AVG secure toolbar.

[Duklando]

Dobrý deň. "AVG secure toolbar". Neviem sa ho zbaviť,
nikde nie je vidieť. Vždy, keď si myslím, že som ho dostal, tak sa na druhý deň objaví znovu.
Nie je v program files x 86, ani odinštalátory ho nedetekujú. Potreboval, by som pomôcť a vopred ďakujem.




Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 16:37:16, on 26. 1. 2013
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v9.00 (9.00.8112.16457)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Internet Download Manager\IDMan.exe
C:\Program Files (x86)\Common Files\AVerMedia\AVerQuick\AVerHIDReceiver.exe
C:\Program Files (x86)\Common Files\AVerMedia\AVerQuick\AVerQuick.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\Internet Download Manager\IEMonitor.exe
C:\Users\Juraj Cordas\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Juraj Cordas\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Juraj Cordas\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Juraj Cordas\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Program Files\trend micro\Juraj Cordas.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.zoznam.sk
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: IDM Helper - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files (x86)\Internet Download Manager\IDMIECC.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Canon Easy-WebPrint EX BHO - {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: AVG Security Toolbar - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files (x86)\AVG Secure Search\13.2.0.5\AVG Secure Search_toolbar.dll (file missing)
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O4 - HKLM\..\Run: [UpdatePDRShortCut] "C:\Program Files (x86)\CyberLink\PowerDirector\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\CyberLink\PowerDirector" UpdateWithCreateOnce "Software\CyberLink\PowerDirector\8.0"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [IDMan] C:\Program Files (x86)\Internet Download Manager\IDMan.exe /onboot
O4 - HKCU\..\Run: [Google Update] "C:\Users\Juraj Cordas\AppData\Local\Google\Update\GoogleUpdate.exe" /c
O4 - HKUS\S-1-5-21-2897896145-2411329342-784474909-1003\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'UpdatusUser')
O4 - HKUS\S-1-5-21-2897896145-2411329342-784474909-1003\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'UpdatusUser')
O4 - Global Startup: AVer HID Receiver.lnk = C:\Program Files (x86)\Common Files\AVerMedia\AVerQuick\AVerHIDReceiver.exe
O4 - Global Startup: AVerQuick.lnk = C:\Program Files (x86)\Common Files\AVerMedia\AVerQuick\AVerQuick.exe
O8 - Extra context menu item: Stiahnuť s IDM - C:\Program Files (x86)\Internet Download Manager\IEExt.htm
O8 - Extra context menu item: Stiahnuť s IDM všetky prepojenia - C:\Program Files (x86)\Internet Download Manager\IEGetAll.htm
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\OFFICE11\REFIEBAR.DLL
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/s ... wflash.cab
O18 - Protocol: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - C:\Program Files (x86)\Common Files\AVG Secure Search\ViProtocolInstaller\13.2.0\ViProtocol.dll (file missing)
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: ATK Fast User Switch Service (ATKFUSService) - Unknown owner - C:\Windows\system32\ATKFUSService.exe (file missing)
O23 - Service: AVerRemote - AVerMedia - C:\Program Files (x86)\Common Files\AVerMedia\Service\AVerRemote.exe
O23 - Service: AVerScheduleService - Unknown owner - C:\Program Files (x86)\Common Files\AVerMedia\Service\AVerScheduleService.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: ESET HTTP Server (EhttpSrv) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Canon Inkjet Printer/Scanner/Fax Extended Survey Program (IJPLMSVC) - Unknown owner - C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: ServiceLayer - Nokia - C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management & Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 9468 bytes

======Listing Processes======

\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\ATKFUSService.exe
C:\Windows\system32\nvvsvc.exe
"C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe"
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
winlogon.exe
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\Windows\system32\nvvsvc.exe -session -first
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files (x86)\Common Files\AVerMedia\Service\AVerRemote.exe"
"C:\Program Files (x86)\Common Files\AVerMedia\Service\AVerScheduleService.exe"
"C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe"
"C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
C:\Windows\SysWOW64\PnkBstrA.exe
"C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe"
"C:\Program Files\ASUS\GamerOSD\ATKFastUserSwitching.exe"
"taskhost.exe"
C:\Windows\system32\svchost.exe -k imgsvc
C:\Windows\System32\svchost.exe -k secsvcs
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe" /hide /waitservice
"C:\Program Files (x86)\Internet Download Manager\IDMan.exe" /onboot
"C:\Program Files (x86)\Common Files\AVerMedia\AVerQuick\AVerHIDReceiver.exe"
"C:\Program Files (x86)\Common Files\AVerMedia\AVerQuick\AVerQuick.exe"
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
"C:\Program Files (x86)\Internet Download Manager\IEMonitor.exe"
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1
C:\Windows\system32\SearchIndexer.exe /Embedding
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\Windows\SysWOW64\DllHost.exe /Processid:{B366DEBE-645B-43A5-B865-DDD82C345492}
"taskhost.exe"
"C:\Users\Juraj Cordas\AppData\Local\Google\Chrome\Application\chrome.exe" -- "http://forum.viry.cz/"
"C:\Users\Juraj Cordas\AppData\Local\Google\Chrome\Application\chrome.exe" --type=renderer --lang=sk --force-fieldtrials=EnableStage3D/enabled/ForceCompositingMode/enabled/GlobalSdch/global_enable_sdch/InfiniteCache/No/NewTabButton/default/OmniboxDisallowInlineHQP/Standard/OmniboxHUPCreateShorterMatch/Standard/OmniboxHUPCullRedirects/Standard/OmniboxSearchSuggestTrialStarted2012Q4/19/OneClickSignIn/Standard/Prerender/PrerenderEnabled/SBInterstitial/V2/SpdyCwnd/cwndMin16/SpeculativePrefetching/Disabled/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_03/UMA-Uniformity-Trial-1-Percent/group_58/UMA-Uniformity-Trial-10-Percent/group_08/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/group_12/UMA-Uniformity-Trial-50-Percent/group_01/WarmSocketImpact/last_accessed_socket/ --renderer-print-preview --channel="2964.0.639639556\4465779" /prefetch:3
"C:\Users\Juraj Cordas\AppData\Local\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="2964.1.993631435\397595232" --supports-dual-gpus=false --skip-gpu-full-info-collection --gpu-vendor-id=0x10de --gpu-device-id=0x0e22 --gpu-driver-vendor=NVIDIA --gpu-driver-version=9.18.13.697 --ignored=" --type=renderer " /prefetch:12
"C:\Users\Juraj Cordas\AppData\Local\Google\Chrome\Application\chrome.exe" --type=ppapi --channel="2964.2.1373273118\1477840842" --lang=sk --ignored=" --type=renderer " /prefetch:13
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe39_ Global\UsGthrCtrlFltPipeMssGthrPipe39 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Windows\system32\SearchFilterHost.exe" 0 516 520 528 65536 524
C:\Windows\system32\AUDIODG.EXE 0x768
C:\Windows\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
"C:\Users\Juraj Cordas\Desktop\RSITx64.exe"
C:\Windows\system32\wbem\wmiprvse.exe

======Scheduled tasks folder======

C:\Windows\tasks\Adobe Flash Player Updater.job
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2897896145-2411329342-784474909-1000Core.job
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2897896145-2411329342-784474909-1000UA.job
C:\Windows\tasks\Wise PC Engineer Schedule Task.job

=========Mozilla firefox=========

ProfilePath - C:\Users\Juraj Cordas\AppData\Roaming\Mozilla\Firefox\Profiles\077ihatr.default

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 11.5.502.146 Plugin
"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_5_502_146.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@canon.com/EPPEX]
"Description"=Canon Easy-PhotoPrint EX
"Path"=C:\Program Files (x86)\Canon\Easy-PhotoPrint EX\NPEZFFPI.DLL

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@google.com/npPicasa3,version=3.0.0]
"Description"=Picasa3 plugin
"Path"=C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=10.11.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@mcafee.com/SAFFPlugin]
"Description"=
"Path"=

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files (x86)\Microsoft Silverlight\5.1.10411.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVision]
"Description"=NVIDIA stereo images plugin for Mozilla browsers
"Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVisionStreaming]
"Description"=NVIDIA 3D Vision Streaming plugin for Mozilla browsers
"Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 11.5.502.146 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_11_5_502_146.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\5.1.10411.0\npctrl.dll

C:\Program Files (x86)\Mozilla Firefox\extensions\
{972ce4c6-7e08-4474-a285-3208198ce6fd}

C:\Program Files (x86)\Mozilla Firefox\components\
binary.manifest
browsercomps.dll

C:\Program Files (x86)\Mozilla Firefox\searchplugins\
atlas-sk.xml
azet-sk.xml
dunaj-sk.xml
eBay.xml
google.xml
slovnik-sk.xml
wikipedia-sk.xml
zoznam-sk.xml

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0055C089-8582-441B-A0BF-17B458C2A3A8}]
IDM integration (IDMIEHlprObj Class) - C:\Program Files (x86)\Internet Download Manager\IDMIECC64.dll [2012-11-21 391048]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0055C089-8582-441B-A0BF-17B458C2A3A8}]
IDM integration (IDMIEHlprObj Class) - C:\Program Files (x86)\Internet Download Manager\IDMIECC.dll [2012-11-21 359304]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-09-23 60568]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3785D0AD-BFFF-47F6-BF5B-A587C162FED9}]
Canon Easy-WebPrint EX BHO - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll [2010-11-08 202144]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2013-01-12 461216]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}]
AVG Security Toolbar - C:\Program Files (x86)\AVG Secure Search\13.2.0.5\AVG Secure Search_toolbar.dll []

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2013-01-12 170912]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"egui"=C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe [2009-03-19 2692008]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"IDMan"=C:\Program Files (x86)\Internet Download Manager\IDMan.exe [2012-11-27 3487128]
"Google Update"=C:\Users\Juraj Cordas\AppData\Local\Google\Update\GoogleUpdate.exe [2013-01-25 116648]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2012-12-03 946352]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CanonMyPrinter]
C:\Program Files\Canon\MyPrinter\BJMyPrt.exe [2010-03-25 2726728]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CanonSolutionMenuEx]
C:\Program Files (x86)\Canon\Solution Menu EX\CNSEMAIN.EXE [2010-04-02 1185112]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite]
C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2012-01-19 3477312]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PC Suite Tray]
C:\Program Files (x86)\Nokia\Nokia PC Suite 7\PCSuite.exe [2012-03-26 1516600]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\vProt]
C:\Program Files (x86)\AVG Secure Search\vprot.exe []

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"UpdatePDRShortCut"=C:\Program Files (x86)\CyberLink\PowerDirector\MUITransfer\MUIStartMenu.exe [2008-12-03 218408]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2012-07-03 252848]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
AVer HID Receiver.lnk - C:\Program Files (x86)\Common Files\AVerMedia\AVerQuick\AVerHIDReceiver.exe
AVerQuick.lnk - C:\Program Files (x86)\Common Files\AVerMedia\AVerQuick\AVerQuick.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=255
"NoDrives"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"wave5"=wdmaud.drv
"wave6"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"wave7"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux"=wdmaud.drv
"wave8"=wdmaud.drv
"msacm.ac3filter"=ac3filter64.acm
"wave9"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1

======List of files/folders created in the last 1 month======

2013-01-26 15:53:27 ----A---- C:\TDSSKiller.2.8.15.0_26.01.2013_15.53.27_log.txt
2013-01-25 16:45:49 ----A---- C:\AdwCleaner[R1].txt
2013-01-25 15:58:25 ----D---- C:\rsit
2013-01-23 21:25:50 ----D---- C:\Program Files (x86)\Manažer napájení
2013-01-23 20:13:10 ----D---- C:\ProgramData\AVerTV
2013-01-23 20:13:10 ----A---- C:\Windows\system32\AVerGraphAPI.dll
2013-01-23 20:13:09 ----A---- C:\Windows\system32\AVerColorAPI.dll
2013-01-23 20:13:08 ----D---- C:\ProgramData\AVerMedia
2013-01-23 20:11:12 ----A---- C:\Windows\system32\drivers\AVPolCIR.sys
2013-01-23 20:11:12 ----A---- C:\Windows\system32\drivers\AVerPola.sys
2013-01-23 20:10:14 ----R---- C:\Windows\SYSWOW64\CardID.dll
2013-01-23 20:10:14 ----R---- C:\Windows\SYSWOW64\AVerIO.sys
2013-01-23 20:10:14 ----R---- C:\Windows\SYSWOW64\AVerIO.dll
2013-01-23 20:09:53 ----R---- C:\Windows\SYSWOW64\sptlib22.dll
2013-01-23 20:09:53 ----R---- C:\Windows\SYSWOW64\sptlib21.dll
2013-01-23 20:09:53 ----R---- C:\Windows\SYSWOW64\sptlib12.dll
2013-01-23 20:09:53 ----R---- C:\Windows\SYSWOW64\sptlib11.dll
2013-01-23 20:09:53 ----R---- C:\Windows\SYSWOW64\sptlib03.dll
2013-01-23 20:09:53 ----R---- C:\Windows\SYSWOW64\sptlib02.dll
2013-01-23 20:09:53 ----R---- C:\Windows\SYSWOW64\sptlib01.dll
2013-01-23 20:09:53 ----R---- C:\Windows\SYSWOW64\pthreadVC.dll
2013-01-23 20:09:35 ----D---- C:\Program Files (x86)\AVerMedia
2013-01-22 17:12:41 ----D---- C:\Program Files (x86)\Mozilla Firefox
2013-01-22 16:57:19 ----D---- C:\ProgramData\Mozilla
2013-01-22 16:57:19 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2013-01-14 15:57:18 ----D---- C:\Windows\temp
2013-01-14 15:54:39 ----SHD---- C:\$RECYCLE.BIN
2013-01-14 15:41:10 ----A---- C:\Windows\SYSWOW64\WindowsAccessBridge-32.dll
2013-01-14 15:41:10 ----A---- C:\Windows\SYSWOW64\javaw.exe
2013-01-14 15:41:10 ----A---- C:\Windows\SYSWOW64\java.exe
2013-01-13 15:09:35 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2013-01-13 15:09:35 ----A---- C:\Windows\system32\mshtmled.dll
2013-01-13 15:09:34 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2013-01-13 15:09:34 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2013-01-13 15:09:34 ----A---- C:\Windows\SYSWOW64\ieui.dll
2013-01-13 15:09:34 ----A---- C:\Windows\system32\ieUnatt.exe
2013-01-13 15:09:34 ----A---- C:\Windows\system32\ieui.dll
2013-01-13 15:09:33 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2013-01-13 15:09:33 ----A---- C:\Windows\SYSWOW64\url.dll
2013-01-13 15:09:33 ----A---- C:\Windows\system32\urlmon.dll
2013-01-13 15:09:33 ----A---- C:\Windows\system32\url.dll
2013-01-13 15:09:32 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2013-01-13 15:09:32 ----A---- C:\Windows\system32\msfeeds.dll
2013-01-13 15:09:32 ----A---- C:\Windows\system32\jscript9.dll
2013-01-13 15:09:31 ----A---- C:\Windows\SYSWOW64\wininet.dll
2013-01-13 15:09:31 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2013-01-13 15:09:31 ----A---- C:\Windows\SYSWOW64\jscript.dll
2013-01-13 15:09:31 ----A---- C:\Windows\system32\wininet.dll
2013-01-13 15:09:31 ----A---- C:\Windows\system32\jsproxy.dll
2013-01-13 15:09:30 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2013-01-13 15:09:30 ----A---- C:\Windows\system32\vbscript.dll
2013-01-13 15:09:30 ----A---- C:\Windows\system32\jscript.dll
2013-01-13 15:09:30 ----A---- C:\Windows\system32\iertutil.dll
2013-01-13 15:09:29 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2013-01-13 15:09:26 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2013-01-13 15:09:24 ----A---- C:\Windows\system32\mshtml.dll
2013-01-13 15:09:23 ----A---- C:\Windows\system32\ieframe.dll
2013-01-13 15:09:22 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2013-01-13 15:07:22 ----A---- C:\Windows\system32\CNMLMAD.DLL
2013-01-13 14:26:02 ----A---- C:\Windows\SYSWOW64\wextract.exe
2013-01-13 14:26:02 ----A---- C:\Windows\SYSWOW64\webcheck.dll
2013-01-13 14:26:02 ----A---- C:\Windows\SYSWOW64\SetIEInstalledDate.exe
2013-01-13 14:26:02 ----A---- C:\Windows\SYSWOW64\RegisterIEPKEYs.exe
2013-01-13 14:26:02 ----A---- C:\Windows\SYSWOW64\pngfilt.dll
2013-01-13 14:26:02 ----A---- C:\Windows\SYSWOW64\occache.dll
2013-01-13 14:26:02 ----A---- C:\Windows\SYSWOW64\msrating.dll
2013-01-13 14:26:02 ----A---- C:\Windows\SYSWOW64\msls31.dll
2013-01-13 14:26:02 ----A---- C:\Windows\SYSWOW64\mshtmler.dll
2013-01-13 14:26:02 ----A---- C:\Windows\SYSWOW64\mshta.exe
2013-01-13 14:26:02 ----A---- C:\Windows\SYSWOW64\msfeedssync.exe
2013-01-13 14:26:02 ----A---- C:\Windows\SYSWOW64\msfeedsbs.dll
2013-01-13 14:26:02 ----A---- C:\Windows\SYSWOW64\licmgr10.dll
2013-01-13 14:26:02 ----A---- C:\Windows\SYSWOW64\inseng.dll
2013-01-13 14:26:02 ----A---- C:\Windows\SYSWOW64\imgutil.dll
2013-01-13 14:26:02 ----A---- C:\Windows\SYSWOW64\iexpress.exe
2013-01-13 14:26:02 ----A---- C:\Windows\SYSWOW64\iesysprep.dll
2013-01-13 14:26:02 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2013-01-13 14:26:02 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2013-01-13 14:26:02 ----A---- C:\Windows\SYSWOW64\iepeers.dll
2013-01-13 14:26:02 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2013-01-13 14:26:02 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2013-01-13 14:26:02 ----A---- C:\Windows\SYSWOW64\ieapfltr.dat
2013-01-13 14:26:02 ----A---- C:\Windows\SYSWOW64\ieakui.dll
2013-01-13 14:26:02 ----A---- C:\Windows\SYSWOW64\ieaksie.dll
2013-01-13 14:26:02 ----A---- C:\Windows\SYSWOW64\ieakeng.dll
2013-01-13 14:26:02 ----A---- C:\Windows\SYSWOW64\IEAdvpack.dll
2013-01-13 14:26:02 ----A---- C:\Windows\SYSWOW64\ie4uinit.exe
2013-01-13 14:26:02 ----A---- C:\Windows\SYSWOW64\icardie.dll
2013-01-13 14:26:02 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2013-01-13 14:26:02 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2013-01-13 14:26:02 ----A---- C:\Windows\SYSWOW64\admparse.dll
2013-01-13 14:26:01 ----A---- C:\Windows\system32\wextract.exe
2013-01-13 14:26:01 ----A---- C:\Windows\system32\webcheck.dll
2013-01-13 14:26:01 ----A---- C:\Windows\system32\SetIEInstalledDate.exe
2013-01-13 14:26:01 ----A---- C:\Windows\system32\RegisterIEPKEYs.exe
2013-01-13 14:26:01 ----A---- C:\Windows\system32\pngfilt.dll
2013-01-13 14:26:01 ----A---- C:\Windows\system32\occache.dll
2013-01-13 14:26:01 ----A---- C:\Windows\system32\msrating.dll
2013-01-13 14:26:01 ----A---- C:\Windows\system32\msls31.dll
2013-01-13 14:26:01 ----A---- C:\Windows\system32\mshtmler.dll
2013-01-13 14:26:01 ----A---- C:\Windows\system32\mshta.exe
2013-01-13 14:26:01 ----A---- C:\Windows\system32\msfeedssync.exe
2013-01-13 14:26:01 ----A---- C:\Windows\system32\msfeedsbs.dll
2013-01-13 14:26:01 ----A---- C:\Windows\system32\licmgr10.dll
2013-01-13 14:26:01 ----A---- C:\Windows\system32\inseng.dll
2013-01-13 14:26:01 ----A---- C:\Windows\system32\imgutil.dll
2013-01-13 14:26:01 ----A---- C:\Windows\system32\iexpress.exe
2013-01-13 14:26:01 ----A---- C:\Windows\system32\iesysprep.dll
2013-01-13 14:26:01 ----A---- C:\Windows\system32\iesetup.dll
2013-01-13 14:26:01 ----A---- C:\Windows\system32\iernonce.dll
2013-01-13 14:26:01 ----A---- C:\Windows\system32\iepeers.dll
2013-01-13 14:26:01 ----A---- C:\Windows\system32\iedkcs32.dll
2013-01-13 14:26:01 ----A---- C:\Windows\system32\ieapfltr.dll
2013-01-13 14:26:01 ----A---- C:\Windows\system32\ieapfltr.dat
2013-01-13 14:26:01 ----A---- C:\Windows\system32\ieakui.dll
2013-01-13 14:26:01 ----A---- C:\Windows\system32\ieaksie.dll
2013-01-13 14:26:01 ----A---- C:\Windows\system32\ieakeng.dll
2013-01-13 14:26:01 ----A---- C:\Windows\system32\IEAdvpack.dll
2013-01-13 14:26:01 ----A---- C:\Windows\system32\ie4uinit.exe
2013-01-13 14:26:01 ----A---- C:\Windows\system32\icardie.dll
2013-01-13 14:26:01 ----A---- C:\Windows\system32\dxtrans.dll
2013-01-13 14:26:01 ----A---- C:\Windows\system32\dxtmsft.dll
2013-01-13 14:26:01 ----A---- C:\Windows\system32\admparse.dll
2013-01-13 11:43:43 ----A---- C:\Windows\zip.exe
2013-01-13 11:43:43 ----A---- C:\Windows\SWSC.exe
2013-01-13 11:43:43 ----A---- C:\Windows\SWREG.exe
2013-01-13 11:43:43 ----A---- C:\Windows\sed.exe
2013-01-13 11:43:43 ----A---- C:\Windows\PEV.exe
2013-01-13 11:43:43 ----A---- C:\Windows\NIRCMD.exe
2013-01-13 11:43:43 ----A---- C:\Windows\MBR.exe
2013-01-13 11:43:43 ----A---- C:\Windows\grep.exe
2013-01-13 11:43:38 ----D---- C:\Qoobox
2013-01-13 11:43:27 ----D---- C:\Windows\erdnt
2013-01-11 16:29:57 ----D---- C:\Program Files (x86)\Wise PC Engineer
2013-01-09 17:40:40 ----RASH---- C:\SdHeuristic.txt
2013-01-09 17:31:44 ----D---- C:\Program Files\CCleaner
2013-01-09 16:23:52 ----D---- C:\Users\Juraj Cordas\AppData\Roaming\TeamViewer
2013-01-08 23:33:29 ----A---- C:\Windows\system32\drivers\stflt.sys
2013-01-08 22:50:20 ----D---- C:\Program Files\Max Registry Cleaner
2013-01-08 22:37:48 ----D---- C:\ProgramData\Max Secure
2013-01-08 22:16:05 ----A---- C:\Windows\SYSWOW64\win32spl.dll
2013-01-08 22:16:05 ----A---- C:\Windows\system32\win32spl.dll
2013-01-08 22:15:55 ----A---- C:\Windows\system32\msxml6.dll
2013-01-08 22:15:55 ----A---- C:\Windows\system32\msxml3.dll
2013-01-08 22:15:54 ----A---- C:\Windows\SYSWOW64\msxml6.dll
2013-01-08 22:15:54 ----A---- C:\Windows\SYSWOW64\msxml3.dll
2013-01-08 22:15:52 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2013-01-08 22:15:52 ----A---- C:\Windows\system32\ncrypt.dll
2013-01-08 22:15:49 ----A---- C:\Windows\SYSWOW64\usp10.dll
2013-01-08 22:15:49 ----A---- C:\Windows\system32\usp10.dll
2013-01-08 22:15:39 ----A---- C:\Windows\system32\Wpc.dll
2013-01-08 22:15:39 ----A---- C:\Windows\system32\gameux.dll
2013-01-08 22:15:38 ----A---- C:\Windows\SYSWOW64\Wpc.dll
2013-01-08 22:15:38 ----A---- C:\Windows\SYSWOW64\gameux.dll
2013-01-08 22:15:11 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2013-01-08 22:15:11 ----A---- C:\Windows\system32\KernelBase.dll
2013-01-08 22:15:10 ----A---- C:\Windows\system32\kernel32.dll
2013-01-08 22:15:09 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2013-01-08 22:15:09 ----A---- C:\Windows\SYSWOW64\wow32.dll
2013-01-08 22:15:09 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2013-01-08 22:15:09 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2013-01-08 22:15:09 ----A---- C:\Windows\system32\wow64win.dll
2013-01-08 22:15:09 ----A---- C:\Windows\system32\wow64cpu.dll
2013-01-08 22:15:09 ----A---- C:\Windows\system32\wow64.dll
2013-01-08 22:15:09 ----A---- C:\Windows\system32\winsrv.dll
2013-01-08 22:15:09 ----A---- C:\Windows\system32\ntvdm64.dll
2013-01-08 22:15:09 ----A---- C:\Windows\system32\conhost.exe
2013-01-08 22:15:08 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2013-01-08 22:15:08 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2013-01-08 22:15:08 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2013-01-08 22:15:07 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2013-01-08 22:15:07 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2013-01-08 22:15:07 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2013-01-08 22:15:07 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2013-01-08 22:15:07 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2013-01-08 22:15:07 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2013-01-08 22:15:07 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2013-01-08 22:15:07 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2013-01-08 22:15:07 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2013-01-08 22:15:07 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2013-01-08 22:15:07 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2013-01-08 22:15:07 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2013-01-08 22:15:07 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2013-01-08 22:15:07 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2013-01-08 22:15:07 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2013-01-08 22:15:07 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2013-01-08 22:15:07 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2013-01-08 22:15:07 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2013-01-08 22:15:07 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2013-01-08 22:15:07 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2013-01-08 22:15:07 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2013-01-08 22:15:07 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2013-01-08 22:15:07 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2013-01-08 22:15:06 ----AH---- C:\Windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2013-01-08 22:15:06 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2013-01-08 22:15:06 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2013-01-08 22:15:06 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2013-01-08 22:15:06 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2013-01-08 22:15:06 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2013-01-08 22:15:06 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2013-01-08 22:15:06 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2013-01-08 22:15:06 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2013-01-08 22:15:06 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2013-01-08 22:15:06 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2013-01-08 22:15:06 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2013-01-08 22:15:06 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2013-01-08 22:15:06 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2013-01-08 22:15:06 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2013-01-08 22:15:06 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2013-01-08 22:15:06 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2013-01-08 22:15:06 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2013-01-08 22:15:06 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2013-01-08 22:15:06 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2013-01-08 22:15:06 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2013-01-08 22:15:06 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2013-01-08 22:15:06 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2013-01-08 22:15:06 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2013-01-08 22:15:06 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2013-01-08 22:15:06 ----A---- C:\Windows\SYSWOW64\setup16.exe
2013-01-08 22:15:05 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2013-01-08 22:15:05 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2013-01-08 22:15:05 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2013-01-08 22:15:05 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2013-01-08 22:15:05 ----A---- C:\Windows\SYSWOW64\user.exe
2013-01-08 22:15:05 ----A---- C:\Windows\SYSWOW64\instnm.exe
2013-01-08 22:14:57 ----A---- C:\Windows\system32\taskhost.exe
2013-01-08 22:14:56 ----A---- C:\Windows\system32\win32k.sys
2013-01-08 17:41:12 ----D---- C:\Program Files\trend micro
2013-01-04 16:05:30 ----D---- C:\Program Files (x86)\Total Video Player
2013-01-04 15:50:17 ----D---- C:\ProgramData\CanonIJ
2013-01-03 20:40:21 ----D---- C:\Users\Juraj Cordas\AppData\Roaming\Theta
2013-01-03 20:15:54 ----N---- C:\Windows\SYSWOW64\pbsvc.exe
2013-01-02 16:12:00 ----D---- C:\Users\Juraj Cordas\AppData\Roaming\Avery
2013-01-02 16:09:11 ----D---- C:\ProgramData\Avery
2013-01-02 16:03:41 ----D---- C:\Users\Juraj Cordas\AppData\Roaming\Popisovac
2012-12-29 13:30:46 ----HD---- C:\ProgramData\CanonIJEPPEX
2012-12-29 13:27:54 ----HD---- C:\ProgramData\CanonIJMyPrinter
2012-12-29 13:22:41 ----D---- C:\Program Files\Canon
2012-12-29 13:22:38 ----D---- C:\ProgramData\CanonIJPLM

