Prosím o preventivní kontrolu, zdá se mi že mám něco v NTB, ale nejsem si jistý!
Děkuji moc
Logfile of random's system information tool 1.08 (written by random/random)
Run by Jakub at 2013-01-20 12:56:06
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 20 GB (18%) free of 114 GB
Total RAM: 7786 MB (68% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 12:56:15, on 20.1.2013
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v9.00 (9.00.8112.16457)
Boot mode: Normal
Running processes:
C:\PROGRA~1\Lenovo\HOTKEY\TPONSCR.EXE
C:\Program Files\Lenovo\Communications Utility\TpKnrres.exe
C:\Users\Jakub\AppData\Local\Akamai\netsession_win.exe
C:\Users\Jakub\AppData\Local\Akamai\netsession_win.exe
C:\Windows\SysWOW64\rundll32.exe
C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
C:\PROGRA~2\ThinkPad\UTILIT~1\SCHTASK.exe
C:\Program Files\Lenovo Fingerprint Reader\x86\BioMonitor.exe
C:\Users\Jakub\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Jakub\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Jakub\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Jakub\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Jakub\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Program Files\trend micro\Jakub.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://klientskazona.cpost.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: MathPlayer BHO - {32F66A28-7614-11D4-BD11-00104BD3F987} - (no file)
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~3\Office14\GROOVEEX.DLL
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: TrueSuite Browser Helper Object - {8590886E-EC8C-43C1-A32C-E4C2B0B6395B} - C:\Program Files\Lenovo Fingerprint Reader\x86\IEBHO.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~3\Office14\URLREDIR.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O4 - HKLM\..\Run: [PWMTRV] rundll32 C:\PROGRA~2\ThinkPad\UTILIT~1\PWMTR64V.DLL,PwrMgrBkGndMonitor
O4 - HKLM\..\Run: [USB3MON] "C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
O4 - HKLM\..\Run: [IMSS] "C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe"
O4 - HKLM\..\Run: [SwitchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKCU\..\Run: [RESTART_STICKY_NOTES] C:\Windows\System32\StikyNot.exe
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [Akamai NetSession Interface] "C:\Users\Jakub\AppData\Local\Akamai\netsession_win.exe"
O4 - HKCU\..\Run: [HP Officejet Pro 8600 (NET)] "C:\Program Files\HP\HP Officejet Pro 8600\Bin\ScanToPCActivationApp.exe" -deviceID "CN29PBXH3X05KC:NW" -scfn "HP Officejet Pro 8600 (NET)" -AutoStart 1
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-21-3752770136-2494076584-3171830822-1003\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'UpdatusUser')
O4 - HKUS\S-1-5-21-3752770136-2494076584-3171830822-1003\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'UpdatusUser')
O4 - Startup: Sledovat výstrahy inkoustu - HP Officejet Pro 8600 (Síť).lnk = ?
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~4\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\PROGRA~1\MICROS~4\Office14\ONBttnIE.dll/105
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {F680B28A-3AEE-4C88-93ED-45AE9215C128} (CryptSignX Control) - https://adisepo.mfcr.cz/adistc/adis/idp ... tsignx.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{03E9C21A-DFE9-C8BC-ECE3-5614C4AF73B1}: NameServer = 93.153.117.1 93.153.117.33
O17 - HKLM\System\CCS\Services\Tcpip\..\{689A7833-2BB6-423C-A25B-C00FA2605F55}: NameServer = 192.168.140.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{03E9C21A-DFE9-C8BC-ECE3-5614C4AF73B1}: NameServer = 93.153.117.1 93.153.117.33
O17 - HKLM\System\CS2\Services\Tcpip\..\{03E9C21A-DFE9-C8BC-ECE3-5614C4AF73B1}: NameServer = 93.153.117.1 93.153.117.33
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O20 - AppInit_DLLs: C:\Windows\SysWOW64\nvinit.dll
O23 - Service: AcPrfMgrSvc - Lenovo - C:\Program Files (x86)\Lenovo\Access Connections\AcPrfMgrSvc.exe
O23 - Service: AcSvc - Lenovo - C:\Program Files (x86)\Lenovo\Access Connections\AcSvc.exe
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: Web'n'walk Manager mobile equipment installation service (ameisvc) - Gemfor s.r.o. - C:\Program Files (x86)\T-Mobile\Web'n'walk Manager\ameisvc.exe
O23 - Service: Intel® Centrino® Wireless Bluetooth® + High Speed Service (AMPPALR3) - Intel Corporation - C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe
O23 - Service: Autodesk Content Service - Autodesk, Inc. - C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe
O23 - Service: Autodesk Licensing Service - Autodesk - C:\Program Files (x86)\Common Files\Autodesk Shared\Service\AdskScSrv.exe
O23 - Service: Intel(R) Centrino(R) Wireless Bluetooth(R) + High Speed Security Service (BTHSSecurityMgr) - Intel(R) Corporation - C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe
O23 - Service: Connectify - Unknown owner - C:\Program Files (x86)\Connectify\ConnectifyService.exe
O23 - Service: SW Distributed TS Coordinator Service (CoordinatorServiceHost) - Dassault Systemes SolidWorks Corp. - C:\Program Files\SolidWorks Corp\SolidWorks\swScheduler\DTSCoordinatorService.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\Windows\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @C:\Windows\system32\CxAudMsg64.exe,-100 (CxAudMsg) - Unknown owner - C:\Windows\system32\CxAudMsg64.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel(R) Corporation - C:\Program Files\Intel\WiFi\bin\EvtEng.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: FLEXnet Licensing Service - Flexera Software, Inc. - C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: FLEXnet Licensing Service 64 - Flexera Software, Inc. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe
O23 - Service: TrueSuiteService (FPLService) - AuthenTec, Inc - C:\Program Files\Lenovo Fingerprint Reader\TrueSuiteService.exe
O23 - Service: Sierra Wireless QDL Service (GobiQDLService) - Sierra Wireless, Inc. - C:\Program Files (x86)\Sierra Wireless Inc\Gobi\QDLService\GobiQDLService.exe
O23 - Service: Lenovo PM Service (IBMPMSVC) - Unknown owner - C:\Windows\system32\ibmpmsvc.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) ME Service - Unknown owner - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Lenovo Camera Mute (LENOVO.CAMMUTE) - Lenovo Group Limited - C:\Program Files\Lenovo\Communications Utility\CAMMUTE.exe
O23 - Service: Lenovo Microphone Mute (LENOVO.MICMUTE) - Lenovo Group Limited - C:\Program Files\LENOVO\HOTKEY\MICMUTE.exe
O23 - Service: Lenovo Keyboard Noise Reduction (LENOVO.TPKNRSVC) - Lenovo Group Limited - C:\Program Files\Lenovo\Communications Utility\TPKNRSVC.exe
O23 - Service: ThinkVantage Virtual Camera Controller (LENOVO.TVTVCAM) - Lenovo Group Limited - C:\Program Files\Lenovo\Communications Utility\vcamsvc.exe
O23 - Service: Lenovo Auto Scroll (Lenovo.VIRTSCRLSVC) - Lenovo Group Limited - C:\Program Files\LENOVO\VIRTSCRL\lvvsst.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: Wireless PAN DHCP Server (MyWiFiDHCPDNS) - Unknown owner - C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: Internet Pass-Through Service (PassThru Service) - Unknown owner - C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe
O23 - Service: Power Manager DBC Service - Lenovo - C:\Program Files (x86)\ThinkPad\Utilities\PWMDBSVC.EXE
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Cisco EnergyWise Enabler (PwmEWSvc) - Lenovo Group Limited - C:\Program Files (x86)\ThinkPad\Utilities\PWMEWSVC.EXE
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel(R) Corporation - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
O23 - Service: Remote Solver for Flow Simulation 2012 - Mentor Graphics Corporation - C:\Program Files\SolidWorks Corp\SolidWorks Flow Simulation\binCFW\StandAloneSlv.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Conexant SmartAudio service (SAService) - Conexant Systems, Inc. - C:\Windows\system32\SAsrv.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: SolidWorks Licensing Service - SolidWorks - C:\Program Files (x86)\Common Files\SolidWorks Shared\Service\SolidWorksLicensing.exe
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: System Update (SUService) - Unknown owner - C:\Program Files (x86)\Lenovo\System Update\SUService.exe
O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O23 - Service: ThinkPad HDD APS Logging Service (TPHDEXLGSVC) - Unknown owner - C:\Windows\System32\TPHDEXLG64.exe (file missing)
O23 - Service: Lenovo Hotkey Client Loader (TPHKLOAD) - Lenovo Group Limited - C:\Program Files\LENOVO\HOTKEY\TPHKLOAD.exe
O23 - Service: On Screen Display (TPHKSVC) - Lenovo Group Limited - C:\Program Files\LENOVO\HOTKEY\TPHKSVC.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: Mobile Broadband Service (WMCoreService) - Ericsson AB - C:\Program Files (x86)\Mobile Broadband drivers\WMCore\mini_WMCore.exe
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Zero Configuration Service (ZeroConfigService) - Intel® Corporation - C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
--
End of file - 16355 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
"C:\Program Files\Lenovo Fingerprint Reader\TrueSuiteService.exe"
C:\Windows\system32\ibmpmsvc.exe
C:\Windows\system32\nvvsvc.exe
C:\Windows\system32\svchost.exe -k RPCSS
"C:\Program Files\Microsoft Security Client\MsMpEng.exe"
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
winlogon.exe
C:\Windows\system32\svchost.exe -k LocalService
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-b561158e-ac10-454e-94bc-4816fab65852 -SystemEventPortName:HostProcess-eec945bc-954b-4e2f-8676-af556eefaa36 -IoCancelEventPortName:HostProcess-111dedfe-b9f9-4ff0-9b46-a339f481abdf -NonStateChangingEventPortName:HostProcess-d375169a-7680-48c8-b044-c6f02d94225f -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:5dd939ac-80d8-4212-9da1-e1dfbf026962 -DeviceGroupId:
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\WLANExt.exe 4162352
\??\C:\Windows\system32\conhost.exe "694494464-1009118741553383017-15067335111940602227602589961607187594-1346204912
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k WbioSvcGroup
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Lenovo\Access Connections\AcPrfMgrSvc.exe"
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe"
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\Windows\system32\nvvsvc.exe -session -first
"C:\Program Files (x86)\Connectify\ConnectifyService.exe"
"ConnectifyD.exe"
\??\C:\Windows\system32\conhost.exe "400809740209648342428265533-12882625702096942062-567889037-702944495-827640476
C:\Windows\system32\CxAudMsg64.exe
"C:\Program Files\Intel\WiFi\bin\EvtEng.exe"
C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
"C:\Program Files (x86)\Sierra Wireless Inc\Gobi\QDLService\GobiQDLService.exe"
"C:\Program Files\Intel\iCLS Client\HeciServer.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files\Lenovo\Communications Utility\CAMMUTE.exe"
"C:\Program Files\Lenovo\Communications Utility\TPKNRSVC.exe"
"C:\Program Files\Lenovo\Communications Utility\vcamsvc.exe"
"C:\Program Files\LENOVO\VIRTSCRL\lvvsst.exe"
"C:\Program Files (x86)\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe" -sAUTODESKVAULT
C:\Windows\System32\svchost.exe -k HPZ12
"C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe"
C:\Windows\System32\svchost.exe -k HPZ12
"C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe"
C:\Windows\SysWOW64\SAsrv.exe
"C:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe"
"C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe"
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files\LENOVO\HOTKEY\TPHKSVC.exe"
C:\PROGRA~1\LENOVO\HOTKEY\tpnumlk.exe
C:\Windows\system32\wbem\unsecapp.exe -Embedding
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files (x86)\Mobile Broadband drivers\WMCore\mini_WMCore.exe" servicemode
C:\PROGRA~1\LENOVO\VIRTSCRL\virtscrl.exe
"C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe"
C:\PROGRA~1\LENOVO\HOTKEY\tpnumlkd.exe
"C:\Windows\system32\Dwm.exe"
"C:\Program Files (x86)\Lenovo\Access Connections\AcSvc.exe"
"taskhost.exe"
C:\Windows\Explorer.EXE
"C:\Program Files\LENOVO\HOTKEY\MICMUTE.exe"
"C:\Program Files\LENOVO\HOTKEY\TPHKLOAD.exe"
C:\Windows\system32\rundll32.exe "C:\Program Files\LENOVO\HOTKEY\hotkey.dll",InstallAudioHotkeyHook
"C:\Program Files (x86)\T-Mobile\Web'n'walk Manager\ameisvc.exe"
C:\PROGRA~1\Lenovo\HOTKEY\MKRMSG.EXE /UEFI\\.\pipe\{C6A9690C-33AE-4a55-8B65-9498CC0A7B34}.MediaKey
C:\PROGRA~1\Lenovo\HOTKEY\TPONSCR.EXE /UEFI\\.\pipe\{C6A9690C-33AE-4a55-8B65-9498CC0A7B34}.OnScreenDisplay
C:\PROGRA~1\Lenovo\HOTKEY\SHTCTKY.EXE /UEFI\\.\pipe\{C6A9690C-33AE-4a55-8B65-9498CC0A7B34}.ShortcutKey
"C:\Program Files\Microsoft Security Client\NisSrv.exe"
C:\Windows\system32\svchost.exe -k bthsvcs
C:\Windows\system32\igfxext.exe -Embedding
C:\Windows\system32\igfxsrvc.exe -Embedding
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\Program Files\Lenovo\Communications Utility\TpKnrres.exe"
"C:\Windows\System32\TpShocks.exe"
"C:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey
"C:\Program Files\CONEXANT\cAudioFilterAgent\CAudioFilterAgent64.exe"
"C:\Program Files\CONEXANT\ForteConfig\fmapp.exe"
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
"C:\Windows\System32\igfxpers.exe"
"C:\Windows\System32\hkcmd.exe"
"C:\Windows\System32\StikyNot.exe"
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Users\Jakub\AppData\Local\Akamai\netsession_win.exe"
"C:\Program Files\HP\HP Officejet Pro 8600\Bin\ScanToPCActivationApp.exe" -deviceID "CN29PBXH3X05KC:NW" -scfn "HP Officejet Pro 8600 (NET)" -AutoStart 1
"C:\Windows\system32\RunDll32.exe" "C:\Program Files\HP\HP Officejet Pro 8600\bin\HPStatusBL.dll",RunDLLEntry SERIALNUMBER=CN29PBXH3X05KC;CONNECTION=NW;MONITOR=1;
"C:\Program Files\Synaptics\SynTP\SynTPLpr.exe"
"C:/Users/Jakub/AppData/Local/Akamai/netsession_win.exe" --client
"C:\Windows\System32\rundll32.exe" C:\PROGRA~2\ThinkPad\UTILIT~1\PWMTR64V.DLL,PwrMgrBkGndMonitor
"C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
"C:\Windows\System32\rundll32.exe" C:\PROGRA~2\ThinkPad\UTILIT~1\PWMTR64V.DLL,PwrMgrBkGndMonitor
"C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe"
"C:\Program Files\HP\HP Officejet Pro 8600\bin\HPNetworkCommunicator.exe"
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1
"C:\Program Files\HP\HP Officejet Pro 8600\Bin\HPNetworkCommunicator.exe"
C:\PROGRA~2\ThinkPad\UTILIT~1\SCHTASK.exe
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
"C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE"
"ConnectifyNetServices.exe" -v -i C:\ProgramData\Connectify\cache\ConnectifyNetServices.ini -s C:\ProgramData\Connectify\cache\ConnectifyNetServices.state -l C:\ProgramData\Connectify\logs
\??\C:\Windows\system32\conhost.exe "270914627187390917194584980-1943420184621675982-1577400259988739862-562277430
"C:\Program Files (x86)\Lenovo\Access Connections\SvcGuiHlpr.exe" /IpNotifyInstance
"C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe"
"C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
"C:\Program Files (x86)\ThinkPad\Utilities\PWMDBSVC.EXE"
"C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE"
"C:\Program Files\Lenovo Fingerprint Reader\TouchControl.exe"
C:\Windows\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files\Lenovo Fingerprint Reader\x86\BioMonitor.exe" -Embedding
"C:\Users\Jakub\AppData\Local\Google\Chrome\Application\chrome.exe"
"C:\Users\Jakub\AppData\Local\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials=EnableStage3D/enabled/ForceCompositingMode/enabled/GlobalSdch/global_enable_sdch/InfiniteCache/No/NewTabButton/default/OmniboxDisallowInlineHQP/Standard/OmniboxHUPCreateShorterMatch/Standard/OmniboxHUPCullRedirects/Standard/OmniboxSearchSuggestTrialStarted2012Q4/7/OneClickSignIn/Standard/Prerender/PrerenderEnabled/SBInterstitial/V2/SpeculativePrefetching/Disabled/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_16/UMA-Uniformity-Trial-1-Percent/group_67/UMA-Uniformity-Trial-10-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/group_13/UMA-Uniformity-Trial-50-Percent/default/WarmSocketImpact/last_accessed_socket/ --extension-process --renderer-print-preview --channel="3732.1.1215726516\333065820" /prefetch:3
"C:\Users\Jakub\AppData\Local\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="3732.2.833574110\631096238" --supports-dual-gpus=false --skip-gpu-full-info-collection --gpu-vendor-id=0x8086 --gpu-device-id=0x0166 --gpu-driver-vendor="Intel Corporation" --gpu-driver-version=8.15.10.2639 --ignored=" --type=renderer " /prefetch:12
"C:\Users\Jakub\AppData\Local\Google\Chrome\Application\chrome.exe" --type=ppapi --channel="3732.7.476553464\171212330" --lang=cs --ignored=" --type=renderer " /prefetch:13
"C:\Users\Jakub\AppData\Local\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials=CacheSensitivityAnalysis/No/EnableStage3D/enabled/ForceCompositingMode/enabled/GlobalSdch/global_enable_sdch/InfiniteCache/No/NewTabButton/default/OmniboxDisallowInlineHQP/Standard/OmniboxHQPNewScoring/Standard/OmniboxHUPCreateShorterMatch/Standard/OmniboxHUPCullRedirects/Standard/OmniboxSearchSuggestTrialStarted2012Q4/7/OneClickSignIn/Standard/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/SBInterstitial/V2/SpdyCwnd/cwndDynamic/SpeculativePrefetching/Disabled/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_16/UMA-Uniformity-Trial-1-Percent/group_67/UMA-Uniformity-Trial-10-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/group_13/UMA-Uniformity-Trial-50-Percent/default/WarmSocketImpact/last_accessed_socket/ --renderer-print-preview --channel="3732.21.531234546\2042845248" /prefetch:3
"D:\Users\Jakub\Downloads\RSITx64.exe"
C:\Windows\system32\wbem\wmiprvse.exe
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player Updater.job
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-3752770136-2494076584-3171830822-1000Core.job
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-3752770136-2494076584-3171830822-1000UA.job
C:\Windows\tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon.job
C:\Windows\tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~4\Office14\GROOVEEX.DLL [2012-08-16 6670496]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8590886E-EC8C-43C1-A32C-E4C2B0B6395B}]
TrueSuite Browser Helper Object - C:\Program Files\Lenovo Fingerprint Reader\IEBHO.DLL [2012-06-06 1930088]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~4\Office14\URLREDIR.DLL [2010-12-21 689040]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-12-18 66280]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{32F66A28-7614-11D4-BD11-00104BD3F987}]
MathPlayer BrowserHelperObject Class
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~2\MICROS~3\Office14\GROOVEEX.DLL [2012-08-16 4171424]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2012-10-06 449512]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8590886E-EC8C-43C1-A32C-E4C2B0B6395B}]
TrueSuite Browser Helper Object - C:\Program Files\Lenovo Fingerprint Reader\x86\IEBHO.dll [2012-06-06 1772904]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MICROS~3\Office14\URLREDIR.DLL [2010-12-21 561552]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2012-10-06 157672]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
""= []
"LENOVO.TPKNRRES"=C:\Program Files\Lenovo\Communications Utility\TPKNRRES.exe [2012-06-01 290160]
"TpShocks"=C:\Windows\system32\TpShocks.exe [2012-08-24 222720]
"MSC"=C:\Program Files\Microsoft Security Client\msseces.exe [2012-09-12 1289704]
"cAudioFilterAgent"=C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe [2012-06-14 887968]
"ForteConfig"=C:\Program Files\Conexant\ForteConfig\fmapp.exe [2010-10-26 49056]
"SmartAudio"=C:\Program Files\CONEXANT\SAII\SACpl.exe [2012-06-13 1647616]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2012-04-02 2899216]
"Persistence"=C:\Windows\system32\igfxpers.exe [2012-02-09 440600]
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2012-02-09 398616]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"AdobeBridge"= []
"RESTART_STICKY_NOTES"=C:\Windows\System32\StikyNot.exe [2009-07-14 427520]
"DAEMON Tools Lite"=C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2012-11-06 3673728]
"Akamai NetSession Interface"=C:\Users\Jakub\AppData\Local\Akamai\netsession_win.exe [2012-10-09 4441920]
"HP Officejet Pro 8600 (NET)"=C:\Program Files\HP\HP Officejet Pro 8600\Bin\ScanToPCActivationApp.exe [2011-09-09 2676584]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AcWin7Hlpr]
C:\Program Files (x86)\Lenovo\Access Connections\AcTBenabler.exe [2012-09-07 63376]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2012-12-03 946352]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeAAMUpdater-1.0]
C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2012-04-04 446392]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeCS6ServiceManager]
C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [2012-03-09 1073312]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Autodesk Sync]
C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe [2012-02-05 415680]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BCSSync]
C:\Program Files\Microsoft Office\Office14\BCSSync.exe [2010-03-13 112512]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Connectify]
C:\Program Files (x86)\Connectify\Connectify.exe [2012-08-09 3985768]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite]
C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2012-11-06 3673728]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Dolby Advanced Audio v2]
C:\Program Files (x86)\Dolby Advanced Audio v2\pcee4.exe [2012-04-23 508256]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Update]
C:\Users\Jakub\AppData\Local\Google\Update\GoogleUpdate.exe [2012-10-06 116648]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HP Software Update]
C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe [2011-03-24 49208]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\hpqSRMon]
C:\Program Files (x86)\HP\Digital Imaging\bin\hpqSRMon.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HTC Sync Loader]
C:\Program Files (x86)\HTC\HTC Sync 3.0\htcUPCTLoader.exe -startup []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Logitech Download Assistant]
C:\Windows\System32\LogiLDA.dll [2012-09-20 1832760]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ProgLauncher]
C:\Program Files\ProgDVB\ProgLauncher.exe [2012-12-05 568768]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RotateImage]
C:\Program Files (x86)\Integrated Camera Driver\X64\RCIMGDIR.exe [2008-10-30 55808]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skype]
C:\Program Files (x86)\Skype\Phone\Skype.exe [2012-11-09 17877168]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2012-07-03 252848]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\T-Mobile Communication Centre]
C:\Program Files (x86)\T-Mobile\Web'n'walk Manager\Manager.exe [2012-08-22 1368768]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^HP Digital Imaging Monitor.lnk]
C:\PROGRA~2\HP\DIGITA~1\bin\hpqtra08.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^SolidWorks Nástroj pro stahování na pozadí.lnk]
C:\PROGRA~2\COMMON~1\MANAER~1\BACKGR~1\SLDBGD~1.EXE [2011-09-27 1855560]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"PWMTRV"=rundll32 C:\PROGRA~2\ThinkPad\UTILIT~1\PWMTR64V.DLL,PwrMgrBkGndMonitor []
"USB3MON"=C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [2012-01-05 291608]
"IMSS"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe [2011-12-23 133400]
"SwitchBoard"=C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
"HP Software Update"=C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [2011-03-24 49208]
""= []
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2012-12-03 946352]
C:\Users\Jakub\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Sledovat výstrahy inkoustu - HP Officejet Pro 8600 (Síť).lnk - C:\Windows\system32\RunDll32.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="C:\Windows\system32\nvinitx.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2012-02-02 430080]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~4\Office14\GROOVEEX.DLL [2012-08-16 6670496]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~2\MICROS~3\Office14\GROOVEEX.DLL [2012-08-16 4171424]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"notification packages"=scecli
ACGina
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MsMpSvc]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
""=
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
.scr - open - C:\Windows\system32\notepad.exe "%1"
.scr - install -
.scr - config -
======List of files/folders created in the last 1 months======
2013-01-20 12:56:06 ----D---- C:\rsit
2013-01-20 12:56:06 ----D---- C:\Program Files\trend micro
2013-01-18 11:31:16 ----D---- C:\Program Files (x86)\Design Science
2013-01-13 20:28:42 ----D---- C:\Users\Jakub\AppData\Roaming\dvdcss
2013-01-10 20:32:19 ----A---- C:\Windows\SYSWOW64\iSED.dll
2013-01-10 20:32:18 ----A---- C:\Windows\SYSWOW64\Vb6stkit.dll
2013-01-09 12:39:43 ----A---- C:\Windows\SYSWOW64\win32spl.dll
2013-01-09 12:39:43 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2013-01-09 12:39:43 ----A---- C:\Windows\system32\win32spl.dll
2013-01-09 12:39:43 ----A---- C:\Windows\system32\ncrypt.dll
2013-01-09 12:39:42 ----A---- C:\Windows\SYSWOW64\msxml6.dll
2013-01-09 12:39:42 ----A---- C:\Windows\SYSWOW64\msxml3.dll
2013-01-09 12:39:42 ----A---- C:\Windows\system32\msxml6.dll
2013-01-09 12:39:42 ----A---- C:\Windows\system32\msxml3.dll
2013-01-09 12:39:34 ----A---- C:\Windows\system32\taskhost.exe
2013-01-09 12:39:33 ----A---- C:\Windows\SYSWOW64\Wpc.dll
2013-01-09 12:39:33 ----A---- C:\Windows\SYSWOW64\gameux.dll
2013-01-09 12:39:33 ----A---- C:\Windows\system32\Wpc.dll
2013-01-09 12:39:33 ----A---- C:\Windows\system32\gameux.dll
2013-01-09 12:39:30 ----A---- C:\Windows\system32\win32k.sys
2013-01-09 12:39:28 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2013-01-09 12:39:28 ----A---- C:\Windows\system32\KernelBase.dll
2013-01-09 12:39:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2013-01-09 12:39:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2013-01-09 12:39:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2013-01-09 12:39:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2013-01-09 12:39:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2013-01-09 12:39:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2013-01-09 12:39:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2013-01-09 12:39:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2013-01-09 12:39:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2013-01-09 12:39:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2013-01-09 12:39:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2013-01-09 12:39:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2013-01-09 12:39:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2013-01-09 12:39:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2013-01-09 12:39:27 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2013-01-09 12:39:27 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2013-01-09 12:39:27 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2013-01-09 12:39:27 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2013-01-09 12:39:27 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2013-01-09 12:39:27 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2013-01-09 12:39:27 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2013-01-09 12:39:27 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2013-01-09 12:39:27 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2013-01-09 12:39:27 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2013-01-09 12:39:27 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2013-01-09 12:39:27 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2013-01-09 12:39:27 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2013-01-09 12:39:27 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2013-01-09 12:39:27 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2013-01-09 12:39:27 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2013-01-09 12:39:27 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2013-01-09 12:39:27 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2013-01-09 12:39:27 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2013-01-09 12:39:27 ----A---- C:\Windows\SYSWOW64\wow32.dll
2013-01-09 12:39:27 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2013-01-09 12:39:27 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2013-01-09 12:39:27 ----A---- C:\Windows\system32\wow64win.dll
2013-01-09 12:39:27 ----A---- C:\Windows\system32\wow64cpu.dll
2013-01-09 12:39:27 ----A---- C:\Windows\system32\wow64.dll
2013-01-09 12:39:27 ----A---- C:\Windows\system32\winsrv.dll
2013-01-09 12:39:27 ----A---- C:\Windows\system32\ntvdm64.dll
2013-01-09 12:39:27 ----A---- C:\Windows\system32\kernel32.dll
2013-01-09 12:39:27 ----A---- C:\Windows\system32\conhost.exe
2013-01-09 12:39:26 ----AH---- C:\Windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2013-01-09 12:39:26 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2013-01-09 12:39:26 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2013-01-09 12:39:26 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2013-01-09 12:39:26 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2013-01-09 12:39:26 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2013-01-09 12:39:26 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2013-01-09 12:39:26 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2013-01-09 12:39:26 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2013-01-09 12:39:26 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2013-01-09 12:39:26 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2013-01-09 12:39:26 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2013-01-09 12:39:26 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2013-01-09 12:39:26 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2013-01-09 12:39:26 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2013-01-09 12:39:26 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2013-01-09 12:39:26 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2013-01-09 12:39:26 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2013-01-09 12:39:26 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2013-01-09 12:39:26 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2013-01-09 12:39:26 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2013-01-09 12:39:26 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2013-01-09 12:39:26 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2013-01-09 12:39:26 ----A---- C:\Windows\SYSWOW64\user.exe
2013-01-09 12:39:26 ----A---- C:\Windows\SYSWOW64\setup16.exe
2013-01-09 12:39:26 ----A---- C:\Windows\SYSWOW64\instnm.exe
2013-01-09 12:39:22 ----A---- C:\Windows\SYSWOW64\usp10.dll
2013-01-09 12:39:22 ----A---- C:\Windows\system32\usp10.dll
2013-01-08 20:36:20 ----D---- C:\Program Files (x86)\Mozilla Thunderbird
2013-01-06 11:39:24 ----D---- C:\Program Files (x86)\K-Lite Codec Pack
2013-01-06 11:38:30 ----D---- C:\Upload
2013-01-06 11:02:44 ----A---- C:\Windows\SYSWOW64\nvwgf2um.dll
2013-01-06 11:02:44 ----A---- C:\Windows\SYSWOW64\nvumdshim.dll
2013-01-06 11:02:44 ----A---- C:\Windows\SYSWOW64\nvopencl.dll
2013-01-06 11:02:44 ----A---- C:\Windows\SYSWOW64\nvoglv32.dll
2013-01-06 11:02:44 ----A---- C:\Windows\SYSWOW64\nvd3dum.dll
2013-01-06 11:02:44 ----A---- C:\Windows\SYSWOW64\nvcuvid.dll
2013-01-06 11:02:44 ----A---- C:\Windows\SYSWOW64\nvcuvenc.dll
2013-01-06 11:02:44 ----A---- C:\Windows\SYSWOW64\nvcuda.dll
2013-01-06 11:02:44 ----A---- C:\Windows\SYSWOW64\nvcompiler.dll
2013-01-06 11:02:44 ----A---- C:\Windows\SYSWOW64\nvapi.dll
2013-01-06 11:02:44 ----A---- C:\Windows\system32\nvwgf2umx.dll
2013-01-06 11:02:44 ----A---- C:\Windows\system32\nvopencl.dll
2013-01-06 11:02:44 ----A---- C:\Windows\system32\nvoglv64.dll
2013-01-06 11:02:44 ----A---- C:\Windows\system32\nvd3dumx.dll
2013-01-06 11:02:44 ----A---- C:\Windows\system32\nvcuvid.dll
2013-01-06 11:02:44 ----A---- C:\Windows\system32\nvcuvenc.dll
2013-01-06 11:02:44 ----A---- C:\Windows\system32\nvcuda.dll
2013-01-06 11:02:44 ----A---- C:\Windows\system32\nvcompiler.dll
2013-01-06 11:02:44 ----A---- C:\Windows\system32\drivers\nvpciflt.sys
2013-01-06 11:02:44 ----A---- C:\Windows\system32\drivers\nvlddmkm.sys
2013-01-02 18:53:49 ----D---- C:\Users\Jakub\AppData\Roaming\Opera
2013-01-02 18:53:46 ----D---- C:\Program Files (x86)\Opera
2012-12-28 15:01:08 ----D---- C:\Users\Jakub\AppData\Roaming\HpUpdate
2012-12-28 15:01:07 ----N---- C:\Windows\system32\HPDiscoPM5912.dll
2012-12-28 14:59:23 ----D---- C:\Program Files\HP
2012-12-28 14:59:16 ----A---- C:\ProgramData\Ament.ini
2012-12-21 08:18:32 ----A---- C:\Windows\SYSWOW64\atmlib.dll
2012-12-21 08:18:31 ----A---- C:\Windows\SYSWOW64\atmfd.dll
2012-12-21 08:18:31 ----A---- C:\Windows\system32\atmlib.dll
2012-12-21 08:18:31 ----A---- C:\Windows\system32\atmfd.dll
======List of files/folders modified in the last 1 months======
2013-01-20 12:56:06 ----RD---- C:\Program Files
2013-01-20 12:55:20 ----D---- C:\Windows\Temp
2013-01-20 12:18:37 ----D---- C:\Users\Jakub\AppData\Roaming\Skype
2013-01-20 10:19:17 ----D---- C:\Windows\system32\config
2013-01-20 10:13:17 ----D---- C:\Windows\System32
2013-01-20 10:13:17 ----D---- C:\Windows\inf
2013-01-20 10:13:17 ----A---- C:\Windows\system32\PerfStringBackup.INI
2013-01-20 10:11:05 ----A---- C:\Windows\SYSWOW64\log.txt
2013-01-18 11:33:50 ----SHD---- C:\Windows\Installer
2013-01-18 11:33:50 ----HD---- C:\Config.Msi
2013-01-18 11:33:46 ----SHD---- C:\System Volume Information
2013-01-18 11:31:16 ----RSD---- C:\Windows\Fonts
2013-01-18 11:31:16 ----RD---- C:\Program Files (x86)
2013-01-17 15:43:26 ----D---- C:\Users\Jakub\AppData\Roaming\vlc
2013-01-17 14:12:42 ----D---- C:\Windows\system32\wdi
2013-01-16 21:06:33 ----D---- C:\Windows\system32\NDF
2013-01-13 15:04:31 ----D---- C:\Program Files\Common Files
2013-01-13 15:04:22 ----D---- C:\ProgramData\Logishrd
2013-01-13 15:04:20 ----D---- C:\ProgramData\Logitech
2013-01-13 15:04:11 ----D---- C:\Windows\system32\DriverStore
2013-01-13 15:04:11 ----D---- C:\Windows\system32\catroot
2013-01-12 21:23:49 ----D---- C:\ProgramData\WebDataLoader
2013-01-12 21:18:42 ----D---- C:\Program Files (x86)\WebDataLoader
2013-01-12 17:48:50 ----D---- C:\Windows
2013-01-12 17:47:38 ----D---- C:\Windows\system32\catroot2
2013-01-12 17:47:18 ----D---- C:\Windows\Minidump
2013-01-11 14:40:20 ----D---- C:\Windows\SysWOW64
2013-01-09 13:20:43 ----D---- C:\Windows\rescache
2013-01-09 13:18:04 ----RSD---- C:\Windows\assembly
2013-01-09 13:18:04 ----D---- C:\Windows\Microsoft.NET
2013-01-09 13:06:39 ----D---- C:\Windows\winsxs
2013-01-09 12:53:05 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2013-01-09 12:52:44 ----D---- C:\Windows\SYSWOW64\cs-CZ
2013-01-09 12:52:44 ----D---- C:\Windows\system32\cs-CZ
2013-01-09 12:52:44 ----D---- C:\Windows\AppPatch
2013-01-09 12:46:33 ----D---- C:\ProgramData\Microsoft Help
2013-01-09 12:46:14 ----A---- C:\Windows\SYSWOW64\PerfStringBackup.INI
2013-01-09 12:42:07 ----A---- C:\Windows\system32\MRT.exe
2013-01-08 22:20:35 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2013-01-08 10:58:06 ----D---- C:\Users\Jakub\AppData\Roaming\abgx360
2013-01-08 10:30:52 ----D---- C:\Users\Jakub\AppData\Roaming\Vso
2013-01-07 00:19:53 ----D---- C:\Windows\SYSWOW64\NV
2013-01-07 00:19:53 ----D---- C:\Windows\system32\NV
2013-01-07 00:19:53 ----D---- C:\ProgramData\NVIDIA
2013-01-06 12:36:44 ----D---- C:\Program Files\SAMSUNG
2013-01-06 11:04:24 ----D---- C:\Windows\system32\drivers
2013-01-06 00:03:44 ----D---- C:\ldiag
2013-01-03 20:41:42 ----D---- C:\Program Files (x86)\ProFact 3.0
2013-01-01 16:02:23 ----D---- C:\Windows\debug
2012-12-30 00:24:18 ----D---- C:\Windows\system32\Tasks
2012-12-30 00:23:05 ----D---- C:\Program Files (x86)\SEO PowerSuite
2012-12-30 00:19:40 ----D---- C:\Program Files (x86)\EasyPHP-12.1
2012-12-29 11:34:47 ----A---- C:\Windows\SYSWOW64\nvinit.dll
2012-12-29 11:34:47 ----A---- C:\Windows\system32\nvumdshimx.dll
2012-12-29 11:34:47 ----A---- C:\Windows\system32\nvinitx.dll
2012-12-29 11:34:47 ----A---- C:\Windows\system32\nvdispgenco64.dll
2012-12-29 11:34:47 ----A---- C:\Windows\system32\nvdispco64.dll
2012-12-29 11:34:47 ----A---- C:\Windows\system32\nvapi64.dll
2012-12-29 09:40:27 ----A---- C:\Windows\system32\nvsvc64.dll
2012-12-29 09:40:27 ----A---- C:\Windows\system32\nvcpl.dll
2012-12-29 09:40:10 ----A---- C:\Windows\SYSWOW64\oemdspif.dll
2012-12-29 09:40:09 ----A---- C:\Windows\system32\nvvsvc.exe
2012-12-29 09:40:09 ----A---- C:\Windows\system32\nvsvcr.dll
2012-12-29 09:40:09 ----A---- C:\Windows\system32\nvshext.dll
2012-12-29 09:40:09 ----A---- C:\Windows\system32\nvmctray.dll
2012-12-29 09:40:09 ----A---- C:\Windows\system32\nv3dappshextr.dll
2012-12-29 09:40:09 ----A---- C:\Windows\system32\nv3dappshext.dll
2012-12-28 15:01:12 ----D---- C:\Program Files (x86)\HP
2012-12-28 15:00:39 ----D---- C:\ProgramData\HP
2012-12-28 15:00:31 ----D---- C:\Windows\twain_32
2012-12-28 14:59:16 ----HD---- C:\ProgramData
2012-12-28 14:55:00 ----D---- C:\Program Files (x86)\Common Files
2012-12-27 21:52:10 ----AD---- C:\ProgramData\TEMP
2012-12-22 16:49:09 ----D---- C:\Program Files (x86)\HTC
2012-12-22 16:47:23 ----D---- C:\Program Files\Autodesk
2012-12-22 16:47:10 ----D---- C:\Program Files\Common Files\Autodesk Shared
2012-12-21 12:06:44 ----A---- C:\Windows\OutLog.txt
2012-12-21 12:03:42 ----D---- C:\Windows\Acronis
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 iaStor;Intel AHCI Controller; C:\Windows\system32\DRIVERS\iaStor.sys [2011-12-23 568600]
R0 iusb3hcs;Ovladač přepínání hostitelského řadiče Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3hcs.sys [2012-01-05 16152]
R0 MpFilter;Microsoft Malware Protection Driver; C:\Windows\system32\DRIVERS\MpFilter.sys [2012-08-30 228768]
R0 nvpciflt;nvpciflt; C:\Windows\system32\DRIVERS\nvpciflt.sys [2012-12-29 30648]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R0 Shockprf;Shockprf; C:\Windows\System32\DRIVERS\Apsx64.sys [2012-07-23 148328]
R0 TPDIGIMN;TPDIGIMN; C:\Windows\System32\DRIVERS\ApsHM64.sys [2012-08-12 25448]
R1 cnnctfy2;Connectify LightWeight Filter; C:\Windows\system32\DRIVERS\cnnctfy2.sys [2012-10-11 31344]
R1 TPPWRIF;TPPWRIF; C:\Windows\System32\drivers\Tppwr64v.sys [2012-05-16 19784]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 NisDrv;Microsoft Network Inspection System; C:\Windows\system32\DRIVERS\NisDrvWFP.sys [2012-08-30 128456]
R3 5U877;5U877; C:\Windows\system32\DRIVERS\5U877.sys [2012-03-28 216704]
R3 AMPPAL;Virtuální adaptér Intel® Centrino® Wireless Bluetooth® + High Speed; C:\Windows\system32\DRIVERS\AMPPAL.sys [2012-01-09 195584]
R3 CnxtHdAudService;Conexant UAA Function Driver for High Definition Audio Service; C:\Windows\system32\drivers\CHDRT64.sys [2012-06-14 1608352]
R3 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2012-12-02 283200]
R3 IBMPMDRV;IBMPMDRV; C:\Windows\system32\DRIVERS\ibmpmdrv.sys [2012-04-11 42280]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2012-02-02 14659808]
R3 IntcDAud;Intel(R) Display Audio; C:\Windows\system32\DRIVERS\IntcDAud.sys [2011-12-06 331264]
R3 iusb3hub;Ovladač rozbočovače Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3hub.sys [2012-01-05 355096]
R3 iusb3xhc;Ovladač rozšiřitelného hostitelského řadiče Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3xhc.sys [2012-01-05 786200]
R3 iwdbus;IWD Bus Enumerator; C:\Windows\system32\DRIVERS\iwdbus.sys [2011-12-20 25496]
R3 MEIx64;Intel(R) Management Engine Interface ; C:\Windows\system32\DRIVERS\HECIx64.sys [2012-07-17 62784]
R3 NETwNs64;___ Ovladač adaptéru řady Intel(R) Wireless WiFi Link 5000 pro systém Windows 7 64 Bit; C:\Windows\system32\DRIVERS\Netwsw00.sys [2012-02-20 11471872]
R3 pcouffin;VSO Software pcouffin; C:\Windows\System32\Drivers\pcouffin.sys [2012-11-12 82816]
R3 psadd;Lenovo Parties Service Access Device Driver; C:\Windows\system32\DRIVERS\psadd.sys [2011-12-27 40248]
R3 RSP2STOR;Realtek PCIE CardReader Driver - P2; C:\Windows\system32\DRIVERS\RtsP2Stor.sys [2011-10-27 259688]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2011-08-23 565352]
R3 StillCam;Ovladač digitálního fotoaparátu pro sériový port; C:\Windows\system32\DRIVERS\serscan.sys [2009-07-14 12288]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2012-04-02 428304]
R3 tvtvcamd;ThinkVantage Virtual Camera; C:\Windows\system32\DRIVERS\tvtvcamd.sys [2011-12-07 27432]
S2 CXIR;Conexant Polaris IR Transceiver; C:\Windows\system32\drivers\cxcir64.sys [2011-05-03 44032]
S3 AMPPALP;Protokol Intel® Centrino® Wireless Bluetooth® + High Speed; C:\Windows\system32\DRIVERS\amppal.sys [2012-01-09 195584]
S3 BthEnum;Ovladač pro Bluetooth Request Block; C:\Windows\system32\drivers\BthEnum.sys [2009-07-14 41984]
S3 BthPan;Zařízení Bluetooth (síť PAN); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
S3 BTHPORT;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2012-07-06 552960]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2011-04-28 80384]
S3 CXPOLARIS;Conexant Polaris Video Capture; C:\Windows\system32\drivers\cxpolar64.sys [2011-05-03 447872]
S3 Dot4;MS IEEE-1284.4 Driver; C:\Windows\system32\DRIVERS\Dot4.sys [2009-07-14 145920]
S3 Dot4Print;Print Class Driver for IEEE-1284.4; C:\Windows\system32\DRIVERS\Dot4Prt.sys [2010-11-20 19968]
S3 dot4usb;MS Dot4USB Filter Dot4USB Filter; C:\Windows\system32\DRIVERS\dot4usb.sys [2009-07-14 43008]
S3 HTCAND64;HTC Device Driver; C:\Windows\System32\Drivers\ANDROIDUSB.sys [2009-11-02 33736]
S3 htcnprot;HTC NDIS Protocol Driver; C:\Windows\system32\DRIVERS\htcnprot.sys [2010-06-25 36928]
S3 Huawei;HUAWEI Mobile Connect - USB Smart Card Reader; C:\Windows\system32\DRIVERS\ewdcsc.sys [2009-12-15 29696]
S3 hwdatacard;Huawei DataCard USB Modem and USB Serial; C:\Windows\system32\DRIVERS\ewusbmdm.sys [2009-12-15 117248]
S3 hwusbdev;Huawei DataCard USB PNP Device; C:\Windows\system32\DRIVERS\ewusbdev.sys [2009-12-15 114304]
S3 intaud_WaveExtensible;Intel WiDi Audio Device; C:\Windows\system32\drivers\intelaud.sys [2011-12-20 34200]
S3 IT9135BDA;IT9135 BDA Devices; C:\Windows\System32\Drivers\IT9135BDA.sys [2012-10-26 164736]
S3 LEqdUsb;Logitech SetPoint Unifying KMDF USB Filter; C:\Windows\system32\DRIVERS\LEqdUsb.Sys [2012-09-18 78648]
S3 LHidEqd;Logitech SetPoint Unifying KMDF HID Filter; C:\Windows\system32\DRIVERS\LHidEqd.Sys [2012-09-18 15160]
S3 LHidFilt;Logitech SetPoint KMDF HID Filter Driver; C:\Windows\system32\DRIVERS\LHidFilt.Sys [2012-09-18 75064]
S3 LMouFilt;Logitech SetPoint KMDF Mouse Filter Driver; C:\Windows\system32\DRIVERS\LMouFilt.Sys [2012-09-18 61240]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]
S3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2012-08-23 57856]
S3 usbscan;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2009-07-14 41984]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AcPrfMgrSvc;AcPrfMgrSvc; C:\Program Files (x86)\Lenovo\Access Connections\AcPrfMgrSvc.exe [2012-09-07 133008]
R2 AcSvc;AcSvc; C:\Program Files (x86)\Lenovo\Access Connections\AcSvc.exe [2012-09-07 272272]
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2012-12-18 65192]
R2 ameisvc;Web'n'walk Manager mobile equipment installation service; C:\Program Files (x86)\T-Mobile\Web'n'walk Manager\ameisvc.exe [2012-08-22 123320]
R2 AMPPALR3;Intel® Centrino® Wireless Bluetooth® + High Speed Service; C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe [2012-01-09 659968]
R2 Autodesk Content Service;Autodesk Content Service; C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe [2012-01-31 19232]
R2 BTHSSecurityMgr;Intel(R) Centrino(R) Wireless Bluetooth(R) + High Speed Security Service; C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe [2012-01-17 135952]
R2 Connectify;Connectify; C:\Program Files (x86)\Connectify\ConnectifyService.exe [2012-08-09 65536]
R2 CxAudMsg;@C:\Windows\system32\CxAudMsg64.exe,-100; C:\Windows\system32\CxAudMsg64.exe [2012-06-08 201376]
R2 EvtEng;Intel(R) PROSet/Wireless Event Log; C:\Program Files\Intel\WiFi\bin\EvtEng.exe [2012-02-26 626960]
R2 FPLService;TrueSuiteService; C:\Program Files\Lenovo Fingerprint Reader\TrueSuiteService.exe [2012-06-06 328552]
R2 GobiQDLService;Sierra Wireless QDL Service; C:\Program Files (x86)\Sierra Wireless Inc\Gobi\QDLService\GobiQDLService.exe [2011-11-25 312688]
R2 IBMPMSVC;Lenovo PM Service; C:\Windows\system32\ibmpmsvc.exe [2012-04-11 47440]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2011-12-08 607456]
R2 Intel(R) ME Service;Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [2011-12-23 128280]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2011-12-23 161560]
R2 LENOVO.CAMMUTE;Lenovo Camera Mute; C:\Program Files\Lenovo\Communications Utility\CAMMUTE.exe [2012-06-01 58224]
R2 LENOVO.MICMUTE;Lenovo Microphone Mute; C:\Program Files\LENOVO\HOTKEY\MICMUTE.exe [2012-08-24 127072]
R2 LENOVO.TPKNRSVC;Lenovo Keyboard Noise Reduction; C:\Program Files\Lenovo\Communications Utility\TPKNRSVC.exe [2012-06-01 61296]
R2 LENOVO.TVTVCAM;ThinkVantage Virtual Camera Controller; C:\Program Files\Lenovo\Communications Utility\vcamsvc.exe [2012-06-01 179568]
R2 Lenovo.VIRTSCRLSVC;Lenovo Auto Scroll; C:\Program Files\LENOVO\VIRTSCRL\lvvsst.exe [2011-07-12 133992]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2011-12-23 277784]
R2 MsMpSvc;Microsoft Antimalware Service; C:\Program Files\Microsoft Security Client\MsMpEng.exe [2012-09-12 22072]
R2 MSSQL$AUTODESKVAULT;SQL Server (AUTODESKVAULT); C:\Program Files (x86)\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe [2010-12-10 29293408]
R2 Net Driver HPZ12;Net Driver HPZ12; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2012-12-29 884152]
R2 nvUpdatusService;NVIDIA Update Service Daemon; C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2012-12-29 1260472]
R2 PassThru Service;Internet Pass-Through Service; C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe [2012-04-13 88576]
R2 Pml Driver HPZ12;Pml Driver HPZ12; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 RegSrvc;Intel(R) PROSet/Wireless Registry Service; C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe [2012-02-26 148752]
R2 SAService;Conexant SmartAudio service; C:\Windows\system32\SAsrv.exe []
R2 SQLBrowser;SQL Server Browser; C:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe [2010-12-10 238944]
R2 SQLWriter;SQL Server VSS Writer; C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe [2010-12-10 153440]
R2 TPHKLOAD;Lenovo Hotkey Client Loader; C:\Program Files\LENOVO\HOTKEY\TPHKLOAD.exe [2012-05-29 147040]
R2 TPHKSVC;On Screen Display; C:\Program Files\LENOVO\HOTKEY\TPHKSVC.exe [2012-04-20 144448]
R2 UNS;Intel(R) Management and Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2011-12-23 363800]
R3 NisSrv;@C:\Program Files\Microsoft Security Client\MpAsDesc.dll,-243; C:\Program Files\Microsoft Security Client\NisSrv.exe [2012-09-12 368896]
R3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
R3 Power Manager DBC Service;Power Manager DBC Service; C:\Program Files (x86)\ThinkPad\Utilities\PWMDBSVC.EXE [2012-05-16 1662560]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2012-11-09 160944]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-01-08 251400]
S3 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2010-03-18 44376]
S3 Autodesk Licensing Service;Autodesk Licensing Service; C:\Program Files (x86)\Common Files\Autodesk Shared\Service\AdskScSrv.exe [2012-10-06 79360]
S3 CoordinatorServiceHost;SW Distributed TS Coordinator Service; C:\Program Files\SolidWorks Corp\SolidWorks\swScheduler\DTSCoordinatorService.exe [2011-09-27 89160]
S3 cphs;Intel(R) Content Protection HECI Service; C:\Windows\SysWow64\IntelCpHeciSvc.exe [2012-02-09 276248]
S3 FLEXnet Licensing Service 64;FLEXnet Licensing Service 64; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe [2012-10-09 1432400]
S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2012-10-09 1044816]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service; C:\Program Files\Microsoft Office\Office14\GROOVE.EXE [2012-09-20 50899608]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2013-01-08 115760]
S3 MyWiFiDHCPDNS;Wireless PAN DHCP Server; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [2012-02-26 273168]
S3 ose64;Office 64 Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 174440]
S3 PwmEWSvc;Cisco EnergyWise Enabler; C:\Program Files (x86)\ThinkPad\Utilities\PWMEWSVC.EXE [2012-05-16 1665120]
S3 Remote Solver for Flow Simulation 2012;Remote Solver for Flow Simulation 2012; C:\Program Files\SolidWorks Corp\SolidWorks Flow Simulation\binCFW\StandAloneSlv.exe [2011-08-17 109624]
S3 SolidWorks Licensing Service;SolidWorks Licensing Service; C:\Program Files (x86)\Common Files\SolidWorks Shared\Service\SolidWorksLicensing.exe [2012-10-09 79360]
S3 SUService;System Update; C:\Program Files (x86)\Lenovo\System Update\SUService.exe [2012-11-23 21416]
S3 SwitchBoard;SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
S3 TPHDEXLGSVC;ThinkPad HDD APS Logging Service; C:\Windows\System32\TPHDEXLG64.exe [2012-08-12 46984]
S4 MSSQLServerADHelper;SQL Server Active Directory Helper; C:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqladhlp90.exe [2010-12-10 44384]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
-----------------EOF-----------------
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Preventivní kontrola
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Re: Preventivní kontrola
Zdravim 
Stahnete OTL http://oldtimer.geekstogo.com/OTL.exe a ulozte jej na plochu
Stahnete OTL http://oldtimer.geekstogo.com/OTL.exe a ulozte jej na plochu
- Pokud pouzivate Win Vista ci W7, kliknete na OTL pravym a dejte Run As Administrator ci Spustit jako spravce
- Pokud pouzivate 64bitovy OS, zkontrolujte, zda-li je zaskrtnuty ctverecek u Pro 64 bitové OS, pokud ne, zaskrtnete jej
- Zaskrtnete okenko Pro vsechny uzivatele
- Zaskrtnete okenko Kontrola na havet "LOP"
- Zaskrtnete okenko Kontrola na havet "Purity"
- Stari souboru zmente z 30 dnu na 7 dnu
- Do spodniho okenka Vlastni skenovani/opravy vlozte skript nize
Kód: Vybrat vše
CREATERESTOREPOINT netsvcs drivers32 savembr:0 /md5start atapi.sys autochk.exe cdrom.sys explorer.exe hal.dll scecli.dll services.exe svchost.exe tcpip.sys userinit.exe winlogon.exe /md5stop %systemroot%*.* /U /s %SYSTEMDRIVE%\*.exe %ALLUSERSPROFILE%\Application Data\*. %ALLUSERSPROFILE%\Application Data\*.exe /s %APPDATA%\*. %APPDATA%\*.exe /s %systemroot%\*. /mp /s %systemroot%\system32\*.dll /lockedfiles %systemroot%\Tasks\*.job %systemroot%\system32\drivers\*.sys /lockedfiles %systemroot%\System32\config\*.sav %systemroot%\system32\*.dll /lockedfiles %systemroot%\system32\drivers\*.sys /3 %systemroot%\system32\*.* /3 %SYSTEMDRIVE%\*.exe HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s %PROGRAMFILES%\Mozilla Firefox\firefox.exe /md5 %PROGRAMFILES%\Internet Explorer\iexplore.exe /md5 %PROGRAMFILES%\Opera\opera.exe /md5 %PROGRAMFILES%\Google\Chrome\Application\chrome.exe /md5 %SystemDrive%\PhysicalMBR.bin /md5 *crack* /s *keygen* /s *loader* /s- Kliknete na tlacitko Prohledat
- Po dokonceni skenu (cca 10 az 15 min) se objevi logy OTL.txt a Extras.txt, oba sem vlozte
- Pokud budou logy dlouhe (forum bude kricet o prekroceni maximalniho poctu znaku), tak je rozdelte do vice prispevku
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen
od 1. února 2011.
