Logfile of random's system information tool 1.09 (written by random/random)
Run by MM at 2013-10-25 23:06:02
Microsoft Windows 7 Ultimate Service Pack 1
System drive C: has 359 GB (75%) free of 477 GB
Total RAM: 3326 MB (42% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 23:06:04, on 25.10.2013
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v10.0 (10.00.9200.16720)
Boot mode: Normal
Running processes:
C:\Windows\system32\taskhost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
C:\Program Files\Microsoft Security Client\msseces.exe
C:\Program Files\Canon\MyPrinter\BJMYPRT.EXE
C:\Program Files\ScanSoft\OmniPageSE4\OpWareSE4.exe
C:\Program Files\CyberLink\PowerDVD8\PDVD8Serv.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Users\MM\AppData\Local\Pokki\Engine\pokki.exe
C:\Users\MM\AppData\Roaming\ICQM\icq.exe
C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe
C:\Program Files\Nokia\Nokia Suite\NokiaSuite.exe
C:\Users\MM\AppData\Roaming\Dropbox\bin\Dropbox.exe
C:\Program Files\Genie9\Genie Timeline\GenieTimelineAgent.exe
C:\Users\MM\AppData\Local\Pokki\Engine\pokki.exe
C:\Users\MM\AppData\Local\Pokki\Engine\pokki.exe
C:\Program Files\PC Connectivity Solution\Transports\NclMSBTSrvEx.exe
C:\Windows\system32\wuauclt.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Users\MM\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\MM\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\MM\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\MM\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\MM\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\MM\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Windows\system32\SearchFilterHost.exe
D:\DATA_07 Instalace\PC údržba_instal\RSIT.exe
C:\Program Files\trend micro\MM.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://start.mysearchdial.com/?f=1&a=co ... 243925&ir=
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: (no name) - {D8278076-BC68-4484-9233-6E7F1628B56C} - (no file)
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll
O2 - BHO: DealPly Shopping - {ae48ed75-5a56-4c5f-bbce-6f1ac3875f66} - C:\Program Files\DealPly\DealPlyIE.dll
O2 - BHO: Soda PDF 5 IE Helper - {C737F472-1193-4281-BF53-A00B67AB3E19} - C:\Program Files\Soda PDF 5\PDFIEHelper.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
O3 - Toolbar: Soda PDF 5 IE Toolbar - {F335ABA2-FDB4-4644-92B2-5CC4B0FC91D6} - C:\Program Files\Soda PDF 5\PDFIEPlugin.dll
O4 - HKLM\..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe -s
O4 - HKLM\..\Run: [MSC] "C:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey
O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe"
O4 - HKLM\..\Run: [CanonSolutionMenu] C:\Program Files\Canon\SolutionMenu\CNSLMAIN.exe /logon
O4 - HKLM\..\Run: [CanonMyPrinter] C:\Program Files\Canon\MyPrinter\BJMyPrt.exe /logon
O4 - HKLM\..\Run: [SSBkgdUpdate] "C:\Program Files\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe" -Embedding -boot
O4 - HKLM\..\Run: [OpwareSE4] "C:\Program Files\ScanSoft\OmniPageSE4\OpwareSE4.exe"
O4 - HKLM\..\Run: [RemoteControl8] "C:\Program Files\CyberLink\PowerDVD8\PDVD8Serv.exe"
O4 - HKLM\..\Run: [PDVD8LanguageShortcut] "C:\Program Files\CyberLink\PowerDVD8\Language\Language.exe"
O4 - HKLM\..\Run: [NBKeyScan] "C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe"
O4 - HKLM\..\Run: [AdobeAAMUpdater-1.0] "C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [Standby] "c:\Program Files\Common Files\Corel\Standby\Standby.exe" -START
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [ICQ] C:\Users\MM\AppData\Roaming\ICQM\icq.exe -CU
O4 - HKCU\..\Run: [Pokki] C:\Windows\system32\rundll32.exe "%LOCALAPPDATA%\Pokki\Engine\LaunchDeskband.dll",RunLaunchDeskband
O4 - HKCU\..\Run: [IndxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe" ASO-616B5711-6DAE-4795-A05F-39A1E5104020
O4 - HKCU\..\Run: [NokiaSuite.exe] C:\Program Files\Nokia\Nokia Suite\NokiaSuite.exe -tray
O4 - HKCU\..\Run: [Google Update] "C:\Users\MM\AppData\Local\Google\Update\GoogleUpdate.exe" /c
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - Startup: Dropbox.lnk = MM\AppData\Roaming\Dropbox\bin\Dropbox.exe
O4 - Global Startup: Akcelerátor spuštění AutoCADu.lnk = C:\Program Files\Common Files\Autodesk Shared\acstart17.exe
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Office Excel - res://C:\PROGRA~1\MICROS~3\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: ICQ7M - {781B39EC-2E18-41FC-9B00-B84E4FFCA85F} - C:\Program Files\ICQ7M\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ7M - {781B39EC-2E18-41FC-9B00-B84E4FFCA85F} - C:\Program Files\ICQ7M\ICQ.exe
O9 - Extra button: Zdroje informací - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\OFFICE11\REFIEBAR.DLL
O9 - Extra button: ICQ - {086C8477-4F71-4550-87FB-AF0AE8DF3E98} - C:\Users\MM\AppData\Roaming\ICQM\icq.exe (HKCU)
O9 - Extra 'Tools' menuitem: ICQ - {086C8477-4F71-4550-87FB-AF0AE8DF3E98} - C:\Users\MM\AppData\Roaming\ICQM\icq.exe (HKCU)
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: Garmin Communicator Plug-In - https://static.garmincdn.com/gcp/ie/4.0 ... rol_32.CAB
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: ABBYY FineReader 9.0 PE Licensing Service (ABBYY.Licensing.FineReader.Professional.9.0) - ABBYY (BIT Software) - C:\Program Files\Common Files\ABBYY\FineReader\9.00\Licensing\PE\NetworkLicenseServer.exe
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: AMD External Events Utility - AMD - C:\Windows\system32\atiesrxx.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: Autodesk Licensing Service - Autodesk - C:\Program Files\Common Files\Autodesk Shared\Service\AdskScSrv.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: SluA3ba DealPly Live (dealplylive) (dealplylive) - DealPly Technologies Ltd - C:\Program Files\DealPlyLive\Update\DealPlyLive.exe
O23 - Service: SluA3ba DealPly Live (dealplylivem) (dealplylivem) - DealPly Technologies Ltd - C:\Program Files\DealPlyLive\Update\DealPlyLive.exe
O23 - Service: FLEXnet Licensing Service - Acresso Software Inc. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Genie Timeline Service (GenieTimelineService) - Genie9 - C:\Program Files\Genie9\Genie Timeline\GenieTimelineService.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: Nero BackItUp Scheduler 3 - Nero AG - C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe
O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe
O23 - Service: PLFlash DeviceIoControl Service - Prolific Technology Inc. - C:\Windows\system32\IoctlSvc.exe
O23 - Service: Protexis Licensing V2 (PSI_SVC_2) - Protexis Inc. - c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe
O23 - Service: ServiceLayer - Nokia - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: Soda PDF 5 Helper Service - LULU Software - C:\Program Files\Soda PDF 5\HelperService.exe
O23 - Service: Soda PDF 5 Service - LULU Software - C:\Program Files\Soda PDF 5\ConversionService.exe
--
End of file - 9906 bytes
======Scheduled tasks folder======
C:\Windows\tasks\Dealply.job
C:\Windows\tasks\DealPlyLiveUpdateTaskMachineCore.job
C:\Windows\tasks\DealPlyLiveUpdateTaskMachineUA.job
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1107837428-173974533-547177936-1000Core.job
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1107837428-173974533-547177936-1000UA.job
C:\Windows\tasks\Torntv 2-codedownloader.job
C:\Windows\tasks\Torntv 2-enabler.job
C:\Windows\tasks\Torntv 2-updater.job
=========Mozilla firefox=========
ProfilePath - C:\Users\MM\AppData\Roaming\Mozilla\Firefox\Profiles\cdxqgtr4.default
prefs.js - "browser.startup.homepage" - "http://www.seznam.cz/"
"FFSodaPDF5Converter@sodapdf.com"=C:\Program Files\Soda PDF 5\FFSoda5Ext
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/AuthorwarePlayer]
"Description"=Adobe Authorware Player
"Path"=C:\Windows\system32\Macromed\AUTHORWA\np32asw.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 11.6.602.180 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF32_11_6_602_180.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/ShockwavePlayer]
"Description"=Adobe Shockwave Player
"Path"=C:\Windows\system32\Adobe\Director\np32dsw_1200112.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Apple.com/iTunes,version=]
"Description"=iTunes Detector Plug-in
"Path"=
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Apple.com/iTunes,version=1.0]
"Description"=
"Path"=C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@garmin.com/GpsControl]
"Description"=Garmin GPS Control for Firefox
"Path"=C:\Program Files\Garmin GPS Plugin\npGarmin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Google.com/GoogleEarthPlugin]
"Description"=Google Earth in your browser
"Path"=C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=10.45.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=10.45.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@nokia.com/EnablerPlugin]
"Description"=Nokia Suite Enabler Plugin
"Path"=C:\Program Files\Nokia\Nokia Suite\npNokiaSuiteEnabler.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.dpliveupdate.com/DealPlyLive Update;version=3]
"Description"=DealPlyLive Update
"Path"=C:\Program Files\DealPlyLive\Update\1.3.23.0\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.dpliveupdate.com/DealPlyLive Update;version=9]
"Description"=DealPlyLive Update
"Path"=C:\Program Files\DealPlyLive\Update\1.3.23.0\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll
C:\Users\MM\AppData\Roaming\Mozilla\Firefox\Profiles\cdxqgtr4.default\extensions\
staged
trash
WebSiteRecommendation@weliketheweb.com
{d4f1c433-f9c3-49f2-8645-37dbeca19e90}
C:\Users\MM\AppData\Roaming\Mozilla\Firefox\Profiles\cdxqgtr4.default\searchplugins\
conduit.xml
Mysearchdial.xml
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2013-10-19 462760]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{ae48ed75-5a56-4c5f-bbce-6f1ac3875f66}]
DealPly Shopping - C:\Program Files\DealPly\DealPlyIE.dll [2013-06-04 100384]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C737F472-1193-4281-BF53-A00B67AB3E19}]
Soda PDF 5 IE Helper - C:\Program Files\Soda PDF 5\PDFIEHelper.dll [2013-01-25 91488]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2013-10-19 171944]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{F335ABA2-FDB4-4644-92B2-5CC4B0FC91D6} - Soda PDF 5 IE Toolbar - C:\Program Files\Soda PDF 5\PDFIEPlugin.dll [2013-01-25 691040]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [2013-02-05 11738184]
"MSC"=C:\Program Files\Microsoft Security Client\msseces.exe [2013-08-12 995176]
"APSDaemon"=C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe [2013-04-21 59720]
"CanonSolutionMenu"=C:\Program Files\Canon\SolutionMenu\CNSLMAIN.exe [2007-04-03 644696]
"CanonMyPrinter"=C:\Program Files\Canon\MyPrinter\BJMyPrt.exe [2007-04-03 1603152]
"SSBkgdUpdate"=C:\Program Files\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe [2006-10-25 210472]
"OpwareSE4"=C:\Program Files\ScanSoft\OmniPageSE4\OpwareSE4.exe [2007-02-04 79400]
"RemoteControl8"=C:\Program Files\CyberLink\PowerDVD8\PDVD8Serv.exe [2008-03-20 83240]
"PDVD8LanguageShortcut"=C:\Program Files\CyberLink\PowerDVD8\Language\Language.exe [2007-12-14 50472]
"NBKeyScan"=C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe [2008-06-08 2221352]
"AdobeAAMUpdater-1.0"=C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2010-03-06 500208]
"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-04-04 958576]
"Standby"=c:\Program Files\Common Files\Corel\Standby\Standby.exe [2010-05-17 105632]
"iTunesHelper"=C:\Program Files\iTunes\iTunesHelper.exe [2013-09-17 152392]
"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2013-07-02 254336]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"ICQ"=C:\Users\MM\AppData\Roaming\ICQM\icq.exe [2013-10-09 27598184]
"Pokki"=C:\Users\MM\AppData\Local\Pokki\Engine\LaunchDeskband.dll [2013-06-06 273688]
"IndxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"=C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe [2008-06-24 1840424]
""= []
"NokiaSuite.exe"=C:\Program Files\Nokia\Nokia Suite\NokiaSuite.exe [2013-04-19 1090912]
"Google Update"=C:\Users\MM\AppData\Local\Google\Update\GoogleUpdate.exe [2013-07-04 116648]
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Akcelerátor spuštění AutoCADu.lnk - C:\Program Files\Common Files\Autodesk Shared\acstart17.exe
C:\Users\MM\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Dropbox.lnk - C:\Users\MM\AppData\Roaming\Dropbox\bin\Dropbox.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MsMpSvc]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableLinkedConnections"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvyu"=msyuv.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"vidc.yvu9"=tsbyuv.dll
"msacm.l3acm"=L3codeca.acm
"vidc.cvid"=iccvid.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"vidc.ffds"=ff_vfw.dll
"msacm.avis"=ff_acm.acm
"msacm.aacacm"=AACACM.acm
"msacm.ac3acm"=AC3ACM.acm
"VIDC.CSCD"=CamCodec.dll
"VIDC.CFHD"=CFHD.dll
"msacm.lameacm"=LameACM.acm
"VIDC.LAGS"=lagarith.dll
"VIDC.MLCY"=mlc.dll
"VIDC.ULRA"=C:\Windows\system32\utv_vcm.dll
"VIDC.ULRG"=C:\Windows\system32\utv_vcm.dll
"VIDC.ULY0"=C:\Windows\system32\utv_vcm.dll
"VIDC.ULY2"=C:\Windows\system32\utv_vcm.dll
"vidc.x264"=C:\PROGRA~1\x264vfw\x264vfw.dll
"vidc.XVID"=xvidvfw.dll
"VIDC.VP80"=vp8vfw.dll
"VIDC.IV50"=ir50_32.dll
"VIDC.IV41"=ir41_32.dll
"msacm.iac2"=iac25_32.ax
"VIDC.GEOX"=GeoCodec.dll
"VIDC.GEOV"=GeoCodec.dll
"VIDC.GEOS"=GeoCodecD.dll
"VIDC.VMnc"=vmnc.dll
"vidc.dvsd"=pdvcodec.dll
"msacm.dvacm"=c:\PROGRA~1\COMMON~1\ULEADS~1\Vio\Dvacm.acm
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
.scr - open - "C:\Windows\system32\NOTEPAD.EXE" "%1"
.scr - install -
.scr - config -
======List of files/folders created in the last 1 month======
2013-10-25 23:00:53 ----D---- C:\Program Files\trend micro
2013-10-25 22:59:35 ----D---- C:\rsit
2013-10-24 22:14:46 ----D---- C:\Program Files\Mozilla Thunderbird
2013-10-19 10:33:39 ----D---- C:\Program Files\Common Files\Java
2013-10-19 10:33:32 ----A---- C:\Windows\system32\javaws.exe
2013-10-19 10:33:26 ----A---- C:\Windows\system32\WindowsAccessBridge.dll
2013-10-19 10:33:26 ----A---- C:\Windows\system32\javaw.exe
2013-10-19 10:33:26 ----A---- C:\Windows\system32\java.exe
2013-10-19 10:11:11 ----D---- C:\ProgramData\Oracle
2013-10-19 09:55:44 ----D---- C:\ProgramData\Sun
2013-10-18 09:51:15 ----D---- C:\Windows\Sun
2013-10-11 10:42:32 ----A---- C:\Windows\system32\jscript9.dll
2013-10-11 10:42:32 ----A---- C:\Windows\system32\jscript.dll
2013-10-11 10:42:31 ----A---- C:\Windows\system32\jsproxy.dll
2013-10-11 10:42:31 ----A---- C:\Windows\system32\iesetup.dll
2013-10-11 10:42:30 ----A---- C:\Windows\system32\msfeeds.dll
2013-10-11 10:42:30 ----A---- C:\Windows\system32\ieui.dll
2013-10-11 10:42:30 ----A---- C:\Windows\system32\iernonce.dll
2013-10-11 10:42:30 ----A---- C:\Windows\system32\ie4uinit.exe
2013-10-11 10:42:29 ----A---- C:\Windows\system32\urlmon.dll
2013-10-11 10:42:29 ----A---- C:\Windows\system32\RegisterIEPKEYs.exe
2013-10-11 10:42:29 ----A---- C:\Windows\system32\iesysprep.dll
2013-10-11 10:42:29 ----A---- C:\Windows\system32\iertutil.dll
2013-10-11 10:42:27 ----A---- C:\Windows\system32\wininet.dll
2013-10-11 10:42:27 ----A---- C:\Windows\system32\ieframe.dll
2013-10-11 10:42:24 ----A---- C:\Windows\system32\mshtml.dll
2013-10-11 08:52:29 ----A---- C:\Windows\system32\comctl32.dll
2013-10-11 08:52:27 ----A---- C:\Windows\system32\drivers\usbscan.sys
2013-10-11 08:52:27 ----A---- C:\Windows\system32\drivers\hidclass.sys
2013-10-11 08:52:26 ----A---- C:\Windows\system32\drivers\hidparse.sys
2013-10-11 08:52:24 ----A---- C:\Windows\system32\mswsock.dll
2013-10-11 08:52:24 ----A---- C:\Windows\system32\drivers\tcpip.sys
2013-10-11 08:52:24 ----A---- C:\Windows\system32\drivers\afd.sys
2013-10-11 08:52:23 ----A---- C:\Windows\system32\drivers\usbser.sys
2013-10-11 08:52:21 ----A---- C:\Windows\system32\drivers\dxgkrnl.sys
2013-10-11 08:52:18 ----A---- C:\Windows\system32\ntkrnlpa.exe
2013-10-11 08:52:17 ----A---- C:\Windows\system32\tdh.dll
2013-10-11 08:52:17 ----A---- C:\Windows\system32\ntoskrnl.exe
2013-10-11 08:52:17 ----A---- C:\Windows\system32\ntdll.dll
2013-10-11 08:52:16 ----A---- C:\Windows\system32\advapi32.dll
2013-10-11 08:52:13 ----A---- C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2013-10-11 08:52:11 ----A---- C:\Windows\system32\lpk.dll
2013-10-11 08:52:11 ----A---- C:\Windows\system32\fontsub.dll
2013-10-11 08:52:11 ----A---- C:\Windows\system32\dciman32.dll
2013-10-11 08:52:11 ----A---- C:\Windows\system32\atmlib.dll
2013-10-11 08:52:11 ----A---- C:\Windows\system32\atmfd.dll
2013-10-11 08:52:09 ----A---- C:\Windows\system32\scavengeui.dll
2013-10-11 08:52:05 ----A---- C:\Windows\system32\win32k.sys
2013-10-11 08:52:00 ----A---- C:\Windows\system32\WebClnt.dll
2013-10-11 08:52:00 ----A---- C:\Windows\system32\drivers\mrxdav.sys
2013-10-11 08:52:00 ----A---- C:\Windows\system32\davclnt.dll
2013-10-11 08:51:58 ----A---- C:\Windows\system32\drivers\usbcir.sys
2013-10-11 08:51:57 ----A---- C:\Windows\system32\drivers\Wdf01000.sys
2013-10-09 23:04:45 ----D---- C:\Users\MM\AppData\Roaming\ICQM
2013-10-09 23:04:25 ----D---- C:\Users\MM\AppData\Roaming\ICQ-Profile
2013-10-05 18:02:56 ----D---- C:\Program Files\WebSite X5 v10 - Home
2013-10-05 17:37:33 ----D---- C:\Users\MM\AppData\Roaming\Ashampoo Slideshow Studio 2013
======List of files/folders modified in the last 1 month======
2013-10-25 23:06:04 ----D---- C:\Windows\Prefetch
2013-10-25 23:05:13 ----D---- C:\Windows\Temp
2013-10-25 23:00:53 ----RD---- C:\Program Files
2013-10-25 22:46:34 ----D---- C:\Program Files\CCleaner
2013-10-25 19:24:00 ----D---- C:\Windows\system32\config
2013-10-25 11:50:43 ----D---- C:\Users\MM\AppData\Roaming\Dropbox
2013-10-25 11:05:02 ----D---- C:\Windows\system32\catroot
2013-10-25 09:48:25 ----D---- C:\Program Files\Mozilla Firefox
2013-10-25 09:36:26 ----D---- C:\Program Files\Mozilla Maintenance Service
2013-10-24 19:00:38 ----SHD---- C:\System Volume Information
2013-10-21 22:35:49 ----D---- C:\Windows\System32
2013-10-21 22:35:49 ----D---- C:\Windows\inf
2013-10-21 22:35:49 ----A---- C:\Windows\system32\PerfStringBackup.INI
2013-10-19 16:51:10 ----D---- C:\Windows\system32\catroot2
2013-10-19 10:33:40 ----SHD---- C:\Windows\Installer
2013-10-19 10:33:39 ----D---- C:\Program Files\Common Files
2013-10-19 10:11:11 ----HD---- C:\ProgramData
2013-10-18 09:51:15 ----D---- C:\Windows
2013-10-13 16:52:06 ----D---- C:\Garmin
2013-10-13 08:26:24 ----D---- C:\Windows\system32\wdi
2013-10-12 11:22:06 ----D---- C:\Users\MM\AppData\Roaming\Corel
2013-10-11 20:00:52 ----D---- C:\Users\MM\AppData\Roaming\Vso
2013-10-11 18:10:54 ----D---- C:\Windows\rescache
2013-10-11 17:41:30 ----D---- C:\Windows\Microsoft.NET
2013-10-11 17:41:04 ----RSD---- C:\Windows\assembly
2013-10-11 17:17:11 ----D---- C:\Windows\winsxs
2013-10-11 17:15:10 ----D---- C:\Windows\system32\drivers
2013-10-11 17:15:08 ----D---- C:\Windows\system32\en-US
2013-10-11 17:15:08 ----D---- C:\Windows\system32\cs-CZ
2013-10-11 17:15:07 ----D---- C:\Program Files\Internet Explorer
2013-10-11 17:15:04 ----D---- C:\Windows\system32\DriverStore
2013-10-11 10:48:52 ----D---- C:\Windows\system32\MRT
2013-10-11 10:43:06 ----A---- C:\Windows\system32\MRT.exe
2013-10-09 23:13:46 ----D---- C:\Program Files\Microsoft Security Client
2013-10-09 23:04:11 ----D---- C:\Users\MM\AppData\Roaming\ICQ
2013-10-05 17:58:12 ----D---- C:\Windows\SoftwareDistribution
2013-10-05 17:37:06 ----D---- C:\ProgramData\Ashampoo
2013-10-05 17:37:03 ----D---- C:\Program Files\Ashampoo
2013-10-03 21:54:46 ----D---- C:\Fotografie-iPad
2013-10-03 21:53:36 ----D---- C:\Program Files\KMPlayer
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 JRAID;JRAID; C:\Windows\system32\DRIVERS\jraid.sys [2012-09-17 106296]
R0 MpFilter;Microsoft Malware Protection Driver; C:\Windows\system32\DRIVERS\MpFilter.sys [2013-06-18 211560]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12368]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 173440]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-20 388096]
R1 MpKsl2ba53184;MpKsl2ba53184; \??\C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{E94CC3A0-B051-4123-BD46-7754AF0EBE00}\MpKsl2ba53184.sys [2013-10-25 40392]
R2 NisDrv;Microsoft Network Inspection System; C:\Windows\system32\DRIVERS\NisDrvWFP.sys [2013-06-18 107392]
R2 Parvdm;Parvdm; C:\Windows\system32\DRIVERS\parvdm.sys [2009-07-14 8704]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2012-03-29 9164800]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2012-03-28 265216]
R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\Windows\system32\DRIVERS\GEARAspiWDM.sys [2012-08-21 26840]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2013-02-05 2602888]
R3 pcouffin;VSO Software pcouffin; C:\Windows\System32\Drivers\pcouffin.sys [2013-06-02 47360]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt86win7.sys [2012-12-27 614624]
S3 aic78xx;aic78xx; C:\Windows\system32\drivers\djsvs.sys [2009-07-14 70720]
S3 amdagp;AMD AGP Bus Filter Driver; C:\Windows\system32\drivers\amdagp.sys [2009-07-14 53312]
S3 atikmdag;atikmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2012-03-29 9164800]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60x.sys [2009-07-14 229888]
S3 dmvsc;dmvsc; C:\Windows\system32\drivers\dmvsc.sys [2010-11-20 62464]
S3 nmwcd;Nokia USB Phone Parent Driver; C:\Windows\system32\drivers\ccdcmb.sys [2013-01-23 18560]
S3 nmwcdc;Nokia USB Communication Driver; C:\Windows\system32\drivers\ccdcmbo.sys [2013-01-23 23168]
S3 nmwcdnsu;Nokia USB Flashing Phone Parent; C:\Windows\system32\drivers\nmwcdnsu.sys [2013-01-23 137600]
S3 nmwcdnsuc;Nokia USB Flashing Generic; C:\Windows\system32\drivers\nmwcdnsuc.sys [2013-01-23 8576]
S3 OlyCamComm;OLYMPUS USB Communication Device; C:\Windows\system32\DRIVERS\OlyCamComm.sys [2009-09-10 21648]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\Windows\system32\DRIVERS\pccsmcfd.sys [2012-10-17 19072]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-20 133632]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 14848]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-20 5632]
S3 sisagp;SIS AGP Bus Filter; C:\Windows\system32\drivers\sisagp.sys [2009-07-14 52304]
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-20 28032]
S3 Synth3dVsc;Synth3dVsc; C:\Windows\System32\drivers\synth3dvsc.sys [2010-11-20 77184]
S3 terminpt;Microsoft Remote Desktop Input Driver; C:\Windows\system32\drivers\terminpt.sys [2012-08-23 24064]
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\Windows\System32\drivers\tsusbflt.sys [2012-08-23 49664]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2012-08-23 27136]
S3 tsusbhub;@%SystemRoot%\system32\drivers\tsusbhub.sys,-1; C:\Windows\system32\drivers\tsusbhub.sys [2010-11-20 112640]
S3 upperdev;upperdev; C:\Windows\system32\DRIVERS\usbser_lowerflt.sys [2013-01-23 8192]
S3 USBAAPL;Apple Mobile USB Driver; C:\Windows\System32\Drivers\usbaapl.sys [2012-12-13 45056]
S3 usbscan;Ovladač skeneru USB; C:\Windows\system32\drivers\usbscan.sys [2013-07-03 36352]
S3 usbser;USB Modem Driver; C:\Windows\system32\drivers\usbser.sys [2013-08-29 28160]
S3 UsbserFilt;UsbserFilt; C:\Windows\system32\DRIVERS\usbser_lowerfltj.sys [2013-01-23 8192]
S3 VGPU;VGPU; C:\Windows\System32\drivers\rdvgkmd.sys []
S3 viaagp;VIA AGP Bus Filter; C:\Windows\system32\drivers\viaagp.sys [2009-07-14 53328]
S3 ViaC7;VIA C7 Processor Driver; C:\Windows\system32\drivers\viac7.sys [2009-07-14 52736]
S3 vmbus;vmbus; C:\Windows\system32\drivers\vmbus.sys [2010-11-20 175360]
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-20 17920]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 35968]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 ABBYY.Licensing.FineReader.Professional.9.0;ABBYY FineReader 9.0 PE Licensing Service; C:\Program Files\Common Files\ABBYY\FineReader\9.00\Licensing\PE\NetworkLicenseServer.exe [2007-12-06 660768]
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [2013-05-11 65640]
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2012-03-29 163328]
R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2013-09-07 55624]
R2 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2011-08-30 390504]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 20992]
R2 GenieTimelineService;Genie Timeline Service; C:\Program Files\Genie9\Genie Timeline\GenieTimelineService.exe [2012-04-11 299648]
R2 MsMpSvc;Microsoft Antimalware Service; c:\Program Files\Microsoft Security Client\MsMpEng.exe [2013-08-12 22208]
R2 Nero BackItUp Scheduler 3;Nero BackItUp Scheduler 3; C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe [2008-06-08 877864]
R2 PLFlash DeviceIoControl Service;PLFlash DeviceIoControl Service; C:\Windows\system32\IoctlSvc.exe [2006-12-19 81920]
R2 PSI_SVC_2;Protexis Licensing V2; c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe [2007-07-24 185632]
R2 Soda PDF 5 Helper Service;Soda PDF 5 Helper Service; C:\Program Files\Soda PDF 5\HelperService.exe [2013-01-25 1237856]
R2 Soda PDF 5 Service;Soda PDF 5 Service; C:\Program Files\Soda PDF 5\ConversionService.exe [2013-01-25 877920]
R3 iPod Service;iPod Service; C:\Program Files\iPod\bin\iPodService.exe [2013-09-17 553288]
R3 NisSrv;@C:\Program Files\Microsoft Security Client\MpAsDesc.dll,-243; c:\Program Files\Microsoft Security Client\NisSrv.exe [2013-08-12 295376]
R3 NMIndexingService;NMIndexingService; C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe [2008-06-24 537896]
R3 ServiceLayer;ServiceLayer; C:\Program Files\PC Connectivity Solution\ServiceLayer.exe [2013-04-18 737616]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 dealplylive;Služba DealPly Live (dealplylive); C:\Program Files\DealPlyLive\Update\DealPlyLive.exe [2013-07-25 148000]
S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2013-06-03 162408]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2010-03-18 35160]
S3 Autodesk Licensing Service;Autodesk Licensing Service; C:\Program Files\Common Files\Autodesk Shared\Service\AdskScSrv.exe [2013-06-14 77944]
S3 dealplylivem;Služba DealPly Live (dealplylivem); C:\Program Files\DealPlyLive\Update\DealPlyLive.exe [2013-07-25 148000]
S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2013-06-02 1045256]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2013-10-24 119408]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2013-05-30 1343400]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
-----------------EOF-----------------
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Prosím o preventivní kontrolu
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Re: Prosím o preventivní kontrolu
Zdravim 
Stahnete OTL http://oldtimer.geekstogo.com/OTL.exe a ulozte na plochu.
Kliknete na nej pravym mysidlem a levym na Spustit jako spravce
Oznacte polozky (dejte tam zatrzitka) Pro všechny uživatele, Kontrola na havěť "LOP" a Kontrola na havěť "Purity"
Do spodniho okna vlozte nasledujici text
Kliknete na Prohledat
Po skenu se vytvori dva logy (OTL.Txt a Extras.txt), oba sem vlozte (kdyz budou dlouhe, rozdelte je do vice prispevku).
Stahnete OTL http://oldtimer.geekstogo.com/OTL.exe a ulozte na plochu.Kliknete na nej pravym mysidlem a levym na Spustit jako spravce
Oznacte polozky (dejte tam zatrzitka) Pro všechny uživatele, Kontrola na havěť "LOP" a Kontrola na havěť "Purity"
Do spodniho okna vlozte nasledujici text
Kód: Vybrat vše
CREATERESTOREPOINT
netsvcs
drivers32
savembr:0
/md5start
adp3132.sys
AGP440.sys
ahcix86.sys
ahcix86s.sys
atapi.sys
autochk.exe
cdrom.sys
cngaudit.dll
cryptsvc.dll
eNetHook.dll
eventlog.dll
explorer.exe
hal.dll
Changer.sys
iaStor.sys
iastorv.sys
IdeChnDr.sys
isapnp.sys
JakNDis.sys
KR10N.sys
logevent.dll
lsass.exe
mv61xx.sys
ndis.sys
netlogon.dll
ntelogon.dll
nvata.sys
nvatabus.sys
nvgts.sys
nvraid.sys
nvrd32.sys
nvstor.sys
nvstor32.sys
scecli.dll
sceclt.dll
smss.exe
svchost.exe
symmpi.sys
tcpip.sys
userinit.exe
vaxscsi.sys
viamraid.sys
viasraid.sys
ViPrt.sys
winlogon.exe
ws2_32.dll
/md5stop
%systemroot%*.* /U /s
%SYSTEMDRIVE%\*.exe
%ALLUSERSPROFILE%\Application Data\*.
%ALLUSERSPROFILE%\Application Data\*.exe /s
%APPDATA%\*.
%APPDATA%\*.exe /s
%systemroot%\*. /mp /s
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\Tasks\*.job /lockedfiles
%systemroot%\system32\drivers\*.sys /lockedfiles
%systemroot%\System32\config\*.sav
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\system32\drivers\*.sys /3
%systemroot%\system32\*.* /3
%SYSTEMDRIVE%\*.exe
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s
reg query "HKLM\Software\Microsoft\Windows NT\CurrentVersion\winlogon" /v GinaDLL /c
reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv" /v ImagePath /c
reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS" /v ImagePath /c
type c:\boot.ini >> test.txt /c
%SystemDrive%\PhysicalMBR.bin /md5
*crack* /s
*keygen* /s
*AntiWPA* /s
*loader* /s
*minodlogin* /s
*tnod* /s
*AutoKMS* /s
*activator* /s
*serial* /s
*w7lxe* /s
Po skenu se vytvori dva logy (OTL.Txt a Extras.txt), oba sem vlozte (kdyz budou dlouhe, rozdelte je do vice prispevku).
Pokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Re: Prosím o preventivní kontrolu
OTL logfile created on: 26.10.2013 20:49:34 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\MM\Desktop
Ultimate Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.10.9200.16721)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy
3,25 Gb Total Physical Memory | 1,34 Gb Available Physical Memory | 41,22% Memory free
6,50 Gb Paging File | 4,43 Gb Available in Paging File | 68,22% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 465,76 Gb Total Space | 350,77 Gb Free Space | 75,31% Space Free | Partition Type: NTFS
Drive D: | 931,28 Gb Total Space | 376,76 Gb Free Space | 40,46% Space Free | Partition Type: FAT32
Computer Name: MM-PC | User Name: MM | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Processes (SafeList) ==========
PRC - [2013.10.26 20:47:45 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\MM\Desktop\OTL (1).exe
PRC - [2013.10.09 23:04:49 | 027,598,184 | ---- | M] (ICQ) -- C:\Users\MM\AppData\Roaming\ICQM\icq.exe
PRC - [2013.08.12 10:12:38 | 000,295,376 | ---- | M] (Microsoft Corporation) -- c:\Program Files\Microsoft Security Client\NisSrv.exe
PRC - [2013.08.12 10:12:38 | 000,022,208 | ---- | M] (Microsoft Corporation) -- c:\Program Files\Microsoft Security Client\MsMpEng.exe
PRC - [2013.08.12 10:11:20 | 000,995,176 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Security Client\msseces.exe
PRC - [2013.06.06 03:02:22 | 007,519,512 | ---- | M] (Pokki) -- C:\Users\MM\AppData\Local\Pokki\Engine\pokki.exe
PRC - [2013.05.29 23:20:09 | 000,049,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\taskhost.exe
PRC - [2013.05.25 02:47:30 | 027,776,968 | ---- | M] (Dropbox, Inc.) -- C:\Users\MM\AppData\Roaming\Dropbox\bin\Dropbox.exe
PRC - [2013.05.11 12:37:26 | 000,065,640 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
PRC - [2013.04.19 01:45:32 | 001,090,912 | ---- | M] (Nokia) -- C:\Program Files\Nokia\Nokia Suite\NokiaSuite.exe
PRC - [2013.04.18 11:06:42 | 000,737,616 | ---- | M] (Nokia) -- C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
PRC - [2013.04.18 11:06:32 | 000,179,024 | ---- | M] (Nokia) -- C:\Program Files\PC Connectivity Solution\Transports\NclUSBSrv.exe
PRC - [2013.04.18 11:06:26 | 000,127,312 | ---- | M] (Nokia) -- C:\Program Files\PC Connectivity Solution\Transports\NclRSSrv.exe
PRC - [2013.04.18 11:06:24 | 000,158,032 | ---- | M] (Nokia) -- C:\Program Files\PC Connectivity Solution\Transports\NclMSBTSrvEx.exe
PRC - [2013.01.25 17:42:00 | 001,237,856 | ---- | M] (LULU Software) -- C:\Program Files\Soda PDF 5\HelperService.exe
PRC - [2013.01.25 17:42:00 | 000,877,920 | ---- | M] (LULU Software) -- C:\Program Files\Soda PDF 5\ConversionService.exe
PRC - [2012.04.11 14:18:48 | 001,403,008 | ---- | M] (Genie9) -- C:\Program Files\Genie9\Genie Timeline\GenieTimeLineAgent.exe
PRC - [2012.04.11 14:18:48 | 000,299,648 | ---- | M] (Genie9) -- C:\Program Files\Genie9\Genie Timeline\GenieTimelineService.exe
PRC - [2012.03.29 00:19:32 | 000,405,504 | ---- | M] (AMD) -- C:\Windows\System32\atieclxx.exe
PRC - [2012.03.29 00:18:56 | 000,163,328 | ---- | M] (AMD) -- C:\Windows\System32\atiesrxx.exe
PRC - [2011.02.25 07:30:54 | 002,616,320 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
PRC - [2010.05.17 17:03:14 | 000,105,632 | ---- | M] (Corel) -- C:\Program Files\Common Files\Corel\Standby\Standby.exe
PRC - [2008.06.24 16:06:06 | 001,840,424 | ---- | M] (Nero AG) -- C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe
PRC - [2008.03.20 20:23:22 | 000,083,240 | ---- | M] (Cyberlink Corp.) -- C:\Program Files\CyberLink\PowerDVD8\PDVD8Serv.exe
PRC - [2007.12.06 21:03:41 | 000,660,768 | ---- | M] (ABBYY (BIT Software)) -- C:\Program Files\Common Files\ABBYY\FineReader\9.00\Licensing\PE\NetworkLicenseServer.exe
PRC - [2007.07.24 11:15:14 | 000,185,632 | ---- | M] (Protexis Inc.) -- c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe
PRC - [2007.04.03 18:50:00 | 001,603,152 | ---- | M] (CANON INC.) -- C:\Program Files\Canon\MyPrinter\BJMYPRT.EXE
PRC - [2007.02.04 12:02:14 | 000,079,400 | ---- | M] (Nuance Communications, Inc.) -- C:\Program Files\ScanSoft\OmniPageSE4\OpWareSE4.exe
========== Modules (No Company Name) ==========
MOD - [2013.10.09 23:04:53 | 000,851,456 | ---- | M] () -- C:\Users\MM\AppData\Roaming\ICQM\ICQ\dll\YLUSBTEL.dll
MOD - [2013.10.09 23:04:53 | 000,304,976 | ---- | M] () -- C:\Users\MM\AppData\Roaming\ICQM\ICQ\dll\mramenu.dll
MOD - [2013.10.09 02:02:43 | 000,415,184 | ---- | M] () -- C:\Users\MM\AppData\Local\Google\Chrome\Application\30.0.1599.101\ppgooglenaclpluginchrome.dll
MOD - [2013.10.09 02:02:41 | 004,055,504 | ---- | M] () -- C:\Users\MM\AppData\Local\Google\Chrome\Application\30.0.1599.101\pdf.dll
MOD - [2013.10.09 02:01:50 | 000,698,832 | ---- | M] () -- C:\Users\MM\AppData\Local\Google\Chrome\Application\30.0.1599.101\libglesv2.dll
MOD - [2013.10.09 02:01:49 | 000,099,792 | ---- | M] () -- C:\Users\MM\AppData\Local\Google\Chrome\Application\30.0.1599.101\libegl.dll
MOD - [2013.10.09 02:01:47 | 001,604,560 | ---- | M] () -- C:\Users\MM\AppData\Local\Google\Chrome\Application\30.0.1599.101\ffmpegsumo.dll
MOD - [2013.06.06 03:02:24 | 001,517,848 | ---- | M] () -- C:\Users\MM\AppData\Local\Pokki\ocdeskband_0.dll
MOD - [2013.04.19 01:46:32 | 000,276,832 | ---- | M] () -- C:\Program Files\Nokia\Nokia Suite\phonon4.dll
MOD - [2013.04.19 01:46:32 | 000,093,024 | ---- | M] () -- C:\Program Files\Nokia\Nokia Suite\qjson.dll
MOD - [2013.04.19 01:46:16 | 002,653,024 | ---- | M] () -- C:\Program Files\Nokia\Nokia Suite\QtXmlPatterns4.dll
MOD - [2013.04.19 01:46:16 | 000,364,384 | ---- | M] () -- C:\Program Files\Nokia\Nokia Suite\QtXml4.dll
MOD - [2013.04.19 01:46:14 | 011,166,560 | ---- | M] () -- C:\Program Files\Nokia\Nokia Suite\QtWebKit4.dll
MOD - [2013.04.19 01:46:12 | 001,346,912 | ---- | M] () -- C:\Program Files\Nokia\Nokia Suite\QtScript4.dll
MOD - [2013.04.19 01:46:12 | 000,206,176 | ---- | M] () -- C:\Program Files\Nokia\Nokia Suite\QtSql4.dll
MOD - [2013.04.19 01:46:10 | 001,014,624 | ---- | M] () -- C:\Program Files\Nokia\Nokia Suite\QtNetwork4.dll
MOD - [2013.04.19 01:46:10 | 000,720,736 | ---- | M] () -- C:\Program Files\Nokia\Nokia Suite\QtOpenGL4.dll
MOD - [2013.04.19 01:46:08 | 008,507,232 | ---- | M] () -- C:\Program Files\Nokia\Nokia Suite\QtGui4.dll
MOD - [2013.04.19 01:46:08 | 000,520,544 | ---- | M] () -- C:\Program Files\Nokia\Nokia Suite\QtMultimediaKit1.dll
MOD - [2013.04.19 01:46:06 | 002,480,992 | ---- | M] () -- C:\Program Files\Nokia\Nokia Suite\QtDeclarative4.dll
MOD - [2013.04.19 01:46:06 | 002,354,016 | ---- | M] () -- C:\Program Files\Nokia\Nokia Suite\QtCore4.dll
MOD - [2013.04.19 01:46:02 | 000,446,304 | ---- | M] () -- C:\Program Files\Nokia\Nokia Suite\sqldrivers\qsqlite4.dll
MOD - [2013.04.19 01:45:58 | 000,207,200 | ---- | M] () -- C:\Program Files\Nokia\Nokia Suite\Imageformats\qjpeg4.dll
MOD - [2013.04.19 01:45:58 | 000,035,680 | ---- | M] () -- C:\Program Files\Nokia\Nokia Suite\Imageformats\qico4.dll
MOD - [2013.04.19 01:45:56 | 000,033,120 | ---- | M] () -- C:\Program Files\Nokia\Nokia Suite\Imageformats\qgif4.dll
MOD - [2013.04.19 01:45:28 | 000,438,624 | ---- | M] () -- C:\Program Files\Nokia\Nokia Suite\NService.dll
MOD - [2013.04.19 01:44:48 | 000,606,560 | ---- | M] () -- C:\Program Files\Nokia\Nokia Suite\CommonUpdateChecker.dll
MOD - [2013.04.15 13:26:16 | 000,391,600 | ---- | M] () -- C:\Program Files\Nokia\Nokia Suite\ssoengine.dll
MOD - [2013.04.15 13:26:16 | 000,059,280 | ---- | M] () -- C:\Program Files\Nokia\Nokia Suite\securestorage.dll
MOD - [2013.03.13 22:48:52 | 024,978,944 | ---- | M] () -- C:\Users\MM\AppData\Roaming\Dropbox\bin\libcef.dll
MOD - [2013.01.26 04:53:28 | 000,716,288 | ---- | M] () -- C:\Users\MM\AppData\Local\Pokki\Engine\libGLESv2.dll
MOD - [2013.01.26 04:53:28 | 000,569,856 | ---- | M] () -- C:\Users\MM\AppData\Local\Pokki\Engine\ppGoogleNaClPluginChrome.dll
MOD - [2013.01.26 04:53:28 | 000,130,048 | ---- | M] () -- C:\Users\MM\AppData\Local\Pokki\Engine\libEGL.dll
MOD - [2013.01.26 00:07:56 | 001,400,846 | ---- | M] () -- C:\Users\MM\AppData\Local\Pokki\Engine\avcodec-54.dll
MOD - [2013.01.26 00:07:54 | 000,222,734 | ---- | M] () -- C:\Users\MM\AppData\Local\Pokki\Engine\avformat-54.dll
MOD - [2013.01.26 00:07:54 | 000,151,054 | ---- | M] () -- C:\Users\MM\AppData\Local\Pokki\Engine\avutil-51.dll
MOD - [2012.11.14 01:32:50 | 003,558,400 | ---- | M] () -- C:\Users\MM\AppData\Roaming\Dropbox\bin\wxmsw28uh_vc.dll
MOD - [2012.08.27 21:33:32 | 000,087,912 | ---- | M] () -- C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
MOD - [2012.08.27 21:33:08 | 001,242,512 | ---- | M] () -- C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
MOD - [2012.04.11 11:38:06 | 000,601,600 | ---- | M] () -- C:\Program Files\Genie9\Genie Timeline\GSBackupManager.gtl
MOD - [2012.04.11 11:38:06 | 000,396,288 | ---- | M] () -- C:\Program Files\Genie9\Genie Timeline\GSIndexDB.gtl
MOD - [2012.04.11 11:38:06 | 000,396,288 | ---- | M] () -- C:\Program Files\Genie9\Genie Timeline\GSIndexDB.dll
MOD - [2012.04.11 11:38:06 | 000,282,624 | ---- | M] () -- C:\Program Files\Genie9\Genie Timeline\OnlineHandler.gtl
MOD - [2012.04.11 11:38:06 | 000,282,624 | ---- | M] () -- C:\Program Files\Genie9\Genie Timeline\OnlineHandler.dll
MOD - [2012.04.11 11:38:06 | 000,280,064 | ---- | M] () -- C:\Program Files\Genie9\Genie Timeline\GSWatcher4.gtl
MOD - [2012.04.11 11:38:06 | 000,168,960 | ---- | M] () -- C:\Program Files\Genie9\Genie Timeline\Settings.gtl
MOD - [2012.04.11 11:38:06 | 000,168,960 | ---- | M] () -- C:\Program Files\Genie9\Genie Timeline\Settings.dll
MOD - [2012.04.11 11:38:06 | 000,158,208 | ---- | M] () -- C:\Program Files\Genie9\Genie Timeline\GSTimelineIconOverlay.gtl
MOD - [2012.04.11 11:38:06 | 000,071,168 | ---- | M] () -- C:\Program Files\Genie9\Genie Timeline\QueueManager.gtl
MOD - [2012.04.11 11:38:06 | 000,071,168 | ---- | M] () -- C:\Program Files\Genie9\Genie Timeline\QueueManager.dll
MOD - [2012.04.11 11:38:06 | 000,059,392 | ---- | M] () -- C:\Program Files\Genie9\Genie Timeline\XBalloonMsgDll.dll
MOD - [2012.04.11 11:38:06 | 000,045,056 | ---- | M] () -- C:\Program Files\Genie9\Genie Timeline\GSLogManager.gtl
MOD - [2012.03.22 11:32:32 | 000,080,384 | ---- | M] () -- C:\Program Files\Genie9\Genie Timeline\GSEncryption.gtl
MOD - [2012.03.22 11:32:32 | 000,080,384 | ---- | M] () -- C:\Program Files\Genie9\Genie Timeline\GSEncryption.dll
MOD - [2012.03.22 11:32:32 | 000,072,704 | ---- | M] () -- C:\Program Files\Genie9\Genie Timeline\GSCurl.dll
MOD - [2012.03.22 11:32:32 | 000,043,008 | ---- | M] () -- C:\Program Files\Genie9\Genie Timeline\GSLibrariesManager.gtl
MOD - [2012.03.22 11:32:32 | 000,043,008 | ---- | M] () -- C:\Program Files\Genie9\Genie Timeline\GSLibrariesManager.dll
MOD - [2012.03.22 11:32:32 | 000,038,400 | ---- | M] () -- C:\Program Files\Genie9\Genie Timeline\GSLogging.gtl
MOD - [2012.03.22 11:32:32 | 000,038,400 | ---- | M] () -- C:\Program Files\Genie9\Genie Timeline\GSLogging.dll
MOD - [2012.03.22 11:32:32 | 000,010,752 | ---- | M] () -- C:\Program Files\Genie9\Genie Timeline\RWLock.gtl
MOD - [2012.03.22 11:32:32 | 000,010,752 | ---- | M] () -- C:\Program Files\Genie9\Genie Timeline\RWLock.dll
MOD - [2012.02.02 11:16:20 | 000,923,136 | ---- | M] () -- C:\Program Files\Genie9\Genie Timeline\sqlite3.gtl
MOD - [2012.02.02 11:16:20 | 000,923,136 | ---- | M] () -- C:\Program Files\Genie9\Genie Timeline\sqlite3.dll
MOD - [2012.02.02 11:16:20 | 000,009,728 | ---- | M] () -- C:\Program Files\Genie9\Genie Timeline\VSSEngine_Proxy.gtl
========== Services (SafeList) ==========
SRV - [2013.10.24 22:15:02 | 000,119,408 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2013.08.12 10:12:38 | 000,295,376 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- c:\Program Files\Microsoft Security Client\NisSrv.exe -- (NisSrv)
SRV - [2013.08.12 10:12:38 | 000,022,208 | ---- | M] (Microsoft Corporation) [Auto | Running] -- c:\Program Files\Microsoft Security Client\MsMpEng.exe -- (MsMpSvc)
SRV - [2013.07.25 16:57:07 | 000,148,000 | ---- | M] (DealPly Technologies Ltd) [On_Demand | Stopped] -- C:\Program Files\DealPlyLive\Update\DealPlyLive.exe -- (dealplylivem)
SRV - [2013.07.25 16:57:07 | 000,148,000 | ---- | M] (DealPly Technologies Ltd) [Auto | Stopped] -- C:\Program Files\DealPlyLive\Update\DealPlyLive.exe -- (dealplylive)
SRV - [2013.06.14 22:50:24 | 000,077,944 | ---- | M] (Autodesk) [On_Demand | Stopped] -- C:\Program Files\Common Files\Autodesk Shared\Service\AdskScSrv.exe -- (Autodesk Licensing Service)
SRV - [2013.06.03 16:21:54 | 000,162,408 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files\Skype\Updater\Updater.exe -- (SkypeUpdate)
SRV - [2013.06.02 15:59:50 | 001,045,256 | ---- | M] (Acresso Software Inc.) [On_Demand | Stopped] -- C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe -- (FLEXnet Licensing Service)
SRV - [2013.05.30 17:52:21 | 001,343,400 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\Wat\WatAdminSvc.exe -- (WatAdminSvc)
SRV - [2013.05.27 06:57:27 | 000,680,960 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2013.05.11 12:37:26 | 000,065,640 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2013.04.18 11:06:42 | 000,737,616 | ---- | M] (Nokia) [On_Demand | Running] -- C:\Program Files\PC Connectivity Solution\ServiceLayer.exe -- (ServiceLayer)
SRV - [2013.01.25 17:42:00 | 001,237,856 | ---- | M] (LULU Software) [Auto | Running] -- C:\Program Files\Soda PDF 5\HelperService.exe -- (Soda PDF 5 Helper Service)
SRV - [2013.01.25 17:42:00 | 000,877,920 | ---- | M] (LULU Software) [Auto | Running] -- C:\Program Files\Soda PDF 5\ConversionService.exe -- (Soda PDF 5 Service)
SRV - [2012.04.11 14:18:48 | 000,299,648 | ---- | M] (Genie9) [Auto | Running] -- C:\Program Files\Genie9\Genie Timeline\GenieTimelineService.exe -- (GenieTimelineService)
SRV - [2012.03.29 00:18:56 | 000,163,328 | ---- | M] (AMD) [Auto | Running] -- C:\Windows\System32\atiesrxx.exe -- (AMD External Events Utility)
SRV - [2009.07.14 03:16:13 | 000,025,088 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\sensrsvc.dll -- (SensrSvc)
SRV - [2009.07.14 03:16:12 | 001,004,544 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\PeerDistSvc.dll -- (PeerDistSvc)
SRV - [2007.12.06 21:03:41 | 000,660,768 | ---- | M] (ABBYY (BIT Software)) [Auto | Running] -- C:\Program Files\Common Files\ABBYY\FineReader\9.00\Licensing\PE\NetworkLicenseServer.exe -- (ABBYY.Licensing.FineReader.Professional.9.0)
SRV - [2007.07.24 11:15:14 | 000,185,632 | ---- | M] (Protexis Inc.) [Auto | Running] -- c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe -- (PSI_SVC_2)
========== Driver Services (SafeList) ==========
DRV - File not found [Kernel | On_Demand | Stopped] -- System32\drivers\rdvgkmd.sys -- (VGPU)
DRV - [2013.10.26 18:32:34 | 000,040,392 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{3791FE4C-224F-42FC-ADDA-775BAEE3B6E1}\MpKslfc814a78.sys -- (MpKslfc814a78)
DRV - [2013.06.18 21:50:08 | 000,107,392 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\NisDrvWFP.sys -- (NisDrv)
DRV - [2013.01.23 10:31:52 | 000,137,600 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\nmwcdnsu.sys -- (nmwcdnsu)
DRV - [2013.01.23 10:31:52 | 000,008,576 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\nmwcdnsuc.sys -- (nmwcdnsuc)
DRV - [2013.01.23 10:31:50 | 000,023,168 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ccdcmbo.sys -- (nmwcdc)
DRV - [2013.01.23 10:31:50 | 000,018,560 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ccdcmb.sys -- (nmwcd)
DRV - [2013.01.23 10:31:50 | 000,008,192 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\usbser_lowerfltj.sys -- (UsbserFilt)
DRV - [2013.01.23 10:31:50 | 000,008,192 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\usbser_lowerflt.sys -- (upperdev)
DRV - [2012.10.17 14:53:46 | 000,019,072 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\pccsmcfd.sys -- (pccsmcfd)
DRV - [2012.09.17 13:05:08 | 000,106,296 | ---- | M] (JMicron Technology Corp.) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\jraid.sys -- (JRAID)
DRV - [2012.08.23 16:46:55 | 000,024,064 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\terminpt.sys -- (terminpt)
DRV - [2012.08.23 16:44:32 | 000,014,848 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\rdpvideominiport.sys -- (RdpVideoMiniport)
DRV - [2012.08.23 16:41:34 | 000,027,136 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\TsUsbGD.sys -- (TsUsbGD)
DRV - [2012.08.23 16:40:25 | 000,049,664 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV - [2012.03.29 05:29:06 | 009,164,800 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\atikmdag.sys -- (atikmdag)
DRV - [2012.03.29 05:29:06 | 009,164,800 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\atikmdag.sys -- (amdkmdag)
DRV - [2012.03.28 23:08:42 | 000,265,216 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\atikmpag.sys -- (amdkmdap)
DRV - [2010.11.20 23:29:03 | 000,175,360 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\vmbus.sys -- (vmbus)
DRV - [2010.11.20 23:29:03 | 000,112,640 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\tsusbhub.sys -- (tsusbhub)
DRV - [2010.11.20 23:29:03 | 000,077,184 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\Synth3dVsc.sys -- (Synth3dVsc)
DRV - [2010.11.20 23:29:03 | 000,062,464 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\dmvsc.sys -- (dmvsc)
DRV - [2010.11.20 23:29:03 | 000,040,704 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\vmstorfl.sys -- (storflt)
DRV - [2010.11.20 23:29:03 | 000,035,968 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\winusb.sys -- (WinUsb)
DRV - [2010.11.20 23:29:03 | 000,028,032 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\storvsc.sys -- (storvsc)
DRV - [2010.11.20 23:29:03 | 000,017,920 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\VMBusHID.sys -- (VMBusHID)
DRV - [2010.11.20 23:29:03 | 000,005,632 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\vms3cap.sys -- (s3cap)
DRV - [2009.09.10 15:58:26 | 000,021,648 | ---- | M] (OLYMPUS IMAGING CORP.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\OlyCamComm.sys -- (OlyCamComm)
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://start.mysearchdial.com/?f=1&a=co ... 243925&ir=
IE - HKLM\..\SearchScopes,DefaultScope = {7603E22C-4D5D-4C45-A8B9-84E3700694EA}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://start.mysearchdial.com/results.p ... 243925&ir=
IE - HKLM\..\SearchScopes\{23323BD6-5313-15CC-F339-29070AFC5562}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-1107837428-173974533-547177936-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Secondary Start Pages = http://www.idnes.cz/http://www.ak [Binary data over 200 bytes]
IE - HKU\S-1-5-21-1107837428-173974533-547177936-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
IE - HKU\S-1-5-21-1107837428-173974533-547177936-1000\..\URLSearchHook: {D8278076-BC68-4484-9233-6E7F1628B56C} - No CLSID value found
IE - HKU\S-1-5-21-1107837428-173974533-547177936-1000\..\SearchScopes,DefaultScope = {7603E22C-4D5D-4C45-A8B9-84E3700694EA}
IE - HKU\S-1-5-21-1107837428-173974533-547177936-1000\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://start.mysearchdial.com/results.p ... 243925&ir=
IE - HKU\S-1-5-21-1107837428-173974533-547177936-1000\..\SearchScopes\{23323BD6-5313-15CC-F339-29070AFC5562}: "URL" = http://www.bing.com/search?q={searchTer ... ORM=IE10SR
IE - HKU\S-1-5-21-1107837428-173974533-547177936-1000\..\SearchScopes\{7603E22C-4D5D-4C45-A8B9-84E3700694EA}: "URL" = http://search.conduit.com/ResultsExt.as ... 18222&UM=2
IE - HKU\S-1-5-21-1107837428-173974533-547177936-1000\..\SearchScopes\{B7B12FF6-3262-4612-A241-1461DA1846DD}: "URL" = http://www.search.ask.com/web?p2=%5EB7N ... 6spr%253Da
IE - HKU\S-1-5-21-1107837428-173974533-547177936-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-1107837428-173974533-547177936-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local
========== FireFox ==========
FF - prefs.js..CT3078318.browser.search.defaultthis.engineName: "true"
FF - prefs.js..browser.search.defaultenginename: "ytbyclick Customized Web Search"
FF - prefs.js..browser.search.defaultthis.engineName: "ytbyclick Customized Web Search"
FF - prefs.js..browser.search.defaulturl: "http://search.conduit.com/ResultsExt.as ... earchTerms}"
FF - prefs.js..browser.search.selectedEngine: "ytbyclick Customized Web Search"
FF - prefs.js..browser.startup.homepage: "http://www.seznam.cz/"
FF - prefs.js..extensions.enabledAddons: WebSiteRecommendation%40weliketheweb.com:1.0.5
FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:21.0
FF - HKLM\Software\MozillaPlugins\@adobe.com/AuthorwarePlayer: C:\Windows\system32\Macromed\AUTHORWA\np32asw.dll (Macromedia, Inc.)