======List of files/folders modified in the last 1 month======

2013-01-26 15:53:29 ----D---- C:\Windows\system32\drivers
2013-01-26 15:08:13 ----RD---- C:\Program Files (x86)
2013-01-26 15:07:10 ----D---- C:\Program Files (x86)\Ubisoft
2013-01-26 15:06:00 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2013-01-26 14:28:13 ----D---- C:\Windows\SysWOW64
2013-01-26 14:27:53 ----A---- C:\Windows\SYSWOW64\PnkBstrB.exe
2013-01-26 14:27:44 ----D---- C:\Users\Juraj Cordas\AppData\Roaming\Ubisoft
2013-01-26 14:10:50 ----D---- C:\Users\Juraj Cordas\AppData\Roaming\Azureus
2013-01-26 13:20:47 ----D---- C:\Windows\system32\config
2013-01-26 13:08:54 ----SHD---- C:\System Volume Information
2013-01-26 13:08:46 ----SHD---- C:\Windows\Installer
2013-01-26 13:07:57 ----RSD---- C:\Windows\assembly
2013-01-26 13:07:46 ----D---- C:\Windows
2013-01-26 13:07:19 ----D---- C:\Windows\Logs
2013-01-26 12:50:33 ----D---- C:\Windows\System32
2013-01-26 12:50:33 ----D---- C:\Windows\inf
2013-01-26 12:50:33 ----A---- C:\Windows\system32\PerfStringBackup.INI
2013-01-26 12:44:38 ----A---- C:\Windows\SYSWOW64\log.txt
2013-01-26 12:44:37 ----D---- C:\ProgramData\NVIDIA
2013-01-26 12:43:45 ----D---- C:\Users\Juraj Cordas\AppData\Roaming\DMCache
2013-01-25 17:12:38 ----D---- C:\Windows\Tasks
2013-01-25 17:12:38 ----D---- C:\Windows\system32\Tasks
2013-01-25 17:06:40 ----D---- C:\Program Files (x86)\Google
2013-01-25 15:07:56 ----D---- C:\Program Files (x86)\Common Files
2013-01-24 17:13:28 ----D---- C:\Users\Juraj Cordas\AppData\Roaming\IDM
2013-01-23 21:47:05 ----D---- C:\Download
2013-01-23 21:25:50 ----SD---- C:\Users\Juraj Cordas\AppData\Roaming\Microsoft
2013-01-23 20:27:13 ----A---- C:\Windows\AVerText.ini
2013-01-23 20:13:10 ----D---- C:\ProgramData
2013-01-23 20:12:57 ----D---- C:\Windows\system32\DriverStore
2013-01-23 20:12:57 ----D---- C:\Windows\system32\catroot
2013-01-23 20:11:12 ----D---- C:\Windows\Driver Cache
2013-01-23 20:01:21 ----D---- C:\Windows\system32\catroot2
2013-01-22 21:03:48 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2013-01-22 19:53:29 ----D---- C:\Users\Juraj Cordas\AppData\Roaming\GetRightToGo
2013-01-22 16:57:35 ----D---- C:\Users\Juraj Cordas\AppData\Roaming\Mozilla
2013-01-21 16:38:12 ----D---- C:\Windows\system32\NDF
2013-01-14 15:56:08 ----D---- C:\Windows\system32\wdi
2013-01-14 15:54:41 ----A---- C:\Windows\system.ini
2013-01-14 15:54:37 ----D---- C:\Windows\system32\drivers\etc
2013-01-14 15:51:20 ----D---- C:\Windows\SYSWOW64\drivers
2013-01-14 15:51:20 ----D---- C:\Windows\AppPatch
2013-01-14 15:41:10 ----D---- C:\Program Files (x86)\Java
2013-01-13 19:09:04 ----D---- C:\Windows\rescache
2013-01-13 18:57:43 ----D---- C:\Windows\Prefetch
2013-01-13 15:11:28 ----D---- C:\Windows\winsxs
2013-01-13 15:10:25 ----D---- C:\Windows\SYSWOW64\migration
2013-01-13 15:10:25 ----D---- C:\Program Files (x86)\Internet Explorer
2013-01-13 15:10:23 ----D---- C:\Windows\system32\migration
2013-01-13 15:10:21 ----D---- C:\Program Files\Internet Explorer
2013-01-13 14:53:33 ----HD---- C:\Windows\msdownld.tmp
2013-01-13 14:53:31 ----RD---- C:\Program Files
2013-01-13 14:27:16 ----D---- C:\Windows\SYSWOW64\sk-SK
2013-01-13 14:27:16 ----D---- C:\Windows\system32\sk-SK
2013-01-13 14:27:15 ----D---- C:\Windows\SYSWOW64\en-US
2013-01-13 14:27:12 ----D---- C:\Windows\PolicyDefinitions
2013-01-13 14:27:11 ----D---- C:\Windows\system32\en-US
2013-01-12 13:47:09 ----D---- C:\Windows\SYSWOW64\config
2013-01-12 12:45:38 ----D---- C:\Filmy
2013-01-12 12:34:20 ----D---- C:\Prebraté programy
2013-01-11 15:55:05 ----D---- C:\Windows\Panther
2013-01-11 15:52:02 ----D---- C:\Windows\servicing
2013-01-11 07:41:19 ----D---- C:\Windows\debug
2013-01-11 07:40:20 ----D---- C:\Users\Juraj Cordas\AppData\Roaming\Wise Disk Cleaner
2013-01-10 20:19:32 ----D---- C:\Windows\Microsoft.NET
2013-01-09 17:33:50 ----D---- C:\Users\Juraj Cordas\AppData\Roaming\Vso
2013-01-09 17:33:50 ----D---- C:\Users\Juraj Cordas\AppData\Roaming\DAEMON Tools Lite
2013-01-08 22:50:34 ----D---- C:\Windows\system
2013-01-08 22:43:49 ----A---- C:\Windows\win.ini
2013-01-08 22:38:04 ----RSD---- C:\Windows\Fonts
2013-01-08 22:35:49 ----A---- C:\Windows\system32\MRT.exe
2013-01-05 21:02:15 ----D---- C:\ProgramData\Media Center Programs
2013-01-05 18:27:20 ----A---- C:\Windows\SYSWOW64\PnkBstrA.exe
2013-01-04 15:48:14 ----D---- C:\Windows\system32\FxsTmp
2013-01-03 20:16:01 ----D---- C:\Windows\SoftwareDistribution
2012-12-29 13:37:17 ----D---- C:\Users\Juraj Cordas\AppData\Roaming\Canon
2012-12-29 13:30:07 ----D---- C:\Program Files (x86)\Canon
2012-12-27 08:24:22 ----D---- C:\ProgramData\Ubisoft

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2012-01-29 564792]
R0 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\system32\drivers\vmbus.sys [2010-11-20 199552]
R1 AsIO;AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [2012-01-17 13368]
R1 avgtp;avgtp; \??\C:\Windows\system32\drivers\avgtpx64.sys [2012-12-10 30568]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-20 514560]
R1 ehdrv;ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [2009-03-19 134024]
R2 eamon;eamon; C:\Windows\system32\DRIVERS\eamon.sys [2009-03-19 142776]
R2 epfwwfpr;epfwwfpr; C:\Windows\system32\DRIVERS\epfwwfpr.sys [2009-03-19 121152]
R2 IDMWFP;IDMWFP; C:\Windows\system32\DRIVERS\idmwfp.sys [2012-11-22 165112]
R3 asusgsb;ASUS Virtual Video Capture Device Driver; C:\Windows\system32\drivers\asusgsb.sys [2009-02-17 17792]
R3 atkdisplf;ASUS Kernel Mode Enhanced Driver; C:\Windows\system32\drivers\ATKDispLowFilter.sys [2009-02-17 39424]
R3 AVerPola;AVerMedia USB Polaris Series Capture Service; C:\Windows\system32\DRIVERS\AVerPola.sys [2009-08-05 364800]
R3 AVPolCIR;AVerMedia USB Polaris Series Custom IR Service; C:\Windows\system32\DRIVERS\AVPolCIR.sys [2009-08-05 44032]
R3 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2012-01-29 283200]
R3 HECIx64;Intel(R) Management Engine Interface; C:\Windows\system32\DRIVERS\HECIx64.sys [2009-09-17 56344]
R3 MTsensor;ATK0110 ACPI UTILITY; C:\Windows\system32\DRIVERS\ASACPI.sys [2009-07-16 15416]
R3 NVHDA;Service for NVIDIA High Definition Audio Driver; C:\Windows\system32\drivers\nvhda64v.sys [2010-06-21 131688]
R3 pcouffin;VSO Software pcouffin; C:\Windows\System32\Drivers\pcouffin.sys [2012-01-20 82816]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2009-08-21 239616]
R3 VIAHdAudAddService;VIA High Definition Audio Driver Service; C:\Windows\system32\drivers\viahduaa.sys [2010-01-11 1290752]
R3 WDC_SAM;WD SCSI Pass Thru driver; C:\Windows\system32\DRIVERS\wdcsam64.sys [2008-05-06 14464]
S1 EIO64;EIO Driver; C:\Windows\system32\DRIVERS\EIO64.sys []
S3 a04gzuob;a04gzuob; C:\Windows\system32\drivers\a04gzuob.sys []
S3 anvsnddrv;AnvSoft Virtual Sound Device; C:\Windows\system32\drivers\anvsnddrv.sys [2011-11-28 33872]
S3 BridgeMP;@%SystemRoot%\system32\bridgeres.dll,-1; C:\Windows\system32\DRIVERS\bridge.sys [2009-07-14 95232]
S3 catchme;catchme; \??\C:\ComboFix\catchme.sys []
S3 nmwcd;Nokia USB Phone Parent Driver; C:\Windows\system32\drivers\ccdcmbx64.sys [2011-11-01 19968]
S3 nmwcdc;Nokia USB Communication Driver; C:\Windows\system32\drivers\ccdcmbox64.sys [2011-11-01 27136]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\Windows\system32\DRIVERS\pccsmcfdx64.sys [2008-08-28 25600]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-20 165888]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2010-11-20 20992]
S3 Revoflt;Revoflt; C:\Windows\system32\DRIVERS\revoflt.sys [2009-12-30 31800]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-20 6656]
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-20 34688]
S3 Synth3dVsc;Synth3dVsc; C:\Windows\System32\drivers\synth3dvsc.sys []
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2010-11-20 59392]
S3 tsusbhub;@%SystemRoot%\system32\drivers\tsusbhub.sys,-1; C:\Windows\system32\drivers\tsusbhub.sys []
S3 upperdev;upperdev; C:\Windows\system32\DRIVERS\usbser_lowerfltx64.sys [2011-11-01 9216]
S3 usbscan;USB Scanner Driver; C:\Windows\system32\DRIVERS\usbscan.sys [2009-07-14 41984]
S3 usbser;USB Modem Driver; C:\Windows\system32\drivers\usbser.sys [2010-11-20 32768]
S3 UsbserFilt;UsbserFilt; C:\Windows\system32\DRIVERS\usbser_lowerfltjx64.sys [2011-11-01 9216]
S3 VGPU;VGPU; C:\Windows\System32\drivers\rdvgkmd.sys []
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-20 21760]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2012-12-18 65192]
R2 ATKFUSService;ATK Fast User Switch Service; C:\Windows\system32\ATKFUSService.exe [2009-12-01 63488]
R2 AVerRemote;AVerRemote; C:\Program Files (x86)\Common Files\AVerMedia\Service\AVerRemote.exe [2009-09-22 348160]
R2 AVerScheduleService;AVerScheduleService; C:\Program Files (x86)\Common Files\AVerMedia\Service\AVerScheduleService.exe [2009-10-09 389120]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe [2009-03-19 731840]
R2 IJPLMSVC;Canon Inkjet Printer/Scanner/Fax Extended Survey Program; C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE [2010-04-05 116104]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2009-09-30 262144]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2012-10-02 891240]
R2 nvUpdatusService;NVIDIA Update Service Daemon; C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2012-10-10 1258856]
R2 PnkBstrA;PnkBstrA; C:\Windows\syswow64\PnkBstrA.exe [2013-01-05 75136]
R2 RichVideo;Cyberlink RichVideo Service(CRVS); C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe [2009-04-17 247152]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2012-10-02 382824]
R2 UNS;Intel(R) Management & Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2009-09-30 2314240]
R3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-01-22 251400]
S3 EhttpSrv;ESET HTTP Server; C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe [2009-03-19 23296]
S3 gusvc;Google Updater Service; C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe [2008-11-20 136120]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2013-01-22 115608]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 ServiceLayer;ServiceLayer; C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe [2012-01-04 718888]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2012-11-13 529744]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2012-01-17 1255736]
S4 SnugTV Service;SnugTV Service; C:\Program Files (x86)\SnugTV\SnugTV Station\AMAServer.exe [2009-11-26 464384]
S4 vToolbarUpdater13.2.0;vToolbarUpdater13.2.0; C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\13.2.0\ToolbarUpdater.exe []

-----------------EOF-----------------

Duklando.

[vyosek]

Zdravim

Stahnete AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner

• Ulozte nejlepe na plochu
• Ukoncete vsechny programy
• Kliknete na Search
• Probehne skenovani a pak se objevi log, pripadne bude ulozen na systemovem disku jako AdwCleaner[R?].txt, ten sem vlozte

[Duklando]

Log z AdwCleaner. Dulkando.



# AdwCleaner v2.109 - Logfile created 01/27/2013 at 17:00:38
# Updated 26/01/2013 by Xplode
# Operating system : Windows 7 Ultimate Service Pack 1 (64 bits)
# User : Juraj Cordas - MOJPOCITAC
# Boot Mode : Normal
# Running from : C:\Users\Juraj Cordas\Downloads\Programs\adwcleaner_3.exe
# Option [Search]


***** [Services] *****


***** [Files / Folders] *****

File Found : C:\END
Folder Found : C:\Program Files (x86)\Conduit
Folder Found : C:\ProgramData\APN
Folder Found : C:\ProgramData\Babylon
Folder Found : C:\Users\Juraj Cordas\AppData\Local\APN
Folder Found : C:\Users\Juraj Cordas\AppData\Local\Babylon
Folder Found : C:\Users\Juraj Cordas\AppData\Local\Conduit
Folder Found : C:\Users\Juraj Cordas\AppData\Local\Ilivid
Folder Found : C:\Users\Juraj Cordas\AppData\LocalLow\Conduit
Folder Found : C:\Users\Juraj Cordas\AppData\Roaming\Babylon
Folder Found : C:\Users\Juraj Cordas\AppData\Roaming\OpenCandy

***** [Registry] *****

Key Found : HKCU\Software\AppDataLow\Software\Conduit
Key Found : HKCU\Software\AppDataLow\Software\Crossrider
Key Found : HKCU\Software\AppDataLow\Software\SmartBar
Key Found : HKCU\Software\AVG Secure Search
Key Found : HKCU\Software\Conduit
Key Found : HKCU\Software\IGearSettings
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Found : HKLM\SOFTWARE\Classes\AppID\{1FDFF5A2-7BB1-48E1-8081-7236812B12B2}
Key Found : HKLM\SOFTWARE\Classes\AppID\{BB711CB0-C70B-482E-9852-EC05EBD71DBB}
Key Found : HKLM\SOFTWARE\Classes\AppID\ScriptHelper.EXE
Key Found : HKLM\SOFTWARE\Classes\AppID\ViProtocol.DLL
Key Found : HKLM\SOFTWARE\Classes\Applications\ilividsetup.exe
Key Found : HKLM\SOFTWARE\Classes\AVG Secure Search.BrowserWndAPI
Key Found : HKLM\SOFTWARE\Classes\AVG Secure Search.BrowserWndAPI.1
Key Found : HKLM\SOFTWARE\Classes\AVG Secure Search.PugiObj
Key Found : HKLM\SOFTWARE\Classes\AVG Secure Search.PugiObj.1
Key Found : HKLM\SOFTWARE\Classes\Prod.cap
Key Found : HKLM\SOFTWARE\Classes\PROTOCOLS\Handler\viprotocol
Key Found : HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi
Key Found : HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi.1
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{74FB6AFD-DD77-4CEB-83BD-AB2B63E63C93}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{C2AC8A0E-E48E-484B-A71C-C7A937FAAB94}
Key Found : HKLM\SOFTWARE\Classes\ViProtocol.ViProtocolOLE
Key Found : HKLM\SOFTWARE\Classes\ViProtocol.ViProtocolOLE.1
Key Found : HKLM\Software\Conduit
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\ConduitInstallerStub_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\ConduitInstallerStub_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\iLivid_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\iLivid_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\iLividSetup_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\iLividSetup_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\SweetIM_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\SweetIM_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{C6FDD0C3-266A-4DC3-B459-28C697C44CDC}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Found : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}
Key Found : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Key Found : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Found : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{B658800C-F66E-4EF3-AB85-6C0C227862A9}
Key Found : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Key Found : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Found : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Key Found : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}
Key Found : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Key Found : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Found : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Found : HKLM\SOFTWARE\Classes\Interface\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Key Found : HKLM\SOFTWARE\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}
Value Found : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [Avg@toolbar]

***** [Internet Browsers] *****

-\\ Internet Explorer v9.0.8112.16457

[OK] Registry is clean.

-\\ Mozilla Firefox v18.0.1 (sk)

File : C:\Users\Juraj Cordas\AppData\Roaming\Mozilla\Firefox\Profiles\077ihatr.default\prefs.js

[OK] File is clean.

-\\ Google Chrome v24.0.1312.56

File : C:\Users\Juraj Cordas\AppData\Local\Google\Chrome\User Data\Default\Preferences

Found [l.11] : urls_to_restore_on_startup = [ "hxxp://isearch.avg.com/?cid={DC22B8E8-1684-4564-8301-7555BF8C415A}&mid=3909ef4458db47d0882fd150208b1114-ad1491be2ce6c122f6b66faa90e70c2decf7d34c&lang=en&ds=gm011&pr=sa&d=2013-01-25 09:26:58&v=13.2.0.4&sap=hp" ]
Found [l.599] : urls_to_restore_on_startup = [ "hxxp://isearch.avg.com/?cid={DC22B8E8-1684-4564-8301-7555BF8C415A}&mid=3909ef4458db47d0882fd150208b1114-ad1491be2ce6c122f6b66faa90e70c2decf7d34c&lang=en&ds=gm011&pr=sa&d=2013-01-25 09:26:58&v=13.2.0.4&sap=hp" ]

*************************

AdwCleaner[R1].txt - [6327 octets] - [25/01/2013 16:45:49]
AdwCleaner[R2].txt - [5900 octets] - [27/01/2013 17:00:38]

########## EOF - C:\AdwCleaner[R2].txt - [5960 octets] ##########

[vyosek]

Spustte znovu AdwCleaner

• Pokud pouzivate Win Vista ci W7, kliknete na AdwCleaner pravym a dejte Run As Administrator ci Spustit jako spravce
• Kliknete na Delete
• PC provede opravu, restartuje se a da Vam log (C:\AdwCleaner [S1].txt) , jeho obsah vlozte sem

[Duklando]

Log po delete. Duklando


# AdwCleaner v2.109 - Logfile created 01/27/2013 at 19:02:37
# Updated 26/01/2013 by Xplode
# Operating system : Windows 7 Ultimate Service Pack 1 (64 bits)
# User : Juraj Cordas - MOJPOCITAC
# Boot Mode : Normal
# Running from : C:\Users\Juraj Cordas\Downloads\Programs\adwcleaner_3.exe
# Option [Delete]


***** [Services] *****


***** [Files / Folders] *****

File Deleted : C:\END
Folder Deleted : C:\Program Files (x86)\Conduit
Folder Deleted : C:\ProgramData\APN
Folder Deleted : C:\ProgramData\Babylon
Folder Deleted : C:\Users\Juraj Cordas\AppData\Local\APN
Folder Deleted : C:\Users\Juraj Cordas\AppData\Local\Babylon
Folder Deleted : C:\Users\Juraj Cordas\AppData\Local\Conduit
Folder Deleted : C:\Users\Juraj Cordas\AppData\Local\Ilivid
Folder Deleted : C:\Users\Juraj Cordas\AppData\LocalLow\Conduit
Folder Deleted : C:\Users\Juraj Cordas\AppData\Roaming\Babylon
Folder Deleted : C:\Users\Juraj Cordas\AppData\Roaming\OpenCandy

***** [Registry] *****

Key Deleted : HKCU\Software\AppDataLow\Software\Conduit
Key Deleted : HKCU\Software\AppDataLow\Software\Crossrider
Key Deleted : HKCU\Software\AppDataLow\Software\SmartBar
Key Deleted : HKCU\Software\AVG Secure Search
Key Deleted : HKCU\Software\Conduit
Key Deleted : HKCU\Software\IGearSettings
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{1FDFF5A2-7BB1-48E1-8081-7236812B12B2}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{BB711CB0-C70B-482E-9852-EC05EBD71DBB}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\ScriptHelper.EXE
Key Deleted : HKLM\SOFTWARE\Classes\AppID\ViProtocol.DLL
Key Deleted : HKLM\SOFTWARE\Classes\Applications\ilividsetup.exe
Key Deleted : HKLM\SOFTWARE\Classes\AVG Secure Search.BrowserWndAPI
Key Deleted : HKLM\SOFTWARE\Classes\AVG Secure Search.BrowserWndAPI.1
Key Deleted : HKLM\SOFTWARE\Classes\AVG Secure Search.PugiObj
Key Deleted : HKLM\SOFTWARE\Classes\AVG Secure Search.PugiObj.1
Key Deleted : HKLM\SOFTWARE\Classes\Prod.cap
Key Deleted : HKLM\SOFTWARE\Classes\PROTOCOLS\Handler\viprotocol
Key Deleted : HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi
Key Deleted : HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi.1
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{74FB6AFD-DD77-4CEB-83BD-AB2B63E63C93}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{C2AC8A0E-E48E-484B-A71C-C7A937FAAB94}
Key Deleted : HKLM\SOFTWARE\Classes\ViProtocol.ViProtocolOLE
Key Deleted : HKLM\SOFTWARE\Classes\ViProtocol.ViProtocolOLE.1
Key Deleted : HKLM\Software\Conduit
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\ConduitInstallerStub_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\ConduitInstallerStub_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\iLivid_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\iLivid_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\iLividSetup_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\iLividSetup_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SweetIM_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SweetIM_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{C6FDD0C3-266A-4DC3-B459-28C697C44CDC}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{B658800C-F66E-4EF3-AB85-6C0C227862A9}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}
Value Deleted : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [Avg@toolbar]

***** [Internet Browsers] *****

-\\ Internet Explorer v9.0.8112.16457

[OK] Registry is clean.

-\\ Mozilla Firefox v18.0.1 (sk)

File : C:\Users\Juraj Cordas\AppData\Roaming\Mozilla\Firefox\Profiles\077ihatr.default\prefs.js

[OK] File is clean.

-\\ Google Chrome v24.0.1312.56

File : C:\Users\Juraj Cordas\AppData\Local\Google\Chrome\User Data\Default\Preferences

Deleted [l.11] : urls_to_restore_on_startup = [ "hxxp://isearch.avg.com/?cid={DC22B8E8-1684-4564-8301-7555B[...]
Deleted [l.1992] : urls_to_restore_on_startup = [ "hxxp://isearch.avg.com/?cid={DC22B8E8-1684-4564-8301-7555BF8C[...]

*************************

AdwCleaner[R1].txt - [6327 octets] - [25/01/2013 16:45:49]
AdwCleaner[S1].txt - [5738 octets] - [27/01/2013 19:02:37]

########## EOF - C:\AdwCleaner[S1].txt - [5798 octets] ##########

[vyosek]

Stahnete OTL http://oldtimer.geekstogo.com/OTL.exe a ulozte jej na plochu

• Pokud pouzivate Win Vista ci W7, kliknete na OTL pravym a dejte Run As Administrator ci Spustit jako spravce
• Pokud pouzivate 64bitovy OS, zkontrolujte, zda-li je zaskrtnuty ctverecek u Pro 64 bitové OS, pokud ne, zaskrtnete jej
• Zaskrtnete okenko Pro vsechny uzivatele
• Zaskrtnete okenko Kontrola na havet "LOP"
• Zaskrtnete okenko Kontrola na havet "Purity"
• Stari souboru zmente z 30 dnu na 7 dnu
• Do spodniho okenka Vlastni skenovani/opravy vlozte skript nize

• Kód: Vybrat vše

  CREATERESTOREPOINT
  
  netsvcs
  drivers32
  savembr:0
  
  /md5start
  atapi.sys
  autochk.exe
  cdrom.sys
  explorer.exe
  hal.dll
  scecli.dll
  services.exe
  svchost.exe
  tcpip.sys
  userinit.exe
  winlogon.exe
  /md5stop
  
  %systemroot%*.* /U /s
  %SYSTEMDRIVE%\*.exe
  %ALLUSERSPROFILE%\Application Data\*.
  %ALLUSERSPROFILE%\Application Data\*.exe /s
  %APPDATA%\*.
  %APPDATA%\*.exe /s
  %systemroot%\*. /mp /s
  %systemroot%\system32\*.dll /lockedfiles
  %systemroot%\Tasks\*.job
  %systemroot%\system32\drivers\*.sys /lockedfiles
  %systemroot%\System32\config\*.sav
  %systemroot%\system32\*.dll /lockedfiles
  %systemroot%\system32\drivers\*.sys /3
  %systemroot%\system32\*.* /3
  %SYSTEMDRIVE%\*.exe
  
  HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s
  
  %PROGRAMFILES%\Mozilla Firefox\firefox.exe /md5
  %PROGRAMFILES%\Internet Explorer\iexplore.exe /md5
  %PROGRAMFILES%\Opera\opera.exe /md5
  %PROGRAMFILES%\Google\Chrome\Application\chrome.exe /md5
  
  %SystemDrive%\PhysicalMBR.bin /md5 
  
  *crack* /s
  *keygen* /s
  *loader* /s

• Kliknete na tlacitko Prohledat
• Po dokonceni skenu (cca 10 az 15 min) se objevi logy OTL.txt a Extras.txt, oba sem vlozte
• Pokud budou logy dlouhe (forum bude kricet o prekroceni maximalniho poctu znaku), tak je rozdelte do vice prispevku

[Duklando]

OTL Txt 1.


