BE37084C9AC6D013DA1 -- C:\Windows\SysNative\DriverStore\FileRepository\nvraid.inf_amd64_neutral_5bde3fe2945bce9e\nvstor.sys
[2009/07/14 03:45:45 | 000,167,488 | ---- | M] (NVIDIA Corporation) MD5=477DC4D6DEB99BE37084C9AC6D013DA1 -- C:\Windows\winsxs\amd64_nvraid.inf_31bf3856ad364e35_6.1.7600.16385_none_95cfb4ced8afab0e\nvstor.sys
< MD5 for: SCECLI.DLL >
[2009/07/14 03:16:13 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=26073302DAEA83CC5B944C546D6B47D2 -- C:\Windows\SysWOW64\scecli.dll
[2009/07/14 03:16:13 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=26073302DAEA83CC5B944C546D6B47D2 -- C:\Windows\winsxs\wow64_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7600.16385_none_9e577e55272d37b4\scecli.dll
[2009/07/14 03:41:53 | 000,232,448 | ---- | M] (Microsoft Corporation) MD5=398712DDDAEFB85EDF61DF6A07B65C79 -- C:\Windows\SysNative\scecli.dll
[2009/07/14 03:41:53 | 000,232,448 | ---- | M] (Microsoft Corporation) MD5=398712DDDAEFB85EDF61DF6A07B65C79 -- C:\Windows\winsxs\amd64_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7600.16385_none_9402d402f2cc75b9\scecli.dll
< MD5 for: SMSS.EXE >
[2009/07/14 03:39:41 | 000,112,640 | ---- | M] (Microsoft Corporation) MD5=1911A3356FA3F77CCC825CCBAC038C2A -- C:\Windows\SysNative\smss.exe
[2009/07/14 03:39:41 | 000,112,640 | ---- | M] (Microsoft Corporation) MD5=1911A3356FA3F77CCC825CCBAC038C2A -- C:\Windows\winsxs\amd64_microsoft-windows-smss_31bf3856ad364e35_6.1.7600.16385_none_082f99a432e2a661\smss.exe
< MD5 for: SVCHOST.EXE >
[2012/09/07 17:04:42 | 000,218,696 | ---- | M] () MD5=4E0D8C9F83B7FD82393F7D8CCC27E7AE -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\Chameleon\svchost.exe
[2009/07/14 03:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\SysWOW64\svchost.exe
[2009/07/14 03:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\winsxs\x86_microsoft-windows-services-svchost_31bf3856ad364e35_6.1.7600.16385_none_b591afc466a15356\svchost.exe
[2009/07/14 03:39:46 | 000,027,136 | ---- | M] (Microsoft Corporation) MD5=C78655BC80301D76ED4FEF1C1EA40A7D -- C:\Windows\SysNative\svchost.exe
[2009/07/14 03:39:46 | 000,027,136 | ---- | M] (Microsoft Corporation) MD5=C78655BC80301D76ED4FEF1C1EA40A7D -- C:\Windows\winsxs\amd64_microsoft-windows-services-svchost_31bf3856ad364e35_6.1.7600.16385_none_11b04b481efec48c\svchost.exe
< MD5 for: TCPIP.SYS >
[2012/03/30 12:19:17 | 001,877,872 | ---- | M] (Microsoft Corporation) MD5=5EFD096DEF47F8B88EF591DA92143440 -- C:\Windows\SoftwareDistribution\Download\092d0da1be926fabf4653305eb1af03a\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.21178_none_0faa5514992a39a7\tcpip.sys
[2012/03/30 13:09:53 | 001,895,280 | ---- | M] (Microsoft Corporation) MD5=624C5B3AA4C99B3184BB922D9ECE3FF0 -- C:\Windows\SoftwareDistribution\Download\092d0da1be926fabf4653305eb1af03a\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.16986_none_0f140fa780164fde\tcpip.sys
[2010/04/09 13:06:28 | 001,898,376 | ---- | M] (Microsoft Corporation) MD5=7FC877A25796D8ADF539E64703FCA7E1 -- C:\Windows\SysNative\drivers\tcpip.sys
[2010/04/09 13:06:28 | 001,898,376 | ---- | M] (Microsoft Corporation) MD5=7FC877A25796D8ADF539E64703FCA7E1 -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.16569_none_0f2ca8c580036f65\tcpip.sys
[2012/03/30 12:26:36 | 001,901,424 | ---- | M] (Microsoft Corporation) MD5=885B202006EE17AE99B9FBCEC9AF88C9 -- C:\Windows\SoftwareDistribution\Download\092d0da1be926fabf4653305eb1af03a\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.21954_none_11a27a8e9643d23a\tcpip.sys
[2009/07/14 03:45:55 | 001,898,576 | ---- | M] (Microsoft Corporation) MD5=912107716BAB424C7870E8E6AF5E07E1 -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.16385_none_0f1303f98017479d\tcpip.sys
[2010/04/09 09:56:29 | 001,892,232 | ---- | M] (Microsoft Corporation) MD5=A9C0F786AC1F736891D05CE0A1D29DEB -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.20687_none_0f9ea52499331463\tcpip.sys
[2012/03/30 13:35:47 | 001,918,320 | ---- | M] (Microsoft Corporation) MD5=ACB82BDA8F46C84F465C1AFA517DC4B9 -- C:\Windows\SoftwareDistribution\Download\092d0da1be926fabf4653305eb1af03a\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.17802_none_114ceccb7cff740d\tcpip.sys
< MD5 for: USERINIT.EXE >
[2009/07/14 03:14:43 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=6DE80F60D7DE9CE6B8C2DDFDF79EF175 -- C:\Windows\SysWOW64\userinit.exe
[2009/07/14 03:14:43 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=6DE80F60D7DE9CE6B8C2DDFDF79EF175 -- C:\Windows\winsxs\x86_microsoft-windows-userinit_31bf3856ad364e35_6.1.7600.16385_none_dbff103933038d7c\userinit.exe
[2009/07/14 03:39:48 | 000,030,208 | ---- | M] (Microsoft Corporation) MD5=6F8F1376A13114CC10C0E69274F5A4DE -- C:\Windows\SysNative\userinit.exe
[2009/07/14 03:39:48 | 000,030,208 | ---- | M] (Microsoft Corporation) MD5=6F8F1376A13114CC10C0E69274F5A4DE -- C:\Windows\winsxs\amd64_microsoft-windows-userinit_31bf3856ad364e35_6.1.7600.16385_none_381dabbceb60feb2\userinit.exe
< MD5 for: WINLOGON.EXE >
[2009/07/14 03:39:52 | 000,389,120 | ---- | M] (Microsoft Corporation) MD5=132328DF455B0028F13BF0ABEE51A63A -- C:\Windows\SysNative\winlogon.exe
[2009/07/14 03:39:52 | 000,389,120 | ---- | M] (Microsoft Corporation) MD5=132328DF455B0028F13BF0ABEE51A63A -- C:\Windows\winsxs\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7600.16385_none_cbb7f2bdeea2829c\winlogon.exe
[2012/09/07 17:04:42 | 000,218,696 | ---- | M] () MD5=4E0D8C9F83B7FD82393F7D8CCC27E7AE -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\Chameleon\winlogon.exe
[2009/10/28 09:01:57 | 000,389,632 | ---- | M] (Microsoft Corporation) MD5=A93D41A4D4B0D91C072D11DD8AF266DE -- C:\Windows\SoftwareDistribution\Download\0cfc8dbf763c806fb82e646c7352a6fc\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7600.20560_none_cc522fd507b468f8\winlogon.exe
[2009/10/28 08:24:40 | 000,389,632 | ---- | M] (Microsoft Corporation) MD5=DA3E2A6FA9660CC75B471530CE88453A -- C:\Windows\SoftwareDistribution\Download\0cfc8dbf763c806fb82e646c7352a6fc\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7600.16447_none_cbe534e7ee8042ad\winlogon.exe
< MD5 for: WS2_32.DLL >
[2009/07/14 03:41:58 | 000,296,448 | ---- | M] (Microsoft Corporation) MD5=7083F463788CB34FCC42F565D56F89E8 -- C:\Windows\SysNative\ws2_32.dll
[2009/07/14 03:41:58 | 000,296,448 | ---- | M] (Microsoft Corporation) MD5=7083F463788CB34FCC42F565D56F89E8 -- C:\Windows\winsxs\amd64_microsoft-windows-w..nfrastructure-ws232_31bf3856ad364e35_6.1.7600.16385_none_4eaca269e8070c6b\ws2_32.dll
[2009/07/14 03:16:20 | 000,206,336 | ---- | M] (Microsoft Corporation) MD5=DAAE8A9B8C0ACC7F858454132553C30D -- C:\Windows\SysWOW64\ws2_32.dll
[2009/07/14 03:16:20 | 000,206,336 | ---- | M] (Microsoft Corporation) MD5=DAAE8A9B8C0ACC7F858454132553C30D -- C:\Windows\winsxs\x86_microsoft-windows-w..nfrastructure-ws232_31bf3856ad364e35_6.1.7600.16385_none_f28e06e62fa99b35\ws2_32.dll
< >
< %systemroot%*.* /U /s >
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
[1 C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp files -> C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp -> ]
[2 C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\*.tmp files -> C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\026d37d9d0d955fde910ecf59f7b93de\*.tmp files -> C:\Windows\SoftwareDistribution\Download\026d37d9d0d955fde910ecf59f7b93de\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\07816e228021d9ce18fb86c60fd9a6a6\*.tmp files -> C:\Windows\SoftwareDistribution\Download\07816e228021d9ce18fb86c60fd9a6a6\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\08de3c83def3f05ce0c5a1bd84d93296\*.tmp files -> C:\Windows\SoftwareDistribution\Download\08de3c83def3f05ce0c5a1bd84d93296\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\0d185f1dfa9b452bbcf641fb0708a086\*.tmp files -> C:\Windows\SoftwareDistribution\Download\0d185f1dfa9b452bbcf641fb0708a086\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\0e3bf0a19e9400ba9f0a6dcf5dee14d2\*.tmp files -> C:\Windows\SoftwareDistribution\Download\0e3bf0a19e9400ba9f0a6dcf5dee14d2\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\10009e7335c1d28f4c35587a0c758b68\*.tmp files -> C:\Windows\SoftwareDistribution\Download\10009e7335c1d28f4c35587a0c758b68\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\15f515a6d2264980fd04ce886425ba94\*.tmp files -> C:\Windows\SoftwareDistribution\Download\15f515a6d2264980fd04ce886425ba94\*.tmp -> ]
[2 C:\Windows\SoftwareDistribution\Download\1b2c0a5ab3de5f5851190554ba72c2db\*.tmp files -> C:\Windows\SoftwareDistribution\Download\1b2c0a5ab3de5f5851190554ba72c2db\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\1fadb9307007a21c57062875a04bfffe\*.tmp files -> C:\Windows\SoftwareDistribution\Download\1fadb9307007a21c57062875a04bfffe\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\25e98dafef2ef365b34d072b82efa034\*.tmp files -> C:\Windows\SoftwareDistribution\Download\25e98dafef2ef365b34d072b82efa034\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\291e4c970688f0ae75ac6de78e4a5e7f\*.tmp files -> C:\Windows\SoftwareDistribution\Download\291e4c970688f0ae75ac6de78e4a5e7f\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\2f5d20a0e19ee0383d29ff3d1f1b72d0\*.tmp files -> C:\Windows\SoftwareDistribution\Download\2f5d20a0e19ee0383d29ff3d1f1b72d0\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\2fb5af4537b4aade6b6041300942a76c\*.tmp files -> C:\Windows\SoftwareDistribution\Download\2fb5af4537b4aade6b6041300942a76c\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\30586ca8d10d70d0efef987e7dd1a59e\*.tmp files -> C:\Windows\SoftwareDistribution\Download\30586ca8d10d70d0efef987e7dd1a59e\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\30e599f083a2e5afbbdc44152cc86213\*.tmp files -> C:\Windows\SoftwareDistribution\Download\30e599f083a2e5afbbdc44152cc86213\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\33a1b5a0475cdbfea139233e4d990a8c\*.tmp files -> C:\Windows\SoftwareDistribution\Download\33a1b5a0475cdbfea139233e4d990a8c\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\33df691527b299a5f50b5884c5979589\*.tmp files -> C:\Windows\SoftwareDistribution\Download\33df691527b299a5f50b5884c5979589\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\35f960a717c3b31a0c52e875b6f47446\*.tmp files -> C:\Windows\SoftwareDistribution\Download\35f960a717c3b31a0c52e875b6f47446\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\372cec5cab40b5ede78ec0e25075836b\*.tmp files -> C:\Windows\SoftwareDistribution\Download\372cec5cab40b5ede78ec0e25075836b\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\37b8129e06594bf0bad404d224387f50\*.tmp files -> C:\Windows\SoftwareDistribution\Download\37b8129e06594bf0bad404d224387f50\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\3f456d1c3cc7227d8b29410b5d765b3b\*.tmp files -> C:\Windows\SoftwareDistribution\Download\3f456d1c3cc7227d8b29410b5d765b3b\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\3f8932116010354444b6612ab0f215c3\*.tmp files -> C:\Windows\SoftwareDistribution\Download\3f8932116010354444b6612ab0f215c3\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\3fedcac79b66bcf0809496c7a29500cd\*.tmp files -> C:\Windows\SoftwareDistribution\Download\3fedcac79b66bcf0809496c7a29500cd\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\48ffb769a0e6fdd59056da3fe7133cee\*.tmp files -> C:\Windows\SoftwareDistribution\Download\48ffb769a0e6fdd59056da3fe7133cee\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\4c3cfd816ea95bed8df07960fc5ccec2\*.tmp files -> C:\Windows\SoftwareDistribution\Download\4c3cfd816ea95bed8df07960fc5ccec2\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\4c9630d89e2dfab14045d5686ead983a\*.tmp files -> C:\Windows\SoftwareDistribution\Download\4c9630d89e2dfab14045d5686ead983a\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\507153e38a8f765b3db821277967b383\*.tmp files -> C:\Windows\SoftwareDistribution\Download\507153e38a8f765b3db821277967b383\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\58eb619db5f01e6c35f0d1feac88a898\*.tmp files -> C:\Windows\SoftwareDistribution\Download\58eb619db5f01e6c35f0d1feac88a898\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\63fb1fe4e55937694ce57330850fcc41\*.tmp files -> C:\Windows\SoftwareDistribution\Download\63fb1fe4e55937694ce57330850fcc41\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\6890643e2d2d41d0ea784de0aa468512\*.tmp files -> C:\Windows\SoftwareDistribution\Download\6890643e2d2d41d0ea784de0aa468512\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\6cfd6c69fabc14dc6659c83354800a5e\*.tmp files -> C:\Windows\SoftwareDistribution\Download\6cfd6c69fabc14dc6659c83354800a5e\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\6d2fb8110de53ec70e0a688737d18385\*.tmp files -> C:\Windows\SoftwareDistribution\Download\6d2fb8110de53ec70e0a688737d18385\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\6fea7e39c782dcbb73c42ab082114bf5\*.tmp files -> C:\Windows\SoftwareDistribution\Download\6fea7e39c782dcbb73c42ab082114bf5\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\7100c8b53c17e1e3a46690e946999892\*.tmp files -> C:\Windows\SoftwareDistribution\Download\7100c8b53c17e1e3a46690e946999892\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\7718ca97671278d4f6b4c5091a742c56\*.tmp files -> C:\Windows\SoftwareDistribution\Download\7718ca97671278d4f6b4c5091a742c56\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\7f5b7c5127b02932973fe0a3d84d7160\*.tmp files -> C:\Windows\SoftwareDistribution\Download\7f5b7c5127b02932973fe0a3d84d7160\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\8bcd04d4dcc9490cbdfd86cf5981803d\*.tmp files -> C:\Windows\SoftwareDistribution\Download\8bcd04d4dcc9490cbdfd86cf5981803d\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\8cc652dc96edcb7638f3f8a9c7c78997\*.tmp files -> C:\Windows\SoftwareDistribution\Download\8cc652dc96edcb7638f3f8a9c7c78997\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\8eae7fca2e8b42147090801b853b2bca\*.tmp files -> C:\Windows\SoftwareDistribution\Download\8eae7fca2e8b42147090801b853b2bca\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\986ce6e1ed11ad55a839346543c289bb\*.tmp files -> C:\Windows\SoftwareDistribution\Download\986ce6e1ed11ad55a839346543c289bb\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\9c4afe3ca8e12d11080ab23a016e04ee\*.tmp files -> C:\Windows\SoftwareDistribution\Download\9c4afe3ca8e12d11080ab23a016e04ee\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\9df98c10d975c728c5e55c46837f1fe9\*.tmp files -> C:\Windows\SoftwareDistribution\Download\9df98c10d975c728c5e55c46837f1fe9\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\9e813ffbfb52528694c5b9252f99eca1\*.tmp files -> C:\Windows\SoftwareDistribution\Download\9e813ffbfb52528694c5b9252f99eca1\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\9eeb0ab0774fe04917d638b2dc708765\*.tmp files -> C:\Windows\SoftwareDistribution\Download\9eeb0ab0774fe04917d638b2dc708765\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\9f026e7acab636511cde271223b5e9b7\*.tmp files -> C:\Windows\SoftwareDistribution\Download\9f026e7acab636511cde271223b5e9b7\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\a0ac2d45f915393013bbb1355fa78818\*.tmp files -> C:\Windows\SoftwareDistribution\Download\a0ac2d45f915393013bbb1355fa78818\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\a857ae6a868251417a02c32fe167a0aa\*.tmp files -> C:\Windows\SoftwareDistribution\Download\a857ae6a868251417a02c32fe167a0aa\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\aeeab75a8ce8b4b128a14c8ba4631fae\*.tmp files -> C:\Windows\SoftwareDistribution\Download\aeeab75a8ce8b4b128a14c8ba4631fae\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\b5f83aac8280a09809ba6ecbfe7df034\*.tmp files -> C:\Windows\SoftwareDistribution\Download\b5f83aac8280a09809ba6ecbfe7df034\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\c7e77cc72696c8d0f5ae6991105e37ff\*.tmp files -> C:\Windows\SoftwareDistribution\Download\c7e77cc72696c8d0f5ae6991105e37ff\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\cada7cb1e9e3cb0b0c6c30d1acdb14d0\*.tmp files -> C:\Windows\SoftwareDistribution\Download\cada7cb1e9e3cb0b0c6c30d1acdb14d0\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\cd8f0f64a44e565131cb912f33693fa8\*.tmp files -> C:\Windows\SoftwareDistribution\Download\cd8f0f64a44e565131cb912f33693fa8\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\d17d032a81e5136f324b6e3e658e7fa1\*.tmp files -> C:\Windows\SoftwareDistribution\Download\d17d032a81e5136f324b6e3e658e7fa1\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\d67406fec88719855f76272591486bcd\*.tmp files -> C:\Windows\SoftwareDistribution\Download\d67406fec88719855f76272591486bcd\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\dbc4e637bf9d29a8359e46a7e031721c\*.tmp files -> C:\Windows\SoftwareDistribution\Download\dbc4e637bf9d29a8359e46a7e031721c\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\e22cf94ac2b22cf857176f33307b4f9a\*.tmp files -> C:\Windows\SoftwareDistribution\Download\e22cf94ac2b22cf857176f33307b4f9a\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\e2c27fdf51d82bbfd10ca60913711a22\*.tmp files -> C:\Windows\SoftwareDistribution\Download\e2c27fdf51d82bbfd10ca60913711a22\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\ec0520ea2782b9e5ef3a9768e55fa20f\*.tmp files -> C:\Windows\SoftwareDistribution\Download\ec0520ea2782b9e5ef3a9768e55fa20f\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\f8a4aebd2e2440adc172b74e7047eed7\*.tmp files -> C:\Windows\SoftwareDistribution\Download\f8a4aebd2e2440adc172b74e7047eed7\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\fda495fe0981e24f0c2ff11a4af66247\*.tmp files -> C:\Windows\SoftwareDistribution\Download\fda495fe0981e24f0c2ff11a4af66247\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\fdd40bacd0a8e76b0477122dfef389dd\*.tmp files -> C:\Windows\SoftwareDistribution\Download\fdd40bacd0a8e76b0477122dfef389dd\*.tmp -> ]
[2 C:\Windows\System32\*.tmp files -> C:\Windows\System32\*.tmp -> ]
[2 C:\Windows\SysWOW64\*.tmp files -> C:\Windows\SysWOW64\*.tmp -> ]
[31 C:\Windows\Temp\*.tmp files -> C:\Windows\Temp\*.tmp -> ]
< %SYSTEMDRIVE%\*.exe >
< %ALLUSERSPROFILE%\Application Data\*. >
< %ALLUSERSPROFILE%\Application Data\*.exe /s >
OTL logfile created on: 26. 9. 2012 15:56:01 - Run 2
OTL by OldTimer - Version 3.2.68.0 Folder = C:\Users\Martin\Desktop
64bit- Ultimate Edition (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 0000041b | Country: Slovenská republika | Language: SKY | Date Format: d. M. yyyy
7,97 Gb Total Physical Memory | 6,78 Gb Available Physical Memory | 85,08% Memory free
15,94 Gb Paging File | 14,78 Gb Available in Paging File | 92,70% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 931,41 Gb Total Space | 191,20 Gb Free Space | 20,53% Space Free | Partition Type: NTFS
Computer Name: MARTIN-PC | User Name: Martin | Logged in as Administrator.
Boot Mode: SafeMode | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Processes (SafeList) ==========
PRC - [2012/09/25 09:57:49 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Martin\Desktop\OTL.exe
========== Modules (No Company Name) ==========
========== Services (SafeList) ==========
SRV:64bit: - [2012/03/26 18:49:56 | 000,291,696 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- c:\Program Files\Microsoft Security Client\NisSrv.exe -- (NisSrv)
SRV:64bit: - [2012/03/26 18:49:56 | 000,012,600 | ---- | M] (Microsoft Corporation) [Auto | Running] -- c:\Program Files\Microsoft Security Client\MsMpEng.exe -- (MsMpSvc)
SRV:64bit: - [2009/07/14 03:41:27 | 001,011,712 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV:64bit: - [2009/07/14 03:40:01 | 000,193,536 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\appmgmts.dll -- (AppMgmt)
SRV - [2012/09/07 17:18:36 | 000,114,144 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2012/09/07 17:04:46 | 000,676,936 | ---- | M] (Malwarebytes Corporation) [Auto | Stopped] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe -- (MBAMService)
SRV - [2012/09/07 17:04:46 | 000,399,432 | ---- | M] (Malwarebytes Corporation) [Auto | Stopped] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe -- (MBAMScheduler)
SRV - [2012/08/30 21:14:00 | 001,258,856 | ---- | M] (NVIDIA Corporation) [Auto | Stopped] -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe -- (nvUpdatusService)
SRV - [2012/08/30 10:40:00 | 000,382,312 | ---- | M] (NVIDIA Corporation) [Auto | Stopped] -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe -- (Stereo Service)
SRV - [2012/07/27 22:51:26 | 000,063,960 | ---- | M] (Adobe Systems Incorporated) [Auto | Stopped] -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2012/07/03 13:19:28 | 000,160,944 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files (x86)\Skype\Updater\Updater.exe -- (SkypeUpdate)
SRV - [2012/05/22 10:12:55 | 000,529,232 | ---- | M] (Valve Corporation) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Steam\SteamService.exe -- (Steam Client Service)
SRV - [2012/04/29 12:44:08 | 000,066,872 | ---- | M] () [Auto | Stopped] -- C:\Windows\SysWOW64\PnkBstrA.exe -- (PnkBstrA)
SRV - [2012/01/18 14:38:28 | 000,155,320 | ---- | M] (Avanquest Software) [On_Demand | Stopped] -- C:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe -- (Sony PC Companion)
SRV - [2012/01/14 12:39:23 | 001,564,368 | ---- | M] () [Disabled | Stopped] -- C:\Program Files (x86)\Guard-ICQ\GuardICQ.exe -- (Guard.Mail.ru)
SRV - [2011/12/09 15:39:52 | 000,135,584 | ---- | M] (Futuremark Corporation) [On_Demand | Stopped] -- C:\Program Files (x86)\Futuremark\Futuremark SystemInfo\FMSISvc.exe -- (Futuremark SystemInfo Service)
SRV - [2011/09/23 19:37:42 | 000,641,832 | ---- | M] (Nero AG) [Auto | Stopped] -- C:\Program Files (x86)\Nero\Update\NASvc.exe -- (NAUpdate)
SRV - [2011/02/22 06:19:12 | 002,656,280 | R--- | M] (Intel Corporation) [Auto | Stopped] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe -- (UNS)
SRV - [2011/02/22 06:19:08 | 000,326,168 | R--- | M] (Intel Corporation) [Auto | Stopped] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe -- (LMS)
SRV - [2010/03/18 13:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2010/02/19 13:37:14 | 000,517,096 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe -- (SwitchBoard)
SRV - [2009/06/10 23:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)
SRV - [2009/04/30 12:23:26 | 000,090,112 | ---- | M] () [Auto | Stopped] -- C:\Program Files (x86)\Sony Ericsson\Sony Ericsson PC Suite\SupServ.exe -- (OMSI download service)
========== Driver Services (SafeList) ==========
DRV:64bit: - [2012/09/07 17:04:46 | 000,025,928 | ---- | M] (Malwarebytes Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\mbam.sys -- (MBAMProtector)
DRV:64bit: - [2012/07/19 21:14:46 | 000,027,760 | ---- | M] (Sony Ericsson Mobile Communications) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ggsemc.sys -- (ggsemc)
DRV:64bit: - [2012/07/19 21:14:46 | 000,014,448 | ---- | M] (Sony Ericsson Mobile Communications) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ggflt.sys -- (ggflt)
DRV:64bit: - [2012/07/03 17:25:16 | 000,189,288 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\nvhda64v.sys -- (NVHDA)
DRV:64bit: - [2012/04/12 16:50:19 | 000,283,200 | ---- | M] (DT Soft Ltd) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\dtsoftbus01.sys -- (dtsoftbus01)
DRV:64bit: - [2012/03/20 20:44:12 | 000,098,688 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\NisDrvWFP.sys -- (NisDrv)
DRV:64bit: - [2011/07/13 14:59:54 | 000,072,240 | ---- | M] (Nero AG) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\NBVol.sys -- (NBVol)
DRV:64bit: - [2011/07/13 14:59:54 | 000,015,920 | ---- | M] (Nero AG) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\NBVolUp.sys -- (NBVolUp)
DRV:64bit: - [2011/06/10 08:34:52 | 000,539,240 | ---- | M] (Realtek ) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\Rt64win7.sys -- (RTL8167)
DRV:64bit: - [2011/02/10 15:52:34 | 000,181,760 | ---- | M] (Renesas Electronics Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\nusb3xhc.sys -- (nusb3xhc)
DRV:64bit: - [2011/02/10 15:52:34 | 000,082,432 | ---- | M] (Renesas Electronics Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\nusb3hub.sys -- (nusb3hub)
DRV:64bit: - [2011/01/26 19:27:48 | 000,030,312 | ---- | M] (CaptainFlint Software) [Kernel | System | Stopped] -- C:\Windows\SysNative\drivers\vd_filedisk.sys -- (VD_FileDisk)
DRV:64bit: - [2010/10/19 10:34:26 | 000,056,344 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\HECIx64.sys -- (MEIx64)
DRV:64bit: - [2010/03/15 11:38:38 | 000,127,600 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\s1039bus.sys -- (s1039bus)
DRV:64bit: - [2010/03/15 10:38:46 | 000,161,904 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\s1039mdm.sys -- (s1039mdm)
DRV:64bit: - [2010/03/15 10:38:46 | 000,158,320 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\s1039unic.sys -- (s1039unic)
DRV:64bit: - [2010/03/15 10:38:46 | 000,141,424 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\s1039mgmt.sys -- (s1039mgmt)
DRV:64bit: - [2010/03/15 10:38:46 | 000,137,328 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\s1039obex.sys -- (s1039obex)
DRV:64bit: - [2010/03/15 10:38:46 | 000,034,416 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\s1039nd5.sys -- (s1039nd5)
DRV:64bit: - [2010/03/15 10:38:46 | 000,019,568 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\s1039mdfl.sys -- (s1039mdfl)
DRV:64bit: - [2009/07/14 03:52:21 | 000,106,576 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:64bit: - [2009/07/14 03:52:21 | 000,028,752 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:64bit: - [2009/07/14 03:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:64bit: - [2009/07/14 03:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:64bit: - [2009/07/14 03:47:48 | 000,077,888 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:64bit: - [2009/07/14 03:47:48 | 000,023,104 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\Windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
DRV:64bit: - [2009/07/14 03:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:64bit: - [2009/07/09 03:00:00 | 000,055,280 | ---- | M] (Sonic Solutions) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\PxHlpa64.sys -- (PxHlpa64)
DRV:64bit: - [2009/06/10 22:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:64bit: - [2009/06/10 22:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:64bit: - [2009/06/10 22:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:64bit: - [2009/06/10 22:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
DRV:64bit: - [2009/02/17 19:11:25 | 000,031,400 | ---- | M] (Elaborate Bytes AG) [Kernel | System | Stopped] -- C:\Windows\SysNative\drivers\ElbyCDIO.sys -- (ElbyCDIO)
DRV:64bit: - [2007/02/16 02:57:06 | 000,040,648 | ---- | M] (SlySoft, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\ElbyCDFL.sys -- (ElbyCDFL)
DRV:64bit: - [2005/09/23 22:18:34 | 000,261,120 | ---- | M] (Pinnacle Systems GmbH) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\MarvinBus64.sys -- (MarvinBus)
DRV - [2012/01/01 16:01:57 | 000,019,952 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Program Files (x86)\RivaTuner v2.24 MSI Master Overclocking Arena 2009 edition\RivaTuner64.sys -- (RivaTuner64)
DRV - [2009/07/14 03:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount)
DRV - [2007/02/16 02:57:06 | 000,040,648 | ---- | M] (SlySoft, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysWOW64\drivers\ElbyCDFL.sys -- (ElbyCDFL)
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-3230957621-2435849253-962487880-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 87 59 E1 52 EC 51 CD 01 [binary data]
IE - HKU\S-1-5-21-3230957621-2435849253-962487880-1000\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKU\S-1-5-21-3230957621-2435849253-962487880-1000\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTer ... ORM=IE8SRC
IE - HKU\S-1-5-21-3230957621-2435849253-962487880-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
========== FireFox ==========
FF - user.js - File not found
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_2_202_235.dll ()
FF - HKLM\Software\MozillaPlugins\@canon.com/EPPEX: C:\Program Files (x86)\Canon\Easy-PhotoPrint EX\NPEZFFPI.DLL (CANON INC.)
FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.7.2: C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.7.2: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@Nero.com/KM: C:\PROGRA~2\COMMON~1\Nero\BROWSE~1\NPBROW~1.DLL (Nero AG)
FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVision: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVisionStreaming: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.0.1: C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.0.2: C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\www.floatingminds.com/Tunnelers: C:\Games\Tunnelers\npTunnelers.dll (Floating Minds)
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 15.0\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2012/09/07 17:18:37 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 15.0\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins [2012/09/25 07:53:53 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 15.0.1\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2012/09/07 17:18:37 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 15.0.1\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins [2012/09/25 07:53:53 | 000,000,000 | ---D | M]
[2011/12/17 19:28:07 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Martin\AppData\Roaming\mozilla\Extensions
[2012/07/28 16:01:36 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Martin\AppData\Roaming\mozilla\Firefox\Profiles\dsn6dm7q.default-1340042378436\extensions
[2012/05/02 19:21:32 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Martin\AppData\Roaming\mozilla\Firefox\Profiles\mthuczr4.default\extensions
[2012/07/28 16:01:36 | 000,013,951 | ---- | M] () (No name found) -- C:\Users\Martin\AppData\Roaming\mozilla\firefox\profiles\dsn6dm7q.default-1340042378436\extensions\olddefaultimagestyle@dagger2-addons.mozilla.org.xpi
[2012/07/26 16:01:43 | 000,741,958 | ---- | M] () (No name found) -- C:\Users\Martin\AppData\Roaming\mozilla\firefox\profiles\dsn6dm7q.default-1340042378436\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
[2012/04/27 17:24:55 | 000,272,844 | ---- | M] () (No name found) -- C:\Users\Martin\AppData\Roaming\mozilla\firefox\profiles\mthuczr4.default\extensions\jid1-F9UJ2thwoAm5gQ@jetpack.xpi
[2012/03/19 18:28:17 | 000,010,839 | ---- | M] () (No name found) -- C:\Users\Martin\AppData\Roaming\mozilla\firefox\profiles\mthuczr4.default\extensions\olddefaultimagestyle@dagger2-addons.mozilla.org.xpi
[2012/04/06 19:23:48 | 000,634,964 | ---- | M] () (No name found) -- C:\Users\Martin\AppData\Roaming\mozilla\firefox\profiles\mthuczr4.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
[2012/09/07 17:18:18 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\extensions
[2012/09/07 17:18:37 | 000,266,720 | ---- | M] (Mozilla Foundation) -- C:\Program Files (x86)\mozilla firefox\components\browsercomps.dll
[2012/01/13 11:21:39 | 000,001,583 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\atlas-sk.xml
[2012/01/13 11:21:39 | 000,001,380 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\azet-sk.xml
[2012/01/13 11:21:39 | 000,001,479 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\dunaj-sk.xml
[2012/01/13 11:21:39 | 000,001,473 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\slovnik-sk.xml
[2012/01/13 11:21:39 | 000,001,104 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\wikipedia-sk.xml
[2012/01/13 11:21:39 | 000,000,830 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\zoznam-sk.xml
O1 HOSTS File: ([2009/06/10 23:00:26 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O2 - BHO: (Canon Easy-WebPrint EX BHO) - {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll (CANON INC.)
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O3 - HKLM\..\Toolbar: (Canon Easy-WebPrint EX) - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll (CANON INC.)
O3 - HKU\S-1-5-21-3230957621-2435849253-962487880-1000\..\Toolbar\WebBrowser: (Canon Easy-WebPrint EX) - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll (CANON INC.)
O4:64bit: - HKLM..\Run: [AdobeAAMUpdater-1.0] C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe (Adobe Systems Incorporated)
O4:64bit: - HKLM..\Run: [CanonMyPrinter] C:\Program Files\Canon\MyPrinter\BJMyPrt.exe (CANON INC.)
O4:64bit: - HKLM..\Run: [CanonSolutionMenu] C:\Program Files (x86)\Canon\SolutionMenu\CNSLMAIN.exe (CANON INC.)
O4:64bit: - HKLM..\Run: [MSC] c:\Program Files\Microsoft Security Client\msseces.exe (Microsoft Corporation)
O4:64bit: - HKLM..\Run: [RTHDVCPL] C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe (Realtek Semiconductor)
O4 - HKLM..\Run: [AdobeCS5.5ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS5.5ServiceManager\CS5.5ServiceManager.exe" -launchedbylogin File not found
O4 - HKLM..\Run: [CloneCDTray] C:\Program Files (x86)\SlySoft\CloneCD\CloneCDTray.exe (SlySoft, Inc.)
O4 - HKLM..\Run: [Guard.Mail.ru.gui] C:\Program Files (x86)\Guard-ICQ\GuardICQ.exe ()
O4 - HKLM..\Run: [NBAgent] C:\Program Files (x86)\Nero\Nero 11\Nero BackItUp\NBAgent.exe (Nero AG)
O4 - HKLM..\Run: [NUSB3MON] C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe (Renesas Electronics Corporation)
O4 - HKLM..\Run: [Super-Charger] C:\Program Files (x86)\MSI\Super-Charger\StartSuperCharger.exe (TODO: <Company name>)
O4 - HKLM..\Run: [SwitchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe (Adobe Systems Incorporated)
O4 - HKU\S-1-5-19..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-20..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-21-3230957621-2435849253-962487880-1000..\Run: [AdobeBridge] File not found
O4 - HKU\S-1-5-21-3230957621-2435849253-962487880-1000..\Run: [DAEMON Tools Lite] C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe (DT Soft Ltd)
O4 - HKU\S-1-5-21-3230957621-2435849253-962487880-1000..\Run: [Sony PC Companion] C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe (Sony)
O4 - HKU\S-1-5-19..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found
O4 - HKU\S-1-5-20..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Low Rights present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLinkedConnections = 1
O9 - Extra Button: ICQ7.7 - {77F665FD-3F60-4B0A-AE14-EC124B7A7FCE} - C:\Program Files (x86)\ICQ7.7\ICQ.exe (ICQ, LLC.)
O9 - Extra 'Tools' menuitem : ICQ7.7 - {77F665FD-3F60-4B0A-AE14-EC124B7A7FCE} - C:\Program Files (x86)\ICQ7.7\ICQ.exe (ICQ, LLC.)
O1364bit: - gopher Prefix: missing
O13 - gopher Prefix: missing
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 85.237.225.250 192.168.0.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{EEFEFE6C-0833-4A35-91A9-73D6F1E2C319}: DhcpNameServer = 85.237.225.250 192.168.0.1
O18:64bit: - Protocol\Handler\ms-help - No CLSID value found
O18:64bit: - Protocol\Handler\skype4com - No CLSID value found
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysWOW64\userinit.exe (Microsoft Corporation)
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O33 - MountPoints2\{20d54004-ca6a-11e1-903a-8c89a554535d}\Shell - "" = AutoRun
O33 - MountPoints2\{20d54004-ca6a-11e1-903a-8c89a554535d}\Shell\AutoRun\command - "" = F:\Startme.exe
O33 - MountPoints2\{7d801433-846e-11e1-aab1-8c89a554535d}\Shell - "" = AutoRun
O33 - MountPoints2\{7d801433-846e-11e1-aab1-8c89a554535d}\Shell\AutoRun\command - "" = E:\Installer.exe
O33 - MountPoints2\{a5eccf22-28d3-11e1-9363-8c89a554535d}\Shell - "" = AutoRun
O33 - MountPoints2\{a5eccf22-28d3-11e1-9363-8c89a554535d}\Shell\AutoRun\command - "" = E:\Oli_Rush_1.0.exe
O33 - MountPoints2\{d97b6751-6a84-11e1-a127-8c89a554535d}\Shell - "" = AutoRun
O33 - MountPoints2\{d97b6751-6a84-11e1-a127-8c89a554535d}\Shell\AutoRun\command - "" = F:\Startme.exe
O34 - HKLM BootExecute: (autocheck autochk *)
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)
CREATERESTOREPOINT
Unable to start System Restore Service. Error code 1084
NetSvcs:64bit: AppMgmt - C:\Windows\SysNative\appmgmts.dll (Microsoft Corporation)
Drivers32:64bit: msacm.l3acm - C:\Windows\System32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32:64bit: VIDC.FPS1 - frapsv64.dll (Beepa P/L)
Drivers32:64bit: VIDC.XFR1 - xfcodec64.dll ()
Drivers32: msacm.ac3acm - C:\Windows\SysWow64\ac3acm.acm (fccHandler)
Drivers32: msacm.l3acm - C:\Windows\SysWOW64\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.lameacm - C:\Windows\SysWow64\lameACM.acm (http://www.mp3dev.org/)
Drivers32: msacm.vorbis - C:\Windows\SysWow64\vorbis.acm (HMS http://hp.vector.co.jp/authors/VA012897/)
Drivers32: vidc.cvid - C:\Windows\SysWow64\iccvid.dll (Radius Inc.)
Drivers32: VIDC.FFDS - C:\Windows\SysWow64\ff_vfw.dll ()
Drivers32: VIDC.FPS1 - C:\Windows\SysWow64\frapsvid.dll (Beepa P/L)
Drivers32: vidc.mjpg - pvmjpg30.dll File not found
Drivers32: VIDC.XFR1 - C:\Windows\SysWow64\xfcodec.dll ()
Drivers32: VIDC.XVID - C:\Windows\SysWow64\xvidvfw.dll ()
Drivers32: VIDC.YV12 - C:\Windows\SysWow64\xvidvfw.dll ()
PhysicalDisk0 MBR saved to C:\PhysicalMBR.bin
========== Files/Folders - Created Within 30 Days ==========
[2012/09/25 09:57:47 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\Martin\Desktop\OTL.exe
[2012/09/25 07:46:25 | 000,000,000 | ---D | C] -- C:\temp
[2012/09/25 07:45:22 | 026,228,072 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvoglv64.dll
[2012/09/25 07:45:22 | 025,256,296 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcompiler.dll
[2012/09/25 07:45:22 | 019,828,584 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvoglv32.dll
[2012/09/25 07:45:22 | 018,229,096 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvd3dumx.dll
[2012/09/25 07:45:22 | 017,559,912 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcompiler.dll
[2012/09/25 07:45:22 | 015,291,752 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvd3dum.dll
[2012/09/25 07:45:22 | 009,066,344 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcuda.dll
[2012/09/25 07:45:22 | 007,626,088 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcuda.dll
[2012/09/25 07:45:22 | 007,397,736 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvopencl.dll
[2012/09/25 07:45:22 | 006,109,032 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvopencl.dll
[2012/09/25 07:45:22 | 002,745,192 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcuvid.dll
[2012/09/25 07:45:22 | 002,573,672 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcuvid.dll
[2012/09/25 07:45:22 | 002,216,808 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcuvenc.dll
[2012/09/25 07:45:22 | 001,866,088 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcuvenc.dll
[2012/09/25 07:45:22 | 001,482,600 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvdispgenco64.dll
[2012/09/25 07:45:22 | 000,830,312 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvumdshim.dll
[2012/09/25 07:45:22 | 000,247,144 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvinitx.dll
[2012/09/25 07:45:22 | 000,202,600 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvinit.dll
[2012/09/25 07:45:22 | 000,189,288 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\drivers\nvhda64v.sys
[2012/09/25 07:45:22 | 000,031,080 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvhdap64.dll
[2012/09/25 07:34:56 | 000,000,000 | ---D | C] -- C:\Users\Martin\Desktop\sam
[2012/09/25 07:33:28 | 000,000,000 | ---D | C] -- C:\Users\Martin\Desktop\Videá z kamery
[2012/09/24 09:41:29 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\IPACS
[2012/09/23 16:31:26 | 000,000,000 | ---D | C] -- C:\Users\Martin\Desktop\pzh 2000
[2012/09/10 16:02:04 | 000,000,000 | ---D | C] -- C:\Users\Martin\Desktop\tiger initial
[2012/09/07 17:18:18 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mozilla Firefox
[2012/09/05 08:22:40 | 000,000,000 | ---D | C] -- C:\Users\Martin\Documents\Pinnacle Studio
[2012/09/04 22:50:17 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Pinnacle
[2012/09/04 22:50:04 | 000,000,000 | ---D | C] -- C:\Users\Martin\AppData\Local\Downloaded Installations
[2012/09/04 22:49:44 | 000,000,000 | ---D | C] -- C:\Users\Martin\AppData\Local\Pinnacle
[2012/09/04 22:49:27 | 000,000,000 | ---D | C] -- C:\ProgramData\Pinnacle Studio Ultimate Collection
[2012/09/04 22:47:41 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Pinnacle Studio 15
[2012/09/04 22:47:14 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\My Projects
[2012/09/04 22:43:38 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Pegasus Imaging
[2012/09/04 22:43:36 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Yahoo!
[2012/09/04 22:43:35 | 000,000,000 | ---D | C] -- C:\ProgramData\Studio 15
[2012/09/04 22:43:35 | 000,000,000 | ---D | C] -- C:\ProgramData\Pinnacle Studio Plus
[2012/09/04 22:43:35 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\Pinnacle
[2012/09/04 22:41:46 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Pinnacle
[2012/09/04 22:40:03 | 000,000,000 | ---D | C] -- C:\ProgramData\Pinnacle
[2012/09/03 07:41:14 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Java
[2012/09/03 07:41:03 | 000,246,760 | ---- | C] (Oracle Corporation) -- C:\Windows\SysWow64\javaws.exe
[2012/09/03 07:40:44 | 000,174,056 | ---- | C] (Oracle Corporation) -- C:\Windows\SysWow64\javaw.exe
[2012/09/03 07:40:44 | 000,174,056 | ---- | C] (Oracle Corporation) -- C:\Windows\SysWow64\java.exe
[2012/09/03 07:40:44 | 000,095,208 | ---- | C] (Oracle Corporation) -- C:\Windows\SysWow64\WindowsAccessBridge-32.dll
[2012/09/03 07:40:33 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Java
[2012/08/29 22:01:17 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth
[2012/08/27 16:09:41 | 000,000,000 | ---D | C] -- C:\Users\Martin\Desktop\Nový priečinok (11)
[2012/03/10 10:43:32 | 000,148,736 | ---- | C] (Avanquest Software) -- C:\ProgramData\hpe3D7D.dll
[2 C:\Windows\SysWow64\*.tmp files -> C:\Windows\SysWow64\*.tmp -> ]
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
========== Files - Modified Within 30 Days ==========
[2012/09/26 15:56:53 | 000,000,512 | ---- | M] () -- C:\PhysicalMBR.bin
[2012/09/26 15:54:35 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2012/09/26 15:54:32 | 2123,931,647 | -HS- | M] () -- C:\hiberfil.sys
[2012/09/26 15:52:18 | 000,000,932 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2012/09/26 15:29:00 | 000,000,936 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2012/09/26 08:19:12 | 000,014,192 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2012/09/26 08:19:12 | 000,014,192 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2012/09/26 08:12:35 | 000,729,688 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2012/09/26 08:12:35 | 000,617,910 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2012/09/26 08:12:35 | 000,107,190 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2012/09/25 09:57:49 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Martin\Desktop\OTL.exe
[2012/09/07 17:04:46 | 000,025,928 | ---- | M] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\mbam.sys
[2012/09/05 09:23:31 | 000,000,349 | ---- | M] () -- C:\Users\Public\Documents\PCLECHAL.INI
[2012/09/05 08:33:04 | 000,005,632 | ---- | M] () -- C:\Users\Martin\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2012/09/05 08:14:40 | 005,052,128 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
[2012/09/03 11:55:57 | 000,245,289 | ---- | M] () -- C:\Users\Martin\Documents\x.jpg
[2012/09/03 07:40:37 | 000,095,208 | ---- | M] (Oracle Corporation) -- C:\Windows\SysWow64\WindowsAccessBridge-32.dll
[2012/09/03 07:40:35 | 000,246,760 | ---- | M] (Oracle Corporation) -- C:\Windows\SysWow64\javaws.exe
[2012/09/03 07:40:35 | 000,174,056 | ---- | M] (Oracle Corporation) -- C:\Windows\SysWow64\javaw.exe
[2012/09/03 07:40:35 | 000,174,056 | ---- | M] (Oracle Corporation) -- C:\Windows\SysWow64\java.exe
[2012/09/03 07:40:34 | 000,821,736 | ---- | M] (Oracle Corporation) -- C:\Windows\SysWow64\npDeployJava1.dll
[2012/09/03 07:40:34 | 000,746,984 | ---- | M] (Oracle Corporation) -- C:\Windows\SysWow64\deployJava1.dll
[2012/08/30 21:14:00 | 026,228,072 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvoglv64.dll
[2012/08/30 21:14:00 | 025,256,296 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcompiler.dll
[2012/08/30 21:14:00 | 019,828,584 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvoglv32.dll
[2012/08/30 21:14:00 | 018,229,096 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvd3dumx.dll
[2012/08/30 21:14:00 | 017,559,912 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcompiler.dll
[2012/08/30 21:14:00 | 015,291,752 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvd3dum.dll
[2012/08/30 21:14:00 | 014,879,080 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvwgf2umx.dll
[2012/08/30 21:14:00 | 012,465,512 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvwgf2um.dll
[2012/08/30 21:14:00 | 009,066,344 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcuda.dll
[2012/08/30 21:14:00 | 007,626,088 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcuda.dll
[2012/08/30 21:14:00 | 007,397,736 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvopencl.dll
[2012/08/30 21:14:00 | 006,109,032 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvopencl.dll
[2012/08/30 21:14:00 | 002,745,192 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcuvid.dll
[2012/08/30 21:14:00 | 002,725,224 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvapi64.dll
[2012/08/30 21:14:00 | 002,573,672 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcuvid.dll
[2012/08/30 21:14:00 | 002,422,120 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvapi.dll
[2012/08/30 21:14:00 | 002,216,808 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcuvenc.dll
[2012/08/30 21:14:00 | 001,866,088 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcuvenc.dll
[2012/08/30 21:14:00 | 001,760,104 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvdispco64.dll
[2012/08/30 21:14:00 | 001,482,600 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvdispgenco64.dll
[2012/08/30 21:14:00 | 000,971,624 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvumdshimx.dll
[2012/08/30 21:14:00 | 000,830,312 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvumdshim.dll
[2012/08/30 21:14:00 | 000,247,144 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvinitx.dll
[2012/08/30 21:14:00 | 000,202,600 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvinit.dll
[2012/08/30 21:14:00 | 000,016,366 | ---- | M] () -- C:\Windows\SysNative\nvinfo.pb
[2012/08/30 18:18:05 | 000,118,120 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvmctray.dll
[2012/08/30 18:18:05 | 000,063,336 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvshext.dll
[2012/08/30 18:18:04 | 003,487,434 | ---- | M] () -- C:\Windows\SysNative\nvcoproc.bin
[2012/08/30 18:18:01 | 003,266,920 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvsvc64.dll
[2012/08/30 18:17:59 | 006,198,120 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcpl.dll
[2012/08/30 10:40:14 | 000,429,416 | ---- | M] () -- C:\Windows\SysWow64\nvStreaming.exe
[2012/08/29 22:02:51 | 000,002,228 | ---- | M] () -- C:\Users\Martin\Desktop\Google Earth.lnk
[2 C:\Windows\SysWow64\*.tmp files -> C:\Windows\SysWow64\*.tmp -> ]
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
========== Files Created - No Company Name ==========
[2012/09/25 10:06:39 | 000,000,512 | ---- | C] () -- C:\PhysicalMBR.bin
[2012/09/04 22:42:16 | 000,000,349 | ---- | C] () -- C:\Users\Public\Documents\PCLECHAL.INI
[2012/09/03 11:55:47 | 000,245,289 | ---- | C] () -- C:\Users\Martin\Documents\x.jpg
[2012/08/30 10:40:14 | 000,429,416 | ---- | C] () -- C:\Windows\SysWow64\nvStreaming.exe
[2012/08/29 22:02:51 | 000,002,228 | ---- | C] () -- C:\Users\Martin\Desktop\Google Earth.lnk
[2012/07/23 11:30:21 | 000,000,218 | ---- | C] () -- C:\Users\Martin\AppData\Local\recently-used.xbel
[2012/06/08 16:02:42 | 000,005,632 | ---- | C] () -- C:\Users\Martin\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2012/06/04 13:54:56 | 000,734,810 | ---- | C] () -- C:\Windows\SysWow64\PerfStringBackup.INI
[2012/04/29 12:44:08 | 000,669,184 | ---- | C] () -- C:\Windows\SysWow64\pbsvc.exe
[2012/01/08 10:15:21 | 000,000,412 | ---- | C] () -- C:\Users\Martin\AppData\Roaming\All CPU Meter_Settings.ini
[2012/01/02 10:28:30 | 000,000,140 | ---- | C] () -- C:\Windows\ODBC.INI
[2012/01/02 10:10:18 | 000,081,920 | ---- | C] () -- C:\Windows\OLE2TASK.DAT
[2011/12/22 16:43:59 | 000,000,983 | ---- | C] () -- C:\Windows\eReg.dat
[2011/12/18 19:15:17 | 000,103,736 | ---- | C] () -- C:\Windows\SysWow64\PnkBstrB.exe
[2011/12/18 19:15:16 | 000,066,872 | ---- | C] () -- C:\Windows\SysWow64\PnkBstrA.exe
[2011/12/18 15:16:42 | 000,175,616 | ---- | C] () -- C:\Windows\SysWow64\unrar.dll
[2011/12/18 15:16:41 | 000,650,752 | ---- | C] () -- C:\Windows\SysWow64\xvidcore.dll
[2011/12/18 15:16:41 | 000,243,200 | ---- | C] () -- C:\Windows\SysWow64\xvidvfw.dll
[2011/12/18 15:16:41 | 000,079,872 | ---- | C] () -- C:\Windows\SysWow64\ff_vfw.dll
[2011/12/17 19:42:20 | 000,006,791 | ---- | C] () -- C:\Users\Martin\AppData\Local\SRDownloader.err
[2011/12/17 19:42:13 | 000,001,008 | ---- | C] () -- C:\Users\Martin\AppData\Local\SRDownloader.nast
[2011/12/15 06:39:42 | 000,042,392 | ---- | C] () -- C:\Windows\SysWow64\xfcodec.dll
[2011/04/09 19:55:28 | 000,179,261 | ---- | C] () -- C:\Windows\SysWow64\xlive.dll.cat
========== ZeroAccess Check ==========
[2009/07/14 06:55:00 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini
[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64
[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
"" = C:\Windows\SysNative\shell32.dll -- [2009/07/14 03:41:54 | 014,161,920 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2009/07/14 03:16:14 | 012,866,560 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\fastprox.dll -- [2009/07/14 03:40:51 | 000,909,312 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2009/07/14 03:15:20 | 000,605,696 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\wbemess.dll -- [2009/07/14 03:41:56 | 000,505,856 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
========== LOP Check ==========
[2012/07/04 18:33:57 | 000,000,000 | ---D | M] -- C:\Users\Martin\AppData\Roaming\AnvSoft
[2012/03/05 10:37:46 | 000,000,000 | ---D | M] -- C:\Users\Martin\AppData\Roaming\Atari
[2012/05/28 15:52:33 | 000,000,000 | ---D | M] -- C:\Users\Martin\AppData\Roaming\Auslogics
[2012/02/29 19:00:19 | 000,000,000 | ---D | M] -- C:\Users\Martin\AppData\Roaming\Canon
[2012/07/06 11:30:13 | 000,000,000 | ---D | M] -- C:\Users\Martin\AppData\Roaming\DAEMON Tools Lite
[2012/04/02 12:50:48 | 000,000,000 | ---D | M] -- C:\Users\Martin\AppData\Roaming\DarknessII
[2012/04/16 18:00:00 | 000,000,000 | ---D | M] -- C:\Users\Martin\AppData\Roaming\Gatling Gears
[2012/05/28 17:37:23 | 000,000,000 | ---D | M] -- C:\Users\Martin\AppData\Roaming\HD Tune Pro
[2011/12/21 15:30:14 | 000,000,000 | ---D | M] -- C:\Users\Martin\AppData\Roaming\HEXelon
[2012/09/07 21:53:01 | 000,000,000 | ---D | M] -- C:\Users\Martin\AppData\Roaming\ICQ
[2012/07/15 15:28:14 | 000,000,000 | ---D | M] -- C:\Users\Martin\AppData\Roaming\inkscape
[2012/05/04 10:19:07 | 000,000,000 | ---D | M] -- C:\Users\Martin\AppData\Roaming\Kalypso Media
[2012/03/02 19:20:10 | 000,000,000 | ---D | M] -- C:\Users\Martin\AppData\Roaming\Leadertech
[2011/12/18 09:19:02 | 000,000,000 | ---D | M] -- C:\Users\Martin\AppData\Roaming\Opera
[2012/08/15 11:14:50 | 000,000,000 | ---D | M] -- C:\Users\Martin\AppData\Roaming\PACE Anti-Piracy
[2012/06/08 15:49:02 | 000,000,000 | ---D | M] -- C:\Users\Martin\AppData\Roaming\Publish Providers
[2011/12/18 19:15:15 | 000,000,000 | ---D | M] -- C:\Users\Martin\AppData\Roaming\PunkBuster
[2012/01/14 21:37:32 | 000,000,000 | ---D | M] -- C:\Users\Martin\AppData\Roaming\Rovio
[2012/06/08 15:53:31 | 000,000,000 | ---D | M] -- C:\Users\Martin\AppData\Roaming\Sony
[2012/08/15 10:00:31 | 000,000,000 | ---D | M] -- C:\Users\Martin\AppData\Roaming\Sony Creative Software Inc
[2012/03/10 10:42:46 | 000,000,000 | ---D | M] -- C:\Users\Martin\AppData\Roaming\Sony Setup
[2012/08/15 11:16:12 | 000,000,000 | ---D | M] -- C:\Users\Martin\AppData\Roaming\StageManager.BD092818F67280F4B42B04877600987F0111B594.1
[2012/01/03 18:02:52 | 000,000,000 | ---D | M] -- C:\Users\Martin\AppData\Roaming\Tropico 4
[2012/08/04 16:44:04 | 000,000,000 | ---D | M] -- C:\Users\Martin\AppData\Roaming\TS3Client
[2011/12/19 16:45:25 | 000,000,000 | ---D | M] -- C:\Users\Martin\AppData\Roaming\Ubisoft
[2012/09/24 09:40:15 | 000,000,000 | ---D | M] -- C:\Users\Martin\AppData\Roaming\uTorrent
[2011/12/17 23:01:07 | 000,000,000 | ---D | M] -- C:\Users\Martin\AppData\Roaming\wargaming.net
========== Purity Check ==========
========== Custom Scans ==========
< >
[2009/07/14 07:08:49 | 000,000,006 | -H-- | C] () -- C:\Windows\Tasks\SA.DAT
[2009/07/14 07:08:49 | 000,032,578 | ---- | C] () -- C:\Windows\Tasks\SCHEDLGU.TXT
[2011/12/22 09:59:10 | 000,000,932 | ---- | C] () -- C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
[2011/12/22 09:59:11 | 000,000,936 | ---- | C] () -- C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
< >
< MD5 for: AGP440.SYS >
[2009/07/14 03:52:21 | 000,061,008 | ---- | M] (Microsoft Corporation) MD5=608C14DBA7299D8CB6ED035A68A15799 -- C:\Windows\SysNative\drivers\AGP440.sys