Člen
od 1. února 2011.Re: Preventivní kontrola
OTL logfile created on: 20.1.2013 17:25:58 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Jakub\Desktop
64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy
7,60 Gb Total Physical Memory | 5,42 Gb Available Physical Memory | 71,22% Memory free
15,21 Gb Paging File | 12,99 Gb Available in Paging File | 85,46% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 111,79 Gb Total Space | 19,57 Gb Free Space | 17,50% Space Free | Partition Type: NTFS
Drive D: | 465,66 Gb Total Space | 215,74 Gb Free Space | 46,33% Space Free | Partition Type: NTFS
Computer Name: JAKUB-NTB | User Name: Jakub | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 7 Days
========== Processes (SafeList) ==========
PRC - [2013.01.20 17:23:28 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Jakub\Desktop\OTL.exe
PRC - [2012.12.29 11:34:47 | 001,260,472 | ---- | M] (NVIDIA Corporation) -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
PRC - [2012.12.18 15:28:08 | 000,065,192 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
PRC - [2012.10.09 10:53:36 | 004,441,920 | ---- | M] (Akamai Technologies, Inc.) -- C:\Users\Jakub\AppData\Local\Akamai\netsession_win.exe
PRC - [2012.09.07 08:09:02 | 000,366,480 | ---- | M] (Lenovo) -- C:\Program Files (x86)\Lenovo\Access Connections\SvcGuiHlpr.exe
PRC - [2012.09.07 08:08:50 | 000,272,272 | ---- | M] (Lenovo) -- C:\Program Files (x86)\Lenovo\Access Connections\AcSvc.exe
PRC - [2012.09.07 08:08:48 | 000,133,008 | ---- | M] (Lenovo) -- C:\Program Files (x86)\Lenovo\Access Connections\AcPrfMgrSvc.exe
PRC - [2012.08.24 18:33:24 | 000,127,072 | ---- | M] (Lenovo Group Limited) -- C:\Program Files\Lenovo\HOTKEY\micmute.exe
PRC - [2012.08.24 18:33:22 | 000,567,392 | ---- | M] (Lenovo Group Limited) -- C:\Program Files\Lenovo\HOTKEY\TPONSCR.exe
PRC - [2012.08.22 15:59:57 | 000,123,320 | ---- | M] (Gemfor s.r.o.) -- C:\Program Files (x86)\T-Mobile\Web'n'walk Manager\ameisvc.exe
PRC - [2012.08.09 20:30:20 | 000,353,640 | ---- | M] () -- C:\Program Files (x86)\Connectify\ConnectifyNetServices.exe
PRC - [2012.08.09 20:30:20 | 000,287,080 | ---- | M] (Connectify) -- C:\Program Files (x86)\Connectify\Connectifyd.exe
PRC - [2012.08.09 20:30:04 | 000,065,536 | ---- | M] () -- C:\Program Files (x86)\Connectify\ConnectifyService.exe
PRC - [2012.06.06 23:04:22 | 000,145,256 | ---- | M] (AuthenTec Inc.) -- C:\Program Files\Lenovo Fingerprint Reader\x86\BioMonitor.exe
PRC - [2012.06.01 19:49:06 | 000,179,568 | ---- | M] (Lenovo Group Limited) -- C:\Program Files\Lenovo\Communications Utility\vcamsvc.exe
PRC - [2012.06.01 19:49:00 | 000,290,160 | ---- | M] (Lenovo Group Limited) -- C:\Program Files\Lenovo\Communications Utility\TpKnrres.exe
PRC - [2012.06.01 19:48:58 | 000,061,296 | ---- | M] (Lenovo Group Limited) -- C:\Program Files\Lenovo\Communications Utility\TPKNRSVC.exe
PRC - [2012.06.01 19:48:38 | 000,058,224 | ---- | M] (Lenovo Group Limited) -- C:\Program Files\Lenovo\Communications Utility\CamMute.exe
PRC - [2012.05.16 05:32:00 | 001,662,560 | ---- | M] (Lenovo) -- C:\Program Files (x86)\ThinkPad\Utilities\PWMDBSVC.exe
PRC - [2012.05.16 05:32:00 | 000,128,608 | ---- | M] (Lenovo Group Limited) -- C:\Program Files (x86)\ThinkPad\Utilities\SCHTASK.EXE
PRC - [2012.04.20 11:30:14 | 000,144,448 | ---- | M] (Lenovo Group Limited) -- C:\Program Files\Lenovo\HOTKEY\TPHKSVC.exe
PRC - [2012.04.13 10:12:00 | 000,088,576 | ---- | M] () -- C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe
PRC - [2012.01.31 09:46:56 | 000,019,232 | ---- | M] (Autodesk, Inc.) -- C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe
PRC - [2012.01.05 02:59:50 | 000,291,608 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
PRC - [2011.12.23 16:13:46 | 000,363,800 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
PRC - [2011.12.23 16:13:32 | 000,277,784 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
PRC - [2011.12.23 16:13:16 | 000,128,280 | ---- | M] () -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
PRC - [2011.12.23 16:13:04 | 000,161,560 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
PRC - [2011.11.25 23:22:44 | 000,312,688 | ---- | M] (Sierra Wireless, Inc.) -- C:\Program Files (x86)\Sierra Wireless Inc\Gobi\QDLService\GobiQDLService.exe
PRC - [2011.11.18 13:43:58 | 000,655,912 | R--- | M] (Ericsson AB) -- C:\Program Files (x86)\Mobile Broadband drivers\WMCore\mini_WMCore.exe
PRC - [2011.01.07 11:28:42 | 000,446,592 | ---- | M] (Conexant Systems, Inc.) -- C:\Windows\SysWOW64\SASrv.exe
========== Modules (No Company Name) ==========
========== Services (SafeList) ==========
SRV:64bit: - [2012.10.09 21:08:10 | 001,432,400 | ---- | M] (Flexera Software, Inc.) [On_Demand | Stopped] -- C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe -- (FLEXnet Licensing Service 64)
SRV:64bit: - [2012.09.12 20:21:48 | 000,368,896 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Program Files\Microsoft Security Client\NisSrv.exe -- (NisSrv)
SRV:64bit: - [2012.09.12 20:21:48 | 000,022,072 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Microsoft Security Client\MsMpEng.exe -- (MsMpSvc)
SRV:64bit: - [2012.08.24 18:33:24 | 000,127,072 | ---- | M] (Lenovo Group Limited) [Auto | Running] -- C:\Program Files\Lenovo\HOTKEY\micmute.exe -- (LENOVO.MICMUTE)
SRV:64bit: - [2012.08.12 16:59:52 | 000,046,984 | ---- | M] (Lenovo.) [On_Demand | Stopped] -- C:\Windows\SysNative\TPHDEXLG64.exe -- (TPHDEXLGSVC)
SRV:64bit: - [2012.06.08 16:07:16 | 000,201,376 | ---- | M] (Conexant Systems Inc.) [Auto | Running] -- C:\Windows\SysNative\CxAudMsg64.exe -- (CxAudMsg)
SRV:64bit: - [2012.06.06 23:04:04 | 000,328,552 | ---- | M] (AuthenTec, Inc) [Auto | Running] -- C:\Program Files\Lenovo Fingerprint Reader\TrueSuiteService.exe -- (FPLService)
SRV:64bit: - [2012.06.01 19:49:06 | 000,179,568 | ---- | M] (Lenovo Group Limited) [Auto | Running] -- C:\Program Files\Lenovo\Communications Utility\vcamsvc.exe -- (LENOVO.TVTVCAM)
SRV:64bit: - [2012.06.01 19:48:58 | 000,061,296 | ---- | M] (Lenovo Group Limited) [Auto | Running] -- C:\Program Files\Lenovo\Communications Utility\TPKNRSVC.exe -- (LENOVO.TPKNRSVC)
SRV:64bit: - [2012.06.01 19:48:38 | 000,058,224 | ---- | M] (Lenovo Group Limited) [Auto | Running] -- C:\Program Files\Lenovo\Communications Utility\CamMute.exe -- (LENOVO.CAMMUTE)
SRV:64bit: - [2012.05.29 15:30:16 | 000,147,040 | ---- | M] (Lenovo Group Limited) [Auto | Running] -- C:\Program Files\Lenovo\HOTKEY\tphkload.exe -- (TPHKLOAD)
SRV:64bit: - [2012.04.20 11:30:14 | 000,144,448 | ---- | M] (Lenovo Group Limited) [Auto | Running] -- C:\Program Files\Lenovo\HOTKEY\TPHKSVC.exe -- (TPHKSVC)
SRV:64bit: - [2012.04.11 15:27:06 | 000,047,440 | ---- | M] (Lenovo.) [Auto | Running] -- C:\Windows\SysNative\ibmpmsvc.exe -- (IBMPMSVC)
SRV:64bit: - [2012.02.26 04:07:52 | 002,669,840 | ---- | M] (Intel® Corporation) [Auto | Running] -- C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe -- (ZeroConfigService)
SRV:64bit: - [2012.02.26 04:07:42 | 000,273,168 | ---- | M] () [On_Demand | Stopped] -- C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe -- (MyWiFiDHCPDNS)
SRV:64bit: - [2012.02.26 04:07:32 | 000,626,960 | ---- | M] (Intel(R) Corporation) [Auto | Running] -- C:\Program Files\Intel\WiFi\bin\EvtEng.exe -- (EvtEng)
SRV:64bit: - [2012.02.26 04:07:26 | 000,148,752 | ---- | M] (Intel(R) Corporation) [Auto | Running] -- C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe -- (RegSrvc)
SRV:64bit: - [2012.01.17 15:12:28 | 000,135,952 | ---- | M] (Intel(R) Corporation) [Auto | Running] -- C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe -- (BTHSSecurityMgr)
SRV:64bit: - [2012.01.09 11:39:44 | 000,659,968 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe -- (AMPPALR3)
SRV:64bit: - [2011.12.08 15:38:24 | 000,607,456 | ---- | M] (Intel(R) Corporation) [Auto | Running] -- C:\Program Files\Intel\iCLS Client\HeciServer.exe -- (Intel(R)
SRV:64bit: - [2011.09.27 03:00:24 | 000,089,160 | ---- | M] (Dassault Systèmes SolidWorks Corp.) [On_Demand | Stopped] -- C:\Program Files\SolidWorks Corp\SolidWorks\swScheduler\DTSCoordinatorService.exe -- (CoordinatorServiceHost)
SRV:64bit: - [2011.08.17 19:04:36 | 000,109,624 | ---- | M] (Mentor Graphics Corporation) [On_Demand | Stopped] -- C:\Program Files\SolidWorks Corp\SolidWorks Flow Simulation\binCFW\StandAloneSlv.exe -- (Remote Solver for Flow Simulation 2012)
SRV:64bit: - [2011.07.12 15:53:58 | 000,133,992 | ---- | M] (Lenovo Group Limited) [Auto | Running] -- C:\Program Files\Lenovo\VIRTSCRL\lvvsst.exe -- (Lenovo.VIRTSCRLSVC)
SRV:64bit: - [2009.07.14 02:41:27 | 001,011,712 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2013.01.08 22:20:35 | 000,251,400 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2013.01.08 20:37:22 | 000,115,760 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2012.12.29 11:34:47 | 001,260,472 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe -- (nvUpdatusService)
SRV - [2012.12.18 15:28:08 | 000,065,192 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2012.11.23 15:20:54 | 000,021,416 | ---- | M] () [On_Demand | Stopped] -- C:\Program Files (x86)\Lenovo\System Update\SUService.exe -- (SUService)
SRV - [2012.11.09 11:21:24 | 000,160,944 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files (x86)\Skype\Updater\Updater.exe -- (SkypeUpdate)
SRV - [2012.10.09 21:19:27 | 000,079,360 | ---- | M] (SolidWorks) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\SolidWorks Shared\Service\SolidWorksLicensing.exe -- (SolidWorks Licensing Service)
SRV - [2012.10.09 21:19:26 | 001,044,816 | ---- | M] (Flexera Software, Inc.) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe -- (FLEXnet Licensing Service)
SRV - [2012.10.06 13:19:12 | 000,079,360 | ---- | M] (Autodesk) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Autodesk Shared\Service\AdskScSrv.exe -- (Autodesk Licensing Service)
SRV - [2012.09.07 08:08:50 | 000,272,272 | ---- | M] (Lenovo) [Auto | Running] -- C:\Program Files (x86)\Lenovo\Access Connections\AcSvc.exe -- (AcSvc)
SRV - [2012.09.07 08:08:48 | 000,133,008 | ---- | M] (Lenovo) [Auto | Running] -- C:\Program Files (x86)\Lenovo\Access Connections\AcPrfMgrSvc.exe -- (AcPrfMgrSvc)
SRV - [2012.08.22 15:59:57 | 000,123,320 | ---- | M] (Gemfor s.r.o.) [Auto | Running] -- C:\Program Files (x86)\T-Mobile\Web'n'walk Manager\ameisvc.exe -- (ameisvc)
SRV - [2012.08.09 20:30:04 | 000,065,536 | ---- | M] () [Auto | Running] -- C:\Program Files (x86)\Connectify\ConnectifyService.exe -- (Connectify)
SRV - [2012.05.16 05:32:00 | 001,665,120 | ---- | M] (Lenovo Group Limited) [On_Demand | Stopped] -- C:\Program Files (x86)\ThinkPad\Utilities\PWMEWSVC.exe -- (PwmEWSvc)
SRV - [2012.05.16 05:32:00 | 001,662,560 | ---- | M] (Lenovo) [On_Demand | Running] -- C:\Program Files (x86)\ThinkPad\Utilities\PWMDBSVC.exe -- (Power Manager DBC Service)
SRV - [2012.04.13 10:12:00 | 000,088,576 | ---- | M] () [Auto | Running] -- C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe -- (PassThru Service)
SRV - [2012.02.09 14:10:32 | 000,276,248 | ---- | M] (Intel Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\IntelCpHeciSvc.exe -- (cphs)
SRV - [2012.01.31 09:46:56 | 000,019,232 | ---- | M] (Autodesk, Inc.) [Auto | Running] -- C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe -- (Autodesk Content Service)
SRV - [2011.12.23 16:13:46 | 000,363,800 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe -- (UNS)
SRV - [2011.12.23 16:13:32 | 000,277,784 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe -- (LMS)
SRV - [2011.12.23 16:13:16 | 000,128,280 | ---- | M] () [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe -- (Intel(R)
SRV - [2011.12.23 16:13:04 | 000,161,560 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe -- (jhi_service)
SRV - [2011.11.25 23:22:44 | 000,312,688 | ---- | M] (Sierra Wireless, Inc.) [Auto | Running] -- C:\Program Files (x86)\Sierra Wireless Inc\Gobi\QDLService\GobiQDLService.exe -- (GobiQDLService)
SRV - [2011.11.18 13:43:58 | 000,655,912 | R--- | M] (Ericsson AB) [Auto | Running] -- C:\Program Files (x86)\Mobile Broadband drivers\WMCore\mini_WMCore.exe -- (WMCoreService)
SRV - [2011.01.07 11:28:42 | 000,446,592 | ---- | M] (Conexant Systems, Inc.) [Auto | Running] -- C:\Windows\SysWOW64\SASrv.exe -- (SAService)
SRV - [2010.03.18 12:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2010.02.19 12:37:14 | 000,517,096 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe -- (SwitchBoard)
SRV - [2009.06.10 22:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)
========== Driver Services (SafeList) ==========
DRV:64bit: - [2012.12.29 11:34:47 | 000,030,648 | ---- | M] (NVIDIA Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\nvpciflt.sys -- (nvpciflt)
DRV:64bit: - [2012.12.02 16:43:40 | 000,283,200 | ---- | M] (DT Soft Ltd) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\dtsoftbus01.sys -- (dtsoftbus01)
DRV:64bit: - [2012.11.12 11:21:10 | 000,082,816 | ---- | M] (VSO Software) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\pcouffin.sys -- (pcouffin)
DRV:64bit: - [2012.10.26 16:48:57 | 000,164,736 | ---- | M] (ITE ) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\IT9135BDA.sys -- (IT9135BDA)
DRV:64bit: - [2012.10.11 13:14:12 | 000,031,344 | ---- | M] (Connectify) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\cnnctfy2.sys -- (cnnctfy2)
DRV:64bit: - [2012.09.18 10:32:32 | 000,078,648 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\LEqdUsb.sys -- (LEqdUsb)
DRV:64bit: - [2012.09.18 10:32:32 | 000,075,064 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\LHidFilt.Sys -- (LHidFilt)
DRV:64bit: - [2012.09.18 10:32:32 | 000,061,240 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\LMouFilt.Sys -- (LMouFilt)
DRV:64bit: - [2012.09.18 10:32:32 | 000,015,160 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\LHidEqd.sys -- (LHidEqd)
DRV:64bit: - [2012.08.30 21:03:48 | 000,128,456 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\NisDrvWFP.sys -- (NisDrv)
DRV:64bit: - [2012.08.23 15:10:20 | 000,019,456 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\rdpvideominiport.sys -- (RdpVideoMiniport)
DRV:64bit: - [2012.08.23 15:07:35 | 000,057,856 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV:64bit: - [2012.08.12 16:59:52 | 000,025,448 | ---- | M] (Lenovo.) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\ApsHM64.sys -- (TPDIGIMN)
DRV:64bit: - [2012.07.23 21:48:02 | 000,148,328 | ---- | M] (Lenovo.) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\ApsX64.sys -- (Shockprf)
DRV:64bit: - [2012.07.17 18:12:08 | 000,062,784 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\HECIx64.sys -- (MEIx64)
DRV:64bit: - [2012.06.14 16:25:26 | 001,608,352 | ---- | M] (Conexant Systems Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\CHDRT64.sys -- (CnxtHdAudService)
DRV:64bit: - [2012.05.16 05:32:00 | 000,019,784 | ---- | M] (Lenovo Group Limited) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\TPPWR64V.SYS -- (TPPWRIF)
DRV:64bit: - [2012.04.11 15:27:04 | 000,042,280 | ---- | M] (Lenovo.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\ibmpmdrv.sys -- (IBMPMDRV)
DRV:64bit: - [2012.04.02 11:40:50 | 000,428,304 | ---- | M] (Synaptics Incorporated) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\SynTP.sys -- (SynTP)
DRV:64bit: - [2012.03.28 12:16:48 | 000,216,704 | ---- | M] (Ricoh co.,Ltd.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\5U877.sys -- (5U877)
DRV:64bit: - [2012.03.01 07:46:16 | 000,023,408 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\Windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
DRV:64bit: - [2012.02.20 11:36:58 | 011,471,872 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Netwsw00.sys -- (NETwNs64)
DRV:64bit: - [2012.02.02 03:52:02 | 014,659,808 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\igdkmd64.sys -- (igfx)
DRV:64bit: - [2012.01.09 11:32:40 | 000,195,584 | ---- | M] (Windows (R) Win 7 DDK provider) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\AmpPal.sys -- (AMPPALP)
DRV:64bit: - [2012.01.09 11:32:40 | 000,195,584 | ---- | M] (Windows (R) Win 7 DDK provider) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\AmpPal.sys -- (AMPPAL)
DRV:64bit: - [2012.01.05 02:58:50 | 000,786,200 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\iusb3xhc.sys -- (iusb3xhc)
DRV:64bit: - [2012.01.05 02:58:50 | 000,355,096 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\iusb3hub.sys -- (iusb3hub)
DRV:64bit: - [2012.01.05 02:58:50 | 000,016,152 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\iusb3hcs.sys -- (iusb3hcs)
DRV:64bit: - [2011.12.27 02:10:44 | 000,040,248 | ---- | M] (Lenovo Information Product(ShenZhen China) Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\psadd.sys -- (psadd)
DRV:64bit: - [2011.12.23 19:37:12 | 000,568,600 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\iaStor.sys -- (iaStor)
DRV:64bit: - [2011.12.20 16:38:36 | 000,034,200 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\intelaud.sys -- (intaud_WaveExtensible)
DRV:64bit: - [2011.12.20 16:38:36 | 000,025,496 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\iwdbus.sys -- (iwdbus)
DRV:64bit: - [2011.12.07 17:59:52 | 000,027,432 | ---- | M] (ThinkVantage Communications Utility) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\tvtvcamd.sys -- (tvtvcamd)
DRV:64bit: - [2011.12.06 18:23:10 | 000,331,264 | ---- | M] (Intel(R) Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\IntcDAud.sys -- (IntcDAud)
DRV:64bit: - [2011.10.27 09:27:52 | 000,259,688 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\RtsP2Stor.sys -- (RSP2STOR)
DRV:64bit: - [2011.08.23 20:57:24 | 000,565,352 | ---- | M] (Realtek ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Rt64win7.sys -- (RTL8167)
DRV:64bit: - [2011.05.03 01:06:12 | 000,447,872 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\cxpolar64.sys -- (CXPOLARIS)
DRV:64bit: - [2011.05.03 01:06:12 | 000,044,032 | ---- | M] (Conexant Systems, Inc.) [Kernel | Auto | Stopped] -- C:\Windows\SysNative\drivers\cxcir64.sys -- (CXIR)
DRV:64bit: - [2011.03.11 07:41:12 | 000,107,904 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:64bit: - [2011.03.11 07:41:12 | 000,027,008 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:64bit: - [2010.11.20 14:33:35 | 000,078,720 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:64bit: - [2010.06.25 16:08:10 | 000,036,928 | ---- | M] (Windows (R) Win 7 DDK provider) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\htcnprot.sys -- (htcnprot)
DRV:64bit: - [2009.12.15 13:05:42 | 000,117,248 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ewusbmdm.sys -- (hwdatacard)
DRV:64bit: - [2009.12.15 13:05:42 | 000,114,304 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ewusbdev.sys -- (hwusbdev)
DRV:64bit: - [2009.12.15 13:05:42 | 000,029,696 | ---- | M] (Huawei Tech. Co., Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ewdcsc.sys -- (Huawei)
DRV:64bit: - [2009.11.02 18:16:50 | 000,033,736 | ---- | M] (HTC, Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ANDROIDUSB.sys -- (HTCAND64)
DRV:64bit: - [2009.07.14 02:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:64bit: - [2009.07.14 02:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:64bit: - [2009.07.14 02:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:64bit: - [2009.07.14 01:35:32 | 000,012,288 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\serscan.sys -- (StillCam)
DRV:64bit: - [2009.06.10 21:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:64bit: - [2009.06.10 21:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:64bit: - [2009.06.10 21:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:64bit: - [2009.06.10 21:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
DRV - [2009.07.14 02:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount)
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-3752770136-2494076584-3171830822-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = https://klientskazona.cpost.cz/
IE - HKU\S-1-5-21-3752770136-2494076584-3171830822-1000\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKU\S-1-5-21-3752770136-2494076584-3171830822-1000\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTer ... ORM=IE8SRC
IE - HKU\S-1-5-21-3752770136-2494076584-3171830822-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-3752770136-2494076584-3171830822-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = <local>
========== FireFox ==========
FF:64bit: - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF64_11_5_502_146.dll File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\5.1.10411.0\npctrl.dll ( Microsoft Corporation)
FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~1\MICROS~4\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_5_502_146.dll ()
FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\Windows\SysWOW64\Adobe\Director\np32dsw_1168638.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=2.0.52: C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF - HKLM\Software\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater: C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.7.2: C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.7.2: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files (x86)\Microsoft Silverlight\5.1.10411.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~2\MICROS~3\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~2\MICROS~3\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.0.3: C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Users\Jakub\AppData\Local\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Users\Jakub\AppData\Local\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.)
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 15.0.1\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2012.10.06 09:35:54 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 15.0.1\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Thunderbird 17.0.2\extensions\\Components: C:\Program Files (x86)\Mozilla Thunderbird\components [2013.01.08 20:36:20 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Thunderbird 17.0.2\extensions\\Plugins: C:\Program Files (x86)\Mozilla Thunderbird\plugins
FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Thunderbird 17.0.2\extensions\\Components: C:\Program Files (x86)\Mozilla Thunderbird\components [2013.01.08 20:36:20 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Thunderbird 17.0.2\extensions\\Plugins: C:\Program Files (x86)\Mozilla Thunderbird\plugins
[2012.10.06 10:06:18 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Jakub\AppData\Roaming\Mozilla\Extensions
[2012.10.25 17:39:34 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Jakub\AppData\Roaming\Mozilla\Firefox\Profiles\2no0m5di.Nepojmenovaný\extensions
[2012.10.06 09:35:54 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\extensions
[2012.09.06 02:26:03 | 000,266,720 | ---- | M] (Mozilla Foundation) -- C:\Program Files (x86)\mozilla firefox\components\browsercomps.dll
[2012.09.06 05:25:45 | 000,002,208 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\heureka-cz.xml
[2012.09.06 05:25:45 | 000,000,638 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\jyxo-cz.xml
[2012.09.06 05:25:45 | 000,001,367 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\seznam-cz.xml
[2012.09.06 05:25:45 | 000,000,654 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\slunecnice-cz.xml
[2012.09.06 05:25:45 | 000,001,179 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\wikipedia-cz.xml
========== Chrome ==========
CHR - homepage: http://www.seznam.cz/
CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}sourceid=chrome&ie={inputEncoding}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&hl={language}&q={searchTerms}&sugkey={google:suggestAPIKeyParameter}
CHR - homepage: http://www.seznam.cz/
CHR - plugin: Shockwave Flash (Enabled) = C:\Users\Jakub\AppData\Local\Google\Chrome\Application\24.0.1312.52\PepperFlash\pepflashplayer.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_4_402_287.dll
CHR - plugin: Chrome Remote Desktop Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Users\Jakub\AppData\Local\Google\Chrome\Application\24.0.1312.52\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Disabled) = C:\Users\Jakub\AppData\Local\Google\Chrome\Application\24.0.1312.52\pdf.dll
CHR - plugin: Screen Capture Plugin (Enabled) = C:\Users\Jakub\AppData\Local\Google\Chrome\User Data\Default\Extensions\alelhddbbhepgpmgidjdcjakblofbmce\3.3.7_0\plugins/screen_capture.dll
CHR - plugin: Adobe Acrobat (Enabled) = C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll
CHR - plugin: Microsoft Office 2010 (Enabled) = C:\PROGRA~2\MICROS~3\Office14\NPAUTHZ.DLL
CHR - plugin: Microsoft Office 2010 (Enabled) = C:\PROGRA~2\MICROS~3\Office14\NPSPWRAP.DLL
CHR - plugin: Intel\u00AE Identity Protection Technology (Enabled) = C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll
CHR - plugin: Intel\u00AE Identity Protection Technology (Enabled) = C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll
CHR - plugin: Java(TM) Platform SE 7 U7 (Enabled) = C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll
CHR - plugin: Java Deployment Toolkit 7.0.70.11 (Enabled) = C:\Windows\SysWOW64\npDeployJava1.dll
CHR - plugin: Silverlight Plug-In (Enabled) = C:\Program Files (x86)\Microsoft Silverlight\5.1.10411.0\npctrl.dll
CHR - plugin: VLC Web Plugin (Enabled) = C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
CHR - plugin: Google Update (Enabled) = C:\Users\Jakub\AppData\Local\Google\Update\1.3.21.123\npGoogleUpdate3.dll
CHR - Extension: Awesome Screenshot: Capture & Annotate = C:\Users\Jakub\AppData\Local\Google\Chrome\User Data\Default\Extensions\alelhddbbhepgpmgidjdcjakblofbmce\3.4.4_0\
CHR - Extension: YouTube = C:\Users\Jakub\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_1\
CHR - Extension: Vyhled\u00E1v\u00E1n\u00ED Google = C:\Users\Jakub\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_1\
CHR - Extension: Google Reader = C:\Users\Jakub\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjjhlfkghdhmijklfnahfkpgmhcmfgcm\4.4_0\
CHR - Extension: Gmail = C:\Users\Jakub\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1\
O1 HOSTS File: ([2009.06.10 22:00:26 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O2:64bit: - BHO: (TrueSuite Browser Helper Object) - {8590886E-EC8C-43C1-A32C-E4C2B0B6395B} - C:\Program Files\Lenovo Fingerprint Reader\IEBHO.dll (AuthenTec Inc.)
O2 - BHO: (no name) - {32F66A28-7614-11D4-BD11-00104BD3F987} - No CLSID value found.
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (TrueSuite Browser Helper Object) - {8590886E-EC8C-43C1-A32C-E4C2B0B6395B} - C:\Program Files\Lenovo Fingerprint Reader\x86\IEBHO.dll (AuthenTec Inc.)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O4:64bit: - HKLM..\Run: [] File not found
O4:64bit: - HKLM..\Run: [cAudioFilterAgent] C:\Program Files\CONEXANT\cAudioFilterAgent\CAudioFilterAgent64.exe (Conexant Systems, Inc.)
O4:64bit: - HKLM..\Run: [ForteConfig] C:\Program Files\CONEXANT\ForteConfig\fmapp.exe ()
O4:64bit: - HKLM..\Run: [HotKeysCmds] C:\Windows\SysNative\hkcmd.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [LENOVO.TPKNRRES] C:\Program Files\Lenovo\Communications Utility\TpKnrres.exe (Lenovo Group Limited)
O4:64bit: - HKLM..\Run: [MSC] C:\Program Files\Microsoft Security Client\msseces.exe (Microsoft Corporation)
O4:64bit: - HKLM..\Run: [Persistence] C:\Windows\SysNative\igfxpers.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [SmartAudio] C:\Program Files\CONEXANT\SAII\SACpl.exe (Conexant Systems, Inc.)
O4:64bit: - HKLM..\Run: [TpShocks] C:\Windows\SysNative\TpShocks.exe (Lenovo.)
O4 - HKLM..\Run: [] File not found
O4 - HKLM..\Run: [IMSS] C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe (Intel Corporation)
O4 - HKLM..\Run: [PWMTRV] C:\Program Files (x86)\ThinkPad\Utilities\PWMTR64V.DLL (Lenovo Group Limited)
O4 - HKLM..\Run: [SwitchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [USB3MON] C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe (Intel Corporation)
O4 - HKU\S-1-5-19..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-20..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-21-3752770136-2494076584-3171830822-1000..\Run: [AdobeBridge] File not found
O4 - HKU\S-1-5-21-3752770136-2494076584-3171830822-1000..\Run: [Akamai NetSession Interface] C:\Users\Jakub\AppData\Local\Akamai\netsession_win.exe (Akamai Technologies, Inc.)
O4 - HKU\S-1-5-21-3752770136-2494076584-3171830822-1000..\Run: [DAEMON Tools Lite] C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe (DT Soft Ltd)
O4 - HKU\S-1-5-21-3752770136-2494076584-3171830822-1000..\Run: [HP Officejet Pro 8600 (NET)] C:\Program Files\HP\HP Officejet Pro 8600\Bin\ScanToPCActivationApp.exe (Hewlett-Packard Co.)
O4 - HKU\S-1-5-21-3752770136-2494076584-3171830822-1000..\Run: [RESTART_STICKY_NOTES] C:\Windows\System32\StikyNot.exe File not found
O4 - HKU\S-1-5-21-3752770136-2494076584-3171830822-1003..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-19..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found
O4 - HKU\S-1-5-20..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found
O4 - HKU\S-1-5-21-3752770136-2494076584-3171830822-1003..\RunOnce: [Lenovo.ShowBand] C:\Program Files\Lenovo\SimpleTap DeskBand\ShowBand.exe (Lenovo)
O4 - HKU\S-1-5-21-3752770136-2494076584-3171830822-1003..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O7 - HKU\S-1-5-21-3752770136-2494076584-3171830822-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: =
O1364bit: - gopher Prefix: missing
O13 - gopher Prefix: missing
O15 - HKU\S-1-5-21-3752770136-2494076584-3171830822-1000\..Trusted Domains: mfcr.cz ([adisepo] https in Důvěryhodné servery)
O15 - HKU\S-1-5-21-3752770136-2494076584-3171830822-1000\..Trusted Domains: postsignum.cz ([www] https in Důvěryhodné servery)
O16 - DPF: {F680B28A-3AEE-4C88-93ED-45AE9215C128} https://adisepo.mfcr.cz/adistc/adis/idp ... tsignx.cab (CryptSignX Control)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.2.222
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{03E9C21A-DFE9-C8BC-ECE3-5614C4AF73B1}: NameServer = 93.153.117.1 93.153.117.33
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{689A7833-2BB6-423C-A25B-C00FA2605F55}: NameServer = 192.168.140.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{726D6A6E-E50E-47DC-B6D9-BFE605A43D74}: DhcpNameServer = 192.168.2.222
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{98CA78AC-1E85-49F9-8FD9-1F1262820BA0}: DhcpNameServer = 192.168.1.1
O18:64bit: - Protocol\Handler\mso-offdap11 - No CLSID value found
O18:64bit: - Protocol\Handler\skype4com - No CLSID value found
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O20:64bit: - AppInit_DLLs: (C:\Windows\system32\nvinitx.dll) - C:\Windows\SysNative\nvinitx.dll (NVIDIA Corporation)
O20 - AppInit_DLLs: (C:\Windows\SysWOW64\nvinit.dll) - C:\Windows\SysWOW64\nvinit.dll (NVIDIA Corporation)
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\Windows\SysWow64\userinit.exe (Microsoft Corporation)
O20:64bit: - Winlogon\Notify\igfxcui: DllName - (igfxdev.dll) - C:\Windows\SysNative\igfxdev.dll (Intel Corporation)
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O33 - MountPoints2\{840375f7-113e-11e2-9aa9-685d4342d898}\Shell - "" = AutoRun
O33 - MountPoints2\{840375f7-113e-11e2-9aa9-685d4342d898}\Shell\AutoRun\command - "" = F:\AutoRun.exe
O34 - HKLM BootExecute: (autocheck autochk *)
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)
CREATERESTOREPOINT
Restore point Set: OTL Restore Point
Drivers32:64bit: msacm.l3acm - C:\Windows\System32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.l3acm - C:\Windows\SysWOW64\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: vidc.cvid - C:\Windows\SysWow64\iccvid.dll (Radius Inc.)
PhysicalDisk0 MBR saved to C:\PhysicalMBR.bin
========== Files/Folders - Created Within 7 Days ==========
[2013.01.20 17:23:23 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\Jakub\Desktop\OTL.exe
[2013.01.20 12:56:06 | 000,000,000 | ---D | C] -- C:\Program Files\trend micro
[2013.01.20 12:56:06 | 000,000,000 | ---D | C] -- C:\rsit
[2013.01.18 13:07:37 | 000,000,000 | ---D | C] -- C:\Users\Jakub\Desktop\školni vylet
[2013.01.18 11:33:50 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Math3D
[2013.01.18 11:31:16 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Design Science
[2013.01.15 19:19:40 | 000,000,000 | ---D | C] -- C:\Users\Jakub\Desktop\cashondeliverycesky
[2013.01.15 14:14:18 | 000,000,000 | ---D | C] -- C:\Users\Jakub\Desktop\Kominy
[2013.01.13 20:28:42 | 000,000,000 | ---D | C] -- C:\Users\Jakub\AppData\Roaming\dvdcss
[2013.01.13 19:20:19 | 000,000,000 | ---D | C] -- C:\Users\Jakub\Desktop\detweb
[2012.11.12 11:21:10 | 000,082,816 | ---- | C] (VSO Software) -- C:\Users\Jakub\AppData\Roaming\pcouffin.sys
[2012.10.27 17:25:01 | 000,695,296 | ---- | C] (AnjoCaido) -- C:\Users\Jakub\AppData\Roaming\MinecraftSP.exe
========== Files - Modified Within 7 Days ==========
[2013.01.20 17:29:14 | 000,000,512 | ---- | M] () -- C:\PhysicalMBR.bin
[2013.01.20 17:23:28 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Jakub\Desktop\OTL.exe
[2013.01.20 17:20:00 | 000,000,914 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2013.01.20 16:44:00 | 000,000,962 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-3752770136-2494076584-3171830822-1000UA.job
[2013.01.20 10:44:00 | 000,000,910 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-3752770136-2494076584-3171830822-1000Core.job
[2013.01.20 10:16:08 | 000,014,816 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2013.01.20 10:16:08 | 000,014,816 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2013.01.20 10:13:17 | 001,709,266 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2013.01.20 10:13:17 | 000,713,380 | ---- | M] () -- C:\Windows\SysNative\perfh005.dat
[2013.01.20 10:13:17 | 000,699,084 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2013.01.20 10:13:17 | 000,158,158 | ---- | M] () -- C:\Windows\SysNative\perfc005.dat
[2013.01.20 10:13:17 | 000,139,130 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2013.01.20 10:09:09 | 000,001,988 | ---- | M] () -- C:\Users\Jakub\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Sledovat výstrahy inkoustu - HP Officejet Pro 8600 (Síť).lnk
[2013.01.20 10:09:05 | 000,000,828 | ---- | M] () -- C:\Windows\tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon.job
[2013.01.20 10:08:56 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2013.01.20 10:08:51 | 1828,130,815 | -HS- | M] () -- C:\hiberfil.sys
[2013.01.19 19:29:00 | 000,000,830 | ---- | M] () -- C:\Windows\tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d.job
[2013.01.19 00:51:07 | 005,199,216 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
[2013.01.18 11:33:50 | 000,002,563 | ---- | M] () -- C:\Users\Public\Desktop\Math3D.lnk
[2013.01.13 21:05:46 | 000,000,779 | ---- | M] () -- C:\Users\Jakub\Desktop\.htaccess
[2013.01.13 20:46:46 | 000,002,369 | ---- | M] () -- C:\Users\Jakub\Desktop\Google Chrome.lnk
[2013.01.13 19:52:31 | 058,946,287 | ---- | M] () -- C:\Users\Jakub\Desktop\PSD-dětský-web.zip
========== Files Created - No Company Name ==========
[2013.01.20 17:29:14 | 000,000,512 | ---- | C] () -- C:\PhysicalMBR.bin
[2013.01.18 11:33:50 | 000,002,563 | ---- | C] () -- C:\Users\Public\Desktop\Math3D.lnk
[2013.01.13 21:05:46 | 000,000,779 | ---- | C] () -- C:\Users\Jakub\Desktop\.htaccess
[2013.01.13 19:49:14 | 058,946,287 | ---- | C] () -- C:\Users\Jakub\Desktop\PSD-dětský-web.zip
[2012.12.28 14:59:16 | 000,000,057 | ---- | C] () -- C:\ProgramData\Ament.ini
[2012.12.11 22:00:42 | 001,148,416 | ---- | C] () -- C:\Windows\SysWow64\QtNetwork4.dll
[2012.12.11 22:00:42 | 000,398,336 | ---- | C] () -- C:\Windows\SysWow64\QtXml4.dll
[2012.12.11 22:00:42 | 000,021,584 | ---- | C] () -- C:\Windows\SysWow64\wkll.exe
[2012.12.11 22:00:40 | 009,565,184 | ---- | C] () -- C:\Windows\SysWow64\QtGui4.dll
[2012.12.11 22:00:40 | 002,417,664 | ---- | C] () -- C:\Windows\SysWow64\QtCore4.dll
[2012.12.11 22:00:40 | 000,004,065 | ---- | C] () -- C:\Windows\SysWow64\pol.dll
[2012.12.11 22:00:39 | 003,550,834 | ---- | C] () -- C:\Windows\SysWow64\msidentmn.exe
[2012.12.11 22:00:39 | 000,181,248 | ---- | C] () -- C:\Windows\SysWow64\initpentp.exe
[2012.12.11 22:00:39 | 000,076,800 | ---- | C] () -- C:\Windows\SysWow64\libgnurx-0.dll
[2012.12.11 22:00:39 | 000,043,008 | ---- | C] () -- C:\Windows\SysWow64\libgcc_s_dw2-1.dll
[2012.12.11 22:00:39 | 000,024,110 | ---- | C] () -- C:\Windows\SysWow64\mingwm10.dll
[2012.12.11 21:47:48 | 000,004,608 | ---- | C] () -- C:\Users\Jakub\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2012.11.12 11:21:10 | 000,099,384 | ---- | C] () -- C:\Users\Jakub\AppData\Roaming\inst.exe
[2012.11.12 11:21:10 | 000,007,859 | ---- | C] () -- C:\Users\Jakub\AppData\Roaming\pcouffin.cat
[2012.11.12 11:21:10 | 000,001,167 | ---- | C] () -- C:\Users\Jakub\AppData\Roaming\pcouffin.inf
[2012.11.12 11:16:24 | 000,001,057 | ---- | C] () -- C:\Users\Jakub\AppData\Roaming\vso_ts_preview.xml
[2012.10.22 19:14:56 | 000,000,132 | ---- | C] () -- C:\Users\Jakub\AppData\Roaming\Adobe Formát PNG CS6 – předvolby
[2012.10.21 11:04:35 | 000,427,999 | ---- | C] () -- C:\Users\Jakub\.websiteauditor.properties
[2012.10.21 10:42:23 | 000,182,845 | ---- | C] () -- C:\Users\Jakub\.spyglass.properties
[2012.10.20 21:15:00 | 000,126,974 | ---- | C] () -- C:\Users\Jakub\.ranktracker.properties
[2012.10.09 21:26:36 | 000,000,000 | ---- | C] () -- C:\Windows\eDrawingOfficeAutomator.INI
[2012.10.06 15:44:55 | 000,210,032 | ---- | C] () -- C:\Windows\SysWow64\DBCLIENT.DLL
[2012.10.06 13:26:27 | 001,688,488 | ---- | C] () -- C:\Windows\SysWow64\PerfStringBackup.INI
[2012.10.06 08:52:38 | 000,000,000 | -H-- | C] () -- C:\ProgramData\DP45977C.lfl
[2012.10.06 08:51:07 | 000,735,796 | ---- | C] () -- C:\Windows\SysWow64\igkrng700.bin
[2012.10.06 08:51:05 | 000,561,508 | ---- | C] () -- C:\Windows\SysWow64\igfcg700m.bin
[2012.10.06 08:51:02 | 000,058,880 | ---- | C] () -- C:\Windows\SysWow64\igdde32.dll
[2012.10.06 08:50:59 | 013,007,360 | ---- | C] () -- C:\Windows\SysWow64\ig7icd32.dll
[2012.10.05 14:57:14 | 000,035,404 | R--- | C] () -- C:\Windows\ConnectionProfiles.dat
[2012.01.03 08:28:06 | 002,570,286 | ---- | C] () -- C:\Windows\SysWow64\abgx360.exe
[2011.12.08 15:14:58 | 000,001,536 | ---- | C] () -- C:\Windows\SysWow64\IusEventLog.dll
========== ZeroAccess Check ==========
[2009.07.14 05:55:00 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini
[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64
[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
"" = C:\Windows\SysNative\shell32.dll -- [2012.06.09 06:43:10 | 014,172,672 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2012.06.09 05:41:00 | 012,873,728 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\fastprox.dll -- [2012.08.21 14:11:31 | 000,857,088 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2012.08.21 14:37:44 | 000,636,928 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\wbemess.dll -- [2012.08.21 14:08:38 | 000,453,120 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
========== LOP Check ==========
[2012.11.17 19:04:41 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\.minecraft
[2012.11.17 19:04:08 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\.minecraft[VCHbackup]
[2013.01.08 10:58:06 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\abgx360
[2012.10.06 13:36:39 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\Ansys
[2012.12.01 20:22:13 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\Ashampoo
[2012.12.08 13:53:21 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\Autodesk
[2012.12.16 12:55:33 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\DAEMON Tools Lite
[2012.10.09 21:25:43 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\DassaultSystemes
[2012.11.03 09:49:54 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\EDrawings
[2012.10.06 10:37:22 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\GHISLER
[2012.12.02 16:28:49 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\ImgBurn
[2012.10.06 13:09:43 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\Leadertech
[2012.10.05 15:16:19 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\LSC
[2012.11.19 19:08:46 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\MOBILedit
[2013.01.02 18:53:49 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\Opera
[2012.11.04 11:20:06 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\Outlook
[2012.10.06 15:50:06 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\ProgeCAD
[2012.10.05 15:15:38 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\PwrMgr
[2012.10.05 14:56:37 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\Sierra Wireless
[2012.10.18 14:41:18 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\systweak
[2012.10.06 17:44:31 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\TeamViewer
[2012.10.06 10:10:39 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\Thunderbird
[2012.12.19 21:21:49 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\TransMemory_Secure
[2012.10.06 11:06:29 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\VitySoft
[2013.01.08 10:30:52 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\Vso
[2012.10.09 16:19:33 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\Zoner
========== Purity Check ==========
========== Custom Scans ==========
< >
[2009.07.14 06:08:49 | 000,000,006 | -H-- | C] () -- C:\Windows\Tasks\SA.DAT
[2009.07.14 06:08:49 | 000,032,538 | ---- | C] () -- C:\Windows\Tasks\SCHEDLGU.TXT
[2012.10.06 08:50:52 | 000,000,828 | ---- | C] () -- C:\Windows\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon.job
[2012.10.06 08:50:52 | 000,000,830 | ---- | C] () -- C:\Windows\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d.job
[2012.10.06 09:34:38 | 000,000,910 | ---- | C] () -- C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3752770136-2494076584-3171830822-1000Core.job
[2012.10.06 09:34:38 | 000,000,962 | ---- | C] () -- C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3752770136-2494076584-3171830822-1000UA.job
[2012.10.06 10:10:08 | 000,000,914 | ---- | C] () -- C:\Windows\Tasks\Adobe Flash Player Updater.job
< >
< MD5 for: ATAPI.SYS >
[2009.07.14 02:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\SysNative\drivers\atapi.sys
[2009.07.14 02:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\SysNative\DriverStore\FileRepository\mshdc.inf_amd64_neutral_aad30bdeec04ea5e\atapi.sys
[2009.07.14 02:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\winsxs\amd64_mshdc.inf_31bf3856ad364e35_6.1.7601.17514_none_3b5e2d89382958dd\atapi.sys
< MD5 for: AUTOCHK.EXE >
[2010.11.20 14:24:26 | 000,777,728 | ---- | M] (Microsoft Corporation) MD5=3B536A8BEC3B4F23FFDFD78B11A2AB93 -- C:\Windows\SysNative\autochk.exe
[2010.11.20 14:24:26 | 000,777,728 | ---- | M] (Microsoft Corporation) MD5=3B536A8BEC3B4F23FFDFD78B11A2AB93 -- C:\Windows\winsxs\amd64_microsoft-windows-autochk_31bf3856ad364e35_6.1.7601.17514_none_4019f2b8d860ad30\autochk.exe
[2010.11.20 13:16:54 | 000,668,160 | ---- | M] (Microsoft Corporation) MD5=F88A52EB62019D6A62FDD9E08034DBD8 -- C:\Windows\SysWOW64\autochk.exe
[2010.11.20 13:16:54 | 000,668,160 | ---- | M] (Microsoft Corporation) MD5=F88A52EB62019D6A62FDD9E08034DBD8 -- C:\Windows\winsxs\x86_microsoft-windows-autochk_31bf3856ad364e35_6.1.7601.17514_none_e3fb573520033bfa\autochk.exe
< MD5 for: CDROM.SYS >
[2010.11.20 10:19:21 | 000,147,456 | ---- | M] (Microsoft Corporation) MD5=F036CE71586E93D94DAB220D7BDF4416 -- C:\Windows\SysNative\drivers\cdrom.sys
[2010.11.20 10:19:21 | 000,147,456 | ---- | M] (Microsoft Corporation) MD5=F036CE71586E93D94DAB220D7BDF4416 -- C:\Windows\SysNative\DriverStore\FileRepository\cdrom.inf_amd64_neutral_0b3d0d1942ab684b\cdrom.sys
[2010.11.20 10:19:21 | 000,147,456 | ---- | M] (Microsoft Corporation) MD5=F036CE71586E93D94DAB220D7BDF4416 -- C:\Windows\winsxs\amd64_cdrom.inf_31bf3856ad364e35_6.1.7601.17514_none_bdcf6151ba66f48b\cdrom.sys
< MD5 for: EXPLORER.EXE >
[2011.02.26 07:23:14 | 002,870,272 | ---- | M] (Microsoft Corporation) MD5=0862495E0C825893DB75EF44FAEA8E93 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16768_none_adc24107935a7e25\explorer.exe
[2011.02.26 06:19:21 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=0FB9C74046656D1579A64660AD67B746 -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.21669_none_ba87e574ddfe652d\explorer.exe
[2011.02.25 07:19:30 | 002,871,808 | ---- | M] (Microsoft Corporation) MD5=332FEAB1435662FC6C672E25BEB37BE3 -- C:\Windows\explorer.exe
[2011.02.25 07:19:30 | 002,871,808 | ---- | M] (Microsoft Corporation) MD5=332FEAB1435662FC6C672E25BEB37BE3 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17567_none_afa79dc39081d0ba\explorer.exe
[2011.02.26 07:14:34 | 002,871,808 | ---- | M] (Microsoft Corporation) MD5=3B69712041F3D63605529BD66DC00C48 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.21669_none_b0333b22a99da332\explorer.exe
[2010.11.20 13:17:09 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=40D777B7A95E00593EB1568C68514493 -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17514_none_ba2f56d3c4bcbafb\explorer.exe
[2009.08.03 07:19:07 | 002,868,224 | ---- | M] (Microsoft Corporation) MD5=700073016DAC1C3D2E7E2CE4223334B6 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20500_none_ae84b558ac4eb41c\explorer.exe
[2011.02.25 06:30:54 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=8B88EBBB05A0E56B7DCC708498C02B3E -- C:\Windows\SysWOW64\explorer.exe
[2011.02.25 06:30:54 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=8B88EBBB05A0E56B7DCC708498C02B3E -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17567_none_b9fc4815c4e292b5\explorer.exe
[2009.10.31 07:34:59 | 002,870,272 | ---- | M] (Microsoft Corporation) MD5=9AAAEC8DAC27AA17B053E6352AD233AE -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16450_none_adc508f19359a007\explorer.exe
[2010.11.20 14:24:45 | 002,872,320 | ---- | M] (Microsoft Corporation) MD5=AC4C51EB24AA95B77F705AB159189E24 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17514_none_afdaac81905bf900\explorer.exe
[2009.10.31 07:38:38 | 002,870,272 | ---- | M] (Microsoft Corporation) MD5=B8EC4BD49CE8F6FC457721BFC210B67F -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20563_none_ae46d6aeac7ca7c7\explorer.exe
[2009.07.14 02:39:10 | 002,868,224 | ---- | M] (Microsoft Corporation) MD5=C235A51CB740E45FFA0EBFB9BAFCDA64 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16385_none_ada998b9936d7566\explorer.exe
[2011.02.26 07:26:45 | 002,870,784 | ---- | M] (Microsoft Corporation) MD5=E38899074D4951D31B4040E994DD7C8D -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20910_none_ae79ed04ac56c4a9\explorer.exe
[2009.08.03 07:17:37 | 002,868,224 | ---- | M] (Microsoft Corporation) MD5=F170B4A061C9E026437B193B4D571799 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16404_none_adff19b5932d79ae\explorer.exe
< MD5 for: HAL.DLL >
[2010.11.20 14:33:34 | 000,263,040 | ---- | M] (Microsoft Corporation) MD5=CFB8C673F9188F99466E76C6972191E0 -- C:\Windows\SysNative\hal.dll
[2010.11.20 14:33:34 | 000,263,040 | ---- | M] (Microsoft Corporation) MD5=CFB8C673F9188F99466E76C6972191E0 -- C:\Windows\winsxs\amd64_microsoft-windows-hal_31bf3856ad364e35_6.1.7601.17514_none_094ef8137049c196\hal.dll
< MD5 for: SCECLI.DLL >
[2010.11.20 13:21:04 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=8124944EC89D6A1815E4E53F5B96AAF4 -- C:\Windows\SysWOW64\scecli.dll
[2010.11.20 13:21:04 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=8124944EC89D6A1815E4E53F5B96AAF4 -- C:\Windows\winsxs\wow64_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7601.17514_none_a088921d241bbb4e\scecli.dll
[2010.11.20 14:27:25 | 000,232,960 | ---- | M] (Microsoft Corporation) MD5=ED78427259134C63ED69804D2132B86C -- C:\Windows\SysNative\scecli.dll
[2010.11.20 14:27:25 | 000,232,960 | ---- | M] (Microsoft Corporation) MD5=ED78427259134C63ED69804D2132B86C -- C:\Windows\winsxs\amd64_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7601.17514_none_9633e7caefbaf953\scecli.dll
< MD5 for: SERVICES.EXE >
[2009.07.14 02:39:37 | 000,328,704 | ---- | M] (Microsoft Corporation) MD5=24ACB7E5BE595468E3B9AA488B9B4FCB -- C:\Windows\SysNative\services.exe
[2009.07.14 02:39:37 | 000,328,704 | ---- | M] (Microsoft Corporation) MD5=24ACB7E5BE595468E3B9AA488B9B4FCB -- C:\Windows\winsxs\amd64_microsoft-windows-s..s-servicecontroller_31bf3856ad364e35_6.1.7600.16385_none_2b54b20ee6fa07b1\services.exe
< MD5 for: SVCHOST.EXE >
[2009.07.14 02:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\SysWOW64\svchost.exe
[2009.07.14 02:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\winsxs\x86_microsoft-windows-services-svchost_31bf3856ad364e35_6.1.7600.16385_none_b591afc466a15356\svchost.exe
[2009.07.14 02:39:46 | 000,027,136 | ---- | M] (Microsoft Corporation) MD5=C78655BC80301D76ED4FEF1C1EA40A7D -- C:\Windows\SysNative\svchost.exe
[2009.07.14 02:39:46 | 000,027,136 | ---- | M] (Microsoft Corporation) MD5=C78655BC80301D76ED4FEF1C1EA40A7D -- C:\Windows\winsxs\amd64_microsoft-windows-services-svchost_31bf3856ad364e35_6.1.7600.16385_none_11b04b481efec48c\svchost.exe
< MD5 for: TCPIP.SYS >
[2012.10.03 18:56:54 | 001,914,248 | ---- | M] (Microsoft Corporation) MD5=37608401DFDB388CAF66917F6B2D6FB0 -- C:\Windows\SysNative\drivers\tcpip.sys
[2012.10.03 18:56:54 | 001,914,248 | ---- | M] (Microsoft Corporation) MD5=37608401DFDB388CAF66917F6B2D6FB0 -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.17964_none_110e0fbd7d2e4b88\tcpip.sys
[2010.11.20 14:33:57 | 001,924,480 | ---- | M] (Microsoft Corporation) MD5=509383E505C973ED7534A06B3D19688D -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.17514_none_114417c17d05cb37\tcpip.sys
[2012.08.22 19:06:13 | 001,901,936 | ---- | M] (Microsoft Corporation) MD5=7880A26B7D3B96FDA8EFD9F985036B1D -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.22097_none_117a13de9661c145\tcpip.sys
[2012.03.30 11:26:36 | 001,901,424 | ---- | M] (Microsoft Corporation) MD5=885B202006EE17AE99B9FBCEC9AF88C9 -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.21954_none_11a27a8e9643d23a\tcpip.sys
[2012.03.30 12:35:47 | 001,918,320 | ---- | M] (Microsoft Corporation) MD5=ACB82BDA8F46C84F465C1AFA517DC4B9 -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.17802_none_114ceccb7cff740d\tcpip.sys
[2012.10.03 18:44:29 | 001,902,472 | ---- | M] (Microsoft Corporation) MD5=D5707FC2300AA5B04B7BFE86D40C0133 -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.22124_none_11c2c45a962baed0\tcpip.sys
[2012.08.22 19:12:50 | 001,913,200 | ---- | M] (Microsoft Corporation) MD5=F782CAD3CEDBB3F9FFE3BF2775D92DDC -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.17939_none_113380f37d117668\tcpip.sys
< MD5 for: USERINIT.EXE >
[2010.11.20 13:17:48 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=61AC3EFDFACFDD3F0F11DD4FD4044223 -- C:\Windows\SysWOW64\userinit.exe
[2010.11.20 13:17:48 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=61AC3EFDFACFDD3F0F11DD4FD4044223 -- C:\Windows\winsxs\x86_microsoft-windows-userinit_31bf3856ad364e35_6.1.7601.17514_none_de3024012ff21116\userinit.exe
[2010.11.20 14:25:24 | 000,030,720 | ---- | M] (Microsoft Corporation) MD5=BAFE84E637BF7388C96EF48D4D3FDD53 -- C:\Windows\SysNative\userinit.exe
[2010.11.20 14:25:24 | 000,030,720 | ---- | M] (Microsoft Corporation) MD5=BAFE84E637BF7388C96EF48D4D3FDD53 -- C:\Windows\winsxs\amd64_microsoft-windows-userinit_31bf3856ad364e35_6.1.7601.17514_none_3a4ebf84e84f824c\userinit.exe
< MD5 for: WINLOGON.EXE >
[2010.11.20 14:25:30 | 000,390,656 | ---- | M] (Microsoft Corporation) MD5=1151B1BAA6F350B1DB6598E0FEA7C457 -- C:\Windows\SysNative\winlogon.exe
[2010.11.20 14:25:30 | 000,390,656 | ---- | M] (Microsoft Corporation) MD5=1151B1BAA6F350B1DB6598E0FEA7C457 -- C:\Windows\winsxs\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7601.17514_none_cde90685eb910636\winlogon.exe
< >
< %systemroot%*.* /U /s >
[7 C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp files -> C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp -> ]
[13 C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\*.tmp files -> C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\*.tmp -> ]
[36 C:\Windows\Installer\*.tmp files -> C:\Windows\Installer\*.tmp -> ]
[6 C:\Windows\Temp\*.tmp files -> C:\Windows\Temp\*.tmp -> ]
< %SYSTEMDRIVE%\*.exe >
< %ALLUSERSPROFILE%\Application Data\*. >
< %ALLUSERSPROFILE%\Application Data\*.exe /s >
< %APPDATA%\*. >
[2012.11.17 19:04:41 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\.minecraft
[2012.11.17 19:04:08 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\.minecraft[VCHbackup]
[2013.01.08 10:58:06 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\abgx360
[2012.12.11 21:47:47 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\Adobe
[2012.10.06 13:36:39 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\Ansys
[2012.12.01 20:22:13 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\Ashampoo
[2012.12.08 13:53:21 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\Autodesk
[2012.12.16 12:55:33 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\DAEMON Tools Lite
[2012.10.09 21:25:43 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\DassaultSystemes
[2013.01.13 20:28:42 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\dvdcss
[2012.11.03 09:49:54 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\EDrawings
[2012.10.06 10:37:22 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\GHISLER
[2012.10.14 09:25:43 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\Google Chrome Backup
[2012.10.09 21:26:34 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\help_images_otherUI
[2012.10.09 16:08:16 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\HP
[2013.01.04 15:46:35 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\HpUpdate
[2012.10.05 14:53:46 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\Identities
[2012.12.02 16:28:49 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\ImgBurn
[2012.10.05 14:58:06 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\InstallShield
[2012.10.05 15:02:30 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\Intel
[2012.10.06 13:09:43 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\Leadertech
[2012.10.06 13:10:20 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\Logishrd
[2012.10.06 13:09:45 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\Logitech
[2012.10.05 15:16:19 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\LSC
[2012.10.05 15:16:11 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\Macromedia
[2012.10.10 17:53:28 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\Mathematica
[2009.07.14 16:36:31 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\Media Center Programs
[2012.12.04 17:41:33 | 000,000,000 | --SD | M] -- C:\Users\Jakub\AppData\Roaming\Microsoft
[2012.11.19 19:08:46 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\MOBILedit
[2012.10.06 10:06:18 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\Mozilla
[2012.10.06 11:09:57 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\NVIDIA
[2013.01.02 18:53:49 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\Opera
[2012.11.04 11:20:06 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\Outlook
[2012.10.06 15:50:06 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\ProgeCAD
[2012.10.08 15:55:17 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\PSpad
[2012.10.05 15:15:38 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\PwrMgr
[2012.10.05 14:56:37 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\Sierra Wireless
[2013.01.20 17:19:21 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\Skype
[2012.11.28 14:10:23 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\SolidWorks
[2012.10.18 14:41:18 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\systweak
[2012.10.06 17:44:31 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\TeamViewer
[2012.10.06 10:10:39 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\Thunderbird
[2012.12.19 21:21:49 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\TransMemory_Secure
[2012.10.06 11:06:29 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\VitySoft
[2013.01.17 15:43:26 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\vlc
[2013.01.08 10:30:52 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\Vso
[2012.10.06 11:01:05 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\WinRAR
[2012.10.09 16:19:33 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\Zoner
< %APPDATA%\*.exe /s >
[2012.11.12 11:21:10 | 000,099,384 | ---- | M] () -- C:\Users\Jakub\AppData\Roaming\inst.exe
[2012.03.08 10:12:53 | 000,695,296 | ---- | M] (AnjoCaido) -- C:\Users\Jakub\AppData\Roaming\MinecraftSP.exe
[2012.10.21 18:59:39 | 000,053,664 | ---- | M] (Adobe Systems Inc.) -- C:\Users\Jakub\AppData\Roaming\Macromedia\Flash Player\www.macromedia.com\bin\airappinstaller\airappinstaller.exe
[2012.10.05 15:12:49 | 000,010,134 | R--- | M] () -- C:\Users\Jakub\AppData\Roaming\Microsoft\Installer\{1C83CB66-D345-4D6C-95A2-63A03269ADA0}\ARPPRODUCTICON.exe
[2012.12.16 11:06:03 | 000,053,248 | R--- | M] (Acresso Software Inc.) -- C:\Users\Jakub\AppData\Roaming\Microsoft\Installer\{3EE9BCAE-E9A9-45E5-9B1C-83A4D357E05C}\ARPPRODUCTICON.exe
[2012.12.03 10:59:41 | 000,010,134 | R--- | M] () -- C:\Users\Jakub\AppData\Roaming\Microsoft\Installer\{4BE91685-1632-47FC-B563-A8A542C6664C}\_386998012CE765DB51A217.exe
[2012.12.03 10:59:41 | 000,010,134 | R--- | M] () -- C:\Users\Jakub\AppData\Roaming\Microsoft\Installer\{4BE91685-1632-47FC-B563-A8A542C6664C}\_54ADCD11F3CF522B57A4A6.exe
[2012.10.05 15:12:49 | 000,010,134 | R--- | M] () -- C:\Users\Jakub\AppData\Roaming\Microsoft\Installer\{A7BB9BBD-DFE4-4276-820A-7CD141FC09E6}\ARPPRODUCTICON.exe
[2012.11.05 12:25:00 | 000,053,248 | R--- | M] (Acresso Software Inc.) -- C:\Users\Jakub\AppData\Roaming\Microsoft\Installer\{ABE4638D-D208-4061-9F26-E3E11E3A1E0C}\ARPPRODUCTICON.exe
[2012.11.05 12:24:58 | 000,053,248 | R--- | M] (Acresso Software Inc.) -- C:\Users\Jakub\AppData\Roaming\Microsoft\Installer\{AD32F5E9-6BDD-480A-8B7B-95571D04691C}\ARPPRODUCTICON.exe
[2012.10.13 17:31:31 | 000,119,808 | R--- | M] () -- C:\Users\Jakub\AppData\Roaming\Microsoft\Installer\{CCF298AF-9CE1-4B26-B251-486E98A34789}\icons.exe
[2012.10.06 13:14:23 | 000,010,134 | R--- | M] () -- C:\Users\Jakub\AppData\Roaming\Microsoft\Installer\{E3E71D07-CD27-46CB-8448-16D4FB29AA13}\ARPPRODUCTICON.exe
[2010.02.01 17:45:56 | 001,687,552 | ---- | M] () -- C:\Users\Jakub\AppData\Roaming\TransMemory_Secure\TransMemory_Secure3.exe
< %systemroot%\*. /mp /s >
< %systemroot%\system32\*.dll /lockedfiles >
< %systemroot%\Tasks\*.job >
[2013.01.20 17:20:00 | 000,000,914 | ---- | M] () -- C:\Windows\Tasks\Adobe Flash Player Updater.job
[2013.01.20 10:44:00 | 000,000,910 | ---- | M] () -- C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3752770136-2494076584-3171830822-1000Core.job
[2013.01.20 16:44:00 | 000,000,962 | ---- | M] () -- C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3752770136-2494076584-3171830822-1000UA.job
[2013.01.20 10:09:05 | 000,000,828 | ---- | M] () -- C:\Windows\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon.job
[2013.01.19 19:29:00 | 000,000,830 | ---- | M] () -- C:\Windows\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d.job
< %systemroot%\system32\drivers\*.sys /lockedfiles >
< %systemroot%\System32\config\*.sav >
< %systemroot%\system32\*.dll /lockedfiles >
< %systemroot%\system32\drivers\*.sys /3 >
< %systemroot%\system32\*.* /3 >
[2013.01.20 10:11:07 | 000,000,044 | ---- | M] () -- C:\Windows\system32\log.txt
< %SYSTEMDRIVE%\*.exe >
< >
< HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s >
"AdobeBridge" =
"RESTART_STICKY_NOTES" = C:\Windows\System32\StikyNot.exe
"DAEMON Tools Lite" = "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun -- [2012.11.06 11:46:46 | 003,673,728 | ---- | M] (DT Soft Ltd)
"Akamai NetSession Interface" = "C:\Users\Jakub\AppData\Local\Akamai\netsession_win.exe" -- [2012.10.09 10:53:36 | 004,441,920 | ---- | M] (Akamai Technologies, Inc.)