OTL logfile created on: 28. 1. 2013 16:31:59 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Juraj Cordas\Desktop
64bit- Ultimate Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 0000041b | Country: Slovenská republika | Language: SKY | Date Format: d. M. yyyy

3,96 Gb Total Physical Memory | 2,55 Gb Available Physical Memory | 64,38% Memory free
7,92 Gb Paging File | 6,04 Gb Available in Paging File | 76,30% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 931,41 Gb Total Space | 734,65 Gb Free Space | 78,87% Space Free | Partition Type: NTFS
Drive J: | 232,23 Gb Total Space | 123,59 Gb Free Space | 53,22% Space Free | Partition Type: NTFS

Computer Name: MOJPOCITAC | User Name: Juraj Cordas | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 7 Days

========== Processes (SafeList) ==========

PRC - [2013/01/28 16:20:57 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Juraj Cordas\Desktop\OTL.exe
PRC - [2013/01/18 09:07:04 | 001,248,208 | ---- | M] (Google Inc.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
PRC - [2013/01/05 18:27:20 | 000,075,136 | ---- | M] () -- C:\Windows\SysWOW64\PnkBstrA.exe
PRC - [2012/12/18 20:08:28 | 000,065,192 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
PRC - [2012/11/27 14:23:03 | 003,487,128 | ---- | M] (Tonec Inc.) -- C:\Program Files (x86)\Internet Download Manager\IDMan.exe
PRC - [2012/10/10 21:23:42 | 001,258,856 | ---- | M] (NVIDIA Corporation) -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
PRC - [2012/10/02 13:15:38 | 000,382,824 | ---- | M] (NVIDIA Corporation) -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
PRC - [2010/05/25 13:28:58 | 000,263,600 | ---- | M] (Tonec Inc.) -- C:\Program Files (x86)\Internet Download Manager\IEMonitor.exe
PRC - [2010/04/05 20:55:01 | 000,116,104 | ---- | M] () -- C:\Program Files (x86)\Canon\IJPLM\ijplmsvc.exe
PRC - [2009/10/09 04:11:20 | 000,389,120 | R--- | M] () -- C:\Program Files (x86)\Common Files\AVerMedia\Service\AVerScheduleService.exe
PRC - [2009/09/30 19:34:22 | 002,314,240 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
PRC - [2009/09/30 19:33:08 | 000,262,144 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
PRC - [2009/09/22 09:20:36 | 000,348,160 | R--- | M] (AVerMedia) -- C:\Program Files (x86)\Common Files\AVerMedia\Service\AVerRemote.exe
PRC - [2009/07/31 12:06:24 | 000,155,648 | R--- | M] () -- C:\Program Files (x86)\Common Files\AVerMedia\AVerQuick\AVerHIDReceiver.exe
PRC - [2009/06/19 02:31:38 | 000,651,264 | R--- | M] (AVerMedia TECHNOLOGIES, Inc.) -- C:\Program Files (x86)\Common Files\AVerMedia\AVerQuick\AVerQuick.exe
PRC - [2009/03/19 11:44:50 | 000,731,840 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe


========== Modules (No Company Name) ==========

MOD - [2013/01/18 09:07:02 | 012,459,472 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\24.0.1312.56\PepperFlash\pepflashplayer.dll
MOD - [2013/01/18 09:07:02 | 000,460,240 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\24.0.1312.56\ppgooglenaclpluginchrome.dll
MOD - [2013/01/18 09:07:01 | 004,012,496 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\24.0.1312.56\pdf.dll
MOD - [2013/01/18 09:06:15 | 000,597,968 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\24.0.1312.56\libglesv2.dll
MOD - [2013/01/18 09:06:15 | 000,124,368 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\24.0.1312.56\libegl.dll
MOD - [2013/01/18 09:06:13 | 001,552,848 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\24.0.1312.56\ffmpegsumo.dll
MOD - [2009/07/31 12:06:24 | 000,155,648 | R--- | M] () -- C:\Program Files (x86)\Common Files\AVerMedia\AVerQuick\AVerHIDReceiver.exe


========== Services (SafeList) ==========

SRV:64bit: - [2009/12/01 14:22:58 | 000,063,488 | ---- | M] (ASUSTeK COMPUTER INC.) [Auto | Running] -- C:\Windows\SysNative\ATKFUSService.exe -- (ATKFUSService)
SRV:64bit: - [2009/07/14 02:41:27 | 001,011,712 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV:64bit: - [2009/07/14 02:40:01 | 000,193,536 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\appmgmts.dll -- (AppMgmt)
SRV:64bit: - [2009/03/19 11:48:10 | 000,023,296 | ---- | M] (ESET) [On_Demand | Stopped] -- C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe -- (EhttpSrv)
SRV:64bit: - [2009/03/19 11:44:50 | 000,731,840 | ---- | M] (ESET) [Auto | Running] -- C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe -- (ekrn)
SRV - [2013/01/22 21:03:48 | 000,251,400 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2013/01/22 17:12:47 | 000,115,608 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2013/01/05 18:27:20 | 000,075,136 | ---- | M] () [Auto | Running] -- C:\Windows\SysWOW64\PnkBstrA.exe -- (PnkBstrA)
SRV - [2012/12/18 20:08:28 | 000,065,192 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2012/11/13 19:10:01 | 000,529,744 | ---- | M] (Valve Corporation) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Steam\SteamService.exe -- (Steam Client Service)
SRV - [2012/10/10 21:23:42 | 001,258,856 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe -- (nvUpdatusService)
SRV - [2012/10/02 13:15:38 | 000,382,824 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe -- (Stereo Service)
SRV - [2012/01/04 12:32:36 | 000,718,888 | ---- | M] (Nokia) [On_Demand | Stopped] -- C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe -- (ServiceLayer)
SRV - [2010/04/05 20:55:01 | 000,116,104 | ---- | M] () [Auto | Running] -- C:\Program Files (x86)\Canon\IJPLM\ijplmsvc.exe -- (IJPLMSVC)
SRV - [2010/03/18 13:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2009/11/26 16:40:34 | 000,464,384 | ---- | M] (AVerMedia Technologies, Inc.) [Disabled | Stopped] -- C:\Program Files (x86)\SnugTV\SnugTV Station\AMAServer.exe -- (SnugTV Service)
SRV - [2009/10/09 04:11:20 | 000,389,120 | R--- | M] () [Auto | Running] -- C:\Program Files (x86)\Common Files\AVerMedia\Service\AVerScheduleService.exe -- (AVerScheduleService)
SRV - [2009/09/30 19:34:22 | 002,314,240 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe -- (UNS)
SRV - [2009/09/30 19:33:08 | 000,262,144 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe -- (LMS)
SRV - [2009/09/22 09:20:36 | 000,348,160 | R--- | M] (AVerMedia) [Auto | Running] -- C:\Program Files (x86)\Common Files\AVerMedia\Service\AVerRemote.exe -- (AVerRemote)
SRV - [2009/06/10 22:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)


========== Driver Services (SafeList) ==========

DRV:64bit: - [2012/12/10 17:52:38 | 000,030,568 | ---- | M] (AVG Technologies) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\avgtpx64.sys -- (avgtp)
DRV:64bit: - [2012/11/22 01:43:14 | 000,165,112 | ---- | M] (Tonec Inc.) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\idmwfp.sys -- (IDMWFP)
DRV:64bit: - [2012/03/01 07:46:16 | 000,023,408 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\Windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
DRV:64bit: - [2012/01/29 22:48:02 | 000,564,792 | ---- | M] (Duplex Secure Ltd.) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\sptd.sys -- (sptd)
DRV:64bit: - [2012/01/29 22:40:29 | 000,283,200 | ---- | M] (DT Soft Ltd) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\dtsoftbus01.sys -- (dtsoftbus01)
DRV:64bit: - [2012/01/20 20:41:11 | 000,082,816 | ---- | M] (VSO Software) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\pcouffin.sys -- (pcouffin)
DRV:64bit: - [2011/11/28 14:51:44 | 000,033,872 | ---- | M] (AnvSoft Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\anvsnddrv.sys -- (anvsnddrv)
DRV:64bit: - [2011/11/01 09:07:26 | 000,009,216 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\usbser_lowerfltjx64.sys -- (UsbserFilt)
DRV:64bit: - [2011/11/01 09:07:26 | 000,009,216 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\usbser_lowerfltx64.sys -- (upperdev)
DRV:64bit: - [2011/11/01 09:07:24 | 000,027,136 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ccdcmbox64.sys -- (nmwcdc)
DRV:64bit: - [2011/11/01 09:07:24 | 000,019,968 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ccdcmbx64.sys -- (nmwcd)
DRV:64bit: - [2011/03/11 07:41:12 | 000,107,904 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:64bit: - [2011/03/11 07:41:12 | 000,027,008 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:64bit: - [2010/11/20 14:33:35 | 000,078,720 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:64bit: - [2010/11/20 12:07:05 | 000,059,392 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV:64bit: - [2010/11/20 12:03:42 | 000,020,992 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\rdpvideominiport.sys -- (RdpVideoMiniport)
DRV:64bit: - [2010/11/20 11:43:57 | 000,032,768 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\usbser.sys -- (usbser)
DRV:64bit: - [2010/06/21 23:07:36 | 000,131,688 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\nvhda64v.sys -- (NVHDA)
DRV:64bit: - [2010/01/11 11:05:20 | 001,290,752 | ---- | M] (VIA Technologies, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\viahduaa.sys -- (VIAHdAudAddService)
DRV:64bit: - [2009/12/30 12:21:24 | 000,031,800 | ---- | M] (VS Revo Group) [File_System | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\revoflt.sys -- (Revoflt)
DRV:64bit: - [2009/09/17 12:54:54 | 000,056,344 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\HECIx64.sys -- (HECIx64)
DRV:64bit: - [2009/08/21 01:05:06 | 000,239,616 | ---- | M] (Realtek ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Rt64win7.sys -- (RTL8167)
DRV:64bit: - [2009/08/05 07:58:32 | 000,044,032 | ---- | M] (AVerMedia TECHNOLOGIES, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\AVPolCIR.sys -- (AVPolCIR)
DRV:64bit: - [2009/08/05 07:58:26 | 000,364,800 | ---- | M] (AVerMedia TECHNOLOGIES, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\AVerPola.sys -- (AVerPola)
DRV:64bit: - [2009/07/16 20:38:40 | 000,015,416 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\ASACPI.sys -- (MTsensor)
DRV:64bit: - [2009/07/14 02:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:64bit: - [2009/07/14 02:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:64bit: - [2009/07/14 02:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:64bit: - [2009/06/10 21:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:64bit: - [2009/06/10 21:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:64bit: - [2009/06/10 21:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:64bit: - [2009/06/10 21:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
DRV:64bit: - [2009/03/19 11:46:06 | 000,121,152 | ---- | M] (ESET) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\epfwwfpr.sys -- (epfwwfpr)
DRV:64bit: - [2009/03/19 11:44:36 | 000,134,024 | ---- | M] (ESET) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\ehdrv.sys -- (ehdrv)
DRV:64bit: - [2009/03/19 11:41:42 | 000,142,776 | ---- | M] (ESET) [File_System | Auto | Running] -- C:\Windows\SysNative\drivers\eamon.sys -- (eamon)
DRV:64bit: - [2009/02/17 18:22:22 | 000,039,424 | ---- | M] (ASUSTeK Computer Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\ATKDispLowFilter.sys -- (atkdisplf)
DRV:64bit: - [2009/02/17 18:22:22 | 000,017,792 | ---- | M] (ASUSTeK Computer Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\asusgsb.sys -- (asusgsb)
DRV:64bit: - [2008/08/28 10:44:42 | 000,025,600 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\pccsmcfdx64.sys -- (pccsmcfd)
DRV:64bit: - [2008/05/06 16:06:00 | 000,014,464 | ---- | M] (Western Digital Technologies) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\wdcsam64.sys -- (WDC_SAM)
DRV - [2009/07/14 02:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE:64bit: - HKLM\..\SearchScopes,DefaultScope =
IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKLM\..\SearchScopes,DefaultScope =


IE - HKU\.DEFAULT\..\SearchScopes,DefaultScope =
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\..\SearchScopes,DefaultScope =
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-19\..\SearchScopes,DefaultScope =

IE - HKU\S-1-5-20\..\SearchScopes,DefaultScope =

IE - HKU\S-1-5-21-2897896145-2411329342-784474909-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.zoznam.sk
IE - HKU\S-1-5-21-2897896145-2411329342-784474909-1000\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKU\S-1-5-21-2897896145-2411329342-784474909-1000\..\SearchScopes\{060D1376-820F-4451-8168-A275B3DA50DE}: "URL" = http://www.topky.sk/?sid=0&fsearchX={se ... 3&limit=50
IE - HKU\S-1-5-21-2897896145-2411329342-784474909-1000\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTer ... ORM=IE8SRC
IE - HKU\S-1-5-21-2897896145-2411329342-784474909-1000\..\SearchScopes\{23F4F925-6F40-4483-A013-24159995B908}: "URL" = http://ozene.zoznam.sk/?fsearch={search ... 59&datum=2
IE - HKU\S-1-5-21-2897896145-2411329342-784474909-1000\..\SearchScopes\{26D4A9DB-F4E2-4C37-AF45-F3621CD6586F}: "URL" = http://webslovnik.zoznam.sk/index.fcgi? ... earchTerms}
IE - HKU\S-1-5-21-2897896145-2411329342-784474909-1000\..\SearchScopes\{38D37094-0B69-4AB1-95E5-9DB6545A68A8}: "URL" = http://www.zoznam.sk/hladaj.fcgi?co=odk ... earchTerms}
IE - HKU\S-1-5-21-2897896145-2411329342-784474909-1000\..\SearchScopes\{39437A1C-1CB8-4A3B-A65D-B3E293C56DB6}: "URL" = http://mojdom.zoznam.sk/?query={searchT ... submit=%A0
IE - HKU\S-1-5-21-2897896145-2411329342-784474909-1000\..\SearchScopes\{8F023490-7784-41F1-B2D6-F0086FB2EF3A}: "URL" = http://dromedar.zoznam.sk/index?sid=111 ... earchTerms}
IE - HKU\S-1-5-21-2897896145-2411329342-784474909-1000\..\SearchScopes\{A8F552D9-D270-4EC4-AB77-131F8961DDE4}: "URL" = http://autoviny.zoznam.sk/index?sid=100 ... earchTerms}
IE - HKU\S-1-5-21-2897896145-2411329342-784474909-1000\..\SearchScopes\{B000F88A-E2EF-4638-8380-66954DD07F03}: "URL" = http://www.zoznam.sk/hladaj.fcgi?co=tel ... &net_alt=1
IE - HKU\S-1-5-21-2897896145-2411329342-784474909-1000\..\SearchScopes\{E2F4D5B4-CD21-4DFC-8B66-9D5BC1C2C503}: "URL" = http://webslovnik.zoznam.sk/index.fcgi? ... earchTerms}
IE - HKU\S-1-5-21-2897896145-2411329342-784474909-1000\..\SearchScopes\{E608000E-2E46-4ADE-B01E-536F93AC25A7}: "URL" = http://openiazoch.zoznam.sk/search.asp? ... h%BEada%9D
IE - HKU\S-1-5-21-2897896145-2411329342-784474909-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-2897896145-2411329342-784474909-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = <local>

IE - HKU\S-1-5-21-2897896145-2411329342-784474909-1003\..\SearchScopes,DefaultScope =

========== FireFox ==========

FF - prefs.js..extensions.enabledAddons: %7B9AA46F4F-4DC7-4c06-97AF-5035170634FE%7D:5.0.3
FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:18.0.1
FF - user.js - File not found

FF:64bit: - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF64_11_5_502_146.dll File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\5.1.10411.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_5_502_146.dll ()
FF - HKLM\Software\MozillaPlugins\@canon.com/EPPEX: C:\Program Files (x86)\Canon\Easy-PhotoPrint EX\NPEZFFPI.DLL (CANON INC.)
FF - HKLM\Software\MozillaPlugins\@google.com/npPicasa3,version=3.0.0: C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll (Google, Inc.)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.11.2: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@mcafee.com/SAFFPlugin: File not found
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files (x86)\Microsoft Silverlight\5.1.10411.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVision: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVisionStreaming: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.21.124\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.21.124\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\ubisoft.com/uplaypc: C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll (Ubisoft)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 18.0.1\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2013/01/22 17:12:47 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 18.0.1\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins
FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\eplgTb@eset.com: C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird [2012/01/17 16:39:32 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\mozilla_cc@internetdownloadmanager.com: C:\Users\Juraj Cordas\AppData\Roaming\IDM\idmmzcc5 [2012/11/27 14:27:11 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 18.0.1\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2013/01/22 17:12:47 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 18.0.1\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins
FF - HKEY_CURRENT_USER\software\mozilla\SeaMonkey\Extensions\\mozilla_cc@internetdownloadmanager.com: C:\Users\Juraj Cordas\AppData\Roaming\IDM\idmmzcc5 [2012/11/27 14:27:11 | 000,000,000 | ---D | M]

[2013/01/22 16:57:35 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Juraj Cordas\AppData\Roaming\mozilla\Extensions
[2013/01/25 17:26:13 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Juraj Cordas\AppData\Roaming\mozilla\Firefox\Profiles\077ihatr.default\extensions
[2013/01/25 17:26:13 | 000,109,804 | ---- | M] () (No name found) -- C:\Users\Juraj Cordas\AppData\Roaming\mozilla\firefox\profiles\077ihatr.default\extensions\{9AA46F4F-4DC7-4c06-97AF-5035170634FE}.xpi
[2013/01/22 17:12:42 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\extensions
[2013/01/22 17:12:47 | 000,262,552 | ---- | M] (Mozilla Foundation) -- C:\Program Files (x86)\mozilla firefox\components\browsercomps.dll
[2013/01/05 18:19:10 | 000,001,583 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\atlas-sk.xml
[2013/01/05 18:19:10 | 000,001,380 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\azet-sk.xml
[2013/01/05 18:19:10 | 000,001,479 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\dunaj-sk.xml
[2013/01/05 18:19:10 | 000,001,473 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\slovnik-sk.xml
[2013/01/05 18:19:10 | 000,001,104 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\wikipedia-sk.xml
[2013/01/05 18:19:10 | 000,000,830 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\zoznam-sk.xml

========== Chrome ==========

CHR - homepage:
CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}sourceid=chrome&ie={inputEncoding}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&hl={language}&q={searchTerms}&sugkey={google:suggestAPIKeyParameter},
CHR - homepage:
CHR - plugin: Shockwave Flash (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\24.0.1312.56\PepperFlash\pepflashplayer.dll
CHR - plugin: Chrome Remote Desktop Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\24.0.1312.56\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\24.0.1312.56\pdf.dll
CHR - plugin: Adobe Acrobat (Enabled) = C:\Program Files (x86)\Adobe\Reader 11.0\Reader\Browser\nppdf32.dll
CHR - plugin: CANON iMAGE GATEWAY Album Plugin Utility (Enabled) = C:\Program Files (x86)\Canon\Easy-PhotoPrint EX\NPEZFFPI.DLL
CHR - plugin: Picasa (Enabled) = C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll
CHR - plugin: Google Update (Enabled) = C:\Program Files (x86)\Google\Update\1.3.21.124\npGoogleUpdate3.dll
CHR - plugin: Java(TM) Platform SE 7 U11 (Enabled) = C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll
CHR - plugin: NVIDIA 3D Vision (Enabled) = C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll
CHR - plugin: NVIDIA 3D VISION (Enabled) = C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll
CHR - plugin: Uplay PC (Enabled) = C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_5_502_146.dll
CHR - plugin: Silverlight Plug-In (Enabled) = c:\Program Files (x86)\Microsoft Silverlight\5.1.10411.0\npctrl.dll
CHR - Extension: Dokumenty Google = C:\Users\Juraj Cordas\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.0.0.6_0\
CHR - Extension: Dokumenty Google = C:\Users\Juraj Cordas\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.4_0\
CHR - Extension: Disk Google = C:\Users\Juraj Cordas\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.2_0\
CHR - Extension: Disk Google = C:\Users\Juraj Cordas\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\
CHR - Extension: YouTube = C:\Users\Juraj Cordas\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\
CHR - Extension: H\u013Eada\u0165 v Google = C:\Users\Juraj Cordas\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\
CHR - Extension: Gmail = C:\Users\Juraj Cordas\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\

O1 HOSTS File: ([2013/01/14 15:54:37 | 000,000,027 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2:64bit: - BHO: (IDM integration (IDMIEHlprObj Class)) - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files (x86)\Internet Download Manager\IDMIECC64.dll (Internet Download Manager, Tonec Inc.)
O2 - BHO: (IDM integration (IDMIEHlprObj Class)) - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files (x86)\Internet Download Manager\IDMIECC.dll (Internet Download Manager, Tonec Inc.)
O2 - BHO: (no name) - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - No CLSID value found.
O2 - BHO: (Canon Easy-WebPrint EX BHO) - {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll (CANON INC.)
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O4:64bit: - HKLM..\Run: [egui] C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe (ESET)
O4:64bit: - HKLM..\Run: [SpywareTerminatorShield] C:\Program Files (x86)\Spyware Terminator\SpywareTerminatorShield.exe File not found
O4:64bit: - HKLM..\Run: [SpywareTerminatorUpdater] C:\Program Files (x86)\Spyware Terminator\SpywareTerminatorUpdate.exe File not found
O4 - HKLM..\Run: [UpdatePDRShortCut] C:\Program Files (x86)\CyberLink\PowerDirector\MUITransfer\MUIStartMenu.exe (CyberLink Corp.)
O4 - HKU\S-1-5-21-2897896145-2411329342-784474909-1000..\Run: [IDMan] C:\Program Files (x86)\Internet Download Manager\IDMan.exe (Tonec Inc.)
O4 - HKU\S-1-5-21-2897896145-2411329342-784474909-1003..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-21-2897896145-2411329342-784474909-1003..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O7 - HKU\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-19\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-20\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-2897896145-2411329342-784474909-1000\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-2897896145-2411329342-784474909-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 255
O7 - HKU\S-1-5-21-2897896145-2411329342-784474909-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoLowDiskSpaceChecks = 1
O7 - HKU\S-1-5-21-2897896145-2411329342-784474909-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O7 - HKU\S-1-5-21-2897896145-2411329342-784474909-1003\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O8:64bit: - Extra context menu item: Stiahnuť s IDM - C:\Program Files (x86)\Internet Download Manager\IEExt.htm ()
O8:64bit: - Extra context menu item: Stiahnuť s IDM všetky prepojenia - C:\Program Files (x86)\Internet Download Manager\IEGetAll.htm ()
O8 - Extra context menu item: Stiahnuť s IDM - C:\Program Files (x86)\Internet Download Manager\IEExt.htm ()
O8 - Extra context menu item: Stiahnuť s IDM všetky prepojenia - C:\Program Files (x86)\Internet Download Manager\IEGetAll.htm ()
O13 - gopher Prefix: missing
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/s ... wflash.cab (Shockwave Flash Object)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 195.34.133.21 212.186.211.21
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{97E7621A-4951-4198-B958-CDAD26FB58FE}: DhcpNameServer = 195.34.133.21 212.186.211.21
O18:64bit: - Protocol\Handler\msdaipp - No CLSID value found
O18:64bit: - Protocol\Handler\msdaipp\0x00000001 - No CLSID value found
O18:64bit: - Protocol\Handler\msdaipp\oledb - No CLSID value found
O18:64bit: - Protocol\Handler\mso-offdap11 - No CLSID value found
O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18:64bit: - Protocol\Filter\text/xml - No CLSID value found
O20:64bit: - HKLM Winlogon: Shell - (Explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysWOW64\userinit.exe (Microsoft Corporation)
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O34 - HKLM BootExecute: (autocheck autochk *)
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = ComFile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = ComFile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

CREATERESTOREPOINT
Restore point Set: OTL Restore Point

NetSvcs:64bit: AppMgmt - C:\Windows\SysNative\appmgmts.dll (Microsoft Corporation)

Drivers32:64bit: msacm.ac3filter - ac3filter64.acm ()
Drivers32:64bit: msacm.l3acm - C:\Windows\System32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.divxa32 - C:\Windows\SysWow64\msaud32_divx.acm (Microsoft Corporation)
Drivers32: msacm.l3acm - C:\Windows\SysWOW64\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: vidc.cvid - C:\Windows\SysWow64\iccvid.dll (Radius Inc.)
Drivers32: vidc.XVID - C:\Windows\SysWow64\xvidvfw.dll ()
PhysicalDisk0 MBR saved to C:\PhysicalMBR.bin

========== Files/Folders - Created Within 7 Days ==========

[2013/01/28 16:20:55 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\Juraj Cordas\Desktop\OTL.exe
[2013/01/27 20:32:52 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
[2013/01/27 15:47:04 | 000,000,000 | ---D | C] -- C:\Users\Juraj Cordas\AppData\Local\SlimWare Utilities Inc
[2013/01/27 15:46:58 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\Downloaded Installers
[2013/01/27 14:27:22 | 000,051,496 | ---- | C] (Windows (R) Win 7 DDK provider) -- C:\Windows\SysNative\drivers\stflt.sys
[2013/01/26 14:27:50 | 000,000,000 | ---D | C] -- C:\Users\Juraj Cordas\AppData\Local\PunkBuster
[2013/01/26 13:29:58 | 000,000,000 | ---D | C] -- C:\Users\Juraj Cordas\Documents\Assassin's Creed Revelations
[2013/01/25 15:58:25 | 000,000,000 | ---D | C] -- C:\rsit
[2013/01/23 21:29:20 | 000,000,000 | ---D | C] -- C:\Users\Juraj Cordas\AppData\Local\David_Čapek
[2013/01/23 21:25:50 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Manažer napájení
[2013/01/23 20:14:30 | 000,000,000 | ---D | C] -- C:\Users\Juraj Cordas\Documents\AVerTV
[2013/01/23 20:13:10 | 000,677,376 | ---- | C] (AVerMedia TECHNOLOGIES, Inc.) -- C:\Windows\SysNative\AVerGraphAPI.dll
[2013/01/23 20:13:10 | 000,000,000 | ---D | C] -- C:\ProgramData\AVerTV
[2013/01/23 20:13:09 | 000,250,368 | ---- | C] (AVerMedia TECHNOLOGIES, Inc.) -- C:\Windows\SysNative\AVerColorAPI.dll
[2013/01/23 20:13:08 | 000,000,000 | ---D | C] -- C:\ProgramData\AVerMedia
[2013/01/23 20:11:12 | 000,364,800 | ---- | C] (AVerMedia TECHNOLOGIES, Inc.) -- C:\Windows\SysNative\drivers\AVerPola.sys
[2013/01/23 20:11:12 | 000,044,032 | ---- | C] (AVerMedia TECHNOLOGIES, Inc.) -- C:\Windows\SysNative\drivers\AVPolCIR.sys
[2013/01/23 20:11:01 | 000,000,000 | ---D | C] -- C:\Users\Juraj Cordas\AppData\Local\AVerMedia
[2013/01/23 20:10:57 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVerMedia
[2013/01/23 20:10:14 | 000,102,400 | R--- | C] (AVerMedia Technologies, Inc.) -- C:\Windows\SysWow64\CardID.dll
[2013/01/23 20:09:53 | 000,045,056 | R--- | C] (Open Source Software community project) -- C:\Windows\SysWow64\pthreadVC.dll
[2013/01/23 20:09:35 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\AVerMedia
[2013/01/23 20:09:35 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\AVerMedia
[2013/01/22 21:04:03 | 000,000,000 | ---D | C] -- C:\Users\Juraj Cordas\AppData\Local\Macromedia
[2013/01/22 17:12:41 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mozilla Firefox
[2013/01/22 16:57:23 | 000,000,000 | ---D | C] -- C:\Users\Juraj Cordas\AppData\Local\Mozilla
[2013/01/22 16:57:19 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mozilla Maintenance Service
[2013/01/22 16:57:19 | 000,000,000 | ---D | C] -- C:\ProgramData\Mozilla
[2012/01/20 20:41:11 | 000,082,816 | ---- | C] (VSO Software) -- C:\Users\Juraj Cordas\AppData\Roaming\pcouffin.sys
[3 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