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF32_11_6_602_180.dll ()
FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\Windows\system32\Adobe\Director\np32dsw_1200112.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@garmin.com/GpsControl: C:\Program Files\Garmin GPS Plugin\npGarmin.dll (GARMIN Corp.)
FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.45.2: C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.45.2: C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@nokia.com/EnablerPlugin: C:\Program Files\Nokia\Nokia Suite\npNokiaSuiteEnabler.dll ( )
FF - HKLM\Software\MozillaPlugins\@tools.dpliveupdate.com/DealPlyLive Update;version=3: C:\Program Files\DealPlyLive\Update\1.3.23.0\npGoogleUpdate3.dll (DealPly Technologies Ltd)
FF - HKLM\Software\MozillaPlugins\@tools.dpliveupdate.com/DealPlyLive Update;version=9: C:\Program Files\DealPlyLive\Update\1.3.23.0\npGoogleUpdate3.dll (DealPly Technologies Ltd)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Users\MM\AppData\Local\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Users\MM\AppData\Local\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.)
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\FFSodaPDF5Converter@sodapdf.com: C:\Program Files\Soda PDF 5\FFSoda5Ext [2013.06.02 14:59:24 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 21.0\extensions\\Components: C:\Program Files\Mozilla Firefox\components
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 21.0\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Thunderbird 24.0.1\extensions\\Components: C:\Program Files\Mozilla Thunderbird\components
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Thunderbird 24.0.1\extensions\\Plugins: C:\Program Files\Mozilla Thunderbird\plugins
[2013.05.28 22:55:48 | 000,000,000 | ---D | M] (No name found) -- C:\Users\MM\AppData\Roaming\Mozilla\Extensions
[2013.10.13 14:57:48 | 000,000,000 | ---D | M] (No name found) -- C:\Users\MM\AppData\Roaming\Mozilla\Firefox\Profiles\cdxqgtr4.default\extensions
[2013.10.13 14:57:53 | 000,000,000 | ---D | M] (ytbyclick) -- C:\Users\MM\AppData\Roaming\Mozilla\Firefox\Profiles\cdxqgtr4.default\extensions\{d4f1c433-f9c3-49f2-8645-37dbeca19e90}
[2013.10.13 14:57:53 | 000,000,000 | ---D | M] (No name found) -- C:\Users\MM\AppData\Roaming\Mozilla\Firefox\Profiles\cdxqgtr4.default\extensions\staged
[2013.10.13 14:57:43 | 000,000,000 | ---D | M] (No name found) -- C:\Users\MM\AppData\Roaming\Mozilla\Firefox\Profiles\cdxqgtr4.default\extensions\trash
[2013.06.30 11:07:59 | 000,000,000 | ---D | M] ("WebSite Recommendation") -- C:\Users\MM\AppData\Roaming\Mozilla\Firefox\Profiles\cdxqgtr4.default\extensions\WebSiteRecommendation@weliketheweb.com
[2013.06.30 00:10:12 | 000,000,000 | ---D | M] (No name found) -- C:\Users\MM\AppData\Roaming\Mozilla\Firefox\Profilescdxqgtr4.default\extensions
[2013.06.30 00:10:12 | 000,000,000 | ---D | M] (No name found) -- C:\Users\MM\AppData\Roaming\Mozilla\Firefox\Profilescdxqgtr4.default\extensions\staged
[2013.05.28 18:09:42 | 000,197,611 | ---- | M] () (No name found) -- C:\Users\MM\AppData\Roaming\Mozilla\Firefox\Profiles\cdxqgtr4.default\extensions\ftdownloader4@ftdownloader.com.xpi
[2013.06.30 10:44:04 | 000,239,491 | ---- | M] () (No name found) -- C:\Users\MM\AppData\Roaming\Mozilla\Firefox\Profiles\cdxqgtr4.default\extensions\trtv3@trtv.com.xpi
[2013.06.30 00:08:21 | 000,000,995 | ---- | M] () -- C:\Users\MM\AppData\Roaming\Mozilla\Firefox\Profiles\cdxqgtr4.default\searchplugins\conduit.xml
[2013.06.05 13:25:39 | 000,002,389 | ---- | M] () -- C:\Users\MM\AppData\Roaming\Mozilla\Firefox\Profiles\cdxqgtr4.default\searchplugins\Mysearchdial.xml
[2013.05.29 19:56:58 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\browser\extensions
[2013.05.29 19:56:58 | 000,000,000 | ---D | M] (Default) -- C:\Program Files\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
========== Chrome ==========
CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}{google:omniboxStartMarginParameter}ie={inputEncoding}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client={google:suggestClient}&q={searchTerms}&{google:cursorPosition}{google:zeroPrefixUrl}{google:pageClassification}sugkey={google:suggestAPIKeyParameter},
CHR - homepage:
CHR - plugin: Shockwave Flash (Enabled) = C:\Users\MM\AppData\Local\Google\Chrome\Application\30.0.1599.101\PepperFlash\pepflashplayer.dll
CHR - plugin: Chrome Remote Desktop Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Users\MM\AppData\Local\Google\Chrome\Application\30.0.1599.101\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Users\MM\AppData\Local\Google\Chrome\Application\30.0.1599.101\pdf.dll
CHR - plugin: Adobe Acrobat (Enabled) = C:\Program Files\Adobe\Reader 11.0\Reader\Browser\nppdf32.dll
CHR - plugin: Garmin Communicator Plug-In (Enabled) = C:\Program Files\Garmin GPS Plugin\npGarmin.dll
CHR - plugin: Google Earth Plugin (Enabled) = C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll
CHR - plugin: Java(TM) Platform SE 7 U17 (Enabled) = C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll
CHR - plugin: Nokia Suite Enabler Plugin (Enabled) = C:\Program Files\Nokia\Nokia Suite\npNokiaSuiteEnabler.dll
CHR - plugin: iTunes Application Detector (Enabled) = C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll
CHR - plugin: Google Update (Enabled) = C:\Users\MM\AppData\Local\Google\Update\1.3.21.111\npGoogleUpdate3.dll
CHR - plugin: Shockwave for Director (Enabled) = C:\Windows\system32\Adobe\Director\np32dsw_1200112.dll
CHR - plugin: Authorware Web Player (Enabled) = C:\Windows\system32\Macromed\AUTHORWA\np32asw.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Windows\system32\Macromed\Flash\NPSWF32_11_6_602_180.dll
CHR - plugin: Java Deployment Toolkit 7.0.170.2 (Enabled) = C:\Windows\system32\npDeployJava1.dll
CHR - Extension: CacheList = C:\Users\MM\AppData\Local\Google\Chrome\User Data\Default\Extensions\amhhdbdhoghppijbjfdkiaconkmfbbpa\3.0.4_0\
CHR - Extension: Dokumenty Google = C:\Users\MM\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\
CHR - Extension: Disk Google = C:\Users\MM\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\
CHR - Extension: YouTube = C:\Users\MM\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\
CHR - Extension: Vyhled\u00E1v\u00E1n\u00ED Google = C:\Users\MM\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\
CHR - Extension: ytbyclick = C:\Users\MM\AppData\Local\Google\Chrome\User Data\Default\Extensions\edflbdjfhpiboilnedfoiepbmcllkedb\10.20.1.508_0\
CHR - Extension: DealPly Shopping = C:\Users\MM\AppData\Local\Google\Chrome\User Data\Default\Extensions\mphpbdjcljebbcnfopfngmfdackbbdgf\3.5.0.0_0\
CHR - Extension: Chrome In-App Payments service = C:\Users\MM\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.4.11_0\
CHR - Extension: Gmail = C:\Users\MM\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\
O1 HOSTS File: ([2009.06.10 23:39:37 | 000,000,824 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (DealPly Shopping) - {ae48ed75-5a56-4c5f-bbce-6f1ac3875f66} - C:\Program Files\DealPly\DealPlyIE.dll (DealPly)
O2 - BHO: (Soda PDF 5 IE Helper) - {C737F472-1193-4281-BF53-A00B67AB3E19} - C:\Program Files\Soda PDF 5\PDFIEHelper.dll (LULU Software)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O3 - HKLM\..\Toolbar: (Soda PDF 5 IE Toolbar) - {F335ABA2-FDB4-4644-92B2-5CC4B0FC91D6} - C:\Program Files\Soda PDF 5\PDFIEPlugin.dll (LULU Software)
O3 - HKU\S-1-5-21-1107837428-173974533-547177936-1000\..\Toolbar\WebBrowser: (no name) - {434D452D-5637-006A-76A7-7A786E7484D7} - No CLSID value found.
O4 - HKLM..\Run: [AdobeAAMUpdater-1.0] C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [APSDaemon] C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc.)
O4 - HKLM..\Run: [CanonMyPrinter] C:\Program Files\Canon\MyPrinter\BJMyPrt.exe (CANON INC.)
O4 - HKLM..\Run: [CanonSolutionMenu] C:\Program Files\Canon\SolutionMenu\CNSLMAIN.exe (CANON INC.)
O4 - HKLM..\Run: [MSC] C:\Program Files\Microsoft Security Client\msseces.exe (Microsoft Corporation)
O4 - HKLM..\Run: [NBKeyScan] C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe (Nero AG)
O4 - HKLM..\Run: [OpwareSE4] C:\Program Files\ScanSoft\OmniPageSE4\OpwareSE4.exe (Nuance Communications, Inc.)
O4 - HKLM..\Run: [PDVD8LanguageShortcut] C:\Program Files\CyberLink\PowerDVD8\Language\Language.exe ()
O4 - HKLM..\Run: [RemoteControl8] C:\Program Files\CyberLink\PowerDVD8\PDVD8Serv.exe (Cyberlink Corp.)
O4 - HKLM..\Run: [Standby] c:\Program Files\Common Files\Corel\Standby\Standby.exe (Corel)
O4 - HKU\S-1-5-21-1107837428-173974533-547177936-1000..\Run: [] File not found
O4 - HKU\S-1-5-21-1107837428-173974533-547177936-1000..\Run: [ICQ] C:\Users\MM\AppData\Roaming\ICQM\icq.exe (ICQ)
O4 - HKU\S-1-5-21-1107837428-173974533-547177936-1000..\Run: [IndxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe (Nero AG)
O4 - HKU\S-1-5-21-1107837428-173974533-547177936-1000..\Run: [NokiaSuite.exe] C:\Program Files\Nokia\Nokia Suite\NokiaSuite.exe (Nokia)
O4 - HKU\S-1-5-21-1107837428-173974533-547177936-1000..\Run: [Pokki] C:\Windows\system32\rundll32.exe "%LOCALAPPDATA%\Pokki\Engine\LaunchDeskband.dll",RunLaunchDeskband File not found
O4 - HKU\S-1-5-19..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (Microsoft Corporation)
O4 - HKU\S-1-5-20..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (Microsoft Corporation)
O4 - Startup: C:\Users\MM\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk = C:\Users\MM\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLinkedConnections = 1
O7 - HKU\S-1-5-21-1107837428-173974533-547177936-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O9 - Extra Button: ICQ7M - {781B39EC-2E18-41FC-9B00-B84E4FFCA85F} - C:\Program Files\ICQ7M\ICQ.exe (ICQ, LLC.)
O9 - Extra 'Tools' menuitem : ICQ7M - {781B39EC-2E18-41FC-9B00-B84E4FFCA85F} - C:\Program Files\ICQ7M\ICQ.exe (ICQ, LLC.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O13 - gopher Prefix: missing
O15 - HKLM\..Trusted Domains: mojebanka.cz ([etrading] https in Trusted sites)
O15 - HKLM\..Trusted Domains: mojebanka.cz ([www] https in Trusted sites)
O15 - HKU\S-1-5-21-1107837428-173974533-547177936-1000\..Trusted Domains: mojebanka.cz ([etrading] https in Důvěryhodné weby)
O15 - HKU\S-1-5-21-1107837428-173974533-547177936-1000\..Trusted Domains: mojebanka.cz ([www] https in Důvěryhodné weby)
O16 - DPF: Garmin Communicator Plug-In https://static.garmincdn.com/gcp/ie/4.0 ... rol_32.CAB (Reg Error: Key error.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{88F0FE0E-3F47-432C-A9AE-1A63BE7485A1}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{B3CF2AB9-B78C-45F0-BABF-2D8E6E8BF54E}: DhcpNameServer = 192.168.1.20
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\System32\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2013.06.05 17:34:33 | 000,000,000 | ---D | M] - C:\Autodesk -- [ NTFS ]
O32 - AutoRun File - [2009.06.10 23:42:20 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O33 - MountPoints2\{8f321bda-f4f3-11e2-bdc2-001d7d08db0f}\Shell - "" = AutoRun
O33 - MountPoints2\{8f321bda-f4f3-11e2-bdc2-001d7d08db0f}\Shell\AutoRun\command - "" = J:\iStudio.exe
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)
CREATERESTOREPOINT
Restore point Set: OTL Restore Point
NetSvcs: FastUserSwitchingCompatibility - File not found
NetSvcs: Ias - C:\Windows\System32\ias.dll (Microsoft Corporation)
NetSvcs: Nla - File not found
NetSvcs: Ntmssvc - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: SRService - File not found
NetSvcs: WmdmPmSp - File not found
NetSvcs: LogonHours - File not found
NetSvcs: PCAudit - File not found
NetSvcs: helpsvc - File not found
NetSvcs: uploadmgr - File not found
Drivers32: msacm.aacacm - C:\Windows\System32\AACACM.acm (fccHandler)
Drivers32: msacm.ac3acm - C:\Windows\System32\AC3ACM.acm (fccHandler)
Drivers32: msacm.avis - C:\Windows\System32\ff_acm.acm ()
Drivers32: msacm.dvacm - c:\Program Files\Common Files\Ulead Systems\VIO\DVACM.acm (Corel TW Corp.)
Drivers32: msacm.iac2 - C:\Windows\System32\iac25_32.ax (Intel Corporation)
Drivers32: msacm.l3acm - C:\Windows\System32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.lameacm - C:\Windows\System32\LameACM.acm (http://www.mp3dev.org/)
Drivers32: VIDC.CFHD - C:\Windows\System32\CFHD.dll (CineForm Inc.)
Drivers32: VIDC.CSCD - C:\Windows\System32\CamCodec.dll (CamStudio Group)
Drivers32: vidc.cvid - C:\Windows\System32\iccvid.dll (Radius Inc.)
Drivers32: vidc.dvsd - C:\Windows\System32\pdvcodec.dll (Matsushita Electric Industrial Co., Ltd.)
Drivers32: vidc.ffds - C:\Windows\System32\ff_vfw.dll ()
Drivers32: VIDC.GEOS - C:\Windows\System32\GeoCodecD.dll (GeoVision)
Drivers32: VIDC.GEOV - C:\Windows\System32\GeoCodec.dll (GeoVision)
Drivers32: VIDC.GEOX - C:\Windows\System32\GeoCodec.dll (GeoVision)
Drivers32: VIDC.IV41 - C:\Windows\System32\ir41_32.dll (Intel Corporation)
Drivers32: VIDC.IV50 - C:\Windows\System32\ir50_32.dll (Intel Corporation)
Drivers32: VIDC.LAGS - C:\Windows\System32\lagarith.dll ( )
Drivers32: VIDC.MLCY - C:\Windows\System32\mlc.dll ()
Drivers32: VIDC.ULRA - C:\Windows\System32\utv_vcm.dll ()
Drivers32: VIDC.ULRG - C:\Windows\System32\utv_vcm.dll ()
Drivers32: VIDC.ULY0 - C:\Windows\System32\utv_vcm.dll ()
Drivers32: VIDC.ULY2 - C:\Windows\System32\utv_vcm.dll ()
Drivers32: VIDC.VMnc - C:\Windows\System32\vmnc.dll (VMware, Inc.)
Drivers32: VIDC.VP80 - C:\Windows\System32\vp8vfw.dll (Optima SC Inc.)
Drivers32: vidc.x264 - C:\Program Files\x264vfw\x264vfw.dll ()
Drivers32: vidc.XVID - C:\Windows\System32\xvidvfw.dll ()
PhysicalDisk0 MBR saved to C:\PhysicalMBR.bin
========== Files/Folders - Created Within 30 Days ==========
[2013.10.26 20:47:42 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\MM\Desktop\OTL (1).exe
[2013.10.26 11:02:48 | 000,000,000 | ---D | C] -- C:\tmp
[2013.10.26 11:02:48 | 000,000,000 | ---D | C] -- C:\output
[2013.10.26 08:54:45 | 000,000,000 | R--D | C] -- C:\Users\MM\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CyberLink PowerDVD 8
[2013.10.25 23:00:53 | 000,000,000 | ---D | C] -- C:\Program Files\trend micro
[2013.10.25 22:59:36 | 000,000,000 | ---D | C] -- C:\Users\MM\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
[2013.10.25 22:59:35 | 000,000,000 | ---D | C] -- C:\rsit
[2013.10.25 11:05:39 | 000,284,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\usbport.sys
[2013.10.25 11:05:39 | 000,006,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\usbd.sys
[2013.10.24 22:14:46 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Thunderbird
[2013.10.19 10:33:39 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Java
[2013.10.19 10:33:32 | 000,264,616 | ---- | C] (Oracle Corporation) -- C:\Windows\System32\javaws.exe
[2013.10.19 10:33:26 | 000,175,016 | ---- | C] (Oracle Corporation) -- C:\Windows\System32\javaw.exe
[2013.10.19 10:33:26 | 000,174,504 | ---- | C] (Oracle Corporation) -- C:\Windows\System32\java.exe
[2013.10.19 10:33:26 | 000,094,632 | ---- | C] (Oracle Corporation) -- C:\Windows\System32\WindowsAccessBridge.dll
[2013.10.19 10:33:26 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
[2013.10.19 10:21:37 | 000,000,000 | ---D | C] -- C:\Users\MM\KBCertifikat
[2013.10.19 10:13:15 | 000,000,000 | ---D | C] -- C:\Users\MM\kbpki
[2013.10.19 10:11:11 | 000,000,000 | ---D | C] -- C:\ProgramData\Oracle
[2013.10.19 09:55:44 | 000,000,000 | ---D | C] -- C:\ProgramData\Sun
[2013.10.18 09:51:15 | 000,000,000 | ---D | C] -- C:\Windows\Sun
[2013.10.13 22:19:54 | 000,000,000 | ---D | C] -- C:\Users\MM\Desktop\weby_prac
[2013.10.13 16:37:56 | 000,000,000 | ---D | C] -- C:\Users\MM\Desktop\prac složka trasy GPX
[2013.10.11 10:42:32 | 002,876,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jscript9.dll
[2013.10.11 10:42:32 | 002,706,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mshtml.tlb
[2013.10.11 10:42:31 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iesetup.dll
[2013.10.11 10:42:31 | 000,039,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jsproxy.dll
[2013.10.11 10:42:30 | 000,493,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeeds.dll
[2013.10.11 10:42:30 | 000,391,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieui.dll
[2013.10.11 10:42:30 | 000,042,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ie4uinit.exe
[2013.10.11 10:42:30 | 000,033,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iernonce.dll
[2013.10.11 10:42:29 | 000,109,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iesysprep.dll
[2013.10.11 10:42:29 | 000,071,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\RegisterIEPKEYs.exe
[2013.10.11 08:52:27 | 000,055,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\hidclass.sys
[2013.10.11 08:52:26 | 000,025,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\hidparse.sys
[2013.10.11 08:52:18 | 003,969,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntkrnlpa.exe
[2013.10.11 08:52:17 | 003,914,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntoskrnl.exe
[2013.10.11 08:52:17 | 000,619,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\tdh.dll
[2013.10.11 08:52:13 | 000,102,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PresentationCFFRasterizerNative_v0300.dll
[2013.10.11 08:52:11 | 000,295,424 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\System32\atmfd.dll
[2013.10.11 08:52:11 | 000,070,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\fontsub.dll
[2013.10.11 08:52:11 | 000,034,304 | ---- | C] (Adobe Systems) -- C:\Windows\System32\atmlib.dll
[2013.10.11 08:52:11 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dciman32.dll
[2013.10.11 08:52:09 | 000,434,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\scavengeui.dll
[2013.10.11 08:52:05 | 002,348,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\win32k.sys
[2013.10.09 23:05:02 | 000,000,000 | ---D | C] -- C:\Users\MM\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ICQ
[2013.10.09 23:04:45 | 000,000,000 | ---D | C] -- C:\Users\MM\AppData\Roaming\ICQM
[2013.10.09 23:04:25 | 000,000,000 | ---D | C] -- C:\Users\MM\AppData\Roaming\ICQ-Profile
[2013.10.05 18:11:25 | 000,000,000 | ---D | C] -- C:\Users\MM\Documents\Incomedia
[2013.10.05 18:03:57 | 000,000,000 | ---D | C] -- C:\Users\MM\AppData\Local\Incomedia
[2013.10.05 18:03:41 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WebSite X5 v10 - Home
[2013.10.05 18:02:56 | 000,000,000 | ---D | C] -- C:\Program Files\WebSite X5 v10 - Home
[2013.10.05 17:37:33 | 000,000,000 | ---D | C] -- C:\Users\MM\AppData\Roaming\Ashampoo Slideshow Studio 2013
[2013.10.05 17:31:00 | 011,706,640 | ---- | C] (CompSoft) -- C:\Users\MM\Desktop\LastFM.exe
[2013.06.02 11:54:33 | 000,047,360 | ---- | C] (VSO Software) -- C:\Users\MM\AppData\Roaming\pcouffin.sys
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
========== Files - Modified Within 30 Days ==========
[2013.10.26 20:53:04 | 000,000,950 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1107837428-173974533-547177936-1000UA.job
[2013.10.26 20:52:13 | 000,000,512 | ---- | M] () -- C:\PhysicalMBR.bin
[2013.10.26 20:47:45 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\MM\Desktop\OTL (1).exe
[2013.10.26 20:02:00 | 000,000,886 | ---- | M] () -- C:\Windows\tasks\DealPlyLiveUpdateTaskMachineUA.job
[2013.10.26 19:57:00 | 000,000,278 | ---- | M] () -- C:\Windows\tasks\Dealply.job
[2013.10.26 17:02:00 | 000,000,882 | ---- | M] () -- C:\Windows\tasks\DealPlyLiveUpdateTaskMachineCore.job
[2013.10.26 15:59:00 | 000,001,158 | ---- | M] () -- C:\Windows\tasks\Torntv 2-updater.job
[2013.10.26 15:59:00 | 000,001,152 | ---- | M] () -- C:\Windows\tasks\Torntv 2-codedownloader.job
[2013.10.26 15:59:00 | 000,001,062 | ---- | M] () -- C:\Windows\tasks\Torntv 2-enabler.job
[2013.10.26 09:04:59 | 000,026,576 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2013.10.26 09:04:59 | 000,026,576 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2013.10.26 08:53:10 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2013.10.26 08:52:38 | 2616,057,856 | -HS- | M] () -- C:\hiberfil.sys
[2013.10.24 08:53:00 | 000,000,898 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1107837428-173974533-547177936-1000Core.job
[2013.10.21 22:35:49 | 000,666,194 | ---- | M] () -- C:\Windows\System32\perfh005.dat
[2013.10.21 22:35:49 | 000,651,938 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2013.10.21 22:35:49 | 000,139,890 | ---- | M] () -- C:\Windows\System32\perfc005.dat
[2013.10.21 22:35:49 | 000,120,870 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2013.10.19 10:33:19 | 000,094,632 | ---- | M] (Oracle Corporation) -- C:\Windows\System32\WindowsAccessBridge.dll
[2013.10.19 10:33:17 | 000,264,616 | ---- | M] (Oracle Corporation) -- C:\Windows\System32\javaws.exe
[2013.10.19 10:33:17 | 000,175,016 | ---- | M] (Oracle Corporation) -- C:\Windows\System32\javaw.exe
[2013.10.19 10:33:16 | 000,174,504 | ---- | M] (Oracle Corporation) -- C:\Windows\System32\java.exe
[2013.10.16 09:04:44 | 000,002,346 | ---- | M] () -- C:\Users\MM\Desktop\Google Chrome.lnk
[2013.10.11 17:16:49 | 003,812,192 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
[2013.10.09 23:13:58 | 000,001,945 | ---- | M] () -- C:\Windows\epplauncher.mif
[2013.10.09 23:05:02 | 000,001,790 | ---- | M] () -- C:\Users\MM\Desktop\ICQ8.lnk
[2013.10.05 18:03:41 | 000,001,061 | ---- | M] () -- C:\Users\Public\Desktop\WebSite X5 Home 10.lnk
[2013.10.05 17:37:22 | 000,001,305 | ---- | M] () -- C:\Users\Public\Desktop\Ashampoo Slideshow Studio 2013.lnk
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
========== Files Created - No Company Name ==========
[2013.10.26 20:52:13 | 000,000,512 | ---- | C] () -- C:\PhysicalMBR.bin
[2013.10.09 23:05:02 | 000,001,790 | ---- | C] () -- C:\Users\MM\Desktop\ICQ8.lnk
[2013.10.05 18:03:41 | 000,001,061 | ---- | C] () -- C:\Users\Public\Desktop\WebSite X5 Home 10.lnk
[2013.10.05 17:37:22 | 000,001,305 | ---- | C] () -- C:\Users\Public\Desktop\Ashampoo Slideshow Studio 2013.lnk
[2013.08.03 17:10:01 | 000,000,088 | RHS- | C] () -- C:\ProgramData\48AE367A9D.sys
[2013.08.03 17:09:59 | 000,006,266 | -HS- | C] () -- C:\ProgramData\KGyGaAvL.sys
[2013.08.03 14:45:59 | 000,000,010 | ---- | C] () -- C:\Users\MM\AppData\Roaming\pdfdrawcodec.dll
[2013.06.02 12:05:36 | 000,039,095 | ---- | C] () -- C:\Windows\iccsigs.dat
[2013.06.02 12:05:35 | 000,112,688 | ---- | C] () -- C:\Windows\System32\shw32.dll
[2013.06.02 11:54:33 | 000,087,608 | ---- | C] () -- C:\Users\MM\AppData\Roaming\inst.exe
[2013.06.02 11:54:33 | 000,007,887 | ---- | C] () -- C:\Users\MM\AppData\Roaming\pcouffin.cat
[2013.06.02 11:54:33 | 000,001,144 | ---- | C] () -- C:\Users\MM\AppData\Roaming\pcouffin.inf
[2013.06.02 11:33:11 | 000,001,024 | ---- | C] () -- C:\Users\MM\.rnd
[2013.05.30 18:38:11 | 000,000,412 | ---- | C] () -- C:\Windows\MAXLINK.INI
[2013.05.28 18:54:12 | 000,000,384 | ---- | C] () -- C:\Windows\ODBC.INI
[2013.05.28 17:21:28 | 000,000,017 | ---- | C] () -- C:\Users\MM\AppData\Local\resmon.resmoncfg
[2013.05.28 17:13:22 | 000,650,752 | ---- | C] () -- C:\Windows\System32\xvidcore.dll
[2013.05.28 17:13:22 | 000,243,200 | ---- | C] () -- C:\Windows\System32\xvidvfw.dll
[2013.05.28 17:13:21 | 000,155,648 | ---- | C] () -- C:\Windows\System32\utv_core.dll
[2013.05.28 17:13:21 | 000,069,632 | ---- | C] () -- C:\Windows\System32\utv_vcm.dll
[2013.05.28 17:13:20 | 000,715,038 | ---- | C] () -- C:\Windows\unins000.exe
[2013.05.28 17:13:20 | 000,216,064 | ---- | C] ( ) -- C:\Windows\System32\lagarith.dll
[2013.05.28 17:13:20 | 000,001,778 | ---- | C] () -- C:\Windows\unins000.dat
[2013.05.28 17:11:19 | 000,271,264 | ---- | C] () -- C:\Windows\System32\vbrun100.dll
[2013.05.28 17:11:19 | 000,210,944 | ---- | C] () -- C:\Windows\System32\msvcrt10.dll
[2013.05.28 17:10:47 | 000,600,880 | ---- | C] () -- C:\Windows\System32\atiicdxx.dat
[2013.05.28 17:10:47 | 000,204,960 | ---- | C] () -- C:\Windows\System32\ativvsvl.dat
[2013.05.28 17:10:47 | 000,157,152 | ---- | C] () -- C:\Windows\System32\ativvsva.dat
[2013.05.28 17:10:26 | 000,053,248 | ---- | C] () -- C:\Windows\System32\amdverag.dll
[2013.05.28 17:08:47 | 000,003,917 | ---- | C] () -- C:\Windows\System32\atipblag.dat
[2013.05.28 17:08:25 | 000,413,797 | ---- | C] () -- C:\Windows\System32\drivers\RTAIODAT.DAT
[2013.05.28 16:50:34 | 000,000,000 | ---- | C] () -- C:\Windows\ativpsrm.bin
[2013.03.13 18:49:46 | 000,112,640 | ---- | C] () -- C:\Windows\System32\ff_vfw.dll
[2013.02.07 14:22:00 | 000,050,330 | ---- | C] () -- C:\Program Files\AntiDust.exe
[2012.05.21 16:28:58 | 000,155,648 | ---- | C] () -- C:\Windows\System32\mlc.dll
========== ZeroAccess Check ==========
[2009.07.14 06:42:31 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini
[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2013.07.26 03:55:59 | 012,872,704 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2010.11.20 23:29:20 | 000,606,208 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
"" = %systemroot%\system32\wbem\wbemess.dll -- [2009.07.14 03:16:17 | 000,342,528 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both
========== LOP Check ==========
[2013.07.28 22:50:26 | 000,000,000 | ---D | M] -- C:\Users\Default\AppData\Roaming\Genie9
[2013.07.28 22:50:26 | 000,000,000 | ---D | M] -- C:\Users\Default User\AppData\Roaming\Genie9
[2013.06.02 14:59:32 | 000,000,000 | ---D | M] -- C:\Users\MM\AppData\Roaming\APP_NAME_NON_STRING
[2013.06.15 09:54:50 | 000,000,000 | ---D | M] -- C:\Users\MM\AppData\Roaming\ArcticLine
[2013.06.14 22:33:54 | 000,000,000 | ---D | M] -- C:\Users\MM\AppData\Roaming\Ashampoo
[2013.10.05 17:37:33 | 000,000,000 | ---D | M] -- C:\Users\MM\AppData\Roaming\Ashampoo Slideshow Studio 2013
[2013.06.14 22:58:26 | 000,000,000 | ---D | M] -- C:\Users\MM\AppData\Roaming\Autodesk
[2013.06.02 14:47:47 | 000,000,000 | ---D | M] -- C:\Users\MM\AppData\Roaming\calibre
[2013.06.03 16:56:01 | 000,000,000 | ---D | M] -- C:\Users\MM\AppData\Roaming\Canon
[2013.07.25 16:57:04 | 000,000,000 | ---D | M] -- C:\Users\MM\AppData\Roaming\Dealply
[2013.10.26 08:56:35 | 000,000,000 | ---D | M] -- C:\Users\MM\AppData\Roaming\Dropbox
[2013.06.02 14:53:02 | 000,000,000 | ---D | M] -- C:\Users\MM\AppData\Roaming\Engelmann Media
[2013.09.14 16:42:43 | 000,000,000 | ---D | M] -- C:\Users\MM\AppData\Roaming\GARMIN
[2013.07.28 10:23:52 | 000,000,000 | ---D | M] -- C:\Users\MM\AppData\Roaming\Genie9
[2013.06.30 13:26:34 | 000,000,000 | ---D | M] -- C:\Users\MM\AppData\Roaming\GeoGet
[2013.06.24 17:55:00 | 000,000,000 | ---D | M] -- C:\Users\MM\AppData\Roaming\GHISLER
[2013.06.02 18:46:26 | 000,000,000 | ---D | M] -- C:\Users\MM\AppData\Roaming\GoforFiles
[2013.10.09 23:04:11 | 000,000,000 | ---D | M] -- C:\Users\MM\AppData\Roaming\ICQ
[2013.10.10 12:50:44 | 000,000,000 | ---D | M] -- C:\Users\MM\AppData\Roaming\ICQ-Profile
[2013.10.09 23:04:54 | 000,000,000 | ---D | M] -- C:\Users\MM\AppData\Roaming\ICQM
[2013.09.24 21:59:50 | 000,000,000 | ---D | M] -- C:\Users\MM\AppData\Roaming\Moto assistant
[2013.08.03 14:59:48 | 000,000,000 | ---D | M] -- C:\Users\MM\AppData\Roaming\MOVAVI
[2013.06.09 09:54:41 | 000,000,000 | ---D | M] -- C:\Users\MM\AppData\Roaming\Nokia
[2013.05.28 20:23:32 | 000,000,000 | ---D | M] -- C:\Users\MM\AppData\Roaming\OpenCandy
[2013.06.25 18:26:05 | 000,000,000 | ---D | M] -- C:\Users\MM\AppData\Roaming\PC Suite
[2013.06.16 17:09:45 | 000,000,000 | ---D | M] -- C:\Users\MM\AppData\Roaming\PDF Software
[2013.08.11 10:10:27 | 000,000,000 | ---D | M] -- C:\Users\MM\AppData\Roaming\SAMSUNG Drivers Update Utility
[2013.05.30 18:38:03 | 000,000,000 | ---D | M] -- C:\Users\MM\AppData\Roaming\ScanSoft
[2013.06.30 00:10:10 | 000,000,000 | ---D | M] -- C:\Users\MM\AppData\Roaming\SimilarSites
[2013.05.28 22:55:48 | 000,000,000 | ---D | M] -- C:\Users\MM\AppData\Roaming\Thunderbird
[2013.05.28 21:49:19 | 000,000,000 | ---D | M] -- C:\Users\MM\AppData\Roaming\TreeCardGames
[2013.08.03 22:04:18 | 000,000,000 | ---D | M] -- C:\Users\MM\AppData\Roaming\Ulead Systems
[2013.10.11 20:00:52 | 000,000,000 | ---D | M] -- C:\Users\MM\AppData\Roaming\Vso
[2013.06.15 11:45:02 | 000,000,000 | ---D | M] -- C:\Users\MM\AppData\Roaming\XnView
[2013.08.03 14:47:24 | 000,000,000 | ---D | M] -- C:\Users\MM\AppData\Roaming\YCanPDF
========== Purity Check ==========
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\MM\Desktop
Ultimate Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.10.9200.16721)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy
3,25 Gb Total Physical Memory | 1,34 Gb Available Physical Memory | 41,22% Memory free
6,50 Gb Paging File | 4,43 Gb Available in Paging File | 68,22% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 465,76 Gb Total Space | 350,77 Gb Free Space | 75,31% Space Free | Partition Type: NTFS
Drive D: | 931,28 Gb Total Space | 376,76 Gb Free Space | 40,46% Space Free | Partition Type: FAT32
Computer Name: MM-PC | User Name: MM | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Processes (SafeList) ==========
PRC - [2013.10.26 20:47:45 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\MM\Desktop\OTL (1).exe
PRC - [2013.10.09 23:04:49 | 027,598,184 | ---- | M] (ICQ) -- C:\Users\MM\AppData\Roaming\ICQM\icq.exe
PRC - [2013.08.12 10:12:38 | 000,295,376 | ---- | M] (Microsoft Corporation) -- c:\Program Files\Microsoft Security Client\NisSrv.exe
PRC - [2013.08.12 10:12:38 | 000,022,208 | ---- | M] (Microsoft Corporation) -- c:\Program Files\Microsoft Security Client\MsMpEng.exe
PRC - [2013.08.12 10:11:20 | 000,995,176 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Security Client\msseces.exe
PRC - [2013.06.06 03:02:22 | 007,519,512 | ---- | M] (Pokki) -- C:\Users\MM\AppData\Local\Pokki\Engine\pokki.exe
PRC - [2013.05.29 23:20:09 | 000,049,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\taskhost.exe
PRC - [2013.05.25 02:47:30 | 027,776,968 | ---- | M] (Dropbox, Inc.) -- C:\Users\MM\AppData\Roaming\Dropbox\bin\Dropbox.exe
PRC - [2013.05.11 12:37:26 | 000,065,640 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
PRC - [2013.04.19 01:45:32 | 001,090,912 | ---- | M] (Nokia) -- C:\Program Files\Nokia\Nokia Suite\NokiaSuite.exe
PRC - [2013.04.18 11:06:42 | 000,737,616 | ---- | M] (Nokia) -- C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
PRC - [2013.04.18 11:06:32 | 000,179,024 | ---- | M] (Nokia) -- C:\Program Files\PC Connectivity Solution\Transports\NclUSBSrv.exe
PRC - [2013.04.18 11:06:26 | 000,127,312 | ---- | M] (Nokia) -- C:\Program Files\PC Connectivity Solution\Transports\NclRSSrv.exe
PRC - [2013.04.18 11:06:24 | 000,158,032 | ---- | M] (Nokia) -- C:\Program Files\PC Connectivity Solution\Transports\NclMSBTSrvEx.exe
PRC - [2013.01.25 17:42:00 | 001,237,856 | ---- | M] (LULU Software) -- C:\Program Files\Soda PDF 5\HelperService.exe
PRC - [2013.01.25 17:42:00 | 000,877,920 | ---- | M] (LULU Software) -- C:\Program Files\Soda PDF 5\ConversionService.exe
PRC - [2012.04.11 14:18:48 | 001,403,008 | ---- | M] (Genie9) -- C:\Program Files\Genie9\Genie Timeline\GenieTimeLineAgent.exe
PRC - [2012.04.11 14:18:48 | 000,299,648 | ---- | M] (Genie9) -- C:\Program Files\Genie9\Genie Timeline\GenieTimelineService.exe
PRC - [2012.03.29 00:19:32 | 000,405,504 | ---- | M] (AMD) -- C:\Windows\System32\atieclxx.exe
PRC - [2012.03.29 00:18:56 | 000,163,328 | ---- | M] (AMD) -- C:\Windows\System32\atiesrxx.exe
PRC - [2011.02.25 07:30:54 | 002,616,320 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
PRC - [2010.05.17 17:03:14 | 000,105,632 | ---- | M] (Corel) -- C:\Program Files\Common Files\Corel\Standby\Standby.exe
PRC - [2008.06.24 16:06:06 | 001,840,424 | ---- | M] (Nero AG) -- C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe
PRC - [2008.03.20 20:23:22 | 000,083,240 | ---- | M] (Cyberlink Corp.) -- C:\Program Files\CyberLink\PowerDVD8\PDVD8Serv.exe
PRC - [2007.12.06 21:03:41 | 000,660,768 | ---- | M] (ABBYY (BIT Software)) -- C:\Program Files\Common Files\ABBYY\FineReader\9.00\Licensing\PE\NetworkLicenseServer.exe
PRC - [2007.07.24 11:15:14 | 000,185,632 | ---- | M] (Protexis Inc.) -- c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe
PRC - [2007.04.03 18:50:00 | 001,603,152 | ---- | M] (CANON INC.) -- C:\Program Files\Canon\MyPrinter\BJMYPRT.EXE
PRC - [2007.02.04 12:02:14 | 000,079,400 | ---- | M] (Nuance Communications, Inc.) -- C:\Program Files\ScanSoft\OmniPageSE4\OpWareSE4.exe
========== Modules (No Company Name) ==========
MOD - [2013.10.09 23:04:53 | 000,851,456 | ---- | M] () -- C:\Users\MM\AppData\Roaming\ICQM\ICQ\dll\YLUSBTEL.dll
MOD - [2013.10.09 23:04:53 | 000,304,976 | ---- | M] () -- C:\Users\MM\AppData\Roaming\ICQM\ICQ\dll\mramenu.dll
MOD - [2013.10.09 02:02:43 | 000,415,184 | ---- | M] () -- C:\Users\MM\AppData\Local\Google\Chrome\Application\30.0.1599.101\ppgooglenaclpluginchrome.dll
MOD - [2013.10.09 02:02:41 | 004,055,504 | ---- | M] () -- C:\Users\MM\AppData\Local\Google\Chrome\Application\30.0.1599.101\pdf.dll
MOD - [2013.10.09 02:01:50 | 000,698,832 | ---- | M] () -- C:\Users\MM\AppData\Local\Google\Chrome\Application\30.0.1599.101\libglesv2.dll
MOD - [2013.10.09 02:01:49 | 000,099,792 | ---- | M] () -- C:\Users\MM\AppData\Local\Google\Chrome\Application\30.0.1599.101\libegl.dll
MOD - [2013.10.09 02:01:47 | 001,604,560 | ---- | M] () -- C:\Users\MM\AppData\Local\Google\Chrome\Application\30.0.1599.101\ffmpegsumo.dll
MOD - [2013.06.06 03:02:24 | 001,517,848 | ---- | M] () -- C:\Users\MM\AppData\Local\Pokki\ocdeskband_0.dll
MOD - [2013.04.19 01:46:32 | 000,276,832 | ---- | M] () -- C:\Program Files\Nokia\Nokia Suite\phonon4.dll
MOD - [2013.04.19 01:46:32 | 000,093,024 | ---- | M] () -- C:\Program Files\Nokia\Nokia Suite\qjson.dll
MOD - [2013.04.19 01:46:16 | 002,653,024 | ---- | M] () -- C:\Program Files\Nokia\Nokia Suite\QtXmlPatterns4.dll
MOD - [2013.04.19 01:46:16 | 000,364,384 | ---- | M] () -- C:\Program Files\Nokia\Nokia Suite\QtXml4.dll
MOD - [2013.04.19 01:46:14 | 011,166,560 | ---- | M] () -- C:\Program Files\Nokia\Nokia Suite\QtWebKit4.dll
MOD - [2013.04.19 01:46:12 | 001,346,912 | ---- | M] () -- C:\Program Files\Nokia\Nokia Suite\QtScript4.dll
MOD - [2013.04.19 01:46:12 | 000,206,176 | ---- | M] () -- C:\Program Files\Nokia\Nokia Suite\QtSql4.dll
MOD - [2013.04.19 01:46:10 | 001,014,624 | ---- | M] () -- C:\Program Files\Nokia\Nokia Suite\QtNetwork4.dll
MOD - [2013.04.19 01:46:10 | 000,720,736 | ---- | M] () -- C:\Program Files\Nokia\Nokia Suite\QtOpenGL4.dll
MOD - [2013.04.19 01:46:08 | 008,507,232 | ---- | M] () -- C:\Program Files\Nokia\Nokia Suite\QtGui4.dll
MOD - [2013.04.19 01:46:08 | 000,520,544 | ---- | M] () -- C:\Program Files\Nokia\Nokia Suite\QtMultimediaKit1.dll
MOD - [2013.04.19 01:46:06 | 002,480,992 | ---- | M] () -- C:\Program Files\Nokia\Nokia Suite\QtDeclarative4.dll
MOD - [2013.04.19 01:46:06 | 002,354,016 | ---- | M] () -- C:\Program Files\Nokia\Nokia Suite\QtCore4.dll
MOD - [2013.04.19 01:46:02 | 000,446,304 | ---- | M] () -- C:\Program Files\Nokia\Nokia Suite\sqldrivers\qsqlite4.dll
MOD - [2013.04.19 01:45:58 | 000,207,200 | ---- | M] () -- C:\Program Files\Nokia\Nokia Suite\Imageformats\qjpeg4.dll
MOD - [2013.04.19 01:45:58 | 000,035,680 | ---- | M] () -- C:\Program Files\Nokia\Nokia Suite\Imageformats\qico4.dll
MOD - [2013.04.19 01:45:56 | 000,033,120 | ---- | M] () -- C:\Program Files\Nokia\Nokia Suite\Imageformats\qgif4.dll
MOD - [2013.04.19 01:45:28 | 000,438,624 | ---- | M] () -- C:\Program Files\Nokia\Nokia Suite\NService.dll
MOD - [2013.04.19 01:44:48 | 000,606,560 | ---- | M] () -- C:\Program Files\Nokia\Nokia Suite\CommonUpdateChecker.dll
MOD - [2013.04.15 13:26:16 | 000,391,600 | ---- | M] () -- C:\Program Files\Nokia\Nokia Suite\ssoengine.dll
MOD - [2013.04.15 13:26:16 | 000,059,280 | ---- | M] () -- C:\Program Files\Nokia\Nokia Suite\securestorage.dll
MOD - [2013.03.13 22:48:52 | 024,978,944 | ---- | M] () -- C:\Users\MM\AppData\Roaming\Dropbox\bin\libcef.dll
MOD - [2013.01.26 04:53:28 | 000,716,288 | ---- | M] () -- C:\Users\MM\AppData\Local\Pokki\Engine\libGLESv2.dll
MOD - [2013.01.26 04:53:28 | 000,569,856 | ---- | M] () -- C:\Users\MM\AppData\Local\Pokki\Engine\ppGoogleNaClPluginChrome.dll
MOD - [2013.01.26 04:53:28 | 000,130,048 | ---- | M] () -- C:\Users\MM\AppData\Local\Pokki\Engine\libEGL.dll
MOD - [2013.01.26 00:07:56 | 001,400,846 | ---- | M] () -- C:\Users\MM\AppData\Local\Pokki\Engine\avcodec-54.dll
MOD - [2013.01.26 00:07:54 | 000,222,734 | ---- | M] () -- C:\Users\MM\AppData\Local\Pokki\Engine\avformat-54.dll
MOD - [2013.01.26 00:07:54 | 000,151,054 | ---- | M] () -- C:\Users\MM\AppData\Local\Pokki\Engine\avutil-51.dll
MOD - [2012.11.14 01:32:50 | 003,558,400 | ---- | M] () -- C:\Users\MM\AppData\Roaming\Dropbox\bin\wxmsw28uh_vc.dll
MOD - [2012.08.27 21:33:32 | 000,087,912 | ---- | M] () -- C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
MOD - [2012.08.27 21:33:08 | 001,242,512 | ---- | M] () -- C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
MOD - [2012.04.11 11:38:06 | 000,601,600 | ---- | M] () -- C:\Program Files\Genie9\Genie Timeline\GSBackupManager.gtl
MOD - [2012.04.11 11:38:06 | 000,396,288 | ---- | M] () -- C:\Program Files\Genie9\Genie Timeline\GSIndexDB.gtl
MOD - [2012.04.11 11:38:06 | 000,396,288 | ---- | M] () -- C:\Program Files\Genie9\Genie Timeline\GSIndexDB.dll
MOD - [2012.04.11 11:38:06 | 000,282,624 | ---- | M] () -- C:\Program Files\Genie9\Genie Timeline\OnlineHandler.gtl
MOD - [2012.04.11 11:38:06 | 000,282,624 | ---- | M] () -- C:\Program Files\Genie9\Genie Timeline\OnlineHandler.dll
MOD - [2012.04.11 11:38:06 | 000,280,064 | ---- | M] () -- C:\Program Files\Genie9\Genie Timeline\GSWatcher4.gtl
MOD - [2012.04.11 11:38:06 | 000,168,960 | ---- | M] () -- C:\Program Files\Genie9\Genie Timeline\Settings.gtl
MOD - [2012.04.11 11:38:06 | 000,168,960 | ---- | M] () -- C:\Program Files\Genie9\Genie Timeline\Settings.dll
MOD - [2012.04.11 11:38:06 | 000,158,208 | ---- | M] () -- C:\Program Files\Genie9\Genie Timeline\GSTimelineIconOverlay.gtl
MOD - [2012.04.11 11:38:06 | 000,071,168 | ---- | M] () -- C:\Program Files\Genie9\Genie Timeline\QueueManager.gtl
MOD - [2012.04.11 11:38:06 | 000,071,168 | ---- | M] () -- C:\Program Files\Genie9\Genie Timeline\QueueManager.dll
MOD - [2012.04.11 11:38:06 | 000,059,392 | ---- | M] () -- C:\Program Files\Genie9\Genie Timeline\XBalloonMsgDll.dll
MOD - [2012.04.11 11:38:06 | 000,045,056 | ---- | M] () -- C:\Program Files\Genie9\Genie Timeline\GSLogManager.gtl
MOD - [2012.03.22 11:32:32 | 000,080,384 | ---- | M] () -- C:\Program Files\Genie9\Genie Timeline\GSEncryption.gtl
MOD - [2012.03.22 11:32:32 | 000,080,384 | ---- | M] () -- C:\Program Files\Genie9\Genie Timeline\GSEncryption.dll
MOD - [2012.03.22 11:32:32 | 000,072,704 | ---- | M] () -- C:\Program Files\Genie9\Genie Timeline\GSCurl.dll
MOD - [2012.03.22 11:32:32 | 000,043,008 | ---- | M] () -- C:\Program Files\Genie9\Genie Timeline\GSLibrariesManager.gtl
MOD - [2012.03.22 11:32:32 | 000,043,008 | ---- | M] () -- C:\Program Files\Genie9\Genie Timeline\GSLibrariesManager.dll
MOD - [2012.03.22 11:32:32 | 000,038,400 | ---- | M] () -- C:\Program Files\Genie9\Genie Timeline\GSLogging.gtl
MOD - [2012.03.22 11:32:32 | 000,038,400 | ---- | M] () -- C:\Program Files\Genie9\Genie Timeline\GSLogging.dll
MOD - [2012.03.22 11:32:32 | 000,010,752 | ---- | M] () -- C:\Program Files\Genie9\Genie Timeline\RWLock.gtl
MOD - [2012.03.22 11:32:32 | 000,010,752 | ---- | M] () -- C:\Program Files\Genie9\Genie Timeline\RWLock.dll
MOD - [2012.02.02 11:16:20 | 000,923,136 | ---- | M] () -- C:\Program Files\Genie9\Genie Timeline\sqlite3.gtl
MOD - [2012.02.02 11:16:20 | 000,923,136 | ---- | M] () -- C:\Program Files\Genie9\Genie Timeline\sqlite3.dll
MOD - [2012.02.02 11:16:20 | 000,009,728 | ---- | M] () -- C:\Program Files\Genie9\Genie Timeline\VSSEngine_Proxy.gtl
========== Services (SafeList) ==========
SRV - [2013.10.24 22:15:02 | 000,119,408 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2013.08.12 10:12:38 | 000,295,376 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- c:\Program Files\Microsoft Security Client\NisSrv.exe -- (NisSrv)
SRV - [2013.08.12 10:12:38 | 000,022,208 | ---- | M] (Microsoft Corporation) [Auto | Running] -- c:\Program Files\Microsoft Security Client\MsMpEng.exe -- (MsMpSvc)
SRV - [2013.07.25 16:57:07 | 000,148,000 | ---- | M] (DealPly Technologies Ltd) [On_Demand | Stopped] -- C:\Program Files\DealPlyLive\Update\DealPlyLive.exe -- (dealplylivem)
SRV - [2013.07.25 16:57:07 | 000,148,000 | ---- | M] (DealPly Technologies Ltd) [Auto | Stopped] -- C:\Program Files\DealPlyLive\Update\DealPlyLive.exe -- (dealplylive)
SRV - [2013.06.14 22:50:24 | 000,077,944 | ---- | M] (Autodesk) [On_Demand | Stopped] -- C:\Program Files\Common Files\Autodesk Shared\Service\AdskScSrv.exe -- (Autodesk Licensing Service)
SRV - [2013.06.03 16:21:54 | 000,162,408 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files\Skype\Updater\Updater.exe -- (SkypeUpdate)
SRV - [2013.06.02 15:59:50 | 001,045,256 | ---- | M] (Acresso Software Inc.) [On_Demand | Stopped] -- C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe -- (FLEXnet Licensing Service)
SRV - [2013.05.30 17:52:21 | 001,343,400 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\Wat\WatAdminSvc.exe -- (WatAdminSvc)
SRV - [2013.05.27 06:57:27 | 000,680,960 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2013.05.11 12:37:26 | 000,065,640 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2013.04.18 11:06:42 | 000,737,616 | ---- | M] (Nokia) [On_Demand | Running] -- C:\Program Files\PC Connectivity Solution\ServiceLayer.exe -- (ServiceLayer)
SRV - [2013.01.25 17:42:00 | 001,237,856 | ---- | M] (LULU Software) [Auto | Running] -- C:\Program Files\Soda PDF 5\HelperService.exe -- (Soda PDF 5 Helper Service)
SRV - [2013.01.25 17:42:00 | 000,877,920 | ---- | M] (LULU Software) [Auto | Running] -- C:\Program Files\Soda PDF 5\ConversionService.exe -- (Soda PDF 5 Service)
SRV - [2012.04.11 14:18:48 | 000,299,648 | ---- | M] (Genie9) [Auto | Running] -- C:\Program Files\Genie9\Genie Timeline\GenieTimelineService.exe -- (GenieTimelineService)
SRV - [2012.03.29 00:18:56 | 000,163,328 | ---- | M] (AMD) [Auto | Running] -- C:\Windows\System32\atiesrxx.exe -- (AMD External Events Utility)
SRV - [2009.07.14 03:16:13 | 000,025,088 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\sensrsvc.dll -- (SensrSvc)
SRV - [2009.07.14 03:16:12 | 001,004,544 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\PeerDistSvc.dll -- (PeerDistSvc)
SRV - [2007.12.06 21:03:41 | 000,660,768 | ---- | M] (ABBYY (BIT Software)) [Auto | Running] -- C:\Program Files\Common Files\ABBYY\FineReader\9.00\Licensing\PE\NetworkLicenseServer.exe -- (ABBYY.Licensing.FineReader.Professional.9.0)
SRV - [2007.07.24 11:15:14 | 000,185,632 | ---- | M] (Protexis Inc.) [Auto | Running] -- c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe -- (PSI_SVC_2)
========== Driver Services (SafeList) ==========
DRV - File not found [Kernel | On_Demand | Stopped] -- System32\drivers\rdvgkmd.sys -- (VGPU)
DRV - [2013.10.26 18:32:34 | 000,040,392 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{3791FE4C-224F-42FC-ADDA-775BAEE3B6E1}\MpKslfc814a78.sys -- (MpKslfc814a78)
DRV - [2013.06.18 21:50:08 | 000,107,392 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\NisDrvWFP.sys -- (NisDrv)
DRV - [2013.01.23 10:31:52 | 000,137,600 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\nmwcdnsu.sys -- (nmwcdnsu)
DRV - [2013.01.23 10:31:52 | 000,008,576 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\nmwcdnsuc.sys -- (nmwcdnsuc)
DRV - [2013.01.23 10:31:50 | 000,023,168 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ccdcmbo.sys -- (nmwcdc)
DRV - [2013.01.23 10:31:50 | 000,018,560 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ccdcmb.sys -- (nmwcd)
DRV - [2013.01.23 10:31:50 | 000,008,192 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\usbser_lowerfltj.sys -- (UsbserFilt)
DRV - [2013.01.23 10:31:50 | 000,008,192 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\usbser_lowerflt.sys -- (upperdev)
DRV - [2012.10.17 14:53:46 | 000,019,072 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\pccsmcfd.sys -- (pccsmcfd)
DRV - [2012.09.17 13:05:08 | 000,106,296 | ---- | M] (JMicron Technology Corp.) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\jraid.sys -- (JRAID)
DRV - [2012.08.23 16:46:55 | 000,024,064 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\terminpt.sys -- (terminpt)
DRV - [2012.08.23 16:44:32 | 000,014,848 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\rdpvideominiport.sys -- (RdpVideoMiniport)
DRV - [2012.08.23 16:41:34 | 000,027,136 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\TsUsbGD.sys -- (TsUsbGD)
DRV - [2012.08.23 16:40:25 | 000,049,664 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV - [2012.03.29 05:29:06 | 009,164,800 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\atikmdag.sys -- (atikmdag)
DRV - [2012.03.29 05:29:06 | 009,164,800 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\atikmdag.sys -- (amdkmdag)
DRV - [2012.03.28 23:08:42 | 000,265,216 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\atikmpag.sys -- (amdkmdap)
DRV - [2010.11.20 23:29:03 | 000,175,360 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\vmbus.sys -- (vmbus)
DRV - [2010.11.20 23:29:03 | 000,112,640 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\tsusbhub.sys -- (tsusbhub)
DRV - [2010.11.20 23:29:03 | 000,077,184 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\Synth3dVsc.sys -- (Synth3dVsc)
DRV - [2010.11.20 23:29:03 | 000,062,464 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\dmvsc.sys -- (dmvsc)
DRV - [2010.11.20 23:29:03 | 000,040,704 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\vmstorfl.sys -- (storflt)
DRV - [2010.11.20 23:29:03 | 000,035,968 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\winusb.sys -- (WinUsb)
DRV - [2010.11.20 23:29:03 | 000,028,032 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\storvsc.sys -- (storvsc)
DRV - [2010.11.20 23:29:03 | 000,017,920 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\VMBusHID.sys -- (VMBusHID)
DRV - [2010.11.20 23:29:03 | 000,005,632 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\vms3cap.sys -- (s3cap)
DRV - [2009.09.10 15:58:26 | 000,021,648 | ---- | M] (OLYMPUS IMAGING CORP.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\OlyCamComm.sys -- (OlyCamComm)
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://start.mysearchdial.com/?f=1&a=co ... 243925&ir=
IE - HKLM\..\SearchScopes,DefaultScope = {7603E22C-4D5D-4C45-A8B9-84E3700694EA}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://start.mysearchdial.com/results.p ... 243925&ir=
IE - HKLM\..\SearchScopes\{23323BD6-5313-15CC-F339-29070AFC5562}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-1107837428-173974533-547177936-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Secondary Start Pages = http://www.idnes.cz/http://www.ak [Binary data over 200 bytes]
IE - HKU\S-1-5-21-1107837428-173974533-547177936-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
IE - HKU\S-1-5-21-1107837428-173974533-547177936-1000\..\URLSearchHook: {D8278076-BC68-4484-9233-6E7F1628B56C} - No CLSID value found
IE - HKU\S-1-5-21-1107837428-173974533-547177936-1000\..\SearchScopes,DefaultScope = {7603E22C-4D5D-4C45-A8B9-84E3700694EA}
IE - HKU\S-1-5-21-1107837428-173974533-547177936-1000\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://start.mysearchdial.com/results.p ... 243925&ir=
IE - HKU\S-1-5-21-1107837428-173974533-547177936-1000\..\SearchScopes\{23323BD6-5313-15CC-F339-29070AFC5562}: "URL" = http://www.bing.com/search?q={searchTer ... ORM=IE10SR
IE - HKU\S-1-5-21-1107837428-173974533-547177936-1000\..\SearchScopes\{7603E22C-4D5D-4C45-A8B9-84E3700694EA}: "URL" = http://search.conduit.com/ResultsExt.as ... 18222&UM=2
IE - HKU\S-1-5-21-1107837428-173974533-547177936-1000\..\SearchScopes\{B7B12FF6-3262-4612-A241-1461DA1846DD}: "URL" = http://www.search.ask.com/web?p2=%5EB7N ... 6spr%253Da
IE - HKU\S-1-5-21-1107837428-173974533-547177936-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-1107837428-173974533-547177936-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local
========== FireFox ==========
FF - prefs.js..CT3078318.browser.search.defaultthis.engineName: "true"
FF - prefs.js..browser.search.defaultenginename: "ytbyclick Customized Web Search"
FF - prefs.js..browser.search.defaultthis.engineName: "ytbyclick Customized Web Search"
FF - prefs.js..browser.search.defaulturl: "http://search.conduit.com/ResultsExt.as ... earchTerms}"
FF - prefs.js..browser.search.selectedEngine: "ytbyclick Customized Web Search"
FF - prefs.js..browser.startup.homepage: "http://www.seznam.cz/"
FF - prefs.js..extensions.enabledAddons: WebSiteRecommendation%40weliketheweb.com:1.0.5
FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:21.0
FF - HKLM\Software\MozillaPlugins\@adobe.com/AuthorwarePlayer: C:\Windows\system32\Macromed\AUTHORWA\np32asw.dll (Macromedia, Inc.)
