ChromeUpdatePref.exe

Zpráva

#16 Příspěvek od **Márty84** » 19 říj 2013 23:00

Dejte novy log z RSIT

a k tomu

Stahnete OTL http://oldtimer.geekstogo.com/OTL.exe a ulozte na plochu.
Kliknete na nej pravym mysidlem a levym na Spustit jako spravce
Oznacte polozky (dejte tam zatrzitka) Pro všechny uživatele, Kontrola na havěť "LOP" a Kontrola na havěť "Purity"
Do spodniho okna vlozte nasledujici text

Kód: Vybrat vše

CREATERESTOREPOINT

netsvcs
drivers32
savembr:0

/md5start
adp3132.sys
AGP440.sys
ahcix86.sys
ahcix86s.sys
atapi.sys
autochk.exe
cdrom.sys
cngaudit.dll
cryptsvc.dll
eNetHook.dll
eventlog.dll
explorer.exe
hal.dll
Changer.sys
iaStor.sys
iastorv.sys
IdeChnDr.sys
isapnp.sys
JakNDis.sys
KR10N.sys
logevent.dll
lsass.exe
mv61xx.sys
ndis.sys
netlogon.dll
ntelogon.dll
nvata.sys
nvatabus.sys
nvgts.sys
nvraid.sys
nvrd32.sys
nvstor.sys
nvstor32.sys
scecli.dll
sceclt.dll
smss.exe
svchost.exe
symmpi.sys
tcpip.sys
userinit.exe
vaxscsi.sys
viamraid.sys
viasraid.sys
ViPrt.sys
winlogon.exe
ws2_32.dll
/md5stop

%systemroot%*.* /U /s
%SYSTEMDRIVE%\*.exe
%ALLUSERSPROFILE%\Application Data\*.
%ALLUSERSPROFILE%\Application Data\*.exe /s
%APPDATA%\*.
%APPDATA%\*.exe /s
%systemroot%\*. /mp /s
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\Tasks\*.job /lockedfiles
%systemroot%\system32\drivers\*.sys /lockedfiles
%systemroot%\System32\config\*.sav
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\system32\drivers\*.sys /3
%systemroot%\system32\*.* /3
%SYSTEMDRIVE%\*.exe

HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s
reg query "HKLM\Software\Microsoft\Windows NT\CurrentVersion\winlogon" /v GinaDLL /c
reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv" /v ImagePath /c
reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS" /v ImagePath /c

type c:\boot.ini >> test.txt /c
%SystemDrive%\PhysicalMBR.bin /md5

*crack* /s
*keygen* /s
*AntiWPA* /s
*loader* /s
*minodlogin* /s
*tnod* /s
*AutoKMS* /s
*activator* /s
*serial* /s
*w7lxe* /s

Kliknete na Prohledat
Po skenu se vytvori dva logy (OTL.Txt a Extras.txt), oba sem vlozte (kdyz budou dlouhe, rozdelte je do vice prispevku).

Jane86 · #17 Příspěvek od **Jane86** » 21 říj 2013 17:14

tu je log z RSITu:

Logfile of random's system information tool 1.09 (written by random/random)
Run by Jane at 2013-10-21 16:56:43
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 77 GB (32%) free of 238 GB
Total RAM: 3003 MB (57% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 16:56:52, on 21.10.2013
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v10.0 (10.00.9200.16720)
Boot mode: Normal

Running processes:
C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe
C:\Windows\system32\taskhost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\System32\hkcmd.exe
C:\Windows\System32\igfxpers.exe
C:\Program Files\AmIcoSingLun\AmIcoSinglun.exe
C:\Program Files\Common Files\Autodesk Shared\Autodesk Download Manager\DLMSession.exe
C:\Program Files\Comodo\COMODO Internet Security\cistray.exe
C:\Windows\System32\spool\drivers\w32x86\3\E_TATIHCE.EXE
C:\Program Files\Comodo\COMODO Internet Security\cis.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Users\Jane\Desktop\RSIT.exe
C:\Program Files\trend micro\Jane.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: PDF Architect Helper - {3A2D5EBA-F86D-4BD3-A177-019765996711} - C:\Program Files\PDF Architect\PDFIEHelper.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
O4 - HKLM\..\Run: [IgfxTray] C:\Windows\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\Windows\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\Windows\system32\igfxpers.exe
O4 - HKLM\..\Run: [AmIcoSinglun] C:\Program Files\AmIcoSingLun\AmIcoSinglun.exe
O4 - HKLM\..\Run: [ADSK DLMSession] C:\Program Files\Common Files\Autodesk Shared\Autodesk Download Manager\DLMSession.exe
O4 - HKLM\..\Run: [Autodesk Sync] C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe
O4 - HKLM\..\Run: [COMODO Internet Security] C:\Program Files\COMODO\COMODO Internet Security\cistray.exe
O4 - HKCU\..\Run: [EPLTarget\P0000000000000000] C:\Windows\system32\spool\DRIVERS\W32X86\3\E_TATIHCE.EXE /EPT "EPLTarget\P0000000000000000" /M "WF-7515 Series"
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Autodesk Content Service - Autodesk, Inc. - C:\Program Files\Autodesk\Content Service\Connect.Service.ContentService.exe
O23 - Service: COMODO Internet Security Helper Service (cmdAgent) - COMODO - C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
O23 - Service: COMODO Virtual Service Manager (cmdvirth) - COMODO - C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe
O23 - Service: FLEXnet Licensing Service - Flexera Software, Inc. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: MBAMScheduler - Malwarebytes Corporation - C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: PDF Architect Helper Service - pdfforge GbR - C:\Program Files\PDF Architect\HelperService.exe
O23 - Service: PDF Architect Service - pdfforge GbR - C:\Program Files\PDF Architect\ConversionService.exe

--
End of file - 5108 bytes

======Scheduled tasks folder======

C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job

=========Mozilla firefox=========

ProfilePath - C:\Users\Jane\AppData\Roaming\Mozilla\Firefox\Profiles\15r9j9xq.default

prefs.js - "extensions.enabledItems" - "{BBDA0591-3099-440a-AA10-41764D9DB4DB}:11.1.1.5 - 2, {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.6.28"

"FFPDFArchitectConverter@pdfarchitect.com"=C:\Program Files\PDF Architect\FFPDFArchitectExt

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 11.9.900.117 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF32_11_9_900_117.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Google.com/GoogleEarthPlugin]
"Description"=Google Earth in your browser
"Path"=C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=10.45.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=10.45.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.21.165\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.21.165\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll

C:\Program Files\Mozilla Firefox\plugins\
np-mswmp.dll
nppdf32.dll
npwachk.dll
WMP Firefox Plugin License.rtf
WMP Firefox Plugin RelNotes.txt

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3A2D5EBA-F86D-4BD3-A177-019765996711}]
PDF Architect Helper - C:\Program Files\PDF Architect\PDFIEHelper.dll [2013-01-09 92232]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2013-10-08 462760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2013-10-08 171944]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2010-08-25 136216]
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2010-08-25 171032]
"Persistence"=C:\Windows\system32\igfxpers.exe [2010-08-25 170520]
"AmIcoSinglun"=C:\Program Files\AmIcoSingLun\AmIcoSinglun.exe [2009-04-09 237568]
"ADSK DLMSession"=C:\Program Files\Common Files\Autodesk Shared\Autodesk Download Manager\DLMSession.exe [2012-07-23 1632216]
"Autodesk Sync"=C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe [2012-02-06 383424]
"COMODO Internet Security"=C:\Program Files\COMODO\COMODO Internet Security\cistray.exe [2013-09-24 1576152]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"EPLTarget\P0000000000000000"=C:\Windows\system32\spool\DRIVERS\W32X86\3\E_TATIHCE.EXE [2012-07-12 220800]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2010-08-25 228864]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
""=
"NoDriveTypeAutoRun"=145
"NoDrives"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.cvid"=iccvid.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"msacm.divxa32"=msaud32_divx.acm

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.scr - open - C:\Windows\system32\notepad.exe "%1"
.scr - install -
.scr - config -

======List of files/folders created in the last 1 month======

2013-10-19 23:54:33 ----D---- C:\Windows\temp
2013-10-19 23:54:31 ----A---- C:\ComboFix.txt
2013-10-19 23:52:50 ----SHD---- C:\$RECYCLE.BIN
2013-10-19 19:44:02 ----A---- C:\Windows\NIRCMD.exe
2013-10-19 19:44:02 ----A---- C:\Windows\MBR.exe
2013-10-19 19:44:01 ----A---- C:\Windows\zip.exe
2013-10-19 19:44:01 ----A---- C:\Windows\SWSC.exe
2013-10-19 19:44:01 ----A---- C:\Windows\SWREG.exe
2013-10-19 19:44:01 ----A---- C:\Windows\sed.exe
2013-10-19 19:44:01 ----A---- C:\Windows\PEV.exe
2013-10-19 19:44:01 ----A---- C:\Windows\grep.exe
2013-10-19 19:43:43 ----D---- C:\Qoobox
2013-10-19 19:43:12 ----D---- C:\Windows\erdnt
2013-10-19 11:45:54 ----A---- C:\Windows\system32\TrueSight.sys
2013-10-18 16:47:57 ----A---- C:\Windows\system32\drivers\mbam.sys
2013-10-18 16:35:23 ----D---- C:\Program Files\trend micro
2013-10-18 12:07:49 ----D---- C:\rsit
2013-10-18 10:55:18 ----D---- C:\_OTL
2013-10-18 10:48:14 ----D---- C:\Program Files\Hosts_Anti_Adwares_PUPs
2013-10-18 10:41:31 ----D---- C:\AdwCleaner
2013-10-17 16:38:13 ----D---- C:\ProgramData\Oracle
2013-10-17 16:36:20 ----D---- C:\Program Files\Common Files\Java
2013-10-17 16:36:14 ----A---- C:\Windows\system32\javaws.exe
2013-10-17 16:36:01 ----A---- C:\Windows\system32\WindowsAccessBridge.dll
2013-10-17 16:36:01 ----A---- C:\Windows\system32\javaw.exe
2013-10-17 16:36:01 ----A---- C:\Windows\system32\java.exe
2013-10-17 16:32:33 ----A---- C:\Program Files\jxpiinstall.exe
2013-10-14 13:05:52 ----D---- C:\Program Files\Google SketchUp 8.0.16846 Free CZ
2013-10-10 21:34:57 ----D---- C:\Program Files\Microsoft Silverlight
2013-10-10 21:34:32 ----A---- C:\Program Files\Silverlight.exe
2013-10-09 23:28:35 ----A---- C:\Windows\system32\jscript.dll
2013-10-09 23:28:33 ----A---- C:\Windows\system32\jscript9.dll
2013-10-09 23:28:32 ----A---- C:\Windows\system32\jsproxy.dll
2013-10-09 23:28:32 ----A---- C:\Windows\system32\ieui.dll
2013-10-09 23:28:32 ----A---- C:\Windows\system32\iesetup.dll
2013-10-09 23:28:31 ----A---- C:\Windows\system32\RegisterIEPKEYs.exe
2013-10-09 23:28:31 ----A---- C:\Windows\system32\msfeeds.dll
2013-10-09 23:28:31 ----A---- C:\Windows\system32\iesysprep.dll
2013-10-09 23:28:31 ----A---- C:\Windows\system32\iernonce.dll
2013-10-09 23:28:31 ----A---- C:\Windows\system32\ie4uinit.exe
2013-10-09 23:28:30 ----A---- C:\Windows\system32\urlmon.dll
2013-10-09 23:28:29 ----A---- C:\Windows\system32\iertutil.dll
2013-10-09 23:28:27 ----A---- C:\Windows\system32\wininet.dll
2013-10-09 23:28:26 ----A---- C:\Windows\system32\ieframe.dll
2013-10-09 23:28:22 ----A---- C:\Windows\system32\mshtml.dll
2013-10-09 20:40:05 ----A---- C:\Windows\system32\comctl32.dll
2013-10-09 20:39:39 ----A---- C:\Windows\system32\drivers\usbccgp.sys
2013-10-09 20:39:38 ----A---- C:\Windows\system32\drivers\usbuhci.sys
2013-10-09 20:39:38 ----A---- C:\Windows\system32\drivers\usbport.sys
2013-10-09 20:39:38 ----A---- C:\Windows\system32\drivers\usbohci.sys
2013-10-09 20:39:38 ----A---- C:\Windows\system32\drivers\usbhub.sys
2013-10-09 20:39:38 ----A---- C:\Windows\system32\drivers\usbehci.sys
2013-10-09 20:39:38 ----A---- C:\Windows\system32\drivers\usbd.sys
2013-10-09 20:39:10 ----A---- C:\Windows\system32\drivers\hidparse.sys
2013-10-09 20:39:10 ----A---- C:\Windows\system32\drivers\hidclass.sys
2013-10-09 20:38:43 ----A---- C:\Windows\system32\mswsock.dll
2013-10-09 20:38:43 ----A---- C:\Windows\system32\drivers\tcpip.sys
2013-10-09 20:38:42 ----A---- C:\Windows\system32\drivers\afd.sys
2013-10-09 20:37:48 ----A---- C:\Windows\system32\drivers\dxgkrnl.sys
2013-10-09 20:37:21 ----A---- C:\Windows\system32\tdh.dll
2013-10-09 20:37:21 ----A---- C:\Windows\system32\ntoskrnl.exe
2013-10-09 20:37:21 ----A---- C:\Windows\system32\ntkrnlpa.exe
2013-10-09 20:37:20 ----A---- C:\Windows\system32\ntdll.dll
2013-10-09 20:37:20 ----A---- C:\Windows\system32\advapi32.dll
2013-10-09 20:36:52 ----A---- C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2013-10-09 20:36:25 ----A---- C:\Windows\system32\lpk.dll
2013-10-09 20:36:25 ----A---- C:\Windows\system32\fontsub.dll
2013-10-09 20:36:25 ----A---- C:\Windows\system32\dciman32.dll
2013-10-09 20:36:25 ----A---- C:\Windows\system32\atmlib.dll
2013-10-09 20:36:25 ----A---- C:\Windows\system32\atmfd.dll
2013-10-09 20:35:57 ----A---- C:\Windows\system32\scavengeui.dll
2013-10-09 20:35:29 ----A---- C:\Windows\system32\win32k.sys
2013-10-09 20:34:34 ----A---- C:\Windows\system32\WebClnt.dll
2013-10-09 20:34:34 ----A---- C:\Windows\system32\davclnt.dll
2013-10-09 20:34:33 ----A---- C:\Windows\system32\drivers\mrxdav.sys
2013-10-09 20:33:39 ----A---- C:\Windows\system32\drivers\usbvideo.sys
2013-10-09 20:33:39 ----A---- C:\Windows\system32\drivers\usbcir.sys
2013-10-09 20:33:11 ----A---- C:\Windows\system32\drivers\Wdf01000.sys
2013-10-02 21:57:04 ----A---- C:\Program Files\ac3filter_2_5b.exe
2013-10-01 15:53:22 ----D---- C:\Program Files\Mozilla Firefox

======List of files/folders modified in the last 1 month======

2013-10-21 16:56:53 ----D---- C:\Windows\Prefetch
2013-10-21 16:28:24 ----D---- C:\Windows\system32\config
2013-10-21 16:06:20 ----D---- C:\Windows\System32
2013-10-21 16:06:20 ----D---- C:\Windows\inf
2013-10-21 16:06:20 ----A---- C:\Windows\system32\PerfStringBackup.INI
2013-10-21 12:19:47 ----SHD---- C:\Windows\Installer
2013-10-19 23:54:35 ----D---- C:\Windows\system32\drivers
2013-10-19 23:54:33 ----D---- C:\Windows
2013-10-19 23:50:16 ----A---- C:\Windows\system.ini
2013-10-19 23:50:01 ----D---- C:\Windows\system32\drivers\etc
2013-10-19 23:43:14 ----D---- C:\Windows\AppPatch
2013-10-19 23:43:12 ----D---- C:\Program Files\Common Files
2013-10-19 20:04:04 ----SHD---- C:\System Volume Information
2013-10-19 11:44:59 ----D---- C:\Users\Jane\AppData\Roaming\Seznam.cz
2013-10-18 19:14:24 ----D---- C:\Windows\security
2013-10-18 16:47:59 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2013-10-18 16:35:23 ----RD---- C:\Program Files
2013-10-18 10:55:22 ----D---- C:\Windows\Tasks
2013-10-18 10:44:08 ----D---- C:\ProgramData
2013-10-17 16:36:00 ----D---- C:\Program Files\Java
2013-10-17 15:52:35 ----D---- C:\Windows\rescache
2013-10-17 15:51:33 ----D---- C:\Windows\system32\catroot2
2013-10-11 09:52:23 ----D---- C:\Windows\Microsoft.NET
2013-10-11 09:50:51 ----RSD---- C:\Windows\assembly
2013-10-10 21:35:08 ----SD---- C:\ProgramData\Microsoft
2013-10-10 13:20:14 ----A---- C:\Windows\system32\FlashPlayerApp.exe
2013-10-10 12:48:45 ----D---- C:\Windows\winsxs
2013-10-10 12:45:32 ----D---- C:\Windows\system32\cs-CZ
2013-10-10 12:45:32 ----D---- C:\Program Files\Internet Explorer
2013-10-10 12:45:27 ----D---- C:\Windows\system32\DriverStore
2013-10-09 23:38:04 ----D---- C:\ProgramData\Microsoft Help
2013-10-09 23:34:42 ----D---- C:\Windows\system32\MRT
2013-10-09 23:31:27 ----A---- C:\Windows\system32\MRT.exe
2013-10-09 23:28:58 ----D---- C:\Windows\system32\catroot
2013-10-07 20:03:04 ----D---- C:\Windows\system32\wdi
2013-10-06 00:25:54 ----D---- C:\Users\Jane\AppData\Roaming\uTorrent
2013-10-03 13:16:50 ----D---- C:\Program Files\Mozilla Maintenance Service
2013-09-24 12:53:51 ----A---- C:\Windows\system32\guard32.dll
2013-09-24 12:53:51 ----A---- C:\Windows\system32\cmdcsr.dll
2013-09-24 12:53:35 ----A---- C:\Windows\system32\cmdvrt32.dll
2013-09-24 12:53:34 ----A---- C:\Windows\system32\cmdkbd32.dll