========== Files - Modified Within 7 Days ==========

[2013/01/28 16:33:42 | 000,000,512 | ---- | M] () -- C:\PhysicalMBR.bin
[2013/01/28 16:31:00 | 000,000,830 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2013/01/28 16:25:11 | 000,018,224 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2013/01/28 16:25:11 | 000,018,224 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2013/01/28 16:22:33 | 000,726,444 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2013/01/28 16:22:33 | 000,616,032 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2013/01/28 16:22:33 | 000,106,412 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2013/01/28 16:20:57 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Juraj Cordas\Desktop\OTL.exe
[2013/01/28 16:18:01 | 000,002,279 | ---- | M] () -- C:\Users\Juraj Cordas\Application Data\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk
[2013/01/28 16:18:00 | 000,000,944 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2013/01/28 16:17:57 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2013/01/28 16:17:45 | 3189,022,720 | -HS- | M] () -- C:\hiberfil.sys
[2013/01/27 22:37:00 | 000,000,948 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2013/01/27 20:32:52 | 000,002,255 | ---- | M] () -- C:\Users\Public\Desktop\Google Chrome.lnk
[2013/01/27 14:27:22 | 000,051,496 | ---- | M] (Windows (R) Win 7 DDK provider) -- C:\Windows\SysNative\drivers\stflt.sys
[2013/01/26 14:27:53 | 000,270,408 | ---- | M] () -- C:\Windows\SysWow64\PnkBstrB.xtr
[2013/01/26 14:27:53 | 000,270,408 | ---- | M] () -- C:\Windows\SysWow64\PnkBstrB.exe
[2013/01/23 21:25:50 | 000,003,415 | ---- | M] () -- C:\Users\Juraj Cordas\Desktop\Manažer napájení.lnk
[2013/01/23 20:27:13 | 000,000,064 | ---- | M] () -- C:\Windows\AVerText.ini
[2013/01/23 20:10:57 | 000,002,304 | ---- | M] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\AVer HID Receiver.lnk
[2013/01/23 20:10:57 | 000,002,262 | ---- | M] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\AVerQuick.lnk
[2013/01/23 20:10:57 | 000,002,007 | ---- | M] () -- C:\Users\Public\Desktop\AVerTV 6.lnk
[2013/01/22 21:03:48 | 000,697,864 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerApp.exe
[2013/01/22 21:03:48 | 000,074,248 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
[2013/01/22 16:57:20 | 000,001,147 | ---- | M] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk
[3 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

========== Files Created - No Company Name ==========

[2013/01/28 16:33:42 | 000,000,512 | ---- | C] () -- C:\PhysicalMBR.bin
[2013/01/27 20:32:52 | 000,002,279 | ---- | C] () -- C:\Users\Juraj Cordas\Application Data\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk
[2013/01/27 20:32:52 | 000,002,255 | ---- | C] () -- C:\Users\Public\Desktop\Google Chrome.lnk
[2013/01/27 20:32:22 | 000,000,948 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2013/01/27 20:32:21 | 000,000,944 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2013/01/26 14:27:53 | 000,270,408 | ---- | C] () -- C:\Windows\SysWow64\PnkBstrB.xtr
[2013/01/23 21:25:50 | 000,003,415 | ---- | C] () -- C:\Users\Juraj Cordas\Desktop\Manažer napájení.lnk
[2013/01/23 21:25:50 | 000,003,375 | ---- | C] () -- C:\Users\Juraj Cordas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Manažer napájení.lnk
[2013/01/23 20:10:57 | 000,002,304 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\AVer HID Receiver.lnk
[2013/01/23 20:10:57 | 000,002,262 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\AVerQuick.lnk
[2013/01/23 20:10:57 | 000,002,007 | ---- | C] () -- C:\Users\Public\Desktop\AVerTV 6.lnk
[2013/01/23 20:10:14 | 000,049,152 | R--- | C] () -- C:\Windows\SysWow64\AVerIO.dll
[2013/01/23 20:10:14 | 000,003,456 | R--- | C] () -- C:\Windows\SysWow64\AVerIO.sys
[2013/01/23 20:09:53 | 000,598,016 | R--- | C] () -- C:\Windows\SysWow64\sptlib21.dll
[2013/01/23 20:09:53 | 000,311,296 | R--- | C] () -- C:\Windows\SysWow64\sptlib01.dll
[2013/01/23 20:09:53 | 000,294,912 | R--- | C] () -- C:\Windows\SysWow64\sptlib11.dll
[2013/01/23 20:09:53 | 000,290,816 | R--- | C] () -- C:\Windows\SysWow64\sptlib22.dll
[2013/01/23 20:09:53 | 000,249,856 | R--- | C] () -- C:\Windows\SysWow64\sptlib03.dll
[2013/01/23 20:09:53 | 000,225,280 | R--- | C] () -- C:\Windows\SysWow64\sptlib02.dll
[2013/01/23 20:09:53 | 000,135,168 | R--- | C] () -- C:\Windows\SysWow64\sptlib12.dll
[2013/01/22 16:57:20 | 000,001,159 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
[2013/01/22 16:57:20 | 000,001,147 | ---- | C] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk
[2013/01/13 11:43:43 | 000,256,000 | ---- | C] () -- C:\Windows\PEV.exe
[2013/01/13 11:43:43 | 000,208,896 | ---- | C] () -- C:\Windows\MBR.exe
[2013/01/13 11:43:43 | 000,098,816 | ---- | C] () -- C:\Windows\sed.exe
[2013/01/13 11:43:43 | 000,080,412 | ---- | C] () -- C:\Windows\grep.exe
[2013/01/13 11:43:43 | 000,068,096 | ---- | C] () -- C:\Windows\zip.exe
[2013/01/03 20:15:54 | 003,123,272 | ---- | C] () -- C:\Windows\SysWow64\pbsvc.exe
[2012/11/13 23:07:39 | 000,003,072 | ---- | C] () -- C:\Users\Juraj Cordas\AppData\Local\file__0.localstorage
[2012/10/04 16:52:57 | 000,014,690 | ---- | C] () -- C:\Program Files (x86)\AssassinsCreed.Data.001
[2012/09/04 19:10:31 | 000,001,016 | ---- | C] () -- C:\Users\Juraj Cordas\AppData\Local\SRDownloader.nast
[2012/03/07 21:37:14 | 000,270,408 | ---- | C] () -- C:\Windows\SysWow64\PnkBstrB.exe
[2012/03/07 21:37:12 | 000,075,136 | ---- | C] () -- C:\Windows\SysWow64\PnkBstrA.exe
[2012/02/28 22:06:15 | 000,004,096 | -H-- | C] () -- C:\Users\Juraj Cordas\AppData\Local\keyfile3.drm
[2012/02/14 20:27:21 | 000,007,168 | ---- | C] () -- C:\Users\Juraj Cordas\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2012/02/12 14:58:02 | 000,000,064 | ---- | C] () -- C:\Windows\AVerText.ini
[2012/01/24 15:44:00 | 000,129,024 | ---- | C] () -- C:\Windows\UNWISE.EXE
[2012/01/24 15:44:00 | 000,000,165 | ---- | C] () -- C:\Windows\Cool.ini
[2012/01/20 20:41:11 | 000,007,859 | ---- | C] () -- C:\Users\Juraj Cordas\AppData\Roaming\pcouffin.cat
[2012/01/20 20:41:11 | 000,001,167 | ---- | C] () -- C:\Users\Juraj Cordas\AppData\Roaming\pcouffin.inf
[2012/01/19 23:51:06 | 000,053,248 | ---- | C] () -- C:\Windows\SysWow64\asrussian.dll
[2012/01/19 23:51:06 | 000,053,248 | ---- | C] () -- C:\Windows\SysWow64\askorean.dll
[2012/01/19 23:51:06 | 000,053,248 | ---- | C] () -- C:\Windows\SysWow64\asjapan.dll
[2012/01/19 23:51:06 | 000,053,248 | ---- | C] () -- C:\Windows\SysWow64\ASCHT.dll
[2012/01/19 23:51:06 | 000,053,248 | ---- | C] () -- C:\Windows\SysWow64\aschs.dll
[2012/01/19 23:51:06 | 000,053,248 | ---- | C] () -- C:\Windows\SysWow64\asgerman.dll
[2012/01/19 23:51:06 | 000,053,248 | ---- | C] () -- C:\Windows\SysWow64\asfrench.dll
[2012/01/19 23:51:06 | 000,053,248 | ---- | C] () -- C:\Windows\SysWow64\aseng.dll
[2012/01/17 17:56:47 | 000,000,376 | ---- | C] () -- C:\Windows\ODBC.INI
[2012/01/17 17:46:36 | 000,011,832 | ---- | C] () -- C:\Windows\SysWow64\drivers\AsInsHelp64.sys
[2012/01/17 17:46:36 | 000,010,216 | ---- | C] () -- C:\Windows\SysWow64\drivers\AsInsHelp32.sys
[2012/01/17 17:09:27 | 000,024,576 | ---- | C] () -- C:\Windows\SysWow64\AsIO.dll
[2012/01/17 17:09:27 | 000,013,368 | ---- | C] () -- C:\Windows\SysWow64\drivers\AsIO.sys
[2012/01/17 15:58:57 | 000,001,769 | ---- | C] () -- C:\Windows\Language_trs.ini
[2012/01/17 15:58:53 | 000,018,336 | ---- | C] () -- C:\Windows\Ascd_tmp.ini

========== ZeroAccess Check ==========

[2009/07/14 05:55:00 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
"" = C:\Windows\SysNative\shell32.dll -- [2012/06/09 06:43:10 | 014,172,672 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2012/06/09 05:41:00 | 012,873,728 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\fastprox.dll -- [2009/07/14 02:40:51 | 000,909,312 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2010/11/20 13:19:02 | 000,606,208 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\wbemess.dll -- [2009/07/14 02:41:56 | 000,505,856 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]

========== LOP Check ==========

[2012/01/20 20:48:48 | 000,000,000 | ---D | M] -- C:\Users\Juraj Cordas\AppData\Roaming\1-abc
[2012/11/11 11:06:04 | 000,000,000 | ---D | M] -- C:\Users\Juraj Cordas\AppData\Roaming\AnvSoft
[2012/10/29 22:02:16 | 000,000,000 | ---D | M] -- C:\Users\Juraj Cordas\AppData\Roaming\Any Video Converter
[2013/01/02 16:12:00 | 000,000,000 | ---D | M] -- C:\Users\Juraj Cordas\AppData\Roaming\Avery
[2012/11/25 15:23:50 | 000,000,000 | ---D | M] -- C:\Users\Juraj Cordas\AppData\Roaming\AVI ReComp
[2013/01/27 16:19:54 | 000,000,000 | ---D | M] -- C:\Users\Juraj Cordas\AppData\Roaming\Azureus
[2012/11/01 20:15:54 | 000,000,000 | ---D | M] -- C:\Users\Juraj Cordas\AppData\Roaming\BSplayer
[2012/01/17 22:07:54 | 000,000,000 | ---D | M] -- C:\Users\Juraj Cordas\AppData\Roaming\BSplayer Pro
[2012/12/29 13:37:17 | 000,000,000 | ---D | M] -- C:\Users\Juraj Cordas\AppData\Roaming\Canon
[2013/01/09 17:33:50 | 000,000,000 | ---D | M] -- C:\Users\Juraj Cordas\AppData\Roaming\DAEMON Tools Lite
[2013/01/27 23:06:00 | 000,000,000 | ---D | M] -- C:\Users\Juraj Cordas\AppData\Roaming\DMCache
[2013/01/22 19:53:29 | 000,000,000 | ---D | M] -- C:\Users\Juraj Cordas\AppData\Roaming\GetRightToGo
[2012/08/30 03:33:45 | 000,000,000 | ---D | M] -- C:\Users\Juraj Cordas\AppData\Roaming\GrabPro
[2013/01/27 16:34:12 | 000,000,000 | ---D | M] -- C:\Users\Juraj Cordas\AppData\Roaming\IDM
[2012/12/22 20:10:12 | 000,000,000 | ---D | M] -- C:\Users\Juraj Cordas\AppData\Roaming\IObit
[2012/01/29 12:17:17 | 000,000,000 | ---D | M] -- C:\Users\Juraj Cordas\AppData\Roaming\log
[2012/04/03 16:08:32 | 000,000,000 | ---D | M] -- C:\Users\Juraj Cordas\AppData\Roaming\MusicMP3Downloader
[2012/06/10 12:32:21 | 000,000,000 | ---D | M] -- C:\Users\Juraj Cordas\AppData\Roaming\Nokia
[2012/08/30 03:49:53 | 000,000,000 | ---D | M] -- C:\Users\Juraj Cordas\AppData\Roaming\Orbit
[2012/06/21 19:15:30 | 000,000,000 | ---D | M] -- C:\Users\Juraj Cordas\AppData\Roaming\Origin
[2012/06/10 12:30:48 | 000,000,000 | ---D | M] -- C:\Users\Juraj Cordas\AppData\Roaming\PC Suite
[2013/01/02 16:03:41 | 000,000,000 | ---D | M] -- C:\Users\Juraj Cordas\AppData\Roaming\Popisovac
[2012/08/30 03:33:48 | 000,000,000 | ---D | M] -- C:\Users\Juraj Cordas\AppData\Roaming\ProgSense
[2012/03/07 21:37:10 | 000,000,000 | ---D | M] -- C:\Users\Juraj Cordas\AppData\Roaming\PunkBuster
[2012/12/07 20:51:45 | 000,000,000 | ---D | M] -- C:\Users\Juraj Cordas\AppData\Roaming\Serif
[2013/01/09 16:23:53 | 000,000,000 | ---D | M] -- C:\Users\Juraj Cordas\AppData\Roaming\TeamViewer
[2012/11/12 17:02:22 | 000,000,000 | ---D | M] -- C:\Users\Juraj Cordas\AppData\Roaming\TFP
[2013/01/03 20:40:21 | 000,000,000 | ---D | M] -- C:\Users\Juraj Cordas\AppData\Roaming\Theta
[2012/08/30 03:34:15 | 000,000,000 | ---D | M] -- C:\Users\Juraj Cordas\AppData\Roaming\TuneUp Software
[2013/01/26 14:27:44 | 000,000,000 | ---D | M] -- C:\Users\Juraj Cordas\AppData\Roaming\Ubisoft
[2012/01/20 14:54:43 | 000,000,000 | ---D | M] -- C:\Users\Juraj Cordas\AppData\Roaming\VS Revo Group
[2013/01/09 17:33:50 | 000,000,000 | ---D | M] -- C:\Users\Juraj Cordas\AppData\Roaming\Vso
[2012/12/22 20:12:31 | 000,000,000 | ---D | M] -- C:\Users\Juraj Cordas\AppData\Roaming\Vtools
[2013/01/11 07:40:20 | 000,000,000 | ---D | M] -- C:\Users\Juraj Cordas\AppData\Roaming\Wise Disk Cleaner
[2012/01/29 12:33:41 | 000,000,000 | ---D | M] -- C:\Users\Juraj Cordas\AppData\Roaming\Wise Registry Cleaner
[2012/03/09 16:36:06 | 000,000,000 | ---D | M] -- C:\Users\Juraj Cordas\AppData\Roaming\Wondershare Video Converter Platinum
[2012/03/09 20:23:27 | 000,000,000 | ---D | M] -- C:\Users\Juraj Cordas\AppData\Roaming\Wondershare Video Converter Ultimate
[2012/04/25 16:09:19 | 000,000,000 | ---D | M] -- C:\Users\Juraj Cordas\AppData\Roaming\Zoner

========== Purity Check ==========

[Duklando]

OLT.Txt2

========== Custom Scans ==========

< >
[2009/07/14 06:08:49 | 000,000,006 | -H-- | C] () -- C:\Windows\Tasks\SA.DAT
[2009/07/14 06:08:49 | 000,032,628 | ---- | C] () -- C:\Windows\Tasks\SCHEDLGU.TXT
[2012/06/26 14:56:48 | 000,000,830 | ---- | C] () -- C:\Windows\Tasks\Adobe Flash Player Updater.job
[2013/01/13 15:32:40 | 000,000,404 | ---- | C] () -- C:\Windows\Tasks\Wise PC Engineer Schedule Task.job
[2013/01/27 20:32:21 | 000,000,944 | ---- | C] () -- C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
[2013/01/27 20:32:22 | 000,000,948 | ---- | C] () -- C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job

< >

< MD5 for: ATAPI.SYS >
[2009/07/14 02:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\erdnt\cache64\atapi.sys
[2009/07/14 02:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\SysNative\drivers\atapi.sys
[2009/07/14 02:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\SysNative\DriverStore\FileRepository\mshdc.inf_amd64_neutral_aad30bdeec04ea5e\atapi.sys
[2009/07/14 02:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\winsxs\amd64_mshdc.inf_31bf3856ad364e35_6.1.7600.16385_none_392d19c13b3ad543\atapi.sys
[2009/07/14 02:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\winsxs\amd64_mshdc.inf_31bf3856ad364e35_6.1.7601.17514_none_3b5e2d89382958dd\atapi.sys

< MD5 for: AUTOCHK.EXE >
[2010/11/20 14:24:26 | 000,777,728 | ---- | M] (Microsoft Corporation) MD5=3B536A8BEC3B4F23FFDFD78B11A2AB93 -- C:\Windows\SysNative\autochk.exe
[2010/11/20 14:24:26 | 000,777,728 | ---- | M] (Microsoft Corporation) MD5=3B536A8BEC3B4F23FFDFD78B11A2AB93 -- C:\Windows\winsxs\amd64_microsoft-windows-autochk_31bf3856ad364e35_6.1.7601.17514_none_4019f2b8d860ad30\autochk.exe
[2009/07/14 02:14:12 | 000,668,160 | ---- | M] (Microsoft Corporation) MD5=41E4C8EBA464E7D6A5BA5E8827732AEB -- C:\Windows\winsxs\x86_microsoft-windows-autochk_31bf3856ad364e35_6.1.7600.16385_none_e1ca436d2314b860\autochk.exe
[2009/07/14 02:38:56 | 000,777,728 | ---- | M] (Microsoft Corporation) MD5=8B7F8E882A649D81CEA1EDE9BBB68FFF -- C:\Windows\winsxs\amd64_microsoft-windows-autochk_31bf3856ad364e35_6.1.7600.16385_none_3de8def0db722996\autochk.exe
[2010/11/20 13:16:54 | 000,668,160 | ---- | M] (Microsoft Corporation) MD5=F88A52EB62019D6A62FDD9E08034DBD8 -- C:\Windows\SysWOW64\autochk.exe
[2010/11/20 13:16:54 | 000,668,160 | ---- | M] (Microsoft Corporation) MD5=F88A52EB62019D6A62FDD9E08034DBD8 -- C:\Windows\winsxs\x86_microsoft-windows-autochk_31bf3856ad364e35_6.1.7601.17514_none_e3fb573520033bfa\autochk.exe

< MD5 for: CDROM.SYS >
[2009/07/14 00:19:54 | 000,147,456 | ---- | M] (Microsoft Corporation) MD5=83D2D75E1EFB81B3450C18131443F7DB -- C:\Windows\winsxs\amd64_cdrom.inf_31bf3856ad364e35_6.1.7600.16385_none_bb9e4d89bd7870f1\cdrom.sys
[2010/11/20 10:19:21 | 000,147,456 | ---- | M] (Microsoft Corporation) MD5=F036CE71586E93D94DAB220D7BDF4416 -- C:\Windows\SysNative\drivers\cdrom.sys
[2010/11/20 10:19:21 | 000,147,456 | ---- | M] (Microsoft Corporation) MD5=F036CE71586E93D94DAB220D7BDF4416 -- C:\Windows\SysNative\DriverStore\FileRepository\cdrom.inf_amd64_neutral_0b3d0d1942ab684b\cdrom.sys
[2010/11/20 10:19:21 | 000,147,456 | ---- | M] (Microsoft Corporation) MD5=F036CE71586E93D94DAB220D7BDF4416 -- C:\Windows\winsxs\amd64_cdrom.inf_31bf3856ad364e35_6.1.7601.17514_none_bdcf6151ba66f48b\cdrom.sys

< MD5 for: EXPLORER.EXE >
[2011/02/26 07:23:14 | 002,870,272 | ---- | M] (Microsoft Corporation) MD5=0862495E0C825893DB75EF44FAEA8E93 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16768_none_adc24107935a7e25\explorer.exe
[2011/02/26 06:19:21 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=0FB9C74046656D1579A64660AD67B746 -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.21669_none_ba87e574ddfe652d\explorer.exe
[2009/07/14 02:14:20 | 002,613,248 | ---- | M] (Microsoft Corporation) MD5=15BC38A7492BEFE831966ADB477CF76F -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16385_none_b7fe430bc7ce3761\explorer.exe
[2011/02/26 06:51:13 | 002,614,784 | ---- | M] (Microsoft Corporation) MD5=255CF508D7CFB10E0794D6AC93280BD8 -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20910_none_b8ce9756e0b786a4\explorer.exe
[2009/10/31 06:45:39 | 002,614,272 | ---- | M] (Microsoft Corporation) MD5=2626FC9755BE22F805D3CFA0CE3EE727 -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16450_none_b819b343c7ba6202\explorer.exe
[2011/02/26 06:33:07 | 002,614,784 | ---- | M] (Microsoft Corporation) MD5=2AF58D15EDC06EC6FDACCE1F19482BBF -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16768_none_b816eb59c7bb4020\explorer.exe
[2011/02/25 07:19:30 | 002,871,808 | ---- | M] (Microsoft Corporation) MD5=332FEAB1435662FC6C672E25BEB37BE3 -- C:\Windows\erdnt\cache86\explorer.exe
[2011/02/25 07:19:30 | 002,871,808 | ---- | M] (Microsoft Corporation) MD5=332FEAB1435662FC6C672E25BEB37BE3 -- C:\Windows\explorer.exe
[2011/02/25 07:19:30 | 002,871,808 | ---- | M] (Microsoft Corporation) MD5=332FEAB1435662FC6C672E25BEB37BE3 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17567_none_afa79dc39081d0ba\explorer.exe
[2011/02/26 07:14:34 | 002,871,808 | ---- | M] (Microsoft Corporation) MD5=3B69712041F3D63605529BD66DC00C48 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.21669_none_b0333b22a99da332\explorer.exe
[2010/11/20 13:17:09 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=40D777B7A95E00593EB1568C68514493 -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17514_none_ba2f56d3c4bcbafb\explorer.exe
[2009/08/03 07:19:07 | 002,868,224 | ---- | M] (Microsoft Corporation) MD5=700073016DAC1C3D2E7E2CE4223334B6 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20500_none_ae84b558ac4eb41c\explorer.exe
[2011/02/25 06:30:54 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=8B88EBBB05A0E56B7DCC708498C02B3E -- C:\Windows\SysWOW64\explorer.exe
[2011/02/25 06:30:54 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=8B88EBBB05A0E56B7DCC708498C02B3E -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17567_none_b9fc4815c4e292b5\explorer.exe
[2009/10/31 07:34:59 | 002,870,272 | ---- | M] (Microsoft Corporation) MD5=9AAAEC8DAC27AA17B053E6352AD233AE -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16450_none_adc508f19359a007\explorer.exe
[2009/08/03 06:49:47 | 002,613,248 | ---- | M] (Microsoft Corporation) MD5=9FF6C4C91A3711C0A3B18F87B08B518D -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20500_none_b8d95faae0af7617\explorer.exe
[2010/11/20 14:24:45 | 002,872,320 | ---- | M] (Microsoft Corporation) MD5=AC4C51EB24AA95B77F705AB159189E24 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17514_none_afdaac81905bf900\explorer.exe
[2009/10/31 07:38:38 | 002,870,272 | ---- | M] (Microsoft Corporation) MD5=B8EC4BD49CE8F6FC457721BFC210B67F -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20563_none_ae46d6aeac7ca7c7\explorer.exe
[2009/08/03 06:35:50 | 002,613,248 | ---- | M] (Microsoft Corporation) MD5=B95EEB0F4E5EFBF1038A35B3351CF047 -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16404_none_b853c407c78e3ba9\explorer.exe
[2009/07/14 02:39:10 | 002,868,224 | ---- | M] (Microsoft Corporation) MD5=C235A51CB740E45FFA0EBFB9BAFCDA64 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16385_none_ada998b9936d7566\explorer.exe
[2009/10/31 07:00:51 | 002,614,272 | ---- | M] (Microsoft Corporation) MD5=C76153C7ECA00FA852BB0C193378F917 -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20563_none_b89b8100e0dd69c2\explorer.exe
[2011/02/26 07:26:45 | 002,870,784 | ---- | M] (Microsoft Corporation) MD5=E38899074D4951D31B4040E994DD7C8D -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20910_none_ae79ed04ac56c4a9\explorer.exe
[2009/08/03 07:17:37 | 002,868,224 | ---- | M] (Microsoft Corporation) MD5=F170B4A061C9E026437B193B4D571799 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16404_none_adff19b5932d79ae\explorer.exe

< MD5 for: HAL.DLL >
[2009/07/14 02:47:48 | 000,263,232 | ---- | M] (Microsoft Corporation) MD5=C0A6F6E05E14FBCAEDE7796C8590B7AC -- C:\Windows\winsxs\amd64_microsoft-windows-hal_31bf3856ad364e35_6.1.7600.16385_none_071de44b735b3dfc\hal.dll
[2010/11/20 14:33:34 | 000,263,040 | ---- | M] (Microsoft Corporation) MD5=CFB8C673F9188F99466E76C6972191E0 -- C:\Windows\SysNative\hal.dll
[2010/11/20 14:33:34 | 000,263,040 | ---- | M] (Microsoft Corporation) MD5=CFB8C673F9188F99466E76C6972191E0 -- C:\Windows\winsxs\amd64_microsoft-windows-hal_31bf3856ad364e35_6.1.7601.17514_none_094ef8137049c196\hal.dll