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF32_11_6_602_180.dll ()
FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\Windows\system32\Adobe\Director\np32dsw_1200112.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@garmin.com/GpsControl: C:\Program Files\Garmin GPS Plugin\npGarmin.dll (GARMIN Corp.)
FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.45.2: C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.45.2: C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@nokia.com/EnablerPlugin: C:\Program Files\Nokia\Nokia Suite\npNokiaSuiteEnabler.dll ( )
FF - HKLM\Software\MozillaPlugins\@tools.dpliveupdate.com/DealPlyLive Update;version=3: C:\Program Files\DealPlyLive\Update\1.3.23.0\npGoogleUpdate3.dll (DealPly Technologies Ltd)
FF - HKLM\Software\MozillaPlugins\@tools.dpliveupdate.com/DealPlyLive Update;version=9: C:\Program Files\DealPlyLive\Update\1.3.23.0\npGoogleUpdate3.dll (DealPly Technologies Ltd)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Users\MM\AppData\Local\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Users\MM\AppData\Local\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.)
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\FFSodaPDF5Converter@sodapdf.com: C:\Program Files\Soda PDF 5\FFSoda5Ext [2013.06.02 14:59:24 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 21.0\extensions\\Components: C:\Program Files\Mozilla Firefox\components
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 21.0\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Thunderbird 24.0.1\extensions\\Components: C:\Program Files\Mozilla Thunderbird\components
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Thunderbird 24.0.1\extensions\\Plugins: C:\Program Files\Mozilla Thunderbird\plugins
[2013.05.28 22:55:48 | 000,000,000 | ---D | M] (No name found) -- C:\Users\MM\AppData\Roaming\Mozilla\Extensions
[2013.10.13 14:57:48 | 000,000,000 | ---D | M] (No name found) -- C:\Users\MM\AppData\Roaming\Mozilla\Firefox\Profiles\cdxqgtr4.default\extensions
[2013.10.13 14:57:53 | 000,000,000 | ---D | M] (ytbyclick) -- C:\Users\MM\AppData\Roaming\Mozilla\Firefox\Profiles\cdxqgtr4.default\extensions\{d4f1c433-f9c3-49f2-8645-37dbeca19e90}
[2013.10.13 14:57:53 | 000,000,000 | ---D | M] (No name found) -- C:\Users\MM\AppData\Roaming\Mozilla\Firefox\Profiles\cdxqgtr4.default\extensions\staged
[2013.10.13 14:57:43 | 000,000,000 | ---D | M] (No name found) -- C:\Users\MM\AppData\Roaming\Mozilla\Firefox\Profiles\cdxqgtr4.default\extensions\trash
[2013.06.30 11:07:59 | 000,000,000 | ---D | M] ("WebSite Recommendation") -- C:\Users\MM\AppData\Roaming\Mozilla\Firefox\Profiles\cdxqgtr4.default\extensions\WebSiteRecommendation@weliketheweb.com
[2013.06.30 00:10:12 | 000,000,000 | ---D | M] (No name found) -- C:\Users\MM\AppData\Roaming\Mozilla\Firefox\Profilescdxqgtr4.default\extensions
[2013.06.30 00:10:12 | 000,000,000 | ---D | M] (No name found) -- C:\Users\MM\AppData\Roaming\Mozilla\Firefox\Profilescdxqgtr4.default\extensions\staged
[2013.05.28 18:09:42 | 000,197,611 | ---- | M] () (No name found) -- C:\Users\MM\AppData\Roaming\Mozilla\Firefox\Profiles\cdxqgtr4.default\extensions\ftdownloader4@ftdownloader.com.xpi
[2013.06.30 10:44:04 | 000,239,491 | ---- | M] () (No name found) -- C:\Users\MM\AppData\Roaming\Mozilla\Firefox\Profiles\cdxqgtr4.default\extensions\trtv3@trtv.com.xpi
[2013.06.30 00:08:21 | 000,000,995 | ---- | M] () -- C:\Users\MM\AppData\Roaming\Mozilla\Firefox\Profiles\cdxqgtr4.default\searchplugins\conduit.xml
[2013.06.05 13:25:39 | 000,002,389 | ---- | M] () -- C:\Users\MM\AppData\Roaming\Mozilla\Firefox\Profiles\cdxqgtr4.default\searchplugins\Mysearchdial.xml
[2013.05.29 19:56:58 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\browser\extensions
[2013.05.29 19:56:58 | 000,000,000 | ---D | M] (Default) -- C:\Program Files\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
========== Chrome ==========
CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}{google:omniboxStartMarginParameter}ie={inputEncoding}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client={google:suggestClient}&q={searchTerms}&{google:cursorPosition}{google:zeroPrefixUrl}{google:pageClassification}sugkey={google:suggestAPIKeyParameter},
CHR - homepage:
CHR - plugin: Shockwave Flash (Enabled) = C:\Users\MM\AppData\Local\Google\Chrome\Application\30.0.1599.101\PepperFlash\pepflashplayer.dll
CHR - plugin: Chrome Remote Desktop Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Users\MM\AppData\Local\Google\Chrome\Application\30.0.1599.101\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Users\MM\AppData\Local\Google\Chrome\Application\30.0.1599.101\pdf.dll
CHR - plugin: Adobe Acrobat (Enabled) = C:\Program Files\Adobe\Reader 11.0\Reader\Browser\nppdf32.dll
CHR - plugin: Garmin Communicator Plug-In (Enabled) = C:\Program Files\Garmin GPS Plugin\npGarmin.dll
CHR - plugin: Google Earth Plugin (Enabled) = C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll
CHR - plugin: Java(TM) Platform SE 7 U17 (Enabled) = C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll
CHR - plugin: Nokia Suite Enabler Plugin (Enabled) = C:\Program Files\Nokia\Nokia Suite\npNokiaSuiteEnabler.dll
CHR - plugin: iTunes Application Detector (Enabled) = C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll
CHR - plugin: Google Update (Enabled) = C:\Users\MM\AppData\Local\Google\Update\1.3.21.111\npGoogleUpdate3.dll
CHR - plugin: Shockwave for Director (Enabled) = C:\Windows\system32\Adobe\Director\np32dsw_1200112.dll
CHR - plugin: Authorware Web Player (Enabled) = C:\Windows\system32\Macromed\AUTHORWA\np32asw.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Windows\system32\Macromed\Flash\NPSWF32_11_6_602_180.dll
CHR - plugin: Java Deployment Toolkit 7.0.170.2 (Enabled) = C:\Windows\system32\npDeployJava1.dll
CHR - Extension: CacheList = C:\Users\MM\AppData\Local\Google\Chrome\User Data\Default\Extensions\amhhdbdhoghppijbjfdkiaconkmfbbpa\3.0.4_0\
CHR - Extension: Dokumenty Google = C:\Users\MM\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\
CHR - Extension: Disk Google = C:\Users\MM\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\
CHR - Extension: YouTube = C:\Users\MM\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\
CHR - Extension: Vyhled\u00E1v\u00E1n\u00ED Google = C:\Users\MM\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\
CHR - Extension: ytbyclick = C:\Users\MM\AppData\Local\Google\Chrome\User Data\Default\Extensions\edflbdjfhpiboilnedfoiepbmcllkedb\10.20.1.508_0\
CHR - Extension: DealPly Shopping = C:\Users\MM\AppData\Local\Google\Chrome\User Data\Default\Extensions\mphpbdjcljebbcnfopfngmfdackbbdgf\3.5.0.0_0\
CHR - Extension: Chrome In-App Payments service = C:\Users\MM\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.4.11_0\
CHR - Extension: Gmail = C:\Users\MM\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\
O1 HOSTS File: ([2009.06.10 23:39:37 | 000,000,824 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (DealPly Shopping) - {ae48ed75-5a56-4c5f-bbce-6f1ac3875f66} - C:\Program Files\DealPly\DealPlyIE.dll (DealPly)
O2 - BHO: (Soda PDF 5 IE Helper) - {C737F472-1193-4281-BF53-A00B67AB3E19} - C:\Program Files\Soda PDF 5\PDFIEHelper.dll (LULU Software)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O3 - HKLM\..\Toolbar: (Soda PDF 5 IE Toolbar) - {F335ABA2-FDB4-4644-92B2-5CC4B0FC91D6} - C:\Program Files\Soda PDF 5\PDFIEPlugin.dll (LULU Software)
O3 - HKU\S-1-5-21-1107837428-173974533-547177936-1000\..\Toolbar\WebBrowser: (no name) - {434D452D-5637-006A-76A7-7A786E7484D7} - No CLSID value found.
O4 - HKLM..\Run: [AdobeAAMUpdater-1.0] C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [APSDaemon] C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc.)
O4 - HKLM..\Run: [CanonMyPrinter] C:\Program Files\Canon\MyPrinter\BJMyPrt.exe (CANON INC.)
O4 - HKLM..\Run: [CanonSolutionMenu] C:\Program Files\Canon\SolutionMenu\CNSLMAIN.exe (CANON INC.)
O4 - HKLM..\Run: [MSC] C:\Program Files\Microsoft Security Client\msseces.exe (Microsoft Corporation)
O4 - HKLM..\Run: [NBKeyScan] C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe (Nero AG)
O4 - HKLM..\Run: [OpwareSE4] C:\Program Files\ScanSoft\OmniPageSE4\OpwareSE4.exe (Nuance Communications, Inc.)
O4 - HKLM..\Run: [PDVD8LanguageShortcut] C:\Program Files\CyberLink\PowerDVD8\Language\Language.exe ()
O4 - HKLM..\Run: [RemoteControl8] C:\Program Files\CyberLink\PowerDVD8\PDVD8Serv.exe (Cyberlink Corp.)
O4 - HKLM..\Run: [Standby] c:\Program Files\Common Files\Corel\Standby\Standby.exe (Corel)
O4 - HKU\S-1-5-21-1107837428-173974533-547177936-1000..\Run: [] File not found
O4 - HKU\S-1-5-21-1107837428-173974533-547177936-1000..\Run: [ICQ] C:\Users\MM\AppData\Roaming\ICQM\icq.exe (ICQ)
O4 - HKU\S-1-5-21-1107837428-173974533-547177936-1000..\Run: [IndxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe (Nero AG)
O4 - HKU\S-1-5-21-1107837428-173974533-547177936-1000..\Run: [NokiaSuite.exe] C:\Program Files\Nokia\Nokia Suite\NokiaSuite.exe (Nokia)
O4 - HKU\S-1-5-21-1107837428-173974533-547177936-1000..\Run: [Pokki] C:\Windows\system32\rundll32.exe "%LOCALAPPDATA%\Pokki\Engine\LaunchDeskband.dll",RunLaunchDeskband File not found
O4 - HKU\S-1-5-19..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (Microsoft Corporation)
O4 - HKU\S-1-5-20..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (Microsoft Corporation)
O4 - Startup: C:\Users\MM\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk = C:\Users\MM\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLinkedConnections = 1
O7 - HKU\S-1-5-21-1107837428-173974533-547177936-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O9 - Extra Button: ICQ7M - {781B39EC-2E18-41FC-9B00-B84E4FFCA85F} - C:\Program Files\ICQ7M\ICQ.exe (ICQ, LLC.)
O9 - Extra 'Tools' menuitem : ICQ7M - {781B39EC-2E18-41FC-9B00-B84E4FFCA85F} - C:\Program Files\ICQ7M\ICQ.exe (ICQ, LLC.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O13 - gopher Prefix: missing
O15 - HKLM\..Trusted Domains: mojebanka.cz ([etrading] https in Trusted sites)
O15 - HKLM\..Trusted Domains: mojebanka.cz ([www] https in Trusted sites)
O15 - HKU\S-1-5-21-1107837428-173974533-547177936-1000\..Trusted Domains: mojebanka.cz ([etrading] https in Důvěryhodné weby)
O15 - HKU\S-1-5-21-1107837428-173974533-547177936-1000\..Trusted Domains: mojebanka.cz ([www] https in Důvěryhodné weby)
O16 - DPF: Garmin Communicator Plug-In https://static.garmincdn.com/gcp/ie/4.0 ... rol_32.CAB (Reg Error: Key error.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{88F0FE0E-3F47-432C-A9AE-1A63BE7485A1}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{B3CF2AB9-B78C-45F0-BABF-2D8E6E8BF54E}: DhcpNameServer = 192.168.1.20
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\System32\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2013.06.05 17:34:33 | 000,000,000 | ---D | M] - C:\Autodesk -- [ NTFS ]
O32 - AutoRun File - [2009.06.10 23:42:20 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O33 - MountPoints2\{8f321bda-f4f3-11e2-bdc2-001d7d08db0f}\Shell - "" = AutoRun
O33 - MountPoints2\{8f321bda-f4f3-11e2-bdc2-001d7d08db0f}\Shell\AutoRun\command - "" = J:\iStudio.exe
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)
CREATERESTOREPOINT
Restore point Set: OTL Restore Point
NetSvcs: FastUserSwitchingCompatibility - File not found
NetSvcs: Ias - C:\Windows\System32\ias.dll (Microsoft Corporation)
NetSvcs: Nla - File not found
NetSvcs: Ntmssvc - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: SRService - File not found
NetSvcs: WmdmPmSp - File not found
NetSvcs: LogonHours - File not found
NetSvcs: PCAudit - File not found
NetSvcs: helpsvc - File not found
NetSvcs: uploadmgr - File not found
Drivers32: msacm.aacacm - C:\Windows\System32\AACACM.acm (fccHandler)
Drivers32: msacm.ac3acm - C:\Windows\System32\AC3ACM.acm (fccHandler)
Drivers32: msacm.avis - C:\Windows\System32\ff_acm.acm ()
Drivers32: msacm.dvacm - c:\Program Files\Common Files\Ulead Systems\VIO\DVACM.acm (Corel TW Corp.)
Drivers32: msacm.iac2 - C:\Windows\System32\iac25_32.ax (Intel Corporation)
Drivers32: msacm.l3acm - C:\Windows\System32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.lameacm - C:\Windows\System32\LameACM.acm (http://www.mp3dev.org/)
Drivers32: VIDC.CFHD - C:\Windows\System32\CFHD.dll (CineForm Inc.)
Drivers32: VIDC.CSCD - C:\Windows\System32\CamCodec.dll (CamStudio Group)
Drivers32: vidc.cvid - C:\Windows\System32\iccvid.dll (Radius Inc.)
Drivers32: vidc.dvsd - C:\Windows\System32\pdvcodec.dll (Matsushita Electric Industrial Co., Ltd.)
Drivers32: vidc.ffds - C:\Windows\System32\ff_vfw.dll ()
Drivers32: VIDC.GEOS - C:\Windows\System32\GeoCodecD.dll (GeoVision)
Drivers32: VIDC.GEOV - C:\Windows\System32\GeoCodec.dll (GeoVision)
Drivers32: VIDC.GEOX - C:\Windows\System32\GeoCodec.dll (GeoVision)
Drivers32: VIDC.IV41 - C:\Windows\System32\ir41_32.dll (Intel Corporation)
Drivers32: VIDC.IV50 - C:\Windows\System32\ir50_32.dll (Intel Corporation)
Drivers32: VIDC.LAGS - C:\Windows\System32\lagarith.dll ( )
Drivers32: VIDC.MLCY - C:\Windows\System32\mlc.dll ()
Drivers32: VIDC.ULRA - C:\Windows\System32\utv_vcm.dll ()
Drivers32: VIDC.ULRG - C:\Windows\System32\utv_vcm.dll ()
Drivers32: VIDC.ULY0 - C:\Windows\System32\utv_vcm.dll ()
Drivers32: VIDC.ULY2 - C:\Windows\System32\utv_vcm.dll ()
Drivers32: VIDC.VMnc - C:\Windows\System32\vmnc.dll (VMware, Inc.)
Drivers32: VIDC.VP80 - C:\Windows\System32\vp8vfw.dll (Optima SC Inc.)
Drivers32: vidc.x264 - C:\Program Files\x264vfw\x264vfw.dll ()
Drivers32: vidc.XVID - C:\Windows\System32\xvidvfw.dll ()
PhysicalDisk0 MBR saved to C:\PhysicalMBR.bin
========== Files/Folders - Created Within 30 Days ==========
[2013.10.26 20:47:42 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\MM\Desktop\OTL (1).exe
[2013.10.26 11:02:48 | 000,000,000 | ---D | C] -- C:\tmp
[2013.10.26 11:02:48 | 000,000,000 | ---D | C] -- C:\output
[2013.10.26 08:54:45 | 000,000,000 | R--D | C] -- C:\Users\MM\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CyberLink PowerDVD 8
[2013.10.25 23:00:53 | 000,000,000 | ---D | C] -- C:\Program Files\trend micro
[2013.10.25 22:59:36 | 000,000,000 | ---D | C] -- C:\Users\MM\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
[2013.10.25 22:59:35 | 000,000,000 | ---D | C] -- C:\rsit
[2013.10.25 11:05:39 | 000,284,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\usbport.sys
[2013.10.25 11:05:39 | 000,006,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\usbd.sys
[2013.10.24 22:14:46 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Thunderbird
[2013.10.19 10:33:39 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Java
[2013.10.19 10:33:32 | 000,264,616 | ---- | C] (Oracle Corporation) -- C:\Windows\System32\javaws.exe
[2013.10.19 10:33:26 | 000,175,016 | ---- | C] (Oracle Corporation) -- C:\Windows\System32\javaw.exe
[2013.10.19 10:33:26 | 000,174,504 | ---- | C] (Oracle Corporation) -- C:\Windows\System32\java.exe
[2013.10.19 10:33:26 | 000,094,632 | ---- | C] (Oracle Corporation) -- C:\Windows\System32\WindowsAccessBridge.dll
[2013.10.19 10:33:26 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
[2013.10.19 10:21:37 | 000,000,000 | ---D | C] -- C:\Users\MM\KBCertifikat
[2013.10.19 10:13:15 | 000,000,000 | ---D | C] -- C:\Users\MM\kbpki
[2013.10.19 10:11:11 | 000,000,000 | ---D | C] -- C:\ProgramData\Oracle
[2013.10.19 09:55:44 | 000,000,000 | ---D | C] -- C:\ProgramData\Sun
[2013.10.18 09:51:15 | 000,000,000 | ---D | C] -- C:\Windows\Sun
[2013.10.13 22:19:54 | 000,000,000 | ---D | C] -- C:\Users\MM\Desktop\weby_prac
[2013.10.13 16:37:56 | 000,000,000 | ---D | C] -- C:\Users\MM\Desktop\prac složka trasy GPX
[2013.10.11 10:42:32 | 002,876,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jscript9.dll
[2013.10.11 10:42:32 | 002,706,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mshtml.tlb
[2013.10.11 10:42:31 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iesetup.dll
[2013.10.11 10:42:31 | 000,039,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jsproxy.dll
[2013.10.11 10:42:30 | 000,493,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeeds.dll
[2013.10.11 10:42:30 | 000,391,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieui.dll
[2013.10.11 10:42:30 | 000,042,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ie4uinit.exe
[2013.10.11 10:42:30 | 000,033,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iernonce.dll
[2013.10.11 10:42:29 | 000,109,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iesysprep.dll
[2013.10.11 10:42:29 | 000,071,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\RegisterIEPKEYs.exe
[2013.10.11 08:52:27 | 000,055,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\hidclass.sys
[2013.10.11 08:52:26 | 000,025,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\hidparse.sys
[2013.10.11 08:52:18 | 003,969,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntkrnlpa.exe
[2013.10.11 08:52:17 | 003,914,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntoskrnl.exe
[2013.10.11 08:52:17 | 000,619,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\tdh.dll
[2013.10.11 08:52:13 | 000,102,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PresentationCFFRasterizerNative_v0300.dll
[2013.10.11 08:52:11 | 000,295,424 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\System32\atmfd.dll
[2013.10.11 08:52:11 | 000,070,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\fontsub.dll
[2013.10.11 08:52:11 | 000,034,304 | ---- | C] (Adobe Systems) -- C:\Windows\System32\atmlib.dll
[2013.10.11 08:52:11 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dciman32.dll
[2013.10.11 08:52:09 | 000,434,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\scavengeui.dll
[2013.10.11 08:52:05 | 002,348,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\win32k.sys
[2013.10.09 23:05:02 | 000,000,000 | ---D | C] -- C:\Users\MM\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ICQ
[2013.10.09 23:04:45 | 000,000,000 | ---D | C] -- C:\Users\MM\AppData\Roaming\ICQM
[2013.10.09 23:04:25 | 000,000,000 | ---D | C] -- C:\Users\MM\AppData\Roaming\ICQ-Profile
[2013.10.05 18:11:25 | 000,000,000 | ---D | C] -- C:\Users\MM\Documents\Incomedia
[2013.10.05 18:03:57 | 000,000,000 | ---D | C] -- C:\Users\MM\AppData\Local\Incomedia
[2013.10.05 18:03:41 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WebSite X5 v10 - Home
[2013.10.05 18:02:56 | 000,000,000 | ---D | C] -- C:\Program Files\WebSite X5 v10 - Home
[2013.10.05 17:37:33 | 000,000,000 | ---D | C] -- C:\Users\MM\AppData\Roaming\Ashampoo Slideshow Studio 2013
[2013.10.05 17:31:00 | 011,706,640 | ---- | C] (CompSoft) -- C:\Users\MM\Desktop\LastFM.exe
[2013.06.02 11:54:33 | 000,047,360 | ---- | C] (VSO Software) -- C:\Users\MM\AppData\Roaming\pcouffin.sys
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
========== Files - Modified Within 30 Days ==========
[2013.10.26 20:53:04 | 000,000,950 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1107837428-173974533-547177936-1000UA.job
[2013.10.26 20:52:13 | 000,000,512 | ---- | M] () -- C:\PhysicalMBR.bin
[2013.10.26 20:47:45 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\MM\Desktop\OTL (1).exe
[2013.10.26 20:02:00 | 000,000,886 | ---- | M] () -- C:\Windows\tasks\DealPlyLiveUpdateTaskMachineUA.job
[2013.10.26 19:57:00 | 000,000,278 | ---- | M] () -- C:\Windows\tasks\Dealply.job
[2013.10.26 17:02:00 | 000,000,882 | ---- | M] () -- C:\Windows\tasks\DealPlyLiveUpdateTaskMachineCore.job
[2013.10.26 15:59:00 | 000,001,158 | ---- | M] () -- C:\Windows\tasks\Torntv 2-updater.job
[2013.10.26 15:59:00 | 000,001,152 | ---- | M] () -- C:\Windows\tasks\Torntv 2-codedownloader.job
[2013.10.26 15:59:00 | 000,001,062 | ---- | M] () -- C:\Windows\tasks\Torntv 2-enabler.job
[2013.10.26 09:04:59 | 000,026,576 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2013.10.26 09:04:59 | 000,026,576 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2013.10.26 08:53:10 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2013.10.26 08:52:38 | 2616,057,856 | -HS- | M] () -- C:\hiberfil.sys
[2013.10.24 08:53:00 | 000,000,898 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1107837428-173974533-547177936-1000Core.job
[2013.10.21 22:35:49 | 000,666,194 | ---- | M] () -- C:\Windows\System32\perfh005.dat
[2013.10.21 22:35:49 | 000,651,938 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2013.10.21 22:35:49 | 000,139,890 | ---- | M] () -- C:\Windows\System32\perfc005.dat
[2013.10.21 22:35:49 | 000,120,870 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2013.10.19 10:33:19 | 000,094,632 | ---- | M] (Oracle Corporation) -- C:\Windows\System32\WindowsAccessBridge.dll
[2013.10.19 10:33:17 | 000,264,616 | ---- | M] (Oracle Corporation) -- C:\Windows\System32\javaws.exe
[2013.10.19 10:33:17 | 000,175,016 | ---- | M] (Oracle Corporation) -- C:\Windows\System32\javaw.exe
[2013.10.19 10:33:16 | 000,174,504 | ---- | M] (Oracle Corporation) -- C:\Windows\System32\java.exe
[2013.10.16 09:04:44 | 000,002,346 | ---- | M] () -- C:\Users\MM\Desktop\Google Chrome.lnk
[2013.10.11 17:16:49 | 003,812,192 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
[2013.10.09 23:13:58 | 000,001,945 | ---- | M] () -- C:\Windows\epplauncher.mif
[2013.10.09 23:05:02 | 000,001,790 | ---- | M] () -- C:\Users\MM\Desktop\ICQ8.lnk
[2013.10.05 18:03:41 | 000,001,061 | ---- | M] () -- C:\Users\Public\Desktop\WebSite X5 Home 10.lnk
[2013.10.05 17:37:22 | 000,001,305 | ---- | M] () -- C:\Users\Public\Desktop\Ashampoo Slideshow Studio 2013.lnk
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
========== Files Created - No Company Name ==========
[2013.10.26 20:52:13 | 000,000,512 | ---- | C] () -- C:\PhysicalMBR.bin
[2013.10.09 23:05:02 | 000,001,790 | ---- | C] () -- C:\Users\MM\Desktop\ICQ8.lnk
[2013.10.05 18:03:41 | 000,001,061 | ---- | C] () -- C:\Users\Public\Desktop\WebSite X5 Home 10.lnk
[2013.10.05 17:37:22 | 000,001,305 | ---- | C] () -- C:\Users\Public\Desktop\Ashampoo Slideshow Studio 2013.lnk
[2013.08.03 17:10:01 | 000,000,088 | RHS- | C] () -- C:\ProgramData\48AE367A9D.sys
[2013.08.03 17:09:59 | 000,006,266 | -HS- | C] () -- C:\ProgramData\KGyGaAvL.sys
[2013.08.03 14:45:59 | 000,000,010 | ---- | C] () -- C:\Users\MM\AppData\Roaming\pdfdrawcodec.dll
[2013.06.02 12:05:36 | 000,039,095 | ---- | C] () -- C:\Windows\iccsigs.dat
[2013.06.02 12:05:35 | 000,112,688 | ---- | C] () -- C:\Windows\System32\shw32.dll
[2013.06.02 11:54:33 | 000,087,608 | ---- | C] () -- C:\Users\MM\AppData\Roaming\inst.exe
[2013.06.02 11:54:33 | 000,007,887 | ---- | C] () -- C:\Users\MM\AppData\Roaming\pcouffin.cat
[2013.06.02 11:54:33 | 000,001,144 | ---- | C] () -- C:\Users\MM\AppData\Roaming\pcouffin.inf
[2013.06.02 11:33:11 | 000,001,024 | ---- | C] () -- C:\Users\MM\.rnd
[2013.05.30 18:38:11 | 000,000,412 | ---- | C] () -- C:\Windows\MAXLINK.INI
[2013.05.28 18:54:12 | 000,000,384 | ---- | C] () -- C:\Windows\ODBC.INI
[2013.05.28 17:21:28 | 000,000,017 | ---- | C] () -- C:\Users\MM\AppData\Local\resmon.resmoncfg
[2013.05.28 17:13:22 | 000,650,752 | ---- | C] () -- C:\Windows\System32\xvidcore.dll
[2013.05.28 17:13:22 | 000,243,200 | ---- | C] () -- C:\Windows\System32\xvidvfw.dll
[2013.05.28 17:13:21 | 000,155,648 | ---- | C] () -- C:\Windows\System32\utv_core.dll
[2013.05.28 17:13:21 | 000,069,632 | ---- | C] () -- C:\Windows\System32\utv_vcm.dll
[2013.05.28 17:13:20 | 000,715,038 | ---- | C] () -- C:\Windows\unins000.exe
[2013.05.28 17:13:20 | 000,216,064 | ---- | C] ( ) -- C:\Windows\System32\lagarith.dll
[2013.05.28 17:13:20 | 000,001,778 | ---- | C] () -- C:\Windows\unins000.dat
[2013.05.28 17:11:19 | 000,271,264 | ---- | C] () -- C:\Windows\System32\vbrun100.dll
[2013.05.28 17:11:19 | 000,210,944 | ---- | C] () -- C:\Windows\System32\msvcrt10.dll
[2013.05.28 17:10:47 | 000,600,880 | ---- | C] () -- C:\Windows\System32\atiicdxx.dat
[2013.05.28 17:10:47 | 000,204,960 | ---- | C] () -- C:\Windows\System32\ativvsvl.dat
[2013.05.28 17:10:47 | 000,157,152 | ---- | C] () -- C:\Windows\System32\ativvsva.dat
[2013.05.28 17:10:26 | 000,053,248 | ---- | C] () -- C:\Windows\System32\amdverag.dll
[2013.05.28 17:08:47 | 000,003,917 | ---- | C] () -- C:\Windows\System32\atipblag.dat
[2013.05.28 17:08:25 | 000,413,797 | ---- | C] () -- C:\Windows\System32\drivers\RTAIODAT.DAT
[2013.05.28 16:50:34 | 000,000,000 | ---- | C] () -- C:\Windows\ativpsrm.bin
[2013.03.13 18:49:46 | 000,112,640 | ---- | C] () -- C:\Windows\System32\ff_vfw.dll
[2013.02.07 14:22:00 | 000,050,330 | ---- | C] () -- C:\Program Files\AntiDust.exe
[2012.05.21 16:28:58 | 000,155,648 | ---- | C] () -- C:\Windows\System32\mlc.dll
========== ZeroAccess Check ==========
[2009.07.14 06:42:31 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini
[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2013.07.26 03:55:59 | 012,872,704 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2010.11.20 23:29:20 | 000,606,208 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
"" = %systemroot%\system32\wbem\wbemess.dll -- [2009.07.14 03:16:17 | 000,342,528 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both
========== LOP Check ==========
[2013.07.28 22:50:26 | 000,000,000 | ---D | M] -- C:\Users\Default\AppData\Roaming\Genie9
[2013.07.28 22:50:26 | 000,000,000 | ---D | M] -- C:\Users\Default User\AppData\Roaming\Genie9
[2013.06.02 14:59:32 | 000,000,000 | ---D | M] -- C:\Users\MM\AppData\Roaming\APP_NAME_NON_STRING
[2013.06.15 09:54:50 | 000,000,000 | ---D | M] -- C:\Users\MM\AppData\Roaming\ArcticLine
[2013.06.14 22:33:54 | 000,000,000 | ---D | M] -- C:\Users\MM\AppData\Roaming\Ashampoo
[2013.10.05 17:37:33 | 000,000,000 | ---D | M] -- C:\Users\MM\AppData\Roaming\Ashampoo Slideshow Studio 2013
[2013.06.14 22:58:26 | 000,000,000 | ---D | M] -- C:\Users\MM\AppData\Roaming\Autodesk
[2013.06.02 14:47:47 | 000,000,000 | ---D | M] -- C:\Users\MM\AppData\Roaming\calibre
[2013.06.03 16:56:01 | 000,000,000 | ---D | M] -- C:\Users\MM\AppData\Roaming\Canon
[2013.07.25 16:57:04 | 000,000,000 | ---D | M] -- C:\Users\MM\AppData\Roaming\Dealply
[2013.10.26 08:56:35 | 000,000,000 | ---D | M] -- C:\Users\MM\AppData\Roaming\Dropbox
[2013.06.02 14:53:02 | 000,000,000 | ---D | M] -- C:\Users\MM\AppData\Roaming\Engelmann Media
[2013.09.14 16:42:43 | 000,000,000 | ---D | M] -- C:\Users\MM\AppData\Roaming\GARMIN
[2013.07.28 10:23:52 | 000,000,000 | ---D | M] -- C:\Users\MM\AppData\Roaming\Genie9
[2013.06.30 13:26:34 | 000,000,000 | ---D | M] -- C:\Users\MM\AppData\Roaming\GeoGet
[2013.06.24 17:55:00 | 000,000,000 | ---D | M] -- C:\Users\MM\AppData\Roaming\GHISLER
[2013.06.02 18:46:26 | 000,000,000 | ---D | M] -- C:\Users\MM\AppData\Roaming\GoforFiles
[2013.10.09 23:04:11 | 000,000,000 | ---D | M] -- C:\Users\MM\AppData\Roaming\ICQ
[2013.10.10 12:50:44 | 000,000,000 | ---D | M] -- C:\Users\MM\AppData\Roaming\ICQ-Profile
[2013.10.09 23:04:54 | 000,000,000 | ---D | M] -- C:\Users\MM\AppData\Roaming\ICQM
[2013.09.24 21:59:50 | 000,000,000 | ---D | M] -- C:\Users\MM\AppData\Roaming\Moto assistant
[2013.08.03 14:59:48 | 000,000,000 | ---D | M] -- C:\Users\MM\AppData\Roaming\MOVAVI
[2013.06.09 09:54:41 | 000,000,000 | ---D | M] -- C:\Users\MM\AppData\Roaming\Nokia
[2013.05.28 20:23:32 | 000,000,000 | ---D | M] -- C:\Users\MM\AppData\Roaming\OpenCandy
[2013.06.25 18:26:05 | 000,000,000 | ---D | M] -- C:\Users\MM\AppData\Roaming\PC Suite
[2013.06.16 17:09:45 | 000,000,000 | ---D | M] -- C:\Users\MM\AppData\Roaming\PDF Software
[2013.08.11 10:10:27 | 000,000,000 | ---D | M] -- C:\Users\MM\AppData\Roaming\SAMSUNG Drivers Update Utility
[2013.05.30 18:38:03 | 000,000,000 | ---D | M] -- C:\Users\MM\AppData\Roaming\ScanSoft
[2013.06.30 00:10:10 | 000,000,000 | ---D | M] -- C:\Users\MM\AppData\Roaming\SimilarSites
[2013.05.28 22:55:48 | 000,000,000 | ---D | M] -- C:\Users\MM\AppData\Roaming\Thunderbird
[2013.05.28 21:49:19 | 000,000,000 | ---D | M] -- C:\Users\MM\AppData\Roaming\TreeCardGames
[2013.08.03 22:04:18 | 000,000,000 | ---D | M] -- C:\Users\MM\AppData\Roaming\Ulead Systems
[2013.10.11 20:00:52 | 000,000,000 | ---D | M] -- C:\Users\MM\AppData\Roaming\Vso
[2013.06.15 11:45:02 | 000,000,000 | ---D | M] -- C:\Users\MM\AppData\Roaming\XnView
[2013.08.03 14:47:24 | 000,000,000 | ---D | M] -- C:\Users\MM\AppData\Roaming\YCanPDF
========== Purity Check ==========
Re: Prosím o preventivní kontrolu
========== Custom Scans ==========
< >
[2009.07.14 06:53:46 | 000,032,576 | ---- | C] () -- C:\Windows\Tasks\SCHEDLGU.TXT
[2009.07.14 06:53:47 | 000,000,006 | -H-- | C] () -- C:\Windows\Tasks\SA.DAT
[2013.07.04 22:17:24 | 000,000,898 | ---- | C] () -- C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1107837428-173974533-547177936-1000Core.job
[2013.07.04 22:17:25 | 000,000,950 | ---- | C] () -- C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1107837428-173974533-547177936-1000UA.job
[2013.07.25 16:57:04 | 000,000,278 | ---- | C] () -- C:\Windows\Tasks\Dealply.job
[2013.07.25 16:57:15 | 000,000,882 | ---- | C] () -- C:\Windows\Tasks\DealPlyLiveUpdateTaskMachineCore.job
[2013.07.25 16:57:16 | 000,000,886 | ---- | C] () -- C:\Windows\Tasks\DealPlyLiveUpdateTaskMachineUA.job
[2013.09.02 21:59:37 | 000,001,152 | ---- | C] () -- C:\Windows\Tasks\Torntv 2-codedownloader.job
[2013.09.02 21:59:43 | 000,001,062 | ---- | C] () -- C:\Windows\Tasks\Torntv 2-enabler.job
[2013.09.02 21:59:49 | 000,001,158 | ---- | C] () -- C:\Windows\Tasks\Torntv 2-updater.job
< >
< MD5 for: AGP440.SYS >
[2009.07.14 03:26:15 | 000,053,312 | ---- | M] (Microsoft Corporation) MD5=507812C3054C21CEF746B6EE3D04DD6E -- C:\Windows\System32\drivers\AGP440.sys
[2009.07.14 03:26:15 | 000,053,312 | ---- | M] (Microsoft Corporation) MD5=507812C3054C21CEF746B6EE3D04DD6E -- C:\Windows\System32\DriverStore\FileRepository\machine.inf_x86_neutral_a97a2a0d0fbc6696\AGP440.sys
[2009.07.14 03:26:15 | 000,053,312 | ---- | M] (Microsoft Corporation) MD5=507812C3054C21CEF746B6EE3D04DD6E -- C:\Windows\winsxs\x86_machine.inf_31bf3856ad364e35_6.1.7601.17514_none_bc1a57271cf2f285\AGP440.sys
< MD5 for: ATAPI.SYS >
[2009.07.14 03:26:15 | 000,021,584 | ---- | M] (Microsoft Corporation) MD5=338C86357871C167A96AB976519BF59E -- C:\Windows\System32\drivers\atapi.sys
[2009.07.14 03:26:15 | 000,021,584 | ---- | M] (Microsoft Corporation) MD5=338C86357871C167A96AB976519BF59E -- C:\Windows\System32\DriverStore\FileRepository\mshdc.inf_x86_neutral_a5025d31bee4647c\atapi.sys
[2009.07.14 03:26:15 | 000,021,584 | ---- | M] (Microsoft Corporation) MD5=338C86357871C167A96AB976519BF59E -- C:\Windows\System32\DriverStore\FileRepository\mshdc.inf_x86_neutral_fab873f3e8a3315c\atapi.sys
[2009.07.14 03:26:15 | 000,021,584 | ---- | M] (Microsoft Corporation) MD5=338C86357871C167A96AB976519BF59E -- C:\Windows\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.1.7601.17514_none_df3f92057fcbe7a7\atapi.sys
[2009.07.14 03:26:15 | 000,021,584 | ---- | M] (Microsoft Corporation) MD5=338C86357871C167A96AB976519BF59E -- C:\Windows\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.1.7601.18231_none_df26d4d57fdef5b0\atapi.sys
[2009.07.14 03:26:15 | 000,021,584 | ---- | M] (Microsoft Corporation) MD5=338C86357871C167A96AB976519BF59E -- C:\Windows\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.1.7601.22414_none_dfc9143c98e9a6c4\atapi.sys
< MD5 for: AUTOCHK.EXE >
[2010.11.20 23:29:06 | 000,668,160 | ---- | M] (Microsoft Corporation) MD5=F88A52EB62019D6A62FDD9E08034DBD8 -- C:\Windows\System32\autochk.exe
[2010.11.20 23:29:06 | 000,668,160 | ---- | M] (Microsoft Corporation) MD5=F88A52EB62019D6A62FDD9E08034DBD8 -- C:\Windows\winsxs\x86_microsoft-windows-autochk_31bf3856ad364e35_6.1.7601.17514_none_e3fb573520033bfa\autochk.exe
< MD5 for: CDROM.SYS >
[2010.11.20 23:29:03 | 000,108,544 | ---- | M] (Microsoft Corporation) MD5=BE167ED0FDB9C1FA1133953C18D5A6C9 -- C:\Windows\System32\drivers\cdrom.sys
[2010.11.20 23:29:03 | 000,108,544 | ---- | M] (Microsoft Corporation) MD5=BE167ED0FDB9C1FA1133953C18D5A6C9 -- C:\Windows\System32\DriverStore\FileRepository\cdrom.inf_x86_neutral_6381e09675524225\cdrom.sys
[2010.11.20 23:29:03 | 000,108,544 | ---- | M] (Microsoft Corporation) MD5=BE167ED0FDB9C1FA1133953C18D5A6C9 -- C:\Windows\winsxs\x86_cdrom.inf_31bf3856ad364e35_6.1.7601.17514_none_61b0c5ce02098355\cdrom.sys
< MD5 for: CNGAUDIT.DLL >
[2009.07.14 03:15:06 | 000,012,288 | ---- | M] (Microsoft Corporation) MD5=50BA656134F78AF64E4DD3C8B6FEFD7E -- C:\Windows\System32\cngaudit.dll
[2009.07.14 03:15:06 | 000,012,288 | ---- | M] (Microsoft Corporation) MD5=50BA656134F78AF64E4DD3C8B6FEFD7E -- C:\Windows\winsxs\x86_microsoft-windows-cngaudit-dll_31bf3856ad364e35_6.1.7600.16385_none_e83a414890e8132b\cngaudit.dll
< MD5 for: CRYPTSVC.DLL >
[2012.06.02 06:52:32 | 000,142,336 | ---- | M] (Microsoft Corporation) MD5=063DD65889D21035311463337BD268E7 -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7601.22010_none_788c7cc71232cc19\cryptsvc.dll
[2013.05.10 06:49:59 | 000,140,288 | ---- | M] (Microsoft Corporation) MD5=33ADF6E0853AB39EA1723BE82842C1D3 -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7601.18150_none_77d7a417f9359661\cryptsvc.dll
[2013.05.13 06:45:55 | 000,140,288 | ---- | M] (Microsoft Corporation) MD5=3897DFF247D9ED0006190349DE264E14 -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7601.18151_none_77d8a461f934afb8\cryptsvc.dll
[2013.07.09 15:57:37 | 000,142,848 | ---- | M] (Microsoft Corporation) MD5=6DB499DEFCC827317C5371164A7CDB27 -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7601.22380_none_7840d305126b8725\cryptsvc.dll
[2013.07.09 06:46:31 | 000,140,288 | ---- | M] (Microsoft Corporation) MD5=7CA1BECEA5DE2643ADDAD32670E7A4C9 -- C:\Windows\System32\cryptsvc.dll
[2013.07.09 06:46:31 | 000,140,288 | ---- | M] (Microsoft Corporation) MD5=7CA1BECEA5DE2643ADDAD32670E7A4C9 -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7601.18205_none_7812b70bf9088686\cryptsvc.dll
[2012.06.02 06:36:29 | 000,140,288 | ---- | M] (Microsoft Corporation) MD5=96C0E38905CFD788313BE8E11DAE3F2F -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7601.17856_none_77ddc9e5f93000db\cryptsvc.dll
[2010.11.20 23:29:24 | 000,136,192 | ---- | M] (Microsoft Corporation) MD5=A585BEBF7D054BD9618EDA0922D5484A -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7601.17514_none_7807034ff91166f4\cryptsvc.dll
[2013.05.11 06:59:05 | 000,142,848 | ---- | M] (Microsoft Corporation) MD5=AC04D05309BB2C418D0D80B9FB014642 -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7601.22322_none_7883b3211239122d\cryptsvc.dll
[2013.05.10 07:06:21 | 000,142,848 | ---- | M] (Microsoft Corporation) MD5=E122AA1C9A3CC46FF9DDDE46E5EB0C58 -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7601.22321_none_7882b2d71239f8d6\cryptsvc.dll
< MD5 for: EXPLORER.EXE >
[2011.02.26 07:19:21 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=0FB9C74046656D1579A64660AD67B746 -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.21669_none_54149f9ef14031fc\explorer.exe
[2010.11.20 23:29:20 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=40D777B7A95E00593EB1568C68514493 -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17514_none_53bc10fdd7fe87ca\explorer.exe
[2011.02.25 07:30:54 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=8B88EBBB05A0E56B7DCC708498C02B3E -- C:\Windows\explorer.exe
[2011.02.25 07:30:54 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=8B88EBBB05A0E56B7DCC708498C02B3E -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17567_none_5389023fd8245f84\explorer.exe
< MD5 for: HAL.DLL >
[2010.11.20 23:29:19 | 000,194,432 | ---- | M] (Microsoft Corporation) MD5=1BF0D4727FDB437D513CFF8A9359C050 -- C:\Windows\System32\hal.dll
[2010.11.20 23:29:19 | 000,194,432 | ---- | M] (Microsoft Corporation) MD5=1BF0D4727FDB437D513CFF8A9359C050 -- C:\Windows\winsxs\x86_microsoft-windows-hal_31bf3856ad364e35_6.1.7601.17514_none_ad305c8fb7ec5060\hal.dll
< MD5 for: IASTORV.SYS >
[2011.03.11 07:38:51 | 000,332,160 | ---- | M] (Intel Corporation) MD5=5CD5F9A5444E6CDCB0AC89BD62D8B76E -- C:\Windows\System32\drivers\iaStorV.sys
[2011.03.11 07:38:51 | 000,332,160 | ---- | M] (Intel Corporation) MD5=5CD5F9A5444E6CDCB0AC89BD62D8B76E -- C:\Windows\System32\DriverStore\FileRepository\iastorv.inf_x86_neutral_0bcee2057afcc090\iaStorV.sys
[2011.03.11 07:38:51 | 000,332,160 | ---- | M] (Intel Corporation) MD5=5CD5F9A5444E6CDCB0AC89BD62D8B76E -- C:\Windows\winsxs\x86_iastorv.inf_31bf3856ad364e35_6.1.7601.17577_none_b0daddb9e6380745\iaStorV.sys
[2011.03.11 07:28:00 | 000,332,160 | ---- | M] (Intel Corporation) MD5=778D0E6D7D9EBA0C403BADBAAD41DB20 -- C:\Windows\winsxs\x86_iastorv.inf_31bf3856ad364e35_6.1.7601.21680_none_b152a892ff64119f\iaStorV.sys
[2010.11.20 23:29:03 | 000,332,160 | ---- | M] (Intel Corporation) MD5=A3CAE5D281DB4CFF7CFF8233507EE5AD -- C:\Windows\System32\DriverStore\FileRepository\iastorv.inf_x86_neutral_668286aa35d55928\iaStorV.sys
[2010.11.20 23:29:03 | 000,332,160 | ---- | M] (Intel Corporation) MD5=A3CAE5D281DB4CFF7CFF8233507EE5AD -- C:\Windows\winsxs\x86_iastorv.inf_31bf3856ad364e35_6.1.7601.17514_none_b118bc63e60a139a\iaStorV.sys
< MD5 for: ISAPNP.SYS >
[2009.07.14 03:20:36 | 000,046,656 | ---- | M] (Microsoft Corporation) MD5=1F32BB6B38F62F7DF1A7AB7292638A35 -- C:\Windows\System32\drivers\isapnp.sys
[2009.07.14 03:20:36 | 000,046,656 | ---- | M] (Microsoft Corporation) MD5=1F32BB6B38F62F7DF1A7AB7292638A35 -- C:\Windows\System32\DriverStore\FileRepository\machine.inf_x86_neutral_a97a2a0d0fbc6696\isapnp.sys
[2009.07.14 03:20:36 | 000,046,656 | ---- | M] (Microsoft Corporation) MD5=1F32BB6B38F62F7DF1A7AB7292638A35 -- C:\Windows\winsxs\x86_machine.inf_31bf3856ad364e35_6.1.7601.17514_none_bc1a57271cf2f285\isapnp.sys
< MD5 for: LSASS.EXE >
[2012.08.24 18:53:44 | 000,022,528 | ---- | M] (Microsoft Corporation) MD5=7ABC23F3D86880AD62ACEDC7479608F8 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.22099_none_a889f15ed46779fd\lsass.exe
[2011.11.17 07:29:50 | 000,022,528 | ---- | M] (Microsoft Corporation) MD5=81951F51E318AECC2D68559E47485CC4 -- C:\Windows\System32\lsass.exe
[2011.11.17 07:29:50 | 000,022,528 | ---- | M] (Microsoft Corporation) MD5=81951F51E318AECC2D68559E47485CC4 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.17725_none_a84828d7bb1480d7\lsass.exe
[2011.11.17 07:29:50 | 000,022,528 | ---- | M] (Microsoft Corporation) MD5=81951F51E318AECC2D68559E47485CC4 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.17856_none_a828bb43bb2beb28\lsass.exe
[2011.11.17 07:29:50 | 000,022,528 | ---- | M] (Microsoft Corporation) MD5=81951F51E318AECC2D68559E47485CC4 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.17940_none_a82d8b59bb293454\lsass.exe
[2009.07.14 03:14:23 | 000,022,528 | ---- | M] (Microsoft Corporation) MD5=F42309C4191C506B71DB5D1126D26318 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.17514_none_a851f4adbb0d5141\lsass.exe
[2012.06.02 06:51:22 | 000,022,528 | ---- | M] (Microsoft Corporation) MD5=FA7B950E4CA6AA260C4EABA19E03644D -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.22010_none_a8d76e24d42eb666\lsass.exe
[2011.11.17 07:24:04 | 000,022,528 | ---- | M] (Microsoft Corporation) MD5=FBCB2DFA40862DAA7B1534C9538208A5 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.21861_none_a8a284cad4562b09\lsass.exe
< MD5 for: NDIS.SYS >
[2012.08.22 19:05:16 | 000,712,048 | ---- | M] (Microsoft Corporation) MD5=15B74B6283CEBCCE3054C1001CA01B5E -- C:\Windows\winsxs\x86_microsoft-windows-ndis_31bf3856ad364e35_6.1.7601.22097_none_aa0491cf93ad1c31\ndis.sys
[2012.08.22 19:16:46 | 000,712,048 | ---- | M] (Microsoft Corporation) MD5=8C9C922D71F1CD4DEF73F186416B7896 -- C:\Windows\System32\drivers\ndis.sys
[2012.08.22 19:16:46 | 000,712,048 | ---- | M] (Microsoft Corporation) MD5=8C9C922D71F1CD4DEF73F186416B7896 -- C:\Windows\winsxs\x86_microsoft-windows-ndis_31bf3856ad364e35_6.1.7601.17939_none_a9bdfee47a5cd154\ndis.sys
[2010.11.20 23:29:12 | 000,712,576 | ---- | M] (Microsoft Corporation) MD5=E7C54812A2AAF43316EB6930C1FFA108 -- C:\Windows\winsxs\x86_microsoft-windows-ndis_31bf3856ad364e35_6.1.7601.17514_none_a9ce95b27a512623\ndis.sys
< MD5 for: NETLOGON.DLL >
[2010.11.20 23:29:12 | 000,563,712 | ---- | M] (Microsoft Corporation) MD5=C1809B9907ADEDAF16F50C894100883B -- C:\Windows\System32\netlogon.dll
[2010.11.20 23:29:12 | 000,563,712 | ---- | M] (Microsoft Corporation) MD5=C1809B9907ADEDAF16F50C894100883B -- C:\Windows\winsxs\x86_microsoft-windows-security-netlogon_31bf3856ad364e35_6.1.7601.17514_none_ffbf212e963c0162\netlogon.dll
< MD5 for: NVRAID.SYS >
[2010.11.20 23:29:03 | 000,117,120 | ---- | M] (NVIDIA Corporation) MD5=AF2EEC9580C1D32FB7EAF105D9784061 -- C:\Windows\System32\DriverStore\FileRepository\nvraid.inf_x86_neutral_dd659ed032d28a14\nvraid.sys
[2010.11.20 23:29:03 | 000,117,120 | ---- | M] (NVIDIA Corporation) MD5=AF2EEC9580C1D32FB7EAF105D9784061 -- C:\Windows\winsxs\x86_nvraid.inf_31bf3856ad364e35_6.1.7601.17514_none_3be22d131d40bd72\nvraid.sys
[2011.03.11 07:39:00 | 000,117,120 | ---- | M] (NVIDIA Corporation) MD5=B3E25EE28883877076E0E1FF877D02E0 -- C:\Windows\System32\drivers\nvraid.sys
[2011.03.11 07:39:00 | 000,117,120 | ---- | M] (NVIDIA Corporation) MD5=B3E25EE28883877076E0E1FF877D02E0 -- C:\Windows\System32\DriverStore\FileRepository\nvraid.inf_x86_neutral_0276fc3b3ea60d41\nvraid.sys
[2011.03.11 07:39:00 | 000,117,120 | ---- | M] (NVIDIA Corporation) MD5=B3E25EE28883877076E0E1FF877D02E0 -- C:\Windows\winsxs\x86_nvraid.inf_31bf3856ad364e35_6.1.7601.17577_none_3ba44e691d6eb11d\nvraid.sys
[2011.03.11 07:28:10 | 000,117,120 | ---- | M] (NVIDIA Corporation) MD5=E3B840350A72CA6F39BD2BEF85A2BCFB -- C:\Windows\winsxs\x86_nvraid.inf_31bf3856ad364e35_6.1.7601.21680_none_3c1c1942369abb77\nvraid.sys
< MD5 for: NVSTOR.SYS >
[2011.03.11 07:39:00 | 000,143,744 | ---- | M] (NVIDIA Corporation) MD5=4380E59A170D88C4F1022EFF6719A8A4 -- C:\Windows\System32\drivers\nvstor.sys
[2011.03.11 07:39:00 | 000,143,744 | ---- | M] (NVIDIA Corporation) MD5=4380E59A170D88C4F1022EFF6719A8A4 -- C:\Windows\System32\DriverStore\FileRepository\nvraid.inf_x86_neutral_0276fc3b3ea60d41\nvstor.sys
[2011.03.11 07:39:00 | 000,143,744 | ---- | M] (NVIDIA Corporation) MD5=4380E59A170D88C4F1022EFF6719A8A4 -- C:\Windows\winsxs\x86_nvraid.inf_31bf3856ad364e35_6.1.7601.17577_none_3ba44e691d6eb11d\nvstor.sys
[2011.03.11 07:28:10 | 000,143,744 | ---- | M] (NVIDIA Corporation) MD5=66D468654A58594F5F3BA63D5AD5B1AF -- C:\Windows\winsxs\x86_nvraid.inf_31bf3856ad364e35_6.1.7601.21680_none_3c1c1942369abb77\nvstor.sys
[2010.11.20 23:29:03 | 000,143,744 | ---- | M] (NVIDIA Corporation) MD5=9283C58EBAA2618F93482EB5DABCEC82 -- C:\Windows\System32\DriverStore\FileRepository\nvraid.inf_x86_neutral_dd659ed032d28a14\nvstor.sys