"HP Officejet Pro 8600 (NET)" = "C:\Program Files\HP\HP Officejet Pro 8600\Bin\ScanToPCActivationApp.exe" -deviceID "CN29PBXH3X05KC:NW" -scfn "HP Officejet Pro 8600 (NET)" -AutoStart 1 -- [2011.09.09 16:27:42 | 002,676,584 | ---- | M] (Hewlett-Packard Co.)
< >
< %PROGRAMFILES%\Mozilla Firefox\firefox.exe /md5 >
[2012.09.06 02:24:58 | 000,917,984 | ---- | M] (Mozilla Corporation) MD5=9C376F42BDE37F18D0A39AF7415D9BE6 -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
< %PROGRAMFILES%\Internet Explorer\iexplore.exe /md5 >
[2012.11.14 03:56:04 | 000,757,296 | ---- | M] (Microsoft Corporation) MD5=0D286C0FE561D1A7EB30E83A0FF305B2 -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
< %PROGRAMFILES%\Opera\opera.exe /md5 >
[2013.01.02 18:53:46 | 000,879,080 | ---- | M] (Opera Software) MD5=3A783497492D685E5F8D61FE06F4FE5A -- C:\Program Files (x86)\Opera\opera.exe
< %PROGRAMFILES%\Google\Chrome\Application\chrome.exe /md5 >
< >
< %SystemDrive%\PhysicalMBR.bin /md5 >
[2013.01.20 17:29:14 | 000,000,512 | ---- | M] () MD5=F7E9B7504E80BA7A77BE1EC1DF3F505A -- C:\PhysicalMBR.bin
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Jakub\Desktop
64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy
7,60 Gb Total Physical Memory | 5,42 Gb Available Physical Memory | 71,22% Memory free
15,21 Gb Paging File | 12,99 Gb Available in Paging File | 85,46% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 111,79 Gb Total Space | 19,57 Gb Free Space | 17,50% Space Free | Partition Type: NTFS
Drive D: | 465,66 Gb Total Space | 215,74 Gb Free Space | 46,33% Space Free | Partition Type: NTFS
Computer Name: JAKUB-NTB | User Name: Jakub | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 7 Days
========== Processes (SafeList) ==========
PRC - [2013.01.20 17:23:28 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Jakub\Desktop\OTL.exe
PRC - [2012.12.29 11:34:47 | 001,260,472 | ---- | M] (NVIDIA Corporation) -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
PRC - [2012.12.18 15:28:08 | 000,065,192 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
PRC - [2012.10.09 10:53:36 | 004,441,920 | ---- | M] (Akamai Technologies, Inc.) -- C:\Users\Jakub\AppData\Local\Akamai\netsession_win.exe
PRC - [2012.09.07 08:09:02 | 000,366,480 | ---- | M] (Lenovo) -- C:\Program Files (x86)\Lenovo\Access Connections\SvcGuiHlpr.exe
PRC - [2012.09.07 08:08:50 | 000,272,272 | ---- | M] (Lenovo) -- C:\Program Files (x86)\Lenovo\Access Connections\AcSvc.exe
PRC - [2012.09.07 08:08:48 | 000,133,008 | ---- | M] (Lenovo) -- C:\Program Files (x86)\Lenovo\Access Connections\AcPrfMgrSvc.exe
PRC - [2012.08.24 18:33:24 | 000,127,072 | ---- | M] (Lenovo Group Limited) -- C:\Program Files\Lenovo\HOTKEY\micmute.exe
PRC - [2012.08.24 18:33:22 | 000,567,392 | ---- | M] (Lenovo Group Limited) -- C:\Program Files\Lenovo\HOTKEY\TPONSCR.exe
PRC - [2012.08.22 15:59:57 | 000,123,320 | ---- | M] (Gemfor s.r.o.) -- C:\Program Files (x86)\T-Mobile\Web'n'walk Manager\ameisvc.exe
PRC - [2012.08.09 20:30:20 | 000,353,640 | ---- | M] () -- C:\Program Files (x86)\Connectify\ConnectifyNetServices.exe
PRC - [2012.08.09 20:30:20 | 000,287,080 | ---- | M] (Connectify) -- C:\Program Files (x86)\Connectify\Connectifyd.exe
PRC - [2012.08.09 20:30:04 | 000,065,536 | ---- | M] () -- C:\Program Files (x86)\Connectify\ConnectifyService.exe
PRC - [2012.06.06 23:04:22 | 000,145,256 | ---- | M] (AuthenTec Inc.) -- C:\Program Files\Lenovo Fingerprint Reader\x86\BioMonitor.exe
PRC - [2012.06.01 19:49:06 | 000,179,568 | ---- | M] (Lenovo Group Limited) -- C:\Program Files\Lenovo\Communications Utility\vcamsvc.exe
PRC - [2012.06.01 19:49:00 | 000,290,160 | ---- | M] (Lenovo Group Limited) -- C:\Program Files\Lenovo\Communications Utility\TpKnrres.exe
PRC - [2012.06.01 19:48:58 | 000,061,296 | ---- | M] (Lenovo Group Limited) -- C:\Program Files\Lenovo\Communications Utility\TPKNRSVC.exe
PRC - [2012.06.01 19:48:38 | 000,058,224 | ---- | M] (Lenovo Group Limited) -- C:\Program Files\Lenovo\Communications Utility\CamMute.exe
PRC - [2012.05.16 05:32:00 | 001,662,560 | ---- | M] (Lenovo) -- C:\Program Files (x86)\ThinkPad\Utilities\PWMDBSVC.exe
PRC - [2012.05.16 05:32:00 | 000,128,608 | ---- | M] (Lenovo Group Limited) -- C:\Program Files (x86)\ThinkPad\Utilities\SCHTASK.EXE
PRC - [2012.04.20 11:30:14 | 000,144,448 | ---- | M] (Lenovo Group Limited) -- C:\Program Files\Lenovo\HOTKEY\TPHKSVC.exe
PRC - [2012.04.13 10:12:00 | 000,088,576 | ---- | M] () -- C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe
PRC - [2012.01.31 09:46:56 | 000,019,232 | ---- | M] (Autodesk, Inc.) -- C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe
PRC - [2012.01.05 02:59:50 | 000,291,608 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
PRC - [2011.12.23 16:13:46 | 000,363,800 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
PRC - [2011.12.23 16:13:32 | 000,277,784 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
PRC - [2011.12.23 16:13:16 | 000,128,280 | ---- | M] () -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
PRC - [2011.12.23 16:13:04 | 000,161,560 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
PRC - [2011.11.25 23:22:44 | 000,312,688 | ---- | M] (Sierra Wireless, Inc.) -- C:\Program Files (x86)\Sierra Wireless Inc\Gobi\QDLService\GobiQDLService.exe
PRC - [2011.11.18 13:43:58 | 000,655,912 | R--- | M] (Ericsson AB) -- C:\Program Files (x86)\Mobile Broadband drivers\WMCore\mini_WMCore.exe
PRC - [2011.01.07 11:28:42 | 000,446,592 | ---- | M] (Conexant Systems, Inc.) -- C:\Windows\SysWOW64\SASrv.exe
========== Modules (No Company Name) ==========
========== Services (SafeList) ==========
SRV:64bit: - [2012.10.09 21:08:10 | 001,432,400 | ---- | M] (Flexera Software, Inc.) [On_Demand | Stopped] -- C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe -- (FLEXnet Licensing Service 64)
SRV:64bit: - [2012.09.12 20:21:48 | 000,368,896 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Program Files\Microsoft Security Client\NisSrv.exe -- (NisSrv)
SRV:64bit: - [2012.09.12 20:21:48 | 000,022,072 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Microsoft Security Client\MsMpEng.exe -- (MsMpSvc)
SRV:64bit: - [2012.08.24 18:33:24 | 000,127,072 | ---- | M] (Lenovo Group Limited) [Auto | Running] -- C:\Program Files\Lenovo\HOTKEY\micmute.exe -- (LENOVO.MICMUTE)
SRV:64bit: - [2012.08.12 16:59:52 | 000,046,984 | ---- | M] (Lenovo.) [On_Demand | Stopped] -- C:\Windows\SysNative\TPHDEXLG64.exe -- (TPHDEXLGSVC)
SRV:64bit: - [2012.06.08 16:07:16 | 000,201,376 | ---- | M] (Conexant Systems Inc.) [Auto | Running] -- C:\Windows\SysNative\CxAudMsg64.exe -- (CxAudMsg)
SRV:64bit: - [2012.06.06 23:04:04 | 000,328,552 | ---- | M] (AuthenTec, Inc) [Auto | Running] -- C:\Program Files\Lenovo Fingerprint Reader\TrueSuiteService.exe -- (FPLService)
SRV:64bit: - [2012.06.01 19:49:06 | 000,179,568 | ---- | M] (Lenovo Group Limited) [Auto | Running] -- C:\Program Files\Lenovo\Communications Utility\vcamsvc.exe -- (LENOVO.TVTVCAM)
SRV:64bit: - [2012.06.01 19:48:58 | 000,061,296 | ---- | M] (Lenovo Group Limited) [Auto | Running] -- C:\Program Files\Lenovo\Communications Utility\TPKNRSVC.exe -- (LENOVO.TPKNRSVC)
SRV:64bit: - [2012.06.01 19:48:38 | 000,058,224 | ---- | M] (Lenovo Group Limited) [Auto | Running] -- C:\Program Files\Lenovo\Communications Utility\CamMute.exe -- (LENOVO.CAMMUTE)
SRV:64bit: - [2012.05.29 15:30:16 | 000,147,040 | ---- | M] (Lenovo Group Limited) [Auto | Running] -- C:\Program Files\Lenovo\HOTKEY\tphkload.exe -- (TPHKLOAD)
SRV:64bit: - [2012.04.20 11:30:14 | 000,144,448 | ---- | M] (Lenovo Group Limited) [Auto | Running] -- C:\Program Files\Lenovo\HOTKEY\TPHKSVC.exe -- (TPHKSVC)
SRV:64bit: - [2012.04.11 15:27:06 | 000,047,440 | ---- | M] (Lenovo.) [Auto | Running] -- C:\Windows\SysNative\ibmpmsvc.exe -- (IBMPMSVC)
SRV:64bit: - [2012.02.26 04:07:52 | 002,669,840 | ---- | M] (Intel® Corporation) [Auto | Running] -- C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe -- (ZeroConfigService)
SRV:64bit: - [2012.02.26 04:07:42 | 000,273,168 | ---- | M] () [On_Demand | Stopped] -- C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe -- (MyWiFiDHCPDNS)
SRV:64bit: - [2012.02.26 04:07:32 | 000,626,960 | ---- | M] (Intel(R) Corporation) [Auto | Running] -- C:\Program Files\Intel\WiFi\bin\EvtEng.exe -- (EvtEng)
SRV:64bit: - [2012.02.26 04:07:26 | 000,148,752 | ---- | M] (Intel(R) Corporation) [Auto | Running] -- C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe -- (RegSrvc)
SRV:64bit: - [2012.01.17 15:12:28 | 000,135,952 | ---- | M] (Intel(R) Corporation) [Auto | Running] -- C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe -- (BTHSSecurityMgr)
SRV:64bit: - [2012.01.09 11:39:44 | 000,659,968 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe -- (AMPPALR3)
SRV:64bit: - [2011.12.08 15:38:24 | 000,607,456 | ---- | M] (Intel(R) Corporation) [Auto | Running] -- C:\Program Files\Intel\iCLS Client\HeciServer.exe -- (Intel(R)
SRV:64bit: - [2011.09.27 03:00:24 | 000,089,160 | ---- | M] (Dassault Systèmes SolidWorks Corp.) [On_Demand | Stopped] -- C:\Program Files\SolidWorks Corp\SolidWorks\swScheduler\DTSCoordinatorService.exe -- (CoordinatorServiceHost)
SRV:64bit: - [2011.08.17 19:04:36 | 000,109,624 | ---- | M] (Mentor Graphics Corporation) [On_Demand | Stopped] -- C:\Program Files\SolidWorks Corp\SolidWorks Flow Simulation\binCFW\StandAloneSlv.exe -- (Remote Solver for Flow Simulation 2012)
SRV:64bit: - [2011.07.12 15:53:58 | 000,133,992 | ---- | M] (Lenovo Group Limited) [Auto | Running] -- C:\Program Files\Lenovo\VIRTSCRL\lvvsst.exe -- (Lenovo.VIRTSCRLSVC)
SRV:64bit: - [2009.07.14 02:41:27 | 001,011,712 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2013.01.08 22:20:35 | 000,251,400 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2013.01.08 20:37:22 | 000,115,760 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2012.12.29 11:34:47 | 001,260,472 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe -- (nvUpdatusService)
SRV - [2012.12.18 15:28:08 | 000,065,192 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2012.11.23 15:20:54 | 000,021,416 | ---- | M] () [On_Demand | Stopped] -- C:\Program Files (x86)\Lenovo\System Update\SUService.exe -- (SUService)
SRV - [2012.11.09 11:21:24 | 000,160,944 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files (x86)\Skype\Updater\Updater.exe -- (SkypeUpdate)
SRV - [2012.10.09 21:19:27 | 000,079,360 | ---- | M] (SolidWorks) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\SolidWorks Shared\Service\SolidWorksLicensing.exe -- (SolidWorks Licensing Service)
SRV - [2012.10.09 21:19:26 | 001,044,816 | ---- | M] (Flexera Software, Inc.) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe -- (FLEXnet Licensing Service)
SRV - [2012.10.06 13:19:12 | 000,079,360 | ---- | M] (Autodesk) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Autodesk Shared\Service\AdskScSrv.exe -- (Autodesk Licensing Service)
SRV - [2012.09.07 08:08:50 | 000,272,272 | ---- | M] (Lenovo) [Auto | Running] -- C:\Program Files (x86)\Lenovo\Access Connections\AcSvc.exe -- (AcSvc)
SRV - [2012.09.07 08:08:48 | 000,133,008 | ---- | M] (Lenovo) [Auto | Running] -- C:\Program Files (x86)\Lenovo\Access Connections\AcPrfMgrSvc.exe -- (AcPrfMgrSvc)
SRV - [2012.08.22 15:59:57 | 000,123,320 | ---- | M] (Gemfor s.r.o.) [Auto | Running] -- C:\Program Files (x86)\T-Mobile\Web'n'walk Manager\ameisvc.exe -- (ameisvc)
SRV - [2012.08.09 20:30:04 | 000,065,536 | ---- | M] () [Auto | Running] -- C:\Program Files (x86)\Connectify\ConnectifyService.exe -- (Connectify)
SRV - [2012.05.16 05:32:00 | 001,665,120 | ---- | M] (Lenovo Group Limited) [On_Demand | Stopped] -- C:\Program Files (x86)\ThinkPad\Utilities\PWMEWSVC.exe -- (PwmEWSvc)
SRV - [2012.05.16 05:32:00 | 001,662,560 | ---- | M] (Lenovo) [On_Demand | Running] -- C:\Program Files (x86)\ThinkPad\Utilities\PWMDBSVC.exe -- (Power Manager DBC Service)
SRV - [2012.04.13 10:12:00 | 000,088,576 | ---- | M] () [Auto | Running] -- C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe -- (PassThru Service)
SRV - [2012.02.09 14:10:32 | 000,276,248 | ---- | M] (Intel Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\IntelCpHeciSvc.exe -- (cphs)
SRV - [2012.01.31 09:46:56 | 000,019,232 | ---- | M] (Autodesk, Inc.) [Auto | Running] -- C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe -- (Autodesk Content Service)
SRV - [2011.12.23 16:13:46 | 000,363,800 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe -- (UNS)
SRV - [2011.12.23 16:13:32 | 000,277,784 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe -- (LMS)
SRV - [2011.12.23 16:13:16 | 000,128,280 | ---- | M] () [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe -- (Intel(R)
SRV - [2011.12.23 16:13:04 | 000,161,560 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe -- (jhi_service)
SRV - [2011.11.25 23:22:44 | 000,312,688 | ---- | M] (Sierra Wireless, Inc.) [Auto | Running] -- C:\Program Files (x86)\Sierra Wireless Inc\Gobi\QDLService\GobiQDLService.exe -- (GobiQDLService)
SRV - [2011.11.18 13:43:58 | 000,655,912 | R--- | M] (Ericsson AB) [Auto | Running] -- C:\Program Files (x86)\Mobile Broadband drivers\WMCore\mini_WMCore.exe -- (WMCoreService)
SRV - [2011.01.07 11:28:42 | 000,446,592 | ---- | M] (Conexant Systems, Inc.) [Auto | Running] -- C:\Windows\SysWOW64\SASrv.exe -- (SAService)
SRV - [2010.03.18 12:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2010.02.19 12:37:14 | 000,517,096 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe -- (SwitchBoard)
SRV - [2009.06.10 22:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)
========== Driver Services (SafeList) ==========
DRV:64bit: - [2012.12.29 11:34:47 | 000,030,648 | ---- | M] (NVIDIA Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\nvpciflt.sys -- (nvpciflt)
DRV:64bit: - [2012.12.02 16:43:40 | 000,283,200 | ---- | M] (DT Soft Ltd) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\dtsoftbus01.sys -- (dtsoftbus01)
DRV:64bit: - [2012.11.12 11:21:10 | 000,082,816 | ---- | M] (VSO Software) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\pcouffin.sys -- (pcouffin)
DRV:64bit: - [2012.10.26 16:48:57 | 000,164,736 | ---- | M] (ITE ) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\IT9135BDA.sys -- (IT9135BDA)
DRV:64bit: - [2012.10.11 13:14:12 | 000,031,344 | ---- | M] (Connectify) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\cnnctfy2.sys -- (cnnctfy2)
DRV:64bit: - [2012.09.18 10:32:32 | 000,078,648 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\LEqdUsb.sys -- (LEqdUsb)
DRV:64bit: - [2012.09.18 10:32:32 | 000,075,064 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\LHidFilt.Sys -- (LHidFilt)
DRV:64bit: - [2012.09.18 10:32:32 | 000,061,240 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\LMouFilt.Sys -- (LMouFilt)
DRV:64bit: - [2012.09.18 10:32:32 | 000,015,160 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\LHidEqd.sys -- (LHidEqd)
DRV:64bit: - [2012.08.30 21:03:48 | 000,128,456 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\NisDrvWFP.sys -- (NisDrv)
DRV:64bit: - [2012.08.23 15:10:20 | 000,019,456 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\rdpvideominiport.sys -- (RdpVideoMiniport)
DRV:64bit: - [2012.08.23 15:07:35 | 000,057,856 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV:64bit: - [2012.08.12 16:59:52 | 000,025,448 | ---- | M] (Lenovo.) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\ApsHM64.sys -- (TPDIGIMN)
DRV:64bit: - [2012.07.23 21:48:02 | 000,148,328 | ---- | M] (Lenovo.) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\ApsX64.sys -- (Shockprf)
DRV:64bit: - [2012.07.17 18:12:08 | 000,062,784 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\HECIx64.sys -- (MEIx64)
DRV:64bit: - [2012.06.14 16:25:26 | 001,608,352 | ---- | M] (Conexant Systems Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\CHDRT64.sys -- (CnxtHdAudService)
DRV:64bit: - [2012.05.16 05:32:00 | 000,019,784 | ---- | M] (Lenovo Group Limited) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\TPPWR64V.SYS -- (TPPWRIF)
DRV:64bit: - [2012.04.11 15:27:04 | 000,042,280 | ---- | M] (Lenovo.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\ibmpmdrv.sys -- (IBMPMDRV)
DRV:64bit: - [2012.04.02 11:40:50 | 000,428,304 | ---- | M] (Synaptics Incorporated) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\SynTP.sys -- (SynTP)
DRV:64bit: - [2012.03.28 12:16:48 | 000,216,704 | ---- | M] (Ricoh co.,Ltd.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\5U877.sys -- (5U877)
DRV:64bit: - [2012.03.01 07:46:16 | 000,023,408 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\Windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
DRV:64bit: - [2012.02.20 11:36:58 | 011,471,872 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Netwsw00.sys -- (NETwNs64)
DRV:64bit: - [2012.02.02 03:52:02 | 014,659,808 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\igdkmd64.sys -- (igfx)
DRV:64bit: - [2012.01.09 11:32:40 | 000,195,584 | ---- | M] (Windows (R) Win 7 DDK provider) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\AmpPal.sys -- (AMPPALP)
DRV:64bit: - [2012.01.09 11:32:40 | 000,195,584 | ---- | M] (Windows (R) Win 7 DDK provider) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\AmpPal.sys -- (AMPPAL)
DRV:64bit: - [2012.01.05 02:58:50 | 000,786,200 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\iusb3xhc.sys -- (iusb3xhc)
DRV:64bit: - [2012.01.05 02:58:50 | 000,355,096 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\iusb3hub.sys -- (iusb3hub)
DRV:64bit: - [2012.01.05 02:58:50 | 000,016,152 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\iusb3hcs.sys -- (iusb3hcs)
DRV:64bit: - [2011.12.27 02:10:44 | 000,040,248 | ---- | M] (Lenovo Information Product(ShenZhen China) Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\psadd.sys -- (psadd)
DRV:64bit: - [2011.12.23 19:37:12 | 000,568,600 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\iaStor.sys -- (iaStor)
DRV:64bit: - [2011.12.20 16:38:36 | 000,034,200 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\intelaud.sys -- (intaud_WaveExtensible)
DRV:64bit: - [2011.12.20 16:38:36 | 000,025,496 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\iwdbus.sys -- (iwdbus)
DRV:64bit: - [2011.12.07 17:59:52 | 000,027,432 | ---- | M] (ThinkVantage Communications Utility) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\tvtvcamd.sys -- (tvtvcamd)
DRV:64bit: - [2011.12.06 18:23:10 | 000,331,264 | ---- | M] (Intel(R) Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\IntcDAud.sys -- (IntcDAud)
DRV:64bit: - [2011.10.27 09:27:52 | 000,259,688 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\RtsP2Stor.sys -- (RSP2STOR)
DRV:64bit: - [2011.08.23 20:57:24 | 000,565,352 | ---- | M] (Realtek ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Rt64win7.sys -- (RTL8167)
DRV:64bit: - [2011.05.03 01:06:12 | 000,447,872 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\cxpolar64.sys -- (CXPOLARIS)
DRV:64bit: - [2011.05.03 01:06:12 | 000,044,032 | ---- | M] (Conexant Systems, Inc.) [Kernel | Auto | Stopped] -- C:\Windows\SysNative\drivers\cxcir64.sys -- (CXIR)
DRV:64bit: - [2011.03.11 07:41:12 | 000,107,904 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:64bit: - [2011.03.11 07:41:12 | 000,027,008 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:64bit: - [2010.11.20 14:33:35 | 000,078,720 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:64bit: - [2010.06.25 16:08:10 | 000,036,928 | ---- | M] (Windows (R) Win 7 DDK provider) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\htcnprot.sys -- (htcnprot)
DRV:64bit: - [2009.12.15 13:05:42 | 000,117,248 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ewusbmdm.sys -- (hwdatacard)
DRV:64bit: - [2009.12.15 13:05:42 | 000,114,304 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ewusbdev.sys -- (hwusbdev)
DRV:64bit: - [2009.12.15 13:05:42 | 000,029,696 | ---- | M] (Huawei Tech. Co., Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ewdcsc.sys -- (Huawei)
DRV:64bit: - [2009.11.02 18:16:50 | 000,033,736 | ---- | M] (HTC, Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ANDROIDUSB.sys -- (HTCAND64)
DRV:64bit: - [2009.07.14 02:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:64bit: - [2009.07.14 02:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:64bit: - [2009.07.14 02:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:64bit: - [2009.07.14 01:35:32 | 000,012,288 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\serscan.sys -- (StillCam)
DRV:64bit: - [2009.06.10 21:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:64bit: - [2009.06.10 21:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:64bit: - [2009.06.10 21:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:64bit: - [2009.06.10 21:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
DRV - [2009.07.14 02:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount)
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-3752770136-2494076584-3171830822-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = https://klientskazona.cpost.cz/
IE - HKU\S-1-5-21-3752770136-2494076584-3171830822-1000\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKU\S-1-5-21-3752770136-2494076584-3171830822-1000\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTer ... ORM=IE8SRC
IE - HKU\S-1-5-21-3752770136-2494076584-3171830822-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-3752770136-2494076584-3171830822-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = <local>
========== FireFox ==========
FF:64bit: - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF64_11_5_502_146.dll File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\5.1.10411.0\npctrl.dll ( Microsoft Corporation)
FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~1\MICROS~4\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_5_502_146.dll ()
FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\Windows\SysWOW64\Adobe\Director\np32dsw_1168638.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=2.0.52: C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF - HKLM\Software\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater: C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.7.2: C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.7.2: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files (x86)\Microsoft Silverlight\5.1.10411.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~2\MICROS~3\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~2\MICROS~3\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.0.3: C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Users\Jakub\AppData\Local\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Users\Jakub\AppData\Local\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.)
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 15.0.1\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2012.10.06 09:35:54 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 15.0.1\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Thunderbird 17.0.2\extensions\\Components: C:\Program Files (x86)\Mozilla Thunderbird\components [2013.01.08 20:36:20 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Thunderbird 17.0.2\extensions\\Plugins: C:\Program Files (x86)\Mozilla Thunderbird\plugins
FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Thunderbird 17.0.2\extensions\\Components: C:\Program Files (x86)\Mozilla Thunderbird\components [2013.01.08 20:36:20 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Thunderbird 17.0.2\extensions\\Plugins: C:\Program Files (x86)\Mozilla Thunderbird\plugins
[2012.10.06 10:06:18 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Jakub\AppData\Roaming\Mozilla\Extensions
[2012.10.25 17:39:34 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Jakub\AppData\Roaming\Mozilla\Firefox\Profiles\2no0m5di.Nepojmenovaný\extensions
[2012.10.06 09:35:54 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\extensions
[2012.09.06 02:26:03 | 000,266,720 | ---- | M] (Mozilla Foundation) -- C:\Program Files (x86)\mozilla firefox\components\browsercomps.dll
[2012.09.06 05:25:45 | 000,002,208 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\heureka-cz.xml
[2012.09.06 05:25:45 | 000,000,638 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\jyxo-cz.xml
[2012.09.06 05:25:45 | 000,001,367 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\seznam-cz.xml
[2012.09.06 05:25:45 | 000,000,654 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\slunecnice-cz.xml
[2012.09.06 05:25:45 | 000,001,179 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\wikipedia-cz.xml
========== Chrome ==========
CHR - homepage: http://www.seznam.cz/
CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}sourceid=chrome&ie={inputEncoding}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&hl={language}&q={searchTerms}&sugkey={google:suggestAPIKeyParameter}
CHR - homepage: http://www.seznam.cz/
CHR - plugin: Shockwave Flash (Enabled) = C:\Users\Jakub\AppData\Local\Google\Chrome\Application\24.0.1312.52\PepperFlash\pepflashplayer.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_4_402_287.dll
CHR - plugin: Chrome Remote Desktop Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Users\Jakub\AppData\Local\Google\Chrome\Application\24.0.1312.52\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Disabled) = C:\Users\Jakub\AppData\Local\Google\Chrome\Application\24.0.1312.52\pdf.dll
CHR - plugin: Screen Capture Plugin (Enabled) = C:\Users\Jakub\AppData\Local\Google\Chrome\User Data\Default\Extensions\alelhddbbhepgpmgidjdcjakblofbmce\3.3.7_0\plugins/screen_capture.dll
CHR - plugin: Adobe Acrobat (Enabled) = C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll
CHR - plugin: Microsoft Office 2010 (Enabled) = C:\PROGRA~2\MICROS~3\Office14\NPAUTHZ.DLL
CHR - plugin: Microsoft Office 2010 (Enabled) = C:\PROGRA~2\MICROS~3\Office14\NPSPWRAP.DLL
CHR - plugin: Intel\u00AE Identity Protection Technology (Enabled) = C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll
CHR - plugin: Intel\u00AE Identity Protection Technology (Enabled) = C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll
CHR - plugin: Java(TM) Platform SE 7 U7 (Enabled) = C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll
CHR - plugin: Java Deployment Toolkit 7.0.70.11 (Enabled) = C:\Windows\SysWOW64\npDeployJava1.dll
CHR - plugin: Silverlight Plug-In (Enabled) = C:\Program Files (x86)\Microsoft Silverlight\5.1.10411.0\npctrl.dll
CHR - plugin: VLC Web Plugin (Enabled) = C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
CHR - plugin: Google Update (Enabled) = C:\Users\Jakub\AppData\Local\Google\Update\1.3.21.123\npGoogleUpdate3.dll
CHR - Extension: Awesome Screenshot: Capture & Annotate = C:\Users\Jakub\AppData\Local\Google\Chrome\User Data\Default\Extensions\alelhddbbhepgpmgidjdcjakblofbmce\3.4.4_0\
CHR - Extension: YouTube = C:\Users\Jakub\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_1\
CHR - Extension: Vyhled\u00E1v\u00E1n\u00ED Google = C:\Users\Jakub\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_1\
CHR - Extension: Google Reader = C:\Users\Jakub\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjjhlfkghdhmijklfnahfkpgmhcmfgcm\4.4_0\
CHR - Extension: Gmail = C:\Users\Jakub\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1\
O1 HOSTS File: ([2009.06.10 22:00:26 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O2:64bit: - BHO: (TrueSuite Browser Helper Object) - {8590886E-EC8C-43C1-A32C-E4C2B0B6395B} - C:\Program Files\Lenovo Fingerprint Reader\IEBHO.dll (AuthenTec Inc.)
O2 - BHO: (no name) - {32F66A28-7614-11D4-BD11-00104BD3F987} - No CLSID value found.
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (TrueSuite Browser Helper Object) - {8590886E-EC8C-43C1-A32C-E4C2B0B6395B} - C:\Program Files\Lenovo Fingerprint Reader\x86\IEBHO.dll (AuthenTec Inc.)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O4:64bit: - HKLM..\Run: [] File not found
O4:64bit: - HKLM..\Run: [cAudioFilterAgent] C:\Program Files\CONEXANT\cAudioFilterAgent\CAudioFilterAgent64.exe (Conexant Systems, Inc.)
O4:64bit: - HKLM..\Run: [ForteConfig] C:\Program Files\CONEXANT\ForteConfig\fmapp.exe ()
O4:64bit: - HKLM..\Run: [HotKeysCmds] C:\Windows\SysNative\hkcmd.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [LENOVO.TPKNRRES] C:\Program Files\Lenovo\Communications Utility\TpKnrres.exe (Lenovo Group Limited)
O4:64bit: - HKLM..\Run: [MSC] C:\Program Files\Microsoft Security Client\msseces.exe (Microsoft Corporation)
O4:64bit: - HKLM..\Run: [Persistence] C:\Windows\SysNative\igfxpers.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [SmartAudio] C:\Program Files\CONEXANT\SAII\SACpl.exe (Conexant Systems, Inc.)
O4:64bit: - HKLM..\Run: [TpShocks] C:\Windows\SysNative\TpShocks.exe (Lenovo.)
O4 - HKLM..\Run: [] File not found
O4 - HKLM..\Run: [IMSS] C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe (Intel Corporation)
O4 - HKLM..\Run: [PWMTRV] C:\Program Files (x86)\ThinkPad\Utilities\PWMTR64V.DLL (Lenovo Group Limited)
O4 - HKLM..\Run: [SwitchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [USB3MON] C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe (Intel Corporation)
O4 - HKU\S-1-5-19..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-20..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-21-3752770136-2494076584-3171830822-1000..\Run: [AdobeBridge] File not found
O4 - HKU\S-1-5-21-3752770136-2494076584-3171830822-1000..\Run: [Akamai NetSession Interface] C:\Users\Jakub\AppData\Local\Akamai\netsession_win.exe (Akamai Technologies, Inc.)
O4 - HKU\S-1-5-21-3752770136-2494076584-3171830822-1000..\Run: [DAEMON Tools Lite] C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe (DT Soft Ltd)
O4 - HKU\S-1-5-21-3752770136-2494076584-3171830822-1000..\Run: [HP Officejet Pro 8600 (NET)] C:\Program Files\HP\HP Officejet Pro 8600\Bin\ScanToPCActivationApp.exe (Hewlett-Packard Co.)
O4 - HKU\S-1-5-21-3752770136-2494076584-3171830822-1000..\Run: [RESTART_STICKY_NOTES] C:\Windows\System32\StikyNot.exe File not found
O4 - HKU\S-1-5-21-3752770136-2494076584-3171830822-1003..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-19..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found
O4 - HKU\S-1-5-20..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found
O4 - HKU\S-1-5-21-3752770136-2494076584-3171830822-1003..\RunOnce: [Lenovo.ShowBand] C:\Program Files\Lenovo\SimpleTap DeskBand\ShowBand.exe (Lenovo)
O4 - HKU\S-1-5-21-3752770136-2494076584-3171830822-1003..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O7 - HKU\S-1-5-21-3752770136-2494076584-3171830822-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: =
O1364bit: - gopher Prefix: missing
O13 - gopher Prefix: missing
O15 - HKU\S-1-5-21-3752770136-2494076584-3171830822-1000\..Trusted Domains: mfcr.cz ([adisepo] https in Důvěryhodné servery)
O15 - HKU\S-1-5-21-3752770136-2494076584-3171830822-1000\..Trusted Domains: postsignum.cz ([www] https in Důvěryhodné servery)
O16 - DPF: {F680B28A-3AEE-4C88-93ED-45AE9215C128} https://adisepo.mfcr.cz/adistc/adis/idp ... tsignx.cab (CryptSignX Control)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.2.222
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{03E9C21A-DFE9-C8BC-ECE3-5614C4AF73B1}: NameServer = 93.153.117.1 93.153.117.33
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{689A7833-2BB6-423C-A25B-C00FA2605F55}: NameServer = 192.168.140.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{726D6A6E-E50E-47DC-B6D9-BFE605A43D74}: DhcpNameServer = 192.168.2.222
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{98CA78AC-1E85-49F9-8FD9-1F1262820BA0}: DhcpNameServer = 192.168.1.1
O18:64bit: - Protocol\Handler\mso-offdap11 - No CLSID value found
O18:64bit: - Protocol\Handler\skype4com - No CLSID value found
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O20:64bit: - AppInit_DLLs: (C:\Windows\system32\nvinitx.dll) - C:\Windows\SysNative\nvinitx.dll (NVIDIA Corporation)
O20 - AppInit_DLLs: (C:\Windows\SysWOW64\nvinit.dll) - C:\Windows\SysWOW64\nvinit.dll (NVIDIA Corporation)
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\Windows\SysWow64\userinit.exe (Microsoft Corporation)
O20:64bit: - Winlogon\Notify\igfxcui: DllName - (igfxdev.dll) - C:\Windows\SysNative\igfxdev.dll (Intel Corporation)
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O33 - MountPoints2\{840375f7-113e-11e2-9aa9-685d4342d898}\Shell - "" = AutoRun
O33 - MountPoints2\{840375f7-113e-11e2-9aa9-685d4342d898}\Shell\AutoRun\command - "" = F:\AutoRun.exe
O34 - HKLM BootExecute: (autocheck autochk *)
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)
CREATERESTOREPOINT
Restore point Set: OTL Restore Point
Drivers32:64bit: msacm.l3acm - C:\Windows\System32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.l3acm - C:\Windows\SysWOW64\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: vidc.cvid - C:\Windows\SysWow64\iccvid.dll (Radius Inc.)
PhysicalDisk0 MBR saved to C:\PhysicalMBR.bin
========== Files/Folders - Created Within 7 Days ==========
[2013.01.20 17:23:23 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\Jakub\Desktop\OTL.exe
[2013.01.20 12:56:06 | 000,000,000 | ---D | C] -- C:\Program Files\trend micro
[2013.01.20 12:56:06 | 000,000,000 | ---D | C] -- C:\rsit
[2013.01.18 13:07:37 | 000,000,000 | ---D | C] -- C:\Users\Jakub\Desktop\školni vylet
[2013.01.18 11:33:50 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Math3D
[2013.01.18 11:31:16 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Design Science
[2013.01.15 19:19:40 | 000,000,000 | ---D | C] -- C:\Users\Jakub\Desktop\cashondeliverycesky
[2013.01.15 14:14:18 | 000,000,000 | ---D | C] -- C:\Users\Jakub\Desktop\Kominy
[2013.01.13 20:28:42 | 000,000,000 | ---D | C] -- C:\Users\Jakub\AppData\Roaming\dvdcss
[2013.01.13 19:20:19 | 000,000,000 | ---D | C] -- C:\Users\Jakub\Desktop\detweb
[2012.11.12 11:21:10 | 000,082,816 | ---- | C] (VSO Software) -- C:\Users\Jakub\AppData\Roaming\pcouffin.sys
[2012.10.27 17:25:01 | 000,695,296 | ---- | C] (AnjoCaido) -- C:\Users\Jakub\AppData\Roaming\MinecraftSP.exe
========== Files - Modified Within 7 Days ==========
[2013.01.20 17:29:14 | 000,000,512 | ---- | M] () -- C:\PhysicalMBR.bin
[2013.01.20 17:23:28 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Jakub\Desktop\OTL.exe
[2013.01.20 17:20:00 | 000,000,914 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2013.01.20 16:44:00 | 000,000,962 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-3752770136-2494076584-3171830822-1000UA.job
[2013.01.20 10:44:00 | 000,000,910 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-3752770136-2494076584-3171830822-1000Core.job
[2013.01.20 10:16:08 | 000,014,816 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2013.01.20 10:16:08 | 000,014,816 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2013.01.20 10:13:17 | 001,709,266 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2013.01.20 10:13:17 | 000,713,380 | ---- | M] () -- C:\Windows\SysNative\perfh005.dat
[2013.01.20 10:13:17 | 000,699,084 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2013.01.20 10:13:17 | 000,158,158 | ---- | M] () -- C:\Windows\SysNative\perfc005.dat
[2013.01.20 10:13:17 | 000,139,130 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2013.01.20 10:09:09 | 000,001,988 | ---- | M] () -- C:\Users\Jakub\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Sledovat výstrahy inkoustu - HP Officejet Pro 8600 (Síť).lnk
[2013.01.20 10:09:05 | 000,000,828 | ---- | M] () -- C:\Windows\tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon.job
[2013.01.20 10:08:56 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2013.01.20 10:08:51 | 1828,130,815 | -HS- | M] () -- C:\hiberfil.sys
[2013.01.19 19:29:00 | 000,000,830 | ---- | M] () -- C:\Windows\tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d.job
[2013.01.19 00:51:07 | 005,199,216 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
[2013.01.18 11:33:50 | 000,002,563 | ---- | M] () -- C:\Users\Public\Desktop\Math3D.lnk
[2013.01.13 21:05:46 | 000,000,779 | ---- | M] () -- C:\Users\Jakub\Desktop\.htaccess
[2013.01.13 20:46:46 | 000,002,369 | ---- | M] () -- C:\Users\Jakub\Desktop\Google Chrome.lnk
[2013.01.13 19:52:31 | 058,946,287 | ---- | M] () -- C:\Users\Jakub\Desktop\PSD-dětský-web.zip
========== Files Created - No Company Name ==========
[2013.01.20 17:29:14 | 000,000,512 | ---- | C] () -- C:\PhysicalMBR.bin
[2013.01.18 11:33:50 | 000,002,563 | ---- | C] () -- C:\Users\Public\Desktop\Math3D.lnk
[2013.01.13 21:05:46 | 000,000,779 | ---- | C] () -- C:\Users\Jakub\Desktop\.htaccess
[2013.01.13 19:49:14 | 058,946,287 | ---- | C] () -- C:\Users\Jakub\Desktop\PSD-dětský-web.zip
[2012.12.28 14:59:16 | 000,000,057 | ---- | C] () -- C:\ProgramData\Ament.ini
[2012.12.11 22:00:42 | 001,148,416 | ---- | C] () -- C:\Windows\SysWow64\QtNetwork4.dll
[2012.12.11 22:00:42 | 000,398,336 | ---- | C] () -- C:\Windows\SysWow64\QtXml4.dll
[2012.12.11 22:00:42 | 000,021,584 | ---- | C] () -- C:\Windows\SysWow64\wkll.exe
[2012.12.11 22:00:40 | 009,565,184 | ---- | C] () -- C:\Windows\SysWow64\QtGui4.dll
[2012.12.11 22:00:40 | 002,417,664 | ---- | C] () -- C:\Windows\SysWow64\QtCore4.dll
[2012.12.11 22:00:40 | 000,004,065 | ---- | C] () -- C:\Windows\SysWow64\pol.dll
[2012.12.11 22:00:39 | 003,550,834 | ---- | C] () -- C:\Windows\SysWow64\msidentmn.exe
[2012.12.11 22:00:39 | 000,181,248 | ---- | C] () -- C:\Windows\SysWow64\initpentp.exe
[2012.12.11 22:00:39 | 000,076,800 | ---- | C] () -- C:\Windows\SysWow64\libgnurx-0.dll
[2012.12.11 22:00:39 | 000,043,008 | ---- | C] () -- C:\Windows\SysWow64\libgcc_s_dw2-1.dll
[2012.12.11 22:00:39 | 000,024,110 | ---- | C] () -- C:\Windows\SysWow64\mingwm10.dll
[2012.12.11 21:47:48 | 000,004,608 | ---- | C] () -- C:\Users\Jakub\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2012.11.12 11:21:10 | 000,099,384 | ---- | C] () -- C:\Users\Jakub\AppData\Roaming\inst.exe
[2012.11.12 11:21:10 | 000,007,859 | ---- | C] () -- C:\Users\Jakub\AppData\Roaming\pcouffin.cat
[2012.11.12 11:21:10 | 000,001,167 | ---- | C] () -- C:\Users\Jakub\AppData\Roaming\pcouffin.inf
[2012.11.12 11:16:24 | 000,001,057 | ---- | C] () -- C:\Users\Jakub\AppData\Roaming\vso_ts_preview.xml
[2012.10.22 19:14:56 | 000,000,132 | ---- | C] () -- C:\Users\Jakub\AppData\Roaming\Adobe Formát PNG CS6 – předvolby
[2012.10.21 11:04:35 | 000,427,999 | ---- | C] () -- C:\Users\Jakub\.websiteauditor.properties
[2012.10.21 10:42:23 | 000,182,845 | ---- | C] () -- C:\Users\Jakub\.spyglass.properties
[2012.10.20 21:15:00 | 000,126,974 | ---- | C] () -- C:\Users\Jakub\.ranktracker.properties
[2012.10.09 21:26:36 | 000,000,000 | ---- | C] () -- C:\Windows\eDrawingOfficeAutomator.INI
[2012.10.06 15:44:55 | 000,210,032 | ---- | C] () -- C:\Windows\SysWow64\DBCLIENT.DLL
[2012.10.06 13:26:27 | 001,688,488 | ---- | C] () -- C:\Windows\SysWow64\PerfStringBackup.INI
[2012.10.06 08:52:38 | 000,000,000 | -H-- | C] () -- C:\ProgramData\DP45977C.lfl
[2012.10.06 08:51:07 | 000,735,796 | ---- | C] () -- C:\Windows\SysWow64\igkrng700.bin
[2012.10.06 08:51:05 | 000,561,508 | ---- | C] () -- C:\Windows\SysWow64\igfcg700m.bin
[2012.10.06 08:51:02 | 000,058,880 | ---- | C] () -- C:\Windows\SysWow64\igdde32.dll
[2012.10.06 08:50:59 | 013,007,360 | ---- | C] () -- C:\Windows\SysWow64\ig7icd32.dll
[2012.10.05 14:57:14 | 000,035,404 | R--- | C] () -- C:\Windows\ConnectionProfiles.dat
[2012.01.03 08:28:06 | 002,570,286 | ---- | C] () -- C:\Windows\SysWow64\abgx360.exe
[2011.12.08 15:14:58 | 000,001,536 | ---- | C] () -- C:\Windows\SysWow64\IusEventLog.dll
========== ZeroAccess Check ==========
[2009.07.14 05:55:00 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini
[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64
[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
"" = C:\Windows\SysNative\shell32.dll -- [2012.06.09 06:43:10 | 014,172,672 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2012.06.09 05:41:00 | 012,873,728 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\fastprox.dll -- [2012.08.21 14:11:31 | 000,857,088 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2012.08.21 14:37:44 | 000,636,928 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\wbemess.dll -- [2012.08.21 14:08:38 | 000,453,120 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
========== LOP Check ==========
[2012.11.17 19:04:41 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\.minecraft
[2012.11.17 19:04:08 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\.minecraft[VCHbackup]
[2013.01.08 10:58:06 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\abgx360
[2012.10.06 13:36:39 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\Ansys
[2012.12.01 20:22:13 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\Ashampoo
[2012.12.08 13:53:21 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\Autodesk
[2012.12.16 12:55:33 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\DAEMON Tools Lite
[2012.10.09 21:25:43 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\DassaultSystemes
[2012.11.03 09:49:54 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\EDrawings
[2012.10.06 10:37:22 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\GHISLER
[2012.12.02 16:28:49 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\ImgBurn
[2012.10.06 13:09:43 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\Leadertech
[2012.10.05 15:16:19 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\LSC
[2012.11.19 19:08:46 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\MOBILedit
[2013.01.02 18:53:49 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\Opera
[2012.11.04 11:20:06 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\Outlook
[2012.10.06 15:50:06 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\ProgeCAD
[2012.10.05 15:15:38 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\PwrMgr
[2012.10.05 14:56:37 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\Sierra Wireless
[2012.10.18 14:41:18 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\systweak
[2012.10.06 17:44:31 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\TeamViewer
[2012.10.06 10:10:39 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\Thunderbird
[2012.12.19 21:21:49 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\TransMemory_Secure
[2012.10.06 11:06:29 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\VitySoft
[2013.01.08 10:30:52 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\Vso
[2012.10.09 16:19:33 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\Zoner
========== Purity Check ==========
========== Custom Scans ==========
< >
[2009.07.14 06:08:49 | 000,000,006 | -H-- | C] () -- C:\Windows\Tasks\SA.DAT
[2009.07.14 06:08:49 | 000,032,538 | ---- | C] () -- C:\Windows\Tasks\SCHEDLGU.TXT
[2012.10.06 08:50:52 | 000,000,828 | ---- | C] () -- C:\Windows\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon.job
[2012.10.06 08:50:52 | 000,000,830 | ---- | C] () -- C:\Windows\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d.job
[2012.10.06 09:34:38 | 000,000,910 | ---- | C] () -- C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3752770136-2494076584-3171830822-1000Core.job
[2012.10.06 09:34:38 | 000,000,962 | ---- | C] () -- C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3752770136-2494076584-3171830822-1000UA.job
[2012.10.06 10:10:08 | 000,000,914 | ---- | C] () -- C:\Windows\Tasks\Adobe Flash Player Updater.job
< >
< MD5 for: ATAPI.SYS >
[2009.07.14 02:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\SysNative\drivers\atapi.sys
[2009.07.14 02:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\SysNative\DriverStore\FileRepository\mshdc.inf_amd64_neutral_aad30bdeec04ea5e\atapi.sys
[2009.07.14 02:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\winsxs\amd64_mshdc.inf_31bf3856ad364e35_6.1.7601.17514_none_3b5e2d89382958dd\atapi.sys
< MD5 for: AUTOCHK.EXE >
[2010.11.20 14:24:26 | 000,777,728 | ---- | M] (Microsoft Corporation) MD5=3B536A8BEC3B4F23FFDFD78B11A2AB93 -- C:\Windows\SysNative\autochk.exe
[2010.11.20 14:24:26 | 000,777,728 | ---- | M] (Microsoft Corporation) MD5=3B536A8BEC3B4F23FFDFD78B11A2AB93 -- C:\Windows\winsxs\amd64_microsoft-windows-autochk_31bf3856ad364e35_6.1.7601.17514_none_4019f2b8d860ad30\autochk.exe
[2010.11.20 13:16:54 | 000,668,160 | ---- | M] (Microsoft Corporation) MD5=F88A52EB62019D6A62FDD9E08034DBD8 -- C:\Windows\SysWOW64\autochk.exe
[2010.11.20 13:16:54 | 000,668,160 | ---- | M] (Microsoft Corporation) MD5=F88A52EB62019D6A62FDD9E08034DBD8 -- C:\Windows\winsxs\x86_microsoft-windows-autochk_31bf3856ad364e35_6.1.7601.17514_none_e3fb573520033bfa\autochk.exe
< MD5 for: CDROM.SYS >
[2010.11.20 10:19:21 | 000,147,456 | ---- | M] (Microsoft Corporation) MD5=F036CE71586E93D94DAB220D7BDF4416 -- C:\Windows\SysNative\drivers\cdrom.sys
[2010.11.20 10:19:21 | 000,147,456 | ---- | M] (Microsoft Corporation) MD5=F036CE71586E93D94DAB220D7BDF4416 -- C:\Windows\SysNative\DriverStore\FileRepository\cdrom.inf_amd64_neutral_0b3d0d1942ab684b\cdrom.sys
[2010.11.20 10:19:21 | 000,147,456 | ---- | M] (Microsoft Corporation) MD5=F036CE71586E93D94DAB220D7BDF4416 -- C:\Windows\winsxs\amd64_cdrom.inf_31bf3856ad364e35_6.1.7601.17514_none_bdcf6151ba66f48b\cdrom.sys
< MD5 for: EXPLORER.EXE >
[2011.02.26 07:23:14 | 002,870,272 | ---- | M] (Microsoft Corporation) MD5=0862495E0C825893DB75EF44FAEA8E93 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16768_none_adc24107935a7e25\explorer.exe
[2011.02.26 06:19:21 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=0FB9C74046656D1579A64660AD67B746 -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.21669_none_ba87e574ddfe652d\explorer.exe
[2011.02.25 07:19:30 | 002,871,808 | ---- | M] (Microsoft Corporation) MD5=332FEAB1435662FC6C672E25BEB37BE3 -- C:\Windows\explorer.exe
[2011.02.25 07:19:30 | 002,871,808 | ---- | M] (Microsoft Corporation) MD5=332FEAB1435662FC6C672E25BEB37BE3 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17567_none_afa79dc39081d0ba\explorer.exe
[2011.02.26 07:14:34 | 002,871,808 | ---- | M] (Microsoft Corporation) MD5=3B69712041F3D63605529BD66DC00C48 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.21669_none_b0333b22a99da332\explorer.exe
[2010.11.20 13:17:09 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=40D777B7A95E00593EB1568C68514493 -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17514_none_ba2f56d3c4bcbafb\explorer.exe
[2009.08.03 07:19:07 | 002,868,224 | ---- | M] (Microsoft Corporation) MD5=700073016DAC1C3D2E7E2CE4223334B6 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20500_none_ae84b558ac4eb41c\explorer.exe
[2011.02.25 06:30:54 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=8B88EBBB05A0E56B7DCC708498C02B3E -- C:\Windows\SysWOW64\explorer.exe
[2011.02.25 06:30:54 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=8B88EBBB05A0E56B7DCC708498C02B3E -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17567_none_b9fc4815c4e292b5\explorer.exe
[2009.10.31 07:34:59 | 002,870,272 | ---- | M] (Microsoft Corporation) MD5=9AAAEC8DAC27AA17B053E6352AD233AE -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16450_none_adc508f19359a007\explorer.exe
[2010.11.20 14:24:45 | 002,872,320 | ---- | M] (Microsoft Corporation) MD5=AC4C51EB24AA95B77F705AB159189E24 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17514_none_afdaac81905bf900\explorer.exe
[2009.10.31 07:38:38 | 002,870,272 | ---- | M] (Microsoft Corporation) MD5=B8EC4BD49CE8F6FC457721BFC210B67F -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20563_none_ae46d6aeac7ca7c7\explorer.exe
[2009.07.14 02:39:10 | 002,868,224 | ---- | M] (Microsoft Corporation) MD5=C235A51CB740E45FFA0EBFB9BAFCDA64 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16385_none_ada998b9936d7566\explorer.exe
[2011.02.26 07:26:45 | 002,870,784 | ---- | M] (Microsoft Corporation) MD5=E38899074D4951D31B4040E994DD7C8D -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20910_none_ae79ed04ac56c4a9\explorer.exe
[2009.08.03 07:17:37 | 002,868,224 | ---- | M] (Microsoft Corporation) MD5=F170B4A061C9E026437B193B4D571799 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16404_none_adff19b5932d79ae\explorer.exe
< MD5 for: HAL.DLL >
[2010.11.20 14:33:34 | 000,263,040 | ---- | M] (Microsoft Corporation) MD5=CFB8C673F9188F99466E76C6972191E0 -- C:\Windows\SysNative\hal.dll
[2010.11.20 14:33:34 | 000,263,040 | ---- | M] (Microsoft Corporation) MD5=CFB8C673F9188F99466E76C6972191E0 -- C:\Windows\winsxs\amd64_microsoft-windows-hal_31bf3856ad364e35_6.1.7601.17514_none_094ef8137049c196\hal.dll
< MD5 for: SCECLI.DLL >
[2010.11.20 13:21:04 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=8124944EC89D6A1815E4E53F5B96AAF4 -- C:\Windows\SysWOW64\scecli.dll
[2010.11.20 13:21:04 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=8124944EC89D6A1815E4E53F5B96AAF4 -- C:\Windows\winsxs\wow64_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7601.17514_none_a088921d241bbb4e\scecli.dll
[2010.11.20 14:27:25 | 000,232,960 | ---- | M] (Microsoft Corporation) MD5=ED78427259134C63ED69804D2132B86C -- C:\Windows\SysNative\scecli.dll
[2010.11.20 14:27:25 | 000,232,960 | ---- | M] (Microsoft Corporation) MD5=ED78427259134C63ED69804D2132B86C -- C:\Windows\winsxs\amd64_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7601.17514_none_9633e7caefbaf953\scecli.dll
< MD5 for: SERVICES.EXE >
[2009.07.14 02:39:37 | 000,328,704 | ---- | M] (Microsoft Corporation) MD5=24ACB7E5BE595468E3B9AA488B9B4FCB -- C:\Windows\SysNative\services.exe
[2009.07.14 02:39:37 | 000,328,704 | ---- | M] (Microsoft Corporation) MD5=24ACB7E5BE595468E3B9AA488B9B4FCB -- C:\Windows\winsxs\amd64_microsoft-windows-s..s-servicecontroller_31bf3856ad364e35_6.1.7600.16385_none_2b54b20ee6fa07b1\services.exe
< MD5 for: SVCHOST.EXE >
[2009.07.14 02:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\SysWOW64\svchost.exe
[2009.07.14 02:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\winsxs\x86_microsoft-windows-services-svchost_31bf3856ad364e35_6.1.7600.16385_none_b591afc466a15356\svchost.exe
[2009.07.14 02:39:46 | 000,027,136 | ---- | M] (Microsoft Corporation) MD5=C78655BC80301D76ED4FEF1C1EA40A7D -- C:\Windows\SysNative\svchost.exe
[2009.07.14 02:39:46 | 000,027,136 | ---- | M] (Microsoft Corporation) MD5=C78655BC80301D76ED4FEF1C1EA40A7D -- C:\Windows\winsxs\amd64_microsoft-windows-services-svchost_31bf3856ad364e35_6.1.7600.16385_none_11b04b481efec48c\svchost.exe
< MD5 for: TCPIP.SYS >
[2012.10.03 18:56:54 | 001,914,248 | ---- | M] (Microsoft Corporation) MD5=37608401DFDB388CAF66917F6B2D6FB0 -- C:\Windows\SysNative\drivers\tcpip.sys
[2012.10.03 18:56:54 | 001,914,248 | ---- | M] (Microsoft Corporation) MD5=37608401DFDB388CAF66917F6B2D6FB0 -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.17964_none_110e0fbd7d2e4b88\tcpip.sys
[2010.11.20 14:33:57 | 001,924,480 | ---- | M] (Microsoft Corporation) MD5=509383E505C973ED7534A06B3D19688D -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.17514_none_114417c17d05cb37\tcpip.sys
[2012.08.22 19:06:13 | 001,901,936 | ---- | M] (Microsoft Corporation) MD5=7880A26B7D3B96FDA8EFD9F985036B1D -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.22097_none_117a13de9661c145\tcpip.sys
[2012.03.30 11:26:36 | 001,901,424 | ---- | M] (Microsoft Corporation) MD5=885B202006EE17AE99B9FBCEC9AF88C9 -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.21954_none_11a27a8e9643d23a\tcpip.sys
[2012.03.30 12:35:47 | 001,918,320 | ---- | M] (Microsoft Corporation) MD5=ACB82BDA8F46C84F465C1AFA517DC4B9 -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.17802_none_114ceccb7cff740d\tcpip.sys
[2012.10.03 18:44:29 | 001,902,472 | ---- | M] (Microsoft Corporation) MD5=D5707FC2300AA5B04B7BFE86D40C0133 -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.22124_none_11c2c45a962baed0\tcpip.sys
[2012.08.22 19:12:50 | 001,913,200 | ---- | M] (Microsoft Corporation) MD5=F782CAD3CEDBB3F9FFE3BF2775D92DDC -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.17939_none_113380f37d117668\tcpip.sys
< MD5 for: USERINIT.EXE >
[2010.11.20 13:17:48 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=61AC3EFDFACFDD3F0F11DD4FD4044223 -- C:\Windows\SysWOW64\userinit.exe
[2010.11.20 13:17:48 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=61AC3EFDFACFDD3F0F11DD4FD4044223 -- C:\Windows\winsxs\x86_microsoft-windows-userinit_31bf3856ad364e35_6.1.7601.17514_none_de3024012ff21116\userinit.exe
[2010.11.20 14:25:24 | 000,030,720 | ---- | M] (Microsoft Corporation) MD5=BAFE84E637BF7388C96EF48D4D3FDD53 -- C:\Windows\SysNative\userinit.exe
[2010.11.20 14:25:24 | 000,030,720 | ---- | M] (Microsoft Corporation) MD5=BAFE84E637BF7388C96EF48D4D3FDD53 -- C:\Windows\winsxs\amd64_microsoft-windows-userinit_31bf3856ad364e35_6.1.7601.17514_none_3a4ebf84e84f824c\userinit.exe
< MD5 for: WINLOGON.EXE >
[2010.11.20 14:25:30 | 000,390,656 | ---- | M] (Microsoft Corporation) MD5=1151B1BAA6F350B1DB6598E0FEA7C457 -- C:\Windows\SysNative\winlogon.exe
[2010.11.20 14:25:30 | 000,390,656 | ---- | M] (Microsoft Corporation) MD5=1151B1BAA6F350B1DB6598E0FEA7C457 -- C:\Windows\winsxs\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7601.17514_none_cde90685eb910636\winlogon.exe
< >
< %systemroot%*.* /U /s >
[7 C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp files -> C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp -> ]
[13 C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\*.tmp files -> C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\*.tmp -> ]
[36 C:\Windows\Installer\*.tmp files -> C:\Windows\Installer\*.tmp -> ]
[6 C:\Windows\Temp\*.tmp files -> C:\Windows\Temp\*.tmp -> ]
< %SYSTEMDRIVE%\*.exe >
< %ALLUSERSPROFILE%\Application Data\*. >
< %ALLUSERSPROFILE%\Application Data\*.exe /s >
< %APPDATA%\*. >
[2012.11.17 19:04:41 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\.minecraft
[2012.11.17 19:04:08 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\.minecraft[VCHbackup]
[2013.01.08 10:58:06 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\abgx360
[2012.12.11 21:47:47 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\Adobe
[2012.10.06 13:36:39 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\Ansys
[2012.12.01 20:22:13 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\Ashampoo
[2012.12.08 13:53:21 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\Autodesk
[2012.12.16 12:55:33 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\DAEMON Tools Lite
[2012.10.09 21:25:43 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\DassaultSystemes
[2013.01.13 20:28:42 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\dvdcss
[2012.11.03 09:49:54 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\EDrawings
[2012.10.06 10:37:22 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\GHISLER
[2012.10.14 09:25:43 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\Google Chrome Backup
[2012.10.09 21:26:34 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\help_images_otherUI
[2012.10.09 16:08:16 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\HP
[2013.01.04 15:46:35 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\HpUpdate
[2012.10.05 14:53:46 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\Identities
[2012.12.02 16:28:49 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\ImgBurn
[2012.10.05 14:58:06 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\InstallShield
[2012.10.05 15:02:30 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\Intel
[2012.10.06 13:09:43 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\Leadertech
[2012.10.06 13:10:20 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\Logishrd
[2012.10.06 13:09:45 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\Logitech
[2012.10.05 15:16:19 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\LSC
[2012.10.05 15:16:11 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\Macromedia
[2012.10.10 17:53:28 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\Mathematica
[2009.07.14 16:36:31 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\Media Center Programs
[2012.12.04 17:41:33 | 000,000,000 | --SD | M] -- C:\Users\Jakub\AppData\Roaming\Microsoft
[2012.11.19 19:08:46 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\MOBILedit
[2012.10.06 10:06:18 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\Mozilla
[2012.10.06 11:09:57 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\NVIDIA
[2013.01.02 18:53:49 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\Opera
[2012.11.04 11:20:06 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\Outlook
[2012.10.06 15:50:06 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\ProgeCAD
[2012.10.08 15:55:17 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\PSpad
[2012.10.05 15:15:38 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\PwrMgr
[2012.10.05 14:56:37 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\Sierra Wireless
[2013.01.20 17:19:21 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\Skype
[2012.11.28 14:10:23 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\SolidWorks
[2012.10.18 14:41:18 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\systweak
[2012.10.06 17:44:31 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\TeamViewer
[2012.10.06 10:10:39 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\Thunderbird
[2012.12.19 21:21:49 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\TransMemory_Secure
[2012.10.06 11:06:29 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\VitySoft
[2013.01.17 15:43:26 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\vlc
[2013.01.08 10:30:52 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\Vso
[2012.10.06 11:01:05 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\WinRAR
[2012.10.09 16:19:33 | 000,000,000 | ---D | M] -- C:\Users\Jakub\AppData\Roaming\Zoner
< %APPDATA%\*.exe /s >
[2012.11.12 11:21:10 | 000,099,384 | ---- | M] () -- C:\Users\Jakub\AppData\Roaming\inst.exe
[2012.03.08 10:12:53 | 000,695,296 | ---- | M] (AnjoCaido) -- C:\Users\Jakub\AppData\Roaming\MinecraftSP.exe
[2012.10.21 18:59:39 | 000,053,664 | ---- | M] (Adobe Systems Inc.) -- C:\Users\Jakub\AppData\Roaming\Macromedia\Flash Player\www.macromedia.com\bin\airappinstaller\airappinstaller.exe
[2012.10.05 15:12:49 | 000,010,134 | R--- | M] () -- C:\Users\Jakub\AppData\Roaming\Microsoft\Installer\{1C83CB66-D345-4D6C-95A2-63A03269ADA0}\ARPPRODUCTICON.exe
[2012.12.16 11:06:03 | 000,053,248 | R--- | M] (Acresso Software Inc.) -- C:\Users\Jakub\AppData\Roaming\Microsoft\Installer\{3EE9BCAE-E9A9-45E5-9B1C-83A4D357E05C}\ARPPRODUCTICON.exe
[2012.12.03 10:59:41 | 000,010,134 | R--- | M] () -- C:\Users\Jakub\AppData\Roaming\Microsoft\Installer\{4BE91685-1632-47FC-B563-A8A542C6664C}\_386998012CE765DB51A217.exe
[2012.12.03 10:59:41 | 000,010,134 | R--- | M] () -- C:\Users\Jakub\AppData\Roaming\Microsoft\Installer\{4BE91685-1632-47FC-B563-A8A542C6664C}\_54ADCD11F3CF522B57A4A6.exe
[2012.10.05 15:12:49 | 000,010,134 | R--- | M] () -- C:\Users\Jakub\AppData\Roaming\Microsoft\Installer\{A7BB9BBD-DFE4-4276-820A-7CD141FC09E6}\ARPPRODUCTICON.exe
[2012.11.05 12:25:00 | 000,053,248 | R--- | M] (Acresso Software Inc.) -- C:\Users\Jakub\AppData\Roaming\Microsoft\Installer\{ABE4638D-D208-4061-9F26-E3E11E3A1E0C}\ARPPRODUCTICON.exe
[2012.11.05 12:24:58 | 000,053,248 | R--- | M] (Acresso Software Inc.) -- C:\Users\Jakub\AppData\Roaming\Microsoft\Installer\{AD32F5E9-6BDD-480A-8B7B-95571D04691C}\ARPPRODUCTICON.exe
[2012.10.13 17:31:31 | 000,119,808 | R--- | M] () -- C:\Users\Jakub\AppData\Roaming\Microsoft\Installer\{CCF298AF-9CE1-4B26-B251-486E98A34789}\icons.exe
[2012.10.06 13:14:23 | 000,010,134 | R--- | M] () -- C:\Users\Jakub\AppData\Roaming\Microsoft\Installer\{E3E71D07-CD27-46CB-8448-16D4FB29AA13}\ARPPRODUCTICON.exe
[2010.02.01 17:45:56 | 001,687,552 | ---- | M] () -- C:\Users\Jakub\AppData\Roaming\TransMemory_Secure\TransMemory_Secure3.exe
< %systemroot%\*. /mp /s >
< %systemroot%\system32\*.dll /lockedfiles >
< %systemroot%\Tasks\*.job >
[2013.01.20 17:20:00 | 000,000,914 | ---- | M] () -- C:\Windows\Tasks\Adobe Flash Player Updater.job
[2013.01.20 10:44:00 | 000,000,910 | ---- | M] () -- C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3752770136-2494076584-3171830822-1000Core.job
[2013.01.20 16:44:00 | 000,000,962 | ---- | M] () -- C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3752770136-2494076584-3171830822-1000UA.job
[2013.01.20 10:09:05 | 000,000,828 | ---- | M] () -- C:\Windows\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon.job
[2013.01.19 19:29:00 | 000,000,830 | ---- | M] () -- C:\Windows\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d.job
< %systemroot%\system32\drivers\*.sys /lockedfiles >
< %systemroot%\System32\config\*.sav >
< %systemroot%\system32\*.dll /lockedfiles >
< %systemroot%\system32\drivers\*.sys /3 >
< %systemroot%\system32\*.* /3 >
[2013.01.20 10:11:07 | 000,000,044 | ---- | M] () -- C:\Windows\system32\log.txt
< %SYSTEMDRIVE%\*.exe >
< >
< HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s >
"AdobeBridge" =
"RESTART_STICKY_NOTES" = C:\Windows\System32\StikyNot.exe
"DAEMON Tools Lite" = "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun -- [2012.11.06 11:46:46 | 003,673,728 | ---- | M] (DT Soft Ltd)
"Akamai NetSession Interface" = "C:\Users\Jakub\AppData\Local\Akamai\netsession_win.exe" -- [2012.10.09 10:53:36 | 004,441,920 | ---- | M] (Akamai Technologies, Inc.)