< MD5 for: SCECLI.DLL >
[2009/07/14 02:16:13 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=26073302DAEA83CC5B944C546D6B47D2 -- C:\Windows\winsxs\wow64_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7600.16385_none_9e577e55272d37b4\scecli.dll
[2009/07/14 02:41:53 | 000,232,448 | ---- | M] (Microsoft Corporation) MD5=398712DDDAEFB85EDF61DF6A07B65C79 -- C:\Windows\winsxs\amd64_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7600.16385_none_9402d402f2cc75b9\scecli.dll
[2010/11/20 13:21:04 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=8124944EC89D6A1815E4E53F5B96AAF4 -- C:\Windows\erdnt\cache86\scecli.dll
[2010/11/20 13:21:04 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=8124944EC89D6A1815E4E53F5B96AAF4 -- C:\Windows\SysWOW64\scecli.dll
[2010/11/20 13:21:04 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=8124944EC89D6A1815E4E53F5B96AAF4 -- C:\Windows\winsxs\wow64_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7601.17514_none_a088921d241bbb4e\scecli.dll
[2010/11/20 14:27:25 | 000,232,960 | ---- | M] (Microsoft Corporation) MD5=ED78427259134C63ED69804D2132B86C -- C:\Windows\erdnt\cache64\scecli.dll
[2010/11/20 14:27:25 | 000,232,960 | ---- | M] (Microsoft Corporation) MD5=ED78427259134C63ED69804D2132B86C -- C:\Windows\SysNative\scecli.dll
[2010/11/20 14:27:25 | 000,232,960 | ---- | M] (Microsoft Corporation) MD5=ED78427259134C63ED69804D2132B86C -- C:\Windows\winsxs\amd64_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7601.17514_none_9633e7caefbaf953\scecli.dll

< MD5 for: SERVICES.EXE >
[2009/07/14 02:39:37 | 000,328,704 | ---- | M] (Microsoft Corporation) MD5=24ACB7E5BE595468E3B9AA488B9B4FCB -- C:\Windows\erdnt\cache64\services.exe
[2009/07/14 02:39:37 | 000,328,704 | ---- | M] (Microsoft Corporation) MD5=24ACB7E5BE595468E3B9AA488B9B4FCB -- C:\Windows\SysNative\services.exe
[2009/07/14 02:39:37 | 000,328,704 | ---- | M] (Microsoft Corporation) MD5=24ACB7E5BE595468E3B9AA488B9B4FCB -- C:\Windows\winsxs\amd64_microsoft-windows-s..s-servicecontroller_31bf3856ad364e35_6.1.7600.16385_none_2b54b20ee6fa07b1\services.exe

< MD5 for: SVCHOST.EXE >
[2009/07/14 02:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\erdnt\cache86\svchost.exe
[2009/07/14 02:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\SysWOW64\svchost.exe
[2009/07/14 02:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\winsxs\x86_microsoft-windows-services-svchost_31bf3856ad364e35_6.1.7600.16385_none_b591afc466a15356\svchost.exe
[2009/07/14 02:39:46 | 000,027,136 | ---- | M] (Microsoft Corporation) MD5=C78655BC80301D76ED4FEF1C1EA40A7D -- C:\Windows\erdnt\cache64\svchost.exe
[2009/07/14 02:39:46 | 000,027,136 | ---- | M] (Microsoft Corporation) MD5=C78655BC80301D76ED4FEF1C1EA40A7D -- C:\Windows\SysNative\svchost.exe
[2009/07/14 02:39:46 | 000,027,136 | ---- | M] (Microsoft Corporation) MD5=C78655BC80301D76ED4FEF1C1EA40A7D -- C:\Windows\winsxs\amd64_microsoft-windows-services-svchost_31bf3856ad364e35_6.1.7600.16385_none_11b04b481efec48c\svchost.exe

< MD5 for: TCPIP.SYS >
[2011/04/25 06:28:24 | 001,893,248 | ---- | M] (Microsoft Corporation) MD5=1F748D5439B65E0BEBD92F65048F030D -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.20951_none_0fb918de99201ffb\tcpip.sys
[2012/10/03 18:56:54 | 001,914,248 | ---- | M] (Microsoft Corporation) MD5=37608401DFDB388CAF66917F6B2D6FB0 -- C:\Windows\erdnt\cache64\tcpip.sys
[2012/10/03 18:56:54 | 001,914,248 | ---- | M] (Microsoft Corporation) MD5=37608401DFDB388CAF66917F6B2D6FB0 -- C:\Windows\SysNative\drivers\tcpip.sys
[2012/10/03 18:56:54 | 001,914,248 | ---- | M] (Microsoft Corporation) MD5=37608401DFDB388CAF66917F6B2D6FB0 -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.17964_none_110e0fbd7d2e4b88\tcpip.sys
[2011/09/29 18:41:37 | 001,912,176 | ---- | M] (Microsoft Corporation) MD5=3810F06A4D74A7D62641EE73D6B3C660 -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.21828_none_11c6e9949627e69c\tcpip.sys
[2010/11/20 14:33:57 | 001,924,480 | ---- | M] (Microsoft Corporation) MD5=509383E505C973ED7534A06B3D19688D -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.17514_none_114417c17d05cb37\tcpip.sys
[2012/03/30 11:19:17 | 001,877,872 | ---- | M] (Microsoft Corporation) MD5=5EFD096DEF47F8B88EF591DA92143440 -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.21178_none_0faa5514992a39a7\tcpip.sys
[2011/04/25 06:32:22 | 001,896,832 | ---- | M] (Microsoft Corporation) MD5=61DC720BB065D607D5823F13D2A64321 -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.16802_none_0f668bf97fd90dd3\tcpip.sys
[2012/03/30 12:09:53 | 001,895,280 | ---- | M] (Microsoft Corporation) MD5=624C5B3AA4C99B3184BB922D9ECE3FF0 -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.16986_none_0f140fa780164fde\tcpip.sys
[2012/08/22 19:06:13 | 001,901,936 | ---- | M] (Microsoft Corporation) MD5=7880A26B7D3B96FDA8EFD9F985036B1D -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.22097_none_117a13de9661c145\tcpip.sys
[2012/03/30 11:26:36 | 001,901,424 | ---- | M] (Microsoft Corporation) MD5=885B202006EE17AE99B9FBCEC9AF88C9 -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.21954_none_11a27a8e9643d23a\tcpip.sys
[2009/07/14 02:45:55 | 001,898,576 | ---- | M] (Microsoft Corporation) MD5=912107716BAB424C7870E8E6AF5E07E1 -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.16385_none_0f1303f98017479d\tcpip.sys
[2011/04/25 06:33:51 | 001,923,968 | ---- | M] (Microsoft Corporation) MD5=92CE29D95AC9DD2D0EE9061D551BA250 -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.17603_none_114de9497cfe9316\tcpip.sys
[2011/09/29 17:17:51 | 001,886,064 | ---- | M] (Microsoft Corporation) MD5=AC3E29880DB5659532A1AA3439304A43 -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.21060_none_0fad20ca992955d7\tcpip.sys
[2012/03/30 12:35:47 | 001,918,320 | ---- | M] (Microsoft Corporation) MD5=ACB82BDA8F46C84F465C1AFA517DC4B9 -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.17802_none_114ceccb7cff740d\tcpip.sys
[2011/04/25 07:16:34 | 001,927,552 | ---- | M] (Microsoft Corporation) MD5=B77977AEB2FF159D01DB08A309989C5F -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.21712_none_11cbb5de9625357a\tcpip.sys
[2012/10/03 18:44:29 | 001,902,472 | ---- | M] (Microsoft Corporation) MD5=D5707FC2300AA5B04B7BFE86D40C0133 -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.22124_none_11c2c45a962baed0\tcpip.sys
[2011/09/29 17:24:44 | 001,897,328 | ---- | M] (Microsoft Corporation) MD5=F18F56EFC0BFB9C87BA01C37B27F4DA5 -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.16889_none_0f170e9f80139ebc\tcpip.sys
[2012/08/22 19:12:50 | 001,913,200 | ---- | M] (Microsoft Corporation) MD5=F782CAD3CEDBB3F9FFE3BF2775D92DDC -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.17939_none_113380f37d117668\tcpip.sys
[2011/09/29 17:29:28 | 001,923,952 | ---- | M] (Microsoft Corporation) MD5=FC62769E7BFF2896035AEED399108162 -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.17697_none_10f09b257d43f3eb\tcpip.sys

< MD5 for: USERINIT.EXE >
[2010/11/20 13:17:48 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=61AC3EFDFACFDD3F0F11DD4FD4044223 -- C:\Windows\erdnt\cache86\userinit.exe
[2010/11/20 13:17:48 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=61AC3EFDFACFDD3F0F11DD4FD4044223 -- C:\Windows\SysWOW64\userinit.exe
[2010/11/20 13:17:48 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=61AC3EFDFACFDD3F0F11DD4FD4044223 -- C:\Windows\winsxs\x86_microsoft-windows-userinit_31bf3856ad364e35_6.1.7601.17514_none_de3024012ff21116\userinit.exe
[2009/07/14 02:14:43 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=6DE80F60D7DE9CE6B8C2DDFDF79EF175 -- C:\Windows\winsxs\x86_microsoft-windows-userinit_31bf3856ad364e35_6.1.7600.16385_none_dbff103933038d7c\userinit.exe
[2009/07/14 02:39:48 | 000,030,208 | ---- | M] (Microsoft Corporation) MD5=6F8F1376A13114CC10C0E69274F5A4DE -- C:\Windows\winsxs\amd64_microsoft-windows-userinit_31bf3856ad364e35_6.1.7600.16385_none_381dabbceb60feb2\userinit.exe
[2010/11/20 14:25:24 | 000,030,720 | ---- | M] (Microsoft Corporation) MD5=BAFE84E637BF7388C96EF48D4D3FDD53 -- C:\Windows\erdnt\cache64\userinit.exe
[2010/11/20 14:25:24 | 000,030,720 | ---- | M] (Microsoft Corporation) MD5=BAFE84E637BF7388C96EF48D4D3FDD53 -- C:\Windows\SysNative\userinit.exe
[2010/11/20 14:25:24 | 000,030,720 | ---- | M] (Microsoft Corporation) MD5=BAFE84E637BF7388C96EF48D4D3FDD53 -- C:\Windows\winsxs\amd64_microsoft-windows-userinit_31bf3856ad364e35_6.1.7601.17514_none_3a4ebf84e84f824c\userinit.exe

< MD5 for: WINLOGON.EXE >
[2010/11/20 14:25:30 | 000,390,656 | ---- | M] (Microsoft Corporation) MD5=1151B1BAA6F350B1DB6598E0FEA7C457 -- C:\Windows\erdnt\cache64\winlogon.exe
[2010/11/20 14:25:30 | 000,390,656 | ---- | M] (Microsoft Corporation) MD5=1151B1BAA6F350B1DB6598E0FEA7C457 -- C:\Windows\SysNative\winlogon.exe
[2010/11/20 14:25:30 | 000,390,656 | ---- | M] (Microsoft Corporation) MD5=1151B1BAA6F350B1DB6598E0FEA7C457 -- C:\Windows\winsxs\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7601.17514_none_cde90685eb910636\winlogon.exe
[2009/07/14 02:39:52 | 000,389,120 | ---- | M] (Microsoft Corporation) MD5=132328DF455B0028F13BF0ABEE51A63A -- C:\Windows\winsxs\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7600.16385_none_cbb7f2bdeea2829c\winlogon.exe
[2009/10/28 08:01:57 | 000,389,632 | ---- | M] (Microsoft Corporation) MD5=A93D41A4D4B0D91C072D11DD8AF266DE -- C:\Windows\winsxs\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7600.20560_none_cc522fd507b468f8\winlogon.exe
[2009/10/28 07:24:40 | 000,389,632 | ---- | M] (Microsoft Corporation) MD5=DA3E2A6FA9660CC75B471530CE88453A -- C:\Windows\winsxs\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7600.16447_none_cbe534e7ee8042ad\winlogon.exe

< >

< %systemroot%*.* /U /s >
[3 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
[7 C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp files -> C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp -> ]
[7 C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\*.tmp files -> C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\*.tmp -> ]
[2 C:\Windows\Installer\*.tmp files -> C:\Windows\Installer\*.tmp -> ]
[754 C:\Windows\temp\*.tmp files -> C:\Windows\temp\*.tmp -> ]

< %SYSTEMDRIVE%\*.exe >

< %ALLUSERSPROFILE%\Application Data\*. >

< %ALLUSERSPROFILE%\Application Data\*.exe /s >

< %APPDATA%\*. >
[2012/01/20 20:48:48 | 000,000,000 | ---D | M] -- C:\Users\Juraj Cordas\AppData\Roaming\1-abc
[2012/01/19 23:46:37 | 000,000,000 | ---D | M] -- C:\Users\Juraj Cordas\AppData\Roaming\Adobe
[2012/11/11 11:06:04 | 000,000,000 | ---D | M] -- C:\Users\Juraj Cordas\AppData\Roaming\AnvSoft
[2012/10/29 22:02:16 | 000,000,000 | ---D | M] -- C:\Users\Juraj Cordas\AppData\Roaming\Any Video Converter
[2013/01/02 16:12:00 | 000,000,000 | ---D | M] -- C:\Users\Juraj Cordas\AppData\Roaming\Avery
[2012/11/25 15:23:50 | 000,000,000 | ---D | M] -- C:\Users\Juraj Cordas\AppData\Roaming\AVI ReComp
[2013/01/27 16:19:54 | 000,000,000 | ---D | M] -- C:\Users\Juraj Cordas\AppData\Roaming\Azureus
[2012/11/01 20:15:54 | 000,000,000 | ---D | M] -- C:\Users\Juraj Cordas\AppData\Roaming\BSplayer
[2012/01/17 22:07:54 | 000,000,000 | ---D | M] -- C:\Users\Juraj Cordas\AppData\Roaming\BSplayer Pro
[2012/12/29 13:37:17 | 000,000,000 | ---D | M] -- C:\Users\Juraj Cordas\AppData\Roaming\Canon
[2012/10/29 17:46:11 | 000,000,000 | ---D | M] -- C:\Users\Juraj Cordas\AppData\Roaming\CyberLink
[2013/01/09 17:33:50 | 000,000,000 | ---D | M] -- C:\Users\Juraj Cordas\AppData\Roaming\DAEMON Tools Lite
[2013/01/27 23:06:00 | 000,000,000 | ---D | M] -- C:\Users\Juraj Cordas\AppData\Roaming\DMCache
[2012/12/15 17:18:40 | 000,000,000 | ---D | M] -- C:\Users\Juraj Cordas\AppData\Roaming\dvdcss
[2013/01/22 19:53:29 | 000,000,000 | ---D | M] -- C:\Users\Juraj Cordas\AppData\Roaming\GetRightToGo
[2012/08/30 03:33:45 | 000,000,000 | ---D | M] -- C:\Users\Juraj Cordas\AppData\Roaming\GrabPro
[2012/12/10 17:53:36 | 000,000,000 | ---D | M] -- C:\Users\Juraj Cordas\AppData\Roaming\GRETECH
[2012/01/17 11:56:04 | 000,000,000 | ---D | M] -- C:\Users\Juraj Cordas\AppData\Roaming\Identities
[2013/01/27 16:34:12 | 000,000,000 | ---D | M] -- C:\Users\Juraj Cordas\AppData\Roaming\IDM
[2012/01/17 16:01:29 | 000,000,000 | ---D | M] -- C:\Users\Juraj Cordas\AppData\Roaming\InstallShield
[2012/12/22 20:10:12 | 000,000,000 | ---D | M] -- C:\Users\Juraj Cordas\AppData\Roaming\IObit
[2012/01/29 12:17:17 | 000,000,000 | ---D | M] -- C:\Users\Juraj Cordas\AppData\Roaming\log
[2012/01/17 19:17:45 | 000,000,000 | ---D | M] -- C:\Users\Juraj Cordas\AppData\Roaming\Macromedia
[2009/07/14 08:45:14 | 000,000,000 | ---D | M] -- C:\Users\Juraj Cordas\AppData\Roaming\Media Center Programs
[2013/01/23 21:25:50 | 000,000,000 | --SD | M] -- C:\Users\Juraj Cordas\AppData\Roaming\Microsoft
[2013/01/22 16:57:35 | 000,000,000 | ---D | M] -- C:\Users\Juraj Cordas\AppData\Roaming\Mozilla
[2012/04/03 16:08:32 | 000,000,000 | ---D | M] -- C:\Users\Juraj Cordas\AppData\Roaming\MusicMP3Downloader
[2012/06/10 12:32:21 | 000,000,000 | ---D | M] -- C:\Users\Juraj Cordas\AppData\Roaming\Nokia
[2012/11/11 11:29:04 | 000,000,000 | ---D | M] -- C:\Users\Juraj Cordas\AppData\Roaming\NVIDIA
[2012/08/30 03:49:53 | 000,000,000 | ---D | M] -- C:\Users\Juraj Cordas\AppData\Roaming\Orbit
[2012/06/21 19:15:30 | 000,000,000 | ---D | M] -- C:\Users\Juraj Cordas\AppData\Roaming\Origin
[2012/06/10 12:30:48 | 000,000,000 | ---D | M] -- C:\Users\Juraj Cordas\AppData\Roaming\PC Suite
[2013/01/02 16:03:41 | 000,000,000 | ---D | M] -- C:\Users\Juraj Cordas\AppData\Roaming\Popisovac
[2012/08/30 03:33:48 | 000,000,000 | ---D | M] -- C:\Users\Juraj Cordas\AppData\Roaming\ProgSense
[2012/03/07 21:37:10 | 000,000,000 | ---D | M] -- C:\Users\Juraj Cordas\AppData\Roaming\PunkBuster
[2012/12/07 20:51:45 | 000,000,000 | ---D | M] -- C:\Users\Juraj Cordas\AppData\Roaming\Serif
[2013/01/09 16:23:53 | 000,000,000 | ---D | M] -- C:\Users\Juraj Cordas\AppData\Roaming\TeamViewer
[2012/11/12 17:02:22 | 000,000,000 | ---D | M] -- C:\Users\Juraj Cordas\AppData\Roaming\TFP
[2013/01/03 20:40:21 | 000,000,000 | ---D | M] -- C:\Users\Juraj Cordas\AppData\Roaming\Theta
[2012/08/30 03:34:15 | 000,000,000 | ---D | M] -- C:\Users\Juraj Cordas\AppData\Roaming\TuneUp Software
[2013/01/26 14:27:44 | 000,000,000 | ---D | M] -- C:\Users\Juraj Cordas\AppData\Roaming\Ubisoft
[2012/01/21 14:41:23 | 000,000,000 | ---D | M] -- C:\Users\Juraj Cordas\AppData\Roaming\vlc
[2012/01/20 14:54:43 | 000,000,000 | ---D | M] -- C:\Users\Juraj Cordas\AppData\Roaming\VS Revo Group
[2013/01/09 17:33:50 | 000,000,000 | ---D | M] -- C:\Users\Juraj Cordas\AppData\Roaming\Vso
[2012/12/22 20:12:31 | 000,000,000 | ---D | M] -- C:\Users\Juraj Cordas\AppData\Roaming\Vtools
[2012/01/27 19:53:22 | 000,000,000 | ---D | M] -- C:\Users\Juraj Cordas\AppData\Roaming\WinRAR
[2013/01/11 07:40:20 | 000,000,000 | ---D | M] -- C:\Users\Juraj Cordas\AppData\Roaming\Wise Disk Cleaner
[2012/01/29 12:33:41 | 000,000,000 | ---D | M] -- C:\Users\Juraj Cordas\AppData\Roaming\Wise Registry Cleaner
[2012/03/09 16:36:06 | 000,000,000 | ---D | M] -- C:\Users\Juraj Cordas\AppData\Roaming\Wondershare Video Converter Platinum
[2012/03/09 20:23:27 | 000,000,000 | ---D | M] -- C:\Users\Juraj Cordas\AppData\Roaming\Wondershare Video Converter Ultimate
[2012/04/25 16:09:19 | 000,000,000 | ---D | M] -- C:\Users\Juraj Cordas\AppData\Roaming\Zoner

< %APPDATA%\*.exe /s >
[2012/12/11 20:53:05 | 004,177,856 | ---- | M] () -- C:\Users\Juraj Cordas\AppData\Roaming\Azureus\plugins\azemp\vuzeplayer.exe
[2012/01/27 21:44:28 | 000,310,208 | ---- | M] (Georgia Institute of Technology) -- C:\Users\Juraj Cordas\AppData\Roaming\Azureus\plugins\mlab\ShaperProbeC.exe
[2009/08/11 21:21:26 | 000,087,552 | ---- | M] () -- C:\Users\Juraj Cordas\AppData\Roaming\BSplayer\AC3 Filter\ac3config.exe
[2009/08/11 21:21:30 | 000,090,112 | ---- | M] () -- C:\Users\Juraj Cordas\AppData\Roaming\BSplayer\AC3 Filter\spdif_test.exe
[2010/03/22 14:52:04 | 000,697,690 | ---- | M] () -- C:\Users\Juraj Cordas\AppData\Roaming\BSplayer\AC3 Filter\unins000.exe
[2010/08/14 10:42:54 | 000,113,152 | ---- | M] () -- C:\Users\Juraj Cordas\AppData\Roaming\BSplayer\Haali media splitter\dsmux.exe
[2010/08/14 10:45:10 | 000,358,400 | ---- | M] () -- C:\Users\Juraj Cordas\AppData\Roaming\BSplayer\Haali media splitter\gdsmux.exe
[2010/08/14 10:42:06 | 000,137,728 | ---- | M] () -- C:\Users\Juraj Cordas\AppData\Roaming\BSplayer\Haali media splitter\mkv2vfr.exe
[2010/09/30 15:30:22 | 000,042,305 | ---- | M] () -- C:\Users\Juraj Cordas\AppData\Roaming\BSplayer\Haali media splitter\uninstall.exe
[2012/11/27 14:26:32 | 004,927,472 | ---- | M] (Tonec Inc.) -- C:\Users\Juraj Cordas\AppData\Roaming\IDM\idmupdt.exe
[2013/01/23 21:25:50 | 000,028,056 | R--- | M] () -- C:\Users\Juraj Cordas\AppData\Roaming\Microsoft\Installer\{F5663E7F-79CA-4022-8B39-D855A4E0BF58}\_2508C1C8AF5B72F1116F03.exe
[2013/01/23 21:25:50 | 000,028,056 | R--- | M] () -- C:\Users\Juraj Cordas\AppData\Roaming\Microsoft\Installer\{F5663E7F-79CA-4022-8B39-D855A4E0BF58}\_853F67D554F05449430E7E.exe
[2013/01/23 21:25:50 | 000,028,056 | R--- | M] () -- C:\Users\Juraj Cordas\AppData\Roaming\Microsoft\Installer\{F5663E7F-79CA-4022-8B39-D855A4E0BF58}\_CD325AD717DCC95249DBD0.exe
[2011/11/23 18:38:29 | 003,123,272 | ---- | M] () -- C:\Users\Juraj Cordas\AppData\Roaming\PunkBuster\pbsetup\pbsvc.exe

< %systemroot%\*. /mp /s >

< %systemroot%\system32\*.dll /lockedfiles >

< %systemroot%\Tasks\*.job >
[2013/01/28 16:31:00 | 000,000,830 | ---- | M] () -- C:\Windows\Tasks\Adobe Flash Player Updater.job
[2013/01/28 16:18:00 | 000,000,944 | ---- | M] () -- C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
[2013/01/28 16:37:04 | 000,000,948 | ---- | M] () -- C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
[2013/01/13 15:32:40 | 000,000,404 | ---- | M] () -- C:\Windows\Tasks\Wise PC Engineer Schedule Task.job

< %systemroot%\system32\drivers\*.sys /lockedfiles >

< %systemroot%\System32\config\*.sav >

< %systemroot%\system32\*.dll /lockedfiles >

< %systemroot%\system32\drivers\*.sys /3 >

< %systemroot%\system32\*.* /3 >
[2013/01/28 16:18:00 | 000,000,044 | ---- | M] () -- C:\Windows\system32\log.txt
[2013/01/26 14:27:53 | 000,270,408 | ---- | M] () -- C:\Windows\system32\PnkBstrB.exe
[2013/01/26 14:27:53 | 000,270,408 | ---- | M] () -- C:\Windows\system32\PnkBstrB.xtr

< %SYSTEMDRIVE%\*.exe >

< >

< HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s >
"IDMan" = C:\Program Files (x86)\Internet Download Manager\IDMan.exe /onboot -- [2012/11/27 14:23:03 | 003,487,128 | ---- | M] (Tonec Inc.)