[2010.11.20 23:29:03 | 000,143,744 | ---- | M] (NVIDIA Corporation) MD5=9283C58EBAA2618F93482EB5DABCEC82 -- C:\Windows\winsxs\x86_nvraid.inf_31bf3856ad364e35_6.1.7601.17514_none_3be22d131d40bd72\nvstor.sys
< MD5 for: SCECLI.DLL >
[2010.11.20 23:29:07 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=8124944EC89D6A1815E4E53F5B96AAF4 -- C:\Windows\System32\scecli.dll
[2010.11.20 23:29:07 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=8124944EC89D6A1815E4E53F5B96AAF4 -- C:\Windows\winsxs\x86_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7601.17514_none_3a154c47375d881d\scecli.dll
< MD5 for: SMSS.EXE >
[2013.03.19 04:43:41 | 000,069,632 | ---- | M] (Microsoft Corporation) MD5=0294CC751D7FAEB13621EEFB8A749429 -- C:\Windows\winsxs\x86_microsoft-windows-smss_31bf3856ad364e35_6.1.7601.22280_none_ae7bdfb790cddbcf\smss.exe
[2009.07.14 03:14:39 | 000,069,632 | ---- | M] (Microsoft Corporation) MD5=16742790895960690237A5143CEDEC8B -- C:\Windows\winsxs\x86_microsoft-windows-smss_31bf3856ad364e35_6.1.7600.16385_none_ac10fe207a85352b\smss.exe
[2013.07.08 05:02:28 | 000,069,632 | ---- | M] (Microsoft Corporation) MD5=634E0B45780F502304592C5615A31089 -- C:\Windows\winsxs\x86_microsoft-windows-smss_31bf3856ad364e35_6.1.7601.22379_none_ae8fb42390bda114\smss.exe
[2013.08.29 02:51:28 | 000,069,632 | ---- | M] (Microsoft Corporation) MD5=D2A72C71CD6C18A99E920EC5761F0C7D -- C:\Windows\winsxs\x86_microsoft-windows-smss_31bf3856ad364e35_6.1.7601.22436_none_aeb7f4db909fe272\smss.exe
[2013.03.19 04:49:16 | 000,069,632 | ---- | M] (Microsoft Corporation) MD5=DE91DCC7BC55E940979097E98F743205 -- C:\Windows\System32\smss.exe
[2013.03.19 04:49:16 | 000,069,632 | ---- | M] (Microsoft Corporation) MD5=DE91DCC7BC55E940979097E98F743205 -- C:\Windows\winsxs\x86_microsoft-windows-smss_31bf3856ad364e35_6.1.7601.18113_none_ae40f33e7774c473\smss.exe
[2013.05.06 05:02:20 | 000,069,632 | ---- | M] (Microsoft Corporation) MD5=EC745C0949B101129AB6D39CD63808A6 -- C:\Windows\winsxs\x86_microsoft-windows-smss_31bf3856ad364e35_6.1.7601.22318_none_aecf9361908de017\smss.exe
< MD5 for: SVCHOST.EXE >
[2009.07.14 03:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\System32\svchost.exe
[2009.07.14 03:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\winsxs\x86_microsoft-windows-services-svchost_31bf3856ad364e35_6.1.7600.16385_none_b591afc466a15356\svchost.exe
< MD5 for: TCPIP.SYS >
[2011.04.25 06:31:30 | 001,290,624 | ---- | M] (Microsoft Corporation) MD5=24326784DF8F3D5F5BBB9F878CE33C14 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.17603_none_b52f4dc5c4a121e0\tcpip.sys
[2010.11.20 23:29:20 | 001,290,112 | ---- | M] (Microsoft Corporation) MD5=37E8FA3779668837CA9E2C36D2415949 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.17514_none_b5257c3dc4a85a01\tcpip.sys
[2013.01.04 06:56:23 | 001,308,504 | ---- | M] (Microsoft Corporation) MD5=4A95845C5F33A4DDEB6AEF6367FB6520 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.22209_none_b5becc06ddb98192\tcpip.sys
[2013.07.06 07:05:35 | 001,293,760 | ---- | M] (Microsoft Corporation) MD5=4E8B9BE71B807B3BAEDB7F4243F85E3C -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.18203_none_b52f2f65c4a146e5\tcpip.sys
[2013.07.06 06:57:37 | 001,309,120 | ---- | M] (Microsoft Corporation) MD5=528F7CC60391DD0FAB0344F32F051FDF -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.22378_none_b5721e2eddf328f9\tcpip.sys
[2013.05.08 08:15:22 | 001,309,032 | ---- | M] (Microsoft Corporation) MD5=6088D01FAD49729EA0A5A3D9B9BA8B84 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.22319_none_b5b3fe00ddc19aaa\tcpip.sys
[2013.09.07 04:06:48 | 001,309,120 | ---- | M] (Microsoft Corporation) MD5=6C4F3D92764FFA22D28061A4D9235446 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.22444_none_b58e8eb0ddde6cf1\tcpip.sys
[2011.04.25 08:31:09 | 001,301,376 | ---- | M] (Microsoft Corporation) MD5=6D4728CFF2724FF3A4654971D61D0F1C -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.21712_none_b5ad1a5addc7c444\tcpip.sys
[2013.01.03 07:05:20 | 001,293,672 | ---- | M] (Microsoft Corporation) MD5=7C0507D2391AF5933600CBCED799F277 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.18042_none_b502eb9fc4c2a304\tcpip.sys
[2013.09.08 04:07:12 | 001,294,272 | ---- | M] (Microsoft Corporation) MD5=CA59F7C570AF70BC174F477CFE2D9EE3 -- C:\Windows\System32\drivers\tcpip.sys
[2013.09.08 04:07:12 | 001,294,272 | ---- | M] (Microsoft Corporation) MD5=CA59F7C570AF70BC174F477CFE2D9EE3 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.18254_none_b4fa2013c4c8ebf1\tcpip.sys
[2013.05.08 07:38:00 | 001,293,672 | ---- | M] (Microsoft Corporation) MD5=D32FDAC73FCD76B85389C39BC1087F2A -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.18148_none_b508ef41c4bd3835\tcpip.sys
[2012.10.03 18:44:01 | 001,308,040 | ---- | M] (Microsoft Corporation) MD5=D490DD0A91B4EAC3B4EE08D11EE37C31 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.22124_none_b5a428d6ddce3d9a\tcpip.sys
[2012.10.03 18:58:30 | 001,293,680 | ---- | M] (Microsoft Corporation) MD5=E23A56F843E2AEBBB209D0ACCA73C640 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.17964_none_b4ef7439c4d0da52\tcpip.sys
< MD5 for: USERINIT.EXE >
[2010.11.20 23:29:06 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=61AC3EFDFACFDD3F0F11DD4FD4044223 -- C:\Windows\System32\userinit.exe
[2010.11.20 23:29:06 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=61AC3EFDFACFDD3F0F11DD4FD4044223 -- C:\Windows\winsxs\x86_microsoft-windows-userinit_31bf3856ad364e35_6.1.7601.17514_none_de3024012ff21116\userinit.exe
< MD5 for: WINLOGON.EXE >
[2010.11.20 23:29:06 | 000,286,720 | ---- | M] (Microsoft Corporation) MD5=6D13E1406F50C66E2A95D97F22C47560 -- C:\Windows\System32\winlogon.exe
[2010.11.20 23:29:06 | 000,286,720 | ---- | M] (Microsoft Corporation) MD5=6D13E1406F50C66E2A95D97F22C47560 -- C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7601.17514_none_71ca6b0233339500\winlogon.exe
< MD5 for: WS2_32.DLL >
[2010.11.20 23:29:06 | 000,206,848 | ---- | M] (Microsoft Corporation) MD5=7FF15A4F092CD4A96055BA69F903E3E9 -- C:\Windows\System32\ws2_32.dll
[2010.11.20 23:29:06 | 000,206,848 | ---- | M] (Microsoft Corporation) MD5=7FF15A4F092CD4A96055BA69F903E3E9 -- C:\Windows\winsxs\x86_microsoft-windows-w..nfrastructure-ws232_31bf3856ad364e35_6.1.7601.17514_none_f4bf1aae2c981ecf\ws2_32.dll
< >
< %systemroot%*.* /U /s >
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
[6 C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp files -> C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp -> ]
[3 C:\Windows\Installer\*.tmp files -> C:\Windows\Installer\*.tmp -> ]
< %SYSTEMDRIVE%\*.exe >
< %ALLUSERSPROFILE%\Application Data\*. >
< %ALLUSERSPROFILE%\Application Data\*.exe /s >
< %APPDATA%\*. >
[2013.06.15 23:17:04 | 000,000,000 | ---D | M] -- C:\Users\MM\AppData\Roaming\ABBYY
[2013.06.16 23:26:12 | 000,000,000 | ---D | M] -- C:\Users\MM\AppData\Roaming\Adobe
[2013.09.24 00:10:51 | 000,000,000 | ---D | M] -- C:\Users\MM\AppData\Roaming\Apple Computer
[2013.06.02 14:59:32 | 000,000,000 | ---D | M] -- C:\Users\MM\AppData\Roaming\APP_NAME_NON_STRING
[2013.06.15 09:54:50 | 000,000,000 | ---D | M] -- C:\Users\MM\AppData\Roaming\ArcticLine
[2013.06.14 22:33:54 | 000,000,000 | ---D | M] -- C:\Users\MM\AppData\Roaming\Ashampoo
[2013.10.05 17:37:33 | 000,000,000 | ---D | M] -- C:\Users\MM\AppData\Roaming\Ashampoo Slideshow Studio 2013
[2013.06.14 22:58:26 | 000,000,000 | ---D | M] -- C:\Users\MM\AppData\Roaming\Autodesk
[2013.06.02 14:47:47 | 000,000,000 | ---D | M] -- C:\Users\MM\AppData\Roaming\calibre
[2013.06.03 16:56:01 | 000,000,000 | ---D | M] -- C:\Users\MM\AppData\Roaming\Canon
[2013.10.12 11:22:06 | 000,000,000 | ---D | M] -- C:\Users\MM\AppData\Roaming\Corel
[2013.05.30 18:54:24 | 000,000,000 | ---D | M] -- C:\Users\MM\AppData\Roaming\CyberLink
[2013.07.25 16:57:04 | 000,000,000 | ---D | M] -- C:\Users\MM\AppData\Roaming\Dealply
[2013.10.26 08:56:35 | 000,000,000 | ---D | M] -- C:\Users\MM\AppData\Roaming\Dropbox
[2013.06.02 14:53:02 | 000,000,000 | ---D | M] -- C:\Users\MM\AppData\Roaming\Engelmann Media
[2013.09.08 15:04:08 | 000,000,000 | ---D | M] -- C:\Users\MM\AppData\Roaming\FastStone
[2013.09.14 16:42:43 | 000,000,000 | ---D | M] -- C:\Users\MM\AppData\Roaming\GARMIN
[2013.07.28 10:23:52 | 000,000,000 | ---D | M] -- C:\Users\MM\AppData\Roaming\Genie9
[2013.06.30 13:26:34 | 000,000,000 | ---D | M] -- C:\Users\MM\AppData\Roaming\GeoGet
[2013.06.24 17:55:00 | 000,000,000 | ---D | M] -- C:\Users\MM\AppData\Roaming\GHISLER
[2013.06.02 18:46:26 | 000,000,000 | ---D | M] -- C:\Users\MM\AppData\Roaming\GoforFiles
[2013.10.09 23:04:11 | 000,000,000 | ---D | M] -- C:\Users\MM\AppData\Roaming\ICQ
[2013.10.10 12:50:44 | 000,000,000 | ---D | M] -- C:\Users\MM\AppData\Roaming\ICQ-Profile
[2013.10.09 23:04:54 | 000,000,000 | ---D | M] -- C:\Users\MM\AppData\Roaming\ICQM
[2013.05.28 16:57:33 | 000,000,000 | ---D | M] -- C:\Users\MM\AppData\Roaming\Identities
[2013.08.11 10:44:39 | 000,000,000 | ---D | M] -- C:\Users\MM\AppData\Roaming\Intelli-studio
[2013.05.28 17:12:14 | 000,000,000 | ---D | M] -- C:\Users\MM\AppData\Roaming\Macromedia
[2010.11.21 03:24:45 | 000,000,000 | ---D | M] -- C:\Users\MM\AppData\Roaming\Media Center Programs
[2013.07.29 18:37:01 | 000,000,000 | --SD | M] -- C:\Users\MM\AppData\Roaming\Microsoft
[2013.09.24 21:59:50 | 000,000,000 | ---D | M] -- C:\Users\MM\AppData\Roaming\Moto assistant
[2013.08.03 14:59:48 | 000,000,000 | ---D | M] -- C:\Users\MM\AppData\Roaming\MOVAVI
[2013.05.29 19:57:19 | 000,000,000 | ---D | M] -- C:\Users\MM\AppData\Roaming\Mozilla
[2013.06.14 22:22:35 | 000,000,000 | ---D | M] -- C:\Users\MM\AppData\Roaming\Nero
[2013.06.09 09:54:41 | 000,000,000 | ---D | M] -- C:\Users\MM\AppData\Roaming\Nokia
[2013.05.28 20:23:32 | 000,000,000 | ---D | M] -- C:\Users\MM\AppData\Roaming\OpenCandy
[2013.06.25 18:26:05 | 000,000,000 | ---D | M] -- C:\Users\MM\AppData\Roaming\PC Suite
[2013.06.16 17:09:45 | 000,000,000 | ---D | M] -- C:\Users\MM\AppData\Roaming\PDF Software
[2013.08.11 10:10:27 | 000,000,000 | ---D | M] -- C:\Users\MM\AppData\Roaming\SAMSUNG Drivers Update Utility
[2013.05.30 18:38:03 | 000,000,000 | ---D | M] -- C:\Users\MM\AppData\Roaming\ScanSoft
[2013.06.30 00:10:10 | 000,000,000 | ---D | M] -- C:\Users\MM\AppData\Roaming\SimilarSites
[2013.07.14 08:27:58 | 000,000,000 | ---D | M] -- C:\Users\MM\AppData\Roaming\Skype
[2013.05.28 22:55:48 | 000,000,000 | ---D | M] -- C:\Users\MM\AppData\Roaming\Thunderbird
[2013.05.28 21:49:19 | 000,000,000 | ---D | M] -- C:\Users\MM\AppData\Roaming\TreeCardGames
[2013.08.03 22:04:18 | 000,000,000 | ---D | M] -- C:\Users\MM\AppData\Roaming\Ulead Systems
[2013.10.11 20:00:52 | 000,000,000 | ---D | M] -- C:\Users\MM\AppData\Roaming\Vso
[2013.05.29 00:02:04 | 000,000,000 | ---D | M] -- C:\Users\MM\AppData\Roaming\Winamp
[2013.05.28 20:30:02 | 000,000,000 | ---D | M] -- C:\Users\MM\AppData\Roaming\WinRAR
[2013.06.15 11:45:02 | 000,000,000 | ---D | M] -- C:\Users\MM\AppData\Roaming\XnView
[2013.08.03 14:47:24 | 000,000,000 | ---D | M] -- C:\Users\MM\AppData\Roaming\YCanPDF
< %APPDATA%\*.exe /s >
[2013.06.02 11:54:33 | 000,087,608 | ---- | M] () -- C:\Users\MM\AppData\Roaming\inst.exe
[2013.07.25 16:57:04 | 000,102,968 | ---- | M] () -- C:\Users\MM\AppData\Roaming\Dealply\UpdateProc\UpdateTask.exe
[2013.05.25 02:47:30 | 027,776,968 | ---- | M] (Dropbox, Inc.) -- C:\Users\MM\AppData\Roaming\Dropbox\bin\Dropbox.exe
[2013.05.25 02:48:34 | 000,229,288 | ---- | M] (Dropbox, Inc.) -- C:\Users\MM\AppData\Roaming\Dropbox\bin\DropboxUninstaller.exe
[2012.06.14 04:09:00 | 000,874,440 | ---- | M] (Dropbox, Inc.) -- C:\Users\MM\AppData\Roaming\Dropbox\bin\DropboxUpdateHelper.exe
[2013.06.29 15:15:46 | 006,366,945 | ---- | M] ( ) -- C:\Users\MM\AppData\Roaming\GeoGet\ggupdate\geogetsetup-2.7.8.715.exe
[2013.03.03 16:53:48 | 000,724,480 | ---- | M] () -- C:\Users\MM\AppData\Roaming\GeoGet\script\geojarry\geojarryw.exe
[2013.02.02 18:41:10 | 008,060,690 | ---- | M] () -- C:\Users\MM\AppData\Roaming\GeoGet\script\GgStat\GgStat.exe
[2013.10.09 23:04:49 | 027,598,184 | ---- | M] (ICQ) -- C:\Users\MM\AppData\Roaming\ICQM\icq.exe
[2013.10.09 23:04:54 | 033,654,608 | ---- | M] (ICQ) -- C:\Users\MM\AppData\Roaming\ICQM\icqsetup.exe
[2013.10.09 23:04:54 | 004,739,616 | ---- | M] () -- C:\Users\MM\AppData\Roaming\ICQM\ICQ\dll\mailrusputnik.exe
[2013.01.29 04:33:10 | 032,682,184 | ---- | M] (SweetLabs,Inc.) -- C:\Users\MM\AppData\Roaming\OpenCandy\D86A6B65D0604EE18F21F85F68FC8F7B\version51030bc4470a0.exe
< %systemroot%\*. /mp /s >
< %systemroot%\system32\*.dll /lockedfiles >
< %systemroot%\Tasks\*.job /lockedfiles >
< %systemroot%\system32\drivers\*.sys /lockedfiles >
< %systemroot%\System32\config\*.sav >
< %systemroot%\system32\*.dll /lockedfiles >
< %systemroot%\system32\drivers\*.sys /3 >
< %systemroot%\system32\*.* /3 >
[2013.10.26 09:04:59 | 000,026,576 | -H-- | M] () -- C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2013.10.26 09:04:59 | 000,026,576 | -H-- | M] () -- C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
< %SYSTEMDRIVE%\*.exe >
< >
< HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s >
"ICQ" = C:\Users\MM\AppData\Roaming\ICQM\icq.exe -CU -- [2013.10.09 23:04:49 | 027,598,184 | ---- | M] (ICQ)
"Pokki" = C:\Windows\system32\rundll32.exe "%LOCALAPPDATA%\Pokki\Engine\LaunchDeskband.dll",RunLaunchDeskband
"IndxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}" = "C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe" ASO-616B5711-6DAE-4795-A05F-39A1E5104020 -- [2008.06.24 16:06:06 | 001,840,424 | ---- | M] (Nero AG)
"" =
"NokiaSuite.exe" = C:\Program Files\Nokia\Nokia Suite\NokiaSuite.exe -tray -- [2013.04.19 01:45:32 | 001,090,912 | ---- | M] (Nokia)
"Google Update" = "C:\Users\MM\AppData\Local\Google\Update\GoogleUpdate.exe" /c -- [2013.07.04 22:17:21 | 000,116,648 | ---- | M] (Google Inc.)
< reg query "HKLM\Software\Microsoft\Windows NT\CurrentVersion\winlogon" /v GinaDLL /c >
< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv" /v ImagePath /c >
HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\SERVICES\WUAUSERV
IMAGEPATH REG_EXPAND_SZ %systemroot%\system32\svchost.exe -k netsvcs
< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS" /v ImagePath /c >
HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\SERVICES\BITS
IMAGEPATH REG_EXPAND_SZ %SystemRoot%\System32\svchost.exe -k netsvcs
< >
< type c:\boot.ini >> test.txt /c >
< %SystemDrive%\PhysicalMBR.bin /md5 >
[2013.10.26 20:52:13 | 000,000,512 | ---- | M] () MD5=9A260C2A1D91F520E1A93BD89D194C89 -- C:\PhysicalMBR.bin
< >
< *crack* /s >
[1999.03.28 13:04:50 | 000,092,827 | ---- | M] () -- \Program Files\Corel\Graphics9\Custom\Bumpmap\Cracks.cpt
[1997.02.27 11:28:24 | 000,016,068 | ---- | M] () -- \Program Files\Corel\Graphics9\Custom\Canvas\cracks2c.pcx
[1999.03.28 12:29:12 | 000,010,560 | ---- | M] () -- \Program Files\Corel\Graphics9\Custom\Tiles\CRACKS2M.CPT
[2010.02.21 02:22:00 | 000,000,386 | ---- | M] () -- \Program Files\GeoGet\distdata\offline\sysimg\WM\Cracker_Barrel_Restaurants.gif
[2010.02.21 02:22:00 | 000,000,386 | ---- | M] () -- \Users\MM\AppData\Roaming\GeoGet\offline\sysimg\WM\Cracker_Barrel_Restaurants.gif
[2013.05.31 05:55:58 | 000,000,236 | ---- | M] () -- \Users\MM\Favorites\Web, SW, telefony\Aircrack-ng.url
[2013.05.31 05:56:01 | 000,000,209 | ---- | M] () -- \Users\MM\Favorites\Web, SW, telefony\Cracks, serials\AllCracks.net.url
[2013.05.31 05:56:01 | 000,000,308 | ---- | M] () -- \Users\MM\Favorites\Web, SW, telefony\Cracks, serials\Best Crack , Serial and Warez sites.url
[2013.05.31 05:56:01 | 000,000,208 | ---- | M] () -- \Users\MM\Favorites\Web, SW, telefony\Cracks, serials\boilsoft serial and crack - The latest cracks and serials updated daily to unlock your software.url
[2013.05.31 05:56:01 | 000,000,213 | ---- | M] () -- \Users\MM\Favorites\Web, SW, telefony\Cracks, serials\CCrack.url
[2013.05.31 05:56:01 | 000,000,219 | ---- | M] () -- \Users\MM\Favorites\Web, SW, telefony\Cracks, serials\Crack Top List.url
[2013.05.31 05:56:01 | 000,000,200 | ---- | M] () -- \Users\MM\Favorites\Web, SW, telefony\Cracks, serials\crack-cd.url
[2013.05.31 05:56:01 | 000,000,387 | ---- | M] () -- \Users\MM\Favorites\Web, SW, telefony\Cracks, serials\crack-REFERAT.COM.url
[2013.05.31 05:56:01 | 000,000,325 | ---- | M] () -- \Users\MM\Favorites\Web, SW, telefony\Cracks, serials\CRACK.MS - All CRACKs and SERIALs on ONE Site.url
[2013.05.31 05:56:01 | 000,000,231 | ---- | M] () -- \Users\MM\Favorites\Web, SW, telefony\Cracks, serials\CRACKS FOR YOU.url
[2013.05.31 05:56:01 | 000,000,209 | ---- | M] () -- \Users\MM\Favorites\Web, SW, telefony\Cracks, serials\Cracks-serials-rox Downloads & torrents.url
[2013.05.31 05:56:01 | 000,000,255 | ---- | M] () -- \Users\MM\Favorites\Web, SW, telefony\Cracks, serials\Cracks.AllSeek.iNFO.url
[2013.05.31 05:56:01 | 000,001,584 | ---- | M] () -- \Users\MM\Favorites\Web, SW, telefony\Cracks, serials\Cracks.url
[2013.05.31 05:56:01 | 000,000,252 | ---- | M] () -- \Users\MM\Favorites\Web, SW, telefony\Cracks, serials\CrackServer Search Results for 2.6.240.url
[2013.05.31 05:56:01 | 000,000,249 | ---- | M] () -- \Users\MM\Favorites\Web, SW, telefony\Cracks, serials\CrackzPlanet.com - Serials - G2.url
[2013.05.31 05:56:01 | 000,000,122 | ---- | M] () -- \Users\MM\Favorites\Web, SW, telefony\Cracks, serials\DoCrack.com - Top Crack - Serials - KeyGen.url
[2013.05.31 05:56:01 | 000,000,262 | ---- | M] () -- \Users\MM\Favorites\Web, SW, telefony\Cracks, serials\Download Crack Serial - download cracks serials NO PORN POPUPs! NO STUPID TROJANs and EXPLOITs!.url
[2013.05.31 05:56:01 | 000,000,241 | ---- | M] () -- \Users\MM\Favorites\Web, SW, telefony\Cracks, serials\find abbyy pdf serial serials cracks hacking warez at www.thedarktoolbox.com.url
[2013.05.31 05:56:01 | 000,000,185 | ---- | M] () -- \Users\MM\Favorites\Web, SW, telefony\Cracks, serials\Free serial crack keygen downloads - CrackSerial.Net.url
[2013.05.31 05:56:01 | 000,000,371 | ---- | M] () -- \Users\MM\Favorites\Web, SW, telefony\Cracks, serials\FREE UNLIMITED CRACKS, SERIAL NUMBERS, KEYGENS, PATCHES, GAMES, SOFTWARE CRACK, CRACKZ.url
[2013.05.31 05:56:01 | 000,000,234 | ---- | M] () -- \Users\MM\Favorites\Web, SW, telefony\Cracks, serials\http--crackspider.net-search.shtmlq=acdsee+9+photo&x=33&y=22.url
[2013.05.31 05:56:01 | 000,000,210 | ---- | M] () -- \Users\MM\Favorites\Web, SW, telefony\Cracks, serials\http--crackspider.net-search.shtmlq=homesite%205.url
[2013.05.31 05:56:01 | 000,000,261 | ---- | M] () -- \Users\MM\Favorites\Web, SW, telefony\Cracks, serials\InfiniteWarez.com - Full Version Downloads! Warez, Torrents, Cracks, Serials, KeyGens, XXX.url
[2013.05.31 05:56:01 | 000,000,304 | ---- | M] () -- \Users\MM\Favorites\Web, SW, telefony\Cracks, serials\Ulead Videostudio 11.5 Plus Free Download Crack Torrent Serial Keygen Warez Full Version.url
[2013.05.31 05:56:01 | 000,000,229 | ---- | M] () -- \Users\MM\Favorites\Web, SW, telefony\Cracks, serials\Warez-Vortex.net - Warez Downloads, Apps, Games, Movies, XXX, Cracks, Serials, Keygens And More!.url
[2013.05.31 05:56:01 | 000,000,202 | ---- | M] () -- \Users\MM\Favorites\Web, SW, telefony\Cracks, serials\ZCRACK~1.URL
[2013.05.31 05:56:01 | 000,000,300 | ---- | M] () -- \Users\MM\Favorites\Web, SW, telefony\Downloady\dvdfab platinum Download Crack Serial.url
[2013.05.31 05:56:01 | 000,000,346 | ---- | M] () -- \Users\MM\Favorites\Web, SW, telefony\Torrent\Ulead VideoStudio Plus 11 - Crack Torrent Download.url
< *keygen* /s >
[2013.05.31 05:56:01 | 000,000,122 | ---- | M] () -- \Users\MM\Favorites\Web, SW, telefony\Cracks, serials\DoCrack.com - Top Crack - Serials - KeyGen.url
[2013.05.31 05:56:01 | 000,000,185 | ---- | M] () -- \Users\MM\Favorites\Web, SW, telefony\Cracks, serials\Free serial crack keygen downloads - CrackSerial.Net.url
[2013.05.31 05:56:01 | 000,000,371 | ---- | M] () -- \Users\MM\Favorites\Web, SW, telefony\Cracks, serials\FREE UNLIMITED CRACKS, SERIAL NUMBERS, KEYGENS, PATCHES, GAMES, SOFTWARE CRACK, CRACKZ.url
[2013.05.31 05:56:01 | 000,000,261 | ---- | M] () -- \Users\MM\Favorites\Web, SW, telefony\Cracks, serials\InfiniteWarez.com - Full Version Downloads! Warez, Torrents, Cracks, Serials, KeyGens, XXX.url
[2013.05.31 05:56:01 | 000,000,304 | ---- | M] () -- \Users\MM\Favorites\Web, SW, telefony\Cracks, serials\Ulead Videostudio 11.5 Plus Free Download Crack Torrent Serial Keygen Warez Full Version.url
[2013.05.31 05:56:01 | 000,000,229 | ---- | M] () -- \Users\MM\Favorites\Web, SW, telefony\Cracks, serials\Warez-Vortex.net - Warez Downloads, Apps, Games, Movies, XXX, Cracks, Serials, Keygens And More!.url
< *AntiWPA* /s >
< *loader* /s >
[2009.02.04 04:33:52 | 000,028,008 | ---- | M] () -- \Autodesk\AutoCAD_2010_Czech_SLD_WIN_32bit\x86\acad\Program Files\Root\AecLoader.arx
[2013.05.31 04:48:58 | 000,044,032 | R--- | M] () -- \Program Files\Calibre2\DLLs\PyISAPI_loader.dll
[2012.08.27 21:33:18 | 000,008,827 | ---- | M] () -- \Program Files\Common Files\Apple\Apple Application Support\WebKit.resources\inspector\HeapSnapshotLoader.js
[2013.09.15 14:34:08 | 000,059,720 | ---- | M] () -- \Program Files\Common Files\Apple\Internet Services\ApplePhotoStreamsDownloader.exe
[2013.09.15 14:34:08 | 001,108,296 | ---- | M] () -- \Program Files\Common Files\Apple\Internet Services\ApplePhotoStreamsDownloader_main.dll
[2013.09.14 01:50:46 | 000,008,827 | ---- | M] () -- \Program Files\Common Files\Apple\Internet Services\WebKit.resources\inspector\HeapSnapshotLoader.js
[2008.06.24 13:45:14 | 000,111,912 | ---- | M] () -- \Program Files\Common Files\Nero\Shared\NSCLoader.dll
[2012.09.25 04:39:16 | 000,112,128 | ---- | M] () -- \Program Files\Common Files\Nokia\Tss\ProductApiLoader\ta_productapiloader.dll
[2009.01.04 19:53:08 | 000,002,945 | ---- | M] () -- \Program Files\Corel\Corel VideoStudio Pro X3\accLoader.ini
[2010.05.17 17:04:16 | 000,111,776 | ---- | M] () -- \Program Files\Corel\Corel VideoStudio Pro X3\VimeoUploader.dll
[2010.05.17 17:04:26 | 000,110,752 | ---- | M] () -- \Program Files\Corel\Corel VideoStudio Pro X3\de-DE\MediaDownloader.resources.dll
[2010.05.17 17:04:42 | 000,013,472 | ---- | M] () -- \Program Files\Corel\Corel VideoStudio Pro X3\de-DE\MediaDownloader_Lite.resources.dll
[2010.05.17 17:05:04 | 000,110,752 | ---- | M] () -- \Program Files\Corel\Corel VideoStudio Pro X3\en-US\MediaDownloader.resources.dll
[2010.05.17 17:05:14 | 000,013,472 | ---- | M] () -- \Program Files\Corel\Corel VideoStudio Pro X3\en-US\MediaDownloader_Lite.resources.dll
[2010.05.17 17:04:16 | 000,110,752 | ---- | M] () -- \Program Files\Corel\Corel VideoStudio Pro X3\es-ES\MediaDownloader.resources.dll
[2010.05.17 17:04:26 | 000,013,472 | ---- | M] () -- \Program Files\Corel\Corel VideoStudio Pro X3\es-ES\MediaDownloader_Lite.resources.dll
[2010.05.17 17:04:26 | 000,110,752 | ---- | M] () -- \Program Files\Corel\Corel VideoStudio Pro X3\fr-FR\MediaDownloader.resources.dll
[2010.05.17 17:04:34 | 000,013,472 | ---- | M] () -- \Program Files\Corel\Corel VideoStudio Pro X3\fr-FR\MediaDownloader_Lite.resources.dll
[2010.05.17 17:03:54 | 000,110,752 | ---- | M] () -- \Program Files\Corel\Corel VideoStudio Pro X3\it-IT\MediaDownloader.resources.dll
[2010.05.17 17:04:06 | 000,013,472 | ---- | M] () -- \Program Files\Corel\Corel VideoStudio Pro X3\it-IT\MediaDownloader_Lite.resources.dll
[2010.05.17 17:03:42 | 000,110,752 | ---- | M] () -- \Program Files\Corel\Corel VideoStudio Pro X3\nl-NL\MediaDownloader.resources.dll
[2010.05.17 17:03:46 | 000,013,472 | ---- | M] () -- \Program Files\Corel\Corel VideoStudio Pro X3\nl-NL\MediaDownloader_Lite.resources.dll
[2010.05.17 17:03:34 | 000,110,752 | ---- | M] () -- \Program Files\Corel\Corel VideoStudio Pro X3\pl-PL\MediaDownloader.resources.dll
[2010.05.17 17:03:44 | 000,013,472 | ---- | M] () -- \Program Files\Corel\Corel VideoStudio Pro X3\pl-PL\MediaDownloader_Lite.resources.dll
[2010.05.17 17:03:22 | 000,110,752 | ---- | M] () -- \Program Files\Corel\Corel VideoStudio Pro X3\ru-RU\MediaDownloader.resources.dll
[2010.05.17 17:03:32 | 000,013,472 | ---- | M] () -- \Program Files\Corel\Corel VideoStudio Pro X3\ru-RU\MediaDownloader_Lite.resources.dll
[2010.05.17 17:03:14 | 000,110,752 | ---- | M] () -- \Program Files\Corel\Corel VideoStudio Pro X3\zh-CN\MediaDownloader.resources.dll
[2010.05.17 17:03:18 | 000,013,472 | ---- | M] () -- \Program Files\Corel\Corel VideoStudio Pro X3\zh-CN\MediaDownloader_Lite.resources.dll
[2010.05.17 17:03:14 | 000,110,752 | ---- | M] () -- \Program Files\Corel\Corel VideoStudio Pro X3\zh-HK\MediaDownloader.resources.dll
[2010.05.17 17:03:24 | 000,013,472 | ---- | M] () -- \Program Files\Corel\Corel VideoStudio Pro X3\zh-HK\MediaDownloader_Lite.resources.dll
[2010.05.17 17:03:14 | 000,110,752 | ---- | M] () -- \Program Files\Corel\Corel VideoStudio Pro X3\zh-TW\MediaDownloader.resources.dll
[2010.05.17 17:03:22 | 000,013,472 | ---- | M] () -- \Program Files\Corel\Corel VideoStudio Pro X3\zh-TW\MediaDownloader_Lite.resources.dll
[2009.12.26 14:08:34 | 000,331,976 | ---- | M] () -- \Program Files\Corel\MLE\VimeoUploader.dll
[2012.02.02 11:16:04 | 000,003,951 | ---- | M] () -- \Program Files\Genie9\Genie Timeline\Html\_GSImages_\ajax-loader.gif
[2012.02.02 11:16:04 | 000,002,680 | ---- | M] () -- \Program Files\Genie9\Genie Timeline\Html\_GSImages_\Checking_Internet_Loader.gif
[2012.02.02 11:16:04 | 000,011,439 | ---- | M] () -- \Program Files\Genie9\Genie Timeline\Html\_GSImages_\Cloud_Loader_Activate_160.gif
[2012.03.04 17:16:16 | 000,004,847 | ---- | M] () -- \Program Files\Genie9\Genie Timeline\Html\_GSImages_\MiniLoaderBlue.gif
[2012.02.02 11:16:04 | 000,023,208 | ---- | M] () -- \Program Files\Genie9\Genie Timeline\Html\_GSImages_\Play_Pause_Loader.gif
[2012.02.02 11:16:04 | 000,023,287 | ---- | M] () -- \Program Files\Genie9\Genie Timeline\Html\_GSImages_\Play_Pause_Loader_old.gif
[2012.02.02 11:16:04 | 000,005,633 | ---- | M] () -- \Program Files\Genie9\Genie Timeline\Html\_GSImages_\preloader3.gif
[2013.05.28 20:14:28 | 000,005,795 | ---- | M] () -- \Program Files\ICQ7M\imApp\theme\IMAGES\XtraPreloader\loader.jpg
[2013.05.28 20:14:29 | 000,004,180 | ---- | M] () -- \Program Files\ICQ7M\imApp\theme\IMAGES\XtraPreloader\zlango-preloader.png
[2013.05.28 20:14:28 | 000,005,520 | ---- | M] () -- \Program Files\ICQ7M\imApp\theme\MUICoreLib\xtraLoader.swf
[2012.04.20 11:29:39 | 000,000,402 | ---- | M] () -- \Program Files\ICQ7M\Xtraz\icq\content\profile_lightboxs\preloader.html
[2013.03.08 18:00:00 | 000,856,064 | ---- | M] () -- \Program Files\KMPlayer\imloader.dll
[2013.03.25 10:13:18 | 000,296,296 | ---- | M] () -- \Program Files\Movavi Video Suite 11 SE\PSPUploader.exe
[2013.03.25 10:13:24 | 000,296,296 | ---- | M] () -- \Program Files\Movavi Video Suite 11 SE\PSPUploaderru.exe
[2012.06.26 12:36:20 | 000,002,560 | ---- | M] () -- \Program Files\Nokia\Nokia PC Suite 7\Lang\MapLoader_cze.NLR
[2008.02.04 12:32:50 | 000,000,232 | ---- | M] () -- \ProgramData\Nero\Nero8\OnlineServices\NOSWebConfig\MySpace\uploadError.xml
[2013.04.25 17:31:28 | 000,072,638 | ---- | M] () -- \ProgramData\Skype\Apps\login\images\loader.gif
[2013.04.25 17:31:28 | 000,003,032 | ---- | M] () -- \ProgramData\Skype\Apps\login\images\loader.png
[2013.04.25 17:31:28 | 000,009,772 | ---- | M] () -- \ProgramData\Skype\Apps\login\images\retina\loader@2x.png
[2008.02.04 12:32:50 | 000,000,232 | ---- | M] () -- \Users\All Users\Nero\Nero8\OnlineServices\NOSWebConfig\MySpace\uploadError.xml
[2013.04.25 17:31:28 | 000,072,638 | ---- | M] () -- \Users\All Users\Skype\Apps\login\images\loader.gif
[2013.04.25 17:31:28 | 000,003,032 | ---- | M] () -- \Users\All Users\Skype\Apps\login\images\loader.png
[2013.04.25 17:31:28 | 000,009,772 | ---- | M] () -- \Users\All Users\Skype\Apps\login\images\retina\loader@2x.png
[2013.10.06 13:01:23 | 000,004,504 | ---- | M] () -- \Users\MM\AppData\Local\Google\Chrome\User Data\Default\Extensions\edflbdjfhpiboilnedfoiepbmcllkedb\10.20.1.508_0\js\chromeBackstageLoader.js
[2013.10.06 13:01:23 | 000,003,100 | ---- | M] () -- \Users\MM\AppData\Local\Google\Chrome\User Data\Default\Extensions\edflbdjfhpiboilnedfoiepbmcllkedb\10.20.1.508_0\js\pluginLoader.js
[2013.10.06 13:01:21 | 000,000,847 | ---- | M] () -- \Users\MM\AppData\Local\Google\Chrome\User Data\Default\Extensions\edflbdjfhpiboilnedfoiepbmcllkedb\10.20.1.508_0\tb\al\ac\img\ajax-loader.gif
[2013.10.06 13:01:21 | 000,001,135 | ---- | M] () -- \Users\MM\AppData\Local\Google\Chrome\User Data\Default\Extensions\edflbdjfhpiboilnedfoiepbmcllkedb\10.20.1.508_0\tb\al\ac\img\loader-icon.png
[2013.10.06 13:01:20 | 000,003,208 | ---- | M] () -- \Users\MM\AppData\Local\Google\Chrome\User Data\Default\Extensions\edflbdjfhpiboilnedfoiepbmcllkedb\10.20.1.508_0\tb\al\ui\gf\img\loader.gif
[2013.10.26 12:18:10 | 000,002,545 | ---- | M] () -- \Users\MM\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4OWO22ZA\loader[1].gif
[2013.10.25 23:44:20 | 000,001,785 | ---- | M] () -- \Users\MM\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\IE7F6GSL\ajax-loader[1].gif
[2013.10.26 12:15:08 | 000,003,061 | ---- | M] () -- \Users\MM\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\V5KDI5KG\rmsloaderdelayeddiv[1].js
[2013.01.25 23:52:18 | 000,004,613 | ---- | M] () -- \Users\MM\AppData\Local\Pokki\Engine\frames\frame\loader.gif
[2013.09.13 17:40:02 | 000,004,613 | ---- | M] () -- \Users\MM\AppData\Local\Pokki\Pokkies\f22abfeae27a67446927d078890381efc546d3e1\801b6d4b93aa86beaaa8f479dd09a5434c4cd08a\img\store\loader.gif
[2013.05.30 22:40:01 | 000,037,175 | ---- | M] () -- \Users\MM\AppData\Roaming\Apple Computer\Logs\CrashReporter\MobileDevice\molnar - iPad\iDownloaderPro_2013-05-25-032006_molnar-iPad.crash
[2013.09.05 16:40:46 | 000,040,938 | ---- | M] () -- \Users\MM\AppData\Roaming\Apple Computer\Logs\CrashReporter\MobileDevice\molnar - iPad\iDownloaderPro_2013-09-04-223709_molnar-iPad.crash
[2013.05.28 18:09:42 | 000,197,611 | ---- | M] () -- \Users\MM\AppData\Roaming\Mozilla\Firefox\Profiles\cdxqgtr4.default\extensions\ftdownloader4@ftdownloader.com.xpi
[2013.10.13 14:57:40 | 000,000,847 | ---- | M] () -- \Users\MM\AppData\Roaming\Mozilla\Firefox\Profiles\cdxqgtr4.default\extensions\{d4f1c433-f9c3-49f2-8645-37dbeca19e90}\chrome\CT3078318\content\tb\al\ac\img\ajax-loader.gif
[2013.10.13 14:57:40 | 000,001,135 | ---- | M] () -- \Users\MM\AppData\Roaming\Mozilla\Firefox\Profiles\cdxqgtr4.default\extensions\{d4f1c433-f9c3-49f2-8645-37dbeca19e90}\chrome\CT3078318\content\tb\al\ac\img\loader-icon.png
[2013.10.13 14:57:40 | 000,003,208 | ---- | M] () -- \Users\MM\AppData\Roaming\Mozilla\Firefox\Profiles\cdxqgtr4.default\extensions\{d4f1c433-f9c3-49f2-8645-37dbeca19e90}\chrome\CT3078318\content\tb\al\ui\gf\img\loader.gif
[2013.06.25 22:32:48 | 000,001,849 | ---- | M] () -- \Users\MM\AppData\Roaming\Mozilla\Firefox\Profiles\cdxqgtr4.default\extensions\trash\{d4f1c433-f9c3-49f2-8645-37dbeca19e90}\chrome\CT3078318\content\tb\al\wa\TWITTER\resources\ajax-loader.gif
[2004.09.28 09:11:04 | 000,002,413 | ---- | M] () -- \Users\MM\Documents\PC vše\FTP připojení\WS_FTP Pro - Return Codes_soubory\HM_Loader_Sublevel.js
[2009.11.15 23:13:22 | 000,010,453 | ---- | M] () -- \Users\MM\Pictures\Cedule\album\res\images\loader.gif
[2009.11.15 23:13:22 | 000,010,294 | ---- | M] () -- \Users\MM\Pictures\Cedule\album\res\images\loaderWhite.gif
[2013.08.02 03:48:15 | 000,003,584 | -H-- | M] () -- \Windows\System32\api-ms-win-core-libraryloader-l1-1-0.dll
[2009.07.14 03:15:12 | 000,038,400 | ---- | M] () -- \Windows\System32\dmloader.dll
[2013.01.30 14:48:10 | 000,012,532 | ---- | M] () -- \Windows\System32\Adobe\Shockwave 12\shockwave_Projector_Loader.dcr
[2013.09.02 21:59:39 | 000,004,182 | ---- | M] () -- \Windows\System32\Tasks\Torntv 2-codedownloader
[2009.07.14 06:54:01 | 000,003,532 | ---- | M] () -- \Windows\System32\Tasks\Microsoft\Windows\WindowsColorSystem\Calibration Loader
[2013.10.26 15:59:00 | 000,001,152 | ---- | M] () -- \Windows\Tasks\Torntv 2-codedownloader.job
[2010.11.21 03:16:08 | 000,002,883 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_3318c4cd5e5d0f86.manifest
[2010.11.21 03:16:08 | 000,034,896 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_3318c4cd5e5d0f86_winload.exe.mui_3bc5b827
[2010.11.21 03:16:08 | 000,030,272 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_3318c4cd5e5d0f86_winresume.exe.mui_ff8b5358
[2013.07.13 09:11:33 | 000,002,883 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_en-us_766f102945576be4.manifest
[2013.07.13 09:11:33 | 000,033,344 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_en-us_766f102945576be4_winload.exe.mui_3bc5b827
[2013.07.13 09:11:33 | 000,029,776 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_en-us_766f102945576be4_winresume.exe.mui_ff8b5358
[2010.11.20 23:31:02 | 000,004,225 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.17514_none_5d2e241dcae8f953.manifest
[2010.11.20 23:31:02 | 000,508,904 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.17514_none_5d2e241dcae8f953_winload.exe_75835076
[2010.11.20 23:31:02 | 000,442,720 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.17514_none_5d2e241dcae8f953_winresume.exe_85cd1215
[2009.07.14 04:17:38 | 000,002,894 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-s..ive-blackbox-loader_31bf3856ad364e35_6.1.7600.16385_none_6b097e5cb26f7a23.manifest
[2009.07.14 04:17:38 | 000,017,472 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-s..ive-blackbox-loader_31bf3856ad364e35_6.1.7600.16385_none_6b097e5cb26f7a23_spldr.sys_98bd87a0
[2010.11.21 03:15:24 | 000,002,883 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_3318c4cd5e5d0f86.manifest
[2009.07.13 18:29:12 | 000,002,883 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_en-us_766f102945576be4.manifest
[2010.11.20 23:23:54 | 000,004,225 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.17514_none_5d2e241dcae8f953.manifest
[2009.07.14 03:52:31 | 000,002,894 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-s..ive-blackbox-loader_31bf3856ad364e35_6.1.7600.16385_none_6b097e5cb26f7a23.manifest
[2009.07.14 03:15:12 | 000,038,400 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-audio-dmusic_31bf3856ad364e35_6.1.7600.16385_none_45ca7214f0f664cb\dmloader.dll
[2009.07.14 03:03:49 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.16385_none_0a884619dd2388ad\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.10.04 18:40:37 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.17965_none_0c845227da39a5ef\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.11.30 06:45:15 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.18015_none_0cba39e5da114d7c\api-ms-win-core-libraryloader-l1-1-0.dll
[2013.08.02 03:48:15 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.18229_none_0cb36eedda15c917\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.10.04 18:29:45 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.22125_none_0d3906c4f3370937\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.11.30 06:46:37 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.22177_none_0d04f7bcf35dc79a\api-ms-win-core-libraryloader-l1-1-0.dll
[2013.01.04 06:43:16 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.22209_none_0d52a9aaf32333d8\api-ms-win-core-libraryloader-l1-1-0.dll
[2013.08.02 07:53:29 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.22411_none_0d3fdb3af3327f5f\api-ms-win-core-libraryloader-l1-1-0.dll
< *minodlogin* /s >
< *tnod* /s >
[2005.01.15 08:42:32 | 000,001,165 | ---- | M] () -- \Users\MM\Documents\3_MILOŠ\Z Internetu\Sada vakuových dóz Valira s pumpou (Plastové dózy) - DoKuchyne_cz - exkluzivní doplňky do kuchyně, jidelny, pro barmany a vinaře_soubory\btnOdeslat.gif
< *AutoKMS* /s >
< *activator* /s >
< *serial* /s >
[2008.07.31 16:41:44 | 000,002,502 | ---- | M] () -- \Autodesk\AutoCAD_2010_Czech_SLD_WIN_32bit\x86\acad\Program Files\Root\Common Files Folder\Autodesk Shared\AdLM\R1\cs-CZ\Webdepot\RTSerialNumberHelp.html
[2008.07.31 16:41:44 | 000,002,502 | ---- | M] () -- \Autodesk\AutoCAD_2010_Czech_SLD_WIN_32bit\x86\acad\Program Files\Root\Common Files Folder\Autodesk Shared\AdLM\R1\de-DE\Webdepot\RTSerialNumberHelp.html
[2008.05.08 18:14:18 | 000,002,502 | ---- | M] () -- \Autodesk\AutoCAD_2010_Czech_SLD_WIN_32bit\x86\acad\Program Files\Root\Common Files Folder\Autodesk Shared\AdLM\R1\en-US\Webdepot\RTSerialNumberHelp.html
[2008.07.31 16:41:44 | 000,002,502 | ---- | M] () -- \Autodesk\AutoCAD_2010_Czech_SLD_WIN_32bit\x86\acad\Program Files\Root\Common Files Folder\Autodesk Shared\AdLM\R1\es-ES\Webdepot\RTSerialNumberHelp.html
[2008.08.06 10:22:56 | 000,002,502 | ---- | M] () -- \Autodesk\AutoCAD_2010_Czech_SLD_WIN_32bit\x86\acad\Program Files\Root\Common Files Folder\Autodesk Shared\AdLM\R1\fr-FR\Webdepot\RTSerialNumberHelp.html
[2008.07.31 16:41:44 | 000,002,502 | ---- | M] () -- \Autodesk\AutoCAD_2010_Czech_SLD_WIN_32bit\x86\acad\Program Files\Root\Common Files Folder\Autodesk Shared\AdLM\R1\hu-HU\Webdepot\RTSerialNumberHelp.html
[2008.07.31 16:41:44 | 000,002,502 | ---- | M] () -- \Autodesk\AutoCAD_2010_Czech_SLD_WIN_32bit\x86\acad\Program Files\Root\Common Files Folder\Autodesk Shared\AdLM\R1\it-IT\Webdepot\RTSerialNumberHelp.html
[2008.05.08 18:14:18 | 000,002,502 | ---- | M] () -- \Autodesk\AutoCAD_2010_Czech_SLD_WIN_32bit\x86\acad\Program Files\Root\Common Files Folder\Autodesk Shared\AdLM\R1\ja-JP\Webdepot\RTSerialNumberHelp.html
[2008.07.31 16:41:44 | 000,002,502 | ---- | M] () -- \Autodesk\AutoCAD_2010_Czech_SLD_WIN_32bit\x86\acad\Program Files\Root\Common Files Folder\Autodesk Shared\AdLM\R1\ko-KR\Webdepot\RTSerialNumberHelp.html
[2008.07.31 16:41:44 | 000,002,502 | ---- | M] () -- \Autodesk\AutoCAD_2010_Czech_SLD_WIN_32bit\x86\acad\Program Files\Root\Common Files Folder\Autodesk Shared\AdLM\R1\pl-PL\Webdepot\RTSerialNumberHelp.html
[2008.07.31 16:41:46 | 000,002,502 | ---- | M] () -- \Autodesk\AutoCAD_2010_Czech_SLD_WIN_32bit\x86\acad\Program Files\Root\Common Files Folder\Autodesk Shared\AdLM\R1\pt-BR\Webdepot\RTSerialNumberHelp.html
[2008.07.31 16:41:44 | 000,002,502 | ---- | M] () -- \Autodesk\AutoCAD_2010_Czech_SLD_WIN_32bit\x86\acad\Program Files\Root\Common Files Folder\Autodesk Shared\AdLM\R1\ru-RU\Webdepot\RTSerialNumberHelp.html
[2008.07.31 16:41:44 | 000,002,502 | ---- | M] () -- \Autodesk\AutoCAD_2010_Czech_SLD_WIN_32bit\x86\acad\Program Files\Root\Common Files Folder\Autodesk Shared\AdLM\R1\zh-CN\Webdepot\RTSerialNumberHelp.html
[2008.07.31 16:41:44 | 000,002,502 | ---- | M] () -- \Autodesk\AutoCAD_2010_Czech_SLD_WIN_32bit\x86\acad\Program Files\Root\Common Files Folder\Autodesk Shared\AdLM\R1\zh-TW\Webdepot\RTSerialNumberHelp.html
[2010.05.17 16:59:54 | 000,016,544 | ---- | M] () -- \Program Files\Corel\Corel VideoStudio Pro X3\AppFramework.XmlSerializers.dll
[2010.05.17 17:01:10 | 000,016,544 | ---- | M] () -- \Program Files\Corel\Corel VideoStudio Pro X3\Binary\AppFramework.XmlSerializers.dll
[2009.08.01 08:02:20 | 000,000,017 | ---- | M] () -- \Program Files\Corel\Corel VideoStudio Pro X3\Ulead.dat\AboutData\Loc\SerialStringFormat.txt
[1999.03.23 07:39:52 | 000,037,079 | ---- | M] () -- \Program Files\Corel\Graphics9\Register\serial2.gif
[2012.03.26 12:05:44 | 000,006,401 | ---- | M] () -- \Program Files\Genie9\Genie Timeline\Html\EnterSerial.html
[2012.10.05 12:53:23 | 000,970,752 | ---- | M] () -- \Program Files\Reference Assemblies\Microsoft\Framework\v3.0\System.Runtime.Serialization.dll
[2010.11.21 03:15:56 | 000,090,112 | ---- | M] () -- \Program Files\Reference Assemblies\Microsoft\Framework\v3.0\cs\System.RunTime.Serialization.Resources.dll
[2013.09.08 14:51:44 | 000,000,680 | ---- | M] () -- \Users\MM\AppData\Roaming\Microsoft\Office\Naposledy otevřené\Photo Retoucher_serial.LNK
[2013.10.05 18:12:54 | 000,000,683 | ---- | M] () -- \Users\MM\AppData\Roaming\Microsoft\Office\Naposledy otevřené\WebSite X5_serial.LNK
[2013.05.31 05:56:01 | 000,000,308 | ---- | M] () -- \Users\MM\Favorites\Web, SW, telefony\Cracks, serials\Best Crack , Serial and Warez sites.url
[2013.05.31 05:56:01 | 000,000,208 | ---- | M] () -- \Users\MM\Favorites\Web, SW, telefony\Cracks, serials\boilsoft serial and crack - The latest cracks and serials updated daily to unlock your software.url
[2013.05.31 05:56:01 | 000,000,325 | ---- | M] () -- \Users\MM\Favorites\Web, SW, telefony\Cracks, serials\CRACK.MS - All CRACKs and SERIALs on ONE Site.url
[2013.05.31 05:56:01 | 000,000,209 | ---- | M] () -- \Users\MM\Favorites\Web, SW, telefony\Cracks, serials\Cracks-serials-rox Downloads & torrents.url
[2013.05.31 05:56:01 | 000,000,249 | ---- | M] () -- \Users\MM\Favorites\Web, SW, telefony\Cracks, serials\CrackzPlanet.com - Serials - G2.url
[2013.05.31 05:56:01 | 000,000,122 | ---- | M] () -- \Users\MM\Favorites\Web, SW, telefony\Cracks, serials\DoCrack.com - Top Crack - Serials - KeyGen.url
[2013.05.31 05:56:01 | 000,000,262 | ---- | M] () -- \Users\MM\Favorites\Web, SW, telefony\Cracks, serials\Download Crack Serial - download cracks serials NO PORN POPUPs! NO STUPID TROJANs and EXPLOITs!.url
[2013.05.31 05:56:01 | 000,000,241 | ---- | M] () -- \Users\MM\Favorites\Web, SW, telefony\Cracks, serials\find abbyy pdf serial serials cracks hacking warez at www.thedarktoolbox.com.url
[2013.05.31 05:56:01 | 000,000,185 | ---- | M] () -- \Users\MM\Favorites\Web, SW, telefony\Cracks, serials\Free serial crack keygen downloads - CrackSerial.Net.url
[2013.05.31 05:56:01 | 000,000,371 | ---- | M] () -- \Users\MM\Favorites\Web, SW, telefony\Cracks, serials\FREE UNLIMITED CRACKS, SERIAL NUMBERS, KEYGENS, PATCHES, GAMES, SOFTWARE CRACK, CRACKZ.url
[2013.05.31 05:56:01 | 000,000,164 | ---- | M] () -- \Users\MM\Favorites\Web, SW, telefony\Cracks, serials\http--www.serialdevil.com-.url
[2013.05.31 05:56:01 | 000,000,261 | ---- | M] () -- \Users\MM\Favorites\Web, SW, telefony\Cracks, serials\InfiniteWarez.com - Full Version Downloads! Warez, Torrents, Cracks, Serials, KeyGens, XXX.url
[2013.05.31 05:56:01 | 000,000,220 | ---- | M] () -- \Users\MM\Favorites\Web, SW, telefony\Cracks, serials\Myserials.com.url
[2013.05.31 05:56:01 | 000,000,193 | ---- | M] () -- \Users\MM\Favorites\Web, SW, telefony\Cracks, serials\SerialCodes.net.url
[2013.05.31 05:56:01 | 000,000,160 | ---- | M] () -- \Users\MM\Favorites\Web, SW, telefony\Cracks, serials\Serialkey.NET - The Leading Serial Site. Live Databese! serials serialkey serial numbers codes keys.url
[2013.05.31 05:56:01 | 000,000,258 | ---- | M] () -- \Users\MM\Favorites\Web, SW, telefony\Cracks, serials\Serialportal!.url
[2013.05.31 05:56:01 | 000,000,172 | ---- | M] () -- \Users\MM\Favorites\Web, SW, telefony\Cracks, serials\Serials & keys - unlocks the world.url
[2013.05.31 05:56:01 | 000,000,183 | ---- | M] () -- \Users\MM\Favorites\Web, SW, telefony\Cracks, serials\Serials & keys.url
