Logfile of random's system information tool 1.09 (written by random/random)
Run by noname at 2012-11-27 20:30:02
Microsoft Windows 7 Ultimate Service Pack 1
System drive C: has 5 GB (10%) free of 50 GB
Total RAM: 3000 MB (54% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 20:30:53, on 27.11.2012
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v9.00 (9.00.8112.16455)
Boot mode: Normal
Running processes:
C:\Windows\system32\taskhost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\System32\igfxtray.exe
C:\Windows\System32\hkcmd.exe
C:\Windows\System32\igfxpers.exe
C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\Analog Devices\Core\smax4pnp.exe
C:\Program Files\Emsisoft Anti-Malware\a2guard.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\Google\Drive\googledrivesync.exe
C:\Windows\system32\igfxsrvc.exe
C:\Program Files\Google\Drive\googledrivesync.exe
C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
C:\Program Files\Hewlett-Packard\Shared\hpqToaster.exe
C:\Program Files\Hewlett-Packard\Shared\hpCaslNotification.exe
C:\Windows\system32\taskeng.exe
D:\download\RSIT.exe
C:\Program Files\trend micro\noname.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Windows\system32\SearchProtocolHost.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: E-Web Print - {201CF130-E29C-4E5C-A73F-CD197DEFA6AE} - C:\Program Files\Epson Software\E-Web Print\ewps_tb.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll
O2 - BHO: Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
O3 - Toolbar: Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll
O3 - Toolbar: E-Web Print - {201CF130-E29C-4E5C-A73F-CD197DEFA6AE} - C:\Program Files\Epson Software\E-Web Print\ewps_tb.dll
O4 - HKLM\..\Run: [IgfxTray] C:\Windows\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\Windows\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\Windows\system32\igfxpers.exe
O4 - HKLM\..\Run: [WirelessAssistant] C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
O4 - HKLM\..\Run: [SynTPEnh] %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [SoundMAXPnP] C:\Program Files\Analog Devices\Core\smax4pnp.exe
O4 - HKLM\..\Run: [emsisoft anti-malware] "c:\program files\emsisoft anti-malware\a2guard.exe" /d=60
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [GoogleDriveSync] "C:\Program Files\Google\Drive\googledrivesync.exe" /autostart
O4 - HKUS\S-1-5-18\..\Run: [Nokia.PCSync] "D:\Program Files\Nokia\Nokia PC Suite 6\PCSync2.exe" /NoDialog (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\Run: [PC Suite Tray] "D:\Program Files\Nokia\Nokia PC Suite 6\PCSuite.exe" -onlytray (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [Nokia.PCSync] "D:\Program Files\Nokia\Nokia PC Suite 6\PCSync2.exe" /NoDialog (User 'Default user')
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre7\bin\jp2iexp.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre7\bin\jp2iexp.dll
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - (no file)
O9 - Extra 'Tools' menuitem: Spybot - Search && Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - (no file)
O9 - Extra button: PokerStars.net - {FA9B9510-9FCB-4ca0-818C-5D0987B47C4D} - C:\Program Files\PokerStars.NET\PokerStarsUpdate.exe (file missing)
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} - http://download.eset.com/special/eos/OnlineScanner.cab
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
O23 - Service: Emsisoft Anti-Malware 7.0 - Service (a2AntiMalware) - Emsisoft GmbH - C:\Program Files\Emsisoft Anti-Malware\a2service.exe
O23 - Service: ABBYY FineReader 9.0 Sprint Licensing Service (ABBYY.Licensing.FineReader.Sprint.9.0) - ABBYY - C:\Program Files\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe
O23 - Service: Andrea ADI Filters Service (AEADIFilters) - Andrea Electronics Corporation - C:\Windows\system32\AEADISRV.EXE
O23 - Service: Agere Modem Call Progress Audio (AgereModemAudio) - LSI Corporation - C:\Program Files\LSI SoftModem\agrsmsvc.exe
O23 - Service: Intel® Centrino® Wireless Bluetooth® + High Speed Service (AMPPALR3) - Intel Corporation - C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe
O23 - Service: Avira Scheduler (AntiVirSchedulerService) - Avira Operations GmbH & Co. KG - D:\Program Files\Avira\AntiVir Desktop\sched.exe
O23 - Service: Avira Real-Time Protection (AntiVirService) - Avira Operations GmbH & Co. KG - D:\Program Files\Avira\AntiVir Desktop\avguard.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: Služba Kaspersky Anti-Virus (AVP) - Unknown owner - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2012\avp.exe (file missing)
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Intel(R) Centrino(R) Wireless Bluetooth(R) + High Speed Security Service (BTHSSecurityMgr) - Intel(R) Corporation - C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe
O23 - Service: EpsonBidirectionalService - SEIKO EPSON CORPORATION - C:\Program Files\Common Files\EPSON\EBAPI\eEBSVC.exe
O23 - Service: EPSON V5 Service4(04) (EPSON_EB_RPCV4_04) - SEIKO EPSON CORPORATION - C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50ST7.EXE
O23 - Service: EPSON V3 Service4(04) (EPSON_PM_RPCV4_04) - SEIKO EPSON CORPORATION - C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50RP7.EXE
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel(R) Corporation - C:\Program Files\Intel\WiFi\bin\EvtEng.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: HP Support Assistant Service - Hewlett-Packard Company - C:\Program Files\Hewlett-Packard\HP Support Framework\hpsa_service.exe
O23 - Service: HP Quick Synchronization Service (HPDrvMntSvc.exe) - Hewlett-Packard Company - C:\Program Files\Hewlett-Packard\Shared\HPDrvMntSvc.exe
O23 - Service: HP Software Framework Service (hpqwmiex) - Hewlett-Packard Company - C:\Program Files\Hewlett-Packard\Shared\hpqWmiEx.exe
O23 - Service: HP Service (hpsrv) - Hewlett-Packard Company - C:\Windows\system32\Hpservice.exe
O23 - Service: Úložná technologie Intel(R) Rapid (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: MNS Framework (MNSFramework) - Unknown owner - C:\Windows\system32\MNSFramework.exe
O23 - Service: Wireless PAN DHCP Server (MyWiFiDHCPDNS) - Unknown owner - C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel(R) Corporation - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
O23 - Service: ServiceLayer - Nokia - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: Epson Printer Status Agent4 (StatusAgent4) - SEIKO EPSON CORPORATION - C:\Windows\system32\SAgent4.exe
O23 - Service: Intel(R) PROSet/Wireless Zero Configuration Service (ZeroConfigService) - Intel® Corporation - C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
--
End of file - 9456 bytes
======Scheduled tasks folder======
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-639110540-3213493223-2817070946-1000Core.job
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-639110540-3213493223-2817070946-1000UA.job
C:\Windows\tasks\HPCeeScheduleFornoname.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{201CF130-E29C-4E5C-A73F-CD197DEFA6AE}]
E-Web Print - C:\Program Files\Epson Software\E-Web Print\ewps_tb.dll [2012-04-26 240224]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-12 2217848]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2012-11-15 449512]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9421DD08-935F-4701-A9CA-22DF90AC4EA6}]
Easy Photo Print - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll [2008-03-30 266240]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2012-11-15 155384]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{9421DD08-935F-4701-A9CA-22DF90AC4EA6} - Easy Photo Print - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll [2008-03-30 266240]
{201CF130-E29C-4E5C-A73F-CD197DEFA6AE} - E-Web Print - C:\Program Files\Epson Software\E-Web Print\ewps_tb.dll [2012-04-26 240224]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2009-08-02 141848]
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2009-08-02 174104]
"Persistence"=C:\Windows\system32\igfxpers.exe [2009-08-02 151064]
"WirelessAssistant"=C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe [2010-05-20 500792]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2010-06-04 1791272]
"SoundMAXPnP"=C:\Program Files\Analog Devices\Core\smax4pnp.exe [2009-05-18 1314816]
"emsisoft anti-malware"=c:\program files\emsisoft anti-malware\a2guard.exe [2012-10-17 3364264]
"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2012-07-03 252848]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"GoogleDriveSync"=C:\Program Files\Google\Drive\googledrivesync.exe [2012-10-25 16052192]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\avgnt]
D:\Program Files\Avira\AntiVir Desktop\avgnt.exe [2012-11-26 384800]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2009-07-28 216576]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-12 2217848]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=153
"NoDrives"=0
"NoRun"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=157
"NoDrives"=0
"NoRun"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.cvid"=iccvid.dll
"MSVideo8"=VfWWDM32.dll
"vidc.DIVX"=DivX.dll
"vidc.yv12"=DivX.dll
"vidc.xvid"=xvidvfw.dll
"VIDC.FFDS"=ff_vfw.dll
"msacm.ac3filter"=ac3filter.acm
"msacm.avis"=ff_acm.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
======List of files/folders created in the last 1 month======
2012-11-25 17:39:21 ----A---- C:\Windows\system32\SBRC.dat
2012-11-25 17:39:17 ----A---- C:\Windows\system32\sbbd.exe
2012-11-25 17:39:17 ----A---- C:\Windows\system32\drivers\SBREDrv.sys
2012-11-25 17:39:06 ----D---- C:\VIPRERESCUE
2012-11-24 16:19:26 ----D---- C:\Users\noname\AppData\Roaming\MOBILedit
2012-11-24 16:18:34 ----D---- C:\Program Files\Compiled Driver Disk (Nokia)
2012-11-24 16:17:24 ----D---- C:\Program Files\COMPELSON Labs
2012-11-15 11:52:28 ----D---- C:\ProgramData\F-Secure uninstallationtool
2012-11-15 11:31:09 ----D---- C:\Program Files\Common Files\Java
2012-11-15 11:31:00 ----A---- C:\Windows\system32\javaws.exe
2012-11-15 11:30:43 ----A---- C:\Windows\system32\WindowsAccessBridge.dll
2012-11-14 14:10:56 ----A---- C:\Windows\system32\Wdfres.dll
2012-11-14 14:10:56 ----A---- C:\Windows\system32\drivers\WdfLdr.sys
2012-11-14 14:10:56 ----A---- C:\Windows\system32\drivers\Wdf01000.sys
2012-11-14 14:09:33 ----A---- C:\Windows\system32\drivers\WUDFRd.sys
2012-11-14 14:09:33 ----A---- C:\Windows\system32\drivers\WUDFPf.sys
2012-11-14 14:09:32 ----A---- C:\Windows\system32\WUDFSvc.dll
2012-11-14 14:09:32 ----A---- C:\Windows\system32\WUDFPlatform.dll
2012-11-14 14:09:29 ----A---- C:\Windows\system32\WUDFx.dll
2012-11-14 14:09:29 ----A---- C:\Windows\system32\WUDFHost.exe
2012-11-14 14:09:29 ----A---- C:\Windows\system32\WUDFCoinstaller.dll
2012-11-14 14:08:18 ----A---- C:\Windows\system32\mshtmled.dll
2012-11-14 14:08:17 ----A---- C:\Windows\system32\vbscript.dll
2012-11-14 14:08:16 ----A---- C:\Windows\system32\jsproxy.dll
2012-11-14 14:08:15 ----A---- C:\Windows\system32\msfeeds.dll
2012-11-14 14:08:15 ----A---- C:\Windows\system32\ieUnatt.exe
2012-11-14 14:08:15 ----A---- C:\Windows\system32\ieui.dll
2012-11-14 14:08:13 ----A---- C:\Windows\system32\wininet.dll
2012-11-14 14:08:13 ----A---- C:\Windows\system32\jscript.dll
2012-11-14 14:08:12 ----A---- C:\Windows\system32\url.dll
2012-11-14 14:08:12 ----A---- C:\Windows\system32\jscript9.dll
2012-11-14 14:08:10 ----A---- C:\Windows\system32\iertutil.dll
2012-11-14 14:08:09 ----A---- C:\Windows\system32\urlmon.dll
2012-11-14 14:08:06 ----A---- C:\Windows\system32\ieframe.dll
2012-11-14 14:08:04 ----A---- C:\Windows\system32\mshtml.dll
2012-11-14 14:06:15 ----A---- C:\Windows\system32\nlasvc.dll
2012-11-14 14:06:15 ----A---- C:\Windows\system32\nlaapi.dll
2012-11-14 14:06:15 ----A---- C:\Windows\system32\netcorehc.dll
2012-11-14 14:06:15 ----A---- C:\Windows\system32\ncsi.dll
2012-11-14 14:06:15 ----A---- C:\Windows\system32\iphlpsvc.dll
2012-11-14 14:06:15 ----A---- C:\Windows\system32\drivers\tcpipreg.sys
2012-11-14 14:06:15 ----A---- C:\Windows\system32\drivers\tcpip.sys
2012-11-14 14:06:14 ----A---- C:\Windows\system32\netevent.dll
2012-11-14 14:05:02 ----A---- C:\Windows\system32\win32k.sys
2012-11-14 14:02:34 ----A---- C:\Windows\system32\synceng.dll
2012-11-14 14:02:13 ----A---- C:\Windows\system32\dhcpcsvc6.dll
2012-11-14 14:02:13 ----A---- C:\Windows\system32\dhcpcore6.dll
2012-11-11 08:36:31 ----D---- C:\ProgramData\Sophos
2012-11-11 08:36:21 ----D---- C:\Program Files\Sophos
2012-11-07 16:00:48 ----D---- C:\Users\noname\AppData\Roaming\Avira
2012-11-07 15:55:11 ----A---- C:\Windows\system32\drivers\ssmdrv.sys
2012-11-07 15:55:05 ----A---- C:\Windows\system32\drivers\avkmgr.sys
2012-11-07 15:55:05 ----A---- C:\Windows\system32\drivers\avipbb.sys
2012-11-07 15:55:05 ----A---- C:\Windows\system32\drivers\avgntflt.sys
2012-11-07 15:55:00 ----D---- C:\ProgramData\Avira
2012-11-04 13:27:42 ----D---- C:\ProgramData\Drivers For Free
2012-11-04 13:26:59 ----D---- C:\ProgramData\UAB
2012-11-04 13:26:57 ----D---- C:\Users\noname\AppData\Roaming\Drivers For Free
2012-11-04 10:59:17 ----A---- C:\Windows\system32\TsUsbRedirectionGroupPolicyControl.exe
2012-11-04 10:59:15 ----A---- C:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2012-11-04 10:59:15 ----A---- C:\Windows\system32\RdpGroupPolicyExtension.dll
2012-11-04 10:59:15 ----A---- C:\Windows\system32\drivers\rdpvideominiport.sys
2012-11-04 10:59:14 ----A---- C:\Windows\system32\drivers\TsUsbFlt.sys
2012-11-04 10:59:12 ----A---- C:\Windows\system32\wksprtPS.dll
2012-11-04 10:59:12 ----A---- C:\Windows\system32\wksprt.exe
2012-11-04 10:59:12 ----A---- C:\Windows\system32\TSWbPrxy.exe
2012-11-04 10:59:12 ----A---- C:\Windows\system32\TsUsbGDCoInstaller.dll
2012-11-04 10:59:12 ----A---- C:\Windows\system32\tsgqec.dll
2012-11-04 10:59:12 ----A---- C:\Windows\system32\rdpudd.dll
2012-11-04 10:59:12 ----A---- C:\Windows\system32\rdpendp_winip.dll
2012-11-04 10:59:12 ----A---- C:\Windows\system32\MsRdpWebAccess.dll
2012-11-04 10:59:12 ----A---- C:\Windows\system32\aaclient.dll
2012-11-04 10:59:11 ----A---- C:\Windows\system32\rdpcorets.dll
2012-11-04 10:59:11 ----A---- C:\Windows\system32\mstsc.exe
2012-11-04 10:59:10 ----A---- C:\Windows\system32\mstscax.dll
2012-11-04 10:58:45 ----A---- C:\Windows\system32\schannel.dll
2012-11-04 10:58:45 ----A---- C:\Windows\system32\ncrypt.dll
2012-11-04 10:58:45 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2012-11-04 10:58:45 ----A---- C:\Windows\system32\drivers\cng.sys
2012-11-04 10:58:44 ----A---- C:\Windows\system32\lsasrv.dll
2012-11-04 10:58:44 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2012-10-31 11:51:04 ----D---- C:\Program Files\Emsisoft Anti-Malware
======List of files/folders modified in the last 1 month======
2012-11-27 20:30:10 ----D---- C:\Windows\temp
2012-11-27 20:30:08 ----D---- C:\Program Files\trend micro
2012-11-27 20:27:45 ----A---- C:\ProgramData\HPWALog.txt
2012-11-27 20:27:04 ----D---- C:\ProgramData
2012-11-27 20:00:17 ----A---- C:\Windows\ntbtlog.txt
2012-11-27 07:17:49 ----D---- C:\Windows\system32\config
2012-11-26 07:17:22 ----D---- C:\Windows\system32\catroot
2012-11-26 07:15:39 ----D---- C:\Windows\Tasks
2012-11-26 07:15:39 ----D---- C:\Windows\system32\Tasks
2012-11-25 19:59:01 ----D---- C:\Windows\system32\drivers
2012-11-25 19:02:49 ----D---- C:\Windows\Prefetch
2012-11-25 17:39:21 ----D---- C:\Windows\System32
2012-11-25 17:34:25 ----D---- C:\Windows\inf
2012-11-25 17:34:25 ----A---- C:\Windows\system32\PerfStringBackup.INI
2012-11-24 16:19:09 ----D---- C:\Windows\system32\DriverStore
2012-11-24 16:18:34 ----RD---- C:\Program Files
2012-11-24 16:17:24 ----SHD---- C:\Windows\Installer
2012-11-24 16:17:24 ----D---- C:\Config.Msi
2012-11-24 16:02:39 ----D---- C:\Users\noname\AppData\Roaming\PC Suite
2012-11-24 07:52:21 ----RSD---- C:\Windows\assembly
2012-11-24 07:52:21 ----D---- C:\Windows\Microsoft.NET
2012-11-23 10:59:39 ----D---- C:\Windows\system32\catroot2
2012-11-22 11:24:14 ----D---- C:\Windows\system32\FxsTmp
2012-11-15 18:26:17 ----D---- C:\Windows\rescache
2012-11-15 12:13:20 ----D---- C:\Windows\winsxs
2012-11-15 11:58:53 ----D---- C:\ProgramData\F-Secure
2012-11-15 11:53:17 ----D---- C:\Windows
2012-11-15 11:47:08 ----D---- C:\Windows\pss
2012-11-15 11:31:09 ----D---- C:\Program Files\Common Files
2012-11-15 11:30:32 ----A---- C:\Windows\system32\javaw.exe
2012-11-15 11:30:32 ----A---- C:\Windows\system32\java.exe
2012-11-15 11:30:31 ----A---- C:\Windows\system32\npDeployJava1.dll
2012-11-15 11:30:31 ----A---- C:\Windows\system32\deployJava1.dll
2012-11-15 11:30:29 ----D---- C:\Program Files\Java
2012-11-15 11:27:07 ----D---- C:\Program Files\Microsoft Silverlight
2012-11-15 09:36:39 ----D---- C:\ProgramData\Microsoft Help
2012-11-15 09:34:15 ----A---- C:\Windows\win.ini
2012-11-14 17:08:40 ----RSD---- C:\Windows\Fonts
2012-11-14 17:08:39 ----D---- C:\Windows\system32\migration
2012-11-14 17:08:39 ----D---- C:\Windows\system32\cs-CZ
2012-11-14 17:08:39 ----D---- C:\Windows\PolicyDefinitions
2012-11-14 17:08:38 ----D---- C:\Windows\system32\wbem
2012-11-14 17:08:38 ----D---- C:\Windows\system32\drivers\cs-CZ
2012-11-14 17:08:36 ----D---- C:\Program Files\Internet Explorer
2012-11-14 14:14:40 ----A---- C:\Windows\system32\MRT.exe
2012-11-14 14:06:11 ----D---- C:\Windows\system32\NDF
2012-11-14 10:30:29 ----SD---- C:\Users\noname\AppData\Roaming\Microsoft
2012-11-09 10:21:48 ----D---- C:\ProgramData\Kaspersky Lab
2012-11-08 22:03:28 ----SHD---- C:\System Volume Information
2012-11-07 13:53:00 ----D---- C:\ProgramData\Microsoft SkyDrive
2012-11-04 15:02:11 ----A---- C:\Windows\system32\Nmon7012K.dll
2012-11-04 13:33:24 ----D---- C:\Windows\system32\en-US
2012-11-04 13:33:24 ----D---- C:\Windows\system32\drivers\en-US
2012-11-02 20:20:06 ----D---- C:\Users\noname\AppData\Roaming\vlc
2012-10-31 15:52:14 ----D---- C:\Users\noname\AppData\Roaming\Ad-Aware Antivirus
2012-10-31 15:52:13 ----D---- C:\ProgramData\Lavasoft
2012-10-31 15:52:13 ----D---- C:\ProgramData\Ad-Aware Antivirus
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 avc3;avc3; C:\Windows\system32\DRIVERS\avc3.sys [2012-09-10 617984]
R0 gzflt;gzflt; C:\Windows\system32\DRIVERS\gzflt.sys [2012-04-11 154464]
R0 hpdskflt;HP Filter; C:\Windows\system32\DRIVERS\hpdskflt.sys [2011-05-13 25656]
R0 iaStor;Intel AHCI Controller; C:\Windows\system32\DRIVERS\iaStor.sys [2000-01-01 470848]
R0 KL1;kl1; C:\Windows\system32\DRIVERS\kl1.sys [2011-03-04 133208]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 173440]
R0 SFAUDIO;Sonic Focus DSP Driver; C:\Windows\system32\drivers\sfaudio.sys [2008-03-28 24064]
R0 trufos;trufos; C:\Windows\system32\DRIVERS\trufos.sys [2012-09-10 343456]
R1 A2DDA;A2 Direct Disk Access Support Driver; \??\C:\Program Files\Emsisoft Anti-Malware\a2ddax86.sys [2011-05-19 17904]
R1 a2injectiondriver;a2injectiondriver; \??\C:\Program Files\Emsisoft Anti-Malware\a2dix86.sys [2012-04-30 37856]
R1 a2util;a-squared Malware-IDS utility driver; \??\C:\Program Files\Emsisoft Anti-Malware\a2util32.sys [2010-05-05 11776]
R1 avipbb;avipbb; C:\Windows\system32\DRIVERS\avipbb.sys [2012-11-14 133824]
R1 avkmgr;avkmgr; C:\Windows\system32\DRIVERS\avkmgr.sys [2012-11-14 36552]
R1 BdfNdisf;BitDefender Firewall NDIS 6 Filter Driver; \??\c:\program files\common files\bitdefender\bitdefender firewall\bdfndisf6.sys [2012-09-03 77192]
R1 bdfwfpf;bdfwfpf; \??\C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf.sys [2011-11-14 90704]
R1 BDVEDISK;BDVEDISK; C:\Windows\system32\DRIVERS\bdvedisk.sys [2012-04-17 72704]
R1 eusk2par;Aladdin SmartKey Parallel Driver; \??\C:\Windows\system32\Drivers\eusk2par.sys [2008-12-18 25680]
R1 kl2;kl2; C:\Windows\system32\DRIVERS\kl2.sys [2011-03-04 11352]
R1 SBRE;SBRE; \??\C:\Windows\system32\drivers\SBREdrv.sys [2012-05-25 101112]
R1 SCDEmu;SCDEmu; C:\Windows\system32\drivers\SCDEmu.sys [2010-04-12 59388]
R1 ssmdrv;ssmdrv; C:\Windows\system32\DRIVERS\ssmdrv.sys [2012-08-27 28520]
R1 StarOpen;StarOpen; C:\Windows\system32\drivers\StarOpen.sys [2006-07-24 5632]
R2 avgntflt;avgntflt; C:\Windows\system32\DRIVERS\avgntflt.sys [2012-11-14 83432]
R2 regi;regi; \??\C:\Windows\system32\drivers\regi.sys [2010-11-15 13880]
R3 5U876UVC;HP Webcam [2 MP series]; C:\Windows\system32\DRIVERS\5U876.sys [2009-11-13 114688]
R3 a2acc;a2acc; \??\C:\PROGRAM FILES\EMSISOFT ANTI-MALWARE\a2accx86.sys [2012-04-30 54072]
R3 Accelerometer;HP Mobile Data Protection Sensor; C:\Windows\system32\DRIVERS\Accelerometer.sys [2011-05-13 35896]
R3 ADIHdAudAddService;ADI UAA Function Driver for High Definition Audio Service; C:\Windows\system32\drivers\ADIHdAud.sys [2009-05-18 381440]
R3 AgereSoftModem;Agere Systems Soft Modem; C:\Windows\system32\DRIVERS\AGRSM.sys [2009-07-13 1035776]
R3 AMPPAL;Virtuální adaptér Intel® Centrino® Wireless Bluetooth® + High Speed; C:\Windows\system32\DRIVERS\AMPPAL.sys [2012-01-09 141312]
R3 avchv;avchv Function Driver; C:\Windows\system32\DRIVERS\avchv.sys [2011-11-25 240184]
R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\Windows\system32\DRIVERS\GEARAspiWDM.sys [2012-08-21 26840]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd32.sys [2009-07-28 5924864]
R3 IntcHdmiAddService;Intel(R) High Definition Audio HDMI; C:\Windows\system32\drivers\IntcHdmi.sys [2009-05-26 122368]
R3 NETwNs32;___ Ovladač adaptéru řady Intel(R) Wireless WiFi Link 5000 pro systém Windows 7 32 Bit; C:\Windows\system32\DRIVERS\Netwsn00.sys [2012-02-20 10339840]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2010-06-04 1303728]
R3 teamviewervpn;TeamViewer VPN Adapter; C:\Windows\system32\DRIVERS\teamviewervpn.sys [2011-12-16 25088]
S1 KLIM6;Kaspersky Anti-Virus NDIS 6 Filter; C:\Windows\system32\DRIVERS\klim6.sys [2011-03-10 23856]
S2 Parvdm;Parvdm; C:\Windows\system32\DRIVERS\parvdm.sys [2009-07-14 8704]
S3 adusbser;AnyDATA USB Device for Legacy Serial Communication; C:\Windows\system32\DRIVERS\adusbser.sys [2006-12-20 97920]
S3 AEAudio;AE Audio Service; C:\Windows\system32\drivers\AEAudio.sys [2009-03-12 112896]
S3 aic78xx;aic78xx; C:\Windows\system32\DRIVERS\djsvs.sys [2009-07-14 70720]
S3 amdagp;Ovladač filtru AMD portu AGP; C:\Windows\system32\drivers\amdagp.sys [2009-07-14 53312]
S3 AMPPALP;Protokol Intel® Centrino® Wireless Bluetooth® + High Speed; C:\Windows\system32\DRIVERS\amppal.sys [2012-01-09 141312]
S3 ATSwpWDF;AuthenTec TruePrint USB WDF Driver; C:\Windows\System32\Drivers\ATSwpWDF.sys [2010-03-01 482176]
S3 avckf;avckf; C:\Windows\system32\DRIVERS\avckf.sys [2012-09-10 473248]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60x.sys [2009-07-13 229888]
S3 BDSandBox;BDSandBox; \??\C:\Windows\system32\drivers\bdsandbox.sys [2012-09-10 66392]
S3 BridgeMP;@%SystemRoot%\system32\bridgeres.dll,-1; C:\Windows\system32\DRIVERS\bridge.sys [2009-07-14 78336]
S3 BthEnum;Ovladač pro Bluetooth Request Block; C:\Windows\system32\drivers\BthEnum.sys [2009-07-14 34816]
S3 BthPan;Zařízení Bluetooth (síť PAN); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 93696]
S3 BTHPORT;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2012-07-06 393728]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2011-04-28 60416]
S3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudbus.sys [2012-07-30 83168]
S3 epmntdrv;epmntdrv; \??\C:\Windows\system32\epmntdrv.sys [2011-07-29 14216]
S3 eRootDrv;eRootDrv; C:\Windows\System32\DRIVERS\eRootDrv.sys [2012-09-26 23976]
S3 EuGdiDrv;EuGdiDrv; \??\C:\Windows\system32\EuGdiDrv.sys [2011-07-29 8456]
S3 ggflt;SEMC USB Flash Driver Filter; C:\Windows\system32\DRIVERS\ggflt.sys [2010-11-16 13224]
S3 ggsemc;SEMC USB Flash Driver; C:\Windows\system32\DRIVERS\ggsemc.sys [2010-11-16 25512]
S3 hitmanpro36;HitmanPro 3.6 Support Driver; \??\C:\Windows\system32\drivers\hitmanpro36.sys [2012-10-19 27424]
S3 klmouflt;Kaspersky Lab KLMOUFLT; C:\Windows\system32\DRIVERS\klmouflt.sys [2009-11-02 19984]
S3 Netaapl;Apple Mobile Device Ethernet Service; C:\Windows\system32\DRIVERS\netaapl.sys [2012-03-26 18432]
S3 NETw5s32;Ovladač adaptéru řady Intel(R) Wireless WiFi Link 5000 pro systém Windows 7 32 Bit; C:\Windows\system32\DRIVERS\NETw5s32.sys [2010-04-05 6758912]
S3 nmwcd;Nokia USB Phone Parent Driver; C:\Windows\system32\drivers\ccdcmb.sys [2012-01-09 18176]
S3 nmwcdc;Nokia USB Communication Driver; C:\Windows\system32\drivers\ccdcmbo.sys [2012-01-09 23168]
S3 nmwcdnsu;Nokia USB Flashing Phone Parent; C:\Windows\system32\drivers\nmwcdnsu.sys [2012-01-09 137600]
S3 nmwcdnsuc;Nokia USB Flashing Generic; C:\Windows\system32\drivers\nmwcdnsuc.sys [2012-01-09 8576]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\Windows\system32\DRIVERS\pccsmcfd.sys [2012-06-27 19072]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12368]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-20 133632]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 14848]
S3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 129536]
S3 seehcri;Sony Ericsson seehcri Device Driver; C:\Windows\system32\DRIVERS\seehcri.sys [2010-11-16 27632]
S3 sisagp;Filtr SIS sběrnice AGP; C:\Windows\system32\drivers\sisagp.sys [2009-07-14 52304]
S3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudmdm.sys [2012-07-30 181344]
S3 SWDUMon;SWDUMon; C:\Windows\system32\DRIVERS\SWDUMon.sys [2012-11-04 13024]
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\Windows\System32\drivers\tsusbflt.sys [2012-08-23 49664]
S3 upperdev;upperdev; C:\Windows\system32\DRIVERS\usbser_lowerflt.sys [2012-01-09 8192]
S3 USBAAPL;Apple Mobile USB Driver; C:\Windows\System32\Drivers\usbaapl.sys [2012-07-09 44032]
S3 usbscan;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2009-07-14 35840]
S3 usbser;USB Modem Driver; C:\Windows\system32\drivers\usbser.sys [2010-11-20 27648]
S3 UsbserFilt;UsbserFilt; C:\Windows\system32\DRIVERS\usbser_lowerfltj.sys [2012-01-09 8192]
S3 viaagp;Filtr VIA sběrnice AGP; C:\Windows\system32\drivers\viaagp.sys [2009-07-14 53328]
S3 ViaC7;VIA C7 Processor Driver; C:\Windows\system32\DRIVERS\viac7.sys [2009-07-14 52736]
S3 vsbus;Virtual Serial Bus Enumerator; C:\Windows\system32\DRIVERS\vsb.sys [2008-07-23 15264]
S3 vserial;ELTIMA Virtual Serial Ports Driver; C:\Windows\System32\DRIVERS\vserial.sys [2008-07-23 47744]
S4 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-20 388096]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 a2AntiMalware;Emsisoft Anti-Malware 7.0 - Service; C:\Program Files\Emsisoft Anti-Malware\a2service.exe [2012-10-06 3084176]
R2 ABBYY.Licensing.FineReader.Sprint.9.0;ABBYY FineReader 9.0 Sprint Licensing Service; C:\Program Files\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe [2009-05-14 759048]
R2 AEADIFilters;Andrea ADI Filters Service; C:\Windows\system32\AEADISRV.EXE [2008-07-15 90112]
R2 AgereModemAudio;Agere Modem Call Progress Audio; C:\Program Files\LSI SoftModem\agrsmsvc.exe [2009-12-03 26112]
R2 AMPPALR3;Intel® Centrino® Wireless Bluetooth® + High Speed Service; C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe [2012-01-09 509440]
R2 AntiVirService;Avira Real-Time Protection; D:\Program Files\Avira\AntiVir Desktop\avguard.exe [2012-11-26 109344]
R2 AntiVirSchedulerService;Avira Scheduler; D:\Program Files\Avira\AntiVir Desktop\sched.exe [2012-11-26 85280]
R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2012-08-11 55184]
R2 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2011-08-30 390504]
R2 BTHSSecurityMgr;Intel(R) Centrino(R) Wireless Bluetooth(R) + High Speed Security Service; C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe [2012-01-17 104208]
R2 EPSON_EB_RPCV4_04;EPSON V5 Service4(04); C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50ST7.EXE [2012-01-11 156160]
R2 EPSON_PM_RPCV4_04;EPSON V3 Service4(04); C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50RP7.EXE [2012-01-11 125440]
R2 EpsonBidirectionalService;EpsonBidirectionalService; C:\Program Files\Common Files\EPSON\EBAPI\eEBSVC.exe [2006-12-19 94208]
R2 EvtEng;Intel(R) PROSet/Wireless Event Log; C:\Program Files\Intel\WiFi\bin\EvtEng.exe [2012-02-26 498960]
R2 HP Support Assistant Service;HP Support Assistant Service; C:\Program Files\Hewlett-Packard\HP Support Framework\hpsa_service.exe [2011-06-21 85560]
R2 HPDrvMntSvc.exe;HP Quick Synchronization Service; C:\Program Files\Hewlett-Packard\Shared\HPDrvMntSvc.exe [2011-03-28 94264]
R2 hpsrv;HP Service; C:\Windows\system32\Hpservice.exe [2011-05-13 26168]
R2 IAStorDataMgrSvc;Úložná technologie Intel(R) Rapid; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2000-01-01 13632]
R2 LightScribeService;LightScribeService Direct Disc Labeling Service; C:\Program Files\Common Files\LightScribe\LSSrvc.exe [2009-06-17 73728]
R2 MNSFramework;MNS Framework; C:\Windows\system32\MNSFramework.exe [2008-09-03 186360]
R2 Net Driver HPZ12;Net Driver HPZ12; C:\Windows\System32\svchost.exe [2009-07-14 20992]
R2 Pml Driver HPZ12;Pml Driver HPZ12; C:\Windows\System32\svchost.exe [2009-07-14 20992]
R2 RegSrvc;Intel(R) PROSet/Wireless Registry Service; C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe [2012-02-26 107792]
R2 StatusAgent4;Epson Printer Status Agent4; C:\Windows\system32\SAgent4.exe [2006-12-20 131072]
R3 hpqwmiex;HP Software Framework Service; C:\Program Files\Hewlett-Packard\Shared\hpqWmiEx.exe [2011-03-28 799800]
S2 AVP;Služba Kaspersky Anti-Virus; C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2012\avp.exe -r []
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2011-07-29 136176]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2010-03-18 35160]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2011-07-29 136176]
S3 gusvc;Google Updater Service; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2011-02-08 136120]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-03 69632]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe [2008-10-25 65888]
S3 MyWiFiDHCPDNS;Wireless PAN DHCP Server; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [2012-02-26 241936]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2008-11-04 441712]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 ServiceLayer;ServiceLayer; C:\Program Files\PC Connectivity Solution\ServiceLayer.exe [2012-08-01 724888]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S4 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S4 Nero BackItUp Scheduler 4.0;Nero BackItUp Scheduler 4.0; C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe [2009-07-20 935208]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
-----------------EOF-----------------
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Zdravím a prosím o kontrolu. Předem díky
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Re: Zdravím a prosím o kontrolu. Předem díky
Zdravim 
Dle kolegy aplikujte SecurityCheck
Dle kolegy aplikujte SecurityCheck
stell píše:Stiahni SecurityCheck
Ulož ho na plochu.
Dvakrát kliknite SecurityCheck.exe a postupujte podľa pokynov na obrazovke .
po skonceni skenu Notepad sa automaticky otvorí s názvom checkup.txt,obsah vloz sem.
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen
od 1. února 2011.
Člen
od 1. února 2011.Re: Zdravím a prosím o kontrolu. Předem díky
Ten Security check mi pise: Anti-malware/Other utilities Check Done! a nic víc se neděje
Re: Zdravím a prosím o kontrolu. Předem díky
A neni v miste jeho spusteny vytvoren soubor checkup.txt 
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen od 1. února 2011.
Člen
od 1. února 2011.Re: Zdravím a prosím o kontrolu. Předem díky
Nikde nic. Nejde ani vypnout resp. zavřít to okno.
Re: Zdravím a prosím o kontrolu. Předem díky
Natvrdo jej ukoncete pres Spravce uloh Stahnete OTL http://oldtimer.geekstogo.com/OTL.exe a ulozte jej na plochu
- Pokud pouzivate Win Vista ci W7, kliknete na OTL pravym a dejte Run As Administrator ci Spustit jako spravce
- Pokud pouzivate 64bitovy OS, zkontrolujte, zda-li je zaskrtnuty ctverecek u Pro 64 bitové OS, pokud ne, zaskrtnete jej
- Zaskrtnete okenko Pro vsechny uzivatele
- Zaskrtnete okenko Kontrola na havet "LOP"
- Zaskrtnete okenko Kontrola na havet "Purity"
- Stari souboru zmente z 30 dnu na 7 dnu
- Do spodniho okenka Vlastni skenovani/opravy vlozte skript nize
Kód: Vybrat vše
CREATERESTOREPOINT netsvcs drivers32 savembr:0 /md5start atapi.sys autochk.exe cdrom.sys explorer.exe hal.dll scecli.dll services.exe svchost.exe tcpip.sys userinit.exe winlogon.exe /md5stop %systemroot%*.* /U /s %SYSTEMDRIVE%\*.exe %ALLUSERSPROFILE%\Application Data\*. %ALLUSERSPROFILE%\Application Data\*.exe /s %APPDATA%\*. %APPDATA%\*.exe /s %systemroot%\*. /mp /s %systemroot%\system32\*.dll /lockedfiles %systemroot%\Tasks\*.job %systemroot%\system32\drivers\*.sys /lockedfiles %systemroot%\System32\config\*.sav %systemroot%\system32\*.dll /lockedfiles %systemroot%\system32\drivers\*.sys /3 %systemroot%\system32\*.* /3 %SYSTEMDRIVE%\*.exe HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s %PROGRAMFILES%\Mozilla Firefox\firefox.exe /md5 %PROGRAMFILES%\Internet Explorer\iexplore.exe /md5 %PROGRAMFILES%\Opera\opera.exe /md5 %PROGRAMFILES%\Google\Chrome\Application\chrome.exe /md5 %SystemDrive%\PhysicalMBR.bin /md5 *crack* /s *keygen* /s *loader* /s- Kliknete na tlacitko Prohledat
- Po dokonceni skenu (cca 10 az 15 min) se objevi logy OTL.txt a Extras.txt, oba sem vlozte
- Pokud budou logy dlouhe (forum bude kricet o prekroceni maximalniho poctu znaku), tak je rozdelte do vice prispevku
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen od 1. února 2011.