[2009/07/14 03:52:21 | 000,061,008 | ---- | M] (Microsoft Corporation) MD5=608C14DBA7299D8CB6ED035A68A15799 -- C:\Windows\SysNative\DriverStore\FileRepository\machine.inf_amd64_neutral_9e6bb86c3b39a3e9\AGP440.sys
[2009/07/14 03:52:21 | 000,061,008 | ---- | M] (Microsoft Corporation) MD5=608C14DBA7299D8CB6ED035A68A15799 -- C:\Windows\winsxs\amd64_machine.inf_31bf3856ad364e35_6.1.7600.16385_none_1607dee2d861e021\AGP440.sys
< MD5 for: ATAPI.SYS >
[2009/07/14 03:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\SysNative\drivers\atapi.sys
[2009/07/14 03:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\SysNative\DriverStore\FileRepository\mshdc.inf_amd64_neutral_a69a58a4286f0b22\atapi.sys
[2009/07/14 03:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\winsxs\amd64_mshdc.inf_31bf3856ad364e35_6.1.7600.16385_none_392d19c13b3ad543\atapi.sys
< MD5 for: AUTOCHK.EXE >
[2009/07/14 03:14:12 | 000,668,160 | ---- | M] (Microsoft Corporation) MD5=41E4C8EBA464E7D6A5BA5E8827732AEB -- C:\Windows\SysWOW64\autochk.exe
[2009/07/14 03:14:12 | 000,668,160 | ---- | M] (Microsoft Corporation) MD5=41E4C8EBA464E7D6A5BA5E8827732AEB -- C:\Windows\winsxs\x86_microsoft-windows-autochk_31bf3856ad364e35_6.1.7600.16385_none_e1ca436d2314b860\autochk.exe
[2009/07/14 03:38:56 | 000,777,728 | ---- | M] (Microsoft Corporation) MD5=8B7F8E882A649D81CEA1EDE9BBB68FFF -- C:\Windows\SysNative\autochk.exe
[2009/07/14 03:38:56 | 000,777,728 | ---- | M] (Microsoft Corporation) MD5=8B7F8E882A649D81CEA1EDE9BBB68FFF -- C:\Windows\winsxs\amd64_microsoft-windows-autochk_31bf3856ad364e35_6.1.7600.16385_none_3de8def0db722996\autochk.exe
< MD5 for: CDROM.SYS >
[2009/07/14 01:19:54 | 000,147,456 | ---- | M] (Microsoft Corporation) MD5=83D2D75E1EFB81B3450C18131443F7DB -- C:\Windows\SysNative\drivers\cdrom.sys
[2009/07/14 01:19:54 | 000,147,456 | ---- | M] (Microsoft Corporation) MD5=83D2D75E1EFB81B3450C18131443F7DB -- C:\Windows\SysNative\DriverStore\FileRepository\cdrom.inf_amd64_neutral_8363d00ecae4322d\cdrom.sys
[2009/07/14 01:19:54 | 000,147,456 | ---- | M] (Microsoft Corporation) MD5=83D2D75E1EFB81B3450C18131443F7DB -- C:\Windows\winsxs\amd64_cdrom.inf_31bf3856ad364e35_6.1.7600.16385_none_bb9e4d89bd7870f1\cdrom.sys
< MD5 for: CNGAUDIT.DLL >
[2009/07/14 03:15:06 | 000,012,288 | ---- | M] (Microsoft Corporation) MD5=50BA656134F78AF64E4DD3C8B6FEFD7E -- C:\Windows\SysWOW64\cngaudit.dll
[2009/07/14 03:15:06 | 000,012,288 | ---- | M] (Microsoft Corporation) MD5=50BA656134F78AF64E4DD3C8B6FEFD7E -- C:\Windows\winsxs\x86_microsoft-windows-cngaudit-dll_31bf3856ad364e35_6.1.7600.16385_none_e83a414890e8132b\cngaudit.dll
[2009/07/14 03:40:20 | 000,018,944 | ---- | M] (Microsoft Corporation) MD5=86FE1B1F8FD42CD0DB641AB1CDB13093 -- C:\Windows\SysNative\cngaudit.dll
[2009/07/14 03:40:20 | 000,018,944 | ---- | M] (Microsoft Corporation) MD5=86FE1B1F8FD42CD0DB641AB1CDB13093 -- C:\Windows\winsxs\amd64_microsoft-windows-cngaudit-dll_31bf3856ad364e35_6.1.7600.16385_none_4458dccc49458461\cngaudit.dll
< MD5 for: CRYPTSVC.DLL >
[2009/07/14 03:40:24 | 000,175,104 | ---- | M] (Microsoft Corporation) MD5=8C57411B66282C01533CB776F98AD384 -- C:\Windows\SysNative\cryptsvc.dll
[2009/07/14 03:40:24 | 000,175,104 | ---- | M] (Microsoft Corporation) MD5=8C57411B66282C01533CB776F98AD384 -- C:\Windows\winsxs\amd64_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7600.16385_none_d1f48b0bb4805490\cryptsvc.dll
[2009/07/14 03:15:07 | 000,135,680 | ---- | M] (Microsoft Corporation) MD5=9C231178CE4FB385F4B54B0A9080B8A4 -- C:\Windows\SysWOW64\cryptsvc.dll
[2009/07/14 03:15:07 | 000,135,680 | ---- | M] (Microsoft Corporation) MD5=9C231178CE4FB385F4B54B0A9080B8A4 -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7600.16385_none_75d5ef87fc22e35a\cryptsvc.dll
< MD5 for: EXPLORER.EXE >
[2009/07/14 03:14:20 | 002,613,248 | ---- | M] (Microsoft Corporation) MD5=15BC38A7492BEFE831966ADB477CF76F -- C:\Windows\SysWOW64\explorer.exe
[2009/07/14 03:14:20 | 002,613,248 | ---- | M] (Microsoft Corporation) MD5=15BC38A7492BEFE831966ADB477CF76F -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16385_none_b7fe430bc7ce3761\explorer.exe
[2009/10/31 07:45:39 | 002,614,272 | ---- | M] (Microsoft Corporation) MD5=2626FC9755BE22F805D3CFA0CE3EE727 -- C:\Windows\SoftwareDistribution\Download\0cfc8dbf763c806fb82e646c7352a6fc\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16450_none_b819b343c7ba6202\explorer.exe
[2009/08/03 08:19:07 | 002,868,224 | ---- | M] (Microsoft Corporation) MD5=700073016DAC1C3D2E7E2CE4223334B6 -- C:\Windows\SoftwareDistribution\Download\00236e2e422dab929dcda56260d05350\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20500_none_ae84b558ac4eb41c\explorer.exe
[2009/10/31 08:34:59 | 002,870,272 | ---- | M] (Microsoft Corporation) MD5=9AAAEC8DAC27AA17B053E6352AD233AE -- C:\Windows\SoftwareDistribution\Download\0cfc8dbf763c806fb82e646c7352a6fc\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16450_none_adc508f19359a007\explorer.exe
[2009/08/03 07:49:47 | 002,613,248 | ---- | M] (Microsoft Corporation) MD5=9FF6C4C91A3711C0A3B18F87B08B518D -- C:\Windows\SoftwareDistribution\Download\00236e2e422dab929dcda56260d05350\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20500_none_b8d95faae0af7617\explorer.exe
[2009/10/31 08:38:38 | 002,870,272 | ---- | M] (Microsoft Corporation) MD5=B8EC4BD49CE8F6FC457721BFC210B67F -- C:\Windows\SoftwareDistribution\Download\0cfc8dbf763c806fb82e646c7352a6fc\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20563_none_ae46d6aeac7ca7c7\explorer.exe
[2009/08/03 07:35:50 | 002,613,248 | ---- | M] (Microsoft Corporation) MD5=B95EEB0F4E5EFBF1038A35B3351CF047 -- C:\Windows\SoftwareDistribution\Download\00236e2e422dab929dcda56260d05350\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16404_none_b853c407c78e3ba9\explorer.exe
[2009/07/14 03:39:10 | 002,868,224 | ---- | M] (Microsoft Corporation) MD5=C235A51CB740E45FFA0EBFB9BAFCDA64 -- C:\Windows\explorer.exe
[2009/07/14 03:39:10 | 002,868,224 | ---- | M] (Microsoft Corporation) MD5=C235A51CB740E45FFA0EBFB9BAFCDA64 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16385_none_ada998b9936d7566\explorer.exe
[2009/10/31 08:00:51 | 002,614,272 | ---- | M] (Microsoft Corporation) MD5=C76153C7ECA00FA852BB0C193378F917 -- C:\Windows\SoftwareDistribution\Download\0cfc8dbf763c806fb82e646c7352a6fc\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20563_none_b89b8100e0dd69c2\explorer.exe
[2009/08/03 08:17:37 | 002,868,224 | ---- | M] (Microsoft Corporation) MD5=F170B4A061C9E026437B193B4D571799 -- C:\Windows\SoftwareDistribution\Download\00236e2e422dab929dcda56260d05350\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16404_none_adff19b5932d79ae\explorer.exe
< MD5 for: HAL.DLL >
[2009/07/14 03:47:48 | 000,263,232 | ---- | M] (Microsoft Corporation) MD5=C0A6F6E05E14FBCAEDE7796C8590B7AC -- C:\Windows\SysNative\hal.dll
[2009/07/14 03:47:48 | 000,263,232 | ---- | M] (Microsoft Corporation) MD5=C0A6F6E05E14FBCAEDE7796C8590B7AC -- C:\Windows\winsxs\amd64_microsoft-windows-hal_31bf3856ad364e35_6.1.7600.16385_none_071de44b735b3dfc\hal.dll
< MD5 for: IASTORV.SYS >
[2009/07/14 03:48:04 | 000,410,688 | ---- | M] (Intel Corporation) MD5=D83EFB6FD45DF9D55E9A1AFC63640D50 -- C:\Windows\SysNative\drivers\iaStorV.sys
[2009/07/14 03:48:04 | 000,410,688 | ---- | M] (Intel Corporation) MD5=D83EFB6FD45DF9D55E9A1AFC63640D50 -- C:\Windows\SysNative\DriverStore\FileRepository\iastorv.inf_amd64_neutral_18cccb83b34e1453\iaStorV.sys
[2009/07/14 03:48:04 | 000,410,688 | ---- | M] (Intel Corporation) MD5=D83EFB6FD45DF9D55E9A1AFC63640D50 -- C:\Windows\winsxs\amd64_iastorv.inf_31bf3856ad364e35_6.1.7600.16385_none_0b06441fa1790136\iaStorV.sys
< MD5 for: ISAPNP.SYS >
[2009/07/14 03:48:04 | 000,020,544 | ---- | M] (Microsoft Corporation) MD5=2F7B28DC3E1183E5EB418DF55C204F38 -- C:\Windows\SysNative\drivers\isapnp.sys
[2009/07/14 03:48:04 | 000,020,544 | ---- | M] (Microsoft Corporation) MD5=2F7B28DC3E1183E5EB418DF55C204F38 -- C:\Windows\SysNative\DriverStore\FileRepository\machine.inf_amd64_neutral_9e6bb86c3b39a3e9\isapnp.sys
[2009/07/14 03:48:04 | 000,020,544 | ---- | M] (Microsoft Corporation) MD5=2F7B28DC3E1183E5EB418DF55C204F38 -- C:\Windows\winsxs\amd64_machine.inf_31bf3856ad364e35_6.1.7600.16385_none_1607dee2d861e021\isapnp.sys
< MD5 for: LSASS.EXE >
[2009/07/14 03:39:16 | 000,031,232 | ---- | M] (Microsoft Corporation) MD5=0793F40B9B8A1BDD266296409DBD91EA -- C:\Windows\SysNative\lsass.exe
[2009/07/14 03:39:16 | 000,031,232 | ---- | M] (Microsoft Corporation) MD5=0793F40B9B8A1BDD266296409DBD91EA -- C:\Windows\winsxs\amd64_microsoft-windows-lsa_31bf3856ad364e35_6.1.7600.16385_none_023f7c69767c3edd\lsass.exe
< MD5 for: NDIS.SYS >
[2009/07/14 03:48:27 | 000,947,776 | ---- | M] (Microsoft Corporation) MD5=CAD515DBD07D082BB317D9928CE8962C -- C:\Windows\SysNative\drivers\ndis.sys
[2009/07/14 03:48:27 | 000,947,776 | ---- | M] (Microsoft Corporation) MD5=CAD515DBD07D082BB317D9928CE8962C -- C:\Windows\winsxs\amd64_microsoft-windows-ndis_31bf3856ad364e35_6.1.7600.16385_none_03bc1d6e35c013bf\ndis.sys
< MD5 for: NETLOGON.DLL >
[2009/07/14 03:41:52 | 000,692,736 | ---- | M] (Microsoft Corporation) MD5=956D030D375F207B22FB111E06EF9C35 -- C:\Windows\SysNative\netlogon.dll
[2009/07/14 03:41:52 | 000,692,736 | ---- | M] (Microsoft Corporation) MD5=956D030D375F207B22FB111E06EF9C35 -- C:\Windows\winsxs\amd64_microsoft-windows-security-netlogon_31bf3856ad364e35_6.1.7600.16385_none_59aca8ea51aaeefe\netlogon.dll
[2009/07/14 03:16:02 | 000,563,712 | ---- | M] (Microsoft Corporation) MD5=EAA75D9000B71F10EEC04D2AE6C60E81 -- C:\Windows\SysWOW64\netlogon.dll
[2009/07/14 03:16:02 | 000,563,712 | ---- | M] (Microsoft Corporation) MD5=EAA75D9000B71F10EEC04D2AE6C60E81 -- C:\Windows\winsxs\wow64_microsoft-windows-security-netlogon_31bf3856ad364e35_6.1.7600.16385_none_6401533c860bb0f9\netlogon.dll
< MD5 for: NVRAID.SYS >
[2009/07/14 03:48:27 | 000,149,056 | ---- | M] (NVIDIA Corporation) MD5=3E38712941E9BB4DDBEE00AFFE3FED3D -- C:\Windows\SysNative\drivers\nvraid.sys
[2009/07/14 03:48:27 | 000,149,056 | ---- | M] (NVIDIA Corporation) MD5=3E38712941E9BB4DDBEE00AFFE3FED3D -- C:\Windows\SysNative\DriverStore\FileRepository\nvraid.inf_amd64_neutral_5bde3fe2945bce9e\nvraid.sys
[2009/07/14 03:48:27 | 000,149,056 | ---- | M] (NVIDIA Corporation) MD5=3E38712941E9BB4DDBEE00AFFE3FED3D -- C:\Windows\winsxs\amd64_nvraid.inf_31bf3856ad364e35_6.1.7600.16385_none_95cfb4ced8afab0e\nvraid.sys
< MD5 for: NVSTOR.SYS >
[2009/07/14 03:45:45 | 000,167,488 | ---- | M] (NVIDIA Corporation) MD5=477DC4D6DEB99BE37084C9AC6D013DA1 -- C:\Windows\SysNative\drivers\nvstor.sys
[2009/07/14 03:45:45 | 000,167,488 | ---- | M] (NVIDIA Corporation) MD5=477DC4D6DEB99BE37084C9AC6D013DA1 -- C:\Windows\SysNative\DriverStore\FileRepository\nvraid.inf_amd64_neutral_5bde3fe2945bce9e\nvstor.sys
[2009/07/14 03:45:45 | 000,167,488 | ---- | M] (NVIDIA Corporation) MD5=477DC4D6DEB99BE37084C9AC6D013DA1 -- C:\Windows\winsxs\amd64_nvraid.inf_31bf3856ad364e35_6.1.7600.16385_none_95cfb4ced8afab0e\nvstor.sys
< MD5 for: SCECLI.DLL >
[2009/07/14 03:16:13 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=26073302DAEA83CC5B944C546D6B47D2 -- C:\Windows\SysWOW64\scecli.dll
[2009/07/14 03:16:13 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=26073302DAEA83CC5B944C546D6B47D2 -- C:\Windows\winsxs\wow64_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7600.16385_none_9e577e55272d37b4\scecli.dll
[2009/07/14 03:41:53 | 000,232,448 | ---- | M] (Microsoft Corporation) MD5=398712DDDAEFB85EDF61DF6A07B65C79 -- C:\Windows\SysNative\scecli.dll
[2009/07/14 03:41:53 | 000,232,448 | ---- | M] (Microsoft Corporation) MD5=398712DDDAEFB85EDF61DF6A07B65C79 -- C:\Windows\winsxs\amd64_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7600.16385_none_9402d402f2cc75b9\scecli.dll
< MD5 for: SMSS.EXE >
[2009/07/14 03:39:41 | 000,112,640 | ---- | M] (Microsoft Corporation) MD5=1911A3356FA3F77CCC825CCBAC038C2A -- C:\Windows\SysNative\smss.exe
[2009/07/14 03:39:41 | 000,112,640 | ---- | M] (Microsoft Corporation) MD5=1911A3356FA3F77CCC825CCBAC038C2A -- C:\Windows\winsxs\amd64_microsoft-windows-smss_31bf3856ad364e35_6.1.7600.16385_none_082f99a432e2a661\smss.exe
< MD5 for: SVCHOST.EXE >
[2012/09/07 17:04:42 | 000,218,696 | ---- | M] () MD5=4E0D8C9F83B7FD82393F7D8CCC27E7AE -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\Chameleon\svchost.exe
[2009/07/14 03:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\SysWOW64\svchost.exe
[2009/07/14 03:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\winsxs\x86_microsoft-windows-services-svchost_31bf3856ad364e35_6.1.7600.16385_none_b591afc466a15356\svchost.exe
[2009/07/14 03:39:46 | 000,027,136 | ---- | M] (Microsoft Corporation) MD5=C78655BC80301D76ED4FEF1C1EA40A7D -- C:\Windows\SysNative\svchost.exe
[2009/07/14 03:39:46 | 000,027,136 | ---- | M] (Microsoft Corporation) MD5=C78655BC80301D76ED4FEF1C1EA40A7D -- C:\Windows\winsxs\amd64_microsoft-windows-services-svchost_31bf3856ad364e35_6.1.7600.16385_none_11b04b481efec48c\svchost.exe
< MD5 for: TCPIP.SYS >
[2012/03/30 12:19:17 | 001,877,872 | ---- | M] (Microsoft Corporation) MD5=5EFD096DEF47F8B88EF591DA92143440 -- C:\Windows\SoftwareDistribution\Download\092d0da1be926fabf4653305eb1af03a\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.21178_none_0faa5514992a39a7\tcpip.sys
[2012/03/30 13:09:53 | 001,895,280 | ---- | M] (Microsoft Corporation) MD5=624C5B3AA4C99B3184BB922D9ECE3FF0 -- C:\Windows\SoftwareDistribution\Download\092d0da1be926fabf4653305eb1af03a\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.16986_none_0f140fa780164fde\tcpip.sys
[2010/04/09 13:06:28 | 001,898,376 | ---- | M] (Microsoft Corporation) MD5=7FC877A25796D8ADF539E64703FCA7E1 -- C:\Windows\SysNative\drivers\tcpip.sys
[2010/04/09 13:06:28 | 001,898,376 | ---- | M] (Microsoft Corporation) MD5=7FC877A25796D8ADF539E64703FCA7E1 -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.16569_none_0f2ca8c580036f65\tcpip.sys
[2012/03/30 12:26:36 | 001,901,424 | ---- | M] (Microsoft Corporation) MD5=885B202006EE17AE99B9FBCEC9AF88C9 -- C:\Windows\SoftwareDistribution\Download\092d0da1be926fabf4653305eb1af03a\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.21954_none_11a27a8e9643d23a\tcpip.sys
[2009/07/14 03:45:55 | 001,898,576 | ---- | M] (Microsoft Corporation) MD5=912107716BAB424C7870E8E6AF5E07E1 -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.16385_none_0f1303f98017479d\tcpip.sys
[2010/04/09 09:56:29 | 001,892,232 | ---- | M] (Microsoft Corporation) MD5=A9C0F786AC1F736891D05CE0A1D29DEB -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.20687_none_0f9ea52499331463\tcpip.sys
[2012/03/30 13:35:47 | 001,918,320 | ---- | M] (Microsoft Corporation) MD5=ACB82BDA8F46C84F465C1AFA517DC4B9 -- C:\Windows\SoftwareDistribution\Download\092d0da1be926fabf4653305eb1af03a\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.17802_none_114ceccb7cff740d\tcpip.sys
< MD5 for: USERINIT.EXE >
[2009/07/14 03:14:43 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=6DE80F60D7DE9CE6B8C2DDFDF79EF175 -- C:\Windows\SysWOW64\userinit.exe
[2009/07/14 03:14:43 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=6DE80F60D7DE9CE6B8C2DDFDF79EF175 -- C:\Windows\winsxs\x86_microsoft-windows-userinit_31bf3856ad364e35_6.1.7600.16385_none_dbff103933038d7c\userinit.exe
[2009/07/14 03:39:48 | 000,030,208 | ---- | M] (Microsoft Corporation) MD5=6F8F1376A13114CC10C0E69274F5A4DE -- C:\Windows\SysNative\userinit.exe
[2009/07/14 03:39:48 | 000,030,208 | ---- | M] (Microsoft Corporation) MD5=6F8F1376A13114CC10C0E69274F5A4DE -- C:\Windows\winsxs\amd64_microsoft-windows-userinit_31bf3856ad364e35_6.1.7600.16385_none_381dabbceb60feb2\userinit.exe
< MD5 for: WINLOGON.EXE >
[2009/07/14 03:39:52 | 000,389,120 | ---- | M] (Microsoft Corporation) MD5=132328DF455B0028F13BF0ABEE51A63A -- C:\Windows\SysNative\winlogon.exe
[2009/07/14 03:39:52 | 000,389,120 | ---- | M] (Microsoft Corporation) MD5=132328DF455B0028F13BF0ABEE51A63A -- C:\Windows\winsxs\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7600.16385_none_cbb7f2bdeea2829c\winlogon.exe
[2012/09/07 17:04:42 | 000,218,696 | ---- | M] () MD5=4E0D8C9F83B7FD82393F7D8CCC27E7AE -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\Chameleon\winlogon.exe
[2009/10/28 09:01:57 | 000,389,632 | ---- | M] (Microsoft Corporation) MD5=A93D41A4D4B0D91C072D11DD8AF266DE -- C:\Windows\SoftwareDistribution\Download\0cfc8dbf763c806fb82e646c7352a6fc\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7600.20560_none_cc522fd507b468f8\winlogon.exe
[2009/10/28 08:24:40 | 000,389,632 | ---- | M] (Microsoft Corporation) MD5=DA3E2A6FA9660CC75B471530CE88453A -- C:\Windows\SoftwareDistribution\Download\0cfc8dbf763c806fb82e646c7352a6fc\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7600.16447_none_cbe534e7ee8042ad\winlogon.exe
< MD5 for: WS2_32.DLL >
[2009/07/14 03:41:58 | 000,296,448 | ---- | M] (Microsoft Corporation) MD5=7083F463788CB34FCC42F565D56F89E8 -- C:\Windows\SysNative\ws2_32.dll
[2009/07/14 03:41:58 | 000,296,448 | ---- | M] (Microsoft Corporation) MD5=7083F463788CB34FCC42F565D56F89E8 -- C:\Windows\winsxs\amd64_microsoft-windows-w..nfrastructure-ws232_31bf3856ad364e35_6.1.7600.16385_none_4eaca269e8070c6b\ws2_32.dll
[2009/07/14 03:16:20 | 000,206,336 | ---- | M] (Microsoft Corporation) MD5=DAAE8A9B8C0ACC7F858454132553C30D -- C:\Windows\SysWOW64\ws2_32.dll
[2009/07/14 03:16:20 | 000,206,336 | ---- | M] (Microsoft Corporation) MD5=DAAE8A9B8C0ACC7F858454132553C30D -- C:\Windows\winsxs\x86_microsoft-windows-w..nfrastructure-ws232_31bf3856ad364e35_6.1.7600.16385_none_f28e06e62fa99b35\ws2_32.dll
< >
< %systemroot%*.* /U /s >
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
[1 C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp files -> C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp -> ]
[2 C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\*.tmp files -> C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\026d37d9d0d955fde910ecf59f7b93de\*.tmp files -> C:\Windows\SoftwareDistribution\Download\026d37d9d0d955fde910ecf59f7b93de\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\07816e228021d9ce18fb86c60fd9a6a6\*.tmp files -> C:\Windows\SoftwareDistribution\Download\07816e228021d9ce18fb86c60fd9a6a6\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\08de3c83def3f05ce0c5a1bd84d93296\*.tmp files -> C:\Windows\SoftwareDistribution\Download\08de3c83def3f05ce0c5a1bd84d93296\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\0d185f1dfa9b452bbcf641fb0708a086\*.tmp files -> C:\Windows\SoftwareDistribution\Download\0d185f1dfa9b452bbcf641fb0708a086\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\0e3bf0a19e9400ba9f0a6dcf5dee14d2\*.tmp files -> C:\Windows\SoftwareDistribution\Download\0e3bf0a19e9400ba9f0a6dcf5dee14d2\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\10009e7335c1d28f4c35587a0c758b68\*.tmp files -> C:\Windows\SoftwareDistribution\Download\10009e7335c1d28f4c35587a0c758b68\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\15f515a6d2264980fd04ce886425ba94\*.tmp files -> C:\Windows\SoftwareDistribution\Download\15f515a6d2264980fd04ce886425ba94\*.tmp -> ]
[2 C:\Windows\SoftwareDistribution\Download\1b2c0a5ab3de5f5851190554ba72c2db\*.tmp files -> C:\Windows\SoftwareDistribution\Download\1b2c0a5ab3de5f5851190554ba72c2db\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\1fadb9307007a21c57062875a04bfffe\*.tmp files -> C:\Windows\SoftwareDistribution\Download\1fadb9307007a21c57062875a04bfffe\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\25e98dafef2ef365b34d072b82efa034\*.tmp files -> C:\Windows\SoftwareDistribution\Download\25e98dafef2ef365b34d072b82efa034\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\291e4c970688f0ae75ac6de78e4a5e7f\*.tmp files -> C:\Windows\SoftwareDistribution\Download\291e4c970688f0ae75ac6de78e4a5e7f\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\2f5d20a0e19ee0383d29ff3d1f1b72d0\*.tmp files -> C:\Windows\SoftwareDistribution\Download\2f5d20a0e19ee0383d29ff3d1f1b72d0\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\2fb5af4537b4aade6b6041300942a76c\*.tmp files -> C:\Windows\SoftwareDistribution\Download\2fb5af4537b4aade6b6041300942a76c\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\30586ca8d10d70d0efef987e7dd1a59e\*.tmp files -> C:\Windows\SoftwareDistribution\Download\30586ca8d10d70d0efef987e7dd1a59e\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\30e599f083a2e5afbbdc44152cc86213\*.tmp files -> C:\Windows\SoftwareDistribution\Download\30e599f083a2e5afbbdc44152cc86213\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\33a1b5a0475cdbfea139233e4d990a8c\*.tmp files -> C:\Windows\SoftwareDistribution\Download\33a1b5a0475cdbfea139233e4d990a8c\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\33df691527b299a5f50b5884c5979589\*.tmp files -> C:\Windows\SoftwareDistribution\Download\33df691527b299a5f50b5884c5979589\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\35f960a717c3b31a0c52e875b6f47446\*.tmp files -> C:\Windows\SoftwareDistribution\Download\35f960a717c3b31a0c52e875b6f47446\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\372cec5cab40b5ede78ec0e25075836b\*.tmp files -> C:\Windows\SoftwareDistribution\Download\372cec5cab40b5ede78ec0e25075836b\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\37b8129e06594bf0bad404d224387f50\*.tmp files -> C:\Windows\SoftwareDistribution\Download\37b8129e06594bf0bad404d224387f50\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\3f456d1c3cc7227d8b29410b5d765b3b\*.tmp files -> C:\Windows\SoftwareDistribution\Download\3f456d1c3cc7227d8b29410b5d765b3b\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\3f8932116010354444b6612ab0f215c3\*.tmp files -> C:\Windows\SoftwareDistribution\Download\3f8932116010354444b6612ab0f215c3\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\3fedcac79b66bcf0809496c7a29500cd\*.tmp files -> C:\Windows\SoftwareDistribution\Download\3fedcac79b66bcf0809496c7a29500cd\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\48ffb769a0e6fdd59056da3fe7133cee\*.tmp files -> C:\Windows\SoftwareDistribution\Download\48ffb769a0e6fdd59056da3fe7133cee\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\4c3cfd816ea95bed8df07960fc5ccec2\*.tmp files -> C:\Windows\SoftwareDistribution\Download\4c3cfd816ea95bed8df07960fc5ccec2\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\4c9630d89e2dfab14045d5686ead983a\*.tmp files -> C:\Windows\SoftwareDistribution\Download\4c9630d89e2dfab14045d5686ead983a\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\507153e38a8f765b3db821277967b383\*.tmp files -> C:\Windows\SoftwareDistribution\Download\507153e38a8f765b3db821277967b383\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\58eb619db5f01e6c35f0d1feac88a898\*.tmp files -> C:\Windows\SoftwareDistribution\Download\58eb619db5f01e6c35f0d1feac88a898\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\63fb1fe4e55937694ce57330850fcc41\*.tmp files -> C:\Windows\SoftwareDistribution\Download\63fb1fe4e55937694ce57330850fcc41\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\6890643e2d2d41d0ea784de0aa468512\*.tmp files -> C:\Windows\SoftwareDistribution\Download\6890643e2d2d41d0ea784de0aa468512\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\6cfd6c69fabc14dc6659c83354800a5e\*.tmp files -> C:\Windows\SoftwareDistribution\Download\6cfd6c69fabc14dc6659c83354800a5e\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\6d2fb8110de53ec70e0a688737d18385\*.tmp files -> C:\Windows\SoftwareDistribution\Download\6d2fb8110de53ec70e0a688737d18385\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\6fea7e39c782dcbb73c42ab082114bf5\*.tmp files -> C:\Windows\SoftwareDistribution\Download\6fea7e39c782dcbb73c42ab082114bf5\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\7100c8b53c17e1e3a46690e946999892\*.tmp files -> C:\Windows\SoftwareDistribution\Download\7100c8b53c17e1e3a46690e946999892\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\7718ca97671278d4f6b4c5091a742c56\*.tmp files -> C:\Windows\SoftwareDistribution\Download\7718ca97671278d4f6b4c5091a742c56\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\7f5b7c5127b02932973fe0a3d84d7160\*.tmp files -> C:\Windows\SoftwareDistribution\Download\7f5b7c5127b02932973fe0a3d84d7160\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\8bcd04d4dcc9490cbdfd86cf5981803d\*.tmp files -> C:\Windows\SoftwareDistribution\Download\8bcd04d4dcc9490cbdfd86cf5981803d\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\8cc652dc96edcb7638f3f8a9c7c78997\*.tmp files -> C:\Windows\SoftwareDistribution\Download\8cc652dc96edcb7638f3f8a9c7c78997\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\8eae7fca2e8b42147090801b853b2bca\*.tmp files -> C:\Windows\SoftwareDistribution\Download\8eae7fca2e8b42147090801b853b2bca\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\986ce6e1ed11ad55a839346543c289bb\*.tmp files -> C:\Windows\SoftwareDistribution\Download\986ce6e1ed11ad55a839346543c289bb\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\9c4afe3ca8e12d11080ab23a016e04ee\*.tmp files -> C:\Windows\SoftwareDistribution\Download\9c4afe3ca8e12d11080ab23a016e04ee\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\9df98c10d975c728c5e55c46837f1fe9\*.tmp files -> C:\Windows\SoftwareDistribution\Download\9df98c10d975c728c5e55c46837f1fe9\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\9e813ffbfb52528694c5b9252f99eca1\*.tmp files -> C:\Windows\SoftwareDistribution\Download\9e813ffbfb52528694c5b9252f99eca1\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\9eeb0ab0774fe04917d638b2dc708765\*.tmp files -> C:\Windows\SoftwareDistribution\Download\9eeb0ab0774fe04917d638b2dc708765\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\9f026e7acab636511cde271223b5e9b7\*.tmp files -> C:\Windows\SoftwareDistribution\Download\9f026e7acab636511cde271223b5e9b7\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\a0ac2d45f915393013bbb1355fa78818\*.tmp files -> C:\Windows\SoftwareDistribution\Download\a0ac2d45f915393013bbb1355fa78818\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\a857ae6a868251417a02c32fe167a0aa\*.tmp files -> C:\Windows\SoftwareDistribution\Download\a857ae6a868251417a02c32fe167a0aa\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\aeeab75a8ce8b4b128a14c8ba4631fae\*.tmp files -> C:\Windows\SoftwareDistribution\Download\aeeab75a8ce8b4b128a14c8ba4631fae\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\b5f83aac8280a09809ba6ecbfe7df034\*.tmp files -> C:\Windows\SoftwareDistribution\Download\b5f83aac8280a09809ba6ecbfe7df034\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\c7e77cc72696c8d0f5ae6991105e37ff\*.tmp files -> C:\Windows\SoftwareDistribution\Download\c7e77cc72696c8d0f5ae6991105e37ff\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\cada7cb1e9e3cb0b0c6c30d1acdb14d0\*.tmp files -> C:\Windows\SoftwareDistribution\Download\cada7cb1e9e3cb0b0c6c30d1acdb14d0\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\cd8f0f64a44e565131cb912f33693fa8\*.tmp files -> C:\Windows\SoftwareDistribution\Download\cd8f0f64a44e565131cb912f33693fa8\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\d17d032a81e5136f324b6e3e658e7fa1\*.tmp files -> C:\Windows\SoftwareDistribution\Download\d17d032a81e5136f324b6e3e658e7fa1\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\d67406fec88719855f76272591486bcd\*.tmp files -> C:\Windows\SoftwareDistribution\Download\d67406fec88719855f76272591486bcd\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\dbc4e637bf9d29a8359e46a7e031721c\*.tmp files -> C:\Windows\SoftwareDistribution\Download\dbc4e637bf9d29a8359e46a7e031721c\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\e22cf94ac2b22cf857176f33307b4f9a\*.tmp files -> C:\Windows\SoftwareDistribution\Download\e22cf94ac2b22cf857176f33307b4f9a\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\e2c27fdf51d82bbfd10ca60913711a22\*.tmp files -> C:\Windows\SoftwareDistribution\Download\e2c27fdf51d82bbfd10ca60913711a22\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\ec0520ea2782b9e5ef3a9768e55fa20f\*.tmp files -> C:\Windows\SoftwareDistribution\Download\ec0520ea2782b9e5ef3a9768e55fa20f\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\f8a4aebd2e2440adc172b74e7047eed7\*.tmp files -> C:\Windows\SoftwareDistribution\Download\f8a4aebd2e2440adc172b74e7047eed7\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\fda495fe0981e24f0c2ff11a4af66247\*.tmp files -> C:\Windows\SoftwareDistribution\Download\fda495fe0981e24f0c2ff11a4af66247\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\fdd40bacd0a8e76b0477122dfef389dd\*.tmp files -> C:\Windows\SoftwareDistribution\Download\fdd40bacd0a8e76b0477122dfef389dd\*.tmp -> ]