"HP Officejet Pro 8600 (NET)" = "C:\Program Files\HP\HP Officejet Pro 8600\Bin\ScanToPCActivationApp.exe" -deviceID "CN29PBXH3X05KC:NW" -scfn "HP Officejet Pro 8600 (NET)" -AutoStart 1 -- [2011.09.09 16:27:42 | 002,676,584 | ---- | M] (Hewlett-Packard Co.)
< >
< %PROGRAMFILES%\Mozilla Firefox\firefox.exe /md5 >
[2012.09.06 02:24:58 | 000,917,984 | ---- | M] (Mozilla Corporation) MD5=9C376F42BDE37F18D0A39AF7415D9BE6 -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
< %PROGRAMFILES%\Internet Explorer\iexplore.exe /md5 >
[2012.11.14 03:56:04 | 000,757,296 | ---- | M] (Microsoft Corporation) MD5=0D286C0FE561D1A7EB30E83A0FF305B2 -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
< %PROGRAMFILES%\Opera\opera.exe /md5 >
[2013.01.02 18:53:46 | 000,879,080 | ---- | M] (Opera Software) MD5=3A783497492D685E5F8D61FE06F4FE5A -- C:\Program Files (x86)\Opera\opera.exe
< %PROGRAMFILES%\Google\Chrome\Application\chrome.exe /md5 >
< >
< %SystemDrive%\PhysicalMBR.bin /md5 >
[2013.01.20 17:29:14 | 000,000,512 | ---- | M] () MD5=F7E9B7504E80BA7A77BE1EC1DF3F505A -- C:\PhysicalMBR.bin
Re: Preventivní kontrola
< >
< *crack* /s >
[2001.08.14 18:31:08 | 000,030,054 | ---- | M] () -- \Program Files\Autodesk\AutoCAD 2013\Inventor Server\Textures\surfaces\Cracks.bmp
[2012.11.03 11:32:48 | 000,005,369 | ---- | M] () -- \Users\Jakub\AppData\Roaming\VitySoft\FRD\plugins\crackle.frp
[2012.10.10 12:52:55 | 000,030,054 | ---- | M] () -- \Users\Public\Documents\Autodesk\Inventor 2013\Textures\surfaces\Cracks.bmp
[2001.08.14 22:31:08 | 000,030,054 | ---- | M] () -- \Users\Public\Documents\Autodesk\Inventor View 2013\Textures\surfaces\Cracks.bmp
< *keygen* /s >
< *loader* /s >
[2012.02.22 22:11:56 | 000,078,336 | ---- | M] () -- \Program Files (x86)\Common Files\Adobe\dynamiclinkmediaserver\1.0\MXF_SDK_MetaMetadata_BinaryLoader_4.4.3.dll
[2012.02.22 22:11:56 | 000,155,136 | ---- | M] () -- \Program Files (x86)\Common Files\Adobe\dynamiclinkmediaserver\1.0\MXF_SDK_MetaMetadata_XSDLoader2_4.4.3.dll
[2012.02.22 22:11:56 | 000,117,248 | ---- | M] () -- \Program Files (x86)\Common Files\Adobe\dynamiclinkmediaserver\1.0\MXF_SDK_MetaMetadata_XSDLoader_4.4.3.dll
[2011.09.27 04:53:06 | 001,723,976 | ---- | M] () -- \Program Files (x86)\Common Files\Manažer instalací SolidWorks\20.0\sldimdownloader.exe
[2005.09.23 03:24:22 | 000,061,440 | ---- | M] () -- \Program Files (x86)\Common Files\microsoft shared\VS7Debug\coloader80.dll
[2005.09.22 22:23:44 | 000,004,608 | ---- | M] () -- \Program Files (x86)\Common Files\microsoft shared\VS7Debug\coloader80.tlb
[2010.10.07 03:36:40 | 000,265,552 | ---- | M] () -- \Program Files (x86)\Common Files\microsoft shared\VSTO\10.0\VSTOLoader.dll
[2010.10.07 03:36:40 | 000,018,264 | ---- | M] () -- \Program Files (x86)\Common Files\microsoft shared\VSTO\10.0\1033\VSTOLoaderUI.dll
[2009.10.06 06:08:30 | 000,145,082 | ---- | M] () -- \Program Files (x86)\HP\HP Officejet Pro 8600\bin\HelpViewer\Resources\Loader.gif
[2008.01.22 08:14:52 | 000,017,624 | ---- | M] () -- \Program Files (x86)\Microsoft SQL Server\90\Tools\Binn\SqlResourceLoader.dll
[2008.01.22 08:14:58 | 000,017,624 | ---- | M] () -- \Program Files (x86)\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\SqlResourceLoader.dll
[2012.11.01 09:32:14 | 000,057,224 | ---- | M] () -- \Program Files (x86)\NVIDIA Corporation\PhysX\Common\PhysXLoader.dll
[2012.11.01 09:32:44 | 000,065,416 | ---- | M] () -- \Program Files (x86)\NVIDIA Corporation\PhysX\Common\PhysXLoader64.dll
[2012.09.04 23:34:12 | 000,083,848 | ---- | M] () -- \Program Files (x86)\NVIDIA Corporation\PhysX\Common\PhysXUpdateLoader.dll
[2012.09.04 23:34:12 | 000,088,968 | ---- | M] () -- \Program Files (x86)\NVIDIA Corporation\PhysX\Common\PhysXUpdateLoader64.dll
[2013.01.04 09:09:34 | 002,496,952 | ---- | M] () -- \Program Files (x86)\WebDataLoader\WebDataLoader.exe
[2012.12.11 22:02:24 | 000,000,105 | ---- | M] () -- \Program Files (x86)\WebDataLoader\WebDataLoader.ini
[2011.01.12 22:53:42 | 000,000,082 | ---- | M] () -- \Program Files (x86)\WebDataLoader\WebDataLoader.pI6
[2013.01.12 21:18:42 | 000,000,053 | ---- | M] () -- \Program Files (x86)\WebDataLoader\WebDataLoader.url
[2012.03.13 11:10:54 | 003,297,128 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS6 (64 Bit)\photodownloader\Photodownloader.exe
[2012.03.13 09:42:26 | 000,011,161 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS6 (64 Bit)\photodownloader\apd\shared_assets\bitmaps\main_window\C_LoadError.png
[2012.03.13 09:42:28 | 000,011,161 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS6 (64 Bit)\photodownloader\apd\shared_assets\combined_bitmaps\main_window\C_LoadError.png
[2012.03.13 09:42:28 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS6 (64 Bit)\photodownloader\apd\shared_assets\locales\da_dk\Photodownloader.ini
[2012.03.13 09:42:28 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS6 (64 Bit)\photodownloader\apd\shared_assets\locales\de_de\Photodownloader.ini
[2012.03.13 09:42:28 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS6 (64 Bit)\photodownloader\apd\shared_assets\locales\en_us\Photodownloader.ini
[2012.03.13 09:42:28 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS6 (64 Bit)\photodownloader\apd\shared_assets\locales\es_es\Photodownloader.ini
[2012.03.13 09:42:28 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS6 (64 Bit)\photodownloader\apd\shared_assets\locales\fi_fi\Photodownloader.ini
[2012.03.13 09:42:28 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS6 (64 Bit)\photodownloader\apd\shared_assets\locales\fr_fr\Photodownloader.ini
[2012.03.13 09:42:28 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS6 (64 Bit)\photodownloader\apd\shared_assets\locales\it_it\Photodownloader.ini
[2012.03.13 09:42:28 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS6 (64 Bit)\photodownloader\apd\shared_assets\locales\ja_jp\Photodownloader.ini
[2012.03.13 09:42:28 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS6 (64 Bit)\photodownloader\apd\shared_assets\locales\ko_kr\Photodownloader.ini
[2012.03.13 09:42:28 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS6 (64 Bit)\photodownloader\apd\shared_assets\locales\nl_nl\Photodownloader.ini
[2012.03.13 09:42:28 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS6 (64 Bit)\photodownloader\apd\shared_assets\locales\no_no\Photodownloader.ini
[2012.03.13 09:42:28 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS6 (64 Bit)\photodownloader\apd\shared_assets\locales\pt_br\Photodownloader.ini
[2012.03.13 09:42:28 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS6 (64 Bit)\photodownloader\apd\shared_assets\locales\sv_se\Photodownloader.ini
[2012.03.13 09:42:30 | 000,000,324 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS6 (64 Bit)\photodownloader\apd\shared_assets\locales\zh_cn\Photodownloader.ini
[2012.03.13 09:42:30 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS6 (64 Bit)\photodownloader\apd\shared_assets\locales\zh_tw\Photodownloader.ini
[2012.02.07 04:39:48 | 000,193,960 | ---- | M] () -- \Program Files\Autodesk\AutoCAD 2013\AcAutoLoader.arx
[2012.02.07 04:38:06 | 002,342,312 | ---- | M] () -- \Program Files\Autodesk\AutoCAD 2013\AdDownloaderCore.dll
[2012.01.25 13:10:54 | 000,026,024 | ---- | M] () -- \Program Files\Autodesk\AutoCAD 2013\AecLoader.arx
[2012.12.03 11:56:36 | 000,008,349 | ---- | M] () -- \Program Files\Autodesk\AutoCAD 2013\Acadm\Setup\cs-CZ\Setup\cs-CZ\Docs\acadm_sysreq\scripts\beehive\core\FileLoader.js
[2012.12.03 11:56:37 | 000,007,404 | ---- | M] () -- \Program Files\Autodesk\AutoCAD 2013\Acadm\Setup\cs-CZ\Setup\cs-CZ\Docs\acadm_sysreq\scripts\beehive\ui\StylesheetLoader.js
[2012.12.03 11:56:37 | 000,003,208 | ---- | M] () -- \Program Files\Autodesk\AutoCAD 2013\Acadm\Setup\cs-CZ\Setup\cs-CZ\Docs\acadm_sysreq\scripts\beehiveSearch\styles\images\loader.gif
[2012.03.13 08:47:55 | 000,012,912 | ---- | M] () -- \Program Files\Autodesk\AutoCAD 2013\cs-CZ\AcAutoLoaderRes.dll
[2012.01.14 00:22:20 | 000,063,648 | ---- | M] () -- \Program Files\Autodesk\AutoCAD 2013\Inventor Server\Bin\ClrAddinLoader.dll
[2012.10.10 12:41:05 | 000,026,024 | ---- | M] () -- \Program Files\Autodesk\DWG TrueView 2013\AecLoader.arx
[2012.10.10 12:45:31 | 000,063,648 | ---- | M] () -- \Program Files\Autodesk\Inventor 2013\Bin\ClrAddinLoader.dll
[2012.02.14 03:01:26 | 004,888,416 | ---- | M] () -- \Program Files\Autodesk\Vault Basic 2013\Autoloader\Explorer\Autoloader.exe
[2011.06.12 14:25:30 | 000,010,163 | ---- | M] () -- \Program Files\Autodesk\Vault Basic 2013\Autoloader\Explorer\Autoloader.exe.config
[2010.04.19 12:40:24 | 000,005,644 | ---- | M] () -- \Program Files\Autodesk\Vault Basic 2013\Autoloader\Explorer\Autoloader Templates\Autoloader_ArchiveReport.xsl
[2010.04.19 12:40:24 | 000,011,500 | ---- | M] () -- \Program Files\Autodesk\Vault Basic 2013\Autoloader\Explorer\Autoloader Templates\Autoloader_ScanReport.xsl
[2010.04.19 12:40:24 | 000,019,316 | ---- | M] () -- \Program Files\Autodesk\Vault Basic 2013\Autoloader\Explorer\Autoloader Templates\Autoloader_UploadReport.xsl
[2009.06.12 17:03:00 | 000,000,000 | ---- | M] () -- \Program Files\Autodesk\Vault Basic 2013\Autoloader\Explorer\Loc\Autoloader.resources.dll
[2010.10.07 03:36:40 | 000,387,408 | ---- | M] () -- \Program Files\Common Files\Microsoft Shared\VSTO\10.0\VSTOLoader.dll
[2010.10.07 03:36:40 | 000,018,264 | ---- | M] () -- \Program Files\Common Files\Microsoft Shared\VSTO\10.0\1033\VSTOLoaderUI.dll
[2011.09.26 18:16:46 | 007,951,872 | ---- | M] () -- \Program Files\SolidWorks Corp\SolidWorks\photoview\swkloader64_libFNP.dll
[2011.09.26 18:16:46 | 003,242,496 | ---- | M] () -- \Program Files\SolidWorks Corp\SolidWorks\photoview\extra\swkloader64.lx
[2011.04.29 05:34:02 | 000,014,398 | ---- | M] () -- \Program Files\SolidWorks Corp\SolidWorks\photoview\extra\scripts\pv_envloader.py
[2011.09.26 23:48:16 | 000,163,840 | ---- | M] () -- \Program Files\SolidWorks Corp\SolidWorks\sld3DViaUploader\sld3dViaUploader.exe
[2011.09.27 04:18:16 | 000,632,392 | ---- | M] () -- \Program Files\SolidWorks Corp\SolidWorks\sldutils\SwLoaderSw.dll
[2011.09.27 04:19:04 | 000,136,776 | ---- | M] () -- \Program Files\SolidWorks Corp\SolidWorks\sldutils\lang\czech\SwLoaderSwResu.dll
[2011.09.27 04:19:20 | 000,136,264 | ---- | M] () -- \Program Files\SolidWorks Corp\SolidWorks\sldutils\lang\English\SwLoaderSwResu.dll
[2012.06.09 18:19:38 | 000,055,296 | ---- | M] () -- \Program Files\WinRAR\Formats\ace32loader.exe
[2011.03.08 16:10:08 | 000,670,208 | ---- | M] () -- \Program Files\Zoner\Photo Studio 14\Plugins\Facebook\ZPSFacebookUploader.exe
[2010.04.29 13:12:40 | 000,053,640 | ---- | M] () -- \Program Files\Zoner\Photo Studio 14\Plugins\Facebook\ZPSPluginLoader.exe
[2011.05.31 08:46:24 | 000,685,568 | ---- | M] () -- \Program Files\Zoner\Photo Studio 14\Plugins\Flickr\ZPSFlickrUploader.exe
[2010.04.29 13:12:42 | 000,053,640 | ---- | M] () -- \Program Files\Zoner\Photo Studio 14\Plugins\Flickr\ZPSPluginLoader.exe
[2011.03.08 16:09:04 | 000,194,048 | ---- | M] () -- \Program Files\Zoner\Photo Studio 14\Plugins\Picasa\ZPSPicasaUploader.exe
[2010.04.29 13:12:40 | 000,053,640 | ---- | M] () -- \Program Files\Zoner\Photo Studio 14\Plugins\Picasa\ZPSPluginLoader.exe
[2011.11.01 15:47:10 | 000,102,792 | ---- | M] () -- \Program Files\Zoner\Photo Studio 14\Program32\8bfLoader.exe
[2011.11.01 15:47:22 | 000,016,776 | ---- | M] () -- \Program Files\Zoner\Photo Studio 14\Program32\WICLoader.exe
[2011.11.01 15:47:56 | 000,019,336 | ---- | M] () -- \Program Files\Zoner\Photo Studio 14\Program64\WICLoader.exe
[2012.12.03 10:34:24 | 000,001,380 | ---- | M] () -- \ProgramData\Microsoft\Windows\Start Menu\Programs\Autodesk\Autodesk Data Management\Tools\Autodesk Autoloader 2013 for Vault.lnk
[2013.01.12 21:18:42 | 000,001,089 | ---- | M] () -- \ProgramData\Microsoft\Windows\Start Menu\Programs\WebDataLoader\Aplikace WebDataLoader na internetu.lnk
[2013.01.12 21:18:42 | 000,001,064 | ---- | M] () -- \ProgramData\Microsoft\Windows\Start Menu\Programs\WebDataLoader\Odinstalovat aplikaci WebDataLoader.lnk
[2013.01.12 21:18:42 | 000,001,089 | ---- | M] () -- \ProgramData\Microsoft\Windows\Start Menu\Programs\WebDataLoader\WebDataLoader.lnk
[2012.11.08 15:16:50 | 000,072,638 | ---- | M] () -- \ProgramData\Skype\Apps\login\images\loader.gif
[2012.11.08 15:16:50 | 000,003,032 | ---- | M] () -- \ProgramData\Skype\Apps\login\images\loader.png
[2012.11.08 15:16:50 | 000,009,772 | ---- | M] () -- \ProgramData\Skype\Apps\login\images\retina\loader@2x.png
[2013.01.12 21:23:49 | 000,000,277 | ---- | M] () -- \ProgramData\WebDataLoader\WebDataLoader.ini
[2012.12.03 10:34:24 | 000,001,380 | ---- | M] () -- \Users\All Users\Microsoft\Windows\Start Menu\Programs\Autodesk\Autodesk Data Management\Tools\Autodesk Autoloader 2013 for Vault.lnk
[2013.01.12 21:18:42 | 000,001,089 | ---- | M] () -- \Users\All Users\Microsoft\Windows\Start Menu\Programs\WebDataLoader\Aplikace WebDataLoader na internetu.lnk
[2013.01.12 21:18:42 | 000,001,064 | ---- | M] () -- \Users\All Users\Microsoft\Windows\Start Menu\Programs\WebDataLoader\Odinstalovat aplikaci WebDataLoader.lnk
[2013.01.12 21:18:42 | 000,001,089 | ---- | M] () -- \Users\All Users\Microsoft\Windows\Start Menu\Programs\WebDataLoader\WebDataLoader.lnk
[2012.11.08 15:16:50 | 000,072,638 | ---- | M] () -- \Users\All Users\Skype\Apps\login\images\loader.gif
[2012.11.08 15:16:50 | 000,003,032 | ---- | M] () -- \Users\All Users\Skype\Apps\login\images\loader.png
[2012.11.08 15:16:50 | 000,009,772 | ---- | M] () -- \Users\All Users\Skype\Apps\login\images\retina\loader@2x.png
[2013.01.12 21:23:49 | 000,000,277 | ---- | M] () -- \Users\All Users\WebDataLoader\WebDataLoader.ini
[2012.11.29 20:24:05 | 000,000,723 | ---- | M] () -- \Users\Jakub\AppData\Local\Google\Chrome\User Data\Default\Extensions\alelhddbbhepgpmgidjdcjakblofbmce\3.4.4_0\images\loader.gif
[2013.01.20 17:19:09 | 000,105,903 | ---- | M] () -- \Users\Jakub\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\52TCX5Q3\AdLoader-427d9fd2a91e2f2c023aefe9f69a01d0.min[1].js
[2013.01.20 17:19:09 | 000,000,753 | ---- | M] () -- \Users\Jakub\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\CXT7CCMT\AdLoader[1].htm
[2012.12.28 12:52:31 | 000,008,787 | ---- | M] () -- \Users\Jakub\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\6NQBSFNH\loader[1].gif
[2012.11.19 12:20:10 | 000,000,673 | ---- | M] () -- \Users\Jakub\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\GK4J46M9\loader.white[1].gif
[2013.01.16 13:49:44 | 000,008,787 | ---- | M] () -- \Users\Jakub\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\HQEKZ82J\loader[1].gif
[2012.10.20 16:09:52 | 000,002,756 | ---- | M] () -- \Users\Jakub\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\U9YIG181\RmsLoader[1].js
[2013.01.11 15:29:45 | 000,000,673 | ---- | M] () -- \Users\Jakub\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\Y8B1Z2S2\loader[1].gif
[2012.10.13 15:41:10 | 000,000,673 | ---- | M] () -- \Users\Jakub\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\YRTXOSSU\loader.white[1].gif
[2012.04.25 17:32:22 | 000,000,508 | ---- | M] () -- \Users\Jakub\AppData\Roaming\.minecraft[VCHbackup]\ModLoader.txt
[2012.04.25 15:22:11 | 000,000,508 | ---- | M] () -- \Users\Jakub\AppData\Roaming\.minecraft[VCHbackup]\ModLoader.txt.1
[2012.04.25 17:32:21 | 000,000,099 | ---- | M] () -- \Users\Jakub\AppData\Roaming\.minecraft[VCHbackup]\config\ModLoader.cfg
[2012.04.25 17:32:22 | 000,000,508 | ---- | M] () -- \Users\Jakub\AppData\Roaming\.minecraft\ModLoader.txt
[2012.04.25 15:22:11 | 000,000,508 | ---- | M] () -- \Users\Jakub\AppData\Roaming\.minecraft\ModLoader.txt.1
[2012.04.25 17:32:21 | 000,000,099 | ---- | M] () -- \Users\Jakub\AppData\Roaming\.minecraft\config\ModLoader.cfg
[2012.10.09 21:18:47 | 000,001,100 | ---- | M] () -- \Users\Jakub\AppData\Roaming\SolidWorks\Installation Logs\2012 SP0\Other Logs\IMDownloaderVersion.xml
[2012.10.09 21:18:51 | 000,001,614 | ---- | M] () -- \Users\Jakub\AppData\Roaming\SolidWorks\Installation Logs\Misc Logs\sldIMDownloaderLog_00001.txt
[2013.01.12 21:18:42 | 000,001,071 | ---- | M] () -- \Users\Jakub\Desktop\WebDataLoader.lnk
[2012.12.30 09:54:18 | 000,011,314 | ---- | M] () -- \Users\Jakub\Desktop\dite.webove-studio.eu\adminek\themes\default\img\ajax-loader.gif
[2012.12.30 09:54:23 | 000,000,109 | ---- | M] () -- \Users\Jakub\Desktop\dite.webove-studio.eu\adminek\themes\default\img\bg_loaderSpace.png
[2012.12.30 09:57:13 | 000,008,344 | ---- | M] () -- \Users\Jakub\Desktop\dite.webove-studio.eu\classes\FileUploader.php
[2012.12.30 09:58:13 | 000,000,109 | ---- | M] () -- \Users\Jakub\Desktop\dite.webove-studio.eu\img\bg_loader.png
[2012.12.30 09:58:14 | 000,003,719 | ---- | M] () -- \Users\Jakub\Desktop\dite.webove-studio.eu\img\loader.gif
[2012.12.30 09:58:19 | 000,011,314 | ---- | M] () -- \Users\Jakub\Desktop\dite.webove-studio.eu\img\admin\ajax-loader-big.gif
[2012.12.30 09:58:20 | 000,009,427 | ---- | M] () -- \Users\Jakub\Desktop\dite.webove-studio.eu\img\admin\ajax-loader-yellow.gif
[2012.12.30 09:58:20 | 000,000,673 | ---- | M] () -- \Users\Jakub\Desktop\dite.webove-studio.eu\img\admin\ajax-loader.gif
[2012.12.30 09:58:32 | 000,000,723 | ---- | M] () -- \Users\Jakub\Desktop\dite.webove-studio.eu\img\admin\field-loader.gif
[2012.12.30 09:58:54 | 000,000,847 | ---- | M] () -- \Users\Jakub\Desktop\dite.webove-studio.eu\img\admin\jquery-treeview\ajax-loader.gif
[2012.12.30 11:55:32 | 000,035,777 | ---- | M] () -- \Users\Jakub\Desktop\dite.webove-studio.eu\js\fileuploader.js
[2012.12.30 11:55:35 | 000,001,720 | ---- | M] () -- \Users\Jakub\Desktop\dite.webove-studio.eu\js\cropper\loader.js
[2012.12.30 11:56:05 | 000,000,847 | ---- | M] () -- \Users\Jakub\Desktop\dite.webove-studio.eu\js\jquery\plugins\treeview-categories\images\ajax-loader.gif
[2012.12.30 12:02:28 | 000,003,719 | ---- | M] () -- \Users\Jakub\Desktop\dite.webove-studio.eu\modules\carriercompare\loader.gif
[2012.12.30 12:06:30 | 000,001,849 | ---- | M] () -- \Users\Jakub\Desktop\dite.webove-studio.eu\modules\shopimporter\img\ajax-loader.gif
[2012.12.30 13:04:46 | 000,003,208 | ---- | M] () -- \Users\Jakub\Desktop\dite.webove-studio.eu\themes\prodite\img\ajax-loader.gif
[2012.12.30 13:05:29 | 000,007,825 | ---- | M] () -- \Users\Jakub\Desktop\dite.webove-studio.eu\themes\prodite\mobile\img\ajax-loader.gif
[2012.12.30 13:05:30 | 000,000,340 | ---- | M] () -- \Users\Jakub\Desktop\dite.webove-studio.eu\themes\prodite\mobile\img\ajax-loader.png
[2012.12.30 13:06:13 | 000,000,910 | ---- | M] () -- \Users\Jakub\Desktop\dite.webove-studio.eu\tools\swift\Swift\ClassLoader.php
[2013.01.04 16:58:24 | 000,000,723 | ---- | M] () -- \Users\Jakub\Desktop\HFL\wp-content\plugins\Booking System PRO (WordPress Plugin)\dopbsp\assets\gui\images\loader.gif
[2013.01.04 17:00:11 | 000,000,723 | ---- | M] () -- \Users\Jakub\Desktop\HFL\wp-content\plugins\dopbsp\assets\gui\images\loader.gif
[2013.01.04 17:02:23 | 000,000,673 | ---- | M] () -- \Users\Jakub\Desktop\HFL\wp-content\plugins\nextgen-gallery\images\ajax-loader.gif
[2013.01.04 17:02:23 | 000,006,820 | ---- | M] () -- \Users\Jakub\Desktop\HFL\wp-content\plugins\nextgen-gallery\images\loader.gif
[2013.01.04 17:02:44 | 000,002,248 | ---- | M] () -- \Users\Jakub\Desktop\HFL\wp-content\plugins\nextgen-scrollgallery\scrollGallery\ajax-loader.gif
[2013.01.04 17:05:36 | 000,000,673 | ---- | M] () -- \Users\Jakub\Desktop\HFL\wp-content\plugins\sitepress-multilingual-cms\res\img\ajax-loader.gif
[2013.01.04 17:08:43 | 000,037,740 | ---- | M] () -- \Users\Jakub\Desktop\HFL\wp-includes\script-loader.php
[2013.01.04 17:08:44 | 000,001,889 | ---- | M] () -- \Users\Jakub\Desktop\HFL\wp-includes\template-loader.php
[2013.01.04 17:09:20 | 000,004,066 | ---- | M] () -- \Users\Jakub\Desktop\HFL\wp-includes\js\customize-loader.dev.js
[2013.01.04 17:09:21 | 000,002,609 | ---- | M] () -- \Users\Jakub\Desktop\HFL\wp-includes\js\customize-loader.js
[2012.12.27 12:57:56 | 000,000,673 | ---- | M] () -- \Users\Jakub\Desktop\MŠ Okružní\FTP\wp-content\plugins\nextgen-gallery\images\ajax-loader.gif
[2012.12.27 12:57:56 | 000,006,820 | ---- | M] () -- \Users\Jakub\Desktop\MŠ Okružní\FTP\wp-content\plugins\nextgen-gallery\images\loader.gif
[2012.12.27 12:59:52 | 000,037,740 | ---- | M] () -- \Users\Jakub\Desktop\MŠ Okružní\FTP\wp-includes\script-loader.php
[2012.12.27 12:59:53 | 000,001,889 | ---- | M] () -- \Users\Jakub\Desktop\MŠ Okružní\FTP\wp-includes\template-loader.php
[2012.12.27 13:00:31 | 000,004,066 | ---- | M] () -- \Users\Jakub\Desktop\MŠ Okružní\FTP\wp-includes\js\customize-loader.dev.js
[2012.12.27 13:00:32 | 000,002,609 | ---- | M] () -- \Users\Jakub\Desktop\MŠ Okružní\FTP\wp-includes\js\customize-loader.js
[2010.12.30 12:32:56 | 000,000,673 | ---- | M] () -- \Users\Jakub\Desktop\prestashop 1.5 moduly\m4pdf\m4pdf\ajax-loader.gif
[2012.12.07 14:36:27 | 000,003,719 | ---- | M] () -- \Users\Jakub\Desktop\prodite.com\FTP\FTP\img\loader.gif
[2012.12.07 14:36:30 | 000,000,673 | ---- | M] () -- \Users\Jakub\Desktop\prodite.com\FTP\FTP\img\admin\ajax-loader.gif
[2012.12.07 15:48:41 | 000,001,720 | ---- | M] () -- \Users\Jakub\Desktop\prodite.com\FTP\FTP\js\cropper\loader.js
[2012.12.07 15:49:07 | 000,008,427 | ---- | M] () -- \Users\Jakub\Desktop\prodite.com\FTP\FTP\js\tinymce\jscripts\tiny_mce\classes\dom\ScriptLoader.js
[2012.12.07 16:02:03 | 000,000,910 | ---- | M] () -- \Users\Jakub\Desktop\prodite.com\FTP\FTP\tools\swift\Swift\ClassLoader.php
[2012.12.29 11:15:40 | 000,003,719 | ---- | M] () -- \Users\Jakub\Desktop\prodite-13\img\loader.gif
[2012.12.29 11:15:46 | 000,000,673 | ---- | M] () -- \Users\Jakub\Desktop\prodite-13\img\admin\ajax-loader.gif
[2012.12.29 12:39:49 | 000,001,720 | ---- | M] () -- \Users\Jakub\Desktop\prodite-13\js\cropper\loader.js
[2012.12.29 12:40:21 | 000,008,427 | ---- | M] () -- \Users\Jakub\Desktop\prodite-13\js\tinymce\jscripts\tiny_mce\classes\dom\ScriptLoader.js
[2012.12.29 13:00:07 | 000,000,910 | ---- | M] () -- \Users\Jakub\Desktop\prodite-13\tools\swift\Swift\ClassLoader.php
[2012.10.23 18:23:56 | 000,011,314 | ---- | M] () -- \Users\Jakub\Desktop\prodite-152\prodite-15\prodite\adminek\themes\default\img\ajax-loader.gif
[2012.10.23 18:23:56 | 000,000,109 | ---- | M] () -- \Users\Jakub\Desktop\prodite-152\prodite-15\prodite\adminek\themes\default\img\bg_loaderSpace.png
[2012.10.23 18:23:56 | 000,008,471 | ---- | M] () -- \Users\Jakub\Desktop\prodite-152\prodite-15\prodite\classes\FileUploader.php
[2012.10.23 18:23:56 | 000,000,109 | ---- | M] () -- \Users\Jakub\Desktop\prodite-152\prodite-15\prodite\img\bg_loader.png
[2012.10.23 18:23:56 | 000,003,719 | ---- | M] () -- \Users\Jakub\Desktop\prodite-152\prodite-15\prodite\img\loader.gif
[2012.10.23 18:23:56 | 000,011,314 | ---- | M] () -- \Users\Jakub\Desktop\prodite-152\prodite-15\prodite\img\admin\ajax-loader-big.gif
[2012.10.23 18:23:56 | 000,009,427 | ---- | M] () -- \Users\Jakub\Desktop\prodite-152\prodite-15\prodite\img\admin\ajax-loader-yellow.gif
[2012.10.23 18:23:56 | 000,000,673 | ---- | M] () -- \Users\Jakub\Desktop\prodite-152\prodite-15\prodite\img\admin\ajax-loader.gif
[2012.10.23 18:23:56 | 000,000,723 | ---- | M] () -- \Users\Jakub\Desktop\prodite-152\prodite-15\prodite\img\admin\field-loader.gif
[2012.12.07 14:36:27 | 000,003,719 | ---- | M] () -- \Users\Jakub\Desktop\prodite-152\prodite-15\prodite\imgupload\loader.gif
[2012.12.07 14:36:30 | 000,000,673 | ---- | M] () -- \Users\Jakub\Desktop\prodite-152\prodite-15\prodite\imgupload\admin\ajax-loader.gif
[2012.10.23 18:23:56 | 000,002,863 | ---- | M] () -- \Users\Jakub\Desktop\prodite-152\prodite-15\prodite\installek\classes\sqlLoader.php
[2012.10.23 18:23:56 | 000,036,983 | ---- | M] () -- \Users\Jakub\Desktop\prodite-152\prodite-15\prodite\installek\classes\xmlLoader.php
[2012.10.23 18:23:58 | 000,009,427 | ---- | M] () -- \Users\Jakub\Desktop\prodite-152\prodite-15\prodite\installek\theme\img\ajax-loader-small.gif
[2012.10.23 18:23:58 | 000,011,314 | ---- | M] () -- \Users\Jakub\Desktop\prodite-152\prodite-15\prodite\installek\theme\img\ajax-loader.gif
[2012.10.23 18:23:58 | 000,000,109 | ---- | M] () -- \Users\Jakub\Desktop\prodite-152\prodite-15\prodite\installek\theme\img\bg_loaderSpace.png
[2012.10.23 18:23:58 | 000,035,817 | ---- | M] () -- \Users\Jakub\Desktop\prodite-152\prodite-15\prodite\js\fileuploader.js
[2012.10.23 18:23:58 | 000,001,720 | ---- | M] () -- \Users\Jakub\Desktop\prodite-152\prodite-15\prodite\js\cropper\loader.js
[2012.10.23 18:23:58 | 000,000,847 | ---- | M] () -- \Users\Jakub\Desktop\prodite-152\prodite-15\prodite\js\jquery\plugins\treeview-categories\images\ajax-loader.gif
[2012.10.23 18:23:58 | 000,003,719 | ---- | M] () -- \Users\Jakub\Desktop\prodite-152\prodite-15\prodite\modules\carriercompare\loader.gif
[2012.10.23 18:23:58 | 000,001,849 | ---- | M] () -- \Users\Jakub\Desktop\prodite-152\prodite-15\prodite\modules\shopimporter\img\ajax-loader.gif
[2012.10.23 18:23:58 | 000,000,057 | ---- | M] () -- \Users\Jakub\Desktop\prodite-152\prodite-15\prodite\override\classes\FileUploader.php
[2012.10.23 18:23:58 | 000,003,208 | ---- | M] () -- \Users\Jakub\Desktop\prodite-152\prodite-15\prodite\themes\default\img\ajax-loader.gif
[2012.10.23 18:24:00 | 000,007,825 | ---- | M] () -- \Users\Jakub\Desktop\prodite-152\prodite-15\prodite\themes\default\mobile\img\ajax-loader.gif
[2012.10.23 18:24:00 | 000,000,340 | ---- | M] () -- \Users\Jakub\Desktop\prodite-152\prodite-15\prodite\themes\default\mobile\img\ajax-loader.png
[2012.10.23 18:24:00 | 000,000,910 | ---- | M] () -- \Users\Jakub\Desktop\prodite-152\prodite-15\prodite\tools\swift\Swift\ClassLoader.php
[2012.12.26 08:23:53 | 000,003,719 | ---- | M] () -- \Users\Jakub\Desktop\prodite-152_thrmr\modules\carriercompare\loader.gif
[2012.12.26 08:26:15 | 000,001,849 | ---- | M] () -- \Users\Jakub\Desktop\prodite-152_thrmr\modules\shopimporter\img\ajax-loader.gif
[2012.12.29 23:44:25 | 000,003,208 | ---- | M] () -- \Users\Jakub\Desktop\prodite-152_thrmr\prodite\img\ajax-loader.gif
[2012.12.29 23:44:57 | 000,007,825 | ---- | M] () -- \Users\Jakub\Desktop\prodite-152_thrmr\prodite\mobile\img\ajax-loader.gif
[2012.12.29 23:44:57 | 000,000,340 | ---- | M] () -- \Users\Jakub\Desktop\prodite-152_thrmr\prodite\mobile\img\ajax-loader.png
[2012.12.25 21:49:27 | 000,011,314 | ---- | M] () -- \Users\Jakub\Desktop\prodite-152_zaloha server\adminek\themes\default\img\ajax-loader.gif
[2012.12.25 21:49:28 | 000,000,109 | ---- | M] () -- \Users\Jakub\Desktop\prodite-152_zaloha server\adminek\themes\default\img\bg_loaderSpace.png
[2012.12.25 21:52:00 | 000,008,471 | ---- | M] () -- \Users\Jakub\Desktop\prodite-152_zaloha server\classes\FileUploader.php
[2012.12.25 21:52:56 | 000,003,719 | ---- | M] () -- \Users\Jakub\Desktop\prodite-152_zaloha server\imgupload\loader.gif
[2012.12.25 21:52:59 | 000,000,673 | ---- | M] () -- \Users\Jakub\Desktop\prodite-152_zaloha server\imgupload\admin\ajax-loader.gif
[2012.12.25 22:11:21 | 000,002,863 | ---- | M] () -- \Users\Jakub\Desktop\prodite-152_zaloha server\installek\classes\sqlLoader.php
[2012.12.25 22:11:21 | 000,036,983 | ---- | M] () -- \Users\Jakub\Desktop\prodite-152_zaloha server\installek\classes\xmlLoader.php
[2012.12.25 22:13:24 | 000,009,427 | ---- | M] () -- \Users\Jakub\Desktop\prodite-152_zaloha server\installek\theme\img\ajax-loader-small.gif
[2012.12.25 22:13:24 | 000,011,314 | ---- | M] () -- \Users\Jakub\Desktop\prodite-152_zaloha server\installek\theme\img\ajax-loader.gif
[2012.12.25 22:13:27 | 000,000,109 | ---- | M] () -- \Users\Jakub\Desktop\prodite-152_zaloha server\installek\theme\img\bg_loaderSpace.png
[2012.12.25 22:14:08 | 000,035,817 | ---- | M] () -- \Users\Jakub\Desktop\prodite-152_zaloha server\js\fileuploader.js
[2012.12.25 22:14:11 | 000,001,720 | ---- | M] () -- \Users\Jakub\Desktop\prodite-152_zaloha server\js\cropper\loader.js
[2012.12.25 22:14:37 | 000,000,847 | ---- | M] () -- \Users\Jakub\Desktop\prodite-152_zaloha server\js\jquery\plugins\treeview-categories\images\ajax-loader.gif
[2012.12.25 22:22:08 | 000,003,719 | ---- | M] () -- \Users\Jakub\Desktop\prodite-152_zaloha server\modules\carriercompare\loader.gif
[2012.12.25 22:24:40 | 000,001,849 | ---- | M] () -- \Users\Jakub\Desktop\prodite-152_zaloha server\modules\shopimporter\img\ajax-loader.gif
[2012.12.25 22:25:49 | 000,000,057 | ---- | M] () -- \Users\Jakub\Desktop\prodite-152_zaloha server\override\classes\FileUploader.php
[2012.12.25 22:27:11 | 000,003,208 | ---- | M] () -- \Users\Jakub\Desktop\prodite-152_zaloha server\themes\default\img\ajax-loader.gif
[2012.12.25 22:27:49 | 000,007,825 | ---- | M] () -- \Users\Jakub\Desktop\prodite-152_zaloha server\themes\default\mobile\img\ajax-loader.gif
[2012.12.25 22:27:49 | 000,000,340 | ---- | M] () -- \Users\Jakub\Desktop\prodite-152_zaloha server\themes\default\mobile\img\ajax-loader.png
[2012.12.25 22:28:36 | 000,000,910 | ---- | M] () -- \Users\Jakub\Desktop\prodite-152_zaloha server\tools\swift\Swift\ClassLoader.php
[2012.12.20 20:41:22 | 000,000,847 | ---- | M] () -- \Users\Jakub\Desktop\server-minecraft\wp-content\plugins\contact-form-7\images\ajax-loader.gif
[2012.12.20 20:43:40 | 000,037,740 | ---- | M] () -- \Users\Jakub\Desktop\server-minecraft\wp-includes\script-loader.php
[2012.12.20 20:43:41 | 000,001,889 | ---- | M] () -- \Users\Jakub\Desktop\server-minecraft\wp-includes\template-loader.php
[2012.12.20 20:44:00 | 000,004,066 | ---- | M] () -- \Users\Jakub\Desktop\server-minecraft\wp-includes\js\customize-loader.dev.js
[2012.12.20 20:44:01 | 000,002,609 | ---- | M] () -- \Users\Jakub\Desktop\server-minecraft\wp-includes\js\customize-loader.js
[2013.01.11 22:23:13 | 000,003,208 | ---- | M] () -- \Users\Jakub\Desktop\shiptopay_101_17122012\prodite\img\ajax-loader.gif
[2013.01.11 22:24:00 | 000,007,825 | ---- | M] () -- \Users\Jakub\Desktop\shiptopay_101_17122012\prodite\mobile\img\ajax-loader.gif
[2013.01.11 22:24:00 | 000,000,340 | ---- | M] () -- \Users\Jakub\Desktop\shiptopay_101_17122012\prodite\mobile\img\ajax-loader.png
[2012.10.31 18:39:30 | 000,003,208 | ---- | M] () -- \Users\Jakub\Desktop\shop.1000pohadek.cz\default\img\ajax-loader.gif
[2012.10.31 18:40:14 | 000,007,825 | ---- | M] () -- \Users\Jakub\Desktop\shop.1000pohadek.cz\default\mobile\img\ajax-loader.gif
[2012.10.31 18:40:14 | 000,000,340 | ---- | M] () -- \Users\Jakub\Desktop\shop.1000pohadek.cz\default\mobile\img\ajax-loader.png
[2012.10.25 02:53:24 | 000,003,208 | ---- | M] () -- \Users\Jakub\Desktop\shop.1000pohadek.cz\theme\Prestashop Files\themes\PRS040097\img\ajax-loader.gif
[2012.10.25 02:57:14 | 000,007,825 | ---- | M] () -- \Users\Jakub\Desktop\shop.1000pohadek.cz\theme\Prestashop Files\themes\PRS040097\mobile\img\ajax-loader.gif
[2012.10.25 02:57:14 | 000,000,340 | ---- | M] () -- \Users\Jakub\Desktop\shop.1000pohadek.cz\theme\Prestashop Files\themes\PRS040097\mobile\img\ajax-loader.png
[2012.10.23 17:45:25 | 000,000,212 | ---- | M] () -- \Users\Jakub\Desktop\spectrum praha\new\application\library\tiny-mce\plugins\jbimages\ci\application\config\uploader_settings.php
[2012.10.23 17:45:33 | 000,027,479 | ---- | M] () -- \Users\Jakub\Desktop\spectrum praha\new\application\library\tiny-mce\plugins\jbimages\ci\system\core\Loader.php
[2012.10.23 17:48:49 | 000,002,545 | ---- | M] () -- \Users\Jakub\Desktop\spectrum praha\new\view\default\images\prettyPhoto\dark_rounded\loader.gif
[2012.10.23 17:48:50 | 000,002,545 | ---- | M] () -- \Users\Jakub\Desktop\spectrum praha\new\view\default\images\prettyPhoto\dark_square\loader.gif
[2012.10.23 17:48:51 | 000,002,545 | ---- | M] () -- \Users\Jakub\Desktop\spectrum praha\new\view\default\images\prettyPhoto\facebook\loader.gif
[2012.10.23 17:48:59 | 000,002,545 | ---- | M] () -- \Users\Jakub\Desktop\spectrum praha\new\view\default\images\prettyPhoto\light_rounded\loader.gif
[2012.10.23 17:49:00 | 000,002,545 | ---- | M] () -- \Users\Jakub\Desktop\spectrum praha\new\view\default\images\prettyPhoto\light_square\loader.gif
[2012.11.16 20:31:11 | 000,001,358 | ---- | M] () -- \Users\Jakub\Desktop\spectrum praha\spectrum starý\admin\core\css\loader.css
[2012.11.16 20:31:16 | 000,002,090 | ---- | M] () -- \Users\Jakub\Desktop\spectrum praha\spectrum starý\admin\core\js\loader.js
[2012.11.16 20:34:52 | 000,001,151 | ---- | M] () -- \Users\Jakub\Desktop\spectrum praha\spectrum starý\admin\core\skin\default\loader.css
[2013.01.19 14:03:22 | 000,784,212 | ---- | M] () -- \Users\Jakub\Desktop\zlatnictvi gajda\19.1\admin1\SC\ioncube\ioncube_loader_lin_5.1.so
[2013.01.19 14:03:17 | 000,827,092 | ---- | M] () -- \Users\Jakub\Desktop\zlatnictvi gajda\19.1\admin1\SC\ioncube\ioncube_loader_lin_5.1_ts.so
[2013.01.19 14:03:13 | 000,781,492 | ---- | M] () -- \Users\Jakub\Desktop\zlatnictvi gajda\19.1\admin1\SC\ioncube\ioncube_loader_lin_5.2.so
[2013.01.19 14:03:18 | 000,824,180 | ---- | M] () -- \Users\Jakub\Desktop\zlatnictvi gajda\19.1\admin1\SC\ioncube\ioncube_loader_lin_5.2_ts.so
[2013.01.19 14:03:15 | 000,810,280 | ---- | M] () -- \Users\Jakub\Desktop\zlatnictvi gajda\19.1\admin1\SC\ioncube\ioncube_loader_lin_5.3.so
[2013.01.19 14:03:20 | 000,866,472 | ---- | M] () -- \Users\Jakub\Desktop\zlatnictvi gajda\19.1\admin1\SC\ioncube\ioncube_loader_lin_5.3_ts.so
[2013.01.19 14:03:13 | 000,154,499 | ---- | M] () -- \Users\Jakub\Desktop\zlatnictvi gajda\19.1\admin1\SC\ioncube\loader-wizard.php
[2013.01.19 14:03:11 | 000,944,184 | ---- | M] () -- \Users\Jakub\Desktop\zlatnictvi gajda\19.1\admin1\SC\ioncube-64\ioncube_loader_lin_5.1.so
[2013.01.19 14:03:06 | 000,989,752 | ---- | M] () -- \Users\Jakub\Desktop\zlatnictvi gajda\19.1\admin1\SC\ioncube-64\ioncube_loader_lin_5.1_ts.so
[2013.01.19 14:03:01 | 000,948,568 | ---- | M] () -- \Users\Jakub\Desktop\zlatnictvi gajda\19.1\admin1\SC\ioncube-64\ioncube_loader_lin_5.2.so
[2013.01.19 14:03:07 | 001,039,032 | ---- | M] () -- \Users\Jakub\Desktop\zlatnictvi gajda\19.1\admin1\SC\ioncube-64\ioncube_loader_lin_5.2_ts.so
[2013.01.19 14:03:04 | 001,012,392 | ---- | M] () -- \Users\Jakub\Desktop\zlatnictvi gajda\19.1\admin1\SC\ioncube-64\ioncube_loader_lin_5.3.so
[2013.01.19 14:03:09 | 001,063,944 | ---- | M] () -- \Users\Jakub\Desktop\zlatnictvi gajda\19.1\admin1\SC\ioncube-64\ioncube_loader_lin_5.3_ts.so
[2013.01.19 14:03:02 | 000,154,499 | ---- | M] () -- \Users\Jakub\Desktop\zlatnictvi gajda\19.1\admin1\SC\ioncube-64\loader-wizard.php
[2013.01.19 14:08:00 | 000,009,427 | ---- | M] () -- \Users\Jakub\Desktop\zlatnictvi gajda\19.1\admin1\SC\lib\img\ajax-loader.gif
[2013.01.19 14:07:49 | 000,000,673 | ---- | M] () -- \Users\Jakub\Desktop\zlatnictvi gajda\19.1\admin1\SC\lib\img\ajax-loader16.gif
[2013.01.19 14:05:11 | 000,000,056 | ---- | M] () -- \Users\Jakub\Desktop\zlatnictvi gajda\19.1\admin1\SC\lib\js\imgs\imageloaderror.gif
[2013.01.19 14:06:29 | 000,000,401 | ---- | M] () -- \Users\Jakub\Desktop\zlatnictvi gajda\19.1\admin1\SC\lib\js\imgs\dhxmenu_dhx_skyblue\dhtmlxmenu_loader.gif
[2013.01.19 14:11:00 | 000,003,719 | ---- | M] () -- \Users\Jakub\Desktop\zlatnictvi gajda\19.1\img\loader.gif
[2013.01.19 14:48:26 | 000,011,314 | ---- | M] () -- \Users\Jakub\Desktop\zlatnictvi gajda\19.1\img\admin\ajax-loader-big.gif
[2013.01.19 14:48:29 | 000,000,673 | ---- | M] () -- \Users\Jakub\Desktop\zlatnictvi gajda\19.1\img\admin\ajax-loader.gif
[2013.01.19 14:48:32 | 000,000,847 | ---- | M] () -- \Users\Jakub\Desktop\zlatnictvi gajda\19.1\img\admin\jquery-treeview\ajax-loader.gif
[2013.01.19 14:48:58 | 000,001,720 | ---- | M] () -- \Users\Jakub\Desktop\zlatnictvi gajda\19.1\js\cropper\loader.js
[2013.01.19 14:55:40 | 000,003,719 | ---- | M] () -- \Users\Jakub\Desktop\zlatnictvi gajda\19.1\modules\carriercompare\loader.gif
[2013.01.19 14:53:26 | 000,001,018 | ---- | M] () -- \Users\Jakub\Desktop\zlatnictvi gajda\19.1\modules\jirafe\vendor\jirafe-php-client\src\Jirafe\Autoloader.php
[2013.01.19 14:56:40 | 000,000,847 | ---- | M] () -- \Users\Jakub\Desktop\zlatnictvi gajda\19.1\modules\mondialrelay\images\loader.gif
[2013.01.19 14:58:44 | 000,001,849 | ---- | M] () -- \Users\Jakub\Desktop\zlatnictvi gajda\19.1\modules\shopimporter\img\ajax-loader.gif
[2013.01.19 15:00:35 | 000,003,208 | ---- | M] () -- \Users\Jakub\Desktop\zlatnictvi gajda\19.1\themes\prestashop\img\ajax-loader.gif
[2013.01.19 15:02:10 | 000,000,910 | ---- | M] () -- \Users\Jakub\Desktop\zlatnictvi gajda\19.1\tools\swift\Swift\ClassLoader.php
[2012.12.31 15:30:32 | 000,784,212 | ---- | M] () -- \Users\Jakub\Desktop\zlatnictvi\admin1\SC\ioncube\ioncube_loader_lin_5.1.so
[2012.12.31 15:30:33 | 000,827,092 | ---- | M] () -- \Users\Jakub\Desktop\zlatnictvi\admin1\SC\ioncube\ioncube_loader_lin_5.1_ts.so
[2012.12.31 15:30:34 | 000,781,492 | ---- | M] () -- \Users\Jakub\Desktop\zlatnictvi\admin1\SC\ioncube\ioncube_loader_lin_5.2.so
[2012.12.31 15:30:35 | 000,824,180 | ---- | M] () -- \Users\Jakub\Desktop\zlatnictvi\admin1\SC\ioncube\ioncube_loader_lin_5.2_ts.so
[2012.12.31 15:30:36 | 000,810,280 | ---- | M] () -- \Users\Jakub\Desktop\zlatnictvi\admin1\SC\ioncube\ioncube_loader_lin_5.3.so
[2012.12.31 15:30:37 | 000,866,472 | ---- | M] () -- \Users\Jakub\Desktop\zlatnictvi\admin1\SC\ioncube\ioncube_loader_lin_5.3_ts.so
[2012.12.31 15:30:37 | 000,154,499 | ---- | M] () -- \Users\Jakub\Desktop\zlatnictvi\admin1\SC\ioncube\loader-wizard.php
[2012.12.31 15:30:39 | 000,944,184 | ---- | M] () -- \Users\Jakub\Desktop\zlatnictvi\admin1\SC\ioncube-64\ioncube_loader_lin_5.1.so
[2012.12.31 15:30:39 | 000,989,752 | ---- | M] () -- \Users\Jakub\Desktop\zlatnictvi\admin1\SC\ioncube-64\ioncube_loader_lin_5.1_ts.so
[2012.12.31 15:30:40 | 000,948,568 | ---- | M] () -- \Users\Jakub\Desktop\zlatnictvi\admin1\SC\ioncube-64\ioncube_loader_lin_5.2.so
[2012.12.31 15:30:41 | 001,039,032 | ---- | M] () -- \Users\Jakub\Desktop\zlatnictvi\admin1\SC\ioncube-64\ioncube_loader_lin_5.2_ts.so
[2012.12.31 15:30:42 | 001,012,392 | ---- | M] () -- \Users\Jakub\Desktop\zlatnictvi\admin1\SC\ioncube-64\ioncube_loader_lin_5.3.so
[2012.12.31 15:30:44 | 001,063,944 | ---- | M] () -- \Users\Jakub\Desktop\zlatnictvi\admin1\SC\ioncube-64\ioncube_loader_lin_5.3_ts.so
[2012.12.31 15:30:44 | 000,154,499 | ---- | M] () -- \Users\Jakub\Desktop\zlatnictvi\admin1\SC\ioncube-64\loader-wizard.php
[2012.12.31 15:30:48 | 000,009,427 | ---- | M] () -- \Users\Jakub\Desktop\zlatnictvi\admin1\SC\lib\img\ajax-loader.gif
[2012.12.31 15:30:48 | 000,000,673 | ---- | M] () -- \Users\Jakub\Desktop\zlatnictvi\admin1\SC\lib\img\ajax-loader16.gif
[2012.12.31 15:32:10 | 000,000,056 | ---- | M] () -- \Users\Jakub\Desktop\zlatnictvi\admin1\SC\lib\js\imgs\imageloaderror.gif
[2012.12.31 15:33:41 | 000,000,401 | ---- | M] () -- \Users\Jakub\Desktop\zlatnictvi\admin1\SC\lib\js\imgs\dhxmenu_dhx_skyblue\dhtmlxmenu_loader.gif
[2012.12.31 15:39:00 | 000,003,719 | ---- | M] () -- \Users\Jakub\Desktop\zlatnictvi\img\loader.gif
[2012.12.31 15:39:05 | 000,011,314 | ---- | M] () -- \Users\Jakub\Desktop\zlatnictvi\img\admin\ajax-loader-big.gif
[2012.12.31 15:39:05 | 000,000,673 | ---- | M] () -- \Users\Jakub\Desktop\zlatnictvi\img\admin\ajax-loader.gif
[2012.12.31 15:39:31 | 000,000,847 | ---- | M] () -- \Users\Jakub\Desktop\zlatnictvi\img\admin\jquery-treeview\ajax-loader.gif
[2012.12.31 15:44:13 | 000,001,720 | ---- | M] () -- \Users\Jakub\Desktop\zlatnictvi\js\cropper\loader.js
[2012.12.31 15:50:31 | 000,003,719 | ---- | M] () -- \Users\Jakub\Desktop\zlatnictvi\modules\carriercompare\loader.gif
[2012.12.31 15:52:38 | 000,001,018 | ---- | M] () -- \Users\Jakub\Desktop\zlatnictvi\modules\jirafe\vendor\jirafe-php-client\src\Jirafe\Autoloader.php
[2012.12.31 15:53:32 | 000,000,847 | ---- | M] () -- \Users\Jakub\Desktop\zlatnictvi\modules\mondialrelay\images\loader.gif
[2012.12.31 15:55:16 | 000,001,849 | ---- | M] () -- \Users\Jakub\Desktop\zlatnictvi\modules\shopimporter\img\ajax-loader.gif
[2012.12.31 15:57:13 | 000,004,176 | ---- | M] () -- \Users\Jakub\Desktop\zlatnictvi\modules\twenga\ajax-loader.gif
[2012.12.31 15:58:12 | 000,003,208 | ---- | M] () -- \Users\Jakub\Desktop\zlatnictvi\themes\prestashop\img\ajax-loader.gif
[2012.12.31 16:00:06 | 000,000,910 | ---- | M] () -- \Users\Jakub\Desktop\zlatnictvi\tools\swift\Swift\ClassLoader.php
[2012.12.03 10:34:24 | 000,001,758 | ---- | M] () -- \Users\Jakub\Documents\Inventor\Autoloader.ipj.lnk
[2012.02.07 00:21:32 | 000,005,202 | ---- | M] () -- \Users\Public\Documents\Autodesk\Vault Basic 2013\Samples\Autoloader\Inventor 2013\Padlock\Autoloader.ipj
[2010.03.24 19:35:48 | 000,018,264 | R--- | M] () -- \Windows\Installer\$PatchCache$\Managed\00004119110000000100000000F01FEC\14.0.4763\FL_VSTOLoaderUI_dll_amd64_ln.3643236F_FC70_11D3_A536_0090278A1BB8.41B86362_9D8B_4D9B_B426_8A6D1F809A25
[2010.03.24 19:12:34 | 000,018,264 | R--- | M] () -- \Windows\Installer\$PatchCache$\Managed\00004119110000000100000000F01FEC\14.0.4763\FL_VSTOLoaderUI_dll_x86_ln.3643236F_FC70_11D3_A536_0090278A1BB8.41B86362_9D8B_4D9B_B426_8A6D1F809A25
[2010.03.24 19:35:48 | 000,370,512 | R--- | M] () -- \Windows\Installer\$PatchCache$\Managed\00004119110000000100000000F01FEC\14.0.4763\VSTOLoader_dll_amd64.3643236F_FC70_11D3_A536_0090278A1BB8.41B86362_9D8B_4D9B_B426_8A6D1F809A25
[2010.03.24 19:12:34 | 000,249,680 | R--- | M] () -- \Windows\Installer\$PatchCache$\Managed\00004119110000000100000000F01FEC\14.0.4763\VSTOLoader_dll_x86.3643236F_FC70_11D3_A536_0090278A1BB8.41B86362_9D8B_4D9B_B426_8A6D1F809A25
[2010.08.30 09:07:04 | 000,072,544 | R--- | M] () -- \Windows\Installer\$PatchCache$\Managed\670F66C4BA3D8C94584DAB6A8DF2AC2E\20.100.5022\PhysXLoader64.dll.72AC20DB_37D3_1016_B346_A7FD958F5C39
[2012.11.30 05:45:15 | 000,003,584 | -H-- | M] () -- \Windows\System32\api-ms-win-core-libraryloader-l1-1-0.dll
[2009.07.14 02:15:12 | 000,038,400 | ---- | M] () -- \Windows\System32\dmloader.dll
[2012.10.04 09:12:02 | 000,012,532 | ---- | M] () -- \Windows\System32\Adobe\Shockwave 11\shockwave_Projector_Loader.dcr
[2012.11.30 05:45:15 | 000,003,584 | -H-- | M] () -- \Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
[2009.07.14 02:15:12 | 000,038,400 | ---- | M] () -- \Windows\SysWOW64\dmloader.dll
[2012.10.04 09:12:02 | 000,012,532 | ---- | M] () -- \Windows\SysWOW64\Adobe\Shockwave 11\shockwave_Projector_Loader.dcr
[2009.07.14 02:40:31 | 000,047,616 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-audio-dmusic_31bf3856ad364e35_6.1.7600.16385_none_a1e90d98a953d601\dmloader.dll
[2009.07.14 02:24:53 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.16385_none_66a6e19d9580f9e3\api-ms-win-core-libraryloader-l1-1-0.dll
[2011.07.16 06:21:03 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.17651_none_68a9b6bd92929e63\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.08.20 19:38:32 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.17932_none_68c05c919281774d\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.10.04 18:38:48 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.17965_none_68a2edab92971725\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.11.30 06:38:44 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.18015_none_68d8d569926ebeb2\api-ms-win-core-libraryloader-l1-1-0.dll
[2011.07.16 06:12:44 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.21772_none_691eb3faabbf8f66\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.08.20 19:09:47 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.22091_none_6907efc6abd0db81\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.10.04 18:35:00 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.22125_none_6957a248ab947a6d\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.11.30 06:39:37 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.22177_none_69239340abbb38d0\api-ms-win-core-libraryloader-l1-1-0.dll
[2009.07.14 16:17:49 | 000,004,431 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_8f37605116ba80bc.manifest
[2009.07.14 16:17:49 | 000,033,360 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_8f37605116ba80bc_winload.efi.mui_35ee487d
[2009.07.14 16:17:49 | 000,034,896 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_8f37605116ba80bc_winload.exe.mui_3bc5b827
[2009.07.14 16:17:49 | 000,029,776 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_8f37605116ba80bc_winresume.efi.mui_f412814e
[2009.07.14 16:17:49 | 000,030,288 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_8f37605116ba80bc_winresume.exe.mui_ff8b5358
[2012.10.06 08:10:19 | 000,005,745 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.17556_none_b923808583650cfb.manifest
[2012.10.06 08:10:19 | 000,642,944 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.17556_none_b923808583650cfb_winload.efi_75834aa0
[2012.10.06 08:10:19 | 000,605,552 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.17556_none_b923808583650cfb_winload.exe_75835076