Člen
od 1. února 2011.Re: Zdravím a prosím o kontrolu. Předem díky
OTL logfile created on: 28.11.2012 16:06:58 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\noname\Desktop
Ultimate Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy
2,93 Gb Total Physical Memory | 1,48 Gb Available Physical Memory | 50,54% Memory free
5,86 Gb Paging File | 3,91 Gb Available in Paging File | 66,72% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 48,97 Gb Total Space | 5,07 Gb Free Space | 10,35% Space Free | Partition Type: NTFS
Drive D: | 249,02 Gb Total Space | 223,04 Gb Free Space | 89,57% Space Free | Partition Type: NTFS
Computer Name: NONAME-PC | User Name: noname | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 7 Days
========== Processes (SafeList) ==========
PRC - [2012.11.28 16:03:43 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\noname\Desktop\OTL.exe
PRC - [2012.11.26 15:07:36 | 000,085,280 | ---- | M] (Avira Operations GmbH & Co. KG) -- D:\Program Files\Avira\AntiVir Desktop\sched.exe
PRC - [2012.11.26 15:07:12 | 000,384,800 | ---- | M] (Avira Operations GmbH & Co. KG) -- D:\Program Files\Avira\AntiVir Desktop\avgnt.exe
PRC - [2012.11.26 15:07:12 | 000,109,344 | ---- | M] (Avira Operations GmbH & Co. KG) -- D:\Program Files\Avira\AntiVir Desktop\avguard.exe
PRC - [2012.10.25 15:45:50 | 016,052,192 | ---- | M] (Google) -- C:\Program Files\Google\Drive\googledrivesync.exe
PRC - [2012.10.17 17:02:24 | 003,364,264 | ---- | M] (Emsisoft GmbH) -- C:\Program Files\Emsisoft Anti-Malware\a2guard.exe
PRC - [2012.10.06 17:01:48 | 003,084,176 | ---- | M] (Emsisoft GmbH) -- C:\Program Files\Emsisoft Anti-Malware\a2service.exe
PRC - [2012.09.19 19:20:40 | 000,079,136 | ---- | M] (Avira Operations GmbH & Co. KG) -- D:\Program Files\Avira\AntiVir Desktop\avshadow.exe
PRC - [2012.08.20 18:37:58 | 000,271,360 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\conhost.exe
PRC - [2012.02.26 04:07:52 | 002,324,752 | ---- | M] (Intel® Corporation) -- C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
PRC - [2012.02.26 04:07:32 | 000,498,960 | ---- | M] (Intel(R) Corporation) -- C:\Program Files\Intel\WiFi\bin\EvtEng.exe
PRC - [2012.02.26 04:07:26 | 000,107,792 | ---- | M] (Intel(R) Corporation) -- C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
PRC - [2012.01.17 15:12:30 | 000,104,208 | ---- | M] (Intel(R) Corporation) -- C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe
PRC - [2012.01.11 16:42:03 | 000,156,160 | ---- | M] (SEIKO EPSON CORPORATION) -- C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50ST7.EXE
PRC - [2012.01.11 16:42:03 | 000,125,440 | ---- | M] (SEIKO EPSON CORPORATION) -- C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50RP7.EXE
PRC - [2012.01.09 11:39:32 | 000,509,440 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe
PRC - [2011.06.21 14:57:34 | 000,085,560 | ---- | M] (Hewlett-Packard Company) -- C:\Program Files\Hewlett-Packard\HP Support Framework\HPSA_Service.exe
PRC - [2011.03.28 16:07:50 | 000,094,264 | ---- | M] (Hewlett-Packard Company) -- C:\Program Files\Hewlett-Packard\Shared\HPDrvMntSvc.exe
PRC - [2011.03.28 16:06:24 | 000,311,352 | ---- | M] (Hewlett-Packard Development Company L.P.) -- C:\Program Files\Hewlett-Packard\Shared\hpCaslNotification.exe
PRC - [2011.02.25 06:30:54 | 002,616,320 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
PRC - [2010.11.20 13:17:47 | 000,049,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\taskhost.exe
PRC - [2009.12.03 20:28:08 | 000,026,112 | ---- | M] (LSI Corporation) -- C:\Program Files\LSI SoftModem\agrsmsvc.exe
PRC - [2009.05.14 16:07:14 | 000,759,048 | ---- | M] (ABBYY) -- C:\Program Files\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe
PRC - [2008.09.03 18:27:56 | 000,186,360 | ---- | M] () -- C:\Windows\System32\MNSFramework.exe
PRC - [2008.07.15 16:09:52 | 000,090,112 | ---- | M] (Andrea Electronics Corporation) -- C:\Windows\System32\AEADISRV.EXE
PRC - [2006.12.20 20:14:00 | 000,131,072 | ---- | M] (SEIKO EPSON CORPORATION) -- C:\Windows\System32\SAgent4.exe
PRC - [2006.12.19 18:23:20 | 000,094,208 | ---- | M] (SEIKO EPSON CORPORATION) -- C:\Program Files\Common Files\EPSON\EBAPI\eEBSvc.exe
PRC - [2000.01.01 01:00:00 | 000,013,632 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
========== Modules (No Company Name) ==========
MOD - [2012.11.28 15:57:40 | 001,024,024 | ---- | M] () -- C:\Users\noname\AppData\Local\Temp\_MEI10842\windows._cacheinvalidation.pyd
MOD - [2012.11.28 15:57:40 | 000,792,576 | ---- | M] () -- C:\Users\noname\AppData\Local\Temp\_MEI10842\wx._gdi_.pyd
MOD - [2012.11.28 15:57:40 | 000,571,392 | ---- | M] () -- C:\Users\noname\AppData\Local\Temp\_MEI10842\pysqlite2._sqlite.pyd
MOD - [2012.11.28 15:57:40 | 000,263,168 | ---- | M] () -- C:\Users\noname\AppData\Local\Temp\_MEI10842\win32com.shell.shell.pyd
MOD - [2012.11.28 15:57:40 | 000,096,256 | ---- | M] () -- C:\Users\noname\AppData\Local\Temp\_MEI10842\win32api.pyd
MOD - [2012.11.28 15:57:40 | 000,086,016 | ---- | M] () -- C:\Users\noname\AppData\Local\Temp\_MEI10842\_elementtree.pyd
MOD - [2012.11.28 15:57:40 | 000,070,656 | ---- | M] () -- C:\Users\noname\AppData\Local\Temp\_MEI10842\wx._html2.pyd
MOD - [2012.11.28 15:57:40 | 000,040,448 | ---- | M] () -- C:\Users\noname\AppData\Local\Temp\_MEI10842\_socket.pyd
MOD - [2012.11.28 15:57:40 | 000,023,040 | ---- | M] () -- C:\Users\noname\AppData\Local\Temp\_MEI10842\win32ts.pyd
MOD - [2012.11.28 15:57:40 | 000,011,776 | ---- | M] () -- C:\Users\noname\AppData\Local\Temp\_MEI10842\win32crypt.pyd
MOD - [2012.11.28 15:57:39 | 001,169,408 | ---- | M] () -- C:\Users\noname\AppData\Local\Temp\_MEI10842\wx._core_.pyd
MOD - [2012.11.28 15:57:39 | 000,807,424 | ---- | M] () -- C:\Users\noname\AppData\Local\Temp\_MEI10842\wx._windows_.pyd
MOD - [2012.11.28 15:57:39 | 000,731,136 | ---- | M] () -- C:\Users\noname\AppData\Local\Temp\_MEI10842\wx._misc_.pyd
MOD - [2012.11.28 15:57:39 | 000,645,120 | ---- | M] () -- C:\Users\noname\AppData\Local\Temp\_MEI10842\_ssl.pyd
MOD - [2012.11.28 15:57:39 | 000,354,304 | ---- | M] () -- C:\Users\noname\AppData\Local\Temp\_MEI10842\pythoncom26.dll
MOD - [2012.11.28 15:57:39 | 000,311,808 | ---- | M] () -- C:\Users\noname\AppData\Local\Temp\_MEI10842\_hashlib.pyd
MOD - [2012.11.28 15:57:39 | 000,121,856 | ---- | M] () -- C:\Users\noname\AppData\Local\Temp\_MEI10842\wx._wizard.pyd
MOD - [2012.11.28 15:57:39 | 000,111,104 | ---- | M] () -- C:\Users\noname\AppData\Local\Temp\_MEI10842\win32file.pyd
MOD - [2012.11.28 15:57:39 | 000,110,592 | ---- | M] () -- C:\Users\noname\AppData\Local\Temp\_MEI10842\win32security.pyd
MOD - [2012.11.28 15:57:39 | 000,110,592 | ---- | M] () -- C:\Users\noname\AppData\Local\Temp\_MEI10842\pywintypes26.dll
MOD - [2012.11.28 15:57:39 | 000,073,728 | ---- | M] () -- C:\Users\noname\AppData\Local\Temp\_MEI10842\_ctypes.pyd
MOD - [2012.11.28 15:57:39 | 000,039,424 | ---- | M] () -- C:\Users\noname\AppData\Local\Temp\_MEI10842\win32inet.pyd
MOD - [2012.11.28 15:57:39 | 000,036,352 | ---- | M] () -- C:\Users\noname\AppData\Local\Temp\_MEI10842\win32process.pyd
MOD - [2012.11.28 15:57:39 | 000,022,528 | ---- | M] () -- C:\Users\noname\AppData\Local\Temp\_MEI10842\win32pdh.pyd
MOD - [2012.11.28 15:57:39 | 000,017,920 | ---- | M] () -- C:\Users\noname\AppData\Local\Temp\_MEI10842\win32profile.pyd
MOD - [2012.11.28 15:57:38 | 001,056,256 | ---- | M] () -- C:\Users\noname\AppData\Local\Temp\_MEI10842\wx._controls_.pyd
MOD - [2012.11.28 15:57:38 | 000,585,728 | ---- | M] () -- C:\Users\noname\AppData\Local\Temp\_MEI10842\unicodedata.pyd
MOD - [2012.11.28 15:57:38 | 000,153,088 | ---- | M] () -- C:\Users\noname\AppData\Local\Temp\_MEI10842\pyexpat.pyd
MOD - [2012.11.28 15:57:38 | 000,017,920 | ---- | M] () -- C:\Users\noname\AppData\Local\Temp\_MEI10842\win32event.pyd
MOD - [2012.11.28 15:57:38 | 000,011,776 | ---- | M] () -- C:\Users\noname\AppData\Local\Temp\_MEI10842\select.pyd
MOD - [2012.11.14 17:12:57 | 011,493,376 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\187d7c66735c533de851c76384f86912\mscorlib.ni.dll
MOD - [2012.10.31 23:15:05 | 000,460,312 | ---- | M] () -- C:\Users\noname\AppData\Local\Google\Chrome\Application\23.0.1271.64\ppGoogleNaClPluginChrome.dll
MOD - [2012.10.31 23:15:04 | 012,455,448 | ---- | M] () -- C:\Users\noname\AppData\Local\Google\Chrome\Application\23.0.1271.64\PepperFlash\pepflashplayer.dll
MOD - [2012.10.31 23:15:02 | 004,007,448 | ---- | M] () -- C:\Users\noname\AppData\Local\Google\Chrome\Application\23.0.1271.64\pdf.dll
MOD - [2012.10.31 23:13:47 | 000,587,288 | ---- | M] () -- C:\Users\noname\AppData\Local\Google\Chrome\Application\23.0.1271.64\libglesv2.dll
MOD - [2012.10.31 23:13:46 | 000,123,928 | ---- | M] () -- C:\Users\noname\AppData\Local\Google\Chrome\Application\23.0.1271.64\libegl.dll
MOD - [2012.10.31 23:13:35 | 000,156,712 | ---- | M] () -- C:\Users\noname\AppData\Local\Google\Chrome\Application\23.0.1271.64\avutil-51.dll
MOD - [2012.10.31 23:13:34 | 000,274,984 | ---- | M] () -- C:\Users\noname\AppData\Local\Google\Chrome\Application\23.0.1271.64\avformat-54.dll
MOD - [2012.10.31 23:13:32 | 002,168,360 | ---- | M] () -- C:\Users\noname\AppData\Local\Google\Chrome\Application\23.0.1271.64\avcodec-54.dll
MOD - [2012.08.31 11:59:23 | 003,198,976 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\System\2.0.0.0__b77a5c561934e089\System.dll
MOD - [2012.04.23 23:35:09 | 000,630,784 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\System.Drawing\2.0.0.0__b03f5f7f11d50a3a\System.Drawing.dll
MOD - [2012.03.21 23:32:36 | 005,025,792 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\System.Windows.Forms\2.0.0.0__b77a5c561934e089\System.Windows.Forms.dll
MOD - [2010.11.13 03:37:03 | 000,303,104 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\mscorlib.resources\2.0.0.0_cs_b77a5c561934e089\mscorlib.resources.dll
MOD - [2010.11.05 02:58:14 | 002,048,000 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\System.Xml\2.0.0.0__b77a5c561934e089\System.Xml.dll
MOD - [2010.11.05 02:58:09 | 000,385,024 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\System.Management\2.0.0.0__b03f5f7f11d50a3a\System.Management.dll
MOD - [2010.11.05 02:58:04 | 000,425,984 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\System.Configuration\2.0.0.0__b03f5f7f11d50a3a\System.Configuration.dll
MOD - [2009.06.10 22:22:40 | 000,010,752 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\Accessibility\2.0.0.0__b03f5f7f11d50a3a\Accessibility.dll
========== Services (SafeList) ==========
SRV - File not found [Auto | Stopped] -- C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2012\avp.exe -- (AVP)
SRV - [2012.11.26 15:07:36 | 000,085,280 | ---- | M] (Avira Operations GmbH & Co. KG) [Auto | Running] -- D:\Program Files\Avira\AntiVir Desktop\sched.exe -- (AntiVirSchedulerService)
SRV - [2012.11.26 15:07:12 | 000,109,344 | ---- | M] (Avira Operations GmbH & Co. KG) [Auto | Running] -- D:\Program Files\Avira\AntiVir Desktop\avguard.exe -- (AntiVirService)
SRV - [2012.10.06 17:01:48 | 003,084,176 | ---- | M] (Emsisoft GmbH) [Auto | Running] -- C:\Program Files\Emsisoft Anti-Malware\a2service.exe -- (a2AntiMalware)
SRV - [2012.08.01 15:07:16 | 000,724,888 | ---- | M] (Nokia) [On_Demand | Stopped] -- C:\Program Files\PC Connectivity Solution\ServiceLayer.exe -- (ServiceLayer)
SRV - [2012.02.26 04:07:52 | 002,324,752 | ---- | M] (Intel® Corporation) [Auto | Running] -- C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe -- (ZeroConfigService)
SRV - [2012.02.26 04:07:42 | 000,241,936 | ---- | M] () [On_Demand | Stopped] -- C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe -- (MyWiFiDHCPDNS)
SRV - [2012.02.26 04:07:32 | 000,498,960 | ---- | M] (Intel(R) Corporation) [Auto | Running] -- C:\Program Files\Intel\WiFi\bin\EvtEng.exe -- (EvtEng)
SRV - [2012.02.26 04:07:26 | 000,107,792 | ---- | M] (Intel(R) Corporation) [Auto | Running] -- C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe -- (RegSrvc)
SRV - [2012.01.17 15:12:30 | 000,104,208 | ---- | M] (Intel(R) Corporation) [Auto | Running] -- C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe -- (BTHSSecurityMgr)
SRV - [2012.01.11 16:42:03 | 000,156,160 | ---- | M] (SEIKO EPSON CORPORATION) [Auto | Running] -- C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50ST7.EXE -- (EPSON_EB_RPCV4_04)
SRV - [2012.01.11 16:42:03 | 000,125,440 | ---- | M] (SEIKO EPSON CORPORATION) [Auto | Running] -- C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50RP7.EXE -- (EPSON_PM_RPCV4_04)
SRV - [2012.01.09 11:39:32 | 000,509,440 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe -- (AMPPALR3)
SRV - [2011.06.21 14:57:34 | 000,085,560 | ---- | M] (Hewlett-Packard Company) [Auto | Running] -- C:\Program Files\Hewlett-Packard\HP Support Framework\HPSA_Service.exe -- (HP Support Assistant Service)
SRV - [2011.03.28 16:07:50 | 000,094,264 | ---- | M] (Hewlett-Packard Company) [Auto | Running] -- C:\Program Files\Hewlett-Packard\Shared\HPDrvMntSvc.exe -- (HPDrvMntSvc.exe)
SRV - [2010.08.22 10:28:09 | 001,343,400 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\Wat\WatAdminSvc.exe -- (WatAdminSvc)
SRV - [2009.12.03 20:28:08 | 000,026,112 | ---- | M] (LSI Corporation) [Auto | Running] -- C:\Program Files\LSI SoftModem\agrsmsvc.exe -- (AgereModemAudio)
SRV - [2009.07.20 10:51:52 | 000,935,208 | ---- | M] (Nero AG) [Disabled | Stopped] -- C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe -- (Nero BackItUp Scheduler 4.0)
SRV - [2009.07.14 02:16:13 | 000,025,088 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\sensrsvc.dll -- (SensrSvc)
SRV - [2009.07.14 02:16:12 | 001,004,544 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\PeerDistSvc.dll -- (PeerDistSvc)
SRV - [2009.07.14 02:15:41 | 000,680,960 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2009.05.14 16:07:14 | 000,759,048 | ---- | M] (ABBYY) [Auto | Running] -- C:\Program Files\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe -- (ABBYY.Licensing.FineReader.Sprint.9.0)
SRV - [2008.09.03 18:27:56 | 000,186,360 | ---- | M] () [Auto | Running] -- C:\Windows\System32\MNSFramework.exe -- (MNSFramework)
SRV - [2008.07.15 16:09:52 | 000,090,112 | ---- | M] (Andrea Electronics Corporation) [Auto | Running] -- C:\Windows\System32\AEADISRV.EXE -- (AEADIFilters)
SRV - [2006.12.20 20:14:00 | 000,131,072 | ---- | M] (SEIKO EPSON CORPORATION) [Auto | Running] -- C:\Windows\System32\SAgent4.exe -- (StatusAgent4)
SRV - [2006.12.19 18:23:20 | 000,094,208 | ---- | M] (SEIKO EPSON CORPORATION) [Auto | Running] -- C:\Program Files\Common Files\EPSON\EBAPI\eEBSvc.exe -- (EpsonBidirectionalService)
SRV - [2000.01.01 01:00:00 | 000,013,632 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe -- (IAStorDataMgrSvc)
========== Driver Services (SafeList) ==========
DRV - [2012.11.14 15:49:42 | 000,133,824 | ---- | M] (Avira Operations GmbH & Co. KG) [Kernel | System | Running] -- C:\Windows\System32\drivers\avipbb.sys -- (avipbb)
DRV - [2012.11.14 15:49:42 | 000,083,432 | ---- | M] (Avira Operations GmbH & Co. KG) [File_System | Auto | Running] -- C:\Windows\System32\drivers\avgntflt.sys -- (avgntflt)
DRV - [2012.11.14 15:49:42 | 000,036,552 | ---- | M] (Avira Operations GmbH & Co. KG) [Kernel | System | Running] -- C:\Windows\System32\drivers\avkmgr.sys -- (avkmgr)
DRV - [2012.11.04 14:56:54 | 000,013,024 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\SWDUMon.sys -- (SWDUMon)
DRV - [2012.10.19 14:59:21 | 000,027,424 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\hitmanpro36.sys -- (hitmanpro36)
DRV - [2012.09.26 17:30:18 | 000,023,976 | ---- | M] (MicroWorld Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\eRootDrv.sys -- (eRootDrv)
DRV - [2012.09.10 10:51:36 | 000,473,248 | ---- | M] (BitDefender) [File_System | On_Demand | Stopped] -- C:\Windows\System32\drivers\avckf.sys -- (avckf)
DRV - [2012.09.10 10:51:33 | 000,617,984 | ---- | M] (BitDefender) [File_System | Boot | Running] -- C:\Windows\System32\drivers\avc3.sys -- (avc3)
DRV - [2012.09.10 10:50:59 | 000,066,392 | ---- | M] (BitDefender SRL) [File_System | On_Demand | Stopped] -- C:\Windows\System32\drivers\bdsandbox.sys -- (BDSandBox)
DRV - [2012.09.10 10:50:45 | 000,343,456 | ---- | M] (BitDefender S.R.L.) [File_System | Boot | Running] -- C:\Windows\System32\drivers\trufos.sys -- (trufos)
DRV - [2012.09.03 11:03:47 | 000,077,192 | ---- | M] (BitDefender LLC) [Kernel | System | Running] -- c:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfndisf6.sys -- (BdfNdisf)
DRV - [2012.08.27 15:50:24 | 000,028,520 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\Windows\System32\drivers\ssmdrv.sys -- (ssmdrv)
DRV - [2012.08.23 15:44:32 | 000,014,848 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\rdpvideominiport.sys -- (RdpVideoMiniport)
DRV - [2012.08.23 15:40:25 | 000,049,664 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV - [2012.07.30 12:32:08 | 000,181,344 | ---- | M] (DEVGURU Co., LTD.(www.devguru.co.kr)) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ssudmdm.sys -- (ssudmdm)
DRV - [2012.07.30 12:32:08 | 000,083,168 | ---- | M] (DEVGURU Co., LTD.(www.devguru.co.kr)) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ssudbus.sys -- (dg_ssudbus)
DRV - [2012.06.27 14:18:52 | 000,019,072 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\pccsmcfd.sys -- (pccsmcfd)
DRV - [2012.05.25 12:14:24 | 000,101,112 | ---- | M] (GFI Software) [Kernel | System | Running] -- C:\Windows\System32\drivers\SBREDrv.sys -- (SBRE)
DRV - [2012.04.30 17:45:28 | 000,054,072 | ---- | M] (Emsisoft GmbH) [File_System | On_Demand | Running] -- C:\Program Files\Emsisoft Anti-Malware\a2accx86.sys -- (a2acc)
DRV - [2012.04.30 17:45:00 | 000,037,856 | ---- | M] (Emsisoft GmbH) [File_System | System | Running] -- C:\Program Files\Emsisoft Anti-Malware\a2dix86.sys -- (a2injectiondriver)
DRV - [2012.04.17 13:40:22 | 000,072,704 | ---- | M] (BitDefender) [Kernel | System | Running] -- C:\Windows\System32\drivers\bdvedisk.sys -- (BDVEDISK)
DRV - [2012.04.11 16:03:33 | 000,154,464 | ---- | M] (BitDefender LLC) [File_System | Boot | Running] -- C:\Windows\System32\drivers\gzflt.sys -- (gzflt)
DRV - [2012.03.27 15:48:00 | 000,319,264 | ---- | M] (Marvell) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\yk62x86.sys -- (yukonw7)
DRV - [2012.03.26 13:50:12 | 000,018,432 | ---- | M] (Apple Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\netaapl.sys -- (Netaapl)
DRV - [2012.02.20 09:18:20 | 010,339,840 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\Netwsn00.sys -- (NETwNs32)
DRV - [2012.01.09 16:28:20 | 000,137,600 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\nmwcdnsu.sys -- (nmwcdnsu)
DRV - [2012.01.09 16:28:20 | 000,023,168 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ccdcmbo.sys -- (nmwcdc)
DRV - [2012.01.09 16:28:20 | 000,018,176 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ccdcmb.sys -- (nmwcd)
DRV - [2012.01.09 16:28:20 | 000,008,576 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\nmwcdnsuc.sys -- (nmwcdnsuc)
DRV - [2012.01.09 16:28:20 | 000,008,192 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\usbser_lowerfltj.sys -- (UsbserFilt)
DRV - [2012.01.09 16:28:20 | 000,008,192 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\usbser_lowerflt.sys -- (upperdev)
DRV - [2012.01.09 11:32:12 | 000,141,312 | ---- | M] (Windows (R) Win 7 DDK provider) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\AmpPal.sys -- (AMPPALP)
DRV - [2012.01.09 11:32:12 | 000,141,312 | ---- | M] (Windows (R) Win 7 DDK provider) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\AmpPal.sys -- (AMPPAL)
DRV - [2011.12.16 16:53:01 | 000,025,088 | ---- | M] (TeamViewer GmbH) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\teamviewervpn.sys -- (teamviewervpn)
DRV - [2011.11.25 13:59:40 | 000,240,184 | ---- | M] (BitDefender) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\avchv.sys -- (avchv)
DRV - [2011.11.14 19:16:27 | 000,090,704 | ---- | M] (BitDefender LLC) [Kernel | System | Running] -- C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf.sys -- (bdfwfpf)
DRV - [2011.07.29 12:54:56 | 000,014,216 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\System32\epmntdrv.sys -- (epmntdrv)
DRV - [2011.07.29 12:54:56 | 000,008,456 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\System32\EuGdiDrv.sys -- (EuGdiDrv)
DRV - [2011.05.19 13:10:34 | 000,017,904 | ---- | M] (Emsi Software GmbH) [Kernel | System | Running] -- C:\Program Files\Emsisoft Anti-Malware\a2ddax86.sys -- (A2DDA)
DRV - [2011.05.13 17:57:42 | 000,025,656 | ---- | M] (Hewlett-Packard Company) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\hpdskflt.sys -- (hpdskflt)
DRV - [2011.05.13 17:57:20 | 000,035,896 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\Accelerometer.sys -- (Accelerometer)
DRV - [2011.03.10 18:36:18 | 000,023,856 | ---- | M] (Kaspersky Lab ZAO) [Kernel | System | Stopped] -- C:\Windows\System32\drivers\klim6.sys -- (KLIM6)
DRV - [2011.03.04 13:23:20 | 000,011,352 | ---- | M] (Kaspersky Lab ZAO) [Kernel | System | Running] -- C:\Windows\System32\drivers\kl2.sys -- (kl2)
DRV - [2011.03.04 13:23:14 | 000,133,208 | ---- | M] (Kaspersky Lab ZAO) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\kl1.sys -- (KL1)
DRV - [2010.11.20 10:59:44 | 000,035,968 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\winusb.sys -- (WinUsb)
DRV - [2010.11.16 14:09:00 | 000,027,632 | ---- | M] (Sony Ericsson Mobile Communications) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\seehcri.sys -- (seehcri)
DRV - [2010.11.16 14:08:35 | 000,025,512 | ---- | M] (Sony Ericsson Mobile Communications) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ggsemc.sys -- (ggsemc)
DRV - [2010.11.16 14:08:35 | 000,013,224 | ---- | M] (Sony Ericsson Mobile Communications) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ggflt.sys -- (ggflt)
DRV - [2010.11.15 23:24:48 | 000,013,880 | ---- | M] (InterVideo) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\regi.sys -- (regi)
DRV - [2010.05.05 08:40:32 | 000,011,776 | ---- | M] (Emsi Software GmbH) [Kernel | System | Running] -- C:\Program Files\Emsisoft Anti-Malware\a2util32.sys -- (a2util)
DRV - [2010.04.12 09:44:34 | 000,059,388 | ---- | M] (PowerISO Computing, Inc.) [Kernel | System | Running] -- C:\Windows\System32\drivers\scdemu.sys -- (SCDEmu)
DRV - [2010.04.05 09:43:16 | 006,758,912 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\NETw5s32.sys -- (NETw5s32)
DRV - [2010.03.01 13:56:28 | 000,482,176 | ---- | M] (AuthenTec, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ATSwpWDF.sys -- (ATSwpWDF)
DRV - [2009.11.13 17:20:28 | 000,114,688 | ---- | M] (Ricoh co.,Ltd.) [2 MP series] [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\5U876.sys -- (5U876UVC)
DRV - [2009.11.02 20:27:16 | 000,019,984 | ---- | M] (Kaspersky Lab) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\klmouflt.sys -- (klmouflt)
DRV - [2009.07.14 01:18:07 | 000,017,920 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\WSDPrint.sys -- (WSDPrintDevice)
DRV - [2009.07.14 01:14:49 | 000,020,480 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\WSDScan.sys -- (WSDScan)
DRV - [2009.07.14 00:52:10 | 000,014,336 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\vwifimp.sys -- (vwifimp)
DRV - [2009.07.13 23:13:48 | 001,035,776 | ---- | M] (LSI Corp) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\AGRSM.sys -- (AgereSoftModem)
DRV - [2009.05.26 04:12:00 | 000,122,368 | ---- | M] (Intel(R) Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\IntcHdmi.sys -- (IntcHdmiAddService)
DRV - [2008.12.18 11:13:18 | 000,025,680 | ---- | M] (Aladdin Knowledge Systems Ltd.) [Kernel | System | Running] -- C:\Windows\System32\drivers\eusk2par.sys -- (eusk2par)
DRV - [2008.07.23 23:29:16 | 000,047,744 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\vserial.sys -- (vserial)
DRV - [2008.07.23 23:29:16 | 000,015,264 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\vsb.sys -- (vsbus)
DRV - [2008.03.28 10:14:02 | 000,024,064 | ---- | M] (Sonic Focus, Inc) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\sfaudio.sys -- (SFAUDIO)
DRV - [2006.12.20 03:58:26 | 000,097,920 | ---- | M] (QUALCOMM Incorporated) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\adusbser.sys -- (adusbser)
DRV - [2006.07.24 15:05:00 | 000,005,632 | ---- | M] () [File_System | System | Running] -- C:\Windows\System32\drivers\StarOpen.sys -- (StarOpen)
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com/ie
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-18\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-639110540-3213493223-2817070946-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
IE - HKU\S-1-5-21-639110540-3213493223-2817070946-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
IE - HKU\S-1-5-21-639110540-3213493223-2817070946-1000\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.google.com/ie
IE - HKU\S-1-5-21-639110540-3213493223-2817070946-1000\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com/ie
IE - HKU\S-1-5-21-639110540-3213493223-2817070946-1000\..\SearchScopes,DefaultScope = {B6F86392-1B41-46F9-907E-23D00B97D55D}
IE - HKU\S-1-5-21-639110540-3213493223-2817070946-1000\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTer ... ORM=IE8SRC
IE - HKU\S-1-5-21-639110540-3213493223-2817070946-1000\..\SearchScopes\{B6F86392-1B41-46F9-907E-23D00B97D55D}: "URL" = http://www.google.cz/search?q={searchTe ... {startPage}
IE - HKU\S-1-5-21-639110540-3213493223-2817070946-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 1
IE - HKU\S-1-5-21-639110540-3213493223-2817070946-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local
========== FireFox ==========
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: D:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX Browser Plugin,version=1.0.0: D:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll (DivX,Inc.)
FF - HKLM\Software\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf: D:\PROGRAM FILES\FOXIT SOFTWARE\FOXIT READER\plugins\npFoxitReaderPlugin.dll (Foxit Corporation)
FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF - HKLM\Software\MozillaPlugins\@google.com/npPicasa3,version=3.0.0: D:\Program Files\Google\Picasa3\npPicasa3.dll (Google, Inc.)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.9.2: C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.9.2: C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\5.1.10411.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/wpi,version=1.4: C:\Program Files\Microsoft\Web Platform Installer\\npwpidetector.dll ()
FF - HKLM\Software\MozillaPlugins\@nokia.com/EnablerPlugin: C:\Program Files\Nokia\Nokia Suite\npNokiaSuiteEnabler.dll ( )
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@stickypassword.com/Sticky Password: F:\Sticky Password\npspAutofill.dll File not found
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Users\noname\AppData\Local\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Users\noname\AppData\Local\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.)
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\e-webprint@epson.com: C:\Program Files\Epson Software\E-Web Print\Firefox Add-on [2012.06.28 14:36:09 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\bdThunderbird@bitdefender.com: D:\Program Files\Bitdefender\Bitdefender 2013\bdtbext
FF - HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\{54affe52-8223-453b-be1e-2fe2e250045c}: C:\Users\noname\AppData\Roaming\Lamantine\Sticky Password\spAutofill [2011.08.22 09:01:21 | 000,000,000 | ---D | M]
[2012.09.11 13:58:33 | 000,000,000 | ---D | M] (No name found) -- C:\Users\noname\AppData\Roaming\mozilla\Extensions
[2012.09.11 13:58:33 | 000,000,000 | ---D | M] (No name found) -- C:\Users\noname\AppData\Roaming\mozilla\Extensions\home2@tomtom.com
[2012.01.03 11:53:15 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2011.03.06 15:00:22 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}
[2011.03.06 15:00:15 | 000,472,808 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\mozilla firefox\plugins\npdeployJava1.dll
========== Chrome ==========
CHR - homepage: http://www.ask.com/?l=dis&o=14597cr
CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}sourceid=chrome&ie={inputEncoding}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&hl={language}&q={searchTerms}&sugkey={google:suggestAPIKeyParameter},
CHR - homepage: http://www.ask.com/?l=dis&o=14597cr
CHR - plugin: Remoting Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Users\noname\AppData\Local\Google\Chrome\Application\23.0.1271.64\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Users\noname\AppData\Local\Google\Chrome\Application\23.0.1271.64\pdf.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Users\noname\AppData\Local\Google\Chrome\Application\23.0.1271.64\gcswf32.dll
CHR - plugin: Shockwave Flash (Disabled) = C:\Users\noname\AppData\Local\Google\Chrome\User Data\PepperFlash\11.2.31.144\pepflashplayer.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Windows\system32\Macromed\Flash\NPSWF32.dll
CHR - plugin: Adobe Acrobat (Enabled) = C:\Program Files\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll
CHR - plugin: Java Deployment Toolkit 6.0.300.12 (Enabled) = C:\Program Files\Java\jre6\bin\new_plugin\npdeployJava1.dll
CHR - plugin: Java(TM) Platform SE 6 U30 (Enabled) = C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll
CHR - plugin: QuickTime Plug-in 7.4 (Enabled) = D:\Program Files\QuickTime\plugins\npqtplugin.dll
CHR - plugin: QuickTime Plug-in 7.4 (Enabled) = D:\Program Files\QuickTime\plugins\npqtplugin2.dll
CHR - plugin: QuickTime Plug-in 7.4 (Enabled) = D:\Program Files\QuickTime\plugins\npqtplugin3.dll
CHR - plugin: QuickTime Plug-in 7.4 (Enabled) = D:\Program Files\QuickTime\plugins\npqtplugin4.dll
CHR - plugin: QuickTime Plug-in 7.4 (Enabled) = D:\Program Files\QuickTime\plugins\npqtplugin5.dll
CHR - plugin: QuickTime Plug-in 7.4 (Enabled) = D:\Program Files\QuickTime\plugins\npqtplugin6.dll
CHR - plugin: QuickTime Plug-in 7.4 (Enabled) = D:\Program Files\QuickTime\plugins\npqtplugin7.dll
CHR - plugin: Google Earth Plugin (Enabled) = C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll
CHR - plugin: Google Update (Enabled) = C:\Program Files\Google\Update\1.3.21.111\npGoogleUpdate3.dll
CHR - plugin: Silverlight Plug-In (Enabled) = C:\Program Files\Microsoft Silverlight\4.1.10329.0\npctrl.dll
CHR - plugin: WPI Detector 1.4 (Enabled) = C:\Program Files\Microsoft\Web Platform Installer\\npwpidetector.dll
CHR - plugin: Panda ActiveScan 2.0 (Enabled) = C:\Program Files\Panda Security\ActiveScan 2.0\npwrapper.dll
CHR - plugin: DivX Web Player (Enabled) = D:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll
CHR - plugin: Picasa (Enabled) = D:\Program Files\Google\Picasa3\npPicasa3.dll
CHR - Extension: 8 Ball baz\u00E9n = C:\Users\noname\AppData\Local\Google\Chrome\User Data\Default\Extensions\bhljoejlbnebcpflalenbmpnanjbikof\3.0.0_0\
CHR - Extension: Chrome YouTube Downloader = C:\Users\noname\AppData\Local\Google\Chrome\User Data\Default\Extensions\effejoeggbefmigppkhjdfllecdnonhb\2.4.1_0\
CHR - Extension: AdBlock = C:\Users\noname\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.5.47_0\
CHR - Extension: TV for Google Chrome\u2122 = C:\Users\noname\AppData\Local\Google\Chrome\User Data\Default\Extensions\licccgnfdlgmmmgaddmbcepikfadcmpe\2.0.1_0\
O1 HOSTS File: ([2012.09.26 15:59:13 | 000,000,027 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (E-Web Print) - {201CF130-E29C-4E5C-A73F-CD197DEFA6AE} - C:\Program Files\Epson Software\E-Web Print\ewps_tb.dll (SEIKO EPSON CORPORATION)
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (Easy Photo Print) - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll (SEIKO EPSON CORPORATION / CyCom Technology Corp.)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O3 - HKLM\..\Toolbar: (E-Web Print) - {201CF130-E29C-4E5C-A73F-CD197DEFA6AE} - C:\Program Files\Epson Software\E-Web Print\ewps_tb.dll (SEIKO EPSON CORPORATION)
O3 - HKLM\..\Toolbar: (Easy Photo Print) - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll (SEIKO EPSON CORPORATION / CyCom Technology Corp.)
O4 - HKLM..\Run: [avgnt] D:\Program Files\Avira\AntiVir Desktop\avgnt.exe (Avira Operations GmbH & Co. KG)
O4 - HKLM..\Run: [emsisoft anti-malware] c:\program files\emsisoft anti-malware\a2guard.exe (Emsisoft GmbH)
O4 - HKU\.DEFAULT..\Run: [Nokia.PCSync] D:\Program Files\Nokia\Nokia PC Suite 6\PCSync2.exe (Time Information Services Ltd.)
O4 - HKU\.DEFAULT..\Run: [PC Suite Tray] D:\Program Files\Nokia\Nokia PC Suite 6\PCSuite.exe (Nokia)
O4 - HKU\S-1-5-18..\Run: [Nokia.PCSync] D:\Program Files\Nokia\Nokia PC Suite 6\PCSync2.exe (Time Information Services Ltd.)
O4 - HKU\S-1-5-18..\Run: [PC Suite Tray] D:\Program Files\Nokia\Nokia PC Suite 6\PCSuite.exe (Nokia)
O4 - HKU\S-1-5-21-639110540-3213493223-2817070946-1000..\Run: [GoogleDriveSync] C:\Program Files\Google\Drive\googledrivesync.exe (Google)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 157
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O7 - HKU\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-19\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-20\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-639110540-3213493223-2817070946-1000\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-639110540-3213493223-2817070946-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 153
O7 - HKU\S-1-5-21-639110540-3213493223-2817070946-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O9 - Extra 'Tools' menuitem : Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre7\bin\jp2iexp.dll ()
O9 - Extra 'Tools' menuitem : Spybot - Search && Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - Reg Error: Key error. File not found
O9 - Extra Button: PokerStars.net - {FA9B9510-9FCB-4ca0-818C-5D0987B47C4D} - C:\Program Files\PokerStars.NET\PokerStarsUpdate.exe File not found
O10 - NameSpace_Catalog5\Catalog_Entries\000000000008 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} http://download.eset.com/special/eos/OnlineScanner.cab (Reg Error: Key error.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{8457558B-5624-4EFF-B3D2-CFCA63FF5A0B}: DhcpNameServer = 192.168.1.1
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\System32\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009.06.10 22:42:20 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = ComFile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)
CREATERESTOREPOINT
Restore point Set: OTL Restore Point
NetSvcs: FastUserSwitchingCompatibility - File not found
NetSvcs: Ias - C:\Windows\System32\ias.dll (Microsoft Corporation)
NetSvcs: Nla - File not found
NetSvcs: Ntmssvc - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: SRService - File not found
NetSvcs: WmdmPmSp - File not found
NetSvcs: LogonHours - File not found
NetSvcs: PCAudit - File not found
NetSvcs: helpsvc - File not found
NetSvcs: uploadmgr - File not found
Drivers32: msacm.ac3filter - C:\Windows\System32\ac3filter.acm ()
Drivers32: msacm.avis - C:\Windows\System32\ff_acm.acm ()
Drivers32: msacm.l3acm - C:\Windows\System32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: MSVideo8 - C:\Windows\System32\vfwwdm32.dll (Microsoft Corporation)
Drivers32: vidc.cvid - C:\Windows\System32\iccvid.dll (Radius Inc.)
Drivers32: vidc.DIVX - C:\Windows\System32\DivX.dll (DivX, Inc.)
Drivers32: VIDC.FFDS - C:\Windows\System32\ff_vfw.dll ()
Drivers32: vidc.xvid - C:\Windows\System32\xvidvfw.dll ()
Drivers32: vidc.yv12 - C:\Windows\System32\DivX.dll (DivX, Inc.)
PhysicalDisk0 MBR saved to C:\PhysicalMBR.bin
========== Files/Folders - Created Within 7 Days ==========
[2012.11.28 16:04:21 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\noname\Desktop\OTL.exe
[2012.11.25 17:39:17 | 000,101,112 | ---- | C] (GFI Software) -- C:\Windows\System32\drivers\SBREDrv.sys
[2012.11.25 17:39:17 | 000,042,864 | ---- | C] (GFI Software) -- C:\Windows\System32\sbbd.exe
[2012.11.25 17:39:06 | 000,000,000 | ---D | C] -- C:\VIPRERESCUE
[2012.11.24 16:19:26 | 000,000,000 | ---D | C] -- C:\Users\noname\Documents\MOBILedit!
[2012.11.24 16:19:26 | 000,000,000 | ---D | C] -- C:\Users\noname\AppData\Roaming\MOBILedit
[2012.11.24 16:18:34 | 000,000,000 | ---D | C] -- C:\Program Files\Compiled Driver Disk (Nokia)
[2012.11.24 16:17:24 | 000,000,000 | ---D | C] -- C:\Program Files\COMPELSON Labs
[2012.11.24 16:17:18 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MOBILedit!
[2012.11.24 16:17:15 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\MobilEdit!