[2 C:\Windows\System32\*.tmp files -> C:\Windows\System32\*.tmp -> ]
[2 C:\Windows\SysWOW64\*.tmp files -> C:\Windows\SysWOW64\*.tmp -> ]
[31 C:\Windows\Temp\*.tmp files -> C:\Windows\Temp\*.tmp -> ]
< %SYSTEMDRIVE%\*.exe >
< %ALLUSERSPROFILE%\Application Data\*. >
< %ALLUSERSPROFILE%\Application Data\*.exe /s >
Re: Pomalší Pc ako predtým (Rsit log)
pokračovanie
< %APPDATA%\*. >
[2012/08/15 11:50:06 | 000,000,000 | ---D | M] -- C:\Users\Martin\AppData\Roaming\Adobe
[2012/07/04 18:33:57 | 000,000,000 | ---D | M] -- C:\Users\Martin\AppData\Roaming\AnvSoft
[2012/03/05 10:37:46 | 000,000,000 | ---D | M] -- C:\Users\Martin\AppData\Roaming\Atari
[2012/05/28 15:52:33 | 000,000,000 | ---D | M] -- C:\Users\Martin\AppData\Roaming\Auslogics
[2012/02/29 19:00:19 | 000,000,000 | ---D | M] -- C:\Users\Martin\AppData\Roaming\Canon
[2012/07/06 11:30:13 | 000,000,000 | ---D | M] -- C:\Users\Martin\AppData\Roaming\DAEMON Tools Lite
[2012/04/02 12:50:48 | 000,000,000 | ---D | M] -- C:\Users\Martin\AppData\Roaming\DarknessII
[2012/04/16 18:00:00 | 000,000,000 | ---D | M] -- C:\Users\Martin\AppData\Roaming\Gatling Gears
[2012/05/28 17:37:23 | 000,000,000 | ---D | M] -- C:\Users\Martin\AppData\Roaming\HD Tune Pro
[2011/12/21 15:30:14 | 000,000,000 | ---D | M] -- C:\Users\Martin\AppData\Roaming\HEXelon
[2012/09/07 21:53:01 | 000,000,000 | ---D | M] -- C:\Users\Martin\AppData\Roaming\ICQ
[2011/12/17 18:28:07 | 000,000,000 | ---D | M] -- C:\Users\Martin\AppData\Roaming\Identities
[2012/07/15 15:28:14 | 000,000,000 | ---D | M] -- C:\Users\Martin\AppData\Roaming\inkscape
[2011/12/21 15:35:59 | 000,000,000 | ---D | M] -- C:\Users\Martin\AppData\Roaming\InstallShield
[2012/05/04 10:19:07 | 000,000,000 | ---D | M] -- C:\Users\Martin\AppData\Roaming\Kalypso Media
[2012/03/02 19:20:10 | 000,000,000 | ---D | M] -- C:\Users\Martin\AppData\Roaming\Leadertech
[2011/12/17 19:34:20 | 000,000,000 | ---D | M] -- C:\Users\Martin\AppData\Roaming\Macromedia
[2011/12/17 18:47:46 | 000,000,000 | ---D | M] -- C:\Users\Martin\AppData\Roaming\Malwarebytes
[2009/07/14 09:54:31 | 000,000,000 | ---D | M] -- C:\Users\Martin\AppData\Roaming\Media Center Programs
[2012/08/15 13:08:58 | 000,000,000 | ---D | M] -- C:\Users\Martin\AppData\Roaming\Media Player Classic
[2012/08/15 11:10:31 | 000,000,000 | --SD | M] -- C:\Users\Martin\AppData\Roaming\Microsoft
[2011/12/17 19:28:07 | 000,000,000 | ---D | M] -- C:\Users\Martin\AppData\Roaming\Mozilla
[2011/12/17 21:59:44 | 000,000,000 | ---D | M] -- C:\Users\Martin\AppData\Roaming\Nero
[2011/12/20 22:37:18 | 000,000,000 | ---D | M] -- C:\Users\Martin\AppData\Roaming\NVIDIA
[2011/12/18 09:19:02 | 000,000,000 | ---D | M] -- C:\Users\Martin\AppData\Roaming\Opera
[2012/08/15 11:14:50 | 000,000,000 | ---D | M] -- C:\Users\Martin\AppData\Roaming\PACE Anti-Piracy
[2012/06/08 15:49:02 | 000,000,000 | ---D | M] -- C:\Users\Martin\AppData\Roaming\Publish Providers
[2011/12/18 19:15:15 | 000,000,000 | ---D | M] -- C:\Users\Martin\AppData\Roaming\PunkBuster
[2012/01/14 21:37:32 | 000,000,000 | ---D | M] -- C:\Users\Martin\AppData\Roaming\Rovio
[2011/12/21 17:05:33 | 000,000,000 | RH-D | M] -- C:\Users\Martin\AppData\Roaming\SecuROM
[2012/09/07 21:22:12 | 000,000,000 | ---D | M] -- C:\Users\Martin\AppData\Roaming\Skype
[2012/06/08 15:53:31 | 000,000,000 | ---D | M] -- C:\Users\Martin\AppData\Roaming\Sony
[2012/08/15 10:00:31 | 000,000,000 | ---D | M] -- C:\Users\Martin\AppData\Roaming\Sony Creative Software Inc
[2012/03/10 10:42:46 | 000,000,000 | ---D | M] -- C:\Users\Martin\AppData\Roaming\Sony Setup
[2012/08/15 11:16:12 | 000,000,000 | ---D | M] -- C:\Users\Martin\AppData\Roaming\StageManager.BD092818F67280F4B42B04877600987F0111B594.1
[2012/01/03 18:02:52 | 000,000,000 | ---D | M] -- C:\Users\Martin\AppData\Roaming\Tropico 4
[2012/08/04 16:44:04 | 000,000,000 | ---D | M] -- C:\Users\Martin\AppData\Roaming\TS3Client
[2011/12/19 16:45:25 | 000,000,000 | ---D | M] -- C:\Users\Martin\AppData\Roaming\Ubisoft
[2012/09/24 09:40:15 | 000,000,000 | ---D | M] -- C:\Users\Martin\AppData\Roaming\uTorrent
[2012/09/25 07:36:20 | 000,000,000 | ---D | M] -- C:\Users\Martin\AppData\Roaming\vlc
[2011/12/17 23:01:07 | 000,000,000 | ---D | M] -- C:\Users\Martin\AppData\Roaming\wargaming.net
[2011/12/17 18:44:03 | 000,000,000 | ---D | M] -- C:\Users\Martin\AppData\Roaming\WinRAR
[2012/01/14 12:34:12 | 000,000,000 | ---D | M] -- C:\Users\Martin\AppData\Roaming\Xfire
[2012/06/08 15:57:08 | 000,000,000 | ---D | M] -- C:\Users\Martin\AppData\Roaming\ZoomBrowser EX
< %APPDATA%\*.exe /s >
[2012/08/15 11:10:31 | 000,010,134 | R--- | M] () -- C:\Users\Martin\AppData\Roaming\Microsoft\Installer\{024521CF-C07E-4F8E-8481-0D75695E03AF}\ARPPRODUCTICON.exe
[2012/09/04 22:50:17 | 000,029,926 | R--- | M] () -- C:\Users\Martin\AppData\Roaming\Microsoft\Installer\{6DE721A5-5E89-4D74-994C-652BB3C0672E}\ARPPRODUCTICON.exe
[2011/11/23 18:38:29 | 003,123,272 | R--- | M] () -- C:\Users\Martin\AppData\Roaming\PunkBuster\pbsetup\pbsvc.exe
[2012/03/10 10:43:11 | 033,850,672 | ---- | M] (Apple Inc.) -- C:\Users\Martin\AppData\Roaming\Sony Setup\9234765D-29DF-48d0-93FB-284B7B6009B9\QuickTimeInstaller.exe
< %systemroot%\*. /mp /s >
< %systemroot%\system32\*.dll /lockedfiles >
[2 C:\Windows\system32\*.tmp files -> C:\Windows\system32\*.tmp -> ]
< %systemroot%\Tasks\*.job /lockedfiles >
< %systemroot%\system32\drivers\*.sys /lockedfiles >
< %systemroot%\System32\config\*.sav >
< %systemroot%\system32\*.dll /lockedfiles >
[2 C:\Windows\system32\*.tmp files -> C:\Windows\system32\*.tmp -> ]
< %systemroot%\system32\drivers\*.sys /3 >
< %systemroot%\system32\*.* /3 >
[2012/09/26 15:49:26 | 000,000,031 | ---- | M] () -- C:\Windows\system32\log.txt
[2 C:\Windows\system32\*.tmp files -> C:\Windows\system32\*.tmp -> ]
< %SYSTEMDRIVE%\*.exe >
< >
< HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s >
"Sidebar" = C:\Program Files\Windows Sidebar\sidebar.exe /autoRun -- [2009/07/14 03:39:41 | 001,475,072 | ---- | M] (Microsoft Corporation)
"AdobeBridge" =
"DAEMON Tools Lite" = "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun -- [2012/04/11 11:54:22 | 003,672,384 | ---- | M] (DT Soft Ltd)
"Sony PC Companion" = "C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe" /Background -- [2012/05/31 15:00:22 | 000,445,624 | ---- | M] (Sony)
< reg query "HKLM\Software\Microsoft\Windows NT\CurrentVersion\winlogon" /v GinaDLL /c >
< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv" /v ImagePath /c >
HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\SERVICES\WUAUSERV
IMAGEPATH REG_EXPAND_SZ %systemroot%\system32\svchost.exe -k netsvcs
< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS" /v ImagePath /c >
HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\SERVICES\BITS
IMAGEPATH REG_EXPAND_SZ %SystemRoot%\System32\svchost.exe -k netsvcs
< >
< type c:\boot.ini >> test.txt /c >
< %SystemDrive%\PhysicalMBR.bin /md5 >
[2012/09/26 15:56:53 | 000,000,512 | ---- | M] () MD5=99152AAE608960DF88070114EE3CEDEF -- C:\PhysicalMBR.bin
< >
< *crack* /s >
[2011/12/15 04:09:57 | 002,796,322 | ---- | M] () -- \Games\Flatout 3 Chaos Destruction\Textures\Stunt24Floor_CRACK.DCT
[2011/12/15 04:03:35 | 002,796,322 | ---- | M] () -- \Games\Flatout 3 Chaos Destruction\Textures\Cars\bonecracker.DCT
[2011/12/15 03:39:51 | 002,796,322 | ---- | M] () -- \Games\Flatout 3 Chaos Destruction\Textures\Cars\bonecracker_C2.DCT
[2011/12/15 03:43:31 | 002,796,322 | ---- | M] () -- \Games\Flatout 3 Chaos Destruction\Textures\Cars\bonecracker_C2_s.DCT
[2011/12/15 03:40:36 | 002,796,322 | ---- | M] () -- \Games\Flatout 3 Chaos Destruction\Textures\Cars\bonecracker_C3.DCT
[2011/12/15 03:36:47 | 002,796,322 | ---- | M] () -- \Games\Flatout 3 Chaos Destruction\Textures\Cars\bonecracker_C3_s.DCT
[2011/12/15 03:48:07 | 002,796,322 | ---- | M] () -- \Games\Flatout 3 Chaos Destruction\Textures\Cars\bonecracker_C4.DCT
[2011/12/15 04:03:01 | 002,796,322 | ---- | M] () -- \Games\Flatout 3 Chaos Destruction\Textures\Cars\bonecracker_C4_s.DCT
[2011/12/15 03:46:39 | 002,796,322 | ---- | M] () -- \Games\Flatout 3 Chaos Destruction\Textures\Cars\bonecracker_D2.DCT
[2011/12/15 03:49:41 | 002,796,322 | ---- | M] () -- \Games\Flatout 3 Chaos Destruction\Textures\Cars\bonecracker_D2_C2.DCT
[2011/12/15 03:54:40 | 002,796,322 | ---- | M] () -- \Games\Flatout 3 Chaos Destruction\Textures\Cars\bonecracker_D2_C2_s.DCT
[2011/12/15 04:04:34 | 002,796,322 | ---- | M] () -- \Games\Flatout 3 Chaos Destruction\Textures\Cars\bonecracker_D2_C3.DCT
[2011/12/15 03:43:48 | 002,796,322 | ---- | M] () -- \Games\Flatout 3 Chaos Destruction\Textures\Cars\bonecracker_D2_C3_s.DCT
[2011/12/15 03:49:26 | 002,796,322 | ---- | M] () -- \Games\Flatout 3 Chaos Destruction\Textures\Cars\bonecracker_D2_C4.DCT
[2011/12/15 04:09:09 | 002,796,322 | ---- | M] () -- \Games\Flatout 3 Chaos Destruction\Textures\Cars\bonecracker_D2_C4_s.DCT
[2011/12/15 03:51:32 | 002,796,322 | ---- | M] () -- \Games\Flatout 3 Chaos Destruction\Textures\Cars\bonecracker_D2_s.DCT
[2011/12/15 04:10:13 | 002,796,322 | ---- | M] () -- \Games\Flatout 3 Chaos Destruction\Textures\Cars\bonecracker_D3.DCT
[2011/12/15 04:06:41 | 002,796,322 | ---- | M] () -- \Games\Flatout 3 Chaos Destruction\Textures\Cars\bonecracker_D3_C2.DCT
[2011/12/15 04:03:10 | 002,796,322 | ---- | M] () -- \Games\Flatout 3 Chaos Destruction\Textures\Cars\bonecracker_D3_C2_s.DCT
[2011/12/15 04:04:12 | 002,796,322 | ---- | M] () -- \Games\Flatout 3 Chaos Destruction\Textures\Cars\bonecracker_D3_C3.DCT
[2011/12/15 03:38:12 | 002,796,322 | ---- | M] () -- \Games\Flatout 3 Chaos Destruction\Textures\Cars\bonecracker_D3_C3_s.DCT
[2011/12/15 03:32:36 | 002,796,322 | ---- | M] () -- \Games\Flatout 3 Chaos Destruction\Textures\Cars\bonecracker_D3_C4.DCT
[2011/12/15 03:54:11 | 002,796,322 | ---- | M] () -- \Games\Flatout 3 Chaos Destruction\Textures\Cars\bonecracker_D3_C4_s.DCT
[2011/12/15 03:34:16 | 002,796,322 | ---- | M] () -- \Games\Flatout 3 Chaos Destruction\Textures\Cars\bonecracker_D3_s.DCT
[2011/12/15 04:06:53 | 000,174,874 | ---- | M] () -- \Games\Flatout 3 Chaos Destruction\Textures\Cars\bonecracker_i.DCT
[2011/12/15 03:35:16 | 002,796,322 | ---- | M] () -- \Games\Flatout 3 Chaos Destruction\Textures\Cars\bonecracker_S.DCT
[2011/12/15 04:03:22 | 000,174,874 | ---- | M] () -- \Games\Flatout 3 Chaos Destruction\Textures\Cars\bonecracker_w.DCT
[2011/12/15 03:44:17 | 000,174,874 | ---- | M] () -- \Games\Flatout 3 Chaos Destruction\Textures\Cars\bonecracker_w_S.DCT
[2011/12/22 15:46:01 | 000,175,008 | ---- | M] () -- \Games\Postal.3.Retail [English]\p3\materials\ground\asphalt_01_cracked.vtf
[2011/12/22 15:48:27 | 000,002,550 | ---- | M] () -- \Games\Postal.3.Retail [English]\p3\models\police_station\prison_food_01_cracked_a.dx90.vtx
[2011/12/22 15:48:27 | 000,001,816 | ---- | M] () -- \Games\Postal.3.Retail [English]\p3\models\police_station\prison_food_01_cracked_a.mdl
[2011/12/22 15:48:27 | 000,001,445 | ---- | M] () -- \Games\Postal.3.Retail [English]\p3\models\police_station\prison_food_01_cracked_a.phy
[2011/12/22 15:48:27 | 000,011,648 | ---- | M] () -- \Games\Postal.3.Retail [English]\p3\models\police_station\prison_food_01_cracked_a.vvd
[2011/12/22 15:48:27 | 000,002,925 | ---- | M] () -- \Games\Postal.3.Retail [English]\p3\models\police_station\prison_food_01_cracked_b.dx90.vtx
[2011/12/22 15:48:27 | 000,001,816 | ---- | M] () -- \Games\Postal.3.Retail [English]\p3\models\police_station\prison_food_01_cracked_b.mdl
[2011/12/22 15:48:27 | 000,001,285 | ---- | M] () -- \Games\Postal.3.Retail [English]\p3\models\police_station\prison_food_01_cracked_b.phy
[2011/12/22 15:48:27 | 000,013,376 | ---- | M] () -- \Games\Postal.3.Retail [English]\p3\models\police_station\prison_food_01_cracked_b.vvd
[2011/12/22 15:48:27 | 000,003,375 | ---- | M] () -- \Games\Postal.3.Retail [English]\p3\models\police_station\prison_food_01_cracked_c.dx90.vtx
[2011/12/22 15:48:27 | 000,001,816 | ---- | M] () -- \Games\Postal.3.Retail [English]\p3\models\police_station\prison_food_01_cracked_c.mdl
[2011/12/22 15:48:27 | 000,001,285 | ---- | M] () -- \Games\Postal.3.Retail [English]\p3\models\police_station\prison_food_01_cracked_c.phy
[2011/12/22 15:48:27 | 000,015,296 | ---- | M] () -- \Games\Postal.3.Retail [English]\p3\models\police_station\prison_food_01_cracked_c.vvd
[2011/12/22 15:51:16 | 000,014,584 | ---- | M] () -- \Games\Postal.3.Retail [English]\p3\sound\hits\neck_crack_01.wav
[2011/12/22 15:51:16 | 000,022,052 | ---- | M] () -- \Games\Postal.3.Retail [English]\p3\sound\hits\neck_crack_02.wav
[2011/12/22 15:51:16 | 000,033,374 | ---- | M] () -- \Games\Postal.3.Retail [English]\p3\sound\hits\neck_crack_03.wav
[2011/12/22 15:51:16 | 000,021,682 | ---- | M] () -- \Games\Postal.3.Retail [English]\p3\sound\hits\neck_crack_04.wav
[2011/12/22 15:51:02 | 000,026,714 | ---- | M] () -- \Games\Postal.3.Retail [English]\p3\sound\characters\White_Female\wf_followup_areyouoncrackv1.wav
[2011/12/22 15:51:07 | 000,025,690 | ---- | M] () -- \Games\Postal.3.Retail [English]\p3\sound\characters\White_Male\wm_followup_areyouoncrackv1.wav
[2011/12/22 15:51:07 | 000,025,690 | ---- | M] () -- \Games\Postal.3.Retail [English]\p3\sound\characters\White_Male\wm_followup_areyouoncrackv2.wav
[2011/10/27 17:21:36 | 000,015,502 | ---- | M] () -- \Games\Shank 2\data-pc\canims\fire_crack.zip
[2009/02/22 16:06:36 | 000,000,155 | ---- | M] () -- \Program Files (x86)\Atari\RollerCoaster Tycoon 3 Platinum\Style\Themed\osudenny Wooden shops covers\Osudenny wooden stall covers\osudenny cracker Jacks stand.common.ovl
[2009/02/22 16:06:36 | 000,652,996 | ---- | M] () -- \Program Files (x86)\Atari\RollerCoaster Tycoon 3 Platinum\Style\Themed\osudenny Wooden shops covers\Osudenny wooden stall covers\osudenny cracker Jacks stand.unique.ovl
[2008/09/08 22:55:14 | 000,000,204 | ---- | M] () -- \Program Files (x86)\Image-Line\FL Studio 10\Plugins\Fruity\Effects\Hardcore\Presets\I cracked my Tube!.hdprg
[2010/01/15 22:56:40 | 000,000,272 | ---- | M] () -- \Program Files (x86)\Image-Line\FL Studio 10\Plugins\Fruity\Generators\Drumaxx\Drum Patches\Sound FX\Crack.dmpatch
[2010/01/15 22:56:40 | 000,000,272 | ---- | M] () -- \Program Files (x86)\Image-Line\FL Studio 10\Plugins\Fruity\Generators\DrumPad\Drum Patches\Sound FX\Crack.dmpatch
[2010/11/12 01:19:22 | 000,114,899 | ---- | M] () -- \Program Files (x86)\Inkscape\python\Lib\site-packages\numpy\f2py\crackfortran.py
[2010/05/29 22:41:56 | 000,114,899 | ---- | M] () -- \Program Files (x86)\TC UP\PLUGINS\Media\Inkscape\python\Lib\site-packages\numpy\f2py\crackfortran.py
[2011/03/23 19:03:20 | 000,823,680 | ---- | M] () -- \Program Files\Adobe\Adobe Premiere Pro CS5.5\Plug-ins\en_US\VSTPlugins\DeCrackler1.dll
[2011/03/23 19:03:22 | 000,823,680 | ---- | M] () -- \Program Files\Adobe\Adobe Premiere Pro CS5.5\Plug-ins\en_US\VSTPlugins\DeCrackler2.dll
[2011/03/23 19:03:26 | 000,823,680 | ---- | M] () -- \Program Files\Adobe\Adobe Premiere Pro CS5.5\Plug-ins\en_US\VSTPlugins\DeCrackler6.dll
[2011/12/23 21:53:36 | 000,000,608 | ---- | M] () -- \Users\Martin\AppData\Roaming\uTorrent\Adobe Photoshop CS5 Extended (Crack + Instructions).torrent
[2012/09/24 09:29:41 | 000,013,553 | ---- | M] () -- \Users\Martin\AppData\Roaming\uTorrent\AEROFLY PROFESSIONAL DELUXE CRACKED PERFECTLY WORKING.zip.torrent
[2012/01/13 15:03:29 | 000,001,389 | ---- | M] () -- \Users\Martin\AppData\Roaming\uTorrent\Far.Cry.2.CRACK-ONLY-Razor1911.torrent
[2011/12/19 13:23:28 | 000,021,569 | ---- | M] () -- \Users\Martin\AppData\Roaming\uTorrent\Flatout.3.Chaos.Destruction.Cracked.Fullrepack-ALI213.torrent
[2012/03/25 16:07:58 | 000,000,169 | ---- | M] () -- \Users\Martin\AppData\Roaming\uTorrent\GTA.IV.1.0.7Crack.zip.torrent
[2012/06/02 21:05:08 | 000,046,862 | ---- | M] () -- \Users\Martin\AppData\Roaming\uTorrent\Max.Payne.3.CrackOnly-RLD-btarena.torrent
[2012/01/02 09:53:45 | 000,016,214 | ---- | M] () -- \Users\Martin\AppData\Roaming\uTorrent\Postal.3.Update.1.10.EN.PROPER-CRACKED.torrent
[2011/12/20 10:18:03 | 000,003,986 | ---- | M] () -- \Users\Martin\AppData\Roaming\uTorrent\Starcraft.2.Wings.of.Liberty.Crack.Only.Read.NFO-LiBERTY.torrent
[2012/05/23 07:57:25 | 010,090,584 | ---- | M] () -- \Users\Martin\Downloads\Image-Line.FL.Studio.Edition.v10.0.0 @vAin4us\flstudio_10.0_crack.exe
< *keygen* /s >
[2012/05/16 16:48:12 | 000,242,688 | ---- | M] () -- \Games\Wargame- European Escalation\keygen.exe
[2012/06/08 15:26:31 | 000,017,844 | ---- | M] () -- \Users\Martin\AppData\Roaming\uTorrent\Sony Vegas PRO 11.0.511 64 bit Multilanguage with keygen and patch.1.torrent
[2012/06/08 15:17:43 | 000,017,844 | ---- | M] () -- \Users\Martin\AppData\Roaming\uTorrent\Sony Vegas PRO 11.0.511 64 bit Multilanguage with keygen and patch.torrent
[2009/08/08 22:42:28 | 000,086,528 | ---- | M] () -- \Users\Martin\Desktop\Programy\EVEREST.Ultimate.Edition.5.50.2253BETA\FFF_Keygen\Everest.5.0.1650.All.Edition_KEYGEN-FFF.exe
[2012/06/08 15:26:54 | 002,000,896 | ---- | M] () -- \Users\Martin\Downloads\Sony Vegas PRO 11.0.511 64 bit Multilanguage with keygen and patch\Sony.Products.Multikeygen.v2.0.Keygen.and.Patch.Only.READ.NFO-DI\Keygen.exe
< *loader* /s >
[2011/11/29 12:59:18 | 000,228,864 | ---- | M] () -- \Assassins Creed - Revelations\ubiorbitapi_r2_loader.dll
[2011/10/30 08:10:24 | 000,169,080 | ---- | M] () -- \Assassins Creed - Revelations\uplay_r1_loader.dll
[2011/10/30 08:10:18 | 000,234,616 | ---- | M] () -- \Assassins Creed - Revelations\Original\ubiorbitapi_r2_loader.dll
[2012/04/17 13:41:05 | 877,062,328 | ---- | M] () -- \Filmy\Nový priečinok (10)\Zlatokopka.1.cast.2009.TVRip.XVID.CZ.by.Colly.of.PowerUploaders.avi
[2012/04/17 13:41:07 | 771,284,530 | ---- | M] () -- \Filmy\Nový priečinok (10)\Zlatokopka.2.cast.2009.TVRip.XVID.CZ.by.Colly.of.PowerUploaders.avi
[2011/12/27 14:43:10 | 734,817,058 | ---- | M] () -- \Filmy\Nový priečinok (3)\skladiste.dvdrip.cz.by.Delfin.of.PowerUploaders.avi
[2012/03/07 10:05:24 | 781,279,232 | ---- | M] () -- \Filmy\Nový priečinok (6)\Ocelova.pest.2011.DVDRip.CZ.by.Colly.of.PowerUploaders.avi
[2012/04/02 10:33:53 | 977,834,896 | ---- | M] () -- \Filmy\Nový priečinok (7)\Bastardi.2.2011.XVID.Remake.CZ-Colly.by.Colly.of.PowerUploaders.avi
[2012/04/02 13:11:46 | 1597,383,456 | ---- | M] () -- \Filmy\Nový priečinok (8)\bastardi.2.TVrip.cz.by.Delfin.of.PowerUploaders.avi
[2012/01/10 13:06:18 | 1565,304,832 | ---- | M] () -- \Filmy\zobei\Zombie Apocalypse.by.Delfin.of.PowerUploaders.avi
[2012/02/08 12:02:44 | 000,039,897 | ---- | M] () -- \Filmy\zobei\Zombie Apocalypse.by.Delfin.of.PowerUploaders.srt
[2011/10/03 18:15:22 | 000,064,872 | ---- | M] () -- \Games\Batman Arkham City\Binaries\Win32\PhysXLoader.dll
[2011/12/22 15:24:33 | 000,064,352 | ---- | M] () -- \Games\Postal.3.Retail [English]\bin\physxLoader.dll
[2011/12/22 15:46:15 | 000,000,546 | ---- | M] () -- \Games\Postal.3.Retail [English]\p3\materials\models\cars\frontloader_01.vmt
[2011/12/22 15:46:15 | 000,349,784 | ---- | M] () -- \Games\Postal.3.Retail [English]\p3\materials\models\cars\frontloader_01.vtf
[2011/12/22 15:47:52 | 000,033,945 | ---- | M] () -- \Games\Postal.3.Retail [English]\p3\models\cars\frontloader_01.dx90.vtx
[2011/12/22 15:47:52 | 000,001,720 | ---- | M] () -- \Games\Postal.3.Retail [English]\p3\models\cars\frontloader_01.mdl
[2011/12/22 15:47:52 | 000,005,800 | ---- | M] () -- \Games\Postal.3.Retail [English]\p3\models\cars\frontloader_01.phy
[2011/12/22 15:47:52 | 000,149,312 | ---- | M] () -- \Games\Postal.3.Retail [English]\p3\models\cars\frontloader_01.vvd
[2011/10/27 17:13:00 | 000,001,997 | ---- | M] () -- \Games\Shank 2\data\attributes\dummyloader.lua
[2011/12/20 10:27:56 | 000,001,608 | ---- | M] () -- \Games\StarCraft II\Logs\Downloader.log
[2010/07/28 01:40:57 | 002,643,520 | ---- | M] () -- \Games\StarCraft II\Support\BlizzardDownloader.exe
[2012/02/08 20:12:58 | 000,058,368 | ---- | M] () -- \Games\The Darkness II\Tools\Physx\x86\PhysXLoader.dll
[2012/07/06 15:11:59 | 002,172,400 | ---- | M] () -- \Games\World of Warcraft\BackgroundDownloader.exe
[2012/07/06 15:11:51 | 002,070,207 | ---- | M] () -- \Games\World of Warcraft\WoW-x.x.x.x-4.0.0.12911-EU-Downloader.exe
[2012/07/06 13:58:37 | 000,003,026 | ---- | M] () -- \Games\World of Warcraft\Data\enGB\Documentation\Troubleshooting\(Mac)BlizzardDownloaderProblems.html
[2012/07/06 13:58:37 | 000,004,261 | ---- | M] () -- \Games\World of Warcraft\Data\enGB\Documentation\Troubleshooting\(PC)BlizzardDownloaderProblems.html
[2010/07/05 15:30:50 | 000,071,208 | ---- | M] () -- \Games\World_of_Tanks\PhysXLoader.dll
[2012/06/15 11:10:23 | 000,005,679 | ---- | M] () -- \Games\World_of_Tanks\res\scripts\client\tutorial\TutorialLoader.pyc
[2011/06/22 10:05:48 | 000,942,080 | ---- | M] () -- \OLYMP\Downloader.exe
[2012/04/22 11:15:05 | 000,000,037 | ---- | M] () -- \OLYMP\DownloaderVys.dat
[2011/12/21 15:58:58 | 001,339,392 | ---- | M] () -- \Omega\Downloader.EXE
[2012/04/22 11:22:39 | 000,000,038 | ---- | M] () -- \Omega\DownloaderVys.dat
[2011/03/02 21:35:42 | 005,299,048 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS5.1\Photodownloader.exe
[2011/03/02 18:57:10 | 000,011,161 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS5.1\apd\shared_assets\bitmaps\main_window\C_LoadError.png
[2011/03/02 18:57:10 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS5.1\apd\shared_assets\locales\da_dk\Photodownloader.ini
[2011/03/02 18:57:10 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS5.1\apd\shared_assets\locales\de_de\Photodownloader.ini
[2011/03/02 18:57:10 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS5.1\apd\shared_assets\locales\en_us\Photodownloader.ini
[2011/03/02 18:57:10 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS5.1\apd\shared_assets\locales\es_es\Photodownloader.ini
[2011/03/02 18:57:10 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS5.1\apd\shared_assets\locales\fi_fi\Photodownloader.ini