[2013.05.31 05:56:01 | 000,000,229 | ---- | M] () -- \Users\MM\Favorites\Web, SW, telefony\Cracks, serials\Smart Serials The Ultimate Resource of Free Serials.url
[2013.05.31 05:56:01 | 000,000,304 | ---- | M] () -- \Users\MM\Favorites\Web, SW, telefony\Cracks, serials\Ulead Videostudio 11.5 Plus Free Download Crack Torrent Serial Keygen Warez Full Version.url
[2013.05.31 05:56:01 | 000,000,263 | ---- | M] () -- \Users\MM\Favorites\Web, SW, telefony\Cracks, serials\VSO ConvertXtoDvd Software-Serials.com Enter The Vortex.url
[2013.05.31 05:56:01 | 000,000,229 | ---- | M] () -- \Users\MM\Favorites\Web, SW, telefony\Cracks, serials\Warez-Vortex.net - Warez Downloads, Apps, Games, Movies, XXX, Cracks, Serials, Keygens And More!.url
[2013.05.31 05:56:01 | 000,000,300 | ---- | M] () -- \Users\MM\Favorites\Web, SW, telefony\Downloady\dvdfab platinum Download Crack Serial.url
[2010.11.21 03:15:52 | 000,011,776 | ---- | M] () -- \Windows\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap.resources\2.0.0.0_cs_b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2009.06.10 23:23:19 | 000,131,072 | ---- | M] () -- \Windows\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap\2.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.dll
[2010.11.13 03:55:26 | 000,090,112 | ---- | M] () -- \Windows\assembly\GAC_MSIL\system.runtime.serialization.resources\3.0.0.0_cs_b77a5c561934e089\System.RunTime.Serialization.Resources.dll
[2012.10.05 12:53:23 | 000,970,752 | ---- | M] () -- \Windows\assembly\GAC_MSIL\System.Runtime.Serialization\3.0.0.0__b77a5c561934e089\System.Runtime.Serialization.dll
[2013.10.06 12:48:50 | 000,310,784 | ---- | M] () -- \Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Seri#\d462f459c4353e2c628e6def1430aed7\System.Runtime.Serialization.Formatters.Soap.ni.dll
[2013.10.06 12:49:13 | 002,347,008 | ---- | M] () -- \Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Seri#\e043ad64456256a8ee5b934e227d9782\System.Runtime.Serialization.ni.dll
[2013.10.11 10:44:04 | 002,659,328 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_32\System.Runtime.Seri#\10519c5a16fab95707f40b55941647b5\System.Runtime.Serialization.ni.dll
[2013.10.06 12:53:37 | 000,311,296 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_32\System.Runtime.Seri#\ad3522eafb95969623aeef7c389246bd\System.Runtime.Serialization.Formatters.Soap.ni.dll
[2013.10.06 13:08:27 | 000,009,216 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_32\System.Xml.Serializ#\cda839ea462e123d42cb6d0883cf0f4d\System.Xml.Serialization.ni.dll
[2010.03.18 13:16:28 | 001,026,936 | R--- | M] () -- \Windows\Installer\$PatchCache$\Managed\5C1093C35543A0E32A41B090A305076A\4.0.30319\System.Runtime.Serialization.dll.x86
[2013.05.30 06:18:18 | 000,017,840 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap.resources\v4.0_4.0.0.0_cs_b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2013.10.11 10:40:36 | 000,122,264 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.dll
[2013.05.30 06:18:17 | 000,099,208 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.RunTime.Serialization.resources\v4.0_4.0.0.0_cs_b77a5c561934e089\System.RunTime.Serialization.resources.dll
[2013.10.11 10:40:35 | 001,039,040 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization\v4.0_4.0.0.0__b77a5c561934e089\System.Runtime.Serialization.dll
[2013.10.11 10:40:39 | 000,011,120 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Xml.Serialization\v4.0_4.0.0.0__b77a5c561934e089\System.Xml.Serialization.dll
[2009.06.10 23:23:19 | 000,131,072 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v2.0.50727\System.Runtime.Serialization.Formatters.Soap.dll
[2010.11.21 03:15:47 | 000,011,776 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v2.0.50727\cs\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2012.10.05 12:53:24 | 000,970,752 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\System.Runtime.Serialization.dll
[2013.09.11 06:06:54 | 001,039,040 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\System.Runtime.Serialization.dll
[2010.03.18 13:16:28 | 000,122,264 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\System.Runtime.Serialization.Formatters.Soap.dll
[2011.04.06 16:48:20 | 000,011,120 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\System.Xml.Serialization.dll
[2010.06.15 02:33:16 | 000,017,840 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\cs\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2010.06.15 02:33:16 | 000,099,208 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\cs\System.RunTime.Serialization.resources.dll
[2009.07.14 03:16:13 | 000,015,360 | ---- | M] () -- \Windows\System32\serialui.dll
[2010.11.21 03:15:49 | 000,005,120 | ---- | M] () -- \Windows\System32\cs-CZ\serialui.dll.mui
[2009.07.14 01:45:33 | 000,083,456 | ---- | M] () -- \Windows\System32\drivers\serial.sys
[2010.11.21 03:15:53 | 000,009,728 | ---- | M] () -- \Windows\System32\drivers\cs-CZ\serial.sys.mui
[2009.07.13 18:09:30 | 000,010,240 | ---- | M] () -- \Windows\System32\drivers\en-US\serial.sys.mui
[2009.07.14 00:13:45 | 001,068,032 | ---- | M] () -- \Windows\System32\DriverStore\FileRepository\mdmmotsm.inf_x86_neutral_c1415d9789c54b89\smserial.sys
[2009.07.14 01:45:33 | 000,083,456 | ---- | M] () -- \Windows\System32\DriverStore\FileRepository\msports.inf_x86_neutral_c1a802e06677f73f\serial.sys
[2009.07.14 00:09:18 | 000,031,232 | ---- | M] () -- \Windows\System32\DriverStore\FileRepository\smartcrd.inf_x86_neutral_63e72c669d043f14\grserial.sys
[2009.07.13 18:10:04 | 000,005,120 | ---- | M] () -- \Windows\System32\en-US\serialui.dll.mui
[2009.07.13 18:29:14 | 000,005,120 | ---- | M] () -- \Windows\System32\sk-SK\serialui.dll.mui
[2009.07.14 04:18:03 | 000,002,762 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..gertransport-serial_31bf3856ad364e35_6.1.7600.16385_none_118be3420dfe8486.manifest
[2009.07.14 04:18:03 | 000,015,952 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..gertransport-serial_31bf3856ad364e35_6.1.7600.16385_none_118be3420dfe8486_kdcom.dll_db5e7744
[2010.11.21 03:16:08 | 000,005,120 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-u..em-config.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_4e4137b544fe59ed_serialui.dll.mui_7d29d2a3
[2013.07.13 09:11:35 | 000,005,120 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-u..em-config.resources_31bf3856ad364e35_6.1.7600.16385_en-us_919783112bf8b64b_serialui.dll.mui_7d29d2a3
[2013.07.13 09:27:38 | 000,005,120 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-u..em-config.resources_31bf3856ad364e35_6.1.7600.16385_sk-sk_79d39f727217a41c_serialui.dll.mui_7d29d2a3
[2009.07.14 04:18:51 | 000,015,360 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-unimodem-config_31bf3856ad364e35_6.1.7600.16385_none_f4d7f7b17ffe522a_serialui.dll_bea29328
[2010.11.20 23:24:56 | 000,002,226 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.ref_b77a5c561934e089_6.1.7601.17514_none_a67f221874da7f4c.manifest
[2012.10.05 19:15:39 | 000,002,226 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.ref_b77a5c561934e089_6.1.7601.17966_none_a683f56a74d63285.manifest
[2012.10.05 19:17:50 | 000,002,226 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.ref_b77a5c561934e089_6.1.7601.22126_none_8fb250ac8e81277d.manifest
[2010.11.21 03:15:32 | 000,001,626 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7600.16385_cs-cz_34555b4d83cf58b0.manifest
[2009.07.13 18:28:14 | 000,000,531 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7600.16385_en-us_8f71d563bf7aa3c2.manifest
[2012.10.05 21:04:43 | 000,001,626 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.17966_cs-cz_342f3c238422529f.manifest
[2012.10.05 19:12:04 | 000,000,531 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.17966_en-us_8f4bb639bfcd9db1.manifest
[2012.10.05 21:02:24 | 000,001,626 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.22126_cs-cz_1d5d97659dcd4797.manifest
[2012.10.05 19:12:20 | 000,000,531 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.22126_en-us_787a117bd97892a9.manifest
[2010.11.20 23:24:56 | 000,001,985 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization_b77a5c561934e089_6.1.7601.17514_none_d6c257b29c81807f.manifest
[2012.10.05 19:15:03 | 000,001,985 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization_b77a5c561934e089_6.1.7601.17966_none_d6c72b049c7d33b8.manifest
[2012.10.05 19:17:15 | 000,001,985 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization_b77a5c561934e089_6.1.7601.22126_none_bff58646b62828b0.manifest
[2009.07.14 03:49:26 | 000,002,762 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..gertransport-serial_31bf3856ad364e35_6.1.7600.16385_none_118be3420dfe8486.manifest
[2009.07.14 03:45:27 | 000,000,866 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft.windows.h..tserial-driverclass_31bf3856ad364e35_6.1.7600.16385_none_2c93290b67c98d09.manifest
[2010.11.20 23:24:56 | 000,002,260 | ---- | M] () -- \Windows\winsxs\Manifests\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.17514_none_db9d037fdd581ac1.manifest
[2012.10.05 19:19:53 | 000,002,260 | ---- | M] () -- \Windows\winsxs\Manifests\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.17966_none_dba1d6d1dd53cdfa.manifest
[2012.10.05 19:22:10 | 000,002,260 | ---- | M] () -- \Windows\winsxs\Manifests\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.22126_none_c4d03213f6fec2f2.manifest
[2009.06.10 23:23:19 | 000,131,072 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.seri..ion.formatters.soap_b03f5f7f11d50a3a_6.1.7600.16385_none_1c9a3ec1e01c684b\System.Runtime.Serialization.Formatters.Soap.dll
[2010.11.21 03:15:52 | 000,011,776 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.seri..ters.soap.resources_b03f5f7f11d50a3a_6.1.7600.16385_cs-cz_d5c3552dd9b47144\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2010.11.20 23:29:48 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.ref_b77a5c561934e089_6.1.7601.17514_none_a67f221874da7f4c\System.Runtime.Serialization.dll
[2012.10.05 12:53:24 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.ref_b77a5c561934e089_6.1.7601.17966_none_a683f56a74d63285\System.Runtime.Serialization.dll
[2012.10.05 12:56:07 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.ref_b77a5c561934e089_6.1.7601.22126_none_8fb250ac8e81277d\System.Runtime.Serialization.dll
[2010.11.21 03:15:56 | 000,090,112 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7600.16385_cs-cz_34555b4d83cf58b0\System.RunTime.Serialization.Resources.dll
[2010.11.13 03:55:26 | 000,090,112 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.17966_cs-cz_342f3c238422529f\System.RunTime.Serialization.Resources.dll
[2010.11.13 04:37:50 | 000,090,112 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.22126_cs-cz_1d5d97659dcd4797\System.RunTime.Serialization.Resources.dll
[2010.11.20 23:29:48 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization_b77a5c561934e089_6.1.7601.17514_none_d6c257b29c81807f\System.Runtime.Serialization.dll
[2012.10.05 12:53:23 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization_b77a5c561934e089_6.1.7601.17966_none_d6c72b049c7d33b8\System.Runtime.Serialization.dll
[2012.10.05 12:56:05 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization_b77a5c561934e089_6.1.7601.22126_none_bff58646b62828b0\System.Runtime.Serialization.dll
[2009.07.14 00:13:45 | 001,068,032 | ---- | M] () -- \Windows\winsxs\x86_mdmmotsm.inf_31bf3856ad364e35_6.1.7600.16385_none_7a97936f8a972896\smserial.sys
[2010.11.21 03:15:47 | 000,011,776 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-n..xcorecomp.resources_31bf3856ad364e35_6.1.7601.17514_cs-cz_c233d4df09982c29\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2010.11.21 03:15:49 | 000,005,120 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-u..em-config.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_4e4137b544fe59ed\serialui.dll.mui
[2009.07.13 18:10:04 | 000,005,120 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-u..em-config.resources_31bf3856ad364e35_6.1.7600.16385_en-us_919783112bf8b64b\serialui.dll.mui
[2009.07.13 18:29:14 | 000,005,120 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-u..em-config.resources_31bf3856ad364e35_6.1.7600.16385_sk-sk_79d39f727217a41c\serialui.dll.mui
[2009.07.14 03:16:13 | 000,015,360 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-unimodem-config_31bf3856ad364e35_6.1.7600.16385_none_f4d7f7b17ffe522a\serialui.dll
[2010.11.21 03:15:56 | 000,090,112 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-wcfcorecomp.resources_31bf3856ad364e35_6.1.7601.17514_cs-cz_5f7b7c7cb0c0f266\System.RunTime.Serialization.Resources.dll
[2010.11.21 03:15:53 | 000,009,728 | ---- | M] () -- \Windows\winsxs\x86_msports.inf.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_c48c78a9ad8ff996\serial.sys.mui
[2009.07.13 18:09:30 | 000,010,240 | ---- | M] () -- \Windows\winsxs\x86_msports.inf.resources_31bf3856ad364e35_6.1.7600.16385_en-us_07e2c405948a55f4\serial.sys.mui
[2009.07.14 01:45:33 | 000,083,456 | ---- | M] () -- \Windows\winsxs\x86_msports.inf_31bf3856ad364e35_6.1.7600.16385_none_f86e06d519b1d9a4\serial.sys
[2009.07.14 00:09:18 | 000,031,232 | ---- | M] () -- \Windows\winsxs\x86_smartcrd.inf_31bf3856ad364e35_6.1.7600.16385_none_7280378295916274\grserial.sys
[2010.11.20 23:29:48 | 000,970,752 | ---- | M] () -- \Windows\winsxs\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.17514_none_db9d037fdd581ac1\System.Runtime.Serialization.dll
[2012.10.05 12:53:23 | 000,970,752 | ---- | M] () -- \Windows\winsxs\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.17966_none_dba1d6d1dd53cdfa\System.Runtime.Serialization.dll
[2012.10.05 12:56:05 | 000,970,752 | ---- | M] () -- \Windows\winsxs\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.22126_none_c4d03213f6fec2f2\System.Runtime.Serialization.dll
< *w7lxe* /s >
========== Files - Unicode (All) ==========
[2013.05.28 22:12:28 | 000,030,208 | ---- | C] ()(C:\Users\MM\Documents\?? ???????? EMCOS s.doc) -- C:\Users\MM\Documents\ОБ ОБЩЕСТВЕ EMCOS s.doc
[2008.06.26 20:49:30 | 000,030,208 | ---- | M] ()(C:\Users\MM\Documents\?? ???????? EMCOS s.doc) -- C:\Users\MM\Documents\ОБ ОБЩЕСТВЕ EMCOS s.doc
========== Alternate Data Streams ==========
@Alternate Data Stream - 853 bytes -> C:\Users\MM\Documents\Fw_ E-mailové potvrzení objednávky.eml:OECustomProperty
@Alternate Data Stream - 748 bytes -> C:\Users\MM\Documents\Fw_ Joint a policajti.eml:OECustomProperty
@Alternate Data Stream - 6144 bytes -> C:\Windows\Cursors\arrow_n.cur:NEDTA.DAT
< End of report >
< >
[2009.07.14 06:53:46 | 000,032,576 | ---- | C] () -- C:\Windows\Tasks\SCHEDLGU.TXT
[2009.07.14 06:53:47 | 000,000,006 | -H-- | C] () -- C:\Windows\Tasks\SA.DAT
[2013.07.04 22:17:24 | 000,000,898 | ---- | C] () -- C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1107837428-173974533-547177936-1000Core.job
[2013.07.04 22:17:25 | 000,000,950 | ---- | C] () -- C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1107837428-173974533-547177936-1000UA.job
[2013.07.25 16:57:04 | 000,000,278 | ---- | C] () -- C:\Windows\Tasks\Dealply.job
[2013.07.25 16:57:15 | 000,000,882 | ---- | C] () -- C:\Windows\Tasks\DealPlyLiveUpdateTaskMachineCore.job
[2013.07.25 16:57:16 | 000,000,886 | ---- | C] () -- C:\Windows\Tasks\DealPlyLiveUpdateTaskMachineUA.job
[2013.09.02 21:59:37 | 000,001,152 | ---- | C] () -- C:\Windows\Tasks\Torntv 2-codedownloader.job
[2013.09.02 21:59:43 | 000,001,062 | ---- | C] () -- C:\Windows\Tasks\Torntv 2-enabler.job
[2013.09.02 21:59:49 | 000,001,158 | ---- | C] () -- C:\Windows\Tasks\Torntv 2-updater.job
< >
< MD5 for: AGP440.SYS >
[2009.07.14 03:26:15 | 000,053,312 | ---- | M] (Microsoft Corporation) MD5=507812C3054C21CEF746B6EE3D04DD6E -- C:\Windows\System32\drivers\AGP440.sys
[2009.07.14 03:26:15 | 000,053,312 | ---- | M] (Microsoft Corporation) MD5=507812C3054C21CEF746B6EE3D04DD6E -- C:\Windows\System32\DriverStore\FileRepository\machine.inf_x86_neutral_a97a2a0d0fbc6696\AGP440.sys
[2009.07.14 03:26:15 | 000,053,312 | ---- | M] (Microsoft Corporation) MD5=507812C3054C21CEF746B6EE3D04DD6E -- C:\Windows\winsxs\x86_machine.inf_31bf3856ad364e35_6.1.7601.17514_none_bc1a57271cf2f285\AGP440.sys
< MD5 for: ATAPI.SYS >
[2009.07.14 03:26:15 | 000,021,584 | ---- | M] (Microsoft Corporation) MD5=338C86357871C167A96AB976519BF59E -- C:\Windows\System32\drivers\atapi.sys
[2009.07.14 03:26:15 | 000,021,584 | ---- | M] (Microsoft Corporation) MD5=338C86357871C167A96AB976519BF59E -- C:\Windows\System32\DriverStore\FileRepository\mshdc.inf_x86_neutral_a5025d31bee4647c\atapi.sys
[2009.07.14 03:26:15 | 000,021,584 | ---- | M] (Microsoft Corporation) MD5=338C86357871C167A96AB976519BF59E -- C:\Windows\System32\DriverStore\FileRepository\mshdc.inf_x86_neutral_fab873f3e8a3315c\atapi.sys
[2009.07.14 03:26:15 | 000,021,584 | ---- | M] (Microsoft Corporation) MD5=338C86357871C167A96AB976519BF59E -- C:\Windows\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.1.7601.17514_none_df3f92057fcbe7a7\atapi.sys
[2009.07.14 03:26:15 | 000,021,584 | ---- | M] (Microsoft Corporation) MD5=338C86357871C167A96AB976519BF59E -- C:\Windows\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.1.7601.18231_none_df26d4d57fdef5b0\atapi.sys
[2009.07.14 03:26:15 | 000,021,584 | ---- | M] (Microsoft Corporation) MD5=338C86357871C167A96AB976519BF59E -- C:\Windows\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.1.7601.22414_none_dfc9143c98e9a6c4\atapi.sys
< MD5 for: AUTOCHK.EXE >
[2010.11.20 23:29:06 | 000,668,160 | ---- | M] (Microsoft Corporation) MD5=F88A52EB62019D6A62FDD9E08034DBD8 -- C:\Windows\System32\autochk.exe
[2010.11.20 23:29:06 | 000,668,160 | ---- | M] (Microsoft Corporation) MD5=F88A52EB62019D6A62FDD9E08034DBD8 -- C:\Windows\winsxs\x86_microsoft-windows-autochk_31bf3856ad364e35_6.1.7601.17514_none_e3fb573520033bfa\autochk.exe
< MD5 for: CDROM.SYS >
[2010.11.20 23:29:03 | 000,108,544 | ---- | M] (Microsoft Corporation) MD5=BE167ED0FDB9C1FA1133953C18D5A6C9 -- C:\Windows\System32\drivers\cdrom.sys
[2010.11.20 23:29:03 | 000,108,544 | ---- | M] (Microsoft Corporation) MD5=BE167ED0FDB9C1FA1133953C18D5A6C9 -- C:\Windows\System32\DriverStore\FileRepository\cdrom.inf_x86_neutral_6381e09675524225\cdrom.sys
[2010.11.20 23:29:03 | 000,108,544 | ---- | M] (Microsoft Corporation) MD5=BE167ED0FDB9C1FA1133953C18D5A6C9 -- C:\Windows\winsxs\x86_cdrom.inf_31bf3856ad364e35_6.1.7601.17514_none_61b0c5ce02098355\cdrom.sys
< MD5 for: CNGAUDIT.DLL >
[2009.07.14 03:15:06 | 000,012,288 | ---- | M] (Microsoft Corporation) MD5=50BA656134F78AF64E4DD3C8B6FEFD7E -- C:\Windows\System32\cngaudit.dll
[2009.07.14 03:15:06 | 000,012,288 | ---- | M] (Microsoft Corporation) MD5=50BA656134F78AF64E4DD3C8B6FEFD7E -- C:\Windows\winsxs\x86_microsoft-windows-cngaudit-dll_31bf3856ad364e35_6.1.7600.16385_none_e83a414890e8132b\cngaudit.dll
< MD5 for: CRYPTSVC.DLL >
[2012.06.02 06:52:32 | 000,142,336 | ---- | M] (Microsoft Corporation) MD5=063DD65889D21035311463337BD268E7 -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7601.22010_none_788c7cc71232cc19\cryptsvc.dll
[2013.05.10 06:49:59 | 000,140,288 | ---- | M] (Microsoft Corporation) MD5=33ADF6E0853AB39EA1723BE82842C1D3 -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7601.18150_none_77d7a417f9359661\cryptsvc.dll
[2013.05.13 06:45:55 | 000,140,288 | ---- | M] (Microsoft Corporation) MD5=3897DFF247D9ED0006190349DE264E14 -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7601.18151_none_77d8a461f934afb8\cryptsvc.dll
[2013.07.09 15:57:37 | 000,142,848 | ---- | M] (Microsoft Corporation) MD5=6DB499DEFCC827317C5371164A7CDB27 -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7601.22380_none_7840d305126b8725\cryptsvc.dll
[2013.07.09 06:46:31 | 000,140,288 | ---- | M] (Microsoft Corporation) MD5=7CA1BECEA5DE2643ADDAD32670E7A4C9 -- C:\Windows\System32\cryptsvc.dll
[2013.07.09 06:46:31 | 000,140,288 | ---- | M] (Microsoft Corporation) MD5=7CA1BECEA5DE2643ADDAD32670E7A4C9 -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7601.18205_none_7812b70bf9088686\cryptsvc.dll
[2012.06.02 06:36:29 | 000,140,288 | ---- | M] (Microsoft Corporation) MD5=96C0E38905CFD788313BE8E11DAE3F2F -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7601.17856_none_77ddc9e5f93000db\cryptsvc.dll
[2010.11.20 23:29:24 | 000,136,192 | ---- | M] (Microsoft Corporation) MD5=A585BEBF7D054BD9618EDA0922D5484A -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7601.17514_none_7807034ff91166f4\cryptsvc.dll
[2013.05.11 06:59:05 | 000,142,848 | ---- | M] (Microsoft Corporation) MD5=AC04D05309BB2C418D0D80B9FB014642 -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7601.22322_none_7883b3211239122d\cryptsvc.dll
[2013.05.10 07:06:21 | 000,142,848 | ---- | M] (Microsoft Corporation) MD5=E122AA1C9A3CC46FF9DDDE46E5EB0C58 -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7601.22321_none_7882b2d71239f8d6\cryptsvc.dll
< MD5 for: EXPLORER.EXE >
[2011.02.26 07:19:21 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=0FB9C74046656D1579A64660AD67B746 -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.21669_none_54149f9ef14031fc\explorer.exe
[2010.11.20 23:29:20 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=40D777B7A95E00593EB1568C68514493 -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17514_none_53bc10fdd7fe87ca\explorer.exe
[2011.02.25 07:30:54 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=8B88EBBB05A0E56B7DCC708498C02B3E -- C:\Windows\explorer.exe
[2011.02.25 07:30:54 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=8B88EBBB05A0E56B7DCC708498C02B3E -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17567_none_5389023fd8245f84\explorer.exe
< MD5 for: HAL.DLL >
[2010.11.20 23:29:19 | 000,194,432 | ---- | M] (Microsoft Corporation) MD5=1BF0D4727FDB437D513CFF8A9359C050 -- C:\Windows\System32\hal.dll
[2010.11.20 23:29:19 | 000,194,432 | ---- | M] (Microsoft Corporation) MD5=1BF0D4727FDB437D513CFF8A9359C050 -- C:\Windows\winsxs\x86_microsoft-windows-hal_31bf3856ad364e35_6.1.7601.17514_none_ad305c8fb7ec5060\hal.dll
< MD5 for: IASTORV.SYS >
[2011.03.11 07:38:51 | 000,332,160 | ---- | M] (Intel Corporation) MD5=5CD5F9A5444E6CDCB0AC89BD62D8B76E -- C:\Windows\System32\drivers\iaStorV.sys
[2011.03.11 07:38:51 | 000,332,160 | ---- | M] (Intel Corporation) MD5=5CD5F9A5444E6CDCB0AC89BD62D8B76E -- C:\Windows\System32\DriverStore\FileRepository\iastorv.inf_x86_neutral_0bcee2057afcc090\iaStorV.sys
[2011.03.11 07:38:51 | 000,332,160 | ---- | M] (Intel Corporation) MD5=5CD5F9A5444E6CDCB0AC89BD62D8B76E -- C:\Windows\winsxs\x86_iastorv.inf_31bf3856ad364e35_6.1.7601.17577_none_b0daddb9e6380745\iaStorV.sys
[2011.03.11 07:28:00 | 000,332,160 | ---- | M] (Intel Corporation) MD5=778D0E6D7D9EBA0C403BADBAAD41DB20 -- C:\Windows\winsxs\x86_iastorv.inf_31bf3856ad364e35_6.1.7601.21680_none_b152a892ff64119f\iaStorV.sys
[2010.11.20 23:29:03 | 000,332,160 | ---- | M] (Intel Corporation) MD5=A3CAE5D281DB4CFF7CFF8233507EE5AD -- C:\Windows\System32\DriverStore\FileRepository\iastorv.inf_x86_neutral_668286aa35d55928\iaStorV.sys
[2010.11.20 23:29:03 | 000,332,160 | ---- | M] (Intel Corporation) MD5=A3CAE5D281DB4CFF7CFF8233507EE5AD -- C:\Windows\winsxs\x86_iastorv.inf_31bf3856ad364e35_6.1.7601.17514_none_b118bc63e60a139a\iaStorV.sys
< MD5 for: ISAPNP.SYS >
[2009.07.14 03:20:36 | 000,046,656 | ---- | M] (Microsoft Corporation) MD5=1F32BB6B38F62F7DF1A7AB7292638A35 -- C:\Windows\System32\drivers\isapnp.sys
[2009.07.14 03:20:36 | 000,046,656 | ---- | M] (Microsoft Corporation) MD5=1F32BB6B38F62F7DF1A7AB7292638A35 -- C:\Windows\System32\DriverStore\FileRepository\machine.inf_x86_neutral_a97a2a0d0fbc6696\isapnp.sys
[2009.07.14 03:20:36 | 000,046,656 | ---- | M] (Microsoft Corporation) MD5=1F32BB6B38F62F7DF1A7AB7292638A35 -- C:\Windows\winsxs\x86_machine.inf_31bf3856ad364e35_6.1.7601.17514_none_bc1a57271cf2f285\isapnp.sys
< MD5 for: LSASS.EXE >
[2012.08.24 18:53:44 | 000,022,528 | ---- | M] (Microsoft Corporation) MD5=7ABC23F3D86880AD62ACEDC7479608F8 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.22099_none_a889f15ed46779fd\lsass.exe
[2011.11.17 07:29:50 | 000,022,528 | ---- | M] (Microsoft Corporation) MD5=81951F51E318AECC2D68559E47485CC4 -- C:\Windows\System32\lsass.exe
[2011.11.17 07:29:50 | 000,022,528 | ---- | M] (Microsoft Corporation) MD5=81951F51E318AECC2D68559E47485CC4 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.17725_none_a84828d7bb1480d7\lsass.exe
[2011.11.17 07:29:50 | 000,022,528 | ---- | M] (Microsoft Corporation) MD5=81951F51E318AECC2D68559E47485CC4 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.17856_none_a828bb43bb2beb28\lsass.exe
[2011.11.17 07:29:50 | 000,022,528 | ---- | M] (Microsoft Corporation) MD5=81951F51E318AECC2D68559E47485CC4 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.17940_none_a82d8b59bb293454\lsass.exe
[2009.07.14 03:14:23 | 000,022,528 | ---- | M] (Microsoft Corporation) MD5=F42309C4191C506B71DB5D1126D26318 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.17514_none_a851f4adbb0d5141\lsass.exe
[2012.06.02 06:51:22 | 000,022,528 | ---- | M] (Microsoft Corporation) MD5=FA7B950E4CA6AA260C4EABA19E03644D -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.22010_none_a8d76e24d42eb666\lsass.exe
[2011.11.17 07:24:04 | 000,022,528 | ---- | M] (Microsoft Corporation) MD5=FBCB2DFA40862DAA7B1534C9538208A5 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.21861_none_a8a284cad4562b09\lsass.exe
< MD5 for: NDIS.SYS >
[2012.08.22 19:05:16 | 000,712,048 | ---- | M] (Microsoft Corporation) MD5=15B74B6283CEBCCE3054C1001CA01B5E -- C:\Windows\winsxs\x86_microsoft-windows-ndis_31bf3856ad364e35_6.1.7601.22097_none_aa0491cf93ad1c31\ndis.sys
[2012.08.22 19:16:46 | 000,712,048 | ---- | M] (Microsoft Corporation) MD5=8C9C922D71F1CD4DEF73F186416B7896 -- C:\Windows\System32\drivers\ndis.sys
[2012.08.22 19:16:46 | 000,712,048 | ---- | M] (Microsoft Corporation) MD5=8C9C922D71F1CD4DEF73F186416B7896 -- C:\Windows\winsxs\x86_microsoft-windows-ndis_31bf3856ad364e35_6.1.7601.17939_none_a9bdfee47a5cd154\ndis.sys
[2010.11.20 23:29:12 | 000,712,576 | ---- | M] (Microsoft Corporation) MD5=E7C54812A2AAF43316EB6930C1FFA108 -- C:\Windows\winsxs\x86_microsoft-windows-ndis_31bf3856ad364e35_6.1.7601.17514_none_a9ce95b27a512623\ndis.sys
< MD5 for: NETLOGON.DLL >
[2010.11.20 23:29:12 | 000,563,712 | ---- | M] (Microsoft Corporation) MD5=C1809B9907ADEDAF16F50C894100883B -- C:\Windows\System32\netlogon.dll
[2010.11.20 23:29:12 | 000,563,712 | ---- | M] (Microsoft Corporation) MD5=C1809B9907ADEDAF16F50C894100883B -- C:\Windows\winsxs\x86_microsoft-windows-security-netlogon_31bf3856ad364e35_6.1.7601.17514_none_ffbf212e963c0162\netlogon.dll
< MD5 for: NVRAID.SYS >
[2010.11.20 23:29:03 | 000,117,120 | ---- | M] (NVIDIA Corporation) MD5=AF2EEC9580C1D32FB7EAF105D9784061 -- C:\Windows\System32\DriverStore\FileRepository\nvraid.inf_x86_neutral_dd659ed032d28a14\nvraid.sys
[2010.11.20 23:29:03 | 000,117,120 | ---- | M] (NVIDIA Corporation) MD5=AF2EEC9580C1D32FB7EAF105D9784061 -- C:\Windows\winsxs\x86_nvraid.inf_31bf3856ad364e35_6.1.7601.17514_none_3be22d131d40bd72\nvraid.sys
[2011.03.11 07:39:00 | 000,117,120 | ---- | M] (NVIDIA Corporation) MD5=B3E25EE28883877076E0E1FF877D02E0 -- C:\Windows\System32\drivers\nvraid.sys
[2011.03.11 07:39:00 | 000,117,120 | ---- | M] (NVIDIA Corporation) MD5=B3E25EE28883877076E0E1FF877D02E0 -- C:\Windows\System32\DriverStore\FileRepository\nvraid.inf_x86_neutral_0276fc3b3ea60d41\nvraid.sys
[2011.03.11 07:39:00 | 000,117,120 | ---- | M] (NVIDIA Corporation) MD5=B3E25EE28883877076E0E1FF877D02E0 -- C:\Windows\winsxs\x86_nvraid.inf_31bf3856ad364e35_6.1.7601.17577_none_3ba44e691d6eb11d\nvraid.sys
[2011.03.11 07:28:10 | 000,117,120 | ---- | M] (NVIDIA Corporation) MD5=E3B840350A72CA6F39BD2BEF85A2BCFB -- C:\Windows\winsxs\x86_nvraid.inf_31bf3856ad364e35_6.1.7601.21680_none_3c1c1942369abb77\nvraid.sys
< MD5 for: NVSTOR.SYS >
[2011.03.11 07:39:00 | 000,143,744 | ---- | M] (NVIDIA Corporation) MD5=4380E59A170D88C4F1022EFF6719A8A4 -- C:\Windows\System32\drivers\nvstor.sys
[2011.03.11 07:39:00 | 000,143,744 | ---- | M] (NVIDIA Corporation) MD5=4380E59A170D88C4F1022EFF6719A8A4 -- C:\Windows\System32\DriverStore\FileRepository\nvraid.inf_x86_neutral_0276fc3b3ea60d41\nvstor.sys
[2011.03.11 07:39:00 | 000,143,744 | ---- | M] (NVIDIA Corporation) MD5=4380E59A170D88C4F1022EFF6719A8A4 -- C:\Windows\winsxs\x86_nvraid.inf_31bf3856ad364e35_6.1.7601.17577_none_3ba44e691d6eb11d\nvstor.sys
[2011.03.11 07:28:10 | 000,143,744 | ---- | M] (NVIDIA Corporation) MD5=66D468654A58594F5F3BA63D5AD5B1AF -- C:\Windows\winsxs\x86_nvraid.inf_31bf3856ad364e35_6.1.7601.21680_none_3c1c1942369abb77\nvstor.sys
[2010.11.20 23:29:03 | 000,143,744 | ---- | M] (NVIDIA Corporation) MD5=9283C58EBAA2618F93482EB5DABCEC82 -- C:\Windows\System32\DriverStore\FileRepository\nvraid.inf_x86_neutral_dd659ed032d28a14\nvstor.sys
[2010.11.20 23:29:03 | 000,143,744 | ---- | M] (NVIDIA Corporation) MD5=9283C58EBAA2618F93482EB5DABCEC82 -- C:\Windows\winsxs\x86_nvraid.inf_31bf3856ad364e35_6.1.7601.17514_none_3be22d131d40bd72\nvstor.sys
< MD5 for: SCECLI.DLL >
[2010.11.20 23:29:07 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=8124944EC89D6A1815E4E53F5B96AAF4 -- C:\Windows\System32\scecli.dll
[2010.11.20 23:29:07 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=8124944EC89D6A1815E4E53F5B96AAF4 -- C:\Windows\winsxs\x86_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7601.17514_none_3a154c47375d881d\scecli.dll
< MD5 for: SMSS.EXE >
[2013.03.19 04:43:41 | 000,069,632 | ---- | M] (Microsoft Corporation) MD5=0294CC751D7FAEB13621EEFB8A749429 -- C:\Windows\winsxs\x86_microsoft-windows-smss_31bf3856ad364e35_6.1.7601.22280_none_ae7bdfb790cddbcf\smss.exe
[2009.07.14 03:14:39 | 000,069,632 | ---- | M] (Microsoft Corporation) MD5=16742790895960690237A5143CEDEC8B -- C:\Windows\winsxs\x86_microsoft-windows-smss_31bf3856ad364e35_6.1.7600.16385_none_ac10fe207a85352b\smss.exe
[2013.07.08 05:02:28 | 000,069,632 | ---- | M] (Microsoft Corporation) MD5=634E0B45780F502304592C5615A31089 -- C:\Windows\winsxs\x86_microsoft-windows-smss_31bf3856ad364e35_6.1.7601.22379_none_ae8fb42390bda114\smss.exe
[2013.08.29 02:51:28 | 000,069,632 | ---- | M] (Microsoft Corporation) MD5=D2A72C71CD6C18A99E920EC5761F0C7D -- C:\Windows\winsxs\x86_microsoft-windows-smss_31bf3856ad364e35_6.1.7601.22436_none_aeb7f4db909fe272\smss.exe
[2013.03.19 04:49:16 | 000,069,632 | ---- | M] (Microsoft Corporation) MD5=DE91DCC7BC55E940979097E98F743205 -- C:\Windows\System32\smss.exe
[2013.03.19 04:49:16 | 000,069,632 | ---- | M] (Microsoft Corporation) MD5=DE91DCC7BC55E940979097E98F743205 -- C:\Windows\winsxs\x86_microsoft-windows-smss_31bf3856ad364e35_6.1.7601.18113_none_ae40f33e7774c473\smss.exe
[2013.05.06 05:02:20 | 000,069,632 | ---- | M] (Microsoft Corporation) MD5=EC745C0949B101129AB6D39CD63808A6 -- C:\Windows\winsxs\x86_microsoft-windows-smss_31bf3856ad364e35_6.1.7601.22318_none_aecf9361908de017\smss.exe
< MD5 for: SVCHOST.EXE >
[2009.07.14 03:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\System32\svchost.exe
[2009.07.14 03:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\winsxs\x86_microsoft-windows-services-svchost_31bf3856ad364e35_6.1.7600.16385_none_b591afc466a15356\svchost.exe
< MD5 for: TCPIP.SYS >
[2011.04.25 06:31:30 | 001,290,624 | ---- | M] (Microsoft Corporation) MD5=24326784DF8F3D5F5BBB9F878CE33C14 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.17603_none_b52f4dc5c4a121e0\tcpip.sys
[2010.11.20 23:29:20 | 001,290,112 | ---- | M] (Microsoft Corporation) MD5=37E8FA3779668837CA9E2C36D2415949 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.17514_none_b5257c3dc4a85a01\tcpip.sys
[2013.01.04 06:56:23 | 001,308,504 | ---- | M] (Microsoft Corporation) MD5=4A95845C5F33A4DDEB6AEF6367FB6520 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.22209_none_b5becc06ddb98192\tcpip.sys
[2013.07.06 07:05:35 | 001,293,760 | ---- | M] (Microsoft Corporation) MD5=4E8B9BE71B807B3BAEDB7F4243F85E3C -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.18203_none_b52f2f65c4a146e5\tcpip.sys
[2013.07.06 06:57:37 | 001,309,120 | ---- | M] (Microsoft Corporation) MD5=528F7CC60391DD0FAB0344F32F051FDF -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.22378_none_b5721e2eddf328f9\tcpip.sys
[2013.05.08 08:15:22 | 001,309,032 | ---- | M] (Microsoft Corporation) MD5=6088D01FAD49729EA0A5A3D9B9BA8B84 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.22319_none_b5b3fe00ddc19aaa\tcpip.sys
[2013.09.07 04:06:48 | 001,309,120 | ---- | M] (Microsoft Corporation) MD5=6C4F3D92764FFA22D28061A4D9235446 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.22444_none_b58e8eb0ddde6cf1\tcpip.sys
[2011.04.25 08:31:09 | 001,301,376 | ---- | M] (Microsoft Corporation) MD5=6D4728CFF2724FF3A4654971D61D0F1C -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.21712_none_b5ad1a5addc7c444\tcpip.sys
[2013.01.03 07:05:20 | 001,293,672 | ---- | M] (Microsoft Corporation) MD5=7C0507D2391AF5933600CBCED799F277 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.18042_none_b502eb9fc4c2a304\tcpip.sys
[2013.09.08 04:07:12 | 001,294,272 | ---- | M] (Microsoft Corporation) MD5=CA59F7C570AF70BC174F477CFE2D9EE3 -- C:\Windows\System32\drivers\tcpip.sys
[2013.09.08 04:07:12 | 001,294,272 | ---- | M] (Microsoft Corporation) MD5=CA59F7C570AF70BC174F477CFE2D9EE3 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.18254_none_b4fa2013c4c8ebf1\tcpip.sys
[2013.05.08 07:38:00 | 001,293,672 | ---- | M] (Microsoft Corporation) MD5=D32FDAC73FCD76B85389C39BC1087F2A -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.18148_none_b508ef41c4bd3835\tcpip.sys
[2012.10.03 18:44:01 | 001,308,040 | ---- | M] (Microsoft Corporation) MD5=D490DD0A91B4EAC3B4EE08D11EE37C31 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.22124_none_b5a428d6ddce3d9a\tcpip.sys
[2012.10.03 18:58:30 | 001,293,680 | ---- | M] (Microsoft Corporation) MD5=E23A56F843E2AEBBB209D0ACCA73C640 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.17964_none_b4ef7439c4d0da52\tcpip.sys
< MD5 for: USERINIT.EXE >
[2010.11.20 23:29:06 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=61AC3EFDFACFDD3F0F11DD4FD4044223 -- C:\Windows\System32\userinit.exe
[2010.11.20 23:29:06 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=61AC3EFDFACFDD3F0F11DD4FD4044223 -- C:\Windows\winsxs\x86_microsoft-windows-userinit_31bf3856ad364e35_6.1.7601.17514_none_de3024012ff21116\userinit.exe
< MD5 for: WINLOGON.EXE >
[2010.11.20 23:29:06 | 000,286,720 | ---- | M] (Microsoft Corporation) MD5=6D13E1406F50C66E2A95D97F22C47560 -- C:\Windows\System32\winlogon.exe
[2010.11.20 23:29:06 | 000,286,720 | ---- | M] (Microsoft Corporation) MD5=6D13E1406F50C66E2A95D97F22C47560 -- C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7601.17514_none_71ca6b0233339500\winlogon.exe
< MD5 for: WS2_32.DLL >
[2010.11.20 23:29:06 | 000,206,848 | ---- | M] (Microsoft Corporation) MD5=7FF15A4F092CD4A96055BA69F903E3E9 -- C:\Windows\System32\ws2_32.dll
[2010.11.20 23:29:06 | 000,206,848 | ---- | M] (Microsoft Corporation) MD5=7FF15A4F092CD4A96055BA69F903E3E9 -- C:\Windows\winsxs\x86_microsoft-windows-w..nfrastructure-ws232_31bf3856ad364e35_6.1.7601.17514_none_f4bf1aae2c981ecf\ws2_32.dll
< >
< %systemroot%*.* /U /s >
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
[6 C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp files -> C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp -> ]
[3 C:\Windows\Installer\*.tmp files -> C:\Windows\Installer\*.tmp -> ]
< %SYSTEMDRIVE%\*.exe >
< %ALLUSERSPROFILE%\Application Data\*. >
< %ALLUSERSPROFILE%\Application Data\*.exe /s >
< %APPDATA%\*. >
[2013.06.15 23:17:04 | 000,000,000 | ---D | M] -- C:\Users\MM\AppData\Roaming\ABBYY
[2013.06.16 23:26:12 | 000,000,000 | ---D | M] -- C:\Users\MM\AppData\Roaming\Adobe
[2013.09.24 00:10:51 | 000,000,000 | ---D | M] -- C:\Users\MM\AppData\Roaming\Apple Computer
[2013.06.02 14:59:32 | 000,000,000 | ---D | M] -- C:\Users\MM\AppData\Roaming\APP_NAME_NON_STRING
[2013.06.15 09:54:50 | 000,000,000 | ---D | M] -- C:\Users\MM\AppData\Roaming\ArcticLine
[2013.06.14 22:33:54 | 000,000,000 | ---D | M] -- C:\Users\MM\AppData\Roaming\Ashampoo
[2013.10.05 17:37:33 | 000,000,000 | ---D | M] -- C:\Users\MM\AppData\Roaming\Ashampoo Slideshow Studio 2013
[2013.06.14 22:58:26 | 000,000,000 | ---D | M] -- C:\Users\MM\AppData\Roaming\Autodesk
[2013.06.02 14:47:47 | 000,000,000 | ---D | M] -- C:\Users\MM\AppData\Roaming\calibre
[2013.06.03 16:56:01 | 000,000,000 | ---D | M] -- C:\Users\MM\AppData\Roaming\Canon
[2013.10.12 11:22:06 | 000,000,000 | ---D | M] -- C:\Users\MM\AppData\Roaming\Corel
[2013.05.30 18:54:24 | 000,000,000 | ---D | M] -- C:\Users\MM\AppData\Roaming\CyberLink
[2013.07.25 16:57:04 | 000,000,000 | ---D | M] -- C:\Users\MM\AppData\Roaming\Dealply
[2013.10.26 08:56:35 | 000,000,000 | ---D | M] -- C:\Users\MM\AppData\Roaming\Dropbox
[2013.06.02 14:53:02 | 000,000,000 | ---D | M] -- C:\Users\MM\AppData\Roaming\Engelmann Media
[2013.09.08 15:04:08 | 000,000,000 | ---D | M] -- C:\Users\MM\AppData\Roaming\FastStone
[2013.09.14 16:42:43 | 000,000,000 | ---D | M] -- C:\Users\MM\AppData\Roaming\GARMIN
[2013.07.28 10:23:52 | 000,000,000 | ---D | M] -- C:\Users\MM\AppData\Roaming\Genie9
[2013.06.30 13:26:34 | 000,000,000 | ---D | M] -- C:\Users\MM\AppData\Roaming\GeoGet
[2013.06.24 17:55:00 | 000,000,000 | ---D | M] -- C:\Users\MM\AppData\Roaming\GHISLER
[2013.06.02 18:46:26 | 000,000,000 | ---D | M] -- C:\Users\MM\AppData\Roaming\GoforFiles
[2013.10.09 23:04:11 | 000,000,000 | ---D | M] -- C:\Users\MM\AppData\Roaming\ICQ
[2013.10.10 12:50:44 | 000,000,000 | ---D | M] -- C:\Users\MM\AppData\Roaming\ICQ-Profile
[2013.10.09 23:04:54 | 000,000,000 | ---D | M] -- C:\Users\MM\AppData\Roaming\ICQM
[2013.05.28 16:57:33 | 000,000,000 | ---D | M] -- C:\Users\MM\AppData\Roaming\Identities
[2013.08.11 10:44:39 | 000,000,000 | ---D | M] -- C:\Users\MM\AppData\Roaming\Intelli-studio
[2013.05.28 17:12:14 | 000,000,000 | ---D | M] -- C:\Users\MM\AppData\Roaming\Macromedia
[2010.11.21 03:24:45 | 000,000,000 | ---D | M] -- C:\Users\MM\AppData\Roaming\Media Center Programs
[2013.07.29 18:37:01 | 000,000,000 | --SD | M] -- C:\Users\MM\AppData\Roaming\Microsoft
[2013.09.24 21:59:50 | 000,000,000 | ---D | M] -- C:\Users\MM\AppData\Roaming\Moto assistant
[2013.08.03 14:59:48 | 000,000,000 | ---D | M] -- C:\Users\MM\AppData\Roaming\MOVAVI
[2013.05.29 19:57:19 | 000,000,000 | ---D | M] -- C:\Users\MM\AppData\Roaming\Mozilla
[2013.06.14 22:22:35 | 000,000,000 | ---D | M] -- C:\Users\MM\AppData\Roaming\Nero
[2013.06.09 09:54:41 | 000,000,000 | ---D | M] -- C:\Users\MM\AppData\Roaming\Nokia
[2013.05.28 20:23:32 | 000,000,000 | ---D | M] -- C:\Users\MM\AppData\Roaming\OpenCandy
[2013.06.25 18:26:05 | 000,000,000 | ---D | M] -- C:\Users\MM\AppData\Roaming\PC Suite
[2013.06.16 17:09:45 | 000,000,000 | ---D | M] -- C:\Users\MM\AppData\Roaming\PDF Software
[2013.08.11 10:10:27 | 000,000,000 | ---D | M] -- C:\Users\MM\AppData\Roaming\SAMSUNG Drivers Update Utility
[2013.05.30 18:38:03 | 000,000,000 | ---D | M] -- C:\Users\MM\AppData\Roaming\ScanSoft
[2013.06.30 00:10:10 | 000,000,000 | ---D | M] -- C:\Users\MM\AppData\Roaming\SimilarSites
[2013.07.14 08:27:58 | 000,000,000 | ---D | M] -- C:\Users\MM\AppData\Roaming\Skype
[2013.05.28 22:55:48 | 000,000,000 | ---D | M] -- C:\Users\MM\AppData\Roaming\Thunderbird
[2013.05.28 21:49:19 | 000,000,000 | ---D | M] -- C:\Users\MM\AppData\Roaming\TreeCardGames
[2013.08.03 22:04:18 | 000,000,000 | ---D | M] -- C:\Users\MM\AppData\Roaming\Ulead Systems
[2013.10.11 20:00:52 | 000,000,000 | ---D | M] -- C:\Users\MM\AppData\Roaming\Vso
[2013.05.29 00:02:04 | 000,000,000 | ---D | M] -- C:\Users\MM\AppData\Roaming\Winamp
[2013.05.28 20:30:02 | 000,000,000 | ---D | M] -- C:\Users\MM\AppData\Roaming\WinRAR
[2013.06.15 11:45:02 | 000,000,000 | ---D | M] -- C:\Users\MM\AppData\Roaming\XnView
[2013.08.03 14:47:24 | 000,000,000 | ---D | M] -- C:\Users\MM\AppData\Roaming\YCanPDF
< %APPDATA%\*.exe /s >
[2013.06.02 11:54:33 | 000,087,608 | ---- | M] () -- C:\Users\MM\AppData\Roaming\inst.exe
[2013.07.25 16:57:04 | 000,102,968 | ---- | M] () -- C:\Users\MM\AppData\Roaming\Dealply\UpdateProc\UpdateTask.exe
[2013.05.25 02:47:30 | 027,776,968 | ---- | M] (Dropbox, Inc.) -- C:\Users\MM\AppData\Roaming\Dropbox\bin\Dropbox.exe
[2013.05.25 02:48:34 | 000,229,288 | ---- | M] (Dropbox, Inc.) -- C:\Users\MM\AppData\Roaming\Dropbox\bin\DropboxUninstaller.exe
[2012.06.14 04:09:00 | 000,874,440 | ---- | M] (Dropbox, Inc.) -- C:\Users\MM\AppData\Roaming\Dropbox\bin\DropboxUpdateHelper.exe
[2013.06.29 15:15:46 | 006,366,945 | ---- | M] ( ) -- C:\Users\MM\AppData\Roaming\GeoGet\ggupdate\geogetsetup-2.7.8.715.exe
[2013.03.03 16:53:48 | 000,724,480 | ---- | M] () -- C:\Users\MM\AppData\Roaming\GeoGet\script\geojarry\geojarryw.exe
[2013.02.02 18:41:10 | 008,060,690 | ---- | M] () -- C:\Users\MM\AppData\Roaming\GeoGet\script\GgStat\GgStat.exe
[2013.10.09 23:04:49 | 027,598,184 | ---- | M] (ICQ) -- C:\Users\MM\AppData\Roaming\ICQM\icq.exe
[2013.10.09 23:04:54 | 033,654,608 | ---- | M] (ICQ) -- C:\Users\MM\AppData\Roaming\ICQM\icqsetup.exe
[2013.10.09 23:04:54 | 004,739,616 | ---- | M] () -- C:\Users\MM\AppData\Roaming\ICQM\ICQ\dll\mailrusputnik.exe
[2013.01.29 04:33:10 | 032,682,184 | ---- | M] (SweetLabs,Inc.) -- C:\Users\MM\AppData\Roaming\OpenCandy\D86A6B65D0604EE18F21F85F68FC8F7B\version51030bc4470a0.exe
< %systemroot%\*. /mp /s >
< %systemroot%\system32\*.dll /lockedfiles >
< %systemroot%\Tasks\*.job /lockedfiles >
< %systemroot%\system32\drivers\*.sys /lockedfiles >
< %systemroot%\System32\config\*.sav >
< %systemroot%\system32\*.dll /lockedfiles >
< %systemroot%\system32\drivers\*.sys /3 >
< %systemroot%\system32\*.* /3 >
[2013.10.26 09:04:59 | 000,026,576 | -H-- | M] () -- C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2013.10.26 09:04:59 | 000,026,576 | -H-- | M] () -- C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
< %SYSTEMDRIVE%\*.exe >
< >
< HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s >
"ICQ" = C:\Users\MM\AppData\Roaming\ICQM\icq.exe -CU -- [2013.10.09 23:04:49 | 027,598,184 | ---- | M] (ICQ)
"Pokki" = C:\Windows\system32\rundll32.exe "%LOCALAPPDATA%\Pokki\Engine\LaunchDeskband.dll",RunLaunchDeskband
"IndxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}" = "C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe" ASO-616B5711-6DAE-4795-A05F-39A1E5104020 -- [2008.06.24 16:06:06 | 001,840,424 | ---- | M] (Nero AG)
"" =
"NokiaSuite.exe" = C:\Program Files\Nokia\Nokia Suite\NokiaSuite.exe -tray -- [2013.04.19 01:45:32 | 001,090,912 | ---- | M] (Nokia)
"Google Update" = "C:\Users\MM\AppData\Local\Google\Update\GoogleUpdate.exe" /c -- [2013.07.04 22:17:21 | 000,116,648 | ---- | M] (Google Inc.)