========== Files - Modified Within 7 Days ==========
[2012.11.28 16:11:00 | 000,000,966 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-639110540-3213493223-2817070946-1000UA.job
[2012.11.28 16:10:23 | 000,000,512 | ---- | M] () -- C:\PhysicalMBR.bin
[2012.11.28 16:04:48 | 000,018,464 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2012.11.28 16:04:48 | 000,018,464 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2012.11.28 16:03:43 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\noname\Desktop\OTL.exe
[2012.11.28 15:57:31 | 000,000,936 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2012.11.28 15:57:11 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2012.11.28 15:56:58 | 2359,504,896 | -HS- | M] () -- C:\hiberfil.sys
[2012.11.27 21:33:00 | 000,000,940 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2012.11.27 20:55:54 | 000,856,731 | ---- | M] () -- C:\Users\noname\Desktop\SecurityCheck.exe
[2012.11.26 15:01:32 | 000,000,324 | ---- | M] () -- C:\Windows\tasks\HPCeeScheduleFornoname.job
[2012.11.25 17:39:21 | 000,000,000 | ---- | M] () -- C:\Windows\System32\SBRC.dat
[2012.11.25 17:34:25 | 000,671,398 | ---- | M] () -- C:\Windows\System32\perfh005.dat
[2012.11.25 17:34:25 | 000,656,752 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2012.11.25 17:34:25 | 000,142,238 | ---- | M] () -- C:\Windows\System32\perfc005.dat
[2012.11.25 17:34:25 | 000,122,864 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2012.11.25 10:04:12 | 000,362,142 | ---- | M] () -- C:\Users\noname\Desktop\Poznámky aplikace OneNote (jako soubor PDF).pdf
[2012.11.25 09:51:12 | 000,000,914 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-639110540-3213493223-2817070946-1000Core.job
========== Files Created - No Company Name ==========
[2012.11.28 16:10:23 | 000,000,512 | ---- | C] () -- C:\PhysicalMBR.bin
[2012.11.27 20:56:09 | 000,856,731 | ---- | C] () -- C:\Users\noname\Desktop\SecurityCheck.exe
[2012.11.25 17:39:21 | 000,000,000 | ---- | C] () -- C:\Windows\System32\SBRC.dat
[2012.11.25 10:05:35 | 000,362,142 | ---- | C] () -- C:\Users\noname\Desktop\Poznámky aplikace OneNote (jako soubor PDF).pdf
[2012.11.25 09:48:30 | 000,000,324 | ---- | C] () -- C:\Windows\tasks\HPCeeScheduleFornoname.job
[2012.10.24 10:57:35 | 000,008,117 | ---- | C] () -- C:\Users\noname\AppData\Local\SRDownloader (1).err
[2012.10.24 10:49:39 | 000,001,072 | ---- | C] () -- C:\Users\noname\AppData\Local\SRDownloader (1).nast
[2012.10.22 09:11:20 | 000,001,388 | ---- | C] () -- C:\ProgramData\1350893480.bdinstall.bin
[2012.10.22 09:06:47 | 000,001,388 | ---- | C] () -- C:\ProgramData\1350893207.bdinstall.bin
[2012.10.22 08:46:44 | 000,001,388 | ---- | C] () -- C:\ProgramData\1350892004.bdinstall.bin
[2012.10.22 08:41:48 | 000,001,388 | ---- | C] () -- C:\ProgramData\1350891707.bdinstall.bin
[2012.10.19 15:02:25 | 000,001,388 | ---- | C] () -- C:\ProgramData\1350655345.bdinstall.bin
[2012.10.19 14:59:21 | 000,027,424 | ---- | C] () -- C:\Windows\System32\drivers\hitmanpro36.sys
[2012.10.03 13:16:01 | 000,000,064 | ---- | C] () -- C:\Windows\System32\rp_stats.dat
[2012.10.03 13:16:01 | 000,000,044 | ---- | C] () -- C:\Windows\System32\rp_rules.dat
[2012.09.26 18:16:42 | 000,017,408 | ---- | C] () -- C:\Users\noname\AppData\Local\WebpageIcons.db
[2012.08.12 11:17:54 | 000,033,019 | ---- | C] () -- C:\Windows\System32\CoreAAC-uninstall.exe
[2012.08.01 10:54:36 | 000,256,000 | ---- | C] () -- C:\Windows\PEV.exe
[2012.08.01 10:54:36 | 000,208,896 | ---- | C] () -- C:\Windows\MBR.exe
[2012.08.01 10:54:36 | 000,098,816 | ---- | C] () -- C:\Windows\sed.exe
[2012.08.01 10:54:36 | 000,080,412 | ---- | C] () -- C:\Windows\grep.exe
[2012.08.01 10:54:36 | 000,068,096 | ---- | C] () -- C:\Windows\zip.exe
[2012.08.01 10:26:26 | 000,019,613 | ---- | C] () -- C:\Windows\prodsett_copy.ini
[2012.06.26 15:02:40 | 000,030,568 | ---- | C] () -- C:\Windows\MusiccityDownload.exe
[2012.06.26 15:02:38 | 000,974,848 | ---- | C] () -- C:\Windows\System32\cis-2.4.dll
[2012.06.26 15:02:38 | 000,081,920 | ---- | C] () -- C:\Windows\System32\issacapi_bs-2.3.dll
[2012.06.26 15:02:38 | 000,065,536 | ---- | C] () -- C:\Windows\System32\issacapi_pe-2.3.dll
[2012.06.26 15:02:38 | 000,057,344 | ---- | C] () -- C:\Windows\System32\issacapi_se-2.3.dll
[2012.06.18 15:26:10 | 000,075,776 | ---- | C] () -- C:\Windows\cadkasdeinst01e.exe
[2012.05.29 11:03:15 | 002,469,760 | ---- | C] () -- C:\Windows\System32\BootMan.exe
[2012.05.29 11:03:15 | 000,086,408 | ---- | C] () -- C:\Windows\System32\setupempdrv03.exe
[2012.05.29 11:03:15 | 000,019,840 | ---- | C] () -- C:\Windows\System32\EuEpmGdi.dll
[2012.05.29 11:03:15 | 000,014,216 | ---- | C] () -- C:\Windows\System32\epmntdrv.sys
[2012.05.29 11:03:15 | 000,008,456 | ---- | C] () -- C:\Windows\System32\EuGdiDrv.sys
[2012.01.24 06:52:42 | 000,013,024 | ---- | C] () -- C:\Windows\System32\drivers\SWDUMon.sys
[2011.12.04 08:56:50 | 000,002,560 | ---- | C] () -- C:\Windows\_MSRSTRT.EXE
[2011.10.23 16:35:36 | 000,001,060 | ---- | C] () -- C:\Users\noname\AppData\Local\SRDownloader.err
[2011.10.05 09:23:12 | 000,000,000 | ---- | C] () -- C:\Windows\HPMProp.INI
[2011.08.22 20:06:07 | 000,043,656 | ---- | C] () -- C:\Windows\System32\drivers\EUBKMON.sys
[2011.08.22 09:27:40 | 000,000,001 | ---- | C] () -- C:\Users\noname\AppData\Local\RawCopy.sourcedisk.index
[2011.08.22 09:27:15 | 000,000,001 | ---- | C] () -- C:\Users\noname\AppData\Local\RawCopy.1.01.agreement
[2011.07.28 20:44:44 | 000,000,125 | ---- | C] () -- C:\Users\noname\AppData\Roaming\.gammurc
[2011.07.07 22:33:06 | 000,001,784 | ---- | C] () -- C:\Users\noname\AppData\Local\SRDownloader.nast
[2011.05.26 14:22:53 | 000,080,896 | ---- | C] () -- C:\Windows\System32\RDVGHelper.exe
[2011.05.26 14:21:24 | 000,066,048 | ---- | C] () -- C:\Windows\System32\PrintBrmUi.exe
[2011.03.11 12:43:54 | 000,029,763 | ---- | C] () -- C:\Windows\System32\drivers\klopp.dat
[2010.09.29 11:58:13 | 000,007,597 | ---- | C] () -- C:\Users\noname\AppData\Local\Resmon.ResmonCfg
[2010.09.14 09:53:57 | 000,000,000 | ---- | C] () -- C:\ProgramData\onXTgryAxtQJXaUf
[2010.08.30 10:40:32 | 000,054,784 | ---- | C] () -- C:\Users\noname\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2009.06.05 04:53:07 | 000,000,180 | ---- | C] () -- C:\ProgramData\NytGvuTXfdAyelJQ
========== ZeroAccess Check ==========
[2009.07.14 05:42:31 | 000,000,227 | -HS- | M] () -- C:\Windows\assembly\Desktop.ini
[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2012.01.04 09:59:38 | 012,872,704 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2010.11.20 13:19:02 | 000,606,208 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
"" = %systemroot%\system32\wbem\wbemess.dll -- [2009.07.14 02:16:17 | 000,342,528 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both
========== LOP Check ==========
[2012.07.25 07:02:47 | 000,000,000 | ---D | M] -- C:\Users\Default\AppData\Roaming\Nokia
[2012.07.25 07:02:47 | 000,000,000 | ---D | M] -- C:\Users\Default User\AppData\Roaming\Nokia
[2011.07.23 11:08:39 | 000,000,000 | ---D | M] -- C:\Users\Guest\AppData\Roaming\AVG10
[2012.07.11 05:59:13 | 000,000,000 | ---D | M] -- C:\Users\Guest\AppData\Roaming\Epson
[2012.07.25 06:13:07 | 000,000,000 | ---D | M] -- C:\Users\Guest\AppData\Roaming\Panda Security
[2012.07.25 07:02:50 | 000,000,000 | ---D | M] -- C:\Users\Guest\AppData\Roaming\PC Suite
[2011.10.10 16:38:05 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\3v
[2012.10.31 15:52:14 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\Ad-Aware Antivirus
[2011.01.28 08:49:12 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\Ashampoo
[2011.02.09 14:37:03 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\AVG10
[2012.04.18 10:25:06 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\avidemux
[2011.08.22 11:32:11 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\BatteryBar
[2012.06.18 15:26:31 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\CAD-KAS
[2011.01.25 17:18:05 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\Canneverbe Limited
[2011.03.06 15:45:32 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\DeviceDoctorSoftware
[2012.10.05 17:57:44 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\Downloaded Installations
[2012.11.04 13:30:09 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\Drivers For Free
[2012.10.17 10:33:04 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\Dropbox
[2011.10.11 11:20:02 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\DRPSu
[2011.10.04 20:14:20 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\DVDVideoSoft
[2012.07.07 09:12:39 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\EPSON
[2012.09.25 13:31:51 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\ESET
[2012.07.16 09:42:31 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\Foxit Software
[2012.04.19 12:20:44 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\FreeMoviesToDVD
[2011.07.25 11:56:32 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\HTML Executable
[2012.10.05 18:15:22 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\inkscape
[2011.08.22 09:01:21 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\Lamantine
[2012.03.26 17:50:32 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\LightComp
[2012.11.24 16:19:33 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\MOBILedit
[2012.10.05 17:58:46 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\Nitro PDF
[2012.06.10 13:35:44 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\Nokia
[2012.05.29 12:08:14 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\Nokia Multimedia Player
[2011.04.26 13:44:50 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\Nokia Ovi Suite
[2012.06.10 13:35:45 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\Nokia Suite
[2012.04.25 18:25:17 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\OpenWith.org Cache
[2012.04.25 18:25:34 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\OpenWith.org Downloaded Setups
[2011.06.13 09:14:47 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\Panda Security
[2011.07.25 12:07:57 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\Participatory Culture Foundation
[2012.11.24 16:02:39 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\PC Suite
[2011.07.25 12:14:18 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\PCF-VLC
[2012.06.11 10:46:29 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\QuickScan
[2012.07.15 13:01:46 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\Samsung
[2012.09.11 13:58:33 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\TomTom
[2011.10.11 11:55:54 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\uTorrent
[2011.11.01 08:06:08 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\VDownloader
[2012.08.12 12:17:20 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\Vso
[2010.10.25 09:36:07 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\Win7codecs
[2012.07.18 09:09:56 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\Zoner
========== Purity Check ==========
========== Custom Scans ==========
< >
[2009.07.14 05:53:46 | 000,032,608 | ---- | C] () -- C:\Windows\Tasks\SCHEDLGU.TXT
[2009.07.14 05:53:47 | 000,000,006 | -H-- | C] () -- C:\Windows\Tasks\SA.DAT
[2012.09.17 08:06:17 | 000,000,914 | ---- | C] () -- C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-639110540-3213493223-2817070946-1000Core.job
[2012.09.17 08:06:18 | 000,000,966 | ---- | C] () -- C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-639110540-3213493223-2817070946-1000UA.job
[2012.09.18 09:28:20 | 000,000,936 | ---- | C] () -- C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
[2012.09.18 09:28:21 | 000,000,940 | ---- | C] () -- C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
[2012.11.25 09:48:30 | 000,000,324 | ---- | C] () -- C:\Windows\Tasks\HPCeeScheduleFornoname.job
< >
< MD5 for: ATAPI.SYS >
[2009.07.14 02:26:15 | 000,021,584 | ---- | M] (Microsoft Corporation) MD5=338C86357871C167A96AB976519BF59E -- C:\Users\noname\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20120124T055346906979\internal_ide_channel\atapi.sys
[2009.07.14 02:26:15 | 000,021,584 | ---- | M] (Microsoft Corporation) MD5=338C86357871C167A96AB976519BF59E -- C:\Users\noname\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20120124T055346906979\pci\cc_010601\atapi.sys
[2009.07.14 02:26:15 | 000,021,584 | ---- | M] (Microsoft Corporation) MD5=338C86357871C167A96AB976519BF59E -- C:\Users\noname\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20121003T101543038824\internal_ide_channel\atapi.sys
[2009.07.14 02:26:15 | 000,021,584 | ---- | M] (Microsoft Corporation) MD5=338C86357871C167A96AB976519BF59E -- C:\Users\noname\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20121003T101543038824\pci\cc_010601\atapi.sys
[2009.07.14 02:26:15 | 000,021,584 | ---- | M] (Microsoft Corporation) MD5=338C86357871C167A96AB976519BF59E -- C:\Users\noname\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20121003T122109506426\internal_ide_channel\atapi.sys
[2009.07.14 02:26:15 | 000,021,584 | ---- | M] (Microsoft Corporation) MD5=338C86357871C167A96AB976519BF59E -- C:\Windows\erdnt\cache\atapi.sys
[2009.07.14 02:26:15 | 000,021,584 | ---- | M] (Microsoft Corporation) MD5=338C86357871C167A96AB976519BF59E -- C:\Windows\System32\drivers\atapi.sys
[2009.07.14 02:26:15 | 000,021,584 | ---- | M] (Microsoft Corporation) MD5=338C86357871C167A96AB976519BF59E -- C:\Windows\System32\DriverStore\FileRepository\mshdc.inf_x86_neutral_fab873f3e8a3315c\atapi.sys
[2009.07.14 02:26:15 | 000,021,584 | ---- | M] (Microsoft Corporation) MD5=338C86357871C167A96AB976519BF59E -- C:\Windows\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.1.7600.16385_none_dd0e7e3d82dd640d\atapi.sys
[2009.07.14 02:26:15 | 000,021,584 | ---- | M] (Microsoft Corporation) MD5=338C86357871C167A96AB976519BF59E -- C:\Windows\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.1.7601.17514_none_df3f92057fcbe7a7\atapi.sys
< MD5 for: AUTOCHK.EXE >
[2009.07.14 02:14:12 | 000,668,160 | ---- | M] (Microsoft Corporation) MD5=41E4C8EBA464E7D6A5BA5E8827732AEB -- C:\Windows\winsxs\x86_microsoft-windows-autochk_31bf3856ad364e35_6.1.7600.16385_none_e1ca436d2314b860\autochk.exe
[2010.11.20 13:16:54 | 000,668,160 | ---- | M] (Microsoft Corporation) MD5=F88A52EB62019D6A62FDD9E08034DBD8 -- C:\Windows\System32\autochk.exe
[2010.11.20 13:16:54 | 000,668,160 | ---- | M] (Microsoft Corporation) MD5=F88A52EB62019D6A62FDD9E08034DBD8 -- C:\Windows\winsxs\x86_microsoft-windows-autochk_31bf3856ad364e35_6.1.7601.17514_none_e3fb573520033bfa\autochk.exe
< MD5 for: CDROM.SYS >
[2009.07.14 00:11:26 | 000,108,544 | ---- | M] (Microsoft Corporation) MD5=BA6E70AA0E6091BC39DE29477D866A77 -- C:\Windows\winsxs\x86_cdrom.inf_31bf3856ad364e35_6.1.7600.16385_none_5f7fb206051affbb\cdrom.sys
[2010.11.20 09:38:10 | 000,108,544 | ---- | M] (Microsoft Corporation) MD5=BE167ED0FDB9C1FA1133953C18D5A6C9 -- C:\Users\noname\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20120124T055346906979\gencdrom\cdrom.sys
[2010.11.20 09:38:10 | 000,108,544 | ---- | M] (Microsoft Corporation) MD5=BE167ED0FDB9C1FA1133953C18D5A6C9 -- C:\Users\noname\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20121003T101543038824\gencdrom\cdrom.sys
[2010.11.20 09:38:10 | 000,108,544 | ---- | M] (Microsoft Corporation) MD5=BE167ED0FDB9C1FA1133953C18D5A6C9 -- C:\Users\noname\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20121003T122109506426\gencdrom\cdrom.sys
[2010.11.20 09:38:10 | 000,108,544 | ---- | M] (Microsoft Corporation) MD5=BE167ED0FDB9C1FA1133953C18D5A6C9 -- C:\Users\noname\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20121104T123200603895\gencdrom\cdrom.sys
[2010.11.20 09:38:10 | 000,108,544 | ---- | M] (Microsoft Corporation) MD5=BE167ED0FDB9C1FA1133953C18D5A6C9 -- C:\Windows\System32\drivers\cdrom.sys
[2010.11.20 09:38:10 | 000,108,544 | ---- | M] (Microsoft Corporation) MD5=BE167ED0FDB9C1FA1133953C18D5A6C9 -- C:\Windows\System32\DriverStore\FileRepository\cdrom.inf_x86_neutral_6381e09675524225\cdrom.sys
[2010.11.20 09:38:10 | 000,108,544 | ---- | M] (Microsoft Corporation) MD5=BE167ED0FDB9C1FA1133953C18D5A6C9 -- C:\Windows\winsxs\x86_cdrom.inf_31bf3856ad364e35_6.1.7601.17514_none_61b0c5ce02098355\cdrom.sys
< MD5 for: EXPLORER.EXE >
[2011.02.26 06:19:21 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=0FB9C74046656D1579A64660AD67B746 -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.21669_none_54149f9ef14031fc\explorer.exe
[2009.07.14 02:14:20 | 002,613,248 | ---- | M] (Microsoft Corporation) MD5=15BC38A7492BEFE831966ADB477CF76F -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16385_none_518afd35db100430\explorer.exe
[2011.02.26 06:51:13 | 002,614,784 | ---- | M] (Microsoft Corporation) MD5=255CF508D7CFB10E0794D6AC93280BD8 -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20910_none_525b5180f3f95373\explorer.exe
[2009.10.31 06:45:39 | 002,614,272 | ---- | M] (Microsoft Corporation) MD5=2626FC9755BE22F805D3CFA0CE3EE727 -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16450_none_51a66d6ddafc2ed1\explorer.exe
[2011.02.26 06:33:07 | 002,614,784 | ---- | M] (Microsoft Corporation) MD5=2AF58D15EDC06EC6FDACCE1F19482BBF -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16768_none_51a3a583dafd0cef\explorer.exe
[2010.11.20 13:17:09 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=40D777B7A95E00593EB1568C68514493 -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17514_none_53bc10fdd7fe87ca\explorer.exe
[2011.02.25 06:30:54 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=8B88EBBB05A0E56B7DCC708498C02B3E -- C:\Windows\erdnt\cache\explorer.exe
[2011.02.25 06:30:54 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=8B88EBBB05A0E56B7DCC708498C02B3E -- C:\Windows\explorer.exe
[2011.02.25 06:30:54 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=8B88EBBB05A0E56B7DCC708498C02B3E -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17567_none_5389023fd8245f84\explorer.exe
[2009.08.03 06:49:47 | 002,613,248 | ---- | M] (Microsoft Corporation) MD5=9FF6C4C91A3711C0A3B18F87B08B518D -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20500_none_526619d4f3f142e6\explorer.exe
[2009.08.03 06:35:50 | 002,613,248 | ---- | M] (Microsoft Corporation) MD5=B95EEB0F4E5EFBF1038A35B3351CF047 -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16404_none_51e07e31dad00878\explorer.exe
[2009.10.31 07:00:51 | 002,614,272 | ---- | M] (Microsoft Corporation) MD5=C76153C7ECA00FA852BB0C193378F917 -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20563_none_52283b2af41f3691\explorer.exe
< MD5 for: HAL.DLL >
[2010.11.20 13:29:53 | 000,194,432 | ---- | M] (Microsoft Corporation) MD5=1BF0D4727FDB437D513CFF8A9359C050 -- C:\Windows\System32\hal.dll
[2010.11.20 13:29:53 | 000,194,432 | ---- | M] (Microsoft Corporation) MD5=1BF0D4727FDB437D513CFF8A9359C050 -- C:\Windows\winsxs\x86_microsoft-windows-hal_31bf3856ad364e35_6.1.7601.17514_none_ad305c8fb7ec5060\hal.dll
[2009.07.14 02:20:28 | 000,194,640 | ---- | M] (Microsoft Corporation) MD5=9A557EAE64ABAB3BA67A9BB035D24CB9 -- C:\Windows\winsxs\x86_microsoft-windows-hal_31bf3856ad364e35_6.1.7600.16385_none_aaff48c7bafdccc6\hal.dll
< MD5 for: SCECLI.DLL >
[2009.07.14 02:16:13 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=26073302DAEA83CC5B944C546D6B47D2 -- C:\Windows\winsxs\x86_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7600.16385_none_37e4387f3a6f0483\scecli.dll
[2010.11.20 13:21:04 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=8124944EC89D6A1815E4E53F5B96AAF4 -- C:\Windows\erdnt\cache\scecli.dll
[2010.11.20 13:21:04 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=8124944EC89D6A1815E4E53F5B96AAF4 -- C:\Windows\System32\scecli.dll
[2010.11.20 13:21:04 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=8124944EC89D6A1815E4E53F5B96AAF4 -- C:\Windows\winsxs\x86_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7601.17514_none_3a154c47375d881d\scecli.dll
< MD5 for: SERVICES.EXE >
[2009.07.14 02:14:36 | 000,259,072 | ---- | M] (Microsoft Corporation) MD5=5F1B6A9C35D3D5CA72D6D6FDEF9747D6 -- C:\Windows\erdnt\cache\services.exe
[2009.07.14 02:14:36 | 000,259,072 | ---- | M] (Microsoft Corporation) MD5=5F1B6A9C35D3D5CA72D6D6FDEF9747D6 -- C:\Windows\System32\services.exe
[2009.07.14 02:14:36 | 000,259,072 | ---- | M] (Microsoft Corporation) MD5=5F1B6A9C35D3D5CA72D6D6FDEF9747D6 -- C:\Windows\winsxs\x86_microsoft-windows-s..s-servicecontroller_31bf3856ad364e35_6.1.7600.16385_none_cf36168b2e9c967b\services.exe
< MD5 for: SVCHOST.EXE >
[2009.07.14 02:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\erdnt\cache\svchost.exe
[2009.07.14 02:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\System32\svchost.exe
[2009.07.14 02:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\winsxs\x86_microsoft-windows-services-svchost_31bf3856ad364e35_6.1.7600.16385_none_b591afc466a15356\svchost.exe
< MD5 for: TCPIP.SYS >
[2011.04.25 05:56:06 | 001,286,016 | ---- | M] (Microsoft Corporation) MD5=0158D5E9982E9D6A90DFC802F618E130 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.16802_none_b347f075c77b9c9d\tcpip.sys
[2011.06.21 06:34:23 | 001,290,624 | ---- | M] (Microsoft Corporation) MD5=04E4A7D53A7ACE02E8C55B17A498F631 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.17638_none_b513df73c4b4f466\tcpip.sys
[2011.09.29 17:02:44 | 001,301,872 | ---- | M] (Microsoft Corporation) MD5=22F7E7CBCA308DEE3428B097D4F8A61C -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.21060_none_b38e8546e0cbe4a1\tcpip.sys
[2012.08.22 18:05:21 | 001,306,992 | ---- | M] (Microsoft Corporation) MD5=23790A44D9A6B67F8690C34D4F516446 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.22097_none_b55b785ade04500f\tcpip.sys
[2011.04.25 05:31:30 | 001,290,624 | ---- | M] (Microsoft Corporation) MD5=24326784DF8F3D5F5BBB9F878CE33C14 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.17603_none_b52f4dc5c4a121e0\tcpip.sys
[2009.07.14 02:19:10 | 001,285,712 | ---- | M] (Microsoft Corporation) MD5=2CC3D75488ABD3EC628BBB9A4FC84EFC -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.16385_none_b2f46875c7b9d667\tcpip.sys
[2010.11.20 13:30:12 | 001,290,112 | ---- | M] (Microsoft Corporation) MD5=37E8FA3779668837CA9E2C36D2415949 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.17514_none_b5257c3dc4a85a01\tcpip.sys
[2011.09.29 17:17:18 | 001,303,920 | ---- | M] (Microsoft Corporation) MD5=3C1C41E317710F74CEC1E7F0D5325993 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.21828_none_b5a84e10ddca7566\tcpip.sys
[2012.03.30 11:29:05 | 001,287,024 | ---- | M] (Microsoft Corporation) MD5=55E9965552741F3850CB22CBBA9671ED -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.16986_none_b2f57423c7b8dea8\tcpip.sys
[2011.09.29 16:43:37 | 001,285,488 | ---- | M] (Microsoft Corporation) MD5=56C198AC82EFA622DD93E9E43575F79C -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.16889_none_b2f8731bc7b62d86\tcpip.sys
[2011.09.29 17:03:04 | 001,290,608 | ---- | M] (Microsoft Corporation) MD5=65D10B191C59C5501A1263FC33F6894B -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.17697_none_b4d1ffa1c4e682b5\tcpip.sys
[2011.04.25 07:31:09 | 001,301,376 | ---- | M] (Microsoft Corporation) MD5=6D4728CFF2724FF3A4654971D61D0F1C -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.21712_none_b5ad1a5addc7c444\tcpip.sys
[2012.03.30 11:23:11 | 001,291,632 | ---- | M] (Microsoft Corporation) MD5=7FA2E0F8B072BD04B77B421480B6CC22 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.17802_none_b52e5147c4a202d7\tcpip.sys
[2011.04.25 05:44:18 | 001,298,816 | ---- | M] (Microsoft Corporation) MD5=8861B9A06BA99C6E1D62D0C86DFAB86C -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.20951_none_b39a7d5ae0c2aec5\tcpip.sys
[2012.03.30 10:04:23 | 001,306,480 | ---- | M] (Microsoft Corporation) MD5=88FCDB9923EFECA207B3CEBD24407126 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.21954_none_b583df0adde66104\tcpip.sys
[2011.06.21 06:30:45 | 001,301,376 | ---- | M] (Microsoft Corporation) MD5=93C444D118B184452132357C322124CD -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.20992_none_b3703df4e0e237e0\tcpip.sys
[2010.06.14 07:06:58 | 001,288,576 | ---- | M] (Microsoft Corporation) MD5=A39EA325C081AD27461F630C8E3E56E0 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.20733_none_b3b219fae0b0af43\tcpip.sys
[2012.08.22 18:16:54 | 001,292,144 | ---- | M] (Microsoft Corporation) MD5=A5EBB8F648000E88B7D9390B514976BF -- C:\Windows\erdnt\cache\tcpip.sys
[2012.08.22 18:16:54 | 001,292,144 | ---- | M] (Microsoft Corporation) MD5=A5EBB8F648000E88B7D9390B514976BF -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.17939_none_b514e56fc4b40532\tcpip.sys
[2010.06.14 07:12:30 | 001,286,016 | ---- | M] (Microsoft Corporation) MD5=BB7F39C31C4A4417FD318E7CD184E225 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.16610_none_b33b1c29c7858b92\tcpip.sys
[2011.06.21 06:39:53 | 001,286,016 | ---- | M] (Microsoft Corporation) MD5=C2DAAEB48F3A47C410B041A0D2382EE1 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.16839_none_b32e82b7c78da1d1\tcpip.sys
[2012.10.03 17:44:01 | 001,308,040 | ---- | M] (Microsoft Corporation) MD5=D490DD0A91B4EAC3B4EE08D11EE37C31 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.22124_none_b5a428d6ddce3d9a\tcpip.sys
[2011.06.21 07:54:00 | 001,303,424 | ---- | M] (Microsoft Corporation) MD5=DEC4940487050AE13C60C86F40E07E75 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.21754_none_b583db3edde666b6\tcpip.sys
[2012.10.03 17:58:30 | 001,293,680 | ---- | M] (Microsoft Corporation) MD5=E23A56F843E2AEBBB209D0ACCA73C640 -- C:\Windows\System32\drivers\tcpip.sys
[2012.10.03 17:58:30 | 001,293,680 | ---- | M] (Microsoft Corporation) MD5=E23A56F843E2AEBBB209D0ACCA73C640 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.17964_none_b4ef7439c4d0da52\tcpip.sys
[2012.03.30 11:08:19 | 001,303,408 | ---- | M] (Microsoft Corporation) MD5=E47C2844A1605A44178F4281E4D58B3D -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.21178_none_b38bb990e0ccc871\tcpip.sys
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\noname\Desktop
Ultimate Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy
2,93 Gb Total Physical Memory | 1,48 Gb Available Physical Memory | 50,54% Memory free
5,86 Gb Paging File | 3,91 Gb Available in Paging File | 66,72% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 48,97 Gb Total Space | 5,07 Gb Free Space | 10,35% Space Free | Partition Type: NTFS
Drive D: | 249,02 Gb Total Space | 223,04 Gb Free Space | 89,57% Space Free | Partition Type: NTFS
Computer Name: NONAME-PC | User Name: noname | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 7 Days
========== Processes (SafeList) ==========
PRC - [2012.11.28 16:03:43 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\noname\Desktop\OTL.exe
PRC - [2012.11.26 15:07:36 | 000,085,280 | ---- | M] (Avira Operations GmbH & Co. KG) -- D:\Program Files\Avira\AntiVir Desktop\sched.exe
PRC - [2012.11.26 15:07:12 | 000,384,800 | ---- | M] (Avira Operations GmbH & Co. KG) -- D:\Program Files\Avira\AntiVir Desktop\avgnt.exe
PRC - [2012.11.26 15:07:12 | 000,109,344 | ---- | M] (Avira Operations GmbH & Co. KG) -- D:\Program Files\Avira\AntiVir Desktop\avguard.exe
PRC - [2012.10.25 15:45:50 | 016,052,192 | ---- | M] (Google) -- C:\Program Files\Google\Drive\googledrivesync.exe
PRC - [2012.10.17 17:02:24 | 003,364,264 | ---- | M] (Emsisoft GmbH) -- C:\Program Files\Emsisoft Anti-Malware\a2guard.exe
PRC - [2012.10.06 17:01:48 | 003,084,176 | ---- | M] (Emsisoft GmbH) -- C:\Program Files\Emsisoft Anti-Malware\a2service.exe
PRC - [2012.09.19 19:20:40 | 000,079,136 | ---- | M] (Avira Operations GmbH & Co. KG) -- D:\Program Files\Avira\AntiVir Desktop\avshadow.exe
PRC - [2012.08.20 18:37:58 | 000,271,360 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\conhost.exe
PRC - [2012.02.26 04:07:52 | 002,324,752 | ---- | M] (Intel® Corporation) -- C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
PRC - [2012.02.26 04:07:32 | 000,498,960 | ---- | M] (Intel(R) Corporation) -- C:\Program Files\Intel\WiFi\bin\EvtEng.exe
PRC - [2012.02.26 04:07:26 | 000,107,792 | ---- | M] (Intel(R) Corporation) -- C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
PRC - [2012.01.17 15:12:30 | 000,104,208 | ---- | M] (Intel(R) Corporation) -- C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe
PRC - [2012.01.11 16:42:03 | 000,156,160 | ---- | M] (SEIKO EPSON CORPORATION) -- C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50ST7.EXE
PRC - [2012.01.11 16:42:03 | 000,125,440 | ---- | M] (SEIKO EPSON CORPORATION) -- C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50RP7.EXE
PRC - [2012.01.09 11:39:32 | 000,509,440 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe
PRC - [2011.06.21 14:57:34 | 000,085,560 | ---- | M] (Hewlett-Packard Company) -- C:\Program Files\Hewlett-Packard\HP Support Framework\HPSA_Service.exe
PRC - [2011.03.28 16:07:50 | 000,094,264 | ---- | M] (Hewlett-Packard Company) -- C:\Program Files\Hewlett-Packard\Shared\HPDrvMntSvc.exe
PRC - [2011.03.28 16:06:24 | 000,311,352 | ---- | M] (Hewlett-Packard Development Company L.P.) -- C:\Program Files\Hewlett-Packard\Shared\hpCaslNotification.exe
PRC - [2011.02.25 06:30:54 | 002,616,320 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
PRC - [2010.11.20 13:17:47 | 000,049,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\taskhost.exe
PRC - [2009.12.03 20:28:08 | 000,026,112 | ---- | M] (LSI Corporation) -- C:\Program Files\LSI SoftModem\agrsmsvc.exe
PRC - [2009.05.14 16:07:14 | 000,759,048 | ---- | M] (ABBYY) -- C:\Program Files\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe
PRC - [2008.09.03 18:27:56 | 000,186,360 | ---- | M] () -- C:\Windows\System32\MNSFramework.exe
PRC - [2008.07.15 16:09:52 | 000,090,112 | ---- | M] (Andrea Electronics Corporation) -- C:\Windows\System32\AEADISRV.EXE
PRC - [2006.12.20 20:14:00 | 000,131,072 | ---- | M] (SEIKO EPSON CORPORATION) -- C:\Windows\System32\SAgent4.exe
PRC - [2006.12.19 18:23:20 | 000,094,208 | ---- | M] (SEIKO EPSON CORPORATION) -- C:\Program Files\Common Files\EPSON\EBAPI\eEBSvc.exe
PRC - [2000.01.01 01:00:00 | 000,013,632 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
========== Modules (No Company Name) ==========
MOD - [2012.11.28 15:57:40 | 001,024,024 | ---- | M] () -- C:\Users\noname\AppData\Local\Temp\_MEI10842\windows._cacheinvalidation.pyd
MOD - [2012.11.28 15:57:40 | 000,792,576 | ---- | M] () -- C:\Users\noname\AppData\Local\Temp\_MEI10842\wx._gdi_.pyd
MOD - [2012.11.28 15:57:40 | 000,571,392 | ---- | M] () -- C:\Users\noname\AppData\Local\Temp\_MEI10842\pysqlite2._sqlite.pyd
MOD - [2012.11.28 15:57:40 | 000,263,168 | ---- | M] () -- C:\Users\noname\AppData\Local\Temp\_MEI10842\win32com.shell.shell.pyd
MOD - [2012.11.28 15:57:40 | 000,096,256 | ---- | M] () -- C:\Users\noname\AppData\Local\Temp\_MEI10842\win32api.pyd
MOD - [2012.11.28 15:57:40 | 000,086,016 | ---- | M] () -- C:\Users\noname\AppData\Local\Temp\_MEI10842\_elementtree.pyd
MOD - [2012.11.28 15:57:40 | 000,070,656 | ---- | M] () -- C:\Users\noname\AppData\Local\Temp\_MEI10842\wx._html2.pyd
MOD - [2012.11.28 15:57:40 | 000,040,448 | ---- | M] () -- C:\Users\noname\AppData\Local\Temp\_MEI10842\_socket.pyd
MOD - [2012.11.28 15:57:40 | 000,023,040 | ---- | M] () -- C:\Users\noname\AppData\Local\Temp\_MEI10842\win32ts.pyd
MOD - [2012.11.28 15:57:40 | 000,011,776 | ---- | M] () -- C:\Users\noname\AppData\Local\Temp\_MEI10842\win32crypt.pyd
MOD - [2012.11.28 15:57:39 | 001,169,408 | ---- | M] () -- C:\Users\noname\AppData\Local\Temp\_MEI10842\wx._core_.pyd
MOD - [2012.11.28 15:57:39 | 000,807,424 | ---- | M] () -- C:\Users\noname\AppData\Local\Temp\_MEI10842\wx._windows_.pyd
MOD - [2012.11.28 15:57:39 | 000,731,136 | ---- | M] () -- C:\Users\noname\AppData\Local\Temp\_MEI10842\wx._misc_.pyd
MOD - [2012.11.28 15:57:39 | 000,645,120 | ---- | M] () -- C:\Users\noname\AppData\Local\Temp\_MEI10842\_ssl.pyd
MOD - [2012.11.28 15:57:39 | 000,354,304 | ---- | M] () -- C:\Users\noname\AppData\Local\Temp\_MEI10842\pythoncom26.dll
MOD - [2012.11.28 15:57:39 | 000,311,808 | ---- | M] () -- C:\Users\noname\AppData\Local\Temp\_MEI10842\_hashlib.pyd
MOD - [2012.11.28 15:57:39 | 000,121,856 | ---- | M] () -- C:\Users\noname\AppData\Local\Temp\_MEI10842\wx._wizard.pyd
MOD - [2012.11.28 15:57:39 | 000,111,104 | ---- | M] () -- C:\Users\noname\AppData\Local\Temp\_MEI10842\win32file.pyd
MOD - [2012.11.28 15:57:39 | 000,110,592 | ---- | M] () -- C:\Users\noname\AppData\Local\Temp\_MEI10842\win32security.pyd
MOD - [2012.11.28 15:57:39 | 000,110,592 | ---- | M] () -- C:\Users\noname\AppData\Local\Temp\_MEI10842\pywintypes26.dll
MOD - [2012.11.28 15:57:39 | 000,073,728 | ---- | M] () -- C:\Users\noname\AppData\Local\Temp\_MEI10842\_ctypes.pyd
MOD - [2012.11.28 15:57:39 | 000,039,424 | ---- | M] () -- C:\Users\noname\AppData\Local\Temp\_MEI10842\win32inet.pyd
MOD - [2012.11.28 15:57:39 | 000,036,352 | ---- | M] () -- C:\Users\noname\AppData\Local\Temp\_MEI10842\win32process.pyd
MOD - [2012.11.28 15:57:39 | 000,022,528 | ---- | M] () -- C:\Users\noname\AppData\Local\Temp\_MEI10842\win32pdh.pyd
MOD - [2012.11.28 15:57:39 | 000,017,920 | ---- | M] () -- C:\Users\noname\AppData\Local\Temp\_MEI10842\win32profile.pyd
MOD - [2012.11.28 15:57:38 | 001,056,256 | ---- | M] () -- C:\Users\noname\AppData\Local\Temp\_MEI10842\wx._controls_.pyd
MOD - [2012.11.28 15:57:38 | 000,585,728 | ---- | M] () -- C:\Users\noname\AppData\Local\Temp\_MEI10842\unicodedata.pyd
MOD - [2012.11.28 15:57:38 | 000,153,088 | ---- | M] () -- C:\Users\noname\AppData\Local\Temp\_MEI10842\pyexpat.pyd
MOD - [2012.11.28 15:57:38 | 000,017,920 | ---- | M] () -- C:\Users\noname\AppData\Local\Temp\_MEI10842\win32event.pyd
MOD - [2012.11.28 15:57:38 | 000,011,776 | ---- | M] () -- C:\Users\noname\AppData\Local\Temp\_MEI10842\select.pyd
MOD - [2012.11.14 17:12:57 | 011,493,376 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\187d7c66735c533de851c76384f86912\mscorlib.ni.dll
MOD - [2012.10.31 23:15:05 | 000,460,312 | ---- | M] () -- C:\Users\noname\AppData\Local\Google\Chrome\Application\23.0.1271.64\ppGoogleNaClPluginChrome.dll
MOD - [2012.10.31 23:15:04 | 012,455,448 | ---- | M] () -- C:\Users\noname\AppData\Local\Google\Chrome\Application\23.0.1271.64\PepperFlash\pepflashplayer.dll
MOD - [2012.10.31 23:15:02 | 004,007,448 | ---- | M] () -- C:\Users\noname\AppData\Local\Google\Chrome\Application\23.0.1271.64\pdf.dll
MOD - [2012.10.31 23:13:47 | 000,587,288 | ---- | M] () -- C:\Users\noname\AppData\Local\Google\Chrome\Application\23.0.1271.64\libglesv2.dll
MOD - [2012.10.31 23:13:46 | 000,123,928 | ---- | M] () -- C:\Users\noname\AppData\Local\Google\Chrome\Application\23.0.1271.64\libegl.dll
MOD - [2012.10.31 23:13:35 | 000,156,712 | ---- | M] () -- C:\Users\noname\AppData\Local\Google\Chrome\Application\23.0.1271.64\avutil-51.dll
MOD - [2012.10.31 23:13:34 | 000,274,984 | ---- | M] () -- C:\Users\noname\AppData\Local\Google\Chrome\Application\23.0.1271.64\avformat-54.dll
MOD - [2012.10.31 23:13:32 | 002,168,360 | ---- | M] () -- C:\Users\noname\AppData\Local\Google\Chrome\Application\23.0.1271.64\avcodec-54.dll
MOD - [2012.08.31 11:59:23 | 003,198,976 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\System\2.0.0.0__b77a5c561934e089\System.dll
MOD - [2012.04.23 23:35:09 | 000,630,784 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\System.Drawing\2.0.0.0__b03f5f7f11d50a3a\System.Drawing.dll
MOD - [2012.03.21 23:32:36 | 005,025,792 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\System.Windows.Forms\2.0.0.0__b77a5c561934e089\System.Windows.Forms.dll
MOD - [2010.11.13 03:37:03 | 000,303,104 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\mscorlib.resources\2.0.0.0_cs_b77a5c561934e089\mscorlib.resources.dll
MOD - [2010.11.05 02:58:14 | 002,048,000 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\System.Xml\2.0.0.0__b77a5c561934e089\System.Xml.dll
MOD - [2010.11.05 02:58:09 | 000,385,024 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\System.Management\2.0.0.0__b03f5f7f11d50a3a\System.Management.dll
MOD - [2010.11.05 02:58:04 | 000,425,984 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\System.Configuration\2.0.0.0__b03f5f7f11d50a3a\System.Configuration.dll
MOD - [2009.06.10 22:22:40 | 000,010,752 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\Accessibility\2.0.0.0__b03f5f7f11d50a3a\Accessibility.dll
========== Services (SafeList) ==========
SRV - File not found [Auto | Stopped] -- C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2012\avp.exe -- (AVP)
SRV - [2012.11.26 15:07:36 | 000,085,280 | ---- | M] (Avira Operations GmbH & Co. KG) [Auto | Running] -- D:\Program Files\Avira\AntiVir Desktop\sched.exe -- (AntiVirSchedulerService)
SRV - [2012.11.26 15:07:12 | 000,109,344 | ---- | M] (Avira Operations GmbH & Co. KG) [Auto | Running] -- D:\Program Files\Avira\AntiVir Desktop\avguard.exe -- (AntiVirService)
SRV - [2012.10.06 17:01:48 | 003,084,176 | ---- | M] (Emsisoft GmbH) [Auto | Running] -- C:\Program Files\Emsisoft Anti-Malware\a2service.exe -- (a2AntiMalware)
SRV - [2012.08.01 15:07:16 | 000,724,888 | ---- | M] (Nokia) [On_Demand | Stopped] -- C:\Program Files\PC Connectivity Solution\ServiceLayer.exe -- (ServiceLayer)
SRV - [2012.02.26 04:07:52 | 002,324,752 | ---- | M] (Intel® Corporation) [Auto | Running] -- C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe -- (ZeroConfigService)
SRV - [2012.02.26 04:07:42 | 000,241,936 | ---- | M] () [On_Demand | Stopped] -- C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe -- (MyWiFiDHCPDNS)
SRV - [2012.02.26 04:07:32 | 000,498,960 | ---- | M] (Intel(R) Corporation) [Auto | Running] -- C:\Program Files\Intel\WiFi\bin\EvtEng.exe -- (EvtEng)
SRV - [2012.02.26 04:07:26 | 000,107,792 | ---- | M] (Intel(R) Corporation) [Auto | Running] -- C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe -- (RegSrvc)
SRV - [2012.01.17 15:12:30 | 000,104,208 | ---- | M] (Intel(R) Corporation) [Auto | Running] -- C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe -- (BTHSSecurityMgr)
SRV - [2012.01.11 16:42:03 | 000,156,160 | ---- | M] (SEIKO EPSON CORPORATION) [Auto | Running] -- C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50ST7.EXE -- (EPSON_EB_RPCV4_04)
SRV - [2012.01.11 16:42:03 | 000,125,440 | ---- | M] (SEIKO EPSON CORPORATION) [Auto | Running] -- C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50RP7.EXE -- (EPSON_PM_RPCV4_04)
SRV - [2012.01.09 11:39:32 | 000,509,440 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe -- (AMPPALR3)
SRV - [2011.06.21 14:57:34 | 000,085,560 | ---- | M] (Hewlett-Packard Company) [Auto | Running] -- C:\Program Files\Hewlett-Packard\HP Support Framework\HPSA_Service.exe -- (HP Support Assistant Service)
SRV - [2011.03.28 16:07:50 | 000,094,264 | ---- | M] (Hewlett-Packard Company) [Auto | Running] -- C:\Program Files\Hewlett-Packard\Shared\HPDrvMntSvc.exe -- (HPDrvMntSvc.exe)
SRV - [2010.08.22 10:28:09 | 001,343,400 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\Wat\WatAdminSvc.exe -- (WatAdminSvc)
SRV - [2009.12.03 20:28:08 | 000,026,112 | ---- | M] (LSI Corporation) [Auto | Running] -- C:\Program Files\LSI SoftModem\agrsmsvc.exe -- (AgereModemAudio)
SRV - [2009.07.20 10:51:52 | 000,935,208 | ---- | M] (Nero AG) [Disabled | Stopped] -- C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe -- (Nero BackItUp Scheduler 4.0)
SRV - [2009.07.14 02:16:13 | 000,025,088 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\sensrsvc.dll -- (SensrSvc)
SRV - [2009.07.14 02:16:12 | 001,004,544 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\PeerDistSvc.dll -- (PeerDistSvc)
SRV - [2009.07.14 02:15:41 | 000,680,960 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2009.05.14 16:07:14 | 000,759,048 | ---- | M] (ABBYY) [Auto | Running] -- C:\Program Files\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe -- (ABBYY.Licensing.FineReader.Sprint.9.0)
SRV - [2008.09.03 18:27:56 | 000,186,360 | ---- | M] () [Auto | Running] -- C:\Windows\System32\MNSFramework.exe -- (MNSFramework)
SRV - [2008.07.15 16:09:52 | 000,090,112 | ---- | M] (Andrea Electronics Corporation) [Auto | Running] -- C:\Windows\System32\AEADISRV.EXE -- (AEADIFilters)
SRV - [2006.12.20 20:14:00 | 000,131,072 | ---- | M] (SEIKO EPSON CORPORATION) [Auto | Running] -- C:\Windows\System32\SAgent4.exe -- (StatusAgent4)
SRV - [2006.12.19 18:23:20 | 000,094,208 | ---- | M] (SEIKO EPSON CORPORATION) [Auto | Running] -- C:\Program Files\Common Files\EPSON\EBAPI\eEBSvc.exe -- (EpsonBidirectionalService)
SRV - [2000.01.01 01:00:00 | 000,013,632 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe -- (IAStorDataMgrSvc)
========== Driver Services (SafeList) ==========
DRV - [2012.11.14 15:49:42 | 000,133,824 | ---- | M] (Avira Operations GmbH & Co. KG) [Kernel | System | Running] -- C:\Windows\System32\drivers\avipbb.sys -- (avipbb)
DRV - [2012.11.14 15:49:42 | 000,083,432 | ---- | M] (Avira Operations GmbH & Co. KG) [File_System | Auto | Running] -- C:\Windows\System32\drivers\avgntflt.sys -- (avgntflt)
DRV - [2012.11.14 15:49:42 | 000,036,552 | ---- | M] (Avira Operations GmbH & Co. KG) [Kernel | System | Running] -- C:\Windows\System32\drivers\avkmgr.sys -- (avkmgr)
DRV - [2012.11.04 14:56:54 | 000,013,024 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\SWDUMon.sys -- (SWDUMon)
DRV - [2012.10.19 14:59:21 | 000,027,424 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\hitmanpro36.sys -- (hitmanpro36)
DRV - [2012.09.26 17:30:18 | 000,023,976 | ---- | M] (MicroWorld Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\eRootDrv.sys -- (eRootDrv)
DRV - [2012.09.10 10:51:36 | 000,473,248 | ---- | M] (BitDefender) [File_System | On_Demand | Stopped] -- C:\Windows\System32\drivers\avckf.sys -- (avckf)
DRV - [2012.09.10 10:51:33 | 000,617,984 | ---- | M] (BitDefender) [File_System | Boot | Running] -- C:\Windows\System32\drivers\avc3.sys -- (avc3)
DRV - [2012.09.10 10:50:59 | 000,066,392 | ---- | M] (BitDefender SRL) [File_System | On_Demand | Stopped] -- C:\Windows\System32\drivers\bdsandbox.sys -- (BDSandBox)
DRV - [2012.09.10 10:50:45 | 000,343,456 | ---- | M] (BitDefender S.R.L.) [File_System | Boot | Running] -- C:\Windows\System32\drivers\trufos.sys -- (trufos)
DRV - [2012.09.03 11:03:47 | 000,077,192 | ---- | M] (BitDefender LLC) [Kernel | System | Running] -- c:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfndisf6.sys -- (BdfNdisf)
DRV - [2012.08.27 15:50:24 | 000,028,520 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\Windows\System32\drivers\ssmdrv.sys -- (ssmdrv)
DRV - [2012.08.23 15:44:32 | 000,014,848 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\rdpvideominiport.sys -- (RdpVideoMiniport)
DRV - [2012.08.23 15:40:25 | 000,049,664 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV - [2012.07.30 12:32:08 | 000,181,344 | ---- | M] (DEVGURU Co., LTD.(www.devguru.co.kr)) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ssudmdm.sys -- (ssudmdm)
DRV - [2012.07.30 12:32:08 | 000,083,168 | ---- | M] (DEVGURU Co., LTD.(www.devguru.co.kr)) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ssudbus.sys -- (dg_ssudbus)
DRV - [2012.06.27 14:18:52 | 000,019,072 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\pccsmcfd.sys -- (pccsmcfd)
DRV - [2012.05.25 12:14:24 | 000,101,112 | ---- | M] (GFI Software) [Kernel | System | Running] -- C:\Windows\System32\drivers\SBREDrv.sys -- (SBRE)
DRV - [2012.04.30 17:45:28 | 000,054,072 | ---- | M] (Emsisoft GmbH) [File_System | On_Demand | Running] -- C:\Program Files\Emsisoft Anti-Malware\a2accx86.sys -- (a2acc)
DRV - [2012.04.30 17:45:00 | 000,037,856 | ---- | M] (Emsisoft GmbH) [File_System | System | Running] -- C:\Program Files\Emsisoft Anti-Malware\a2dix86.sys -- (a2injectiondriver)
DRV - [2012.04.17 13:40:22 | 000,072,704 | ---- | M] (BitDefender) [Kernel | System | Running] -- C:\Windows\System32\drivers\bdvedisk.sys -- (BDVEDISK)
DRV - [2012.04.11 16:03:33 | 000,154,464 | ---- | M] (BitDefender LLC) [File_System | Boot | Running] -- C:\Windows\System32\drivers\gzflt.sys -- (gzflt)
DRV - [2012.03.27 15:48:00 | 000,319,264 | ---- | M] (Marvell) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\yk62x86.sys -- (yukonw7)
DRV - [2012.03.26 13:50:12 | 000,018,432 | ---- | M] (Apple Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\netaapl.sys -- (Netaapl)
DRV - [2012.02.20 09:18:20 | 010,339,840 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\Netwsn00.sys -- (NETwNs32)
DRV - [2012.01.09 16:28:20 | 000,137,600 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\nmwcdnsu.sys -- (nmwcdnsu)
DRV - [2012.01.09 16:28:20 | 000,023,168 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ccdcmbo.sys -- (nmwcdc)
DRV - [2012.01.09 16:28:20 | 000,018,176 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ccdcmb.sys -- (nmwcd)
DRV - [2012.01.09 16:28:20 | 000,008,576 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\nmwcdnsuc.sys -- (nmwcdnsuc)
DRV - [2012.01.09 16:28:20 | 000,008,192 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\usbser_lowerfltj.sys -- (UsbserFilt)
DRV - [2012.01.09 16:28:20 | 000,008,192 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\usbser_lowerflt.sys -- (upperdev)
DRV - [2012.01.09 11:32:12 | 000,141,312 | ---- | M] (Windows (R) Win 7 DDK provider) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\AmpPal.sys -- (AMPPALP)
DRV - [2012.01.09 11:32:12 | 000,141,312 | ---- | M] (Windows (R) Win 7 DDK provider) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\AmpPal.sys -- (AMPPAL)
DRV - [2011.12.16 16:53:01 | 000,025,088 | ---- | M] (TeamViewer GmbH) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\teamviewervpn.sys -- (teamviewervpn)
DRV - [2011.11.25 13:59:40 | 000,240,184 | ---- | M] (BitDefender) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\avchv.sys -- (avchv)
DRV - [2011.11.14 19:16:27 | 000,090,704 | ---- | M] (BitDefender LLC) [Kernel | System | Running] -- C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf.sys -- (bdfwfpf)
DRV - [2011.07.29 12:54:56 | 000,014,216 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\System32\epmntdrv.sys -- (epmntdrv)
DRV - [2011.07.29 12:54:56 | 000,008,456 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\System32\EuGdiDrv.sys -- (EuGdiDrv)
DRV - [2011.05.19 13:10:34 | 000,017,904 | ---- | M] (Emsi Software GmbH) [Kernel | System | Running] -- C:\Program Files\Emsisoft Anti-Malware\a2ddax86.sys -- (A2DDA)
DRV - [2011.05.13 17:57:42 | 000,025,656 | ---- | M] (Hewlett-Packard Company) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\hpdskflt.sys -- (hpdskflt)
DRV - [2011.05.13 17:57:20 | 000,035,896 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\Accelerometer.sys -- (Accelerometer)
DRV - [2011.03.10 18:36:18 | 000,023,856 | ---- | M] (Kaspersky Lab ZAO) [Kernel | System | Stopped] -- C:\Windows\System32\drivers\klim6.sys -- (KLIM6)
DRV - [2011.03.04 13:23:20 | 000,011,352 | ---- | M] (Kaspersky Lab ZAO) [Kernel | System | Running] -- C:\Windows\System32\drivers\kl2.sys -- (kl2)
DRV - [2011.03.04 13:23:14 | 000,133,208 | ---- | M] (Kaspersky Lab ZAO) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\kl1.sys -- (KL1)
DRV - [2010.11.20 10:59:44 | 000,035,968 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\winusb.sys -- (WinUsb)
DRV - [2010.11.16 14:09:00 | 000,027,632 | ---- | M] (Sony Ericsson Mobile Communications) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\seehcri.sys -- (seehcri)
DRV - [2010.11.16 14:08:35 | 000,025,512 | ---- | M] (Sony Ericsson Mobile Communications) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ggsemc.sys -- (ggsemc)
DRV - [2010.11.16 14:08:35 | 000,013,224 | ---- | M] (Sony Ericsson Mobile Communications) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ggflt.sys -- (ggflt)
DRV - [2010.11.15 23:24:48 | 000,013,880 | ---- | M] (InterVideo) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\regi.sys -- (regi)
DRV - [2010.05.05 08:40:32 | 000,011,776 | ---- | M] (Emsi Software GmbH) [Kernel | System | Running] -- C:\Program Files\Emsisoft Anti-Malware\a2util32.sys -- (a2util)
DRV - [2010.04.12 09:44:34 | 000,059,388 | ---- | M] (PowerISO Computing, Inc.) [Kernel | System | Running] -- C:\Windows\System32\drivers\scdemu.sys -- (SCDEmu)
DRV - [2010.04.05 09:43:16 | 006,758,912 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\NETw5s32.sys -- (NETw5s32)
DRV - [2010.03.01 13:56:28 | 000,482,176 | ---- | M] (AuthenTec, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ATSwpWDF.sys -- (ATSwpWDF)
DRV - [2009.11.13 17:20:28 | 000,114,688 | ---- | M] (Ricoh co.,Ltd.) [2 MP series] [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\5U876.sys -- (5U876UVC)
DRV - [2009.11.02 20:27:16 | 000,019,984 | ---- | M] (Kaspersky Lab) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\klmouflt.sys -- (klmouflt)
DRV - [2009.07.14 01:18:07 | 000,017,920 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\WSDPrint.sys -- (WSDPrintDevice)
DRV - [2009.07.14 01:14:49 | 000,020,480 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\WSDScan.sys -- (WSDScan)
DRV - [2009.07.14 00:52:10 | 000,014,336 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\vwifimp.sys -- (vwifimp)
DRV - [2009.07.13 23:13:48 | 001,035,776 | ---- | M] (LSI Corp) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\AGRSM.sys -- (AgereSoftModem)
DRV - [2009.05.26 04:12:00 | 000,122,368 | ---- | M] (Intel(R) Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\IntcHdmi.sys -- (IntcHdmiAddService)
DRV - [2008.12.18 11:13:18 | 000,025,680 | ---- | M] (Aladdin Knowledge Systems Ltd.) [Kernel | System | Running] -- C:\Windows\System32\drivers\eusk2par.sys -- (eusk2par)
DRV - [2008.07.23 23:29:16 | 000,047,744 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\vserial.sys -- (vserial)
DRV - [2008.07.23 23:29:16 | 000,015,264 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\vsb.sys -- (vsbus)
DRV - [2008.03.28 10:14:02 | 000,024,064 | ---- | M] (Sonic Focus, Inc) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\sfaudio.sys -- (SFAUDIO)
DRV - [2006.12.20 03:58:26 | 000,097,920 | ---- | M] (QUALCOMM Incorporated) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\adusbser.sys -- (adusbser)
DRV - [2006.07.24 15:05:00 | 000,005,632 | ---- | M] () [File_System | System | Running] -- C:\Windows\System32\drivers\StarOpen.sys -- (StarOpen)
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com/ie
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-18\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-639110540-3213493223-2817070946-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
IE - HKU\S-1-5-21-639110540-3213493223-2817070946-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
IE - HKU\S-1-5-21-639110540-3213493223-2817070946-1000\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.google.com/ie
IE - HKU\S-1-5-21-639110540-3213493223-2817070946-1000\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com/ie
IE - HKU\S-1-5-21-639110540-3213493223-2817070946-1000\..\SearchScopes,DefaultScope = {B6F86392-1B41-46F9-907E-23D00B97D55D}
IE - HKU\S-1-5-21-639110540-3213493223-2817070946-1000\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTer ... ORM=IE8SRC
IE - HKU\S-1-5-21-639110540-3213493223-2817070946-1000\..\SearchScopes\{B6F86392-1B41-46F9-907E-23D00B97D55D}: "URL" = http://www.google.cz/search?q={searchTe ... {startPage}
IE - HKU\S-1-5-21-639110540-3213493223-2817070946-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 1
IE - HKU\S-1-5-21-639110540-3213493223-2817070946-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local
========== FireFox ==========
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: D:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX Browser Plugin,version=1.0.0: D:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll (DivX,Inc.)