[2012.10.06 08:10:19 | 000,566,208 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.17556_none_b923808583650cfb_winresume.efi_85cd069f
[2012.10.06 08:10:19 | 000,518,672 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.17556_none_b923808583650cfb_winresume.exe_85cd1215
[2009.07.14 03:57:50 | 000,002,896 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-s..ive-blackbox-loader_31bf3856ad364e35_6.1.7600.16385_none_c72819e06acceb59.manifest
[2009.07.14 03:57:50 | 000,019,008 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-s..ive-blackbox-loader_31bf3856ad364e35_6.1.7600.16385_none_c72819e06acceb59_spldr.sys_98bd87a0
[2009.07.14 16:15:51 | 000,004,431 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_8f37605116ba80bc.manifest
[2010.11.20 05:12:44 | 000,005,745 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.17514_none_b94cbfa183466a89.manifest
[2011.02.05 18:34:23 | 000,005,745 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.17556_none_b923808583650cfb.manifest
[2011.02.05 14:09:57 | 000,005,745 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.21655_none_b9ac1d069c83936e.manifest
[2009.07.14 03:18:27 | 000,002,896 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-s..ive-blackbox-loader_31bf3856ad364e35_6.1.7600.16385_none_c72819e06acceb59.manifest
[2009.07.14 02:15:12 | 000,038,400 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-audio-dmusic_31bf3856ad364e35_6.1.7600.16385_none_45ca7214f0f664cb\dmloader.dll
[2009.07.14 02:03:49 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.16385_none_0a884619dd2388ad\api-ms-win-core-libraryloader-l1-1-0.dll
[2011.07.16 05:15:45 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.17651_none_0c8b1b39da352d2d\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.08.20 18:32:13 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.17932_none_0ca1c10dda240617\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.10.04 17:40:37 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.17965_none_0c845227da39a5ef\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.11.30 05:45:15 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.18015_none_0cba39e5da114d7c\api-ms-win-core-libraryloader-l1-1-0.dll
[2011.07.16 05:36:48 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.21772_none_0d001876f3621e30\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.08.20 18:23:16 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.22091_none_0ce95442f3736a4b\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.10.04 17:29:45 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.22125_none_0d3906c4f3370937\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.11.30 05:46:37 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.22177_none_0d04f7bcf35dc79a\api-ms-win-core-libraryloader-l1-1-0.dll
========== Alternate Data Streams ==========
@Alternate Data Stream - 116 bytes -> C:\ProgramData\TEMP:A1EDB939
< End of report >
< *crack* /s >
[2001.08.14 18:31:08 | 000,030,054 | ---- | M] () -- \Program Files\Autodesk\AutoCAD 2013\Inventor Server\Textures\surfaces\Cracks.bmp
[2012.11.03 11:32:48 | 000,005,369 | ---- | M] () -- \Users\Jakub\AppData\Roaming\VitySoft\FRD\plugins\crackle.frp
[2012.10.10 12:52:55 | 000,030,054 | ---- | M] () -- \Users\Public\Documents\Autodesk\Inventor 2013\Textures\surfaces\Cracks.bmp
[2001.08.14 22:31:08 | 000,030,054 | ---- | M] () -- \Users\Public\Documents\Autodesk\Inventor View 2013\Textures\surfaces\Cracks.bmp
< *keygen* /s >
< *loader* /s >
[2012.02.22 22:11:56 | 000,078,336 | ---- | M] () -- \Program Files (x86)\Common Files\Adobe\dynamiclinkmediaserver\1.0\MXF_SDK_MetaMetadata_BinaryLoader_4.4.3.dll
[2012.02.22 22:11:56 | 000,155,136 | ---- | M] () -- \Program Files (x86)\Common Files\Adobe\dynamiclinkmediaserver\1.0\MXF_SDK_MetaMetadata_XSDLoader2_4.4.3.dll
[2012.02.22 22:11:56 | 000,117,248 | ---- | M] () -- \Program Files (x86)\Common Files\Adobe\dynamiclinkmediaserver\1.0\MXF_SDK_MetaMetadata_XSDLoader_4.4.3.dll
[2011.09.27 04:53:06 | 001,723,976 | ---- | M] () -- \Program Files (x86)\Common Files\Manažer instalací SolidWorks\20.0\sldimdownloader.exe
[2005.09.23 03:24:22 | 000,061,440 | ---- | M] () -- \Program Files (x86)\Common Files\microsoft shared\VS7Debug\coloader80.dll
[2005.09.22 22:23:44 | 000,004,608 | ---- | M] () -- \Program Files (x86)\Common Files\microsoft shared\VS7Debug\coloader80.tlb
[2010.10.07 03:36:40 | 000,265,552 | ---- | M] () -- \Program Files (x86)\Common Files\microsoft shared\VSTO\10.0\VSTOLoader.dll
[2010.10.07 03:36:40 | 000,018,264 | ---- | M] () -- \Program Files (x86)\Common Files\microsoft shared\VSTO\10.0\1033\VSTOLoaderUI.dll
[2009.10.06 06:08:30 | 000,145,082 | ---- | M] () -- \Program Files (x86)\HP\HP Officejet Pro 8600\bin\HelpViewer\Resources\Loader.gif
[2008.01.22 08:14:52 | 000,017,624 | ---- | M] () -- \Program Files (x86)\Microsoft SQL Server\90\Tools\Binn\SqlResourceLoader.dll
[2008.01.22 08:14:58 | 000,017,624 | ---- | M] () -- \Program Files (x86)\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\SqlResourceLoader.dll
[2012.11.01 09:32:14 | 000,057,224 | ---- | M] () -- \Program Files (x86)\NVIDIA Corporation\PhysX\Common\PhysXLoader.dll
[2012.11.01 09:32:44 | 000,065,416 | ---- | M] () -- \Program Files (x86)\NVIDIA Corporation\PhysX\Common\PhysXLoader64.dll
[2012.09.04 23:34:12 | 000,083,848 | ---- | M] () -- \Program Files (x86)\NVIDIA Corporation\PhysX\Common\PhysXUpdateLoader.dll
[2012.09.04 23:34:12 | 000,088,968 | ---- | M] () -- \Program Files (x86)\NVIDIA Corporation\PhysX\Common\PhysXUpdateLoader64.dll
[2013.01.04 09:09:34 | 002,496,952 | ---- | M] () -- \Program Files (x86)\WebDataLoader\WebDataLoader.exe
[2012.12.11 22:02:24 | 000,000,105 | ---- | M] () -- \Program Files (x86)\WebDataLoader\WebDataLoader.ini
[2011.01.12 22:53:42 | 000,000,082 | ---- | M] () -- \Program Files (x86)\WebDataLoader\WebDataLoader.pI6
[2013.01.12 21:18:42 | 000,000,053 | ---- | M] () -- \Program Files (x86)\WebDataLoader\WebDataLoader.url
[2012.03.13 11:10:54 | 003,297,128 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS6 (64 Bit)\photodownloader\Photodownloader.exe
[2012.03.13 09:42:26 | 000,011,161 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS6 (64 Bit)\photodownloader\apd\shared_assets\bitmaps\main_window\C_LoadError.png
[2012.03.13 09:42:28 | 000,011,161 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS6 (64 Bit)\photodownloader\apd\shared_assets\combined_bitmaps\main_window\C_LoadError.png
[2012.03.13 09:42:28 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS6 (64 Bit)\photodownloader\apd\shared_assets\locales\da_dk\Photodownloader.ini
[2012.03.13 09:42:28 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS6 (64 Bit)\photodownloader\apd\shared_assets\locales\de_de\Photodownloader.ini
[2012.03.13 09:42:28 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS6 (64 Bit)\photodownloader\apd\shared_assets\locales\en_us\Photodownloader.ini
[2012.03.13 09:42:28 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS6 (64 Bit)\photodownloader\apd\shared_assets\locales\es_es\Photodownloader.ini
[2012.03.13 09:42:28 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS6 (64 Bit)\photodownloader\apd\shared_assets\locales\fi_fi\Photodownloader.ini
[2012.03.13 09:42:28 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS6 (64 Bit)\photodownloader\apd\shared_assets\locales\fr_fr\Photodownloader.ini
[2012.03.13 09:42:28 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS6 (64 Bit)\photodownloader\apd\shared_assets\locales\it_it\Photodownloader.ini
[2012.03.13 09:42:28 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS6 (64 Bit)\photodownloader\apd\shared_assets\locales\ja_jp\Photodownloader.ini
[2012.03.13 09:42:28 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS6 (64 Bit)\photodownloader\apd\shared_assets\locales\ko_kr\Photodownloader.ini
[2012.03.13 09:42:28 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS6 (64 Bit)\photodownloader\apd\shared_assets\locales\nl_nl\Photodownloader.ini
[2012.03.13 09:42:28 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS6 (64 Bit)\photodownloader\apd\shared_assets\locales\no_no\Photodownloader.ini
[2012.03.13 09:42:28 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS6 (64 Bit)\photodownloader\apd\shared_assets\locales\pt_br\Photodownloader.ini
[2012.03.13 09:42:28 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS6 (64 Bit)\photodownloader\apd\shared_assets\locales\sv_se\Photodownloader.ini
[2012.03.13 09:42:30 | 000,000,324 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS6 (64 Bit)\photodownloader\apd\shared_assets\locales\zh_cn\Photodownloader.ini
[2012.03.13 09:42:30 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS6 (64 Bit)\photodownloader\apd\shared_assets\locales\zh_tw\Photodownloader.ini
[2012.02.07 04:39:48 | 000,193,960 | ---- | M] () -- \Program Files\Autodesk\AutoCAD 2013\AcAutoLoader.arx
[2012.02.07 04:38:06 | 002,342,312 | ---- | M] () -- \Program Files\Autodesk\AutoCAD 2013\AdDownloaderCore.dll
[2012.01.25 13:10:54 | 000,026,024 | ---- | M] () -- \Program Files\Autodesk\AutoCAD 2013\AecLoader.arx
[2012.12.03 11:56:36 | 000,008,349 | ---- | M] () -- \Program Files\Autodesk\AutoCAD 2013\Acadm\Setup\cs-CZ\Setup\cs-CZ\Docs\acadm_sysreq\scripts\beehive\core\FileLoader.js
[2012.12.03 11:56:37 | 000,007,404 | ---- | M] () -- \Program Files\Autodesk\AutoCAD 2013\Acadm\Setup\cs-CZ\Setup\cs-CZ\Docs\acadm_sysreq\scripts\beehive\ui\StylesheetLoader.js
[2012.12.03 11:56:37 | 000,003,208 | ---- | M] () -- \Program Files\Autodesk\AutoCAD 2013\Acadm\Setup\cs-CZ\Setup\cs-CZ\Docs\acadm_sysreq\scripts\beehiveSearch\styles\images\loader.gif
[2012.03.13 08:47:55 | 000,012,912 | ---- | M] () -- \Program Files\Autodesk\AutoCAD 2013\cs-CZ\AcAutoLoaderRes.dll
[2012.01.14 00:22:20 | 000,063,648 | ---- | M] () -- \Program Files\Autodesk\AutoCAD 2013\Inventor Server\Bin\ClrAddinLoader.dll
[2012.10.10 12:41:05 | 000,026,024 | ---- | M] () -- \Program Files\Autodesk\DWG TrueView 2013\AecLoader.arx
[2012.10.10 12:45:31 | 000,063,648 | ---- | M] () -- \Program Files\Autodesk\Inventor 2013\Bin\ClrAddinLoader.dll
[2012.02.14 03:01:26 | 004,888,416 | ---- | M] () -- \Program Files\Autodesk\Vault Basic 2013\Autoloader\Explorer\Autoloader.exe
[2011.06.12 14:25:30 | 000,010,163 | ---- | M] () -- \Program Files\Autodesk\Vault Basic 2013\Autoloader\Explorer\Autoloader.exe.config
[2010.04.19 12:40:24 | 000,005,644 | ---- | M] () -- \Program Files\Autodesk\Vault Basic 2013\Autoloader\Explorer\Autoloader Templates\Autoloader_ArchiveReport.xsl
[2010.04.19 12:40:24 | 000,011,500 | ---- | M] () -- \Program Files\Autodesk\Vault Basic 2013\Autoloader\Explorer\Autoloader Templates\Autoloader_ScanReport.xsl
[2010.04.19 12:40:24 | 000,019,316 | ---- | M] () -- \Program Files\Autodesk\Vault Basic 2013\Autoloader\Explorer\Autoloader Templates\Autoloader_UploadReport.xsl
[2009.06.12 17:03:00 | 000,000,000 | ---- | M] () -- \Program Files\Autodesk\Vault Basic 2013\Autoloader\Explorer\Loc\Autoloader.resources.dll
[2010.10.07 03:36:40 | 000,387,408 | ---- | M] () -- \Program Files\Common Files\Microsoft Shared\VSTO\10.0\VSTOLoader.dll
[2010.10.07 03:36:40 | 000,018,264 | ---- | M] () -- \Program Files\Common Files\Microsoft Shared\VSTO\10.0\1033\VSTOLoaderUI.dll
[2011.09.26 18:16:46 | 007,951,872 | ---- | M] () -- \Program Files\SolidWorks Corp\SolidWorks\photoview\swkloader64_libFNP.dll
[2011.09.26 18:16:46 | 003,242,496 | ---- | M] () -- \Program Files\SolidWorks Corp\SolidWorks\photoview\extra\swkloader64.lx
[2011.04.29 05:34:02 | 000,014,398 | ---- | M] () -- \Program Files\SolidWorks Corp\SolidWorks\photoview\extra\scripts\pv_envloader.py
[2011.09.26 23:48:16 | 000,163,840 | ---- | M] () -- \Program Files\SolidWorks Corp\SolidWorks\sld3DViaUploader\sld3dViaUploader.exe
[2011.09.27 04:18:16 | 000,632,392 | ---- | M] () -- \Program Files\SolidWorks Corp\SolidWorks\sldutils\SwLoaderSw.dll
[2011.09.27 04:19:04 | 000,136,776 | ---- | M] () -- \Program Files\SolidWorks Corp\SolidWorks\sldutils\lang\czech\SwLoaderSwResu.dll
[2011.09.27 04:19:20 | 000,136,264 | ---- | M] () -- \Program Files\SolidWorks Corp\SolidWorks\sldutils\lang\English\SwLoaderSwResu.dll
[2012.06.09 18:19:38 | 000,055,296 | ---- | M] () -- \Program Files\WinRAR\Formats\ace32loader.exe
[2011.03.08 16:10:08 | 000,670,208 | ---- | M] () -- \Program Files\Zoner\Photo Studio 14\Plugins\Facebook\ZPSFacebookUploader.exe
[2010.04.29 13:12:40 | 000,053,640 | ---- | M] () -- \Program Files\Zoner\Photo Studio 14\Plugins\Facebook\ZPSPluginLoader.exe
[2011.05.31 08:46:24 | 000,685,568 | ---- | M] () -- \Program Files\Zoner\Photo Studio 14\Plugins\Flickr\ZPSFlickrUploader.exe
[2010.04.29 13:12:42 | 000,053,640 | ---- | M] () -- \Program Files\Zoner\Photo Studio 14\Plugins\Flickr\ZPSPluginLoader.exe
[2011.03.08 16:09:04 | 000,194,048 | ---- | M] () -- \Program Files\Zoner\Photo Studio 14\Plugins\Picasa\ZPSPicasaUploader.exe
[2010.04.29 13:12:40 | 000,053,640 | ---- | M] () -- \Program Files\Zoner\Photo Studio 14\Plugins\Picasa\ZPSPluginLoader.exe
[2011.11.01 15:47:10 | 000,102,792 | ---- | M] () -- \Program Files\Zoner\Photo Studio 14\Program32\8bfLoader.exe
[2011.11.01 15:47:22 | 000,016,776 | ---- | M] () -- \Program Files\Zoner\Photo Studio 14\Program32\WICLoader.exe
[2011.11.01 15:47:56 | 000,019,336 | ---- | M] () -- \Program Files\Zoner\Photo Studio 14\Program64\WICLoader.exe
[2012.12.03 10:34:24 | 000,001,380 | ---- | M] () -- \ProgramData\Microsoft\Windows\Start Menu\Programs\Autodesk\Autodesk Data Management\Tools\Autodesk Autoloader 2013 for Vault.lnk
[2013.01.12 21:18:42 | 000,001,089 | ---- | M] () -- \ProgramData\Microsoft\Windows\Start Menu\Programs\WebDataLoader\Aplikace WebDataLoader na internetu.lnk
[2013.01.12 21:18:42 | 000,001,064 | ---- | M] () -- \ProgramData\Microsoft\Windows\Start Menu\Programs\WebDataLoader\Odinstalovat aplikaci WebDataLoader.lnk
[2013.01.12 21:18:42 | 000,001,089 | ---- | M] () -- \ProgramData\Microsoft\Windows\Start Menu\Programs\WebDataLoader\WebDataLoader.lnk
[2012.11.08 15:16:50 | 000,072,638 | ---- | M] () -- \ProgramData\Skype\Apps\login\images\loader.gif
[2012.11.08 15:16:50 | 000,003,032 | ---- | M] () -- \ProgramData\Skype\Apps\login\images\loader.png
[2012.11.08 15:16:50 | 000,009,772 | ---- | M] () -- \ProgramData\Skype\Apps\login\images\retina\loader@2x.png
[2013.01.12 21:23:49 | 000,000,277 | ---- | M] () -- \ProgramData\WebDataLoader\WebDataLoader.ini
[2012.12.03 10:34:24 | 000,001,380 | ---- | M] () -- \Users\All Users\Microsoft\Windows\Start Menu\Programs\Autodesk\Autodesk Data Management\Tools\Autodesk Autoloader 2013 for Vault.lnk
[2013.01.12 21:18:42 | 000,001,089 | ---- | M] () -- \Users\All Users\Microsoft\Windows\Start Menu\Programs\WebDataLoader\Aplikace WebDataLoader na internetu.lnk
[2013.01.12 21:18:42 | 000,001,064 | ---- | M] () -- \Users\All Users\Microsoft\Windows\Start Menu\Programs\WebDataLoader\Odinstalovat aplikaci WebDataLoader.lnk
[2013.01.12 21:18:42 | 000,001,089 | ---- | M] () -- \Users\All Users\Microsoft\Windows\Start Menu\Programs\WebDataLoader\WebDataLoader.lnk
[2012.11.08 15:16:50 | 000,072,638 | ---- | M] () -- \Users\All Users\Skype\Apps\login\images\loader.gif
[2012.11.08 15:16:50 | 000,003,032 | ---- | M] () -- \Users\All Users\Skype\Apps\login\images\loader.png
[2012.11.08 15:16:50 | 000,009,772 | ---- | M] () -- \Users\All Users\Skype\Apps\login\images\retina\loader@2x.png
[2013.01.12 21:23:49 | 000,000,277 | ---- | M] () -- \Users\All Users\WebDataLoader\WebDataLoader.ini
[2012.11.29 20:24:05 | 000,000,723 | ---- | M] () -- \Users\Jakub\AppData\Local\Google\Chrome\User Data\Default\Extensions\alelhddbbhepgpmgidjdcjakblofbmce\3.4.4_0\images\loader.gif
[2013.01.20 17:19:09 | 000,105,903 | ---- | M] () -- \Users\Jakub\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\52TCX5Q3\AdLoader-427d9fd2a91e2f2c023aefe9f69a01d0.min[1].js
[2013.01.20 17:19:09 | 000,000,753 | ---- | M] () -- \Users\Jakub\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\CXT7CCMT\AdLoader[1].htm
[2012.12.28 12:52:31 | 000,008,787 | ---- | M] () -- \Users\Jakub\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\6NQBSFNH\loader[1].gif
[2012.11.19 12:20:10 | 000,000,673 | ---- | M] () -- \Users\Jakub\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\GK4J46M9\loader.white[1].gif
[2013.01.16 13:49:44 | 000,008,787 | ---- | M] () -- \Users\Jakub\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\HQEKZ82J\loader[1].gif
[2012.10.20 16:09:52 | 000,002,756 | ---- | M] () -- \Users\Jakub\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\U9YIG181\RmsLoader[1].js
[2013.01.11 15:29:45 | 000,000,673 | ---- | M] () -- \Users\Jakub\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\Y8B1Z2S2\loader[1].gif
[2012.10.13 15:41:10 | 000,000,673 | ---- | M] () -- \Users\Jakub\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\YRTXOSSU\loader.white[1].gif
[2012.04.25 17:32:22 | 000,000,508 | ---- | M] () -- \Users\Jakub\AppData\Roaming\.minecraft[VCHbackup]\ModLoader.txt
[2012.04.25 15:22:11 | 000,000,508 | ---- | M] () -- \Users\Jakub\AppData\Roaming\.minecraft[VCHbackup]\ModLoader.txt.1
[2012.04.25 17:32:21 | 000,000,099 | ---- | M] () -- \Users\Jakub\AppData\Roaming\.minecraft[VCHbackup]\config\ModLoader.cfg
[2012.04.25 17:32:22 | 000,000,508 | ---- | M] () -- \Users\Jakub\AppData\Roaming\.minecraft\ModLoader.txt
[2012.04.25 15:22:11 | 000,000,508 | ---- | M] () -- \Users\Jakub\AppData\Roaming\.minecraft\ModLoader.txt.1
[2012.04.25 17:32:21 | 000,000,099 | ---- | M] () -- \Users\Jakub\AppData\Roaming\.minecraft\config\ModLoader.cfg
[2012.10.09 21:18:47 | 000,001,100 | ---- | M] () -- \Users\Jakub\AppData\Roaming\SolidWorks\Installation Logs\2012 SP0\Other Logs\IMDownloaderVersion.xml
[2012.10.09 21:18:51 | 000,001,614 | ---- | M] () -- \Users\Jakub\AppData\Roaming\SolidWorks\Installation Logs\Misc Logs\sldIMDownloaderLog_00001.txt
[2013.01.12 21:18:42 | 000,001,071 | ---- | M] () -- \Users\Jakub\Desktop\WebDataLoader.lnk
[2012.12.30 09:54:18 | 000,011,314 | ---- | M] () -- \Users\Jakub\Desktop\dite.webove-studio.eu\adminek\themes\default\img\ajax-loader.gif
[2012.12.30 09:54:23 | 000,000,109 | ---- | M] () -- \Users\Jakub\Desktop\dite.webove-studio.eu\adminek\themes\default\img\bg_loaderSpace.png
[2012.12.30 09:57:13 | 000,008,344 | ---- | M] () -- \Users\Jakub\Desktop\dite.webove-studio.eu\classes\FileUploader.php
[2012.12.30 09:58:13 | 000,000,109 | ---- | M] () -- \Users\Jakub\Desktop\dite.webove-studio.eu\img\bg_loader.png
[2012.12.30 09:58:14 | 000,003,719 | ---- | M] () -- \Users\Jakub\Desktop\dite.webove-studio.eu\img\loader.gif
[2012.12.30 09:58:19 | 000,011,314 | ---- | M] () -- \Users\Jakub\Desktop\dite.webove-studio.eu\img\admin\ajax-loader-big.gif
[2012.12.30 09:58:20 | 000,009,427 | ---- | M] () -- \Users\Jakub\Desktop\dite.webove-studio.eu\img\admin\ajax-loader-yellow.gif
[2012.12.30 09:58:20 | 000,000,673 | ---- | M] () -- \Users\Jakub\Desktop\dite.webove-studio.eu\img\admin\ajax-loader.gif
[2012.12.30 09:58:32 | 000,000,723 | ---- | M] () -- \Users\Jakub\Desktop\dite.webove-studio.eu\img\admin\field-loader.gif
[2012.12.30 09:58:54 | 000,000,847 | ---- | M] () -- \Users\Jakub\Desktop\dite.webove-studio.eu\img\admin\jquery-treeview\ajax-loader.gif
[2012.12.30 11:55:32 | 000,035,777 | ---- | M] () -- \Users\Jakub\Desktop\dite.webove-studio.eu\js\fileuploader.js
[2012.12.30 11:55:35 | 000,001,720 | ---- | M] () -- \Users\Jakub\Desktop\dite.webove-studio.eu\js\cropper\loader.js
[2012.12.30 11:56:05 | 000,000,847 | ---- | M] () -- \Users\Jakub\Desktop\dite.webove-studio.eu\js\jquery\plugins\treeview-categories\images\ajax-loader.gif
[2012.12.30 12:02:28 | 000,003,719 | ---- | M] () -- \Users\Jakub\Desktop\dite.webove-studio.eu\modules\carriercompare\loader.gif
[2012.12.30 12:06:30 | 000,001,849 | ---- | M] () -- \Users\Jakub\Desktop\dite.webove-studio.eu\modules\shopimporter\img\ajax-loader.gif
[2012.12.30 13:04:46 | 000,003,208 | ---- | M] () -- \Users\Jakub\Desktop\dite.webove-studio.eu\themes\prodite\img\ajax-loader.gif
[2012.12.30 13:05:29 | 000,007,825 | ---- | M] () -- \Users\Jakub\Desktop\dite.webove-studio.eu\themes\prodite\mobile\img\ajax-loader.gif
[2012.12.30 13:05:30 | 000,000,340 | ---- | M] () -- \Users\Jakub\Desktop\dite.webove-studio.eu\themes\prodite\mobile\img\ajax-loader.png
[2012.12.30 13:06:13 | 000,000,910 | ---- | M] () -- \Users\Jakub\Desktop\dite.webove-studio.eu\tools\swift\Swift\ClassLoader.php
[2013.01.04 16:58:24 | 000,000,723 | ---- | M] () -- \Users\Jakub\Desktop\HFL\wp-content\plugins\Booking System PRO (WordPress Plugin)\dopbsp\assets\gui\images\loader.gif
[2013.01.04 17:00:11 | 000,000,723 | ---- | M] () -- \Users\Jakub\Desktop\HFL\wp-content\plugins\dopbsp\assets\gui\images\loader.gif
[2013.01.04 17:02:23 | 000,000,673 | ---- | M] () -- \Users\Jakub\Desktop\HFL\wp-content\plugins\nextgen-gallery\images\ajax-loader.gif
[2013.01.04 17:02:23 | 000,006,820 | ---- | M] () -- \Users\Jakub\Desktop\HFL\wp-content\plugins\nextgen-gallery\images\loader.gif
[2013.01.04 17:02:44 | 000,002,248 | ---- | M] () -- \Users\Jakub\Desktop\HFL\wp-content\plugins\nextgen-scrollgallery\scrollGallery\ajax-loader.gif
[2013.01.04 17:05:36 | 000,000,673 | ---- | M] () -- \Users\Jakub\Desktop\HFL\wp-content\plugins\sitepress-multilingual-cms\res\img\ajax-loader.gif
[2013.01.04 17:08:43 | 000,037,740 | ---- | M] () -- \Users\Jakub\Desktop\HFL\wp-includes\script-loader.php
[2013.01.04 17:08:44 | 000,001,889 | ---- | M] () -- \Users\Jakub\Desktop\HFL\wp-includes\template-loader.php
[2013.01.04 17:09:20 | 000,004,066 | ---- | M] () -- \Users\Jakub\Desktop\HFL\wp-includes\js\customize-loader.dev.js
[2013.01.04 17:09:21 | 000,002,609 | ---- | M] () -- \Users\Jakub\Desktop\HFL\wp-includes\js\customize-loader.js
[2012.12.27 12:57:56 | 000,000,673 | ---- | M] () -- \Users\Jakub\Desktop\MŠ Okružní\FTP\wp-content\plugins\nextgen-gallery\images\ajax-loader.gif
[2012.12.27 12:57:56 | 000,006,820 | ---- | M] () -- \Users\Jakub\Desktop\MŠ Okružní\FTP\wp-content\plugins\nextgen-gallery\images\loader.gif
[2012.12.27 12:59:52 | 000,037,740 | ---- | M] () -- \Users\Jakub\Desktop\MŠ Okružní\FTP\wp-includes\script-loader.php
[2012.12.27 12:59:53 | 000,001,889 | ---- | M] () -- \Users\Jakub\Desktop\MŠ Okružní\FTP\wp-includes\template-loader.php
[2012.12.27 13:00:31 | 000,004,066 | ---- | M] () -- \Users\Jakub\Desktop\MŠ Okružní\FTP\wp-includes\js\customize-loader.dev.js
[2012.12.27 13:00:32 | 000,002,609 | ---- | M] () -- \Users\Jakub\Desktop\MŠ Okružní\FTP\wp-includes\js\customize-loader.js
[2010.12.30 12:32:56 | 000,000,673 | ---- | M] () -- \Users\Jakub\Desktop\prestashop 1.5 moduly\m4pdf\m4pdf\ajax-loader.gif
[2012.12.07 14:36:27 | 000,003,719 | ---- | M] () -- \Users\Jakub\Desktop\prodite.com\FTP\FTP\img\loader.gif
[2012.12.07 14:36:30 | 000,000,673 | ---- | M] () -- \Users\Jakub\Desktop\prodite.com\FTP\FTP\img\admin\ajax-loader.gif
[2012.12.07 15:48:41 | 000,001,720 | ---- | M] () -- \Users\Jakub\Desktop\prodite.com\FTP\FTP\js\cropper\loader.js
[2012.12.07 15:49:07 | 000,008,427 | ---- | M] () -- \Users\Jakub\Desktop\prodite.com\FTP\FTP\js\tinymce\jscripts\tiny_mce\classes\dom\ScriptLoader.js
[2012.12.07 16:02:03 | 000,000,910 | ---- | M] () -- \Users\Jakub\Desktop\prodite.com\FTP\FTP\tools\swift\Swift\ClassLoader.php
[2012.12.29 11:15:40 | 000,003,719 | ---- | M] () -- \Users\Jakub\Desktop\prodite-13\img\loader.gif
[2012.12.29 11:15:46 | 000,000,673 | ---- | M] () -- \Users\Jakub\Desktop\prodite-13\img\admin\ajax-loader.gif
[2012.12.29 12:39:49 | 000,001,720 | ---- | M] () -- \Users\Jakub\Desktop\prodite-13\js\cropper\loader.js
[2012.12.29 12:40:21 | 000,008,427 | ---- | M] () -- \Users\Jakub\Desktop\prodite-13\js\tinymce\jscripts\tiny_mce\classes\dom\ScriptLoader.js
[2012.12.29 13:00:07 | 000,000,910 | ---- | M] () -- \Users\Jakub\Desktop\prodite-13\tools\swift\Swift\ClassLoader.php
[2012.10.23 18:23:56 | 000,011,314 | ---- | M] () -- \Users\Jakub\Desktop\prodite-152\prodite-15\prodite\adminek\themes\default\img\ajax-loader.gif
[2012.10.23 18:23:56 | 000,000,109 | ---- | M] () -- \Users\Jakub\Desktop\prodite-152\prodite-15\prodite\adminek\themes\default\img\bg_loaderSpace.png
[2012.10.23 18:23:56 | 000,008,471 | ---- | M] () -- \Users\Jakub\Desktop\prodite-152\prodite-15\prodite\classes\FileUploader.php
[2012.10.23 18:23:56 | 000,000,109 | ---- | M] () -- \Users\Jakub\Desktop\prodite-152\prodite-15\prodite\img\bg_loader.png
[2012.10.23 18:23:56 | 000,003,719 | ---- | M] () -- \Users\Jakub\Desktop\prodite-152\prodite-15\prodite\img\loader.gif
[2012.10.23 18:23:56 | 000,011,314 | ---- | M] () -- \Users\Jakub\Desktop\prodite-152\prodite-15\prodite\img\admin\ajax-loader-big.gif
[2012.10.23 18:23:56 | 000,009,427 | ---- | M] () -- \Users\Jakub\Desktop\prodite-152\prodite-15\prodite\img\admin\ajax-loader-yellow.gif
[2012.10.23 18:23:56 | 000,000,673 | ---- | M] () -- \Users\Jakub\Desktop\prodite-152\prodite-15\prodite\img\admin\ajax-loader.gif
[2012.10.23 18:23:56 | 000,000,723 | ---- | M] () -- \Users\Jakub\Desktop\prodite-152\prodite-15\prodite\img\admin\field-loader.gif
[2012.12.07 14:36:27 | 000,003,719 | ---- | M] () -- \Users\Jakub\Desktop\prodite-152\prodite-15\prodite\imgupload\loader.gif
[2012.12.07 14:36:30 | 000,000,673 | ---- | M] () -- \Users\Jakub\Desktop\prodite-152\prodite-15\prodite\imgupload\admin\ajax-loader.gif
[2012.10.23 18:23:56 | 000,002,863 | ---- | M] () -- \Users\Jakub\Desktop\prodite-152\prodite-15\prodite\installek\classes\sqlLoader.php
[2012.10.23 18:23:56 | 000,036,983 | ---- | M] () -- \Users\Jakub\Desktop\prodite-152\prodite-15\prodite\installek\classes\xmlLoader.php
[2012.10.23 18:23:58 | 000,009,427 | ---- | M] () -- \Users\Jakub\Desktop\prodite-152\prodite-15\prodite\installek\theme\img\ajax-loader-small.gif
[2012.10.23 18:23:58 | 000,011,314 | ---- | M] () -- \Users\Jakub\Desktop\prodite-152\prodite-15\prodite\installek\theme\img\ajax-loader.gif
[2012.10.23 18:23:58 | 000,000,109 | ---- | M] () -- \Users\Jakub\Desktop\prodite-152\prodite-15\prodite\installek\theme\img\bg_loaderSpace.png
[2012.10.23 18:23:58 | 000,035,817 | ---- | M] () -- \Users\Jakub\Desktop\prodite-152\prodite-15\prodite\js\fileuploader.js
[2012.10.23 18:23:58 | 000,001,720 | ---- | M] () -- \Users\Jakub\Desktop\prodite-152\prodite-15\prodite\js\cropper\loader.js
[2012.10.23 18:23:58 | 000,000,847 | ---- | M] () -- \Users\Jakub\Desktop\prodite-152\prodite-15\prodite\js\jquery\plugins\treeview-categories\images\ajax-loader.gif
[2012.10.23 18:23:58 | 000,003,719 | ---- | M] () -- \Users\Jakub\Desktop\prodite-152\prodite-15\prodite\modules\carriercompare\loader.gif
[2012.10.23 18:23:58 | 000,001,849 | ---- | M] () -- \Users\Jakub\Desktop\prodite-152\prodite-15\prodite\modules\shopimporter\img\ajax-loader.gif
[2012.10.23 18:23:58 | 000,000,057 | ---- | M] () -- \Users\Jakub\Desktop\prodite-152\prodite-15\prodite\override\classes\FileUploader.php
[2012.10.23 18:23:58 | 000,003,208 | ---- | M] () -- \Users\Jakub\Desktop\prodite-152\prodite-15\prodite\themes\default\img\ajax-loader.gif
[2012.10.23 18:24:00 | 000,007,825 | ---- | M] () -- \Users\Jakub\Desktop\prodite-152\prodite-15\prodite\themes\default\mobile\img\ajax-loader.gif
[2012.10.23 18:24:00 | 000,000,340 | ---- | M] () -- \Users\Jakub\Desktop\prodite-152\prodite-15\prodite\themes\default\mobile\img\ajax-loader.png
[2012.10.23 18:24:00 | 000,000,910 | ---- | M] () -- \Users\Jakub\Desktop\prodite-152\prodite-15\prodite\tools\swift\Swift\ClassLoader.php
[2012.12.26 08:23:53 | 000,003,719 | ---- | M] () -- \Users\Jakub\Desktop\prodite-152_thrmr\modules\carriercompare\loader.gif
[2012.12.26 08:26:15 | 000,001,849 | ---- | M] () -- \Users\Jakub\Desktop\prodite-152_thrmr\modules\shopimporter\img\ajax-loader.gif
[2012.12.29 23:44:25 | 000,003,208 | ---- | M] () -- \Users\Jakub\Desktop\prodite-152_thrmr\prodite\img\ajax-loader.gif
[2012.12.29 23:44:57 | 000,007,825 | ---- | M] () -- \Users\Jakub\Desktop\prodite-152_thrmr\prodite\mobile\img\ajax-loader.gif
[2012.12.29 23:44:57 | 000,000,340 | ---- | M] () -- \Users\Jakub\Desktop\prodite-152_thrmr\prodite\mobile\img\ajax-loader.png
[2012.12.25 21:49:27 | 000,011,314 | ---- | M] () -- \Users\Jakub\Desktop\prodite-152_zaloha server\adminek\themes\default\img\ajax-loader.gif
[2012.12.25 21:49:28 | 000,000,109 | ---- | M] () -- \Users\Jakub\Desktop\prodite-152_zaloha server\adminek\themes\default\img\bg_loaderSpace.png
[2012.12.25 21:52:00 | 000,008,471 | ---- | M] () -- \Users\Jakub\Desktop\prodite-152_zaloha server\classes\FileUploader.php
[2012.12.25 21:52:56 | 000,003,719 | ---- | M] () -- \Users\Jakub\Desktop\prodite-152_zaloha server\imgupload\loader.gif
[2012.12.25 21:52:59 | 000,000,673 | ---- | M] () -- \Users\Jakub\Desktop\prodite-152_zaloha server\imgupload\admin\ajax-loader.gif
[2012.12.25 22:11:21 | 000,002,863 | ---- | M] () -- \Users\Jakub\Desktop\prodite-152_zaloha server\installek\classes\sqlLoader.php
[2012.12.25 22:11:21 | 000,036,983 | ---- | M] () -- \Users\Jakub\Desktop\prodite-152_zaloha server\installek\classes\xmlLoader.php
[2012.12.25 22:13:24 | 000,009,427 | ---- | M] () -- \Users\Jakub\Desktop\prodite-152_zaloha server\installek\theme\img\ajax-loader-small.gif
[2012.12.25 22:13:24 | 000,011,314 | ---- | M] () -- \Users\Jakub\Desktop\prodite-152_zaloha server\installek\theme\img\ajax-loader.gif
[2012.12.25 22:13:27 | 000,000,109 | ---- | M] () -- \Users\Jakub\Desktop\prodite-152_zaloha server\installek\theme\img\bg_loaderSpace.png
[2012.12.25 22:14:08 | 000,035,817 | ---- | M] () -- \Users\Jakub\Desktop\prodite-152_zaloha server\js\fileuploader.js
[2012.12.25 22:14:11 | 000,001,720 | ---- | M] () -- \Users\Jakub\Desktop\prodite-152_zaloha server\js\cropper\loader.js
[2012.12.25 22:14:37 | 000,000,847 | ---- | M] () -- \Users\Jakub\Desktop\prodite-152_zaloha server\js\jquery\plugins\treeview-categories\images\ajax-loader.gif
[2012.12.25 22:22:08 | 000,003,719 | ---- | M] () -- \Users\Jakub\Desktop\prodite-152_zaloha server\modules\carriercompare\loader.gif
[2012.12.25 22:24:40 | 000,001,849 | ---- | M] () -- \Users\Jakub\Desktop\prodite-152_zaloha server\modules\shopimporter\img\ajax-loader.gif
[2012.12.25 22:25:49 | 000,000,057 | ---- | M] () -- \Users\Jakub\Desktop\prodite-152_zaloha server\override\classes\FileUploader.php
[2012.12.25 22:27:11 | 000,003,208 | ---- | M] () -- \Users\Jakub\Desktop\prodite-152_zaloha server\themes\default\img\ajax-loader.gif
[2012.12.25 22:27:49 | 000,007,825 | ---- | M] () -- \Users\Jakub\Desktop\prodite-152_zaloha server\themes\default\mobile\img\ajax-loader.gif
[2012.12.25 22:27:49 | 000,000,340 | ---- | M] () -- \Users\Jakub\Desktop\prodite-152_zaloha server\themes\default\mobile\img\ajax-loader.png
[2012.12.25 22:28:36 | 000,000,910 | ---- | M] () -- \Users\Jakub\Desktop\prodite-152_zaloha server\tools\swift\Swift\ClassLoader.php
[2012.12.20 20:41:22 | 000,000,847 | ---- | M] () -- \Users\Jakub\Desktop\server-minecraft\wp-content\plugins\contact-form-7\images\ajax-loader.gif
[2012.12.20 20:43:40 | 000,037,740 | ---- | M] () -- \Users\Jakub\Desktop\server-minecraft\wp-includes\script-loader.php
[2012.12.20 20:43:41 | 000,001,889 | ---- | M] () -- \Users\Jakub\Desktop\server-minecraft\wp-includes\template-loader.php
[2012.12.20 20:44:00 | 000,004,066 | ---- | M] () -- \Users\Jakub\Desktop\server-minecraft\wp-includes\js\customize-loader.dev.js
[2012.12.20 20:44:01 | 000,002,609 | ---- | M] () -- \Users\Jakub\Desktop\server-minecraft\wp-includes\js\customize-loader.js
[2013.01.11 22:23:13 | 000,003,208 | ---- | M] () -- \Users\Jakub\Desktop\shiptopay_101_17122012\prodite\img\ajax-loader.gif
[2013.01.11 22:24:00 | 000,007,825 | ---- | M] () -- \Users\Jakub\Desktop\shiptopay_101_17122012\prodite\mobile\img\ajax-loader.gif
[2013.01.11 22:24:00 | 000,000,340 | ---- | M] () -- \Users\Jakub\Desktop\shiptopay_101_17122012\prodite\mobile\img\ajax-loader.png
[2012.10.31 18:39:30 | 000,003,208 | ---- | M] () -- \Users\Jakub\Desktop\shop.1000pohadek.cz\default\img\ajax-loader.gif
[2012.10.31 18:40:14 | 000,007,825 | ---- | M] () -- \Users\Jakub\Desktop\shop.1000pohadek.cz\default\mobile\img\ajax-loader.gif
[2012.10.31 18:40:14 | 000,000,340 | ---- | M] () -- \Users\Jakub\Desktop\shop.1000pohadek.cz\default\mobile\img\ajax-loader.png
[2012.10.25 02:53:24 | 000,003,208 | ---- | M] () -- \Users\Jakub\Desktop\shop.1000pohadek.cz\theme\Prestashop Files\themes\PRS040097\img\ajax-loader.gif
[2012.10.25 02:57:14 | 000,007,825 | ---- | M] () -- \Users\Jakub\Desktop\shop.1000pohadek.cz\theme\Prestashop Files\themes\PRS040097\mobile\img\ajax-loader.gif
[2012.10.25 02:57:14 | 000,000,340 | ---- | M] () -- \Users\Jakub\Desktop\shop.1000pohadek.cz\theme\Prestashop Files\themes\PRS040097\mobile\img\ajax-loader.png
[2012.10.23 17:45:25 | 000,000,212 | ---- | M] () -- \Users\Jakub\Desktop\spectrum praha\new\application\library\tiny-mce\plugins\jbimages\ci\application\config\uploader_settings.php
[2012.10.23 17:45:33 | 000,027,479 | ---- | M] () -- \Users\Jakub\Desktop\spectrum praha\new\application\library\tiny-mce\plugins\jbimages\ci\system\core\Loader.php
[2012.10.23 17:48:49 | 000,002,545 | ---- | M] () -- \Users\Jakub\Desktop\spectrum praha\new\view\default\images\prettyPhoto\dark_rounded\loader.gif
[2012.10.23 17:48:50 | 000,002,545 | ---- | M] () -- \Users\Jakub\Desktop\spectrum praha\new\view\default\images\prettyPhoto\dark_square\loader.gif
[2012.10.23 17:48:51 | 000,002,545 | ---- | M] () -- \Users\Jakub\Desktop\spectrum praha\new\view\default\images\prettyPhoto\facebook\loader.gif
[2012.10.23 17:48:59 | 000,002,545 | ---- | M] () -- \Users\Jakub\Desktop\spectrum praha\new\view\default\images\prettyPhoto\light_rounded\loader.gif
[2012.10.23 17:49:00 | 000,002,545 | ---- | M] () -- \Users\Jakub\Desktop\spectrum praha\new\view\default\images\prettyPhoto\light_square\loader.gif
[2012.11.16 20:31:11 | 000,001,358 | ---- | M] () -- \Users\Jakub\Desktop\spectrum praha\spectrum starý\admin\core\css\loader.css
[2012.11.16 20:31:16 | 000,002,090 | ---- | M] () -- \Users\Jakub\Desktop\spectrum praha\spectrum starý\admin\core\js\loader.js
[2012.11.16 20:34:52 | 000,001,151 | ---- | M] () -- \Users\Jakub\Desktop\spectrum praha\spectrum starý\admin\core\skin\default\loader.css
[2013.01.19 14:03:22 | 000,784,212 | ---- | M] () -- \Users\Jakub\Desktop\zlatnictvi gajda\19.1\admin1\SC\ioncube\ioncube_loader_lin_5.1.so
[2013.01.19 14:03:17 | 000,827,092 | ---- | M] () -- \Users\Jakub\Desktop\zlatnictvi gajda\19.1\admin1\SC\ioncube\ioncube_loader_lin_5.1_ts.so
[2013.01.19 14:03:13 | 000,781,492 | ---- | M] () -- \Users\Jakub\Desktop\zlatnictvi gajda\19.1\admin1\SC\ioncube\ioncube_loader_lin_5.2.so
[2013.01.19 14:03:18 | 000,824,180 | ---- | M] () -- \Users\Jakub\Desktop\zlatnictvi gajda\19.1\admin1\SC\ioncube\ioncube_loader_lin_5.2_ts.so
[2013.01.19 14:03:15 | 000,810,280 | ---- | M] () -- \Users\Jakub\Desktop\zlatnictvi gajda\19.1\admin1\SC\ioncube\ioncube_loader_lin_5.3.so
[2013.01.19 14:03:20 | 000,866,472 | ---- | M] () -- \Users\Jakub\Desktop\zlatnictvi gajda\19.1\admin1\SC\ioncube\ioncube_loader_lin_5.3_ts.so
[2013.01.19 14:03:13 | 000,154,499 | ---- | M] () -- \Users\Jakub\Desktop\zlatnictvi gajda\19.1\admin1\SC\ioncube\loader-wizard.php
[2013.01.19 14:03:11 | 000,944,184 | ---- | M] () -- \Users\Jakub\Desktop\zlatnictvi gajda\19.1\admin1\SC\ioncube-64\ioncube_loader_lin_5.1.so
[2013.01.19 14:03:06 | 000,989,752 | ---- | M] () -- \Users\Jakub\Desktop\zlatnictvi gajda\19.1\admin1\SC\ioncube-64\ioncube_loader_lin_5.1_ts.so
[2013.01.19 14:03:01 | 000,948,568 | ---- | M] () -- \Users\Jakub\Desktop\zlatnictvi gajda\19.1\admin1\SC\ioncube-64\ioncube_loader_lin_5.2.so
[2013.01.19 14:03:07 | 001,039,032 | ---- | M] () -- \Users\Jakub\Desktop\zlatnictvi gajda\19.1\admin1\SC\ioncube-64\ioncube_loader_lin_5.2_ts.so
[2013.01.19 14:03:04 | 001,012,392 | ---- | M] () -- \Users\Jakub\Desktop\zlatnictvi gajda\19.1\admin1\SC\ioncube-64\ioncube_loader_lin_5.3.so
[2013.01.19 14:03:09 | 001,063,944 | ---- | M] () -- \Users\Jakub\Desktop\zlatnictvi gajda\19.1\admin1\SC\ioncube-64\ioncube_loader_lin_5.3_ts.so
[2013.01.19 14:03:02 | 000,154,499 | ---- | M] () -- \Users\Jakub\Desktop\zlatnictvi gajda\19.1\admin1\SC\ioncube-64\loader-wizard.php
[2013.01.19 14:08:00 | 000,009,427 | ---- | M] () -- \Users\Jakub\Desktop\zlatnictvi gajda\19.1\admin1\SC\lib\img\ajax-loader.gif
[2013.01.19 14:07:49 | 000,000,673 | ---- | M] () -- \Users\Jakub\Desktop\zlatnictvi gajda\19.1\admin1\SC\lib\img\ajax-loader16.gif
[2013.01.19 14:05:11 | 000,000,056 | ---- | M] () -- \Users\Jakub\Desktop\zlatnictvi gajda\19.1\admin1\SC\lib\js\imgs\imageloaderror.gif
[2013.01.19 14:06:29 | 000,000,401 | ---- | M] () -- \Users\Jakub\Desktop\zlatnictvi gajda\19.1\admin1\SC\lib\js\imgs\dhxmenu_dhx_skyblue\dhtmlxmenu_loader.gif
[2013.01.19 14:11:00 | 000,003,719 | ---- | M] () -- \Users\Jakub\Desktop\zlatnictvi gajda\19.1\img\loader.gif
[2013.01.19 14:48:26 | 000,011,314 | ---- | M] () -- \Users\Jakub\Desktop\zlatnictvi gajda\19.1\img\admin\ajax-loader-big.gif
[2013.01.19 14:48:29 | 000,000,673 | ---- | M] () -- \Users\Jakub\Desktop\zlatnictvi gajda\19.1\img\admin\ajax-loader.gif
[2013.01.19 14:48:32 | 000,000,847 | ---- | M] () -- \Users\Jakub\Desktop\zlatnictvi gajda\19.1\img\admin\jquery-treeview\ajax-loader.gif
[2013.01.19 14:48:58 | 000,001,720 | ---- | M] () -- \Users\Jakub\Desktop\zlatnictvi gajda\19.1\js\cropper\loader.js
[2013.01.19 14:55:40 | 000,003,719 | ---- | M] () -- \Users\Jakub\Desktop\zlatnictvi gajda\19.1\modules\carriercompare\loader.gif
[2013.01.19 14:53:26 | 000,001,018 | ---- | M] () -- \Users\Jakub\Desktop\zlatnictvi gajda\19.1\modules\jirafe\vendor\jirafe-php-client\src\Jirafe\Autoloader.php
[2013.01.19 14:56:40 | 000,000,847 | ---- | M] () -- \Users\Jakub\Desktop\zlatnictvi gajda\19.1\modules\mondialrelay\images\loader.gif
[2013.01.19 14:58:44 | 000,001,849 | ---- | M] () -- \Users\Jakub\Desktop\zlatnictvi gajda\19.1\modules\shopimporter\img\ajax-loader.gif
[2013.01.19 15:00:35 | 000,003,208 | ---- | M] () -- \Users\Jakub\Desktop\zlatnictvi gajda\19.1\themes\prestashop\img\ajax-loader.gif
[2013.01.19 15:02:10 | 000,000,910 | ---- | M] () -- \Users\Jakub\Desktop\zlatnictvi gajda\19.1\tools\swift\Swift\ClassLoader.php
[2012.12.31 15:30:32 | 000,784,212 | ---- | M] () -- \Users\Jakub\Desktop\zlatnictvi\admin1\SC\ioncube\ioncube_loader_lin_5.1.so
[2012.12.31 15:30:33 | 000,827,092 | ---- | M] () -- \Users\Jakub\Desktop\zlatnictvi\admin1\SC\ioncube\ioncube_loader_lin_5.1_ts.so
[2012.12.31 15:30:34 | 000,781,492 | ---- | M] () -- \Users\Jakub\Desktop\zlatnictvi\admin1\SC\ioncube\ioncube_loader_lin_5.2.so
[2012.12.31 15:30:35 | 000,824,180 | ---- | M] () -- \Users\Jakub\Desktop\zlatnictvi\admin1\SC\ioncube\ioncube_loader_lin_5.2_ts.so
[2012.12.31 15:30:36 | 000,810,280 | ---- | M] () -- \Users\Jakub\Desktop\zlatnictvi\admin1\SC\ioncube\ioncube_loader_lin_5.3.so
[2012.12.31 15:30:37 | 000,866,472 | ---- | M] () -- \Users\Jakub\Desktop\zlatnictvi\admin1\SC\ioncube\ioncube_loader_lin_5.3_ts.so
[2012.12.31 15:30:37 | 000,154,499 | ---- | M] () -- \Users\Jakub\Desktop\zlatnictvi\admin1\SC\ioncube\loader-wizard.php
[2012.12.31 15:30:39 | 000,944,184 | ---- | M] () -- \Users\Jakub\Desktop\zlatnictvi\admin1\SC\ioncube-64\ioncube_loader_lin_5.1.so
[2012.12.31 15:30:39 | 000,989,752 | ---- | M] () -- \Users\Jakub\Desktop\zlatnictvi\admin1\SC\ioncube-64\ioncube_loader_lin_5.1_ts.so
[2012.12.31 15:30:40 | 000,948,568 | ---- | M] () -- \Users\Jakub\Desktop\zlatnictvi\admin1\SC\ioncube-64\ioncube_loader_lin_5.2.so
[2012.12.31 15:30:41 | 001,039,032 | ---- | M] () -- \Users\Jakub\Desktop\zlatnictvi\admin1\SC\ioncube-64\ioncube_loader_lin_5.2_ts.so
[2012.12.31 15:30:42 | 001,012,392 | ---- | M] () -- \Users\Jakub\Desktop\zlatnictvi\admin1\SC\ioncube-64\ioncube_loader_lin_5.3.so
[2012.12.31 15:30:44 | 001,063,944 | ---- | M] () -- \Users\Jakub\Desktop\zlatnictvi\admin1\SC\ioncube-64\ioncube_loader_lin_5.3_ts.so
[2012.12.31 15:30:44 | 000,154,499 | ---- | M] () -- \Users\Jakub\Desktop\zlatnictvi\admin1\SC\ioncube-64\loader-wizard.php
[2012.12.31 15:30:48 | 000,009,427 | ---- | M] () -- \Users\Jakub\Desktop\zlatnictvi\admin1\SC\lib\img\ajax-loader.gif
[2012.12.31 15:30:48 | 000,000,673 | ---- | M] () -- \Users\Jakub\Desktop\zlatnictvi\admin1\SC\lib\img\ajax-loader16.gif
[2012.12.31 15:32:10 | 000,000,056 | ---- | M] () -- \Users\Jakub\Desktop\zlatnictvi\admin1\SC\lib\js\imgs\imageloaderror.gif
[2012.12.31 15:33:41 | 000,000,401 | ---- | M] () -- \Users\Jakub\Desktop\zlatnictvi\admin1\SC\lib\js\imgs\dhxmenu_dhx_skyblue\dhtmlxmenu_loader.gif
[2012.12.31 15:39:00 | 000,003,719 | ---- | M] () -- \Users\Jakub\Desktop\zlatnictvi\img\loader.gif
[2012.12.31 15:39:05 | 000,011,314 | ---- | M] () -- \Users\Jakub\Desktop\zlatnictvi\img\admin\ajax-loader-big.gif
[2012.12.31 15:39:05 | 000,000,673 | ---- | M] () -- \Users\Jakub\Desktop\zlatnictvi\img\admin\ajax-loader.gif
[2012.12.31 15:39:31 | 000,000,847 | ---- | M] () -- \Users\Jakub\Desktop\zlatnictvi\img\admin\jquery-treeview\ajax-loader.gif
[2012.12.31 15:44:13 | 000,001,720 | ---- | M] () -- \Users\Jakub\Desktop\zlatnictvi\js\cropper\loader.js
[2012.12.31 15:50:31 | 000,003,719 | ---- | M] () -- \Users\Jakub\Desktop\zlatnictvi\modules\carriercompare\loader.gif
[2012.12.31 15:52:38 | 000,001,018 | ---- | M] () -- \Users\Jakub\Desktop\zlatnictvi\modules\jirafe\vendor\jirafe-php-client\src\Jirafe\Autoloader.php
[2012.12.31 15:53:32 | 000,000,847 | ---- | M] () -- \Users\Jakub\Desktop\zlatnictvi\modules\mondialrelay\images\loader.gif
[2012.12.31 15:55:16 | 000,001,849 | ---- | M] () -- \Users\Jakub\Desktop\zlatnictvi\modules\shopimporter\img\ajax-loader.gif
[2012.12.31 15:57:13 | 000,004,176 | ---- | M] () -- \Users\Jakub\Desktop\zlatnictvi\modules\twenga\ajax-loader.gif
[2012.12.31 15:58:12 | 000,003,208 | ---- | M] () -- \Users\Jakub\Desktop\zlatnictvi\themes\prestashop\img\ajax-loader.gif
[2012.12.31 16:00:06 | 000,000,910 | ---- | M] () -- \Users\Jakub\Desktop\zlatnictvi\tools\swift\Swift\ClassLoader.php
[2012.12.03 10:34:24 | 000,001,758 | ---- | M] () -- \Users\Jakub\Documents\Inventor\Autoloader.ipj.lnk
[2012.02.07 00:21:32 | 000,005,202 | ---- | M] () -- \Users\Public\Documents\Autodesk\Vault Basic 2013\Samples\Autoloader\Inventor 2013\Padlock\Autoloader.ipj
[2010.03.24 19:35:48 | 000,018,264 | R--- | M] () -- \Windows\Installer\$PatchCache$\Managed\00004119110000000100000000F01FEC\14.0.4763\FL_VSTOLoaderUI_dll_amd64_ln.3643236F_FC70_11D3_A536_0090278A1BB8.41B86362_9D8B_4D9B_B426_8A6D1F809A25
[2010.03.24 19:12:34 | 000,018,264 | R--- | M] () -- \Windows\Installer\$PatchCache$\Managed\00004119110000000100000000F01FEC\14.0.4763\FL_VSTOLoaderUI_dll_x86_ln.3643236F_FC70_11D3_A536_0090278A1BB8.41B86362_9D8B_4D9B_B426_8A6D1F809A25
[2010.03.24 19:35:48 | 000,370,512 | R--- | M] () -- \Windows\Installer\$PatchCache$\Managed\00004119110000000100000000F01FEC\14.0.4763\VSTOLoader_dll_amd64.3643236F_FC70_11D3_A536_0090278A1BB8.41B86362_9D8B_4D9B_B426_8A6D1F809A25
[2010.03.24 19:12:34 | 000,249,680 | R--- | M] () -- \Windows\Installer\$PatchCache$\Managed\00004119110000000100000000F01FEC\14.0.4763\VSTOLoader_dll_x86.3643236F_FC70_11D3_A536_0090278A1BB8.41B86362_9D8B_4D9B_B426_8A6D1F809A25
[2010.08.30 09:07:04 | 000,072,544 | R--- | M] () -- \Windows\Installer\$PatchCache$\Managed\670F66C4BA3D8C94584DAB6A8DF2AC2E\20.100.5022\PhysXLoader64.dll.72AC20DB_37D3_1016_B346_A7FD958F5C39
[2012.11.30 05:45:15 | 000,003,584 | -H-- | M] () -- \Windows\System32\api-ms-win-core-libraryloader-l1-1-0.dll
[2009.07.14 02:15:12 | 000,038,400 | ---- | M] () -- \Windows\System32\dmloader.dll
[2012.10.04 09:12:02 | 000,012,532 | ---- | M] () -- \Windows\System32\Adobe\Shockwave 11\shockwave_Projector_Loader.dcr
[2012.11.30 05:45:15 | 000,003,584 | -H-- | M] () -- \Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
[2009.07.14 02:15:12 | 000,038,400 | ---- | M] () -- \Windows\SysWOW64\dmloader.dll
[2012.10.04 09:12:02 | 000,012,532 | ---- | M] () -- \Windows\SysWOW64\Adobe\Shockwave 11\shockwave_Projector_Loader.dcr
[2009.07.14 02:40:31 | 000,047,616 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-audio-dmusic_31bf3856ad364e35_6.1.7600.16385_none_a1e90d98a953d601\dmloader.dll
[2009.07.14 02:24:53 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.16385_none_66a6e19d9580f9e3\api-ms-win-core-libraryloader-l1-1-0.dll
[2011.07.16 06:21:03 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.17651_none_68a9b6bd92929e63\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.08.20 19:38:32 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.17932_none_68c05c919281774d\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.10.04 18:38:48 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.17965_none_68a2edab92971725\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.11.30 06:38:44 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.18015_none_68d8d569926ebeb2\api-ms-win-core-libraryloader-l1-1-0.dll