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 173440]
R1 cmderd;COMODO Internet Security Eradication Driver; C:\Windows\System32\DRIVERS\cmderd.sys [2013-09-24 20072]
R1 cmdGuard;COMODO Internet Security Sandbox Driver; C:\Windows\system32\DRIVERS\cmdguard.sys [2013-09-24 582936]
R1 cmdHlp;COMODO Internet Security Helper Driver; C:\Windows\System32\DRIVERS\cmdhlp.sys [2013-09-24 44752]
R1 inspect;COMODO Internet Security Firewall Driver; C:\Windows\system32\DRIVERS\inspect.sys [2013-09-24 85464]
R3 BthEnum;Ovladač pro Bluetooth Request Block; C:\Windows\system32\drivers\BthEnum.sys [2009-07-14 34816]
R3 BthPan;Zařízení Bluetooth (síť PAN); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 93696]
R3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2011-04-28 60416]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd32.sys [2010-08-25 9024512]
R3 L1C;NDIS Miniport Driver for Atheros AR8131/AR8132 PCI-E Ethernet Controller (NDIS 6.20); C:\Windows\system32\DRIVERS\L1C62x86.sys [2009-07-14 50688]
R3 MBAMProtector;MBAMProtector; \??\C:\Windows\system32\drivers\mbam.sys [2013-04-04 22856]
R3 NETw1v32;Intel(R) Wireless WiFi Link 1000 Series Adapter Driver for Windows Vista 32 Bit; C:\Windows\system32\DRIVERS\NETw1v32.sys [2009-07-20 5958656]
R3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 129536]
S2 Parvdm;Parvdm; C:\Windows\system32\drivers\parvdm.sys [2009-07-14 8704]
S3 aic78xx;aic78xx; C:\Windows\system32\drivers\djsvs.sys [2009-07-14 70720]
S3 amdagp;AMD AGP Bus Filter Driver; C:\Windows\system32\drivers\amdagp.sys [2009-07-14 53312]
S3 AmUStor;AM USB Stroage Driver; C:\Windows\system32\drivers\AmUStor.SYS [2009-05-26 25600]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60x.sys [2009-07-14 229888]
S3 BridgeMP;@%SystemRoot%\system32\bridgeres.dll,-1; C:\Windows\system32\DRIVERS\bridge.sys [2009-07-14 78336]
S3 BTHPORT;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2012-07-06 393728]
S3 catchme;catchme; \??\C:\Users\Jane\AppData\Local\Temp\catchme.sys []
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12368]
S3 sisagp;SIS AGP Bus Filter; C:\Windows\system32\drivers\sisagp.sys [2009-07-14 52304]
S3 TrueSight;TrueSight; \??\C:\Windows\system32\TrueSight.sys [2013-10-19 26624]
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\Windows\System32\drivers\tsusbflt.sys [2010-11-20 52224]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2010-11-20 27264]
S3 viaagp;VIA AGP Bus Filter; C:\Windows\system32\drivers\viaagp.sys [2009-07-14 53328]
S3 ViaC7;VIA C7 Processor Driver; C:\Windows\system32\drivers\viac7.sys [2009-07-14 52736]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 35968]
S3 WSDPrintDevice;Podpora tisku WSD prostřednictvím funkce UMB; C:\Windows\system32\DRIVERS\WSDPrint.sys [2009-07-14 17920]
S3 WSDScan;Podpora skenování WSD přes UMB; C:\Windows\system32\drivers\WSDScan.sys [2009-07-14 20480]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [2013-05-10 65640]
R2 Autodesk Content Service;Autodesk Content Service; C:\Program Files\Autodesk\Content Service\Connect.Service.ContentService.exe [2012-01-31 19232]
R2 cmdAgent;COMODO Internet Security Helper Service; C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe [2013-09-24 4831680]
R2 MBAMService;MBAMService; C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe [2013-04-04 701512]
R2 MBAMScheduler;MBAMScheduler; C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe [2013-04-04 418376]
R2 PDF Architect Helper Service;PDF Architect Helper Service; C:\Program Files\PDF Architect\HelperService.exe [2013-01-09 1324104]
R2 PDF Architect Service;PDF Architect Service; C:\Program Files\PDF Architect\ConversionService.exe [2013-01-09 795208]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2012-12-20 116648]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2013-10-10 257416]
S3 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2010-03-18 35160]
S3 cmdvirth;COMODO Virtual Service Manager; C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe [2013-09-24 131288]
S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2012-11-13 1044816]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2012-12-20 116648]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe [2009-02-26 64856]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2013-10-01 118680]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2012-05-28 1343400]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]

-----------------EOF-----------------

Během skenování OTL se objevila hláška "Cannot create file C:\User\Jane\Desktop\cmd.bat", kterou jsem odklikla "OK" (nic jiného nešlo) v domnění, že by mohl pokračovat v prohledávání dál, ale vypadá to, že se zasekl. Ve spodní liště je stále jen "Scanning HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\EPLTarget\P000000000000...." a dál nic. Co s tím?

#18 Příspěvek od **Márty84** » 21 říj 2013 18:56

Obcas se to stane, ze OTL tuhle chybku vyhodi

Spustte ho podle stejneho navodu jeste jednou, ale s timto upravenym skriptem

Kód: Vybrat vše

CREATERESTOREPOINT

netsvcs
drivers32
savembr:0

/md5start
atapi.sys
autochk.exe
cdrom.sys
explorer.exe
hal.dll
scecli.dll
svchost.exe
tcpip.sys
userinit.exe
winlogon.exe
/md5stop

%systemroot%*.* /U /s
%SYSTEMDRIVE%\*.exe
%ALLUSERSPROFILE%\Application Data\*.
%ALLUSERSPROFILE%\Application Data\*.exe /s
%APPDATA%\*.
%APPDATA%\*.exe /s
%systemroot%\*. /mp /s
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\Tasks\*.job
%systemroot%\system32\drivers\*.sys /lockedfiles
%systemroot%\System32\config\*.sav
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\system32\drivers\*.sys /3
%systemroot%\system32\*.* /3
%SYSTEMDRIVE%\*.exe

*crack* /s
*keygen* /s
*AntiWPA* /s
*loader* /s
*minodlogin* /s
*tnod* /s
*AutoKMS* /s
*activator* /s
*serial* /s
*w7lxe* /s

Jane86 · #19 Příspěvek od **Jane86** » 21 říj 2013 19:48

Tak už se to povedlo

Nejdřív posílám log z OTL.txt:

OTL logfile created on: 21.10.2013 20:07:36 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Jane\Desktop
Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.10.9200.16721)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

2,93 Gb Total Physical Memory | 1,53 Gb Available Physical Memory | 52,29% Memory free
5,86 Gb Paging File | 4,36 Gb Available in Paging File | 74,35% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 232,79 Gb Total Space | 76,43 Gb Free Space | 32,83% Space Free | Partition Type: NTFS

Computer Name: JANE-PC | User Name: Jane | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2013.10.21 16:54:16 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Jane\Desktop\OTL.exe
PRC - [2013.10.17 09:22:35 | 000,237,960 | ---- | M] (Google Inc.) -- C:\Program Files\Google\Update\1.3.21.165\GoogleCrashHandler.exe
PRC - [2013.10.01 15:53:31 | 000,274,840 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2013.09.24 12:53:53 | 004,831,680 | ---- | M] (COMODO) -- C:\Program Files\Comodo\COMODO Internet Security\cmdagent.exe
PRC - [2013.09.24 12:53:26 | 007,022,808 | ---- | M] (COMODO) -- C:\Program Files\Comodo\COMODO Internet Security\cis.exe
PRC - [2013.09.24 12:53:26 | 001,576,152 | ---- | M] (COMODO) -- C:\Program Files\Comodo\COMODO Internet Security\cistray.exe
PRC - [2013.09.24 12:53:25 | 001,857,752 | ---- | M] (COMODO) -- C:\Program Files\Comodo\COMODO Internet Security\cavwp.exe
PRC - [2013.05.10 09:57:22 | 000,065,640 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
PRC - [2013.04.04 14:50:32 | 000,701,512 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
PRC - [2013.04.04 14:50:32 | 000,532,040 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe
PRC - [2013.04.04 14:50:32 | 000,418,376 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
PRC - [2013.01.09 18:36:06 | 000,795,208 | ---- | M] (pdfforge GbR) -- C:\Program Files\PDF Architect\ConversionService.exe
PRC - [2013.01.09 18:34:26 | 001,324,104 | ---- | M] (pdfforge GbR) -- C:\Program Files\PDF Architect\HelperService.exe
PRC - [2012.11.23 04:48:41 | 000,049,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\taskhost.exe
PRC - [2012.07.23 18:32:20 | 001,632,216 | ---- | M] (Autodesk, Inc.) -- C:\Program Files\Common Files\Autodesk Shared\Autodesk Download Manager\DLMSession.exe
PRC - [2012.07.12 08:01:02 | 000,220,800 | ---- | M] (SEIKO EPSON CORPORATION) -- C:\Windows\System32\spool\drivers\w32x86\3\E_TATIHCE.EXE
PRC - [2012.01.31 11:46:56 | 000,019,232 | ---- | M] (Autodesk, Inc.) -- C:\Program Files\Autodesk\Content Service\Connect.Service.ContentService.exe
PRC - [2011.02.25 07:30:54 | 002,616,320 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
PRC - [2009.04.09 21:17:08 | 000,237,568 | ---- | M] (AlcorMicro Co., Ltd.) -- C:\Program Files\AmIcoSingLun\AmIcoSinglun.exe

========== Modules (No Company Name) ==========

MOD - [2013.10.01 15:53:30 | 003,279,768 | ---- | M] () -- C:\Program Files\Mozilla Firefox\mozjs.dll
MOD - [2012.02.17 20:55:36 | 000,166,912 | ---- | M] () -- C:\Program Files\WinRAR\RarExt.dll

========== Services (SafeList) ==========

SRV - [2013.10.10 13:20:14 | 000,257,416 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\System32\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2013.10.01 15:53:31 | 000,118,680 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2013.09.24 12:53:53 | 004,831,680 | ---- | M] (COMODO) [Auto | Running] -- C:\Program Files\Comodo\COMODO Internet Security\cmdagent.exe -- (cmdAgent)
SRV - [2013.09.24 12:53:27 | 000,131,288 | ---- | M] (COMODO) [On_Demand | Stopped] -- C:\Program Files\Comodo\COMODO Internet Security\cmdvirth.exe -- (cmdvirth)
SRV - [2013.05.27 06:57:27 | 000,680,960 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2013.05.10 09:57:22 | 000,065,640 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2013.04.04 14:50:32 | 000,701,512 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe -- (MBAMService)
SRV - [2013.04.04 14:50:32 | 000,418,376 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe -- (MBAMScheduler)
SRV - [2013.01.09 18:36:06 | 000,795,208 | ---- | M] (pdfforge GbR) [Auto | Running] -- C:\Program Files\PDF Architect\ConversionService.exe -- (PDF Architect Service)
SRV - [2013.01.09 18:34:26 | 001,324,104 | ---- | M] (pdfforge GbR) [Auto | Running] -- C:\Program Files\PDF Architect\HelperService.exe -- (PDF Architect Helper Service)
SRV - [2012.11.13 11:36:18 | 001,044,816 | ---- | M] (Flexera Software, Inc.) [On_Demand | Stopped] -- C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe -- (FLEXnet Licensing Service)
SRV - [2012.05.28 22:44:56 | 001,343,400 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\Wat\WatAdminSvc.exe -- (WatAdminSvc)
SRV - [2012.01.31 11:46:56 | 000,019,232 | ---- | M] (Autodesk, Inc.) [Auto | Running] -- C:\Program Files\Autodesk\Content Service\Connect.Service.ContentService.exe -- (Autodesk Content Service)
SRV - [2009.07.14 03:16:13 | 000,025,088 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\sensrsvc.dll -- (SensrSvc)

========== Driver Services (SafeList) ==========

DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Users\Jane\AppData\Local\Temp\catchme.sys -- (catchme)
DRV - [2013.10.19 11:45:54 | 000,026,624 | ---- | M] () [Kernel | On_Demand | Unknown] -- C:\Windows\System32\TrueSight.sys -- (TrueSight)
DRV - [2013.09.24 12:54:09 | 000,085,464 | ---- | M] (COMODO) [Kernel | System | Running] -- C:\Windows\System32\drivers\inspect.sys -- (inspect)
DRV - [2013.09.24 12:54:08 | 000,582,936 | ---- | M] (COMODO) [File_System | System | Running] -- C:\Windows\System32\drivers\cmdguard.sys -- (cmdGuard)
DRV - [2013.09.24 12:54:08 | 000,044,752 | ---- | M] (COMODO) [Kernel | System | Running] -- C:\Windows\System32\drivers\cmdhlp.sys -- (cmdHlp)
DRV - [2013.09.24 12:54:07 | 000,020,072 | ---- | M] (COMODO) [File_System | System | Running] -- C:\Windows\System32\drivers\cmderd.sys -- (cmderd)
DRV - [2013.04.04 14:50:32 | 000,022,856 | ---- | M] (Malwarebytes Corporation) [File_System | On_Demand | Running] -- C:\Windows\System32\drivers\mbam.sys -- (MBAMProtector)
DRV - [2010.11.20 23:29:24 | 000,052,224 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV - [2010.11.20 23:29:03 | 000,035,968 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\winusb.sys -- (WinUsb)
DRV - [2010.11.20 23:29:03 | 000,027,264 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\TsUsbGD.sys -- (TsUsbGD)
DRV - [2009.07.20 15:30:34 | 005,958,656 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\NETw1v32.sys -- (NETw1v32)
DRV - [2009.07.14 02:18:07 | 000,017,920 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\WSDPrint.sys -- (WSDPrintDevice)
DRV - [2009.07.14 02:14:49 | 000,020,480 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\WSDScan.sys -- (WSDScan)
DRV - [2009.07.14 00:02:47 | 000,050,688 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\L1C62x86.sys -- (L1C)
DRV - [2009.05.26 21:32:56 | 000,025,600 | ---- | M] (Alcor Micro, Corp.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\AmUStor.sys -- (AmUStor)

========== Standard Registry (SafeList) ==========

========== Internet Explorer ==========

IE - HKLM\..\SearchScopes,DefaultScope =
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC

IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-19\..\SearchScopes,DefaultScope =

IE - HKU\S-1-5-20\..\SearchScopes,DefaultScope =

IE - HKU\S-1-5-21-3723644802-1017424679-4293840486-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
IE - HKU\S-1-5-21-3723644802-1017424679-4293840486-1000\..\SearchScopes,DefaultScope =
IE - HKU\S-1-5-21-3723644802-1017424679-4293840486-1000\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTer ... ORM=IE10SR
IE - HKU\S-1-5-21-3723644802-1017424679-4293840486-1000\..\SearchScopes\{10F272EF-F3AD-4F1D-87B0-024C6813833E}: "URL" = http://www.zbozi.cz/?q={searchTerms}&r= ... arch_12454
IE - HKU\S-1-5-21-3723644802-1017424679-4293840486-1000\..\SearchScopes\{9E87E19A-18BA-4F02-AD45-027112B390E4}: "URL" = http://search.seznam.cz/?q={searchTerms ... arch_12454
IE - HKU\S-1-5-21-3723644802-1017424679-4293840486-1000\..\SearchScopes\{D1571950-64CF-4AE3-B2F5-8991E8062AE5}: "URL" = http://slovnik.seznam.cz/?q={searchTerm ... arch_12454
IE - HKU\S-1-5-21-3723644802-1017424679-4293840486-1000\..\SearchScopes\{DE29F512-1F4D-4D65-B06E-C84309B5F19D}: "URL" = http://www.firmy.cz/phr/{searchTerms}?s ... arch_12454
IE - HKU\S-1-5-21-3723644802-1017424679-4293840486-1000\..\SearchScopes\{E0979E9E-EFF2-41FB-B6AE-9357B2419ABC}: "URL" = http://slovnik.seznam.cz/?q={searchTerm ... arch_12454
IE - HKU\S-1-5-21-3723644802-1017424679-4293840486-1000\..\SearchScopes\{E1FA0B31-E3CF-4C07-AF10-6FA45C10ADCB}: "URL" = http://www.mapy.cz/?query={searchTerms} ... arch_12454
IE - HKU\S-1-5-21-3723644802-1017424679-4293840486-1000\..\SearchScopes\{E7695BB9-3D5C-4E38-9AB0-6BDB037ECE11}: "URL" = http://www.google.com/search?q={searchT ... utEncoding?}
IE - HKU\S-1-5-21-3723644802-1017424679-4293840486-1000\..\SearchScopes\{FB7F0660-800B-49D5-B5C7-68922C30A158}: "URL" = http://encyklopedie.seznam.cz/search?q= ... arch_12454
IE - HKU\S-1-5-21-3723644802-1017424679-4293840486-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-3723644802-1017424679-4293840486-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = <local>

========== FireFox ==========

FF - prefs.js..browser.search.selectedEngine: ""
FF - prefs.js..extensions.enabledAddons: FFPDFArchitectConverter%40pdfarchitect.com:1.0
FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:24.0
FF - prefs.js..extensions.enabledItems: {BBDA0591-3099-440a-AA10-41764D9DB4DB}:11.1.1.5 - 2
FF - user.js - File not found

FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF32_11_9_900_117.dll ()
FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.45.2: C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.45.2: C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\FFPDFArchitectConverter@pdfarchitect.com: C:\Program Files\PDF Architect\FFPDFArchitectExt [2013.03.02 14:21:15 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 24.0\extensions\\Components: C:\Program Files\Mozilla Firefox\components
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 24.0\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2013.10.01 15:53:23 | 000,000,000 | ---D | M]

[2012.11.13 14:35:14 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Jane\AppData\Roaming\Mozilla\Extensions
[2013.09.26 23:04:08 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Jane\AppData\Roaming\Mozilla\Firefox\Profiles\15r9j9xq.default\extensions
[2013.10.01 15:53:22 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\browser\extensions
[2013.10.01 15:53:31 | 000,000,000 | ---D | M] (Default) -- C:\Program Files\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
[2013.03.02 14:21:15 | 000,000,000 | ---D | M] (PDF Architect Converter For Firefox) -- C:\PROGRAM FILES\PDF ARCHITECT\FFPDFARCHITECTEXT
[2011.12.09 19:23:32 | 000,012,800 | ---- | M] (Nullsoft, Inc.) -- C:\Program Files\mozilla firefox\plugins\npwachk.dll

O1 HOSTS File: ([2013.10.19 23:50:01 | 000,000,027 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (PDF Architect Helper) - {3A2D5EBA-F86D-4BD3-A177-019765996711} - C:\Program Files\PDF Architect\PDFIEHelper.dll (pdfforge GbR)
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O4 - HKLM..\Run: [ADSK DLMSession] C:\Program Files\Common Files\Autodesk Shared\Autodesk Download Manager\DLMSession.exe (Autodesk, Inc.)
O4 - HKLM..\Run: [AmIcoSinglun] C:\Program Files\AmIcoSingLun\AmIcoSinglun.exe (AlcorMicro Co., Ltd.)
O4 - HKLM..\Run: [Autodesk Sync] C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe (Autodesk, Inc.)
O4 - HKLM..\Run: [COMODO Internet Security] C:\Program Files\Comodo\COMODO Internet Security\cistray.exe (COMODO)
O4 - HKU\S-1-5-21-3723644802-1017424679-4293840486-1000..\Run: [EPLTarget\P0000000000000000] C:\Windows\System32\spool\DRIVERS\W32X86\3\E_TATIHCE.EXE (SEIKO EPSON CORPORATION)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0
O7 - HKU\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-19\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-20\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-3723644802-1017424679-4293840486-1000\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-3723644802-1017424679-4293840486-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: =
O7 - HKU\S-1-5-21-3723644802-1017424679-4293840486-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-3723644802-1017424679-4293840486-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O15 - HKU\S-1-5-21-3723644802-1017424679-4293840486-1000\..Trusted Domains: localhost ([]http in Internet)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{BDC34928-E505-4771-BA1C-ACA21303F7DE}: DhcpNameServer = 192.168.1.1
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\System32\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2012.11.13 11:14:32 | 000,000,000 | ---D | M] - C:\Autodesk -- [ NTFS ]
O32 - AutoRun File - [2009.06.10 23:42:20 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = ComFile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

CREATERESTOREPOINT
Restore point Set: OTL Restore Point

NetSvcs: FastUserSwitchingCompatibility - File not found
NetSvcs: Ias - C:\Windows\System32\ias.dll (Microsoft Corporation)
NetSvcs: Nla - File not found
NetSvcs: Ntmssvc - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: SRService - File not found
NetSvcs: WmdmPmSp - File not found
NetSvcs: LogonHours - File not found
NetSvcs: PCAudit - File not found
NetSvcs: helpsvc - File not found
NetSvcs: uploadmgr - File not found

Drivers32: msacm.divxa32 - C:\Windows\System32\msaud32_divx.acm (Microsoft Corporation)
Drivers32: msacm.l3acm - C:\Windows\System32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: MSVideo8 - C:\Windows\System32\vfwwdm32.dll (Microsoft Corporation)
Drivers32: vidc.cvid - C:\Windows\System32\iccvid.dll (Radius Inc.)
PhysicalDisk0 MBR saved to C:\PhysicalMBR.bin