< >

< %PROGRAMFILES%\Mozilla Firefox\firefox.exe /md5 >
[2013/01/22 17:12:47 | 000,917,400 | ---- | M] (Mozilla Corporation) MD5=D7826A7440444F40E0406CF37FD2FA88 -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe

< %PROGRAMFILES%\Internet Explorer\iexplore.exe /md5 >
[2012/11/14 03:56:04 | 000,757,296 | ---- | M] (Microsoft Corporation) MD5=0D286C0FE561D1A7EB30E83A0FF305B2 -- C:\Program Files (x86)\Internet Explorer\iexplore.exe

< %PROGRAMFILES%\Opera\opera.exe /md5 >

< %PROGRAMFILES%\Google\Chrome\Application\chrome.exe /md5 >
[2013/01/18 09:07:04 | 001,248,208 | ---- | M] (Google Inc.) MD5=CEB132745142C85988317E9A4CA36B08 -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

< >

< %SystemDrive%\PhysicalMBR.bin /md5 >
[2013/01/28 16:33:42 | 000,000,512 | ---- | M] () MD5=52010E1A382454DD64BFF81CFF3B1193 -- C:\PhysicalMBR.bin

< >

< *crack* /s >
[2013/01/26 14:40:13 | 172,331,269 | ---- | M] () -- \Users\Juraj Cordas\Downloads\Compressed\Assassins-Creed-Revelations---CRACK.rar

< *keygen* /s >
[2013/01/26 13:50:32 | 000,000,634 | ---- | M] () -- \Users\Juraj Cordas\Downloads\Assasins.Creed.KEYGEN.torrent

< *loader* /s >
[2012/10/27 19:42:53 | 000,905,216 | ---- | M] () -- \Prebraté programy\SRDownloader.exe
[2009/07/27 18:24:06 | 002,475,304 | ---- | M] () -- \Program Files (x86)\CyberLink\Shared files\Plugin\6.0\CES_3DLoaderFBX.dll
[2010/02/10 02:38:44 | 003,473,163 | ---- | M] () -- \Program Files (x86)\Electronic Arts\Battlefield Bad Company 2\Dist\win32\levels\mp_001\loader-00.fbrb
[2010/02/10 02:38:44 | 003,417,011 | ---- | M] () -- \Program Files (x86)\Electronic Arts\Battlefield Bad Company 2\Dist\win32\levels\mp_001sr\loader-00.fbrb
[2010/02/10 02:38:44 | 005,299,907 | ---- | M] () -- \Program Files (x86)\Electronic Arts\Battlefield Bad Company 2\Dist\win32\levels\mp_002\loader-00.fbrb
[2010/02/10 02:38:46 | 005,283,781 | ---- | M] () -- \Program Files (x86)\Electronic Arts\Battlefield Bad Company 2\Dist\win32\levels\mp_002sr\loader-00.fbrb
[2010/02/10 02:38:46 | 006,458,338 | ---- | M] () -- \Program Files (x86)\Electronic Arts\Battlefield Bad Company 2\Dist\win32\levels\mp_003\loader-00.fbrb
[2010/02/10 02:38:48 | 005,719,429 | ---- | M] () -- \Program Files (x86)\Electronic Arts\Battlefield Bad Company 2\Dist\win32\levels\mp_004\loader-00.fbrb
[2010/02/10 02:38:48 | 005,681,043 | ---- | M] () -- \Program Files (x86)\Electronic Arts\Battlefield Bad Company 2\Dist\win32\levels\mp_004sdm\loader-00.fbrb
[2010/02/10 02:38:48 | 005,975,692 | ---- | M] () -- \Program Files (x86)\Electronic Arts\Battlefield Bad Company 2\Dist\win32\levels\mp_005\loader-00.fbrb
[2010/02/10 02:38:50 | 005,952,738 | ---- | M] () -- \Program Files (x86)\Electronic Arts\Battlefield Bad Company 2\Dist\win32\levels\mp_005sr\loader-00.fbrb
[2010/02/10 02:38:50 | 003,625,529 | ---- | M] () -- \Program Files (x86)\Electronic Arts\Battlefield Bad Company 2\Dist\win32\levels\mp_006\loader-00.fbrb
[2010/02/10 02:38:50 | 003,618,790 | ---- | M] () -- \Program Files (x86)\Electronic Arts\Battlefield Bad Company 2\Dist\win32\levels\mp_006cq\loader-00.fbrb
[2010/02/10 02:38:50 | 003,609,949 | ---- | M] () -- \Program Files (x86)\Electronic Arts\Battlefield Bad Company 2\Dist\win32\levels\mp_006sdm\loader-00.fbrb
[2010/02/10 02:38:52 | 005,127,190 | ---- | M] () -- \Program Files (x86)\Electronic Arts\Battlefield Bad Company 2\Dist\win32\levels\mp_007\loader-00.fbrb
[2010/02/10 02:38:52 | 005,117,095 | ---- | M] () -- \Program Files (x86)\Electronic Arts\Battlefield Bad Company 2\Dist\win32\levels\mp_007sdm\loader-00.fbrb
[2010/02/10 02:38:52 | 003,702,695 | ---- | M] () -- \Program Files (x86)\Electronic Arts\Battlefield Bad Company 2\Dist\win32\levels\mp_008\loader-00.fbrb
[2010/02/10 02:38:52 | 003,568,288 | ---- | M] () -- \Program Files (x86)\Electronic Arts\Battlefield Bad Company 2\Dist\win32\levels\mp_009cq\loader-00.fbrb
[2010/02/10 02:38:54 | 003,565,006 | ---- | M] () -- \Program Files (x86)\Electronic Arts\Battlefield Bad Company 2\Dist\win32\levels\mp_009gr\loader-00.fbrb
[2010/02/10 02:38:54 | 003,544,807 | ---- | M] () -- \Program Files (x86)\Electronic Arts\Battlefield Bad Company 2\Dist\win32\levels\mp_009sdm\loader-00.fbrb
[2010/02/10 02:38:54 | 006,516,783 | ---- | M] () -- \Program Files (x86)\Electronic Arts\Battlefield Bad Company 2\Dist\win32\levels\mp_012gr\loader-00.fbrb
[2010/02/10 02:38:56 | 006,556,315 | ---- | M] () -- \Program Files (x86)\Electronic Arts\Battlefield Bad Company 2\Dist\win32\levels\mp_012sr\loader-00.fbrb
[2010/02/10 02:38:44 | 007,748,201 | ---- | M] () -- \Program Files (x86)\Electronic Arts\Battlefield Bad Company 2\Dist\win32\levels\mp_common\loader-00.fbrb
[2010/02/10 02:47:40 | 004,575,342 | ---- | M] () -- \Program Files (x86)\Electronic Arts\Battlefield Bad Company 2\Dist\win32\levels\sp_003_B\loader-00.fbrb
[2010/02/10 02:47:42 | 005,437,555 | ---- | M] () -- \Program Files (x86)\Electronic Arts\Battlefield Bad Company 2\Dist\win32\levels\sp_004_B\loader-00.fbrb
[2010/02/10 02:47:42 | 005,555,302 | ---- | M] () -- \Program Files (x86)\Electronic Arts\Battlefield Bad Company 2\Dist\win32\levels\sp_005\loader-00.fbrb
[2010/02/10 02:47:44 | 006,135,296 | ---- | M] () -- \Program Files (x86)\Electronic Arts\Battlefield Bad Company 2\Dist\win32\levels\sp_005_B\loader-00.fbrb
[2010/02/10 02:47:44 | 005,228,984 | ---- | M] () -- \Program Files (x86)\Electronic Arts\Battlefield Bad Company 2\Dist\win32\levels\sp_006\loader-00.fbrb
[2010/02/10 02:47:44 | 006,938,136 | ---- | M] () -- \Program Files (x86)\Electronic Arts\Battlefield Bad Company 2\Dist\win32\levels\sp_007\loader-00.fbrb
[2010/02/10 02:47:46 | 005,814,240 | ---- | M] () -- \Program Files (x86)\Electronic Arts\Battlefield Bad Company 2\Dist\win32\levels\sp_008\loader-00.fbrb
[2010/02/10 02:47:46 | 005,800,297 | ---- | M] () -- \Program Files (x86)\Electronic Arts\Battlefield Bad Company 2\Dist\win32\levels\sp_008_B\loader-00.fbrb
[2010/02/10 02:47:48 | 006,397,231 | ---- | M] () -- \Program Files (x86)\Electronic Arts\Battlefield Bad Company 2\Dist\win32\levels\sp_009\loader-00.fbrb
[2010/02/10 02:47:38 | 002,006,427 | ---- | M] () -- \Program Files (x86)\Electronic Arts\Battlefield Bad Company 2\Dist\win32\levels\sp_01\loader-00.fbrb
[2010/02/10 02:47:40 | 004,760,479 | ---- | M] () -- \Program Files (x86)\Electronic Arts\Battlefield Bad Company 2\Dist\win32\levels\sp_02\loader-00.fbrb
[2010/02/10 02:47:40 | 006,542,963 | ---- | M] () -- \Program Files (x86)\Electronic Arts\Battlefield Bad Company 2\Dist\win32\levels\sp_03\loader-00.fbrb
[2010/02/10 02:47:42 | 005,840,761 | ---- | M] () -- \Program Files (x86)\Electronic Arts\Battlefield Bad Company 2\Dist\win32\levels\sp_04\loader-00.fbrb
[2010/02/10 02:47:38 | 001,271,669 | ---- | M] () -- \Program Files (x86)\Electronic Arts\Battlefield Bad Company 2\Dist\win32\levels\sp_common\loader-00.fbrb
[2012/02/23 15:52:24 | 000,000,157 | ---- | M] () -- \Program Files (x86)\Electronic Arts\Battlefield Bad Company 2\Package\levels\bc1_harvest_day_cq\loader-00.fbrb
[2012/02/23 15:52:30 | 000,000,157 | ---- | M] () -- \Program Files (x86)\Electronic Arts\Battlefield Bad Company 2\Package\levels\bc1_harvest_day_gr\loader-00.fbrb
[2012/02/23 15:52:36 | 000,000,157 | ---- | M] () -- \Program Files (x86)\Electronic Arts\Battlefield Bad Company 2\Package\levels\bc1_harvest_day_sdm\loader-00.fbrb
[2012/02/23 15:52:43 | 000,000,157 | ---- | M] () -- \Program Files (x86)\Electronic Arts\Battlefield Bad Company 2\Package\levels\bc1_harvest_day_sr\loader-00.fbrb
[2012/02/23 15:52:50 | 000,000,157 | ---- | M] () -- \Program Files (x86)\Electronic Arts\Battlefield Bad Company 2\Package\levels\bc1_oasis_cq\loader-00.fbrb
[2012/02/23 15:52:56 | 000,000,157 | ---- | M] () -- \Program Files (x86)\Electronic Arts\Battlefield Bad Company 2\Package\levels\bc1_oasis_gr\loader-00.fbrb
[2012/02/23 15:53:03 | 000,000,157 | ---- | M] () -- \Program Files (x86)\Electronic Arts\Battlefield Bad Company 2\Package\levels\bc1_oasis_sdm\loader-00.fbrb
[2012/02/23 15:53:07 | 000,000,157 | ---- | M] () -- \Program Files (x86)\Electronic Arts\Battlefield Bad Company 2\Package\levels\bc1_oasis_sr\loader-00.fbrb
[2012/02/23 15:54:26 | 002,348,343 | ---- | M] () -- \Program Files (x86)\Electronic Arts\Battlefield Bad Company 2\Package\levels\mp_001\loader-00.fbrb
[2012/02/23 15:54:31 | 007,538,086 | ---- | M] () -- \Program Files (x86)\Electronic Arts\Battlefield Bad Company 2\Package\levels\mp_001sdm\loader-00.fbrb
[2012/02/23 15:54:42 | 002,348,343 | ---- | M] () -- \Program Files (x86)\Electronic Arts\Battlefield Bad Company 2\Package\levels\mp_001sr\loader-00.fbrb
[2012/02/23 15:54:50 | 002,348,343 | ---- | M] () -- \Program Files (x86)\Electronic Arts\Battlefield Bad Company 2\Package\levels\mp_002\loader-00.fbrb
[2012/02/23 15:54:57 | 002,348,343 | ---- | M] () -- \Program Files (x86)\Electronic Arts\Battlefield Bad Company 2\Package\levels\mp_002sr\loader-00.fbrb
[2012/02/23 15:55:06 | 002,348,343 | ---- | M] () -- \Program Files (x86)\Electronic Arts\Battlefield Bad Company 2\Package\levels\mp_003\loader-00.fbrb
[2012/02/23 15:55:10 | 005,837,142 | ---- | M] () -- \Program Files (x86)\Electronic Arts\Battlefield Bad Company 2\Package\levels\mp_003sr\loader-00.fbrb
[2012/02/23 15:55:19 | 002,348,343 | ---- | M] () -- \Program Files (x86)\Electronic Arts\Battlefield Bad Company 2\Package\levels\mp_004\loader-00.fbrb
[2012/02/23 15:55:29 | 002,348,343 | ---- | M] () -- \Program Files (x86)\Electronic Arts\Battlefield Bad Company 2\Package\levels\mp_004sdm\loader-00.fbrb
[2012/02/23 15:55:38 | 002,348,343 | ---- | M] () -- \Program Files (x86)\Electronic Arts\Battlefield Bad Company 2\Package\levels\mp_005\loader-00.fbrb
[2012/02/23 15:55:52 | 006,014,815 | ---- | M] () -- \Program Files (x86)\Electronic Arts\Battlefield Bad Company 2\Package\levels\mp_005gr\loader-00.fbrb
[2012/02/23 15:56:02 | 002,348,343 | ---- | M] () -- \Program Files (x86)\Electronic Arts\Battlefield Bad Company 2\Package\levels\mp_005sr\loader-00.fbrb
[2012/02/23 15:56:15 | 002,348,343 | ---- | M] () -- \Program Files (x86)\Electronic Arts\Battlefield Bad Company 2\Package\levels\mp_006\loader-00.fbrb
[2012/02/23 15:56:23 | 002,348,343 | ---- | M] () -- \Program Files (x86)\Electronic Arts\Battlefield Bad Company 2\Package\levels\mp_006cq\loader-00.fbrb
[2012/02/23 15:56:30 | 002,348,343 | ---- | M] () -- \Program Files (x86)\Electronic Arts\Battlefield Bad Company 2\Package\levels\mp_006sdm\loader-00.fbrb
[2012/02/23 15:56:40 | 002,348,343 | ---- | M] () -- \Program Files (x86)\Electronic Arts\Battlefield Bad Company 2\Package\levels\mp_007\loader-00.fbrb
[2012/02/23 15:56:44 | 006,098,333 | ---- | M] () -- \Program Files (x86)\Electronic Arts\Battlefield Bad Company 2\Package\levels\mp_007gr\loader-00.fbrb
[2012/02/23 15:56:56 | 002,348,343 | ---- | M] () -- \Program Files (x86)\Electronic Arts\Battlefield Bad Company 2\Package\levels\mp_007sdm\loader-00.fbrb
[2012/02/23 15:57:06 | 002,348,343 | ---- | M] () -- \Program Files (x86)\Electronic Arts\Battlefield Bad Company 2\Package\levels\mp_008\loader-00.fbrb
[2012/02/23 15:57:10 | 006,029,512 | ---- | M] () -- \Program Files (x86)\Electronic Arts\Battlefield Bad Company 2\Package\levels\mp_008cq\loader-00.fbrb
[2012/02/23 15:57:21 | 006,015,553 | ---- | M] () -- \Program Files (x86)\Electronic Arts\Battlefield Bad Company 2\Package\levels\mp_008sdm\loader-00.fbrb
[2012/02/23 15:57:34 | 002,348,343 | ---- | M] () -- \Program Files (x86)\Electronic Arts\Battlefield Bad Company 2\Package\levels\mp_009cq\loader-00.fbrb
[2012/02/23 15:57:40 | 002,348,343 | ---- | M] () -- \Program Files (x86)\Electronic Arts\Battlefield Bad Company 2\Package\levels\mp_009gr\loader-00.fbrb
[2012/02/23 15:57:49 | 002,348,343 | ---- | M] () -- \Program Files (x86)\Electronic Arts\Battlefield Bad Company 2\Package\levels\mp_009sdm\loader-00.fbrb
[2012/02/23 15:57:52 | 005,878,478 | ---- | M] () -- \Program Files (x86)\Electronic Arts\Battlefield Bad Company 2\Package\levels\mp_009sr\loader-00.fbrb
[2012/02/23 15:58:06 | 006,018,369 | ---- | M] () -- \Program Files (x86)\Electronic Arts\Battlefield Bad Company 2\Package\levels\mp_012cq\loader-00.fbrb
[2012/02/23 15:58:19 | 002,348,343 | ---- | M] () -- \Program Files (x86)\Electronic Arts\Battlefield Bad Company 2\Package\levels\mp_012gr\loader-00.fbrb
[2012/02/23 15:58:26 | 002,348,343 | ---- | M] () -- \Program Files (x86)\Electronic Arts\Battlefield Bad Company 2\Package\levels\mp_012sr\loader-00.fbrb
[2012/02/23 15:58:31 | 000,000,157 | ---- | M] () -- \Program Files (x86)\Electronic Arts\Battlefield Bad Company 2\Package\levels\mp_sp_002gr\loader-00.fbrb
[2012/02/23 15:58:37 | 000,000,157 | ---- | M] () -- \Program Files (x86)\Electronic Arts\Battlefield Bad Company 2\Package\levels\mp_sp_002sdm\loader-00.fbrb
[2012/02/23 15:58:44 | 000,000,157 | ---- | M] () -- \Program Files (x86)\Electronic Arts\Battlefield Bad Company 2\Package\levels\mp_sp_002sr\loader-00.fbrb
[2012/02/23 15:58:51 | 001,612,131 | ---- | M] () -- \Program Files (x86)\Electronic Arts\Battlefield Bad Company 2\Package\levels\mp_sp_005cq\loader-00.fbrb
[2012/02/23 15:58:55 | 000,000,157 | ---- | M] () -- \Program Files (x86)\Electronic Arts\Battlefield Bad Company 2\Package\levels\mp_sp_005sdm\loader-00.fbrb
[2012/02/23 15:54:12 | 007,593,208 | ---- | M] () -- \Program Files (x86)\Electronic Arts\Battlefield Bad Company 2\Package\levels\mp2_common\loader-00.fbrb
[2012/02/23 16:00:57 | 063,933,148 | ---- | M] () -- \Program Files (x86)\Electronic Arts\Battlefield Bad Company 2\Package\levels\nam_common\loader-00.fbrb
[2012/02/23 16:00:59 | 000,001,006 | ---- | M] () -- \Program Files (x86)\Electronic Arts\Battlefield Bad Company 2\Package\levels\nam_mp_002cq\loader-00.fbrb
[2012/02/23 16:01:04 | 000,001,006 | ---- | M] () -- \Program Files (x86)\Electronic Arts\Battlefield Bad Company 2\Package\levels\nam_mp_002r\loader-00.fbrb
[2012/02/23 16:01:05 | 000,001,204 | ---- | M] () -- \Program Files (x86)\Electronic Arts\Battlefield Bad Company 2\Package\levels\nam_mp_002sdm\loader-00.fbrb
[2012/02/23 16:01:07 | 000,001,006 | ---- | M] () -- \Program Files (x86)\Electronic Arts\Battlefield Bad Company 2\Package\levels\nam_mp_002sr\loader-00.fbrb
[2012/02/23 16:01:11 | 000,001,006 | ---- | M] () -- \Program Files (x86)\Electronic Arts\Battlefield Bad Company 2\Package\levels\nam_mp_003cq\loader-00.fbrb
[2012/02/23 16:01:17 | 000,001,006 | ---- | M] () -- \Program Files (x86)\Electronic Arts\Battlefield Bad Company 2\Package\levels\nam_mp_003r\loader-00.fbrb
[2012/02/23 16:01:18 | 000,001,203 | ---- | M] () -- \Program Files (x86)\Electronic Arts\Battlefield Bad Company 2\Package\levels\nam_mp_003sdm\loader-00.fbrb
[2012/02/23 16:01:20 | 000,001,006 | ---- | M] () -- \Program Files (x86)\Electronic Arts\Battlefield Bad Company 2\Package\levels\nam_mp_003sr\loader-00.fbrb
[2012/02/23 16:01:24 | 000,001,009 | ---- | M] () -- \Program Files (x86)\Electronic Arts\Battlefield Bad Company 2\Package\levels\nam_mp_005cq\loader-00.fbrb
[2012/02/23 16:01:27 | 000,001,009 | ---- | M] () -- \Program Files (x86)\Electronic Arts\Battlefield Bad Company 2\Package\levels\nam_mp_005r\loader-00.fbrb
[2012/02/23 16:01:30 | 000,001,205 | ---- | M] () -- \Program Files (x86)\Electronic Arts\Battlefield Bad Company 2\Package\levels\nam_mp_005sdm\loader-00.fbrb
[2012/02/23 16:01:35 | 000,001,009 | ---- | M] () -- \Program Files (x86)\Electronic Arts\Battlefield Bad Company 2\Package\levels\nam_mp_005sr\loader-00.fbrb
[2012/02/23 16:01:38 | 000,001,008 | ---- | M] () -- \Program Files (x86)\Electronic Arts\Battlefield Bad Company 2\Package\levels\nam_mp_006cq\loader-00.fbrb
[2012/02/23 16:01:42 | 000,001,008 | ---- | M] () -- \Program Files (x86)\Electronic Arts\Battlefield Bad Company 2\Package\levels\nam_mp_006r\loader-00.fbrb
[2012/02/23 16:01:45 | 000,001,203 | ---- | M] () -- \Program Files (x86)\Electronic Arts\Battlefield Bad Company 2\Package\levels\nam_mp_006sdm\loader-00.fbrb
[2012/02/23 16:01:50 | 000,001,008 | ---- | M] () -- \Program Files (x86)\Electronic Arts\Battlefield Bad Company 2\Package\levels\nam_mp_006sr\loader-00.fbrb
[2012/02/23 16:01:54 | 000,001,008 | ---- | M] () -- \Program Files (x86)\Electronic Arts\Battlefield Bad Company 2\Package\levels\nam_mp_007cq\loader-00.fbrb
[2012/02/23 16:01:57 | 000,001,008 | ---- | M] () -- \Program Files (x86)\Electronic Arts\Battlefield Bad Company 2\Package\levels\nam_mp_007r\loader-00.fbrb
[2012/02/23 16:02:00 | 000,001,202 | ---- | M] () -- \Program Files (x86)\Electronic Arts\Battlefield Bad Company 2\Package\levels\nam_mp_007sdm\loader-00.fbrb
[2012/02/23 16:02:06 | 000,001,008 | ---- | M] () -- \Program Files (x86)\Electronic Arts\Battlefield Bad Company 2\Package\levels\nam_mp_007sr\loader-00.fbrb
[2012/02/23 16:02:11 | 001,131,640 | ---- | M] () -- \Program Files (x86)\Electronic Arts\Battlefield Bad Company 2\Package\levels\sp_003_b\loader-00.fbrb
[2012/02/23 16:02:17 | 001,131,640 | ---- | M] () -- \Program Files (x86)\Electronic Arts\Battlefield Bad Company 2\Package\levels\sp_004_b\loader-00.fbrb
[2012/02/23 16:02:21 | 001,131,640 | ---- | M] () -- \Program Files (x86)\Electronic Arts\Battlefield Bad Company 2\Package\levels\sp_005\loader-00.fbrb
[2012/02/23 16:02:32 | 001,131,640 | ---- | M] () -- \Program Files (x86)\Electronic Arts\Battlefield Bad Company 2\Package\levels\sp_005_b\loader-00.fbrb
[2012/02/23 16:02:39 | 001,131,640 | ---- | M] () -- \Program Files (x86)\Electronic Arts\Battlefield Bad Company 2\Package\levels\sp_006\loader-00.fbrb
[2012/02/23 16:02:46 | 001,131,640 | ---- | M] () -- \Program Files (x86)\Electronic Arts\Battlefield Bad Company 2\Package\levels\sp_007\loader-00.fbrb
[2012/02/23 16:02:51 | 001,131,640 | ---- | M] () -- \Program Files (x86)\Electronic Arts\Battlefield Bad Company 2\Package\levels\sp_008\loader-00.fbrb
[2012/02/23 16:02:56 | 001,131,640 | ---- | M] () -- \Program Files (x86)\Electronic Arts\Battlefield Bad Company 2\Package\levels\sp_008_b\loader-00.fbrb
[2012/02/23 16:03:00 | 001,131,640 | ---- | M] () -- \Program Files (x86)\Electronic Arts\Battlefield Bad Company 2\Package\levels\sp_009\loader-00.fbrb
[2012/02/23 16:03:06 | 001,131,275 | ---- | M] () -- \Program Files (x86)\Electronic Arts\Battlefield Bad Company 2\Package\levels\sp_01\loader-00.fbrb
[2012/02/23 16:03:10 | 001,131,640 | ---- | M] () -- \Program Files (x86)\Electronic Arts\Battlefield Bad Company 2\Package\levels\sp_02\loader-00.fbrb
[2012/02/23 16:03:21 | 001,131,640 | ---- | M] () -- \Program Files (x86)\Electronic Arts\Battlefield Bad Company 2\Package\levels\sp_03\loader-00.fbrb
[2012/02/23 16:03:26 | 001,131,640 | ---- | M] () -- \Program Files (x86)\Electronic Arts\Battlefield Bad Company 2\Package\levels\sp_04\loader-00.fbrb
[2010/08/21 22:13:50 | 000,071,008 | ---- | M] () -- \Program Files (x86)\Mafia 2\pc\PhysXLoader.dll
[2008/04/08 18:50:40 | 000,013,312 | ---- | M] () -- \Program Files (x86)\NeoSmart Technologies\EasyBCD\bin\NST Downloader.exe
[2012/03/26 09:53:36 | 000,002,560 | ---- | M] () -- \Program Files (x86)\Nokia\Nokia PC Suite 7\Lang\MapLoader_slk.NLR
[2011/10/17 14:10:26 | 000,071,528 | ---- | M] () -- \Program Files (x86)\NVIDIA Corporation\PhysX\Common\PhysXLoader.dll
[2011/10/17 13:14:50 | 000,074,600 | ---- | M] () -- \Program Files (x86)\NVIDIA Corporation\PhysX\Common\PhysXLoader64.dll
[2011/11/06 11:09:52 | 000,083,816 | ---- | M] () -- \Program Files (x86)\NVIDIA Corporation\PhysX\Common\PhysXUpdateLoader.dll
[2012/10/12 06:28:41 | 000,016,691 | ---- | M] () -- \Program Files (x86)\Red Sky\DownTango\pyload-dist\module\lib\jinja2\loaders.py
[2011/12/29 13:34:35 | 000,019,856 | ---- | M] () -- \Program Files (x86)\Red Sky\DownTango\pyload-dist\module\lib\jinja2\loaders.pyc
[2012/10/12 06:28:42 | 000,000,404 | ---- | M] () -- \Program Files (x86)\Red Sky\DownTango\pyload-dist\module\web\media\default\img\ajax-loader.gif
[2012/07/18 15:09:34 | 000,010,890 | ---- | M] () -- \Program Files (x86)\Red Sky\DownTango\pyload-dist\unittest\loader.pyc
[2011/02/17 16:50:18 | 000,234,104 | ---- | M] () -- \Program Files (x86)\Ubisoft\Assassin's Creed Brotherhood\ubiorbitapi_r2_loader.dll
[2013/01/05 20:36:22 | 000,234,616 | ---- | M] () -- \Program Files (x86)\Ubisoft\Assassin's Creed III\ubiorbitapi_r2_loader.dll
[2013/01/05 20:36:22 | 000,003,584 | ---- | M] () -- \Program Files (x86)\Ubisoft\Assassin's Creed III\uplay_r1_loader.dll
[2013/01/26 13:30:55 | 000,329,496 | ---- | M] () -- \Program Files (x86)\Ubisoft\Ubisoft Game Launcher\ubiorbitapi_r2_loader.dll
[2013/01/26 13:30:58 | 000,294,400 | ---- | M] () -- \Program Files (x86)\Ubisoft\Ubisoft Game Launcher\uplay_r1_loader.dll
[2008/06/20 19:13:32 | 000,044,032 | ---- | M] () -- \Program Files (x86)\WinRAR\RarExtLoader.exe
[2012/03/30 15:03:44 | 000,430,080 | ---- | M] () -- \Program Files\Zoner\Photo Studio 14\Plugins\Facebook\ZPSFacebookUploader.exe
[2010/04/29 14:12:40 | 000,053,640 | ---- | M] () -- \Program Files\Zoner\Photo Studio 14\Plugins\Facebook\ZPSPluginLoader.exe
[2012/03/30 15:14:22 | 000,444,416 | ---- | M] () -- \Program Files\Zoner\Photo Studio 14\Plugins\Flickr\ZPSFlickrUploader.exe
[2010/04/29 14:12:42 | 000,053,640 | ---- | M] () -- \Program Files\Zoner\Photo Studio 14\Plugins\Flickr\ZPSPluginLoader.exe
[2011/03/08 17:09:04 | 000,194,048 | ---- | M] () -- \Program Files\Zoner\Photo Studio 14\Plugins\Picasa\ZPSPicasaUploader.exe
[2010/04/29 14:12:40 | 000,053,640 | ---- | M] () -- \Program Files\Zoner\Photo Studio 14\Plugins\Picasa\ZPSPluginLoader.exe
[2012/03/26 15:05:34 | 000,102,792 | ---- | M] () -- \Program Files\Zoner\Photo Studio 14\Program32\8bfLoader.exe
[2012/03/26 15:05:48 | 000,016,776 | ---- | M] () -- \Program Files\Zoner\Photo Studio 14\Program32\WICLoader.exe
[2012/03/26 15:06:44 | 000,019,336 | ---- | M] () -- \Program Files\Zoner\Photo Studio 14\Program64\WICLoader.exe
[2012/10/27 19:46:57 | 000,001,016 | ---- | M] () -- \Users\Juraj Cordas\AppData\Local\SRDownloader.nast
[2013/01/08 22:50:15 | 000,007,365 | ---- | M] () -- \Users\Juraj Cordas\AppData\Local\Max Secure Software\MaxDownloadTemp\maxdownloader.log
[2013/01/27 20:19:37 | 000,000,905 | ---- | M] () -- \Users\Juraj Cordas\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\3A3GS8M1\TooltipLoader[1].css
[2013/01/27 20:24:48 | 000,004,178 | ---- | M] () -- \Users\Juraj Cordas\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\US2HRU4P\dsq-loader-dark[1].gif
[2013/01/27 20:19:37 | 000,014,290 | ---- | M] () -- \Users\Juraj Cordas\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\US2HRU4P\TooltipLoader[1].js
[2013/01/27 16:28:54 | 000,000,905 | ---- | M] () -- \Users\Juraj Cordas\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\G161IAW4\TooltipLoader[1].css
[2013/01/27 16:28:54 | 000,014,290 | ---- | M] () -- \Users\Juraj Cordas\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\G161IAW4\TooltipLoader[1].js
[2012/01/27 20:29:08 | 000,009,051 | ---- | M] () -- \Users\Juraj Cordas\AppData\Roaming\DAEMON Tools Lite\MediaInfo\img\loader.gif
[2012/01/27 20:29:08 | 000,011,274 | ---- | M] () -- \Users\Juraj Cordas\AppData\Roaming\DAEMON Tools Lite\MediaInfo\img\logo_loader_page.jpg
[2012/01/27 20:29:08 | 000,004,856 | ---- | M] () -- \Users\Juraj Cordas\AppData\Roaming\DAEMON Tools Lite\MediaInfo\js\app\MediaInfo\ImageInfoLoader.js
[2012/08/30 03:34:29 | 000,022,486 | ---- | M] () -- \Users\Juraj Cordas\AppData\Roaming\Orbit\icon\Orbit Downloader.ico
[2012/11/22 05:50:44 | 000,002,560 | ---- | M] () -- \Users\Juraj Cordas\Documents\Vuze Downloads\Assassins.Creed.III.Proper-RELOADED\Crack\uplay_r1_loader.dll
[2008/11/18 11:11:35 | 000,494,565 | ---- | M] () -- \Users\Juraj Cordas\Downloads\Programs\Portable_Google_Chrome_2.0.172.8\ChromeLoader.exe
[2008/11/18 11:10:50 | 000,494,585 | ---- | M] () -- \Users\Juraj Cordas\Downloads\Programs\Portable_Google_Chrome_2.0.172.8\IncognitoChromeLoader.exe
[2012/11/30 05:45:15 | 000,003,584 | -H-- | M] () -- \Windows\System32\api-ms-win-core-libraryloader-l1-1-0.dll
[2009/07/14 02:15:12 | 000,038,400 | ---- | M] () -- \Windows\System32\dmloader.dll
[2012/11/30 05:45:15 | 000,003,584 | -H-- | M] () -- \Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
[2009/07/14 02:15:12 | 000,038,400 | ---- | M] () -- \Windows\SysWOW64\dmloader.dll
[2009/07/14 02:40:31 | 000,047,616 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-audio-dmusic_31bf3856ad364e35_6.1.7600.16385_none_a1e90d98a953d601\dmloader.dll
[2009/07/14 02:24:53 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.16385_none_66a6e19d9580f9e3\api-ms-win-core-libraryloader-l1-1-0.dll
[2011/07/16 06:04:54 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.16850_none_66c2596d956d1920\api-ms-win-core-libraryloader-l1-1-0.dll
[2012/08/18 16:22:27 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.17107_none_66ff46fd953e6c5c\api-ms-win-core-libraryloader-l1-1-0.dll
[2012/10/04 18:28:57 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.17135_none_66dcd6a595588d81\api-ms-win-core-libraryloader-l1-1-0.dll
[2012/11/30 06:41:11 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.17179_none_66b5981d957562a1\api-ms-win-core-libraryloader-l1-1-0.dll
[2011/07/16 06:06:43 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.21010_none_67770e0aae6a7c68\api-ms-win-core-libraryloader-l1-1-0.dll
[2012/08/20 19:46:36 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.21306_none_6787e564ae5ceff6\api-ms-win-core-libraryloader-l1-1-0.dll
[2012/10/04 18:26:17 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.21335_none_67667556ae762a72\api-ms-win-core-libraryloader-l1-1-0.dll
[2012/11/30 06:36:06 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.21386_none_67316604ae9dcf7e\api-ms-win-core-libraryloader-l1-1-0.dll
[2011/07/16 06:21:03 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.17651_none_68a9b6bd92929e63\api-ms-win-core-libraryloader-l1-1-0.dll
[2012/08/20 19:38:32 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.17932_none_68c05c919281774d\api-ms-win-core-libraryloader-l1-1-0.dll
[2012/10/04 18:38:48 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.17965_none_68a2edab92971725\api-ms-win-core-libraryloader-l1-1-0.dll
[2012/11/30 06:38:44 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.18015_none_68d8d569926ebeb2\api-ms-win-core-libraryloader-l1-1-0.dll
[2011/07/16 06:12:44 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.21772_none_691eb3faabbf8f66\api-ms-win-core-libraryloader-l1-1-0.dll
[2012/08/20 19:09:47 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.22091_none_6907efc6abd0db81\api-ms-win-core-libraryloader-l1-1-0.dll
[2012/10/04 18:35:00 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.22125_none_6957a248ab947a6d\api-ms-win-core-libraryloader-l1-1-0.dll
[2012/11/30 06:39:37 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.22177_none_69239340abbb38d0\api-ms-win-core-libraryloader-l1-1-0.dll
[2009/07/14 03:44:20 | 000,004,431 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_en-us_d28dabacfdb4dd1a.manifest
[2009/07/14 03:13:42 | 000,005,745 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7600.16385_none_b71babd98657e6ef.manifest
[2011/02/05 14:09:31 | 000,005,745 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7600.16757_none_b73e23c9863dba66.manifest
[2011/02/05 14:04:44 | 000,005,745 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7600.20897_none_b79c80e49f7bc9f4.manifest
[2010/11/20 06:12:44 | 000,005,745 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.17514_none_b94cbfa183466a89.manifest
[2011/02/05 18:34:23 | 000,005,745 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.17556_none_b923808583650cfb.manifest
[2011/02/05 14:09:57 | 000,005,745 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.21655_none_b9ac1d069c83936e.manifest
[2009/07/14 03:18:27 | 000,002,896 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-s..ive-blackbox-loader_31bf3856ad364e35_6.1.7600.16385_none_c72819e06acceb59.manifest
[2009/07/14 02:15:12 | 000,038,400 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-audio-dmusic_31bf3856ad364e35_6.1.7600.16385_none_45ca7214f0f664cb\dmloader.dll
[2009/07/14 02:03:49 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.16385_none_0a884619dd2388ad\api-ms-win-core-libraryloader-l1-1-0.dll
[2011/07/16 05:19:58 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.16850_none_0aa3bde9dd0fa7ea\api-ms-win-core-libraryloader-l1-1-0.dll
[2012/08/18 12:09:17 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.17107_none_0ae0ab79dce0fb26\api-ms-win-core-libraryloader-l1-1-0.dll
[2012/10/04 17:45:38 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.17135_none_0abe3b21dcfb1c4b\api-ms-win-core-libraryloader-l1-1-0.dll
[2012/11/30 05:56:23 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.17179_none_0a96fc99dd17f16b\api-ms-win-core-libraryloader-l1-1-0.dll
[2011/07/16 05:12:45 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.21010_none_0b587286f60d0b32\api-ms-win-core-libraryloader-l1-1-0.dll
[2012/08/20 18:42:56 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.21306_none_0b6949e0f5ff7ec0\api-ms-win-core-libraryloader-l1-1-0.dll
[2012/10/04 17:48:05 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.21335_none_0b47d9d2f618b93c\api-ms-win-core-libraryloader-l1-1-0.dll
[2012/11/30 05:44:10 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.21386_none_0b12ca80f6405e48\api-ms-win-core-libraryloader-l1-1-0.dll
[2011/07/16 05:15:45 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.17651_none_0c8b1b39da352d2d\api-ms-win-core-libraryloader-l1-1-0.dll
[2012/08/20 18:32:13 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.17932_none_0ca1c10dda240617\api-ms-win-core-libraryloader-l1-1-0.dll
[2012/10/04 17:40:37 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.17965_none_0c845227da39a5ef\api-ms-win-core-libraryloader-l1-1-0.dll
[2012/11/30 05:45:15 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.18015_none_0cba39e5da114d7c\api-ms-win-core-libraryloader-l1-1-0.dll
[2011/07/16 05:36:48 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.21772_none_0d001876f3621e30\api-ms-win-core-libraryloader-l1-1-0.dll
[2012/08/20 18:23:16 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.22091_none_0ce95442f3736a4b\api-ms-win-core-libraryloader-l1-1-0.dll
[2012/10/04 17:29:45 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.22125_none_0d3906c4f3370937\api-ms-win-core-libraryloader-l1-1-0.dll
[2012/11/30 05:46:37 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.22177_none_0d04f7bcf35dc79a\api-ms-win-core-libraryloader-l1-1-0.dll