[2011.07.16 06:12:44 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.21772_none_691eb3faabbf8f66\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.08.20 19:09:47 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.22091_none_6907efc6abd0db81\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.10.04 18:35:00 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.22125_none_6957a248ab947a6d\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.11.30 06:39:37 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.22177_none_69239340abbb38d0\api-ms-win-core-libraryloader-l1-1-0.dll
[2009.07.14 16:17:49 | 000,004,431 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_8f37605116ba80bc.manifest
[2009.07.14 16:17:49 | 000,033,360 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_8f37605116ba80bc_winload.efi.mui_35ee487d
[2009.07.14 16:17:49 | 000,034,896 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_8f37605116ba80bc_winload.exe.mui_3bc5b827
[2009.07.14 16:17:49 | 000,029,776 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_8f37605116ba80bc_winresume.efi.mui_f412814e
[2009.07.14 16:17:49 | 000,030,288 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_8f37605116ba80bc_winresume.exe.mui_ff8b5358
[2012.10.06 08:10:19 | 000,005,745 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.17556_none_b923808583650cfb.manifest
[2012.10.06 08:10:19 | 000,642,944 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.17556_none_b923808583650cfb_winload.efi_75834aa0
[2012.10.06 08:10:19 | 000,605,552 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.17556_none_b923808583650cfb_winload.exe_75835076
[2012.10.06 08:10:19 | 000,566,208 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.17556_none_b923808583650cfb_winresume.efi_85cd069f
[2012.10.06 08:10:19 | 000,518,672 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.17556_none_b923808583650cfb_winresume.exe_85cd1215
[2009.07.14 03:57:50 | 000,002,896 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-s..ive-blackbox-loader_31bf3856ad364e35_6.1.7600.16385_none_c72819e06acceb59.manifest
[2009.07.14 03:57:50 | 000,019,008 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-s..ive-blackbox-loader_31bf3856ad364e35_6.1.7600.16385_none_c72819e06acceb59_spldr.sys_98bd87a0
[2009.07.14 16:15:51 | 000,004,431 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_8f37605116ba80bc.manifest
[2010.11.20 05:12:44 | 000,005,745 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.17514_none_b94cbfa183466a89.manifest
[2011.02.05 18:34:23 | 000,005,745 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.17556_none_b923808583650cfb.manifest
[2011.02.05 14:09:57 | 000,005,745 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.21655_none_b9ac1d069c83936e.manifest
[2009.07.14 03:18:27 | 000,002,896 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-s..ive-blackbox-loader_31bf3856ad364e35_6.1.7600.16385_none_c72819e06acceb59.manifest
[2009.07.14 02:15:12 | 000,038,400 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-audio-dmusic_31bf3856ad364e35_6.1.7600.16385_none_45ca7214f0f664cb\dmloader.dll
[2009.07.14 02:03:49 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.16385_none_0a884619dd2388ad\api-ms-win-core-libraryloader-l1-1-0.dll
[2011.07.16 05:15:45 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.17651_none_0c8b1b39da352d2d\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.08.20 18:32:13 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.17932_none_0ca1c10dda240617\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.10.04 17:40:37 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.17965_none_0c845227da39a5ef\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.11.30 05:45:15 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.18015_none_0cba39e5da114d7c\api-ms-win-core-libraryloader-l1-1-0.dll
[2011.07.16 05:36:48 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.21772_none_0d001876f3621e30\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.08.20 18:23:16 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.22091_none_0ce95442f3736a4b\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.10.04 17:29:45 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.22125_none_0d3906c4f3370937\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.11.30 05:46:37 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.22177_none_0d04f7bcf35dc79a\api-ms-win-core-libraryloader-l1-1-0.dll
========== Alternate Data Streams ==========
@Alternate Data Stream - 116 bytes -> C:\ProgramData\TEMP:A1EDB939
< End of report >
Re: Preventivní kontrola
OTL Extras logfile created on: 20.1.2013 17:25:58 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Jakub\Desktop
64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy
7,60 Gb Total Physical Memory | 5,42 Gb Available Physical Memory | 71,22% Memory free
15,21 Gb Paging File | 12,99 Gb Available in Paging File | 85,46% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 111,79 Gb Total Space | 19,57 Gb Free Space | 17,50% Space Free | Partition Type: NTFS
Drive D: | 465,66 Gb Total Space | 215,74 Gb Free Space | 46,33% Space Free | Partition Type: NTFS
Computer Name: JAKUB-NTB | User Name: Jakub | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 7 Days
========== Extra Registry (SafeList) ==========
========== File Associations ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.html[@ = Opera.HTML] -- C:\Program Files (x86)\Opera\Opera.exe (Opera Software)
.url[@ = InternetShortcut] -- C:\Windows\SysNative\rundll32.exe (Microsoft Corporation)
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation)
.html [@ = Opera.HTML] -- C:\Program Files (x86)\Opera\Opera.exe (Opera Software)
========== Shell Spawning ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
http [open] -- "C:\Program Files (x86)\Opera\Opera.exe" "%1" (Opera Software)
https [open] -- "C:\Program Files (x86)\Opera\Opera.exe" "%1" (Opera Software)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [Bridge] -- C:\Program Files\Adobe\Adobe Bridge CS6 (64 Bit)\Bridge.exe "%L" (Adobe Systems, Inc.)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
http [open] -- "C:\Program Files (x86)\Opera\Opera.exe" "%1" (Opera Software)
https [open] -- "C:\Program Files (x86)\Opera\Opera.exe" "%1" (Opera Software)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [Bridge] -- C:\Program Files\Adobe\Adobe Bridge CS6 (64 Bit)\Bridge.exe "%L" (Adobe Systems, Inc.)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
========== Security Center Settings ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = 28 4D B2 76 41 04 CA 01 [binary data]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
========== Firewall Settings ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
========== Authorized Applications List ==========
========== Vista Active Open Ports Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{038A9D44-64DB-4585-98A8-B53984D15F90}" = lport=1317 | protocol=17 | dir=in | app=c:\program files (x86)\connectify\connectifynetservices.exe |
"{055CF7E6-0C84-441E-9C0D-846C8F2B8D08}" = lport=3074 | protocol=6 | dir=out | app=c:\windows\system32\svchost.exe |
"{0A3CE6A0-30B7-477A-A5A7-70212C707013}" = lport=547 | protocol=17 | dir=in | app=c:\windows\system32\svchost.exe |
"{0FFD32E4-913B-4473-8545-57506D8D6D7D}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{15083474-F734-423A-8896-64D86AF0DA1D}" = lport=6004 | protocol=17 | dir=in | app=c:\program files\microsoft office\office14\outlook.exe |
"{197F33A1-C444-4F31-939E-E5B8677DE2E6}" = lport=137 | protocol=17 | dir=in | app=system |
"{19C71A7A-D0B0-4470-9203-FD80AAA74AC3}" = lport=88 | protocol=17 | dir=in | app=c:\windows\system32\svchost.exe |
"{1E08D843-CCAE-4BE4-AF04-4DB803732177}" = lport=59278 | protocol=6 | dir=out | app=c:\windows\system32\svchost.exe |
"{1F756BCA-F771-4F60-9518-CFDCA4F60189}" = lport=138 | protocol=17 | dir=in | app=system |
"{26811508-A5A8-4BB9-8B16-AF2233B23077}" = lport=1900 | protocol=17 | dir=in | app=c:\windows\system32\svchost.exe |
"{26F005A6-69CC-4437-9FD2-D2042629D3E8}" = lport=139 | protocol=6 | dir=in | app=system |
"{2725B5A2-73C8-47D6-B3C5-48C1E2F1DA81}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{29D93789-738D-4AF1-AB18-0FA2C4117C1D}" = lport=7676 | protocol=6 | dir=in | name=allshareframeworkdms service tcp port1 |
"{2F5E4A3D-003B-459A-949C-88137FD4EABE}" = lport=88 | protocol=17 | dir=out | app=c:\windows\system32\svchost.exe |
"{31BF42EE-59A2-4C96-A182-94431316C25B}" = lport=24234 | protocol=6 | dir=in | name=allshareframework dms service udp port1 |
"{3B3B94C5-F464-4B7F-9B71-093F37881306}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 |
"{4190EF32-4520-40B1-BDB9-8B707AF5469C}" = rport=137 | protocol=17 | dir=out | app=system |
"{4242F404-955D-41A6-967E-77CA92FE3CE0}" = lport=7900 | protocol=6 | dir=in | name=allshareframework dms service udp port2 |
"{459C9521-B2D1-4E72-B814-CDED6541DEA9}" = lport=2987 | protocol=6 | dir=in | app=c:\program files (x86)\connectify\connectify.exe |
"{53784281-2B2B-4BE1-AAA5-9B0C48040EBB}" = lport=3478 | protocol=17 | dir=out | app=c:\windows\system32\svchost.exe |
"{59BE7925-E992-4042-9249-CE81936B5453}" = rport=445 | protocol=6 | dir=out | app=system |
"{5B899F17-ABB7-4428-A3BE-FEEA5ADE3ADB}" = lport=3478 | protocol=17 | dir=in | app=c:\windows\system32\svchost.exe |
"{5BF26B15-4116-4E72-9D0D-09BF1464ADAE}" = lport=67 | protocol=17 | dir=in | app=c:\program files (x86)\connectify\connectifynetservices.exe |
"{5D155C6D-002A-4D9C-A95E-7A2285EAE598}" = lport=68 | protocol=17 | dir=in | svc=sharedaccess | app=%systemroot%\system32\svchost.exe |
"{63CCD916-7E52-4FC2-957C-2E99F2404D32}" = lport=2177 | protocol=6 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{6A0D5473-917F-4DFC-987F-BF30955FC8EE}" = lport=3658 | protocol=17 | dir=out | app=c:\windows\system32\svchost.exe |
"{6F19DD82-F8FC-4B3D-8FB3-FA27C2C5A7A7}" = lport=5223 | protocol=6 | dir=in | app=c:\windows\system32\svchost.exe |
"{707605BE-116F-47D3-94E4-7B54908BEB88}" = lport=59278 | protocol=6 | dir=in | app=c:\windows\system32\svchost.exe |
"{71364D32-0DF0-40EB-8F93-D374068A7C16}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{756DB3FE-958F-46FC-A2AA-5BE81279221C}" = lport=67 | protocol=17 | dir=in | svc=sharedaccess | app=%systemroot%\system32\svchost.exe |
"{764ED5FC-A293-442B-8F27-8148E1007634}" = rport=10243 | protocol=6 | dir=out | app=system |
"{7743A1E6-ADB9-4D56-9656-AA611E09ED75}" = lport=2869 | protocol=6 | dir=in | app=system |
"{779E10C1-3EAE-4759-8785-7DFBC562CB16}" = lport=5000 | protocol=17 | dir=in | app=c:\program files (x86)\connectify\connectifynetservices.exe |
"{7A2A2583-8DEE-4E5B-876C-C95E273FF17D}" = lport=3074 | protocol=17 | dir=out | app=c:\windows\system32\svchost.exe |
"{7C32E054-BC0D-4D12-8950-B2E0FC2C32CE}" = lport=2177 | protocol=17 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{8B225B13-664E-423F-A94B-2996069F0F24}" = lport=1303 | protocol=17 | dir=in | app=c:\program files (x86)\connectify\connectifynetservices.exe |
"{8D42382F-CA85-4FB5-9844-008B0781F55B}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{8D9AEC15-F9B1-48A2-B8FC-6E15ADA20F94}" = lport=68 | protocol=17 | dir=in | app=c:\program files (x86)\connectify\connectifynetservices.exe |
"{8E539CE4-6DB0-4361-B56E-9815F8514837}" = lport=7679 | protocol=6 | dir=in | name=allshareframeworkdms service tcp port2 |
"{98E94FD7-18A7-4635-85E7-0CF0215B7092}" = lport=53 | protocol=17 | dir=in | app=c:\program files (x86)\connectify\connectifynetservices.exe |
"{9A40BD5B-EB2A-43CF-BF66-5D9417102861}" = lport=3479 | protocol=17 | dir=out | app=c:\windows\system32\svchost.exe |
"{9E77BBBA-9A9D-4020-8A28-05A305D661E8}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
"{A592C8A3-E188-4CEA-9CD6-F4B2A73E4A26}" = lport=50248 | protocol=6 | dir=in | name=autodesk content service |
"{A789987D-D3C7-4600-BC96-E14A7A1FF183}" = lport=3658 | protocol=17 | dir=in | app=c:\windows\system32\svchost.exe |
"{B34CD640-5EA7-4BF5-92CA-AA37BAC05445}" = rport=2177 | protocol=17 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{C06F99D6-4887-40C0-9C15-97C10EE2DFE0}" = rport=2869 | protocol=6 | dir=out | app=system |
"{C1477D48-68A3-4EC4-B17F-21FCDBEF0C70}" = lport=445 | protocol=6 | dir=in | app=system |
"{CE27E37A-DB45-4B4D-AC38-9C0752CBCDB6}" = lport=8743 | protocol=6 | dir=in | name=allshareframeworkdms action tcp port |
"{D0F610E0-27A2-4FCE-8EF1-1B38AF392AA2}" = lport=3074 | protocol=17 | dir=in | app=c:\windows\system32\svchost.exe |
"{D1649F58-B7D0-4684-9F67-054BB0179DC8}" = lport=5223 | protocol=6 | dir=out | app=c:\windows\system32\svchost.exe |
"{D1E01AC1-2E2D-42B2-8AED-1C8553E4D90D}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{D3D57560-9DC8-44CB-AA2D-50D0299739D4}" = lport=8643 | protocol=6 | dir=in | name=allshareframeworkdms event tcp port |
"{E0F491B1-98CD-488C-BD42-4A86F942A439}" = lport=1900 | protocol=6 | dir=in | name=upnp multicast port |
"{E115817A-FE16-43D4-91D0-00B1A72D8355}" = lport=10243 | protocol=6 | dir=in | app=system |
"{E1BD28D8-9106-4535-AB6B-D920EA9C0EAB}" = rport=138 | protocol=17 | dir=out | app=system |
"{E65DBECE-0251-48B1-AA0C-2C62907ED098}" = lport=2869 | protocol=6 | dir=in | app=system |
"{E7EBCFDD-FD74-4731-B570-10DADA6B0A81}" = lport=1900 | protocol=17 | dir=in | app=c:\program files (x86)\connectify\connectifynetservices.exe |
"{EB5C6D90-EE45-4206-B5F8-BF33A3A820CB}" = lport=3074 | protocol=6 | dir=in | app=c:\windows\system32\svchost.exe |
"{F5C912E9-8704-4EA1-A721-C9B8312ACAF5}" = rport=139 | protocol=6 | dir=out | app=system |
"{F8A77685-B14C-44CE-9AEA-12B3F279C6EB}" = lport=5000 | protocol=6 | dir=in | app=c:\program files (x86)\connectify\connectifynetservices.exe |
"{F8AB7780-9A1C-4636-8EC7-C4A3B064BBFA}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{FAA668B0-5BAD-4AD4-BC01-A1C68990FED8}" = lport=3479 | protocol=17 | dir=in | app=c:\windows\system32\svchost.exe |
"{FB5F9E1E-1D2B-4A4A-8536-64853CA193DE}" = rport=1900 | protocol=17 | dir=out | app=c:\windows\system32\svchost.exe |
"{FEE1AF5B-48BE-4B58-A828-38771BB2088D}" = rport=2177 | protocol=6 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
========== Vista Active Application Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{00BB715D-B32D-4D09-8A1C-15BA56ACC77D}" = protocol=17 | dir=in | app=c:\program files (x86)\opera\opera.exe |
"{0280AC34-64C6-4963-A1A6-3C5309F59E9E}" = dir=out | app=c:\program files (x86)\connectify\connectifyd.exe |
"{03D7C7A5-F007-4A64-B6CE-FA2630E8BB13}" = dir=in | app=c:\program files (x86)\hp\digital imaging\bin\hpqusgm.exe |
"{04415680-53B2-4285-BD61-CB3AF59F8535}" = dir=out | app=c:\program files (x86)\connectify\connectifyd.exe |
"{045C7E3B-3165-4A55-B738-2951DB2C5D3D}" = dir=in | app=c:\program files (x86)\connectify\connectifynetservices.exe |
"{0520157A-1983-493A-8AFE-36723858D191}" = dir=in | app=c:\program files (x86)\connectify\connectifynetservices.exe |
"{06A822BA-5E89-43BB-AE0A-4F31D8ABC7F3}" = protocol=17 | dir=in | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{099E3E5A-2517-41A4-AF2C-EF49AECABD47}" = protocol=17 | dir=in | app=c:\program files\microsoft office\office14\onenote.exe |
"{0A7EBD97-72B0-41B3-BF7B-F3B035B2720F}" = dir=in | app=c:\program files (x86)\connectify\connectifynetservices.exe |
"{0AEF9DF9-5964-4E31-81DA-FF27671A868D}" = dir=in | app=c:\program files (x86)\hp\digital imaging\bin\hposfx08.exe |
"{0E7A3CC1-5897-46CA-BCCF-9AE6A348F09D}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{0F95715A-2D60-4378-A4D5-767A0957DDFC}" = dir=out | app=c:\program files (x86)\connectify\connectifynetservices.exe |
"{12A4AF2B-5E1F-445C-ABAF-CC437FA09B5E}" = dir=in | app=c:\program files (x86)\hp\digital imaging\bin\hpqtra08.exe |
"{172C1343-35C7-4C83-9108-901AD1AD6345}" = dir=in | app=c:\program files (x86)\connectify\connectifyd.exe |
"{1ABF5632-2DDA-461E-A6E8-C04E99A2C646}" = dir=out | app=c:\program files (x86)\connectify\connectifynetservices.exe |
"{1D20C448-F42C-4D9F-A910-EEE2B23BA177}" = protocol=58 | dir=in | name=internet connection sharing (router solicitation-in) |
"{1EE3B85C-0234-4924-BFBB-1555681230B6}" = dir=in | app=c:\program files (x86)\connectify\connectifyd.exe |
"{1F149EBB-6BFB-4742-A331-E33BA62CFC9D}" = protocol=6 | dir=out | app=c:\windows\system32\svchost.exe |
"{280C78DE-9B8D-4668-90C2-4F44FB671C30}" = dir=in | app=c:\program files (x86)\hp\digital imaging\bin\hpqpse.exe |
"{2A0EF56C-BBDE-4630-B553-A9FC755F9B2D}" = dir=in | app=c:\program files (x86)\hp\digital imaging\bin\hpofxm08.exe |
"{2AA4C21D-0E51-4A0A-964E-1515CE3A98AA}" = dir=out | app=c:\program files (x86)\connectify\connectifynetservices.exe |
"{2D2CF11E-EFE7-4DF1-81C1-40BA75EA5B34}" = dir=in | app=c:\program files (x86)\connectify\connectifyd.exe |
"{2DD6656D-0C94-4BE9-A744-ED4234E00F68}" = dir=in | app=c:\program files (x86)\connectify\connectifyd.exe |
"{31001532-83E5-4CFE-B58F-D99B813FB450}" = dir=in | app=c:\program files (x86)\connectify\connectifyd.exe |
"{332CEE96-7F8E-4E76-8A1A-B964FCB4A69B}" = dir=out | app=c:\program files (x86)\connectify\connectifynetservices.exe |
"{34434D22-6243-461A-A06E-E01845C6B32A}" = dir=in | app=c:\program files (x86)\hp\digital imaging\bin\hpqfxt08.exe |
"{34665812-20E5-4331-A6D8-F4B04786516E}" = dir=in | app=c:\program files (x86)\hp\digital imaging\smart web printing\smartwebprintexe.exe |
"{346E21CB-B3CB-4546-9E11-79EEF5C9DAC8}" = protocol=6 | dir=in | app=c:\program files\microsoft office\office14\onenote.exe |
"{35087F9A-27FC-4130-9612-BC1A459AE666}" = protocol=17 | dir=in | app=c:\program files\microsoft office\office14\groove.exe |
"{3871542A-7A80-4047-A8B8-E9DF7F2DD4BA}" = dir=in | app=c:\program files (x86)\connectify\connectifynetservices.exe |
"{392B6664-FB09-4E53-911A-200428027DCD}" = dir=out | app=c:\program files (x86)\connectify\connectifynetservices.exe |
"{3A9B3FB9-3DB0-4066-B0C1-2431456DA7C8}" = dir=out | app=c:\program files (x86)\connectify\connectifyd.exe |
"{3EDD4FC4-1F66-4822-A6E3-B4A2C3442E8C}" = dir=out | app=c:\program files (x86)\connectify\connectifyd.exe |
"{404AEE03-DFEF-4E2C-B0EF-806BC3E97D94}" = protocol=6 | dir=in | app=c:\program files\microsoft office\office14\groove.exe |
"{41CB4135-EF87-464E-8A55-F624129BE817}" = dir=in | app=c:\program files (x86)\hp\digital imaging\bin\hpqste08.exe |
"{4202B5A0-6C4B-441F-84BF-11AF7010A388}" = dir=out | app=c:\program files (x86)\connectify\connectifyd.exe |
"{420AADBD-75BE-48F5-A53D-E92580F4A913}" = protocol=17 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{424455A3-554E-4AF4-9CB0-72858A0C4A03}" = dir=out | app=c:\program files (x86)\connectify\connectifynetservices.exe |
"{4248BA47-72BA-4498-8CF5-77F2D073A490}" = dir=in | app=c:\program files (x86)\connectify\connectifynetservices.exe |
"{4499A3CC-CCD7-4E36-949B-5EC772062203}" = dir=out | app=c:\program files (x86)\connectify\connectifynetservices.exe |
"{47A0F228-7BA2-442B-B4F7-DB7EC026C44F}" = dir=in | app=c:\program files (x86)\connectify\connectifyd.exe |
"{485C24B7-D020-4A42-A891-986E6F5D37C4}" = protocol=6 | dir=in | app=c:\program files\solidworks corp\solidworks\swscheduler\dtscoordinatorservice.exe |
"{4B4CF6AF-D74B-48F5-AE35-98654400D2C4}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{4C669618-E41E-40E3-AD42-6FF2784D7B37}" = dir=in | app=c:\program files (x86)\connectify\connectifyd.exe |
"{51687E73-03E9-486B-9A0B-DBDBEEB03942}" = dir=in | app=c:\program files (x86)\connectify\connectifynetservices.exe |
"{534B6E43-FF21-4C81-B434-82CA4E8DAB8B}" = dir=out | app=c:\program files (x86)\connectify\connectifynetservices.exe |
"{5417757F-3594-41FB-9407-0C2C376D827F}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 |
"{55F53822-E8C9-4D55-9909-621736A91705}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 |
"{5625ECC1-6C42-4E15-A29C-722FBB2287A2}" = protocol=6 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{578542F4-5323-4769-AEAA-76B36F525919}" = dir=out | app=c:\program files (x86)\connectify\connectifynetservices.exe |
"{57A52811-012C-4765-BD48-925B22BDE524}" = protocol=17 | dir=in | app=c:\program files\samsung\allshare framework dms\1.3.06\allshareframeworkdms.exe |
"{597AFDDF-7B9E-43BC-A202-1BF14C763C85}" = dir=in | app=c:\program files\hp\hp officejet pro 8600\bin\hpnetworkcommunicator.exe |
"{59D3A7A1-B8A9-4BE3-AEC3-1780A7557B95}" = dir=in | app=c:\program files (x86)\hp\digital imaging\bin\hpqpsapp.exe |
"{5A1BE63F-4C9F-41FE-B209-F7A1BC468C6B}" = dir=in | app=c:\program files\intel\wifi\bin\pandhcpdns.exe |
"{5BBD2048-8C0E-4DDD-A47F-FB2650230EAD}" = protocol=17 | dir=in | app=c:\program files (x86)\lenovo\system update\uncserver.exe |
"{5C2614B7-0FD0-4F56-A5F0-216DDF9BF92E}" = dir=out | app=c:\program files (x86)\connectify\connectifynetservices.exe |
"{5E881782-E349-40AD-900E-F0BCEC45191C}" = dir=in | app=c:\program files (x86)\connectify\connectifyd.exe |
"{60712FDF-A4B9-47BC-946F-284AB735DDA3}" = protocol=6 | dir=in | app=c:\program files\solidworks corp\solidworks\photoview\photoview360_cl.exe |
"{60A4B31E-129B-42D7-93E8-452978291E88}" = dir=in | app=c:\program files (x86)\connectify\connectifyd.exe |
"{61364CAB-F76D-4D58-994C-6A491A2F9378}" = dir=in | app=c:\program files (x86)\hp\digital imaging\bin\hpqnrs08.exe |
"{617C4FDF-16D6-4595-9161-5D9D5CE82847}" = dir=out | app=c:\program files (x86)\connectify\connectifyd.exe |
"{61AB5C12-B824-4733-A482-476A270B2CF2}" = dir=in | app=c:\program files (x86)\hp\digital imaging\bin\hpqgpc01.exe |
"{626BE052-77F3-4DFB-898E-294E5F039C73}" = dir=in | app=c:\program files (x86)\connectify\connectifyd.exe |
"{6290F91A-1346-4DA0-AB4C-F7E120D8860F}" = dir=in | app=c:\program files (x86)\connectify\connectifyd.exe |
"{65A18E87-BA27-4853-A964-A9F3E8117F07}" = dir=out | app=c:\program files (x86)\connectify\connectifynetservices.exe |
"{67704325-7A39-47FA-8905-71719E397B25}" = dir=in | app=c:\program files (x86)\connectify\connectifynetservices.exe |
"{6A1F2B7B-9717-4405-80E8-3887415E1ACF}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 |
"{6B2486EE-5B8C-4129-ADF7-679C42BE8E96}" = protocol=17 | dir=in | app=c:\program files\solidworks corp\solidworks\swscheduler\dtscoordinatorservice.exe |
"{6D53EDB5-700D-42F9-AE1C-519F333E2EA7}" = dir=in | app=c:\program files (x86)\connectify\connectifyd.exe |
"{6E3ACD52-9D74-472D-96DA-C0879E17C5DB}" = dir=in | app=c:\program files (x86)\connectify\connectifynetservices.exe |
"{6FB54483-C540-4333-A37D-164EB4A13160}" = dir=in | app=c:\program files (x86)\connectify\connectifyd.exe |
"{70B6A6F3-12D6-40D4-9904-1ED726DAEF0E}" = dir=in | app=c:\program files (x86)\intel corporation\intel widi\widiapp.exe |
"{70D23784-807F-430E-B65C-51A7F79D0929}" = dir=in | app=c:\program files (x86)\connectify\connectifyd.exe |
"{72A5D0BF-F3B0-421C-B586-73080007F44C}" = dir=in | app=c:\program files (x86)\connectify\connectifynetservices.exe |
"{73B52DBA-EAC0-47A0-80AA-DCF8F3A747C7}" = dir=in | app=c:\program files (x86)\connectify\connectifynetservices.exe |
"{757025E1-FB90-4128-B259-F3A62A3411A3}" = dir=in | app=c:\program files (x86)\hp\digital imaging\bin\hpfccopy.exe |
"{75C3033B-628B-4EAC-B0B5-B6EC7D0377B9}" = protocol=1 | dir=in | name=icmp - in |
"{76A14A14-10EB-4DFC-BFF3-E9AF564FE204}" = dir=in | app=c:\program files (x86)\connectify\connectifyd.exe |
"{7887A850-331A-4C68-8BDB-7BB3D3FA45FB}" = dir=in | app=c:\program files (x86)\connectify\connectifynetservices.exe |
"{7A51B6E8-C862-4A0D-94B4-C15ACCB16C0A}" = dir=out | app=c:\program files (x86)\connectify\connectifyd.exe |
"{7A51CDF4-6E27-43D6-A649-EAB6D75F2BC6}" = protocol=6 | dir=in | app=c:\program files\solidworks corp\solidworks\photoview\photoview360.exe |
"{7B0D6DFA-C51A-48CD-A663-E735862331FF}" = dir=in | app=c:\program files (x86)\hp\digital imaging\bin\hposid01.exe |
"{7D095C7F-4457-43CE-A112-BF1D0904D0F6}" = dir=in | app=c:\program files (x86)\hp\digital imaging\bin\hpzwiz01.exe |
"{7E3FB66D-8AC2-4B1E-BDCF-EAB38368CD66}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{80CFB30C-B746-47C6-B37B-36AA7566D26C}" = dir=out | app=c:\program files (x86)\connectify\connectifyd.exe |
"{81A16BD6-C866-41FC-9A2A-2D5010838E8A}" = dir=out | app=c:\program files (x86)\connectify\connectifynetservices.exe |
"{84C961D6-BF74-4B20-908D-D738345415EA}" = dir=out | app=c:\program files (x86)\connectify\connectifynetservices.exe |
"{87005754-93BC-48EA-8787-27F30C14CEAE}" = dir=in | app=c:\program files (x86)\hp\digital imaging\bin\hpofxs08.exe |
"{8889C276-7F56-4438-A6ED-97D08FF42E4E}" = dir=out | app=c:\program files (x86)\connectify\connectifyd.exe |
"{8A49A7F2-5609-4E3B-910D-EE08DBCFC576}" = dir=out | app=c:\program files (x86)\connectify\connectifyd.exe |
"{8D321246-DCF2-4F98-B265-CD2EDC5B61EC}" = dir=in | app=c:\program files (x86)\connectify\connectifynetservices.exe |
"{8D668CDF-C03E-45EA-A67F-1D6AF3BE40A4}" = dir=in | app=c:\program files (x86)\connectify\connectifyd.exe |
"{9020AB23-4504-4E45-8E5C-2FCE18AA129E}" = protocol=6 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{904C973D-81D5-4314-8025-CC140C540108}" = dir=out | app=c:\program files (x86)\connectify\connectifynetservices.exe |
"{91004B03-40BE-4FED-92DD-D00C35F9452F}" = dir=out | app=c:\program files (x86)\connectify\connectifyd.exe |
"{915161D5-54E5-40E6-A7B1-037EAA5CEA2B}" = dir=in | app=c:\program files (x86)\connectify\connectifynetservices.exe |
"{9216A342-F336-459C-B3C2-6DEBA0F124F7}" = dir=in | app=c:\program files (x86)\hp\digital imaging\bin\hpqusgh.exe |
"{92E3FF7D-A307-439B-B3C5-0992AE493494}" = protocol=17 | dir=in | app=c:\program files\solidworks corp\solidworks\photoview\photoview360.exe |
"{941707FF-2342-4DA9-96BD-74AA379AE238}" = dir=out | app=c:\program files (x86)\connectify\connectifynetservices.exe |
"{94B34778-471F-4B2F-ABD3-D9094546EE6E}" = dir=out | app=c:\program files (x86)\connectify\connectifyd.exe |
"{9688BAE3-B4F6-4193-A343-C502F6156630}" = dir=out | app=c:\program files (x86)\connectify\connectifyd.exe |
"{9A5A1567-DFCF-451C-9B9D-CBA7EBE9FE9C}" = dir=in | app=c:\program files (x86)\hp\digital imaging\bin\hpqcopy2.exe |
"{9D0BBDE6-D895-478E-BDB0-EB6173AAA9EE}" = dir=in | app=c:\program files (x86)\connectify\connectifynetservices.exe |
"{9E85EE40-34B6-4692-93D9-B895F2A32D36}" = dir=in | app=c:\program files (x86)\hp\digital imaging\bin\hpoews01.exe |
"{9F2D01EE-161B-4272-88FF-E0BFDEE00B5E}" = dir=in | app=c:\program files (x86)\connectify\connectifynetservices.exe |
"{A0575136-D9AD-4896-BC2E-3380D2F2958D}" = dir=in | app=c:\program files (x86)\connectify\connectifyd.exe |
"{A07A1117-28EE-488E-8102-6DA968EB34AA}" = dir=out | svc=sharedaccess | app=%systemroot%\system32\svchost.exe |
"{A3AD4C64-AA95-4082-871A-19284F289C28}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{A5BF0AB3-7F18-48F7-B50B-3A4A2100E015}" = dir=out | app=c:\program files (x86)\connectify\connectifynetservices.exe |
"{A8C300CC-9A7F-4760-AB06-90ECAA2DFEEC}" = dir=out | app=c:\program files (x86)\connectify\connectifynetservices.exe |
"{A90D3FBC-191C-41A3-88B4-E1875551182F}" = dir=in | app=c:\program files (x86)\connectify\connectifynetservices.exe |
"{ACE3DE0C-9EC3-4969-B041-2015789AB48C}" = dir=out | app=c:\program files (x86)\connectify\connectifynetservices.exe |
"{AE3467F1-44EA-45F3-AF49-6D7D0C5F8608}" = dir=in | app=c:\program files (x86)\hp\digital imaging\bin\hpqsudi.exe |
"{AF38DDC8-2E8D-4795-B2B7-998E37EACE8F}" = dir=in | app=c:\program files (x86)\connectify\connectifyd.exe |
"{B012D8A8-2FE7-4174-A588-7271BCDC9A59}" = dir=in | app=c:\program files (x86)\connectify\connectifyd.exe |
"{B47497C3-1D57-4A7D-AB5C-6253E8F9C8DE}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{B67E7822-FABD-4E49-B078-6A171821FB99}" = dir=in | app=c:\program files (x86)\connectify\connectifyd.exe |
"{B71B1DA4-2CE3-424F-BE2B-1ADF5FAF995D}" = dir=out | app=c:\program files (x86)\connectify\connectifyd.exe |
"{B7F11814-55F4-44C5-BBA6-890F5C593E91}" = dir=out | app=c:\program files (x86)\connectify\connectifyd.exe |
"{BC8935E3-5C64-46E9-A5D0-462D19AA6B01}" = dir=in | app=c:\program files (x86)\connectify\connectifynetservices.exe |
"{BD9C6523-1ED2-415C-AC6D-DC3F07192B81}" = protocol=6 | dir=out | app=system |
"{BF0560A4-62C2-4F80-926A-A9D822F6FDAA}" = dir=in | app=c:\program files\hp\hp officejet pro 8600\bin\devicesetup.exe |
"{BF06FA40-FF1F-4E3A-A316-9ED14449543B}" = dir=in | app=c:\program files (x86)\connectify\connectifynetservices.exe |
"{C0F9BD4F-49A2-4A71-965B-CBD195480B12}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{C4CEA24D-8DFF-4D36-8B68-2FFE52C53AC6}" = dir=in | app=c:\program files (x86)\connectify\connectifynetservices.exe |
"{C9DFCE8C-D773-4A5A-AB1C-2152DAB760B0}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{CBD475E8-95E7-44C2-89EF-D781DE36C80C}" = dir=out | app=c:\program files (x86)\connectify\connectifyd.exe |
"{CBE5A0DC-6DBE-4F7A-87BF-B2C34CB37320}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{CE630564-F9CC-4116-8962-EDA64BEA64DB}" = dir=in | app=c:\program files (x86)\connectify\connectifyd.exe |
"{CF9D2543-1D63-439A-B27C-E3102D64C4A6}" = dir=in | app=c:\program files (x86)\hp\digital imaging\bin\hpiscnapp.exe |
"{D03762D1-1BF8-48ED-BB0F-09A4EE091C4C}" = dir=out | app=c:\windows\system32\svchost.exe |
"{D4BAFCCF-8EF2-4E76-8F87-616C0D9F67F2}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 |
"{D665D7A6-9ACB-45F5-97FE-FCC3EA82C961}" = protocol=17 | dir=in | app=c:\program files\solidworks corp\solidworks\photoview\photoview360_cl.exe |
"{D74A34A5-832A-4881-8B03-5FCE671BB24A}" = dir=in | app=c:\program files (x86)\hp\hp software update\hpwucli.exe |
"{DAE488A3-7C69-4A1C-81EC-8DE4268A5382}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{DB9BDFBB-05BF-46DD-A063-3404142B795C}" = dir=in | app=c:\program files (x86)\common files\hp\digital imaging\bin\hpqphotocrm.exe |
"{DBFE6065-A79E-4234-ABA4-6C2E027B9A4C}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{DDD8E38C-AE24-48CB-B781-6773533356BC}" = dir=out | app=c:\program files (x86)\connectify\connectifynetservices.exe |
"{DF6B87F5-2752-4C56-A4E9-7B2A4C7AB03B}" = dir=out | app=c:\program files (x86)\connectify\connectifynetservices.exe |
"{E76005C5-7E8F-474A-92EC-BA75C1B73C4F}" = dir=in | app=c:\program files (x86)\connectify\connectifynetservices.exe |
"{E8E5A34E-455F-4BDC-8BA8-3E56C2313BD1}" = dir=out | app=c:\program files (x86)\connectify\connectifyd.exe |
"{ED4545F9-31E6-4CD1-919B-089883B57520}" = protocol=6 | dir=in | app=c:\program files\samsung\allshare framework dms\1.3.06\allshareframeworkdms.exe |
"{EDD5F7FD-5845-4642-B24B-9AF091E0170F}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{F036251E-2893-4683-B50F-968CD45563DC}" = dir=out | app=c:\program files (x86)\connectify\connectifyd.exe |
"{F10B96C0-F004-48FC-83AC-3CE6120887AF}" = dir=in | app=c:\program files (x86)\hp\digital imaging\bin\hpqkygrp.exe |
"{F124C8CE-2CC4-441C-B11D-C27E5BB2F441}" = dir=in | app=c:\program files (x86)\hp\digital imaging\bin\hpqgplgtupl.exe |
"{F2BB27A7-705A-4D1B-A222-44602FF94B6E}" = dir=in | app=c:\program files (x86)\connectify\connectifynetservices.exe |
"{F60BE3FF-4C5C-44B8-BE3F-A11EC556D305}" = protocol=6 | dir=in | app=c:\program files (x86)\opera\opera.exe |
"{F6CAF0A8-55B8-4B8E-B37D-D0AF29250CE1}" = dir=out | app=c:\program files (x86)\connectify\connectifyd.exe |
"{F7F153DC-64BA-42D3-91CF-131D91A5595D}" = dir=out | app=c:\program files (x86)\connectify\connectifyd.exe |
"{FB9FD8CD-20B2-4AE3-AD09-C0EA4B300A5A}" = dir=out | app=c:\program files (x86)\connectify\connectifyd.exe |
"{FCFADB33-19C7-4D91-95BF-2FA9ABD2A365}" = protocol=6 | dir=in | app=c:\program files (x86)\lenovo\system update\uncserver.exe |
"{FFA42FB7-066F-4CDD-BCDF-58E017752AC0}" = dir=out | app=c:\program files (x86)\connectify\connectifynetservices.exe |
"TCP Query User{0F2F4A07-4175-4796-9690-40D6451FC8B5}C:\users\jakub\appdata\local\akamai\netsession_win.exe" = protocol=6 | dir=in | app=c:\users\jakub\appdata\local\akamai\netsession_win.exe |
"TCP Query User{194D8173-1B5B-4950-A1A0-735CEA5D0C5A}C:\users\jakub\appdata\local\temp\rar$exa0.707\adam2app.exe" = protocol=6 | dir=in | app=c:\users\jakub\appdata\local\temp\rar$exa0.707\adam2app.exe |
"TCP Query User{1EAC48B6-1BE2-462D-8F01-D9EFA6B15D53}C:\totalcmd\totalcmd64.exe" = protocol=6 | dir=in | app=c:\totalcmd\totalcmd64.exe |
"TCP Query User{322A615D-6E96-4E06-9549-4AA3C289F068}C:\program files (x86)\java\jre7\bin\javaw.exe" = protocol=6 | dir=in | app=c:\program files (x86)\java\jre7\bin\javaw.exe |
"TCP Query User{4018FA71-7471-498F-BCF3-AB88D2956452}C:\users\jakub\desktop\routttttr\tftpd32.exe" = protocol=6 | dir=in | app=c:\users\jakub\desktop\routttttr\tftpd32.exe |
"TCP Query User{52A376AF-C91D-4CFC-988A-F9C10D9A66FD}C:\program files (x86)\java\jre7\launch4j-tmp\frd.exe" = protocol=6 | dir=in | app=c:\program files (x86)\java\jre7\launch4j-tmp\frd.exe |
"TCP Query User{56EC2FDD-CC01-4B56-8E88-D62D4A5E0D81}C:\program files (x86)\sendmails\sa\spamassassin.exe" = protocol=6 | dir=in | app=c:\program files (x86)\sendmails\sa\spamassassin.exe |
"TCP Query User{5AC12995-81CE-495B-B2A7-9C39261DFB40}C:\users\jakub\appdata\local\akamai\netsession_win.exe" = protocol=6 | dir=in | app=c:\users\jakub\appdata\local\akamai\netsession_win.exe |
"TCP Query User{6E26F607-451A-48DF-9CC3-7E4558406389}C:\program files\progdvb\progdvbnet.exe" = protocol=6 | dir=in | app=c:\program files\progdvb\progdvbnet.exe |
"TCP Query User{A2ED22EC-9B07-4A4A-AF48-69546D9E0910}C:\windows\syswow64\javaw.exe" = protocol=6 | dir=in | app=c:\windows\syswow64\javaw.exe |
"TCP Query User{ADAE0AFA-10B4-4652-9FD0-82AC87B609B4}C:\program files (x86)\connectify\connectify.exe" = protocol=6 | dir=in | app=c:\program files (x86)\connectify\connectify.exe |
"TCP Query User{B36FE9DF-F09F-4795-BA4D-76697B78A32C}C:\program files\progdvb\progdvbnet.exe" = protocol=6 | dir=in | app=c:\program files\progdvb\progdvbnet.exe |
"TCP Query User{C23F9FF8-EC35-4AB3-AAE8-43DBAE13ABAF}C:\users\jakub\desktop\routttttr\tftpd32.exe" = protocol=6 | dir=in | app=c:\users\jakub\desktop\routttttr\tftpd32.exe |
"TCP Query User{DE1ACA7B-CAC0-4358-BC7E-CA2E0A91BA6F}C:\program files (x86)\java\jre7\launch4j-tmp\frd.exe" = protocol=6 | dir=in | app=c:\program files (x86)\java\jre7\launch4j-tmp\frd.exe |
"UDP Query User{02D58736-1D08-4C62-B28E-71D02E852946}C:\users\jakub\appdata\local\akamai\netsession_win.exe" = protocol=17 | dir=in | app=c:\users\jakub\appdata\local\akamai\netsession_win.exe |
"UDP Query User{0EC56146-1755-4DD8-99BF-EC31C58FB8C3}C:\program files (x86)\java\jre7\launch4j-tmp\frd.exe" = protocol=17 | dir=in | app=c:\program files (x86)\java\jre7\launch4j-tmp\frd.exe |
"UDP Query User{23637BC7-D3BC-44BB-B16C-9C1519FA1956}C:\program files (x86)\java\jre7\bin\javaw.exe" = protocol=17 | dir=in | app=c:\program files (x86)\java\jre7\bin\javaw.exe |
"UDP Query User{3277A70C-F631-45D1-9E9E-961DBA3AE4C8}C:\users\jakub\desktop\routttttr\tftpd32.exe" = protocol=17 | dir=in | app=c:\users\jakub\desktop\routttttr\tftpd32.exe |
"UDP Query User{36117D7C-BEBE-4959-A07E-E592F1938FEE}C:\users\jakub\desktop\routttttr\tftpd32.exe" = protocol=17 | dir=in | app=c:\users\jakub\desktop\routttttr\tftpd32.exe |
"UDP Query User{5C08CB92-5B03-49D8-92D9-CECD48E291AF}C:\users\jakub\appdata\local\akamai\netsession_win.exe" = protocol=17 | dir=in | app=c:\users\jakub\appdata\local\akamai\netsession_win.exe |
"UDP Query User{78D1C84B-3BD0-4DF8-A932-7AA6C03B1D7E}C:\users\jakub\appdata\local\temp\rar$exa0.707\adam2app.exe" = protocol=17 | dir=in | app=c:\users\jakub\appdata\local\temp\rar$exa0.707\adam2app.exe |
"UDP Query User{939A7B30-7453-411A-9637-AE3E5124B315}C:\program files (x86)\sendmails\sa\spamassassin.exe" = protocol=17 | dir=in | app=c:\program files (x86)\sendmails\sa\spamassassin.exe |
"UDP Query User{989EEA70-2D6C-4D45-972F-44A2F4C876CF}C:\windows\syswow64\javaw.exe" = protocol=17 | dir=in | app=c:\windows\syswow64\javaw.exe |
"UDP Query User{AA562972-6E52-495A-8F62-1795C6F7E9B6}C:\totalcmd\totalcmd64.exe" = protocol=17 | dir=in | app=c:\totalcmd\totalcmd64.exe |
"UDP Query User{B19F74DC-C58C-4281-94C6-3582A1094EF4}C:\program files\progdvb\progdvbnet.exe" = protocol=17 | dir=in | app=c:\program files\progdvb\progdvbnet.exe |
"UDP Query User{BA9EB5AB-618B-47F6-89AF-68DBFBFB2091}C:\program files (x86)\connectify\connectify.exe" = protocol=17 | dir=in | app=c:\program files (x86)\connectify\connectify.exe |
"UDP Query User{C9B58560-22BB-4AE7-BC70-AC618EDC1099}C:\program files\progdvb\progdvbnet.exe" = protocol=17 | dir=in | app=c:\program files\progdvb\progdvbnet.exe |
"UDP Query User{E5628E9B-3A40-462E-99BF-7339F136233E}C:\program files (x86)\java\jre7\launch4j-tmp\frd.exe" = protocol=17 | dir=in | app=c:\program files (x86)\java\jre7\launch4j-tmp\frd.exe |
========== HKEY_LOCAL_MACHINE Uninstall List ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{071c9b48-7c32-4621-a0ac-3f809523288f}" = Microsoft Visual C++ 2005 Redistributable (x64)
"{19D00409-7664-446C-01A9-D5B36EB516BE}" = AutoCAD 2013 VBA Enabler
"{1D8E6291-B0D5-35EC-8441-6616F567A0F7}" = Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219
"{266597A9-1764-0000-0100-DCBF2B69166B}" = Autodesk Vault Basic 2013 (Client) English Language Pack
"{28EF7372-9087-4AC3-9B9F-D9751FCDF830}" = Intel(R) Wireless Display
"{37EC048A-81A2-452A-8D1F-3BE2018E767D}" = Intel(R) PROSet/Wireless for Bluetooth(R) + High Speed
"{3DCF00F5-04A5-4543-A088-705480811203}_is1" = Compiled Driver Disk (HTC) 1.0
"{46A84694-59EC-48F0-964C-7E76E9F8A2ED}" = ThinkVantage Active Protection System
"{4713fdb0-2117-4d26-9e12-bbb11350a47f}" = Microsoft Visual C++ 2005 Redistributable (x64)
"{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148
"{4BE91685-1632-47FC-B563-A8A542C6664C}" = Autodesk Network License Manager
"{4C66F076-D3AB-49C8-85D4-BAA6D82FCAE2}" = SolidWorks 2012 x64 Edition SP0
"{542DDF04-9F91-4F36-B2F4-2638B788A4C8}" = Microsoft Visual Studio 2005 Remote Debugger Light (x64) - ENU
"{5783F2D7-0111-0409-0110-0060B0CE6BBA}" = Autodesk CAD Manager Tools
"{5783F2D7-B001-0000-0102-0060B0CE6BBA}" = AutoCAD 2013 – Čeština (Czech)
"{5783F2D7-B001-0405-1102-0060B0CE6BBA}" = AutoCAD 2013 Language Pack – Čeština (Czech)
"{5783F2D7-B001-0405-2102-0060B0CE6BBA}" = AutoCAD 2013 – Čeština (Czech)
"{5783F2D7-B005-0000-0102-0060B0CE6BBA}" = AutoCAD Mechanical 2013 - Čeština (Czech)
"{5783F2D7-B005-0405-1102-0060B0CE6BBA}" = AutoCAD Mechanical 2013 Language Pack - Čeština (Czech)
"{5783F2D7-B005-0405-2102-0060B0CE6BBA}" = AutoCAD Mechanical 2013 - Čeština (Czech)
"{5783F2D7-B028-0409-0100-0060B0CE6BBA}" = DWG TrueView 2013
"{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161
"{6199B534-A1B6-46ED-873B-97B0ECF8F81E}" = Intel® Trusted Connect Service Client
"{65DDB7D8-5E04-45DF-B60E-89557ED37ED2}" = SolidWorks Explorer 2012 SP0 x64 Edition
"{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}" = Microsoft Visual C++ 2005 Redistributable (x64)
"{790E02A1-145A-3843-8C13-A4F41C9B48B7}" = Microsoft .NET Framework 4 Client Profile CSY Language Pack
"{792A9A32-718A-40D1-9867-A903F76AE2F8}" = Eco Materials Adviser for Autodesk Inventor 2013
"{7F4DD591-1764-0001-0000-7107D70F3DB4}" = Autodesk Inventor 2013
"{7F4DD591-1764-0001-1029-7107D70F3DB4}" = Autodesk Inventor 2013 Jazykový balíček - čeština (Czech)
"{7F4DD591-1764-0001-1033-7107D70F3DB4}" = Autodesk Inventor 2013 English Language Pack
"{7F4DD591-1764-0004-0000-7107D70F3DB4}" = Autodesk Inventor View 2013
"{7F4DD591-1764-0004-1033-7107D70F3DB4}" = Autodesk Inventor View 2013 English Language Pack
"{8220EEFE-38CD-377E-8595-13398D740ACE}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17
"{88C6A6D9-324C-46E8-BA87-563D14021442}_is1" = ThinkVantage Communications Utility
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8E34682C-8118-31F1-BC4C-98CD9675E1C2}" = Microsoft .NET Framework 4 Extended
"{90140000-0015-0405-1000-0000000FF1CE}" = Microsoft Office Access MUI (Czech) 2010
"{90140000-0015-0405-1000-0000000FF1CE}_Office14.PROPLUSR_{9F412D54-AC04-46F9-AFE7-FE15DC0147A0}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-0016-0405-1000-0000000FF1CE}" = Microsoft Office Excel MUI (Czech) 2010
"{90140000-0016-0405-1000-0000000FF1CE}_Office14.PROPLUSR_{9F412D54-AC04-46F9-AFE7-FE15DC0147A0}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-0018-0405-1000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (Czech) 2010
"{90140000-0018-0405-1000-0000000FF1CE}_Office14.PROPLUSR_{9F412D54-AC04-46F9-AFE7-FE15DC0147A0}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-0019-0405-1000-0000000FF1CE}" = Microsoft Office Publisher MUI (Czech) 2010
"{90140000-0019-0405-1000-0000000FF1CE}_Office14.PROPLUSR_{9F412D54-AC04-46F9-AFE7-FE15DC0147A0}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001A-0405-1000-0000000FF1CE}" = Microsoft Office Outlook MUI (Czech) 2010
"{90140000-001A-0405-1000-0000000FF1CE}_Office14.PROPLUSR_{9F412D54-AC04-46F9-AFE7-FE15DC0147A0}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001B-0405-1000-0000000FF1CE}" = Microsoft Office Word MUI (Czech) 2010
"{90140000-001B-0405-1000-0000000FF1CE}_Office14.PROPLUSR_{9F412D54-AC04-46F9-AFE7-FE15DC0147A0}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001F-0405-1000-0000000FF1CE}" = Microsoft Office Proof (Czech) 2010
"{90140000-001F-0405-1000-0000000FF1CE}_Office14.PROPLUSR_{AEC2C00D-1E7E-45E3-9058-81EA2446B3CD}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001F-0407-1000-0000000FF1CE}" = Microsoft Office Proof (German) 2010
"{90140000-001F-0407-1000-0000000FF1CE}_Office14.PROPLUSR_{70A3169E-288F-454F-A08D-20DF66639B50}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001F-0409-1000-0000000FF1CE}" = Microsoft Office Proof (English) 2010
"{90140000-001F-0409-1000-0000000FF1CE}_Office14.PROPLUSR_{0242505C-4E90-407F-9299-B5B275F50D86}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001F-041B-1000-0000000FF1CE}" = Microsoft Office Proof (Slovak) 2010
"{90140000-001F-041B-1000-0000000FF1CE}_Office14.PROPLUSR_{4B806706-B352-42E8-8C8B-5CEBCEDBC4E0}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-002C-0405-1000-0000000FF1CE}" = Microsoft Office Proofing (Czech) 2010
"{90140000-002C-0405-1000-0000000FF1CE}_Office14.PROPLUSR_{715203B3-AD16-41A4-B13C-E1065EAB8963}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-0043-0000-1000-0000000FF1CE}" = Microsoft Office Office 32-bit Components 2010
"{90140000-0043-0000-1000-0000000FF1CE}_Office14.PROPLUSR_{E8B6D35B-0B6F-4DCE-9493-859BF3809A7F}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-0043-0405-1000-0000000FF1CE}" = Microsoft Office Shared 32-bit MUI (Czech) 2010
"{90140000-0043-0405-1000-0000000FF1CE}_Office14.PROPLUSR_{15D45352-C443-406A-9DF2-EF4A750A40CF}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-0044-0405-1000-0000000FF1CE}" = Microsoft Office InfoPath MUI (Czech) 2010
"{90140000-0044-0405-1000-0000000FF1CE}_Office14.PROPLUSR_{9F412D54-AC04-46F9-AFE7-FE15DC0147A0}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-006E-0405-1000-0000000FF1CE}" = Microsoft Office Shared MUI (Czech) 2010
"{90140000-006E-0405-1000-0000000FF1CE}_Office14.PROPLUSR_{4B8654FE-410D-462C-9B3C-09D031BF4534}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-00A1-0405-1000-0000000FF1CE}" = Microsoft Office OneNote MUI (Czech) 2010
"{90140000-00A1-0405-1000-0000000FF1CE}_Office14.PROPLUSR_{9F412D54-AC04-46F9-AFE7-FE15DC0147A0}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-00BA-0405-1000-0000000FF1CE}" = Microsoft Office Groove MUI (Czech) 2010
"{90140000-00BA-0405-1000-0000000FF1CE}_Office14.PROPLUSR_{9F412D54-AC04-46F9-AFE7-FE15DC0147A0}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{91140000-0011-0000-1000-0000000FF1CE}" = Microsoft Office Professional Plus 2010
"{91140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUSR_{7BC9B5EB-125A-4E9B-97E1-8D85B5E960B8}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{9ACF3FDB-C8E6-444C-8C64-13A221F7BFFD}" = Microsoft SQL Server Native Client
"{A324DC11-FF02-3CE8-9D6F-67EBC006D970}" = Microsoft .NET Framework 4 Extended CSY Language Pack
"{A6B3A293-6427-4266-AE42-2BDC14C7AC2C}" = SolidWorks eDrawings 2012 x64 Edition SP0
"{ABE4638D-D208-4061-9F26-E3E11E3A1E0C}" = Lenovo Patch Utility 64 bit
"{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}" = Microsoft Visual C++ 2005 Redistributable (x64)
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel" = Ovládací panel NVIDIA 310.90
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver" = NVIDIA Ovladače grafiky 310.90
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Optimus" = NVIDIA Optimus 1.11.3
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX" = NVIDIA Systémový software PhysX 9.12.1031