========== Files/Folders - Created Within 30 Days ==========

[2013.10.21 12:20:03 | 000,000,000 | ---D | C] -- C:\Users\Jane\Desktop\RK reporty
[2013.10.19 23:54:33 | 000,000,000 | ---D | C] -- C:\Windows\temp
[2013.10.19 23:52:50 | 000,000,000 | -HSD | C] -- C:\$RECYCLE.BIN
[2013.10.19 19:44:02 | 000,060,416 | ---- | C] (NirSoft) -- C:\Windows\NIRCMD.exe
[2013.10.19 19:44:01 | 000,518,144 | ---- | C] (SteelWerX) -- C:\Windows\SWREG.exe
[2013.10.19 19:44:01 | 000,406,528 | ---- | C] (SteelWerX) -- C:\Windows\SWSC.exe
[2013.10.19 19:43:43 | 000,000,000 | ---D | C] -- C:\Qoobox
[2013.10.19 19:43:12 | 000,000,000 | ---D | C] -- C:\Windows\erdnt
[2013.10.19 19:40:35 | 005,135,479 | R--- | C] (Swearware) -- C:\Users\Jane\Desktop\ComboFix.exe
[2013.10.19 11:45:29 | 000,000,000 | ---D | C] -- C:\Users\Jane\Desktop\RK_Quarantine
[2013.10.18 16:47:57 | 000,022,856 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbam.sys
[2013.10.18 16:45:03 | 010,285,040 | ---- | C] (Malwarebytes Corporation ) -- C:\Users\Jane\Desktop\mbam-setup-1.75.0.1300.exe
[2013.10.18 16:35:23 | 000,000,000 | ---D | C] -- C:\Program Files\trend micro
[2013.10.18 12:07:49 | 000,000,000 | ---D | C] -- C:\rsit
[2013.10.18 10:55:18 | 000,000,000 | ---D | C] -- C:\_OTL
[2013.10.18 10:54:33 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\Jane\Desktop\OTL.exe
[2013.10.18 10:48:14 | 000,000,000 | ---D | C] -- C:\Program Files\Hosts_Anti_Adwares_PUPs
[2013.10.18 10:41:31 | 000,000,000 | ---D | C] -- C:\AdwCleaner
[2013.10.17 16:38:13 | 000,000,000 | ---D | C] -- C:\ProgramData\Oracle
[2013.10.17 16:36:20 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Java
[2013.10.17 16:36:14 | 000,264,616 | ---- | C] (Oracle Corporation) -- C:\Windows\System32\javaws.exe
[2013.10.17 16:36:01 | 000,175,016 | ---- | C] (Oracle Corporation) -- C:\Windows\System32\javaw.exe
[2013.10.17 16:36:01 | 000,174,504 | ---- | C] (Oracle Corporation) -- C:\Windows\System32\java.exe
[2013.10.17 16:36:01 | 000,094,632 | ---- | C] (Oracle Corporation) -- C:\Windows\System32\WindowsAccessBridge.dll
[2013.10.17 16:36:01 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
[2013.10.17 16:32:33 | 000,915,368 | ---- | C] (Oracle Corporation) -- C:\Program Files\jxpiinstall.exe
[2013.10.14 13:06:03 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google SketchUp 8.0.16846 Free CZ
[2013.10.14 13:05:52 | 000,000,000 | ---D | C] -- C:\Program Files\Google SketchUp 8.0.16846 Free CZ
[2013.10.10 21:35:05 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
[2013.10.10 21:34:57 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Silverlight
[2013.10.10 21:34:32 | 006,951,048 | ---- | C] (Microsoft Corporation) -- C:\Program Files\Silverlight.exe
[2013.10.09 23:28:35 | 002,706,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mshtml.tlb
[2013.10.09 23:28:33 | 002,876,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jscript9.dll
[2013.10.09 23:28:32 | 000,391,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieui.dll
[2013.10.09 23:28:32 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iesetup.dll
[2013.10.09 23:28:32 | 000,039,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jsproxy.dll
[2013.10.09 23:28:31 | 000,493,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeeds.dll
[2013.10.09 23:28:31 | 000,109,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iesysprep.dll
[2013.10.09 23:28:31 | 000,071,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\RegisterIEPKEYs.exe
[2013.10.09 23:28:31 | 000,042,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ie4uinit.exe
[2013.10.09 23:28:31 | 000,033,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iernonce.dll
[2013.10.09 20:39:38 | 000,284,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\usbport.sys
[2013.10.09 20:39:38 | 000,006,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\usbd.sys
[2013.10.09 20:39:10 | 000,055,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\hidclass.sys
[2013.10.09 20:39:10 | 000,025,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\hidparse.sys
[2013.10.09 20:37:21 | 003,969,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntkrnlpa.exe
[2013.10.09 20:37:21 | 003,914,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntoskrnl.exe
[2013.10.09 20:37:21 | 000,619,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\tdh.dll
[2013.10.09 20:36:52 | 000,102,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PresentationCFFRasterizerNative_v0300.dll
[2013.10.09 20:36:25 | 000,295,424 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\System32\atmfd.dll
[2013.10.09 20:36:25 | 000,070,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\fontsub.dll
[2013.10.09 20:36:25 | 000,034,304 | ---- | C] (Adobe Systems) -- C:\Windows\System32\atmlib.dll
[2013.10.09 20:36:25 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dciman32.dll
[2013.10.09 20:35:57 | 000,434,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\scavengeui.dll
[2013.10.09 20:35:29 | 002,348,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\win32k.sys
[2013.10.02 21:57:04 | 004,563,950 | ---- | C] (Alexander Vigovsky ) -- C:\Program Files\ac3filter_2_5b.exe
[2013.10.01 15:53:22 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Firefox

========== Files - Modified Within 30 Days ==========

[2013.10.21 20:09:40 | 000,000,512 | ---- | M] () -- C:\PhysicalMBR.bin
[2013.10.21 20:01:58 | 000,343,719 | ---- | M] () -- C:\Users\Jane\Desktop\001.jpg
[2013.10.21 19:27:00 | 000,000,936 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2013.10.21 18:13:51 | 000,137,525 | ---- | M] () -- C:\Users\Jane\Desktop\OTLscan.jpg
[2013.10.21 16:54:16 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Jane\Desktop\OTL.exe
[2013.10.21 16:09:23 | 000,021,888 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2013.10.21 16:09:23 | 000,021,888 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2013.10.21 16:06:20 | 000,669,698 | ---- | M] () -- C:\Windows\System32\perfh005.dat
[2013.10.21 16:06:20 | 000,655,052 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2013.10.21 16:06:20 | 000,141,298 | ---- | M] () -- C:\Windows\System32\perfc005.dat
[2013.10.21 16:06:20 | 000,121,924 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2013.10.21 16:02:37 | 000,000,932 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2013.10.21 16:02:01 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2013.10.21 16:01:55 | 2361,585,664 | -HS- | M] () -- C:\hiberfil.sys
[2013.10.19 23:50:01 | 000,000,027 | ---- | M] () -- C:\Windows\System32\drivers\etc\hosts
[2013.10.19 19:40:32 | 005,135,479 | R--- | M] (Swearware) -- C:\Users\Jane\Desktop\ComboFix.exe
[2013.10.19 11:45:54 | 000,026,624 | ---- | M] () -- C:\Windows\System32\TrueSight.sys
[2013.10.19 11:44:16 | 000,951,808 | ---- | M] () -- C:\Users\Jane\Desktop\RogueKiller.exe
[2013.10.18 21:38:45 | 001,474,832 | ---- | M] () -- C:\Windows\System32\drivers\sfi.dat
[2013.10.18 19:18:08 | 000,781,383 | ---- | M] () -- C:\Users\Jane\Desktop\RSIT.exe
[2013.10.18 16:48:00 | 000,001,071 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
[2013.10.18 16:45:03 | 010,285,040 | ---- | M] (Malwarebytes Corporation ) -- C:\Users\Jane\Desktop\mbam-setup-1.75.0.1300.exe
[2013.10.18 10:39:39 | 001,050,644 | ---- | M] () -- C:\Users\Jane\Desktop\adwcleaner.exe
[2013.10.18 10:31:50 | 000,001,420 | ---- | M] () -- C:\Users\Jane\Desktop\Voda v krajině – zástupce.lnk
[2013.10.18 10:31:39 | 000,001,600 | ---- | M] () -- C:\Users\Jane\Desktop\Ochrana a rozvoj venkovských sídel – zástupce.lnk
[2013.10.18 10:30:20 | 000,001,559 | ---- | M] () -- C:\Users\Jane\Desktop\Ateliér III. - Tvorba krajiny – zástupce.lnk
[2013.10.17 17:54:50 | 000,075,964 | ---- | M] () -- C:\Users\Jane\.TransferManager.db
[2013.10.17 16:45:40 | 000,002,001 | ---- | M] () -- C:\Users\Jane\Desktop\Kies Air Discovery Service.lnk
[2013.10.17 16:32:10 | 000,915,368 | ---- | M] (Oracle Corporation) -- C:\Program Files\jxpiinstall.exe
[2013.10.17 11:35:36 | 000,162,869 | ---- | M] () -- C:\Users\Jane\Desktop\Janča-rozvrh.jpg
[2013.10.14 21:27:20 | 000,362,486 | ---- | M] () -- C:\Users\Jane\Desktop\Pozvanka_vizualni_komunikace.pdf
[2013.10.14 20:40:33 | 213,103,205 | ---- | M] () -- C:\Program Files\SketchUp-8-Pro-+-Vray.zip
[2013.10.14 13:06:03 | 000,001,273 | ---- | M] () -- C:\Users\Public\Desktop\Google SketchUp 8.0.16846 Free CZ.lnk
[2013.10.10 21:34:13 | 006,951,048 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Silverlight.exe
[2013.10.10 13:20:14 | 000,692,616 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerApp.exe
[2013.10.10 13:20:14 | 000,071,048 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerCPLApp.cpl
[2013.10.10 12:48:02 | 003,841,672 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
[2013.10.08 17:34:18 | 000,099,447 | ---- | M] () -- C:\Users\Jane\Desktop\rozvrh.jpg
[2013.10.08 07:50:41 | 000,094,632 | ---- | M] (Oracle Corporation) -- C:\Windows\System32\WindowsAccessBridge.dll
[2013.10.08 07:46:52 | 000,264,616 | ---- | M] (Oracle Corporation) -- C:\Windows\System32\javaws.exe
[2013.10.08 07:46:47 | 000,175,016 | ---- | M] (Oracle Corporation) -- C:\Windows\System32\javaw.exe
[2013.10.08 07:46:23 | 000,174,504 | ---- | M] (Oracle Corporation) -- C:\Windows\System32\java.exe
[2013.10.07 22:42:08 | 000,383,150 | ---- | M] () -- C:\Users\Jane\Documents\Support-Svobodnych-template-já.jpg
[2013.10.07 22:41:56 | 011,805,906 | ---- | M] () -- C:\Users\Jane\Documents\Support-Svobodnych-template-já.psd
[2013.10.07 21:14:46 | 008,018,843 | ---- | M] () -- C:\Users\Jane\Documents\Support-Svobodnych-template.psd
[2013.10.04 11:30:44 | 000,017,489 | ---- | M] () -- C:\Users\Jane\Desktop\Loading Please Wait.jpg
[2013.10.02 21:57:39 | 004,563,950 | ---- | M] (Alexander Vigovsky ) -- C:\Program Files\ac3filter_2_5b.exe
[2013.09.25 23:40:27 | 000,002,714 | ---- | M] () -- C:\Windows\System32\drivers\fvstore.dat
[2013.09.25 11:14:59 | 000,001,838 | ---- | M] () -- C:\Users\Public\Desktop\COMODO Internet Security.lnk
[2013.09.24 12:54:09 | 000,085,464 | ---- | M] (COMODO) -- C:\Windows\System32\drivers\inspect.sys
[2013.09.24 12:54:08 | 000,582,936 | ---- | M] (COMODO) -- C:\Windows\System32\drivers\cmdguard.sys
[2013.09.24 12:54:08 | 000,044,752 | ---- | M] (COMODO) -- C:\Windows\System32\drivers\cmdhlp.sys
[2013.09.24 12:54:07 | 000,020,072 | ---- | M] (COMODO) -- C:\Windows\System32\drivers\cmderd.sys
[2013.09.24 12:53:51 | 000,354,240 | ---- | M] (COMODO) -- C:\Windows\System32\guard32.dll
[2013.09.24 12:53:51 | 000,036,000 | ---- | M] (COMODO) -- C:\Windows\System32\cmdcsr.dll
[2013.09.24 12:53:35 | 000,280,792 | ---- | M] (COMODO) -- C:\Windows\System32\cmdvrt32.dll
[2013.09.24 12:53:34 | 000,040,664 | ---- | M] (COMODO) -- C:\Windows\System32\cmdkbd32.dll
[2013.09.23 01:28:12 | 000,042,496 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ie4uinit.exe
[2013.09.23 01:27:53 | 000,493,056 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msfeeds.dll
[2013.09.23 01:27:49 | 002,876,928 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\jscript9.dll
[2013.09.23 01:27:49 | 000,039,424 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\jsproxy.dll
[2013.09.23 01:27:48 | 000,391,168 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ieui.dll
[2013.09.23 01:27:48 | 000,109,056 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\iesysprep.dll
[2013.09.23 01:27:48 | 000,061,440 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\iesetup.dll
[2013.09.23 01:27:48 | 000,033,280 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\iernonce.dll

========== Files Created - No Company Name ==========

[2013.10.21 20:03:11 | 000,343,719 | ---- | C] () -- C:\Users\Jane\Desktop\001.jpg
[2013.10.21 18:05:49 | 000,137,525 | ---- | C] () -- C:\Users\Jane\Desktop\OTLscan.jpg
[2013.10.21 17:04:24 | 000,000,512 | ---- | C] () -- C:\PhysicalMBR.bin
[2013.10.19 19:44:02 | 000,208,896 | ---- | C] () -- C:\Windows\MBR.exe
[2013.10.19 19:44:01 | 000,256,000 | ---- | C] () -- C:\Windows\PEV.exe
[2013.10.19 19:44:01 | 000,098,816 | ---- | C] () -- C:\Windows\sed.exe
[2013.10.19 19:44:01 | 000,080,412 | ---- | C] () -- C:\Windows\grep.exe
[2013.10.19 19:44:01 | 000,068,096 | ---- | C] () -- C:\Windows\zip.exe
[2013.10.19 11:45:54 | 000,026,624 | ---- | C] () -- C:\Windows\System32\TrueSight.sys
[2013.10.19 11:44:51 | 000,951,808 | ---- | C] () -- C:\Users\Jane\Desktop\RogueKiller.exe
[2013.10.18 19:18:16 | 000,781,383 | ---- | C] () -- C:\Users\Jane\Desktop\RSIT.exe
[2013.10.18 16:48:00 | 000,001,071 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
[2013.10.18 10:40:01 | 001,050,644 | ---- | C] () -- C:\Users\Jane\Desktop\adwcleaner.exe
[2013.10.18 10:31:50 | 000,001,420 | ---- | C] () -- C:\Users\Jane\Desktop\Voda v krajině – zástupce.lnk
[2013.10.18 10:31:39 | 000,001,600 | ---- | C] () -- C:\Users\Jane\Desktop\Ochrana a rozvoj venkovských sídel – zástupce.lnk
[2013.10.18 10:30:20 | 000,001,559 | ---- | C] () -- C:\Users\Jane\Desktop\Ateliér III. - Tvorba krajiny – zástupce.lnk
[2013.10.17 17:54:50 | 000,075,964 | ---- | C] () -- C:\Users\Jane\.TransferManager.db
[2013.10.17 11:35:36 | 000,162,869 | ---- | C] () -- C:\Users\Jane\Desktop\Janča-rozvrh.jpg
[2013.10.14 21:27:25 | 000,362,486 | ---- | C] () -- C:\Users\Jane\Desktop\Pozvanka_vizualni_komunikace.pdf
[2013.10.14 20:28:37 | 213,103,205 | ---- | C] () -- C:\Program Files\SketchUp-8-Pro-+-Vray.zip
[2013.10.14 13:06:03 | 000,001,273 | ---- | C] () -- C:\Users\Public\Desktop\Google SketchUp 8.0.16846 Free CZ.lnk
[2013.10.11 10:03:53 | 000,002,001 | ---- | C] () -- C:\Users\Jane\Desktop\Kies Air Discovery Service.lnk
[2013.10.07 22:42:05 | 000,383,150 | ---- | C] () -- C:\Users\Jane\Documents\Support-Svobodnych-template-já.jpg
[2013.10.07 22:38:38 | 011,805,906 | ---- | C] () -- C:\Users\Jane\Documents\Support-Svobodnych-template-já.psd
[2013.10.07 21:14:44 | 008,018,843 | ---- | C] () -- C:\Users\Jane\Documents\Support-Svobodnych-template.psd
[2013.10.04 11:30:43 | 000,017,489 | ---- | C] () -- C:\Users\Jane\Desktop\Loading Please Wait.jpg
[2013.09.26 17:46:49 | 000,099,447 | ---- | C] () -- C:\Users\Jane\Desktop\rozvrh.jpg
[2013.06.19 20:07:57 | 000,002,714 | ---- | C] () -- C:\Windows\System32\drivers\fvstore.dat
[2013.06.04 14:27:04 | 001,474,832 | ---- | C] () -- C:\Windows\System32\drivers\sfi.dat
[2013.03.13 08:08:30 | 000,140,732 | ---- | C] () -- C:\Users\Jane\screenshoter.htm
[2013.01.23 16:26:41 | 000,499,977 | ---- | C] () -- C:\Users\Jane\Deprese.pdf
[2012.11.23 13:36:42 | 129,309,908 | ---- | C] () -- C:\Users\Jane\pro Evu.zip
[2012.06.03 11:12:04 | 000,009,728 | ---- | C] () -- C:\Users\Jane\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2012.06.01 22:12:20 | 541,022,484 | ---- | C] () -- C:\Users\Jane\Adobe-Photoshop-CS5-CZ.rar.part

========== ZeroAccess Check ==========

[2009.07.14 06:42:31 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2013.07.26 03:55:59 | 012,872,704 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2010.11.20 23:29:20 | 000,606,208 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
"" = %systemroot%\system32\wbem\wbemess.dll -- [2009.07.14 03:16:17 | 000,342,528 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

========== LOP Check ==========

[2012.11.12 22:11:45 | 000,000,000 | ---D | M] -- C:\Users\Jane\AppData\Roaming\Anvisoft
[2012.11.28 14:17:24 | 000,000,000 | ---D | M] -- C:\Users\Jane\AppData\Roaming\Autodesk
[2012.05.26 15:22:30 | 000,000,000 | ---D | M] -- C:\Users\Jane\AppData\Roaming\GHISLER
[2012.11.12 23:32:01 | 000,000,000 | ---D | M] -- C:\Users\Jane\AppData\Roaming\IrfanView
[2012.11.12 23:31:40 | 000,000,000 | ---D | M] -- C:\Users\Jane\AppData\Roaming\MyPhoneExplorer
[2013.10.19 11:44:59 | 000,000,000 | ---D | M] -- C:\Users\Jane\AppData\Roaming\Seznam.cz
[2013.03.02 13:11:23 | 000,000,000 | ---D | M] -- C:\Users\Jane\AppData\Roaming\StageManager.BD092818F67280F4B42B04877600987F0111B594.1
[2013.10.06 00:25:54 | 000,000,000 | ---D | M] -- C:\Users\Jane\AppData\Roaming\uTorrent

========== Purity Check ==========

========== Custom Scans ==========

< >
[2009.07.14 06:53:46 | 000,032,602 | ---- | C] () -- C:\Windows\Tasks\SCHEDLGU.TXT
[2009.07.14 06:53:47 | 000,000,006 | -H-- | C] () -- C:\Windows\Tasks\SA.DAT
[2012.12.20 08:50:56 | 000,000,932 | ---- | C] () -- C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
[2012.12.20 08:51:00 | 000,000,936 | ---- | C] () -- C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job