FF - HKLM\Software\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf: D:\PROGRAM FILES\FOXIT SOFTWARE\FOXIT READER\plugins\npFoxitReaderPlugin.dll (Foxit Corporation)
FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF - HKLM\Software\MozillaPlugins\@google.com/npPicasa3,version=3.0.0: D:\Program Files\Google\Picasa3\npPicasa3.dll (Google, Inc.)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.9.2: C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.9.2: C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\5.1.10411.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/wpi,version=1.4: C:\Program Files\Microsoft\Web Platform Installer\\npwpidetector.dll ()
FF - HKLM\Software\MozillaPlugins\@nokia.com/EnablerPlugin: C:\Program Files\Nokia\Nokia Suite\npNokiaSuiteEnabler.dll ( )
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@stickypassword.com/Sticky Password: F:\Sticky Password\npspAutofill.dll File not found
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Users\noname\AppData\Local\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Users\noname\AppData\Local\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.)
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\e-webprint@epson.com: C:\Program Files\Epson Software\E-Web Print\Firefox Add-on [2012.06.28 14:36:09 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\bdThunderbird@bitdefender.com: D:\Program Files\Bitdefender\Bitdefender 2013\bdtbext
FF - HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\{54affe52-8223-453b-be1e-2fe2e250045c}: C:\Users\noname\AppData\Roaming\Lamantine\Sticky Password\spAutofill [2011.08.22 09:01:21 | 000,000,000 | ---D | M]
[2012.09.11 13:58:33 | 000,000,000 | ---D | M] (No name found) -- C:\Users\noname\AppData\Roaming\mozilla\Extensions
[2012.09.11 13:58:33 | 000,000,000 | ---D | M] (No name found) -- C:\Users\noname\AppData\Roaming\mozilla\Extensions\home2@tomtom.com
[2012.01.03 11:53:15 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2011.03.06 15:00:22 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}
[2011.03.06 15:00:15 | 000,472,808 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\mozilla firefox\plugins\npdeployJava1.dll
========== Chrome ==========
CHR - homepage: http://www.ask.com/?l=dis&o=14597cr
CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}sourceid=chrome&ie={inputEncoding}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&hl={language}&q={searchTerms}&sugkey={google:suggestAPIKeyParameter},
CHR - homepage: http://www.ask.com/?l=dis&o=14597cr
CHR - plugin: Remoting Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Users\noname\AppData\Local\Google\Chrome\Application\23.0.1271.64\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Users\noname\AppData\Local\Google\Chrome\Application\23.0.1271.64\pdf.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Users\noname\AppData\Local\Google\Chrome\Application\23.0.1271.64\gcswf32.dll
CHR - plugin: Shockwave Flash (Disabled) = C:\Users\noname\AppData\Local\Google\Chrome\User Data\PepperFlash\11.2.31.144\pepflashplayer.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Windows\system32\Macromed\Flash\NPSWF32.dll
CHR - plugin: Adobe Acrobat (Enabled) = C:\Program Files\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll
CHR - plugin: Java Deployment Toolkit 6.0.300.12 (Enabled) = C:\Program Files\Java\jre6\bin\new_plugin\npdeployJava1.dll
CHR - plugin: Java(TM) Platform SE 6 U30 (Enabled) = C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll
CHR - plugin: QuickTime Plug-in 7.4 (Enabled) = D:\Program Files\QuickTime\plugins\npqtplugin.dll
CHR - plugin: QuickTime Plug-in 7.4 (Enabled) = D:\Program Files\QuickTime\plugins\npqtplugin2.dll
CHR - plugin: QuickTime Plug-in 7.4 (Enabled) = D:\Program Files\QuickTime\plugins\npqtplugin3.dll
CHR - plugin: QuickTime Plug-in 7.4 (Enabled) = D:\Program Files\QuickTime\plugins\npqtplugin4.dll
CHR - plugin: QuickTime Plug-in 7.4 (Enabled) = D:\Program Files\QuickTime\plugins\npqtplugin5.dll
CHR - plugin: QuickTime Plug-in 7.4 (Enabled) = D:\Program Files\QuickTime\plugins\npqtplugin6.dll
CHR - plugin: QuickTime Plug-in 7.4 (Enabled) = D:\Program Files\QuickTime\plugins\npqtplugin7.dll
CHR - plugin: Google Earth Plugin (Enabled) = C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll
CHR - plugin: Google Update (Enabled) = C:\Program Files\Google\Update\1.3.21.111\npGoogleUpdate3.dll
CHR - plugin: Silverlight Plug-In (Enabled) = C:\Program Files\Microsoft Silverlight\4.1.10329.0\npctrl.dll
CHR - plugin: WPI Detector 1.4 (Enabled) = C:\Program Files\Microsoft\Web Platform Installer\\npwpidetector.dll
CHR - plugin: Panda ActiveScan 2.0 (Enabled) = C:\Program Files\Panda Security\ActiveScan 2.0\npwrapper.dll
CHR - plugin: DivX Web Player (Enabled) = D:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll
CHR - plugin: Picasa (Enabled) = D:\Program Files\Google\Picasa3\npPicasa3.dll
CHR - Extension: 8 Ball baz\u00E9n = C:\Users\noname\AppData\Local\Google\Chrome\User Data\Default\Extensions\bhljoejlbnebcpflalenbmpnanjbikof\3.0.0_0\
CHR - Extension: Chrome YouTube Downloader = C:\Users\noname\AppData\Local\Google\Chrome\User Data\Default\Extensions\effejoeggbefmigppkhjdfllecdnonhb\2.4.1_0\
CHR - Extension: AdBlock = C:\Users\noname\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.5.47_0\
CHR - Extension: TV for Google Chrome\u2122 = C:\Users\noname\AppData\Local\Google\Chrome\User Data\Default\Extensions\licccgnfdlgmmmgaddmbcepikfadcmpe\2.0.1_0\
O1 HOSTS File: ([2012.09.26 15:59:13 | 000,000,027 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (E-Web Print) - {201CF130-E29C-4E5C-A73F-CD197DEFA6AE} - C:\Program Files\Epson Software\E-Web Print\ewps_tb.dll (SEIKO EPSON CORPORATION)
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (Easy Photo Print) - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll (SEIKO EPSON CORPORATION / CyCom Technology Corp.)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O3 - HKLM\..\Toolbar: (E-Web Print) - {201CF130-E29C-4E5C-A73F-CD197DEFA6AE} - C:\Program Files\Epson Software\E-Web Print\ewps_tb.dll (SEIKO EPSON CORPORATION)
O3 - HKLM\..\Toolbar: (Easy Photo Print) - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll (SEIKO EPSON CORPORATION / CyCom Technology Corp.)
O4 - HKLM..\Run: [avgnt] D:\Program Files\Avira\AntiVir Desktop\avgnt.exe (Avira Operations GmbH & Co. KG)
O4 - HKLM..\Run: [emsisoft anti-malware] c:\program files\emsisoft anti-malware\a2guard.exe (Emsisoft GmbH)
O4 - HKU\.DEFAULT..\Run: [Nokia.PCSync] D:\Program Files\Nokia\Nokia PC Suite 6\PCSync2.exe (Time Information Services Ltd.)
O4 - HKU\.DEFAULT..\Run: [PC Suite Tray] D:\Program Files\Nokia\Nokia PC Suite 6\PCSuite.exe (Nokia)
O4 - HKU\S-1-5-18..\Run: [Nokia.PCSync] D:\Program Files\Nokia\Nokia PC Suite 6\PCSync2.exe (Time Information Services Ltd.)
O4 - HKU\S-1-5-18..\Run: [PC Suite Tray] D:\Program Files\Nokia\Nokia PC Suite 6\PCSuite.exe (Nokia)
O4 - HKU\S-1-5-21-639110540-3213493223-2817070946-1000..\Run: [GoogleDriveSync] C:\Program Files\Google\Drive\googledrivesync.exe (Google)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 157
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O7 - HKU\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-19\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-20\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-639110540-3213493223-2817070946-1000\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-639110540-3213493223-2817070946-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 153
O7 - HKU\S-1-5-21-639110540-3213493223-2817070946-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O9 - Extra 'Tools' menuitem : Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre7\bin\jp2iexp.dll ()
O9 - Extra 'Tools' menuitem : Spybot - Search && Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - Reg Error: Key error. File not found
O9 - Extra Button: PokerStars.net - {FA9B9510-9FCB-4ca0-818C-5D0987B47C4D} - C:\Program Files\PokerStars.NET\PokerStarsUpdate.exe File not found
O10 - NameSpace_Catalog5\Catalog_Entries\000000000008 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} http://download.eset.com/special/eos/OnlineScanner.cab (Reg Error: Key error.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{8457558B-5624-4EFF-B3D2-CFCA63FF5A0B}: DhcpNameServer = 192.168.1.1
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\System32\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009.06.10 22:42:20 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = ComFile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)
CREATERESTOREPOINT
Restore point Set: OTL Restore Point
NetSvcs: FastUserSwitchingCompatibility - File not found
NetSvcs: Ias - C:\Windows\System32\ias.dll (Microsoft Corporation)
NetSvcs: Nla - File not found
NetSvcs: Ntmssvc - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: SRService - File not found
NetSvcs: WmdmPmSp - File not found
NetSvcs: LogonHours - File not found
NetSvcs: PCAudit - File not found
NetSvcs: helpsvc - File not found
NetSvcs: uploadmgr - File not found
Drivers32: msacm.ac3filter - C:\Windows\System32\ac3filter.acm ()
Drivers32: msacm.avis - C:\Windows\System32\ff_acm.acm ()
Drivers32: msacm.l3acm - C:\Windows\System32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: MSVideo8 - C:\Windows\System32\vfwwdm32.dll (Microsoft Corporation)
Drivers32: vidc.cvid - C:\Windows\System32\iccvid.dll (Radius Inc.)
Drivers32: vidc.DIVX - C:\Windows\System32\DivX.dll (DivX, Inc.)
Drivers32: VIDC.FFDS - C:\Windows\System32\ff_vfw.dll ()
Drivers32: vidc.xvid - C:\Windows\System32\xvidvfw.dll ()
Drivers32: vidc.yv12 - C:\Windows\System32\DivX.dll (DivX, Inc.)
PhysicalDisk0 MBR saved to C:\PhysicalMBR.bin
========== Files/Folders - Created Within 7 Days ==========
[2012.11.28 16:04:21 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\noname\Desktop\OTL.exe
[2012.11.25 17:39:17 | 000,101,112 | ---- | C] (GFI Software) -- C:\Windows\System32\drivers\SBREDrv.sys
[2012.11.25 17:39:17 | 000,042,864 | ---- | C] (GFI Software) -- C:\Windows\System32\sbbd.exe
[2012.11.25 17:39:06 | 000,000,000 | ---D | C] -- C:\VIPRERESCUE
[2012.11.24 16:19:26 | 000,000,000 | ---D | C] -- C:\Users\noname\Documents\MOBILedit!
[2012.11.24 16:19:26 | 000,000,000 | ---D | C] -- C:\Users\noname\AppData\Roaming\MOBILedit
[2012.11.24 16:18:34 | 000,000,000 | ---D | C] -- C:\Program Files\Compiled Driver Disk (Nokia)
[2012.11.24 16:17:24 | 000,000,000 | ---D | C] -- C:\Program Files\COMPELSON Labs
[2012.11.24 16:17:18 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MOBILedit!
[2012.11.24 16:17:15 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\MobilEdit!
========== Files - Modified Within 7 Days ==========
[2012.11.28 16:11:00 | 000,000,966 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-639110540-3213493223-2817070946-1000UA.job
[2012.11.28 16:10:23 | 000,000,512 | ---- | M] () -- C:\PhysicalMBR.bin
[2012.11.28 16:04:48 | 000,018,464 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2012.11.28 16:04:48 | 000,018,464 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2012.11.28 16:03:43 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\noname\Desktop\OTL.exe
[2012.11.28 15:57:31 | 000,000,936 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2012.11.28 15:57:11 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2012.11.28 15:56:58 | 2359,504,896 | -HS- | M] () -- C:\hiberfil.sys
[2012.11.27 21:33:00 | 000,000,940 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2012.11.27 20:55:54 | 000,856,731 | ---- | M] () -- C:\Users\noname\Desktop\SecurityCheck.exe
[2012.11.26 15:01:32 | 000,000,324 | ---- | M] () -- C:\Windows\tasks\HPCeeScheduleFornoname.job
[2012.11.25 17:39:21 | 000,000,000 | ---- | M] () -- C:\Windows\System32\SBRC.dat
[2012.11.25 17:34:25 | 000,671,398 | ---- | M] () -- C:\Windows\System32\perfh005.dat
[2012.11.25 17:34:25 | 000,656,752 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2012.11.25 17:34:25 | 000,142,238 | ---- | M] () -- C:\Windows\System32\perfc005.dat
[2012.11.25 17:34:25 | 000,122,864 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2012.11.25 10:04:12 | 000,362,142 | ---- | M] () -- C:\Users\noname\Desktop\Poznámky aplikace OneNote (jako soubor PDF).pdf
[2012.11.25 09:51:12 | 000,000,914 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-639110540-3213493223-2817070946-1000Core.job
========== Files Created - No Company Name ==========
[2012.11.28 16:10:23 | 000,000,512 | ---- | C] () -- C:\PhysicalMBR.bin
[2012.11.27 20:56:09 | 000,856,731 | ---- | C] () -- C:\Users\noname\Desktop\SecurityCheck.exe
[2012.11.25 17:39:21 | 000,000,000 | ---- | C] () -- C:\Windows\System32\SBRC.dat
[2012.11.25 10:05:35 | 000,362,142 | ---- | C] () -- C:\Users\noname\Desktop\Poznámky aplikace OneNote (jako soubor PDF).pdf
[2012.11.25 09:48:30 | 000,000,324 | ---- | C] () -- C:\Windows\tasks\HPCeeScheduleFornoname.job
[2012.10.24 10:57:35 | 000,008,117 | ---- | C] () -- C:\Users\noname\AppData\Local\SRDownloader (1).err
[2012.10.24 10:49:39 | 000,001,072 | ---- | C] () -- C:\Users\noname\AppData\Local\SRDownloader (1).nast
[2012.10.22 09:11:20 | 000,001,388 | ---- | C] () -- C:\ProgramData\1350893480.bdinstall.bin
[2012.10.22 09:06:47 | 000,001,388 | ---- | C] () -- C:\ProgramData\1350893207.bdinstall.bin
[2012.10.22 08:46:44 | 000,001,388 | ---- | C] () -- C:\ProgramData\1350892004.bdinstall.bin
[2012.10.22 08:41:48 | 000,001,388 | ---- | C] () -- C:\ProgramData\1350891707.bdinstall.bin
[2012.10.19 15:02:25 | 000,001,388 | ---- | C] () -- C:\ProgramData\1350655345.bdinstall.bin
[2012.10.19 14:59:21 | 000,027,424 | ---- | C] () -- C:\Windows\System32\drivers\hitmanpro36.sys
[2012.10.03 13:16:01 | 000,000,064 | ---- | C] () -- C:\Windows\System32\rp_stats.dat
[2012.10.03 13:16:01 | 000,000,044 | ---- | C] () -- C:\Windows\System32\rp_rules.dat
[2012.09.26 18:16:42 | 000,017,408 | ---- | C] () -- C:\Users\noname\AppData\Local\WebpageIcons.db
[2012.08.12 11:17:54 | 000,033,019 | ---- | C] () -- C:\Windows\System32\CoreAAC-uninstall.exe
[2012.08.01 10:54:36 | 000,256,000 | ---- | C] () -- C:\Windows\PEV.exe
[2012.08.01 10:54:36 | 000,208,896 | ---- | C] () -- C:\Windows\MBR.exe
[2012.08.01 10:54:36 | 000,098,816 | ---- | C] () -- C:\Windows\sed.exe
[2012.08.01 10:54:36 | 000,080,412 | ---- | C] () -- C:\Windows\grep.exe
[2012.08.01 10:54:36 | 000,068,096 | ---- | C] () -- C:\Windows\zip.exe
[2012.08.01 10:26:26 | 000,019,613 | ---- | C] () -- C:\Windows\prodsett_copy.ini
[2012.06.26 15:02:40 | 000,030,568 | ---- | C] () -- C:\Windows\MusiccityDownload.exe
[2012.06.26 15:02:38 | 000,974,848 | ---- | C] () -- C:\Windows\System32\cis-2.4.dll
[2012.06.26 15:02:38 | 000,081,920 | ---- | C] () -- C:\Windows\System32\issacapi_bs-2.3.dll
[2012.06.26 15:02:38 | 000,065,536 | ---- | C] () -- C:\Windows\System32\issacapi_pe-2.3.dll
[2012.06.26 15:02:38 | 000,057,344 | ---- | C] () -- C:\Windows\System32\issacapi_se-2.3.dll
[2012.06.18 15:26:10 | 000,075,776 | ---- | C] () -- C:\Windows\cadkasdeinst01e.exe
[2012.05.29 11:03:15 | 002,469,760 | ---- | C] () -- C:\Windows\System32\BootMan.exe
[2012.05.29 11:03:15 | 000,086,408 | ---- | C] () -- C:\Windows\System32\setupempdrv03.exe
[2012.05.29 11:03:15 | 000,019,840 | ---- | C] () -- C:\Windows\System32\EuEpmGdi.dll
[2012.05.29 11:03:15 | 000,014,216 | ---- | C] () -- C:\Windows\System32\epmntdrv.sys
[2012.05.29 11:03:15 | 000,008,456 | ---- | C] () -- C:\Windows\System32\EuGdiDrv.sys
[2012.01.24 06:52:42 | 000,013,024 | ---- | C] () -- C:\Windows\System32\drivers\SWDUMon.sys
[2011.12.04 08:56:50 | 000,002,560 | ---- | C] () -- C:\Windows\_MSRSTRT.EXE
[2011.10.23 16:35:36 | 000,001,060 | ---- | C] () -- C:\Users\noname\AppData\Local\SRDownloader.err
[2011.10.05 09:23:12 | 000,000,000 | ---- | C] () -- C:\Windows\HPMProp.INI
[2011.08.22 20:06:07 | 000,043,656 | ---- | C] () -- C:\Windows\System32\drivers\EUBKMON.sys
[2011.08.22 09:27:40 | 000,000,001 | ---- | C] () -- C:\Users\noname\AppData\Local\RawCopy.sourcedisk.index
[2011.08.22 09:27:15 | 000,000,001 | ---- | C] () -- C:\Users\noname\AppData\Local\RawCopy.1.01.agreement
[2011.07.28 20:44:44 | 000,000,125 | ---- | C] () -- C:\Users\noname\AppData\Roaming\.gammurc
[2011.07.07 22:33:06 | 000,001,784 | ---- | C] () -- C:\Users\noname\AppData\Local\SRDownloader.nast
[2011.05.26 14:22:53 | 000,080,896 | ---- | C] () -- C:\Windows\System32\RDVGHelper.exe
[2011.05.26 14:21:24 | 000,066,048 | ---- | C] () -- C:\Windows\System32\PrintBrmUi.exe
[2011.03.11 12:43:54 | 000,029,763 | ---- | C] () -- C:\Windows\System32\drivers\klopp.dat
[2010.09.29 11:58:13 | 000,007,597 | ---- | C] () -- C:\Users\noname\AppData\Local\Resmon.ResmonCfg
[2010.09.14 09:53:57 | 000,000,000 | ---- | C] () -- C:\ProgramData\onXTgryAxtQJXaUf
[2010.08.30 10:40:32 | 000,054,784 | ---- | C] () -- C:\Users\noname\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2009.06.05 04:53:07 | 000,000,180 | ---- | C] () -- C:\ProgramData\NytGvuTXfdAyelJQ
========== ZeroAccess Check ==========
[2009.07.14 05:42:31 | 000,000,227 | -HS- | M] () -- C:\Windows\assembly\Desktop.ini
[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2012.01.04 09:59:38 | 012,872,704 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2010.11.20 13:19:02 | 000,606,208 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
"" = %systemroot%\system32\wbem\wbemess.dll -- [2009.07.14 02:16:17 | 000,342,528 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both
========== LOP Check ==========
[2012.07.25 07:02:47 | 000,000,000 | ---D | M] -- C:\Users\Default\AppData\Roaming\Nokia
[2012.07.25 07:02:47 | 000,000,000 | ---D | M] -- C:\Users\Default User\AppData\Roaming\Nokia
[2011.07.23 11:08:39 | 000,000,000 | ---D | M] -- C:\Users\Guest\AppData\Roaming\AVG10
[2012.07.11 05:59:13 | 000,000,000 | ---D | M] -- C:\Users\Guest\AppData\Roaming\Epson
[2012.07.25 06:13:07 | 000,000,000 | ---D | M] -- C:\Users\Guest\AppData\Roaming\Panda Security
[2012.07.25 07:02:50 | 000,000,000 | ---D | M] -- C:\Users\Guest\AppData\Roaming\PC Suite
[2011.10.10 16:38:05 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\3v
[2012.10.31 15:52:14 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\Ad-Aware Antivirus
[2011.01.28 08:49:12 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\Ashampoo
[2011.02.09 14:37:03 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\AVG10
[2012.04.18 10:25:06 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\avidemux
[2011.08.22 11:32:11 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\BatteryBar
[2012.06.18 15:26:31 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\CAD-KAS
[2011.01.25 17:18:05 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\Canneverbe Limited
[2011.03.06 15:45:32 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\DeviceDoctorSoftware
[2012.10.05 17:57:44 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\Downloaded Installations
[2012.11.04 13:30:09 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\Drivers For Free
[2012.10.17 10:33:04 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\Dropbox
[2011.10.11 11:20:02 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\DRPSu
[2011.10.04 20:14:20 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\DVDVideoSoft
[2012.07.07 09:12:39 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\EPSON
[2012.09.25 13:31:51 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\ESET
[2012.07.16 09:42:31 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\Foxit Software
[2012.04.19 12:20:44 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\FreeMoviesToDVD
[2011.07.25 11:56:32 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\HTML Executable
[2012.10.05 18:15:22 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\inkscape
[2011.08.22 09:01:21 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\Lamantine
[2012.03.26 17:50:32 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\LightComp
[2012.11.24 16:19:33 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\MOBILedit
[2012.10.05 17:58:46 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\Nitro PDF
[2012.06.10 13:35:44 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\Nokia
[2012.05.29 12:08:14 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\Nokia Multimedia Player
[2011.04.26 13:44:50 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\Nokia Ovi Suite
[2012.06.10 13:35:45 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\Nokia Suite
[2012.04.25 18:25:17 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\OpenWith.org Cache
[2012.04.25 18:25:34 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\OpenWith.org Downloaded Setups
[2011.06.13 09:14:47 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\Panda Security
[2011.07.25 12:07:57 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\Participatory Culture Foundation
[2012.11.24 16:02:39 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\PC Suite
[2011.07.25 12:14:18 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\PCF-VLC
[2012.06.11 10:46:29 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\QuickScan
[2012.07.15 13:01:46 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\Samsung
[2012.09.11 13:58:33 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\TomTom
[2011.10.11 11:55:54 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\uTorrent
[2011.11.01 08:06:08 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\VDownloader
[2012.08.12 12:17:20 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\Vso
[2010.10.25 09:36:07 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\Win7codecs
[2012.07.18 09:09:56 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\Zoner
========== Purity Check ==========
========== Custom Scans ==========
< >
[2009.07.14 05:53:46 | 000,032,608 | ---- | C] () -- C:\Windows\Tasks\SCHEDLGU.TXT
[2009.07.14 05:53:47 | 000,000,006 | -H-- | C] () -- C:\Windows\Tasks\SA.DAT
[2012.09.17 08:06:17 | 000,000,914 | ---- | C] () -- C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-639110540-3213493223-2817070946-1000Core.job
[2012.09.17 08:06:18 | 000,000,966 | ---- | C] () -- C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-639110540-3213493223-2817070946-1000UA.job
[2012.09.18 09:28:20 | 000,000,936 | ---- | C] () -- C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
[2012.09.18 09:28:21 | 000,000,940 | ---- | C] () -- C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
[2012.11.25 09:48:30 | 000,000,324 | ---- | C] () -- C:\Windows\Tasks\HPCeeScheduleFornoname.job
< >
< MD5 for: ATAPI.SYS >
[2009.07.14 02:26:15 | 000,021,584 | ---- | M] (Microsoft Corporation) MD5=338C86357871C167A96AB976519BF59E -- C:\Users\noname\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20120124T055346906979\internal_ide_channel\atapi.sys
[2009.07.14 02:26:15 | 000,021,584 | ---- | M] (Microsoft Corporation) MD5=338C86357871C167A96AB976519BF59E -- C:\Users\noname\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20120124T055346906979\pci\cc_010601\atapi.sys
[2009.07.14 02:26:15 | 000,021,584 | ---- | M] (Microsoft Corporation) MD5=338C86357871C167A96AB976519BF59E -- C:\Users\noname\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20121003T101543038824\internal_ide_channel\atapi.sys
[2009.07.14 02:26:15 | 000,021,584 | ---- | M] (Microsoft Corporation) MD5=338C86357871C167A96AB976519BF59E -- C:\Users\noname\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20121003T101543038824\pci\cc_010601\atapi.sys
[2009.07.14 02:26:15 | 000,021,584 | ---- | M] (Microsoft Corporation) MD5=338C86357871C167A96AB976519BF59E -- C:\Users\noname\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20121003T122109506426\internal_ide_channel\atapi.sys
[2009.07.14 02:26:15 | 000,021,584 | ---- | M] (Microsoft Corporation) MD5=338C86357871C167A96AB976519BF59E -- C:\Windows\erdnt\cache\atapi.sys
[2009.07.14 02:26:15 | 000,021,584 | ---- | M] (Microsoft Corporation) MD5=338C86357871C167A96AB976519BF59E -- C:\Windows\System32\drivers\atapi.sys
[2009.07.14 02:26:15 | 000,021,584 | ---- | M] (Microsoft Corporation) MD5=338C86357871C167A96AB976519BF59E -- C:\Windows\System32\DriverStore\FileRepository\mshdc.inf_x86_neutral_fab873f3e8a3315c\atapi.sys
[2009.07.14 02:26:15 | 000,021,584 | ---- | M] (Microsoft Corporation) MD5=338C86357871C167A96AB976519BF59E -- C:\Windows\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.1.7600.16385_none_dd0e7e3d82dd640d\atapi.sys
[2009.07.14 02:26:15 | 000,021,584 | ---- | M] (Microsoft Corporation) MD5=338C86357871C167A96AB976519BF59E -- C:\Windows\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.1.7601.17514_none_df3f92057fcbe7a7\atapi.sys
< MD5 for: AUTOCHK.EXE >
[2009.07.14 02:14:12 | 000,668,160 | ---- | M] (Microsoft Corporation) MD5=41E4C8EBA464E7D6A5BA5E8827732AEB -- C:\Windows\winsxs\x86_microsoft-windows-autochk_31bf3856ad364e35_6.1.7600.16385_none_e1ca436d2314b860\autochk.exe
[2010.11.20 13:16:54 | 000,668,160 | ---- | M] (Microsoft Corporation) MD5=F88A52EB62019D6A62FDD9E08034DBD8 -- C:\Windows\System32\autochk.exe
[2010.11.20 13:16:54 | 000,668,160 | ---- | M] (Microsoft Corporation) MD5=F88A52EB62019D6A62FDD9E08034DBD8 -- C:\Windows\winsxs\x86_microsoft-windows-autochk_31bf3856ad364e35_6.1.7601.17514_none_e3fb573520033bfa\autochk.exe
< MD5 for: CDROM.SYS >
[2009.07.14 00:11:26 | 000,108,544 | ---- | M] (Microsoft Corporation) MD5=BA6E70AA0E6091BC39DE29477D866A77 -- C:\Windows\winsxs\x86_cdrom.inf_31bf3856ad364e35_6.1.7600.16385_none_5f7fb206051affbb\cdrom.sys
[2010.11.20 09:38:10 | 000,108,544 | ---- | M] (Microsoft Corporation) MD5=BE167ED0FDB9C1FA1133953C18D5A6C9 -- C:\Users\noname\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20120124T055346906979\gencdrom\cdrom.sys
[2010.11.20 09:38:10 | 000,108,544 | ---- | M] (Microsoft Corporation) MD5=BE167ED0FDB9C1FA1133953C18D5A6C9 -- C:\Users\noname\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20121003T101543038824\gencdrom\cdrom.sys
[2010.11.20 09:38:10 | 000,108,544 | ---- | M] (Microsoft Corporation) MD5=BE167ED0FDB9C1FA1133953C18D5A6C9 -- C:\Users\noname\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20121003T122109506426\gencdrom\cdrom.sys
[2010.11.20 09:38:10 | 000,108,544 | ---- | M] (Microsoft Corporation) MD5=BE167ED0FDB9C1FA1133953C18D5A6C9 -- C:\Users\noname\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20121104T123200603895\gencdrom\cdrom.sys
[2010.11.20 09:38:10 | 000,108,544 | ---- | M] (Microsoft Corporation) MD5=BE167ED0FDB9C1FA1133953C18D5A6C9 -- C:\Windows\System32\drivers\cdrom.sys
[2010.11.20 09:38:10 | 000,108,544 | ---- | M] (Microsoft Corporation) MD5=BE167ED0FDB9C1FA1133953C18D5A6C9 -- C:\Windows\System32\DriverStore\FileRepository\cdrom.inf_x86_neutral_6381e09675524225\cdrom.sys
[2010.11.20 09:38:10 | 000,108,544 | ---- | M] (Microsoft Corporation) MD5=BE167ED0FDB9C1FA1133953C18D5A6C9 -- C:\Windows\winsxs\x86_cdrom.inf_31bf3856ad364e35_6.1.7601.17514_none_61b0c5ce02098355\cdrom.sys
< MD5 for: EXPLORER.EXE >
[2011.02.26 06:19:21 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=0FB9C74046656D1579A64660AD67B746 -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.21669_none_54149f9ef14031fc\explorer.exe
[2009.07.14 02:14:20 | 002,613,248 | ---- | M] (Microsoft Corporation) MD5=15BC38A7492BEFE831966ADB477CF76F -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16385_none_518afd35db100430\explorer.exe
[2011.02.26 06:51:13 | 002,614,784 | ---- | M] (Microsoft Corporation) MD5=255CF508D7CFB10E0794D6AC93280BD8 -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20910_none_525b5180f3f95373\explorer.exe
[2009.10.31 06:45:39 | 002,614,272 | ---- | M] (Microsoft Corporation) MD5=2626FC9755BE22F805D3CFA0CE3EE727 -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16450_none_51a66d6ddafc2ed1\explorer.exe
[2011.02.26 06:33:07 | 002,614,784 | ---- | M] (Microsoft Corporation) MD5=2AF58D15EDC06EC6FDACCE1F19482BBF -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16768_none_51a3a583dafd0cef\explorer.exe
[2010.11.20 13:17:09 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=40D777B7A95E00593EB1568C68514493 -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17514_none_53bc10fdd7fe87ca\explorer.exe
[2011.02.25 06:30:54 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=8B88EBBB05A0E56B7DCC708498C02B3E -- C:\Windows\erdnt\cache\explorer.exe
[2011.02.25 06:30:54 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=8B88EBBB05A0E56B7DCC708498C02B3E -- C:\Windows\explorer.exe
[2011.02.25 06:30:54 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=8B88EBBB05A0E56B7DCC708498C02B3E -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17567_none_5389023fd8245f84\explorer.exe
[2009.08.03 06:49:47 | 002,613,248 | ---- | M] (Microsoft Corporation) MD5=9FF6C4C91A3711C0A3B18F87B08B518D -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20500_none_526619d4f3f142e6\explorer.exe
[2009.08.03 06:35:50 | 002,613,248 | ---- | M] (Microsoft Corporation) MD5=B95EEB0F4E5EFBF1038A35B3351CF047 -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16404_none_51e07e31dad00878\explorer.exe
[2009.10.31 07:00:51 | 002,614,272 | ---- | M] (Microsoft Corporation) MD5=C76153C7ECA00FA852BB0C193378F917 -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20563_none_52283b2af41f3691\explorer.exe
< MD5 for: HAL.DLL >
[2010.11.20 13:29:53 | 000,194,432 | ---- | M] (Microsoft Corporation) MD5=1BF0D4727FDB437D513CFF8A9359C050 -- C:\Windows\System32\hal.dll
[2010.11.20 13:29:53 | 000,194,432 | ---- | M] (Microsoft Corporation) MD5=1BF0D4727FDB437D513CFF8A9359C050 -- C:\Windows\winsxs\x86_microsoft-windows-hal_31bf3856ad364e35_6.1.7601.17514_none_ad305c8fb7ec5060\hal.dll
[2009.07.14 02:20:28 | 000,194,640 | ---- | M] (Microsoft Corporation) MD5=9A557EAE64ABAB3BA67A9BB035D24CB9 -- C:\Windows\winsxs\x86_microsoft-windows-hal_31bf3856ad364e35_6.1.7600.16385_none_aaff48c7bafdccc6\hal.dll
< MD5 for: SCECLI.DLL >
[2009.07.14 02:16:13 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=26073302DAEA83CC5B944C546D6B47D2 -- C:\Windows\winsxs\x86_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7600.16385_none_37e4387f3a6f0483\scecli.dll
[2010.11.20 13:21:04 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=8124944EC89D6A1815E4E53F5B96AAF4 -- C:\Windows\erdnt\cache\scecli.dll
[2010.11.20 13:21:04 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=8124944EC89D6A1815E4E53F5B96AAF4 -- C:\Windows\System32\scecli.dll
[2010.11.20 13:21:04 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=8124944EC89D6A1815E4E53F5B96AAF4 -- C:\Windows\winsxs\x86_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7601.17514_none_3a154c47375d881d\scecli.dll
< MD5 for: SERVICES.EXE >
[2009.07.14 02:14:36 | 000,259,072 | ---- | M] (Microsoft Corporation) MD5=5F1B6A9C35D3D5CA72D6D6FDEF9747D6 -- C:\Windows\erdnt\cache\services.exe
[2009.07.14 02:14:36 | 000,259,072 | ---- | M] (Microsoft Corporation) MD5=5F1B6A9C35D3D5CA72D6D6FDEF9747D6 -- C:\Windows\System32\services.exe
[2009.07.14 02:14:36 | 000,259,072 | ---- | M] (Microsoft Corporation) MD5=5F1B6A9C35D3D5CA72D6D6FDEF9747D6 -- C:\Windows\winsxs\x86_microsoft-windows-s..s-servicecontroller_31bf3856ad364e35_6.1.7600.16385_none_cf36168b2e9c967b\services.exe
< MD5 for: SVCHOST.EXE >
[2009.07.14 02:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\erdnt\cache\svchost.exe
[2009.07.14 02:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\System32\svchost.exe
[2009.07.14 02:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\winsxs\x86_microsoft-windows-services-svchost_31bf3856ad364e35_6.1.7600.16385_none_b591afc466a15356\svchost.exe
< MD5 for: TCPIP.SYS >
[2011.04.25 05:56:06 | 001,286,016 | ---- | M] (Microsoft Corporation) MD5=0158D5E9982E9D6A90DFC802F618E130 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.16802_none_b347f075c77b9c9d\tcpip.sys
[2011.06.21 06:34:23 | 001,290,624 | ---- | M] (Microsoft Corporation) MD5=04E4A7D53A7ACE02E8C55B17A498F631 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.17638_none_b513df73c4b4f466\tcpip.sys
[2011.09.29 17:02:44 | 001,301,872 | ---- | M] (Microsoft Corporation) MD5=22F7E7CBCA308DEE3428B097D4F8A61C -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.21060_none_b38e8546e0cbe4a1\tcpip.sys
[2012.08.22 18:05:21 | 001,306,992 | ---- | M] (Microsoft Corporation) MD5=23790A44D9A6B67F8690C34D4F516446 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.22097_none_b55b785ade04500f\tcpip.sys
[2011.04.25 05:31:30 | 001,290,624 | ---- | M] (Microsoft Corporation) MD5=24326784DF8F3D5F5BBB9F878CE33C14 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.17603_none_b52f4dc5c4a121e0\tcpip.sys
[2009.07.14 02:19:10 | 001,285,712 | ---- | M] (Microsoft Corporation) MD5=2CC3D75488ABD3EC628BBB9A4FC84EFC -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.16385_none_b2f46875c7b9d667\tcpip.sys
[2010.11.20 13:30:12 | 001,290,112 | ---- | M] (Microsoft Corporation) MD5=37E8FA3779668837CA9E2C36D2415949 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.17514_none_b5257c3dc4a85a01\tcpip.sys
[2011.09.29 17:17:18 | 001,303,920 | ---- | M] (Microsoft Corporation) MD5=3C1C41E317710F74CEC1E7F0D5325993 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.21828_none_b5a84e10ddca7566\tcpip.sys
[2012.03.30 11:29:05 | 001,287,024 | ---- | M] (Microsoft Corporation) MD5=55E9965552741F3850CB22CBBA9671ED -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.16986_none_b2f57423c7b8dea8\tcpip.sys
[2011.09.29 16:43:37 | 001,285,488 | ---- | M] (Microsoft Corporation) MD5=56C198AC82EFA622DD93E9E43575F79C -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.16889_none_b2f8731bc7b62d86\tcpip.sys
[2011.09.29 17:03:04 | 001,290,608 | ---- | M] (Microsoft Corporation) MD5=65D10B191C59C5501A1263FC33F6894B -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.17697_none_b4d1ffa1c4e682b5\tcpip.sys
[2011.04.25 07:31:09 | 001,301,376 | ---- | M] (Microsoft Corporation) MD5=6D4728CFF2724FF3A4654971D61D0F1C -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.21712_none_b5ad1a5addc7c444\tcpip.sys
[2012.03.30 11:23:11 | 001,291,632 | ---- | M] (Microsoft Corporation) MD5=7FA2E0F8B072BD04B77B421480B6CC22 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.17802_none_b52e5147c4a202d7\tcpip.sys
[2011.04.25 05:44:18 | 001,298,816 | ---- | M] (Microsoft Corporation) MD5=8861B9A06BA99C6E1D62D0C86DFAB86C -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.20951_none_b39a7d5ae0c2aec5\tcpip.sys
[2012.03.30 10:04:23 | 001,306,480 | ---- | M] (Microsoft Corporation) MD5=88FCDB9923EFECA207B3CEBD24407126 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.21954_none_b583df0adde66104\tcpip.sys