[2011/03/02 18:57:12 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS5.1\apd\shared_assets\locales\fr_fr\Photodownloader.ini
[2011/03/02 18:57:12 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS5.1\apd\shared_assets\locales\it_it\Photodownloader.ini
[2011/03/02 18:57:12 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS5.1\apd\shared_assets\locales\ja_jp\Photodownloader.ini
[2011/03/02 18:57:12 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS5.1\apd\shared_assets\locales\ko_kr\Photodownloader.ini
[2011/03/02 18:57:12 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS5.1\apd\shared_assets\locales\nl_nl\Photodownloader.ini
[2011/03/02 18:57:12 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS5.1\apd\shared_assets\locales\no_no\Photodownloader.ini
[2011/03/02 18:57:12 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS5.1\apd\shared_assets\locales\pt_br\Photodownloader.ini
[2011/03/02 18:57:12 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS5.1\apd\shared_assets\locales\sv_se\Photodownloader.ini
[2011/03/02 18:57:14 | 000,000,308 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS5.1\apd\shared_assets\locales\zh_cn\Photodownloader.ini
[2011/03/02 18:57:14 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS5.1\apd\shared_assets\locales\zh_tw\Photodownloader.ini
[2011/03/18 18:08:46 | 000,082,592 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Encore CS5.1\MXF_SDK_MetaMetadata_BinaryLoader_4.3.4.dll
[2011/03/18 18:08:48 | 000,148,640 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Encore CS5.1\MXF_SDK_MetaMetadata_XSDLoader2_4.3.4.dll
[2011/03/18 18:08:48 | 000,115,360 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Encore CS5.1\MXF_SDK_MetaMetadata_XSDLoader_4.3.4.dll
[2011/03/18 06:06:00 | 000,301,976 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe OnLocation CS5.1\MXF_SDK_MetaMetadata_BinaryLoader_r.4.2.2.319.dll
[2012/07/06 15:04:12 | 000,000,194 | ---- | M] () -- \Program Files (x86)\Common Files\Blizzard Entertainment\BlizzardDownloader.ini
[2006/10/26 14:40:34 | 000,057,344 | ---- | M] () -- \Program Files (x86)\Common Files\microsoft shared\VS7DEBUG\coloader.dll
[2006/10/26 14:40:34 | 000,005,120 | ---- | M] () -- \Program Files (x86)\Common Files\microsoft shared\VS7DEBUG\coloader.tlb
[2012/03/14 18:38:38 | 000,064,280 | ---- | M] () -- \Program Files (x86)\Doublesix Games\All Zombies Must Die!\Binaries\Win32\PhysXLoader.dll
[2012/01/14 12:38:53 | 000,005,795 | ---- | M] () -- \Program Files (x86)\ICQ7.7\imApp\theme\IMAGES\XtraPreloader\loader.jpg
[2012/01/14 12:38:53 | 000,004,180 | ---- | M] () -- \Program Files (x86)\ICQ7.7\imApp\theme\IMAGES\XtraPreloader\zlango-preloader.png
[2012/01/14 12:38:53 | 000,005,520 | ---- | M] () -- \Program Files (x86)\ICQ7.7\imApp\theme\MUICoreLib\xtraLoader.swf
[2012/01/14 12:40:40 | 000,000,402 | ---- | M] () -- \Program Files (x86)\ICQ7.7\Xtraz\icq\content\profile_lightboxs\preloader.html
[2010/11/12 01:19:22 | 000,003,614 | ---- | M] () -- \Program Files (x86)\Inkscape\etc\gtk-2.0\gdk-pixbuf.loaders
[2010/11/12 01:19:22 | 000,030,804 | ---- | M] () -- \Program Files (x86)\Inkscape\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-ani.dll
[2010/11/12 01:19:22 | 000,027,898 | ---- | M] () -- \Program Files (x86)\Inkscape\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-bmp.dll
[2010/11/12 01:19:22 | 000,042,058 | ---- | M] () -- \Program Files (x86)\Inkscape\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-gif.dll
[2010/11/12 01:19:22 | 000,023,145 | ---- | M] () -- \Program Files (x86)\Inkscape\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-icns.dll
[2010/11/12 01:19:22 | 000,028,692 | ---- | M] () -- \Program Files (x86)\Inkscape\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-ico.dll
[2010/11/12 01:19:22 | 000,034,496 | ---- | M] () -- \Program Files (x86)\Inkscape\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-jpeg.dll
[2010/11/12 01:19:22 | 000,022,435 | ---- | M] () -- \Program Files (x86)\Inkscape\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-pcx.dll
[2010/11/12 01:19:22 | 000,036,528 | ---- | M] () -- \Program Files (x86)\Inkscape\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-png.dll
[2010/11/12 01:19:22 | 000,026,252 | ---- | M] () -- \Program Files (x86)\Inkscape\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-pnm.dll
[2010/11/12 01:19:22 | 000,020,063 | ---- | M] () -- \Program Files (x86)\Inkscape\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-ras.dll
[2010/11/12 01:19:22 | 000,024,412 | ---- | M] () -- \Program Files (x86)\Inkscape\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-tga.dll
[2010/11/12 01:19:22 | 000,029,401 | ---- | M] () -- \Program Files (x86)\Inkscape\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-tiff.dll
[2010/11/12 01:19:22 | 000,019,399 | ---- | M] () -- \Program Files (x86)\Inkscape\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-wbmp.dll
[2010/11/12 01:19:22 | 000,025,270 | ---- | M] () -- \Program Files (x86)\Inkscape\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-xbm.dll
[2010/11/12 01:19:22 | 000,042,114 | ---- | M] () -- \Program Files (x86)\Inkscape\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-xpm.dll
[2010/11/12 01:19:22 | 000,018,909 | ---- | M] () -- \Program Files (x86)\Inkscape\lib\gtk-2.0\2.10.0\loaders\svg_loader.dll
[2010/11/12 01:19:22 | 000,032,958 | ---- | M] () -- \Program Files (x86)\Inkscape\python\Lib\site-packages\sk1libs\filters\import\ailoader.py
[2010/11/12 01:19:22 | 000,001,847 | ---- | M] () -- \Program Files (x86)\Inkscape\python\Lib\site-packages\sk1libs\filters\import\bziploader.py
[2010/11/12 01:19:22 | 000,057,685 | ---- | M] () -- \Program Files (x86)\Inkscape\python\Lib\site-packages\sk1libs\filters\import\ccxloader.py
[2010/11/12 01:19:22 | 000,029,336 | ---- | M] () -- \Program Files (x86)\Inkscape\python\Lib\site-packages\sk1libs\filters\import\cdrloader.py
[2010/11/12 01:19:22 | 000,001,341 | ---- | M] () -- \Program Files (x86)\Inkscape\python\Lib\site-packages\sk1libs\filters\import\cdrziploader.py
[2010/11/12 01:19:22 | 000,028,643 | ---- | M] () -- \Program Files (x86)\Inkscape\python\Lib\site-packages\sk1libs\filters\import\cgmloader.py
[2010/11/12 01:19:22 | 000,055,918 | ---- | M] () -- \Program Files (x86)\Inkscape\python\Lib\site-packages\sk1libs\filters\import\cmxloader.py
[2010/11/12 01:19:22 | 000,038,308 | ---- | M] () -- \Program Files (x86)\Inkscape\python\Lib\site-packages\sk1libs\filters\import\dxfloader.py
[2010/11/12 01:19:22 | 000,001,949 | ---- | M] () -- \Program Files (x86)\Inkscape\python\Lib\site-packages\sk1libs\filters\import\gziploader.py
[2010/11/12 01:19:22 | 000,007,779 | ---- | M] () -- \Program Files (x86)\Inkscape\python\Lib\site-packages\sk1libs\filters\import\pltloader.py
[2010/11/12 01:19:22 | 000,017,301 | ---- | M] () -- \Program Files (x86)\Inkscape\python\Lib\site-packages\sk1libs\filters\import\sk1loader.py
[2010/11/12 01:19:22 | 000,015,416 | ---- | M] () -- \Program Files (x86)\Inkscape\python\Lib\site-packages\sk1libs\filters\import\skloader.py
[2010/11/12 01:19:22 | 000,015,832 | ---- | M] () -- \Program Files (x86)\Inkscape\python\Lib\site-packages\sk1libs\filters\import\stitchloader.py
[2010/11/12 01:19:22 | 000,038,937 | ---- | M] () -- \Program Files (x86)\Inkscape\python\Lib\site-packages\sk1libs\filters\import\svgloader.py
[2010/11/12 01:19:22 | 000,014,300 | ---- | M] () -- \Program Files (x86)\Inkscape\python\Lib\site-packages\sk1libs\filters\import\wmfloader.py
[2010/11/12 01:19:22 | 000,017,550 | ---- | M] () -- \Program Files (x86)\Inkscape\python\Lib\site-packages\sk1libs\filters\import\xfigloader.py
[2012/05/03 18:38:36 | 000,071,528 | ---- | M] () -- \Program Files (x86)\NVIDIA Corporation\PhysX\Common\PhysXLoader.dll
[2012/05/03 18:39:16 | 000,063,848 | ---- | M] () -- \Program Files (x86)\NVIDIA Corporation\PhysX\Common\PhysXLoader64.dll
[2012/05/21 04:03:06 | 000,083,816 | ---- | M] () -- \Program Files (x86)\NVIDIA Corporation\PhysX\Common\PhysXUpdateLoader.dll
[2012/05/21 04:03:06 | 000,089,448 | ---- | M] () -- \Program Files (x86)\NVIDIA Corporation\PhysX\Common\PhysXUpdateLoader64.dll
[2012/02/27 23:58:46 | 000,008,787 | ---- | M] () -- \Program Files (x86)\Rockstar Games\Social Club\UI\images\loaderLargeBlue.gif
[2012/02/27 23:58:46 | 000,008,787 | ---- | M] () -- \Program Files (x86)\Rockstar Games\Social Club\UI\images\loaderLargeGrey.gif
[2012/02/27 23:58:46 | 000,001,737 | ---- | M] () -- \Program Files (x86)\Rockstar Games\Social Club\UI\images\loaderSmallBlue.gif
[2012/02/27 23:58:46 | 000,001,737 | ---- | M] () -- \Program Files (x86)\Rockstar Games\Social Club\UI\images\loaderSmallGold.gif
[2012/06/26 12:23:48 | 000,001,702 | ---- | M] () -- \Program Files (x86)\Sony Ericsson\Update Engine\licenses\loaderbinarylegal.txt
[2010/03/06 10:24:56 | 000,003,614 | ---- | M] () -- \Program Files (x86)\TC UP\PLUGINS\Media\Inkscape\etc\gtk-2.0\gdk-pixbuf.loaders
[2010/03/06 10:24:56 | 000,030,804 | ---- | M] () -- \Program Files (x86)\TC UP\PLUGINS\Media\Inkscape\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-ani.dll
[2010/03/06 10:24:56 | 000,027,898 | ---- | M] () -- \Program Files (x86)\TC UP\PLUGINS\Media\Inkscape\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-bmp.dll
[2010/03/06 10:24:56 | 000,042,058 | ---- | M] () -- \Program Files (x86)\TC UP\PLUGINS\Media\Inkscape\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-gif.dll
[2010/03/06 10:24:56 | 000,023,145 | ---- | M] () -- \Program Files (x86)\TC UP\PLUGINS\Media\Inkscape\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-icns.dll
[2010/03/06 10:24:56 | 000,028,692 | ---- | M] () -- \Program Files (x86)\TC UP\PLUGINS\Media\Inkscape\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-ico.dll
[2010/03/06 10:24:56 | 000,034,496 | ---- | M] () -- \Program Files (x86)\TC UP\PLUGINS\Media\Inkscape\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-jpeg.dll
[2010/03/06 10:24:56 | 000,022,435 | ---- | M] () -- \Program Files (x86)\TC UP\PLUGINS\Media\Inkscape\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-pcx.dll
[2010/03/06 10:24:56 | 000,036,528 | ---- | M] () -- \Program Files (x86)\TC UP\PLUGINS\Media\Inkscape\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-png.dll
[2010/03/06 10:24:56 | 000,026,252 | ---- | M] () -- \Program Files (x86)\TC UP\PLUGINS\Media\Inkscape\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-pnm.dll
[2010/03/06 10:24:56 | 000,020,063 | ---- | M] () -- \Program Files (x86)\TC UP\PLUGINS\Media\Inkscape\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-ras.dll
[2010/03/06 10:24:56 | 000,024,412 | ---- | M] () -- \Program Files (x86)\TC UP\PLUGINS\Media\Inkscape\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-tga.dll
[2010/03/06 10:24:56 | 000,029,401 | ---- | M] () -- \Program Files (x86)\TC UP\PLUGINS\Media\Inkscape\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-tiff.dll
[2010/03/06 10:24:56 | 000,019,399 | ---- | M] () -- \Program Files (x86)\TC UP\PLUGINS\Media\Inkscape\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-wbmp.dll
[2010/03/06 10:24:56 | 000,025,270 | ---- | M] () -- \Program Files (x86)\TC UP\PLUGINS\Media\Inkscape\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-xbm.dll
[2010/03/06 10:24:56 | 000,042,114 | ---- | M] () -- \Program Files (x86)\TC UP\PLUGINS\Media\Inkscape\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-xpm.dll
[2010/03/06 10:24:56 | 000,018,909 | ---- | M] () -- \Program Files (x86)\TC UP\PLUGINS\Media\Inkscape\lib\gtk-2.0\2.10.0\loaders\svg_loader.dll
[2010/08/16 11:41:40 | 000,032,958 | ---- | M] () -- \Program Files (x86)\TC UP\PLUGINS\Media\Inkscape\python\Lib\site-packages\sk1libs\filters\import\ailoader.py
[2010/08/16 11:41:40 | 000,001,847 | ---- | M] () -- \Program Files (x86)\TC UP\PLUGINS\Media\Inkscape\python\Lib\site-packages\sk1libs\filters\import\bziploader.py
[2010/08/16 11:41:40 | 000,057,685 | ---- | M] () -- \Program Files (x86)\TC UP\PLUGINS\Media\Inkscape\python\Lib\site-packages\sk1libs\filters\import\ccxloader.py
[2010/08/16 11:41:40 | 000,029,336 | ---- | M] () -- \Program Files (x86)\TC UP\PLUGINS\Media\Inkscape\python\Lib\site-packages\sk1libs\filters\import\cdrloader.py
[2010/08/16 11:41:40 | 000,001,341 | ---- | M] () -- \Program Files (x86)\TC UP\PLUGINS\Media\Inkscape\python\Lib\site-packages\sk1libs\filters\import\cdrziploader.py
[2010/08/16 11:41:40 | 000,028,643 | ---- | M] () -- \Program Files (x86)\TC UP\PLUGINS\Media\Inkscape\python\Lib\site-packages\sk1libs\filters\import\cgmloader.py
[2010/08/16 11:41:40 | 000,055,918 | ---- | M] () -- \Program Files (x86)\TC UP\PLUGINS\Media\Inkscape\python\Lib\site-packages\sk1libs\filters\import\cmxloader.py
[2010/08/16 11:41:40 | 000,038,308 | ---- | M] () -- \Program Files (x86)\TC UP\PLUGINS\Media\Inkscape\python\Lib\site-packages\sk1libs\filters\import\dxfloader.py
[2010/08/16 11:41:40 | 000,001,949 | ---- | M] () -- \Program Files (x86)\TC UP\PLUGINS\Media\Inkscape\python\Lib\site-packages\sk1libs\filters\import\gziploader.py
[2010/08/16 11:41:40 | 000,007,779 | ---- | M] () -- \Program Files (x86)\TC UP\PLUGINS\Media\Inkscape\python\Lib\site-packages\sk1libs\filters\import\pltloader.py
[2010/08/16 11:41:40 | 000,017,301 | ---- | M] () -- \Program Files (x86)\TC UP\PLUGINS\Media\Inkscape\python\Lib\site-packages\sk1libs\filters\import\sk1loader.py
[2010/08/16 11:41:40 | 000,015,416 | ---- | M] () -- \Program Files (x86)\TC UP\PLUGINS\Media\Inkscape\python\Lib\site-packages\sk1libs\filters\import\skloader.py
[2010/08/16 11:41:40 | 000,015,832 | ---- | M] () -- \Program Files (x86)\TC UP\PLUGINS\Media\Inkscape\python\Lib\site-packages\sk1libs\filters\import\stitchloader.py
[2010/08/16 11:41:40 | 000,038,937 | ---- | M] () -- \Program Files (x86)\TC UP\PLUGINS\Media\Inkscape\python\Lib\site-packages\sk1libs\filters\import\svgloader.py
[2010/08/16 11:41:40 | 000,014,300 | ---- | M] () -- \Program Files (x86)\TC UP\PLUGINS\Media\Inkscape\python\Lib\site-packages\sk1libs\filters\import\wmfloader.py
[2010/08/16 11:41:40 | 000,017,550 | ---- | M] () -- \Program Files (x86)\TC UP\PLUGINS\Media\Inkscape\python\Lib\site-packages\sk1libs\filters\import\xfigloader.py
[2008/02/25 08:05:22 | 000,856,064 | ---- | M] () -- \Program Files (x86)\TC UP\PLUGINS\Media\TheKMPlayer\ImLoader.dll
[2006/12/23 18:37:56 | 000,044,032 | ---- | M] () -- \Program Files (x86)\WinRAR\RarExtLoader.exe
[2011/03/15 11:23:50 | 000,105,984 | ---- | M] () -- \Program Files\Adobe\Adobe Media Encoder CS5.5\MXF_SDK_MetaMetadata_BinaryLoader_4.3.4.dll
[2011/03/15 11:23:50 | 000,196,608 | ---- | M] () -- \Program Files\Adobe\Adobe Media Encoder CS5.5\MXF_SDK_MetaMetadata_XSDLoader2_4.3.4.dll
[2011/03/15 11:23:50 | 000,144,896 | ---- | M] () -- \Program Files\Adobe\Adobe Media Encoder CS5.5\MXF_SDK_MetaMetadata_XSDLoader_4.3.4.dll
[2011/03/23 14:50:20 | 000,105,984 | ---- | M] () -- \Program Files\Adobe\Adobe Premiere Pro CS5.5\MXF_SDK_MetaMetadata_BinaryLoader_4.3.4.dll
[2011/03/23 14:50:20 | 000,196,608 | ---- | M] () -- \Program Files\Adobe\Adobe Premiere Pro CS5.5\MXF_SDK_MetaMetadata_XSDLoader2_4.3.4.dll
[2011/03/23 14:50:20 | 000,144,896 | ---- | M] () -- \Program Files\Adobe\Adobe Premiere Pro CS5.5\MXF_SDK_MetaMetadata_XSDLoader_4.3.4.dll
[2012/05/23 09:52:48 | 000,000,072 | ---- | M] () -- \ProgramData\Microsoft\Windows\Start Menu\Programs\YTD YouTube Downloader & Converter\YTD YouTube Downloader & Converter Help.url
[2012/05/23 09:52:48 | 000,001,952 | ---- | M] () -- \ProgramData\Microsoft\Windows\Start Menu\Programs\YTD YouTube Downloader & Converter\YTD YouTube Downloader & Converter.lnk
[2011/09/20 16:43:32 | 000,000,232 | ---- | M] () -- \ProgramData\Nero\Nero 10\OnlineServices\NOSWebConfig\MySpace\uploadError.xml
[2012/04/27 17:14:26 | 000,072,638 | ---- | M] () -- \ProgramData\Skype\Apps\login\images\loader.gif
[2012/04/27 17:14:26 | 000,003,032 | ---- | M] () -- \ProgramData\Skype\Apps\login\images\loader.png
[2012/05/23 09:52:48 | 000,000,072 | ---- | M] () -- \Users\All Users\Microsoft\Windows\Start Menu\Programs\YTD YouTube Downloader & Converter\YTD YouTube Downloader & Converter Help.url
[2012/05/23 09:52:48 | 000,001,952 | ---- | M] () -- \Users\All Users\Microsoft\Windows\Start Menu\Programs\YTD YouTube Downloader & Converter\YTD YouTube Downloader & Converter.lnk
[2011/09/20 16:43:32 | 000,000,232 | ---- | M] () -- \Users\All Users\Nero\Nero 10\OnlineServices\NOSWebConfig\MySpace\uploadError.xml
[2012/04/27 17:14:26 | 000,072,638 | ---- | M] () -- \Users\All Users\Skype\Apps\login\images\loader.gif
[2012/04/27 17:14:26 | 000,003,032 | ---- | M] () -- \Users\All Users\Skype\Apps\login\images\loader.png
[2012/04/19 19:14:13 | 000,006,791 | ---- | M] () -- \Users\Martin\AppData\Local\SRDownloader.err
[2012/05/27 17:28:38 | 000,001,008 | ---- | M] () -- \Users\Martin\AppData\Local\SRDownloader.nast
[2012/04/06 13:24:50 | 000,057,728 | ---- | M] () -- \Users\Martin\AppData\Local\Microsoft\Windows Sidebar\Gadgets\DT.gadget\img\dt_dadget_loader.png
[2012/04/06 13:24:42 | 000,057,728 | ---- | M] () -- \Users\Martin\AppData\Local\Microsoft\Windows Sidebar\Gadgets\DT.gadget\skins\skin1\dt_dadget_loader.png
[2012/04/06 13:24:44 | 000,057,728 | ---- | M] () -- \Users\Martin\AppData\Local\Microsoft\Windows Sidebar\Gadgets\DT.gadget\skins\skin2\dt_dadget_loader.png
[2012/04/06 13:24:46 | 000,057,728 | ---- | M] () -- \Users\Martin\AppData\Local\Microsoft\Windows Sidebar\Gadgets\DT.gadget\skins\skin3\dt_dadget_loader.png
[2012/04/06 13:24:46 | 000,057,728 | ---- | M] () -- \Users\Martin\AppData\Local\Microsoft\Windows Sidebar\Gadgets\DT.gadget\skins\skin4\dt_dadget_loader.png
[2012/04/06 13:24:48 | 000,061,770 | ---- | M] () -- \Users\Martin\AppData\Local\Microsoft\Windows Sidebar\Gadgets\DT.gadget\skins\skin5\dt_dadget_loader.png
[2012/04/06 13:24:48 | 000,061,770 | ---- | M] () -- \Users\Martin\AppData\Local\Microsoft\Windows Sidebar\Gadgets\DT.gadget\skins\skin6\dt_dadget_loader.png
[2012/09/07 09:37:55 | 000,105,903 | ---- | M] () -- \Users\Martin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\JBJ98WWX\AdLoader-427d9fd2a91e2f2c023aefe9f69a01d0.min[1].js
[2012/09/07 09:37:55 | 000,000,753 | ---- | M] () -- \Users\Martin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\YDDLJSRH\AdLoader[1].htm
[2012/05/14 21:02:14 | 000,009,051 | ---- | M] () -- \Users\Martin\AppData\Roaming\DAEMON Tools Lite\MediaInfo\img\loader.gif
[2012/05/14 21:02:14 | 000,016,119 | ---- | M] () -- \Users\Martin\AppData\Roaming\DAEMON Tools Lite\MediaInfo\img\logo_loader_page.jpg
[2012/05/14 21:02:14 | 000,018,434 | ---- | M] () -- \Users\Martin\AppData\Roaming\DAEMON Tools Lite\MediaInfo\img\logo_loader_page.png
[2012/05/14 21:02:14 | 000,009,283 | ---- | M] () -- \Users\Martin\AppData\Roaming\DAEMON Tools Lite\MediaInfo\js\app\MediaInfo\ImageInfoLoader.js
[2012/05/14 21:02:14 | 000,001,699 | ---- | M] () -- \Users\Martin\AppData\Roaming\DAEMON Tools Lite\MediaInfo\js\app\MediaInfo\NewsLoader.js
[2012/04/19 19:14:21 | 000,904,192 | ---- | M] () -- \Users\Martin\Desktop\Programy\SRDownloader.exe
[2011/12/14 09:41:58 | 003,754,647 | ---- | M] () -- \Users\Martin\Desktop\Programy\Windows-Loader-v2.1.zip
[2012/05/23 09:52:48 | 000,001,046 | ---- | M] () -- \Users\Martin\Desktop\Programy\YTD YouTube Downloader & Converter.lnk
[2012/07/06 15:04:11 | 002,705,537 | ---- | M] () -- \Users\Public\Documents\Blizzard Entertainment\World of Warcraft\wow-2.1.1.1897-enGB-tools-downloader.exe
[2012/07/06 15:44:18 | 002,070,207 | ---- | M] () -- \Users\Public\Documents\Blizzard Entertainment\World of Warcraft\WoW-x.x.x.x-4.0.0.12911-EU-Downloader.exe
[2012/07/06 15:04:36 | 000,009,175 | ---- | M] () -- \Users\Public\Documents\Blizzard Entertainment\World of Warcraft\Logs\Downloader.log
[2012/09/25 15:42:04 | 000,020,548 | ---- | M] () -- \Windows\Prefetch\RAREXTLOADER.EXE-8405D981.pf
[2009/09/30 18:39:46 | 002,199,375 | R--- | M] () -- \Windows\Setup\SCRIPTS\Windows7Loader.exe
[2009/07/14 03:03:49 | 000,003,584 | -H-- | M] () -- \Windows\System32\api-ms-win-core-libraryloader-l1-1-0.dll
[2009/07/14 03:15:12 | 000,038,400 | ---- | M] () -- \Windows\System32\dmloader.dll
[2 \Windows\System32\*.tmp files -> \Windows\System32\*.tmp -> ]
[2009/07/14 03:03:49 | 000,003,584 | -H-- | M] () -- \Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
[2009/07/14 03:15:12 | 000,038,400 | ---- | M] () -- \Windows\SysWOW64\dmloader.dll
[2 \Windows\SysWOW64\*.tmp files -> \Windows\SysWOW64\*.tmp -> ]
[2009/07/14 03:40:31 | 000,047,616 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-audio-dmusic_31bf3856ad364e35_6.1.7600.16385_none_a1e90d98a953d601\dmloader.dll
[2009/07/14 03:24:53 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.16385_none_66a6e19d9580f9e3\api-ms-win-core-libraryloader-l1-1-0.dll
[2009/07/14 09:44:39 | 000,004,431 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_en-us_d28dabacfdb4dd1a.manifest
[2009/07/14 09:44:39 | 000,033,360 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_en-us_d28dabacfdb4dd1a_winload.efi.mui_35ee487d
[2009/07/14 09:44:39 | 000,033,344 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_en-us_d28dabacfdb4dd1a_winload.exe.mui_3bc5b827
[2009/07/14 09:44:39 | 000,029,776 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_en-us_d28dabacfdb4dd1a_winresume.efi.mui_f412814e
[2009/07/14 09:44:39 | 000,029,760 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_en-us_d28dabacfdb4dd1a_winresume.exe.mui_ff8b5358
[2009/07/14 04:58:45 | 000,005,745 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7600.16385_none_b71babd98657e6ef.manifest
[2009/07/14 04:58:45 | 000,641,088 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7600.16385_none_b71babd98657e6ef_winload.efi_75834aa0
[2009/07/14 04:58:45 | 000,604,192 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7600.16385_none_b71babd98657e6ef_winload.exe_75835076
[2009/07/14 04:58:45 | 000,557,136 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7600.16385_none_b71babd98657e6ef_winresume.efi_85cd069f
[2009/07/14 04:58:45 | 000,518,352 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7600.16385_none_b71babd98657e6ef_winresume.exe_85cd1215
[2009/07/14 04:57:50 | 000,002,896 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-s..ive-blackbox-loader_31bf3856ad364e35_6.1.7600.16385_none_c72819e06acceb59.manifest
[2009/07/14 04:57:50 | 000,019,008 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-s..ive-blackbox-loader_31bf3856ad364e35_6.1.7600.16385_none_c72819e06acceb59_spldr.sys_98bd87a0
[2009/07/14 09:43:41 | 000,004,431 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_en-us_d28dabacfdb4dd1a.manifest
[2009/07/14 04:13:42 | 000,005,745 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7600.16385_none_b71babd98657e6ef.manifest
[2009/07/14 04:18:27 | 000,002,896 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-s..ive-blackbox-loader_31bf3856ad364e35_6.1.7600.16385_none_c72819e06acceb59.manifest
[2009/07/14 03:15:12 | 000,038,400 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-audio-dmusic_31bf3856ad364e35_6.1.7600.16385_none_45ca7214f0f664cb\dmloader.dll
[2009/07/14 03:03:49 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.16385_none_0a884619dd2388ad\api-ms-win-core-libraryloader-l1-1-0.dll
< *minodlogin* /s >
< *tnod* /s >
[2012/03/14 18:38:38 | 000,003,128 | ---- | M] () -- \Program Files (x86)\Doublesix Games\All Zombies Must Die!\Engine\EditorResources\FaceFX\res\icons\FxGenericTargetNode.bmp
< *AutoKMS* /s >
< *activator* /s >
< *serial* /s >
[2010/08/14 17:46:10 | 000,009,066 | ---- | M] () -- \Games\World of Warcraft\Interface\AddOns\AtlasLoot\Libs\AceSerializer-3.0\AceSerializer-3.0.lua
[2010/08/14 17:46:10 | 000,000,219 | ---- | M] () -- \Games\World of Warcraft\Interface\AddOns\AtlasLoot\Libs\AceSerializer-3.0\AceSerializer-3.0.xml
[2010/10/05 10:01:18 | 000,009,066 | ---- | M] () -- \Games\World of Warcraft\Interface\AddOns\Recount\Libs\AceSerializer-3.0\AceSerializer-3.0.lua
[2010/10/05 10:01:18 | 000,000,219 | ---- | M] () -- \Games\World of Warcraft\Interface\AddOns\Recount\Libs\AceSerializer-3.0\AceSerializer-3.0.xml
[2011/03/18 10:28:42 | 000,001,673 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Encore CS5.1\LMResources\BadSerialNumberAlert.exv
[2011/03/18 10:28:42 | 000,001,561 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Encore CS5.1\LMResources\CantChangeSerialNumberAlert.exv
[2011/03/18 10:28:42 | 000,001,639 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Encore CS5.1\LMResources\InValidUpGradeSerialNumberAlert.exv
[2011/03/18 10:28:42 | 000,000,849 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Encore CS5.1\LMResources\ReserializeAlert.exv
[2011/03/18 10:28:42 | 000,027,443 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Encore CS5.1\LMResources\SerializationWF.exv
[2011/03/18 12:56:02 | 000,090,624 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Encore CS5.1\Plug-ins\Common\DeviceControlSerial.prm
[2010/09/16 03:38:36 | 000,087,040 | ---- | M] () -- \Program Files (x86)\Business Objects\Common\3.5\bin\saxmlserialize.dll
[2010/09/16 04:08:50 | 000,025,088 | ---- | M] () -- \Program Files (x86)\Business Objects\Common\3.5\bin\saxmlserialize_res_chs.dll