< reg query "HKLM\Software\Microsoft\Windows NT\CurrentVersion\winlogon" /v GinaDLL /c >
< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv" /v ImagePath /c >
HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\SERVICES\WUAUSERV
IMAGEPATH REG_EXPAND_SZ %systemroot%\system32\svchost.exe -k netsvcs
< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS" /v ImagePath /c >
HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\SERVICES\BITS
IMAGEPATH REG_EXPAND_SZ %SystemRoot%\System32\svchost.exe -k netsvcs
< >
< type c:\boot.ini >> test.txt /c >
< %SystemDrive%\PhysicalMBR.bin /md5 >
[2013.10.26 20:52:13 | 000,000,512 | ---- | M] () MD5=9A260C2A1D91F520E1A93BD89D194C89 -- C:\PhysicalMBR.bin
< >
< *crack* /s >
[1999.03.28 13:04:50 | 000,092,827 | ---- | M] () -- \Program Files\Corel\Graphics9\Custom\Bumpmap\Cracks.cpt
[1997.02.27 11:28:24 | 000,016,068 | ---- | M] () -- \Program Files\Corel\Graphics9\Custom\Canvas\cracks2c.pcx
[1999.03.28 12:29:12 | 000,010,560 | ---- | M] () -- \Program Files\Corel\Graphics9\Custom\Tiles\CRACKS2M.CPT
[2010.02.21 02:22:00 | 000,000,386 | ---- | M] () -- \Program Files\GeoGet\distdata\offline\sysimg\WM\Cracker_Barrel_Restaurants.gif
[2010.02.21 02:22:00 | 000,000,386 | ---- | M] () -- \Users\MM\AppData\Roaming\GeoGet\offline\sysimg\WM\Cracker_Barrel_Restaurants.gif
[2013.05.31 05:55:58 | 000,000,236 | ---- | M] () -- \Users\MM\Favorites\Web, SW, telefony\Aircrack-ng.url
[2013.05.31 05:56:01 | 000,000,209 | ---- | M] () -- \Users\MM\Favorites\Web, SW, telefony\Cracks, serials\AllCracks.net.url
[2013.05.31 05:56:01 | 000,000,308 | ---- | M] () -- \Users\MM\Favorites\Web, SW, telefony\Cracks, serials\Best Crack , Serial and Warez sites.url
[2013.05.31 05:56:01 | 000,000,208 | ---- | M] () -- \Users\MM\Favorites\Web, SW, telefony\Cracks, serials\boilsoft serial and crack - The latest cracks and serials updated daily to unlock your software.url
[2013.05.31 05:56:01 | 000,000,213 | ---- | M] () -- \Users\MM\Favorites\Web, SW, telefony\Cracks, serials\CCrack.url
[2013.05.31 05:56:01 | 000,000,219 | ---- | M] () -- \Users\MM\Favorites\Web, SW, telefony\Cracks, serials\Crack Top List.url
[2013.05.31 05:56:01 | 000,000,200 | ---- | M] () -- \Users\MM\Favorites\Web, SW, telefony\Cracks, serials\crack-cd.url
[2013.05.31 05:56:01 | 000,000,387 | ---- | M] () -- \Users\MM\Favorites\Web, SW, telefony\Cracks, serials\crack-REFERAT.COM.url
[2013.05.31 05:56:01 | 000,000,325 | ---- | M] () -- \Users\MM\Favorites\Web, SW, telefony\Cracks, serials\CRACK.MS - All CRACKs and SERIALs on ONE Site.url
[2013.05.31 05:56:01 | 000,000,231 | ---- | M] () -- \Users\MM\Favorites\Web, SW, telefony\Cracks, serials\CRACKS FOR YOU.url
[2013.05.31 05:56:01 | 000,000,209 | ---- | M] () -- \Users\MM\Favorites\Web, SW, telefony\Cracks, serials\Cracks-serials-rox Downloads & torrents.url
[2013.05.31 05:56:01 | 000,000,255 | ---- | M] () -- \Users\MM\Favorites\Web, SW, telefony\Cracks, serials\Cracks.AllSeek.iNFO.url
[2013.05.31 05:56:01 | 000,001,584 | ---- | M] () -- \Users\MM\Favorites\Web, SW, telefony\Cracks, serials\Cracks.url
[2013.05.31 05:56:01 | 000,000,252 | ---- | M] () -- \Users\MM\Favorites\Web, SW, telefony\Cracks, serials\CrackServer Search Results for 2.6.240.url
[2013.05.31 05:56:01 | 000,000,249 | ---- | M] () -- \Users\MM\Favorites\Web, SW, telefony\Cracks, serials\CrackzPlanet.com - Serials - G2.url
[2013.05.31 05:56:01 | 000,000,122 | ---- | M] () -- \Users\MM\Favorites\Web, SW, telefony\Cracks, serials\DoCrack.com - Top Crack - Serials - KeyGen.url
[2013.05.31 05:56:01 | 000,000,262 | ---- | M] () -- \Users\MM\Favorites\Web, SW, telefony\Cracks, serials\Download Crack Serial - download cracks serials NO PORN POPUPs! NO STUPID TROJANs and EXPLOITs!.url
[2013.05.31 05:56:01 | 000,000,241 | ---- | M] () -- \Users\MM\Favorites\Web, SW, telefony\Cracks, serials\find abbyy pdf serial serials cracks hacking warez at www.thedarktoolbox.com.url
[2013.05.31 05:56:01 | 000,000,185 | ---- | M] () -- \Users\MM\Favorites\Web, SW, telefony\Cracks, serials\Free serial crack keygen downloads - CrackSerial.Net.url
[2013.05.31 05:56:01 | 000,000,371 | ---- | M] () -- \Users\MM\Favorites\Web, SW, telefony\Cracks, serials\FREE UNLIMITED CRACKS, SERIAL NUMBERS, KEYGENS, PATCHES, GAMES, SOFTWARE CRACK, CRACKZ.url
[2013.05.31 05:56:01 | 000,000,234 | ---- | M] () -- \Users\MM\Favorites\Web, SW, telefony\Cracks, serials\http--crackspider.net-search.shtmlq=acdsee+9+photo&x=33&y=22.url
[2013.05.31 05:56:01 | 000,000,210 | ---- | M] () -- \Users\MM\Favorites\Web, SW, telefony\Cracks, serials\http--crackspider.net-search.shtmlq=homesite%205.url
[2013.05.31 05:56:01 | 000,000,261 | ---- | M] () -- \Users\MM\Favorites\Web, SW, telefony\Cracks, serials\InfiniteWarez.com - Full Version Downloads! Warez, Torrents, Cracks, Serials, KeyGens, XXX.url
[2013.05.31 05:56:01 | 000,000,304 | ---- | M] () -- \Users\MM\Favorites\Web, SW, telefony\Cracks, serials\Ulead Videostudio 11.5 Plus Free Download Crack Torrent Serial Keygen Warez Full Version.url
[2013.05.31 05:56:01 | 000,000,229 | ---- | M] () -- \Users\MM\Favorites\Web, SW, telefony\Cracks, serials\Warez-Vortex.net - Warez Downloads, Apps, Games, Movies, XXX, Cracks, Serials, Keygens And More!.url
[2013.05.31 05:56:01 | 000,000,202 | ---- | M] () -- \Users\MM\Favorites\Web, SW, telefony\Cracks, serials\ZCRACK~1.URL
[2013.05.31 05:56:01 | 000,000,300 | ---- | M] () -- \Users\MM\Favorites\Web, SW, telefony\Downloady\dvdfab platinum Download Crack Serial.url
[2013.05.31 05:56:01 | 000,000,346 | ---- | M] () -- \Users\MM\Favorites\Web, SW, telefony\Torrent\Ulead VideoStudio Plus 11 - Crack Torrent Download.url
< *keygen* /s >
[2013.05.31 05:56:01 | 000,000,122 | ---- | M] () -- \Users\MM\Favorites\Web, SW, telefony\Cracks, serials\DoCrack.com - Top Crack - Serials - KeyGen.url
[2013.05.31 05:56:01 | 000,000,185 | ---- | M] () -- \Users\MM\Favorites\Web, SW, telefony\Cracks, serials\Free serial crack keygen downloads - CrackSerial.Net.url
[2013.05.31 05:56:01 | 000,000,371 | ---- | M] () -- \Users\MM\Favorites\Web, SW, telefony\Cracks, serials\FREE UNLIMITED CRACKS, SERIAL NUMBERS, KEYGENS, PATCHES, GAMES, SOFTWARE CRACK, CRACKZ.url
[2013.05.31 05:56:01 | 000,000,261 | ---- | M] () -- \Users\MM\Favorites\Web, SW, telefony\Cracks, serials\InfiniteWarez.com - Full Version Downloads! Warez, Torrents, Cracks, Serials, KeyGens, XXX.url
[2013.05.31 05:56:01 | 000,000,304 | ---- | M] () -- \Users\MM\Favorites\Web, SW, telefony\Cracks, serials\Ulead Videostudio 11.5 Plus Free Download Crack Torrent Serial Keygen Warez Full Version.url
[2013.05.31 05:56:01 | 000,000,229 | ---- | M] () -- \Users\MM\Favorites\Web, SW, telefony\Cracks, serials\Warez-Vortex.net - Warez Downloads, Apps, Games, Movies, XXX, Cracks, Serials, Keygens And More!.url
< *AntiWPA* /s >
< *loader* /s >
[2009.02.04 04:33:52 | 000,028,008 | ---- | M] () -- \Autodesk\AutoCAD_2010_Czech_SLD_WIN_32bit\x86\acad\Program Files\Root\AecLoader.arx
[2013.05.31 04:48:58 | 000,044,032 | R--- | M] () -- \Program Files\Calibre2\DLLs\PyISAPI_loader.dll
[2012.08.27 21:33:18 | 000,008,827 | ---- | M] () -- \Program Files\Common Files\Apple\Apple Application Support\WebKit.resources\inspector\HeapSnapshotLoader.js
[2013.09.15 14:34:08 | 000,059,720 | ---- | M] () -- \Program Files\Common Files\Apple\Internet Services\ApplePhotoStreamsDownloader.exe
[2013.09.15 14:34:08 | 001,108,296 | ---- | M] () -- \Program Files\Common Files\Apple\Internet Services\ApplePhotoStreamsDownloader_main.dll
[2013.09.14 01:50:46 | 000,008,827 | ---- | M] () -- \Program Files\Common Files\Apple\Internet Services\WebKit.resources\inspector\HeapSnapshotLoader.js
[2008.06.24 13:45:14 | 000,111,912 | ---- | M] () -- \Program Files\Common Files\Nero\Shared\NSCLoader.dll
[2012.09.25 04:39:16 | 000,112,128 | ---- | M] () -- \Program Files\Common Files\Nokia\Tss\ProductApiLoader\ta_productapiloader.dll
[2009.01.04 19:53:08 | 000,002,945 | ---- | M] () -- \Program Files\Corel\Corel VideoStudio Pro X3\accLoader.ini
[2010.05.17 17:04:16 | 000,111,776 | ---- | M] () -- \Program Files\Corel\Corel VideoStudio Pro X3\VimeoUploader.dll
[2010.05.17 17:04:26 | 000,110,752 | ---- | M] () -- \Program Files\Corel\Corel VideoStudio Pro X3\de-DE\MediaDownloader.resources.dll
[2010.05.17 17:04:42 | 000,013,472 | ---- | M] () -- \Program Files\Corel\Corel VideoStudio Pro X3\de-DE\MediaDownloader_Lite.resources.dll
[2010.05.17 17:05:04 | 000,110,752 | ---- | M] () -- \Program Files\Corel\Corel VideoStudio Pro X3\en-US\MediaDownloader.resources.dll
[2010.05.17 17:05:14 | 000,013,472 | ---- | M] () -- \Program Files\Corel\Corel VideoStudio Pro X3\en-US\MediaDownloader_Lite.resources.dll
[2010.05.17 17:04:16 | 000,110,752 | ---- | M] () -- \Program Files\Corel\Corel VideoStudio Pro X3\es-ES\MediaDownloader.resources.dll
[2010.05.17 17:04:26 | 000,013,472 | ---- | M] () -- \Program Files\Corel\Corel VideoStudio Pro X3\es-ES\MediaDownloader_Lite.resources.dll
[2010.05.17 17:04:26 | 000,110,752 | ---- | M] () -- \Program Files\Corel\Corel VideoStudio Pro X3\fr-FR\MediaDownloader.resources.dll
[2010.05.17 17:04:34 | 000,013,472 | ---- | M] () -- \Program Files\Corel\Corel VideoStudio Pro X3\fr-FR\MediaDownloader_Lite.resources.dll
[2010.05.17 17:03:54 | 000,110,752 | ---- | M] () -- \Program Files\Corel\Corel VideoStudio Pro X3\it-IT\MediaDownloader.resources.dll
[2010.05.17 17:04:06 | 000,013,472 | ---- | M] () -- \Program Files\Corel\Corel VideoStudio Pro X3\it-IT\MediaDownloader_Lite.resources.dll
[2010.05.17 17:03:42 | 000,110,752 | ---- | M] () -- \Program Files\Corel\Corel VideoStudio Pro X3\nl-NL\MediaDownloader.resources.dll
[2010.05.17 17:03:46 | 000,013,472 | ---- | M] () -- \Program Files\Corel\Corel VideoStudio Pro X3\nl-NL\MediaDownloader_Lite.resources.dll
[2010.05.17 17:03:34 | 000,110,752 | ---- | M] () -- \Program Files\Corel\Corel VideoStudio Pro X3\pl-PL\MediaDownloader.resources.dll
[2010.05.17 17:03:44 | 000,013,472 | ---- | M] () -- \Program Files\Corel\Corel VideoStudio Pro X3\pl-PL\MediaDownloader_Lite.resources.dll
[2010.05.17 17:03:22 | 000,110,752 | ---- | M] () -- \Program Files\Corel\Corel VideoStudio Pro X3\ru-RU\MediaDownloader.resources.dll
[2010.05.17 17:03:32 | 000,013,472 | ---- | M] () -- \Program Files\Corel\Corel VideoStudio Pro X3\ru-RU\MediaDownloader_Lite.resources.dll
[2010.05.17 17:03:14 | 000,110,752 | ---- | M] () -- \Program Files\Corel\Corel VideoStudio Pro X3\zh-CN\MediaDownloader.resources.dll
[2010.05.17 17:03:18 | 000,013,472 | ---- | M] () -- \Program Files\Corel\Corel VideoStudio Pro X3\zh-CN\MediaDownloader_Lite.resources.dll
[2010.05.17 17:03:14 | 000,110,752 | ---- | M] () -- \Program Files\Corel\Corel VideoStudio Pro X3\zh-HK\MediaDownloader.resources.dll
[2010.05.17 17:03:24 | 000,013,472 | ---- | M] () -- \Program Files\Corel\Corel VideoStudio Pro X3\zh-HK\MediaDownloader_Lite.resources.dll
[2010.05.17 17:03:14 | 000,110,752 | ---- | M] () -- \Program Files\Corel\Corel VideoStudio Pro X3\zh-TW\MediaDownloader.resources.dll
[2010.05.17 17:03:22 | 000,013,472 | ---- | M] () -- \Program Files\Corel\Corel VideoStudio Pro X3\zh-TW\MediaDownloader_Lite.resources.dll
[2009.12.26 14:08:34 | 000,331,976 | ---- | M] () -- \Program Files\Corel\MLE\VimeoUploader.dll
[2012.02.02 11:16:04 | 000,003,951 | ---- | M] () -- \Program Files\Genie9\Genie Timeline\Html\_GSImages_\ajax-loader.gif
[2012.02.02 11:16:04 | 000,002,680 | ---- | M] () -- \Program Files\Genie9\Genie Timeline\Html\_GSImages_\Checking_Internet_Loader.gif
[2012.02.02 11:16:04 | 000,011,439 | ---- | M] () -- \Program Files\Genie9\Genie Timeline\Html\_GSImages_\Cloud_Loader_Activate_160.gif
[2012.03.04 17:16:16 | 000,004,847 | ---- | M] () -- \Program Files\Genie9\Genie Timeline\Html\_GSImages_\MiniLoaderBlue.gif
[2012.02.02 11:16:04 | 000,023,208 | ---- | M] () -- \Program Files\Genie9\Genie Timeline\Html\_GSImages_\Play_Pause_Loader.gif
[2012.02.02 11:16:04 | 000,023,287 | ---- | M] () -- \Program Files\Genie9\Genie Timeline\Html\_GSImages_\Play_Pause_Loader_old.gif
[2012.02.02 11:16:04 | 000,005,633 | ---- | M] () -- \Program Files\Genie9\Genie Timeline\Html\_GSImages_\preloader3.gif
[2013.05.28 20:14:28 | 000,005,795 | ---- | M] () -- \Program Files\ICQ7M\imApp\theme\IMAGES\XtraPreloader\loader.jpg
[2013.05.28 20:14:29 | 000,004,180 | ---- | M] () -- \Program Files\ICQ7M\imApp\theme\IMAGES\XtraPreloader\zlango-preloader.png
[2013.05.28 20:14:28 | 000,005,520 | ---- | M] () -- \Program Files\ICQ7M\imApp\theme\MUICoreLib\xtraLoader.swf
[2012.04.20 11:29:39 | 000,000,402 | ---- | M] () -- \Program Files\ICQ7M\Xtraz\icq\content\profile_lightboxs\preloader.html
[2013.03.08 18:00:00 | 000,856,064 | ---- | M] () -- \Program Files\KMPlayer\imloader.dll
[2013.03.25 10:13:18 | 000,296,296 | ---- | M] () -- \Program Files\Movavi Video Suite 11 SE\PSPUploader.exe
[2013.03.25 10:13:24 | 000,296,296 | ---- | M] () -- \Program Files\Movavi Video Suite 11 SE\PSPUploaderru.exe
[2012.06.26 12:36:20 | 000,002,560 | ---- | M] () -- \Program Files\Nokia\Nokia PC Suite 7\Lang\MapLoader_cze.NLR
[2008.02.04 12:32:50 | 000,000,232 | ---- | M] () -- \ProgramData\Nero\Nero8\OnlineServices\NOSWebConfig\MySpace\uploadError.xml
[2013.04.25 17:31:28 | 000,072,638 | ---- | M] () -- \ProgramData\Skype\Apps\login\images\loader.gif
[2013.04.25 17:31:28 | 000,003,032 | ---- | M] () -- \ProgramData\Skype\Apps\login\images\loader.png
[2013.04.25 17:31:28 | 000,009,772 | ---- | M] () -- \ProgramData\Skype\Apps\login\images\retina\loader@2x.png
[2008.02.04 12:32:50 | 000,000,232 | ---- | M] () -- \Users\All Users\Nero\Nero8\OnlineServices\NOSWebConfig\MySpace\uploadError.xml
[2013.04.25 17:31:28 | 000,072,638 | ---- | M] () -- \Users\All Users\Skype\Apps\login\images\loader.gif
[2013.04.25 17:31:28 | 000,003,032 | ---- | M] () -- \Users\All Users\Skype\Apps\login\images\loader.png
[2013.04.25 17:31:28 | 000,009,772 | ---- | M] () -- \Users\All Users\Skype\Apps\login\images\retina\loader@2x.png
[2013.10.06 13:01:23 | 000,004,504 | ---- | M] () -- \Users\MM\AppData\Local\Google\Chrome\User Data\Default\Extensions\edflbdjfhpiboilnedfoiepbmcllkedb\10.20.1.508_0\js\chromeBackstageLoader.js
[2013.10.06 13:01:23 | 000,003,100 | ---- | M] () -- \Users\MM\AppData\Local\Google\Chrome\User Data\Default\Extensions\edflbdjfhpiboilnedfoiepbmcllkedb\10.20.1.508_0\js\pluginLoader.js
[2013.10.06 13:01:21 | 000,000,847 | ---- | M] () -- \Users\MM\AppData\Local\Google\Chrome\User Data\Default\Extensions\edflbdjfhpiboilnedfoiepbmcllkedb\10.20.1.508_0\tb\al\ac\img\ajax-loader.gif
[2013.10.06 13:01:21 | 000,001,135 | ---- | M] () -- \Users\MM\AppData\Local\Google\Chrome\User Data\Default\Extensions\edflbdjfhpiboilnedfoiepbmcllkedb\10.20.1.508_0\tb\al\ac\img\loader-icon.png
[2013.10.06 13:01:20 | 000,003,208 | ---- | M] () -- \Users\MM\AppData\Local\Google\Chrome\User Data\Default\Extensions\edflbdjfhpiboilnedfoiepbmcllkedb\10.20.1.508_0\tb\al\ui\gf\img\loader.gif
[2013.10.26 12:18:10 | 000,002,545 | ---- | M] () -- \Users\MM\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4OWO22ZA\loader[1].gif
[2013.10.25 23:44:20 | 000,001,785 | ---- | M] () -- \Users\MM\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\IE7F6GSL\ajax-loader[1].gif
[2013.10.26 12:15:08 | 000,003,061 | ---- | M] () -- \Users\MM\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\V5KDI5KG\rmsloaderdelayeddiv[1].js
[2013.01.25 23:52:18 | 000,004,613 | ---- | M] () -- \Users\MM\AppData\Local\Pokki\Engine\frames\frame\loader.gif
[2013.09.13 17:40:02 | 000,004,613 | ---- | M] () -- \Users\MM\AppData\Local\Pokki\Pokkies\f22abfeae27a67446927d078890381efc546d3e1\801b6d4b93aa86beaaa8f479dd09a5434c4cd08a\img\store\loader.gif
[2013.05.30 22:40:01 | 000,037,175 | ---- | M] () -- \Users\MM\AppData\Roaming\Apple Computer\Logs\CrashReporter\MobileDevice\molnar - iPad\iDownloaderPro_2013-05-25-032006_molnar-iPad.crash
[2013.09.05 16:40:46 | 000,040,938 | ---- | M] () -- \Users\MM\AppData\Roaming\Apple Computer\Logs\CrashReporter\MobileDevice\molnar - iPad\iDownloaderPro_2013-09-04-223709_molnar-iPad.crash
[2013.05.28 18:09:42 | 000,197,611 | ---- | M] () -- \Users\MM\AppData\Roaming\Mozilla\Firefox\Profiles\cdxqgtr4.default\extensions\ftdownloader4@ftdownloader.com.xpi
[2013.10.13 14:57:40 | 000,000,847 | ---- | M] () -- \Users\MM\AppData\Roaming\Mozilla\Firefox\Profiles\cdxqgtr4.default\extensions\{d4f1c433-f9c3-49f2-8645-37dbeca19e90}\chrome\CT3078318\content\tb\al\ac\img\ajax-loader.gif
[2013.10.13 14:57:40 | 000,001,135 | ---- | M] () -- \Users\MM\AppData\Roaming\Mozilla\Firefox\Profiles\cdxqgtr4.default\extensions\{d4f1c433-f9c3-49f2-8645-37dbeca19e90}\chrome\CT3078318\content\tb\al\ac\img\loader-icon.png
[2013.10.13 14:57:40 | 000,003,208 | ---- | M] () -- \Users\MM\AppData\Roaming\Mozilla\Firefox\Profiles\cdxqgtr4.default\extensions\{d4f1c433-f9c3-49f2-8645-37dbeca19e90}\chrome\CT3078318\content\tb\al\ui\gf\img\loader.gif
[2013.06.25 22:32:48 | 000,001,849 | ---- | M] () -- \Users\MM\AppData\Roaming\Mozilla\Firefox\Profiles\cdxqgtr4.default\extensions\trash\{d4f1c433-f9c3-49f2-8645-37dbeca19e90}\chrome\CT3078318\content\tb\al\wa\TWITTER\resources\ajax-loader.gif
[2004.09.28 09:11:04 | 000,002,413 | ---- | M] () -- \Users\MM\Documents\PC vše\FTP připojení\WS_FTP Pro - Return Codes_soubory\HM_Loader_Sublevel.js
[2009.11.15 23:13:22 | 000,010,453 | ---- | M] () -- \Users\MM\Pictures\Cedule\album\res\images\loader.gif
[2009.11.15 23:13:22 | 000,010,294 | ---- | M] () -- \Users\MM\Pictures\Cedule\album\res\images\loaderWhite.gif
[2013.08.02 03:48:15 | 000,003,584 | -H-- | M] () -- \Windows\System32\api-ms-win-core-libraryloader-l1-1-0.dll
[2009.07.14 03:15:12 | 000,038,400 | ---- | M] () -- \Windows\System32\dmloader.dll
[2013.01.30 14:48:10 | 000,012,532 | ---- | M] () -- \Windows\System32\Adobe\Shockwave 12\shockwave_Projector_Loader.dcr
[2013.09.02 21:59:39 | 000,004,182 | ---- | M] () -- \Windows\System32\Tasks\Torntv 2-codedownloader
[2009.07.14 06:54:01 | 000,003,532 | ---- | M] () -- \Windows\System32\Tasks\Microsoft\Windows\WindowsColorSystem\Calibration Loader
[2013.10.26 15:59:00 | 000,001,152 | ---- | M] () -- \Windows\Tasks\Torntv 2-codedownloader.job
[2010.11.21 03:16:08 | 000,002,883 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_3318c4cd5e5d0f86.manifest
[2010.11.21 03:16:08 | 000,034,896 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_3318c4cd5e5d0f86_winload.exe.mui_3bc5b827
[2010.11.21 03:16:08 | 000,030,272 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_3318c4cd5e5d0f86_winresume.exe.mui_ff8b5358
[2013.07.13 09:11:33 | 000,002,883 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_en-us_766f102945576be4.manifest
[2013.07.13 09:11:33 | 000,033,344 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_en-us_766f102945576be4_winload.exe.mui_3bc5b827
[2013.07.13 09:11:33 | 000,029,776 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_en-us_766f102945576be4_winresume.exe.mui_ff8b5358
[2010.11.20 23:31:02 | 000,004,225 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.17514_none_5d2e241dcae8f953.manifest
[2010.11.20 23:31:02 | 000,508,904 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.17514_none_5d2e241dcae8f953_winload.exe_75835076
[2010.11.20 23:31:02 | 000,442,720 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.17514_none_5d2e241dcae8f953_winresume.exe_85cd1215
[2009.07.14 04:17:38 | 000,002,894 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-s..ive-blackbox-loader_31bf3856ad364e35_6.1.7600.16385_none_6b097e5cb26f7a23.manifest
[2009.07.14 04:17:38 | 000,017,472 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-s..ive-blackbox-loader_31bf3856ad364e35_6.1.7600.16385_none_6b097e5cb26f7a23_spldr.sys_98bd87a0
[2010.11.21 03:15:24 | 000,002,883 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_3318c4cd5e5d0f86.manifest
[2009.07.13 18:29:12 | 000,002,883 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_en-us_766f102945576be4.manifest
[2010.11.20 23:23:54 | 000,004,225 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.17514_none_5d2e241dcae8f953.manifest
[2009.07.14 03:52:31 | 000,002,894 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-s..ive-blackbox-loader_31bf3856ad364e35_6.1.7600.16385_none_6b097e5cb26f7a23.manifest
[2009.07.14 03:15:12 | 000,038,400 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-audio-dmusic_31bf3856ad364e35_6.1.7600.16385_none_45ca7214f0f664cb\dmloader.dll
[2009.07.14 03:03:49 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.16385_none_0a884619dd2388ad\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.10.04 18:40:37 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.17965_none_0c845227da39a5ef\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.11.30 06:45:15 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.18015_none_0cba39e5da114d7c\api-ms-win-core-libraryloader-l1-1-0.dll
[2013.08.02 03:48:15 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.18229_none_0cb36eedda15c917\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.10.04 18:29:45 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.22125_none_0d3906c4f3370937\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.11.30 06:46:37 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.22177_none_0d04f7bcf35dc79a\api-ms-win-core-libraryloader-l1-1-0.dll
[2013.01.04 06:43:16 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.22209_none_0d52a9aaf32333d8\api-ms-win-core-libraryloader-l1-1-0.dll
[2013.08.02 07:53:29 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.22411_none_0d3fdb3af3327f5f\api-ms-win-core-libraryloader-l1-1-0.dll
< *minodlogin* /s >
< *tnod* /s >
[2005.01.15 08:42:32 | 000,001,165 | ---- | M] () -- \Users\MM\Documents\3_MILOŠ\Z Internetu\Sada vakuových dóz Valira s pumpou (Plastové dózy) - DoKuchyne_cz - exkluzivní doplňky do kuchyně, jidelny, pro barmany a vinaře_soubory\btnOdeslat.gif
< *AutoKMS* /s >
< *activator* /s >
< *serial* /s >
[2008.07.31 16:41:44 | 000,002,502 | ---- | M] () -- \Autodesk\AutoCAD_2010_Czech_SLD_WIN_32bit\x86\acad\Program Files\Root\Common Files Folder\Autodesk Shared\AdLM\R1\cs-CZ\Webdepot\RTSerialNumberHelp.html
[2008.07.31 16:41:44 | 000,002,502 | ---- | M] () -- \Autodesk\AutoCAD_2010_Czech_SLD_WIN_32bit\x86\acad\Program Files\Root\Common Files Folder\Autodesk Shared\AdLM\R1\de-DE\Webdepot\RTSerialNumberHelp.html
[2008.05.08 18:14:18 | 000,002,502 | ---- | M] () -- \Autodesk\AutoCAD_2010_Czech_SLD_WIN_32bit\x86\acad\Program Files\Root\Common Files Folder\Autodesk Shared\AdLM\R1\en-US\Webdepot\RTSerialNumberHelp.html
[2008.07.31 16:41:44 | 000,002,502 | ---- | M] () -- \Autodesk\AutoCAD_2010_Czech_SLD_WIN_32bit\x86\acad\Program Files\Root\Common Files Folder\Autodesk Shared\AdLM\R1\es-ES\Webdepot\RTSerialNumberHelp.html
[2008.08.06 10:22:56 | 000,002,502 | ---- | M] () -- \Autodesk\AutoCAD_2010_Czech_SLD_WIN_32bit\x86\acad\Program Files\Root\Common Files Folder\Autodesk Shared\AdLM\R1\fr-FR\Webdepot\RTSerialNumberHelp.html
[2008.07.31 16:41:44 | 000,002,502 | ---- | M] () -- \Autodesk\AutoCAD_2010_Czech_SLD_WIN_32bit\x86\acad\Program Files\Root\Common Files Folder\Autodesk Shared\AdLM\R1\hu-HU\Webdepot\RTSerialNumberHelp.html
[2008.07.31 16:41:44 | 000,002,502 | ---- | M] () -- \Autodesk\AutoCAD_2010_Czech_SLD_WIN_32bit\x86\acad\Program Files\Root\Common Files Folder\Autodesk Shared\AdLM\R1\it-IT\Webdepot\RTSerialNumberHelp.html
[2008.05.08 18:14:18 | 000,002,502 | ---- | M] () -- \Autodesk\AutoCAD_2010_Czech_SLD_WIN_32bit\x86\acad\Program Files\Root\Common Files Folder\Autodesk Shared\AdLM\R1\ja-JP\Webdepot\RTSerialNumberHelp.html
[2008.07.31 16:41:44 | 000,002,502 | ---- | M] () -- \Autodesk\AutoCAD_2010_Czech_SLD_WIN_32bit\x86\acad\Program Files\Root\Common Files Folder\Autodesk Shared\AdLM\R1\ko-KR\Webdepot\RTSerialNumberHelp.html
[2008.07.31 16:41:44 | 000,002,502 | ---- | M] () -- \Autodesk\AutoCAD_2010_Czech_SLD_WIN_32bit\x86\acad\Program Files\Root\Common Files Folder\Autodesk Shared\AdLM\R1\pl-PL\Webdepot\RTSerialNumberHelp.html
[2008.07.31 16:41:46 | 000,002,502 | ---- | M] () -- \Autodesk\AutoCAD_2010_Czech_SLD_WIN_32bit\x86\acad\Program Files\Root\Common Files Folder\Autodesk Shared\AdLM\R1\pt-BR\Webdepot\RTSerialNumberHelp.html
[2008.07.31 16:41:44 | 000,002,502 | ---- | M] () -- \Autodesk\AutoCAD_2010_Czech_SLD_WIN_32bit\x86\acad\Program Files\Root\Common Files Folder\Autodesk Shared\AdLM\R1\ru-RU\Webdepot\RTSerialNumberHelp.html
[2008.07.31 16:41:44 | 000,002,502 | ---- | M] () -- \Autodesk\AutoCAD_2010_Czech_SLD_WIN_32bit\x86\acad\Program Files\Root\Common Files Folder\Autodesk Shared\AdLM\R1\zh-CN\Webdepot\RTSerialNumberHelp.html
[2008.07.31 16:41:44 | 000,002,502 | ---- | M] () -- \Autodesk\AutoCAD_2010_Czech_SLD_WIN_32bit\x86\acad\Program Files\Root\Common Files Folder\Autodesk Shared\AdLM\R1\zh-TW\Webdepot\RTSerialNumberHelp.html
[2010.05.17 16:59:54 | 000,016,544 | ---- | M] () -- \Program Files\Corel\Corel VideoStudio Pro X3\AppFramework.XmlSerializers.dll
[2010.05.17 17:01:10 | 000,016,544 | ---- | M] () -- \Program Files\Corel\Corel VideoStudio Pro X3\Binary\AppFramework.XmlSerializers.dll
[2009.08.01 08:02:20 | 000,000,017 | ---- | M] () -- \Program Files\Corel\Corel VideoStudio Pro X3\Ulead.dat\AboutData\Loc\SerialStringFormat.txt
[1999.03.23 07:39:52 | 000,037,079 | ---- | M] () -- \Program Files\Corel\Graphics9\Register\serial2.gif
[2012.03.26 12:05:44 | 000,006,401 | ---- | M] () -- \Program Files\Genie9\Genie Timeline\Html\EnterSerial.html
[2012.10.05 12:53:23 | 000,970,752 | ---- | M] () -- \Program Files\Reference Assemblies\Microsoft\Framework\v3.0\System.Runtime.Serialization.dll
[2010.11.21 03:15:56 | 000,090,112 | ---- | M] () -- \Program Files\Reference Assemblies\Microsoft\Framework\v3.0\cs\System.RunTime.Serialization.Resources.dll
[2013.09.08 14:51:44 | 000,000,680 | ---- | M] () -- \Users\MM\AppData\Roaming\Microsoft\Office\Naposledy otevřené\Photo Retoucher_serial.LNK
[2013.10.05 18:12:54 | 000,000,683 | ---- | M] () -- \Users\MM\AppData\Roaming\Microsoft\Office\Naposledy otevřené\WebSite X5_serial.LNK
[2013.05.31 05:56:01 | 000,000,308 | ---- | M] () -- \Users\MM\Favorites\Web, SW, telefony\Cracks, serials\Best Crack , Serial and Warez sites.url
[2013.05.31 05:56:01 | 000,000,208 | ---- | M] () -- \Users\MM\Favorites\Web, SW, telefony\Cracks, serials\boilsoft serial and crack - The latest cracks and serials updated daily to unlock your software.url
[2013.05.31 05:56:01 | 000,000,325 | ---- | M] () -- \Users\MM\Favorites\Web, SW, telefony\Cracks, serials\CRACK.MS - All CRACKs and SERIALs on ONE Site.url
[2013.05.31 05:56:01 | 000,000,209 | ---- | M] () -- \Users\MM\Favorites\Web, SW, telefony\Cracks, serials\Cracks-serials-rox Downloads & torrents.url
[2013.05.31 05:56:01 | 000,000,249 | ---- | M] () -- \Users\MM\Favorites\Web, SW, telefony\Cracks, serials\CrackzPlanet.com - Serials - G2.url
[2013.05.31 05:56:01 | 000,000,122 | ---- | M] () -- \Users\MM\Favorites\Web, SW, telefony\Cracks, serials\DoCrack.com - Top Crack - Serials - KeyGen.url
[2013.05.31 05:56:01 | 000,000,262 | ---- | M] () -- \Users\MM\Favorites\Web, SW, telefony\Cracks, serials\Download Crack Serial - download cracks serials NO PORN POPUPs! NO STUPID TROJANs and EXPLOITs!.url
[2013.05.31 05:56:01 | 000,000,241 | ---- | M] () -- \Users\MM\Favorites\Web, SW, telefony\Cracks, serials\find abbyy pdf serial serials cracks hacking warez at www.thedarktoolbox.com.url
[2013.05.31 05:56:01 | 000,000,185 | ---- | M] () -- \Users\MM\Favorites\Web, SW, telefony\Cracks, serials\Free serial crack keygen downloads - CrackSerial.Net.url
[2013.05.31 05:56:01 | 000,000,371 | ---- | M] () -- \Users\MM\Favorites\Web, SW, telefony\Cracks, serials\FREE UNLIMITED CRACKS, SERIAL NUMBERS, KEYGENS, PATCHES, GAMES, SOFTWARE CRACK, CRACKZ.url
[2013.05.31 05:56:01 | 000,000,164 | ---- | M] () -- \Users\MM\Favorites\Web, SW, telefony\Cracks, serials\http--www.serialdevil.com-.url
[2013.05.31 05:56:01 | 000,000,261 | ---- | M] () -- \Users\MM\Favorites\Web, SW, telefony\Cracks, serials\InfiniteWarez.com - Full Version Downloads! Warez, Torrents, Cracks, Serials, KeyGens, XXX.url
[2013.05.31 05:56:01 | 000,000,220 | ---- | M] () -- \Users\MM\Favorites\Web, SW, telefony\Cracks, serials\Myserials.com.url
[2013.05.31 05:56:01 | 000,000,193 | ---- | M] () -- \Users\MM\Favorites\Web, SW, telefony\Cracks, serials\SerialCodes.net.url
[2013.05.31 05:56:01 | 000,000,160 | ---- | M] () -- \Users\MM\Favorites\Web, SW, telefony\Cracks, serials\Serialkey.NET - The Leading Serial Site. Live Databese! serials serialkey serial numbers codes keys.url
[2013.05.31 05:56:01 | 000,000,258 | ---- | M] () -- \Users\MM\Favorites\Web, SW, telefony\Cracks, serials\Serialportal!.url
[2013.05.31 05:56:01 | 000,000,172 | ---- | M] () -- \Users\MM\Favorites\Web, SW, telefony\Cracks, serials\Serials & keys - unlocks the world.url
[2013.05.31 05:56:01 | 000,000,183 | ---- | M] () -- \Users\MM\Favorites\Web, SW, telefony\Cracks, serials\Serials & keys.url
[2013.05.31 05:56:01 | 000,000,229 | ---- | M] () -- \Users\MM\Favorites\Web, SW, telefony\Cracks, serials\Smart Serials The Ultimate Resource of Free Serials.url
[2013.05.31 05:56:01 | 000,000,304 | ---- | M] () -- \Users\MM\Favorites\Web, SW, telefony\Cracks, serials\Ulead Videostudio 11.5 Plus Free Download Crack Torrent Serial Keygen Warez Full Version.url
[2013.05.31 05:56:01 | 000,000,263 | ---- | M] () -- \Users\MM\Favorites\Web, SW, telefony\Cracks, serials\VSO ConvertXtoDvd Software-Serials.com Enter The Vortex.url
[2013.05.31 05:56:01 | 000,000,229 | ---- | M] () -- \Users\MM\Favorites\Web, SW, telefony\Cracks, serials\Warez-Vortex.net - Warez Downloads, Apps, Games, Movies, XXX, Cracks, Serials, Keygens And More!.url
[2013.05.31 05:56:01 | 000,000,300 | ---- | M] () -- \Users\MM\Favorites\Web, SW, telefony\Downloady\dvdfab platinum Download Crack Serial.url
[2010.11.21 03:15:52 | 000,011,776 | ---- | M] () -- \Windows\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap.resources\2.0.0.0_cs_b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2009.06.10 23:23:19 | 000,131,072 | ---- | M] () -- \Windows\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap\2.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.dll
[2010.11.13 03:55:26 | 000,090,112 | ---- | M] () -- \Windows\assembly\GAC_MSIL\system.runtime.serialization.resources\3.0.0.0_cs_b77a5c561934e089\System.RunTime.Serialization.Resources.dll
[2012.10.05 12:53:23 | 000,970,752 | ---- | M] () -- \Windows\assembly\GAC_MSIL\System.Runtime.Serialization\3.0.0.0__b77a5c561934e089\System.Runtime.Serialization.dll
[2013.10.06 12:48:50 | 000,310,784 | ---- | M] () -- \Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Seri#\d462f459c4353e2c628e6def1430aed7\System.Runtime.Serialization.Formatters.Soap.ni.dll
[2013.10.06 12:49:13 | 002,347,008 | ---- | M] () -- \Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Seri#\e043ad64456256a8ee5b934e227d9782\System.Runtime.Serialization.ni.dll
[2013.10.11 10:44:04 | 002,659,328 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_32\System.Runtime.Seri#\10519c5a16fab95707f40b55941647b5\System.Runtime.Serialization.ni.dll
[2013.10.06 12:53:37 | 000,311,296 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_32\System.Runtime.Seri#\ad3522eafb95969623aeef7c389246bd\System.Runtime.Serialization.Formatters.Soap.ni.dll
[2013.10.06 13:08:27 | 000,009,216 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_32\System.Xml.Serializ#\cda839ea462e123d42cb6d0883cf0f4d\System.Xml.Serialization.ni.dll
[2010.03.18 13:16:28 | 001,026,936 | R--- | M] () -- \Windows\Installer\$PatchCache$\Managed\5C1093C35543A0E32A41B090A305076A\4.0.30319\System.Runtime.Serialization.dll.x86
[2013.05.30 06:18:18 | 000,017,840 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap.resources\v4.0_4.0.0.0_cs_b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2013.10.11 10:40:36 | 000,122,264 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.dll
[2013.05.30 06:18:17 | 000,099,208 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.RunTime.Serialization.resources\v4.0_4.0.0.0_cs_b77a5c561934e089\System.RunTime.Serialization.resources.dll
[2013.10.11 10:40:35 | 001,039,040 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization\v4.0_4.0.0.0__b77a5c561934e089\System.Runtime.Serialization.dll
[2013.10.11 10:40:39 | 000,011,120 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Xml.Serialization\v4.0_4.0.0.0__b77a5c561934e089\System.Xml.Serialization.dll
[2009.06.10 23:23:19 | 000,131,072 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v2.0.50727\System.Runtime.Serialization.Formatters.Soap.dll
[2010.11.21 03:15:47 | 000,011,776 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v2.0.50727\cs\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2012.10.05 12:53:24 | 000,970,752 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\System.Runtime.Serialization.dll
[2013.09.11 06:06:54 | 001,039,040 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\System.Runtime.Serialization.dll
[2010.03.18 13:16:28 | 000,122,264 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\System.Runtime.Serialization.Formatters.Soap.dll
[2011.04.06 16:48:20 | 000,011,120 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\System.Xml.Serialization.dll
[2010.06.15 02:33:16 | 000,017,840 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\cs\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2010.06.15 02:33:16 | 000,099,208 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\cs\System.RunTime.Serialization.resources.dll
[2009.07.14 03:16:13 | 000,015,360 | ---- | M] () -- \Windows\System32\serialui.dll
[2010.11.21 03:15:49 | 000,005,120 | ---- | M] () -- \Windows\System32\cs-CZ\serialui.dll.mui
[2009.07.14 01:45:33 | 000,083,456 | ---- | M] () -- \Windows\System32\drivers\serial.sys
[2010.11.21 03:15:53 | 000,009,728 | ---- | M] () -- \Windows\System32\drivers\cs-CZ\serial.sys.mui
[2009.07.13 18:09:30 | 000,010,240 | ---- | M] () -- \Windows\System32\drivers\en-US\serial.sys.mui
[2009.07.14 00:13:45 | 001,068,032 | ---- | M] () -- \Windows\System32\DriverStore\FileRepository\mdmmotsm.inf_x86_neutral_c1415d9789c54b89\smserial.sys
[2009.07.14 01:45:33 | 000,083,456 | ---- | M] () -- \Windows\System32\DriverStore\FileRepository\msports.inf_x86_neutral_c1a802e06677f73f\serial.sys
[2009.07.14 00:09:18 | 000,031,232 | ---- | M] () -- \Windows\System32\DriverStore\FileRepository\smartcrd.inf_x86_neutral_63e72c669d043f14\grserial.sys
[2009.07.13 18:10:04 | 000,005,120 | ---- | M] () -- \Windows\System32\en-US\serialui.dll.mui
[2009.07.13 18:29:14 | 000,005,120 | ---- | M] () -- \Windows\System32\sk-SK\serialui.dll.mui
[2009.07.14 04:18:03 | 000,002,762 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..gertransport-serial_31bf3856ad364e35_6.1.7600.16385_none_118be3420dfe8486.manifest
[2009.07.14 04:18:03 | 000,015,952 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..gertransport-serial_31bf3856ad364e35_6.1.7600.16385_none_118be3420dfe8486_kdcom.dll_db5e7744
[2010.11.21 03:16:08 | 000,005,120 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-u..em-config.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_4e4137b544fe59ed_serialui.dll.mui_7d29d2a3
[2013.07.13 09:11:35 | 000,005,120 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-u..em-config.resources_31bf3856ad364e35_6.1.7600.16385_en-us_919783112bf8b64b_serialui.dll.mui_7d29d2a3
[2013.07.13 09:27:38 | 000,005,120 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-u..em-config.resources_31bf3856ad364e35_6.1.7600.16385_sk-sk_79d39f727217a41c_serialui.dll.mui_7d29d2a3
[2009.07.14 04:18:51 | 000,015,360 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-unimodem-config_31bf3856ad364e35_6.1.7600.16385_none_f4d7f7b17ffe522a_serialui.dll_bea29328
[2010.11.20 23:24:56 | 000,002,226 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.ref_b77a5c561934e089_6.1.7601.17514_none_a67f221874da7f4c.manifest
[2012.10.05 19:15:39 | 000,002,226 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.ref_b77a5c561934e089_6.1.7601.17966_none_a683f56a74d63285.manifest
[2012.10.05 19:17:50 | 000,002,226 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.ref_b77a5c561934e089_6.1.7601.22126_none_8fb250ac8e81277d.manifest
[2010.11.21 03:15:32 | 000,001,626 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7600.16385_cs-cz_34555b4d83cf58b0.manifest
[2009.07.13 18:28:14 | 000,000,531 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7600.16385_en-us_8f71d563bf7aa3c2.manifest
[2012.10.05 21:04:43 | 000,001,626 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.17966_cs-cz_342f3c238422529f.manifest
[2012.10.05 19:12:04 | 000,000,531 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.17966_en-us_8f4bb639bfcd9db1.manifest
[2012.10.05 21:02:24 | 000,001,626 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.22126_cs-cz_1d5d97659dcd4797.manifest
[2012.10.05 19:12:20 | 000,000,531 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.22126_en-us_787a117bd97892a9.manifest
[2010.11.20 23:24:56 | 000,001,985 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization_b77a5c561934e089_6.1.7601.17514_none_d6c257b29c81807f.manifest
[2012.10.05 19:15:03 | 000,001,985 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization_b77a5c561934e089_6.1.7601.17966_none_d6c72b049c7d33b8.manifest
[2012.10.05 19:17:15 | 000,001,985 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization_b77a5c561934e089_6.1.7601.22126_none_bff58646b62828b0.manifest
[2009.07.14 03:49:26 | 000,002,762 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..gertransport-serial_31bf3856ad364e35_6.1.7600.16385_none_118be3420dfe8486.manifest
[2009.07.14 03:45:27 | 000,000,866 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft.windows.h..tserial-driverclass_31bf3856ad364e35_6.1.7600.16385_none_2c93290b67c98d09.manifest
[2010.11.20 23:24:56 | 000,002,260 | ---- | M] () -- \Windows\winsxs\Manifests\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.17514_none_db9d037fdd581ac1.manifest
[2012.10.05 19:19:53 | 000,002,260 | ---- | M] () -- \Windows\winsxs\Manifests\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.17966_none_dba1d6d1dd53cdfa.manifest
[2012.10.05 19:22:10 | 000,002,260 | ---- | M] () -- \Windows\winsxs\Manifests\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.22126_none_c4d03213f6fec2f2.manifest
[2009.06.10 23:23:19 | 000,131,072 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.seri..ion.formatters.soap_b03f5f7f11d50a3a_6.1.7600.16385_none_1c9a3ec1e01c684b\System.Runtime.Serialization.Formatters.Soap.dll
[2010.11.21 03:15:52 | 000,011,776 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.seri..ters.soap.resources_b03f5f7f11d50a3a_6.1.7600.16385_cs-cz_d5c3552dd9b47144\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2010.11.20 23:29:48 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.ref_b77a5c561934e089_6.1.7601.17514_none_a67f221874da7f4c\System.Runtime.Serialization.dll
[2012.10.05 12:53:24 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.ref_b77a5c561934e089_6.1.7601.17966_none_a683f56a74d63285\System.Runtime.Serialization.dll
[2012.10.05 12:56:07 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.ref_b77a5c561934e089_6.1.7601.22126_none_8fb250ac8e81277d\System.Runtime.Serialization.dll
[2010.11.21 03:15:56 | 000,090,112 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7600.16385_cs-cz_34555b4d83cf58b0\System.RunTime.Serialization.Resources.dll
[2010.11.13 03:55:26 | 000,090,112 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.17966_cs-cz_342f3c238422529f\System.RunTime.Serialization.Resources.dll
[2010.11.13 04:37:50 | 000,090,112 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.22126_cs-cz_1d5d97659dcd4797\System.RunTime.Serialization.Resources.dll
[2010.11.20 23:29:48 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization_b77a5c561934e089_6.1.7601.17514_none_d6c257b29c81807f\System.Runtime.Serialization.dll
[2012.10.05 12:53:23 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization_b77a5c561934e089_6.1.7601.17966_none_d6c72b049c7d33b8\System.Runtime.Serialization.dll
[2012.10.05 12:56:05 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization_b77a5c561934e089_6.1.7601.22126_none_bff58646b62828b0\System.Runtime.Serialization.dll
[2009.07.14 00:13:45 | 001,068,032 | ---- | M] () -- \Windows\winsxs\x86_mdmmotsm.inf_31bf3856ad364e35_6.1.7600.16385_none_7a97936f8a972896\smserial.sys
[2010.11.21 03:15:47 | 000,011,776 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-n..xcorecomp.resources_31bf3856ad364e35_6.1.7601.17514_cs-cz_c233d4df09982c29\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2010.11.21 03:15:49 | 000,005,120 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-u..em-config.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_4e4137b544fe59ed\serialui.dll.mui
[2009.07.13 18:10:04 | 000,005,120 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-u..em-config.resources_31bf3856ad364e35_6.1.7600.16385_en-us_919783112bf8b64b\serialui.dll.mui
[2009.07.13 18:29:14 | 000,005,120 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-u..em-config.resources_31bf3856ad364e35_6.1.7600.16385_sk-sk_79d39f727217a41c\serialui.dll.mui
[2009.07.14 03:16:13 | 000,015,360 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-unimodem-config_31bf3856ad364e35_6.1.7600.16385_none_f4d7f7b17ffe522a\serialui.dll
[2010.11.21 03:15:56 | 000,090,112 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-wcfcorecomp.resources_31bf3856ad364e35_6.1.7601.17514_cs-cz_5f7b7c7cb0c0f266\System.RunTime.Serialization.Resources.dll
[2010.11.21 03:15:53 | 000,009,728 | ---- | M] () -- \Windows\winsxs\x86_msports.inf.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_c48c78a9ad8ff996\serial.sys.mui
[2009.07.13 18:09:30 | 000,010,240 | ---- | M] () -- \Windows\winsxs\x86_msports.inf.resources_31bf3856ad364e35_6.1.7600.16385_en-us_07e2c405948a55f4\serial.sys.mui
[2009.07.14 01:45:33 | 000,083,456 | ---- | M] () -- \Windows\winsxs\x86_msports.inf_31bf3856ad364e35_6.1.7600.16385_none_f86e06d519b1d9a4\serial.sys
[2009.07.14 00:09:18 | 000,031,232 | ---- | M] () -- \Windows\winsxs\x86_smartcrd.inf_31bf3856ad364e35_6.1.7600.16385_none_7280378295916274\grserial.sys
[2010.11.20 23:29:48 | 000,970,752 | ---- | M] () -- \Windows\winsxs\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.17514_none_db9d037fdd581ac1\System.Runtime.Serialization.dll
[2012.10.05 12:53:23 | 000,970,752 | ---- | M] () -- \Windows\winsxs\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.17966_none_dba1d6d1dd53cdfa\System.Runtime.Serialization.dll
[2012.10.05 12:56:05 | 000,970,752 | ---- | M] () -- \Windows\winsxs\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.22126_none_c4d03213f6fec2f2\System.Runtime.Serialization.dll
< *w7lxe* /s >
========== Files - Unicode (All) ==========
[2013.05.28 22:12:28 | 000,030,208 | ---- | C] ()(C:\Users\MM\Documents\?? ???????? EMCOS s.doc) -- C:\Users\MM\Documents\ОБ ОБЩЕСТВЕ EMCOS s.doc
[2008.06.26 20:49:30 | 000,030,208 | ---- | M] ()(C:\Users\MM\Documents\?? ???????? EMCOS s.doc) -- C:\Users\MM\Documents\ОБ ОБЩЕСТВЕ EMCOS s.doc
========== Alternate Data Streams ==========
@Alternate Data Stream - 853 bytes -> C:\Users\MM\Documents\Fw_ E-mailové potvrzení objednávky.eml:OECustomProperty
@Alternate Data Stream - 748 bytes -> C:\Users\MM\Documents\Fw_ Joint a policajti.eml:OECustomProperty
@Alternate Data Stream - 6144 bytes -> C:\Windows\Cursors\arrow_n.cur:NEDTA.DAT
< End of report >
Re: Prosím o preventivní kontrolu
OTL Extras logfile created on: 26.10.2013 20:49:34 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\MM\Desktop
Ultimate Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.10.9200.16721)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy
3,25 Gb Total Physical Memory | 1,34 Gb Available Physical Memory | 41,22% Memory free
6,50 Gb Paging File | 4,43 Gb Available in Paging File | 68,22% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 465,76 Gb Total Space | 350,77 Gb Free Space | 75,31% Space Free | Partition Type: NTFS
Drive D: | 931,28 Gb Total Space | 376,76 Gb Free Space | 40,46% Space Free | Partition Type: FAT32
Computer Name: MM-PC | User Name: MM | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Extra Registry (SafeList) ==========
========== File Associations ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\System32\control.exe (Microsoft Corporation)
.hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation)
.scr [@ = Reg Error: Value error.] -- Reg Error: Key error. File not found
[HKEY_USERS\S-1-5-21-1107837428-173974533-547177936-1000\SOFTWARE\Classes\<extension>]
.html [@ = ChromeHTML.H6XRPAIBTJRLRROUEZ5BTZLZIM] -- Reg Error: Key error. File not found
========== Shell Spawning ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [Browse with FastStone] -- "C:\Program Files\FastStone Image Viewer\FSViewer.exe" "%1" ()
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [KMPlayer.Enqueue] -- "C:\Program Files\KMPlayer\kmplayer.exe" /ADD "%1" (KMP Media co.,Ltd)
Directory [KMPlayer.Play] -- "C:\Program Files\KMPlayer\kmplayer.exe" "%1" (KMP Media co.,Ltd)
Directory [Prozkoumat v XnView] -- "C:\Program Files\XnView\xnview.exe" "%1" (XnView, http://www.xnview.com)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
========== Security Center Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = Reg Error: Unknown registry data type -- File not found
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]
========== Firewall Settings ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
========== Authorized Applications List ==========
========== Vista Active Open Ports Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{01E6A69F-776A-4B6F-9F5F-E6293D062473}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{0BEBB3C3-843D-4DE8-8E02-4F3E8404F391}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
"{1492BEC8-449A-4CB7-9ED3-90615AA4A4D4}" = lport=139 | protocol=6 | dir=in | app=system |
"{19F87133-92AC-4FCE-8F0D-07BE2D2C7014}" = lport=445 | protocol=6 | dir=in | app=system |