[2011.06.21 06:30:45 | 001,301,376 | ---- | M] (Microsoft Corporation) MD5=93C444D118B184452132357C322124CD -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.20992_none_b3703df4e0e237e0\tcpip.sys
[2010.06.14 07:06:58 | 001,288,576 | ---- | M] (Microsoft Corporation) MD5=A39EA325C081AD27461F630C8E3E56E0 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.20733_none_b3b219fae0b0af43\tcpip.sys
[2012.08.22 18:16:54 | 001,292,144 | ---- | M] (Microsoft Corporation) MD5=A5EBB8F648000E88B7D9390B514976BF -- C:\Windows\erdnt\cache\tcpip.sys
[2012.08.22 18:16:54 | 001,292,144 | ---- | M] (Microsoft Corporation) MD5=A5EBB8F648000E88B7D9390B514976BF -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.17939_none_b514e56fc4b40532\tcpip.sys
[2010.06.14 07:12:30 | 001,286,016 | ---- | M] (Microsoft Corporation) MD5=BB7F39C31C4A4417FD318E7CD184E225 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.16610_none_b33b1c29c7858b92\tcpip.sys
[2011.06.21 06:39:53 | 001,286,016 | ---- | M] (Microsoft Corporation) MD5=C2DAAEB48F3A47C410B041A0D2382EE1 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.16839_none_b32e82b7c78da1d1\tcpip.sys
[2012.10.03 17:44:01 | 001,308,040 | ---- | M] (Microsoft Corporation) MD5=D490DD0A91B4EAC3B4EE08D11EE37C31 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.22124_none_b5a428d6ddce3d9a\tcpip.sys
[2011.06.21 07:54:00 | 001,303,424 | ---- | M] (Microsoft Corporation) MD5=DEC4940487050AE13C60C86F40E07E75 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.21754_none_b583db3edde666b6\tcpip.sys
[2012.10.03 17:58:30 | 001,293,680 | ---- | M] (Microsoft Corporation) MD5=E23A56F843E2AEBBB209D0ACCA73C640 -- C:\Windows\System32\drivers\tcpip.sys
[2012.10.03 17:58:30 | 001,293,680 | ---- | M] (Microsoft Corporation) MD5=E23A56F843E2AEBBB209D0ACCA73C640 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.17964_none_b4ef7439c4d0da52\tcpip.sys
[2012.03.30 11:08:19 | 001,303,408 | ---- | M] (Microsoft Corporation) MD5=E47C2844A1605A44178F4281E4D58B3D -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.21178_none_b38bb990e0ccc871\tcpip.sys
Re: Zdravím a prosím o kontrolu. Předem díky
< MD5 for: USERINIT.EXE >
[2010.11.20 13:17:48 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=61AC3EFDFACFDD3F0F11DD4FD4044223 -- C:\Windows\erdnt\cache\userinit.exe
[2010.11.20 13:17:48 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=61AC3EFDFACFDD3F0F11DD4FD4044223 -- C:\Windows\System32\userinit.exe
[2010.11.20 13:17:48 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=61AC3EFDFACFDD3F0F11DD4FD4044223 -- C:\Windows\winsxs\x86_microsoft-windows-userinit_31bf3856ad364e35_6.1.7601.17514_none_de3024012ff21116\userinit.exe
[2009.07.14 02:14:43 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=6DE80F60D7DE9CE6B8C2DDFDF79EF175 -- C:\Windows\winsxs\x86_microsoft-windows-userinit_31bf3856ad364e35_6.1.7600.16385_none_dbff103933038d7c\userinit.exe
< MD5 for: WINLOGON.EXE >
[2009.10.28 07:17:59 | 000,285,696 | ---- | M] (Microsoft Corporation) MD5=37CDB7E72EB66BA85A87CBE37E7F03FD -- C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7600.16447_none_6fc699643622d177\winlogon.exe
[2009.10.28 06:52:08 | 000,285,696 | ---- | M] (Microsoft Corporation) MD5=3BABE6767C78FBF5FB8435FEED187F30 -- C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7600.20560_none_703394514f56f7c2\winlogon.exe
[2010.11.20 13:17:54 | 000,286,720 | ---- | M] (Microsoft Corporation) MD5=6D13E1406F50C66E2A95D97F22C47560 -- C:\Windows\erdnt\cache\winlogon.exe
[2010.11.20 13:17:54 | 000,286,720 | ---- | M] (Microsoft Corporation) MD5=6D13E1406F50C66E2A95D97F22C47560 -- C:\Windows\System32\winlogon.exe
[2010.11.20 13:17:54 | 000,286,720 | ---- | M] (Microsoft Corporation) MD5=6D13E1406F50C66E2A95D97F22C47560 -- C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7601.17514_none_71ca6b0233339500\winlogon.exe
[2009.07.14 02:14:45 | 000,285,696 | ---- | M] (Microsoft Corporation) MD5=8EC6A4AB12B8F3759E21F8E3A388F2CF -- C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7600.16385_none_6f99573a36451166\winlogon.exe
< >
< %systemroot%*.* /U /s >
[24 C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp files -> C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp -> ]
[26 C:\Windows\Installer\*.tmp files -> C:\Windows\Installer\*.tmp -> ]
[2 C:\Windows\ServiceProfiles\NetworkService\AppData\Local\Temp\*.tmp files -> C:\Windows\ServiceProfiles\NetworkService\AppData\Local\Temp\*.tmp -> ]
[3 C:\Windows\System32\spool\PRINTERS\*.tmp files -> C:\Windows\System32\spool\PRINTERS\*.tmp -> ]
[67 C:\Windows\temp\*.tmp files -> C:\Windows\temp\*.tmp -> ]
< %SYSTEMDRIVE%\*.exe >
< %ALLUSERSPROFILE%\Application Data\*. >
< %ALLUSERSPROFILE%\Application Data\*.exe /s >
< %APPDATA%\*. >
[2011.10.10 16:38:05 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\3v
[2012.10.31 15:52:14 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\Ad-Aware Antivirus
[2012.04.11 15:17:49 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\Adobe
[2010.09.14 14:03:41 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\Ahead
[2012.10.01 09:43:56 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\Apple Computer
[2011.01.28 08:49:12 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\Ashampoo
[2011.02.09 14:37:03 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\AVG10
[2012.04.18 10:25:06 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\avidemux
[2012.11.07 16:00:48 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\Avira
[2011.08.22 11:32:11 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\BatteryBar
[2012.06.18 15:26:31 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\CAD-KAS
[2011.01.25 17:18:05 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\Canneverbe Limited
[2011.03.06 15:45:32 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\DeviceDoctorSoftware
[2010.09.30 11:38:42 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\DivX
[2012.07.26 06:56:03 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\Download Manager
[2012.10.05 17:57:44 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\Downloaded Installations
[2012.11.04 13:30:09 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\Drivers For Free
[2012.10.17 10:33:04 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\Dropbox
[2011.10.11 11:20:02 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\DRPSu
[2010.09.29 12:43:30 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\DVD Shrink
[2012.01.03 12:03:21 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\dvdcss
[2011.10.04 20:14:20 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\DVDVideoSoft
[2012.07.07 09:12:39 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\EPSON
[2012.09.25 13:31:51 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\ESET
[2011.01.17 15:46:57 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\FastStone
[2012.07.16 09:42:31 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\Foxit Software
[2012.04.19 12:20:44 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\FreeMoviesToDVD
[2011.10.11 12:07:23 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\Hewlett-Packard
[2011.01.18 12:14:15 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\hpqLog
[2011.07.25 11:56:32 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\HTML Executable
[2010.08.20 10:47:24 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\Identities
[2012.10.05 18:15:22 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\inkscape
[2011.10.11 11:31:36 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\InstallShield
[2012.01.24 07:06:00 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\Intel
[2012.10.03 13:31:32 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\Intel Corporation
[2011.08.22 09:01:21 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\Lamantine
[2012.10.22 08:49:26 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\LavasoftStatistics
[2012.03.26 17:50:32 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\LightComp
[2010.08.21 13:40:19 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\Macromedia
[2012.09.25 18:53:27 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\Malwarebytes
[2009.07.14 10:19:24 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\Media Center Programs
[2012.11.14 10:30:29 | 000,000,000 | --SD | M] -- C:\Users\noname\AppData\Roaming\Microsoft
[2012.11.24 16:19:33 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\MOBILedit
[2012.09.11 13:58:33 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\Mozilla
[2010.11.17 19:40:35 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\NCH Software
[2010.12.16 06:11:13 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\Nero
[2011.02.19 12:34:47 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\NeroDigital(TM)
[2012.10.05 17:58:46 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\Nitro PDF
[2012.06.10 13:35:44 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\Nokia
[2012.05.29 12:08:14 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\Nokia Multimedia Player
[2011.04.26 13:44:50 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\Nokia Ovi Suite
[2012.06.10 13:35:45 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\Nokia Suite
[2012.04.25 18:25:17 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\OpenWith.org Cache
[2012.04.25 18:25:34 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\OpenWith.org Downloaded Setups
[2011.06.13 09:14:47 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\Panda Security
[2011.07.25 12:07:57 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\Participatory Culture Foundation
[2012.11.24 16:02:39 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\PC Suite
[2011.07.25 12:14:18 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\PCF-VLC
[2012.06.11 10:46:29 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\QuickScan
[2012.07.15 13:01:46 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\Samsung
[2012.09.24 18:45:59 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\Skype
[2012.10.21 09:53:43 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\SUPERAntiSpyware.com
[2012.09.11 13:58:33 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\TomTom
[2011.08.01 06:11:50 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\Tor
[2011.10.11 11:55:54 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\uTorrent
[2011.11.01 08:06:08 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\VDownloader
[2011.08.01 06:11:50 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\Vidalia
[2012.11.02 20:20:06 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\vlc
[2012.08.12 12:17:20 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\Vso
[2010.10.25 09:36:07 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\Win7codecs
[2010.11.04 14:31:17 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\WinRAR
[2012.07.18 09:09:56 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\Zoner
< %APPDATA%\*.exe /s >
[2011.03.06 15:45:48 | 007,216,616 | ---- | M] (Device Doctor Software Inc. ) -- C:\Users\noname\AppData\Roaming\DeviceDoctorSoftware\DeviceDoctor\updates\1.0.0.1\DeviceDoctor_Setup.exe
[2012.05.29 12:33:56 | 000,053,248 | R--- | M] (Flexera Software, Inc.) -- C:\Users\noname\AppData\Roaming\Microsoft\Installer\{7130468A-F53F-4698-8C09-A339EA3B05E6}\ARPPRODUCTICON.exe
[2012.05.29 12:33:56 | 000,049,152 | R--- | M] (Flexera Software, Inc.) -- C:\Users\noname\AppData\Roaming\Microsoft\Installer\{7130468A-F53F-4698-8C09-A339EA3B05E6}\NewShortcut2_1C7B7089989A424FB39D41A32581C775.exe
[2012.05.29 12:33:56 | 000,073,728 | R--- | M] (Flexera Software, Inc.) -- C:\Users\noname\AppData\Roaming\Microsoft\Installer\{7130468A-F53F-4698-8C09-A339EA3B05E6}\NewShortcut46_74B9CE5DF1F4447F982DCA29A461B529.exe
[2012.05.29 12:33:56 | 000,073,728 | R--- | M] (Flexera Software, Inc.) -- C:\Users\noname\AppData\Roaming\Microsoft\Installer\{7130468A-F53F-4698-8C09-A339EA3B05E6}\NewShortcut47_74B9CE5DF1F4447F982DCA29A461B529.exe
[2012.05.29 12:33:56 | 000,049,152 | R--- | M] (Flexera Software, Inc.) -- C:\Users\noname\AppData\Roaming\Microsoft\Installer\{7130468A-F53F-4698-8C09-A339EA3B05E6}\Uninstall_QA_OTI_H_FE5D756F71E147C4972AD6775344B40B.exe
[2011.10.05 09:13:30 | 000,002,550 | R--- | M] () -- C:\Users\noname\AppData\Roaming\Microsoft\Installer\{7CA4F780-7AD0-417A-82A1-46EB825CFD53}\_6FEFF9B68218417F98F549.exe
[2011.10.05 09:13:30 | 000,002,550 | R--- | M] () -- C:\Users\noname\AppData\Roaming\Microsoft\Installer\{7CA4F780-7AD0-417A-82A1-46EB825CFD53}\_9088A3C9079CABA68E9157.exe
[2012.11.11 08:36:25 | 000,073,728 | R--- | M] (Macrovision Corporation) -- C:\Users\noname\AppData\Roaming\Microsoft\Installer\{B829E117-D072-41EA-9606-9826A38D34C1}\ARPPRODUCTICON.exe
[2012.11.11 08:36:26 | 000,073,728 | R--- | M] (Macrovision Corporation) -- C:\Users\noname\AppData\Roaming\Microsoft\Installer\{B829E117-D072-41EA-9606-9826A38D34C1}\SVRTgui.exe1_810EDD9E2F0A4E2BACF86673C38D9F48.exe
[2012.11.11 08:36:26 | 000,073,728 | R--- | M] (Macrovision Corporation) -- C:\Users\noname\AppData\Roaming\Microsoft\Installer\{B829E117-D072-41EA-9606-9826A38D34C1}\SVRTgui.exe_810EDD9E2F0A4E2BACF86673C38D9F48.exe
[2012.04.25 18:25:37 | 001,345,024 | ---- | M] (Irfan Skiljan) -- C:\Users\noname\AppData\Roaming\OpenWith.org Downloaded Setups\IrfanView 4.23\IrfanView 4.23.exe
[2012.07.02 16:12:40 | 000,975,288 | ---- | M] (Samsung) -- C:\Users\noname\AppData\Roaming\Samsung\Kies\UpdateTemp\Backup\Kies.exe
[2012.07.02 16:12:44 | 000,278,968 | ---- | M] () -- C:\Users\noname\AppData\Roaming\Samsung\Kies\UpdateTemp\Backup\KiesDriverInstaller.exe
[2012.06.26 15:04:30 | 000,320,000 | ---- | M] (Samsung) -- C:\Users\noname\AppData\Roaming\Samsung\Kies\UpdateTemp\Backup\KiesLogger.exe
[2012.07.02 16:12:42 | 003,524,536 | ---- | M] (Samsung Electronics Co., Ltd.) -- C:\Users\noname\AppData\Roaming\Samsung\Kies\UpdateTemp\Backup\KiesTrayAgent.exe
[2012.06.26 15:03:34 | 000,182,784 | ---- | M] (Mobileleader Co., Ltd.) -- C:\Users\noname\AppData\Roaming\Samsung\Kies\UpdateTemp\Backup\External\DeviceModules\ConnectionManager.exe
[2012.06.26 15:03:34 | 000,321,536 | ---- | M] (Mobileleader Co., Ltd.) -- C:\Users\noname\AppData\Roaming\Samsung\Kies\UpdateTemp\Backup\External\DeviceModules\DeviceDataService.exe
[2012.06.26 15:03:38 | 000,716,800 | ---- | M] (Mobileleader Co., Ltd.) -- C:\Users\noname\AppData\Roaming\Samsung\Kies\UpdateTemp\Backup\External\DeviceModules\DeviceManager.exe
[2012.07.02 16:12:46 | 000,067,512 | ---- | M] (Samsung) -- C:\Users\noname\AppData\Roaming\Samsung\Kies\UpdateTemp\Backup\External\DeviceModules\Kies_Tutorial.exe
[2012.06.26 15:03:16 | 000,106,960 | ---- | M] () -- C:\Users\noname\AppData\Roaming\Samsung\Kies\UpdateTemp\Backup\External\FirmwareUpdate\AgentInstaller.exe
[2012.06.26 15:03:16 | 000,101,328 | ---- | M] () -- C:\Users\noname\AppData\Roaming\Samsung\Kies\UpdateTemp\Backup\External\FirmwareUpdate\AgentUpdate.exe
[2012.07.02 16:12:50 | 000,183,736 | ---- | M] () -- C:\Users\noname\AppData\Roaming\Samsung\Kies\UpdateTemp\Backup\External\FirmwareUpdate\BinaryLoaderMgr.exe
[2012.07.02 16:12:50 | 000,021,432 | ---- | M] () -- C:\Users\noname\AppData\Roaming\Samsung\Kies\UpdateTemp\Backup\External\FirmwareUpdate\KiesPDLR.exe
[2012.07.02 16:12:52 | 003,742,648 | ---- | M] (Freeware) -- C:\Users\noname\AppData\Roaming\Samsung\Kies\UpdateTemp\Backup\External\MediaModules\MyFreeCodecPack.exe
[2012.07.02 16:12:54 | 000,449,976 | ---- | M] (ml) -- C:\Users\noname\AppData\Roaming\Samsung\Kies\UpdateTemp\Backup\Updater\Kies.Update.exe
[2012.08.07 06:25:02 | 000,960,440 | ---- | M] (Samsung) -- C:\Users\noname\AppData\Roaming\Samsung\Kies\UpdateTemp\Sub\Kies.exe
[2012.08.07 06:25:04 | 000,278,968 | ---- | M] () -- C:\Users\noname\AppData\Roaming\Samsung\Kies\UpdateTemp\Sub\KiesDriverInstaller.exe
[2012.07.30 06:17:50 | 000,320,512 | ---- | M] (Samsung) -- C:\Users\noname\AppData\Roaming\Samsung\Kies\UpdateTemp\Sub\KiesLogger.exe
[2012.08.07 06:25:02 | 003,524,536 | ---- | M] (Samsung Electronics Co., Ltd.) -- C:\Users\noname\AppData\Roaming\Samsung\Kies\UpdateTemp\Sub\KiesTrayAgent.exe
[2012.08.07 06:11:30 | 000,182,784 | ---- | M] (Mobileleader Co., Ltd.) -- C:\Users\noname\AppData\Roaming\Samsung\Kies\UpdateTemp\Sub\External\DeviceModules\ConnectionManager.exe
[2012.08.07 06:17:30 | 000,322,048 | ---- | M] (Mobileleader Co., Ltd.) -- C:\Users\noname\AppData\Roaming\Samsung\Kies\UpdateTemp\Sub\External\DeviceModules\DeviceDataService.exe
[2012.08.07 06:12:24 | 000,717,312 | ---- | M] (Mobileleader Co., Ltd.) -- C:\Users\noname\AppData\Roaming\Samsung\Kies\UpdateTemp\Sub\External\DeviceModules\DeviceManager.exe
[2012.08.07 06:25:06 | 000,067,512 | ---- | M] (Samsung) -- C:\Users\noname\AppData\Roaming\Samsung\Kies\UpdateTemp\Sub\External\DeviceModules\Kies_Tutorial.exe
[2012.07.30 06:17:10 | 000,057,344 | ---- | M] () -- C:\Users\noname\AppData\Roaming\Samsung\Kies\UpdateTemp\Sub\External\DeviceModules\RegisterCOM.exe
[2012.08.03 07:42:04 | 000,106,960 | ---- | M] () -- C:\Users\noname\AppData\Roaming\Samsung\Kies\UpdateTemp\Sub\External\FirmwareUpdate\AgentInstaller.exe
[2012.08.03 07:42:04 | 000,101,328 | ---- | M] () -- C:\Users\noname\AppData\Roaming\Samsung\Kies\UpdateTemp\Sub\External\FirmwareUpdate\AgentUpdate.exe
[2012.08.07 06:25:10 | 000,183,736 | ---- | M] () -- C:\Users\noname\AppData\Roaming\Samsung\Kies\UpdateTemp\Sub\External\FirmwareUpdate\BinaryLoaderMgr.exe
[2012.08.07 06:25:12 | 000,021,432 | ---- | M] () -- C:\Users\noname\AppData\Roaming\Samsung\Kies\UpdateTemp\Sub\External\FirmwareUpdate\KiesPDLR.exe
[2012.08.07 06:25:12 | 003,742,648 | ---- | M] (Freeware) -- C:\Users\noname\AppData\Roaming\Samsung\Kies\UpdateTemp\Sub\External\MediaModules\MyFreeCodecPack.exe
[2012.07.30 06:16:18 | 000,172,032 | ---- | M] (Musiccity Co.Ltd.) -- C:\Users\noname\AppData\Roaming\Samsung\Kies\UpdateTemp\Sub\System32\muzapp.exe
[2012.08.07 06:25:14 | 000,593,848 | ---- | M] (ml) -- C:\Users\noname\AppData\Roaming\Samsung\Kies\UpdateTemp\Sub\Updater\Kies.Update.exe
[2012.07.02 16:12:54 | 000,449,976 | ---- | M] (ml) -- C:\Users\noname\AppData\Roaming\Samsung\Kies\UpdateTemp\Temp\Kies.Update.exe
[2012.08.07 06:25:14 | 000,593,848 | ---- | M] (ml) -- C:\Users\noname\AppData\Roaming\Samsung\Kies\UpdateTemp\Updater\Kies.Update.exe
< %systemroot%\*. /mp /s >
< %systemroot%\system32\*.dll /lockedfiles >
< %systemroot%\Tasks\*.job >
[2012.11.28 15:57:31 | 000,000,936 | ---- | M] () -- C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
[2012.11.28 16:33:04 | 000,000,940 | ---- | M] () -- C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
[2012.11.25 09:51:12 | 000,000,914 | ---- | M] () -- C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-639110540-3213493223-2817070946-1000Core.job
[2012.11.28 16:15:11 | 000,000,966 | ---- | M] () -- C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-639110540-3213493223-2817070946-1000UA.job
[2012.11.26 15:01:32 | 000,000,324 | ---- | M] () -- C:\Windows\Tasks\HPCeeScheduleFornoname.job
< %systemroot%\system32\drivers\*.sys /lockedfiles >
< %systemroot%\System32\config\*.sav >
< %systemroot%\system32\*.dll /lockedfiles >
< %systemroot%\system32\drivers\*.sys /3 >
< %systemroot%\system32\*.* /3 >
[2012.11.28 16:04:48 | 000,018,464 | -H-- | M] () -- C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2012.11.28 16:04:48 | 000,018,464 | -H-- | M] () -- C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2012.11.26 07:14:53 | 000,000,052 | ---- | M] () -- C:\Windows\system32\DOErrors.log
[2012.11.25 17:34:25 | 000,142,238 | ---- | M] () -- C:\Windows\system32\perfc005.dat
[2012.11.25 17:34:25 | 000,122,864 | ---- | M] () -- C:\Windows\system32\perfc009.dat
[2012.11.25 17:34:25 | 000,671,398 | ---- | M] () -- C:\Windows\system32\perfh005.dat
[2012.11.25 17:34:25 | 000,656,752 | ---- | M] () -- C:\Windows\system32\perfh009.dat
[2012.11.25 17:34:25 | 001,590,478 | ---- | M] () -- C:\Windows\system32\PerfStringBackup.INI
[2012.11.25 17:39:21 | 000,000,000 | ---- | M] () -- C:\Windows\system32\SBRC.dat
< %SYSTEMDRIVE%\*.exe >
< >
< HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s >
"GoogleDriveSync" = "C:\Program Files\Google\Drive\googledrivesync.exe" /autostart -- [2012.10.25 15:45:50 | 016,052,192 | ---- | M] (Google)
< >
< %PROGRAMFILES%\Mozilla Firefox\firefox.exe /md5 >
< %PROGRAMFILES%\Internet Explorer\iexplore.exe /md5 >
[2012.10.08 09:37:24 | 000,748,704 | ---- | M] (Microsoft Corporation) MD5=270A1342BD5AF95CA25A586B4C2F1522 -- C:\Program Files\Internet Explorer\iexplore.exe
< %PROGRAMFILES%\Opera\opera.exe /md5 >
< %PROGRAMFILES%\Google\Chrome\Application\chrome.exe /md5 >
< >
< %SystemDrive%\PhysicalMBR.bin /md5 >
[2012.11.28 16:10:23 | 000,000,512 | ---- | M] () MD5=D01A83AAA6DE8340B238A5809289859F -- C:\PhysicalMBR.bin
< >
< *crack* /s >
< *keygen* /s >
[2012.11.24 15:43:08 | 000,000,439 | ---- | M] () -- \Users\noname\AppData\Roaming\Microsoft\Windows\Recent\MS Office 2007 KeyGen.lnk
< *loader* /s >
[2012.08.27 20:33:18 | 000,008,827 | ---- | M] () -- \Program Files\Common Files\Apple\Apple Application Support\WebKit.resources\inspector\HeapSnapshotLoader.js
[2012.06.19 16:32:14 | 000,705,968 | ---- | M] () -- \Program Files\Common Files\Bitdefender\SetupInformation\downloader\setupdownloader.exe
[2012.06.26 01:55:01 | 000,000,032 | ---- | M] () -- \Program Files\Common Files\Bitdefender\SetupInformation\downloader\setupdownloader.exe.md5
[2012.06.26 01:14:42 | 000,466,432 | ---- | M] () -- \Program Files\Common Files\Bitdefender\SetupInformation\downloader\en-US\setupdownloader.ui
[2012.06.26 01:55:01 | 000,000,032 | ---- | M] () -- \Program Files\Common Files\Bitdefender\SetupInformation\downloader\en-US\setupdownloader.ui.md5
[2006.10.26 12:40:34 | 000,057,344 | ---- | M] () -- \Program Files\Common Files\microsoft shared\VS7DEBUG\coloader.dll
[2006.10.26 12:40:34 | 000,005,120 | ---- | M] () -- \Program Files\Common Files\microsoft shared\VS7DEBUG\coloader.tlb
[2012.05.28 03:08:10 | 000,112,128 | ---- | M] () -- \Program Files\Common Files\Nokia\Tss\ProductApiLoader\ta_productapiloader.dll
[2007.10.24 02:52:00 | 000,114,688 | ---- | M] () -- \Program Files\Epson Software\Easy Photo Print\APFLoaderV13.dll
[2007.10.24 02:52:00 | 000,069,632 | ---- | M] () -- \Program Files\Epson Software\Easy Photo Print\EpAPFLoader.dll
[2007.10.24 02:52:00 | 000,102,400 | ---- | M] () -- \Program Files\Epson Software\Easy Photo Print\EpAPFLoader2006.dll
[2012.01.23 12:59:31 | 000,000,796 | ---- | M] () -- \ProgramData\Microsoft\Windows\Start Menu\Programs\VDownloader\VDownloader.lnk
[2011.03.27 18:17:22 | 000,000,747 | ---- | M] () -- \ProgramData\Microsoft\Windows\Start Menu\Programs\YouTube Downloader\Uninstall YouTube Downloader.lnk
[2011.03.27 18:17:22 | 000,000,747 | ---- | M] () -- \ProgramData\Microsoft\Windows\Start Menu\Programs\YouTube Downloader\YouTube Downloader.lnk
[2009.07.20 10:52:26 | 000,000,232 | ---- | M] () -- \ProgramData\Nero\OnlineServices\NOSWebConfig\MySpace\uploadError.xml
[2012.01.23 12:59:31 | 000,000,796 | ---- | M] () -- \Users\All Users\Microsoft\Windows\Start Menu\Programs\VDownloader\VDownloader.lnk
[2011.03.27 18:17:22 | 000,000,747 | ---- | M] () -- \Users\All Users\Microsoft\Windows\Start Menu\Programs\YouTube Downloader\Uninstall YouTube Downloader.lnk
[2011.03.27 18:17:22 | 000,000,747 | ---- | M] () -- \Users\All Users\Microsoft\Windows\Start Menu\Programs\YouTube Downloader\YouTube Downloader.lnk
[2009.07.20 10:52:26 | 000,000,232 | ---- | M] () -- \Users\All Users\Nero\OnlineServices\NOSWebConfig\MySpace\uploadError.xml
[2012.10.24 11:30:15 | 000,008,117 | ---- | M] () -- \Users\noname\AppData\Local\SRDownloader (1).err
[2012.10.24 18:36:42 | 000,001,072 | ---- | M] () -- \Users\noname\AppData\Local\SRDownloader (1).nast
[2012.09.25 13:29:42 | 000,001,060 | ---- | M] () -- \Users\noname\AppData\Local\SRDownloader.err
[2012.09.25 13:41:02 | 000,001,784 | ---- | M] () -- \Users\noname\AppData\Local\SRDownloader.nast
[2011.03.27 18:30:14 | 000,005,954 | ---- | M] () -- \Users\noname\AppData\Local\Google\Chrome\User Data\Default\Extensions\effejoeggbefmigppkhjdfllecdnonhb\2.4.1_0\script\Chrome-YouTube-Downloader.js
[16 \Users\noname\AppData\Local\temp\*.tmp files -> \Users\noname\AppData\Local\temp\*.tmp -> ]
[2012.11.28 15:57:40 | 000,009,216 | ---- | M] () -- \Users\noname\AppData\Local\temp\_MEI10842\_win32sysloader.pyd
[2012.11.09 07:25:21 | 000,009,216 | ---- | M] () -- \Users\noname\AppData\Local\temp\_MEI18202\_win32sysloader.pyd
[2012.11.22 07:53:19 | 000,009,216 | ---- | M] () -- \Users\noname\AppData\Local\temp\_MEI23362\_win32sysloader.pyd
[2012.11.12 10:29:38 | 000,009,216 | ---- | M] () -- \Users\noname\AppData\Local\temp\_MEI24763\_win32sysloader.pyd
[2012.11.24 07:43:05 | 000,009,216 | ---- | M] () -- \Users\noname\AppData\Local\temp\_MEI27322\_win32sysloader.pyd
[2012.11.22 13:22:51 | 000,009,216 | ---- | M] () -- \Users\noname\AppData\Local\temp\_MEI27722\_win32sysloader.pyd
[2012.11.25 17:32:03 | 000,009,216 | ---- | M] () -- \Users\noname\AppData\Local\temp\_MEI29283\_win32sysloader.pyd
[2012.11.15 09:26:22 | 000,009,216 | ---- | M] () -- \Users\noname\AppData\Local\temp\_MEI29322\_win32sysloader.pyd
[2012.11.15 11:27:34 | 000,009,216 | ---- | M] () -- \Users\noname\AppData\Local\temp\_MEI30482\_win32sysloader.pyd
[2012.11.10 08:10:30 | 000,009,216 | ---- | M] () -- \Users\noname\AppData\Local\temp\_MEI30762\_win32sysloader.pyd
[2012.11.11 07:49:46 | 000,009,216 | ---- | M] () -- \Users\noname\AppData\Local\temp\_MEI31162\_win32sysloader.pyd
[2012.11.14 13:45:30 | 000,009,216 | ---- | M] () -- \Users\noname\AppData\Local\temp\_MEI31282\_win32sysloader.pyd
[2012.11.15 11:48:55 | 000,009,216 | ---- | M] () -- \Users\noname\AppData\Local\temp\_MEI32362\_win32sysloader.pyd
[2012.11.15 11:34:00 | 000,009,216 | ---- | M] () -- \Users\noname\AppData\Local\temp\_MEI33122\_win32sysloader.pyd
[2012.11.16 20:25:50 | 000,009,216 | ---- | M] () -- \Users\noname\AppData\Local\temp\_MEI33123\_win32sysloader.pyd
[2012.11.08 22:03:47 | 000,009,216 | ---- | M] () -- \Users\noname\AppData\Local\temp\_MEI33642\_win32sysloader.pyd
[2012.11.22 11:14:28 | 000,009,216 | ---- | M] () -- \Users\noname\AppData\Local\temp\_MEI34562\_win32sysloader.pyd
[2012.11.23 13:30:29 | 000,009,216 | ---- | M] () -- \Users\noname\AppData\Local\temp\_MEI34922\_win32sysloader.pyd
[2012.11.19 11:29:23 | 000,009,216 | ---- | M] () -- \Users\noname\AppData\Local\temp\_MEI35362\_win32sysloader.pyd
[2012.11.15 15:50:24 | 000,009,216 | ---- | M] () -- \Users\noname\AppData\Local\temp\_MEI35802\_win32sysloader.pyd
[2012.11.27 21:16:40 | 000,009,216 | ---- | M] () -- \Users\noname\AppData\Local\temp\_MEI37202\_win32sysloader.pyd
[2012.11.23 09:48:26 | 000,009,216 | ---- | M] () -- \Users\noname\AppData\Local\temp\_MEI38082\_win32sysloader.pyd
[2012.11.26 15:02:56 | 000,009,216 | ---- | M] () -- \Users\noname\AppData\Local\temp\_MEI38202\_win32sysloader.pyd
[2012.11.27 21:08:37 | 000,009,216 | ---- | M] () -- \Users\noname\AppData\Local\temp\_MEI38722\_win32sysloader.pyd
[2012.11.27 14:51:41 | 000,009,216 | ---- | M] () -- \Users\noname\AppData\Local\temp\_MEI38882\_win32sysloader.pyd
[2012.11.09 21:04:41 | 000,009,216 | ---- | M] () -- \Users\noname\AppData\Local\temp\_MEI39682\_win32sysloader.pyd
[2012.11.15 12:00:10 | 000,009,216 | ---- | M] () -- \Users\noname\AppData\Local\temp\_MEI40162\_win32sysloader.pyd
[2012.11.17 09:33:31 | 000,009,216 | ---- | M] () -- \Users\noname\AppData\Local\temp\_MEI40682\_win32sysloader.pyd
[2012.11.07 14:44:32 | 000,009,216 | ---- | M] () -- \Users\noname\AppData\Local\temp\_MEI41682\_win32sysloader.pyd
[2012.11.10 20:18:27 | 000,009,216 | ---- | M] () -- \Users\noname\AppData\Local\temp\_MEI45042\_win32sysloader.pyd
[2012.11.13 10:21:22 | 000,009,216 | ---- | M] () -- \Users\noname\AppData\Local\temp\_MEI50362\_win32sysloader.pyd
[2012.11.09 07:16:37 | 000,009,216 | ---- | M] () -- \Users\noname\AppData\Local\temp\_MEI50562\_win32sysloader.pyd
[2012.11.18 07:34:35 | 000,009,216 | ---- | M] () -- \Users\noname\AppData\Local\temp\_MEI8042\_win32sysloader.pyd
[2012.09.25 21:00:53 | 000,000,000 | ---- | M] () -- \Users\noname\AppData\Roaming\Apple Computer\MediaStream\ul\assetStreamUploader.log
[2012.06.28 09:28:02 | 000,069,120 | ---- | M] () -- \Users\noname\AppData\Roaming\Samsung\Kies\UpdateTemp\Backup\Common\Kies.Common.DeviceServiceLib.FirmwareUpdate.Downloader.dll
[2012.07.02 16:12:50 | 000,183,736 | ---- | M] () -- \Users\noname\AppData\Roaming\Samsung\Kies\UpdateTemp\Backup\External\FirmwareUpdate\BinaryLoaderMgr.exe
[2012.06.28 09:28:02 | 000,069,120 | ---- | M] () -- \Users\noname\AppData\Roaming\Samsung\Kies\UpdateTemp\Backup\Plugins\DeviceHost\Kies.Common.DeviceServiceLib.FirmwareUpdate.Downloader.dll
[2012.08.03 01:11:20 | 000,069,120 | ---- | M] () -- \Users\noname\AppData\Roaming\Samsung\Kies\UpdateTemp\Sub\Common\Kies.Common.DeviceServiceLib.FirmwareUpdate.Downloader.dll
[2012.08.07 06:25:10 | 000,183,736 | ---- | M] () -- \Users\noname\AppData\Roaming\Samsung\Kies\UpdateTemp\Sub\External\FirmwareUpdate\BinaryLoaderMgr.exe
[2012.08.03 01:11:20 | 000,069,120 | ---- | M] () -- \Users\noname\AppData\Roaming\Samsung\Kies\UpdateTemp\Sub\Plugins\DeviceHost\Kies.Common.DeviceServiceLib.FirmwareUpdate.Downloader.dll
[2010.06.22 13:41:14 | 000,000,051 | ---- | M] () -- \Users\noname\Documents\TomTom\HOME\Backup\XL\Backup01\InternalMemory\bootloaderversion.txt
[2010.08.21 12:29:59 | 000,082,784 | ---- | M] () -- \Windows\assembly\GAC\IALoader\1.7.6223.0__31bf3856ad364e35\IALoader.dll
[2012.11.23 13:48:40 | 000,189,952 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_32\Kies.Common.DeviceS#\3a7c06a85d686cc842188d4916f6f11a\Kies.Common.DeviceServiceLib.FirmwareUpdate.Downloader.ni.dll
[2012.02.03 03:32:08 | 000,112,128 | R--- | M] () -- \Windows\Installer\$PatchCache$\Managed\A8640317F35F8964C8903A93AEB3506E\3.0.655\ta_productapiloader..D321D6CC_DBBE_4AC3_8DBD_DFF82BB39BDC
[2012.11.25 17:49:13 | 000,071,468 | ---- | M] () -- \Windows\Prefetch\APPLEPHOTOSTREAMSDOWNLOADER.E-92402CB4.pf
[2012.08.20 18:32:13 | 000,003,584 | -H-- | M] () -- \Windows\System32\api-ms-win-core-libraryloader-l1-1-0.dll
[2009.07.14 02:15:12 | 000,038,400 | ---- | M] () -- \Windows\System32\dmloader.dll
[2011.02.01 20:18:44 | 000,003,530 | ---- | M] () -- \Windows\System32\Tasks\Microsoft\Windows\WindowsColorSystem\Calibration Loader
[2009.07.14 09:43:57 | 000,002,883 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_3318c4cd5e5d0f86.manifest
[2009.07.14 09:43:57 | 000,034,896 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_3318c4cd5e5d0f86_winload.exe.mui_3bc5b827
[2009.07.14 09:43:57 | 000,030,272 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_3318c4cd5e5d0f86_winresume.exe.mui_ff8b5358
[2011.05.27 09:43:09 | 000,004,225 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.17514_none_5d2e241dcae8f953.manifest
[2011.05.27 09:43:09 | 000,508,904 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.17514_none_5d2e241dcae8f953_winload.exe_75835076
[2011.05.27 09:43:09 | 000,442,720 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.17514_none_5d2e241dcae8f953_winresume.exe_85cd1215
[2009.07.14 03:17:38 | 000,002,894 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-s..ive-blackbox-loader_31bf3856ad364e35_6.1.7600.16385_none_6b097e5cb26f7a23.manifest
[2009.07.14 03:17:38 | 000,017,472 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-s..ive-blackbox-loader_31bf3856ad364e35_6.1.7600.16385_none_6b097e5cb26f7a23_spldr.sys_98bd87a0
[2009.07.14 09:42:11 | 000,002,883 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_3318c4cd5e5d0f86.manifest
[2009.07.14 02:47:46 | 000,004,225 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7600.16385_none_5afd1055cdfa75b9.manifest
[2009.08.19 08:38:48 | 000,004,225 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7600.16411_none_5b44c087cdc549ed.manifest
[2009.08.19 08:21:21 | 000,004,225 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7600.20509_none_5be12f8ee6d3987e.manifest
[2010.11.20 04:02:40 | 000,004,225 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.17514_none_5d2e241dcae8f953.manifest
[2009.07.14 02:52:31 | 000,002,894 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-s..ive-blackbox-loader_31bf3856ad364e35_6.1.7600.16385_none_6b097e5cb26f7a23.manifest
[2009.07.14 02:15:12 | 000,038,400 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-audio-dmusic_31bf3856ad364e35_6.1.7600.16385_none_45ca7214f0f664cb\dmloader.dll
[2009.07.14 02:03:49 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.16385_none_0a884619dd2388ad\api-ms-win-core-libraryloader-l1-1-0.dll
[2011.05.14 07:22:35 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.16816_none_0ad4ff55dce9d030\api-ms-win-core-libraryloader-l1-1-0.dll
[2011.06.02 06:45:50 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.16823_none_0ac72e8bdcf4a01c\api-ms-win-core-libraryloader-l1-1-0.dll
[2011.07.16 05:19:58 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.16850_none_0aa3bde9dd0fa7ea\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.08.18 12:09:17 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.17107_none_0ae0ab79dce0fb26\api-ms-win-core-libraryloader-l1-1-0.dll
[2011.06.03 06:50:16 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.20978_none_0b1fbd2cf6364a4e\api-ms-win-core-libraryloader-l1-1-0.dll
[2011.07.16 05:12:45 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.21010_none_0b587286f60d0b32\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.08.20 18:42:56 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.21306_none_0b6949e0f5ff7ec0\api-ms-win-core-libraryloader-l1-1-0.dll
[2011.05.14 07:13:36 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.17617_none_0cbc5ca5da0f5573\api-ms-win-core-libraryloader-l1-1-0.dll
[2011.06.03 06:47:28 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.17625_none_0caf8c25da193eb6\api-ms-win-core-libraryloader-l1-1-0.dll
[2011.07.16 05:15:45 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.17651_none_0c8b1b39da352d2d\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.08.20 18:32:13 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.17932_none_0ca1c10dda240617\api-ms-win-core-libraryloader-l1-1-0.dll
[2011.05.14 08:15:40 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.21728_none_0d3c29cef3342a85\api-ms-win-core-libraryloader-l1-1-0.dll
[2011.06.03 07:56:06 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.21738_none_0d3159e2f33c4676\api-ms-win-core-libraryloader-l1-1-0.dll
[2011.07.16 05:36:48 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.21772_none_0d001876f3621e30\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.08.20 18:23:16 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.22091_none_0ce95442f3736a4b\api-ms-win-core-libraryloader-l1-1-0.dll