< >

< MD5 for: ATAPI.SYS >
[2009.07.14 03:26:15 | 000,021,584 | ---- | M] (Microsoft Corporation) MD5=338C86357871C167A96AB976519BF59E -- C:\Windows\erdnt\cache\atapi.sys
[2009.07.14 03:26:15 | 000,021,584 | ---- | M] (Microsoft Corporation) MD5=338C86357871C167A96AB976519BF59E -- C:\Windows\System32\drivers\atapi.sys
[2009.07.14 03:26:15 | 000,021,584 | ---- | M] (Microsoft Corporation) MD5=338C86357871C167A96AB976519BF59E -- C:\Windows\System32\DriverStore\FileRepository\mshdc.inf_x86_neutral_a5025d31bee4647c\atapi.sys
[2009.07.14 03:26:15 | 000,021,584 | ---- | M] (Microsoft Corporation) MD5=338C86357871C167A96AB976519BF59E -- C:\Windows\System32\DriverStore\FileRepository\mshdc.inf_x86_neutral_fab873f3e8a3315c\atapi.sys
[2009.07.14 03:26:15 | 000,021,584 | ---- | M] (Microsoft Corporation) MD5=338C86357871C167A96AB976519BF59E -- C:\Windows\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.1.7601.17514_none_df3f92057fcbe7a7\atapi.sys
[2009.07.14 03:26:15 | 000,021,584 | ---- | M] (Microsoft Corporation) MD5=338C86357871C167A96AB976519BF59E -- C:\Windows\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.1.7601.18231_none_df26d4d57fdef5b0\atapi.sys
[2009.07.14 03:26:15 | 000,021,584 | ---- | M] (Microsoft Corporation) MD5=338C86357871C167A96AB976519BF59E -- C:\Windows\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.1.7601.22414_none_dfc9143c98e9a6c4\atapi.sys

< MD5 for: AUTOCHK.EXE >
[2010.11.20 23:29:06 | 000,668,160 | ---- | M] (Microsoft Corporation) MD5=F88A52EB62019D6A62FDD9E08034DBD8 -- C:\Windows\System32\autochk.exe
[2010.11.20 23:29:06 | 000,668,160 | ---- | M] (Microsoft Corporation) MD5=F88A52EB62019D6A62FDD9E08034DBD8 -- C:\Windows\winsxs\x86_microsoft-windows-autochk_31bf3856ad364e35_6.1.7601.17514_none_e3fb573520033bfa\autochk.exe

< MD5 for: CDROM.SYS >
[2010.11.20 23:29:03 | 000,108,544 | ---- | M] (Microsoft Corporation) MD5=BE167ED0FDB9C1FA1133953C18D5A6C9 -- C:\Windows\System32\drivers\cdrom.sys
[2010.11.20 23:29:03 | 000,108,544 | ---- | M] (Microsoft Corporation) MD5=BE167ED0FDB9C1FA1133953C18D5A6C9 -- C:\Windows\System32\DriverStore\FileRepository\cdrom.inf_x86_neutral_6381e09675524225\cdrom.sys
[2010.11.20 23:29:03 | 000,108,544 | ---- | M] (Microsoft Corporation) MD5=BE167ED0FDB9C1FA1133953C18D5A6C9 -- C:\Windows\winsxs\x86_cdrom.inf_31bf3856ad364e35_6.1.7601.17514_none_61b0c5ce02098355\cdrom.sys

< MD5 for: EXPLORER.EXE >
[2011.02.26 07:19:21 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=0FB9C74046656D1579A64660AD67B746 -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.21669_none_54149f9ef14031fc\explorer.exe
[2010.11.20 23:29:20 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=40D777B7A95E00593EB1568C68514493 -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17514_none_53bc10fdd7fe87ca\explorer.exe
[2011.02.25 07:30:54 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=8B88EBBB05A0E56B7DCC708498C02B3E -- C:\Windows\erdnt\cache\explorer.exe
[2011.02.25 07:30:54 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=8B88EBBB05A0E56B7DCC708498C02B3E -- C:\Windows\explorer.exe
[2011.02.25 07:30:54 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=8B88EBBB05A0E56B7DCC708498C02B3E -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17567_none_5389023fd8245f84\explorer.exe

< MD5 for: HAL.DLL >
[2010.11.20 23:29:19 | 000,194,432 | ---- | M] (Microsoft Corporation) MD5=1BF0D4727FDB437D513CFF8A9359C050 -- C:\Windows\System32\hal.dll
[2010.11.20 23:29:19 | 000,194,432 | ---- | M] (Microsoft Corporation) MD5=1BF0D4727FDB437D513CFF8A9359C050 -- C:\Windows\winsxs\x86_microsoft-windows-hal_31bf3856ad364e35_6.1.7601.17514_none_ad305c8fb7ec5060\hal.dll

< MD5 for: SCECLI.DLL >
[2010.11.20 23:29:07 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=8124944EC89D6A1815E4E53F5B96AAF4 -- C:\Windows\erdnt\cache\scecli.dll
[2010.11.20 23:29:07 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=8124944EC89D6A1815E4E53F5B96AAF4 -- C:\Windows\System32\scecli.dll
[2010.11.20 23:29:07 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=8124944EC89D6A1815E4E53F5B96AAF4 -- C:\Windows\winsxs\x86_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7601.17514_none_3a154c47375d881d\scecli.dll

< MD5 for: SVCHOST.EXE >
[2009.07.14 03:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\erdnt\cache\svchost.exe
[2009.07.14 03:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\System32\svchost.exe
[2009.07.14 03:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\winsxs\x86_microsoft-windows-services-svchost_31bf3856ad364e35_6.1.7600.16385_none_b591afc466a15356\svchost.exe
[2013.04.04 14:50:32 | 000,218,184 | ---- | M] () MD5=B4C6E3889BB310CA7E974A04EC6E46AC -- C:\Program Files\Malwarebytes' Anti-Malware\Chameleon\svchost.exe

< MD5 for: TCPIP.SYS >
[2012.08.22 19:05:21 | 001,306,992 | ---- | M] (Microsoft Corporation) MD5=23790A44D9A6B67F8690C34D4F516446 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.22097_none_b55b785ade04500f\tcpip.sys
[2011.04.25 06:31:30 | 001,290,624 | ---- | M] (Microsoft Corporation) MD5=24326784DF8F3D5F5BBB9F878CE33C14 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.17603_none_b52f4dc5c4a121e0\tcpip.sys
[2010.11.20 23:29:20 | 001,290,112 | ---- | M] (Microsoft Corporation) MD5=37E8FA3779668837CA9E2C36D2415949 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.17514_none_b5257c3dc4a85a01\tcpip.sys
[2013.01.04 06:56:23 | 001,308,504 | ---- | M] (Microsoft Corporation) MD5=4A95845C5F33A4DDEB6AEF6367FB6520 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.22209_none_b5becc06ddb98192\tcpip.sys
[2013.07.06 07:05:35 | 001,293,760 | ---- | M] (Microsoft Corporation) MD5=4E8B9BE71B807B3BAEDB7F4243F85E3C -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.18203_none_b52f2f65c4a146e5\tcpip.sys
[2013.07.06 06:57:37 | 001,309,120 | ---- | M] (Microsoft Corporation) MD5=528F7CC60391DD0FAB0344F32F051FDF -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.22378_none_b5721e2eddf328f9\tcpip.sys
[2013.05.08 08:15:22 | 001,309,032 | ---- | M] (Microsoft Corporation) MD5=6088D01FAD49729EA0A5A3D9B9BA8B84 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.22319_none_b5b3fe00ddc19aaa\tcpip.sys
[2013.09.07 04:06:48 | 001,309,120 | ---- | M] (Microsoft Corporation) MD5=6C4F3D92764FFA22D28061A4D9235446 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.22444_none_b58e8eb0ddde6cf1\tcpip.sys
[2011.04.25 08:31:09 | 001,301,376 | ---- | M] (Microsoft Corporation) MD5=6D4728CFF2724FF3A4654971D61D0F1C -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.21712_none_b5ad1a5addc7c444\tcpip.sys
[2013.01.03 07:05:20 | 001,293,672 | ---- | M] (Microsoft Corporation) MD5=7C0507D2391AF5933600CBCED799F277 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.18042_none_b502eb9fc4c2a304\tcpip.sys
[2012.03.30 12:23:11 | 001,291,632 | ---- | M] (Microsoft Corporation) MD5=7FA2E0F8B072BD04B77B421480B6CC22 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.17802_none_b52e5147c4a202d7\tcpip.sys
[2012.03.30 11:04:23 | 001,306,480 | ---- | M] (Microsoft Corporation) MD5=88FCDB9923EFECA207B3CEBD24407126 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.21954_none_b583df0adde66104\tcpip.sys
[2012.08.22 19:16:54 | 001,292,144 | ---- | M] (Microsoft Corporation) MD5=A5EBB8F648000E88B7D9390B514976BF -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.17939_none_b514e56fc4b40532\tcpip.sys
[2013.09.08 04:07:12 | 001,294,272 | ---- | M] (Microsoft Corporation) MD5=CA59F7C570AF70BC174F477CFE2D9EE3 -- C:\Windows\erdnt\cache\tcpip.sys
[2013.09.08 04:07:12 | 001,294,272 | ---- | M] (Microsoft Corporation) MD5=CA59F7C570AF70BC174F477CFE2D9EE3 -- C:\Windows\System32\drivers\tcpip.sys
[2013.09.08 04:07:12 | 001,294,272 | ---- | M] (Microsoft Corporation) MD5=CA59F7C570AF70BC174F477CFE2D9EE3 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.18254_none_b4fa2013c4c8ebf1\tcpip.sys
[2013.05.08 07:38:00 | 001,293,672 | ---- | M] (Microsoft Corporation) MD5=D32FDAC73FCD76B85389C39BC1087F2A -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.18148_none_b508ef41c4bd3835\tcpip.sys
[2012.10.03 18:44:01 | 001,308,040 | ---- | M] (Microsoft Corporation) MD5=D490DD0A91B4EAC3B4EE08D11EE37C31 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.22124_none_b5a428d6ddce3d9a\tcpip.sys
[2012.10.03 18:58:30 | 001,293,680 | ---- | M] (Microsoft Corporation) MD5=E23A56F843E2AEBBB209D0ACCA73C640 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.17964_none_b4ef7439c4d0da52\tcpip.sys

< MD5 for: USERINIT.EXE >
[2010.11.20 23:29:06 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=61AC3EFDFACFDD3F0F11DD4FD4044223 -- C:\Windows\erdnt\cache\userinit.exe
[2010.11.20 23:29:06 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=61AC3EFDFACFDD3F0F11DD4FD4044223 -- C:\Windows\System32\userinit.exe
[2010.11.20 23:29:06 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=61AC3EFDFACFDD3F0F11DD4FD4044223 -- C:\Windows\winsxs\x86_microsoft-windows-userinit_31bf3856ad364e35_6.1.7601.17514_none_de3024012ff21116\userinit.exe

< MD5 for: WINLOGON.EXE >
[2010.11.20 23:29:06 | 000,286,720 | ---- | M] (Microsoft Corporation) MD5=6D13E1406F50C66E2A95D97F22C47560 -- C:\Windows\erdnt\cache\winlogon.exe
[2010.11.20 23:29:06 | 000,286,720 | ---- | M] (Microsoft Corporation) MD5=6D13E1406F50C66E2A95D97F22C47560 -- C:\Windows\System32\winlogon.exe
[2010.11.20 23:29:06 | 000,286,720 | ---- | M] (Microsoft Corporation) MD5=6D13E1406F50C66E2A95D97F22C47560 -- C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7601.17514_none_71ca6b0233339500\winlogon.exe
[2013.04.04 14:50:32 | 000,218,184 | ---- | M] () MD5=B4C6E3889BB310CA7E974A04EC6E46AC -- C:\Program Files\Malwarebytes' Anti-Malware\Chameleon\winlogon.exe

< >

< %systemroot%*.* /U /s >
[8 C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp files -> C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp -> ]
[11 C:\Windows\Installer\*.tmp files -> C:\Windows\Installer\*.tmp -> ]

< %SYSTEMDRIVE%\*.exe >
[2009.09.11 18:22:34 | 000,592,208 | ---- | M] (Microsoft Corporation) -- C:\install.exe

< %ALLUSERSPROFILE%\Application Data\*. >

< %ALLUSERSPROFILE%\Application Data\*.exe /s >

< %APPDATA%\*. >
[2013.05.13 17:34:15 | 000,000,000 | ---D | M] -- C:\Users\Jane\AppData\Roaming\Adobe
[2013.03.02 13:11:23 | 000,000,000 | ---D | M] -- C:\Users\Jane\AppData\Roaming\Adobe Mini Bridge CS5
[2012.11.12 22:11:45 | 000,000,000 | ---D | M] -- C:\Users\Jane\AppData\Roaming\Anvisoft
[2012.11.28 14:17:24 | 000,000,000 | ---D | M] -- C:\Users\Jane\AppData\Roaming\Autodesk
[2012.05.26 15:22:30 | 000,000,000 | ---D | M] -- C:\Users\Jane\AppData\Roaming\GHISLER
[2012.11.12 23:32:01 | 000,000,000 | ---D | M] -- C:\Users\Jane\AppData\Roaming\GRETECH
[2012.05.26 14:19:02 | 000,000,000 | ---D | M] -- C:\Users\Jane\AppData\Roaming\Identities
[2012.11.12 23:32:01 | 000,000,000 | ---D | M] -- C:\Users\Jane\AppData\Roaming\IrfanView
[2012.05.26 15:28:29 | 000,000,000 | ---D | M] -- C:\Users\Jane\AppData\Roaming\Macromedia
[2012.11.12 20:21:17 | 000,000,000 | ---D | M] -- C:\Users\Jane\AppData\Roaming\Malwarebytes
[2011.04.12 03:46:13 | 000,000,000 | ---D | M] -- C:\Users\Jane\AppData\Roaming\Media Center Programs
[2013.04.10 12:10:50 | 000,000,000 | ---D | M] -- C:\Users\Jane\AppData\Roaming\Media Player Classic
[2013.09.07 18:22:07 | 000,000,000 | --SD | M] -- C:\Users\Jane\AppData\Roaming\Microsoft
[2012.11.13 14:30:04 | 000,000,000 | ---D | M] -- C:\Users\Jane\AppData\Roaming\Mozilla
[2012.11.12 23:31:40 | 000,000,000 | ---D | M] -- C:\Users\Jane\AppData\Roaming\MyPhoneExplorer
[2013.10.19 11:44:59 | 000,000,000 | ---D | M] -- C:\Users\Jane\AppData\Roaming\Seznam.cz
[2013.03.02 13:11:23 | 000,000,000 | ---D | M] -- C:\Users\Jane\AppData\Roaming\StageManager.BD092818F67280F4B42B04877600987F0111B594.1
[2013.10.06 00:25:54 | 000,000,000 | ---D | M] -- C:\Users\Jane\AppData\Roaming\uTorrent
[2013.04.22 19:06:01 | 000,000,000 | ---D | M] -- C:\Users\Jane\AppData\Roaming\Winamp
[2012.05.27 23:12:30 | 000,000,000 | ---D | M] -- C:\Users\Jane\AppData\Roaming\WinRAR

< %APPDATA%\*.exe /s >
[2007.03.22 12:46:42 | 000,126,976 | ---- | M] () -- C:\Users\Jane\AppData\Roaming\GRETECH\GomPlayer\GrLauncher.exe
[2012.09.13 15:24:48 | 001,009,288 | ---- | M] () -- C:\Users\Jane\AppData\Roaming\Seznam.cz\szninstall.exe
[2012.09.14 14:06:28 | 002,515,592 | ---- | M] () -- C:\Users\Jane\AppData\Roaming\Seznam.cz\sznsetup.exe
[2013.02.13 16:16:08 | 000,942,080 | ---- | M] () -- C:\Users\Jane\AppData\Roaming\Seznam.cz\bin\chromeUpdatePref.exe
[2013.02.04 15:53:30 | 000,055,808 | ---- | M] () -- C:\Users\Jane\AppData\Roaming\Seznam.cz\bin\ffkill.exe
[2013.01.22 14:55:12 | 000,456,696 | ---- | M] () -- C:\Users\Jane\AppData\Roaming\Seznam.cz\bin\szndesktop.exe
[2013.01.22 14:54:46 | 000,092,152 | ---- | M] () -- C:\Users\Jane\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe

< %systemroot%\*. /mp /s >

< %systemroot%\system32\*.dll /lockedfiles >

< %systemroot%\Tasks\*.job >
[2013.10.21 16:02:37 | 000,000,932 | ---- | M] () -- C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
[2013.10.21 19:27:00 | 000,000,936 | ---- | M] () -- C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job

< %systemroot%\system32\drivers\*.sys /lockedfiles >

< %systemroot%\System32\config\*.sav >

< %systemroot%\system32\*.dll /lockedfiles >

< %systemroot%\system32\drivers\*.sys /3 >

< %systemroot%\system32\*.* /3 >
[2013.10.21 16:09:23 | 000,021,888 | -H-- | M] () -- C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2013.10.21 16:09:23 | 000,021,888 | -H-- | M] () -- C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2013.10.21 16:06:20 | 000,141,298 | ---- | M] () -- C:\Windows\system32\perfc005.dat
[2013.10.21 16:06:20 | 000,121,924 | ---- | M] () -- C:\Windows\system32\perfc009.dat
[2013.10.21 16:06:20 | 000,669,698 | ---- | M] () -- C:\Windows\system32\perfh005.dat
[2013.10.21 16:06:20 | 000,655,052 | ---- | M] () -- C:\Windows\system32\perfh009.dat
[2013.10.21 16:06:20 | 001,585,078 | ---- | M] () -- C:\Windows\system32\PerfStringBackup.INI
[2013.10.19 11:45:54 | 000,026,624 | ---- | M] () -- C:\Windows\system32\TrueSight.sys

< %SYSTEMDRIVE%\*.exe >
[2009.09.11 18:22:34 | 000,592,208 | ---- | M] (Microsoft Corporation) -- C:\install.exe

< >

< *crack* /s >
[2001.08.14 19:31:08 | 000,030,054 | ---- | M] () -- \Autodesk\AutoCAD_Civil_3D_2013_Czech_Win_32bit\x86\C3D\Program Files\root\Inventor Server\Textures\surfaces\Cracks.bmp
[2010.07.02 03:45:18 | 000,025,088 | ---- | M] () -- \Users\Jane\Documents\Software a CAD\Vector Works 2010 SP2 English\Read Me V.I.P crack VectorWorks 2010 SP2 English.doc
[2010.07.02 03:46:46 | 000,001,825 | ---- | M] () -- \Users\Jane\Documents\Software a CAD\Vector Works 2010 SP2 English\Read Me V.I.P crack VectorWorks 2010 SP2 English.txt