[2010/09/16 04:08:52 | 000,025,088 | ---- | M] () -- \Program Files (x86)\Business Objects\Common\3.5\bin\saxmlserialize_res_cht.dll
[2010/09/16 04:08:40 | 000,025,088 | ---- | M] () -- \Program Files (x86)\Business Objects\Common\3.5\bin\saxmlserialize_res_de.dll
[2010/09/16 04:08:38 | 000,025,088 | ---- | M] () -- \Program Files (x86)\Business Objects\Common\3.5\bin\saxmlserialize_res_en.dll
[2010/09/16 04:08:44 | 000,025,088 | ---- | M] () -- \Program Files (x86)\Business Objects\Common\3.5\bin\saxmlserialize_res_es.dll
[2010/09/16 04:08:38 | 000,025,088 | ---- | M] () -- \Program Files (x86)\Business Objects\Common\3.5\bin\saxmlserialize_res_fr.dll
[2010/09/16 04:08:44 | 000,025,088 | ---- | M] () -- \Program Files (x86)\Business Objects\Common\3.5\bin\saxmlserialize_res_it.dll
[2010/09/16 04:08:50 | 000,025,088 | ---- | M] () -- \Program Files (x86)\Business Objects\Common\3.5\bin\saxmlserialize_res_jp.dll
[2010/09/16 04:08:54 | 000,025,088 | ---- | M] () -- \Program Files (x86)\Business Objects\Common\3.5\bin\saxmlserialize_res_ko.dll
[2010/09/16 04:08:46 | 000,025,088 | ---- | M] () -- \Program Files (x86)\Business Objects\Common\3.5\bin\saxmlserialize_res_nl.dll
[2010/09/16 04:09:00 | 000,025,088 | ---- | M] () -- \Program Files (x86)\Business Objects\Common\3.5\bin\saxmlserialize_res_pl.dll
[2010/09/16 04:08:58 | 000,025,088 | ---- | M] () -- \Program Files (x86)\Business Objects\Common\3.5\bin\saxmlserialize_res_pt.dll
[2010/09/16 04:08:58 | 000,025,088 | ---- | M] () -- \Program Files (x86)\Business Objects\Common\3.5\bin\saxmlserialize_res_ru.dll
[2010/09/16 04:08:56 | 000,025,088 | ---- | M] () -- \Program Files (x86)\Business Objects\Common\3.5\bin\saxmlserialize_res_sv.dll
[2010/09/16 03:26:04 | 000,217,088 | ---- | M] () -- \Program Files (x86)\Business Objects\Common\3.5\bin\saxserialize.dll
[2011/09/12 11:26:02 | 000,247,080 | R--- | M] () -- \Program Files (x86)\Common Files\Nero\BDCore\boost_serialization-mt.dll
[2011/09/12 11:26:02 | 000,166,696 | R--- | M] () -- \Program Files (x86)\Common Files\Nero\BDCore\boost_wserialization-mt.dll
[2003/10/09 07:11:48 | 000,000,216 | ---- | M] () -- \Program Files (x86)\Image-Line\FL Studio 10\Plugins\Fruity\Generators\Sytrus\Artwork\DelSerialCache.bmp
[2011/09/23 14:22:58 | 000,589,608 | ---- | M] () -- \Program Files (x86)\Nero\KM\SerialHelper.exe
[2011/08/08 21:04:32 | 000,036,864 | ---- | M] () -- \Program Files (x86)\OCCTPT\OCCT.XmlSerializers.dll
[2009/06/10 23:13:54 | 000,970,752 | ---- | M] () -- \Program Files (x86)\Reference Assemblies\Microsoft\Framework\v3.0\System.Runtime.Serialization.dll
[2012/06/26 12:21:34 | 000,026,761 | ---- | M] () -- \Program Files (x86)\Sony Ericsson\Update Engine\plugins\com.serialio.win32.x86_2.10.2.0.jar
[2012/06/26 12:21:34 | 000,049,527 | ---- | M] () -- \Program Files (x86)\Sony Ericsson\Update Engine\plugins\com.serialio_2.12.8.23.jar
[2012/06/26 12:24:04 | 000,006,320 | ---- | M] () -- \Program Files (x86)\Sony Ericsson\Update Engine\plugins\com.sonyericsson.cs.serialcommunication_2.12.8.23.jar
[2011/09/27 13:38:40 | 000,320,856 | ---- | M] () -- \Program Files (x86)\Sony\Vegas Pro 11.0\CoreUI.XmlSerializers.dll
[2011/09/27 13:38:48 | 000,460,120 | ---- | M] () -- \Program Files (x86)\Sony\Vegas Pro 11.0\Sony.MediaSoftware.TextGen.CoreGraphics.XmlSerializers.dll
[2009/06/10 22:30:43 | 000,847,872 | ---- | M] () -- \Program Files\Reference Assemblies\Microsoft\Framework\v3.0\System.Runtime.Serialization.dll
[2012/04/27 00:00:01 | 012,175,353 | ---- | M] () -- \Users\Martin\Desktop\mp 3\Nový priečinok (4)\VA - Disco Revengers Vol 2 From Disco To Disco (2012) mp3\20. High (Original Mix) - Serial Thrilla.mp3
[2008/09/04 09:06:40 | 000,079,120 | ---- | M] () -- \Users\Public\Documents\Pinnacle\Content\HollywoodFX\HfxSerial.exe
[2008/09/04 09:07:02 | 000,010,512 | ---- | M] () -- \Users\Public\Documents\Pinnacle\Content\HollywoodFX\Languages\HfxSerial-CHS.dll
[2008/09/04 09:07:04 | 000,011,024 | ---- | M] () -- \Users\Public\Documents\Pinnacle\Content\HollywoodFX\Languages\HfxSerial-DEU.dll
[2008/09/04 09:07:04 | 000,011,024 | ---- | M] () -- \Users\Public\Documents\Pinnacle\Content\HollywoodFX\Languages\HfxSerial-ESP.dll
[2008/09/04 09:07:06 | 000,011,024 | ---- | M] () -- \Users\Public\Documents\Pinnacle\Content\HollywoodFX\Languages\HfxSerial-FRA.dll
[2008/09/04 09:07:10 | 000,011,024 | ---- | M] () -- \Users\Public\Documents\Pinnacle\Content\HollywoodFX\Languages\HfxSerial-ITA.dll
[2008/09/04 09:07:14 | 000,010,512 | ---- | M] () -- \Users\Public\Documents\Pinnacle\Content\HollywoodFX\Languages\HfxSerial-JPN.dll
[2008/09/04 09:07:14 | 000,010,512 | ---- | M] () -- \Users\Public\Documents\Pinnacle\Content\HollywoodFX\Languages\HfxSerial-KOR.dll
[2008/09/04 09:07:16 | 000,011,024 | ---- | M] () -- \Users\Public\Documents\Pinnacle\Content\HollywoodFX\Languages\HfxSerial-NLD.dll
[2009/06/10 23:23:19 | 000,131,072 | ---- | M] () -- \Windows\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap\2.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.dll
[2009/06/10 23:13:54 | 000,970,752 | ---- | M] () -- \Windows\assembly\GAC_MSIL\System.Runtime.Serialization\3.0.0.0__b77a5c561934e089\System.Runtime.Serialization.dll
[2009/07/14 06:56:20 | 002,347,008 | ---- | M] () -- \Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Seri#\39e53f507d9cbc5c10a2f47c4b0d09dd\System.Runtime.Serialization.ni.dll
[2009/07/14 06:55:32 | 000,310,784 | ---- | M] () -- \Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Seri#\d57d865568209a71d63739fa448ed6df\System.Runtime.Serialization.Formatters.Soap.ni.dll
[2009/07/14 06:59:40 | 003,073,536 | ---- | M] () -- \Windows\assembly\NativeImages_v2.0.50727_64\System.Runtime.Seri#\12aaff696a0c54773664b4c5407deaa2\System.Runtime.Serialization.ni.dll
[2009/07/14 06:57:59 | 000,396,288 | ---- | M] () -- \Windows\assembly\NativeImages_v2.0.50727_64\System.Runtime.Seri#\d0c6d3aadce1e38bbcb06905e132a503\System.Runtime.Serialization.Formatters.Soap.ni.dll
[2011/12/18 10:24:53 | 000,310,272 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_32\System.Runtime.Seri#\d0ff3383438d688a0118d0fa19ed1dc4\System.Runtime.Serialization.Formatters.Soap.ni.dll
[2011/12/18 10:24:50 | 002,625,024 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_32\System.Runtime.Seri#\e9f8a45b1063d6c6a62718c88a5623d1\System.Runtime.Serialization.ni.dll
[2011/12/18 10:27:52 | 003,375,616 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_64\System.Runtime.Seri#\08fba6b56d838ad48b4451c82e5728d4\System.Runtime.Serialization.ni.dll
[2011/12/18 10:27:57 | 000,374,272 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_64\System.Runtime.Seri#\b468f9d8655e91b7a6aa11473eca4a97\System.Runtime.Serialization.Formatters.Soap.ni.dll
[2012/05/22 10:20:39 | 000,122,264 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.dll
[2012/05/22 10:20:39 | 001,026,936 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization\v4.0_4.0.0.0__b77a5c561934e089\System.Runtime.Serialization.dll
[2009/06/10 23:23:19 | 000,131,072 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v2.0.50727\System.Runtime.Serialization.Formatters.Soap.dll
[2009/06/10 23:14:06 | 000,970,752 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\System.Runtime.Serialization.dll
[2010/03/18 13:16:28 | 001,026,936 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\System.Runtime.Serialization.dll
[2010/03/18 13:16:28 | 000,122,264 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\System.Runtime.Serialization.Formatters.Soap.dll
[2009/06/10 22:40:06 | 000,131,072 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v2.0.50727\System.Runtime.Serialization.Formatters.Soap.dll
[2009/06/10 22:30:46 | 000,847,872 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\System.Runtime.Serialization.dll
[2010/03/18 13:16:28 | 001,026,936 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v4.0.30319\System.Runtime.Serialization.dll
[2010/03/18 13:16:28 | 000,122,264 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v4.0.30319\System.Runtime.Serialization.Formatters.Soap.dll
[2009/07/14 03:16:13 | 000,015,360 | ---- | M] () -- \Windows\System32\serialui.dll
[2 \Windows\System32\*.tmp files -> \Windows\System32\*.tmp -> ]
[2009/07/14 02:00:40 | 000,094,208 | ---- | M] () -- \Windows\System32\DriverStore\FileRepository\msports.inf_amd64_neutral_fdcfb86ce78678d1\serial.sys
[2009/06/10 22:37:50 | 000,038,400 | ---- | M] () -- \Windows\System32\DriverStore\FileRepository\smartcrd.inf_amd64_neutral_6fb75ea318f84fe5\grserial.sys
[2009/07/14 09:44:15 | 000,005,120 | ---- | M] () -- \Windows\System32\sk-SK\serialui.dll.mui
[2009/07/14 03:16:13 | 000,015,360 | ---- | M] () -- \Windows\SysWOW64\serialui.dll
[2 \Windows\SysWOW64\*.tmp files -> \Windows\SysWOW64\*.tmp -> ]
[2009/07/14 09:44:15 | 000,005,120 | ---- | M] () -- \Windows\SysWOW64\sk-SK\serialui.dll.mui
[2009/07/14 09:44:13 | 000,005,120 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-u..em-config.resources_31bf3856ad364e35_6.1.7600.16385_sk-sk_d5f23af62a751552\serialui.dll.mui
[2009/07/14 03:41:54 | 000,017,920 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-unimodem-config_31bf3856ad364e35_6.1.7600.16385_none_50f69335385bc360\serialui.dll
[2009/07/14 09:44:20 | 000,010,240 | ---- | M] () -- \Windows\winsxs\amd64_msports.inf.resources_31bf3856ad364e35_6.1.7600.16385_en-us_64015f894ce7c72a\serial.sys.mui
[2009/07/14 02:00:40 | 000,094,208 | ---- | M] () -- \Windows\winsxs\amd64_msports.inf_31bf3856ad364e35_6.1.7600.16385_none_548ca258d20f4ada\serial.sys
[2009/06/10 22:40:06 | 000,131,072 | ---- | M] () -- \Windows\winsxs\amd64_netfx-system.runtim..ion.formatters.soap_b03f5f7f11d50a3a_6.1.7600.16385_none_a9d1bee515273f56\System.Runtime.Serialization.Formatters.Soap.dll
[2009/06/10 22:37:50 | 000,038,400 | ---- | M] () -- \Windows\winsxs\amd64_smartcrd.inf_31bf3856ad364e35_6.1.7600.16385_none_ce9ed3064deed3aa\grserial.sys
[2009/06/10 22:30:46 | 000,847,872 | ---- | M] () -- \Windows\winsxs\amd64_wcf-system.runtime.serialization.ref_b03f5f7f11d50a3a_6.1.7600.16385_none_5943b25a748cb06c\System.Runtime.Serialization.dll
[2009/06/10 22:30:43 | 000,847,872 | ---- | M] () -- \Windows\winsxs\amd64_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7600.16385_none_941abf24c884ab05\System.Runtime.Serialization.dll
[2009/07/14 04:57:21 | 000,002,766 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..gertransport-serial_31bf3856ad364e35_6.1.7600.16385_none_6daa7ec5c65bf5bc.manifest
[2009/07/14 04:57:21 | 000,017,984 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..gertransport-serial_31bf3856ad364e35_6.1.7600.16385_none_6daa7ec5c65bf5bc_kdcom.dll_db5e7744
[2009/07/14 09:44:36 | 000,005,120 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-u..em-config.resources_31bf3856ad364e35_6.1.7600.16385_sk-sk_d5f23af62a751552_serialui.dll.mui_7d29d2a3
[2009/07/14 04:57:29 | 000,017,920 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-unimodem-config_31bf3856ad364e35_6.1.7600.16385_none_50f69335385bc360_serialui.dll_bea29328
[2009/07/14 09:44:38 | 000,005,120 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-u..em-config.resources_31bf3856ad364e35_6.1.7600.16385_sk-sk_79d39f727217a41c_serialui.dll.mui_7d29d2a3
[2009/07/14 04:58:37 | 000,015,360 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-unimodem-config_31bf3856ad364e35_6.1.7600.16385_none_f4d7f7b17ffe522a_serialui.dll_bea29328
[2009/07/14 04:15:17 | 000,002,766 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..gertransport-serial_31bf3856ad364e35_6.1.7600.16385_none_6daa7ec5c65bf5bc.manifest
[2009/07/14 04:11:30 | 000,000,868 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft.windows.h..tserial-driverclass_31bf3856ad364e35_6.1.7600.16385_none_88b1c48f2026fe3f.manifest
[2009/07/14 04:26:23 | 000,002,237 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_wcf-system.runtime.serialization.ref_b03f5f7f11d50a3a_6.1.7600.16385_none_5943b25a748cb06c.manifest
[2009/07/14 04:27:09 | 000,002,262 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7600.16385_none_941abf24c884ab05.manifest
[2009/07/14 03:52:33 | 000,002,226 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.ref_b77a5c561934e089_6.1.7600.16385_none_a6aa149474833896.manifest
[2009/07/14 09:43:49 | 000,000,531 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7600.16385_en-us_8f71d563bf7aa3c2.manifest
[2009/07/14 03:51:52 | 000,001,985 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization_b77a5c561934e089_6.1.7600.16385_none_d6ed4a2e9c2a39c9.manifest
[2009/07/14 03:57:53 | 000,002,260 | ---- | M] () -- \Windows\winsxs\Manifests\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7600.16385_none_dbc7f5fbdd00d40b.manifest
[2009/06/10 23:23:19 | 000,131,072 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.seri..ion.formatters.soap_b03f5f7f11d50a3a_6.1.7600.16385_none_1c9a3ec1e01c684b\System.Runtime.Serialization.Formatters.Soap.dll
[2009/06/10 23:14:06 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.ref_b77a5c561934e089_6.1.7600.16385_none_a6aa149474833896\System.Runtime.Serialization.dll
[2009/06/10 23:13:54 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization_b77a5c561934e089_6.1.7600.16385_none_d6ed4a2e9c2a39c9\System.Runtime.Serialization.dll
[2009/07/14 09:44:15 | 000,005,120 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-u..em-config.resources_31bf3856ad364e35_6.1.7600.16385_sk-sk_79d39f727217a41c\serialui.dll.mui
[2009/07/14 03:16:13 | 000,015,360 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-unimodem-config_31bf3856ad364e35_6.1.7600.16385_none_f4d7f7b17ffe522a\serialui.dll
[2009/06/10 23:13:54 | 000,970,752 | ---- | M] () -- \Windows\winsxs\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7600.16385_none_dbc7f5fbdd00d40b\System.Runtime.Serialization.dll
< *w7lxe* /s >
========== Alternate Data Streams ==========
@Alternate Data Stream - 6144 bytes -> C:\Windows\Cursors\arrow_n.cur:NEDTA.DAT
< End of report >
< %APPDATA%\*. >
[2012/08/15 11:50:06 | 000,000,000 | ---D | M] -- C:\Users\Martin\AppData\Roaming\Adobe
[2012/07/04 18:33:57 | 000,000,000 | ---D | M] -- C:\Users\Martin\AppData\Roaming\AnvSoft
[2012/03/05 10:37:46 | 000,000,000 | ---D | M] -- C:\Users\Martin\AppData\Roaming\Atari
[2012/05/28 15:52:33 | 000,000,000 | ---D | M] -- C:\Users\Martin\AppData\Roaming\Auslogics
[2012/02/29 19:00:19 | 000,000,000 | ---D | M] -- C:\Users\Martin\AppData\Roaming\Canon
[2012/07/06 11:30:13 | 000,000,000 | ---D | M] -- C:\Users\Martin\AppData\Roaming\DAEMON Tools Lite
[2012/04/02 12:50:48 | 000,000,000 | ---D | M] -- C:\Users\Martin\AppData\Roaming\DarknessII
[2012/04/16 18:00:00 | 000,000,000 | ---D | M] -- C:\Users\Martin\AppData\Roaming\Gatling Gears
[2012/05/28 17:37:23 | 000,000,000 | ---D | M] -- C:\Users\Martin\AppData\Roaming\HD Tune Pro
[2011/12/21 15:30:14 | 000,000,000 | ---D | M] -- C:\Users\Martin\AppData\Roaming\HEXelon
[2012/09/07 21:53:01 | 000,000,000 | ---D | M] -- C:\Users\Martin\AppData\Roaming\ICQ
[2011/12/17 18:28:07 | 000,000,000 | ---D | M] -- C:\Users\Martin\AppData\Roaming\Identities
[2012/07/15 15:28:14 | 000,000,000 | ---D | M] -- C:\Users\Martin\AppData\Roaming\inkscape
[2011/12/21 15:35:59 | 000,000,000 | ---D | M] -- C:\Users\Martin\AppData\Roaming\InstallShield
[2012/05/04 10:19:07 | 000,000,000 | ---D | M] -- C:\Users\Martin\AppData\Roaming\Kalypso Media
[2012/03/02 19:20:10 | 000,000,000 | ---D | M] -- C:\Users\Martin\AppData\Roaming\Leadertech
[2011/12/17 19:34:20 | 000,000,000 | ---D | M] -- C:\Users\Martin\AppData\Roaming\Macromedia
[2011/12/17 18:47:46 | 000,000,000 | ---D | M] -- C:\Users\Martin\AppData\Roaming\Malwarebytes
[2009/07/14 09:54:31 | 000,000,000 | ---D | M] -- C:\Users\Martin\AppData\Roaming\Media Center Programs
[2012/08/15 13:08:58 | 000,000,000 | ---D | M] -- C:\Users\Martin\AppData\Roaming\Media Player Classic
[2012/08/15 11:10:31 | 000,000,000 | --SD | M] -- C:\Users\Martin\AppData\Roaming\Microsoft
[2011/12/17 19:28:07 | 000,000,000 | ---D | M] -- C:\Users\Martin\AppData\Roaming\Mozilla
[2011/12/17 21:59:44 | 000,000,000 | ---D | M] -- C:\Users\Martin\AppData\Roaming\Nero
[2011/12/20 22:37:18 | 000,000,000 | ---D | M] -- C:\Users\Martin\AppData\Roaming\NVIDIA
[2011/12/18 09:19:02 | 000,000,000 | ---D | M] -- C:\Users\Martin\AppData\Roaming\Opera
[2012/08/15 11:14:50 | 000,000,000 | ---D | M] -- C:\Users\Martin\AppData\Roaming\PACE Anti-Piracy
[2012/06/08 15:49:02 | 000,000,000 | ---D | M] -- C:\Users\Martin\AppData\Roaming\Publish Providers
[2011/12/18 19:15:15 | 000,000,000 | ---D | M] -- C:\Users\Martin\AppData\Roaming\PunkBuster
[2012/01/14 21:37:32 | 000,000,000 | ---D | M] -- C:\Users\Martin\AppData\Roaming\Rovio
[2011/12/21 17:05:33 | 000,000,000 | RH-D | M] -- C:\Users\Martin\AppData\Roaming\SecuROM
[2012/09/07 21:22:12 | 000,000,000 | ---D | M] -- C:\Users\Martin\AppData\Roaming\Skype
[2012/06/08 15:53:31 | 000,000,000 | ---D | M] -- C:\Users\Martin\AppData\Roaming\Sony
[2012/08/15 10:00:31 | 000,000,000 | ---D | M] -- C:\Users\Martin\AppData\Roaming\Sony Creative Software Inc
[2012/03/10 10:42:46 | 000,000,000 | ---D | M] -- C:\Users\Martin\AppData\Roaming\Sony Setup
[2012/08/15 11:16:12 | 000,000,000 | ---D | M] -- C:\Users\Martin\AppData\Roaming\StageManager.BD092818F67280F4B42B04877600987F0111B594.1
[2012/01/03 18:02:52 | 000,000,000 | ---D | M] -- C:\Users\Martin\AppData\Roaming\Tropico 4
[2012/08/04 16:44:04 | 000,000,000 | ---D | M] -- C:\Users\Martin\AppData\Roaming\TS3Client
[2011/12/19 16:45:25 | 000,000,000 | ---D | M] -- C:\Users\Martin\AppData\Roaming\Ubisoft
[2012/09/24 09:40:15 | 000,000,000 | ---D | M] -- C:\Users\Martin\AppData\Roaming\uTorrent
[2012/09/25 07:36:20 | 000,000,000 | ---D | M] -- C:\Users\Martin\AppData\Roaming\vlc
[2011/12/17 23:01:07 | 000,000,000 | ---D | M] -- C:\Users\Martin\AppData\Roaming\wargaming.net
[2011/12/17 18:44:03 | 000,000,000 | ---D | M] -- C:\Users\Martin\AppData\Roaming\WinRAR
[2012/01/14 12:34:12 | 000,000,000 | ---D | M] -- C:\Users\Martin\AppData\Roaming\Xfire
[2012/06/08 15:57:08 | 000,000,000 | ---D | M] -- C:\Users\Martin\AppData\Roaming\ZoomBrowser EX
< %APPDATA%\*.exe /s >
[2012/08/15 11:10:31 | 000,010,134 | R--- | M] () -- C:\Users\Martin\AppData\Roaming\Microsoft\Installer\{024521CF-C07E-4F8E-8481-0D75695E03AF}\ARPPRODUCTICON.exe
[2012/09/04 22:50:17 | 000,029,926 | R--- | M] () -- C:\Users\Martin\AppData\Roaming\Microsoft\Installer\{6DE721A5-5E89-4D74-994C-652BB3C0672E}\ARPPRODUCTICON.exe
[2011/11/23 18:38:29 | 003,123,272 | R--- | M] () -- C:\Users\Martin\AppData\Roaming\PunkBuster\pbsetup\pbsvc.exe
[2012/03/10 10:43:11 | 033,850,672 | ---- | M] (Apple Inc.) -- C:\Users\Martin\AppData\Roaming\Sony Setup\9234765D-29DF-48d0-93FB-284B7B6009B9\QuickTimeInstaller.exe
< %systemroot%\*. /mp /s >
< %systemroot%\system32\*.dll /lockedfiles >
[2 C:\Windows\system32\*.tmp files -> C:\Windows\system32\*.tmp -> ]
< %systemroot%\Tasks\*.job /lockedfiles >
< %systemroot%\system32\drivers\*.sys /lockedfiles >
< %systemroot%\System32\config\*.sav >
< %systemroot%\system32\*.dll /lockedfiles >
[2 C:\Windows\system32\*.tmp files -> C:\Windows\system32\*.tmp -> ]
< %systemroot%\system32\drivers\*.sys /3 >
< %systemroot%\system32\*.* /3 >
[2012/09/26 15:49:26 | 000,000,031 | ---- | M] () -- C:\Windows\system32\log.txt
[2 C:\Windows\system32\*.tmp files -> C:\Windows\system32\*.tmp -> ]
< %SYSTEMDRIVE%\*.exe >
< >
< HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s >
"Sidebar" = C:\Program Files\Windows Sidebar\sidebar.exe /autoRun -- [2009/07/14 03:39:41 | 001,475,072 | ---- | M] (Microsoft Corporation)
"AdobeBridge" =
"DAEMON Tools Lite" = "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun -- [2012/04/11 11:54:22 | 003,672,384 | ---- | M] (DT Soft Ltd)
"Sony PC Companion" = "C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe" /Background -- [2012/05/31 15:00:22 | 000,445,624 | ---- | M] (Sony)
< reg query "HKLM\Software\Microsoft\Windows NT\CurrentVersion\winlogon" /v GinaDLL /c >
< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv" /v ImagePath /c >
HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\SERVICES\WUAUSERV
IMAGEPATH REG_EXPAND_SZ %systemroot%\system32\svchost.exe -k netsvcs
< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS" /v ImagePath /c >
HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\SERVICES\BITS
IMAGEPATH REG_EXPAND_SZ %SystemRoot%\System32\svchost.exe -k netsvcs
< >
< type c:\boot.ini >> test.txt /c >
< %SystemDrive%\PhysicalMBR.bin /md5 >
[2012/09/26 15:56:53 | 000,000,512 | ---- | M] () MD5=99152AAE608960DF88070114EE3CEDEF -- C:\PhysicalMBR.bin
< >
< *crack* /s >
[2011/12/15 04:09:57 | 002,796,322 | ---- | M] () -- \Games\Flatout 3 Chaos Destruction\Textures\Stunt24Floor_CRACK.DCT
[2011/12/15 04:03:35 | 002,796,322 | ---- | M] () -- \Games\Flatout 3 Chaos Destruction\Textures\Cars\bonecracker.DCT
[2011/12/15 03:39:51 | 002,796,322 | ---- | M] () -- \Games\Flatout 3 Chaos Destruction\Textures\Cars\bonecracker_C2.DCT
[2011/12/15 03:43:31 | 002,796,322 | ---- | M] () -- \Games\Flatout 3 Chaos Destruction\Textures\Cars\bonecracker_C2_s.DCT
[2011/12/15 03:40:36 | 002,796,322 | ---- | M] () -- \Games\Flatout 3 Chaos Destruction\Textures\Cars\bonecracker_C3.DCT
[2011/12/15 03:36:47 | 002,796,322 | ---- | M] () -- \Games\Flatout 3 Chaos Destruction\Textures\Cars\bonecracker_C3_s.DCT
[2011/12/15 03:48:07 | 002,796,322 | ---- | M] () -- \Games\Flatout 3 Chaos Destruction\Textures\Cars\bonecracker_C4.DCT
[2011/12/15 04:03:01 | 002,796,322 | ---- | M] () -- \Games\Flatout 3 Chaos Destruction\Textures\Cars\bonecracker_C4_s.DCT
[2011/12/15 03:46:39 | 002,796,322 | ---- | M] () -- \Games\Flatout 3 Chaos Destruction\Textures\Cars\bonecracker_D2.DCT
[2011/12/15 03:49:41 | 002,796,322 | ---- | M] () -- \Games\Flatout 3 Chaos Destruction\Textures\Cars\bonecracker_D2_C2.DCT
[2011/12/15 03:54:40 | 002,796,322 | ---- | M] () -- \Games\Flatout 3 Chaos Destruction\Textures\Cars\bonecracker_D2_C2_s.DCT
[2011/12/15 04:04:34 | 002,796,322 | ---- | M] () -- \Games\Flatout 3 Chaos Destruction\Textures\Cars\bonecracker_D2_C3.DCT
[2011/12/15 03:43:48 | 002,796,322 | ---- | M] () -- \Games\Flatout 3 Chaos Destruction\Textures\Cars\bonecracker_D2_C3_s.DCT
[2011/12/15 03:49:26 | 002,796,322 | ---- | M] () -- \Games\Flatout 3 Chaos Destruction\Textures\Cars\bonecracker_D2_C4.DCT
[2011/12/15 04:09:09 | 002,796,322 | ---- | M] () -- \Games\Flatout 3 Chaos Destruction\Textures\Cars\bonecracker_D2_C4_s.DCT
[2011/12/15 03:51:32 | 002,796,322 | ---- | M] () -- \Games\Flatout 3 Chaos Destruction\Textures\Cars\bonecracker_D2_s.DCT
[2011/12/15 04:10:13 | 002,796,322 | ---- | M] () -- \Games\Flatout 3 Chaos Destruction\Textures\Cars\bonecracker_D3.DCT
[2011/12/15 04:06:41 | 002,796,322 | ---- | M] () -- \Games\Flatout 3 Chaos Destruction\Textures\Cars\bonecracker_D3_C2.DCT
[2011/12/15 04:03:10 | 002,796,322 | ---- | M] () -- \Games\Flatout 3 Chaos Destruction\Textures\Cars\bonecracker_D3_C2_s.DCT
[2011/12/15 04:04:12 | 002,796,322 | ---- | M] () -- \Games\Flatout 3 Chaos Destruction\Textures\Cars\bonecracker_D3_C3.DCT
[2011/12/15 03:38:12 | 002,796,322 | ---- | M] () -- \Games\Flatout 3 Chaos Destruction\Textures\Cars\bonecracker_D3_C3_s.DCT
[2011/12/15 03:32:36 | 002,796,322 | ---- | M] () -- \Games\Flatout 3 Chaos Destruction\Textures\Cars\bonecracker_D3_C4.DCT
[2011/12/15 03:54:11 | 002,796,322 | ---- | M] () -- \Games\Flatout 3 Chaos Destruction\Textures\Cars\bonecracker_D3_C4_s.DCT
[2011/12/15 03:34:16 | 002,796,322 | ---- | M] () -- \Games\Flatout 3 Chaos Destruction\Textures\Cars\bonecracker_D3_s.DCT
[2011/12/15 04:06:53 | 000,174,874 | ---- | M] () -- \Games\Flatout 3 Chaos Destruction\Textures\Cars\bonecracker_i.DCT
[2011/12/15 03:35:16 | 002,796,322 | ---- | M] () -- \Games\Flatout 3 Chaos Destruction\Textures\Cars\bonecracker_S.DCT
[2011/12/15 04:03:22 | 000,174,874 | ---- | M] () -- \Games\Flatout 3 Chaos Destruction\Textures\Cars\bonecracker_w.DCT
[2011/12/15 03:44:17 | 000,174,874 | ---- | M] () -- \Games\Flatout 3 Chaos Destruction\Textures\Cars\bonecracker_w_S.DCT
[2011/12/22 15:46:01 | 000,175,008 | ---- | M] () -- \Games\Postal.3.Retail [English]\p3\materials\ground\asphalt_01_cracked.vtf
[2011/12/22 15:48:27 | 000,002,550 | ---- | M] () -- \Games\Postal.3.Retail [English]\p3\models\police_station\prison_food_01_cracked_a.dx90.vtx
[2011/12/22 15:48:27 | 000,001,816 | ---- | M] () -- \Games\Postal.3.Retail [English]\p3\models\police_station\prison_food_01_cracked_a.mdl
[2011/12/22 15:48:27 | 000,001,445 | ---- | M] () -- \Games\Postal.3.Retail [English]\p3\models\police_station\prison_food_01_cracked_a.phy
[2011/12/22 15:48:27 | 000,011,648 | ---- | M] () -- \Games\Postal.3.Retail [English]\p3\models\police_station\prison_food_01_cracked_a.vvd
[2011/12/22 15:48:27 | 000,002,925 | ---- | M] () -- \Games\Postal.3.Retail [English]\p3\models\police_station\prison_food_01_cracked_b.dx90.vtx
[2011/12/22 15:48:27 | 000,001,816 | ---- | M] () -- \Games\Postal.3.Retail [English]\p3\models\police_station\prison_food_01_cracked_b.mdl
[2011/12/22 15:48:27 | 000,001,285 | ---- | M] () -- \Games\Postal.3.Retail [English]\p3\models\police_station\prison_food_01_cracked_b.phy