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update" = Aktualizace NVIDIA 1.11.3
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer" = NVIDIA Install Application
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NVIDIA.Update" = NVIDIA Update Components
"{B46DECD1-1764-4EF1-0000-22D71E81877C}" = Autodesk Inventor Content Center Libraries 2013 (Desktop Content)
"{B56A6C03-5C57-4035-A966-AEC309B4C019}" = SolidWorks eDrawings 2013 x64
"{B636C9B9-A3F2-4DCE-ADCC-72E095018385}" = Microsoft SQL Server VSS Writer
"{BDDB58A5-F98E-4D3C-B554-4A4D31C6D405}_is1" = Phone Drivers Downloader 1.1
"{C1C5FB06-7CBB-4013-95BC-C86EFA6D0DA5}" = Základní software zařízení HP Officejet Pro 8600
"{C5BB9380-D729-410A-A440-061EBCADCCB9}" = Fingerprint Reader
"{C78D3032-9DFD-41D0-9DE9-58EAE750CBA4}" = Microsoft Security Client
"{CCD4B0FC-DB6D-4741-982E-031627F22691}" = SolidWorks 2012 x64 Czech Resources
"{CF526A26-1764-0000-0000-02E95019B628}" = Autodesk Vault Basic 2013 (Client)
"{D25FF5C1-1764-469A-9794-69309387C193}" = Autodesk Inventor 2013 Quick Uninstaller
"{DD00F699-6861-4DCF-A19F-8CF61E5E28ED}" = Lenovo Solution Center
"{E97F409F-9E1C-42A0-B72D-765A78DF3696}" = Software Intel® PROSet/Wireless WiFi
"{EB9400D5-6289-4F9F-9B79-B3528101C0C7}" = SolidWorks Flow Simulation 2012 SP0 x64 Edition
"{EE5F74BC-5CD5-4EF2-86BA-81E6CF46A18F}" = Autodesk Sync
"{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}" = Microsoft .NET Framework 4 Client Profile
"{FF21C3E6-97FD-474F-9518-8DCBE94C2854}" = 64 Bit HP CIO Components Installer
"AutoCAD 2013 – Čeština (Czech)" = AutoCAD 2013 – Čeština (Czech)
"AutoCAD Mechanical 2013 - Čeština (Czech)" = AutoCAD Mechanical 2013 - Čeština (Czech)
"Autodesk Inventor 2013" = Autodesk Inventor 2013 English
"Autodesk Inventor View 2013" = Autodesk Inventor View 2013 English
"Broadcom 802.11 Network Adapter" = Broadcom 802.11 Network Adapter
"CCleaner" = CCleaner
"CNXT_AUDIO_HDA" = Conexant HD Audio
"Connectify" = Connectify Hotspot
"DWG TrueView 2013" = DWG TrueView 2013
"Jazykový balíček Autodesk Inventor 2013 - čeština (Czech)" = Autodesk Inventor 2013 Jazykový balíček - čeština (Czech)
"LenovoAutoScrollUtility" = Lenovo Auto Scroll Utility
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Microsoft .NET Framework 4 Client Profile CSY Language Pack" = Microsoft .NET Framework 4 Client Profile CSY Language Pack
"Microsoft .NET Framework 4 Extended" = Microsoft .NET Framework 4 Extended
"Microsoft .NET Framework 4 Extended CSY Language Pack" = Microsoft .NET Framework 4 Extended CSY Language Pack
"Microsoft Security Client" = Microsoft Security Essentials
"Microsoft Visual Studio 2005 Remote Debugger Light (x64) - ENU" = Microsoft Visual Studio 2005 Remote Debugger Light (x64) - ENU
"Office14.PROPLUSR" = Microsoft Office Professional Plus 2010
"OnScreenDisplay" = On Screen Display
"Power Management Driver" = Lenovo Power Management Driver
"ProgDVB" = ProgDVB x64
"ProInst" = Intel PROSet Wireless
"SynTPDeinstKey" = ThinkPad UltraNav Driver
"Totalcmd64" = Total Commander 64-bit (Remove or Repair)
"WinRAR archiver" = WinRAR 4.20 (64-bit)
"ZonerPhotoStudio14_CZ_is1" = Zoner Photo Studio 14
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{08D2E121-7F6A-43EB-97FD-629B44903403}" = Microsoft_VC90_CRT_x86
"{117EBEEB-5DB0-43C8-9FD6-DD583DB152DD}" = Autodesk Material Library 2013
"{14DC0059-00F1-4F62-BD1A-AB23CD51A95E}" = Adobe AIR
"{153DB567-6FF3-49AD-AC4F-86F8A3CCFDFB}" = Autodesk Design Review 2013
"{196467F1-C11F-4F76-858B-5812ADC83B94}" = MSXML 4.0 SP3 Parser
"{1A834332-A9EE-440C-9505-2D07F445F05A}" = MOBILedit! Support Libraries
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{240C3DDD-C5E9-4029-9DF7-95650D040CF2}" = Intel(R) USB 3.0 eXtensible Host Controller Driver
"{25C64847-B900-48AD-A164-1B4F9B774650}" = Lenovo System Update
"{26A24AE4-039D-4CA4-87B4-2F83217007FF}" = Java 7 Update 7
"{2750B389-A2D2-4953-99CA-27C1F2A8E6FD}" = Microsoft SQL Server 2005 Tools Express Edition
"{2949F05A-0840-45E9-81AA-DFF630E2679E}" = Freeware PDF Unlocker
"{2A3A4BD6-6CE0-4E2A-80D2-1D0FF6ACBFBA}" = LG United Mobile Driver
"{2AFFFDD7-ED85-4A90-8C52-5DA9EBDC9B8F}" = Microsoft SQL Server 2005 Express Edition (AUTODESKVAULT)
"{31A559C1-9E4D-423B-9DD3-34A6C5398752}" = HTC BMP USB Driver
"{328C0E1C-D5AB-47D2-8580-1F4832A4ADE2}" = Math3D
"{3EE9BCAE-E9A9-45E5-9B1C-83A4D357E05C}" = eReg
"{415FA9AD-DA10-4ABE-97B6-5051D4795C90}" = HP FWUpdateEDO2
"{47DA7D2E-408C-4050-B75F-95F6D2E6A332}_is1" = MOBILedit! ver. 6.9.0.2841
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{51C7AD07-C3F6-4635-8E8A-231306D810FE}" = Cisco LEAP Module
"{52291FC0-33D3-4A18-9587-5115225545D8}_is1" = Google Chrome Backup 1.7.0.114
"{53F5C3EE-05ED-4830-994B-50B2F0D50FCE}" = Microsoft SQL Server Setup Support Files (English)
"{5545EEE1-FA36-4F76-B6BE-5696E7F4E2D6}" = VBA (2627.01)
"{606E12B9-641F-4644-A22A-FF38AE980AFD}" = Autodesk Material Library Base Resolution Image Library 2013
"{612C34C7-5E90-47D8-9B5C-0F717DD82726}" = swMSM
"{62F029AB-85F2-0000-866A-9FC0DD99DDBC}" = Autodesk Content Service
"{62F029AB-85F2-0001-866A-9FC0DD99DDBC}" = Autodesk Content Service Language Pack
"{64BF0187-F3D2-498B-99EA-163AF9AE6EC9}" = Cisco EAP-FAST Module
"{65153EA5-8B6E-43B6-857B-C6E4FC25798A}" = Intel(R) Management Engine Components
"{6D6664A9-3342-4948-9B7E-034EFE366F0F}" = HTC Driver Installer
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{74EB3499-8B95-4B5C-96EB-7B342F3FD0C6}" = Adobe Photoshop CS6
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{85DF2EED-08BC-46FB-90DA-28B0D0A8E8A8}" = HP Update
"{8833FFB6-5B0C-4764-81AA-06DFEED9A476}" = Realtek Ethernet Controller Driver
"{8B922CF8-8A6C-41CE-A858-F1755D7F5D29}" = NVIDIA PhysX
"{8E537894-A559-4D60-B3CB-F4485E3D24E3}" = ThinkVantage Access Connections
"{90120000-00A4-0409-0000-0000000FF1CE}" = Microsoft Office 2003 Web Components
"{92D58719-BBC1-4CC3-A08B-56C9E884CC2C}" = Microsoft_VC80_CRT_x86
"{93F34C5C-ACAA-48F3-9B26-70359A117F12}" = Intel(R) WiDi
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{9D3D2C60-A55F-4fed-B2B9-17311226DF01}" = ThinkPad Wireless LAN Adapter Software
"{A57025CC-5F2E-4D01-B387-06DB10500D43}" = Nokia Connectivity Cable Driver
"{A6C48A9F-694A-4234-B3AA-62590B668927}" = Intel(R) Manageability Engine Firmware Recovery Agent
"{A78800AF-1779-4AE8-8EBE-16E1BE727C71}" = Integrated Camera Driver Installer Package Ver.1.2.1.18
"{AC76BA86-7AD7-1029-7B44-AA1000000001}" = Adobe Reader X (10.1.5) - Czech
"{AD32F5E9-6BDD-480A-8B7B-95571D04691C}" = Lenovo Patch Utility
"{BFEAAE77-BD7F-4534-B286-9C5CB4697EB1}" = PDF Settings CS6
"{C1594429-8296-4652-BF54-9DBE4932A44C}" = Realtek PCIE Card Reader
"{CCF298AF-9CE1-4B26-B251-486E98A34789}" = Windows 7 USB/DVD Download Tool
"{D481EA96-2313-4A7C-98EE-710D1AF884AC}" = Microsoft Visual Studio 2005 Tools for Applications - ENU
"{DAC01CEE-5BAE-42D5-81FC-B687E84E8405}" = Power Manager
"{DB6AB705-C9BD-40E3-8929-2EA57F36A4FF}_is1" = ConvertXtoDVD 4.0.11.326
"{E3E71D07-CD27-46CB-8448-16D4FB29AA13}" = Microsoft WSE 3.0 Runtime
"{EA17F4FC-FDBF-4CF8-A529-2D983132D053}" = Skype™ 6.0
"{EA9640BE-414E-4195-B53B-7905BF1A5A09}" = Mobile Broadband Drivers
"{ED5776D5-59B4-46B7-AF81-5F2D94D7C640}" = Cisco PEAP Module
"{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
"{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}" = Intel(R) Processor Graphics
"{F8A9085D-4C7A-41a9-8A77-C8998A96C421}" = Intel(R) Control Center
"{FCB3772C-B7D0-4933-B1A9-3707EBACC573}" = Intel(R) OpenCL CPU Runtime
"abgx360" = abgx360 v1.0.6
"Adobe AIR" = Adobe AIR
"Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin
"Adobe Shockwave Player" = Adobe Shockwave Player 11.6
"Adolix Split and Merge PDF_is1" = Adolix Split and Merge PDF v1.3
"Ashampoo Burning Studio 6 FREE_is1" = Ashampoo Burning Studio 6 FREE v.6.81
"Autodesk Content Service" = Autodesk Content Service
"Autodesk Design Review 2013" = Autodesk Design Review 2013
"Autodesk Vault Basic 2013 (Client)" = Autodesk Vault Basic 2013 (Client)
"DAEMON Tools Lite" = DAEMON Tools Lite
"FM JPG To PDF Converter Free_is1" = FM JPG To PDF Converter Free 1.1
"FormatFactory" = FormatFactory 3.00
"ImgBurn" = ImgBurn
"KLiteCodecPack_is1" = K-Lite Codec Pack 9.3.0 (Basic)
"Microsoft SQL Server 2005" = Microsoft SQL Server 2005
"Microsoft Visual Studio 2005 Tools for Applications - ENU" = Microsoft Visual Studio 2005 Tools for Applications - ENU
"MozBackup" = MozBackup 1.5.1
"Mozilla Firefox 15.0.1 (x86 cs)" = Mozilla Firefox 15.0.1 (x86 cs)
"Mozilla Thunderbird 17.0.2 (x86 cs)" = Mozilla Thunderbird 17.0.2 (x86 cs)
"MozillaMaintenanceService" = Mozilla Maintenance Service
"O2CZ" = O2
"Opera 12.12.1707" = Opera 12.12
"ProFact 3.0_is1" = ProFact 3.0
"PSPad editor_is1" = PSPad editor
"SendMails_is1" = SendMails - hromadné zasílání zpráv
"SolidWorks Installation Manager 20120-40000-1100-100" = SolidWorks 2012 x64 Edition SP0
"SWILenovoDrvInstaller" = Sierra Wireless QMI Lenovo Driver Package
"T-Mobile Communication Centre" = Web'n'walk Manager
"TVCONDrv" = GIGABYTE U8300 BDA Device
"VLC media player" = VLC media player 2.0.3
"WebDataLoader_is1" = WebDataLoader - stahování dat z internetu
========== HKEY_USERS Uninstall List ==========
[HKEY_USERS\S-1-5-21-3752770136-2494076584-3171830822-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"7f4182272b52fd8f" = CZShare Manager
"Akamai" = Akamai NetSession Interface
"Google Chrome" = Google Chrome
========== Last 20 Event Log Errors ==========
[ Application Events ]
Error - 16.1.2013 15:57:46 | Computer Name = Jakub-NTB | Source = Microsoft-Windows-EapHost | ID = 2002
Description = Přeskočení: Ověření Eap method DLL path se nezdařilo. Chyba: ID typu=21,
ID autora=8086, ID dodavatele=0, typ dodavatele=0
Error - 16.1.2013 15:57:46 | Computer Name = Jakub-NTB | Source = Microsoft-Windows-EapHost | ID = 2002
Description = Přeskočení: Ověření Eap method DLL path se nezdařilo. Chyba: ID typu=23,
ID autora=8086, ID dodavatele=0, typ dodavatele=0
Error - 16.1.2013 15:57:46 | Computer Name = Jakub-NTB | Source = Microsoft-Windows-EapHost | ID = 2002
Description = Přeskočení: Ověření Eap method DLL path se nezdařilo. Chyba: ID typu=17,
ID autora=9, ID dodavatele=0, typ dodavatele=0
Error - 16.1.2013 15:57:46 | Computer Name = Jakub-NTB | Source = Microsoft-Windows-EapHost | ID = 2002
Description = Přeskočení: Ověření Eap method DLL path se nezdařilo. Chyba: ID typu=25,
ID autora=9, ID dodavatele=0, typ dodavatele=0
Error - 16.1.2013 15:57:46 | Computer Name = Jakub-NTB | Source = Microsoft-Windows-EapHost | ID = 2002
Description = Přeskočení: Ověření Eap method DLL path se nezdařilo. Chyba: ID typu=43,
ID autora=9, ID dodavatele=0, typ dodavatele=0
Error - 17.1.2013 0:05:50 | Computer Name = Jakub-NTB | Source = Application Error | ID = 1000
Description = Název chybující aplikace: AcSvc.exe, verze: 5.9.7.95, časové razítko:
0x50487c7e Název chybujícího modulu: ntdll.dll, verze: 6.1.7601.17725, časové razítko:
0x4ec49b8f Kód výjimky: 0xc0000005 Posun chyby: 0x000326d1 ID chybujícího procesu:
0x156c Čas spuštění chybující aplikace: 0x01cdf46384a19388 Cesta k chybující aplikaci:
C:\Program Files (x86)\Lenovo\Access Connections\AcSvc.exe Cesta k chybujícímu modulu:
C:\Windows\SysWOW64\ntdll.dll ID zprávy: 2d8edb23-605b-11e2-8359-685d4342d898
Error - 17.1.2013 4:31:50 | Computer Name = Jakub-NTB | Source = Application Error | ID = 1000
Error - 17.1.2013 5:31:15 | Computer Name = Jakub-NTB | Source = Application Error
| ID = 1000
Description = Název chybující aplikace: AcSvc.exe, verze: 5.9.7.95, časové razítko: 0x50487c7e
Název chybujícího modulu: ntdll.dll, verze: 6.1.7601.17725, časové razítko: 0x4ec49b8f
Kód výjimky: 0xc0000005
Posun chyby: 0x000326d1
ID chybujícího procesu: 0x838
Čas spuštění chybující aplikace: 0x01cdf4954fa9d35e
Cesta k chybující aplikaci: C:\Program Files (x86)\Lenovo\Access Connections\AcSvc.exe
Cesta k chybujícímu modulu: C:\Windows\SysWOW64\ntdll.dll
ID zprávy: a3790bf8-6088-11e2-9da0-685d4342d898
Error - 17.1.2013 7:55:41 | Computer Name = Jakub-NTB | Source = Application Error
| ID = 1000
Description = Název chybující aplikace: AcSvc.exe, verze: 5.9.7.95, časové razítko: 0x50487c7e
Název chybujícího modulu: ntdll.dll, verze: 6.1.7601.17725, časové razítko: 0x4ec49b8f
Kód výjimky: 0xc0000005
Posun chyby: 0x000326d1
ID chybujícího procesu: 0x14f8
Čas spuštění chybující aplikace: 0x01cdf4a4e24884fc
Cesta k chybující aplikaci: C:\Program Files (x86)\Lenovo\Access Connections\AcSvc.exe
Cesta k chybujícímu modulu: C:\Windows\SysWOW64\ntdll.dll
ID zprávy: d0a3976a-609c-11e2-93e8-b888e330e093
Error - 17.1.2013 10:17:06 | Computer Name = Jakub-NTB | Source = Application Error
| ID = 1000
Description = Název chybující aplikace: AcSvc.exe, verze: 5.9.7.95, časové razítko: 0x50487c7e
Název chybujícího modulu: ntdll.dll, verze: 6.1.7601.17725, časové razítko: 0x4ec49b8f
Kód výjimky: 0xc0000005
Posun chyby: 0x000326d1
ID chybujícího procesu: 0x1350
Čas spuštění chybující aplikace: 0x01cdf4b91c039757
Cesta k chybující aplikaci: C:\Program Files (x86)\Lenovo\Access Connections\AcSvc.exe
Cesta k chybujícímu modulu: C:\Windows\SysWOW64\ntdll.dll
ID zprávy: 91c59806-60b0-11e2-87ca-685d4342d898
Error - 18.1.2013 3:28:51 | Computer Name = Jakub-NTB | Source = Application Error
| ID = 1000
Description = Název chybující aplikace: AcSvc.exe, verze: 5.9.7.95, časové razítko: 0x50487c7e
Název chybujícího modulu: ntdll.dll, verze: 6.1.7601.17725, časové razítko: 0x4ec49b8f
Kód výjimky: 0xc0000005
Posun chyby: 0x000326d1
ID chybujícího procesu: 0xf28
Čas spuštění chybující aplikace: 0x01cdf5496341acba
Cesta k chybující aplikaci: C:\Program Files (x86)\Lenovo\Access Connections\AcSvc.exe
Cesta k chybujícímu modulu: C:\Windows\SysWOW64\ntdll.dll
ID zprávy: b46e1e48-6140-11e2-8ad1-685d4342d898
Error encountered while reading event logs.
< End of report >
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Jakub\Desktop
64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy
7,60 Gb Total Physical Memory | 5,42 Gb Available Physical Memory | 71,22% Memory free
15,21 Gb Paging File | 12,99 Gb Available in Paging File | 85,46% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 111,79 Gb Total Space | 19,57 Gb Free Space | 17,50% Space Free | Partition Type: NTFS
Drive D: | 465,66 Gb Total Space | 215,74 Gb Free Space | 46,33% Space Free | Partition Type: NTFS
Computer Name: JAKUB-NTB | User Name: Jakub | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 7 Days
========== Extra Registry (SafeList) ==========
========== File Associations ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.html[@ = Opera.HTML] -- C:\Program Files (x86)\Opera\Opera.exe (Opera Software)
.url[@ = InternetShortcut] -- C:\Windows\SysNative\rundll32.exe (Microsoft Corporation)
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation)
.html [@ = Opera.HTML] -- C:\Program Files (x86)\Opera\Opera.exe (Opera Software)
========== Shell Spawning ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
http [open] -- "C:\Program Files (x86)\Opera\Opera.exe" "%1" (Opera Software)
https [open] -- "C:\Program Files (x86)\Opera\Opera.exe" "%1" (Opera Software)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [Bridge] -- C:\Program Files\Adobe\Adobe Bridge CS6 (64 Bit)\Bridge.exe "%L" (Adobe Systems, Inc.)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
http [open] -- "C:\Program Files (x86)\Opera\Opera.exe" "%1" (Opera Software)
https [open] -- "C:\Program Files (x86)\Opera\Opera.exe" "%1" (Opera Software)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [Bridge] -- C:\Program Files\Adobe\Adobe Bridge CS6 (64 Bit)\Bridge.exe "%L" (Adobe Systems, Inc.)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
========== Security Center Settings ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = 28 4D B2 76 41 04 CA 01 [binary data]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
========== Firewall Settings ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
========== Authorized Applications List ==========
========== Vista Active Open Ports Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{038A9D44-64DB-4585-98A8-B53984D15F90}" = lport=1317 | protocol=17 | dir=in | app=c:\program files (x86)\connectify\connectifynetservices.exe |
"{055CF7E6-0C84-441E-9C0D-846C8F2B8D08}" = lport=3074 | protocol=6 | dir=out | app=c:\windows\system32\svchost.exe |
"{0A3CE6A0-30B7-477A-A5A7-70212C707013}" = lport=547 | protocol=17 | dir=in | app=c:\windows\system32\svchost.exe |
"{0FFD32E4-913B-4473-8545-57506D8D6D7D}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{15083474-F734-423A-8896-64D86AF0DA1D}" = lport=6004 | protocol=17 | dir=in | app=c:\program files\microsoft office\office14\outlook.exe |
"{197F33A1-C444-4F31-939E-E5B8677DE2E6}" = lport=137 | protocol=17 | dir=in | app=system |
"{19C71A7A-D0B0-4470-9203-FD80AAA74AC3}" = lport=88 | protocol=17 | dir=in | app=c:\windows\system32\svchost.exe |
"{1E08D843-CCAE-4BE4-AF04-4DB803732177}" = lport=59278 | protocol=6 | dir=out | app=c:\windows\system32\svchost.exe |
"{1F756BCA-F771-4F60-9518-CFDCA4F60189}" = lport=138 | protocol=17 | dir=in | app=system |
"{26811508-A5A8-4BB9-8B16-AF2233B23077}" = lport=1900 | protocol=17 | dir=in | app=c:\windows\system32\svchost.exe |
"{26F005A6-69CC-4437-9FD2-D2042629D3E8}" = lport=139 | protocol=6 | dir=in | app=system |
"{2725B5A2-73C8-47D6-B3C5-48C1E2F1DA81}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{29D93789-738D-4AF1-AB18-0FA2C4117C1D}" = lport=7676 | protocol=6 | dir=in | name=allshareframeworkdms service tcp port1 |
"{2F5E4A3D-003B-459A-949C-88137FD4EABE}" = lport=88 | protocol=17 | dir=out | app=c:\windows\system32\svchost.exe |
"{31BF42EE-59A2-4C96-A182-94431316C25B}" = lport=24234 | protocol=6 | dir=in | name=allshareframework dms service udp port1 |
"{3B3B94C5-F464-4B7F-9B71-093F37881306}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 |
"{4190EF32-4520-40B1-BDB9-8B707AF5469C}" = rport=137 | protocol=17 | dir=out | app=system |
"{4242F404-955D-41A6-967E-77CA92FE3CE0}" = lport=7900 | protocol=6 | dir=in | name=allshareframework dms service udp port2 |
"{459C9521-B2D1-4E72-B814-CDED6541DEA9}" = lport=2987 | protocol=6 | dir=in | app=c:\program files (x86)\connectify\connectify.exe |
"{53784281-2B2B-4BE1-AAA5-9B0C48040EBB}" = lport=3478 | protocol=17 | dir=out | app=c:\windows\system32\svchost.exe |
"{59BE7925-E992-4042-9249-CE81936B5453}" = rport=445 | protocol=6 | dir=out | app=system |
"{5B899F17-ABB7-4428-A3BE-FEEA5ADE3ADB}" = lport=3478 | protocol=17 | dir=in | app=c:\windows\system32\svchost.exe |
"{5BF26B15-4116-4E72-9D0D-09BF1464ADAE}" = lport=67 | protocol=17 | dir=in | app=c:\program files (x86)\connectify\connectifynetservices.exe |
"{5D155C6D-002A-4D9C-A95E-7A2285EAE598}" = lport=68 | protocol=17 | dir=in | svc=sharedaccess | app=%systemroot%\system32\svchost.exe |
"{63CCD916-7E52-4FC2-957C-2E99F2404D32}" = lport=2177 | protocol=6 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{6A0D5473-917F-4DFC-987F-BF30955FC8EE}" = lport=3658 | protocol=17 | dir=out | app=c:\windows\system32\svchost.exe |
"{6F19DD82-F8FC-4B3D-8FB3-FA27C2C5A7A7}" = lport=5223 | protocol=6 | dir=in | app=c:\windows\system32\svchost.exe |
"{707605BE-116F-47D3-94E4-7B54908BEB88}" = lport=59278 | protocol=6 | dir=in | app=c:\windows\system32\svchost.exe |
"{71364D32-0DF0-40EB-8F93-D374068A7C16}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{756DB3FE-958F-46FC-A2AA-5BE81279221C}" = lport=67 | protocol=17 | dir=in | svc=sharedaccess | app=%systemroot%\system32\svchost.exe |
"{764ED5FC-A293-442B-8F27-8148E1007634}" = rport=10243 | protocol=6 | dir=out | app=system |
"{7743A1E6-ADB9-4D56-9656-AA611E09ED75}" = lport=2869 | protocol=6 | dir=in | app=system |
"{779E10C1-3EAE-4759-8785-7DFBC562CB16}" = lport=5000 | protocol=17 | dir=in | app=c:\program files (x86)\connectify\connectifynetservices.exe |
"{7A2A2583-8DEE-4E5B-876C-C95E273FF17D}" = lport=3074 | protocol=17 | dir=out | app=c:\windows\system32\svchost.exe |
"{7C32E054-BC0D-4D12-8950-B2E0FC2C32CE}" = lport=2177 | protocol=17 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{8B225B13-664E-423F-A94B-2996069F0F24}" = lport=1303 | protocol=17 | dir=in | app=c:\program files (x86)\connectify\connectifynetservices.exe |
"{8D42382F-CA85-4FB5-9844-008B0781F55B}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{8D9AEC15-F9B1-48A2-B8FC-6E15ADA20F94}" = lport=68 | protocol=17 | dir=in | app=c:\program files (x86)\connectify\connectifynetservices.exe |
"{8E539CE4-6DB0-4361-B56E-9815F8514837}" = lport=7679 | protocol=6 | dir=in | name=allshareframeworkdms service tcp port2 |
"{98E94FD7-18A7-4635-85E7-0CF0215B7092}" = lport=53 | protocol=17 | dir=in | app=c:\program files (x86)\connectify\connectifynetservices.exe |
"{9A40BD5B-EB2A-43CF-BF66-5D9417102861}" = lport=3479 | protocol=17 | dir=out | app=c:\windows\system32\svchost.exe |
"{9E77BBBA-9A9D-4020-8A28-05A305D661E8}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
"{A592C8A3-E188-4CEA-9CD6-F4B2A73E4A26}" = lport=50248 | protocol=6 | dir=in | name=autodesk content service |
"{A789987D-D3C7-4600-BC96-E14A7A1FF183}" = lport=3658 | protocol=17 | dir=in | app=c:\windows\system32\svchost.exe |
"{B34CD640-5EA7-4BF5-92CA-AA37BAC05445}" = rport=2177 | protocol=17 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{C06F99D6-4887-40C0-9C15-97C10EE2DFE0}" = rport=2869 | protocol=6 | dir=out | app=system |
"{C1477D48-68A3-4EC4-B17F-21FCDBEF0C70}" = lport=445 | protocol=6 | dir=in | app=system |
"{CE27E37A-DB45-4B4D-AC38-9C0752CBCDB6}" = lport=8743 | protocol=6 | dir=in | name=allshareframeworkdms action tcp port |
"{D0F610E0-27A2-4FCE-8EF1-1B38AF392AA2}" = lport=3074 | protocol=17 | dir=in | app=c:\windows\system32\svchost.exe |
"{D1649F58-B7D0-4684-9F67-054BB0179DC8}" = lport=5223 | protocol=6 | dir=out | app=c:\windows\system32\svchost.exe |
"{D1E01AC1-2E2D-42B2-8AED-1C8553E4D90D}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{D3D57560-9DC8-44CB-AA2D-50D0299739D4}" = lport=8643 | protocol=6 | dir=in | name=allshareframeworkdms event tcp port |
"{E0F491B1-98CD-488C-BD42-4A86F942A439}" = lport=1900 | protocol=6 | dir=in | name=upnp multicast port |
"{E115817A-FE16-43D4-91D0-00B1A72D8355}" = lport=10243 | protocol=6 | dir=in | app=system |
"{E1BD28D8-9106-4535-AB6B-D920EA9C0EAB}" = rport=138 | protocol=17 | dir=out | app=system |
"{E65DBECE-0251-48B1-AA0C-2C62907ED098}" = lport=2869 | protocol=6 | dir=in | app=system |
"{E7EBCFDD-FD74-4731-B570-10DADA6B0A81}" = lport=1900 | protocol=17 | dir=in | app=c:\program files (x86)\connectify\connectifynetservices.exe |
"{EB5C6D90-EE45-4206-B5F8-BF33A3A820CB}" = lport=3074 | protocol=6 | dir=in | app=c:\windows\system32\svchost.exe |
"{F5C912E9-8704-4EA1-A721-C9B8312ACAF5}" = rport=139 | protocol=6 | dir=out | app=system |
"{F8A77685-B14C-44CE-9AEA-12B3F279C6EB}" = lport=5000 | protocol=6 | dir=in | app=c:\program files (x86)\connectify\connectifynetservices.exe |
"{F8AB7780-9A1C-4636-8EC7-C4A3B064BBFA}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{FAA668B0-5BAD-4AD4-BC01-A1C68990FED8}" = lport=3479 | protocol=17 | dir=in | app=c:\windows\system32\svchost.exe |
"{FB5F9E1E-1D2B-4A4A-8536-64853CA193DE}" = rport=1900 | protocol=17 | dir=out | app=c:\windows\system32\svchost.exe |
"{FEE1AF5B-48BE-4B58-A828-38771BB2088D}" = rport=2177 | protocol=6 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
========== Vista Active Application Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{00BB715D-B32D-4D09-8A1C-15BA56ACC77D}" = protocol=17 | dir=in | app=c:\program files (x86)\opera\opera.exe |
"{0280AC34-64C6-4963-A1A6-3C5309F59E9E}" = dir=out | app=c:\program files (x86)\connectify\connectifyd.exe |
"{03D7C7A5-F007-4A64-B6CE-FA2630E8BB13}" = dir=in | app=c:\program files (x86)\hp\digital imaging\bin\hpqusgm.exe |
"{04415680-53B2-4285-BD61-CB3AF59F8535}" = dir=out | app=c:\program files (x86)\connectify\connectifyd.exe |
"{045C7E3B-3165-4A55-B738-2951DB2C5D3D}" = dir=in | app=c:\program files (x86)\connectify\connectifynetservices.exe |
"{0520157A-1983-493A-8AFE-36723858D191}" = dir=in | app=c:\program files (x86)\connectify\connectifynetservices.exe |
"{06A822BA-5E89-43BB-AE0A-4F31D8ABC7F3}" = protocol=17 | dir=in | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{099E3E5A-2517-41A4-AF2C-EF49AECABD47}" = protocol=17 | dir=in | app=c:\program files\microsoft office\office14\onenote.exe |
"{0A7EBD97-72B0-41B3-BF7B-F3B035B2720F}" = dir=in | app=c:\program files (x86)\connectify\connectifynetservices.exe |
"{0AEF9DF9-5964-4E31-81DA-FF27671A868D}" = dir=in | app=c:\program files (x86)\hp\digital imaging\bin\hposfx08.exe |
"{0E7A3CC1-5897-46CA-BCCF-9AE6A348F09D}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{0F95715A-2D60-4378-A4D5-767A0957DDFC}" = dir=out | app=c:\program files (x86)\connectify\connectifynetservices.exe |
"{12A4AF2B-5E1F-445C-ABAF-CC437FA09B5E}" = dir=in | app=c:\program files (x86)\hp\digital imaging\bin\hpqtra08.exe |
"{172C1343-35C7-4C83-9108-901AD1AD6345}" = dir=in | app=c:\program files (x86)\connectify\connectifyd.exe |
"{1ABF5632-2DDA-461E-A6E8-C04E99A2C646}" = dir=out | app=c:\program files (x86)\connectify\connectifynetservices.exe |
"{1D20C448-F42C-4D9F-A910-EEE2B23BA177}" = protocol=58 | dir=in | name=internet connection sharing (router solicitation-in) |
"{1EE3B85C-0234-4924-BFBB-1555681230B6}" = dir=in | app=c:\program files (x86)\connectify\connectifyd.exe |
"{1F149EBB-6BFB-4742-A331-E33BA62CFC9D}" = protocol=6 | dir=out | app=c:\windows\system32\svchost.exe |
"{280C78DE-9B8D-4668-90C2-4F44FB671C30}" = dir=in | app=c:\program files (x86)\hp\digital imaging\bin\hpqpse.exe |
"{2A0EF56C-BBDE-4630-B553-A9FC755F9B2D}" = dir=in | app=c:\program files (x86)\hp\digital imaging\bin\hpofxm08.exe |
"{2AA4C21D-0E51-4A0A-964E-1515CE3A98AA}" = dir=out | app=c:\program files (x86)\connectify\connectifynetservices.exe |
"{2D2CF11E-EFE7-4DF1-81C1-40BA75EA5B34}" = dir=in | app=c:\program files (x86)\connectify\connectifyd.exe |
"{2DD6656D-0C94-4BE9-A744-ED4234E00F68}" = dir=in | app=c:\program files (x86)\connectify\connectifyd.exe |
"{31001532-83E5-4CFE-B58F-D99B813FB450}" = dir=in | app=c:\program files (x86)\connectify\connectifyd.exe |
"{332CEE96-7F8E-4E76-8A1A-B964FCB4A69B}" = dir=out | app=c:\program files (x86)\connectify\connectifynetservices.exe |
"{34434D22-6243-461A-A06E-E01845C6B32A}" = dir=in | app=c:\program files (x86)\hp\digital imaging\bin\hpqfxt08.exe |
"{34665812-20E5-4331-A6D8-F4B04786516E}" = dir=in | app=c:\program files (x86)\hp\digital imaging\smart web printing\smartwebprintexe.exe |
"{346E21CB-B3CB-4546-9E11-79EEF5C9DAC8}" = protocol=6 | dir=in | app=c:\program files\microsoft office\office14\onenote.exe |
"{35087F9A-27FC-4130-9612-BC1A459AE666}" = protocol=17 | dir=in | app=c:\program files\microsoft office\office14\groove.exe |
"{3871542A-7A80-4047-A8B8-E9DF7F2DD4BA}" = dir=in | app=c:\program files (x86)\connectify\connectifynetservices.exe |
"{392B6664-FB09-4E53-911A-200428027DCD}" = dir=out | app=c:\program files (x86)\connectify\connectifynetservices.exe |
"{3A9B3FB9-3DB0-4066-B0C1-2431456DA7C8}" = dir=out | app=c:\program files (x86)\connectify\connectifyd.exe |
"{3EDD4FC4-1F66-4822-A6E3-B4A2C3442E8C}" = dir=out | app=c:\program files (x86)\connectify\connectifyd.exe |
"{404AEE03-DFEF-4E2C-B0EF-806BC3E97D94}" = protocol=6 | dir=in | app=c:\program files\microsoft office\office14\groove.exe |
"{41CB4135-EF87-464E-8A55-F624129BE817}" = dir=in | app=c:\program files (x86)\hp\digital imaging\bin\hpqste08.exe |
"{4202B5A0-6C4B-441F-84BF-11AF7010A388}" = dir=out | app=c:\program files (x86)\connectify\connectifyd.exe |
"{420AADBD-75BE-48F5-A53D-E92580F4A913}" = protocol=17 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{424455A3-554E-4AF4-9CB0-72858A0C4A03}" = dir=out | app=c:\program files (x86)\connectify\connectifynetservices.exe |
"{4248BA47-72BA-4498-8CF5-77F2D073A490}" = dir=in | app=c:\program files (x86)\connectify\connectifynetservices.exe |
"{4499A3CC-CCD7-4E36-949B-5EC772062203}" = dir=out | app=c:\program files (x86)\connectify\connectifynetservices.exe |
"{47A0F228-7BA2-442B-B4F7-DB7EC026C44F}" = dir=in | app=c:\program files (x86)\connectify\connectifyd.exe |
"{485C24B7-D020-4A42-A891-986E6F5D37C4}" = protocol=6 | dir=in | app=c:\program files\solidworks corp\solidworks\swscheduler\dtscoordinatorservice.exe |
"{4B4CF6AF-D74B-48F5-AE35-98654400D2C4}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{4C669618-E41E-40E3-AD42-6FF2784D7B37}" = dir=in | app=c:\program files (x86)\connectify\connectifyd.exe |
"{51687E73-03E9-486B-9A0B-DBDBEEB03942}" = dir=in | app=c:\program files (x86)\connectify\connectifynetservices.exe |
"{534B6E43-FF21-4C81-B434-82CA4E8DAB8B}" = dir=out | app=c:\program files (x86)\connectify\connectifynetservices.exe |
"{5417757F-3594-41FB-9407-0C2C376D827F}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 |
"{55F53822-E8C9-4D55-9909-621736A91705}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 |
"{5625ECC1-6C42-4E15-A29C-722FBB2287A2}" = protocol=6 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{578542F4-5323-4769-AEAA-76B36F525919}" = dir=out | app=c:\program files (x86)\connectify\connectifynetservices.exe |
"{57A52811-012C-4765-BD48-925B22BDE524}" = protocol=17 | dir=in | app=c:\program files\samsung\allshare framework dms\1.3.06\allshareframeworkdms.exe |
"{597AFDDF-7B9E-43BC-A202-1BF14C763C85}" = dir=in | app=c:\program files\hp\hp officejet pro 8600\bin\hpnetworkcommunicator.exe |
"{59D3A7A1-B8A9-4BE3-AEC3-1780A7557B95}" = dir=in | app=c:\program files (x86)\hp\digital imaging\bin\hpqpsapp.exe |
"{5A1BE63F-4C9F-41FE-B209-F7A1BC468C6B}" = dir=in | app=c:\program files\intel\wifi\bin\pandhcpdns.exe |
"{5BBD2048-8C0E-4DDD-A47F-FB2650230EAD}" = protocol=17 | dir=in | app=c:\program files (x86)\lenovo\system update\uncserver.exe |
"{5C2614B7-0FD0-4F56-A5F0-216DDF9BF92E}" = dir=out | app=c:\program files (x86)\connectify\connectifynetservices.exe |
"{5E881782-E349-40AD-900E-F0BCEC45191C}" = dir=in | app=c:\program files (x86)\connectify\connectifyd.exe |
"{60712FDF-A4B9-47BC-946F-284AB735DDA3}" = protocol=6 | dir=in | app=c:\program files\solidworks corp\solidworks\photoview\photoview360_cl.exe |
"{60A4B31E-129B-42D7-93E8-452978291E88}" = dir=in | app=c:\program files (x86)\connectify\connectifyd.exe |
"{61364CAB-F76D-4D58-994C-6A491A2F9378}" = dir=in | app=c:\program files (x86)\hp\digital imaging\bin\hpqnrs08.exe |
"{617C4FDF-16D6-4595-9161-5D9D5CE82847}" = dir=out | app=c:\program files (x86)\connectify\connectifyd.exe |
"{61AB5C12-B824-4733-A482-476A270B2CF2}" = dir=in | app=c:\program files (x86)\hp\digital imaging\bin\hpqgpc01.exe |
"{626BE052-77F3-4DFB-898E-294E5F039C73}" = dir=in | app=c:\program files (x86)\connectify\connectifyd.exe |
"{6290F91A-1346-4DA0-AB4C-F7E120D8860F}" = dir=in | app=c:\program files (x86)\connectify\connectifyd.exe |
"{65A18E87-BA27-4853-A964-A9F3E8117F07}" = dir=out | app=c:\program files (x86)\connectify\connectifynetservices.exe |
"{67704325-7A39-47FA-8905-71719E397B25}" = dir=in | app=c:\program files (x86)\connectify\connectifynetservices.exe |
"{6A1F2B7B-9717-4405-80E8-3887415E1ACF}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 |
"{6B2486EE-5B8C-4129-ADF7-679C42BE8E96}" = protocol=17 | dir=in | app=c:\program files\solidworks corp\solidworks\swscheduler\dtscoordinatorservice.exe |
"{6D53EDB5-700D-42F9-AE1C-519F333E2EA7}" = dir=in | app=c:\program files (x86)\connectify\connectifyd.exe |
"{6E3ACD52-9D74-472D-96DA-C0879E17C5DB}" = dir=in | app=c:\program files (x86)\connectify\connectifynetservices.exe |
"{6FB54483-C540-4333-A37D-164EB4A13160}" = dir=in | app=c:\program files (x86)\connectify\connectifyd.exe |
"{70B6A6F3-12D6-40D4-9904-1ED726DAEF0E}" = dir=in | app=c:\program files (x86)\intel corporation\intel widi\widiapp.exe |
"{70D23784-807F-430E-B65C-51A7F79D0929}" = dir=in | app=c:\program files (x86)\connectify\connectifyd.exe |
"{72A5D0BF-F3B0-421C-B586-73080007F44C}" = dir=in | app=c:\program files (x86)\connectify\connectifynetservices.exe |
"{73B52DBA-EAC0-47A0-80AA-DCF8F3A747C7}" = dir=in | app=c:\program files (x86)\connectify\connectifynetservices.exe |
"{757025E1-FB90-4128-B259-F3A62A3411A3}" = dir=in | app=c:\program files (x86)\hp\digital imaging\bin\hpfccopy.exe |
"{75C3033B-628B-4EAC-B0B5-B6EC7D0377B9}" = protocol=1 | dir=in | name=icmp - in |
"{76A14A14-10EB-4DFC-BFF3-E9AF564FE204}" = dir=in | app=c:\program files (x86)\connectify\connectifyd.exe |
"{7887A850-331A-4C68-8BDB-7BB3D3FA45FB}" = dir=in | app=c:\program files (x86)\connectify\connectifynetservices.exe |
"{7A51B6E8-C862-4A0D-94B4-C15ACCB16C0A}" = dir=out | app=c:\program files (x86)\connectify\connectifyd.exe |
"{7A51CDF4-6E27-43D6-A649-EAB6D75F2BC6}" = protocol=6 | dir=in | app=c:\program files\solidworks corp\solidworks\photoview\photoview360.exe |
"{7B0D6DFA-C51A-48CD-A663-E735862331FF}" = dir=in | app=c:\program files (x86)\hp\digital imaging\bin\hposid01.exe |
"{7D095C7F-4457-43CE-A112-BF1D0904D0F6}" = dir=in | app=c:\program files (x86)\hp\digital imaging\bin\hpzwiz01.exe |
"{7E3FB66D-8AC2-4B1E-BDCF-EAB38368CD66}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{80CFB30C-B746-47C6-B37B-36AA7566D26C}" = dir=out | app=c:\program files (x86)\connectify\connectifyd.exe |
"{81A16BD6-C866-41FC-9A2A-2D5010838E8A}" = dir=out | app=c:\program files (x86)\connectify\connectifynetservices.exe |
"{84C961D6-BF74-4B20-908D-D738345415EA}" = dir=out | app=c:\program files (x86)\connectify\connectifynetservices.exe |
"{87005754-93BC-48EA-8787-27F30C14CEAE}" = dir=in | app=c:\program files (x86)\hp\digital imaging\bin\hpofxs08.exe |
"{8889C276-7F56-4438-A6ED-97D08FF42E4E}" = dir=out | app=c:\program files (x86)\connectify\connectifyd.exe |
"{8A49A7F2-5609-4E3B-910D-EE08DBCFC576}" = dir=out | app=c:\program files (x86)\connectify\connectifyd.exe |
"{8D321246-DCF2-4F98-B265-CD2EDC5B61EC}" = dir=in | app=c:\program files (x86)\connectify\connectifynetservices.exe |
"{8D668CDF-C03E-45EA-A67F-1D6AF3BE40A4}" = dir=in | app=c:\program files (x86)\connectify\connectifyd.exe |
"{9020AB23-4504-4E45-8E5C-2FCE18AA129E}" = protocol=6 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{904C973D-81D5-4314-8025-CC140C540108}" = dir=out | app=c:\program files (x86)\connectify\connectifynetservices.exe |
"{91004B03-40BE-4FED-92DD-D00C35F9452F}" = dir=out | app=c:\program files (x86)\connectify\connectifyd.exe |
"{915161D5-54E5-40E6-A7B1-037EAA5CEA2B}" = dir=in | app=c:\program files (x86)\connectify\connectifynetservices.exe |
"{9216A342-F336-459C-B3C2-6DEBA0F124F7}" = dir=in | app=c:\program files (x86)\hp\digital imaging\bin\hpqusgh.exe |
"{92E3FF7D-A307-439B-B3C5-0992AE493494}" = protocol=17 | dir=in | app=c:\program files\solidworks corp\solidworks\photoview\photoview360.exe |
"{941707FF-2342-4DA9-96BD-74AA379AE238}" = dir=out | app=c:\program files (x86)\connectify\connectifynetservices.exe |
"{94B34778-471F-4B2F-ABD3-D9094546EE6E}" = dir=out | app=c:\program files (x86)\connectify\connectifyd.exe |
"{9688BAE3-B4F6-4193-A343-C502F6156630}" = dir=out | app=c:\program files (x86)\connectify\connectifyd.exe |
"{9A5A1567-DFCF-451C-9B9D-CBA7EBE9FE9C}" = dir=in | app=c:\program files (x86)\hp\digital imaging\bin\hpqcopy2.exe |
"{9D0BBDE6-D895-478E-BDB0-EB6173AAA9EE}" = dir=in | app=c:\program files (x86)\connectify\connectifynetservices.exe |
"{9E85EE40-34B6-4692-93D9-B895F2A32D36}" = dir=in | app=c:\program files (x86)\hp\digital imaging\bin\hpoews01.exe |
"{9F2D01EE-161B-4272-88FF-E0BFDEE00B5E}" = dir=in | app=c:\program files (x86)\connectify\connectifynetservices.exe |
"{A0575136-D9AD-4896-BC2E-3380D2F2958D}" = dir=in | app=c:\program files (x86)\connectify\connectifyd.exe |
"{A07A1117-28EE-488E-8102-6DA968EB34AA}" = dir=out | svc=sharedaccess | app=%systemroot%\system32\svchost.exe |
"{A3AD4C64-AA95-4082-871A-19284F289C28}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{A5BF0AB3-7F18-48F7-B50B-3A4A2100E015}" = dir=out | app=c:\program files (x86)\connectify\connectifynetservices.exe |
"{A8C300CC-9A7F-4760-AB06-90ECAA2DFEEC}" = dir=out | app=c:\program files (x86)\connectify\connectifynetservices.exe |
"{A90D3FBC-191C-41A3-88B4-E1875551182F}" = dir=in | app=c:\program files (x86)\connectify\connectifynetservices.exe |
"{ACE3DE0C-9EC3-4969-B041-2015789AB48C}" = dir=out | app=c:\program files (x86)\connectify\connectifynetservices.exe |
"{AE3467F1-44EA-45F3-AF49-6D7D0C5F8608}" = dir=in | app=c:\program files (x86)\hp\digital imaging\bin\hpqsudi.exe |
"{AF38DDC8-2E8D-4795-B2B7-998E37EACE8F}" = dir=in | app=c:\program files (x86)\connectify\connectifyd.exe |
"{B012D8A8-2FE7-4174-A588-7271BCDC9A59}" = dir=in | app=c:\program files (x86)\connectify\connectifyd.exe |
"{B47497C3-1D57-4A7D-AB5C-6253E8F9C8DE}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{B67E7822-FABD-4E49-B078-6A171821FB99}" = dir=in | app=c:\program files (x86)\connectify\connectifyd.exe |
"{B71B1DA4-2CE3-424F-BE2B-1ADF5FAF995D}" = dir=out | app=c:\program files (x86)\connectify\connectifyd.exe |
"{B7F11814-55F4-44C5-BBA6-890F5C593E91}" = dir=out | app=c:\program files (x86)\connectify\connectifyd.exe |
"{BC8935E3-5C64-46E9-A5D0-462D19AA6B01}" = dir=in | app=c:\program files (x86)\connectify\connectifynetservices.exe |
"{BD9C6523-1ED2-415C-AC6D-DC3F07192B81}" = protocol=6 | dir=out | app=system |
"{BF0560A4-62C2-4F80-926A-A9D822F6FDAA}" = dir=in | app=c:\program files\hp\hp officejet pro 8600\bin\devicesetup.exe |
"{BF06FA40-FF1F-4E3A-A316-9ED14449543B}" = dir=in | app=c:\program files (x86)\connectify\connectifynetservices.exe |
"{C0F9BD4F-49A2-4A71-965B-CBD195480B12}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{C4CEA24D-8DFF-4D36-8B68-2FFE52C53AC6}" = dir=in | app=c:\program files (x86)\connectify\connectifynetservices.exe |
"{C9DFCE8C-D773-4A5A-AB1C-2152DAB760B0}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{CBD475E8-95E7-44C2-89EF-D781DE36C80C}" = dir=out | app=c:\program files (x86)\connectify\connectifyd.exe |
"{CBE5A0DC-6DBE-4F7A-87BF-B2C34CB37320}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{CE630564-F9CC-4116-8962-EDA64BEA64DB}" = dir=in | app=c:\program files (x86)\connectify\connectifyd.exe |
"{CF9D2543-1D63-439A-B27C-E3102D64C4A6}" = dir=in | app=c:\program files (x86)\hp\digital imaging\bin\hpiscnapp.exe |
"{D03762D1-1BF8-48ED-BB0F-09A4EE091C4C}" = dir=out | app=c:\windows\system32\svchost.exe |
"{D4BAFCCF-8EF2-4E76-8F87-616C0D9F67F2}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 |
"{D665D7A6-9ACB-45F5-97FE-FCC3EA82C961}" = protocol=17 | dir=in | app=c:\program files\solidworks corp\solidworks\photoview\photoview360_cl.exe |
"{D74A34A5-832A-4881-8B03-5FCE671BB24A}" = dir=in | app=c:\program files (x86)\hp\hp software update\hpwucli.exe |
"{DAE488A3-7C69-4A1C-81EC-8DE4268A5382}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{DB9BDFBB-05BF-46DD-A063-3404142B795C}" = dir=in | app=c:\program files (x86)\common files\hp\digital imaging\bin\hpqphotocrm.exe |
"{DBFE6065-A79E-4234-ABA4-6C2E027B9A4C}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{DDD8E38C-AE24-48CB-B781-6773533356BC}" = dir=out | app=c:\program files (x86)\connectify\connectifynetservices.exe |
"{DF6B87F5-2752-4C56-A4E9-7B2A4C7AB03B}" = dir=out | app=c:\program files (x86)\connectify\connectifynetservices.exe |
"{E76005C5-7E8F-474A-92EC-BA75C1B73C4F}" = dir=in | app=c:\program files (x86)\connectify\connectifynetservices.exe |
"{E8E5A34E-455F-4BDC-8BA8-3E56C2313BD1}" = dir=out | app=c:\program files (x86)\connectify\connectifyd.exe |
"{ED4545F9-31E6-4CD1-919B-089883B57520}" = protocol=6 | dir=in | app=c:\program files\samsung\allshare framework dms\1.3.06\allshareframeworkdms.exe |
"{EDD5F7FD-5845-4642-B24B-9AF091E0170F}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{F036251E-2893-4683-B50F-968CD45563DC}" = dir=out | app=c:\program files (x86)\connectify\connectifyd.exe |
"{F10B96C0-F004-48FC-83AC-3CE6120887AF}" = dir=in | app=c:\program files (x86)\hp\digital imaging\bin\hpqkygrp.exe |
"{F124C8CE-2CC4-441C-B11D-C27E5BB2F441}" = dir=in | app=c:\program files (x86)\hp\digital imaging\bin\hpqgplgtupl.exe |
"{F2BB27A7-705A-4D1B-A222-44602FF94B6E}" = dir=in | app=c:\program files (x86)\connectify\connectifynetservices.exe |
"{F60BE3FF-4C5C-44B8-BE3F-A11EC556D305}" = protocol=6 | dir=in | app=c:\program files (x86)\opera\opera.exe |
"{F6CAF0A8-55B8-4B8E-B37D-D0AF29250CE1}" = dir=out | app=c:\program files (x86)\connectify\connectifyd.exe |
"{F7F153DC-64BA-42D3-91CF-131D91A5595D}" = dir=out | app=c:\program files (x86)\connectify\connectifyd.exe |
"{FB9FD8CD-20B2-4AE3-AD09-C0EA4B300A5A}" = dir=out | app=c:\program files (x86)\connectify\connectifyd.exe |
"{FCFADB33-19C7-4D91-95BF-2FA9ABD2A365}" = protocol=6 | dir=in | app=c:\program files (x86)\lenovo\system update\uncserver.exe |
"{FFA42FB7-066F-4CDD-BCDF-58E017752AC0}" = dir=out | app=c:\program files (x86)\connectify\connectifynetservices.exe |
"TCP Query User{0F2F4A07-4175-4796-9690-40D6451FC8B5}C:\users\jakub\appdata\local\akamai\netsession_win.exe" = protocol=6 | dir=in | app=c:\users\jakub\appdata\local\akamai\netsession_win.exe |
"TCP Query User{194D8173-1B5B-4950-A1A0-735CEA5D0C5A}C:\users\jakub\appdata\local\temp\rar$exa0.707\adam2app.exe" = protocol=6 | dir=in | app=c:\users\jakub\appdata\local\temp\rar$exa0.707\adam2app.exe |
"TCP Query User{1EAC48B6-1BE2-462D-8F01-D9EFA6B15D53}C:\totalcmd\totalcmd64.exe" = protocol=6 | dir=in | app=c:\totalcmd\totalcmd64.exe |
"TCP Query User{322A615D-6E96-4E06-9549-4AA3C289F068}C:\program files (x86)\java\jre7\bin\javaw.exe" = protocol=6 | dir=in | app=c:\program files (x86)\java\jre7\bin\javaw.exe |
"TCP Query User{4018FA71-7471-498F-BCF3-AB88D2956452}C:\users\jakub\desktop\routttttr\tftpd32.exe" = protocol=6 | dir=in | app=c:\users\jakub\desktop\routttttr\tftpd32.exe |
"TCP Query User{52A376AF-C91D-4CFC-988A-F9C10D9A66FD}C:\program files (x86)\java\jre7\launch4j-tmp\frd.exe" = protocol=6 | dir=in | app=c:\program files (x86)\java\jre7\launch4j-tmp\frd.exe |
"TCP Query User{56EC2FDD-CC01-4B56-8E88-D62D4A5E0D81}C:\program files (x86)\sendmails\sa\spamassassin.exe" = protocol=6 | dir=in | app=c:\program files (x86)\sendmails\sa\spamassassin.exe |
"TCP Query User{5AC12995-81CE-495B-B2A7-9C39261DFB40}C:\users\jakub\appdata\local\akamai\netsession_win.exe" = protocol=6 | dir=in | app=c:\users\jakub\appdata\local\akamai\netsession_win.exe |
"TCP Query User{6E26F607-451A-48DF-9CC3-7E4558406389}C:\program files\progdvb\progdvbnet.exe" = protocol=6 | dir=in | app=c:\program files\progdvb\progdvbnet.exe |
"TCP Query User{A2ED22EC-9B07-4A4A-AF48-69546D9E0910}C:\windows\syswow64\javaw.exe" = protocol=6 | dir=in | app=c:\windows\syswow64\javaw.exe |
"TCP Query User{ADAE0AFA-10B4-4652-9FD0-82AC87B609B4}C:\program files (x86)\connectify\connectify.exe" = protocol=6 | dir=in | app=c:\program files (x86)\connectify\connectify.exe |
"TCP Query User{B36FE9DF-F09F-4795-BA4D-76697B78A32C}C:\program files\progdvb\progdvbnet.exe" = protocol=6 | dir=in | app=c:\program files\progdvb\progdvbnet.exe |
"TCP Query User{C23F9FF8-EC35-4AB3-AAE8-43DBAE13ABAF}C:\users\jakub\desktop\routttttr\tftpd32.exe" = protocol=6 | dir=in | app=c:\users\jakub\desktop\routttttr\tftpd32.exe |
"TCP Query User{DE1ACA7B-CAC0-4358-BC7E-CA2E0A91BA6F}C:\program files (x86)\java\jre7\launch4j-tmp\frd.exe" = protocol=6 | dir=in | app=c:\program files (x86)\java\jre7\launch4j-tmp\frd.exe |
"UDP Query User{02D58736-1D08-4C62-B28E-71D02E852946}C:\users\jakub\appdata\local\akamai\netsession_win.exe" = protocol=17 | dir=in | app=c:\users\jakub\appdata\local\akamai\netsession_win.exe |
"UDP Query User{0EC56146-1755-4DD8-99BF-EC31C58FB8C3}C:\program files (x86)\java\jre7\launch4j-tmp\frd.exe" = protocol=17 | dir=in | app=c:\program files (x86)\java\jre7\launch4j-tmp\frd.exe |
"UDP Query User{23637BC7-D3BC-44BB-B16C-9C1519FA1956}C:\program files (x86)\java\jre7\bin\javaw.exe" = protocol=17 | dir=in | app=c:\program files (x86)\java\jre7\bin\javaw.exe |
"UDP Query User{3277A70C-F631-45D1-9E9E-961DBA3AE4C8}C:\users\jakub\desktop\routttttr\tftpd32.exe" = protocol=17 | dir=in | app=c:\users\jakub\desktop\routttttr\tftpd32.exe |
"UDP Query User{36117D7C-BEBE-4959-A07E-E592F1938FEE}C:\users\jakub\desktop\routttttr\tftpd32.exe" = protocol=17 | dir=in | app=c:\users\jakub\desktop\routttttr\tftpd32.exe |
"UDP Query User{5C08CB92-5B03-49D8-92D9-CECD48E291AF}C:\users\jakub\appdata\local\akamai\netsession_win.exe" = protocol=17 | dir=in | app=c:\users\jakub\appdata\local\akamai\netsession_win.exe |
"UDP Query User{78D1C84B-3BD0-4DF8-A932-7AA6C03B1D7E}C:\users\jakub\appdata\local\temp\rar$exa0.707\adam2app.exe" = protocol=17 | dir=in | app=c:\users\jakub\appdata\local\temp\rar$exa0.707\adam2app.exe |