< *keygen* /s >

< *AntiWPA* /s >

< *loader* /s >
[2012.01.09 16:48:30 | 000,008,349 | ---- | M] () -- \Autodesk\AutoCAD_Civil_3D_2013_Czech_Win_32_64bit_wi_cs-CZ\cs-CZ\Docs\scripts\beehive\core\FileLoader.js
[2012.01.09 16:48:34 | 000,007,404 | ---- | M] () -- \Autodesk\AutoCAD_Civil_3D_2013_Czech_Win_32_64bit_wi_cs-CZ\cs-CZ\Docs\scripts\beehive\ui\StylesheetLoader.js
[2010.11.24 07:35:32 | 000,003,208 | ---- | M] () -- \Autodesk\AutoCAD_Civil_3D_2013_Czech_Win_32_64bit_wi_cs-CZ\cs-CZ\Docs\scripts\beehiveSearch\styles\images\loader.gif
[2012.01.09 16:48:30 | 000,008,349 | ---- | M] () -- \Autodesk\AutoCAD_Civil_3D_2013_Czech_Win_32_64bit_wi_cs-CZ\cs-CZ\SetupRes\Docs\Help\scripts\beehive\core\FileLoader.js
[2012.01.09 16:48:34 | 000,007,404 | ---- | M] () -- \Autodesk\AutoCAD_Civil_3D_2013_Czech_Win_32_64bit_wi_cs-CZ\cs-CZ\SetupRes\Docs\Help\scripts\beehive\ui\StylesheetLoader.js
[2010.11.24 07:35:32 | 000,003,208 | ---- | M] () -- \Autodesk\AutoCAD_Civil_3D_2013_Czech_Win_32_64bit_wi_cs-CZ\cs-CZ\SetupRes\Docs\Help\scripts\beehiveSearch\styles\images\loader.gif
[2012.01.09 16:48:30 | 000,008,349 | ---- | M] () -- \Autodesk\AutoCAD_Civil_3D_2013_Czech_Win_32bit\cs-CZ\Docs\scripts\beehive\core\FileLoader.js
[2012.01.09 16:48:34 | 000,007,404 | ---- | M] () -- \Autodesk\AutoCAD_Civil_3D_2013_Czech_Win_32bit\cs-CZ\Docs\scripts\beehive\ui\StylesheetLoader.js
[2010.11.24 07:35:32 | 000,003,208 | ---- | M] () -- \Autodesk\AutoCAD_Civil_3D_2013_Czech_Win_32bit\cs-CZ\Docs\scripts\beehiveSearch\styles\images\loader.gif
[2012.01.09 16:48:30 | 000,008,349 | ---- | M] () -- \Autodesk\AutoCAD_Civil_3D_2013_Czech_Win_32bit\cs-CZ\SetupRes\Docs\Help\scripts\beehive\core\FileLoader.js
[2012.01.09 16:48:34 | 000,007,404 | ---- | M] () -- \Autodesk\AutoCAD_Civil_3D_2013_Czech_Win_32bit\cs-CZ\SetupRes\Docs\Help\scripts\beehive\ui\StylesheetLoader.js
[2010.11.24 07:35:32 | 000,003,208 | ---- | M] () -- \Autodesk\AutoCAD_Civil_3D_2013_Czech_Win_32bit\cs-CZ\SetupRes\Docs\Help\scripts\beehiveSearch\styles\images\loader.gif
[2012.01.09 16:48:30 | 000,008,349 | ---- | M] () -- \Autodesk\AutoCAD_Civil_3D_2013_Czech_Win_32bit\x86\C3D\cs-CZ\SetupRes\Docs\Help\scripts\beehive\core\FileLoader.js
[2012.01.09 16:48:34 | 000,007,404 | ---- | M] () -- \Autodesk\AutoCAD_Civil_3D_2013_Czech_Win_32bit\x86\C3D\cs-CZ\SetupRes\Docs\Help\scripts\beehive\ui\StylesheetLoader.js
[2010.11.24 07:35:32 | 000,003,208 | ---- | M] () -- \Autodesk\AutoCAD_Civil_3D_2013_Czech_Win_32bit\x86\C3D\cs-CZ\SetupRes\Docs\Help\scripts\beehiveSearch\styles\images\loader.gif
[2012.02.07 05:44:37 | 000,164,776 | ---- | M] () -- \Autodesk\AutoCAD_Civil_3D_2013_Czech_Win_32bit\x86\C3D\Program Files\root\AcAutoLoader.arx
[2012.02.22 12:02:04 | 000,071,168 | ---- | M] () -- \Autodesk\AutoCAD_Civil_3D_2013_Czech_Win_32bit\x86\C3D\Program Files\root\AcMapLoader.arx
[2012.02.07 05:42:48 | 001,724,328 | ---- | M] () -- \Autodesk\AutoCAD_Civil_3D_2013_Czech_Win_32bit\x86\C3D\Program Files\root\AdDownloaderCore.dll
[2012.02.20 18:31:00 | 000,023,464 | ---- | M] () -- \Autodesk\AutoCAD_Civil_3D_2013_Czech_Win_32bit\x86\C3D\Program Files\root\AecLoader.arx
[2012.02.22 12:13:10 | 000,273,920 | ---- | M] () -- \Autodesk\AutoCAD_Civil_3D_2013_Czech_Win_32bit\x86\C3D\Program Files\root\EmbeddedSQLiteLoader.dll
[2012.02.20 18:31:00 | 000,064,424 | ---- | M] () -- \Autodesk\AutoCAD_Civil_3D_2013_Czech_Win_32bit\x86\C3D\Program Files\root\ACA\AecXBaseLoader.dll
[2012.02.20 18:31:00 | 000,064,424 | ---- | M] () -- \Autodesk\AutoCAD_Civil_3D_2013_Czech_Win_32bit\x86\C3D\Program Files\root\ACA\AecXDisplayPropsDataLoader.dll
[2012.02.20 18:30:58 | 000,064,424 | ---- | M] () -- \Autodesk\AutoCAD_Civil_3D_2013_Czech_Win_32bit\x86\C3D\Program Files\root\ACA\AecXDtlLoader.dll
[2012.02.20 18:31:02 | 000,063,400 | ---- | M] () -- \Autodesk\AutoCAD_Civil_3D_2013_Czech_Win_32bit\x86\C3D\Program Files\root\ACA\AecXDynPropsLoader.dll
[2012.02.20 18:30:56 | 000,064,424 | ---- | M] () -- \Autodesk\AutoCAD_Civil_3D_2013_Czech_Win_32bit\x86\C3D\Program Files\root\ACA\AecXExtendedDataLoader.dll
[2012.02.20 18:30:56 | 000,064,424 | ---- | M] () -- \Autodesk\AutoCAD_Civil_3D_2013_Czech_Win_32bit\x86\C3D\Program Files\root\ACA\AecXGuiBaseLoader.dll
[2012.02.20 18:30:50 | 000,064,424 | ---- | M] () -- \Autodesk\AutoCAD_Civil_3D_2013_Czech_Win_32bit\x86\C3D\Program Files\root\ACA\AecXToolClassLoader.dll
[2012.02.20 18:31:00 | 000,064,424 | ---- | M] () -- \Autodesk\AutoCAD_Civil_3D_2013_Czech_Win_32bit\x86\C3D\Program Files\root\ACA\AecXUIBaseLoader.dll
[2012.01.14 02:07:58 | 000,061,088 | ---- | M] () -- \Autodesk\AutoCAD_Civil_3D_2013_Czech_Win_32bit\x86\C3D\Program Files\root\Inventor Server\Bin\ClrAddinLoader.dll
[2012.02.22 11:53:22 | 000,002,560 | ---- | M] () -- \Autodesk\AutoCAD_Civil_3D_2013_Czech_Win_32bit\x86\cs-CZ\C3D\Acad\AcMapLoaderRes.dll
[2012.03.13 08:53:11 | 000,012,912 | ---- | M] () -- \Autodesk\AutoCAD_Civil_3D_2013_Czech_Win_32bit\x86\cs-CZ\C3D\Acad\Program Files\Root\AcAutoLoaderRes.dll
[2012.01.09 16:48:30 | 000,008,349 | ---- | M] () -- \Autodesk\AutoCAD_Civil_3D_2013_Czech_Win_32bit\x86\docs\Help\scripts\beehive\core\FileLoader.js
[2012.01.09 16:48:34 | 000,007,404 | ---- | M] () -- \Autodesk\AutoCAD_Civil_3D_2013_Czech_Win_32bit\x86\docs\Help\scripts\beehive\ui\StylesheetLoader.js
[2010.11.24 07:35:32 | 000,003,208 | ---- | M] () -- \Autodesk\AutoCAD_Civil_3D_2013_Czech_Win_32bit\x86\docs\Help\scripts\beehiveSearch\styles\images\loader.gif
[2010.03.09 04:28:40 | 005,297,608 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS5\Photodownloader.exe
[2010.03.09 01:38:58 | 000,011,161 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS5\apd\shared_assets\bitmaps\main_window\C_LoadError.png
[2010.03.09 01:38:58 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS5\apd\shared_assets\locales\da_dk\Photodownloader.ini
[2010.03.09 01:39:00 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS5\apd\shared_assets\locales\de_de\Photodownloader.ini
[2010.03.09 01:39:00 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS5\apd\shared_assets\locales\en_us\Photodownloader.ini
[2010.03.09 01:39:00 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS5\apd\shared_assets\locales\es_es\Photodownloader.ini
[2010.03.09 01:39:00 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS5\apd\shared_assets\locales\fi_fi\Photodownloader.ini
[2010.03.09 01:39:00 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS5\apd\shared_assets\locales\fr_fr\Photodownloader.ini
[2010.03.09 01:39:00 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS5\apd\shared_assets\locales\it_it\Photodownloader.ini
[2010.03.09 01:39:00 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS5\apd\shared_assets\locales\ja_jp\Photodownloader.ini
[2010.03.09 01:39:00 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS5\apd\shared_assets\locales\ko_kr\Photodownloader.ini
[2010.03.09 01:39:00 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS5\apd\shared_assets\locales\nl_nl\Photodownloader.ini
[2010.03.09 01:39:00 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS5\apd\shared_assets\locales\no_no\Photodownloader.ini
[2010.03.09 01:39:00 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS5\apd\shared_assets\locales\pt_br\Photodownloader.ini
[2010.03.09 01:39:00 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS5\apd\shared_assets\locales\sv_se\Photodownloader.ini
[2010.03.09 01:39:00 | 000,000,308 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS5\apd\shared_assets\locales\zh_cn\Photodownloader.ini
[2010.03.09 01:39:00 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS5\apd\shared_assets\locales\zh_tw\Photodownloader.ini
[2012.02.07 05:44:37 | 000,164,776 | ---- | M] () -- \Program Files\Autodesk\AutoCAD Civil 3D 2013\AcAutoLoader.arx
[2012.02.22 12:02:04 | 000,071,168 | ---- | M] () -- \Program Files\Autodesk\AutoCAD Civil 3D 2013\AcMapLoader.arx
[2012.02.22 11:53:22 | 000,002,560 | ---- | M] () -- \Program Files\Autodesk\AutoCAD Civil 3D 2013\AcMapLoaderRes.dll
[2012.02.07 05:42:48 | 001,724,328 | ---- | M] () -- \Program Files\Autodesk\AutoCAD Civil 3D 2013\AdDownloaderCore.dll
[2012.02.20 18:31:00 | 000,023,464 | ---- | M] () -- \Program Files\Autodesk\AutoCAD Civil 3D 2013\AecLoader.arx
[2012.02.20 18:31:00 | 000,064,424 | ---- | M] () -- \Program Files\Autodesk\AutoCAD Civil 3D 2013\AecXBaseLoader.dll
[2012.02.20 18:31:00 | 000,064,424 | ---- | M] () -- \Program Files\Autodesk\AutoCAD Civil 3D 2013\AecXDisplayPropsDataLoader.dll
[2012.02.20 18:30:58 | 000,064,424 | ---- | M] () -- \Program Files\Autodesk\AutoCAD Civil 3D 2013\AecXDtlLoader.dll
[2012.02.20 18:31:02 | 000,063,400 | ---- | M] () -- \Program Files\Autodesk\AutoCAD Civil 3D 2013\AecXDynPropsLoader.dll
[2012.02.20 18:30:56 | 000,064,424 | ---- | M] () -- \Program Files\Autodesk\AutoCAD Civil 3D 2013\AecXExtendedDataLoader.dll
[2012.02.20 18:30:56 | 000,064,424 | ---- | M] () -- \Program Files\Autodesk\AutoCAD Civil 3D 2013\AecXGuiBaseLoader.dll
[2012.02.20 18:30:50 | 000,064,424 | ---- | M] () -- \Program Files\Autodesk\AutoCAD Civil 3D 2013\AecXToolClassLoader.dll
[2012.02.20 18:31:00 | 000,064,424 | ---- | M] () -- \Program Files\Autodesk\AutoCAD Civil 3D 2013\AecXUIBaseLoader.dll
[2012.02.22 12:13:10 | 000,273,920 | ---- | M] () -- \Program Files\Autodesk\AutoCAD Civil 3D 2013\EmbeddedSQLiteLoader.dll
[2012.03.13 08:53:11 | 000,012,912 | ---- | M] () -- \Program Files\Autodesk\AutoCAD Civil 3D 2013\cs-CZ\AcAutoLoaderRes.dll
[2012.11.13 11:42:33 | 000,000,455 | ---- | M] () -- \Program Files\Autodesk\AutoCAD Civil 3D 2013\Help\contexthelp\APPAUTOLOADER.htm
[2012.11.13 11:45:41 | 000,008,349 | ---- | M] () -- \Program Files\Autodesk\AutoCAD Civil 3D 2013\Help\scripts\beehive\core\FileLoader.js
[2012.11.13 11:45:46 | 000,007,404 | ---- | M] () -- \Program Files\Autodesk\AutoCAD Civil 3D 2013\Help\scripts\beehive\ui\StylesheetLoader.js
[2012.11.13 11:45:47 | 000,003,208 | ---- | M] () -- \Program Files\Autodesk\AutoCAD Civil 3D 2013\Help\scripts\beehiveSearch\styles\images\loader.gif
[2012.11.13 11:41:42 | 000,008,349 | ---- | M] () -- \Program Files\Autodesk\AutoCAD Civil 3D 2013\Setup\cs-CZ\Setup\cs-CZ\Docs\scripts\beehive\core\FileLoader.js
[2012.11.13 11:41:48 | 000,007,404 | ---- | M] () -- \Program Files\Autodesk\AutoCAD Civil 3D 2013\Setup\cs-CZ\Setup\cs-CZ\Docs\scripts\beehive\ui\StylesheetLoader.js
[2012.11.13 11:41:48 | 000,003,208 | ---- | M] () -- \Program Files\Autodesk\AutoCAD Civil 3D 2013\Setup\cs-CZ\Setup\cs-CZ\Docs\scripts\beehiveSearch\styles\images\loader.gif
[2006.10.26 13:40:34 | 000,057,344 | ---- | M] () -- \Program Files\Common Files\microsoft shared\VS7DEBUG\coloader.dll
[2006.10.26 13:40:34 | 000,005,120 | ---- | M] () -- \Program Files\Common Files\microsoft shared\VS7DEBUG\coloader.tlb
[2013.01.21 16:03:44 | 000,030,608 | ---- | M] () -- \Program Files\Seznam.cz\distribution\install\cz.seznam.software.libfoxloader-3.0.0-win32.zip
[2012.09.13 15:45:58 | 000,058,424 | ---- | M] () -- \Users\Jane\AppData\Roaming\Seznam.cz\bin\libfoxloader.dll
[2012.08.07 14:39:12 | 000,000,165 | ---- | M] () -- \Users\Jane\AppData\Roaming\Seznam.cz\conf\szndesktop.d\libfoxloader.conf
[2013.01.21 16:03:44 | 000,030,608 | ---- | M] () -- \Users\Jane\AppData\Roaming\Seznam.cz\install\cz.seznam.software.libfoxloader-3.0.0-win32.zip
[2012.08.13 19:05:28 | 000,000,235 | ---- | M] () -- \Users\Jane\AppData\Roaming\Seznam.cz\uninstall\cz_seznam_software_libfoxloader_3_0_0.install.bat
[2012.08.13 19:05:26 | 000,000,130 | ---- | M] () -- \Users\Jane\AppData\Roaming\Seznam.cz\uninstall\cz_seznam_software_libfoxloader_3_0_0.uninstall.bat
[2009.02.03 19:33:52 | 000,028,008 | ---- | M] () -- \Users\Jane\Documents\Software a CAD\AutoCAD Map 3D 2010 Setup\x86\acad\Program Files\Root\AecLoader.arx
[2012.05.27 23:23:34 | 000,082,784 | ---- | M] () -- \Windows\assembly\GAC\IALoader\1.7.6223.0__31bf3856ad364e35\IALoader.dll
[2013.08.02 03:48:15 | 000,003,584 | -H-- | M] () -- \Windows\System32\api-ms-win-core-libraryloader-l1-1-0.dll
[2009.07.14 03:15:12 | 000,038,400 | ---- | M] () -- \Windows\System32\dmloader.dll
[2009.07.14 06:54:01 | 000,003,532 | ---- | M] () -- \Windows\System32\Tasks\Microsoft\Windows\WindowsColorSystem\Calibration Loader
[2011.04.12 03:37:09 | 000,002,883 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_3318c4cd5e5d0f86.manifest
[2011.04.12 03:37:09 | 000,034,896 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_3318c4cd5e5d0f86_winload.exe.mui_3bc5b827
[2011.04.12 03:37:09 | 000,030,272 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_3318c4cd5e5d0f86_winresume.exe.mui_ff8b5358
[2010.11.20 23:31:02 | 000,004,225 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.17514_none_5d2e241dcae8f953.manifest
[2010.11.20 23:31:02 | 000,508,904 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.17514_none_5d2e241dcae8f953_winload.exe_75835076
[2010.11.20 23:31:02 | 000,442,720 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.17514_none_5d2e241dcae8f953_winresume.exe_85cd1215
[2009.07.14 04:17:38 | 000,002,894 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-s..ive-blackbox-loader_31bf3856ad364e35_6.1.7600.16385_none_6b097e5cb26f7a23.manifest
[2009.07.14 04:17:38 | 000,017,472 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-s..ive-blackbox-loader_31bf3856ad364e35_6.1.7600.16385_none_6b097e5cb26f7a23_spldr.sys_98bd87a0
[2011.04.12 03:36:26 | 000,002,883 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_3318c4cd5e5d0f86.manifest
[2010.11.20 23:23:54 | 000,004,225 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.17514_none_5d2e241dcae8f953.manifest
[2009.07.14 03:52:31 | 000,002,894 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-s..ive-blackbox-loader_31bf3856ad364e35_6.1.7600.16385_none_6b097e5cb26f7a23.manifest
[2009.07.14 03:15:12 | 000,038,400 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-audio-dmusic_31bf3856ad364e35_6.1.7600.16385_none_45ca7214f0f664cb\dmloader.dll
[2009.07.14 03:03:49 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.16385_none_0a884619dd2388ad\api-ms-win-core-libraryloader-l1-1-0.dll
[2011.07.16 06:15:45 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.17651_none_0c8b1b39da352d2d\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.08.20 19:32:13 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.17932_none_0ca1c10dda240617\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.10.04 18:40:37 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.17965_none_0c845227da39a5ef\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.11.30 06:45:15 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.18015_none_0cba39e5da114d7c\api-ms-win-core-libraryloader-l1-1-0.dll
[2013.08.02 03:48:15 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.18229_none_0cb36eedda15c917\api-ms-win-core-libraryloader-l1-1-0.dll
[2011.07.16 06:36:48 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.21772_none_0d001876f3621e30\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.08.20 19:23:16 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.22091_none_0ce95442f3736a4b\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.10.04 18:29:45 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.22125_none_0d3906c4f3370937\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.11.30 06:46:37 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.22177_none_0d04f7bcf35dc79a\api-ms-win-core-libraryloader-l1-1-0.dll
[2013.01.04 06:43:16 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.22209_none_0d52a9aaf32333d8\api-ms-win-core-libraryloader-l1-1-0.dll
[2013.08.02 07:53:29 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.22411_none_0d3fdb3af3327f5f\api-ms-win-core-libraryloader-l1-1-0.dll

< *minodlogin* /s >

< *tnod* /s >
[2012.11.13 11:43:01 | 000,000,496 | ---- | M] () -- \Program Files\Autodesk\AutoCAD Civil 3D 2013\Help\contexthelp\TOPOCR_1_EDITNODE_C.htm
[2012.11.13 11:43:01 | 000,000,496 | ---- | M] () -- \Program Files\Autodesk\AutoCAD Civil 3D 2013\Help\contexthelp\TOPOCR_1_EDITNODE_P.htm
[2012.11.13 11:43:01 | 000,000,496 | ---- | M] () -- \Program Files\Autodesk\AutoCAD Civil 3D 2013\Help\contexthelp\TOPOCR_1_EDITNODE_R.htm