[2011/12/22 15:48:27 | 000,013,376 | ---- | M] () -- \Games\Postal.3.Retail [English]\p3\models\police_station\prison_food_01_cracked_b.vvd
[2011/12/22 15:48:27 | 000,003,375 | ---- | M] () -- \Games\Postal.3.Retail [English]\p3\models\police_station\prison_food_01_cracked_c.dx90.vtx
[2011/12/22 15:48:27 | 000,001,816 | ---- | M] () -- \Games\Postal.3.Retail [English]\p3\models\police_station\prison_food_01_cracked_c.mdl
[2011/12/22 15:48:27 | 000,001,285 | ---- | M] () -- \Games\Postal.3.Retail [English]\p3\models\police_station\prison_food_01_cracked_c.phy
[2011/12/22 15:48:27 | 000,015,296 | ---- | M] () -- \Games\Postal.3.Retail [English]\p3\models\police_station\prison_food_01_cracked_c.vvd
[2011/12/22 15:51:16 | 000,014,584 | ---- | M] () -- \Games\Postal.3.Retail [English]\p3\sound\hits\neck_crack_01.wav
[2011/12/22 15:51:16 | 000,022,052 | ---- | M] () -- \Games\Postal.3.Retail [English]\p3\sound\hits\neck_crack_02.wav
[2011/12/22 15:51:16 | 000,033,374 | ---- | M] () -- \Games\Postal.3.Retail [English]\p3\sound\hits\neck_crack_03.wav
[2011/12/22 15:51:16 | 000,021,682 | ---- | M] () -- \Games\Postal.3.Retail [English]\p3\sound\hits\neck_crack_04.wav
[2011/12/22 15:51:02 | 000,026,714 | ---- | M] () -- \Games\Postal.3.Retail [English]\p3\sound\characters\White_Female\wf_followup_areyouoncrackv1.wav
[2011/12/22 15:51:07 | 000,025,690 | ---- | M] () -- \Games\Postal.3.Retail [English]\p3\sound\characters\White_Male\wm_followup_areyouoncrackv1.wav
[2011/12/22 15:51:07 | 000,025,690 | ---- | M] () -- \Games\Postal.3.Retail [English]\p3\sound\characters\White_Male\wm_followup_areyouoncrackv2.wav
[2011/10/27 17:21:36 | 000,015,502 | ---- | M] () -- \Games\Shank 2\data-pc\canims\fire_crack.zip
[2009/02/22 16:06:36 | 000,000,155 | ---- | M] () -- \Program Files (x86)\Atari\RollerCoaster Tycoon 3 Platinum\Style\Themed\osudenny Wooden shops covers\Osudenny wooden stall covers\osudenny cracker Jacks stand.common.ovl
[2009/02/22 16:06:36 | 000,652,996 | ---- | M] () -- \Program Files (x86)\Atari\RollerCoaster Tycoon 3 Platinum\Style\Themed\osudenny Wooden shops covers\Osudenny wooden stall covers\osudenny cracker Jacks stand.unique.ovl
[2008/09/08 22:55:14 | 000,000,204 | ---- | M] () -- \Program Files (x86)\Image-Line\FL Studio 10\Plugins\Fruity\Effects\Hardcore\Presets\I cracked my Tube!.hdprg
[2010/01/15 22:56:40 | 000,000,272 | ---- | M] () -- \Program Files (x86)\Image-Line\FL Studio 10\Plugins\Fruity\Generators\Drumaxx\Drum Patches\Sound FX\Crack.dmpatch
[2010/01/15 22:56:40 | 000,000,272 | ---- | M] () -- \Program Files (x86)\Image-Line\FL Studio 10\Plugins\Fruity\Generators\DrumPad\Drum Patches\Sound FX\Crack.dmpatch
[2010/11/12 01:19:22 | 000,114,899 | ---- | M] () -- \Program Files (x86)\Inkscape\python\Lib\site-packages\numpy\f2py\crackfortran.py
[2010/05/29 22:41:56 | 000,114,899 | ---- | M] () -- \Program Files (x86)\TC UP\PLUGINS\Media\Inkscape\python\Lib\site-packages\numpy\f2py\crackfortran.py
[2011/03/23 19:03:20 | 000,823,680 | ---- | M] () -- \Program Files\Adobe\Adobe Premiere Pro CS5.5\Plug-ins\en_US\VSTPlugins\DeCrackler1.dll
[2011/03/23 19:03:22 | 000,823,680 | ---- | M] () -- \Program Files\Adobe\Adobe Premiere Pro CS5.5\Plug-ins\en_US\VSTPlugins\DeCrackler2.dll
[2011/03/23 19:03:26 | 000,823,680 | ---- | M] () -- \Program Files\Adobe\Adobe Premiere Pro CS5.5\Plug-ins\en_US\VSTPlugins\DeCrackler6.dll
[2011/12/23 21:53:36 | 000,000,608 | ---- | M] () -- \Users\Martin\AppData\Roaming\uTorrent\Adobe Photoshop CS5 Extended (Crack + Instructions).torrent
[2012/09/24 09:29:41 | 000,013,553 | ---- | M] () -- \Users\Martin\AppData\Roaming\uTorrent\AEROFLY PROFESSIONAL DELUXE CRACKED PERFECTLY WORKING.zip.torrent
[2012/01/13 15:03:29 | 000,001,389 | ---- | M] () -- \Users\Martin\AppData\Roaming\uTorrent\Far.Cry.2.CRACK-ONLY-Razor1911.torrent
[2011/12/19 13:23:28 | 000,021,569 | ---- | M] () -- \Users\Martin\AppData\Roaming\uTorrent\Flatout.3.Chaos.Destruction.Cracked.Fullrepack-ALI213.torrent
[2012/03/25 16:07:58 | 000,000,169 | ---- | M] () -- \Users\Martin\AppData\Roaming\uTorrent\GTA.IV.1.0.7Crack.zip.torrent
[2012/06/02 21:05:08 | 000,046,862 | ---- | M] () -- \Users\Martin\AppData\Roaming\uTorrent\Max.Payne.3.CrackOnly-RLD-btarena.torrent
[2012/01/02 09:53:45 | 000,016,214 | ---- | M] () -- \Users\Martin\AppData\Roaming\uTorrent\Postal.3.Update.1.10.EN.PROPER-CRACKED.torrent
[2011/12/20 10:18:03 | 000,003,986 | ---- | M] () -- \Users\Martin\AppData\Roaming\uTorrent\Starcraft.2.Wings.of.Liberty.Crack.Only.Read.NFO-LiBERTY.torrent
[2012/05/23 07:57:25 | 010,090,584 | ---- | M] () -- \Users\Martin\Downloads\Image-Line.FL.Studio.Edition.v10.0.0 @vAin4us\flstudio_10.0_crack.exe
< *keygen* /s >
[2012/05/16 16:48:12 | 000,242,688 | ---- | M] () -- \Games\Wargame- European Escalation\keygen.exe
[2012/06/08 15:26:31 | 000,017,844 | ---- | M] () -- \Users\Martin\AppData\Roaming\uTorrent\Sony Vegas PRO 11.0.511 64 bit Multilanguage with keygen and patch.1.torrent
[2012/06/08 15:17:43 | 000,017,844 | ---- | M] () -- \Users\Martin\AppData\Roaming\uTorrent\Sony Vegas PRO 11.0.511 64 bit Multilanguage with keygen and patch.torrent
[2009/08/08 22:42:28 | 000,086,528 | ---- | M] () -- \Users\Martin\Desktop\Programy\EVEREST.Ultimate.Edition.5.50.2253BETA\FFF_Keygen\Everest.5.0.1650.All.Edition_KEYGEN-FFF.exe
[2012/06/08 15:26:54 | 002,000,896 | ---- | M] () -- \Users\Martin\Downloads\Sony Vegas PRO 11.0.511 64 bit Multilanguage with keygen and patch\Sony.Products.Multikeygen.v2.0.Keygen.and.Patch.Only.READ.NFO-DI\Keygen.exe
< *loader* /s >
[2011/11/29 12:59:18 | 000,228,864 | ---- | M] () -- \Assassins Creed - Revelations\ubiorbitapi_r2_loader.dll
[2011/10/30 08:10:24 | 000,169,080 | ---- | M] () -- \Assassins Creed - Revelations\uplay_r1_loader.dll
[2011/10/30 08:10:18 | 000,234,616 | ---- | M] () -- \Assassins Creed - Revelations\Original\ubiorbitapi_r2_loader.dll
[2012/04/17 13:41:05 | 877,062,328 | ---- | M] () -- \Filmy\Nový priečinok (10)\Zlatokopka.1.cast.2009.TVRip.XVID.CZ.by.Colly.of.PowerUploaders.avi
[2012/04/17 13:41:07 | 771,284,530 | ---- | M] () -- \Filmy\Nový priečinok (10)\Zlatokopka.2.cast.2009.TVRip.XVID.CZ.by.Colly.of.PowerUploaders.avi
[2011/12/27 14:43:10 | 734,817,058 | ---- | M] () -- \Filmy\Nový priečinok (3)\skladiste.dvdrip.cz.by.Delfin.of.PowerUploaders.avi
[2012/03/07 10:05:24 | 781,279,232 | ---- | M] () -- \Filmy\Nový priečinok (6)\Ocelova.pest.2011.DVDRip.CZ.by.Colly.of.PowerUploaders.avi
[2012/04/02 10:33:53 | 977,834,896 | ---- | M] () -- \Filmy\Nový priečinok (7)\Bastardi.2.2011.XVID.Remake.CZ-Colly.by.Colly.of.PowerUploaders.avi
[2012/04/02 13:11:46 | 1597,383,456 | ---- | M] () -- \Filmy\Nový priečinok (8)\bastardi.2.TVrip.cz.by.Delfin.of.PowerUploaders.avi
[2012/01/10 13:06:18 | 1565,304,832 | ---- | M] () -- \Filmy\zobei\Zombie Apocalypse.by.Delfin.of.PowerUploaders.avi
[2012/02/08 12:02:44 | 000,039,897 | ---- | M] () -- \Filmy\zobei\Zombie Apocalypse.by.Delfin.of.PowerUploaders.srt
[2011/10/03 18:15:22 | 000,064,872 | ---- | M] () -- \Games\Batman Arkham City\Binaries\Win32\PhysXLoader.dll
[2011/12/22 15:24:33 | 000,064,352 | ---- | M] () -- \Games\Postal.3.Retail [English]\bin\physxLoader.dll
[2011/12/22 15:46:15 | 000,000,546 | ---- | M] () -- \Games\Postal.3.Retail [English]\p3\materials\models\cars\frontloader_01.vmt
[2011/12/22 15:46:15 | 000,349,784 | ---- | M] () -- \Games\Postal.3.Retail [English]\p3\materials\models\cars\frontloader_01.vtf
[2011/12/22 15:47:52 | 000,033,945 | ---- | M] () -- \Games\Postal.3.Retail [English]\p3\models\cars\frontloader_01.dx90.vtx
[2011/12/22 15:47:52 | 000,001,720 | ---- | M] () -- \Games\Postal.3.Retail [English]\p3\models\cars\frontloader_01.mdl
[2011/12/22 15:47:52 | 000,005,800 | ---- | M] () -- \Games\Postal.3.Retail [English]\p3\models\cars\frontloader_01.phy
[2011/12/22 15:47:52 | 000,149,312 | ---- | M] () -- \Games\Postal.3.Retail [English]\p3\models\cars\frontloader_01.vvd
[2011/10/27 17:13:00 | 000,001,997 | ---- | M] () -- \Games\Shank 2\data\attributes\dummyloader.lua
[2011/12/20 10:27:56 | 000,001,608 | ---- | M] () -- \Games\StarCraft II\Logs\Downloader.log
[2010/07/28 01:40:57 | 002,643,520 | ---- | M] () -- \Games\StarCraft II\Support\BlizzardDownloader.exe
[2012/02/08 20:12:58 | 000,058,368 | ---- | M] () -- \Games\The Darkness II\Tools\Physx\x86\PhysXLoader.dll
[2012/07/06 15:11:59 | 002,172,400 | ---- | M] () -- \Games\World of Warcraft\BackgroundDownloader.exe
[2012/07/06 15:11:51 | 002,070,207 | ---- | M] () -- \Games\World of Warcraft\WoW-x.x.x.x-4.0.0.12911-EU-Downloader.exe
[2012/07/06 13:58:37 | 000,003,026 | ---- | M] () -- \Games\World of Warcraft\Data\enGB\Documentation\Troubleshooting\(Mac)BlizzardDownloaderProblems.html
[2012/07/06 13:58:37 | 000,004,261 | ---- | M] () -- \Games\World of Warcraft\Data\enGB\Documentation\Troubleshooting\(PC)BlizzardDownloaderProblems.html
[2010/07/05 15:30:50 | 000,071,208 | ---- | M] () -- \Games\World_of_Tanks\PhysXLoader.dll
[2012/06/15 11:10:23 | 000,005,679 | ---- | M] () -- \Games\World_of_Tanks\res\scripts\client\tutorial\TutorialLoader.pyc
[2011/06/22 10:05:48 | 000,942,080 | ---- | M] () -- \OLYMP\Downloader.exe
[2012/04/22 11:15:05 | 000,000,037 | ---- | M] () -- \OLYMP\DownloaderVys.dat
[2011/12/21 15:58:58 | 001,339,392 | ---- | M] () -- \Omega\Downloader.EXE
[2012/04/22 11:22:39 | 000,000,038 | ---- | M] () -- \Omega\DownloaderVys.dat
[2011/03/02 21:35:42 | 005,299,048 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS5.1\Photodownloader.exe
[2011/03/02 18:57:10 | 000,011,161 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS5.1\apd\shared_assets\bitmaps\main_window\C_LoadError.png
[2011/03/02 18:57:10 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS5.1\apd\shared_assets\locales\da_dk\Photodownloader.ini
[2011/03/02 18:57:10 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS5.1\apd\shared_assets\locales\de_de\Photodownloader.ini
[2011/03/02 18:57:10 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS5.1\apd\shared_assets\locales\en_us\Photodownloader.ini
[2011/03/02 18:57:10 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS5.1\apd\shared_assets\locales\es_es\Photodownloader.ini
[2011/03/02 18:57:10 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS5.1\apd\shared_assets\locales\fi_fi\Photodownloader.ini
[2011/03/02 18:57:12 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS5.1\apd\shared_assets\locales\fr_fr\Photodownloader.ini
[2011/03/02 18:57:12 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS5.1\apd\shared_assets\locales\it_it\Photodownloader.ini
[2011/03/02 18:57:12 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS5.1\apd\shared_assets\locales\ja_jp\Photodownloader.ini
[2011/03/02 18:57:12 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS5.1\apd\shared_assets\locales\ko_kr\Photodownloader.ini
[2011/03/02 18:57:12 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS5.1\apd\shared_assets\locales\nl_nl\Photodownloader.ini
[2011/03/02 18:57:12 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS5.1\apd\shared_assets\locales\no_no\Photodownloader.ini
[2011/03/02 18:57:12 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS5.1\apd\shared_assets\locales\pt_br\Photodownloader.ini
[2011/03/02 18:57:12 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS5.1\apd\shared_assets\locales\sv_se\Photodownloader.ini
[2011/03/02 18:57:14 | 000,000,308 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS5.1\apd\shared_assets\locales\zh_cn\Photodownloader.ini
[2011/03/02 18:57:14 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS5.1\apd\shared_assets\locales\zh_tw\Photodownloader.ini
[2011/03/18 18:08:46 | 000,082,592 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Encore CS5.1\MXF_SDK_MetaMetadata_BinaryLoader_4.3.4.dll
[2011/03/18 18:08:48 | 000,148,640 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Encore CS5.1\MXF_SDK_MetaMetadata_XSDLoader2_4.3.4.dll
[2011/03/18 18:08:48 | 000,115,360 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Encore CS5.1\MXF_SDK_MetaMetadata_XSDLoader_4.3.4.dll
[2011/03/18 06:06:00 | 000,301,976 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe OnLocation CS5.1\MXF_SDK_MetaMetadata_BinaryLoader_r.4.2.2.319.dll
[2012/07/06 15:04:12 | 000,000,194 | ---- | M] () -- \Program Files (x86)\Common Files\Blizzard Entertainment\BlizzardDownloader.ini
[2006/10/26 14:40:34 | 000,057,344 | ---- | M] () -- \Program Files (x86)\Common Files\microsoft shared\VS7DEBUG\coloader.dll
[2006/10/26 14:40:34 | 000,005,120 | ---- | M] () -- \Program Files (x86)\Common Files\microsoft shared\VS7DEBUG\coloader.tlb
[2012/03/14 18:38:38 | 000,064,280 | ---- | M] () -- \Program Files (x86)\Doublesix Games\All Zombies Must Die!\Binaries\Win32\PhysXLoader.dll
[2012/01/14 12:38:53 | 000,005,795 | ---- | M] () -- \Program Files (x86)\ICQ7.7\imApp\theme\IMAGES\XtraPreloader\loader.jpg
[2012/01/14 12:38:53 | 000,004,180 | ---- | M] () -- \Program Files (x86)\ICQ7.7\imApp\theme\IMAGES\XtraPreloader\zlango-preloader.png
[2012/01/14 12:38:53 | 000,005,520 | ---- | M] () -- \Program Files (x86)\ICQ7.7\imApp\theme\MUICoreLib\xtraLoader.swf
[2012/01/14 12:40:40 | 000,000,402 | ---- | M] () -- \Program Files (x86)\ICQ7.7\Xtraz\icq\content\profile_lightboxs\preloader.html
[2010/11/12 01:19:22 | 000,003,614 | ---- | M] () -- \Program Files (x86)\Inkscape\etc\gtk-2.0\gdk-pixbuf.loaders
[2010/11/12 01:19:22 | 000,030,804 | ---- | M] () -- \Program Files (x86)\Inkscape\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-ani.dll
[2010/11/12 01:19:22 | 000,027,898 | ---- | M] () -- \Program Files (x86)\Inkscape\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-bmp.dll
[2010/11/12 01:19:22 | 000,042,058 | ---- | M] () -- \Program Files (x86)\Inkscape\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-gif.dll
[2010/11/12 01:19:22 | 000,023,145 | ---- | M] () -- \Program Files (x86)\Inkscape\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-icns.dll
[2010/11/12 01:19:22 | 000,028,692 | ---- | M] () -- \Program Files (x86)\Inkscape\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-ico.dll
[2010/11/12 01:19:22 | 000,034,496 | ---- | M] () -- \Program Files (x86)\Inkscape\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-jpeg.dll
[2010/11/12 01:19:22 | 000,022,435 | ---- | M] () -- \Program Files (x86)\Inkscape\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-pcx.dll
[2010/11/12 01:19:22 | 000,036,528 | ---- | M] () -- \Program Files (x86)\Inkscape\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-png.dll
[2010/11/12 01:19:22 | 000,026,252 | ---- | M] () -- \Program Files (x86)\Inkscape\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-pnm.dll
[2010/11/12 01:19:22 | 000,020,063 | ---- | M] () -- \Program Files (x86)\Inkscape\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-ras.dll
[2010/11/12 01:19:22 | 000,024,412 | ---- | M] () -- \Program Files (x86)\Inkscape\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-tga.dll
[2010/11/12 01:19:22 | 000,029,401 | ---- | M] () -- \Program Files (x86)\Inkscape\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-tiff.dll
[2010/11/12 01:19:22 | 000,019,399 | ---- | M] () -- \Program Files (x86)\Inkscape\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-wbmp.dll
[2010/11/12 01:19:22 | 000,025,270 | ---- | M] () -- \Program Files (x86)\Inkscape\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-xbm.dll
[2010/11/12 01:19:22 | 000,042,114 | ---- | M] () -- \Program Files (x86)\Inkscape\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-xpm.dll
[2010/11/12 01:19:22 | 000,018,909 | ---- | M] () -- \Program Files (x86)\Inkscape\lib\gtk-2.0\2.10.0\loaders\svg_loader.dll
[2010/11/12 01:19:22 | 000,032,958 | ---- | M] () -- \Program Files (x86)\Inkscape\python\Lib\site-packages\sk1libs\filters\import\ailoader.py
[2010/11/12 01:19:22 | 000,001,847 | ---- | M] () -- \Program Files (x86)\Inkscape\python\Lib\site-packages\sk1libs\filters\import\bziploader.py
[2010/11/12 01:19:22 | 000,057,685 | ---- | M] () -- \Program Files (x86)\Inkscape\python\Lib\site-packages\sk1libs\filters\import\ccxloader.py
[2010/11/12 01:19:22 | 000,029,336 | ---- | M] () -- \Program Files (x86)\Inkscape\python\Lib\site-packages\sk1libs\filters\import\cdrloader.py
[2010/11/12 01:19:22 | 000,001,341 | ---- | M] () -- \Program Files (x86)\Inkscape\python\Lib\site-packages\sk1libs\filters\import\cdrziploader.py
[2010/11/12 01:19:22 | 000,028,643 | ---- | M] () -- \Program Files (x86)\Inkscape\python\Lib\site-packages\sk1libs\filters\import\cgmloader.py
[2010/11/12 01:19:22 | 000,055,918 | ---- | M] () -- \Program Files (x86)\Inkscape\python\Lib\site-packages\sk1libs\filters\import\cmxloader.py
[2010/11/12 01:19:22 | 000,038,308 | ---- | M] () -- \Program Files (x86)\Inkscape\python\Lib\site-packages\sk1libs\filters\import\dxfloader.py
[2010/11/12 01:19:22 | 000,001,949 | ---- | M] () -- \Program Files (x86)\Inkscape\python\Lib\site-packages\sk1libs\filters\import\gziploader.py
[2010/11/12 01:19:22 | 000,007,779 | ---- | M] () -- \Program Files (x86)\Inkscape\python\Lib\site-packages\sk1libs\filters\import\pltloader.py
[2010/11/12 01:19:22 | 000,017,301 | ---- | M] () -- \Program Files (x86)\Inkscape\python\Lib\site-packages\sk1libs\filters\import\sk1loader.py
[2010/11/12 01:19:22 | 000,015,416 | ---- | M] () -- \Program Files (x86)\Inkscape\python\Lib\site-packages\sk1libs\filters\import\skloader.py
[2010/11/12 01:19:22 | 000,015,832 | ---- | M] () -- \Program Files (x86)\Inkscape\python\Lib\site-packages\sk1libs\filters\import\stitchloader.py
[2010/11/12 01:19:22 | 000,038,937 | ---- | M] () -- \Program Files (x86)\Inkscape\python\Lib\site-packages\sk1libs\filters\import\svgloader.py
[2010/11/12 01:19:22 | 000,014,300 | ---- | M] () -- \Program Files (x86)\Inkscape\python\Lib\site-packages\sk1libs\filters\import\wmfloader.py
[2010/11/12 01:19:22 | 000,017,550 | ---- | M] () -- \Program Files (x86)\Inkscape\python\Lib\site-packages\sk1libs\filters\import\xfigloader.py
[2012/05/03 18:38:36 | 000,071,528 | ---- | M] () -- \Program Files (x86)\NVIDIA Corporation\PhysX\Common\PhysXLoader.dll
[2012/05/03 18:39:16 | 000,063,848 | ---- | M] () -- \Program Files (x86)\NVIDIA Corporation\PhysX\Common\PhysXLoader64.dll
[2012/05/21 04:03:06 | 000,083,816 | ---- | M] () -- \Program Files (x86)\NVIDIA Corporation\PhysX\Common\PhysXUpdateLoader.dll
[2012/05/21 04:03:06 | 000,089,448 | ---- | M] () -- \Program Files (x86)\NVIDIA Corporation\PhysX\Common\PhysXUpdateLoader64.dll
[2012/02/27 23:58:46 | 000,008,787 | ---- | M] () -- \Program Files (x86)\Rockstar Games\Social Club\UI\images\loaderLargeBlue.gif
[2012/02/27 23:58:46 | 000,008,787 | ---- | M] () -- \Program Files (x86)\Rockstar Games\Social Club\UI\images\loaderLargeGrey.gif
[2012/02/27 23:58:46 | 000,001,737 | ---- | M] () -- \Program Files (x86)\Rockstar Games\Social Club\UI\images\loaderSmallBlue.gif
[2012/02/27 23:58:46 | 000,001,737 | ---- | M] () -- \Program Files (x86)\Rockstar Games\Social Club\UI\images\loaderSmallGold.gif
[2012/06/26 12:23:48 | 000,001,702 | ---- | M] () -- \Program Files (x86)\Sony Ericsson\Update Engine\licenses\loaderbinarylegal.txt
[2010/03/06 10:24:56 | 000,003,614 | ---- | M] () -- \Program Files (x86)\TC UP\PLUGINS\Media\Inkscape\etc\gtk-2.0\gdk-pixbuf.loaders
[2010/03/06 10:24:56 | 000,030,804 | ---- | M] () -- \Program Files (x86)\TC UP\PLUGINS\Media\Inkscape\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-ani.dll
[2010/03/06 10:24:56 | 000,027,898 | ---- | M] () -- \Program Files (x86)\TC UP\PLUGINS\Media\Inkscape\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-bmp.dll
[2010/03/06 10:24:56 | 000,042,058 | ---- | M] () -- \Program Files (x86)\TC UP\PLUGINS\Media\Inkscape\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-gif.dll
[2010/03/06 10:24:56 | 000,023,145 | ---- | M] () -- \Program Files (x86)\TC UP\PLUGINS\Media\Inkscape\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-icns.dll
[2010/03/06 10:24:56 | 000,028,692 | ---- | M] () -- \Program Files (x86)\TC UP\PLUGINS\Media\Inkscape\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-ico.dll
[2010/03/06 10:24:56 | 000,034,496 | ---- | M] () -- \Program Files (x86)\TC UP\PLUGINS\Media\Inkscape\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-jpeg.dll
[2010/03/06 10:24:56 | 000,022,435 | ---- | M] () -- \Program Files (x86)\TC UP\PLUGINS\Media\Inkscape\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-pcx.dll
[2010/03/06 10:24:56 | 000,036,528 | ---- | M] () -- \Program Files (x86)\TC UP\PLUGINS\Media\Inkscape\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-png.dll
[2010/03/06 10:24:56 | 000,026,252 | ---- | M] () -- \Program Files (x86)\TC UP\PLUGINS\Media\Inkscape\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-pnm.dll
[2010/03/06 10:24:56 | 000,020,063 | ---- | M] () -- \Program Files (x86)\TC UP\PLUGINS\Media\Inkscape\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-ras.dll
[2010/03/06 10:24:56 | 000,024,412 | ---- | M] () -- \Program Files (x86)\TC UP\PLUGINS\Media\Inkscape\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-tga.dll
[2010/03/06 10:24:56 | 000,029,401 | ---- | M] () -- \Program Files (x86)\TC UP\PLUGINS\Media\Inkscape\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-tiff.dll
[2010/03/06 10:24:56 | 000,019,399 | ---- | M] () -- \Program Files (x86)\TC UP\PLUGINS\Media\Inkscape\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-wbmp.dll
[2010/03/06 10:24:56 | 000,025,270 | ---- | M] () -- \Program Files (x86)\TC UP\PLUGINS\Media\Inkscape\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-xbm.dll
[2010/03/06 10:24:56 | 000,042,114 | ---- | M] () -- \Program Files (x86)\TC UP\PLUGINS\Media\Inkscape\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-xpm.dll
[2010/03/06 10:24:56 | 000,018,909 | ---- | M] () -- \Program Files (x86)\TC UP\PLUGINS\Media\Inkscape\lib\gtk-2.0\2.10.0\loaders\svg_loader.dll
[2010/08/16 11:41:40 | 000,032,958 | ---- | M] () -- \Program Files (x86)\TC UP\PLUGINS\Media\Inkscape\python\Lib\site-packages\sk1libs\filters\import\ailoader.py
[2010/08/16 11:41:40 | 000,001,847 | ---- | M] () -- \Program Files (x86)\TC UP\PLUGINS\Media\Inkscape\python\Lib\site-packages\sk1libs\filters\import\bziploader.py
[2010/08/16 11:41:40 | 000,057,685 | ---- | M] () -- \Program Files (x86)\TC UP\PLUGINS\Media\Inkscape\python\Lib\site-packages\sk1libs\filters\import\ccxloader.py
[2010/08/16 11:41:40 | 000,029,336 | ---- | M] () -- \Program Files (x86)\TC UP\PLUGINS\Media\Inkscape\python\Lib\site-packages\sk1libs\filters\import\cdrloader.py
[2010/08/16 11:41:40 | 000,001,341 | ---- | M] () -- \Program Files (x86)\TC UP\PLUGINS\Media\Inkscape\python\Lib\site-packages\sk1libs\filters\import\cdrziploader.py
[2010/08/16 11:41:40 | 000,028,643 | ---- | M] () -- \Program Files (x86)\TC UP\PLUGINS\Media\Inkscape\python\Lib\site-packages\sk1libs\filters\import\cgmloader.py
[2010/08/16 11:41:40 | 000,055,918 | ---- | M] () -- \Program Files (x86)\TC UP\PLUGINS\Media\Inkscape\python\Lib\site-packages\sk1libs\filters\import\cmxloader.py
[2010/08/16 11:41:40 | 000,038,308 | ---- | M] () -- \Program Files (x86)\TC UP\PLUGINS\Media\Inkscape\python\Lib\site-packages\sk1libs\filters\import\dxfloader.py
[2010/08/16 11:41:40 | 000,001,949 | ---- | M] () -- \Program Files (x86)\TC UP\PLUGINS\Media\Inkscape\python\Lib\site-packages\sk1libs\filters\import\gziploader.py
[2010/08/16 11:41:40 | 000,007,779 | ---- | M] () -- \Program Files (x86)\TC UP\PLUGINS\Media\Inkscape\python\Lib\site-packages\sk1libs\filters\import\pltloader.py
[2010/08/16 11:41:40 | 000,017,301 | ---- | M] () -- \Program Files (x86)\TC UP\PLUGINS\Media\Inkscape\python\Lib\site-packages\sk1libs\filters\import\sk1loader.py
[2010/08/16 11:41:40 | 000,015,416 | ---- | M] () -- \Program Files (x86)\TC UP\PLUGINS\Media\Inkscape\python\Lib\site-packages\sk1libs\filters\import\skloader.py
[2010/08/16 11:41:40 | 000,015,832 | ---- | M] () -- \Program Files (x86)\TC UP\PLUGINS\Media\Inkscape\python\Lib\site-packages\sk1libs\filters\import\stitchloader.py
[2010/08/16 11:41:40 | 000,038,937 | ---- | M] () -- \Program Files (x86)\TC UP\PLUGINS\Media\Inkscape\python\Lib\site-packages\sk1libs\filters\import\svgloader.py
[2010/08/16 11:41:40 | 000,014,300 | ---- | M] () -- \Program Files (x86)\TC UP\PLUGINS\Media\Inkscape\python\Lib\site-packages\sk1libs\filters\import\wmfloader.py
[2010/08/16 11:41:40 | 000,017,550 | ---- | M] () -- \Program Files (x86)\TC UP\PLUGINS\Media\Inkscape\python\Lib\site-packages\sk1libs\filters\import\xfigloader.py
[2008/02/25 08:05:22 | 000,856,064 | ---- | M] () -- \Program Files (x86)\TC UP\PLUGINS\Media\TheKMPlayer\ImLoader.dll
[2006/12/23 18:37:56 | 000,044,032 | ---- | M] () -- \Program Files (x86)\WinRAR\RarExtLoader.exe
[2011/03/15 11:23:50 | 000,105,984 | ---- | M] () -- \Program Files\Adobe\Adobe Media Encoder CS5.5\MXF_SDK_MetaMetadata_BinaryLoader_4.3.4.dll
[2011/03/15 11:23:50 | 000,196,608 | ---- | M] () -- \Program Files\Adobe\Adobe Media Encoder CS5.5\MXF_SDK_MetaMetadata_XSDLoader2_4.3.4.dll
[2011/03/15 11:23:50 | 000,144,896 | ---- | M] () -- \Program Files\Adobe\Adobe Media Encoder CS5.5\MXF_SDK_MetaMetadata_XSDLoader_4.3.4.dll
[2011/03/23 14:50:20 | 000,105,984 | ---- | M] () -- \Program Files\Adobe\Adobe Premiere Pro CS5.5\MXF_SDK_MetaMetadata_BinaryLoader_4.3.4.dll