========== Alternate Data Streams ==========
@Alternate Data Stream - 6248 bytes -> C:\Windows\PLA\System\System Diagnostics.xml:0v1ieca3Feahez0jAwxjjk5uRh
@Alternate Data Stream - 150 bytes -> C:\ProgramData\TEMP:CB0AACC9
@Alternate Data Stream - 100 bytes -> C:\ProgramData\TEMP:0E08FC17
< End of report >
[2010.11.20 13:17:48 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=61AC3EFDFACFDD3F0F11DD4FD4044223 -- C:\Windows\erdnt\cache\userinit.exe
[2010.11.20 13:17:48 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=61AC3EFDFACFDD3F0F11DD4FD4044223 -- C:\Windows\System32\userinit.exe
[2010.11.20 13:17:48 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=61AC3EFDFACFDD3F0F11DD4FD4044223 -- C:\Windows\winsxs\x86_microsoft-windows-userinit_31bf3856ad364e35_6.1.7601.17514_none_de3024012ff21116\userinit.exe
[2009.07.14 02:14:43 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=6DE80F60D7DE9CE6B8C2DDFDF79EF175 -- C:\Windows\winsxs\x86_microsoft-windows-userinit_31bf3856ad364e35_6.1.7600.16385_none_dbff103933038d7c\userinit.exe
< MD5 for: WINLOGON.EXE >
[2009.10.28 07:17:59 | 000,285,696 | ---- | M] (Microsoft Corporation) MD5=37CDB7E72EB66BA85A87CBE37E7F03FD -- C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7600.16447_none_6fc699643622d177\winlogon.exe
[2009.10.28 06:52:08 | 000,285,696 | ---- | M] (Microsoft Corporation) MD5=3BABE6767C78FBF5FB8435FEED187F30 -- C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7600.20560_none_703394514f56f7c2\winlogon.exe
[2010.11.20 13:17:54 | 000,286,720 | ---- | M] (Microsoft Corporation) MD5=6D13E1406F50C66E2A95D97F22C47560 -- C:\Windows\erdnt\cache\winlogon.exe
[2010.11.20 13:17:54 | 000,286,720 | ---- | M] (Microsoft Corporation) MD5=6D13E1406F50C66E2A95D97F22C47560 -- C:\Windows\System32\winlogon.exe
[2010.11.20 13:17:54 | 000,286,720 | ---- | M] (Microsoft Corporation) MD5=6D13E1406F50C66E2A95D97F22C47560 -- C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7601.17514_none_71ca6b0233339500\winlogon.exe
[2009.07.14 02:14:45 | 000,285,696 | ---- | M] (Microsoft Corporation) MD5=8EC6A4AB12B8F3759E21F8E3A388F2CF -- C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7600.16385_none_6f99573a36451166\winlogon.exe
< >
< %systemroot%*.* /U /s >
[24 C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp files -> C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp -> ]
[26 C:\Windows\Installer\*.tmp files -> C:\Windows\Installer\*.tmp -> ]
[2 C:\Windows\ServiceProfiles\NetworkService\AppData\Local\Temp\*.tmp files -> C:\Windows\ServiceProfiles\NetworkService\AppData\Local\Temp\*.tmp -> ]
[3 C:\Windows\System32\spool\PRINTERS\*.tmp files -> C:\Windows\System32\spool\PRINTERS\*.tmp -> ]
[67 C:\Windows\temp\*.tmp files -> C:\Windows\temp\*.tmp -> ]
< %SYSTEMDRIVE%\*.exe >
< %ALLUSERSPROFILE%\Application Data\*. >
< %ALLUSERSPROFILE%\Application Data\*.exe /s >
< %APPDATA%\*. >
[2011.10.10 16:38:05 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\3v
[2012.10.31 15:52:14 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\Ad-Aware Antivirus
[2012.04.11 15:17:49 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\Adobe
[2010.09.14 14:03:41 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\Ahead
[2012.10.01 09:43:56 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\Apple Computer
[2011.01.28 08:49:12 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\Ashampoo
[2011.02.09 14:37:03 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\AVG10
[2012.04.18 10:25:06 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\avidemux
[2012.11.07 16:00:48 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\Avira
[2011.08.22 11:32:11 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\BatteryBar
[2012.06.18 15:26:31 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\CAD-KAS
[2011.01.25 17:18:05 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\Canneverbe Limited
[2011.03.06 15:45:32 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\DeviceDoctorSoftware
[2010.09.30 11:38:42 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\DivX
[2012.07.26 06:56:03 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\Download Manager
[2012.10.05 17:57:44 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\Downloaded Installations
[2012.11.04 13:30:09 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\Drivers For Free
[2012.10.17 10:33:04 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\Dropbox
[2011.10.11 11:20:02 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\DRPSu
[2010.09.29 12:43:30 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\DVD Shrink
[2012.01.03 12:03:21 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\dvdcss
[2011.10.04 20:14:20 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\DVDVideoSoft
[2012.07.07 09:12:39 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\EPSON
[2012.09.25 13:31:51 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\ESET
[2011.01.17 15:46:57 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\FastStone
[2012.07.16 09:42:31 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\Foxit Software
[2012.04.19 12:20:44 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\FreeMoviesToDVD
[2011.10.11 12:07:23 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\Hewlett-Packard
[2011.01.18 12:14:15 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\hpqLog
[2011.07.25 11:56:32 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\HTML Executable
[2010.08.20 10:47:24 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\Identities
[2012.10.05 18:15:22 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\inkscape
[2011.10.11 11:31:36 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\InstallShield
[2012.01.24 07:06:00 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\Intel
[2012.10.03 13:31:32 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\Intel Corporation
[2011.08.22 09:01:21 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\Lamantine
[2012.10.22 08:49:26 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\LavasoftStatistics
[2012.03.26 17:50:32 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\LightComp
[2010.08.21 13:40:19 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\Macromedia
[2012.09.25 18:53:27 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\Malwarebytes
[2009.07.14 10:19:24 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\Media Center Programs
[2012.11.14 10:30:29 | 000,000,000 | --SD | M] -- C:\Users\noname\AppData\Roaming\Microsoft
[2012.11.24 16:19:33 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\MOBILedit
[2012.09.11 13:58:33 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\Mozilla
[2010.11.17 19:40:35 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\NCH Software
[2010.12.16 06:11:13 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\Nero
[2011.02.19 12:34:47 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\NeroDigital(TM)
[2012.10.05 17:58:46 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\Nitro PDF
[2012.06.10 13:35:44 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\Nokia
[2012.05.29 12:08:14 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\Nokia Multimedia Player
[2011.04.26 13:44:50 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\Nokia Ovi Suite
[2012.06.10 13:35:45 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\Nokia Suite
[2012.04.25 18:25:17 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\OpenWith.org Cache
[2012.04.25 18:25:34 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\OpenWith.org Downloaded Setups
[2011.06.13 09:14:47 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\Panda Security
[2011.07.25 12:07:57 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\Participatory Culture Foundation
[2012.11.24 16:02:39 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\PC Suite
[2011.07.25 12:14:18 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\PCF-VLC
[2012.06.11 10:46:29 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\QuickScan
[2012.07.15 13:01:46 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\Samsung
[2012.09.24 18:45:59 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\Skype
[2012.10.21 09:53:43 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\SUPERAntiSpyware.com
[2012.09.11 13:58:33 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\TomTom
[2011.08.01 06:11:50 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\Tor
[2011.10.11 11:55:54 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\uTorrent
[2011.11.01 08:06:08 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\VDownloader
[2011.08.01 06:11:50 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\Vidalia
[2012.11.02 20:20:06 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\vlc
[2012.08.12 12:17:20 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\Vso
[2010.10.25 09:36:07 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\Win7codecs
[2010.11.04 14:31:17 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\WinRAR
[2012.07.18 09:09:56 | 000,000,000 | ---D | M] -- C:\Users\noname\AppData\Roaming\Zoner
< %APPDATA%\*.exe /s >
[2011.03.06 15:45:48 | 007,216,616 | ---- | M] (Device Doctor Software Inc. ) -- C:\Users\noname\AppData\Roaming\DeviceDoctorSoftware\DeviceDoctor\updates\1.0.0.1\DeviceDoctor_Setup.exe
[2012.05.29 12:33:56 | 000,053,248 | R--- | M] (Flexera Software, Inc.) -- C:\Users\noname\AppData\Roaming\Microsoft\Installer\{7130468A-F53F-4698-8C09-A339EA3B05E6}\ARPPRODUCTICON.exe
[2012.05.29 12:33:56 | 000,049,152 | R--- | M] (Flexera Software, Inc.) -- C:\Users\noname\AppData\Roaming\Microsoft\Installer\{7130468A-F53F-4698-8C09-A339EA3B05E6}\NewShortcut2_1C7B7089989A424FB39D41A32581C775.exe
[2012.05.29 12:33:56 | 000,073,728 | R--- | M] (Flexera Software, Inc.) -- C:\Users\noname\AppData\Roaming\Microsoft\Installer\{7130468A-F53F-4698-8C09-A339EA3B05E6}\NewShortcut46_74B9CE5DF1F4447F982DCA29A461B529.exe
[2012.05.29 12:33:56 | 000,073,728 | R--- | M] (Flexera Software, Inc.) -- C:\Users\noname\AppData\Roaming\Microsoft\Installer\{7130468A-F53F-4698-8C09-A339EA3B05E6}\NewShortcut47_74B9CE5DF1F4447F982DCA29A461B529.exe
[2012.05.29 12:33:56 | 000,049,152 | R--- | M] (Flexera Software, Inc.) -- C:\Users\noname\AppData\Roaming\Microsoft\Installer\{7130468A-F53F-4698-8C09-A339EA3B05E6}\Uninstall_QA_OTI_H_FE5D756F71E147C4972AD6775344B40B.exe
[2011.10.05 09:13:30 | 000,002,550 | R--- | M] () -- C:\Users\noname\AppData\Roaming\Microsoft\Installer\{7CA4F780-7AD0-417A-82A1-46EB825CFD53}\_6FEFF9B68218417F98F549.exe
[2011.10.05 09:13:30 | 000,002,550 | R--- | M] () -- C:\Users\noname\AppData\Roaming\Microsoft\Installer\{7CA4F780-7AD0-417A-82A1-46EB825CFD53}\_9088A3C9079CABA68E9157.exe
[2012.11.11 08:36:25 | 000,073,728 | R--- | M] (Macrovision Corporation) -- C:\Users\noname\AppData\Roaming\Microsoft\Installer\{B829E117-D072-41EA-9606-9826A38D34C1}\ARPPRODUCTICON.exe
[2012.11.11 08:36:26 | 000,073,728 | R--- | M] (Macrovision Corporation) -- C:\Users\noname\AppData\Roaming\Microsoft\Installer\{B829E117-D072-41EA-9606-9826A38D34C1}\SVRTgui.exe1_810EDD9E2F0A4E2BACF86673C38D9F48.exe
[2012.11.11 08:36:26 | 000,073,728 | R--- | M] (Macrovision Corporation) -- C:\Users\noname\AppData\Roaming\Microsoft\Installer\{B829E117-D072-41EA-9606-9826A38D34C1}\SVRTgui.exe_810EDD9E2F0A4E2BACF86673C38D9F48.exe
[2012.04.25 18:25:37 | 001,345,024 | ---- | M] (Irfan Skiljan) -- C:\Users\noname\AppData\Roaming\OpenWith.org Downloaded Setups\IrfanView 4.23\IrfanView 4.23.exe
[2012.07.02 16:12:40 | 000,975,288 | ---- | M] (Samsung) -- C:\Users\noname\AppData\Roaming\Samsung\Kies\UpdateTemp\Backup\Kies.exe
[2012.07.02 16:12:44 | 000,278,968 | ---- | M] () -- C:\Users\noname\AppData\Roaming\Samsung\Kies\UpdateTemp\Backup\KiesDriverInstaller.exe
[2012.06.26 15:04:30 | 000,320,000 | ---- | M] (Samsung) -- C:\Users\noname\AppData\Roaming\Samsung\Kies\UpdateTemp\Backup\KiesLogger.exe
[2012.07.02 16:12:42 | 003,524,536 | ---- | M] (Samsung Electronics Co., Ltd.) -- C:\Users\noname\AppData\Roaming\Samsung\Kies\UpdateTemp\Backup\KiesTrayAgent.exe
[2012.06.26 15:03:34 | 000,182,784 | ---- | M] (Mobileleader Co., Ltd.) -- C:\Users\noname\AppData\Roaming\Samsung\Kies\UpdateTemp\Backup\External\DeviceModules\ConnectionManager.exe
[2012.06.26 15:03:34 | 000,321,536 | ---- | M] (Mobileleader Co., Ltd.) -- C:\Users\noname\AppData\Roaming\Samsung\Kies\UpdateTemp\Backup\External\DeviceModules\DeviceDataService.exe
[2012.06.26 15:03:38 | 000,716,800 | ---- | M] (Mobileleader Co., Ltd.) -- C:\Users\noname\AppData\Roaming\Samsung\Kies\UpdateTemp\Backup\External\DeviceModules\DeviceManager.exe
[2012.07.02 16:12:46 | 000,067,512 | ---- | M] (Samsung) -- C:\Users\noname\AppData\Roaming\Samsung\Kies\UpdateTemp\Backup\External\DeviceModules\Kies_Tutorial.exe
[2012.06.26 15:03:16 | 000,106,960 | ---- | M] () -- C:\Users\noname\AppData\Roaming\Samsung\Kies\UpdateTemp\Backup\External\FirmwareUpdate\AgentInstaller.exe
[2012.06.26 15:03:16 | 000,101,328 | ---- | M] () -- C:\Users\noname\AppData\Roaming\Samsung\Kies\UpdateTemp\Backup\External\FirmwareUpdate\AgentUpdate.exe
[2012.07.02 16:12:50 | 000,183,736 | ---- | M] () -- C:\Users\noname\AppData\Roaming\Samsung\Kies\UpdateTemp\Backup\External\FirmwareUpdate\BinaryLoaderMgr.exe
[2012.07.02 16:12:50 | 000,021,432 | ---- | M] () -- C:\Users\noname\AppData\Roaming\Samsung\Kies\UpdateTemp\Backup\External\FirmwareUpdate\KiesPDLR.exe
[2012.07.02 16:12:52 | 003,742,648 | ---- | M] (Freeware) -- C:\Users\noname\AppData\Roaming\Samsung\Kies\UpdateTemp\Backup\External\MediaModules\MyFreeCodecPack.exe
[2012.07.02 16:12:54 | 000,449,976 | ---- | M] (ml) -- C:\Users\noname\AppData\Roaming\Samsung\Kies\UpdateTemp\Backup\Updater\Kies.Update.exe
[2012.08.07 06:25:02 | 000,960,440 | ---- | M] (Samsung) -- C:\Users\noname\AppData\Roaming\Samsung\Kies\UpdateTemp\Sub\Kies.exe
[2012.08.07 06:25:04 | 000,278,968 | ---- | M] () -- C:\Users\noname\AppData\Roaming\Samsung\Kies\UpdateTemp\Sub\KiesDriverInstaller.exe
[2012.07.30 06:17:50 | 000,320,512 | ---- | M] (Samsung) -- C:\Users\noname\AppData\Roaming\Samsung\Kies\UpdateTemp\Sub\KiesLogger.exe
[2012.08.07 06:25:02 | 003,524,536 | ---- | M] (Samsung Electronics Co., Ltd.) -- C:\Users\noname\AppData\Roaming\Samsung\Kies\UpdateTemp\Sub\KiesTrayAgent.exe
[2012.08.07 06:11:30 | 000,182,784 | ---- | M] (Mobileleader Co., Ltd.) -- C:\Users\noname\AppData\Roaming\Samsung\Kies\UpdateTemp\Sub\External\DeviceModules\ConnectionManager.exe
[2012.08.07 06:17:30 | 000,322,048 | ---- | M] (Mobileleader Co., Ltd.) -- C:\Users\noname\AppData\Roaming\Samsung\Kies\UpdateTemp\Sub\External\DeviceModules\DeviceDataService.exe
[2012.08.07 06:12:24 | 000,717,312 | ---- | M] (Mobileleader Co., Ltd.) -- C:\Users\noname\AppData\Roaming\Samsung\Kies\UpdateTemp\Sub\External\DeviceModules\DeviceManager.exe
[2012.08.07 06:25:06 | 000,067,512 | ---- | M] (Samsung) -- C:\Users\noname\AppData\Roaming\Samsung\Kies\UpdateTemp\Sub\External\DeviceModules\Kies_Tutorial.exe
[2012.07.30 06:17:10 | 000,057,344 | ---- | M] () -- C:\Users\noname\AppData\Roaming\Samsung\Kies\UpdateTemp\Sub\External\DeviceModules\RegisterCOM.exe
[2012.08.03 07:42:04 | 000,106,960 | ---- | M] () -- C:\Users\noname\AppData\Roaming\Samsung\Kies\UpdateTemp\Sub\External\FirmwareUpdate\AgentInstaller.exe
[2012.08.03 07:42:04 | 000,101,328 | ---- | M] () -- C:\Users\noname\AppData\Roaming\Samsung\Kies\UpdateTemp\Sub\External\FirmwareUpdate\AgentUpdate.exe
[2012.08.07 06:25:10 | 000,183,736 | ---- | M] () -- C:\Users\noname\AppData\Roaming\Samsung\Kies\UpdateTemp\Sub\External\FirmwareUpdate\BinaryLoaderMgr.exe
[2012.08.07 06:25:12 | 000,021,432 | ---- | M] () -- C:\Users\noname\AppData\Roaming\Samsung\Kies\UpdateTemp\Sub\External\FirmwareUpdate\KiesPDLR.exe
[2012.08.07 06:25:12 | 003,742,648 | ---- | M] (Freeware) -- C:\Users\noname\AppData\Roaming\Samsung\Kies\UpdateTemp\Sub\External\MediaModules\MyFreeCodecPack.exe
[2012.07.30 06:16:18 | 000,172,032 | ---- | M] (Musiccity Co.Ltd.) -- C:\Users\noname\AppData\Roaming\Samsung\Kies\UpdateTemp\Sub\System32\muzapp.exe
[2012.08.07 06:25:14 | 000,593,848 | ---- | M] (ml) -- C:\Users\noname\AppData\Roaming\Samsung\Kies\UpdateTemp\Sub\Updater\Kies.Update.exe
[2012.07.02 16:12:54 | 000,449,976 | ---- | M] (ml) -- C:\Users\noname\AppData\Roaming\Samsung\Kies\UpdateTemp\Temp\Kies.Update.exe
[2012.08.07 06:25:14 | 000,593,848 | ---- | M] (ml) -- C:\Users\noname\AppData\Roaming\Samsung\Kies\UpdateTemp\Updater\Kies.Update.exe
< %systemroot%\*. /mp /s >
< %systemroot%\system32\*.dll /lockedfiles >
< %systemroot%\Tasks\*.job >
[2012.11.28 15:57:31 | 000,000,936 | ---- | M] () -- C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
[2012.11.28 16:33:04 | 000,000,940 | ---- | M] () -- C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
[2012.11.25 09:51:12 | 000,000,914 | ---- | M] () -- C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-639110540-3213493223-2817070946-1000Core.job
[2012.11.28 16:15:11 | 000,000,966 | ---- | M] () -- C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-639110540-3213493223-2817070946-1000UA.job
[2012.11.26 15:01:32 | 000,000,324 | ---- | M] () -- C:\Windows\Tasks\HPCeeScheduleFornoname.job
< %systemroot%\system32\drivers\*.sys /lockedfiles >
< %systemroot%\System32\config\*.sav >
< %systemroot%\system32\*.dll /lockedfiles >
< %systemroot%\system32\drivers\*.sys /3 >
< %systemroot%\system32\*.* /3 >
[2012.11.28 16:04:48 | 000,018,464 | -H-- | M] () -- C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2012.11.28 16:04:48 | 000,018,464 | -H-- | M] () -- C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2012.11.26 07:14:53 | 000,000,052 | ---- | M] () -- C:\Windows\system32\DOErrors.log
[2012.11.25 17:34:25 | 000,142,238 | ---- | M] () -- C:\Windows\system32\perfc005.dat
[2012.11.25 17:34:25 | 000,122,864 | ---- | M] () -- C:\Windows\system32\perfc009.dat
[2012.11.25 17:34:25 | 000,671,398 | ---- | M] () -- C:\Windows\system32\perfh005.dat
[2012.11.25 17:34:25 | 000,656,752 | ---- | M] () -- C:\Windows\system32\perfh009.dat
[2012.11.25 17:34:25 | 001,590,478 | ---- | M] () -- C:\Windows\system32\PerfStringBackup.INI
[2012.11.25 17:39:21 | 000,000,000 | ---- | M] () -- C:\Windows\system32\SBRC.dat
< %SYSTEMDRIVE%\*.exe >
< >
< HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s >
"GoogleDriveSync" = "C:\Program Files\Google\Drive\googledrivesync.exe" /autostart -- [2012.10.25 15:45:50 | 016,052,192 | ---- | M] (Google)
< >
< %PROGRAMFILES%\Mozilla Firefox\firefox.exe /md5 >
< %PROGRAMFILES%\Internet Explorer\iexplore.exe /md5 >
[2012.10.08 09:37:24 | 000,748,704 | ---- | M] (Microsoft Corporation) MD5=270A1342BD5AF95CA25A586B4C2F1522 -- C:\Program Files\Internet Explorer\iexplore.exe
< %PROGRAMFILES%\Opera\opera.exe /md5 >
< %PROGRAMFILES%\Google\Chrome\Application\chrome.exe /md5 >
< >
< %SystemDrive%\PhysicalMBR.bin /md5 >
[2012.11.28 16:10:23 | 000,000,512 | ---- | M] () MD5=D01A83AAA6DE8340B238A5809289859F -- C:\PhysicalMBR.bin
< >
< *crack* /s >
< *keygen* /s >
[2012.11.24 15:43:08 | 000,000,439 | ---- | M] () -- \Users\noname\AppData\Roaming\Microsoft\Windows\Recent\MS Office 2007 KeyGen.lnk
< *loader* /s >
[2012.08.27 20:33:18 | 000,008,827 | ---- | M] () -- \Program Files\Common Files\Apple\Apple Application Support\WebKit.resources\inspector\HeapSnapshotLoader.js
[2012.06.19 16:32:14 | 000,705,968 | ---- | M] () -- \Program Files\Common Files\Bitdefender\SetupInformation\downloader\setupdownloader.exe
[2012.06.26 01:55:01 | 000,000,032 | ---- | M] () -- \Program Files\Common Files\Bitdefender\SetupInformation\downloader\setupdownloader.exe.md5
[2012.06.26 01:14:42 | 000,466,432 | ---- | M] () -- \Program Files\Common Files\Bitdefender\SetupInformation\downloader\en-US\setupdownloader.ui
[2012.06.26 01:55:01 | 000,000,032 | ---- | M] () -- \Program Files\Common Files\Bitdefender\SetupInformation\downloader\en-US\setupdownloader.ui.md5
[2006.10.26 12:40:34 | 000,057,344 | ---- | M] () -- \Program Files\Common Files\microsoft shared\VS7DEBUG\coloader.dll
[2006.10.26 12:40:34 | 000,005,120 | ---- | M] () -- \Program Files\Common Files\microsoft shared\VS7DEBUG\coloader.tlb
[2012.05.28 03:08:10 | 000,112,128 | ---- | M] () -- \Program Files\Common Files\Nokia\Tss\ProductApiLoader\ta_productapiloader.dll
[2007.10.24 02:52:00 | 000,114,688 | ---- | M] () -- \Program Files\Epson Software\Easy Photo Print\APFLoaderV13.dll
[2007.10.24 02:52:00 | 000,069,632 | ---- | M] () -- \Program Files\Epson Software\Easy Photo Print\EpAPFLoader.dll
[2007.10.24 02:52:00 | 000,102,400 | ---- | M] () -- \Program Files\Epson Software\Easy Photo Print\EpAPFLoader2006.dll
[2012.01.23 12:59:31 | 000,000,796 | ---- | M] () -- \ProgramData\Microsoft\Windows\Start Menu\Programs\VDownloader\VDownloader.lnk
[2011.03.27 18:17:22 | 000,000,747 | ---- | M] () -- \ProgramData\Microsoft\Windows\Start Menu\Programs\YouTube Downloader\Uninstall YouTube Downloader.lnk
[2011.03.27 18:17:22 | 000,000,747 | ---- | M] () -- \ProgramData\Microsoft\Windows\Start Menu\Programs\YouTube Downloader\YouTube Downloader.lnk
[2009.07.20 10:52:26 | 000,000,232 | ---- | M] () -- \ProgramData\Nero\OnlineServices\NOSWebConfig\MySpace\uploadError.xml
[2012.01.23 12:59:31 | 000,000,796 | ---- | M] () -- \Users\All Users\Microsoft\Windows\Start Menu\Programs\VDownloader\VDownloader.lnk
[2011.03.27 18:17:22 | 000,000,747 | ---- | M] () -- \Users\All Users\Microsoft\Windows\Start Menu\Programs\YouTube Downloader\Uninstall YouTube Downloader.lnk
[2011.03.27 18:17:22 | 000,000,747 | ---- | M] () -- \Users\All Users\Microsoft\Windows\Start Menu\Programs\YouTube Downloader\YouTube Downloader.lnk
[2009.07.20 10:52:26 | 000,000,232 | ---- | M] () -- \Users\All Users\Nero\OnlineServices\NOSWebConfig\MySpace\uploadError.xml
[2012.10.24 11:30:15 | 000,008,117 | ---- | M] () -- \Users\noname\AppData\Local\SRDownloader (1).err
[2012.10.24 18:36:42 | 000,001,072 | ---- | M] () -- \Users\noname\AppData\Local\SRDownloader (1).nast
[2012.09.25 13:29:42 | 000,001,060 | ---- | M] () -- \Users\noname\AppData\Local\SRDownloader.err
[2012.09.25 13:41:02 | 000,001,784 | ---- | M] () -- \Users\noname\AppData\Local\SRDownloader.nast
[2011.03.27 18:30:14 | 000,005,954 | ---- | M] () -- \Users\noname\AppData\Local\Google\Chrome\User Data\Default\Extensions\effejoeggbefmigppkhjdfllecdnonhb\2.4.1_0\script\Chrome-YouTube-Downloader.js
[16 \Users\noname\AppData\Local\temp\*.tmp files -> \Users\noname\AppData\Local\temp\*.tmp -> ]
[2012.11.28 15:57:40 | 000,009,216 | ---- | M] () -- \Users\noname\AppData\Local\temp\_MEI10842\_win32sysloader.pyd
[2012.11.09 07:25:21 | 000,009,216 | ---- | M] () -- \Users\noname\AppData\Local\temp\_MEI18202\_win32sysloader.pyd
[2012.11.22 07:53:19 | 000,009,216 | ---- | M] () -- \Users\noname\AppData\Local\temp\_MEI23362\_win32sysloader.pyd
[2012.11.12 10:29:38 | 000,009,216 | ---- | M] () -- \Users\noname\AppData\Local\temp\_MEI24763\_win32sysloader.pyd
[2012.11.24 07:43:05 | 000,009,216 | ---- | M] () -- \Users\noname\AppData\Local\temp\_MEI27322\_win32sysloader.pyd
[2012.11.22 13:22:51 | 000,009,216 | ---- | M] () -- \Users\noname\AppData\Local\temp\_MEI27722\_win32sysloader.pyd
[2012.11.25 17:32:03 | 000,009,216 | ---- | M] () -- \Users\noname\AppData\Local\temp\_MEI29283\_win32sysloader.pyd
[2012.11.15 09:26:22 | 000,009,216 | ---- | M] () -- \Users\noname\AppData\Local\temp\_MEI29322\_win32sysloader.pyd
[2012.11.15 11:27:34 | 000,009,216 | ---- | M] () -- \Users\noname\AppData\Local\temp\_MEI30482\_win32sysloader.pyd
[2012.11.10 08:10:30 | 000,009,216 | ---- | M] () -- \Users\noname\AppData\Local\temp\_MEI30762\_win32sysloader.pyd
[2012.11.11 07:49:46 | 000,009,216 | ---- | M] () -- \Users\noname\AppData\Local\temp\_MEI31162\_win32sysloader.pyd
[2012.11.14 13:45:30 | 000,009,216 | ---- | M] () -- \Users\noname\AppData\Local\temp\_MEI31282\_win32sysloader.pyd
[2012.11.15 11:48:55 | 000,009,216 | ---- | M] () -- \Users\noname\AppData\Local\temp\_MEI32362\_win32sysloader.pyd
[2012.11.15 11:34:00 | 000,009,216 | ---- | M] () -- \Users\noname\AppData\Local\temp\_MEI33122\_win32sysloader.pyd
[2012.11.16 20:25:50 | 000,009,216 | ---- | M] () -- \Users\noname\AppData\Local\temp\_MEI33123\_win32sysloader.pyd
[2012.11.08 22:03:47 | 000,009,216 | ---- | M] () -- \Users\noname\AppData\Local\temp\_MEI33642\_win32sysloader.pyd
[2012.11.22 11:14:28 | 000,009,216 | ---- | M] () -- \Users\noname\AppData\Local\temp\_MEI34562\_win32sysloader.pyd
[2012.11.23 13:30:29 | 000,009,216 | ---- | M] () -- \Users\noname\AppData\Local\temp\_MEI34922\_win32sysloader.pyd
[2012.11.19 11:29:23 | 000,009,216 | ---- | M] () -- \Users\noname\AppData\Local\temp\_MEI35362\_win32sysloader.pyd
[2012.11.15 15:50:24 | 000,009,216 | ---- | M] () -- \Users\noname\AppData\Local\temp\_MEI35802\_win32sysloader.pyd
[2012.11.27 21:16:40 | 000,009,216 | ---- | M] () -- \Users\noname\AppData\Local\temp\_MEI37202\_win32sysloader.pyd
[2012.11.23 09:48:26 | 000,009,216 | ---- | M] () -- \Users\noname\AppData\Local\temp\_MEI38082\_win32sysloader.pyd
[2012.11.26 15:02:56 | 000,009,216 | ---- | M] () -- \Users\noname\AppData\Local\temp\_MEI38202\_win32sysloader.pyd
[2012.11.27 21:08:37 | 000,009,216 | ---- | M] () -- \Users\noname\AppData\Local\temp\_MEI38722\_win32sysloader.pyd
[2012.11.27 14:51:41 | 000,009,216 | ---- | M] () -- \Users\noname\AppData\Local\temp\_MEI38882\_win32sysloader.pyd
[2012.11.09 21:04:41 | 000,009,216 | ---- | M] () -- \Users\noname\AppData\Local\temp\_MEI39682\_win32sysloader.pyd
[2012.11.15 12:00:10 | 000,009,216 | ---- | M] () -- \Users\noname\AppData\Local\temp\_MEI40162\_win32sysloader.pyd
[2012.11.17 09:33:31 | 000,009,216 | ---- | M] () -- \Users\noname\AppData\Local\temp\_MEI40682\_win32sysloader.pyd
[2012.11.07 14:44:32 | 000,009,216 | ---- | M] () -- \Users\noname\AppData\Local\temp\_MEI41682\_win32sysloader.pyd
[2012.11.10 20:18:27 | 000,009,216 | ---- | M] () -- \Users\noname\AppData\Local\temp\_MEI45042\_win32sysloader.pyd
[2012.11.13 10:21:22 | 000,009,216 | ---- | M] () -- \Users\noname\AppData\Local\temp\_MEI50362\_win32sysloader.pyd
[2012.11.09 07:16:37 | 000,009,216 | ---- | M] () -- \Users\noname\AppData\Local\temp\_MEI50562\_win32sysloader.pyd
[2012.11.18 07:34:35 | 000,009,216 | ---- | M] () -- \Users\noname\AppData\Local\temp\_MEI8042\_win32sysloader.pyd
[2012.09.25 21:00:53 | 000,000,000 | ---- | M] () -- \Users\noname\AppData\Roaming\Apple Computer\MediaStream\ul\assetStreamUploader.log
[2012.06.28 09:28:02 | 000,069,120 | ---- | M] () -- \Users\noname\AppData\Roaming\Samsung\Kies\UpdateTemp\Backup\Common\Kies.Common.DeviceServiceLib.FirmwareUpdate.Downloader.dll
[2012.07.02 16:12:50 | 000,183,736 | ---- | M] () -- \Users\noname\AppData\Roaming\Samsung\Kies\UpdateTemp\Backup\External\FirmwareUpdate\BinaryLoaderMgr.exe
[2012.06.28 09:28:02 | 000,069,120 | ---- | M] () -- \Users\noname\AppData\Roaming\Samsung\Kies\UpdateTemp\Backup\Plugins\DeviceHost\Kies.Common.DeviceServiceLib.FirmwareUpdate.Downloader.dll
[2012.08.03 01:11:20 | 000,069,120 | ---- | M] () -- \Users\noname\AppData\Roaming\Samsung\Kies\UpdateTemp\Sub\Common\Kies.Common.DeviceServiceLib.FirmwareUpdate.Downloader.dll
[2012.08.07 06:25:10 | 000,183,736 | ---- | M] () -- \Users\noname\AppData\Roaming\Samsung\Kies\UpdateTemp\Sub\External\FirmwareUpdate\BinaryLoaderMgr.exe
[2012.08.03 01:11:20 | 000,069,120 | ---- | M] () -- \Users\noname\AppData\Roaming\Samsung\Kies\UpdateTemp\Sub\Plugins\DeviceHost\Kies.Common.DeviceServiceLib.FirmwareUpdate.Downloader.dll
[2010.06.22 13:41:14 | 000,000,051 | ---- | M] () -- \Users\noname\Documents\TomTom\HOME\Backup\XL\Backup01\InternalMemory\bootloaderversion.txt
[2010.08.21 12:29:59 | 000,082,784 | ---- | M] () -- \Windows\assembly\GAC\IALoader\1.7.6223.0__31bf3856ad364e35\IALoader.dll
[2012.11.23 13:48:40 | 000,189,952 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_32\Kies.Common.DeviceS#\3a7c06a85d686cc842188d4916f6f11a\Kies.Common.DeviceServiceLib.FirmwareUpdate.Downloader.ni.dll
[2012.02.03 03:32:08 | 000,112,128 | R--- | M] () -- \Windows\Installer\$PatchCache$\Managed\A8640317F35F8964C8903A93AEB3506E\3.0.655\ta_productapiloader..D321D6CC_DBBE_4AC3_8DBD_DFF82BB39BDC
[2012.11.25 17:49:13 | 000,071,468 | ---- | M] () -- \Windows\Prefetch\APPLEPHOTOSTREAMSDOWNLOADER.E-92402CB4.pf
[2012.08.20 18:32:13 | 000,003,584 | -H-- | M] () -- \Windows\System32\api-ms-win-core-libraryloader-l1-1-0.dll
[2009.07.14 02:15:12 | 000,038,400 | ---- | M] () -- \Windows\System32\dmloader.dll
[2011.02.01 20:18:44 | 000,003,530 | ---- | M] () -- \Windows\System32\Tasks\Microsoft\Windows\WindowsColorSystem\Calibration Loader
[2009.07.14 09:43:57 | 000,002,883 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_3318c4cd5e5d0f86.manifest
[2009.07.14 09:43:57 | 000,034,896 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_3318c4cd5e5d0f86_winload.exe.mui_3bc5b827
[2009.07.14 09:43:57 | 000,030,272 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_3318c4cd5e5d0f86_winresume.exe.mui_ff8b5358
[2011.05.27 09:43:09 | 000,004,225 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.17514_none_5d2e241dcae8f953.manifest
[2011.05.27 09:43:09 | 000,508,904 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.17514_none_5d2e241dcae8f953_winload.exe_75835076
[2011.05.27 09:43:09 | 000,442,720 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.17514_none_5d2e241dcae8f953_winresume.exe_85cd1215
[2009.07.14 03:17:38 | 000,002,894 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-s..ive-blackbox-loader_31bf3856ad364e35_6.1.7600.16385_none_6b097e5cb26f7a23.manifest
[2009.07.14 03:17:38 | 000,017,472 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-s..ive-blackbox-loader_31bf3856ad364e35_6.1.7600.16385_none_6b097e5cb26f7a23_spldr.sys_98bd87a0
[2009.07.14 09:42:11 | 000,002,883 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_3318c4cd5e5d0f86.manifest
[2009.07.14 02:47:46 | 000,004,225 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7600.16385_none_5afd1055cdfa75b9.manifest
[2009.08.19 08:38:48 | 000,004,225 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7600.16411_none_5b44c087cdc549ed.manifest
[2009.08.19 08:21:21 | 000,004,225 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7600.20509_none_5be12f8ee6d3987e.manifest
[2010.11.20 04:02:40 | 000,004,225 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.17514_none_5d2e241dcae8f953.manifest
[2009.07.14 02:52:31 | 000,002,894 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-s..ive-blackbox-loader_31bf3856ad364e35_6.1.7600.16385_none_6b097e5cb26f7a23.manifest
[2009.07.14 02:15:12 | 000,038,400 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-audio-dmusic_31bf3856ad364e35_6.1.7600.16385_none_45ca7214f0f664cb\dmloader.dll
[2009.07.14 02:03:49 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.16385_none_0a884619dd2388ad\api-ms-win-core-libraryloader-l1-1-0.dll
[2011.05.14 07:22:35 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.16816_none_0ad4ff55dce9d030\api-ms-win-core-libraryloader-l1-1-0.dll
[2011.06.02 06:45:50 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.16823_none_0ac72e8bdcf4a01c\api-ms-win-core-libraryloader-l1-1-0.dll
[2011.07.16 05:19:58 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.16850_none_0aa3bde9dd0fa7ea\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.08.18 12:09:17 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.17107_none_0ae0ab79dce0fb26\api-ms-win-core-libraryloader-l1-1-0.dll
[2011.06.03 06:50:16 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.20978_none_0b1fbd2cf6364a4e\api-ms-win-core-libraryloader-l1-1-0.dll
[2011.07.16 05:12:45 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.21010_none_0b587286f60d0b32\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.08.20 18:42:56 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.21306_none_0b6949e0f5ff7ec0\api-ms-win-core-libraryloader-l1-1-0.dll
[2011.05.14 07:13:36 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.17617_none_0cbc5ca5da0f5573\api-ms-win-core-libraryloader-l1-1-0.dll
[2011.06.03 06:47:28 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.17625_none_0caf8c25da193eb6\api-ms-win-core-libraryloader-l1-1-0.dll
[2011.07.16 05:15:45 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.17651_none_0c8b1b39da352d2d\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.08.20 18:32:13 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.17932_none_0ca1c10dda240617\api-ms-win-core-libraryloader-l1-1-0.dll
[2011.05.14 08:15:40 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.21728_none_0d3c29cef3342a85\api-ms-win-core-libraryloader-l1-1-0.dll
[2011.06.03 07:56:06 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.21738_none_0d3159e2f33c4676\api-ms-win-core-libraryloader-l1-1-0.dll
[2011.07.16 05:36:48 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.21772_none_0d001876f3621e30\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.08.20 18:23:16 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.22091_none_0ce95442f3736a4b\api-ms-win-core-libraryloader-l1-1-0.dll
========== Alternate Data Streams ==========
@Alternate Data Stream - 6248 bytes -> C:\Windows\PLA\System\System Diagnostics.xml:0v1ieca3Feahez0jAwxjjk5uRh
@Alternate Data Stream - 150 bytes -> C:\ProgramData\TEMP:CB0AACC9
@Alternate Data Stream - 100 bytes -> C:\ProgramData\TEMP:0E08FC17
< End of report >
Re: Zdravím a prosím o kontrolu. Předem díky
OTL Extras logfile created on: 28.11.2012 16:06:58 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\noname\Desktop
Ultimate Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy
2,93 Gb Total Physical Memory | 1,48 Gb Available Physical Memory | 50,54% Memory free
5,86 Gb Paging File | 3,91 Gb Available in Paging File | 66,72% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 48,97 Gb Total Space | 5,07 Gb Free Space | 10,35% Space Free | Partition Type: NTFS
Drive D: | 249,02 Gb Total Space | 223,04 Gb Free Space | 89,57% Space Free | Partition Type: NTFS
Computer Name: NONAME-PC | User Name: noname | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 7 Days
========== Extra Registry (SafeList) ==========
========== File Associations ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\System32\control.exe (Microsoft Corporation)
.hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation)
[HKEY_USERS\S-1-5-21-639110540-3213493223-2817070946-1000\SOFTWARE\Classes\<extension>]
.html [@ = htmlfile] -- Reg Error: Key error. File not found
========== Shell Spawning ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
https [open] -- Reg Error: Key error.