========== Alternate Data Streams ==========

@Alternate Data Stream - 142 bytes -> C:\ProgramData\Temp:BF3D62E7

< End of report >

[Duklando]

Extras.Txt.


OTL Extras logfile created on: 28. 1. 2013 16:31:59 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Juraj Cordas\Desktop
64bit- Ultimate Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 0000041b | Country: Slovenská republika | Language: SKY | Date Format: d. M. yyyy

3,96 Gb Total Physical Memory | 2,55 Gb Available Physical Memory | 64,38% Memory free
7,92 Gb Paging File | 6,04 Gb Available in Paging File | 76,30% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 931,41 Gb Total Space | 734,65 Gb Free Space | 78,87% Space Free | Partition Type: NTFS
Drive J: | 232,23 Gb Total Space | 123,59 Gb Free Space | 53,22% Space Free | Partition Type: NTFS

Computer Name: MOJPOCITAC | User Name: Juraj Cordas | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 7 Days

========== Extra Registry (SafeList) ==========


========== File Associations ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.html[@ = htmlfile] -- C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)
.url[@ = InternetShortcut] -- C:\Windows\SysNative\rundll32.exe (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation)
.html [@ = htmlfile] -- C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)

[HKEY_USERS\S-1-5-21-2897896145-2411329342-784474909-1000\SOFTWARE\Classes\<extension>]
.html [@ = ChromeHTML] -- Reg Error: Key error. File not found

========== Shell Spawning ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [print] -- rundll32.exe %SystemRoot%\system32\mshtml.dll,PrintHTML "%1" (Microsoft Corporation)
http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
https [open] -- Reg Error: Key error.
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
https [open] -- Reg Error: Key error.
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
"FirewallDisableNotify" = 0
"AntiVirusDisableNotify" = 0
"UpdatesDisableNotify" = 0

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = 28 4D B2 76 41 04 CA 01 [binary data]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]

========== System Restore Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0

========== Firewall Settings ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall]

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile]

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile]

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile]

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]


========== Vista Active Open Ports Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{1EB39DAA-7EC2-4545-8984-47BCAD74F104}" = lport=138 | protocol=17 | dir=in | app=system |
"{3BEF2BE4-B9DB-400C-B741-94F6E2FAD52A}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
"{492EE348-2521-4F83-A58A-F3EAF1D97C09}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 |
"{622C0C23-E9F4-4061-82D9-9EA778D27FD3}" = rport=139 | protocol=6 | dir=out | app=system |
"{815AFADC-3B17-4ADD-9212-1471AE2B5A72}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{88FFF8F2-142A-4A08-9A9D-F4D89DEFB8CE}" = rport=445 | protocol=6 | dir=out | app=system |
"{894F4FEA-A356-4191-A4B8-4FF139FC2597}" = rport=138 | protocol=17 | dir=out | app=system |
"{A1A69A88-5CAD-4A40-B2E2-BADEFF2389A9}" = lport=139 | protocol=6 | dir=in | app=system |
"{AC1E8E7F-DD14-4C3C-99AC-5355525418E2}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{DC1CE571-4D44-48D7-AEDA-629AE3BAD807}" = rport=137 | protocol=17 | dir=out | app=system |
"{E9507D71-7585-42F9-A084-7BE2211D22F4}" = lport=137 | protocol=17 | dir=in | app=system |
"{F7C14E05-9B08-4AE8-B99C-C16707AE8BD8}" = lport=445 | protocol=6 | dir=in | app=system |

========== Vista Active Application Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{00516C42-92B3-45ED-968A-28678B977CCC}" = protocol=6 | dir=in | app=c:\program files (x86)\mass effect 2\masseffect2launcher.exe |
"{0F48917D-A959-4960-A740-3AD498FF46F9}" = protocol=6 | dir=in | app=c:\program files (x86)\mass effect 3\binaries\win32\masseffect3.exe |
"{1C8FE8CD-B09C-42B4-BA5A-FFF837FF5306}" = protocol=6 | dir=in | app=c:\program files (x86)\snugtv\snugtv station\configwizard.exe |
"{1F3E4654-6F64-430A-8FEA-9F7434CA41BB}" = protocol=17 | dir=in | app=c:\program files (x86)\snugtv\snugtv station\amaserver.exe |
"{2194FAA3-5268-4B82-891F-67CFA3E1F370}" = protocol=17 | dir=in | app=c:\program files (x86)\red sky\downtango\downtango.exe |
"{24B1E91C-417B-42CC-8878-B06748509B3A}" = protocol=17 | dir=in | app=c:\windows\syswow64\msiexec.exe |
"{2D9CE46A-BD60-48D8-8DA5-C33CDF9590A2}" = protocol=6 | dir=in | app=c:\windows\syswow64\pnkbstra.exe |
"{34737619-02C5-4968-9553-BDCFDC13DB3C}" = protocol=6 | dir=in | app=c:\program files (x86)\ubisoft\assassin's creed iii\ac3sp.exe |
"{3A32DCC2-B5D2-4C94-AE66-CDEC3348D4AC}" = protocol=6 | dir=in | app=c:\program files\vuze\azureus.exe |
"{3AFA87E2-53BB-44FE-A09D-2D898393313A}" = protocol=17 | dir=in | app=c:\program files (x86)\red sky\downtango\pyload-dist\pyloadcore.exe |
"{3C25BB6C-4526-4373-AE9F-B94012D75836}" = protocol=58 | dir=in | app=system |
"{42525D3E-0F53-4DD0-83BD-66EA92138442}" = protocol=17 | dir=in | app=c:\program files (x86)\mass effect 2\binaries\masseffect2.exe |
"{45383F3E-0F6C-4F6B-8033-06B201D103C4}" = protocol=17 | dir=in | app=c:\program files (x86)\ubisoft\assassin's creed iii\ac3mp.exe |
"{4599C908-9C2A-4996-B871-84EA668DC029}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 |
"{4675FFA2-99CF-4DD0-BD82-C8D66E6A2461}" = protocol=17 | dir=in | app=c:\program files (x86)\ubisoft\assassin's creed iii\ac3sp.exe |
"{495964A7-0EA3-4CC3-8B33-1464356444C8}" = protocol=17 | dir=in | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{51328B2E-8E36-444E-8465-B5811945E2F0}" = protocol=6 | dir=in | app=c:\program files (x86)\red sky\downtango\downtango.exe |
"{53A5E07E-6211-4F20-8830-299E4184B7DB}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 |
"{541C1C14-1428-4ED3-BC55-F83EC13F7A20}" = protocol=17 | dir=in | app=c:\program files (x86)\ubisoft\assassin's creed iii\assassinscreed3.exe |
"{5EEBE9CE-010B-430F-B7A8-26B92BB7CF5C}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{5F92731A-7DE1-49C0-BDA0-55C6890CED31}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{62712E90-27C7-461F-A67C-0A1B9DA57CA0}" = protocol=6 | dir=in | app=c:\windows\syswow64\pnkbstrb.exe |
"{75FB24BC-1B19-4577-AB78-C6D6A92FC611}" = protocol=6 | dir=in | app=c:\program files (x86)\mass effect 2\binaries\masseffect2.exe |
"{77F0B048-BF49-48AB-9B1E-B3AE79C291CD}" = protocol=6 | dir=in | app=c:\windows\syswow64\msiexec.exe |
"{7CA596A3-B668-4DC2-8177-5ADBE513BB8A}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 |
"{82D05788-375F-42E9-9577-6D21BE7252C9}" = protocol=17 | dir=in | app=c:\program files (x86)\electronic arts\battlefield bad company 2\bfbc2updater.exe |
"{880F1B96-00FB-4315-9A16-88BC8C339BFC}" = protocol=17 | dir=in | app=c:\program files (x86)\mass effect 2\masseffect2launcher.exe |
"{94705E46-84EF-4F70-B48B-F4B3890D5E2E}" = protocol=17 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{993EBA86-31C8-423A-BCB3-C0EF62FB32F7}" = protocol=17 | dir=in | app=c:\program files (x86)\snugtv\snugtv station\configwizard.exe |
"{99F586E6-0253-4000-A2A2-7C976D62E689}" = protocol=17 | dir=in | app=c:\windows\syswow64\pnkbstra.exe |
"{9C4C82CF-F23B-4F9A-B407-4CCCC12D21CC}" = protocol=17 | dir=in | app=c:\program files (x86)\mass effect 3\binaries\win32\masseffect3.exe |
"{9E5FD209-F2FD-4BFA-8649-10667BF94F9A}" = protocol=6 | dir=in | app=c:\program files (x86)\electronic arts\battlefield bad company 2\bfbc2updater.exe |
"{ADF552F5-A36D-4BD8-9846-8F742126D456}" = protocol=17 | dir=in | app=c:\windows\syswow64\pnkbstrb.exe |
"{B0EEE03C-7A62-479E-9C8B-AA93BE500AE6}" = protocol=6 | dir=in | app=c:\program files (x86)\snugtv\snugtv station\amaserver.exe |
"{D234A013-B926-496A-B736-546E2A7EC8CA}" = protocol=17 | dir=in | app=c:\program files (x86)\snugtv\snugtv station\amaserver.exe |
"{E3234605-6203-4698-9827-40C17B8091D4}" = protocol=17 | dir=in | app=c:\program files (x86)\snugtv\snugtv station\configwizard.exe |
"{EC9A9194-3F42-47E6-8901-C8373D84086A}" = protocol=6 | dir=in | app=c:\program files (x86)\snugtv\snugtv station\configwizard.exe |
"{F114618B-26B2-4D2D-BE46-C92911A334AE}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 |
"{F2D7866E-A3F2-46FE-8E4A-8FBC6ED4DE93}" = protocol=6 | dir=in | app=c:\program files (x86)\red sky\downtango\pyload-dist\pyloadcore.exe |
"{F399CA41-46FE-4CDE-9162-AD07D57E982A}" = protocol=17 | dir=in | app=c:\program files\vuze\azureus.exe |
"{F4D220BF-9989-4463-BE94-F10743FE015D}" = protocol=6 | dir=in | app=c:\program files (x86)\snugtv\snugtv station\amaserver.exe |
"{F8AC6504-7BC9-462F-9B2B-6CF4CCC4CBB9}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{FB024F35-BD7C-4DBB-87EF-E8D9F9251FA8}" = protocol=6 | dir=in | app=c:\program files (x86)\ubisoft\assassin's creed iii\assassinscreed3.exe |
"{FCF5E115-06B4-4F87-8FC6-29B8AE6DE93B}" = protocol=6 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{FD1C5F72-856D-4C18-88FE-1FA872FE241C}" = protocol=6 | dir=in | app=c:\program files (x86)\ubisoft\assassin's creed iii\ac3mp.exe |
"{FDF2FB3A-56B7-4EE7-81C4-C01AD51E0DE3}" = protocol=58 | dir=out | name=@iphlpsvc.dll,-503 |
"TCP Query User{255E8D11-9CD3-4F0A-8D34-F53F49CA8268}C:\program files (x86)\asus\gamerosd\sbs.exe" = protocol=6 | dir=in | app=c:\program files (x86)\asus\gamerosd\sbs.exe |
"TCP Query User{43F298C0-6C1F-44A2-B3D4-1674F9A40B41}C:\program files (x86)\ubisoft\assassin's creed brotherhood\acbmp.exe" = protocol=6 | dir=in | app=c:\program files (x86)\ubisoft\assassin's creed brotherhood\acbmp.exe |
"TCP Query User{60986EAD-3A85-4E18-9FE8-2566FFEAA360}C:\program files (x86)\videolan\vlc\vlc.exe" = protocol=6 | dir=in | app=c:\program files (x86)\videolan\vlc\vlc.exe |
"TCP Query User{B7C8AFAB-AD9A-4091-95A4-AFCCC104C121}C:\program files (x86)\ubisoft\assassin's creed brotherhood\acbsp.exe" = protocol=6 | dir=in | app=c:\program files (x86)\ubisoft\assassin's creed brotherhood\acbsp.exe |
"TCP Query User{C76F46B4-DA19-4182-B9D4-19AE9BE60468}C:\program files\vuze\azureus.exe" = protocol=6 | dir=in | app=c:\program files\vuze\azureus.exe |
"TCP Query User{D459C578-3260-4FFA-9A25-C41E7901BEE5}C:\program files (x86)\electronic arts\crytek\crysis 2\bin32\crysis2.exe" = protocol=6 | dir=in | app=c:\program files (x86)\electronic arts\crytek\crysis 2\bin32\crysis2.exe |
"UDP Query User{0208E5D6-6C99-4180-B832-7EA1CA1F2E58}C:\program files (x86)\ubisoft\assassin's creed brotherhood\acbsp.exe" = protocol=17 | dir=in | app=c:\program files (x86)\ubisoft\assassin's creed brotherhood\acbsp.exe |
"UDP Query User{388CB1DF-EC8D-426C-89F9-A11A87D82500}C:\program files\vuze\azureus.exe" = protocol=17 | dir=in | app=c:\program files\vuze\azureus.exe |
"UDP Query User{A0E59072-6788-427E-912F-754E6C1A9AF8}C:\program files (x86)\videolan\vlc\vlc.exe" = protocol=17 | dir=in | app=c:\program files (x86)\videolan\vlc\vlc.exe |
"UDP Query User{B52BEA3F-AA7E-492E-BC55-C5D650ED93B7}C:\program files (x86)\ubisoft\assassin's creed brotherhood\acbmp.exe" = protocol=17 | dir=in | app=c:\program files (x86)\ubisoft\assassin's creed brotherhood\acbmp.exe |
"UDP Query User{D37115CC-599C-43D8-9BAE-2E4192B98892}C:\program files (x86)\asus\gamerosd\sbs.exe" = protocol=17 | dir=in | app=c:\program files (x86)\asus\gamerosd\sbs.exe |
"UDP Query User{ED88896C-B926-4DBA-8C92-A231A1A96688}C:\program files (x86)\electronic arts\crytek\crysis 2\bin32\crysis2.exe" = protocol=17 | dir=in | app=c:\program files (x86)\electronic arts\crytek\crysis 2\bin32\crysis2.exe |

========== HKEY_LOCAL_MACHINE Uninstall List ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MG5100_series" = Canon MG5100 series MP Drivers
"{1D8E6291-B0D5-35EC-8441-6616F567A0F7}" = Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219
"{34995C78-41CE-472D-BA6F-317D8FE7C2ED}" = ESET NOD32 Antivirus
"{67579783-0FB7-4F7B-B881-E5BE47C9DBE0}_is1" = Revo Uninstaller Pro 2.2.0
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{AB071C8B-873C-459F-ACA9-9EBE03C3E89B}" = MSVC90_x64
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision" = NVIDIA 3D Vision Driver 306.97
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel" = NVIDIA Control Panel 306.97
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver" = NVIDIA Graphics Driver 306.97
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update" = NVIDIA Update 1.10.8
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer" = NVIDIA Install Application
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NVIDIA.Update" = NVIDIA Update Components
"{BCA9334F-B6C9-4F65-9A73-AC5A329A4D04}" = PlayReady PC Runtime amd64
"{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}" = Microsoft .NET Framework 4 Client Profile
"72A50F48CC5601190B9C4E74D81161693133E7F7" = Windows Driver Package - Nokia Modem (02/25/2011 7.01.0.9)
"8461-7759-5462-8226" = Vuze
"CCleaner" = CCleaner
"E0AC723A3DE3A04256288CADBBB011B112AED454" = Windows Driver Package - Nokia Modem (02/25/2011 4.7)
"FCEC33AD40CEA5E0FC4CEE6E42041A0DA189652D" = Windows Driver Package - Nokia pccsmcfd (08/22/2008 7.0.0.0)
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"NVIDIA Drivers" = NVIDIA Drivers
"ZonerPhotoStudio14_CZ_is1" = Zoner Photo Studio 14