"UDP Query User{939A7B30-7453-411A-9637-AE3E5124B315}C:\program files (x86)\sendmails\sa\spamassassin.exe" = protocol=17 | dir=in | app=c:\program files (x86)\sendmails\sa\spamassassin.exe |
"UDP Query User{989EEA70-2D6C-4D45-972F-44A2F4C876CF}C:\windows\syswow64\javaw.exe" = protocol=17 | dir=in | app=c:\windows\syswow64\javaw.exe |
"UDP Query User{AA562972-6E52-495A-8F62-1795C6F7E9B6}C:\totalcmd\totalcmd64.exe" = protocol=17 | dir=in | app=c:\totalcmd\totalcmd64.exe |
"UDP Query User{B19F74DC-C58C-4281-94C6-3582A1094EF4}C:\program files\progdvb\progdvbnet.exe" = protocol=17 | dir=in | app=c:\program files\progdvb\progdvbnet.exe |
"UDP Query User{BA9EB5AB-618B-47F6-89AF-68DBFBFB2091}C:\program files (x86)\connectify\connectify.exe" = protocol=17 | dir=in | app=c:\program files (x86)\connectify\connectify.exe |
"UDP Query User{C9B58560-22BB-4AE7-BC70-AC618EDC1099}C:\program files\progdvb\progdvbnet.exe" = protocol=17 | dir=in | app=c:\program files\progdvb\progdvbnet.exe |
"UDP Query User{E5628E9B-3A40-462E-99BF-7339F136233E}C:\program files (x86)\java\jre7\launch4j-tmp\frd.exe" = protocol=17 | dir=in | app=c:\program files (x86)\java\jre7\launch4j-tmp\frd.exe |
========== HKEY_LOCAL_MACHINE Uninstall List ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{071c9b48-7c32-4621-a0ac-3f809523288f}" = Microsoft Visual C++ 2005 Redistributable (x64)
"{19D00409-7664-446C-01A9-D5B36EB516BE}" = AutoCAD 2013 VBA Enabler
"{1D8E6291-B0D5-35EC-8441-6616F567A0F7}" = Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219
"{266597A9-1764-0000-0100-DCBF2B69166B}" = Autodesk Vault Basic 2013 (Client) English Language Pack
"{28EF7372-9087-4AC3-9B9F-D9751FCDF830}" = Intel(R) Wireless Display
"{37EC048A-81A2-452A-8D1F-3BE2018E767D}" = Intel(R) PROSet/Wireless for Bluetooth(R) + High Speed
"{3DCF00F5-04A5-4543-A088-705480811203}_is1" = Compiled Driver Disk (HTC) 1.0
"{46A84694-59EC-48F0-964C-7E76E9F8A2ED}" = ThinkVantage Active Protection System
"{4713fdb0-2117-4d26-9e12-bbb11350a47f}" = Microsoft Visual C++ 2005 Redistributable (x64)
"{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148
"{4BE91685-1632-47FC-B563-A8A542C6664C}" = Autodesk Network License Manager
"{4C66F076-D3AB-49C8-85D4-BAA6D82FCAE2}" = SolidWorks 2012 x64 Edition SP0
"{542DDF04-9F91-4F36-B2F4-2638B788A4C8}" = Microsoft Visual Studio 2005 Remote Debugger Light (x64) - ENU
"{5783F2D7-0111-0409-0110-0060B0CE6BBA}" = Autodesk CAD Manager Tools
"{5783F2D7-B001-0000-0102-0060B0CE6BBA}" = AutoCAD 2013 – Čeština (Czech)
"{5783F2D7-B001-0405-1102-0060B0CE6BBA}" = AutoCAD 2013 Language Pack – Čeština (Czech)
"{5783F2D7-B001-0405-2102-0060B0CE6BBA}" = AutoCAD 2013 – Čeština (Czech)
"{5783F2D7-B005-0000-0102-0060B0CE6BBA}" = AutoCAD Mechanical 2013 - Čeština (Czech)
"{5783F2D7-B005-0405-1102-0060B0CE6BBA}" = AutoCAD Mechanical 2013 Language Pack - Čeština (Czech)
"{5783F2D7-B005-0405-2102-0060B0CE6BBA}" = AutoCAD Mechanical 2013 - Čeština (Czech)
"{5783F2D7-B028-0409-0100-0060B0CE6BBA}" = DWG TrueView 2013
"{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161
"{6199B534-A1B6-46ED-873B-97B0ECF8F81E}" = Intel® Trusted Connect Service Client
"{65DDB7D8-5E04-45DF-B60E-89557ED37ED2}" = SolidWorks Explorer 2012 SP0 x64 Edition
"{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}" = Microsoft Visual C++ 2005 Redistributable (x64)
"{790E02A1-145A-3843-8C13-A4F41C9B48B7}" = Microsoft .NET Framework 4 Client Profile CSY Language Pack
"{792A9A32-718A-40D1-9867-A903F76AE2F8}" = Eco Materials Adviser for Autodesk Inventor 2013
"{7F4DD591-1764-0001-0000-7107D70F3DB4}" = Autodesk Inventor 2013
"{7F4DD591-1764-0001-1029-7107D70F3DB4}" = Autodesk Inventor 2013 Jazykový balíček - čeština (Czech)
"{7F4DD591-1764-0001-1033-7107D70F3DB4}" = Autodesk Inventor 2013 English Language Pack
"{7F4DD591-1764-0004-0000-7107D70F3DB4}" = Autodesk Inventor View 2013
"{7F4DD591-1764-0004-1033-7107D70F3DB4}" = Autodesk Inventor View 2013 English Language Pack
"{8220EEFE-38CD-377E-8595-13398D740ACE}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17
"{88C6A6D9-324C-46E8-BA87-563D14021442}_is1" = ThinkVantage Communications Utility
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8E34682C-8118-31F1-BC4C-98CD9675E1C2}" = Microsoft .NET Framework 4 Extended
"{90140000-0015-0405-1000-0000000FF1CE}" = Microsoft Office Access MUI (Czech) 2010
"{90140000-0015-0405-1000-0000000FF1CE}_Office14.PROPLUSR_{9F412D54-AC04-46F9-AFE7-FE15DC0147A0}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-0016-0405-1000-0000000FF1CE}" = Microsoft Office Excel MUI (Czech) 2010
"{90140000-0016-0405-1000-0000000FF1CE}_Office14.PROPLUSR_{9F412D54-AC04-46F9-AFE7-FE15DC0147A0}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-0018-0405-1000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (Czech) 2010
"{90140000-0018-0405-1000-0000000FF1CE}_Office14.PROPLUSR_{9F412D54-AC04-46F9-AFE7-FE15DC0147A0}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-0019-0405-1000-0000000FF1CE}" = Microsoft Office Publisher MUI (Czech) 2010
"{90140000-0019-0405-1000-0000000FF1CE}_Office14.PROPLUSR_{9F412D54-AC04-46F9-AFE7-FE15DC0147A0}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001A-0405-1000-0000000FF1CE}" = Microsoft Office Outlook MUI (Czech) 2010
"{90140000-001A-0405-1000-0000000FF1CE}_Office14.PROPLUSR_{9F412D54-AC04-46F9-AFE7-FE15DC0147A0}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001B-0405-1000-0000000FF1CE}" = Microsoft Office Word MUI (Czech) 2010
"{90140000-001B-0405-1000-0000000FF1CE}_Office14.PROPLUSR_{9F412D54-AC04-46F9-AFE7-FE15DC0147A0}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001F-0405-1000-0000000FF1CE}" = Microsoft Office Proof (Czech) 2010
"{90140000-001F-0405-1000-0000000FF1CE}_Office14.PROPLUSR_{AEC2C00D-1E7E-45E3-9058-81EA2446B3CD}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001F-0407-1000-0000000FF1CE}" = Microsoft Office Proof (German) 2010
"{90140000-001F-0407-1000-0000000FF1CE}_Office14.PROPLUSR_{70A3169E-288F-454F-A08D-20DF66639B50}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001F-0409-1000-0000000FF1CE}" = Microsoft Office Proof (English) 2010
"{90140000-001F-0409-1000-0000000FF1CE}_Office14.PROPLUSR_{0242505C-4E90-407F-9299-B5B275F50D86}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001F-041B-1000-0000000FF1CE}" = Microsoft Office Proof (Slovak) 2010
"{90140000-001F-041B-1000-0000000FF1CE}_Office14.PROPLUSR_{4B806706-B352-42E8-8C8B-5CEBCEDBC4E0}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-002C-0405-1000-0000000FF1CE}" = Microsoft Office Proofing (Czech) 2010
"{90140000-002C-0405-1000-0000000FF1CE}_Office14.PROPLUSR_{715203B3-AD16-41A4-B13C-E1065EAB8963}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-0043-0000-1000-0000000FF1CE}" = Microsoft Office Office 32-bit Components 2010
"{90140000-0043-0000-1000-0000000FF1CE}_Office14.PROPLUSR_{E8B6D35B-0B6F-4DCE-9493-859BF3809A7F}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-0043-0405-1000-0000000FF1CE}" = Microsoft Office Shared 32-bit MUI (Czech) 2010
"{90140000-0043-0405-1000-0000000FF1CE}_Office14.PROPLUSR_{15D45352-C443-406A-9DF2-EF4A750A40CF}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-0044-0405-1000-0000000FF1CE}" = Microsoft Office InfoPath MUI (Czech) 2010
"{90140000-0044-0405-1000-0000000FF1CE}_Office14.PROPLUSR_{9F412D54-AC04-46F9-AFE7-FE15DC0147A0}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-006E-0405-1000-0000000FF1CE}" = Microsoft Office Shared MUI (Czech) 2010
"{90140000-006E-0405-1000-0000000FF1CE}_Office14.PROPLUSR_{4B8654FE-410D-462C-9B3C-09D031BF4534}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-00A1-0405-1000-0000000FF1CE}" = Microsoft Office OneNote MUI (Czech) 2010
"{90140000-00A1-0405-1000-0000000FF1CE}_Office14.PROPLUSR_{9F412D54-AC04-46F9-AFE7-FE15DC0147A0}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-00BA-0405-1000-0000000FF1CE}" = Microsoft Office Groove MUI (Czech) 2010
"{90140000-00BA-0405-1000-0000000FF1CE}_Office14.PROPLUSR_{9F412D54-AC04-46F9-AFE7-FE15DC0147A0}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{91140000-0011-0000-1000-0000000FF1CE}" = Microsoft Office Professional Plus 2010
"{91140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUSR_{7BC9B5EB-125A-4E9B-97E1-8D85B5E960B8}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{9ACF3FDB-C8E6-444C-8C64-13A221F7BFFD}" = Microsoft SQL Server Native Client
"{A324DC11-FF02-3CE8-9D6F-67EBC006D970}" = Microsoft .NET Framework 4 Extended CSY Language Pack
"{A6B3A293-6427-4266-AE42-2BDC14C7AC2C}" = SolidWorks eDrawings 2012 x64 Edition SP0
"{ABE4638D-D208-4061-9F26-E3E11E3A1E0C}" = Lenovo Patch Utility 64 bit
"{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}" = Microsoft Visual C++ 2005 Redistributable (x64)
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel" = Ovládací panel NVIDIA 310.90
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver" = NVIDIA Ovladače grafiky 310.90
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Optimus" = NVIDIA Optimus 1.11.3
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX" = NVIDIA Systémový software PhysX 9.12.1031
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update" = Aktualizace NVIDIA 1.11.3
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer" = NVIDIA Install Application
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NVIDIA.Update" = NVIDIA Update Components
"{B46DECD1-1764-4EF1-0000-22D71E81877C}" = Autodesk Inventor Content Center Libraries 2013 (Desktop Content)
"{B56A6C03-5C57-4035-A966-AEC309B4C019}" = SolidWorks eDrawings 2013 x64
"{B636C9B9-A3F2-4DCE-ADCC-72E095018385}" = Microsoft SQL Server VSS Writer
"{BDDB58A5-F98E-4D3C-B554-4A4D31C6D405}_is1" = Phone Drivers Downloader 1.1
"{C1C5FB06-7CBB-4013-95BC-C86EFA6D0DA5}" = Základní software zařízení HP Officejet Pro 8600
"{C5BB9380-D729-410A-A440-061EBCADCCB9}" = Fingerprint Reader
"{C78D3032-9DFD-41D0-9DE9-58EAE750CBA4}" = Microsoft Security Client
"{CCD4B0FC-DB6D-4741-982E-031627F22691}" = SolidWorks 2012 x64 Czech Resources
"{CF526A26-1764-0000-0000-02E95019B628}" = Autodesk Vault Basic 2013 (Client)
"{D25FF5C1-1764-469A-9794-69309387C193}" = Autodesk Inventor 2013 Quick Uninstaller
"{DD00F699-6861-4DCF-A19F-8CF61E5E28ED}" = Lenovo Solution Center
"{E97F409F-9E1C-42A0-B72D-765A78DF3696}" = Software Intel® PROSet/Wireless WiFi
"{EB9400D5-6289-4F9F-9B79-B3528101C0C7}" = SolidWorks Flow Simulation 2012 SP0 x64 Edition
"{EE5F74BC-5CD5-4EF2-86BA-81E6CF46A18F}" = Autodesk Sync
"{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}" = Microsoft .NET Framework 4 Client Profile
"{FF21C3E6-97FD-474F-9518-8DCBE94C2854}" = 64 Bit HP CIO Components Installer
"AutoCAD 2013 – Čeština (Czech)" = AutoCAD 2013 – Čeština (Czech)
"AutoCAD Mechanical 2013 - Čeština (Czech)" = AutoCAD Mechanical 2013 - Čeština (Czech)
"Autodesk Inventor 2013" = Autodesk Inventor 2013 English
"Autodesk Inventor View 2013" = Autodesk Inventor View 2013 English
"Broadcom 802.11 Network Adapter" = Broadcom 802.11 Network Adapter
"CCleaner" = CCleaner
"CNXT_AUDIO_HDA" = Conexant HD Audio
"Connectify" = Connectify Hotspot
"DWG TrueView 2013" = DWG TrueView 2013
"Jazykový balíček Autodesk Inventor 2013 - čeština (Czech)" = Autodesk Inventor 2013 Jazykový balíček - čeština (Czech)
"LenovoAutoScrollUtility" = Lenovo Auto Scroll Utility
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Microsoft .NET Framework 4 Client Profile CSY Language Pack" = Microsoft .NET Framework 4 Client Profile CSY Language Pack
"Microsoft .NET Framework 4 Extended" = Microsoft .NET Framework 4 Extended
"Microsoft .NET Framework 4 Extended CSY Language Pack" = Microsoft .NET Framework 4 Extended CSY Language Pack
"Microsoft Security Client" = Microsoft Security Essentials
"Microsoft Visual Studio 2005 Remote Debugger Light (x64) - ENU" = Microsoft Visual Studio 2005 Remote Debugger Light (x64) - ENU
"Office14.PROPLUSR" = Microsoft Office Professional Plus 2010
"OnScreenDisplay" = On Screen Display
"Power Management Driver" = Lenovo Power Management Driver
"ProgDVB" = ProgDVB x64
"ProInst" = Intel PROSet Wireless
"SynTPDeinstKey" = ThinkPad UltraNav Driver
"Totalcmd64" = Total Commander 64-bit (Remove or Repair)
"WinRAR archiver" = WinRAR 4.20 (64-bit)
"ZonerPhotoStudio14_CZ_is1" = Zoner Photo Studio 14
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{08D2E121-7F6A-43EB-97FD-629B44903403}" = Microsoft_VC90_CRT_x86
"{117EBEEB-5DB0-43C8-9FD6-DD583DB152DD}" = Autodesk Material Library 2013
"{14DC0059-00F1-4F62-BD1A-AB23CD51A95E}" = Adobe AIR
"{153DB567-6FF3-49AD-AC4F-86F8A3CCFDFB}" = Autodesk Design Review 2013
"{196467F1-C11F-4F76-858B-5812ADC83B94}" = MSXML 4.0 SP3 Parser
"{1A834332-A9EE-440C-9505-2D07F445F05A}" = MOBILedit! Support Libraries
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{240C3DDD-C5E9-4029-9DF7-95650D040CF2}" = Intel(R) USB 3.0 eXtensible Host Controller Driver
"{25C64847-B900-48AD-A164-1B4F9B774650}" = Lenovo System Update
"{26A24AE4-039D-4CA4-87B4-2F83217007FF}" = Java 7 Update 7
"{2750B389-A2D2-4953-99CA-27C1F2A8E6FD}" = Microsoft SQL Server 2005 Tools Express Edition
"{2949F05A-0840-45E9-81AA-DFF630E2679E}" = Freeware PDF Unlocker
"{2A3A4BD6-6CE0-4E2A-80D2-1D0FF6ACBFBA}" = LG United Mobile Driver
"{2AFFFDD7-ED85-4A90-8C52-5DA9EBDC9B8F}" = Microsoft SQL Server 2005 Express Edition (AUTODESKVAULT)
"{31A559C1-9E4D-423B-9DD3-34A6C5398752}" = HTC BMP USB Driver
"{328C0E1C-D5AB-47D2-8580-1F4832A4ADE2}" = Math3D
"{3EE9BCAE-E9A9-45E5-9B1C-83A4D357E05C}" = eReg
"{415FA9AD-DA10-4ABE-97B6-5051D4795C90}" = HP FWUpdateEDO2
"{47DA7D2E-408C-4050-B75F-95F6D2E6A332}_is1" = MOBILedit! ver. 6.9.0.2841
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{51C7AD07-C3F6-4635-8E8A-231306D810FE}" = Cisco LEAP Module
"{52291FC0-33D3-4A18-9587-5115225545D8}_is1" = Google Chrome Backup 1.7.0.114
"{53F5C3EE-05ED-4830-994B-50B2F0D50FCE}" = Microsoft SQL Server Setup Support Files (English)
"{5545EEE1-FA36-4F76-B6BE-5696E7F4E2D6}" = VBA (2627.01)
"{606E12B9-641F-4644-A22A-FF38AE980AFD}" = Autodesk Material Library Base Resolution Image Library 2013
"{612C34C7-5E90-47D8-9B5C-0F717DD82726}" = swMSM
"{62F029AB-85F2-0000-866A-9FC0DD99DDBC}" = Autodesk Content Service
"{62F029AB-85F2-0001-866A-9FC0DD99DDBC}" = Autodesk Content Service Language Pack
"{64BF0187-F3D2-498B-99EA-163AF9AE6EC9}" = Cisco EAP-FAST Module
"{65153EA5-8B6E-43B6-857B-C6E4FC25798A}" = Intel(R) Management Engine Components
"{6D6664A9-3342-4948-9B7E-034EFE366F0F}" = HTC Driver Installer
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{74EB3499-8B95-4B5C-96EB-7B342F3FD0C6}" = Adobe Photoshop CS6
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{85DF2EED-08BC-46FB-90DA-28B0D0A8E8A8}" = HP Update
"{8833FFB6-5B0C-4764-81AA-06DFEED9A476}" = Realtek Ethernet Controller Driver
"{8B922CF8-8A6C-41CE-A858-F1755D7F5D29}" = NVIDIA PhysX
"{8E537894-A559-4D60-B3CB-F4485E3D24E3}" = ThinkVantage Access Connections
"{90120000-00A4-0409-0000-0000000FF1CE}" = Microsoft Office 2003 Web Components
"{92D58719-BBC1-4CC3-A08B-56C9E884CC2C}" = Microsoft_VC80_CRT_x86
"{93F34C5C-ACAA-48F3-9B26-70359A117F12}" = Intel(R) WiDi
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{9D3D2C60-A55F-4fed-B2B9-17311226DF01}" = ThinkPad Wireless LAN Adapter Software
"{A57025CC-5F2E-4D01-B387-06DB10500D43}" = Nokia Connectivity Cable Driver
"{A6C48A9F-694A-4234-B3AA-62590B668927}" = Intel(R) Manageability Engine Firmware Recovery Agent
"{A78800AF-1779-4AE8-8EBE-16E1BE727C71}" = Integrated Camera Driver Installer Package Ver.1.2.1.18
"{AC76BA86-7AD7-1029-7B44-AA1000000001}" = Adobe Reader X (10.1.5) - Czech
"{AD32F5E9-6BDD-480A-8B7B-95571D04691C}" = Lenovo Patch Utility
"{BFEAAE77-BD7F-4534-B286-9C5CB4697EB1}" = PDF Settings CS6
"{C1594429-8296-4652-BF54-9DBE4932A44C}" = Realtek PCIE Card Reader
"{CCF298AF-9CE1-4B26-B251-486E98A34789}" = Windows 7 USB/DVD Download Tool
"{D481EA96-2313-4A7C-98EE-710D1AF884AC}" = Microsoft Visual Studio 2005 Tools for Applications - ENU
"{DAC01CEE-5BAE-42D5-81FC-B687E84E8405}" = Power Manager
"{DB6AB705-C9BD-40E3-8929-2EA57F36A4FF}_is1" = ConvertXtoDVD 4.0.11.326
"{E3E71D07-CD27-46CB-8448-16D4FB29AA13}" = Microsoft WSE 3.0 Runtime
"{EA17F4FC-FDBF-4CF8-A529-2D983132D053}" = Skype™ 6.0
"{EA9640BE-414E-4195-B53B-7905BF1A5A09}" = Mobile Broadband Drivers
"{ED5776D5-59B4-46B7-AF81-5F2D94D7C640}" = Cisco PEAP Module
"{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
"{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}" = Intel(R) Processor Graphics
"{F8A9085D-4C7A-41a9-8A77-C8998A96C421}" = Intel(R) Control Center
"{FCB3772C-B7D0-4933-B1A9-3707EBACC573}" = Intel(R) OpenCL CPU Runtime
"abgx360" = abgx360 v1.0.6
"Adobe AIR" = Adobe AIR
"Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin
"Adobe Shockwave Player" = Adobe Shockwave Player 11.6
"Adolix Split and Merge PDF_is1" = Adolix Split and Merge PDF v1.3
"Ashampoo Burning Studio 6 FREE_is1" = Ashampoo Burning Studio 6 FREE v.6.81
"Autodesk Content Service" = Autodesk Content Service
"Autodesk Design Review 2013" = Autodesk Design Review 2013
"Autodesk Vault Basic 2013 (Client)" = Autodesk Vault Basic 2013 (Client)
"DAEMON Tools Lite" = DAEMON Tools Lite
"FM JPG To PDF Converter Free_is1" = FM JPG To PDF Converter Free 1.1
"FormatFactory" = FormatFactory 3.00
"ImgBurn" = ImgBurn
"KLiteCodecPack_is1" = K-Lite Codec Pack 9.3.0 (Basic)
"Microsoft SQL Server 2005" = Microsoft SQL Server 2005
"Microsoft Visual Studio 2005 Tools for Applications - ENU" = Microsoft Visual Studio 2005 Tools for Applications - ENU
"MozBackup" = MozBackup 1.5.1
"Mozilla Firefox 15.0.1 (x86 cs)" = Mozilla Firefox 15.0.1 (x86 cs)
"Mozilla Thunderbird 17.0.2 (x86 cs)" = Mozilla Thunderbird 17.0.2 (x86 cs)
"MozillaMaintenanceService" = Mozilla Maintenance Service
"O2CZ" = O2
"Opera 12.12.1707" = Opera 12.12
"ProFact 3.0_is1" = ProFact 3.0
"PSPad editor_is1" = PSPad editor
"SendMails_is1" = SendMails - hromadné zasílání zpráv
"SolidWorks Installation Manager 20120-40000-1100-100" = SolidWorks 2012 x64 Edition SP0
"SWILenovoDrvInstaller" = Sierra Wireless QMI Lenovo Driver Package
"T-Mobile Communication Centre" = Web'n'walk Manager
"TVCONDrv" = GIGABYTE U8300 BDA Device
"VLC media player" = VLC media player 2.0.3
"WebDataLoader_is1" = WebDataLoader - stahování dat z internetu
========== HKEY_USERS Uninstall List ==========
[HKEY_USERS\S-1-5-21-3752770136-2494076584-3171830822-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"7f4182272b52fd8f" = CZShare Manager
"Akamai" = Akamai NetSession Interface
"Google Chrome" = Google Chrome
========== Last 20 Event Log Errors ==========
[ Application Events ]
Error - 16.1.2013 15:57:46 | Computer Name = Jakub-NTB | Source = Microsoft-Windows-EapHost | ID = 2002
Description = Přeskočení: Ověření Eap method DLL path se nezdařilo. Chyba: ID typu=21,
ID autora=8086, ID dodavatele=0, typ dodavatele=0
Error - 16.1.2013 15:57:46 | Computer Name = Jakub-NTB | Source = Microsoft-Windows-EapHost | ID = 2002
Description = Přeskočení: Ověření Eap method DLL path se nezdařilo. Chyba: ID typu=23,
ID autora=8086, ID dodavatele=0, typ dodavatele=0
Error - 16.1.2013 15:57:46 | Computer Name = Jakub-NTB | Source = Microsoft-Windows-EapHost | ID = 2002
Description = Přeskočení: Ověření Eap method DLL path se nezdařilo. Chyba: ID typu=17,
ID autora=9, ID dodavatele=0, typ dodavatele=0
Error - 16.1.2013 15:57:46 | Computer Name = Jakub-NTB | Source = Microsoft-Windows-EapHost | ID = 2002
Description = Přeskočení: Ověření Eap method DLL path se nezdařilo. Chyba: ID typu=25,
ID autora=9, ID dodavatele=0, typ dodavatele=0
Error - 16.1.2013 15:57:46 | Computer Name = Jakub-NTB | Source = Microsoft-Windows-EapHost | ID = 2002
Description = Přeskočení: Ověření Eap method DLL path se nezdařilo. Chyba: ID typu=43,
ID autora=9, ID dodavatele=0, typ dodavatele=0
Error - 17.1.2013 0:05:50 | Computer Name = Jakub-NTB | Source = Application Error | ID = 1000
Description = Název chybující aplikace: AcSvc.exe, verze: 5.9.7.95, časové razítko:
0x50487c7e Název chybujícího modulu: ntdll.dll, verze: 6.1.7601.17725, časové razítko:
0x4ec49b8f Kód výjimky: 0xc0000005 Posun chyby: 0x000326d1 ID chybujícího procesu:
0x156c Čas spuštění chybující aplikace: 0x01cdf46384a19388 Cesta k chybující aplikaci:
C:\Program Files (x86)\Lenovo\Access Connections\AcSvc.exe Cesta k chybujícímu modulu:
C:\Windows\SysWOW64\ntdll.dll ID zprávy: 2d8edb23-605b-11e2-8359-685d4342d898
Error - 17.1.2013 4:31:50 | Computer Name = Jakub-NTB | Source = Application Error | ID = 1000
Error - 17.1.2013 5:31:15 | Computer Name = Jakub-NTB | Source = Application Error
| ID = 1000
Description = Název chybující aplikace: AcSvc.exe, verze: 5.9.7.95, časové razítko: 0x50487c7e
Název chybujícího modulu: ntdll.dll, verze: 6.1.7601.17725, časové razítko: 0x4ec49b8f
Kód výjimky: 0xc0000005
Posun chyby: 0x000326d1
ID chybujícího procesu: 0x838
Čas spuštění chybující aplikace: 0x01cdf4954fa9d35e
Cesta k chybující aplikaci: C:\Program Files (x86)\Lenovo\Access Connections\AcSvc.exe
Cesta k chybujícímu modulu: C:\Windows\SysWOW64\ntdll.dll
ID zprávy: a3790bf8-6088-11e2-9da0-685d4342d898
Error - 17.1.2013 7:55:41 | Computer Name = Jakub-NTB | Source = Application Error
| ID = 1000
Description = Název chybující aplikace: AcSvc.exe, verze: 5.9.7.95, časové razítko: 0x50487c7e
Název chybujícího modulu: ntdll.dll, verze: 6.1.7601.17725, časové razítko: 0x4ec49b8f
Kód výjimky: 0xc0000005
Posun chyby: 0x000326d1
ID chybujícího procesu: 0x14f8
Čas spuštění chybující aplikace: 0x01cdf4a4e24884fc
Cesta k chybující aplikaci: C:\Program Files (x86)\Lenovo\Access Connections\AcSvc.exe
Cesta k chybujícímu modulu: C:\Windows\SysWOW64\ntdll.dll
ID zprávy: d0a3976a-609c-11e2-93e8-b888e330e093
Error - 17.1.2013 10:17:06 | Computer Name = Jakub-NTB | Source = Application Error
| ID = 1000
Description = Název chybující aplikace: AcSvc.exe, verze: 5.9.7.95, časové razítko: 0x50487c7e
Název chybujícího modulu: ntdll.dll, verze: 6.1.7601.17725, časové razítko: 0x4ec49b8f
Kód výjimky: 0xc0000005
Posun chyby: 0x000326d1
ID chybujícího procesu: 0x1350
Čas spuštění chybující aplikace: 0x01cdf4b91c039757
Cesta k chybující aplikaci: C:\Program Files (x86)\Lenovo\Access Connections\AcSvc.exe
Cesta k chybujícímu modulu: C:\Windows\SysWOW64\ntdll.dll
ID zprávy: 91c59806-60b0-11e2-87ca-685d4342d898
Error - 18.1.2013 3:28:51 | Computer Name = Jakub-NTB | Source = Application Error
| ID = 1000
Description = Název chybující aplikace: AcSvc.exe, verze: 5.9.7.95, časové razítko: 0x50487c7e
Název chybujícího modulu: ntdll.dll, verze: 6.1.7601.17725, časové razítko: 0x4ec49b8f
Kód výjimky: 0xc0000005
Posun chyby: 0x000326d1
ID chybujícího procesu: 0xf28
Čas spuštění chybující aplikace: 0x01cdf5496341acba
Cesta k chybující aplikaci: C:\Program Files (x86)\Lenovo\Access Connections\AcSvc.exe
Cesta k chybujícímu modulu: C:\Windows\SysWOW64\ntdll.dll
ID zprávy: b46e1e48-6140-11e2-8ad1-685d4342d898
Error encountered while reading event logs.
< End of report >
Re: Preventivní kontrola
Spustte znovu OTL
- Pokud pouzivate Win Vista ci W7, kliknete na OTL pravym a dejte Run As Administrator ci Spustit jako spravce
- Do spodniho okenka Vlastni skenovani/opravy vlozte skript nize
Kód: Vybrat vše
:otl IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A} IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A} IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC IE - HKU\S-1-5-21-3752770136-2494076584-3171830822-1000\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A} IE - HKU\S-1-5-21-3752770136-2494076584-3171830822-1000\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC O2 - BHO: (no name) - {32F66A28-7614-11D4-BD11-00104BD3F987} - No CLSID value found. O4:64bit: - HKLM..\Run: [] File not found O4 - HKLM..\Run: [] File not found O4 - HKU\S-1-5-21-3752770136-2494076584-3171830822-1000..\Run: [Akamai NetSession Interface] C:\Users\Jakub\AppData\Local\Akamai\netsession_win.exe (Akamai Technologies, Inc.) O1364bit: - gopher Prefix: missing O13 - gopher Prefix: missing O18:64bit: - Protocol\Handler\mso-offdap11 - No CLSID value found O18:64bit: - Protocol\Handler\skype4com - No CLSID value found O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found. O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found. O33 - MountPoints2\{840375f7-113e-11e2-9aa9-685d4342d898}\Shell - "" = AutoRun [7 C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp files -> C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp -> ] [13 C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\*.tmp files -> C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\*.tmp -> ] [36 C:\Windows\Installer\*.tmp files -> C:\Windows\Installer\*.tmp -> ] [6 C:\Windows\Temp\*.tmp files -> C:\Windows\Temp\*.tmp -> ] [2013.01.20 17:20:00 | 000,000,914 | ---- | M] () -- C:\Windows\Tasks\Adobe Flash Player Updater.job [2013.01.20 10:44:00 | 000,000,910 | ---- | M] () -- C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3752770136-2494076584-3171830822-1000Core.job [2013.01.20 16:44:00 | 000,000,962 | ---- | M] () -- C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3752770136-2494076584-3171830822-1000UA.job [2013.01.20 10:09:05 | 000,000,828 | ---- | M] () -- C:\Windows\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon.job [2013.01.19 19:29:00 | 000,000,830 | ---- | M] () -- C:\Windows\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d.job @Alternate Data Stream - 116 bytes -> C:\ProgramData\TEMP:A1EDB939 :files C:\Users\Jakub\AppData\Local\Akamai %windir%\system32\*.tmp.dll /s %windir%\system32\SET*.tmp /s %windir%\*.tmp :commands [RESETHOSTS] [EMPTYTEMP] [EMPTYFLASH] [EMPTYJAVA]- Nasledne kliknete na Opravit
- PC provede opravu, restartuje se a da Vam log, jeho obsah vlozte sem
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen od 1. února 2011.
Člen
od 1. února 2011.Re: Preventivní kontrola
All processes killed
========== OTL ==========
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope| /E : value set successfully!
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ deleted successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ not found.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\\Local Page| /E : value set successfully!
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope| /E : value set successfully!
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ not found.
HKEY_USERS\S-1-5-21-3752770136-2494076584-3171830822-1000\Software\Microsoft\Internet Explorer\SearchScopes\\DefaultScope| /E : value set successfully!
Registry key HKEY_USERS\S-1-5-21-3752770136-2494076584-3171830822-1000\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ not found.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{32F66A28-7614-11D4-BD11-00104BD3F987}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{32F66A28-7614-11D4-BD11-00104BD3F987}\ deleted successfully.
64bit-Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\ deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\ deleted successfully.
Registry value HKEY_USERS\S-1-5-21-3752770136-2494076584-3171830822-1000\Software\Microsoft\Windows\CurrentVersion\Run\\Akamai NetSession Interface deleted successfully.
C:\Users\Jakub\AppData\Local\Akamai\netsession_win.exe moved successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\URL\Prefixes\\gopher|:gopher:// /E : value set successfully!
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\mso-offdap11\ deleted successfully.
File Protocol\Handler\mso-offdap11 - No CLSID value found not found.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\skype4com\ deleted successfully.
File Protocol\Handler\skype4com - No CLSID value found not found.
64bit-Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad\\WebCheck deleted successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{E6FB5E20-DE35-11CF-9C87-00AA005127ED}\ not found.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad\\WebCheck deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{E6FB5E20-DE35-11CF-9C87-00AA005127ED}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{840375f7-113e-11e2-9aa9-685d4342d898}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{840375f7-113e-11e2-9aa9-685d4342d898}\ not found.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAP2A98.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAP2F69.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAP4356.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAP5EC2.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAP9E41.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAP9EFC.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAPE966.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\ZAP2A0C.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\ZAP2BEF.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\ZAP3320.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\ZAP33AD.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\ZAP3439.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\ZAP43C4.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\ZAP65B4.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\ZAP7290.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\ZAPCF9D.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\ZAPDAD7.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\ZAPE291.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\ZAPE56E.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\ZAPF4BA.tmp folder deleted successfully.
C:\Windows\Installer\MSI13DC.tmp deleted successfully.
C:\Windows\Installer\MSI1A33.tmp deleted successfully.
C:\Windows\Installer\MSI1D6B.tmp deleted successfully.
C:\Windows\Installer\MSI230B.tmp deleted successfully.
C:\Windows\Installer\MSI256D.tmp deleted successfully.
C:\Windows\Installer\MSI2639.tmp deleted successfully.
C:\Windows\Installer\MSI40D0.tmp deleted successfully.
C:\Windows\Installer\MSI440C.tmp deleted successfully.
C:\Windows\Installer\MSI704D.tmp deleted successfully.
C:\Windows\Installer\MSI753E.tmp deleted successfully.
C:\Windows\Installer\MSI76F5.tmp deleted successfully.
C:\Windows\Installer\MSI7BAD.tmp deleted successfully.
C:\Windows\Installer\MSI7C4A.tmp deleted successfully.
C:\Windows\Installer\MSI7CD7.tmp deleted successfully.
C:\Windows\Installer\MSI7D65.tmp deleted successfully.
C:\Windows\Installer\MSI7DF2.tmp deleted successfully.
C:\Windows\Installer\MSI7E7F.tmp deleted successfully.
C:\Windows\Installer\MSI7F0D.tmp deleted successfully.
C:\Windows\Installer\MSI8381.tmp deleted successfully.
C:\Windows\Installer\MSICC7F.tmp deleted successfully.
C:\Windows\Installer\MSICD2C.tmp deleted successfully.
C:\Windows\Installer\MSICDB9.tmp deleted successfully.
C:\Windows\Installer\MSICE46.tmp deleted successfully.
C:\Windows\Installer\MSICEE.tmp deleted successfully.
C:\Windows\Installer\MSICEE3.tmp deleted successfully.
C:\Windows\Installer\MSICF71.tmp deleted successfully.
C:\Windows\Installer\MSICFFE.tmp deleted successfully.
C:\Windows\Installer\MSID08C.tmp deleted successfully.
C:\Windows\Installer\MSID11A.tmp deleted successfully.
C:\Windows\Installer\MSIDAD9.tmp deleted successfully.
C:\Windows\Installer\MSIDC21.tmp deleted successfully.
C:\Windows\Installer\MSIDCCE.tmp deleted successfully.
C:\Windows\Installer\MSIDDD8.tmp deleted successfully.
C:\Windows\Installer\MSIDE65.tmp deleted successfully.
C:\Windows\Installer\MSIDEE3.tmp deleted successfully.
C:\Windows\Installer\MSIDF71.tmp deleted successfully.
C:\Windows\Temp\DMI18CD.tmp deleted successfully.
C:\Windows\Temp\DMI1ADF.tmp deleted successfully.
C:\Windows\Temp\RGI2DDA.tmp deleted successfully.
C:\Windows\Temp\RGI2DDA.tmp-tmp deleted successfully.
C:\Windows\Temp\RGI5019.tmp deleted successfully.
C:\Windows\Temp\RGI5019.tmp-tmp deleted successfully.
C:\Windows\Tasks\Adobe Flash Player Updater.job moved successfully.
C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3752770136-2494076584-3171830822-1000Core.job moved successfully.
C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3752770136-2494076584-3171830822-1000UA.job moved successfully.
C:\Windows\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon.job moved successfully.
C:\Windows\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d.job moved successfully.
ADS C:\ProgramData\TEMP:A1EDB939 deleted successfully.
========== FILES ==========
C:\Users\Jakub\AppData\Local\Akamai\Logs\dump folder moved successfully.
C:\Users\Jakub\AppData\Local\Akamai\Logs folder moved successfully.
C:\Users\Jakub\AppData\Local\Akamai\Languages folder moved successfully.
C:\Users\Jakub\AppData\Local\Akamai\Cache\trial.autodesk.com\swdlddlm\2013\amech_pp\esd folder moved successfully.
C:\Users\Jakub\AppData\Local\Akamai\Cache\trial.autodesk.com\swdlddlm\2013\amech_pp folder moved successfully.
C:\Users\Jakub\AppData\Local\Akamai\Cache\trial.autodesk.com\swdlddlm\2013 folder moved successfully.
C:\Users\Jakub\AppData\Local\Akamai\Cache\trial.autodesk.com\swdlddlm folder moved successfully.
C:\Users\Jakub\AppData\Local\Akamai\Cache\trial.autodesk.com folder moved successfully.
C:\Users\Jakub\AppData\Local\Akamai\Cache folder moved successfully.
C:\Users\Jakub\AppData\Local\Akamai folder moved successfully.
File/Folder C:\Windows\system32\*.tmp.dll not found.
File/Folder C:\Windows\system32\SET*.tmp not found.
File/Folder C:\Windows\*.tmp not found.
========== COMMANDS ==========
C:\Windows\System32\drivers\etc\Hosts moved successfully.
HOSTS file reset successfully
[EMPTYTEMP]
User: All Users
User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 56504 bytes
User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 0 bytes
User: Jakub
->Temp folder emptied: 130627928 bytes
->Temporary Internet Files folder emptied: 535480234 bytes
->Java cache emptied: 589850 bytes
->FireFox cache emptied: 65101663 bytes
->Google Chrome cache emptied: 262184551 bytes
->Opera cache emptied: 4715728 bytes
->Flash cache emptied: 57430 bytes
User: Public
User: UpdatusUser
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 56466 bytes
%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32 (64bit) .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 61265154 bytes
%systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 67978 bytes
RecycleBin emptied: 4080026274 bytes
Total Files Cleaned = 4 902,00 mb
[EMPTYFLASH]
User: All Users
User: Default
->Flash cache emptied: 0 bytes
User: Default User
->Flash cache emptied: 0 bytes
User: Jakub
->Flash cache emptied: 0 bytes
User: Public
User: UpdatusUser
->Flash cache emptied: 0 bytes
Total Flash Files Cleaned = 0,00 mb
[EMPTYJAVA]
User: All Users
User: Default
User: Default User
User: Jakub
->Java cache emptied: 0 bytes
User: Public
User: UpdatusUser
Total Java Files Cleaned = 0,00 mb
OTL by OldTimer - Version 3.2.69.0 log created on 01212013_073041
Files\Folders moved on Reboot...
C:\Users\Jakub\AppData\Local\Temp\FXSAPIDebugLogFile.txt moved successfully.
PendingFileRenameOperations files...
Registry entries deleted on Reboot...
========== OTL ==========
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope| /E : value set successfully!
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ deleted successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ not found.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\\Local Page| /E : value set successfully!
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope| /E : value set successfully!
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ not found.
HKEY_USERS\S-1-5-21-3752770136-2494076584-3171830822-1000\Software\Microsoft\Internet Explorer\SearchScopes\\DefaultScope| /E : value set successfully!
Registry key HKEY_USERS\S-1-5-21-3752770136-2494076584-3171830822-1000\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ not found.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{32F66A28-7614-11D4-BD11-00104BD3F987}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{32F66A28-7614-11D4-BD11-00104BD3F987}\ deleted successfully.
64bit-Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\ deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\ deleted successfully.
Registry value HKEY_USERS\S-1-5-21-3752770136-2494076584-3171830822-1000\Software\Microsoft\Windows\CurrentVersion\Run\\Akamai NetSession Interface deleted successfully.
C:\Users\Jakub\AppData\Local\Akamai\netsession_win.exe moved successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\URL\Prefixes\\gopher|:gopher:// /E : value set successfully!
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\mso-offdap11\ deleted successfully.
File Protocol\Handler\mso-offdap11 - No CLSID value found not found.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\skype4com\ deleted successfully.
File Protocol\Handler\skype4com - No CLSID value found not found.
64bit-Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad\\WebCheck deleted successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{E6FB5E20-DE35-11CF-9C87-00AA005127ED}\ not found.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad\\WebCheck deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{E6FB5E20-DE35-11CF-9C87-00AA005127ED}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{840375f7-113e-11e2-9aa9-685d4342d898}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{840375f7-113e-11e2-9aa9-685d4342d898}\ not found.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAP2A98.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAP2F69.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAP4356.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAP5EC2.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAP9E41.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAP9EFC.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAPE966.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\ZAP2A0C.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\ZAP2BEF.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\ZAP3320.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\ZAP33AD.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\ZAP3439.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\ZAP43C4.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\ZAP65B4.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\ZAP7290.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\ZAPCF9D.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\ZAPDAD7.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\ZAPE291.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\ZAPE56E.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\ZAPF4BA.tmp folder deleted successfully.
C:\Windows\Installer\MSI13DC.tmp deleted successfully.
C:\Windows\Installer\MSI1A33.tmp deleted successfully.
C:\Windows\Installer\MSI1D6B.tmp deleted successfully.
C:\Windows\Installer\MSI230B.tmp deleted successfully.
C:\Windows\Installer\MSI256D.tmp deleted successfully.
C:\Windows\Installer\MSI2639.tmp deleted successfully.
C:\Windows\Installer\MSI40D0.tmp deleted successfully.
C:\Windows\Installer\MSI440C.tmp deleted successfully.
C:\Windows\Installer\MSI704D.tmp deleted successfully.
C:\Windows\Installer\MSI753E.tmp deleted successfully.
C:\Windows\Installer\MSI76F5.tmp deleted successfully.
C:\Windows\Installer\MSI7BAD.tmp deleted successfully.
C:\Windows\Installer\MSI7C4A.tmp deleted successfully.
C:\Windows\Installer\MSI7CD7.tmp deleted successfully.
C:\Windows\Installer\MSI7D65.tmp deleted successfully.
C:\Windows\Installer\MSI7DF2.tmp deleted successfully.
C:\Windows\Installer\MSI7E7F.tmp deleted successfully.
C:\Windows\Installer\MSI7F0D.tmp deleted successfully.
C:\Windows\Installer\MSI8381.tmp deleted successfully.
C:\Windows\Installer\MSICC7F.tmp deleted successfully.
C:\Windows\Installer\MSICD2C.tmp deleted successfully.
C:\Windows\Installer\MSICDB9.tmp deleted successfully.
C:\Windows\Installer\MSICE46.tmp deleted successfully.
C:\Windows\Installer\MSICEE.tmp deleted successfully.
C:\Windows\Installer\MSICEE3.tmp deleted successfully.
C:\Windows\Installer\MSICF71.tmp deleted successfully.
C:\Windows\Installer\MSICFFE.tmp deleted successfully.
C:\Windows\Installer\MSID08C.tmp deleted successfully.
C:\Windows\Installer\MSID11A.tmp deleted successfully.
C:\Windows\Installer\MSIDAD9.tmp deleted successfully.
C:\Windows\Installer\MSIDC21.tmp deleted successfully.
C:\Windows\Installer\MSIDCCE.tmp deleted successfully.
C:\Windows\Installer\MSIDDD8.tmp deleted successfully.
C:\Windows\Installer\MSIDE65.tmp deleted successfully.
C:\Windows\Installer\MSIDEE3.tmp deleted successfully.
C:\Windows\Installer\MSIDF71.tmp deleted successfully.
C:\Windows\Temp\DMI18CD.tmp deleted successfully.
C:\Windows\Temp\DMI1ADF.tmp deleted successfully.
C:\Windows\Temp\RGI2DDA.tmp deleted successfully.
C:\Windows\Temp\RGI2DDA.tmp-tmp deleted successfully.
C:\Windows\Temp\RGI5019.tmp deleted successfully.
C:\Windows\Temp\RGI5019.tmp-tmp deleted successfully.
C:\Windows\Tasks\Adobe Flash Player Updater.job moved successfully.
C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3752770136-2494076584-3171830822-1000Core.job moved successfully.
C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3752770136-2494076584-3171830822-1000UA.job moved successfully.
C:\Windows\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon.job moved successfully.
C:\Windows\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d.job moved successfully.
ADS C:\ProgramData\TEMP:A1EDB939 deleted successfully.
========== FILES ==========
C:\Users\Jakub\AppData\Local\Akamai\Logs\dump folder moved successfully.
C:\Users\Jakub\AppData\Local\Akamai\Logs folder moved successfully.
C:\Users\Jakub\AppData\Local\Akamai\Languages folder moved successfully.
C:\Users\Jakub\AppData\Local\Akamai\Cache\trial.autodesk.com\swdlddlm\2013\amech_pp\esd folder moved successfully.
C:\Users\Jakub\AppData\Local\Akamai\Cache\trial.autodesk.com\swdlddlm\2013\amech_pp folder moved successfully.
C:\Users\Jakub\AppData\Local\Akamai\Cache\trial.autodesk.com\swdlddlm\2013 folder moved successfully.
C:\Users\Jakub\AppData\Local\Akamai\Cache\trial.autodesk.com\swdlddlm folder moved successfully.
C:\Users\Jakub\AppData\Local\Akamai\Cache\trial.autodesk.com folder moved successfully.
C:\Users\Jakub\AppData\Local\Akamai\Cache folder moved successfully.
C:\Users\Jakub\AppData\Local\Akamai folder moved successfully.
File/Folder C:\Windows\system32\*.tmp.dll not found.
File/Folder C:\Windows\system32\SET*.tmp not found.
File/Folder C:\Windows\*.tmp not found.
========== COMMANDS ==========
C:\Windows\System32\drivers\etc\Hosts moved successfully.
HOSTS file reset successfully
[EMPTYTEMP]
User: All Users
User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 56504 bytes
User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 0 bytes
User: Jakub
->Temp folder emptied: 130627928 bytes
->Temporary Internet Files folder emptied: 535480234 bytes
->Java cache emptied: 589850 bytes
->FireFox cache emptied: 65101663 bytes
->Google Chrome cache emptied: 262184551 bytes
->Opera cache emptied: 4715728 bytes
->Flash cache emptied: 57430 bytes
User: Public
User: UpdatusUser
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 56466 bytes
%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32 (64bit) .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 61265154 bytes
%systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 67978 bytes
RecycleBin emptied: 4080026274 bytes
Total Files Cleaned = 4 902,00 mb
[EMPTYFLASH]
User: All Users
User: Default
->Flash cache emptied: 0 bytes
User: Default User
->Flash cache emptied: 0 bytes
User: Jakub
->Flash cache emptied: 0 bytes
User: Public
User: UpdatusUser
->Flash cache emptied: 0 bytes
Total Flash Files Cleaned = 0,00 mb
[EMPTYJAVA]
User: All Users
User: Default
User: Default User
User: Jakub
->Java cache emptied: 0 bytes
User: Public
User: UpdatusUser
Total Java Files Cleaned = 0,00 mb
OTL by OldTimer - Version 3.2.69.0 log created on 01212013_073041
Files\Folders moved on Reboot...
C:\Users\Jakub\AppData\Local\Temp\FXSAPIDebugLogFile.txt moved successfully.
PendingFileRenameOperations files...
Registry entries deleted on Reboot...
Re: Preventivní kontrola
OTL udelalo co melo, jak se chova PC 
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen od 1. února 2011.
Člen
od 1. února 2011.Re: Preventivní kontrola
no já nevím, hlavně proč jsem to chtěl zkontrolovat bylo to že se mi přes total comander dostal na FTP vir!
Re: Preventivní kontrola
To chce mit FTP radne zabezpecene - silne heslo (znaky, cisla) a pouzivat pripadne sifrovane pripojeni Stahnete Malwarebytes' Anti-Malware (zkracene MBAM) http://forum.viry.cz/viewtopic.php?f=29&t=115222
- Provedte aktualizaci
- Provedte uplny sken - nic nemazte
- MBAM miva obcas falesne detekce, proto vlozte log do prispevku a pockejte na posouzeni
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen od 1. února 2011.
Člen
od 1. února 2011.
Přispějete na provoz fóra?