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
========== Security Center Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
"FirewallDisableNotify" = 0
"AntiVirusDisableNotify" = 0
"UpdatesDisableNotify" = 0
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = Reg Error: Unknown registry data type -- File not found
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]
========== System Restore Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0
========== Firewall Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile]
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
========== Authorized Applications List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
========== Vista Active Open Ports Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{0A3864BC-7270-4863-B643-BC9112D4667C}" = lport=808 | protocol=6 | dir=in | svc=nettcpactivator | app=c:\windows\microsoft.net\framework\v4.0.30319\smsvchost.exe |
"{0BCF2829-1E04-4784-AB10-D7199241784F}" = lport=2869 | protocol=6 | dir=in | app=system |
"{0FC73FFC-C5EC-4B7F-8110-BBEBE6E210AE}" = lport=445 | protocol=6 | dir=in | app=system |
"{1D14E556-297C-42ED-9FEB-2167BF8B5FCC}" = rport=138 | protocol=17 | dir=out | app=system |
"{1FD08D77-8854-4A86-A5B5-9188093F363D}" = rport=137 | protocol=17 | dir=out | app=system |
"{25212469-AB88-45E3-8803-2BAE85524C13}" = lport=2869 | protocol=6 | dir=in | app=system |
"{2B19650A-DB0C-427D-AB57-4B4737B9A882}" = rport=2177 | protocol=6 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{2B695DBA-A325-45E6-BA2B-62C8C2B17602}" = lport=20102 | protocol=6 | dir=in | name=allshare udp port |
"{42852260-C9C6-404A-8819-08A281DD7141}" = lport=3702 | protocol=17 | dir=in | svc=fdrespub | app=%systemroot%\system32\svchost.exe |
"{462647B1-F58E-45B0-A7D0-F04EE2961BBE}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{4E0C77B3-29C4-4263-B877-A3597DD247E5}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{54F0574D-F86B-4C43-82E0-FCED1F55B554}" = lport=2177 | protocol=6 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{5D881E75-2D16-4482-920A-89E39DB66BF0}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{60909CE7-6CC7-44E9-8A4B-8E6DCE7984B8}" = rport=139 | protocol=6 | dir=out | app=system |
"{610564FA-9594-4A52-AA00-695EA2477F4D}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 |
"{6183892A-A953-4A47-B1B7-D353EF932FB5}" = lport=3702 | protocol=17 | dir=in | svc=fdphost | app=%systemroot%\system32\svchost.exe |
"{6377076F-7389-4381-B1AC-A4A3A6223930}" = rport=3702 | protocol=17 | dir=out | svc=fdrespub | app=%systemroot%\system32\svchost.exe |
"{6D696EE1-D454-462D-8EA8-A835BE0F046A}" = lport=139 | protocol=6 | dir=in | app=system |
"{7179F222-9CC6-46EC-89B3-991440EB1327}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{8B164732-5267-4469-A94D-530AA5C831C2}" = lport=137 | protocol=17 | dir=in | app=system |
"{989F2385-EC5B-46C1-BB91-8EC41744B4B0}" = rport=445 | protocol=6 | dir=out | app=system |
"{98C86AB2-A00B-4424-83B9-2F458C5DD770}" = rport=2177 | protocol=17 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{A45BFDB6-70BF-409E-9A5D-DCB58CE49768}" = lport=138 | protocol=17 | dir=in | app=system |
"{ABAD1455-077E-47E7-8CEB-C2C547CADF2B}" = rport=10243 | protocol=6 | dir=out | app=system |
"{C5946B78-8B20-4D0B-BB47-6A94E39C1DCD}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
"{C8A30DA4-98F5-4E29-9D4C-4D497141655D}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{CC70A970-BE26-4ECE-82D1-6342187D57F0}" = lport=6004 | protocol=17 | dir=in | app=c:\program files\microsoft office\office12\outlook.exe |
"{CC730289-29AA-4B7A-8F6B-7454AC1C1E61}" = rport=3702 | protocol=17 | dir=out | svc=fdphost | app=%systemroot%\system32\svchost.exe |
"{CC732229-8C0C-4311-B13F-2B4F11BFCA9D}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{D526F005-4937-4E48-A494-29C66E259EE7}" = lport=10243 | protocol=6 | dir=in | app=system |
"{D79A2986-8FAA-40BA-B165-036BE2D38B89}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{DCCA5715-5938-441E-9E41-009530DBC222}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{DE76070C-F048-48F7-B0D4-C520E78D9D3C}" = lport=7878 | protocol=6 | dir=in | name=allshare tcp port |
"{DEE574AA-A9F7-4766-8096-BA4778DD8269}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{E50ACFFD-A3A1-42CE-AA60-5A2464FADCB0}" = lport=1900 | protocol=6 | dir=in | name=allshare multicast port |
"{F2E6A4AD-0F00-4693-AC34-994B8696D8E1}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{F41DA7F4-2629-419E-B5C7-48D3D0DF2020}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{F721DB19-2A13-4E56-BF57-379E2FDDB56E}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{FC852436-5C8E-4908-95D7-CF09FBF65830}" = lport=2177 | protocol=17 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
========== Vista Active Application Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{139140BD-0B09-431B-940B-34074EF039FD}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{18792FD8-D2FF-4657-A43E-1616DC8248D1}" = protocol=6 | dir=out | app=system |
"{1AC6B5AE-CF03-46C1-8AF2-35FBA0C386DC}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 |
"{2F595849-DAD3-4377-8E21-39068181AB4D}" = protocol=17 | dir=in | app=c:\program files\microsoft office\office12\onenote.exe |
"{30B85ACF-541E-4C1B-ABCB-9DFA3BA769FC}" = dir=in | app=c:\program files\nokia\nokia suite\nokiasuite.exe |
"{31A0D0F2-4FAE-484C-808D-BE4B652A907E}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{3210C2F0-CD0F-4CB4-A91A-1D1223CEEF09}" = dir=in | app=c:\program files\common files\apple\apple application support\webkit2webprocess.exe |
"{3690939A-A2DD-483B-A559-5D238B9FE549}" = protocol=17 | dir=in | app=c:\program files\microsoft office\office12\onenote.exe |
"{3884A231-5CAD-4B88-813E-D4474C43B4A8}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{4491235E-599A-468F-90CB-D0B5CC7A4AE1}" = protocol=6 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{46765F86-944A-4B11-9A9D-175ED79011A5}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 |
"{4EC09ADD-DECC-4FB0-A59C-DAB0F7007CF1}" = protocol=6 | dir=out | svc=fdphost | app=%systemroot%\system32\svchost.exe |
"{50388C21-3B1E-4C4D-BBBA-26C7D0B93DCA}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 |
"{5883CF3C-16C7-4D78-BF8A-B9400A481DE0}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{59547C6C-807A-4968-B16F-1A0BB440150C}" = protocol=6 | dir=in | app=e:\network\epsonnetsetup\eneasyapp.exe |
"{59D7D095-00D1-48F9-9ABB-0494B990C000}" = protocol=6 | dir=in | app=c:\program files\microsoft office\office12\onenote.exe |
"{5FBFF513-E829-4F70-92B0-20B7381BF6D6}" = dir=in | app=c:\program files\nokia\nokia suite\nokiasuite.exe |
"{649ABD9A-93FD-4523-B454-068DBE88D6C3}" = protocol=17 | dir=in | app=c:\program files\microsoft office\office12\groove.exe |
"{694326EE-F881-4FE9-A853-86555A3E9834}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{7898FF11-EE1F-40D8-9847-91BE6F3D6D7C}" = protocol=17 | dir=in | app=e:\network\epsonnetsetup\eneasyapp.exe |
"{7B858680-1AAB-4B2D-BDA2-A73B2CAC10CD}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{80371E0C-1B55-42B1-B521-9ABF10D92177}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{8517A45B-05FE-42D0-8316-41B809BFB34E}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{8B6A4ED0-D613-4907-A966-F6497DF7F708}" = protocol=6 | dir=in | app=e:\network\epsonnetsetup\eneasyapp.exe |
"{8E801CB9-9F80-438B-89F0-62AAD4051866}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{8E92612D-3E85-4E02-9F0D-9A16B1CF23BD}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{9A8835C4-7F6A-4864-B677-E163EA48141F}" = protocol=6 | dir=in | app=c:\program files\microsoft office\office12\onenote.exe |
"{AB7489F3-A51C-4651-A25C-E1EEE57010D4}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{AE7BB116-3637-42DA-B4EF-BF1F0D66155D}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{BC7FCE1F-C38E-47DE-93EF-92F53F6DE9FB}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 |
"{BF6FA19F-D9D3-4167-AE4A-B3E3D4CCC7F4}" = protocol=6 | dir=out | app=%systemroot%\system32\wudfhost.exe |
"{C5C1E542-79FA-45D0-8AE0-C66F35718B0C}" = protocol=6 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{C9B6CE40-4C42-4133-A9AE-CD2C60E2DF94}" = dir=in | app=c:\program files\intel\wifi\bin\pandhcpdns.exe |
"{D77BDE9B-3E78-49A0-A25E-8933A1E5EA0E}" = protocol=17 | dir=in | app=c:\program files\microsoft office\office12\groove.exe |
"{DA4F38E8-9FC6-4813-AD8C-FD220DFB7625}" = protocol=17 | dir=in | app=e:\network\epsonnetsetup\eneasyapp.exe |
"{DC4390C4-E86C-455C-AC4F-FB13580D4EB7}" = protocol=6 | dir=in | app=c:\program files\microsoft office\office12\groove.exe |
"{EF5B2C35-9828-4FCE-9DBC-76C172E211AA}" = protocol=6 | dir=in | app=c:\program files\microsoft office\office12\groove.exe |
"{F7C506B9-A852-4AAC-9037-AC6B8D8AF512}" = protocol=17 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"TCP Query User{2FC56DAD-B92E-4E64-90BB-B4B31ECAAB53}C:\program files\epson software\event manager\eeventmanager.exe" = protocol=6 | dir=in | app=c:\program files\epson software\event manager\eeventmanager.exe |
"TCP Query User{55688457-D57F-4CAE-9DC6-C0601DC614E1}D:\program files\itunes\itunes.exe" = protocol=6 | dir=in | app=d:\program files\itunes\itunes.exe |
"TCP Query User{AA65C0EB-68AF-47A1-A3A6-38C4ED5BA734}C:\program files\epson software\event manager\eeventmanager.exe" = protocol=6 | dir=in | app=c:\program files\epson software\event manager\eeventmanager.exe |
"TCP Query User{D5187DBE-88FB-4E01-9BB5-070CA9839FDB}C:\windows\system32\rundll32.exe" = protocol=6 | dir=in | app=c:\windows\system32\rundll32.exe |
"TCP Query User{E6AE3524-A926-4BDF-9D27-3BD4833AFC3E}C:\program files\google\google earth\client\googleearth.exe" = protocol=6 | dir=in | app=c:\program files\google\google earth\client\googleearth.exe |
"UDP Query User{083D76A3-5CC0-4C64-A4D1-EEE23A12535A}C:\program files\epson software\event manager\eeventmanager.exe" = protocol=17 | dir=in | app=c:\program files\epson software\event manager\eeventmanager.exe |
"UDP Query User{3D38C39E-E68B-4AF0-8FB5-119123EF133C}D:\program files\itunes\itunes.exe" = protocol=17 | dir=in | app=d:\program files\itunes\itunes.exe |
"UDP Query User{7235023C-3004-40EE-9C9A-7D4BA63E6F37}C:\program files\google\google earth\client\googleearth.exe" = protocol=17 | dir=in | app=c:\program files\google\google earth\client\googleearth.exe |
"UDP Query User{7A796AE2-195E-4DED-A008-C1BD6EDFFDE8}C:\program files\epson software\event manager\eeventmanager.exe" = protocol=17 | dir=in | app=c:\program files\epson software\event manager\eeventmanager.exe |
"UDP Query User{A43E6E25-6BEC-4E7B-9386-F6E61FD69580}C:\windows\system32\rundll32.exe" = protocol=17 | dir=in | app=c:\windows\system32\rundll32.exe |
========== HKEY_LOCAL_MACHINE Uninstall List ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"%Product_Name% 5.2F " = Fakturky 5.2F
"{052BB184-C167-468A-ACC4-A19DE51E3BBD}" = Epson E-Web Print
"{07FA4960-B038-49EB-891B-9F95930AA544}" = HP Customer Experience Enhancements
"{08C8666B-C502-4AB3-B4CB-D74AC42D14FE}" = Nero BackItUp 10 Help (CHM)
"{0A0CADCF-78DA-33C4-A350-CD51849B9702}" = Microsoft .NET Framework 4 Extended
"{0E64B098-8018-4256-BA23-C316A43AD9B0}" = QuickTime
"{0F6F6876-6334-4977-B5DD-CFC12E193420}" = iTunes
"{16987E99-C95C-4513-9239-7B44A0A71DB5}" = Nero SoundTrax 10 Help (CHM)
"{196467F1-C11F-4F76-858B-5812ADC83B94}" = MSXML 4.0 SP3 Parser
"{196BB40D-1578-3D01-B289-BEFC77A11A1E}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319
"{1A834332-A9EE-440C-9505-2D07F445F05A}" = MOBILedit! Support Libraries
"{1E91951D-0114-4692-8F55-F95E1B2F3542}" = SlimDrivers
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{212748BB-0DA5-46DE-82A1-403736DC9F27}" = MSVC80_x86
"{237CCB62-8454-43E3-B158-3ACD0134852E}" = High-Definition Video Playback 10
"{2436F2A8-4B7E-4B6C-AE4E-604C84AA6A4F}" = Nero Core Components 10
"{26A24AE4-039D-4CA4-87B4-2F83216024FF}" = Java(TM) 6 Update 30
"{26A24AE4-039D-4CA4-87B4-2F83217009FF}" = Java 7 Update 9
"{300B9E83-E406-4DF7-8A21-E8A90E4F8B91}_is1" = Convert DVD to AVI 1.1
"{329411A0-19F3-4740-874F-17400B126F27}" = Nero Vision 10 Help (CHM)
"{33643918-7957-4839-92C7-EA96CB621A98}" = Nero Express 10 Help (CHM)
"{37EC048A-81A2-452A-8D1F-3BE2018E767D}" = Intel(R) PROSet/Wireless for Bluetooth(R) + High Speed
"{392A74D0-4DFE-49F7-87C3-8A61708F8856}" = Eraser 6.0.8.2273
"{3B69A712-4CBC-40B1-AE55-0203075FD093}" = Nokia Suite
"{3C3901C5-3455-3E0A-A214-0B093A5070A6}" = Microsoft .NET Framework 4 Client Profile
"{3DCF00F5-04A5-4543-A088-705480811205}_is1" = Compiled Driver Disk (Nokia) 1.0
"{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}" = Intel(R) Rapid Storage Technology
"{3E31400D-274E-4647-916C-2CACC3741799}" = EpsonNet Print
"{44715246-18E9-4EDF-AA03-94E4B4F80EA8}" = Download Navigator
"{47DA7D2E-408C-4050-B75F-95F6D2E6A332}_is1" = MOBILedit! ver. 6.9.0.2841
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4D43D635-6FDA-4fa5-AA9B-23CF73D058EA}" = Nero StartSmart OEM
"{523B2B1B-D8DB-4B41-90FF-C4D799E2758A}" = Nero ControlCenter 10 Help (CHM)
"{555868C6-49FB-484F-BB43-8980651A1B00}" = Nero BurnRights 10 Help (CHM)
"{56C049BE-79E9-4502-BEA7-9754A3E60F9B}" = neroxml
"{5A3C1721-F8ED-11E0-8AFB-B8AC6F97B88E}" = Google Earth
"{5AFEABF5-7411-4C29-9FA9-71ABE880662D}" = Nokia PC Suite
"{5EE7D259-D137-4438-9A5F-42F432EC0421}" = VC80CRTRedist - 8.0.50727.4053
"{5F548A02-80BC-404D-BAE6-F05F9BF6B449}" = Nero DiscCopyGadget 10 Help (CHM)
"{63AA3EAB-23BB-48B2-9AD0-44F878075604}" = Nero 10 Menu TemplatePack Basic
"{63EC2120-1742-4625-AA47-C6A8AEC9C64C}" = Apple Application Support
"{66049135-9659-4AAD-9169-9CCA269EBB3E}" = Nero InfoTool 10 Help (CHM)
"{670A9A20-E29D-40C3-9937-2AFF89C3AC82}_is1" = PROFIT 2012.05
"{6D3245B1-8DB8-4A23-9CD2-2C90F40ABAF6}" = MSVC80_x86_v2
"{6DFB899F-17A2-48F0-A533-ED8D6866CF38}" = Nero Control Center 10
"{6F340107-F9AA-47C6-B54C-C3A19F11553F}" = Hewlett-Packard ACLM.NET v1.1.1.0
"{7036A6F4-5DAD-3908-956D-1752CD7F7E5A}" = Microsoft .NET Framework 4 Client Profile CSY Language Pack
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{7130468A-F53F-4698-8C09-A339EA3B05E6}" = Nokia Software Updater
"{7390478C-8581-415E-92E9-2997D9306B81}" = PC Connectivity Solution
"{758C8301-2696-4855-AF45-534B1200980A}" = Samsung Kies
"{7748ac8c-18e3-43bb-959b-088faea16fb2}" = Nero StartSmart
"{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}" = Apple Software Update
"{79155F2B-9895-49D7-8612-D92580E0DE5B}" = Bonjour
"{7A295D8F-484B-4FFB-89AB-C1FD497591FE}" = Nero WaveEditor 10 Help (CHM)
"{7CA4F780-7AD0-417A-82A1-46EB825CFD53}" = HP Managed Printing Admin
"{82EF29B1-9B60-4142-A155-0599216DD053}" = LightScribe System Software
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8C0CAA7A-3272-4991-A808-2C7559DE3409}" = Win7codecs
"{8CC68433-5837-4075-B81F-EA7E4F14CE60}" = iCloud
"{8ED43F7E-A8F6-4898-AF11-B6158F2EDF94}" = Epson Event Manager
"{90120000-0015-0405-0000-0000000FF1CE}" = Microsoft Office Access MUI (Czech) 2007
"{90120000-0015-0405-0000-0000000FF1CE}_ENTERPRISE_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0016-0405-0000-0000000FF1CE}" = Microsoft Office Excel MUI (Czech) 2007
"{90120000-0016-0405-0000-0000000FF1CE}_ENTERPRISE_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0018-0405-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (Czech) 2007
"{90120000-0018-0405-0000-0000000FF1CE}_ENTERPRISE_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0019-0405-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (Czech) 2007
"{90120000-0019-0405-0000-0000000FF1CE}_ENTERPRISE_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001A-0405-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (Czech) 2007
"{90120000-001A-0405-0000-0000000FF1CE}_ENTERPRISE_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001B-0405-0000-0000000FF1CE}" = Microsoft Office Word MUI (Czech) 2007
"{90120000-001B-0405-0000-0000000FF1CE}_ENTERPRISE_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001F-0405-0000-0000000FF1CE}" = Microsoft Office Proof (Czech) 2007
"{90120000-001F-0405-0000-0000000FF1CE}_ENTERPRISE_{294B4278-CF7B-40B9-86A1-2D3FF0C2C524}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2007
"{90120000-001F-0407-0000-0000000FF1CE}_ENTERPRISE_{A0516415-ED61-419A-981D-93596DA74165}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-0409-0000-0000000FF1CE}_ENTERPRISE_{ABDDE972-355B-4AF1-89A8-DA50B7B5C045}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-041B-0000-0000000FF1CE}" = Microsoft Office Proof (Slovak) 2007
"{90120000-001F-041B-0000-0000000FF1CE}_ENTERPRISE_{10EC59E5-9BCE-4884-BB1A-E28627220232}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-002C-0405-0000-0000000FF1CE}" = Microsoft Office Proofing (Czech) 2007
"{90120000-0030-0000-0000-0000000FF1CE}" = Microsoft Office Enterprise 2007
"{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0044-0405-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (Czech) 2007
"{90120000-0044-0405-0000-0000000FF1CE}_ENTERPRISE_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-006E-0405-0000-0000000FF1CE}" = Microsoft Office Shared MUI (Czech) 2007
"{90120000-006E-0405-0000-0000000FF1CE}_ENTERPRISE_{E12F9D31-4025-4BC6-B1B2-AB262C5580B0}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-00A1-0405-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (Czech) 2007
"{90120000-00A1-0405-0000-0000000FF1CE}_ENTERPRISE_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-00BA-0405-0000-0000000FF1CE}" = Microsoft Office Groove MUI (Czech) 2007
"{90120000-00BA-0405-0000-0000000FF1CE}_ENTERPRISE_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{92E25238-61A3-4ACD-A407-3C480EEF47A7}" = Nero RescueAgent 10 Help (CHM)
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9B6B24BE-80E7-46C4-9FA5-B167D5E0F345}" = Nero BurningROM 10 Help (CHM)
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{A02D7029-C4EF-44C1-9FD4-C0D3CA518113}" = Epson Easy Photo Print 2
"{A2DE62D8-EF1B-36CB-B461-B1E221ED8608}" = Microsoft .NET Framework 4 Extended CSY Language Pack
"{A57025CC-5F2E-4D01-B387-06DB10500D43}" = Nokia Connectivity Cable Driver
"{A7E19604-93AF-4611-8C9F-CE509C2B286E}_is1" = VDownloader 3.8.974
"{a9264802-8a7a-40fe-a135-5c6d204aed7a}.sdb" = Internet Explorer (Enable DEP)
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{AF111648-99A1-453E-81DD-80DBBF6DAD0D}" = MSVC90_x86
"{B0344B38-378B-47E0-BDCC-977785D24768}" = Integrated Camera Driver Installer Package Ver.1.33.110.0
"{B2D55EB8-32C5-4B43-9006-9E97DECBA178}" = Epson Easy Photo Print Plug-in for PMB(Picture Motion Browser)
"{b2ec4a38-b545-4a00-8214-13fe0e915e6d}" = Advertising Center
"{B4092C6D-E886-4CB2-BA68-FE5A88D31DE6}_is1" = Spybot - Search & Destroy
"{B829E117-D072-41EA-9606-9826A38D34C1}" = Sophos Virus Removal Tool
"{BC30E5E7-047D-4232-A7E8-F2CB7CC7B2E0}_is1" = Emsisoft Anti-Malware
"{bd5ca0da-71ad-43da-b19e-6eee0c9adc9a}" = Nero ControlCenter
"{BDDB58A5-F98E-4D3C-B554-4A4D31C6D405}_is1" = Phone Drivers Downloader 1.1
"{C18A0418-442A-4186-AF98-D08F5054A2FC}" = Nero DiscSpeed 10 Help (CHM)
"{C3273C55-E1E4-41FF-8D69-0158090DB8D8}" = Nero CoverDesigner 10 Help (CHM)
"{C3580AC4-C827-4332-B935-9A282ED5BB97}" = Nero Dolby Files 10
"{C9601EF7-606D-4873-94BD-8B149D5D1666}" = Mobile Net Switch
"{CC4878C0-4A6A-49CD-AAA7-DD3FCB06CC84}" = Microsoft Web Platform Installer 3.0
"{CC9BA422-3C2E-422D-B889-67F839028A6E}" = STORMWARE POHODA CZ Start
"{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}" = SAMSUNG USB Driver for Mobile Phones
"{D0E5A442-9000-4D91-944E-A985CBBBD639}" = Nextis.7.TerminalClient.x86
"{D24DB8B9-BB6C-4334-9619-BA1C650E13D3}" = Microsoft Primary Interoperability Assemblies 2005
"{D36B4583-E804-406B-9D56-F97931286C5B}" = 32 Bit HP CIO Components Installer
"{D4DDFAA1-EC37-4529-AD5B-A433ADE68662}" = Apple Mobile Device Support
"{D6F879CC-59D6-4D4B-AE9B-D761E48D25ED}" = Skype™ 5.3
"{DB6AB705-C9BD-40E3-8929-2EA57F36A4FF}_is1" = ConvertXtoDVD 4.1.19.365
"{DB7C1D4A-08BA-4C7E-A8AA-B7F9BB372DCF}" = Nero Recode 10 Help (CHM)
"{dba84796-8503-4ff0-af57-1747dd9a166d}" = Nero Online Upgrade
"{E2D0B67F-8032-4E11-87C6-C8C721D331B3}" = Software Intel® PROSet/Wireless WiFi
"{E3B64CC5-C011-40C0-92BC-7316CD5E5688}" = Microsoft_VC100_CRT_SP1_x86
"{e8a80433-302b-4ff1-815d-fcc8eac482ff}" = Nero Installer
"{EF67AE1A-6B31-4C98-91A9-F195D8702150}" = Google Drive
"{F0A37341-D692-11D4-A984-009027EC0A9C}" = SoundMAX
"{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
"{F467862A-D9CA-47ED-8D81-B4B3C9399272}" = Nero MediaHub 10 Help (CHM)
"{F5CB822F-B365-43D1-BCC0-4FDA1A2017A7}" = Nero 10 Movie ThemePack Basic
"{F6117F9C-ADB5-4590-9BE4-12C7BEC28702}" = Nero StartSmart 10 Help (CHM)
"{F8A9085D-4C7A-41a9-8A77-C8998A96C421}" = Intel(R) Control Center
"{F9000000-0018-0000-0000-074957833700}" = ABBYY FineReader 9.0 Sprint
"{F9A43C0C-F274-4EC0-B02E-202C15C09C00}" = HP Wireless Assistant
"13729598EDD1F263DD26E8584C5F347C88091A2E" = Balíček ovladače systému Windows - Broadcom Corporation Bluetooth (03/16/2012 6.5.1.2600)
"17D063A0A9F5D5A225B76B1D9BCB5ADBE85C8382" = Balíček ovladače systému Windows - Nokia pccsmcfd “LegacyDriver” (05/31/2012 7.1.2.0)
"813EA266E806F300A8DAF30E5D823E268290B5D6" = Balíček ovladače systému Windows - Broadcom Corporation (bcbtums) Bluetooth (03/16/2012 6.5.1.2600)
"ABBYY FineReader 9.0 Sprint" = ABBYY FineReader 9.0 Sprint
"Adobe Flash Player ActiveX" = Adobe Flash Player 11 ActiveX
"Autoškola professional_is1" = Autoškola professional 3.5
"Avira AntiVir Desktop" = Avira Free Antivirus
"Broadcom 802.11 Wireless LAN Adapter" = Broadcom 802.11 Wireless LAN Adapter
"CA3B55EAB525669DA92EC19475AF574597822688" = Balíček ovladače systému Windows - Broadcom HIDClass (09/11/2009 6.3.0.1500)
"CBF192A85B624E32B8D19ADEEF2DCFC5BC3AA73A" = Balíček ovladače systému Windows - Nokia Modem (03/05/2008 3.7)
"CCleaner" = CCleaner
"CobBackup10" = Cobian Backup 10
"CoreAAC Audio Decoder" = CoreAAC Audio Decoder (remove only)
"DivX Setup.divx.com" = DivX Setup
"E092B2EBF2FFE83E896F8F7F829A7B5D7D1B2F9D" = Balíček ovladače systému Windows - Nokia Modem (03/13/2008 6.86.0.1)
"ENTERPRISE" = Microsoft Office Enterprise 2007
"EPSON Scanner" = EPSON Scan
"EPSON SX235 Series" = Odinstalace tiskárny EPSON SX235 Series
"EPSON SX235 Series Useg" = Uživatelská příručka EPSON SX235 Series
"FastStone Photo Resizer" = FastStone Photo Resizer 3.0
"ffdshow_is1" = ffdshow [rev 3299] [2010-03-03]
"FormatFactory" = FormatFactory 2.90
"Foxit Reader_is1" = Foxit Reader
"GPL Ghostscript 9.06" = GPL Ghostscript
"GSview 5.0" = GSview 5.0
"HaaliMkx" = Haali Media Splitter
"HDMI" = Intel(R) Graphics Media Accelerator Driver
"Inkscape" = Inkscape 0.48.2
"InstallShield_{758C8301-2696-4855-AF45-534B1200980A}" = Samsung Kies
"IrfanView" = IrfanView (remove only)
"Marvell Miniport Driver" = Marvell Miniport Driver
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Microsoft .NET Framework 4 Client Profile CSY Language Pack" = Microsoft .NET Framework 4 Client Profile CSY Language Pack
"Microsoft .NET Framework 4 Extended" = Microsoft .NET Framework 4 Extended
"Microsoft .NET Framework 4 Extended CSY Language Pack" = Microsoft .NET Framework 4 Extended CSY Language Pack
"Moto-Faktura" = Moto-Faktura - Program k stažení dokumentů.
"Nokia PC Suite" = Nokia PC Suite
"Nokia Suite" = Nokia Suite
"Picasa 3" = Picasa 3
"PowerISO" = PowerISO
"ProInst" = Intel PROSet Wireless
"rajče.net_is1" = rajče verze 58 sestavení 211
"Revo Uninstaller" = Revo Uninstaller 1.94
"SynTPDeinstKey" = Synaptics Pointing Device Driver
"TeamViewer 7" = TeamViewer 7
"Terminal DO ZAMÓWIEŃ" = Terminal DO ZAMÓWIEŃ
"The KMPlayer" = The KMPlayer (remove only)
"VLC media player" = VLC media player 1.1.11
"Windows Movie Maker" = Windows Movie Maker
"WinRAR archiver" = WinRAR 4.11 (32-bit)
"XRECODE_is1" = XRECODE
"Xvid_is1" = Xvid 1.2.2 final uninstall
"YouTube Downloader_is1" = YouTube Downloader 2.5
"ZonerCallisto5_CZ_is1" = Zoner Callisto 5 FREE
========== HKEY_USERS Uninstall List ==========
[HKEY_USERS\S-1-5-21-639110540-3213493223-2817070946-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Google Chrome" = Google Chrome
========== Last 20 Event Log Errors ==========
[ Application Events ]
Error - 25.11.2012 21:54:20 | Computer Name = noname-PC | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: Continuously busy for more than a second
Error - 25.11.2012 21:54:20 | Computer Name = noname-PC | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: m->NextScheduledEvent 6754
Error - 25.11.2012 21:54:20 | Computer Name = noname-PC | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: m->NextScheduledSPRetry 6754
Error - 25.11.2012 21:54:21 | Computer Name = noname-PC | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: Continuously busy for more than a second
Error - 25.11.2012 21:54:21 | Computer Name = noname-PC | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: m->NextScheduledEvent 7753
Error - 25.11.2012 21:54:21 | Computer Name = noname-PC | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: m->NextScheduledSPRetry 7753
Error - 27.11.2012 15:02:00 | Computer Name = noname-PC | Source = Outlook | ID = 34
Description = Nepodařilo se získat správce oboru procházení. Chyba=0x8007043c.
Error - 27.11.2012 15:02:00 | Computer Name = noname-PC | Source = Outlook | ID = 35
Description = Nelze určit, zda se zásobník nachází v oboru procházení (chyba=0x8007043c).
Error - 27.11.2012 15:02:01 | Computer Name = noname-PC | Source = Outlook | ID = 34
Description = Nepodařilo se získat správce oboru procházení. Chyba=0x8007043c.
Error - 27.11.2012 15:02:01 | Computer Name = noname-PC | Source = Outlook | ID = 35
Description = Nelze určit, zda se zásobník nachází v oboru procházení (chyba=0x8007043c).
[ Hewlett-Packard Events ]
Error - 9.10.2011 13:07:31 | Computer Name = noname-PC | Source = Hewlett-Packard | ID = 0
Description = AAProcessExited() C:\ProgramData\Hewlett-Packard\HP Support Framework\Telemetry\101109070717.xml
File not created by asset agent
Error - 11.10.2011 7:25:29 | Computer Name = noname-PC | Source = hpsa_service.exe | ID = 2000
Description = HP Error ID: -2146233088 v HP.ActiveCheckLocalMode.SessionManager.ActiveCheckManager.UpdateDetail(String
category) v HP.ActiveCheckLocalMode.SessionManager.ActiveCheckManager.UpdateAndDetectCore()
v HP.ActiveCheckLocalMode.SessionManager.ActiveCheckManager.UpdateAndDetect()
v HP.SupportAssistant.Service.ACLM.ActiveCheck.LaunchActiveCheck(Boolean singleScan,
Boolean localScan) Message: Failed to perform update. StackTrace: v HP.ActiveCheckLocalMode.SessionManager.ActiveCheckManager.UpdateDetail(String
category) v HP.ActiveCheckLocalMode.SessionManager.ActiveCheckManager.UpdateAndDetectCore()
v HP.ActiveCheckLocalMode.SessionManager.ActiveCheckManager.UpdateAndDetect()
v HP.SupportAssistant.Service.ACLM.ActiveCheck.LaunchActiveCheck(Boolean singleScan,
Boolean localScan) Source: HP.ActiveCheckLocalMode.SessionManager InnerException.Message:
Objekt /df6daa0a_5f0e_458d_87d7_6e8182c265c9/xymj5ldgtv18perg5zfgtjlp_5.rem byl
odpojen nebo na serveru neexistuje. Name: hpsa_service.exe Version: 06.00.01.01 Path:
C:\Program Files\Hewlett-Packard\HP Support Framework\hpsa_service.exe Format: cs-CZ
RAM:
3000 Ram Utilization: 30 TargetSite: Void UpdateDetail(System.String)
Error - 16.10.2011 4:19:42 | Computer Name = noname-PC | Source = hpsa_service.exe | ID = 2000
Description = HP Error ID: -2146233088 v HP.ActiveCheckLocalMode.SessionManager.ActiveCheckManager.UpdateDetail(String
category) v HP.ActiveCheckLocalMode.SessionManager.ActiveCheckManager.UpdateAndDetectCore()
v HP.ActiveCheckLocalMode.SessionManager.ActiveCheckManager.UpdateAndDetect()
v HP.SupportAssistant.Service.ACLM.ActiveCheck.LaunchActiveCheck(Boolean singleScan,
Boolean localScan) Message: Failed to perform update. StackTrace: v HP.ActiveCheckLocalMode.SessionManager.ActiveCheckManager.UpdateDetail(String
category) v HP.ActiveCheckLocalMode.SessionManager.ActiveCheckManager.UpdateAndDetectCore()
v HP.ActiveCheckLocalMode.SessionManager.ActiveCheckManager.UpdateAndDetect()
v HP.SupportAssistant.Service.ACLM.ActiveCheck.LaunchActiveCheck(Boolean singleScan,
Boolean localScan) Source: HP.ActiveCheckLocalMode.SessionManager InnerException.Message:
Objekt /da151498_dd08_405b_8989_ffe66baaeca3/eyyqle_5zh4d14enm6cj5jkq_5.rem byl
odpojen nebo na serveru neexistuje. Name: hpsa_service.exe Version: 06.00.01.01 Path:
C:\Program Files\Hewlett-Packard\HP Support Framework\hpsa_service.exe Format: cs-CZ
RAM:
3000 Ram Utilization: 30 TargetSite: Void UpdateDetail(System.String)
Error - 18.7.2012 6:48:27 | Computer Name = noname-PC | Source = HPSFMsgr.exe | ID = 4000
Description = HP Error ID: -2147221164 v System.RuntimeTypeHandle.CreateInstance(RuntimeType
type, Boolean publicOnly, Boolean noCheck, Boolean& canBeCached, RuntimeMethodHandle&
ctor, Boolean& bNeedSecurityCheck) v System.RuntimeType.CreateInstanceSlow(Boolean
publicOnly, Boolean fillCache) v System.RuntimeType.CreateInstanceImpl(Boolean
publicOnly, Boolean skipVisibilityChecks, Boolean fillCache) v System.Activator.CreateInstance(Type
type, Boolean nonPublic) v HPSA_Messenger.MessengerCom.TrayDeskBand.isTaskbarDisplayed()
StackTrace:
v System.RuntimeTypeHandle.CreateInstance(RuntimeType type, Boolean publicOnly,
Boolean noCheck, Boolean& canBeCached, RuntimeMethodHandle& ctor, Boolean& bNeedSecurityCheck)
v System.RuntimeType.CreateInstanceSlow(Boolean publicOnly, Boolean fillCache)
v System.RuntimeType.CreateInstanceImpl(Boolean publicOnly, Boolean skipVisibilityChecks,
Boolean fillCache) v System.Activator.CreateInstance(Type type, Boolean nonPublic)
v HPSA_Messenger.MessengerCom.TrayDeskBand.isTaskbarDisplayed() Source: mscorlib
Name:
HPSFMsgr.exe Version: 01.00.00.00 Path: C:\Program Files\Hewlett-Packard\HP Support
Framework\Resources\HPSFMessenger\HPSFMsgr.exe Format: cs-CZ RAM: 3000 Ram Utilization:
20 TargetSite: System.Object CreateInstance(System.RuntimeType, Boolean, Boolean,
Boolean ByRef, System.RuntimeMethodHandle ByRef, Boolean ByRef)
Error - 26.10.2012 4:43:32 | Computer Name = noname-PC | Source = HPSF.exe | ID = 4000
Description =
Error - 26.11.2012 2:04:45 | Computer Name = noname-PC | Source = HPSF.exe | ID = 4000
Description =
[ OSession Events ]
Error - 1.8.2011 4:46:04 | Computer Name = noname-PC | Source = Microsoft Office 12 Sessions | ID = 7001
Description = ID: 6, Application Name: Microsoft Office Outlook, Application Version:
12.0.6423.1000, Microsoft Office Version: 12.0.6425.1000. This session lasted 4
seconds with 0 seconds of active time. This session ended with a crash.