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{1ADE1AA0-7F82-4BB1-B1BD-727DE438057B}" = Cool & Quiet
"{20D4A895-748C-4D88-871C-FDB1695B0169}" = Platform
"{26A24AE4-039D-4CA4-87B4-2F83217009FF}" = Java 7 Update 11
"{3AC8457C-0385-4BEA-A959-E095F05D6D67}" = Battlefield: Bad Company™ 2
"{3FBBD672-2A43-44A6-67F0-33BB9783F987}_is1" = Battlefield 3
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4AA68A73-DB9C-439D-9481-981C82BD008B}" = Nokia Connectivity Cable Driver
"{4ED7D297-58F7-45C3-A9BA-A7CD6FA0D373}_is1" = SureThing CD Labeler Deluxe
"{5E848AC7-99EE-46A9-BDCA-50F9275CB982}" = Utility
"{6033673D-2530-4587-8AD0-EB059FC263F9}" = Crysis® 2
"{65153EA5-8B6E-43B6-857B-C6E4FC25798A}" = Intel(R) Management Engine Components
"{6A9D1594-7791-48f5-9CAA-DE9BCB968320}" = Mass Effect™ 3
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{75D84EF7-0D8C-4e70-B3FA-7B42A5D4E0EB}" = Mass Effect 2
"{7F88C9E5-12BD-404F-AC6A-108BAAC9B708}" = ASUS Gamer OSD
"{8570BEE8-0CA3-4977-9AB1-80ED93F0513C}" = Assassin's Creed II
"{8833FFB6-5B0C-4764-81AA-06DFEED9A476}" = Realtek Ethernet Controller Driver For Windows Vista and Later
"{888F1505-C2B3-4FDE-835D-36353EBD4754}" = Ubisoft Game Launcher
"{90110409-6000-11D3-8CFE-0150048383C9}" = Microsoft Office Professional Edition 2003
"{90140000-2005-0000-0000-0000000FF1CE}" = Microsoft Office File Validation Add-In
"{92C41B26-EBC5-41C5-8B6F-E3EF7E57FF16}" = AVerMedia Applications
"{9530AE42-DAE1-4619-9594-B23487285D17}" = NVIDIA PhysX
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{9D15E813-0C26-41E7-ABC5-3EB06FF1B3CF}" = Assassin's Creed(R) III v1.02
"{A2AA4204-C05A-4013-888A-AD153139297F}" = PC Connectivity Solution
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{A97F28B2-3BA1-49B7-AEF6-CC8956ED8CAA}" = Nokia PC Suite
"{AC76BA86-7AD7-1051-7B44-AB0000000001}" = Adobe Reader XI (11.0.01) - Slovak
"{AF111648-99A1-453E-81DD-80DBBF6DAD0D}" = MSVC90_x86
"{B3808FA6-2354-47D2-AC62-ECE7D1952E7E}_is1" = Mafia 2 version 1.0
"{B3DAF54F-DB25-4586-9EF1-96D24BB14088}" = Windows Movie Maker 2.6
"{BE4BA698-8533-4F77-9559-C7F3F78C0B05}" = Assassin's Creed Brotherhood
"{CB099890-1D5F-11D5-9EA9-0050BAE317E1}" = CyberLink PowerDirector
"{DB6AB705-C9BD-40E3-8929-2EA57F36A4FF}_is1" = ConvertXtoDVD 4.0.6.316
"{E28B1E6F-E0AA-4228-AB89-DB4A0C89D426}" = AVerTV
"{E633417D-E796-45E1-8DE1-CB5954DA4896}" = SnugTV Station
"{EEA080A7-4331-4593-A071-D0862A8178B9}" = ASUS nVidia Driver
"{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}" = Microsoft SQL Server 2005 Compact Edition [ENU]
"{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
"{F5663E7F-79CA-4022-8B39-D855A4E0BF58}" = Manažer napájení
"AC3Filter_is1" = AC3Filter 2.5b
"Adobe Flash Player ActiveX" = Adobe Flash Player 11 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin
"Any Video Converter_is1" = Any Video Converter 2.7.7
"AVerMedia H830 USB Hybrid TV" = AVerMedia H830 USB Hybrid TV 10.0.64.24
"AVerMedia Media Center Plug-ins" = AVerMedia Media Center Plug-ins 2.0.8.0
"AVI ReComp" = AVI ReComp 1.5.1
"Avisynth" = AviSynth 2.5
"BSPlayerf" = BS.Player FREE
"Canon MG5100 series User Registration" = Canon MG5100 series User Registration
"CANONIJPLM100" = Canon Inkjet Printer/Scanner/Fax Extended Survey Program
"CanonMyPrinter" = Canon My Printer
"CanonSolutionMenuEX" = Canon Solution Menu EX
"DAEMON Tools Lite" = DAEMON Tools Lite
"DownTango" = DownTango
"E.M. Total Video Player 1.31_is1" = E.M. Total Video Player 1.31
"EasyBCD" = EasyBCD 1.7.2
"Easy-PhotoPrint EX" = Canon Easy-PhotoPrint EX
"Easy-WebPrint EX" = Canon Easy-WebPrint EX
"Free DVD Decrypter_is1" = Free DVD Decrypter version 1.5
"GOM Player" = GOM Player
"Google Chrome" = Google Chrome
"GotClip" = GotClip Downloader
"InstallShield_{20D4A895-748C-4D88-871C-FDB1695B0169}" = VIA Platform Device Manager
"InstallShield_{CB099890-1D5F-11D5-9EA9-0050BAE317E1}" = CyberLink PowerDirector
"InstallShield_{E28B1E6F-E0AA-4228-AB89-DB4A0C89D426}" = AVerTV
"Internet Download Manager" = Internet Download Manager
"Mozilla Firefox 18.0.1 (x86 sk)" = Mozilla Firefox 18.0.1 (x86 sk)
"MozillaMaintenanceService" = Mozilla Maintenance Service
"MP Navigator EX 4.0" = Canon MP Navigator EX 4.0
"MPEG2 Codec(libmpeg2/mad)" = MPEG2 Codec(libmpeg2/mad)
"Nokia PC Suite" = Nokia PC Suite
"NVIDIAStereo" = NVIDIA Stereoscopic 3D Driver
"Picasa 3" = Picasa 3
"PunkBusterSvc" = PunkBuster Services
"SubtitleWorkshop" = Subtitle Workshop 2.51
"Uplay" = Uplay
"VLC media player" = VLC media player 1.1.11
"VobSub" = VobSub 2.23
"WinRAR archiver" = WinRAR archivátor
"Wise Disk Cleaner_is1" = Wise Disk Cleaner 6.31
"Wise PC Engineer_is1" = Wise PC Engineer 6.4.2
"Wise Registry Cleaner_is1" = Wise Registry Cleaner 6.21
"xvid" = XviD MPEG-4 Video Codec
"Xvid_is1" = Xvid 1.2.2

========== Last 20 Event Log Errors ==========

[ Application Events ]
Error - 14. 1. 2013 15:06:47 | Computer Name = mojpocitac | Source = Application Error | ID = 1000
Description = Názov chybovej aplikácie: AC3SP.exe, verzia: 0.0.0.0, časová značka:
0x50c0f23e Názov chybového modulu: AC3SP.exe, verzia: 0.0.0.0, časová značka: 0x50c0f23e
Kód
výnimky: 0xc0000005 Odstup chyby: 0x005edb20 Identifikácia chybného procesu: 0xd50
Čas
spustenia chybnej aplikácie: 0x01cdf28978c7011e Cesta chybnej aplikácie: C:\Program
Files (x86)\Ubisoft\Assassin's Creed III\AC3SP.exe Cesta chybného modulu: C:\Program
Files (x86)\Ubisoft\Assassin's Creed III\AC3SP.exe Identifikácia hlásenia: 8a854db7-5e7d-11e2-9eaa-485b3995528e

Error - 22. 1. 2013 12:55:46 | Computer Name = mojpocitac | Source = Application Hang | ID = 1002
Description = The program Explorer.EXE version 6.1.7601.17567 stopped interacting
with Windows and was closed. To see if more information about the problem is available,
check the problem history in the Action Center control panel. Process ID: 8c8 Start
Time: 01cdf8b3cf637479 Termination Time: 25 Application Path: C:\Windows\Explorer.EXE

Report
Id: 85231c1e-64b4-11e2-b089-485b3995528e

Error - 23. 1. 2013 13:38:31 | Computer Name = mojpocitac | Source = Application Error | ID = 1000
Description = Názov chybovej aplikácie: AVerTV.exe, verzia: 6.4.4.146, časová značka:
0x4ac11ce1 Názov chybového modulu: A828Graph.dll, verzia: 3.2.1.12, časová značka:
0x4a9f564c Kód výnimky: 0xc0000005 Odstup chyby: 0x000ac083 Identifikácia chybného
procesu: 0xa18 Čas spustenia chybnej aplikácie: 0x01cdf99056fd4dbd Cesta chybnej
aplikácie: C:\Program Files (x86)\AVerMedia\AVerTV\AVerTV.exe Cesta chybného modulu:
C:\Program Files (x86)\Common Files\AVerMedia\dll\A828Graph.dll Identifikácia hlásenia:
b37bea5e-6583-11e2-a852-485b3995528e

Error - 23. 1. 2013 15:08:32 | Computer Name = mojpocitac | Source = Microsoft-Windows-CAPI2 | ID = 513
Description = Služba Cryptographic Services zlyhala pri spracovávaní volania OnIdentity()
v objekte System Writer. Details: AddWin32ServiceFiles: Unable to back up image of
service AVerUpdateServer since QueryServiceConfig API failed System Error: The system
cannot find the file specified. .

Error - 23. 1. 2013 15:08:44 | Computer Name = mojpocitac | Source = Microsoft-Windows-CAPI2 | ID = 513
Description = Služba Cryptographic Services zlyhala pri spracovávaní volania OnIdentity()
v objekte System Writer. Details: AddWin32ServiceFiles: Unable to back up image of
service AVerUpdateServer since QueryServiceConfig API failed System Error: The system
cannot find the file specified. .

Error - 23. 1. 2013 15:14:05 | Computer Name = mojpocitac | Source = Microsoft-Windows-CAPI2 | ID = 513
Description = Služba Cryptographic Services zlyhala pri spracovávaní volania OnIdentity()
v objekte System Writer. Details: AddWin32ServiceFiles: Unable to back up image of
service AVerUpdateServer since QueryServiceConfig API failed System Error: The system
cannot find the file specified. .

Error - 23. 1. 2013 16:25:35 | Computer Name = mojpocitac | Source = Microsoft-Windows-CAPI2 | ID = 513
Description = Služba Cryptographic Services zlyhala pri spracovávaní volania OnIdentity()
v objekte System Writer. Details: AddWin32ServiceFiles: Unable to back up image of
service AVerUpdateServer since QueryServiceConfig API failed System Error: The system
cannot find the file specified. .

Error - 24. 1. 2013 14:04:03 | Computer Name = mojpocitac | Source = SideBySide | ID = 16842785
Description = Activation context generation failed for "C:\Program Files (x86)\Nokia\Nokia
PC Suite 7\TIS_Windows7PIM.dll". Dependent Assembly Microsoft.VC80.DebugCRT,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0"
could not be found. Please use sxstrace.exe for detailed diagnosis.

Error - 24. 1. 2013 15:37:05 | Computer Name = mojpocitac | Source = Application Error | ID = 1000
Description = Názov chybovej aplikácie: GOM.EXE, verzia: 2.1.43.5119, časová značka:
0x501b9611 Názov chybového modulu: NGSCM.DLL_unloaded, verzia: 0.0.0.0, časová značka:
0x4f70188f Kód výnimky: 0xc0000005 Odstup chyby: 0x0cb63810 Identifikácia chybného
procesu: 0xdbc Čas spustenia chybnej aplikácie: 0x01cdfa651086e35c Cesta chybnej
aplikácie: C:\Program Files (x86)\GRETECH\GomPlayer\GOM.EXE Cesta chybného modulu:
NGSCM.DLL Identifikácia hlásenia: 6e31fd85-665d-11e2-960f-485b3995528e

Error - 24. 1. 2013 15:39:02 | Computer Name = mojpocitac | Source = Application Error | ID = 1000
Description = Názov chybovej aplikácie: GOM.EXE, verzia: 2.1.43.5119, časová značka:
0x501b9611 Názov chybového modulu: GVF.ax, verzia: 0.0.0.0, časová značka: 0x500383a4
Kód
výnimky: 0xc0000005 Odstup chyby: 0x0005c211 Identifikácia chybného procesu: 0x4a8
Čas
spustenia chybnej aplikácie: 0x01cdfa6a54eceb82 Cesta chybnej aplikácie: C:\Program
Files (x86)\GRETECH\GomPlayer\GOM.EXE Cesta chybného modulu: C:\Program Files (x86)\GRETECH\GomPlayer\GVF.ax
Identifikácia
hlásenia: b3dd067b-665d-11e2-960f-485b3995528e

[ AVer AutoUpdate Events ]
Error - 10. 1. 2013 19:10:35 | Computer Name = mojpocitac | Source = AVerUpdate Server | ID = 0
Description =

Error - 10. 1. 2013 19:24:23 | Computer Name = mojpocitac | Source = AVerUpdate Server | ID = 0
Description =

Error - 11. 1. 2013 2:38:04 | Computer Name = mojpocitac | Source = AVerUpdate Server | ID = 0
Description =

Error - 11. 1. 2013 2:43:15 | Computer Name = mojpocitac | Source = AVerUpdate Server | ID = 0
Description =

Error - 11. 1. 2013 9:46:02 | Computer Name = mojpocitac | Source = AVerUpdate Server | ID = 0
Description =

Error - 11. 1. 2013 9:59:11 | Computer Name = mojpocitac | Source = AVerUpdate Server | ID = 0
Description =

Error - 11. 1. 2013 10:31:16 | Computer Name = mojpocitac | Source = AVerUpdate Server | ID = 0
Description =

Error - 11. 1. 2013 10:42:09 | Computer Name = mojpocitac | Source = AVerUpdate Server | ID = 0
Description =

Error - 11. 1. 2013 10:55:26 | Computer Name = mojpocitac | Source = AVerUpdate Server | ID = 0
Description =

Error - 11. 1. 2013 11:02:19 | Computer Name = mojpocitac | Source = AVerUpdate Server | ID = 0
Description =

[ Media Center Events ]
Error - 25. 1. 2012 13:40:32 | Computer Name = mojpocitac | Source = ehRecvr | ID = 3
Description = TV tuner encountered an error. (0xc0040524) AVerMedia USB Polaris
Digital Tuner

Error - 5. 2. 2012 15:03:00 | Computer Name = mojpocitac | Source = ehRecvr | ID = 3
Description = TV tuner encountered an error. (0xc0040524) AVerMedia USB Polaris
Digital Tuner

Error - 5. 2. 2012 15:12:34 | Computer Name = mojpocitac | Source = ehRecvr | ID = 3
Description = TV tuner encountered an error. (0xc0040524) AVerMedia USB Polaris
Digital Tuner

Error - 22. 2. 2012 12:57:58 | Computer Name = mojpocitac | Source = ehRecvr | ID = 3
Error - 21. 3. 2012 14:00:14 | Computer Name = mojpocitac | Source = ehRecvr | ID
= 3

Description = TV tuner encountered an error. (0xc0040524) AVerMedia USB Polaris Digital Tuner
Error - 20. 4. 2012 12:49:59 | Computer Name = mojpocitac | Source = ehRecvr | ID
= 3

Description = TV tuner encountered an error. (0xc0040524) AVerMedia USB Polaris Digital Tuner
Error - 7. 5. 2012 2:24:22 | Computer Name = mojpocitac | Source = MCUpdate | ID
= 0

Description = 8:24:18 - Failed to retrieve EpgListings (Error: The underlying connection was closed: Could not establish trust relationship for the SSL/TLS secure channel.)

Error - 7. 5. 2012 3:31:20 | Computer Name = mojpocitac | Source = ehRecvr | ID
= 3

Description = TV tuner encountered an error. (0xc0040524) AVerMedia USB Polaris Digital Tuner
Error - 12. 5. 2012 6:33:39 | Computer Name = mojpocitac | Source = ehRecvr | ID
= 3

Description = TV tuner encountered an error. (0xc0040524) AVerMedia USB Polaris Digital Tuner
Error - 27. 5. 2012 13:57:42 | Computer Name = mojpocitac | Source = ehRecvr | ID
= 3

Description = TV tuner encountered an error. (0xc0040524) AVerMedia USB Polaris Digital Tuner
Error - 23. 6. 2012 7:08:09 | Computer Name = mojpocitac | Source = ehRecvr | ID
= 3

Description = TV tuner encountered an error. (0xc0040524) AVerMedia USB Polaris Digital Tuner

Error encountered while reading event logs.

< End of report >

[vyosek]

Spustte znovu OTL

• Pokud pouzivate Win Vista ci W7, kliknete na OTL pravym a dejte Run As Administrator ci Spustit jako spravce
• Do spodniho okenka Vlastni skenovani/opravy vlozte skript nize

• Kód: Vybrat vše

  :otl
  DRV:64bit: - [2012/12/10 17:52:38 | 000,030,568 | ---- | M] (AVG Technologies) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\avgtpx64.sys -- (avgtp)
  IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
  IE - HKU\S-1-5-21-2897896145-2411329342-784474909-1000\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
  IE - HKU\S-1-5-21-2897896145-2411329342-784474909-1000\..\SearchScopes\{060D1376-820F-4451-8168-A275B3DA50DE}: "URL" = http://www.topky.sk/?sid=0&fsearchX={searchTerms}&clanky=1&agent=1&datum=3&limit=50
  IE - HKU\S-1-5-21-2897896145-2411329342-784474909-1000\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC
  IE - HKU\S-1-5-21-2897896145-2411329342-784474909-1000\..\SearchScopes\{23F4F925-6F40-4483-A013-24159995B908}: "URL" = http://ozene.zoznam.sk/?fsearch={searchTerms}&sid=10159&root=10159&datum=2
  IE - HKU\S-1-5-21-2897896145-2411329342-784474909-1000\..\SearchScopes\{26D4A9DB-F4E2-4C37-AF45-F3621CD6586F}: "URL" = http://webslovnik.zoznam.sk/index.fcgi? ... 0&my_word={searchTerms}
  IE - HKU\S-1-5-21-2897896145-2411329342-784474909-1000\..\SearchScopes\{38D37094-0B69-4AB1-95E5-9DB6545A68A8}: "URL" = http://www.zoznam.sk/hladaj.fcgi?co=odk ... =search&s={searchTerms}
  IE - HKU\S-1-5-21-2897896145-2411329342-784474909-1000\..\SearchScopes\{39437A1C-1CB8-4A3B-A65D-B3E293C56DB6}: "URL" = http://mojdom.zoznam.sk/?query={searchTerms}&clanky=a&submit=%A0
  IE - HKU\S-1-5-21-2897896145-2411329342-784474909-1000\..\SearchScopes\{8F023490-7784-41F1-B2D6-F0086FB2EF3A}: "URL" = http://dromedar.zoznam.sk/index?sid=111 ... 4&fsearch={searchTerms}
  IE - HKU\S-1-5-21-2897896145-2411329342-784474909-1000\..\SearchScopes\{A8F552D9-D270-4EC4-AB77-131F8961DDE4}: "URL" = http://autoviny.zoznam.sk/index?sid=100 ... 1&fsearch={searchTerms}
  IE - HKU\S-1-5-21-2897896145-2411329342-784474909-1000\..\SearchScopes\{B000F88A-E2EF-4638-8380-66954DD07F03}: "URL" = http://www.zoznam.sk/hladaj.fcgi?co=telzoznam&s={searchTerms}&mesto=&ulica=&psc=&uto=&net_fixed=1&net_mobile=1&net_alt=1
  IE - HKU\S-1-5-21-2897896145-2411329342-784474909-1000\..\SearchScopes\{E2F4D5B4-CD21-4DFC-8B66-9D5BC1C2C503}: "URL" = http://webslovnik.zoznam.sk/index.fcgi? ... 1&my_word={searchTerms}
  IE - HKU\S-1-5-21-2897896145-2411329342-784474909-1000\..\SearchScopes\{E608000E-2E46-4ADE-B01E-536F93AC25A7}: "URL" = http://openiazoch.zoznam.sk/search.asp?Find={searchTerms}&chkTicker=on&chkNews=on&chkPages=on&OK=Vyh%BEada%9D
  FF - HKLM\Software\MozillaPlugins\@mcafee.com/SAFFPlugin: File not found
  O2 - BHO: (no name) - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - No CLSID value found.
  O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
  O13 - gopher Prefix: missing
  O18:64bit: - Protocol\Handler\msdaipp - No CLSID value found
  O18:64bit: - Protocol\Handler\msdaipp\0x00000001 - No CLSID value found
  O18:64bit: - Protocol\Handler\msdaipp\oledb - No CLSID value found
  O18:64bit: - Protocol\Handler\mso-offdap11 - No CLSID value found
  O18:64bit: - Protocol\Filter\text/xml - No CLSID value found
  O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
  O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
  [3 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
  [7 C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp files -> C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp -> ]
  [7 C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\*.tmp files -> C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\*.tmp -> ]
  [2 C:\Windows\Installer\*.tmp files -> C:\Windows\Installer\*.tmp -> ]
  [2013/01/28 16:31:00 | 000,000,830 | ---- | M] () -- C:\Windows\Tasks\Adobe Flash Player Updater.job
  [2013/01/28 16:18:00 | 000,000,944 | ---- | M] () -- C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
  [2013/01/28 16:37:04 | 000,000,948 | ---- | M] () -- C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
  [2013/01/13 15:32:40 | 000,000,404 | ---- | M] () -- C:\Windows\Tasks\Wise PC Engineer Schedule Task.job
  @Alternate Data Stream - 142 bytes -> C:\ProgramData\Temp:BF3D62E7
  
  :reg
  [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
  "IDMan"=-
  "Google Update"=-
  [-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
  [-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite]
  [-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PC Suite Tray]
  [-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\vProt]
  [HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
  "UpdatePDRShortCut"=-
  "SunJavaUpdateSched"=-
  
  :files
  %windir%\system32\*.tmp.dll /s
  %windir%\system32\SET*.tmp /s
  %windir%\*.tmp
  
  :commands
  [RESETHOSTS]
  [EMPTYTEMP]
  [EMPTYFLASH]
  [EMPTYJAVA]

• Nasledne kliknete na Opravit
• PC provede opravu, restartuje se a da Vam log, jeho obsah vlozte sem

[Duklando]

Dobrý deň.Posielam log z opravy OTL.


All processes killed
========== OTL ==========
Service avgtp stopped successfully!
Service avgtp deleted successfully!
C:\Windows\SysNative\drivers\avgtpx64.sys moved successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ deleted successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ not found.
HKEY_USERS\S-1-5-21-2897896145-2411329342-784474909-1000\Software\Microsoft\Internet Explorer\SearchScopes\\DefaultScope| /E : value set successfully!
Registry key HKEY_USERS\S-1-5-21-2897896145-2411329342-784474909-1000\Software\Microsoft\Internet Explorer\SearchScopes\{060D1376-820F-4451-8168-A275B3DA50DE}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{060D1376-820F-4451-8168-A275B3DA50DE}\ not found.
Registry key HKEY_USERS\S-1-5-21-2897896145-2411329342-784474909-1000\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ not found.
Registry key HKEY_USERS\S-1-5-21-2897896145-2411329342-784474909-1000\Software\Microsoft\Internet Explorer\SearchScopes\{23F4F925-6F40-4483-A013-24159995B908}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{23F4F925-6F40-4483-A013-24159995B908}\ not found.
Registry key HKEY_USERS\S-1-5-21-2897896145-2411329342-784474909-1000\Software\Microsoft\Internet Explorer\SearchScopes\{26D4A9DB-F4E2-4C37-AF45-F3621CD6586F}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{26D4A9DB-F4E2-4C37-AF45-F3621CD6586F}\ not found.
Registry key HKEY_USERS\S-1-5-21-2897896145-2411329342-784474909-1000\Software\Microsoft\Internet Explorer\SearchScopes\{38D37094-0B69-4AB1-95E5-9DB6545A68A8}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{38D37094-0B69-4AB1-95E5-9DB6545A68A8}\ not found.
Registry key HKEY_USERS\S-1-5-21-2897896145-2411329342-784474909-1000\Software\Microsoft\Internet Explorer\SearchScopes\{39437A1C-1CB8-4A3B-A65D-B3E293C56DB6}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{39437A1C-1CB8-4A3B-A65D-B3E293C56DB6}\ not found.
Registry key HKEY_USERS\S-1-5-21-2897896145-2411329342-784474909-1000\Software\Microsoft\Internet Explorer\SearchScopes\{8F023490-7784-41F1-B2D6-F0086FB2EF3A}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8F023490-7784-41F1-B2D6-F0086FB2EF3A}\ not found.
Registry key HKEY_USERS\S-1-5-21-2897896145-2411329342-784474909-1000\Software\Microsoft\Internet Explorer\SearchScopes\{A8F552D9-D270-4EC4-AB77-131F8961DDE4}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{A8F552D9-D270-4EC4-AB77-131F8961DDE4}\ not found.
Registry key HKEY_USERS\S-1-5-21-2897896145-2411329342-784474909-1000\Software\Microsoft\Internet Explorer\SearchScopes\{B000F88A-E2EF-4638-8380-66954DD07F03}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B000F88A-E2EF-4638-8380-66954DD07F03}\ not found.
Registry key HKEY_USERS\S-1-5-21-2897896145-2411329342-784474909-1000\Software\Microsoft\Internet Explorer\SearchScopes\{E2F4D5B4-CD21-4DFC-8B66-9D5BC1C2C503}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{E2F4D5B4-CD21-4DFC-8B66-9D5BC1C2C503}\ not found.
Registry key HKEY_USERS\S-1-5-21-2897896145-2411329342-784474909-1000\Software\Microsoft\Internet Explorer\SearchScopes\{E608000E-2E46-4ADE-B01E-536F93AC25A7}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{E608000E-2E46-4ADE-B01E-536F93AC25A7}\ not found.
Registry key HKEY_LOCAL_MACHINE\Software\MozillaPlugins\@mcafee.com/SAFFPlugin\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}\ not found.
Registry key HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Internet Explorer\Restrictions\ deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\URL\Prefixes\\gopher|:gopher:// /E : value set successfully!
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\msdaipp\ deleted successfully.
File Protocol\Handler\msdaipp - No CLSID value found not found.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\msdaipp\0x00000001\ not found.
File Protocol\Handler\msdaipp\0x00000001 - No CLSID value found not found.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\msdaipp\oledb\ not found.
File Protocol\Handler\msdaipp\oledb - No CLSID value found not found.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\mso-offdap11\ deleted successfully.
File Protocol\Handler\mso-offdap11 - No CLSID value found not found.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Filter\ deleted successfully.
64bit-Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad\\WebCheck deleted successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{E6FB5E20-DE35-11CF-9C87-00AA005127ED}\ not found.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad\\WebCheck deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{E6FB5E20-DE35-11CF-9C87-00AA005127ED}\ not found.
C:\Windows\1C4551A64743409391E41477CD655043.TMP\WiseCustomCalla.dll deleted successfully.
C:\Windows\1C4551A64743409391E41477CD655043.TMP folder deleted successfully.
C:\Windows\C5C1C0F0D62F4DBF81D4D7EF397C228B.TMP\WiseCustomCalla.dll deleted successfully.
C:\Windows\C5C1C0F0D62F4DBF81D4D7EF397C228B.TMP folder deleted successfully.
C:\Windows\msdownld.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAP2C12.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAP5DF8.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAP9E41.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAPCD9B.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAPD143.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAPE3E8.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAPEA30.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\ZAP209A.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\ZAP8729.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\ZAP9F89.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\ZAPB59A.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\ZAPC6C7.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\ZAPE291.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\ZAPE56E.tmp folder deleted successfully.
C:\Windows\Installer\MSID60A.tmp deleted successfully.
C:\Windows\Installer\MSIE1E0.tmp deleted successfully.
C:\Windows\Tasks\Adobe Flash Player Updater.job moved successfully.
C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job moved successfully.
C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job moved successfully.
C:\Windows\Tasks\Wise PC Engineer Schedule Task.job moved successfully.
ADS C:\ProgramData\Temp:BF3D62E7 deleted successfully.
========== REGISTRY ==========
Registry value HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\IDMan deleted successfully.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\Google Update not found.
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM\ not found.
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite\ not found.
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PC Suite Tray\ not found.
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\vProt\ not found.
Registry value HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run\\UpdatePDRShortCut deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched not found.
========== FILES ==========
File/Folder C:\Windows\system32\*.tmp.dll not found.
File/Folder C:\Windows\system32\SET*.tmp not found.
File/Folder C:\Windows\*.tmp not found.
========== COMMANDS ==========
C:\Windows\System32\drivers\etc\Hosts moved successfully.
HOSTS file reset successfully

[EMPTYTEMP]

User: All Users

User: AppData
->Temp folder emptied: 0 bytes

User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Juraj Cordas
->Temp folder emptied: 7279152 bytes
->Temporary Internet Files folder emptied: 175620278 bytes
->Java cache emptied: 0 bytes
->FireFox cache emptied: 4860906 bytes
->Google Chrome cache emptied: 22454954 bytes
->Flash cache emptied: 877 bytes

User: Public
->Temp folder emptied: 0 bytes

User: UpdatusUser
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: user
->Temp folder emptied: 0 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32 (64bit) .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 8578 bytes
%systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 50333 bytes
RecycleBin emptied: 0 bytes

Total Files Cleaned = 201,00 mb


[EMPTYFLASH]

User: All Users

User: AppData

User: Default

User: Default User

User: Juraj Cordas
->Flash cache emptied: 0 bytes

User: Public

User: UpdatusUser

User: user

Total Flash Files Cleaned = 0,00 mb


[EMPTYJAVA]

User: All Users

User: AppData

User: Default

User: Default User

User: Juraj Cordas
->Java cache emptied: 0 bytes

User: Public

User: UpdatusUser

User: user

Total Java Files Cleaned = 0,00 mb


OTL by OldTimer - Version 3.2.69.0 log created on 01292013_162346

Files\Folders moved on Reboot...
C:\Users\Juraj Cordas\AppData\Local\Temp\FXSAPIDebugLogFile.txt moved successfully.

PendingFileRenameOperations files...

Registry entries deleted on Reboot...

[vyosek]

Zdravim

OTL nam udelalo co melo, jak se chova PC

[Duklando]

Stále je tam. Miesto google nabehne AVG. Duklando.

[vyosek]

Na jakem prohlizeci prosim

[Duklando]

Na google chrome. Duklando.