[2011/03/23 14:50:20 | 000,196,608 | ---- | M] () -- \Program Files\Adobe\Adobe Premiere Pro CS5.5\MXF_SDK_MetaMetadata_XSDLoader2_4.3.4.dll
[2011/03/23 14:50:20 | 000,144,896 | ---- | M] () -- \Program Files\Adobe\Adobe Premiere Pro CS5.5\MXF_SDK_MetaMetadata_XSDLoader_4.3.4.dll
[2012/05/23 09:52:48 | 000,000,072 | ---- | M] () -- \ProgramData\Microsoft\Windows\Start Menu\Programs\YTD YouTube Downloader & Converter\YTD YouTube Downloader & Converter Help.url
[2012/05/23 09:52:48 | 000,001,952 | ---- | M] () -- \ProgramData\Microsoft\Windows\Start Menu\Programs\YTD YouTube Downloader & Converter\YTD YouTube Downloader & Converter.lnk
[2011/09/20 16:43:32 | 000,000,232 | ---- | M] () -- \ProgramData\Nero\Nero 10\OnlineServices\NOSWebConfig\MySpace\uploadError.xml
[2012/04/27 17:14:26 | 000,072,638 | ---- | M] () -- \ProgramData\Skype\Apps\login\images\loader.gif
[2012/04/27 17:14:26 | 000,003,032 | ---- | M] () -- \ProgramData\Skype\Apps\login\images\loader.png
[2012/05/23 09:52:48 | 000,000,072 | ---- | M] () -- \Users\All Users\Microsoft\Windows\Start Menu\Programs\YTD YouTube Downloader & Converter\YTD YouTube Downloader & Converter Help.url
[2012/05/23 09:52:48 | 000,001,952 | ---- | M] () -- \Users\All Users\Microsoft\Windows\Start Menu\Programs\YTD YouTube Downloader & Converter\YTD YouTube Downloader & Converter.lnk
[2011/09/20 16:43:32 | 000,000,232 | ---- | M] () -- \Users\All Users\Nero\Nero 10\OnlineServices\NOSWebConfig\MySpace\uploadError.xml
[2012/04/27 17:14:26 | 000,072,638 | ---- | M] () -- \Users\All Users\Skype\Apps\login\images\loader.gif
[2012/04/27 17:14:26 | 000,003,032 | ---- | M] () -- \Users\All Users\Skype\Apps\login\images\loader.png
[2012/04/19 19:14:13 | 000,006,791 | ---- | M] () -- \Users\Martin\AppData\Local\SRDownloader.err
[2012/05/27 17:28:38 | 000,001,008 | ---- | M] () -- \Users\Martin\AppData\Local\SRDownloader.nast
[2012/04/06 13:24:50 | 000,057,728 | ---- | M] () -- \Users\Martin\AppData\Local\Microsoft\Windows Sidebar\Gadgets\DT.gadget\img\dt_dadget_loader.png
[2012/04/06 13:24:42 | 000,057,728 | ---- | M] () -- \Users\Martin\AppData\Local\Microsoft\Windows Sidebar\Gadgets\DT.gadget\skins\skin1\dt_dadget_loader.png
[2012/04/06 13:24:44 | 000,057,728 | ---- | M] () -- \Users\Martin\AppData\Local\Microsoft\Windows Sidebar\Gadgets\DT.gadget\skins\skin2\dt_dadget_loader.png
[2012/04/06 13:24:46 | 000,057,728 | ---- | M] () -- \Users\Martin\AppData\Local\Microsoft\Windows Sidebar\Gadgets\DT.gadget\skins\skin3\dt_dadget_loader.png
[2012/04/06 13:24:46 | 000,057,728 | ---- | M] () -- \Users\Martin\AppData\Local\Microsoft\Windows Sidebar\Gadgets\DT.gadget\skins\skin4\dt_dadget_loader.png
[2012/04/06 13:24:48 | 000,061,770 | ---- | M] () -- \Users\Martin\AppData\Local\Microsoft\Windows Sidebar\Gadgets\DT.gadget\skins\skin5\dt_dadget_loader.png
[2012/04/06 13:24:48 | 000,061,770 | ---- | M] () -- \Users\Martin\AppData\Local\Microsoft\Windows Sidebar\Gadgets\DT.gadget\skins\skin6\dt_dadget_loader.png
[2012/09/07 09:37:55 | 000,105,903 | ---- | M] () -- \Users\Martin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\JBJ98WWX\AdLoader-427d9fd2a91e2f2c023aefe9f69a01d0.min[1].js
[2012/09/07 09:37:55 | 000,000,753 | ---- | M] () -- \Users\Martin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\YDDLJSRH\AdLoader[1].htm
[2012/05/14 21:02:14 | 000,009,051 | ---- | M] () -- \Users\Martin\AppData\Roaming\DAEMON Tools Lite\MediaInfo\img\loader.gif
[2012/05/14 21:02:14 | 000,016,119 | ---- | M] () -- \Users\Martin\AppData\Roaming\DAEMON Tools Lite\MediaInfo\img\logo_loader_page.jpg
[2012/05/14 21:02:14 | 000,018,434 | ---- | M] () -- \Users\Martin\AppData\Roaming\DAEMON Tools Lite\MediaInfo\img\logo_loader_page.png
[2012/05/14 21:02:14 | 000,009,283 | ---- | M] () -- \Users\Martin\AppData\Roaming\DAEMON Tools Lite\MediaInfo\js\app\MediaInfo\ImageInfoLoader.js
[2012/05/14 21:02:14 | 000,001,699 | ---- | M] () -- \Users\Martin\AppData\Roaming\DAEMON Tools Lite\MediaInfo\js\app\MediaInfo\NewsLoader.js
[2012/04/19 19:14:21 | 000,904,192 | ---- | M] () -- \Users\Martin\Desktop\Programy\SRDownloader.exe
[2011/12/14 09:41:58 | 003,754,647 | ---- | M] () -- \Users\Martin\Desktop\Programy\Windows-Loader-v2.1.zip
[2012/05/23 09:52:48 | 000,001,046 | ---- | M] () -- \Users\Martin\Desktop\Programy\YTD YouTube Downloader & Converter.lnk
[2012/07/06 15:04:11 | 002,705,537 | ---- | M] () -- \Users\Public\Documents\Blizzard Entertainment\World of Warcraft\wow-2.1.1.1897-enGB-tools-downloader.exe
[2012/07/06 15:44:18 | 002,070,207 | ---- | M] () -- \Users\Public\Documents\Blizzard Entertainment\World of Warcraft\WoW-x.x.x.x-4.0.0.12911-EU-Downloader.exe
[2012/07/06 15:04:36 | 000,009,175 | ---- | M] () -- \Users\Public\Documents\Blizzard Entertainment\World of Warcraft\Logs\Downloader.log
[2012/09/25 15:42:04 | 000,020,548 | ---- | M] () -- \Windows\Prefetch\RAREXTLOADER.EXE-8405D981.pf
[2009/09/30 18:39:46 | 002,199,375 | R--- | M] () -- \Windows\Setup\SCRIPTS\Windows7Loader.exe
[2009/07/14 03:03:49 | 000,003,584 | -H-- | M] () -- \Windows\System32\api-ms-win-core-libraryloader-l1-1-0.dll
[2009/07/14 03:15:12 | 000,038,400 | ---- | M] () -- \Windows\System32\dmloader.dll
[2 \Windows\System32\*.tmp files -> \Windows\System32\*.tmp -> ]
[2009/07/14 03:03:49 | 000,003,584 | -H-- | M] () -- \Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
[2009/07/14 03:15:12 | 000,038,400 | ---- | M] () -- \Windows\SysWOW64\dmloader.dll
[2 \Windows\SysWOW64\*.tmp files -> \Windows\SysWOW64\*.tmp -> ]
[2009/07/14 03:40:31 | 000,047,616 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-audio-dmusic_31bf3856ad364e35_6.1.7600.16385_none_a1e90d98a953d601\dmloader.dll
[2009/07/14 03:24:53 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.16385_none_66a6e19d9580f9e3\api-ms-win-core-libraryloader-l1-1-0.dll
[2009/07/14 09:44:39 | 000,004,431 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_en-us_d28dabacfdb4dd1a.manifest
[2009/07/14 09:44:39 | 000,033,360 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_en-us_d28dabacfdb4dd1a_winload.efi.mui_35ee487d
[2009/07/14 09:44:39 | 000,033,344 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_en-us_d28dabacfdb4dd1a_winload.exe.mui_3bc5b827
[2009/07/14 09:44:39 | 000,029,776 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_en-us_d28dabacfdb4dd1a_winresume.efi.mui_f412814e
[2009/07/14 09:44:39 | 000,029,760 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_en-us_d28dabacfdb4dd1a_winresume.exe.mui_ff8b5358
[2009/07/14 04:58:45 | 000,005,745 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7600.16385_none_b71babd98657e6ef.manifest
[2009/07/14 04:58:45 | 000,641,088 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7600.16385_none_b71babd98657e6ef_winload.efi_75834aa0
[2009/07/14 04:58:45 | 000,604,192 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7600.16385_none_b71babd98657e6ef_winload.exe_75835076
[2009/07/14 04:58:45 | 000,557,136 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7600.16385_none_b71babd98657e6ef_winresume.efi_85cd069f
[2009/07/14 04:58:45 | 000,518,352 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7600.16385_none_b71babd98657e6ef_winresume.exe_85cd1215
[2009/07/14 04:57:50 | 000,002,896 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-s..ive-blackbox-loader_31bf3856ad364e35_6.1.7600.16385_none_c72819e06acceb59.manifest
[2009/07/14 04:57:50 | 000,019,008 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-s..ive-blackbox-loader_31bf3856ad364e35_6.1.7600.16385_none_c72819e06acceb59_spldr.sys_98bd87a0
[2009/07/14 09:43:41 | 000,004,431 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_en-us_d28dabacfdb4dd1a.manifest
[2009/07/14 04:13:42 | 000,005,745 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7600.16385_none_b71babd98657e6ef.manifest
[2009/07/14 04:18:27 | 000,002,896 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-s..ive-blackbox-loader_31bf3856ad364e35_6.1.7600.16385_none_c72819e06acceb59.manifest
[2009/07/14 03:15:12 | 000,038,400 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-audio-dmusic_31bf3856ad364e35_6.1.7600.16385_none_45ca7214f0f664cb\dmloader.dll
[2009/07/14 03:03:49 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.16385_none_0a884619dd2388ad\api-ms-win-core-libraryloader-l1-1-0.dll
< *minodlogin* /s >
< *tnod* /s >
[2012/03/14 18:38:38 | 000,003,128 | ---- | M] () -- \Program Files (x86)\Doublesix Games\All Zombies Must Die!\Engine\EditorResources\FaceFX\res\icons\FxGenericTargetNode.bmp
< *AutoKMS* /s >
< *activator* /s >
< *serial* /s >
[2010/08/14 17:46:10 | 000,009,066 | ---- | M] () -- \Games\World of Warcraft\Interface\AddOns\AtlasLoot\Libs\AceSerializer-3.0\AceSerializer-3.0.lua
[2010/08/14 17:46:10 | 000,000,219 | ---- | M] () -- \Games\World of Warcraft\Interface\AddOns\AtlasLoot\Libs\AceSerializer-3.0\AceSerializer-3.0.xml
[2010/10/05 10:01:18 | 000,009,066 | ---- | M] () -- \Games\World of Warcraft\Interface\AddOns\Recount\Libs\AceSerializer-3.0\AceSerializer-3.0.lua
[2010/10/05 10:01:18 | 000,000,219 | ---- | M] () -- \Games\World of Warcraft\Interface\AddOns\Recount\Libs\AceSerializer-3.0\AceSerializer-3.0.xml
[2011/03/18 10:28:42 | 000,001,673 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Encore CS5.1\LMResources\BadSerialNumberAlert.exv
[2011/03/18 10:28:42 | 000,001,561 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Encore CS5.1\LMResources\CantChangeSerialNumberAlert.exv
[2011/03/18 10:28:42 | 000,001,639 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Encore CS5.1\LMResources\InValidUpGradeSerialNumberAlert.exv
[2011/03/18 10:28:42 | 000,000,849 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Encore CS5.1\LMResources\ReserializeAlert.exv
[2011/03/18 10:28:42 | 000,027,443 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Encore CS5.1\LMResources\SerializationWF.exv
[2011/03/18 12:56:02 | 000,090,624 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Encore CS5.1\Plug-ins\Common\DeviceControlSerial.prm
[2010/09/16 03:38:36 | 000,087,040 | ---- | M] () -- \Program Files (x86)\Business Objects\Common\3.5\bin\saxmlserialize.dll
[2010/09/16 04:08:50 | 000,025,088 | ---- | M] () -- \Program Files (x86)\Business Objects\Common\3.5\bin\saxmlserialize_res_chs.dll
[2010/09/16 04:08:52 | 000,025,088 | ---- | M] () -- \Program Files (x86)\Business Objects\Common\3.5\bin\saxmlserialize_res_cht.dll
[2010/09/16 04:08:40 | 000,025,088 | ---- | M] () -- \Program Files (x86)\Business Objects\Common\3.5\bin\saxmlserialize_res_de.dll
[2010/09/16 04:08:38 | 000,025,088 | ---- | M] () -- \Program Files (x86)\Business Objects\Common\3.5\bin\saxmlserialize_res_en.dll
[2010/09/16 04:08:44 | 000,025,088 | ---- | M] () -- \Program Files (x86)\Business Objects\Common\3.5\bin\saxmlserialize_res_es.dll
[2010/09/16 04:08:38 | 000,025,088 | ---- | M] () -- \Program Files (x86)\Business Objects\Common\3.5\bin\saxmlserialize_res_fr.dll
[2010/09/16 04:08:44 | 000,025,088 | ---- | M] () -- \Program Files (x86)\Business Objects\Common\3.5\bin\saxmlserialize_res_it.dll
[2010/09/16 04:08:50 | 000,025,088 | ---- | M] () -- \Program Files (x86)\Business Objects\Common\3.5\bin\saxmlserialize_res_jp.dll
[2010/09/16 04:08:54 | 000,025,088 | ---- | M] () -- \Program Files (x86)\Business Objects\Common\3.5\bin\saxmlserialize_res_ko.dll
[2010/09/16 04:08:46 | 000,025,088 | ---- | M] () -- \Program Files (x86)\Business Objects\Common\3.5\bin\saxmlserialize_res_nl.dll
[2010/09/16 04:09:00 | 000,025,088 | ---- | M] () -- \Program Files (x86)\Business Objects\Common\3.5\bin\saxmlserialize_res_pl.dll
[2010/09/16 04:08:58 | 000,025,088 | ---- | M] () -- \Program Files (x86)\Business Objects\Common\3.5\bin\saxmlserialize_res_pt.dll
[2010/09/16 04:08:58 | 000,025,088 | ---- | M] () -- \Program Files (x86)\Business Objects\Common\3.5\bin\saxmlserialize_res_ru.dll
[2010/09/16 04:08:56 | 000,025,088 | ---- | M] () -- \Program Files (x86)\Business Objects\Common\3.5\bin\saxmlserialize_res_sv.dll
[2010/09/16 03:26:04 | 000,217,088 | ---- | M] () -- \Program Files (x86)\Business Objects\Common\3.5\bin\saxserialize.dll
[2011/09/12 11:26:02 | 000,247,080 | R--- | M] () -- \Program Files (x86)\Common Files\Nero\BDCore\boost_serialization-mt.dll
[2011/09/12 11:26:02 | 000,166,696 | R--- | M] () -- \Program Files (x86)\Common Files\Nero\BDCore\boost_wserialization-mt.dll
[2003/10/09 07:11:48 | 000,000,216 | ---- | M] () -- \Program Files (x86)\Image-Line\FL Studio 10\Plugins\Fruity\Generators\Sytrus\Artwork\DelSerialCache.bmp
[2011/09/23 14:22:58 | 000,589,608 | ---- | M] () -- \Program Files (x86)\Nero\KM\SerialHelper.exe
[2011/08/08 21:04:32 | 000,036,864 | ---- | M] () -- \Program Files (x86)\OCCTPT\OCCT.XmlSerializers.dll
[2009/06/10 23:13:54 | 000,970,752 | ---- | M] () -- \Program Files (x86)\Reference Assemblies\Microsoft\Framework\v3.0\System.Runtime.Serialization.dll
[2012/06/26 12:21:34 | 000,026,761 | ---- | M] () -- \Program Files (x86)\Sony Ericsson\Update Engine\plugins\com.serialio.win32.x86_2.10.2.0.jar
[2012/06/26 12:21:34 | 000,049,527 | ---- | M] () -- \Program Files (x86)\Sony Ericsson\Update Engine\plugins\com.serialio_2.12.8.23.jar
[2012/06/26 12:24:04 | 000,006,320 | ---- | M] () -- \Program Files (x86)\Sony Ericsson\Update Engine\plugins\com.sonyericsson.cs.serialcommunication_2.12.8.23.jar
[2011/09/27 13:38:40 | 000,320,856 | ---- | M] () -- \Program Files (x86)\Sony\Vegas Pro 11.0\CoreUI.XmlSerializers.dll
[2011/09/27 13:38:48 | 000,460,120 | ---- | M] () -- \Program Files (x86)\Sony\Vegas Pro 11.0\Sony.MediaSoftware.TextGen.CoreGraphics.XmlSerializers.dll
[2009/06/10 22:30:43 | 000,847,872 | ---- | M] () -- \Program Files\Reference Assemblies\Microsoft\Framework\v3.0\System.Runtime.Serialization.dll
[2012/04/27 00:00:01 | 012,175,353 | ---- | M] () -- \Users\Martin\Desktop\mp 3\Nový priečinok (4)\VA - Disco Revengers Vol 2 From Disco To Disco (2012) mp3\20. High (Original Mix) - Serial Thrilla.mp3
[2008/09/04 09:06:40 | 000,079,120 | ---- | M] () -- \Users\Public\Documents\Pinnacle\Content\HollywoodFX\HfxSerial.exe
[2008/09/04 09:07:02 | 000,010,512 | ---- | M] () -- \Users\Public\Documents\Pinnacle\Content\HollywoodFX\Languages\HfxSerial-CHS.dll
[2008/09/04 09:07:04 | 000,011,024 | ---- | M] () -- \Users\Public\Documents\Pinnacle\Content\HollywoodFX\Languages\HfxSerial-DEU.dll
[2008/09/04 09:07:04 | 000,011,024 | ---- | M] () -- \Users\Public\Documents\Pinnacle\Content\HollywoodFX\Languages\HfxSerial-ESP.dll
[2008/09/04 09:07:06 | 000,011,024 | ---- | M] () -- \Users\Public\Documents\Pinnacle\Content\HollywoodFX\Languages\HfxSerial-FRA.dll
[2008/09/04 09:07:10 | 000,011,024 | ---- | M] () -- \Users\Public\Documents\Pinnacle\Content\HollywoodFX\Languages\HfxSerial-ITA.dll
[2008/09/04 09:07:14 | 000,010,512 | ---- | M] () -- \Users\Public\Documents\Pinnacle\Content\HollywoodFX\Languages\HfxSerial-JPN.dll
[2008/09/04 09:07:14 | 000,010,512 | ---- | M] () -- \Users\Public\Documents\Pinnacle\Content\HollywoodFX\Languages\HfxSerial-KOR.dll
[2008/09/04 09:07:16 | 000,011,024 | ---- | M] () -- \Users\Public\Documents\Pinnacle\Content\HollywoodFX\Languages\HfxSerial-NLD.dll
[2009/06/10 23:23:19 | 000,131,072 | ---- | M] () -- \Windows\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap\2.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.dll
[2009/06/10 23:13:54 | 000,970,752 | ---- | M] () -- \Windows\assembly\GAC_MSIL\System.Runtime.Serialization\3.0.0.0__b77a5c561934e089\System.Runtime.Serialization.dll
[2009/07/14 06:56:20 | 002,347,008 | ---- | M] () -- \Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Seri#\39e53f507d9cbc5c10a2f47c4b0d09dd\System.Runtime.Serialization.ni.dll
[2009/07/14 06:55:32 | 000,310,784 | ---- | M] () -- \Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Seri#\d57d865568209a71d63739fa448ed6df\System.Runtime.Serialization.Formatters.Soap.ni.dll
[2009/07/14 06:59:40 | 003,073,536 | ---- | M] () -- \Windows\assembly\NativeImages_v2.0.50727_64\System.Runtime.Seri#\12aaff696a0c54773664b4c5407deaa2\System.Runtime.Serialization.ni.dll
[2009/07/14 06:57:59 | 000,396,288 | ---- | M] () -- \Windows\assembly\NativeImages_v2.0.50727_64\System.Runtime.Seri#\d0c6d3aadce1e38bbcb06905e132a503\System.Runtime.Serialization.Formatters.Soap.ni.dll
[2011/12/18 10:24:53 | 000,310,272 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_32\System.Runtime.Seri#\d0ff3383438d688a0118d0fa19ed1dc4\System.Runtime.Serialization.Formatters.Soap.ni.dll
[2011/12/18 10:24:50 | 002,625,024 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_32\System.Runtime.Seri#\e9f8a45b1063d6c6a62718c88a5623d1\System.Runtime.Serialization.ni.dll
[2011/12/18 10:27:52 | 003,375,616 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_64\System.Runtime.Seri#\08fba6b56d838ad48b4451c82e5728d4\System.Runtime.Serialization.ni.dll
[2011/12/18 10:27:57 | 000,374,272 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_64\System.Runtime.Seri#\b468f9d8655e91b7a6aa11473eca4a97\System.Runtime.Serialization.Formatters.Soap.ni.dll
[2012/05/22 10:20:39 | 000,122,264 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.dll
[2012/05/22 10:20:39 | 001,026,936 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization\v4.0_4.0.0.0__b77a5c561934e089\System.Runtime.Serialization.dll
[2009/06/10 23:23:19 | 000,131,072 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v2.0.50727\System.Runtime.Serialization.Formatters.Soap.dll
[2009/06/10 23:14:06 | 000,970,752 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\System.Runtime.Serialization.dll
[2010/03/18 13:16:28 | 001,026,936 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\System.Runtime.Serialization.dll
[2010/03/18 13:16:28 | 000,122,264 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\System.Runtime.Serialization.Formatters.Soap.dll
[2009/06/10 22:40:06 | 000,131,072 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v2.0.50727\System.Runtime.Serialization.Formatters.Soap.dll
[2009/06/10 22:30:46 | 000,847,872 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\System.Runtime.Serialization.dll
[2010/03/18 13:16:28 | 001,026,936 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v4.0.30319\System.Runtime.Serialization.dll
[2010/03/18 13:16:28 | 000,122,264 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v4.0.30319\System.Runtime.Serialization.Formatters.Soap.dll
[2009/07/14 03:16:13 | 000,015,360 | ---- | M] () -- \Windows\System32\serialui.dll
[2 \Windows\System32\*.tmp files -> \Windows\System32\*.tmp -> ]
[2009/07/14 02:00:40 | 000,094,208 | ---- | M] () -- \Windows\System32\DriverStore\FileRepository\msports.inf_amd64_neutral_fdcfb86ce78678d1\serial.sys
[2009/06/10 22:37:50 | 000,038,400 | ---- | M] () -- \Windows\System32\DriverStore\FileRepository\smartcrd.inf_amd64_neutral_6fb75ea318f84fe5\grserial.sys
[2009/07/14 09:44:15 | 000,005,120 | ---- | M] () -- \Windows\System32\sk-SK\serialui.dll.mui
[2009/07/14 03:16:13 | 000,015,360 | ---- | M] () -- \Windows\SysWOW64\serialui.dll
[2 \Windows\SysWOW64\*.tmp files -> \Windows\SysWOW64\*.tmp -> ]
[2009/07/14 09:44:15 | 000,005,120 | ---- | M] () -- \Windows\SysWOW64\sk-SK\serialui.dll.mui
[2009/07/14 09:44:13 | 000,005,120 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-u..em-config.resources_31bf3856ad364e35_6.1.7600.16385_sk-sk_d5f23af62a751552\serialui.dll.mui
[2009/07/14 03:41:54 | 000,017,920 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-unimodem-config_31bf3856ad364e35_6.1.7600.16385_none_50f69335385bc360\serialui.dll
[2009/07/14 09:44:20 | 000,010,240 | ---- | M] () -- \Windows\winsxs\amd64_msports.inf.resources_31bf3856ad364e35_6.1.7600.16385_en-us_64015f894ce7c72a\serial.sys.mui
[2009/07/14 02:00:40 | 000,094,208 | ---- | M] () -- \Windows\winsxs\amd64_msports.inf_31bf3856ad364e35_6.1.7600.16385_none_548ca258d20f4ada\serial.sys
[2009/06/10 22:40:06 | 000,131,072 | ---- | M] () -- \Windows\winsxs\amd64_netfx-system.runtim..ion.formatters.soap_b03f5f7f11d50a3a_6.1.7600.16385_none_a9d1bee515273f56\System.Runtime.Serialization.Formatters.Soap.dll
[2009/06/10 22:37:50 | 000,038,400 | ---- | M] () -- \Windows\winsxs\amd64_smartcrd.inf_31bf3856ad364e35_6.1.7600.16385_none_ce9ed3064deed3aa\grserial.sys
[2009/06/10 22:30:46 | 000,847,872 | ---- | M] () -- \Windows\winsxs\amd64_wcf-system.runtime.serialization.ref_b03f5f7f11d50a3a_6.1.7600.16385_none_5943b25a748cb06c\System.Runtime.Serialization.dll
[2009/06/10 22:30:43 | 000,847,872 | ---- | M] () -- \Windows\winsxs\amd64_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7600.16385_none_941abf24c884ab05\System.Runtime.Serialization.dll
[2009/07/14 04:57:21 | 000,002,766 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..gertransport-serial_31bf3856ad364e35_6.1.7600.16385_none_6daa7ec5c65bf5bc.manifest
[2009/07/14 04:57:21 | 000,017,984 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..gertransport-serial_31bf3856ad364e35_6.1.7600.16385_none_6daa7ec5c65bf5bc_kdcom.dll_db5e7744
[2009/07/14 09:44:36 | 000,005,120 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-u..em-config.resources_31bf3856ad364e35_6.1.7600.16385_sk-sk_d5f23af62a751552_serialui.dll.mui_7d29d2a3
[2009/07/14 04:57:29 | 000,017,920 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-unimodem-config_31bf3856ad364e35_6.1.7600.16385_none_50f69335385bc360_serialui.dll_bea29328
[2009/07/14 09:44:38 | 000,005,120 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-u..em-config.resources_31bf3856ad364e35_6.1.7600.16385_sk-sk_79d39f727217a41c_serialui.dll.mui_7d29d2a3
[2009/07/14 04:58:37 | 000,015,360 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-unimodem-config_31bf3856ad364e35_6.1.7600.16385_none_f4d7f7b17ffe522a_serialui.dll_bea29328
[2009/07/14 04:15:17 | 000,002,766 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..gertransport-serial_31bf3856ad364e35_6.1.7600.16385_none_6daa7ec5c65bf5bc.manifest
[2009/07/14 04:11:30 | 000,000,868 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft.windows.h..tserial-driverclass_31bf3856ad364e35_6.1.7600.16385_none_88b1c48f2026fe3f.manifest
[2009/07/14 04:26:23 | 000,002,237 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_wcf-system.runtime.serialization.ref_b03f5f7f11d50a3a_6.1.7600.16385_none_5943b25a748cb06c.manifest
[2009/07/14 04:27:09 | 000,002,262 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7600.16385_none_941abf24c884ab05.manifest
[2009/07/14 03:52:33 | 000,002,226 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.ref_b77a5c561934e089_6.1.7600.16385_none_a6aa149474833896.manifest
[2009/07/14 09:43:49 | 000,000,531 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7600.16385_en-us_8f71d563bf7aa3c2.manifest
[2009/07/14 03:51:52 | 000,001,985 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization_b77a5c561934e089_6.1.7600.16385_none_d6ed4a2e9c2a39c9.manifest
[2009/07/14 03:57:53 | 000,002,260 | ---- | M] () -- \Windows\winsxs\Manifests\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7600.16385_none_dbc7f5fbdd00d40b.manifest
[2009/06/10 23:23:19 | 000,131,072 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.seri..ion.formatters.soap_b03f5f7f11d50a3a_6.1.7600.16385_none_1c9a3ec1e01c684b\System.Runtime.Serialization.Formatters.Soap.dll
[2009/06/10 23:14:06 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.ref_b77a5c561934e089_6.1.7600.16385_none_a6aa149474833896\System.Runtime.Serialization.dll
[2009/06/10 23:13:54 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization_b77a5c561934e089_6.1.7600.16385_none_d6ed4a2e9c2a39c9\System.Runtime.Serialization.dll
[2009/07/14 09:44:15 | 000,005,120 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-u..em-config.resources_31bf3856ad364e35_6.1.7600.16385_sk-sk_79d39f727217a41c\serialui.dll.mui
[2009/07/14 03:16:13 | 000,015,360 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-unimodem-config_31bf3856ad364e35_6.1.7600.16385_none_f4d7f7b17ffe522a\serialui.dll
[2009/06/10 23:13:54 | 000,970,752 | ---- | M] () -- \Windows\winsxs\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7600.16385_none_dbc7f5fbdd00d40b\System.Runtime.Serialization.dll
< *w7lxe* /s >
========== Alternate Data Streams ==========
@Alternate Data Stream - 6144 bytes -> C:\Windows\Cursors\arrow_n.cur:NEDTA.DAT
< End of report >
Re: Pomalší Pc ako predtým (Rsit log)
No, docela by me zajimalo, proc ten vas legalni system z Alzy potrebuje crack 
Pokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Re: Pomalší Pc ako predtým (Rsit log)
Lebo stále po mne pýtal key.. aj keď som ho tam dal x krát 
Re: Pomalší Pc ako predtým (Rsit log)
Tohle si ale musite vyridit budto s prodejcem, nebo kontaktovat technickou podporu Microsoftu.
Do te doby, dle pravidel fora http://forum.viry.cz/viewtopic.php?f=12&t=115512
Do te doby, dle pravidel fora http://forum.viry.cz/viewtopic.php?f=12&t=115512
Pomáhat NELZE:
2) Pokud stroj uživatele prokazatelně obsahuje nelegální hostitelský čí ochranný software
(operační systém, antivir, firewall, atd.), je nutné navést uživatele k nápravě, např. skrze neplacený software,
a začít řešit, až v době kdy je PC "v pořádku". V případě že uživatel nechce na pravidla přistoupit,
je nutné jej vyzvat ať fórum opustí, a vrátí se až je splní.
Pokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Přispějete na provoz fóra?