[ System Events ]
Error - 27.11.2012 15:24:03 | Computer Name = noname-PC | Source = Service Control Manager | ID = 7001
Description = Služba Prohledávání počítačů závisí na službě Server, která neuspěla
při spuštění v důsledku následující chyby: %%1068
Error - 27.11.2012 15:24:03 | Computer Name = noname-PC | Source = Service Control Manager | ID = 7001
Description = Služba Prohledávání počítačů závisí na službě Server, která neuspěla
při spuštění v důsledku následující chyby: %%1068
Error - 27.11.2012 15:26:45 | Computer Name = noname-PC | Source = Service Control Manager | ID = 7000
Description = Služba Služba Kaspersky Anti-Virus neuspěla při spuštění v důsledku
následující chyby: %%2
Error - 27.11.2012 15:27:01 | Computer Name = noname-PC | Source = Service Control Manager | ID = 7026
Description = Zavedení následujícího ovladače pro spouštění počítače nebo systému
se nezdařilo: KLIM6
Error - 27.11.2012 16:08:27 | Computer Name = noname-PC | Source = Service Control Manager | ID = 7000
Description = Služba Služba Kaspersky Anti-Virus neuspěla při spuštění v důsledku
následující chyby: %%2
Error - 27.11.2012 16:08:42 | Computer Name = noname-PC | Source = Service Control Manager | ID = 7026
Description = Zavedení následujícího ovladače pro spouštění počítače nebo systému
se nezdařilo: KLIM6
Error - 27.11.2012 16:16:11 | Computer Name = noname-PC | Source = Service Control Manager | ID = 7000
Description = Služba Služba Kaspersky Anti-Virus neuspěla při spuštění v důsledku
následující chyby: %%2
Error - 27.11.2012 16:16:29 | Computer Name = noname-PC | Source = Service Control Manager | ID = 7026
Description = Zavedení následujícího ovladače pro spouštění počítače nebo systému
se nezdařilo: KLIM6
Error - 28.11.2012 10:57:20 | Computer Name = noname-PC | Source = Service Control Manager | ID = 7000
Description = Služba Služba Kaspersky Anti-Virus neuspěla při spuštění v důsledku
následující chyby: %%2
Error - 28.11.2012 10:57:37 | Computer Name = noname-PC | Source = Service Control Manager | ID = 7026
Description = Zavedení následujícího ovladače pro spouštění počítače nebo systému
se nezdařilo: KLIM6
< End of report >
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\noname\Desktop
Ultimate Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy
2,93 Gb Total Physical Memory | 1,48 Gb Available Physical Memory | 50,54% Memory free
5,86 Gb Paging File | 3,91 Gb Available in Paging File | 66,72% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 48,97 Gb Total Space | 5,07 Gb Free Space | 10,35% Space Free | Partition Type: NTFS
Drive D: | 249,02 Gb Total Space | 223,04 Gb Free Space | 89,57% Space Free | Partition Type: NTFS
Computer Name: NONAME-PC | User Name: noname | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 7 Days
========== Extra Registry (SafeList) ==========
========== File Associations ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\System32\control.exe (Microsoft Corporation)
.hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation)
[HKEY_USERS\S-1-5-21-639110540-3213493223-2817070946-1000\SOFTWARE\Classes\<extension>]
.html [@ = htmlfile] -- Reg Error: Key error. File not found
========== Shell Spawning ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
https [open] -- Reg Error: Key error.
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
========== Security Center Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
"FirewallDisableNotify" = 0
"AntiVirusDisableNotify" = 0
"UpdatesDisableNotify" = 0
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = Reg Error: Unknown registry data type -- File not found
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]
========== System Restore Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0
========== Firewall Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile]
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
========== Authorized Applications List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
========== Vista Active Open Ports Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{0A3864BC-7270-4863-B643-BC9112D4667C}" = lport=808 | protocol=6 | dir=in | svc=nettcpactivator | app=c:\windows\microsoft.net\framework\v4.0.30319\smsvchost.exe |
"{0BCF2829-1E04-4784-AB10-D7199241784F}" = lport=2869 | protocol=6 | dir=in | app=system |
"{0FC73FFC-C5EC-4B7F-8110-BBEBE6E210AE}" = lport=445 | protocol=6 | dir=in | app=system |
"{1D14E556-297C-42ED-9FEB-2167BF8B5FCC}" = rport=138 | protocol=17 | dir=out | app=system |
"{1FD08D77-8854-4A86-A5B5-9188093F363D}" = rport=137 | protocol=17 | dir=out | app=system |
"{25212469-AB88-45E3-8803-2BAE85524C13}" = lport=2869 | protocol=6 | dir=in | app=system |
"{2B19650A-DB0C-427D-AB57-4B4737B9A882}" = rport=2177 | protocol=6 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{2B695DBA-A325-45E6-BA2B-62C8C2B17602}" = lport=20102 | protocol=6 | dir=in | name=allshare udp port |
"{42852260-C9C6-404A-8819-08A281DD7141}" = lport=3702 | protocol=17 | dir=in | svc=fdrespub | app=%systemroot%\system32\svchost.exe |
"{462647B1-F58E-45B0-A7D0-F04EE2961BBE}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{4E0C77B3-29C4-4263-B877-A3597DD247E5}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{54F0574D-F86B-4C43-82E0-FCED1F55B554}" = lport=2177 | protocol=6 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{5D881E75-2D16-4482-920A-89E39DB66BF0}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{60909CE7-6CC7-44E9-8A4B-8E6DCE7984B8}" = rport=139 | protocol=6 | dir=out | app=system |
"{610564FA-9594-4A52-AA00-695EA2477F4D}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 |
"{6183892A-A953-4A47-B1B7-D353EF932FB5}" = lport=3702 | protocol=17 | dir=in | svc=fdphost | app=%systemroot%\system32\svchost.exe |
"{6377076F-7389-4381-B1AC-A4A3A6223930}" = rport=3702 | protocol=17 | dir=out | svc=fdrespub | app=%systemroot%\system32\svchost.exe |
"{6D696EE1-D454-462D-8EA8-A835BE0F046A}" = lport=139 | protocol=6 | dir=in | app=system |
"{7179F222-9CC6-46EC-89B3-991440EB1327}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{8B164732-5267-4469-A94D-530AA5C831C2}" = lport=137 | protocol=17 | dir=in | app=system |
"{989F2385-EC5B-46C1-BB91-8EC41744B4B0}" = rport=445 | protocol=6 | dir=out | app=system |
"{98C86AB2-A00B-4424-83B9-2F458C5DD770}" = rport=2177 | protocol=17 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{A45BFDB6-70BF-409E-9A5D-DCB58CE49768}" = lport=138 | protocol=17 | dir=in | app=system |
"{ABAD1455-077E-47E7-8CEB-C2C547CADF2B}" = rport=10243 | protocol=6 | dir=out | app=system |
"{C5946B78-8B20-4D0B-BB47-6A94E39C1DCD}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
"{C8A30DA4-98F5-4E29-9D4C-4D497141655D}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{CC70A970-BE26-4ECE-82D1-6342187D57F0}" = lport=6004 | protocol=17 | dir=in | app=c:\program files\microsoft office\office12\outlook.exe |
"{CC730289-29AA-4B7A-8F6B-7454AC1C1E61}" = rport=3702 | protocol=17 | dir=out | svc=fdphost | app=%systemroot%\system32\svchost.exe |
"{CC732229-8C0C-4311-B13F-2B4F11BFCA9D}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{D526F005-4937-4E48-A494-29C66E259EE7}" = lport=10243 | protocol=6 | dir=in | app=system |
"{D79A2986-8FAA-40BA-B165-036BE2D38B89}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{DCCA5715-5938-441E-9E41-009530DBC222}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{DE76070C-F048-48F7-B0D4-C520E78D9D3C}" = lport=7878 | protocol=6 | dir=in | name=allshare tcp port |
"{DEE574AA-A9F7-4766-8096-BA4778DD8269}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{E50ACFFD-A3A1-42CE-AA60-5A2464FADCB0}" = lport=1900 | protocol=6 | dir=in | name=allshare multicast port |
"{F2E6A4AD-0F00-4693-AC34-994B8696D8E1}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{F41DA7F4-2629-419E-B5C7-48D3D0DF2020}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{F721DB19-2A13-4E56-BF57-379E2FDDB56E}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{FC852436-5C8E-4908-95D7-CF09FBF65830}" = lport=2177 | protocol=17 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
========== Vista Active Application Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{139140BD-0B09-431B-940B-34074EF039FD}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{18792FD8-D2FF-4657-A43E-1616DC8248D1}" = protocol=6 | dir=out | app=system |
"{1AC6B5AE-CF03-46C1-8AF2-35FBA0C386DC}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 |
"{2F595849-DAD3-4377-8E21-39068181AB4D}" = protocol=17 | dir=in | app=c:\program files\microsoft office\office12\onenote.exe |
"{30B85ACF-541E-4C1B-ABCB-9DFA3BA769FC}" = dir=in | app=c:\program files\nokia\nokia suite\nokiasuite.exe |
"{31A0D0F2-4FAE-484C-808D-BE4B652A907E}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{3210C2F0-CD0F-4CB4-A91A-1D1223CEEF09}" = dir=in | app=c:\program files\common files\apple\apple application support\webkit2webprocess.exe |
"{3690939A-A2DD-483B-A559-5D238B9FE549}" = protocol=17 | dir=in | app=c:\program files\microsoft office\office12\onenote.exe |
"{3884A231-5CAD-4B88-813E-D4474C43B4A8}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{4491235E-599A-468F-90CB-D0B5CC7A4AE1}" = protocol=6 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{46765F86-944A-4B11-9A9D-175ED79011A5}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 |
"{4EC09ADD-DECC-4FB0-A59C-DAB0F7007CF1}" = protocol=6 | dir=out | svc=fdphost | app=%systemroot%\system32\svchost.exe |
"{50388C21-3B1E-4C4D-BBBA-26C7D0B93DCA}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 |
"{5883CF3C-16C7-4D78-BF8A-B9400A481DE0}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{59547C6C-807A-4968-B16F-1A0BB440150C}" = protocol=6 | dir=in | app=e:\network\epsonnetsetup\eneasyapp.exe |
"{59D7D095-00D1-48F9-9ABB-0494B990C000}" = protocol=6 | dir=in | app=c:\program files\microsoft office\office12\onenote.exe |
"{5FBFF513-E829-4F70-92B0-20B7381BF6D6}" = dir=in | app=c:\program files\nokia\nokia suite\nokiasuite.exe |
"{649ABD9A-93FD-4523-B454-068DBE88D6C3}" = protocol=17 | dir=in | app=c:\program files\microsoft office\office12\groove.exe |
"{694326EE-F881-4FE9-A853-86555A3E9834}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{7898FF11-EE1F-40D8-9847-91BE6F3D6D7C}" = protocol=17 | dir=in | app=e:\network\epsonnetsetup\eneasyapp.exe |
"{7B858680-1AAB-4B2D-BDA2-A73B2CAC10CD}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{80371E0C-1B55-42B1-B521-9ABF10D92177}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{8517A45B-05FE-42D0-8316-41B809BFB34E}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{8B6A4ED0-D613-4907-A966-F6497DF7F708}" = protocol=6 | dir=in | app=e:\network\epsonnetsetup\eneasyapp.exe |
"{8E801CB9-9F80-438B-89F0-62AAD4051866}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{8E92612D-3E85-4E02-9F0D-9A16B1CF23BD}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{9A8835C4-7F6A-4864-B677-E163EA48141F}" = protocol=6 | dir=in | app=c:\program files\microsoft office\office12\onenote.exe |
"{AB7489F3-A51C-4651-A25C-E1EEE57010D4}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{AE7BB116-3637-42DA-B4EF-BF1F0D66155D}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{BC7FCE1F-C38E-47DE-93EF-92F53F6DE9FB}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 |
"{BF6FA19F-D9D3-4167-AE4A-B3E3D4CCC7F4}" = protocol=6 | dir=out | app=%systemroot%\system32\wudfhost.exe |
"{C5C1E542-79FA-45D0-8AE0-C66F35718B0C}" = protocol=6 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{C9B6CE40-4C42-4133-A9AE-CD2C60E2DF94}" = dir=in | app=c:\program files\intel\wifi\bin\pandhcpdns.exe |
"{D77BDE9B-3E78-49A0-A25E-8933A1E5EA0E}" = protocol=17 | dir=in | app=c:\program files\microsoft office\office12\groove.exe |
"{DA4F38E8-9FC6-4813-AD8C-FD220DFB7625}" = protocol=17 | dir=in | app=e:\network\epsonnetsetup\eneasyapp.exe |
"{DC4390C4-E86C-455C-AC4F-FB13580D4EB7}" = protocol=6 | dir=in | app=c:\program files\microsoft office\office12\groove.exe |
"{EF5B2C35-9828-4FCE-9DBC-76C172E211AA}" = protocol=6 | dir=in | app=c:\program files\microsoft office\office12\groove.exe |
"{F7C506B9-A852-4AAC-9037-AC6B8D8AF512}" = protocol=17 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"TCP Query User{2FC56DAD-B92E-4E64-90BB-B4B31ECAAB53}C:\program files\epson software\event manager\eeventmanager.exe" = protocol=6 | dir=in | app=c:\program files\epson software\event manager\eeventmanager.exe |
"TCP Query User{55688457-D57F-4CAE-9DC6-C0601DC614E1}D:\program files\itunes\itunes.exe" = protocol=6 | dir=in | app=d:\program files\itunes\itunes.exe |
"TCP Query User{AA65C0EB-68AF-47A1-A3A6-38C4ED5BA734}C:\program files\epson software\event manager\eeventmanager.exe" = protocol=6 | dir=in | app=c:\program files\epson software\event manager\eeventmanager.exe |
"TCP Query User{D5187DBE-88FB-4E01-9BB5-070CA9839FDB}C:\windows\system32\rundll32.exe" = protocol=6 | dir=in | app=c:\windows\system32\rundll32.exe |
"TCP Query User{E6AE3524-A926-4BDF-9D27-3BD4833AFC3E}C:\program files\google\google earth\client\googleearth.exe" = protocol=6 | dir=in | app=c:\program files\google\google earth\client\googleearth.exe |
"UDP Query User{083D76A3-5CC0-4C64-A4D1-EEE23A12535A}C:\program files\epson software\event manager\eeventmanager.exe" = protocol=17 | dir=in | app=c:\program files\epson software\event manager\eeventmanager.exe |
"UDP Query User{3D38C39E-E68B-4AF0-8FB5-119123EF133C}D:\program files\itunes\itunes.exe" = protocol=17 | dir=in | app=d:\program files\itunes\itunes.exe |
"UDP Query User{7235023C-3004-40EE-9C9A-7D4BA63E6F37}C:\program files\google\google earth\client\googleearth.exe" = protocol=17 | dir=in | app=c:\program files\google\google earth\client\googleearth.exe |
"UDP Query User{7A796AE2-195E-4DED-A008-C1BD6EDFFDE8}C:\program files\epson software\event manager\eeventmanager.exe" = protocol=17 | dir=in | app=c:\program files\epson software\event manager\eeventmanager.exe |
"UDP Query User{A43E6E25-6BEC-4E7B-9386-F6E61FD69580}C:\windows\system32\rundll32.exe" = protocol=17 | dir=in | app=c:\windows\system32\rundll32.exe |
========== HKEY_LOCAL_MACHINE Uninstall List ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"%Product_Name% 5.2F " = Fakturky 5.2F
"{052BB184-C167-468A-ACC4-A19DE51E3BBD}" = Epson E-Web Print
"{07FA4960-B038-49EB-891B-9F95930AA544}" = HP Customer Experience Enhancements
"{08C8666B-C502-4AB3-B4CB-D74AC42D14FE}" = Nero BackItUp 10 Help (CHM)
"{0A0CADCF-78DA-33C4-A350-CD51849B9702}" = Microsoft .NET Framework 4 Extended
"{0E64B098-8018-4256-BA23-C316A43AD9B0}" = QuickTime
"{0F6F6876-6334-4977-B5DD-CFC12E193420}" = iTunes
"{16987E99-C95C-4513-9239-7B44A0A71DB5}" = Nero SoundTrax 10 Help (CHM)
"{196467F1-C11F-4F76-858B-5812ADC83B94}" = MSXML 4.0 SP3 Parser
"{196BB40D-1578-3D01-B289-BEFC77A11A1E}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319
"{1A834332-A9EE-440C-9505-2D07F445F05A}" = MOBILedit! Support Libraries
"{1E91951D-0114-4692-8F55-F95E1B2F3542}" = SlimDrivers
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{212748BB-0DA5-46DE-82A1-403736DC9F27}" = MSVC80_x86
"{237CCB62-8454-43E3-B158-3ACD0134852E}" = High-Definition Video Playback 10
"{2436F2A8-4B7E-4B6C-AE4E-604C84AA6A4F}" = Nero Core Components 10
"{26A24AE4-039D-4CA4-87B4-2F83216024FF}" = Java(TM) 6 Update 30
"{26A24AE4-039D-4CA4-87B4-2F83217009FF}" = Java 7 Update 9
"{300B9E83-E406-4DF7-8A21-E8A90E4F8B91}_is1" = Convert DVD to AVI 1.1
"{329411A0-19F3-4740-874F-17400B126F27}" = Nero Vision 10 Help (CHM)
"{33643918-7957-4839-92C7-EA96CB621A98}" = Nero Express 10 Help (CHM)
"{37EC048A-81A2-452A-8D1F-3BE2018E767D}" = Intel(R) PROSet/Wireless for Bluetooth(R) + High Speed
"{392A74D0-4DFE-49F7-87C3-8A61708F8856}" = Eraser 6.0.8.2273
"{3B69A712-4CBC-40B1-AE55-0203075FD093}" = Nokia Suite
"{3C3901C5-3455-3E0A-A214-0B093A5070A6}" = Microsoft .NET Framework 4 Client Profile
"{3DCF00F5-04A5-4543-A088-705480811205}_is1" = Compiled Driver Disk (Nokia) 1.0
"{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}" = Intel(R) Rapid Storage Technology
"{3E31400D-274E-4647-916C-2CACC3741799}" = EpsonNet Print
"{44715246-18E9-4EDF-AA03-94E4B4F80EA8}" = Download Navigator
"{47DA7D2E-408C-4050-B75F-95F6D2E6A332}_is1" = MOBILedit! ver. 6.9.0.2841
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4D43D635-6FDA-4fa5-AA9B-23CF73D058EA}" = Nero StartSmart OEM
"{523B2B1B-D8DB-4B41-90FF-C4D799E2758A}" = Nero ControlCenter 10 Help (CHM)
"{555868C6-49FB-484F-BB43-8980651A1B00}" = Nero BurnRights 10 Help (CHM)
"{56C049BE-79E9-4502-BEA7-9754A3E60F9B}" = neroxml
"{5A3C1721-F8ED-11E0-8AFB-B8AC6F97B88E}" = Google Earth
"{5AFEABF5-7411-4C29-9FA9-71ABE880662D}" = Nokia PC Suite
"{5EE7D259-D137-4438-9A5F-42F432EC0421}" = VC80CRTRedist - 8.0.50727.4053
"{5F548A02-80BC-404D-BAE6-F05F9BF6B449}" = Nero DiscCopyGadget 10 Help (CHM)
"{63AA3EAB-23BB-48B2-9AD0-44F878075604}" = Nero 10 Menu TemplatePack Basic
"{63EC2120-1742-4625-AA47-C6A8AEC9C64C}" = Apple Application Support
"{66049135-9659-4AAD-9169-9CCA269EBB3E}" = Nero InfoTool 10 Help (CHM)
"{670A9A20-E29D-40C3-9937-2AFF89C3AC82}_is1" = PROFIT 2012.05
"{6D3245B1-8DB8-4A23-9CD2-2C90F40ABAF6}" = MSVC80_x86_v2
"{6DFB899F-17A2-48F0-A533-ED8D6866CF38}" = Nero Control Center 10
"{6F340107-F9AA-47C6-B54C-C3A19F11553F}" = Hewlett-Packard ACLM.NET v1.1.1.0
"{7036A6F4-5DAD-3908-956D-1752CD7F7E5A}" = Microsoft .NET Framework 4 Client Profile CSY Language Pack
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{7130468A-F53F-4698-8C09-A339EA3B05E6}" = Nokia Software Updater
"{7390478C-8581-415E-92E9-2997D9306B81}" = PC Connectivity Solution
"{758C8301-2696-4855-AF45-534B1200980A}" = Samsung Kies
"{7748ac8c-18e3-43bb-959b-088faea16fb2}" = Nero StartSmart
"{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}" = Apple Software Update
"{79155F2B-9895-49D7-8612-D92580E0DE5B}" = Bonjour
"{7A295D8F-484B-4FFB-89AB-C1FD497591FE}" = Nero WaveEditor 10 Help (CHM)
"{7CA4F780-7AD0-417A-82A1-46EB825CFD53}" = HP Managed Printing Admin
"{82EF29B1-9B60-4142-A155-0599216DD053}" = LightScribe System Software
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8C0CAA7A-3272-4991-A808-2C7559DE3409}" = Win7codecs
"{8CC68433-5837-4075-B81F-EA7E4F14CE60}" = iCloud
"{8ED43F7E-A8F6-4898-AF11-B6158F2EDF94}" = Epson Event Manager
"{90120000-0015-0405-0000-0000000FF1CE}" = Microsoft Office Access MUI (Czech) 2007
"{90120000-0015-0405-0000-0000000FF1CE}_ENTERPRISE_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0016-0405-0000-0000000FF1CE}" = Microsoft Office Excel MUI (Czech) 2007
"{90120000-0016-0405-0000-0000000FF1CE}_ENTERPRISE_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0018-0405-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (Czech) 2007
"{90120000-0018-0405-0000-0000000FF1CE}_ENTERPRISE_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0019-0405-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (Czech) 2007
"{90120000-0019-0405-0000-0000000FF1CE}_ENTERPRISE_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001A-0405-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (Czech) 2007
"{90120000-001A-0405-0000-0000000FF1CE}_ENTERPRISE_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001B-0405-0000-0000000FF1CE}" = Microsoft Office Word MUI (Czech) 2007
"{90120000-001B-0405-0000-0000000FF1CE}_ENTERPRISE_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001F-0405-0000-0000000FF1CE}" = Microsoft Office Proof (Czech) 2007
"{90120000-001F-0405-0000-0000000FF1CE}_ENTERPRISE_{294B4278-CF7B-40B9-86A1-2D3FF0C2C524}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2007
"{90120000-001F-0407-0000-0000000FF1CE}_ENTERPRISE_{A0516415-ED61-419A-981D-93596DA74165}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-0409-0000-0000000FF1CE}_ENTERPRISE_{ABDDE972-355B-4AF1-89A8-DA50B7B5C045}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-041B-0000-0000000FF1CE}" = Microsoft Office Proof (Slovak) 2007
"{90120000-001F-041B-0000-0000000FF1CE}_ENTERPRISE_{10EC59E5-9BCE-4884-BB1A-E28627220232}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-002C-0405-0000-0000000FF1CE}" = Microsoft Office Proofing (Czech) 2007
"{90120000-0030-0000-0000-0000000FF1CE}" = Microsoft Office Enterprise 2007
"{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0044-0405-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (Czech) 2007
"{90120000-0044-0405-0000-0000000FF1CE}_ENTERPRISE_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-006E-0405-0000-0000000FF1CE}" = Microsoft Office Shared MUI (Czech) 2007
"{90120000-006E-0405-0000-0000000FF1CE}_ENTERPRISE_{E12F9D31-4025-4BC6-B1B2-AB262C5580B0}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-00A1-0405-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (Czech) 2007
"{90120000-00A1-0405-0000-0000000FF1CE}_ENTERPRISE_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-00BA-0405-0000-0000000FF1CE}" = Microsoft Office Groove MUI (Czech) 2007
"{90120000-00BA-0405-0000-0000000FF1CE}_ENTERPRISE_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{92E25238-61A3-4ACD-A407-3C480EEF47A7}" = Nero RescueAgent 10 Help (CHM)
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9B6B24BE-80E7-46C4-9FA5-B167D5E0F345}" = Nero BurningROM 10 Help (CHM)
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{A02D7029-C4EF-44C1-9FD4-C0D3CA518113}" = Epson Easy Photo Print 2
"{A2DE62D8-EF1B-36CB-B461-B1E221ED8608}" = Microsoft .NET Framework 4 Extended CSY Language Pack
"{A57025CC-5F2E-4D01-B387-06DB10500D43}" = Nokia Connectivity Cable Driver
"{A7E19604-93AF-4611-8C9F-CE509C2B286E}_is1" = VDownloader 3.8.974
"{a9264802-8a7a-40fe-a135-5c6d204aed7a}.sdb" = Internet Explorer (Enable DEP)
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{AF111648-99A1-453E-81DD-80DBBF6DAD0D}" = MSVC90_x86
"{B0344B38-378B-47E0-BDCC-977785D24768}" = Integrated Camera Driver Installer Package Ver.1.33.110.0
"{B2D55EB8-32C5-4B43-9006-9E97DECBA178}" = Epson Easy Photo Print Plug-in for PMB(Picture Motion Browser)
"{b2ec4a38-b545-4a00-8214-13fe0e915e6d}" = Advertising Center
"{B4092C6D-E886-4CB2-BA68-FE5A88D31DE6}_is1" = Spybot - Search & Destroy
"{B829E117-D072-41EA-9606-9826A38D34C1}" = Sophos Virus Removal Tool
"{BC30E5E7-047D-4232-A7E8-F2CB7CC7B2E0}_is1" = Emsisoft Anti-Malware
"{bd5ca0da-71ad-43da-b19e-6eee0c9adc9a}" = Nero ControlCenter
"{BDDB58A5-F98E-4D3C-B554-4A4D31C6D405}_is1" = Phone Drivers Downloader 1.1
"{C18A0418-442A-4186-AF98-D08F5054A2FC}" = Nero DiscSpeed 10 Help (CHM)
"{C3273C55-E1E4-41FF-8D69-0158090DB8D8}" = Nero CoverDesigner 10 Help (CHM)
"{C3580AC4-C827-4332-B935-9A282ED5BB97}" = Nero Dolby Files 10
"{C9601EF7-606D-4873-94BD-8B149D5D1666}" = Mobile Net Switch
"{CC4878C0-4A6A-49CD-AAA7-DD3FCB06CC84}" = Microsoft Web Platform Installer 3.0
"{CC9BA422-3C2E-422D-B889-67F839028A6E}" = STORMWARE POHODA CZ Start
"{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}" = SAMSUNG USB Driver for Mobile Phones
"{D0E5A442-9000-4D91-944E-A985CBBBD639}" = Nextis.7.TerminalClient.x86
"{D24DB8B9-BB6C-4334-9619-BA1C650E13D3}" = Microsoft Primary Interoperability Assemblies 2005
"{D36B4583-E804-406B-9D56-F97931286C5B}" = 32 Bit HP CIO Components Installer
"{D4DDFAA1-EC37-4529-AD5B-A433ADE68662}" = Apple Mobile Device Support
"{D6F879CC-59D6-4D4B-AE9B-D761E48D25ED}" = Skype™ 5.3
"{DB6AB705-C9BD-40E3-8929-2EA57F36A4FF}_is1" = ConvertXtoDVD 4.1.19.365
"{DB7C1D4A-08BA-4C7E-A8AA-B7F9BB372DCF}" = Nero Recode 10 Help (CHM)
"{dba84796-8503-4ff0-af57-1747dd9a166d}" = Nero Online Upgrade
"{E2D0B67F-8032-4E11-87C6-C8C721D331B3}" = Software Intel® PROSet/Wireless WiFi
"{E3B64CC5-C011-40C0-92BC-7316CD5E5688}" = Microsoft_VC100_CRT_SP1_x86
"{e8a80433-302b-4ff1-815d-fcc8eac482ff}" = Nero Installer
"{EF67AE1A-6B31-4C98-91A9-F195D8702150}" = Google Drive
"{F0A37341-D692-11D4-A984-009027EC0A9C}" = SoundMAX
"{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
"{F467862A-D9CA-47ED-8D81-B4B3C9399272}" = Nero MediaHub 10 Help (CHM)
"{F5CB822F-B365-43D1-BCC0-4FDA1A2017A7}" = Nero 10 Movie ThemePack Basic
"{F6117F9C-ADB5-4590-9BE4-12C7BEC28702}" = Nero StartSmart 10 Help (CHM)
"{F8A9085D-4C7A-41a9-8A77-C8998A96C421}" = Intel(R) Control Center
"{F9000000-0018-0000-0000-074957833700}" = ABBYY FineReader 9.0 Sprint
"{F9A43C0C-F274-4EC0-B02E-202C15C09C00}" = HP Wireless Assistant
"13729598EDD1F263DD26E8584C5F347C88091A2E" = Balíček ovladače systému Windows - Broadcom Corporation Bluetooth (03/16/2012 6.5.1.2600)
"17D063A0A9F5D5A225B76B1D9BCB5ADBE85C8382" = Balíček ovladače systému Windows - Nokia pccsmcfd “LegacyDriver” (05/31/2012 7.1.2.0)
"813EA266E806F300A8DAF30E5D823E268290B5D6" = Balíček ovladače systému Windows - Broadcom Corporation (bcbtums) Bluetooth (03/16/2012 6.5.1.2600)
"ABBYY FineReader 9.0 Sprint" = ABBYY FineReader 9.0 Sprint
"Adobe Flash Player ActiveX" = Adobe Flash Player 11 ActiveX
"Autoškola professional_is1" = Autoškola professional 3.5
"Avira AntiVir Desktop" = Avira Free Antivirus
"Broadcom 802.11 Wireless LAN Adapter" = Broadcom 802.11 Wireless LAN Adapter
"CA3B55EAB525669DA92EC19475AF574597822688" = Balíček ovladače systému Windows - Broadcom HIDClass (09/11/2009 6.3.0.1500)
"CBF192A85B624E32B8D19ADEEF2DCFC5BC3AA73A" = Balíček ovladače systému Windows - Nokia Modem (03/05/2008 3.7)
"CCleaner" = CCleaner
"CobBackup10" = Cobian Backup 10
"CoreAAC Audio Decoder" = CoreAAC Audio Decoder (remove only)
"DivX Setup.divx.com" = DivX Setup
"E092B2EBF2FFE83E896F8F7F829A7B5D7D1B2F9D" = Balíček ovladače systému Windows - Nokia Modem (03/13/2008 6.86.0.1)
"ENTERPRISE" = Microsoft Office Enterprise 2007
"EPSON Scanner" = EPSON Scan
"EPSON SX235 Series" = Odinstalace tiskárny EPSON SX235 Series
"EPSON SX235 Series Useg" = Uživatelská příručka EPSON SX235 Series
"FastStone Photo Resizer" = FastStone Photo Resizer 3.0
"ffdshow_is1" = ffdshow [rev 3299] [2010-03-03]
"FormatFactory" = FormatFactory 2.90
"Foxit Reader_is1" = Foxit Reader
"GPL Ghostscript 9.06" = GPL Ghostscript
"GSview 5.0" = GSview 5.0
"HaaliMkx" = Haali Media Splitter
"HDMI" = Intel(R) Graphics Media Accelerator Driver
"Inkscape" = Inkscape 0.48.2
"InstallShield_{758C8301-2696-4855-AF45-534B1200980A}" = Samsung Kies
"IrfanView" = IrfanView (remove only)
"Marvell Miniport Driver" = Marvell Miniport Driver
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Microsoft .NET Framework 4 Client Profile CSY Language Pack" = Microsoft .NET Framework 4 Client Profile CSY Language Pack
"Microsoft .NET Framework 4 Extended" = Microsoft .NET Framework 4 Extended
"Microsoft .NET Framework 4 Extended CSY Language Pack" = Microsoft .NET Framework 4 Extended CSY Language Pack
"Moto-Faktura" = Moto-Faktura - Program k stažení dokumentů.
"Nokia PC Suite" = Nokia PC Suite
"Nokia Suite" = Nokia Suite
"Picasa 3" = Picasa 3
"PowerISO" = PowerISO
"ProInst" = Intel PROSet Wireless
"rajče.net_is1" = rajče verze 58 sestavení 211
"Revo Uninstaller" = Revo Uninstaller 1.94
"SynTPDeinstKey" = Synaptics Pointing Device Driver
"TeamViewer 7" = TeamViewer 7
"Terminal DO ZAMÓWIEŃ" = Terminal DO ZAMÓWIEŃ
"The KMPlayer" = The KMPlayer (remove only)
"VLC media player" = VLC media player 1.1.11
"Windows Movie Maker" = Windows Movie Maker
"WinRAR archiver" = WinRAR 4.11 (32-bit)
"XRECODE_is1" = XRECODE
"Xvid_is1" = Xvid 1.2.2 final uninstall
"YouTube Downloader_is1" = YouTube Downloader 2.5
"ZonerCallisto5_CZ_is1" = Zoner Callisto 5 FREE
========== HKEY_USERS Uninstall List ==========
[HKEY_USERS\S-1-5-21-639110540-3213493223-2817070946-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Google Chrome" = Google Chrome
========== Last 20 Event Log Errors ==========
[ Application Events ]
Error - 25.11.2012 21:54:20 | Computer Name = noname-PC | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: Continuously busy for more than a second
Error - 25.11.2012 21:54:20 | Computer Name = noname-PC | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: m->NextScheduledEvent 6754
Error - 25.11.2012 21:54:20 | Computer Name = noname-PC | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: m->NextScheduledSPRetry 6754
Error - 25.11.2012 21:54:21 | Computer Name = noname-PC | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: Continuously busy for more than a second
Error - 25.11.2012 21:54:21 | Computer Name = noname-PC | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: m->NextScheduledEvent 7753
Error - 25.11.2012 21:54:21 | Computer Name = noname-PC | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: m->NextScheduledSPRetry 7753
Error - 27.11.2012 15:02:00 | Computer Name = noname-PC | Source = Outlook | ID = 34
Description = Nepodařilo se získat správce oboru procházení. Chyba=0x8007043c.
Error - 27.11.2012 15:02:00 | Computer Name = noname-PC | Source = Outlook | ID = 35
Description = Nelze určit, zda se zásobník nachází v oboru procházení (chyba=0x8007043c).
Error - 27.11.2012 15:02:01 | Computer Name = noname-PC | Source = Outlook | ID = 34
Description = Nepodařilo se získat správce oboru procházení. Chyba=0x8007043c.
Error - 27.11.2012 15:02:01 | Computer Name = noname-PC | Source = Outlook | ID = 35
Description = Nelze určit, zda se zásobník nachází v oboru procházení (chyba=0x8007043c).
[ Hewlett-Packard Events ]
Error - 9.10.2011 13:07:31 | Computer Name = noname-PC | Source = Hewlett-Packard | ID = 0
Description = AAProcessExited() C:\ProgramData\Hewlett-Packard\HP Support Framework\Telemetry\101109070717.xml
File not created by asset agent
Error - 11.10.2011 7:25:29 | Computer Name = noname-PC | Source = hpsa_service.exe | ID = 2000
Description = HP Error ID: -2146233088 v HP.ActiveCheckLocalMode.SessionManager.ActiveCheckManager.UpdateDetail(String
category) v HP.ActiveCheckLocalMode.SessionManager.ActiveCheckManager.UpdateAndDetectCore()
v HP.ActiveCheckLocalMode.SessionManager.ActiveCheckManager.UpdateAndDetect()
v HP.SupportAssistant.Service.ACLM.ActiveCheck.LaunchActiveCheck(Boolean singleScan,
Boolean localScan) Message: Failed to perform update. StackTrace: v HP.ActiveCheckLocalMode.SessionManager.ActiveCheckManager.UpdateDetail(String
category) v HP.ActiveCheckLocalMode.SessionManager.ActiveCheckManager.UpdateAndDetectCore()
v HP.ActiveCheckLocalMode.SessionManager.ActiveCheckManager.UpdateAndDetect()
v HP.SupportAssistant.Service.ACLM.ActiveCheck.LaunchActiveCheck(Boolean singleScan,
Boolean localScan) Source: HP.ActiveCheckLocalMode.SessionManager InnerException.Message:
Objekt /df6daa0a_5f0e_458d_87d7_6e8182c265c9/xymj5ldgtv18perg5zfgtjlp_5.rem byl
odpojen nebo na serveru neexistuje. Name: hpsa_service.exe Version: 06.00.01.01 Path:
C:\Program Files\Hewlett-Packard\HP Support Framework\hpsa_service.exe Format: cs-CZ
RAM:
3000 Ram Utilization: 30 TargetSite: Void UpdateDetail(System.String)
Error - 16.10.2011 4:19:42 | Computer Name = noname-PC | Source = hpsa_service.exe | ID = 2000
Description = HP Error ID: -2146233088 v HP.ActiveCheckLocalMode.SessionManager.ActiveCheckManager.UpdateDetail(String
category) v HP.ActiveCheckLocalMode.SessionManager.ActiveCheckManager.UpdateAndDetectCore()
v HP.ActiveCheckLocalMode.SessionManager.ActiveCheckManager.UpdateAndDetect()
v HP.SupportAssistant.Service.ACLM.ActiveCheck.LaunchActiveCheck(Boolean singleScan,
Boolean localScan) Message: Failed to perform update. StackTrace: v HP.ActiveCheckLocalMode.SessionManager.ActiveCheckManager.UpdateDetail(String
category) v HP.ActiveCheckLocalMode.SessionManager.ActiveCheckManager.UpdateAndDetectCore()
v HP.ActiveCheckLocalMode.SessionManager.ActiveCheckManager.UpdateAndDetect()
v HP.SupportAssistant.Service.ACLM.ActiveCheck.LaunchActiveCheck(Boolean singleScan,
Boolean localScan) Source: HP.ActiveCheckLocalMode.SessionManager InnerException.Message:
Objekt /da151498_dd08_405b_8989_ffe66baaeca3/eyyqle_5zh4d14enm6cj5jkq_5.rem byl
odpojen nebo na serveru neexistuje. Name: hpsa_service.exe Version: 06.00.01.01 Path:
C:\Program Files\Hewlett-Packard\HP Support Framework\hpsa_service.exe Format: cs-CZ
RAM:
3000 Ram Utilization: 30 TargetSite: Void UpdateDetail(System.String)
Error - 18.7.2012 6:48:27 | Computer Name = noname-PC | Source = HPSFMsgr.exe | ID = 4000
Description = HP Error ID: -2147221164 v System.RuntimeTypeHandle.CreateInstance(RuntimeType
type, Boolean publicOnly, Boolean noCheck, Boolean& canBeCached, RuntimeMethodHandle&
ctor, Boolean& bNeedSecurityCheck) v System.RuntimeType.CreateInstanceSlow(Boolean
publicOnly, Boolean fillCache) v System.RuntimeType.CreateInstanceImpl(Boolean
publicOnly, Boolean skipVisibilityChecks, Boolean fillCache) v System.Activator.CreateInstance(Type
type, Boolean nonPublic) v HPSA_Messenger.MessengerCom.TrayDeskBand.isTaskbarDisplayed()
StackTrace:
v System.RuntimeTypeHandle.CreateInstance(RuntimeType type, Boolean publicOnly,
Boolean noCheck, Boolean& canBeCached, RuntimeMethodHandle& ctor, Boolean& bNeedSecurityCheck)
v System.RuntimeType.CreateInstanceSlow(Boolean publicOnly, Boolean fillCache)
v System.RuntimeType.CreateInstanceImpl(Boolean publicOnly, Boolean skipVisibilityChecks,
Boolean fillCache) v System.Activator.CreateInstance(Type type, Boolean nonPublic)
v HPSA_Messenger.MessengerCom.TrayDeskBand.isTaskbarDisplayed() Source: mscorlib
Name:
HPSFMsgr.exe Version: 01.00.00.00 Path: C:\Program Files\Hewlett-Packard\HP Support
Framework\Resources\HPSFMessenger\HPSFMsgr.exe Format: cs-CZ RAM: 3000 Ram Utilization:
20 TargetSite: System.Object CreateInstance(System.RuntimeType, Boolean, Boolean,
Boolean ByRef, System.RuntimeMethodHandle ByRef, Boolean ByRef)
Error - 26.10.2012 4:43:32 | Computer Name = noname-PC | Source = HPSF.exe | ID = 4000
Description =
Error - 26.11.2012 2:04:45 | Computer Name = noname-PC | Source = HPSF.exe | ID = 4000
Description =
[ OSession Events ]
Error - 1.8.2011 4:46:04 | Computer Name = noname-PC | Source = Microsoft Office 12 Sessions | ID = 7001
Description = ID: 6, Application Name: Microsoft Office Outlook, Application Version:
12.0.6423.1000, Microsoft Office Version: 12.0.6425.1000. This session lasted 4
seconds with 0 seconds of active time. This session ended with a crash.
[ System Events ]
Error - 27.11.2012 15:24:03 | Computer Name = noname-PC | Source = Service Control Manager | ID = 7001
Description = Služba Prohledávání počítačů závisí na službě Server, která neuspěla
při spuštění v důsledku následující chyby: %%1068
Error - 27.11.2012 15:24:03 | Computer Name = noname-PC | Source = Service Control Manager | ID = 7001
Description = Služba Prohledávání počítačů závisí na službě Server, která neuspěla
při spuštění v důsledku následující chyby: %%1068
Error - 27.11.2012 15:26:45 | Computer Name = noname-PC | Source = Service Control Manager | ID = 7000
Description = Služba Služba Kaspersky Anti-Virus neuspěla při spuštění v důsledku
následující chyby: %%2
Error - 27.11.2012 15:27:01 | Computer Name = noname-PC | Source = Service Control Manager | ID = 7026
Description = Zavedení následujícího ovladače pro spouštění počítače nebo systému
se nezdařilo: KLIM6
Error - 27.11.2012 16:08:27 | Computer Name = noname-PC | Source = Service Control Manager | ID = 7000
Description = Služba Služba Kaspersky Anti-Virus neuspěla při spuštění v důsledku
následující chyby: %%2
Error - 27.11.2012 16:08:42 | Computer Name = noname-PC | Source = Service Control Manager | ID = 7026
Description = Zavedení následujícího ovladače pro spouštění počítače nebo systému
se nezdařilo: KLIM6
Error - 27.11.2012 16:16:11 | Computer Name = noname-PC | Source = Service Control Manager | ID = 7000
Description = Služba Služba Kaspersky Anti-Virus neuspěla při spuštění v důsledku
následující chyby: %%2
Error - 27.11.2012 16:16:29 | Computer Name = noname-PC | Source = Service Control Manager | ID = 7026
Description = Zavedení následujícího ovladače pro spouštění počítače nebo systému
se nezdařilo: KLIM6
Error - 28.11.2012 10:57:20 | Computer Name = noname-PC | Source = Service Control Manager | ID = 7000
Description = Služba Služba Kaspersky Anti-Virus neuspěla při spuštění v důsledku
následující chyby: %%2
Error - 28.11.2012 10:57:37 | Computer Name = noname-PC | Source = Service Control Manager | ID = 7026
Description = Zavedení následujícího ovladače pro spouštění počítače nebo systému
se nezdařilo: KLIM6
< End of report >
Re: Zdravím a prosím o kontrolu. Předem díky
Zeptam se, pouzivate legalni operacni system? Pouzijte tohle http://tmp.emsisoft.com/fw/emsiclean.exe"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen od 1. února 2011.
Člen
od 1. února 2011.Re: Zdravím a prosím o kontrolu. Předem díky
Ano, používám.
Re: Zdravím a prosím o kontrolu. Předem díky
Ten remover byl uspesne pouzit? Dle kolegy aplikujte SecurityCheck
stell píše:Stiahni SecurityCheck
Ulož ho na plochu.
Dvakrát kliknite SecurityCheck.exe a postupujte podľa pokynov na obrazovke .
po skonceni skenu Notepad sa automaticky otvorí s názvom checkup.txt,obsah vloz sem.
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen od 1. února 2011.
Člen
od 1. února 2011.Re: Zdravím a prosím o kontrolu. Předem díky
Píše mi to: No traces of Emsisoft Anti-Malware or Mamutu have been found.
Re: Zdravím a prosím o kontrolu. Předem díky
Udelejte tedy prosim ten SecurityCheck
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen od 1. února 2011.
Člen
od 1. února 2011.Re: Zdravím a prosím o kontrolu. Předem díky
Security check se spustí a zůstane stát. viz příloha
- Přílohy
-
- doc1.pdf
- (201.69 KiB) Staženo 37 x
Přispějete na provoz fóra?