"{1C262FEC-B69C-4BDC-B0EC-A79569B57F4C}" = rport=445 | protocol=6 | dir=out | app=system |
"{1F31F1BD-D92C-4E08-9A0C-63030FFF6656}" = lport=137 | protocol=17 | dir=in | app=system |
"{2A6B4B03-6E40-4880-8824-058FB17616C9}" = lport=2177 | protocol=17 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{2FC160E0-D296-4C46-A566-EE053FE54B09}" = rport=137 | protocol=17 | dir=out | app=system |
"{3DB75C6F-16EA-45D9-9B4D-98AD8590B2F5}" = lport=138 | protocol=17 | dir=in | app=system |
"{5630201D-5144-497A-BE69-3D929CD29CE0}" = rport=10243 | protocol=6 | dir=out | app=system |
"{59AE9D1C-1F18-472E-B89D-C53461950078}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{5A32DAAD-D6A1-4C8A-AC30-436AA495BD77}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{7B784A24-279A-47E7-B1FA-A8345BB1CE60}" = rport=138 | protocol=17 | dir=out | app=system |
"{8068C428-20DA-4AED-931E-D47292EED498}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{857305EE-E059-42B8-938B-21CDF778DF2A}" = rport=2177 | protocol=17 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{8B3245FE-C0D8-4DC7-9B03-28604D582DF0}" = rport=2177 | protocol=6 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{B29113D7-43DA-41BF-A404-296B9EBB72EA}" = lport=2869 | protocol=6 | dir=in | app=system |
"{B311B97B-9BB9-4116-9C02-A281E99D1418}" = lport=10243 | protocol=6 | dir=in | app=system |
"{B911C074-58FD-4F7D-976C-22AE3DC0A143}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 |
"{D22133BD-6FBE-4FC3-A9BA-1BEBACD6E194}" = lport=2177 | protocol=6 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{D8DC5288-BC5B-4418-8964-A2AD9DAB423C}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{E9564705-5E58-4321-AFD1-24EFFBB2BC2F}" = rport=139 | protocol=6 | dir=out | app=system |
"{EB105B6D-315F-4637-9BF4-2FC0F1EC7E43}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
========== Vista Active Application Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{045A7BCF-1C69-45BD-92F8-F2150C838AD9}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 |
"{13DBFA4A-D977-4204-901F-A8D4E89FF781}" = protocol=6 | dir=in | app=c:\program files\icq7m\icq.exe |
"{1A692052-A7B2-46C7-95AD-20F7B746F60E}" = protocol=17 | dir=in | app=c:\program files\mozilla thunderbird\thunderbird.exe |
"{1FE5E9E8-B42E-4D79-81D1-26843B87A3A5}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{2A468CA6-9223-46F7-9380-A66C76634ADF}" = protocol=6 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{34DCF0F4-C8D3-445C-BD23-C1435467C0F1}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{36E4F0DF-35B7-410E-8632-D3370CAA2159}" = protocol=6 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{3922A9C3-7DBA-43DF-AFD9-24AC13EE8877}" = protocol=17 | dir=in | app=c:\users\mm\appdata\roaming\icqm\icq.exe |
"{4031D7B6-4280-4598-B337-AC3717D6B613}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{4A86491C-97E6-4A10-BE3F-934D405B9B5A}" = protocol=17 | dir=in | app=c:\program files\icq7m\icq.exe |
"{5008093A-FABE-47FF-BAB8-AE069352ACF9}" = protocol=6 | dir=in | app=c:\users\mm\appdata\roaming\icqm\icq.exe |
"{58402761-80D8-45B7-B7F3-87310C1103F6}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{5F6D2A07-4F02-4E67-92A6-3DB8466D67AC}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{64812A8D-1083-4E8F-9789-09FC0887BF91}" = protocol=17 | dir=in | app=c:\program files\icq7m\icq.exe |
"{70FA862B-EEA3-4E76-9C54-0A7274110FBB}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{7DC006DF-7062-46A4-BAC3-499108022090}" = protocol=6 | dir=out | app=system |
"{821770D3-A7F9-428A-940C-9166B303D624}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{85BB891B-25F5-493F-82EF-52800F1F3284}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 |
"{8B38F833-8EEF-497F-B14F-21FA5EFF693A}" = protocol=17 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{9351E5F4-EF1C-4A5E-BDE0-2796211FEE43}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{A20F126D-3CEE-4CDD-82DB-5D8AA3C82C5C}" = protocol=6 | dir=in | app=c:\program files\icq7m\icq.exe |
"{A32FF694-B69B-4A15-B4C3-9CF8FEB26DA1}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 |
"{C105E0D1-170D-4B47-B2E6-110AB15AD296}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{CA5E5948-D8CD-455D-A25C-155CD9BFF5F8}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{D015FA8F-C43E-4D5D-8E26-C782B01C069C}" = protocol=17 | dir=in | app=c:\users\mm\appdata\roaming\dropbox\bin\dropbox.exe |
"{D754B31C-C26E-479C-9E47-3469F20D495D}" = dir=in | app=c:\program files\cyberlink\powerdvd8\powerdvd8.exe |
"{E408802B-6D44-49B6-BCF3-2FA63088C31B}" = dir=in | app=c:\program files\nokia\nokia suite\nokiasuite.exe |
"{E46FDE2C-35F0-4838-A6A6-0F379F7C5AAE}" = protocol=6 | dir=in | app=c:\program files\mozilla thunderbird\thunderbird.exe |
"{E9E8DE2D-76A8-40E9-8A6F-5D9AF0C68925}" = protocol=6 | dir=in | app=c:\users\mm\appdata\roaming\dropbox\bin\dropbox.exe |
"{F05771AB-7801-48A9-918E-9AD4A22E3ADF}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{F2B420CB-FA90-4FFC-852A-CBBC30584017}" = dir=in | app=c:\program files\common files\apple\apple application support\webkit2webprocess.exe |
"{F97E2FE0-BFEA-4866-9EEF-D401194D963B}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 |
"{FBE1A330-FE43-4D3D-84CC-0CA183F8BC74}" = dir=in | app=c:\program files\itunes\itunes.exe |
"TCP Query User{56104883-A540-47B1-8130-FD2BEAFD9062}C:\program files\winamp\winamp.exe" = protocol=6 | dir=in | app=c:\program files\winamp\winamp.exe |
"TCP Query User{7A600E21-C74D-40FB-B6E1-FC2D4FC9D162}C:\totalcmd\totalcmd.exe" = protocol=6 | dir=in | app=c:\totalcmd\totalcmd.exe |
"UDP Query User{76999890-ED78-4F20-8D67-C214BCCEA2EC}C:\program files\winamp\winamp.exe" = protocol=17 | dir=in | app=c:\program files\winamp\winamp.exe |
"UDP Query User{D8F6E4E1-FE78-4E29-B75D-28277C542EE4}C:\totalcmd\totalcmd.exe" = protocol=17 | dir=in | app=c:\totalcmd\totalcmd.exe |
========== HKEY_LOCAL_MACHINE Uninstall List ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"_{F072CA07-A781-45E4-9975-C033A73019CF}" = Corel VideoStudio Pro X3
"{033E378E-6AD3-4AD5-BDEB-CBD69B31046C}" = Microsoft_VC90_ATL_x86
"{0592EF96-69D8-4E4B-9CC9-88F58EA86F01}" = Apple Mobile Device Support
"{08D2E121-7F6A-43EB-97FD-629B44903403}" = Microsoft_VC90_CRT_x86
"{0A0CADCF-78DA-33C4-A350-CD51849B9702}" = Microsoft .NET Framework 4 Extended
"{0C808377-8C23-44ED-9016-05F42E6D4900}" = Nokia Suite
"{0F3647F8-E51D-4FCC-8862-9A8D0C5ACF25}" = Microsoft_VC80_ATL_x86
"{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MP220_series" = Canon MP220 series
"{196BB40D-1578-3D01-B289-BEFC77A11A1E}" = Microsoft Visual C++ 2010 Redistributable - x86 10.0.30319 False
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 False
"{20C6FF70-690B-4DF7-8F5D-269DD3A7FD23}" = iCloud
"{22B260EE-79AD-4F4C-9E06-349E8F1D958C}_is1" = Incomedia WebSite X5 v10 - Home
"{23170F69-40C1-2701-0930-000001000000}" = 7-Zip 9.30
"{26A24AE4-039D-4CA4-87B4-2F83217045FF}" = Java 7 Update 45
"{29373274-977E-413C-A4DE-DC0F8E80C429}" = Nokia Connectivity Cable Driver
"{2A9E8F56-C31B-4DBB-BFE2-0F4EC8192355}" = OLYMPUS Digital Camera Updater
"{2BF2E31F-B8BB-40A7-B650-98D28E0F7D47}" = CyberLink PowerDVD 8
"{2C2CDEF3-5517-40fc-A5C4-1010701E6A69}_is1" = Aiseesoft Blu-ray to iPad Ripper 6.3.26
"{2F73A7B2-E50E-39A6-9ABC-EF89E4C62E36}" = Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.50727 False
"{2F8BA3FD-1FA9-4279-B696-712ABB12F09F}" = SmartSound Quicktracks 5
"{3862105D-1AD3-470D-9CE5-94A2DB91D6CC}" = Slovakia_Topo_v3_Beta2
"{3C3901C5-3455-3E0A-A214-0B093A5070A6}" = Microsoft .NET Framework 4 Client Profile
"{468D22C0-8080-11E2-B86E-B8AC6F98CCE3}" = Google Earth
"{46E7E808-5AD2-44B6-B52C-68EB15182D8A}" = TrekMap v2
"{46F044A5-CE8B-4196-984E-5BD6525E361D}" = Apple Application Support
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4D24F198-A2CB-46B5-BB16-41B69C644B6C}" = Microsoft Security Client
"{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}" = Skype™ 6.5
"{4E9B5BFE-856B-4C3A-BE90-4547DC255B22}" = Soda PDF 5
"{527BBE2F-1FED-3D8B-91CB-4DB0F838E69E}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 False
"{53F7328C-6687-4AC9-9F68-2E28D8273033}_is1" = Südtirol (Topo)
"{56C049BE-79E9-4502-BEA7-9754A3E60F9B}" = neroxml
"{5783F2D7-5001-0405-0002-0060B0CE6BBA}" = AutoCAD 2007 - Český
"{5DA8F6CD-C70E-39D8-8430-3D9808D6BD17}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30411 False
"{615bc16d-60f5-482e-91b3-b51d8130963b}" = Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.51106
"{635FED5B-2C6D-49BE-87E6-7A6FCD22BC5A}" = Microsoft_VC90_MFC_x86
"{647BB978-2876-487B-9B0E-FDB73F0EA4A2}" = Garmin Communicator Plugin
"{65F9E1F3-A2C1-4AA9-9F33-A3AEB0255F0E}" = Garmin USB Drivers
"{664C3BDC-1BCF-4EA6-A127-E61430501029}" = Nero 8 Essentials
"{6C772996-BFF3-3C8C-860B-B3D48FF05D65}" = Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.51106
"{6c95b50e-cb5a-4a1f-a7b4-8a6004f8dd6a}" = Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 False
"{6D01D1B1-17BD-4F10-BB11-F08F0C47D42B}" = PC Connectivity Solution
"{6D3245B1-8DB8-4A23-9CD2-2C90F40ABAF6}" = MSVC80_x86_v2
"{7036A6F4-5DAD-3908-956D-1752CD7F7E5A}" = Microsoft .NET Framework 4 Client Profile CSY Language Pack
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable - x86 8.0.61001
"{716E0306-8318-4364-8B8F-0CC4E9376BAC}" = MSXML 4.0 SP2 Parser and SDK
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable - x86 8.0.56336 False
"{781B39EC-2E18-41FC-9B00-B84E4FFCA85F}" = ICQ7M
"{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}" = Apple Software Update
"{79155F2B-9895-49D7-8612-D92580E0DE5B}" = Bonjour
"{7AA38575-25A1-4C2F-B40B-2188EB73FF0E}" = Garmin TOPO Österreich v2
"{7E4CB404-F1E4-4E81-A1CB-2CBB310481D1}" = MLE
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable - x86 8.0.59193 False
"{866C4563-ED53-43F3-A29D-8BEE2BD1BA3C}" = Nokia PC Suite
"{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.5570 False
"{894A754D-8B40-4543-89B3-F30A49A8565A}" = OLYMPUS Viewer 2
"{90110405-6000-11D3-8CFE-0150048383C9}" = Microsoft Office Professional Edition 2003
"{90120000-0020-0405-0000-0000000FF1CE}" = Sada Compatibility Pack pro systém Office 2007
"{90140000-2005-0000-0000-0000000FF1CE}" = Microsoft Office File Validation Add-In
"{90170405-6000-11D3-8CFE-0150048383C9}" = Microsoft Office FrontPage 2003
"{91B33C97-34D2-9841-084D-BE4849F6A38F}_is1" = Ashampoo Slideshow Studio 2013 v.1.0.2
"{92D58719-BBC1-4CC3-A08B-56C9E884CC2C}" = Microsoft_VC80_CRT_x86
"{951B0F30-9F1A-4BF6-B3DA-99EB0E917B1C}" = FARO LS 1.1.406.58
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 False
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{a0fe116e-9a8a-466f-aee0-625cb7c207e3}" = Microsoft Visual C++ 2005 Redistributable - x86 8.0.51011 False
"{A2DE62D8-EF1B-36CB-B461-B1E221ED8608}" = Microsoft .NET Framework 4 Extended CSY Language Pack
"{A49F249F-0C91-497F-86DF-B2585E8E76B7}" = Microsoft Visual C++ 2005 Redistributable - x86 8.0.50727.42 False
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{AC76BA86-7AD7-1029-7B44-AB0000000001}" = Adobe Reader XI (11.0.05) - Czech
"{ACBA5A14-2D62-4820-8206-D768C74C1E10}_is1" = The KMPlayer 3.5.0.81 with LAV Filters
"{AF111648-99A1-453E-81DD-80DBBF6DAD0D}" = MSVC90_x86
"{AFBAB9A0-DDE8-49AE-8C17-A01B61BEE64B}" = Garmin MapSource
"{B1102A25-3AA3-446B-AA0F-A699B07A02FD}" = Garmin USB Drivers
"{B36DF239-A12D-4C3C-B588-E09DA71F3BCC}_is1" = Moto assistant 1.3
"{B8A2869E-30CA-40C5-9CF8-BD7354E57EF8}" = SmartSound Common Data
"{CD95F661-A5C4-44F5-A6AA-ECDD91C240B7}" = WinZip 12.0
"{D1A19B02-817E-4296-A45B-07853FD74D57}" = Microsoft_VC80_MFC_x86
"{D92BBB52-82FF-42ED-8A3C-4E062F944AB7}" = Microsoft_VC80_MFCLOC_x86
"{DC4071FC-A3FF-4F6B-0001-CCB79085A90A}" = Format Converter 4 SE
"{DCB46B42-723F-350E-B18A-449BC6C21636}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 False
"{DEDF9B07-5628-4CA0-96BD-8B3AAD553292}" = calibre
"{DEE88727-779B-47A9-ACEF-F87CA5F92A65}" = ScanSoft OmniPage SE 4
"{DF9C119C-7F26-45B9-93D4-7C372CBBBA11}" = iTunes
"{E38C00D0-A68B-4318-A8A6-F7D4B5B1DF0E}" = Windows Media Encoder 9 Series
"{E3B64CC5-C011-40C0-92BC-7316CD5E5688}" = Microsoft_VC100_CRT_SP1_x86
"{E503B4BF-F7BB-3D5F-8BC8-F694B1CFF942}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022.218 False
"{E824E81C-80A4-3DFF-B5F9-4842A9FF5F7F}" = Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.51106
"{ED45BEA5-3E7F-423F-80AE-9D9E5809959A}" = TOPO Czech PRO 2012
"{F069C491-69E6-4D9B-9A0C-B7894A1FA97C}" = Setup
"{F072CA07-A781-45E4-9975-C033A73019CF}" = ICA
"{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 Redistributable - x86 10.0.40219
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F206FEC3-F5DD-43FD-A8CF-9C46B8A6A92C}" = VSPro
"{F4E9851F-765E-40B7-9859-237C2724E62C}" = DeviceIO
"{F59AC46C-10C3-4023-882C-4212A92283B3}_is1" = Lagarith Lossless Codec (1.3.27)
"{F6A76E9C-C299-4CFA-AD2A-57FE9DD68B70}" = Contents
"{F8423392-2296-4748-9B66-344432459632}" = PureHD
"{F9000000-0001-0000-0000-074957833700}" = ABBYY FineReader 9.0 Professional Edition
"{F909BD3C-8684-4ACF-B7C3-33F4F9F901B7}" = Share
"{F95C8C1F-25BB-44EC-A7E6-5C17ABC6BC71}" = VIO
"{FB0B6DDD-DF3E-4CD6-927C-724AB854E322}" = VSClassic
"{FD67D9F3-FED6-4A2E-9D6C-8C8C44DEF8FF}" = IPM_VS_Pro
"{FDB30193-FDA0-3DAA-ACCA-A75EEFE53607}" = Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.50727 False
"{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022.0 False
"123 Free Solitaire" = 123 Free Solitaire
"17D063A0A9F5D5A225B76B1D9BCB5ADBE85C8382" = Balíček ovladače systému Windows - Nokia pccsmcfd “LegacyDriver” (05/31/2012 7.1.2.0)
"45A7283175C62FAC673F913C1F532C5361F97841" = Windows Driver Package - Garmin (grmnusb) GARMIN Devices (03/08/2007 2.2.1.0)
"72A50F48CC5601190B9C4E74D81161693133E7F7" = Balíček ovladače systému Windows - Nokia Modem (02/25/2011 7.01.0.9)
"Adobe Flash Player ActiveX" = Adobe Flash Player 11 ActiveX & Plugin
"Adobe Shockwave Player + Authorware Web Player" = Adobe Shockwave Player + Authorware Web Player
"Ashampoo Burning Studio 2012_is1" = Ashampoo Burning Studio 2012 v10.0.15
"Ashampoo Burning Studio 2013_is1" = Ashampoo Burning Studio 2013 v.11.0.5
"Autodesk DWF Viewer" = Autodesk DWF Viewer
"CanonMyPrinter" = Canon My Printer
"CanonSolutionMenu" = Canon Utilities Solution Menu
"CCleaner" = CCleaner
"Corel Applications" = Corel Applications
"DealPly" = DealPly (remove only)
"DVDFab Platinum 4_is1" = DVDFab Platinum 4.1.2.0
"E0AC723A3DE3A04256288CADBBB011B112AED454" = Balíček ovladače systému Windows - Nokia Modem (02/25/2011 4.7)
"E77704EF5E71F4F18CADFBFA68595AFE036D5D97" = Balíček ovladače systému Windows - OLYMPUS IMAGING CORP. Camera Communication Driver Package (09/09/2009 1.0.0.0)
"Easy-PhotoPrint EX" = Canon Utilities Easy-PhotoPrint EX
"FastStone Image Viewer" = FastStone Image Viewer 4.6
"FastStone Photo Resizer" = FastStone Photo Resizer 3.2
"Folder Marker_is1" = Folder Marker Home v 3.2 Chip Czech Edition
"Genie Timeline" = Genie Timeline
"GeoGet_is1" = GeoGet 2.7.8.715
"HijackThis" = HijackThis 2.0.2
"InstallShield_{2BF2E31F-B8BB-40A7-B650-98D28E0F7D47}" = CyberLink PowerDVD 8
"InstallShield_{2F8BA3FD-1FA9-4279-B696-712ABB12F09F}" = SmartSound Quicktracks 5
"InstallShield_{B8A2869E-30CA-40C5-9CF8-BD7354E57EF8}" = SmartSound Common Data
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Microsoft .NET Framework 4 Client Profile CSY Language Pack" = Microsoft .NET Framework 4 Client Profile CSY Language Pack
"Microsoft .NET Framework 4 Extended" = Microsoft .NET Framework 4 Extended
"Microsoft .NET Framework 4 Extended CSY Language Pack" = Microsoft .NET Framework 4 Extended CSY Language Pack
"Microsoft Security Client" = Microsoft Security Essentials
"Movavi Video Suite 11 SE" = Movavi Video Suite 11 SE
"Mozilla Firefox 21.0 (x86 cs)" = Mozilla Firefox 21.0 (x86 cs)
"Mozilla Thunderbird 24.0.1 (x86 cs)" = Mozilla Thunderbird 24.0.1 (x86 cs)
"MozillaMaintenanceService" = Mozilla Maintenance Service
"MP Navigator EX 1.0" = Canon MP Navigator EX 1.0
"Nokia PC Suite" = Nokia PC Suite
"Nokia Suite" = Nokia Suite
"Registrace uživatele zařízení Canon MP220 series" = Registrace uživatele zařízení Canon MP220 series
"Revo Uninstaller" = Revo Uninstaller 1.95
"SAM CoDeC Pack" = SAM CoDeC Pack
"Seznam CD a DVD_is1" = Seznam CD a DVD 1.1
"ShockwaveFlash" = Macromedia Flash Player 8
"SoftOrbits Photo Retoucher_is1" = SoftOrbits Photo Retoucher 1.3
"Totalcmd" = Total Commander (Remove or Repair)
"utvideo_is1" = Ut Video Codec Suite
"Winamp" = Winamp
"Windows Media Encoder 9" = Windows Media Encoder 9 Series
"WinPDFEditor_is1" = WinPDFEditor V2.0.1
"WinRAR archiver" = WinRAR 4.20 (32-bit)
"x264vfw" = x264vfw - H.264/MPEG-4 AVC codec (remove only)
"XnView_is1" = XnView 2.00
"Xvid_is1" = Xvid MPEG-4 Video Codec
========== HKEY_USERS Uninstall List ==========
[HKEY_USERS\S-1-5-21-1107837428-173974533-547177936-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Dealply" = Dealply
"Dropbox" = Dropbox
"Google Chrome" = Google Chrome
"ICQ" = ICQ 8.0 (verze 6019)
"Pokki" = Pokki
"Winamp Detect" = Winamp Detector Plug-in
========== Last 20 Event Log Errors ==========
[ Application Events ]
Error - 24.10.2013 5:11:00 | Computer Name = MM-PC | Source = SideBySide | ID = 16842787
Description = Generování kontextu aktivace pro c:\program files\movavi video suite
11 se\SCHelper.exe se nezdařilo. Chyba v souboru manifestu nebo zásady c:\program
files\movavi video suite 11 se\Microsoft.VC80.CRT.MANIFEST na řádku 4. Identita
komponenty nalezená v manifestu nesouhlasí s identitou požadované komponenty. Odkaz
je Microsoft.VC80.CRT,processorArchitecture="amd64",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50727.6195".
Definice
je Microsoft.VC80.CRT,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50727.6195".
Podrobnější
diagnostické údaje získáte pomocí programu sxstrace.exe.
Error - 24.10.2013 5:11:06 | Computer Name = MM-PC | Source = SideBySide | ID = 16842785
Description = Generování kontextu aktivace pro C:\Program Files\Nokia\Nokia PC Suite
7\TIS_Windows7PIM.dll se nezdařilo. Závislé sestavení Microsoft.VC80.DebugCRT,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0"
nelze najít. Podrobnější diagnostické údaje získáte pomocí programu sxstrace.exe.
Error - 24.10.2013 10:24:39 | Computer Name = MM-PC | Source = WinMgmt | ID = 10
Description =
Error - 25.10.2013 3:38:18 | Computer Name = MM-PC | Source = WinMgmt | ID = 10
Description =
Error - 25.10.2013 5:03:19 | Computer Name = MM-PC | Source = SideBySide | ID = 16842787
Description = Generování kontextu aktivace pro c:\program files\movavi video suite
11 se\SCHelper.exe se nezdařilo. Chyba v souboru manifestu nebo zásady c:\program
files\movavi video suite 11 se\Microsoft.VC80.CRT.MANIFEST na řádku 4. Identita
komponenty nalezená v manifestu nesouhlasí s identitou požadované komponenty. Odkaz
je Microsoft.VC80.CRT,processorArchitecture="amd64",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50727.6195".
Definice
je Microsoft.VC80.CRT,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50727.6195".
Podrobnější
diagnostické údaje získáte pomocí programu sxstrace.exe.
Error - 25.10.2013 5:03:36 | Computer Name = MM-PC | Source = SideBySide | ID = 16842785
Description = Generování kontextu aktivace pro C:\Program Files\Nokia\Nokia PC Suite
7\TIS_Windows7PIM.dll se nezdařilo. Závislé sestavení Microsoft.VC80.DebugCRT,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0"
nelze najít. Podrobnější diagnostické údaje získáte pomocí programu sxstrace.exe.
Error - 26.10.2013 2:54:25 | Computer Name = MM-PC | Source = WinMgmt | ID = 10
Description =
Error - 26.10.2013 2:55:17 | Computer Name = MM-PC | Source = ESENT | ID = 489
Description = taskhost (1736) Pokus o otevření souboru C:\Users\MM\AppData\Local\Microsoft\Windows\WebCache\WebCacheV01.dat
jen pro čtení se nezdařil. Došlo k systémové chybě 32 (0x00000020): Proces nemá
přístup k souboru, neboť jej právě využívá jiný proces. . Operace otevření souboru
se nezdaří a dojde k chybě -1032 (0xfffffbf8).
Error - 26.10.2013 3:25:32 | Computer Name = MM-PC | Source = SideBySide | ID = 16842787
Description = Generování kontextu aktivace pro c:\program files\movavi video suite
11 se\SCHelper.exe se nezdařilo. Chyba v souboru manifestu nebo zásady c:\program
files\movavi video suite 11 se\Microsoft.VC80.CRT.MANIFEST na řádku 4. Identita
komponenty nalezená v manifestu nesouhlasí s identitou požadované komponenty. Odkaz
je Microsoft.VC80.CRT,processorArchitecture="amd64",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50727.6195".
Definice
je Microsoft.VC80.CRT,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50727.6195".
Podrobnější
diagnostické údaje získáte pomocí programu sxstrace.exe.
Error - 26.10.2013 3:25:38 | Computer Name = MM-PC | Source = SideBySide | ID = 16842785
Description = Generování kontextu aktivace pro C:\Program Files\Nokia\Nokia PC Suite
7\TIS_Windows7PIM.dll se nezdařilo. Závislé sestavení Microsoft.VC80.DebugCRT,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0"
nelze najít. Podrobnější diagnostické údaje získáte pomocí programu sxstrace.exe.
[ System Events ]
Error - 19.10.2013 3:30:35 | Computer Name = MM-PC | Source = Service Control Manager | ID = 7022
Description = Služba Windows Update přestala během spouštění reagovat.
Error - 19.10.2013 4:44:05 | Computer Name = MM-PC | Source = Service Control Manager | ID = 7009
Description = Při čekání na připojení služby Nero BackItUp Scheduler 3 bylo dosaženo
časového limitu (30000 ms).
Error - 19.10.2013 4:44:05 | Computer Name = MM-PC | Source = Service Control Manager | ID = 7000
Description = Služba Nero BackItUp Scheduler 3 neuspěla při spuštění v důsledku
následující chyby: %%1053
Error - 22.10.2013 2:16:35 | Computer Name = MM-PC | Source = Service Control Manager | ID = 7009
Description = Při čekání na připojení služby Nero BackItUp Scheduler 3 bylo dosaženo
časového limitu (30000 ms).
Error - 22.10.2013 2:16:35 | Computer Name = MM-PC | Source = Service Control Manager | ID = 7000
Description = Služba Nero BackItUp Scheduler 3 neuspěla při spuštění v důsledku
následující chyby: %%1053
Error - 24.10.2013 2:56:47 | Computer Name = MM-PC | Source = Service Control Manager | ID = 7022
Description = Služba Windows Update přestala během spouštění reagovat.
Error - 25.10.2013 3:42:22 | Computer Name = MM-PC | Source = Service Control Manager | ID = 7022
Description = Služba Windows Update přestala během spouštění reagovat.
Error - 26.10.2013 2:55:06 | Computer Name = MM-PC | Source = Service Control Manager | ID = 7011
Description = Při čekání na odezvu transakce služby GenieTimelineService bylo dosaženo
časového limitu (30000 ms).
Error - 26.10.2013 2:55:36 | Computer Name = MM-PC | Source = Service Control Manager | ID = 7011
Description = Při čekání na odezvu transakce služby GenieTimelineService bylo dosaženo
časového limitu (30000 ms).
Error - 26.10.2013 2:58:35 | Computer Name = MM-PC | Source = Service Control Manager | ID = 7022
Description = Služba Windows Update přestala během spouštění reagovat.
< End of report >
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\MM\Desktop
Ultimate Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.10.9200.16721)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy
3,25 Gb Total Physical Memory | 1,34 Gb Available Physical Memory | 41,22% Memory free
6,50 Gb Paging File | 4,43 Gb Available in Paging File | 68,22% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 465,76 Gb Total Space | 350,77 Gb Free Space | 75,31% Space Free | Partition Type: NTFS
Drive D: | 931,28 Gb Total Space | 376,76 Gb Free Space | 40,46% Space Free | Partition Type: FAT32
Computer Name: MM-PC | User Name: MM | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Extra Registry (SafeList) ==========
========== File Associations ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\System32\control.exe (Microsoft Corporation)
.hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation)
.scr [@ = Reg Error: Value error.] -- Reg Error: Key error. File not found
[HKEY_USERS\S-1-5-21-1107837428-173974533-547177936-1000\SOFTWARE\Classes\<extension>]
.html [@ = ChromeHTML.H6XRPAIBTJRLRROUEZ5BTZLZIM] -- Reg Error: Key error. File not found
========== Shell Spawning ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [Browse with FastStone] -- "C:\Program Files\FastStone Image Viewer\FSViewer.exe" "%1" ()
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [KMPlayer.Enqueue] -- "C:\Program Files\KMPlayer\kmplayer.exe" /ADD "%1" (KMP Media co.,Ltd)
Directory [KMPlayer.Play] -- "C:\Program Files\KMPlayer\kmplayer.exe" "%1" (KMP Media co.,Ltd)
Directory [Prozkoumat v XnView] -- "C:\Program Files\XnView\xnview.exe" "%1" (XnView, http://www.xnview.com)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
========== Security Center Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = Reg Error: Unknown registry data type -- File not found
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]
========== Firewall Settings ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
========== Authorized Applications List ==========
========== Vista Active Open Ports Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{01E6A69F-776A-4B6F-9F5F-E6293D062473}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{0BEBB3C3-843D-4DE8-8E02-4F3E8404F391}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
"{1492BEC8-449A-4CB7-9ED3-90615AA4A4D4}" = lport=139 | protocol=6 | dir=in | app=system |
"{19F87133-92AC-4FCE-8F0D-07BE2D2C7014}" = lport=445 | protocol=6 | dir=in | app=system |
"{1C262FEC-B69C-4BDC-B0EC-A79569B57F4C}" = rport=445 | protocol=6 | dir=out | app=system |
"{1F31F1BD-D92C-4E08-9A0C-63030FFF6656}" = lport=137 | protocol=17 | dir=in | app=system |
"{2A6B4B03-6E40-4880-8824-058FB17616C9}" = lport=2177 | protocol=17 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{2FC160E0-D296-4C46-A566-EE053FE54B09}" = rport=137 | protocol=17 | dir=out | app=system |
"{3DB75C6F-16EA-45D9-9B4D-98AD8590B2F5}" = lport=138 | protocol=17 | dir=in | app=system |
"{5630201D-5144-497A-BE69-3D929CD29CE0}" = rport=10243 | protocol=6 | dir=out | app=system |
"{59AE9D1C-1F18-472E-B89D-C53461950078}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{5A32DAAD-D6A1-4C8A-AC30-436AA495BD77}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{7B784A24-279A-47E7-B1FA-A8345BB1CE60}" = rport=138 | protocol=17 | dir=out | app=system |
"{8068C428-20DA-4AED-931E-D47292EED498}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{857305EE-E059-42B8-938B-21CDF778DF2A}" = rport=2177 | protocol=17 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{8B3245FE-C0D8-4DC7-9B03-28604D582DF0}" = rport=2177 | protocol=6 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{B29113D7-43DA-41BF-A404-296B9EBB72EA}" = lport=2869 | protocol=6 | dir=in | app=system |
"{B311B97B-9BB9-4116-9C02-A281E99D1418}" = lport=10243 | protocol=6 | dir=in | app=system |
"{B911C074-58FD-4F7D-976C-22AE3DC0A143}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 |
"{D22133BD-6FBE-4FC3-A9BA-1BEBACD6E194}" = lport=2177 | protocol=6 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{D8DC5288-BC5B-4418-8964-A2AD9DAB423C}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{E9564705-5E58-4321-AFD1-24EFFBB2BC2F}" = rport=139 | protocol=6 | dir=out | app=system |
"{EB105B6D-315F-4637-9BF4-2FC0F1EC7E43}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
========== Vista Active Application Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{045A7BCF-1C69-45BD-92F8-F2150C838AD9}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 |
"{13DBFA4A-D977-4204-901F-A8D4E89FF781}" = protocol=6 | dir=in | app=c:\program files\icq7m\icq.exe |
"{1A692052-A7B2-46C7-95AD-20F7B746F60E}" = protocol=17 | dir=in | app=c:\program files\mozilla thunderbird\thunderbird.exe |
"{1FE5E9E8-B42E-4D79-81D1-26843B87A3A5}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{2A468CA6-9223-46F7-9380-A66C76634ADF}" = protocol=6 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{34DCF0F4-C8D3-445C-BD23-C1435467C0F1}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{36E4F0DF-35B7-410E-8632-D3370CAA2159}" = protocol=6 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{3922A9C3-7DBA-43DF-AFD9-24AC13EE8877}" = protocol=17 | dir=in | app=c:\users\mm\appdata\roaming\icqm\icq.exe |
"{4031D7B6-4280-4598-B337-AC3717D6B613}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{4A86491C-97E6-4A10-BE3F-934D405B9B5A}" = protocol=17 | dir=in | app=c:\program files\icq7m\icq.exe |
"{5008093A-FABE-47FF-BAB8-AE069352ACF9}" = protocol=6 | dir=in | app=c:\users\mm\appdata\roaming\icqm\icq.exe |
"{58402761-80D8-45B7-B7F3-87310C1103F6}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{5F6D2A07-4F02-4E67-92A6-3DB8466D67AC}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{64812A8D-1083-4E8F-9789-09FC0887BF91}" = protocol=17 | dir=in | app=c:\program files\icq7m\icq.exe |
"{70FA862B-EEA3-4E76-9C54-0A7274110FBB}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{7DC006DF-7062-46A4-BAC3-499108022090}" = protocol=6 | dir=out | app=system |
"{821770D3-A7F9-428A-940C-9166B303D624}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{85BB891B-25F5-493F-82EF-52800F1F3284}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 |
"{8B38F833-8EEF-497F-B14F-21FA5EFF693A}" = protocol=17 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{9351E5F4-EF1C-4A5E-BDE0-2796211FEE43}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{A20F126D-3CEE-4CDD-82DB-5D8AA3C82C5C}" = protocol=6 | dir=in | app=c:\program files\icq7m\icq.exe |
"{A32FF694-B69B-4A15-B4C3-9CF8FEB26DA1}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 |
"{C105E0D1-170D-4B47-B2E6-110AB15AD296}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{CA5E5948-D8CD-455D-A25C-155CD9BFF5F8}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{D015FA8F-C43E-4D5D-8E26-C782B01C069C}" = protocol=17 | dir=in | app=c:\users\mm\appdata\roaming\dropbox\bin\dropbox.exe |
"{D754B31C-C26E-479C-9E47-3469F20D495D}" = dir=in | app=c:\program files\cyberlink\powerdvd8\powerdvd8.exe |
"{E408802B-6D44-49B6-BCF3-2FA63088C31B}" = dir=in | app=c:\program files\nokia\nokia suite\nokiasuite.exe |
"{E46FDE2C-35F0-4838-A6A6-0F379F7C5AAE}" = protocol=6 | dir=in | app=c:\program files\mozilla thunderbird\thunderbird.exe |
"{E9E8DE2D-76A8-40E9-8A6F-5D9AF0C68925}" = protocol=6 | dir=in | app=c:\users\mm\appdata\roaming\dropbox\bin\dropbox.exe |
"{F05771AB-7801-48A9-918E-9AD4A22E3ADF}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{F2B420CB-FA90-4FFC-852A-CBBC30584017}" = dir=in | app=c:\program files\common files\apple\apple application support\webkit2webprocess.exe |
"{F97E2FE0-BFEA-4866-9EEF-D401194D963B}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 |
"{FBE1A330-FE43-4D3D-84CC-0CA183F8BC74}" = dir=in | app=c:\program files\itunes\itunes.exe |
"TCP Query User{56104883-A540-47B1-8130-FD2BEAFD9062}C:\program files\winamp\winamp.exe" = protocol=6 | dir=in | app=c:\program files\winamp\winamp.exe |
"TCP Query User{7A600E21-C74D-40FB-B6E1-FC2D4FC9D162}C:\totalcmd\totalcmd.exe" = protocol=6 | dir=in | app=c:\totalcmd\totalcmd.exe |
"UDP Query User{76999890-ED78-4F20-8D67-C214BCCEA2EC}C:\program files\winamp\winamp.exe" = protocol=17 | dir=in | app=c:\program files\winamp\winamp.exe |
"UDP Query User{D8F6E4E1-FE78-4E29-B75D-28277C542EE4}C:\totalcmd\totalcmd.exe" = protocol=17 | dir=in | app=c:\totalcmd\totalcmd.exe |
========== HKEY_LOCAL_MACHINE Uninstall List ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"_{F072CA07-A781-45E4-9975-C033A73019CF}" = Corel VideoStudio Pro X3
"{033E378E-6AD3-4AD5-BDEB-CBD69B31046C}" = Microsoft_VC90_ATL_x86
"{0592EF96-69D8-4E4B-9CC9-88F58EA86F01}" = Apple Mobile Device Support
"{08D2E121-7F6A-43EB-97FD-629B44903403}" = Microsoft_VC90_CRT_x86
"{0A0CADCF-78DA-33C4-A350-CD51849B9702}" = Microsoft .NET Framework 4 Extended
"{0C808377-8C23-44ED-9016-05F42E6D4900}" = Nokia Suite
"{0F3647F8-E51D-4FCC-8862-9A8D0C5ACF25}" = Microsoft_VC80_ATL_x86
"{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MP220_series" = Canon MP220 series
"{196BB40D-1578-3D01-B289-BEFC77A11A1E}" = Microsoft Visual C++ 2010 Redistributable - x86 10.0.30319 False
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 False
"{20C6FF70-690B-4DF7-8F5D-269DD3A7FD23}" = iCloud
"{22B260EE-79AD-4F4C-9E06-349E8F1D958C}_is1" = Incomedia WebSite X5 v10 - Home
"{23170F69-40C1-2701-0930-000001000000}" = 7-Zip 9.30
"{26A24AE4-039D-4CA4-87B4-2F83217045FF}" = Java 7 Update 45
"{29373274-977E-413C-A4DE-DC0F8E80C429}" = Nokia Connectivity Cable Driver
"{2A9E8F56-C31B-4DBB-BFE2-0F4EC8192355}" = OLYMPUS Digital Camera Updater
"{2BF2E31F-B8BB-40A7-B650-98D28E0F7D47}" = CyberLink PowerDVD 8
"{2C2CDEF3-5517-40fc-A5C4-1010701E6A69}_is1" = Aiseesoft Blu-ray to iPad Ripper 6.3.26
"{2F73A7B2-E50E-39A6-9ABC-EF89E4C62E36}" = Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.50727 False
"{2F8BA3FD-1FA9-4279-B696-712ABB12F09F}" = SmartSound Quicktracks 5
"{3862105D-1AD3-470D-9CE5-94A2DB91D6CC}" = Slovakia_Topo_v3_Beta2
"{3C3901C5-3455-3E0A-A214-0B093A5070A6}" = Microsoft .NET Framework 4 Client Profile
"{468D22C0-8080-11E2-B86E-B8AC6F98CCE3}" = Google Earth
"{46E7E808-5AD2-44B6-B52C-68EB15182D8A}" = TrekMap v2
"{46F044A5-CE8B-4196-984E-5BD6525E361D}" = Apple Application Support
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4D24F198-A2CB-46B5-BB16-41B69C644B6C}" = Microsoft Security Client
"{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}" = Skype™ 6.5
"{4E9B5BFE-856B-4C3A-BE90-4547DC255B22}" = Soda PDF 5
"{527BBE2F-1FED-3D8B-91CB-4DB0F838E69E}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 False
"{53F7328C-6687-4AC9-9F68-2E28D8273033}_is1" = Südtirol (Topo)
"{56C049BE-79E9-4502-BEA7-9754A3E60F9B}" = neroxml
"{5783F2D7-5001-0405-0002-0060B0CE6BBA}" = AutoCAD 2007 - Český
"{5DA8F6CD-C70E-39D8-8430-3D9808D6BD17}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30411 False
"{615bc16d-60f5-482e-91b3-b51d8130963b}" = Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.51106
"{635FED5B-2C6D-49BE-87E6-7A6FCD22BC5A}" = Microsoft_VC90_MFC_x86
"{647BB978-2876-487B-9B0E-FDB73F0EA4A2}" = Garmin Communicator Plugin
"{65F9E1F3-A2C1-4AA9-9F33-A3AEB0255F0E}" = Garmin USB Drivers
"{664C3BDC-1BCF-4EA6-A127-E61430501029}" = Nero 8 Essentials
"{6C772996-BFF3-3C8C-860B-B3D48FF05D65}" = Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.51106
"{6c95b50e-cb5a-4a1f-a7b4-8a6004f8dd6a}" = Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 False
"{6D01D1B1-17BD-4F10-BB11-F08F0C47D42B}" = PC Connectivity Solution
"{6D3245B1-8DB8-4A23-9CD2-2C90F40ABAF6}" = MSVC80_x86_v2
"{7036A6F4-5DAD-3908-956D-1752CD7F7E5A}" = Microsoft .NET Framework 4 Client Profile CSY Language Pack
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable - x86 8.0.61001
"{716E0306-8318-4364-8B8F-0CC4E9376BAC}" = MSXML 4.0 SP2 Parser and SDK
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable - x86 8.0.56336 False
"{781B39EC-2E18-41FC-9B00-B84E4FFCA85F}" = ICQ7M
"{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}" = Apple Software Update
"{79155F2B-9895-49D7-8612-D92580E0DE5B}" = Bonjour
"{7AA38575-25A1-4C2F-B40B-2188EB73FF0E}" = Garmin TOPO Österreich v2
"{7E4CB404-F1E4-4E81-A1CB-2CBB310481D1}" = MLE
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable - x86 8.0.59193 False
"{866C4563-ED53-43F3-A29D-8BEE2BD1BA3C}" = Nokia PC Suite
"{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.5570 False
"{894A754D-8B40-4543-89B3-F30A49A8565A}" = OLYMPUS Viewer 2
"{90110405-6000-11D3-8CFE-0150048383C9}" = Microsoft Office Professional Edition 2003
"{90120000-0020-0405-0000-0000000FF1CE}" = Sada Compatibility Pack pro systém Office 2007
"{90140000-2005-0000-0000-0000000FF1CE}" = Microsoft Office File Validation Add-In
"{90170405-6000-11D3-8CFE-0150048383C9}" = Microsoft Office FrontPage 2003
"{91B33C97-34D2-9841-084D-BE4849F6A38F}_is1" = Ashampoo Slideshow Studio 2013 v.1.0.2
"{92D58719-BBC1-4CC3-A08B-56C9E884CC2C}" = Microsoft_VC80_CRT_x86
"{951B0F30-9F1A-4BF6-B3DA-99EB0E917B1C}" = FARO LS 1.1.406.58
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 False
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{a0fe116e-9a8a-466f-aee0-625cb7c207e3}" = Microsoft Visual C++ 2005 Redistributable - x86 8.0.51011 False
"{A2DE62D8-EF1B-36CB-B461-B1E221ED8608}" = Microsoft .NET Framework 4 Extended CSY Language Pack
"{A49F249F-0C91-497F-86DF-B2585E8E76B7}" = Microsoft Visual C++ 2005 Redistributable - x86 8.0.50727.42 False
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{AC76BA86-7AD7-1029-7B44-AB0000000001}" = Adobe Reader XI (11.0.05) - Czech
"{ACBA5A14-2D62-4820-8206-D768C74C1E10}_is1" = The KMPlayer 3.5.0.81 with LAV Filters
"{AF111648-99A1-453E-81DD-80DBBF6DAD0D}" = MSVC90_x86
"{AFBAB9A0-DDE8-49AE-8C17-A01B61BEE64B}" = Garmin MapSource
"{B1102A25-3AA3-446B-AA0F-A699B07A02FD}" = Garmin USB Drivers
"{B36DF239-A12D-4C3C-B588-E09DA71F3BCC}_is1" = Moto assistant 1.3
"{B8A2869E-30CA-40C5-9CF8-BD7354E57EF8}" = SmartSound Common Data
"{CD95F661-A5C4-44F5-A6AA-ECDD91C240B7}" = WinZip 12.0
"{D1A19B02-817E-4296-A45B-07853FD74D57}" = Microsoft_VC80_MFC_x86
"{D92BBB52-82FF-42ED-8A3C-4E062F944AB7}" = Microsoft_VC80_MFCLOC_x86
"{DC4071FC-A3FF-4F6B-0001-CCB79085A90A}" = Format Converter 4 SE
"{DCB46B42-723F-350E-B18A-449BC6C21636}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 False
"{DEDF9B07-5628-4CA0-96BD-8B3AAD553292}" = calibre
"{DEE88727-779B-47A9-ACEF-F87CA5F92A65}" = ScanSoft OmniPage SE 4
"{DF9C119C-7F26-45B9-93D4-7C372CBBBA11}" = iTunes
"{E38C00D0-A68B-4318-A8A6-F7D4B5B1DF0E}" = Windows Media Encoder 9 Series
"{E3B64CC5-C011-40C0-92BC-7316CD5E5688}" = Microsoft_VC100_CRT_SP1_x86
"{E503B4BF-F7BB-3D5F-8BC8-F694B1CFF942}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022.218 False
"{E824E81C-80A4-3DFF-B5F9-4842A9FF5F7F}" = Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.51106
"{ED45BEA5-3E7F-423F-80AE-9D9E5809959A}" = TOPO Czech PRO 2012
"{F069C491-69E6-4D9B-9A0C-B7894A1FA97C}" = Setup
"{F072CA07-A781-45E4-9975-C033A73019CF}" = ICA
"{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 Redistributable - x86 10.0.40219
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F206FEC3-F5DD-43FD-A8CF-9C46B8A6A92C}" = VSPro
"{F4E9851F-765E-40B7-9859-237C2724E62C}" = DeviceIO
"{F59AC46C-10C3-4023-882C-4212A92283B3}_is1" = Lagarith Lossless Codec (1.3.27)
"{F6A76E9C-C299-4CFA-AD2A-57FE9DD68B70}" = Contents
"{F8423392-2296-4748-9B66-344432459632}" = PureHD
"{F9000000-0001-0000-0000-074957833700}" = ABBYY FineReader 9.0 Professional Edition
"{F909BD3C-8684-4ACF-B7C3-33F4F9F901B7}" = Share
"{F95C8C1F-25BB-44EC-A7E6-5C17ABC6BC71}" = VIO
"{FB0B6DDD-DF3E-4CD6-927C-724AB854E322}" = VSClassic
"{FD67D9F3-FED6-4A2E-9D6C-8C8C44DEF8FF}" = IPM_VS_Pro
"{FDB30193-FDA0-3DAA-ACCA-A75EEFE53607}" = Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.50727 False
"{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022.0 False
"123 Free Solitaire" = 123 Free Solitaire
"17D063A0A9F5D5A225B76B1D9BCB5ADBE85C8382" = Balíček ovladače systému Windows - Nokia pccsmcfd “LegacyDriver” (05/31/2012 7.1.2.0)
"45A7283175C62FAC673F913C1F532C5361F97841" = Windows Driver Package - Garmin (grmnusb) GARMIN Devices (03/08/2007 2.2.1.0)
"72A50F48CC5601190B9C4E74D81161693133E7F7" = Balíček ovladače systému Windows - Nokia Modem (02/25/2011 7.01.0.9)
"Adobe Flash Player ActiveX" = Adobe Flash Player 11 ActiveX & Plugin
"Adobe Shockwave Player + Authorware Web Player" = Adobe Shockwave Player + Authorware Web Player
"Ashampoo Burning Studio 2012_is1" = Ashampoo Burning Studio 2012 v10.0.15
"Ashampoo Burning Studio 2013_is1" = Ashampoo Burning Studio 2013 v.11.0.5
"Autodesk DWF Viewer" = Autodesk DWF Viewer
"CanonMyPrinter" = Canon My Printer
"CanonSolutionMenu" = Canon Utilities Solution Menu
"CCleaner" = CCleaner
"Corel Applications" = Corel Applications
"DealPly" = DealPly (remove only)
"DVDFab Platinum 4_is1" = DVDFab Platinum 4.1.2.0
"E0AC723A3DE3A04256288CADBBB011B112AED454" = Balíček ovladače systému Windows - Nokia Modem (02/25/2011 4.7)
"E77704EF5E71F4F18CADFBFA68595AFE036D5D97" = Balíček ovladače systému Windows - OLYMPUS IMAGING CORP. Camera Communication Driver Package (09/09/2009 1.0.0.0)
"Easy-PhotoPrint EX" = Canon Utilities Easy-PhotoPrint EX
"FastStone Image Viewer" = FastStone Image Viewer 4.6
"FastStone Photo Resizer" = FastStone Photo Resizer 3.2
"Folder Marker_is1" = Folder Marker Home v 3.2 Chip Czech Edition
"Genie Timeline" = Genie Timeline
"GeoGet_is1" = GeoGet 2.7.8.715
"HijackThis" = HijackThis 2.0.2
"InstallShield_{2BF2E31F-B8BB-40A7-B650-98D28E0F7D47}" = CyberLink PowerDVD 8
"InstallShield_{2F8BA3FD-1FA9-4279-B696-712ABB12F09F}" = SmartSound Quicktracks 5
"InstallShield_{B8A2869E-30CA-40C5-9CF8-BD7354E57EF8}" = SmartSound Common Data
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Microsoft .NET Framework 4 Client Profile CSY Language Pack" = Microsoft .NET Framework 4 Client Profile CSY Language Pack
"Microsoft .NET Framework 4 Extended" = Microsoft .NET Framework 4 Extended
"Microsoft .NET Framework 4 Extended CSY Language Pack" = Microsoft .NET Framework 4 Extended CSY Language Pack
"Microsoft Security Client" = Microsoft Security Essentials
"Movavi Video Suite 11 SE" = Movavi Video Suite 11 SE
"Mozilla Firefox 21.0 (x86 cs)" = Mozilla Firefox 21.0 (x86 cs)
"Mozilla Thunderbird 24.0.1 (x86 cs)" = Mozilla Thunderbird 24.0.1 (x86 cs)
"MozillaMaintenanceService" = Mozilla Maintenance Service
"MP Navigator EX 1.0" = Canon MP Navigator EX 1.0
"Nokia PC Suite" = Nokia PC Suite
"Nokia Suite" = Nokia Suite
"Registrace uživatele zařízení Canon MP220 series" = Registrace uživatele zařízení Canon MP220 series
"Revo Uninstaller" = Revo Uninstaller 1.95
"SAM CoDeC Pack" = SAM CoDeC Pack
"Seznam CD a DVD_is1" = Seznam CD a DVD 1.1
"ShockwaveFlash" = Macromedia Flash Player 8
"SoftOrbits Photo Retoucher_is1" = SoftOrbits Photo Retoucher 1.3
"Totalcmd" = Total Commander (Remove or Repair)
"utvideo_is1" = Ut Video Codec Suite
"Winamp" = Winamp
"Windows Media Encoder 9" = Windows Media Encoder 9 Series
"WinPDFEditor_is1" = WinPDFEditor V2.0.1
"WinRAR archiver" = WinRAR 4.20 (32-bit)
"x264vfw" = x264vfw - H.264/MPEG-4 AVC codec (remove only)
"XnView_is1" = XnView 2.00
"Xvid_is1" = Xvid MPEG-4 Video Codec
========== HKEY_USERS Uninstall List ==========
[HKEY_USERS\S-1-5-21-1107837428-173974533-547177936-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Dealply" = Dealply
"Dropbox" = Dropbox
"Google Chrome" = Google Chrome
"ICQ" = ICQ 8.0 (verze 6019)
"Pokki" = Pokki
"Winamp Detect" = Winamp Detector Plug-in
========== Last 20 Event Log Errors ==========
[ Application Events ]
Error - 24.10.2013 5:11:00 | Computer Name = MM-PC | Source = SideBySide | ID = 16842787
Description = Generování kontextu aktivace pro c:\program files\movavi video suite
11 se\SCHelper.exe se nezdařilo. Chyba v souboru manifestu nebo zásady c:\program
files\movavi video suite 11 se\Microsoft.VC80.CRT.MANIFEST na řádku 4. Identita
komponenty nalezená v manifestu nesouhlasí s identitou požadované komponenty. Odkaz
je Microsoft.VC80.CRT,processorArchitecture="amd64",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50727.6195".
Definice
je Microsoft.VC80.CRT,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50727.6195".
Podrobnější
diagnostické údaje získáte pomocí programu sxstrace.exe.
Error - 24.10.2013 5:11:06 | Computer Name = MM-PC | Source = SideBySide | ID = 16842785
Description = Generování kontextu aktivace pro C:\Program Files\Nokia\Nokia PC Suite
7\TIS_Windows7PIM.dll se nezdařilo. Závislé sestavení Microsoft.VC80.DebugCRT,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0"
nelze najít. Podrobnější diagnostické údaje získáte pomocí programu sxstrace.exe.
Error - 24.10.2013 10:24:39 | Computer Name = MM-PC | Source = WinMgmt | ID = 10
Description =
Error - 25.10.2013 3:38:18 | Computer Name = MM-PC | Source = WinMgmt | ID = 10
Description =
Error - 25.10.2013 5:03:19 | Computer Name = MM-PC | Source = SideBySide | ID = 16842787
Description = Generování kontextu aktivace pro c:\program files\movavi video suite
11 se\SCHelper.exe se nezdařilo. Chyba v souboru manifestu nebo zásady c:\program
files\movavi video suite 11 se\Microsoft.VC80.CRT.MANIFEST na řádku 4. Identita
komponenty nalezená v manifestu nesouhlasí s identitou požadované komponenty. Odkaz
je Microsoft.VC80.CRT,processorArchitecture="amd64",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50727.6195".
Definice
je Microsoft.VC80.CRT,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50727.6195".
Podrobnější
diagnostické údaje získáte pomocí programu sxstrace.exe.
Error - 25.10.2013 5:03:36 | Computer Name = MM-PC | Source = SideBySide | ID = 16842785
Description = Generování kontextu aktivace pro C:\Program Files\Nokia\Nokia PC Suite
7\TIS_Windows7PIM.dll se nezdařilo. Závislé sestavení Microsoft.VC80.DebugCRT,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0"
nelze najít. Podrobnější diagnostické údaje získáte pomocí programu sxstrace.exe.
Error - 26.10.2013 2:54:25 | Computer Name = MM-PC | Source = WinMgmt | ID = 10
Description =
Error - 26.10.2013 2:55:17 | Computer Name = MM-PC | Source = ESENT | ID = 489
Description = taskhost (1736) Pokus o otevření souboru C:\Users\MM\AppData\Local\Microsoft\Windows\WebCache\WebCacheV01.dat
jen pro čtení se nezdařil. Došlo k systémové chybě 32 (0x00000020): Proces nemá
přístup k souboru, neboť jej právě využívá jiný proces. . Operace otevření souboru
se nezdaří a dojde k chybě -1032 (0xfffffbf8).
Error - 26.10.2013 3:25:32 | Computer Name = MM-PC | Source = SideBySide | ID = 16842787
Description = Generování kontextu aktivace pro c:\program files\movavi video suite
11 se\SCHelper.exe se nezdařilo. Chyba v souboru manifestu nebo zásady c:\program
files\movavi video suite 11 se\Microsoft.VC80.CRT.MANIFEST na řádku 4. Identita
komponenty nalezená v manifestu nesouhlasí s identitou požadované komponenty. Odkaz
je Microsoft.VC80.CRT,processorArchitecture="amd64",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50727.6195".
Definice
je Microsoft.VC80.CRT,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50727.6195".