< *AutoKMS* /s >

< *activator* /s >

< *serial* /s >
[2007.04.21 08:57:18 | 000,005,540 | ---- | M] () -- \Autodesk\AutoCAD_Civil_3D_2013_Czech_Win_32bit\x86\C3D\Program Files\Common Files\Autodesk Shared\GIS\ImportExport\9.2\tcl_library\grammar_fa\tests\fa_serial.test
[2007.04.21 08:57:20 | 000,007,945 | ---- | M] () -- \Autodesk\AutoCAD_Civil_3D_2013_Czech_Win_32bit\x86\C3D\Program Files\Common Files\Autodesk Shared\GIS\ImportExport\9.2\tcl_library\struct\graph\tests\deserialize.test
[2007.04.21 08:57:20 | 000,004,341 | ---- | M] () -- \Autodesk\AutoCAD_Civil_3D_2013_Czech_Win_32bit\x86\C3D\Program Files\Common Files\Autodesk Shared\GIS\ImportExport\9.2\tcl_library\struct\graph\tests\serialize.test
[2012.02.22 12:15:50 | 000,032,256 | ---- | M] () -- \Autodesk\AutoCAD_Civil_3D_2013_Czech_Win_32bit\x86\Components\SSA2013\SSA 2013\Bin\Autodesk.Map.IM.Data.Provider.FDO.FeatureServiceWrapper.XmlSerializers.dll
[2012.02.22 12:13:30 | 000,026,624 | ---- | M] () -- \Autodesk\AutoCAD_Civil_3D_2013_Czech_Win_32bit\x86\Components\SSA2013\SSA 2013\Bin\Autodesk.Map.IM.Graphic.XmlSerializers.dll
[2012.02.22 12:13:56 | 000,230,912 | ---- | M] () -- \Autodesk\AutoCAD_Civil_3D_2013_Czech_Win_32bit\x86\Components\SSA2013\SSA 2013\Bin\Autodesk.Map.IM.Update.Xml.XmlSerializers.dll
[2011.09.14 17:12:52 | 000,002,594 | ---- | M] () -- \Autodesk\AutoCAD_Civil_3D_2013_Czech_Win_32bit\x86\cs-CZ\C3D\Acad\Common Files Folder\Autodesk Shared\AdLM\R5\cs-CZ\Webdepot\RTSerialNumberHelp.html
[2011.09.14 17:12:52 | 000,002,594 | ---- | M] () -- \Autodesk\AutoCAD_Civil_3D_2013_Czech_Win_32bit\x86\cs-CZ\C3D\Acad\Common Files Folder\Autodesk Shared\AdLM\R5\de-DE\Webdepot\RTSerialNumberHelp.html
[2011.09.14 17:12:52 | 000,002,594 | ---- | M] () -- \Autodesk\AutoCAD_Civil_3D_2013_Czech_Win_32bit\x86\cs-CZ\C3D\Acad\Common Files Folder\Autodesk Shared\AdLM\R5\en-US\Webdepot\RTSerialNumberHelp.html
[2011.09.14 17:12:52 | 000,002,594 | ---- | M] () -- \Autodesk\AutoCAD_Civil_3D_2013_Czech_Win_32bit\x86\cs-CZ\C3D\Acad\Common Files Folder\Autodesk Shared\AdLM\R5\es-ES\Webdepot\RTSerialNumberHelp.html
[2011.09.14 17:12:52 | 000,002,594 | ---- | M] () -- \Autodesk\AutoCAD_Civil_3D_2013_Czech_Win_32bit\x86\cs-CZ\C3D\Acad\Common Files Folder\Autodesk Shared\AdLM\R5\fr-FR\Webdepot\RTSerialNumberHelp.html
[2011.09.14 17:12:52 | 000,002,594 | ---- | M] () -- \Autodesk\AutoCAD_Civil_3D_2013_Czech_Win_32bit\x86\cs-CZ\C3D\Acad\Common Files Folder\Autodesk Shared\AdLM\R5\hu-HU\Webdepot\RTSerialNumberHelp.html
[2011.09.14 17:12:52 | 000,002,594 | ---- | M] () -- \Autodesk\AutoCAD_Civil_3D_2013_Czech_Win_32bit\x86\cs-CZ\C3D\Acad\Common Files Folder\Autodesk Shared\AdLM\R5\it-IT\Webdepot\RTSerialNumberHelp.html
[2011.09.14 17:12:52 | 000,002,594 | ---- | M] () -- \Autodesk\AutoCAD_Civil_3D_2013_Czech_Win_32bit\x86\cs-CZ\C3D\Acad\Common Files Folder\Autodesk Shared\AdLM\R5\ja-JP\Webdepot\RTSerialNumberHelp.html
[2011.09.14 17:12:52 | 000,002,594 | ---- | M] () -- \Autodesk\AutoCAD_Civil_3D_2013_Czech_Win_32bit\x86\cs-CZ\C3D\Acad\Common Files Folder\Autodesk Shared\AdLM\R5\ko-KR\Webdepot\RTSerialNumberHelp.html
[2011.09.14 17:12:52 | 000,002,594 | ---- | M] () -- \Autodesk\AutoCAD_Civil_3D_2013_Czech_Win_32bit\x86\cs-CZ\C3D\Acad\Common Files Folder\Autodesk Shared\AdLM\R5\pl-PL\Webdepot\RTSerialNumberHelp.html
[2011.09.14 17:12:52 | 000,002,594 | ---- | M] () -- \Autodesk\AutoCAD_Civil_3D_2013_Czech_Win_32bit\x86\cs-CZ\C3D\Acad\Common Files Folder\Autodesk Shared\AdLM\R5\pt-BR\Webdepot\RTSerialNumberHelp.html
[2011.09.14 17:12:52 | 000,002,594 | ---- | M] () -- \Autodesk\AutoCAD_Civil_3D_2013_Czech_Win_32bit\x86\cs-CZ\C3D\Acad\Common Files Folder\Autodesk Shared\AdLM\R5\ru-RU\Webdepot\RTSerialNumberHelp.html
[2011.09.14 17:12:52 | 000,002,594 | ---- | M] () -- \Autodesk\AutoCAD_Civil_3D_2013_Czech_Win_32bit\x86\cs-CZ\C3D\Acad\Common Files Folder\Autodesk Shared\AdLM\R5\zh-CN\Webdepot\RTSerialNumberHelp.html
[2011.09.14 17:12:52 | 000,002,594 | ---- | M] () -- \Autodesk\AutoCAD_Civil_3D_2013_Czech_Win_32bit\x86\cs-CZ\C3D\Acad\Common Files Folder\Autodesk Shared\AdLM\R5\zh-TW\Webdepot\RTSerialNumberHelp.html
[2011.09.14 17:12:52 | 000,002,594 | ---- | M] () -- \Program Files\Common Files\Autodesk Shared\AdLM\R5\cs-CZ\Webdepot\RTSerialNumberHelp.html
[2007.04.21 08:57:18 | 000,005,540 | ---- | M] () -- \Program Files\Common Files\Autodesk Shared\GIS\ImportExport\9.2\tcl_library\grammar_fa\tests\fa_serial.test
[2007.04.21 08:57:20 | 000,007,945 | ---- | M] () -- \Program Files\Common Files\Autodesk Shared\GIS\ImportExport\9.2\tcl_library\struct\graph\tests\deserialize.test
[2007.04.21 08:57:20 | 000,004,341 | ---- | M] () -- \Program Files\Common Files\Autodesk Shared\GIS\ImportExport\9.2\tcl_library\struct\graph\tests\serialize.test
[2013.09.13 01:53:56 | 000,434,368 | ---- | M] () -- \Program Files\Microsoft Silverlight\5.1.20913.0\System.Runtime.Serialization.dll
[2013.10.10 21:35:33 | 001,164,288 | ---- | M] () -- \Program Files\Microsoft Silverlight\5.1.20913.0\System.Runtime.Serialization.ni.dll
[2012.10.05 12:53:23 | 000,970,752 | ---- | M] () -- \Program Files\Reference Assemblies\Microsoft\Framework\v3.0\System.Runtime.Serialization.dll
[2011.04.12 03:36:58 | 000,090,112 | ---- | M] () -- \Program Files\Reference Assemblies\Microsoft\Framework\v3.0\cs\System.RunTime.Serialization.Resources.dll
[2008.07.31 07:41:44 | 000,002,502 | ---- | M] () -- \Users\Jane\Documents\Software a CAD\AutoCAD Map 3D 2010 Setup\x86\acad\Program Files\Root\Common Files Folder\Autodesk Shared\AdLM\R1\cs-CZ\Webdepot\RTSerialNumberHelp.html
[2008.07.31 07:41:44 | 000,002,502 | ---- | M] () -- \Users\Jane\Documents\Software a CAD\AutoCAD Map 3D 2010 Setup\x86\acad\Program Files\Root\Common Files Folder\Autodesk Shared\AdLM\R1\de-DE\Webdepot\RTSerialNumberHelp.html
[2008.05.08 09:14:18 | 000,002,502 | ---- | M] () -- \Users\Jane\Documents\Software a CAD\AutoCAD Map 3D 2010 Setup\x86\acad\Program Files\Root\Common Files Folder\Autodesk Shared\AdLM\R1\en-US\Webdepot\RTSerialNumberHelp.html
[2008.07.31 07:41:44 | 000,002,502 | ---- | M] () -- \Users\Jane\Documents\Software a CAD\AutoCAD Map 3D 2010 Setup\x86\acad\Program Files\Root\Common Files Folder\Autodesk Shared\AdLM\R1\es-ES\Webdepot\RTSerialNumberHelp.html
[2008.08.06 01:22:56 | 000,002,502 | ---- | M] () -- \Users\Jane\Documents\Software a CAD\AutoCAD Map 3D 2010 Setup\x86\acad\Program Files\Root\Common Files Folder\Autodesk Shared\AdLM\R1\fr-FR\Webdepot\RTSerialNumberHelp.html
[2008.07.31 07:41:44 | 000,002,502 | ---- | M] () -- \Users\Jane\Documents\Software a CAD\AutoCAD Map 3D 2010 Setup\x86\acad\Program Files\Root\Common Files Folder\Autodesk Shared\AdLM\R1\hu-HU\Webdepot\RTSerialNumberHelp.html
[2008.07.31 07:41:44 | 000,002,502 | ---- | M] () -- \Users\Jane\Documents\Software a CAD\AutoCAD Map 3D 2010 Setup\x86\acad\Program Files\Root\Common Files Folder\Autodesk Shared\AdLM\R1\it-IT\Webdepot\RTSerialNumberHelp.html
[2008.05.08 09:14:18 | 000,002,502 | ---- | M] () -- \Users\Jane\Documents\Software a CAD\AutoCAD Map 3D 2010 Setup\x86\acad\Program Files\Root\Common Files Folder\Autodesk Shared\AdLM\R1\ja-JP\Webdepot\RTSerialNumberHelp.html
[2008.07.31 07:41:44 | 000,002,502 | ---- | M] () -- \Users\Jane\Documents\Software a CAD\AutoCAD Map 3D 2010 Setup\x86\acad\Program Files\Root\Common Files Folder\Autodesk Shared\AdLM\R1\ko-KR\Webdepot\RTSerialNumberHelp.html
[2008.07.31 07:41:44 | 000,002,502 | ---- | M] () -- \Users\Jane\Documents\Software a CAD\AutoCAD Map 3D 2010 Setup\x86\acad\Program Files\Root\Common Files Folder\Autodesk Shared\AdLM\R1\pl-PL\Webdepot\RTSerialNumberHelp.html
[2008.07.31 07:41:46 | 000,002,502 | ---- | M] () -- \Users\Jane\Documents\Software a CAD\AutoCAD Map 3D 2010 Setup\x86\acad\Program Files\Root\Common Files Folder\Autodesk Shared\AdLM\R1\pt-BR\Webdepot\RTSerialNumberHelp.html
[2008.07.31 07:41:44 | 000,002,502 | ---- | M] () -- \Users\Jane\Documents\Software a CAD\AutoCAD Map 3D 2010 Setup\x86\acad\Program Files\Root\Common Files Folder\Autodesk Shared\AdLM\R1\ru-RU\Webdepot\RTSerialNumberHelp.html
[2008.07.31 07:41:44 | 000,002,502 | ---- | M] () -- \Users\Jane\Documents\Software a CAD\AutoCAD Map 3D 2010 Setup\x86\acad\Program Files\Root\Common Files Folder\Autodesk Shared\AdLM\R1\zh-CN\Webdepot\RTSerialNumberHelp.html
[2008.07.31 07:41:44 | 000,002,502 | ---- | M] () -- \Users\Jane\Documents\Software a CAD\AutoCAD Map 3D 2010 Setup\x86\acad\Program Files\Root\Common Files Folder\Autodesk Shared\AdLM\R1\zh-TW\Webdepot\RTSerialNumberHelp.html
[2011.04.12 03:36:53 | 000,011,776 | ---- | M] () -- \Windows\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap.resources\2.0.0.0_cs_b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2009.06.10 23:23:19 | 000,131,072 | ---- | M] () -- \Windows\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap\2.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.dll
[2010.11.13 03:55:26 | 000,090,112 | ---- | M] () -- \Windows\assembly\GAC_MSIL\system.runtime.serialization.resources\3.0.0.0_cs_b77a5c561934e089\System.RunTime.Serialization.Resources.dll
[2012.10.05 12:53:23 | 000,970,752 | ---- | M] () -- \Windows\assembly\GAC_MSIL\System.Runtime.Serialization\3.0.0.0__b77a5c561934e089\System.Runtime.Serialization.dll
[2013.08.15 22:03:42 | 000,310,784 | ---- | M] () -- \Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Seri#\d462f459c4353e2c628e6def1430aed7\System.Runtime.Serialization.Formatters.Soap.ni.dll
[2013.08.16 08:06:48 | 002,347,008 | ---- | M] () -- \Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Seri#\e043ad64456256a8ee5b934e227d9782\System.Runtime.Serialization.ni.dll
[2013.10.09 23:32:03 | 002,659,328 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_32\System.Runtime.Seri#\10519c5a16fab95707f40b55941647b5\System.Runtime.Serialization.ni.dll
[2013.08.15 01:12:23 | 002,647,552 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_32\System.Runtime.Seri#\420022aad3481c670eb86a4ca72d5b43\System.Runtime.Serialization.ni.dll
[2013.08.15 01:11:55 | 000,311,296 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_32\System.Runtime.Seri#\ad3522eafb95969623aeef7c389246bd\System.Runtime.Serialization.Formatters.Soap.ni.dll
[2013.07.10 12:23:06 | 000,009,216 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_32\System.Xml.Serializ#\cda839ea462e123d42cb6d0883cf0f4d\System.Xml.Serialization.ni.dll
[2010.03.18 13:16:28 | 001,026,936 | R--- | M] () -- \Windows\Installer\$PatchCache$\Managed\5C1093C35543A0E32A41B090A305076A\4.0.30319\System.Runtime.Serialization.dll.x86
[2012.05.29 18:55:38 | 000,017,840 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap.resources\v4.0_4.0.0.0_cs_b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2013.10.09 23:25:48 | 000,122,264 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.dll
[2012.05.29 18:55:38 | 000,099,208 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.RunTime.Serialization.resources\v4.0_4.0.0.0_cs_b77a5c561934e089\System.RunTime.Serialization.resources.dll
[2013.10.09 23:25:45 | 001,039,040 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization\v4.0_4.0.0.0__b77a5c561934e089\System.Runtime.Serialization.dll
[2013.10.09 23:25:56 | 000,011,120 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Xml.Serialization\v4.0_4.0.0.0__b77a5c561934e089\System.Xml.Serialization.dll
[2009.06.10 23:23:19 | 000,131,072 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v2.0.50727\System.Runtime.Serialization.Formatters.Soap.dll
[2011.04.12 03:36:49 | 000,011,776 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v2.0.50727\cs\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2012.10.05 12:53:24 | 000,970,752 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\System.Runtime.Serialization.dll
[2013.09.11 06:06:54 | 001,039,040 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\System.Runtime.Serialization.dll
[2010.03.18 13:16:28 | 000,122,264 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\System.Runtime.Serialization.Formatters.Soap.dll
[2011.04.06 16:48:20 | 000,011,120 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\System.Xml.Serialization.dll
[2010.06.15 02:33:16 | 000,017,840 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\cs\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2010.06.15 02:33:16 | 000,099,208 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\cs\System.RunTime.Serialization.resources.dll
[2009.07.14 03:16:13 | 000,015,360 | ---- | M] () -- \Windows\System32\serialui.dll
[2011.04.12 03:36:50 | 000,005,120 | ---- | M] () -- \Windows\System32\cs-CZ\serialui.dll.mui
[2009.07.14 01:45:33 | 000,083,456 | ---- | M] () -- \Windows\System32\drivers\serial.sys
[2011.04.12 03:36:55 | 000,009,728 | ---- | M] () -- \Windows\System32\drivers\cs-CZ\serial.sys.mui
[2009.07.14 00:13:45 | 001,068,032 | ---- | M] () -- \Windows\System32\DriverStore\FileRepository\mdmmotsm.inf_x86_neutral_c1415d9789c54b89\smserial.sys
[2009.07.14 01:45:33 | 000,083,456 | ---- | M] () -- \Windows\System32\DriverStore\FileRepository\msports.inf_x86_neutral_c1a802e06677f73f\serial.sys
[2009.07.14 00:09:18 | 000,031,232 | ---- | M] () -- \Windows\System32\DriverStore\FileRepository\smartcrd.inf_x86_neutral_63e72c669d043f14\grserial.sys
[2009.07.14 04:18:03 | 000,002,762 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..gertransport-serial_31bf3856ad364e35_6.1.7600.16385_none_118be3420dfe8486.manifest
[2009.07.14 04:18:03 | 000,015,952 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..gertransport-serial_31bf3856ad364e35_6.1.7600.16385_none_118be3420dfe8486_kdcom.dll_db5e7744
[2011.04.12 03:37:09 | 000,005,120 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-u..em-config.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_4e4137b544fe59ed_serialui.dll.mui_7d29d2a3
[2009.07.14 04:18:51 | 000,015,360 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-unimodem-config_31bf3856ad364e35_6.1.7600.16385_none_f4d7f7b17ffe522a_serialui.dll_bea29328
[2010.11.20 23:24:56 | 000,002,226 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.ref_b77a5c561934e089_6.1.7601.17514_none_a67f221874da7f4c.manifest
[2012.10.05 19:15:39 | 000,002,226 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.ref_b77a5c561934e089_6.1.7601.17966_none_a683f56a74d63285.manifest
[2012.10.05 19:17:50 | 000,002,226 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.ref_b77a5c561934e089_6.1.7601.22126_none_8fb250ac8e81277d.manifest
[2011.04.12 03:36:33 | 000,001,626 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7600.16385_cs-cz_34555b4d83cf58b0.manifest
[2012.10.05 21:04:43 | 000,001,626 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.17966_cs-cz_342f3c238422529f.manifest
[2012.10.05 21:02:24 | 000,001,626 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.22126_cs-cz_1d5d97659dcd4797.manifest
[2010.11.20 23:24:56 | 000,001,985 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization_b77a5c561934e089_6.1.7601.17514_none_d6c257b29c81807f.manifest
[2012.10.05 19:15:03 | 000,001,985 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization_b77a5c561934e089_6.1.7601.17966_none_d6c72b049c7d33b8.manifest
[2012.10.05 19:17:15 | 000,001,985 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization_b77a5c561934e089_6.1.7601.22126_none_bff58646b62828b0.manifest
[2009.07.14 03:49:26 | 000,002,762 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..gertransport-serial_31bf3856ad364e35_6.1.7600.16385_none_118be3420dfe8486.manifest
[2009.07.14 03:45:27 | 000,000,866 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft.windows.h..tserial-driverclass_31bf3856ad364e35_6.1.7600.16385_none_2c93290b67c98d09.manifest
[2010.11.20 23:24:56 | 000,002,260 | ---- | M] () -- \Windows\winsxs\Manifests\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.17514_none_db9d037fdd581ac1.manifest
[2012.10.05 19:19:53 | 000,002,260 | ---- | M] () -- \Windows\winsxs\Manifests\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.17966_none_dba1d6d1dd53cdfa.manifest
[2012.10.05 19:22:10 | 000,002,260 | ---- | M] () -- \Windows\winsxs\Manifests\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.22126_none_c4d03213f6fec2f2.manifest
[2009.06.10 23:23:19 | 000,131,072 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.seri..ion.formatters.soap_b03f5f7f11d50a3a_6.1.7600.16385_none_1c9a3ec1e01c684b\System.Runtime.Serialization.Formatters.Soap.dll
[2011.04.12 03:36:53 | 000,011,776 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.seri..ters.soap.resources_b03f5f7f11d50a3a_6.1.7600.16385_cs-cz_d5c3552dd9b47144\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2010.11.20 23:29:48 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.ref_b77a5c561934e089_6.1.7601.17514_none_a67f221874da7f4c\System.Runtime.Serialization.dll
[2012.10.05 12:53:24 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.ref_b77a5c561934e089_6.1.7601.17966_none_a683f56a74d63285\System.Runtime.Serialization.dll
[2012.10.05 12:56:07 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.ref_b77a5c561934e089_6.1.7601.22126_none_8fb250ac8e81277d\System.Runtime.Serialization.dll
[2011.04.12 03:36:58 | 000,090,112 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7600.16385_cs-cz_34555b4d83cf58b0\System.RunTime.Serialization.Resources.dll
[2010.11.13 03:55:26 | 000,090,112 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.17966_cs-cz_342f3c238422529f\System.RunTime.Serialization.Resources.dll
[2010.11.13 04:37:50 | 000,090,112 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.22126_cs-cz_1d5d97659dcd4797\System.RunTime.Serialization.Resources.dll
[2010.11.20 23:29:48 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization_b77a5c561934e089_6.1.7601.17514_none_d6c257b29c81807f\System.Runtime.Serialization.dll
[2012.10.05 12:53:23 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization_b77a5c561934e089_6.1.7601.17966_none_d6c72b049c7d33b8\System.Runtime.Serialization.dll
[2012.10.05 12:56:05 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization_b77a5c561934e089_6.1.7601.22126_none_bff58646b62828b0\System.Runtime.Serialization.dll
[2009.07.14 00:13:45 | 001,068,032 | ---- | M] () -- \Windows\winsxs\x86_mdmmotsm.inf_31bf3856ad364e35_6.1.7600.16385_none_7a97936f8a972896\smserial.sys
[2011.04.12 03:36:49 | 000,011,776 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-n..xcorecomp.resources_31bf3856ad364e35_6.1.7601.17514_cs-cz_c233d4df09982c29\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2011.04.12 03:36:50 | 000,005,120 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-u..em-config.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_4e4137b544fe59ed\serialui.dll.mui
[2009.07.14 03:16:13 | 000,015,360 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-unimodem-config_31bf3856ad364e35_6.1.7600.16385_none_f4d7f7b17ffe522a\serialui.dll
[2011.04.12 03:36:58 | 000,090,112 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-wcfcorecomp.resources_31bf3856ad364e35_6.1.7601.17514_cs-cz_5f7b7c7cb0c0f266\System.RunTime.Serialization.Resources.dll
[2011.04.12 03:36:55 | 000,009,728 | ---- | M] () -- \Windows\winsxs\x86_msports.inf.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_c48c78a9ad8ff996\serial.sys.mui
[2009.07.14 01:45:33 | 000,083,456 | ---- | M] () -- \Windows\winsxs\x86_msports.inf_31bf3856ad364e35_6.1.7600.16385_none_f86e06d519b1d9a4\serial.sys
[2009.07.14 00:09:18 | 000,031,232 | ---- | M] () -- \Windows\winsxs\x86_smartcrd.inf_31bf3856ad364e35_6.1.7600.16385_none_7280378295916274\grserial.sys
[2010.11.20 23:29:48 | 000,970,752 | ---- | M] () -- \Windows\winsxs\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.17514_none_db9d037fdd581ac1\System.Runtime.Serialization.dll
[2012.10.05 12:53:23 | 000,970,752 | ---- | M] () -- \Windows\winsxs\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.17966_none_dba1d6d1dd53cdfa\System.Runtime.Serialization.dll
[2012.10.05 12:56:05 | 000,970,752 | ---- | M] () -- \Windows\winsxs\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.22126_none_c4d03213f6fec2f2\System.Runtime.Serialization.dll

< *w7lxe* /s >

< End of report >

Jane86 · #20 Příspěvek od **Jane86** » 21 říj 2013 19:52

A ještě log z Extras.txt. A chci se zeptat, jak to vypadá

Jsme už aspoň v půlce procesu? A je to hodně zlý? Já z toho nepoznám ani kulový

Každopádně děkuju...

OTL Extras logfile created on: 21.10.2013 20:07:36 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Jane\Desktop
Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.10.9200.16721)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

2,93 Gb Total Physical Memory | 1,53 Gb Available Physical Memory | 52,29% Memory free
5,86 Gb Paging File | 4,36 Gb Available in Paging File | 74,35% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 232,79 Gb Total Space | 76,43 Gb Free Space | 32,83% Space Free | Partition Type: NTFS

Computer Name: JANE-PC | User Name: Jane | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Extra Registry (SafeList) ==========

========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\System32\control.exe (Microsoft Corporation)
.hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation)
.html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)

[HKEY_USERS\S-1-5-21-3723644802-1017424679-4293840486-1000\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
https [open] -- "C:\Program Files\Mozilla Firefox\firefox.exe" -osint -url "%1" (Mozilla Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [Bridge] -- C:\Program Files\Adobe\Adobe Bridge CS5\Bridge.exe "%L" (Adobe Systems, Inc.)
Directory [Browse with &IrfanView] -- "C:\Program Files\IrfanView\i_view32.exe" "%1 /thumbs" (Irfan Skiljan)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [Winamp.Bookmark] -- "C:\Program Files\Winamp\winamp.exe" /BOOKMARK "%1" (Nullsoft, Inc.)
Directory [Winamp.Enqueue] -- "C:\Program Files\Winamp\winamp.exe" /ADD "%1" (Nullsoft, Inc.)
Directory [Winamp.Play] -- "C:\Program Files\Winamp\winamp.exe" "%1" (Nullsoft, Inc.)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
"FirewallDisableNotify" = 0
"AntiVirusDisableNotify" = 0
"UpdatesDisableNotify" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = Reg Error: Unknown registry data type -- File not found
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]

========== System Restore Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile]

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 0
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 0
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"EnableFirewall" = 0
"DisableNotifications" = 0

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]

========== Vista Active Open Ports Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{040F3DA7-7A07-4017-BC70-AE6EDAC13150}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{06E70D06-80F4-4E0C-B3B5-CDA11783AD54}" = lport=445 | protocol=6 | dir=in | app=system |
"{0948941E-3938-49A2-863A-C01B72B27480}" = lport=139 | protocol=6 | dir=in | app=system |
"{0EBE61E0-021A-4192-9624-48177246302A}" = lport=50248 | protocol=6 | dir=in | name=autodesk content service |
"{107061B2-03B2-4361-9563-F08FB655C950}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 |
"{1AAA9D7B-0706-463D-B7D7-BE489B4A144F}" = lport=10243 | protocol=6 | dir=in | app=system |
"{23F8CB84-5F7A-4294-AE52-3DDE406913EA}" = lport=2869 | protocol=6 | dir=in | app=system |
"{4B09C5B1-5E97-4E3A-8AB4-387D64D72A23}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
"{55C0474C-9B4F-464F-963C-6614448E703B}" = lport=2177 | protocol=6 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{66D2E255-3AF5-47CD-B8BE-3A3C67A7FA83}" = rport=139 | protocol=6 | dir=out | app=system |
"{682A3431-98B0-4755-BAE6-7C25E66559E2}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{6B0EE406-4075-4487-A477-3AEBE94A76FA}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{712C9F71-2151-411F-841B-E3B0164B8D81}" = lport=2177 | protocol=17 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{83DDD869-6621-4A04-AE1D-4C21EECAD0ED}" = rport=137 | protocol=17 | dir=out | app=system |
"{9145A2C2-B8B1-4775-8F05-DA56FD5984EE}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{A92A6EB4-0122-40A4-B231-7A7D03D27124}" = rport=138 | protocol=17 | dir=out | app=system |
"{ACDD6F37-AF52-4C26-9D3A-C0DBDB54279B}" = rport=445 | protocol=6 | dir=out | app=system |
"{B24D21D9-5C3C-49CF-9169-3CDD0E6228D5}" = lport=138 | protocol=17 | dir=in | app=system |
"{B6055AB4-4D9E-49F1-BCFE-1435BB465E90}" = rport=2177 | protocol=6 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{C2A917BC-23EF-4E10-895B-17068D42D2CE}" = rport=10243 | protocol=6 | dir=out | app=system |
"{D9C6C20E-C8D0-40A9-A606-12D41E071A31}" = lport=137 | protocol=17 | dir=in | app=system |
"{E57C4252-AB84-4055-B3CE-CD4198CCDEE4}" = lport=6004 | protocol=17 | dir=in | app=c:\program files\microsoft office\office12\outlook.exe |
"{F56D094C-5055-4C1E-82DE-55BEE0BDEE9C}" = rport=2177 | protocol=17 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |

========== Vista Active Application Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{0A717DCC-33A7-408B-9C84-0B01BFB4DFCE}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 |
"{0FF3A5D7-85B0-42FD-8AC4-77B368D57DE2}" = protocol=6 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{13A81A1B-C9C3-4589-AE45-7BB9CC78399C}" = protocol=6 | dir=in | app=c:\program files\pandora.tv\panservice\pandoraservice.exe |
"{16C2E18F-BE75-4A44-AC36-5D6CC826B634}" = protocol=6 | dir=in | app=c:\program files\kmpmediatoolbar\dtuser.exe |
"{1A53AAC1-E120-4366-935E-BE09DB1236A6}" = protocol=17 | dir=in | app=c:\program files\microsoft office\office12\onenote.exe |
"{1BB92B4B-6E6A-44F4-9F31-4913C3F7A9F3}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{1DA5BE65-29B2-44F4-9989-CADB9446D8B5}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 |
"{301A104D-3456-4CEF-9296-54FE8BB2EBA5}" = protocol=17 | dir=in | app=c:\program files\kmpmediatoolbar\dtuser.exe |
"{33F7B4EA-3A63-44F0-A80B-2AED1566D995}" = protocol=17 | dir=in | app=c:\program files\mozilla firefox\plugin-container.exe |
"{3B13C5DB-C110-45B8-9185-991F292DD800}" = protocol=6 | dir=in | app=c:\program files\microsoft office\office12\onenote.exe |
"{517A63B3-FA93-4A02-B1CC-F924BDC73A8E}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{5E346035-3D03-489C-923B-07980F37B49B}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 |
"{5E358CCE-8526-4A08-B9CA-5DF2C95C9179}" = protocol=6 | dir=out | app=system |
"{6693B1BA-C248-46EB-ADBF-491B14D95824}" = protocol=17 | dir=in | app=c:\program files\utorrent\utorrent.exe |
"{6B2E23E8-9F38-48FA-9222-DB22BF7EC23F}" = protocol=6 | dir=in | app=c:\program files\pandora.tv\panservice\pandoraservice.exe |
"{77707712-770D-4EBB-BB39-8F3801000676}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{80486342-4A30-483D-889C-DF7B17D4F518}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{88C96D97-6C2C-44EF-8D9C-F430F662E8FD}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{94FD9FBA-F800-4C31-AE87-9BCB35F6F734}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{956DD276-8E16-4C24-A6AE-F5C7D78BB7F7}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{990CDF05-AD1B-40B1-8CC3-4D2876BE4119}" = protocol=6 | dir=in | app=c:\program files\microsoft office\office12\groove.exe |
"{9C66E183-7A6E-4430-874F-439E0C9FD417}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{B315C6F3-4D3B-4BB3-AFE0-202969D3E4A6}" = protocol=6 | dir=in | app=c:\program files\utorrent\utorrent.exe |
"{C0B8564A-B5A8-4FD7-80CA-6F2F043CAC13}" = protocol=17 | dir=in | app=c:\program files\pandora.tv\panservice\pandoraservice.exe |
"{C3CA8B90-7CA3-489C-B3DE-337CA2854962}" = protocol=17 | dir=in | app=c:\program files\microsoft office\office12\groove.exe |
"{DA3A5F56-CC4A-4208-9514-01B2A0DD7274}" = protocol=17 | dir=in | app=c:\program files\pandora.tv\panservice\pandoraservice.exe |
"{EC2BC9DE-A19C-4DB7-A5B0-DC70637D345C}" = protocol=6 | dir=in | app=c:\program files\mozilla firefox\plugin-container.exe |
"{F143FD7F-39D7-4C3E-BA0A-373EB279EBCC}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{F50FFD8A-0BC8-4799-9CF3-F6F225B52D92}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 |
"{F8EDCFEB-A6D2-4865-AA13-131C3C809255}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"TCP Query User{5A708CC1-13CC-46CA-B0EA-BDDA825DBD68}C:\program files\winamp\winamp.exe" = protocol=6 | dir=in | app=c:\program files\winamp\winamp.exe |
"TCP Query User{70332D68-6B79-41AD-B711-733B6F38FF9B}C:\program files\winamp\winamp.exe" = protocol=6 | dir=in | app=c:\program files\winamp\winamp.exe |
"TCP Query User{7705F863-09E5-4D65-B206-D22DC7AA2A9C}C:\users\jane\appdata\local\akamai\netsession_win.exe" = protocol=6 | dir=in | app=c:\users\jane\appdata\local\akamai\netsession_win.exe |
"TCP Query User{9818E0E5-F9CB-48E5-A510-2A3D1CFD9B04}C:\program files\java\jre7\bin\javaw.exe" = protocol=6 | dir=in | app=c:\program files\java\jre7\bin\javaw.exe |
"TCP Query User{B88FD1F8-08DA-4E69-A758-2C0B5EE8DE0F}C:\users\jane\appdata\local\akamai\netsession_win.exe" = protocol=6 | dir=in | app=c:\users\jane\appdata\local\akamai\netsession_win.exe |
"TCP Query User{E11CD327-74B5-44BC-BEFD-5E07982C936A}C:\program files\mozilla firefox\plugin-container.exe" = protocol=6 | dir=in | app=c:\program files\mozilla firefox\plugin-container.exe |
"UDP Query User{76410499-AD51-46D6-9F59-92A8CA8F5A49}C:\program files\winamp\winamp.exe" = protocol=17 | dir=in | app=c:\program files\winamp\winamp.exe |
"UDP Query User{82EDF7EF-2E4D-4FD0-81B6-5EC341DA964F}C:\program files\mozilla firefox\plugin-container.exe" = protocol=17 | dir=in | app=c:\program files\mozilla firefox\plugin-container.exe |
"UDP Query User{A3D35880-204C-4593-8B3A-520163AB8B54}C:\program files\java\jre7\bin\javaw.exe" = protocol=17 | dir=in | app=c:\program files\java\jre7\bin\javaw.exe |
"UDP Query User{EB42E1DE-3959-4429-BEA4-848F33B49B1A}C:\program files\winamp\winamp.exe" = protocol=17 | dir=in | app=c:\program files\winamp\winamp.exe |
"UDP Query User{EF1A4C19-F3EB-4DCA-9A9A-E81B2736C053}C:\users\jane\appdata\local\akamai\netsession_win.exe" = protocol=17 | dir=in | app=c:\users\jane\appdata\local\akamai\netsession_win.exe |
"UDP Query User{FC5EDBD3-408D-423E-8141-CC7333D1C134}C:\users\jane\appdata\local\akamai\netsession_win.exe" = protocol=17 | dir=in | app=c:\users\jane\appdata\local\akamai\netsession_win.exe |

========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}" = PDFCreator
"{033E378E-6AD3-4AD5-BDEB-CBD69B31046C}" = Microsoft_VC90_ATL_x86
"{08D2E121-7F6A-43EB-97FD-629B44903403}" = Microsoft_VC90_CRT_x86
"{0A0CADCF-78DA-33C4-A350-CD51849B9702}" = Microsoft .NET Framework 4 Extended
"{0D2DBE8A-43D0-7830-7AE7-CA6C99A832E7}" = Adobe Community Help
"{0F3647F8-E51D-4FCC-8862-9A8D0C5ACF25}" = Microsoft_VC80_ATL_x86
"{1111706F-666A-4037-7777-211328764D10}" = JavaFX 2.1.1
"{117EBEEB-5DB0-43C8-9FD6-DD583DB152DD}" = Autodesk Material Library 2013
"{15FEDA5F-141C-4127-8D7E-B962D1742728}" = Adobe Photoshop CS5
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{26A24AE4-039D-4CA4-87B4-2F83217025FF}" = Java 7 Update 45
"{2D9F8079-7D50-3EFD-B3BD-ED642E4EE756}" = Microsoft Visual Basic PowerPacks 10.0
"{3A9FC03D-C685-4831-94CF-4EDFD3749497}" = Microsoft SQL Server Compact 3.5 SP2 ENU
"{3C3901C5-3455-3E0A-A214-0B093A5070A6}" = Microsoft .NET Framework 4 Client Profile
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{5783F2D7-B000-0405-0002-0060B0CE6BBA}" = AutoCAD Civil 3D 2013 – čeština (Czech)
"{5783F2D7-B000-0405-1002-0060B0CE6BBA}" = Jazykový balíček pro aplikaci AutoCAD Civil 3D 2013 – čeština (Czech)
"{5783F2D7-B000-0405-2002-0060B0CE6BBA}" = AutoCAD Civil 3D 2013 – čeština (Czech)
"{5A22D889-FBDD-4AE8-86EC-089D45FC133E}" = Alcor Micro USB Card Reader
"{606E12B9-641F-4644-A22A-FF38AE980AFD}" = Autodesk Material Library Base Resolution Image Library 2013
"{62F029AB-85F2-0000-866A-9FC0DD99DDBC}" = Autodesk Content Service
"{62F029AB-85F2-0001-866A-9FC0DD99DDBC}" = Autodesk Content Service Language Pack
"{635FED5B-2C6D-49BE-87E6-7A6FCD22BC5A}" = Microsoft_VC90_MFC_x86
"{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}" = Windows Media Player Firefox Plugin
"{7036A6F4-5DAD-3908-956D-1752CD7F7E5A}" = Microsoft .NET Framework 4 Client Profile CSY Language Pack
"{80A07844-CA64-4DE4-AB61-D37DDBE8074F}" = PDF Architect
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{90120000-0015-0405-0000-0000000FF1CE}" = Microsoft Office Access MUI (Czech) 2007
"{90120000-0015-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-0016-0405-0000-0000000FF1CE}" = Microsoft Office Excel MUI (Czech) 2007
"{90120000-0016-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-0018-0405-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (Czech) 2007
"{90120000-0018-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-0019-0405-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (Czech) 2007
"{90120000-0019-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-001A-0405-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (Czech) 2007
"{90120000-001A-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-001B-0405-0000-0000000FF1CE}" = Microsoft Office Word MUI (Czech) 2007
"{90120000-001B-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-001F-0405-0000-0000000FF1CE}" = Microsoft Office Proof (Czech) 2007
"{90120000-001F-0405-0000-0000000FF1CE}_ENTERPRISE_{0B7A4B67-2A38-42B1-9857-662FAB361E08}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
"{90120000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2007
"{90120000-001F-0407-0000-0000000FF1CE}_ENTERPRISE_{928D7B99-2BEA-49F9-83B8-20FA57860643}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-0409-0000-0000000FF1CE}_ENTERPRISE_{1FF96026-A04A-4C3E-B50A-BB7022654D0F}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
"{90120000-001F-041B-0000-0000000FF1CE}" = Microsoft Office Proof (Slovak) 2007
"{90120000-001F-041B-0000-0000000FF1CE}_ENTERPRISE_{FDF9A959-241A-4662-A8DE-7DED9C22D160}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
"{90120000-002C-0405-0000-0000000FF1CE}" = Microsoft Office Proofing (Czech) 2007
"{90120000-0030-0000-0000-0000000FF1CE}" = Microsoft Office Enterprise 2007
"{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-0044-0405-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (Czech) 2007
"{90120000-0044-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-006E-0405-0000-0000000FF1CE}" = Microsoft Office Shared MUI (Czech) 2007
"{90120000-006E-0405-0000-0000000FF1CE}_ENTERPRISE_{A0AAD4D5-9F9C-49BB-AB64-0FD4695424E8}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-00A1-0405-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (Czech) 2007
"{90120000-00A1-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-00BA-0405-0000-0000000FF1CE}" = Microsoft Office Groove MUI (Czech) 2007
"{90120000-00BA-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90140000-2005-0000-0000-0000000FF1CE}" = Microsoft Office File Validation Add-In
"{92D58719-BBC1-4CC3-A08B-56C9E884CC2C}" = Microsoft_VC80_CRT_x86
"{951B0F30-9F1A-4BF6-B3DA-99EB0E917B1C}" = FARO LS 1.1.406.58
"{96AD3B61-EAE2-11E2-9E72-B8AC6F98CCE3}" = Google Earth
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{A2BCA9F1-566C-4805-97D1-7FDC93386723}" = Adobe AIR
"{A2DE62D8-EF1B-36CB-B461-B1E221ED8608}" = Microsoft .NET Framework 4 Extended CSY Language Pack
"{A78FE97A-C0C8-49CE-89D0-EDD524A17392}" = PDF Settings CS5
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{AC76BA86-7AD7-1029-7B44-AA1000000001}" = Adobe Reader X (10.1.8) - Czech
"{AE3D7319-7373-1810-093D-5297F229765C}_is1" = Google SketchUp 8.0.16846 Free CZ version for Windows
"{CCA78313-443C-4674-81B8-88919D137258}" = Autodesk Download Manager
"{D1A19B02-817E-4296-A45B-07853FD74D57}" = Microsoft_VC80_MFC_x86
"{D92BBB52-82FF-42ED-8A3C-4E062F944AB7}" = Microsoft_VC80_MFCLOC_x86
"{DE3A9DC5-9A5D-6485-9662-347162C7E4CA}" = Adobe Media Player
"{EE5F74BC-5CD5-4EF2-86BA-81E6CF46A18F}" = Autodesk Sync
"{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
"{F1EC4151-805B-4097-B9BB-7D71A417AAF1}" = COMODO Internet Security Premium
"Adobe AIR" = Adobe AIR
"Adobe Flash Player ActiveX" = Adobe Flash Player 11 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin
"AutoCAD Civil 3D 2013 – čeština (Czech)" = AutoCAD Civil 3D 2013 – čeština (Czech)
"Autodesk Content Service" = Autodesk Content Service
"CCleaner" = CCleaner
"com.adobe.amp.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1" = Adobe Media Player
"ENTERPRISE" = Microsoft Office Enterprise 2007
"EPSON Scanner" = EPSON Scan
"EPSON WF-7515 Series" = Odinstalace tiskárny EPSON WF-7515 Series
"GOM Player" = GOM Player
"chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1" = Adobe Community Help
"InstallShield_{5A22D889-FBDD-4AE8-86EC-089D45FC133E}" = Alcor Micro USB Card Reader
"IrfanView" = IrfanView (remove only)
"Malwarebytes' Anti-Malware_is1" = Malwarebytes Anti-Malware verze 1.75.0.1300
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Microsoft .NET Framework 4 Client Profile CSY Language Pack" = Microsoft .NET Framework 4 Client Profile CSY Language Pack
"Microsoft .NET Framework 4 Extended" = Microsoft .NET Framework 4 Extended
"Microsoft .NET Framework 4 Extended CSY Language Pack" = Microsoft .NET Framework 4 Extended CSY Language Pack
"Mozilla Firefox 24.0 (x86 cs)" = Mozilla Firefox 24.0 (x86 cs)
"MozillaMaintenanceService" = Mozilla Maintenance Service
"Panorama Perfect Lite_is1" = Panorama Perfect Lite version 1.6.2
"pdfsam" = pdfsam
"Totalcmd" = Total Commander (Remove or Repair)
"uTorrent" = µTorrent
"Winamp" = Winamp
"WinRAR archiver" = WinRAR 4.11 (32-bit)

========== HKEY_USERS Uninstall List ==========

[HKEY_USERS\S-1-5-21-3723644802-1017424679-4293840486-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Akamai" = Akamai NetSession Interface
"SeznamInstall" = Seznam Software
"Winamp Detect" = Winamp Detector Plug-in

========== Last 20 Event Log Errors ==========

[ Application Events ]
Error - 18.10.2013 4:47:56 | Computer Name = Jane-PC | Source = WinMgmt | ID = 10
Description =

Error - 18.10.2013 4:58:33 | Computer Name = Jane-PC | Source = WinMgmt | ID = 10
Description =

Error - 18.10.2013 13:16:19 | Computer Name = Jane-PC | Source = WinMgmt | ID = 10
Description =

Error - 18.10.2013 15:20:11 | Computer Name = Jane-PC | Source = SideBySide | ID = 16842815
Description = Generování kontextu aktivace pro C:\Program Files\Common Files\Adobe
AIR\Versions\1.0\Adobe AIR.dll se nezdařilo. Chyba v souboru manifestu nebo zásady
C:\Program Files\Common Files\Adobe AIR\Versions\1.0\Adobe AIR.dll na řádku 3. Hodnota
MAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINOR atributu version
v prvku assemblyIdentity je neplatná.

Error - 19.10.2013 5:41:10 | Computer Name = Jane-PC | Source = WinMgmt | ID = 10
Description =

Error - 19.10.2013 5:45:47 | Computer Name = Jane-PC | Source = Application Error | ID = 1000
Description = Název chybující aplikace: Explorer.EXE, verze: 6.1.7601.17567, časové
razítko: 0x4d6727a7 Název chybujícího modulu: libfoxloader.dll_unloaded, verze:
0.0.0.0, časové razítko: 0x5051e390 Kód výjimky: 0xc0000005 Posun chyby: 0x65aa83ae
ID
chybujícího procesu: 0x880 Čas spuštění chybující aplikace: 0x01ceccaf25431b81 Cesta
k chybující aplikaci: C:\Windows\Explorer.EXE Cesta k chybujícímu modulu: libfoxloader.dll
ID
zprávy: 3a701977-38a3-11e3-b371-00265ea4d159

Error - 19.10.2013 17:50:57 | Computer Name = Jane-PC | Source = WinMgmt | ID = 10
Description =

Error - 21.10.2013 3:59:49 | Computer Name = Jane-PC | Source = WinMgmt | ID = 10
Description =

Error - 21.10.2013 10:03:49 | Computer Name = Jane-PC | Source = WinMgmt | ID = 10
Description =

Error - 21.10.2013 10:20:39 | Computer Name = Jane-PC | Source = SideBySide | ID = 16842815
Description = Generování kontextu aktivace pro C:\Program Files\Common Files\Adobe
AIR\Versions\1.0\Adobe AIR.dll se nezdařilo. Chyba v souboru manifestu nebo zásady
C:\Program Files\Common Files\Adobe AIR\Versions\1.0\Adobe AIR.dll na řádku 3. Hodnota
MAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINOR atributu version
v prvku assemblyIdentity je neplatná.

[ OSession Events ]
Error - 25.9.2013 4:33:03 | Computer Name = Jane-PC | Source = Microsoft Office 12 Sessions | ID = 7001
Description = ID: 1, Application Name: Microsoft Office Excel, Application Version:
12.0.6679.5000, Microsoft Office Version: 12.0.6612.1000. This session lasted 1399
seconds with 1320 seconds of active time. This session ended with a crash.

[ System Events ]
Error - 28.5.2013 3:47:09 | Computer Name = Jane-PC | Source = DCOM | ID = 10016
Description =

Error - 30.5.2013 6:23:17 | Computer Name = Jane-PC | Source = Service Control Manager | ID = 7026
Description = Zavedení následujícího ovladače pro spouštění počítače nebo systému
se nezdařilo: cdrom

Error - 30.5.2013 6:24:09 | Computer Name = Jane-PC | Source = DCOM | ID = 10016
Description =

Error - 31.5.2013 6:50:32 | Computer Name = Jane-PC | Source = DCOM | ID = 10016
Description =

Error - 1.6.2013 8:27:47 | Computer Name = Jane-PC | Source = DCOM | ID = 10010
Description =

Error - 3.6.2013 5:27:40 | Computer Name = Jane-PC | Source = Service Control Manager | ID = 7026
Description = Zavedení následujícího ovladače pro spouštění počítače nebo systému
se nezdařilo: cdrom

Error - 3.6.2013 5:28:37 | Computer Name = Jane-PC | Source = DCOM | ID = 10016
Description =

Error - 4.6.2013 6:11:58 | Computer Name = Jane-PC | Source = Service Control Manager | ID = 7026
Description = Zavedení následujícího ovladače pro spouštění počítače nebo systému
se nezdařilo: cdrom

Error - 4.6.2013 6:12:54 | Computer Name = Jane-PC | Source = DCOM | ID = 10016
Description =

Error - 4.6.2013 7:53:08 | Computer Name = Jane-PC | Source = DCOM | ID = 10010
Description =

< End of report >

#21 Příspěvek od **Márty84** » 22 říj 2013 09:16

Blizime se k cili

Pokud tam jeste je, odinstalujte MBAM.

Ten soubor, ktery jste zminila na zacatku, patri k Seznam Software. Pokud to nepouzivate, odinstaloval bych to. Nektere stranky to dokonce oznacuji za skodnou. Nebo to mam odpalit nasilim? Je tam toho vic, ale nevim, zda neco z toho pouzivate.

[2012.09.13 15:24:48 | 001,009,288 | ---- | M] () -- C:\Users\Jane\AppData\Roaming\Seznam.cz\szninstall.exe
[2012.09.14 14:06:28 | 002,515,592 | ---- | M] () -- C:\Users\Jane\AppData\Roaming\Seznam.cz\sznsetup.exe
[2013.02.13 16:16:08 | 000,942,080 | ---- | M] () -- C:\Users\Jane\AppData\Roaming\Seznam.cz\bin\chromeUpdatePref.exe
[2013.02.04 15:53:30 | 000,055,808 | ---- | M] () -- C:\Users\Jane\AppData\Roaming\Seznam.cz\bin\ffkill.exe
[2013.01.22 14:55:12 | 000,456,696 | ---- | M] () -- C:\Users\Jane\AppData\Roaming\Seznam.cz\bin\szndesktop.exe
[2013.01.22 14:54:46 | 000,092,152 | ---- | M] () -- C:\Users\Jane\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe

Vypnete antivir, at nebrani programu v praci.

Znovu spustte OTL jako spravce
Do spodniho okna vlozte nasledujici text (vcetne te dvojtecky pred slovem commands)

Kód: Vybrat vše

:commands
[EMPTYTEMP]
[EMPTYFLASH]
[Purity]
[CreateRestorePoint]

:services
AdobeARMservice
gupdate
AdobeFlashPlayerUpdateSvc
gupdatem

:files
%windir%\system32\*.tmp.dll /s
%windir%\system32\SET*.tmp /s
%windir%\*.tmp
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job

:otl
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKU\S-1-5-21-3723644802-1017424679-4293840486-1000\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE10SR
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
[8 C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp files -> C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp -> ]
[11 C:\Windows\Installer\*.tmp files -> C:\Windows\Installer\*.tmp -> ]

Kliknete na Opravit a nechte program pracovat. Pri otazce na restart souhlaste.
Po restartu se objevi novy log, ten sem dejte.

Jane86 · #22 Příspěvek od **Jane86** » 22 říj 2013 10:55

MBAM smazáno, odinstalováno. OTL říká toto:

All processes killed
========== COMMANDS ==========

[EMPTYTEMP]

User: All Users

User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 0 bytes

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 0 bytes

User: Jane
->Temp folder emptied: 1942570 bytes
->Temporary Internet Files folder emptied: 9339219 bytes
->Java cache emptied: 0 bytes
->FireFox cache emptied: 156162208 bytes
->Flash cache emptied: 993 bytes

User: Public
->Temp folder emptied: 0 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 608 bytes
RecycleBin emptied: 82400 bytes

Total Files Cleaned = 160,00 mb

[EMPTYFLASH]

User: All Users

User: Default
->Flash cache emptied: 0 bytes

User: Default User
->Flash cache emptied: 0 bytes

User: Jane
->Flash cache emptied: 0 bytes

User: Public

Total Flash Files Cleaned = 0,00 mb

Restore point Set: OTL Restore Point
========== SERVICES/DRIVERS ==========
Service AdobeARMservice stopped successfully!
Service AdobeARMservice deleted successfully!
Service gupdate stopped successfully!
Service gupdate deleted successfully!
Service AdobeFlashPlayerUpdateSvc stopped successfully!
Service AdobeFlashPlayerUpdateSvc deleted successfully!
Service gupdatem stopped successfully!
Service gupdatem deleted successfully!
========== FILES ==========
File/Folder C:\Windows\system32\*.tmp.dll not found.
File/Folder C:\Windows\system32\SET*.tmp not found.
File/Folder C:\Windows\*.tmp not found.
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job moved successfully.
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job moved successfully.
========== OTL ==========
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ not found.
Registry key HKEY_USERS\S-1-5-21-3723644802-1017424679-4293840486-1000\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ not found.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad\\WebCheck deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{E6FB5E20-DE35-11CF-9C87-00AA005127ED}\ not found.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAP1C95.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAP2F78.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAP5E64.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAP7C7F.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAP8545.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAPBE9D.tmp\mcstoredb.dll deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAPBE9D.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAPC33A.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAPC95E.tmp folder deleted successfully.
C:\Windows\Installer\MSI18F9.tmp deleted successfully.
C:\Windows\Installer\MSI711A.tmp deleted successfully.
C:\Windows\Installer\MSI76A7.tmp deleted successfully.
C:\Windows\Installer\MSI783D.tmp deleted successfully.
C:\Windows\Installer\MSI8A0A.tmp deleted successfully.
C:\Windows\Installer\MSIA25B.tmp deleted successfully.
C:\Windows\Installer\MSIA604.tmp deleted successfully.
C:\Windows\Installer\MSIA76C.tmp deleted successfully.
C:\Windows\Installer\MSIC3D3.tmp deleted successfully.
C:\Windows\Installer\MSIC74D.tmp deleted successfully.
C:\Windows\Installer\MSIC7F9.tmp deleted successfully.

OTL by OldTimer - Version 3.2.69.0 log created on 10222013_112620

Files\Folders moved on Reboot...

PendingFileRenameOperations files...

Registry entries deleted on Reboot...

Tak to docela čumim, že je to od Seznamu. Na Seznamu používám pár emailů. Ani jeden z těch .exe v citaci mi nic neříkají, takže netuším, na kolik jsou důležité pro to, abych mohla maily používat. Jestli to s maily nijak nesouvisí, tak pryč s tím... Respektive, co se pro mě změní, když všechny ty nesmysly odstraníme?

#23 Příspěvek od **Márty84** » 22 říj 2013 19:18

S fungujicim mailem to nema nic spolecneho, takze to muzete odinstalovat

Vsechny tyto programy - vcetne pripadne instalace - spoustejte jako spravce (kliknete na ne pravym mysidlem a zvolte - Spustit jako spravce)

Prejmenujte ComboFix na Uninstall a spustte ho. CF by se mel odinstalovat.

vyosek píše: T-Cleaner http://tharifas.sweb.cz/T-Cleaner.exe
Stahnete a spustte

Pro potvrzeni volby mackejte A, Enter

Po pouziti utilitu smazte

Antiviry mohou utilitu chybne oznacit jako vir - jedna se o falesny poplach - takze v pohode stahnete (pripadne vypnete pri stahovani antivir)

Stahnete OTC http://oldtimer.geekstogo.com/OTC.exe , ulozte a spustte.
Kliknete na napis CleanUp a pote OK - Po uklidu dojde k restartu pc.

Stahnete TFC http://oldtimer.geekstogo.com/TFC.exe , ulozte a spustte
Kliknete na START a pote OK - Po uklidu dojde k restartu pc.
Po pouziti muzete programek smazat

Stahnete Ccleaner http://www.stahuj.centrum.cz/utility_a_ ... /ccleaner/ a spustte.
Pri instalaci pozor na toolbar (ci jine doplnky), jestli vam nabidne jeho instalaci, tak zruste zatrzitko.
Po spusteni se ocitnete ve funkci Cistic. Vlevo je spousta zatrzitek. Pozor dejte hlavne na kos, pokud nechate zatrzene, vzdy ho vysype.
Dale, podle toho jak je nastaven, smaze vsechna hesla ulozena na netu!!! Takze jestli mate nastavene, at si pocitac hesla pamatuje (coz neni pro bezpecnost dobre), budete je muset pak napsat znova rucne (napr mail, facebook, ruzna fora atd.)
Kliknete na Analyzovat a az dokonci analyzu, kliknete na Spustit Cleaner.
Potom kliknete vlevo na funkci Registry
Kliknete na Hledej problemy, kdyz najde, kliknete na Opravit problemy. Nabidne Vam zalohu, tu udelejte a ulozte ji tak, at ji v pripade potreby najdete.
Funkce Nastroje umoznuje odinstalovani programu. Je dukladnejsi nez samotny windows!

Defragmentujte disk(y)
Stahnete program Defraggler http://www.stahuj.centrum.cz/utility_a_ ... efraggler/
Pri instalaci opet pozor na toolbar
Po nainstalovani program spustte a kliknete na Analyzovat, po analyze kliknete na Defragmentovat a programek odvede svou praci.

Pak napiste, jak je na tom pc.

Jane86 · #24 Příspěvek od **Jane86** » 23 říj 2013 19:13

Všechno z té citace jsem smázla, ComboFix odinstalován, T-Cleaner, OTC a TFC proběhlo v pohodě. Ccleaner taky odvedl svou práci, zálohu mám. PC pak fragmenty přežvykoval skoro celou noc, a že asi bylo co

Jinak komp jede celkem svižně, už žádné nesmysly nehlásí, tak snad mu to vydrží co nejdéle.
Na ploše mi po tom našem řádění zůstaly dfsetup216, Defraggler a složka s reporty RogueKiller. Mám to smáznout?

Každopádně strašně moc děkuju za ochotu a pomoc

Doufám, že se těmihle službami regulérně živíte, protože takových mouloňů jako jsem já, je spousta, tak ať z toho taky něco máte

A fakt vás obdivuju, že se v těch šifrách z logů vyznáte.

#25 Příspěvek od **Márty84** » 23 říj 2013 19:22

Jane86 píše:Na ploše mi po tom našem řádění zůstaly dfsetup216, Defraggler a složka s reporty RogueKiller. Mám to smáznout?

Defraggler muzete nechat a treba jednou za ctvrt roku pouzit. Ale muzete ho taky odinstalovat a pak znovu nainstalovat, zalezi na vas. To ostatni urcite smazte

Cili vse jede jak ma a muzeme tema uzavrit?

A nemate vubec zac!

Nezivime se tim, je to jen nas konicek. Jsme tady jen ve svem volnem case (toho je bohuzel hodne malo

). Ale neco z toho mame! Radost, kdyz nekomu udelame radost!

Jane86 · #26 Příspěvek od **Jane86** » 23 říj 2013 19:32

Tak mě jste udělali obrovskou, protože jsem ani nedoufala, že by se ještě někde našli ochotní lidé, co by fakt chtěli pomoct a vzít problém z gruntu. A zvlášt takhle anonymně. Takže za mě

A téma můžem uzavřít...

#27 Příspěvek od **Márty84** » 23 říj 2013 19:38

No a presne proto to delame

Zahreje to u srdicka, kdyz je na konci uzivatel/ka spokojeny/a

Mejte se krasne a treba zase nekdy

VIRY.CZ

ChromeUpdatePref.exe

Re: ChromeUpdatePref.exe

Re: ChromeUpdatePref.exe

Re: ChromeUpdatePref.exe

Re: ChromeUpdatePref.exe

Re: ChromeUpdatePref.exe

Re: ChromeUpdatePref.exe

Re: ChromeUpdatePref.exe

Re: ChromeUpdatePref.exe

Re: ChromeUpdatePref.exe

Re: ChromeUpdatePref.exe

Re: ChromeUpdatePref.exe

Re: ChromeUpdatePref.exe