Podrobnější
diagnostické údaje získáte pomocí programu sxstrace.exe.
Error - 26.10.2013 3:25:38 | Computer Name = MM-PC | Source = SideBySide | ID = 16842785
Description = Generování kontextu aktivace pro C:\Program Files\Nokia\Nokia PC Suite
7\TIS_Windows7PIM.dll se nezdařilo. Závislé sestavení Microsoft.VC80.DebugCRT,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0"
nelze najít. Podrobnější diagnostické údaje získáte pomocí programu sxstrace.exe.
[ System Events ]
Error - 19.10.2013 3:30:35 | Computer Name = MM-PC | Source = Service Control Manager | ID = 7022
Description = Služba Windows Update přestala během spouštění reagovat.
Error - 19.10.2013 4:44:05 | Computer Name = MM-PC | Source = Service Control Manager | ID = 7009
Description = Při čekání na připojení služby Nero BackItUp Scheduler 3 bylo dosaženo
časového limitu (30000 ms).
Error - 19.10.2013 4:44:05 | Computer Name = MM-PC | Source = Service Control Manager | ID = 7000
Description = Služba Nero BackItUp Scheduler 3 neuspěla při spuštění v důsledku
následující chyby: %%1053
Error - 22.10.2013 2:16:35 | Computer Name = MM-PC | Source = Service Control Manager | ID = 7009
Description = Při čekání na připojení služby Nero BackItUp Scheduler 3 bylo dosaženo
časového limitu (30000 ms).
Error - 22.10.2013 2:16:35 | Computer Name = MM-PC | Source = Service Control Manager | ID = 7000
Description = Služba Nero BackItUp Scheduler 3 neuspěla při spuštění v důsledku
následující chyby: %%1053
Error - 24.10.2013 2:56:47 | Computer Name = MM-PC | Source = Service Control Manager | ID = 7022
Description = Služba Windows Update přestala během spouštění reagovat.
Error - 25.10.2013 3:42:22 | Computer Name = MM-PC | Source = Service Control Manager | ID = 7022
Description = Služba Windows Update přestala během spouštění reagovat.
Error - 26.10.2013 2:55:06 | Computer Name = MM-PC | Source = Service Control Manager | ID = 7011
Description = Při čekání na odezvu transakce služby GenieTimelineService bylo dosaženo
časového limitu (30000 ms).
Error - 26.10.2013 2:55:36 | Computer Name = MM-PC | Source = Service Control Manager | ID = 7011
Description = Při čekání na odezvu transakce služby GenieTimelineService bylo dosaženo
časového limitu (30000 ms).
Error - 26.10.2013 2:58:35 | Computer Name = MM-PC | Source = Service Control Manager | ID = 7022
Description = Služba Windows Update přestala během spouštění reagovat.
< End of report >
Re: Prosím o preventivní kontrolu
Jak je to s legalitou systemu? Ultimate neni zrovna bezna domaci verze 
Udelejte !!!kompletni!!! kontrolu s MBAM http://forum.viry.cz/viewtopic.php?f=29&t=115222 a dejte sem vysledky. Predem nic nemazte, miva obcas falesne detekcePokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Re: Prosím o preventivní kontrolu
Malwarebytes Anti-Malware (Zkušební verze Malwarebytes Anti-Malware.) 1.75.0.1300
www.malwarebytes.org
Verze: v2013.10.26.08
Windows 7 Service Pack 1 x86 NTFS
Internet Explorer 10.0.9200.16721
MM :: MM-PC [administrátor]
Ochrana: Povolena
26.10.2013 21:36:39
MBAM-log-2013-10-27 (05-34-53).txt
Typ: Kompletní kontrola (C:\|D:\|)
Nastavení kontroly povoleno: Paměť | Po spuštění | Registr | Systémové soubory | Heuristická analýza Extra | Heuristická analýza Shuriken | PUP | PUM
Nastavení kontroly zakázáno: P2P
Kontrolované objekty: 640121
Uplynulý čas: 2 hodin, 9 minut, 23 sekund
Nalezené procesy v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené moduly v paměti: 1
C:\Program Files\DealPly\DealPlyIE.dll (PUP.DealPly) -> Nebyla provedena žádná instrukce.
Nalezené klíče v registru: 77
HKCR\CLSID\{ae48ed75-5a56-4c5f-bbce-6f1ac3875f66} (PUP.DealPly) -> Nebyla provedena žádná instrukce.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE48ED75-5A56-4C5F-BBCE-6F1AC3875F66} (PUP.DealPly) -> Nebyla provedena žádná instrukce.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{AE48ED75-5A56-4C5F-BBCE-6F1AC3875F66} (PUP.DealPly) -> Nebyla provedena žádná instrukce.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{AE48ED75-5A56-4C5F-BBCE-6F1AC3875F66} (PUP.DealPly) -> Nebyla provedena žádná instrukce.
HKLM\SYSTEM\CurrentControlSet\Services\dealplylive (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\DEALPLYLIVE.EXE (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
HKCR\AppID\{80FABB17-63AF-4655-9F07-B6509EE37AF2} (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
HKCR\CLSID\{80FABB17-63AF-4655-9F07-B6509EE37AF2} (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
HKCR\DealPlyLiveUpdate.OnDemandCOMClassSvc.1.0 (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
HKCR\DealPlyLiveUpdate.OnDemandCOMClassSvc (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
HKCR\AppID\{CA5CAA63-B27C-4963-9BEC-CB16A36D56F8} (PUP.Optional.MySearchDial.A) -> Nebyla provedena žádná instrukce.
HKCR\AppID\{F48FC5B2-094A-44C7-B48C-289738C9582D} (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
HKCR\CLSID\{F48FC5B2-094A-44C7-B48C-289738C9582D} (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
HKCR\DealPlyLiveUpdate.Update3COMClassService.1.0 (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
HKCR\DealPlyLiveUpdate.Update3COMClassService (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
HKCR\CLSID\{1E0C9B2A-6447-452C-B012-2314A0C29412} (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
HKCR\DealPlyLiveUpdate.OnDemandCOMClassMachineFallback.1.0 (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
HKCR\DealPlyLiveUpdate.OnDemandCOMClassMachineFallback (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
HKCR\CLSID\{34A8CEB6-89BB-49F1-B5E4-0D0D6C21F3B1} (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
HKCR\DealPlyLiveUpdate.CredentialDialogMachine.1.0 (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
HKCR\DealPlyLiveUpdate.CredentialDialogMachine (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
HKCR\CLSID\{3A4DBD3A-98CC-41CE-AD21-352D42B6F754} (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
HKCR\DealPlyLiveUpdate.CoCreateAsync.1.0 (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
HKCR\DealPlyLiveUpdate.CoCreateAsync (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
HKCR\CLSID\{4F8A50F6-69DE-4BE3-A33A-A1079B9AC0DB} (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
HKCR\DealPlyLiveUpdate.Update3WebMachineFallback.1.0 (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
HKCR\DealPlyLiveUpdate.Update3WebMachineFallback (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
HKCR\CLSID\{501CB57A-D4E2-4855-96AD-EDB0A9083395} (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
HKCR\DealPlyLiveUpdate.CoreMachineClass.1 (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
HKCR\DealPlyLiveUpdate.CoreMachineClass (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
HKCR\CLSID\{6FF2C4DD-77A4-4BB5-BA4C-B42DEFBF9137} (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
HKCR\DealPlyLiveUpdate.ProcessLauncher.1.0 (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
HKCR\DealPlyLiveUpdate.ProcessLauncher (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
HKCR\CLSID\{83ABA270-8390-4CA6-AE48-FC089F55629E} (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
HKCR\DealPlyLiveUpdate.OnDemandCOMClassMachine.1.0 (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
HKCR\DealPlyLiveUpdate.OnDemandCOMClassMachine (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
HKCR\CLSID\{8B218A5F-1A3D-4347-94EF-A79575EB8094} (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
HKCR\CLSID\{0D89DE71-3D99-4288-84DC-F18F1047A7D8} (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
HKCR\CLSID\{8C338DDB-19FC-4C1F-B74D-6931EE55F7A1} (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
HKCR\CLSID\{7F1796B2-BEC6-427B-B734-F9C75ED94A80} (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
HKCR\DealPlyLive.OneClickCtrl.9 (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{7F1796B2-BEC6-427B-B734-F9C75ED94A80} (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{7F1796B2-BEC6-427B-B734-F9C75ED94A80} (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
HKCR\DealPlyLive.Update3WebControl.3 (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{8C338DDB-19FC-4C1F-B74D-6931EE55F7A1} (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{8C338DDB-19FC-4C1F-B74D-6931EE55F7A1} (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
HKCR\CLSID\{9BDB5E09-4BBA-4422-8C2B-529B281C32B8} (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
HKCR\CLSID\{C536F080-57B7-46D6-8894-C647553F2889} (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
HKCR\DealPlyLive.OneClickProcessLauncherMachine.1.0 (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
HKCR\DealPlyLive.OneClickProcessLauncherMachine (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C536F080-57B7-46D6-8894-C647553F2889} (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
HKCR\CLSID\{CA5D945F-E738-4D0B-A0B5-25AC51C64659} (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
HKCR\DealPlyLiveUpdate.CoreClass.1 (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
HKCR\DealPlyLiveUpdate.CoreClass (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
HKCR\CLSID\{F7698761-4ABA-45C2-A5BB-D2163922C725} (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
HKCR\DealPlyLiveUpdate.Update3WebSvc.1.0 (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
HKCR\DealPlyLiveUpdate.Update3WebSvc (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
HKCR\CLSID\{FFCC53E6-2655-47FC-A89B-54E8D7F305D1} (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
HKCR\DealPlyLiveUpdate.Update3WebMachine.1.0 (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
HKCR\DealPlyLiveUpdate.Update3WebMachine (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{AF6B0594-6008-4327-93E5-608AD710A6FA} (PUP.Optional.WebCake.A) -> Nebyla provedena žádná instrukce.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{219046AE-358F-4CF1-B1FD-2B4DE83642A8} (PUP.Optional.MySearchDial.A) -> Nebyla provedena žádná instrukce.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Dealply (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\DealPly (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
HKCR\AppID\DealPlyLive.exe (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
HKCU\SOFTWARE\DealPlyLive (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
HKCU\SOFTWARE\DEALPLY (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
HKCU\Software\Conduit\FF (PUP.Optional.Conduit.A) -> Nebyla provedena žádná instrukce.
HKCU\SOFTWARE\INSTALLCORE (PUP.Optional.InstallCore.A) -> Nebyla provedena žádná instrukce.
HKCU\Software\InstalledBrowserExtensions\installdaddy (PUP.Optional.CrossRider.A) -> Nebyla provedena žádná instrukce.
HKCU\SOFTWARE\SWEETIM (PUP.Optional.SweetIM.A) -> Nebyla provedena žádná instrukce.
HKLM\SOFTWARE\DealPlyLive (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
HKLM\SOFTWARE\DEALPLY (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
HKLM\SOFTWARE\MozillaPlugins\@tools.dpliveupdate.com/DealPlyLive Update;version=3 (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
HKLM\SOFTWARE\MozillaPlugins\@tools.dpliveupdate.com/DealPlyLive Update;version=9 (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
HKLM\SYSTEM\CurrentControlSet\Services\dealplylivem (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
HKLM\SOFTWARE\SWEETIM (PUP.Optional.SweetIM.A) -> Nebyla provedena žádná instrukce.
Nalezené hodnoty v registru: 5
HKCU\SOFTWARE\DealPly|Partner (PUP.Optional.DealPly.A) -> Data: iron -> Nebyla provedena žádná instrukce.
HKCU\Software\InstallCore|tb (PUP.Optional.InstallCore.A) -> Data: 0F -> Nebyla provedena žádná instrukce.
HKCU\Software\SweetIM|simapp_id (PUP.Optional.SweetIM.A) -> Data: {2D3320A5-140A-11E3-BB11-001D7D08DB0F} -> Nebyla provedena žádná instrukce.
HKLM\SOFTWARE\DealPly|ChromeCrxPath (PUP.Optional.DealPly.A) -> Data: C:\Program Files\DealPly\DealPly.crx -> Nebyla provedena žádná instrukce.
HKLM\Software\SweetIM|simapp_id (PUP.Optional.SweetIM.A) -> Data: {2D3320A5-140A-11E3-BB11-001D7D08DB0F} -> Nebyla provedena žádná instrukce.
Nalezené datové položky v registru: 1
HKLM\SOFTWARE\Microsoft\Internet Explorer\Main|Start Page (PUP.Optional.MySearchDial.A) -> Špatný: (http://start.mysearchdial.com/?f=1&a=co ... 243925&ir=) Dobrý: (http://www.google.com) -> Nebyla provedena žádná instrukce.
Nalezené složky: 26
C:\Program Files\DealPly (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\Users\MM\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\DealPly (PUP.OPtional.Dealply.A) -> Nebyla provedena žádná instrukce.
C:\ProgramData\DealPlyLive (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\ProgramData\DealPlyLive\Update (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\ProgramData\DealPlyLive\Update\Log (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\Users\MM\AppData\Roaming\Dealply (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\Users\MM\AppData\Roaming\Dealply\UpdateProc (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\DealPlyLive (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\DealPlyLive\CrashReports (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\DealPlyLive\Update (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\DealPlyLive\Update\1.3.23.0 (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\DealPlyLive\Update\Download (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\DealPlyLive\Update\Install (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\DealPlyLive\Update\Offline (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\DealPlyLive\Update\Offline\{0BCD4BBA-5A85-40A2-86B2-26DA8B7A8664} (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\ProgramData\Tarma Installer (PUP.Optional.Tarma.A) -> Nebyla provedena žádná instrukce.
C:\ProgramData\Tarma Installer\{361E80BE-388B-4270-BF54-A10C2B756504} (PUP.Optional.Tarma.A) -> Nebyla provedena žádná instrukce.
C:\ProgramData\Tarma Installer\{361E80BE-388B-4270-BF54-A10C2B756504}\Cache (PUP.Optional.Tarma.A) -> Nebyla provedena žádná instrukce.
C:\Users\MM\AppData\Roaming\OpenCandy (PUP.Optional.OpenCandy) -> Nebyla provedena žádná instrukce.
C:\Users\MM\AppData\Roaming\OpenCandy\D86A6B65D0604EE18F21F85F68FC8F7B (PUP.Optional.OpenCandy) -> Nebyla provedena žádná instrukce.
C:\Users\MM\AppData\Roaming\OpenCandy\OpenCandy_D86A6B65D0604EE18F21F85F68FC8F7B (PUP.Optional.OpenCandy) -> Nebyla provedena žádná instrukce.
C:\Users\MM\AppData\Local\DealPlyLive (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\Users\MM\AppData\Local\DealPlyLive\CrashReports (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\Users\MM\AppData\Local\Google\Chrome\User Data\Default\Extensions\mphpbdjcljebbcnfopfngmfdackbbdgf (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\Users\MM\AppData\Local\Google\Chrome\User Data\Default\Extensions\mphpbdjcljebbcnfopfngmfdackbbdgf\3.5.0.0_0 (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\Users\MM\AppData\Local\Google\Chrome\User Data\Default\Extensions\mphpbdjcljebbcnfopfngmfdackbbdgf\3.5.0.0_0\images (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
Nalezené soubory: 99
C:\Program Files\DealPly\DealPlyIE.dll (PUP.DealPly) -> Nebyla provedena žádná instrukce.
C:\Program Files\DealPlyLive\Update\DealPlyLive.exe (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\DealPlyLive\Update\1.3.23.0\psmachine.dll (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\DealPlyLive\Update\1.3.23.0\npGoogleUpdate3.dll (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\Users\MM\AppData\Roaming\Dealply\UpdateProc\UpdateTask.exe (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\DealPly\DealPlyUpdateVer.exe (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\DealPlyLive\Update\1.3.23.0\DealPlyLive.exe (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\DealPlyLive\Update\1.3.23.0\DealPlyLiveBroker.exe (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\DealPlyLive\Update\1.3.23.0\DealPlyLiveHandler.exe (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\DealPlyLive\Update\1.3.23.0\DealPlyLiveOnDemand.exe (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\DealPlyLive\Update\1.3.23.0\goopdateres_bn.dll (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\DealPlyLive\Update\1.3.23.0\goopdateres_ca.dll (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\DealPlyLive\Update\1.3.23.0\goopdateres_cs.dll (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\DealPlyLive\Update\1.3.23.0\goopdateres_da.dll (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\DealPlyLive\Update\1.3.23.0\goopdateres_de.dll (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\DealPlyLive\Update\1.3.23.0\goopdateres_el.dll (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\DealPlyLive\Update\1.3.23.0\goopdateres_en-GB.dll (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\DealPlyLive\Update\1.3.23.0\goopdateres_en.dll (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\DealPlyLive\Update\1.3.23.0\goopdateres_es-419.dll (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\DealPlyLive\Update\1.3.23.0\goopdateres_es.dll (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\DealPlyLive\Update\1.3.23.0\goopdateres_et.dll (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\DealPlyLive\Update\1.3.23.0\goopdateres_fa.dll (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\DealPlyLive\Update\1.3.23.0\goopdateres_fi.dll (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\DealPlyLive\Update\1.3.23.0\goopdateres_fil.dll (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\DealPlyLive\Update\1.3.23.0\goopdateres_fr.dll (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\DealPlyLive\Update\1.3.23.0\goopdateres_gu.dll (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\DealPlyLive\Update\1.3.23.0\goopdateres_hr.dll (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\DealPlyLive\Update\1.3.23.0\goopdateres_hu.dll (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\DealPlyLive\Update\1.3.23.0\goopdateres_id.dll (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\DealPlyLive\Update\1.3.23.0\goopdateres_is.dll (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\DealPlyLive\Update\1.3.23.0\goopdateres_it.dll (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\DealPlyLive\Update\1.3.23.0\goopdateres_iw.dll (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\DealPlyLive\Update\1.3.23.0\goopdateres_ja.dll (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\DealPlyLive\Update\1.3.23.0\goopdateres_kn.dll (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\DealPlyLive\Update\1.3.23.0\goopdateres_ko.dll (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\DealPlyLive\Update\1.3.23.0\goopdateres_lt.dll (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\DealPlyLive\Update\1.3.23.0\goopdateres_lv.dll (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\DealPlyLive\Update\1.3.23.0\goopdateres_ml.dll (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\DealPlyLive\Update\1.3.23.0\goopdateres_mr.dll (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\DealPlyLive\Update\1.3.23.0\goopdateres_ms.dll (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\DealPlyLive\Update\1.3.23.0\goopdateres_nl.dll (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\DealPlyLive\Update\1.3.23.0\goopdateres_no.dll (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\DealPlyLive\Update\1.3.23.0\goopdate.dll (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\DealPlyLive\Update\1.3.23.0\goopdateres_am.dll (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\DealPlyLive\Update\1.3.23.0\goopdateres_ar.dll (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\DealPlyLive\Update\1.3.23.0\goopdateres_pt-BR.dll (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\DealPlyLive\Update\1.3.23.0\goopdateres_pt-PT.dll (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\DealPlyLive\Update\1.3.23.0\goopdateres_ro.dll (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\DealPlyLive\Update\1.3.23.0\goopdateres_ru.dll (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\DealPlyLive\Update\1.3.23.0\goopdateres_sk.dll (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\DealPlyLive\Update\1.3.23.0\goopdateres_sl.dll (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\DealPlyLive\Update\1.3.23.0\goopdateres_sr.dll (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\DealPlyLive\Update\1.3.23.0\goopdateres_sv.dll (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\DealPlyLive\Update\1.3.23.0\goopdateres_sw.dll (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\DealPlyLive\Update\1.3.23.0\goopdateres_ta.dll (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\DealPlyLive\Update\1.3.23.0\goopdateres_te.dll (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\DealPlyLive\Update\1.3.23.0\goopdateres_th.dll (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\DealPlyLive\Update\1.3.23.0\goopdateres_tr.dll (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\DealPlyLive\Update\1.3.23.0\goopdateres_uk.dll (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\DealPlyLive\Update\1.3.23.0\goopdateres_ur.dll (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\DealPlyLive\Update\1.3.23.0\goopdateres_vi.dll (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\DealPlyLive\Update\1.3.23.0\goopdateres_zh-CN.dll (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\DealPlyLive\Update\1.3.23.0\goopdateres_zh-TW.dll (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\DealPlyLive\Update\1.3.23.0\psuser.dll (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\DealPlyLive\Update\1.3.23.0\goopdateres_bg.dll (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\DealPlyLive\Update\1.3.23.0\goopdateres_hi.dll (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\DealPlyLive\Update\1.3.23.0\goopdateres_pl.dll (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\ProgramData\Tarma Installer\{361E80BE-388B-4270-BF54-A10C2B756504}\Setup.exe (PUP.Optional.Tarma.A) -> Nebyla provedena žádná instrukce.
D:\DATA_07 Instalace\yosetup.exe (PUP.Optional.OpenCandy) -> Nebyla provedena žádná instrukce.
D:\DATA_07 Instalace\yo_pocasi na plochu_setup.exe (PUP.Optional.OpenCandy) -> Nebyla provedena žádná instrukce.
D:\DATA_07 Instalace\Audio_instal\Winamp_instal\winamp5601_full_emusic-7plus_all.exe (PUP.Optional.OpenCandy) -> Nebyla provedena žádná instrukce.
D:\DATA_07 Instalace\Audio_instal\Winamp_instal\winamp5621_full_emusic-7plus_all.exe (PUP.Optional.OpenCandy) -> Nebyla provedena žádná instrukce.
D:\DATA_07 Instalace\Audio_instal\Winamp_instal\winamp5623_full_emusic-7plus_all.exe (PUP.Optional.OpenCandy) -> Nebyla provedena žádná instrukce.
D:\DATA_07 Instalace\Foto, Exif_instal\PPK složka (digi foto)\novinky\winamp\winamp562_full_emusic-7plus_all.exe (PUP.Optional.OpenCandy) -> Nebyla provedena žádná instrukce.
D:\DATA_07 Instalace\YoWindow\yo_pocasi na plochu_setup.exe (PUP.Optional.OpenCandy) -> Nebyla provedena žádná instrukce.
C:\Program Files\DealPly\DealPly.crx (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\DealPly\DealPly.xpi (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\DealPly\DealPlyIE64.dll (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\DealPly\icon.ico (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\DealPly\uninst.exe (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\Users\MM\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\DealPly\Uninstall DealPly.lnk (PUP.OPtional.Dealply.A) -> Nebyla provedena žádná instrukce.
C:\Users\MM\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\DealPly\DealPly Help.url (PUP.OPtional.Dealply.A) -> Nebyla provedena žádná instrukce.
C:\Users\MM\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\DealPly\DealPly.url (PUP.OPtional.Dealply.A) -> Nebyla provedena žádná instrukce.
C:\Windows\Tasks\DealPlyLiveUpdateTaskMachineCore.job (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\Windows\Tasks\DealPlyLiveUpdateTaskMachineUA.job (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\ProgramData\DealPlyLive\Update\Log\DealPlyLive.log (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\Users\MM\AppData\Roaming\Dealply\UpdateProc\config.dat (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\Users\MM\AppData\Roaming\Dealply\UpdateProc\TTL.DAT (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\DealPlyLive\Update\1.3.23.0\DealPlyLiveHelper.msi (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\ProgramData\Tarma Installer\{361E80BE-388B-4270-BF54-A10C2B756504}\Setup.dat (PUP.Optional.Tarma.A) -> Nebyla provedena žádná instrukce.
C:\ProgramData\Tarma Installer\{361E80BE-388B-4270-BF54-A10C2B756504}\Setup.ico (PUP.Optional.Tarma.A) -> Nebyla provedena žádná instrukce.
C:\ProgramData\Tarma Installer\{361E80BE-388B-4270-BF54-A10C2B756504}\_Setup.dll (PUP.Optional.Tarma.A) -> Nebyla provedena žádná instrukce.
C:\ProgramData\Tarma Installer\{361E80BE-388B-4270-BF54-A10C2B756504}\_Setupx.dll (PUP.Optional.Tarma.A) -> Nebyla provedena žádná instrukce.
C:\Users\MM\AppData\Roaming\OpenCandy\D86A6B65D0604EE18F21F85F68FC8F7B\version51030bc4470a0.exe (PUP.Optional.OpenCandy) -> Nebyla provedena žádná instrukce.
C:\Users\MM\AppData\Local\Google\Chrome\User Data\Default\Extensions\mphpbdjcljebbcnfopfngmfdackbbdgf\3.5.0.0_0\background.js (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\Users\MM\AppData\Local\Google\Chrome\User Data\Default\Extensions\mphpbdjcljebbcnfopfngmfdackbbdgf\3.5.0.0_0\manifest.json (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\Users\MM\AppData\Local\Google\Chrome\User Data\Default\Extensions\mphpbdjcljebbcnfopfngmfdackbbdgf\3.5.0.0_0\images\icon128.png (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\Users\MM\AppData\Local\Google\Chrome\User Data\Default\Extensions\mphpbdjcljebbcnfopfngmfdackbbdgf\3.5.0.0_0\images\icon16.png (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\Users\MM\AppData\Local\Google\Chrome\User Data\Default\Extensions\mphpbdjcljebbcnfopfngmfdackbbdgf\3.5.0.0_0\images\icon48.png (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
(konec)
www.malwarebytes.org
Verze: v2013.10.26.08
Windows 7 Service Pack 1 x86 NTFS
Internet Explorer 10.0.9200.16721
MM :: MM-PC [administrátor]
Ochrana: Povolena
26.10.2013 21:36:39
MBAM-log-2013-10-27 (05-34-53).txt
Typ: Kompletní kontrola (C:\|D:\|)
Nastavení kontroly povoleno: Paměť | Po spuštění | Registr | Systémové soubory | Heuristická analýza Extra | Heuristická analýza Shuriken | PUP | PUM
Nastavení kontroly zakázáno: P2P
Kontrolované objekty: 640121
Uplynulý čas: 2 hodin, 9 minut, 23 sekund
Nalezené procesy v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené moduly v paměti: 1
C:\Program Files\DealPly\DealPlyIE.dll (PUP.DealPly) -> Nebyla provedena žádná instrukce.
Nalezené klíče v registru: 77
HKCR\CLSID\{ae48ed75-5a56-4c5f-bbce-6f1ac3875f66} (PUP.DealPly) -> Nebyla provedena žádná instrukce.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE48ED75-5A56-4C5F-BBCE-6F1AC3875F66} (PUP.DealPly) -> Nebyla provedena žádná instrukce.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{AE48ED75-5A56-4C5F-BBCE-6F1AC3875F66} (PUP.DealPly) -> Nebyla provedena žádná instrukce.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{AE48ED75-5A56-4C5F-BBCE-6F1AC3875F66} (PUP.DealPly) -> Nebyla provedena žádná instrukce.
HKLM\SYSTEM\CurrentControlSet\Services\dealplylive (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\DEALPLYLIVE.EXE (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
HKCR\AppID\{80FABB17-63AF-4655-9F07-B6509EE37AF2} (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
HKCR\CLSID\{80FABB17-63AF-4655-9F07-B6509EE37AF2} (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
HKCR\DealPlyLiveUpdate.OnDemandCOMClassSvc.1.0 (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
HKCR\DealPlyLiveUpdate.OnDemandCOMClassSvc (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
HKCR\AppID\{CA5CAA63-B27C-4963-9BEC-CB16A36D56F8} (PUP.Optional.MySearchDial.A) -> Nebyla provedena žádná instrukce.
HKCR\AppID\{F48FC5B2-094A-44C7-B48C-289738C9582D} (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
HKCR\CLSID\{F48FC5B2-094A-44C7-B48C-289738C9582D} (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
HKCR\DealPlyLiveUpdate.Update3COMClassService.1.0 (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
HKCR\DealPlyLiveUpdate.Update3COMClassService (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
HKCR\CLSID\{1E0C9B2A-6447-452C-B012-2314A0C29412} (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
HKCR\DealPlyLiveUpdate.OnDemandCOMClassMachineFallback.1.0 (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
HKCR\DealPlyLiveUpdate.OnDemandCOMClassMachineFallback (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
HKCR\CLSID\{34A8CEB6-89BB-49F1-B5E4-0D0D6C21F3B1} (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
HKCR\DealPlyLiveUpdate.CredentialDialogMachine.1.0 (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
HKCR\DealPlyLiveUpdate.CredentialDialogMachine (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
HKCR\CLSID\{3A4DBD3A-98CC-41CE-AD21-352D42B6F754} (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
HKCR\DealPlyLiveUpdate.CoCreateAsync.1.0 (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
HKCR\DealPlyLiveUpdate.CoCreateAsync (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
HKCR\CLSID\{4F8A50F6-69DE-4BE3-A33A-A1079B9AC0DB} (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
HKCR\DealPlyLiveUpdate.Update3WebMachineFallback.1.0 (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
HKCR\DealPlyLiveUpdate.Update3WebMachineFallback (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
HKCR\CLSID\{501CB57A-D4E2-4855-96AD-EDB0A9083395} (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
HKCR\DealPlyLiveUpdate.CoreMachineClass.1 (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
HKCR\DealPlyLiveUpdate.CoreMachineClass (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
HKCR\CLSID\{6FF2C4DD-77A4-4BB5-BA4C-B42DEFBF9137} (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
HKCR\DealPlyLiveUpdate.ProcessLauncher.1.0 (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
HKCR\DealPlyLiveUpdate.ProcessLauncher (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
HKCR\CLSID\{83ABA270-8390-4CA6-AE48-FC089F55629E} (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
HKCR\DealPlyLiveUpdate.OnDemandCOMClassMachine.1.0 (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
HKCR\DealPlyLiveUpdate.OnDemandCOMClassMachine (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
HKCR\CLSID\{8B218A5F-1A3D-4347-94EF-A79575EB8094} (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
HKCR\CLSID\{0D89DE71-3D99-4288-84DC-F18F1047A7D8} (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
HKCR\CLSID\{8C338DDB-19FC-4C1F-B74D-6931EE55F7A1} (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
HKCR\CLSID\{7F1796B2-BEC6-427B-B734-F9C75ED94A80} (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
HKCR\DealPlyLive.OneClickCtrl.9 (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{7F1796B2-BEC6-427B-B734-F9C75ED94A80} (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{7F1796B2-BEC6-427B-B734-F9C75ED94A80} (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
HKCR\DealPlyLive.Update3WebControl.3 (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{8C338DDB-19FC-4C1F-B74D-6931EE55F7A1} (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{8C338DDB-19FC-4C1F-B74D-6931EE55F7A1} (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
HKCR\CLSID\{9BDB5E09-4BBA-4422-8C2B-529B281C32B8} (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
HKCR\CLSID\{C536F080-57B7-46D6-8894-C647553F2889} (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
HKCR\DealPlyLive.OneClickProcessLauncherMachine.1.0 (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
HKCR\DealPlyLive.OneClickProcessLauncherMachine (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C536F080-57B7-46D6-8894-C647553F2889} (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
HKCR\CLSID\{CA5D945F-E738-4D0B-A0B5-25AC51C64659} (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
HKCR\DealPlyLiveUpdate.CoreClass.1 (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
HKCR\DealPlyLiveUpdate.CoreClass (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
HKCR\CLSID\{F7698761-4ABA-45C2-A5BB-D2163922C725} (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
HKCR\DealPlyLiveUpdate.Update3WebSvc.1.0 (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
HKCR\DealPlyLiveUpdate.Update3WebSvc (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
HKCR\CLSID\{FFCC53E6-2655-47FC-A89B-54E8D7F305D1} (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
HKCR\DealPlyLiveUpdate.Update3WebMachine.1.0 (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
HKCR\DealPlyLiveUpdate.Update3WebMachine (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{AF6B0594-6008-4327-93E5-608AD710A6FA} (PUP.Optional.WebCake.A) -> Nebyla provedena žádná instrukce.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{219046AE-358F-4CF1-B1FD-2B4DE83642A8} (PUP.Optional.MySearchDial.A) -> Nebyla provedena žádná instrukce.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Dealply (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\DealPly (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
HKCR\AppID\DealPlyLive.exe (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
HKCU\SOFTWARE\DealPlyLive (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
HKCU\SOFTWARE\DEALPLY (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
HKCU\Software\Conduit\FF (PUP.Optional.Conduit.A) -> Nebyla provedena žádná instrukce.
HKCU\SOFTWARE\INSTALLCORE (PUP.Optional.InstallCore.A) -> Nebyla provedena žádná instrukce.
HKCU\Software\InstalledBrowserExtensions\installdaddy (PUP.Optional.CrossRider.A) -> Nebyla provedena žádná instrukce.
HKCU\SOFTWARE\SWEETIM (PUP.Optional.SweetIM.A) -> Nebyla provedena žádná instrukce.
HKLM\SOFTWARE\DealPlyLive (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
HKLM\SOFTWARE\DEALPLY (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
HKLM\SOFTWARE\MozillaPlugins\@tools.dpliveupdate.com/DealPlyLive Update;version=3 (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
HKLM\SOFTWARE\MozillaPlugins\@tools.dpliveupdate.com/DealPlyLive Update;version=9 (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
HKLM\SYSTEM\CurrentControlSet\Services\dealplylivem (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
HKLM\SOFTWARE\SWEETIM (PUP.Optional.SweetIM.A) -> Nebyla provedena žádná instrukce.
Nalezené hodnoty v registru: 5
HKCU\SOFTWARE\DealPly|Partner (PUP.Optional.DealPly.A) -> Data: iron -> Nebyla provedena žádná instrukce.
HKCU\Software\InstallCore|tb (PUP.Optional.InstallCore.A) -> Data: 0F -> Nebyla provedena žádná instrukce.
HKCU\Software\SweetIM|simapp_id (PUP.Optional.SweetIM.A) -> Data: {2D3320A5-140A-11E3-BB11-001D7D08DB0F} -> Nebyla provedena žádná instrukce.
HKLM\SOFTWARE\DealPly|ChromeCrxPath (PUP.Optional.DealPly.A) -> Data: C:\Program Files\DealPly\DealPly.crx -> Nebyla provedena žádná instrukce.
HKLM\Software\SweetIM|simapp_id (PUP.Optional.SweetIM.A) -> Data: {2D3320A5-140A-11E3-BB11-001D7D08DB0F} -> Nebyla provedena žádná instrukce.
Nalezené datové položky v registru: 1
HKLM\SOFTWARE\Microsoft\Internet Explorer\Main|Start Page (PUP.Optional.MySearchDial.A) -> Špatný: (http://start.mysearchdial.com/?f=1&a=co ... 243925&ir=) Dobrý: (http://www.google.com) -> Nebyla provedena žádná instrukce.
Nalezené složky: 26
C:\Program Files\DealPly (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\Users\MM\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\DealPly (PUP.OPtional.Dealply.A) -> Nebyla provedena žádná instrukce.
C:\ProgramData\DealPlyLive (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\ProgramData\DealPlyLive\Update (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\ProgramData\DealPlyLive\Update\Log (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\Users\MM\AppData\Roaming\Dealply (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\Users\MM\AppData\Roaming\Dealply\UpdateProc (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\DealPlyLive (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\DealPlyLive\CrashReports (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\DealPlyLive\Update (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\DealPlyLive\Update\1.3.23.0 (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\DealPlyLive\Update\Download (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\DealPlyLive\Update\Install (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\DealPlyLive\Update\Offline (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\DealPlyLive\Update\Offline\{0BCD4BBA-5A85-40A2-86B2-26DA8B7A8664} (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\ProgramData\Tarma Installer (PUP.Optional.Tarma.A) -> Nebyla provedena žádná instrukce.
C:\ProgramData\Tarma Installer\{361E80BE-388B-4270-BF54-A10C2B756504} (PUP.Optional.Tarma.A) -> Nebyla provedena žádná instrukce.
C:\ProgramData\Tarma Installer\{361E80BE-388B-4270-BF54-A10C2B756504}\Cache (PUP.Optional.Tarma.A) -> Nebyla provedena žádná instrukce.
C:\Users\MM\AppData\Roaming\OpenCandy (PUP.Optional.OpenCandy) -> Nebyla provedena žádná instrukce.
C:\Users\MM\AppData\Roaming\OpenCandy\D86A6B65D0604EE18F21F85F68FC8F7B (PUP.Optional.OpenCandy) -> Nebyla provedena žádná instrukce.
C:\Users\MM\AppData\Roaming\OpenCandy\OpenCandy_D86A6B65D0604EE18F21F85F68FC8F7B (PUP.Optional.OpenCandy) -> Nebyla provedena žádná instrukce.
C:\Users\MM\AppData\Local\DealPlyLive (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\Users\MM\AppData\Local\DealPlyLive\CrashReports (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\Users\MM\AppData\Local\Google\Chrome\User Data\Default\Extensions\mphpbdjcljebbcnfopfngmfdackbbdgf (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\Users\MM\AppData\Local\Google\Chrome\User Data\Default\Extensions\mphpbdjcljebbcnfopfngmfdackbbdgf\3.5.0.0_0 (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\Users\MM\AppData\Local\Google\Chrome\User Data\Default\Extensions\mphpbdjcljebbcnfopfngmfdackbbdgf\3.5.0.0_0\images (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
Nalezené soubory: 99
C:\Program Files\DealPly\DealPlyIE.dll (PUP.DealPly) -> Nebyla provedena žádná instrukce.
C:\Program Files\DealPlyLive\Update\DealPlyLive.exe (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\DealPlyLive\Update\1.3.23.0\psmachine.dll (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\DealPlyLive\Update\1.3.23.0\npGoogleUpdate3.dll (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\Users\MM\AppData\Roaming\Dealply\UpdateProc\UpdateTask.exe (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\DealPly\DealPlyUpdateVer.exe (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\DealPlyLive\Update\1.3.23.0\DealPlyLive.exe (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\DealPlyLive\Update\1.3.23.0\DealPlyLiveBroker.exe (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\DealPlyLive\Update\1.3.23.0\DealPlyLiveHandler.exe (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\DealPlyLive\Update\1.3.23.0\DealPlyLiveOnDemand.exe (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\DealPlyLive\Update\1.3.23.0\goopdateres_bn.dll (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\DealPlyLive\Update\1.3.23.0\goopdateres_ca.dll (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\DealPlyLive\Update\1.3.23.0\goopdateres_cs.dll (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\DealPlyLive\Update\1.3.23.0\goopdateres_da.dll (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\DealPlyLive\Update\1.3.23.0\goopdateres_de.dll (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\DealPlyLive\Update\1.3.23.0\goopdateres_el.dll (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\DealPlyLive\Update\1.3.23.0\goopdateres_en-GB.dll (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\DealPlyLive\Update\1.3.23.0\goopdateres_en.dll (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\DealPlyLive\Update\1.3.23.0\goopdateres_es-419.dll (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\DealPlyLive\Update\1.3.23.0\goopdateres_es.dll (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\DealPlyLive\Update\1.3.23.0\goopdateres_et.dll (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\DealPlyLive\Update\1.3.23.0\goopdateres_fa.dll (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\DealPlyLive\Update\1.3.23.0\goopdateres_fi.dll (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\DealPlyLive\Update\1.3.23.0\goopdateres_fil.dll (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\DealPlyLive\Update\1.3.23.0\goopdateres_fr.dll (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\DealPlyLive\Update\1.3.23.0\goopdateres_gu.dll (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\DealPlyLive\Update\1.3.23.0\goopdateres_hr.dll (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\DealPlyLive\Update\1.3.23.0\goopdateres_hu.dll (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\DealPlyLive\Update\1.3.23.0\goopdateres_id.dll (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\DealPlyLive\Update\1.3.23.0\goopdateres_is.dll (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\DealPlyLive\Update\1.3.23.0\goopdateres_it.dll (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\DealPlyLive\Update\1.3.23.0\goopdateres_iw.dll (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\DealPlyLive\Update\1.3.23.0\goopdateres_ja.dll (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\DealPlyLive\Update\1.3.23.0\goopdateres_kn.dll (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\DealPlyLive\Update\1.3.23.0\goopdateres_ko.dll (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\DealPlyLive\Update\1.3.23.0\goopdateres_lt.dll (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\DealPlyLive\Update\1.3.23.0\goopdateres_lv.dll (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\DealPlyLive\Update\1.3.23.0\goopdateres_ml.dll (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\DealPlyLive\Update\1.3.23.0\goopdateres_mr.dll (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\DealPlyLive\Update\1.3.23.0\goopdateres_ms.dll (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\DealPlyLive\Update\1.3.23.0\goopdateres_nl.dll (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\DealPlyLive\Update\1.3.23.0\goopdateres_no.dll (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\DealPlyLive\Update\1.3.23.0\goopdate.dll (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\DealPlyLive\Update\1.3.23.0\goopdateres_am.dll (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\DealPlyLive\Update\1.3.23.0\goopdateres_ar.dll (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\DealPlyLive\Update\1.3.23.0\goopdateres_pt-BR.dll (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\DealPlyLive\Update\1.3.23.0\goopdateres_pt-PT.dll (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\DealPlyLive\Update\1.3.23.0\goopdateres_ro.dll (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\DealPlyLive\Update\1.3.23.0\goopdateres_ru.dll (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\DealPlyLive\Update\1.3.23.0\goopdateres_sk.dll (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\DealPlyLive\Update\1.3.23.0\goopdateres_sl.dll (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\DealPlyLive\Update\1.3.23.0\goopdateres_sr.dll (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\DealPlyLive\Update\1.3.23.0\goopdateres_sv.dll (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\DealPlyLive\Update\1.3.23.0\goopdateres_sw.dll (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\DealPlyLive\Update\1.3.23.0\goopdateres_ta.dll (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\DealPlyLive\Update\1.3.23.0\goopdateres_te.dll (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\DealPlyLive\Update\1.3.23.0\goopdateres_th.dll (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\DealPlyLive\Update\1.3.23.0\goopdateres_tr.dll (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\DealPlyLive\Update\1.3.23.0\goopdateres_uk.dll (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\DealPlyLive\Update\1.3.23.0\goopdateres_ur.dll (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\DealPlyLive\Update\1.3.23.0\goopdateres_vi.dll (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\DealPlyLive\Update\1.3.23.0\goopdateres_zh-CN.dll (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\DealPlyLive\Update\1.3.23.0\goopdateres_zh-TW.dll (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\DealPlyLive\Update\1.3.23.0\psuser.dll (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\DealPlyLive\Update\1.3.23.0\goopdateres_bg.dll (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\DealPlyLive\Update\1.3.23.0\goopdateres_hi.dll (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\DealPlyLive\Update\1.3.23.0\goopdateres_pl.dll (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\ProgramData\Tarma Installer\{361E80BE-388B-4270-BF54-A10C2B756504}\Setup.exe (PUP.Optional.Tarma.A) -> Nebyla provedena žádná instrukce.
D:\DATA_07 Instalace\yosetup.exe (PUP.Optional.OpenCandy) -> Nebyla provedena žádná instrukce.
D:\DATA_07 Instalace\yo_pocasi na plochu_setup.exe (PUP.Optional.OpenCandy) -> Nebyla provedena žádná instrukce.
D:\DATA_07 Instalace\Audio_instal\Winamp_instal\winamp5601_full_emusic-7plus_all.exe (PUP.Optional.OpenCandy) -> Nebyla provedena žádná instrukce.
D:\DATA_07 Instalace\Audio_instal\Winamp_instal\winamp5621_full_emusic-7plus_all.exe (PUP.Optional.OpenCandy) -> Nebyla provedena žádná instrukce.
D:\DATA_07 Instalace\Audio_instal\Winamp_instal\winamp5623_full_emusic-7plus_all.exe (PUP.Optional.OpenCandy) -> Nebyla provedena žádná instrukce.
D:\DATA_07 Instalace\Foto, Exif_instal\PPK složka (digi foto)\novinky\winamp\winamp562_full_emusic-7plus_all.exe (PUP.Optional.OpenCandy) -> Nebyla provedena žádná instrukce.
D:\DATA_07 Instalace\YoWindow\yo_pocasi na plochu_setup.exe (PUP.Optional.OpenCandy) -> Nebyla provedena žádná instrukce.
C:\Program Files\DealPly\DealPly.crx (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\DealPly\DealPly.xpi (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\DealPly\DealPlyIE64.dll (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\DealPly\icon.ico (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\DealPly\uninst.exe (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\Users\MM\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\DealPly\Uninstall DealPly.lnk (PUP.OPtional.Dealply.A) -> Nebyla provedena žádná instrukce.
C:\Users\MM\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\DealPly\DealPly Help.url (PUP.OPtional.Dealply.A) -> Nebyla provedena žádná instrukce.
C:\Users\MM\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\DealPly\DealPly.url (PUP.OPtional.Dealply.A) -> Nebyla provedena žádná instrukce.
C:\Windows\Tasks\DealPlyLiveUpdateTaskMachineCore.job (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\Windows\Tasks\DealPlyLiveUpdateTaskMachineUA.job (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\ProgramData\DealPlyLive\Update\Log\DealPlyLive.log (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\Users\MM\AppData\Roaming\Dealply\UpdateProc\config.dat (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\Users\MM\AppData\Roaming\Dealply\UpdateProc\TTL.DAT (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\DealPlyLive\Update\1.3.23.0\DealPlyLiveHelper.msi (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\ProgramData\Tarma Installer\{361E80BE-388B-4270-BF54-A10C2B756504}\Setup.dat (PUP.Optional.Tarma.A) -> Nebyla provedena žádná instrukce.
C:\ProgramData\Tarma Installer\{361E80BE-388B-4270-BF54-A10C2B756504}\Setup.ico (PUP.Optional.Tarma.A) -> Nebyla provedena žádná instrukce.
C:\ProgramData\Tarma Installer\{361E80BE-388B-4270-BF54-A10C2B756504}\_Setup.dll (PUP.Optional.Tarma.A) -> Nebyla provedena žádná instrukce.
C:\ProgramData\Tarma Installer\{361E80BE-388B-4270-BF54-A10C2B756504}\_Setupx.dll (PUP.Optional.Tarma.A) -> Nebyla provedena žádná instrukce.
C:\Users\MM\AppData\Roaming\OpenCandy\D86A6B65D0604EE18F21F85F68FC8F7B\version51030bc4470a0.exe (PUP.Optional.OpenCandy) -> Nebyla provedena žádná instrukce.
C:\Users\MM\AppData\Local\Google\Chrome\User Data\Default\Extensions\mphpbdjcljebbcnfopfngmfdackbbdgf\3.5.0.0_0\background.js (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\Users\MM\AppData\Local\Google\Chrome\User Data\Default\Extensions\mphpbdjcljebbcnfopfngmfdackbbdgf\3.5.0.0_0\manifest.json (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\Users\MM\AppData\Local\Google\Chrome\User Data\Default\Extensions\mphpbdjcljebbcnfopfngmfdackbbdgf\3.5.0.0_0\images\icon128.png (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\Users\MM\AppData\Local\Google\Chrome\User Data\Default\Extensions\mphpbdjcljebbcnfopfngmfdackbbdgf\3.5.0.0_0\images\icon16.png (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
C:\Users\MM\AppData\Local\Google\Chrome\User Data\Default\Extensions\mphpbdjcljebbcnfopfngmfdackbbdgf\3.5.0.0_0\images\icon48.png (PUP.Optional.DealPly.A) -> Nebyla provedena žádná instrukce.
(konec)
Re: Prosím o preventivní kontrolu
Nejak nevidim odpoved na svou otazku Ani me to neprekvapuje, asi tusim proc 
Ani me to neprekvapuje, asi tusim proc Pokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Re: Prosím o preventivní kontrolu
Opomněl jsem -W7 Ultimate jsou v pořádku
Re: Prosím o preventivní kontrolu
Faaakt? No ve firme bych to pochopil, ale na co doma mit Ultimate.....
Nalezy nechte odstranit. Po restartu test zopakujte a dejte vedet, jestli neco nasel. Podle vysledku budeme pokracovat.
Nalezy nechte odstranit. Po restartu test zopakujte a dejte vedet, jestli neco nasel. Podle vysledku budeme pokracovat.
Pokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Re: Prosím o preventivní kontrolu
Malwarebytes Anti-Malware (Zkušební verze Malwarebytes Anti-Malware.) 1.75.0.1300
www.malwarebytes.org
Verze: v2013.10.26.08
Windows 7 Service Pack 1 x86 NTFS
Internet Explorer 10.0.9200.16721
MM :: MM-PC [administrátor]
Ochrana: Povolena
27.10.2013 10:38:17
mbam-log-2013-10-27 (10-38-17).txt
Typ: Kompletní kontrola (C:\|D:\|)
Nastavení kontroly povoleno: Paměť | Po spuštění | Registr | Systémové soubory | Heuristická analýza Extra | Heuristická analýza Shuriken | PUP | PUM
Nastavení kontroly zakázáno: P2P
Kontrolované objekty: 642126
Uplynulý čas: 2 hodin, 14 minut, 52 sekund
Nalezené procesy v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené moduly v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené klíče v registru: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené hodnoty v registru: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené datové položky v registru: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené složky: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené soubory: 0
(Žádné škodlivé položky nebyly zjištěny)
(konec)
www.malwarebytes.org
Verze: v2013.10.26.08
Windows 7 Service Pack 1 x86 NTFS
Internet Explorer 10.0.9200.16721
MM :: MM-PC [administrátor]
Ochrana: Povolena
27.10.2013 10:38:17
mbam-log-2013-10-27 (10-38-17).txt
Typ: Kompletní kontrola (C:\|D:\|)
Nastavení kontroly povoleno: Paměť | Po spuštění | Registr | Systémové soubory | Heuristická analýza Extra | Heuristická analýza Shuriken | PUP | PUM
Nastavení kontroly zakázáno: P2P
Kontrolované objekty: 642126
Uplynulý čas: 2 hodin, 14 minut, 52 sekund
Nalezené procesy v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené moduly v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené klíče v registru: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené hodnoty v registru: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené datové položky v registru: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené složky: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené soubory: 0
(Žádné škodlivé položky nebyly zjištěny)
(konec)
Re: Prosím o preventivní kontrolu
MBAM odinstalujte. Stahnete AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner a ulozte ho na plochu.Ukoncete vsechny programy, jinak to AdwCleaner udela za vas.
Kliknete na nej pravym mysidlem a levym na Spustit jako spravce.
Kliknete na Scan a program zacne pracovat.
Az skonci, vyplivne na vas log (pokud ne, najdete ho zde C:\AdwCleaner\AdwCleaner[R?].txt ), ten mi sem zkopirujte.
Pokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Re: Prosím o preventivní kontrolu
# AdwCleaner v3.010 - Report created 27/10/2013 at 18:08:46
# Updated 20/10/2013 by Xplode
# Operating System : Windows 7 Ultimate Service Pack 1 (32 bits)
# Username : MM - MM-PC
# Running from : C:\Users\MM\Desktop\adwcleaner.exe
# Option : Scan
***** [ Services ] *****
***** [ Files / Folders ] *****
File Found : C:\Users\MM\AppData\Roaming\Mozilla\Firefox\Profiles\cdxqgtr4.default\Extensions\ftdownloader4@ftdownloader.com.xpi
File Found : C:\Users\MM\AppData\Roaming\Mozilla\Firefox\Profiles\cdxqgtr4.default\searchplugins\Conduit.xml
File Found : C:\Users\MM\AppData\Roaming\Mozilla\Firefox\Profiles\cdxqgtr4.default\searchplugins\Mysearchdial.xml
File Found : C:\Users\MM\AppData\Roaming\Mozilla\Firefox\Profiles\cdxqgtr4.default\user.js
File Found : C:\Windows\System32\Tasks\Dealply
File Found : C:\Windows\System32\Tasks\GoforFilesUpdate
File Found : C:\Windows\Tasks\Dealply.job
Folder Found : C:\Users\MM\AppData\Local\Google\Chrome\User Data\Default\Extensions\edflbdjfhpiboilnedfoiepbmcllkedb
Folder Found : C:\Users\MM\AppData\Roaming\Mozilla\Firefox\Profiles\cdxqgtr4.default\Extensions\{d4f1c433-f9c3-49f2-8645-37dbeca19e90}
Folder Found C:\Program Files\Conduit
Folder Found C:\Program Files\SimilarSites
Folder Found C:\ProgramData\apn
Folder Found C:\Users\MM\AppData\Local\Conduit
Folder Found C:\Users\MM\AppData\Local\PutLockerDownloader
Folder Found C:\Users\MM\AppData\LocalLow\Conduit
Folder Found C:\Users\MM\AppData\LocalLow\Mysearchdial
Folder Found C:\Users\MM\AppData\Roaming\goforfiles
Folder Found C:\Users\MM\AppData\Roaming\Mozilla\Firefox\Profiles\cdxqgtr4.default\CT3078318
Folder Found C:\Users\MM\AppData\Roaming\SimilarSites
***** [ Shortcuts ] *****
***** [ Registry ] *****
Key Found : HKCU\Software\AppDataLow\Software\Conduit
Key Found : HKCU\Software\AppDataLow\Software\ConduitSearchScopes
Key Found : HKCU\Software\AppDataLow\Software\Crossrider
Key Found : HKCU\Software\AppDataLow\Software\smartbar
Key Found : HKCU\Software\Conduit
Key Found : HKCU\Software\installedbrowserextensions
Key Found : HKCU\Software\mysearchdial
Key Found : HKCU\Software\Softonic
Key Found : HKCU\Software\UpdateStar
Key Found : HKLM\SOFTWARE\Classes\AppID\esrv.EXE
Key Found : HKLM\SOFTWARE\Classes\CLSID\{00000001-4FEF-40D3-B3FA-E0531B897F98}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{64697678-0000-0010-8000-00AA00389B71}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{DE9028D0-5FFA-4E69-94E3-89EE8741F468}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{FB684D26-01F4-4D9D-87CB-F486BEBA56DC}
Key Found : HKLM\SOFTWARE\Classes\esrv.mysearchdialESrvc
Key Found : HKLM\SOFTWARE\Classes\esrv.mysearchdialESrvc.1
Key Found : HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Key Found : HKLM\SOFTWARE\Classes\Interface\{813A22E0-3E2B-4188-9BDA-ECA9878B8D48}
Key Found : HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Key Found : HKLM\SOFTWARE\Classes\Interface\{BCFF5F55-6F44-11D2-86F8-00104B265ED5}
Key Found : HKLM\SOFTWARE\Classes\Toolbar.CT3078318
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{9C049BA6-EA47-4AC3-AED6-A66D8DC9E1D8}
Key Found : HKLM\Software\Conduit
Key Found : HKLM\SOFTWARE\Google\Chrome\Extensions\bicnnkjibmphdeigoodpjlcklcnaobdj
Key Found : HKLM\SOFTWARE\Google\Chrome\Extensions\edflbdjfhpiboilnedfoiepbmcllkedb
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\FTDownloader_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\FTDownloader_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\WebCakeDesktop_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\WebCakeDesktop_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\Dealply
Key Found : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\GoforFilesUpdate
Key Found : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\Dealply
Key Found : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\GoforFilesUpdate
Key Found : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Dealply
Key Found : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoforFilesUpdate
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\464AA55239C100F32AF2D438EDDC0F47
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\5652BA3D5FB98AE31B337BF0AF939856
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\86EB95E1AFCBABE3DB9ECCC669B99494
Key Found : HKLM\Software\mysearchdial
Key Found : HKLM\Software\Tarma Installer
***** [ Browsers ] *****
-\\ Internet Explorer v10.0.9200.16720
Setting Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURls [Tabs] - hxxp://start.mysearchdial.com/?f=2&a=coolmsd&cd=2XzuyEtN2Y1L1QzutDtDtC0DyB0DtDzz0D0BtD0FtB0AtB0AtN0D0Tzu0CyDtCzytN1L2XzutBtFtBtFtCtFyDyByEtN1L1Czu1R1F1F1I1H1B1Q&cr=875243925&ir=
-\\ Mozilla Firefox v21.0 (cs)
[ File : C:\Users\MM\AppData\Roaming\Mozilla\Firefox\Profiles\cdxqgtr4.default\prefs.js ]
Line Found : user_pref("CT3078318.FF19Solved", "true");
Line Found : user_pref("CT3078318.UserID", "UN11759097091214527");
Line Found : user_pref("CT3078318.browser.search.defaultthis.engineName", "true");
Line Found : user_pref("CT3078318.fullUserID", "UN11759097091214527.IN.2013063000820");
Line Found : user_pref("CT3078318.installDate", "30/06/2013 0:08:20");
Line Found : user_pref("CT3078318.installSessionId", "-1");
Line Found : user_pref("CT3078318.installSp", "TRUE");
Line Found : user_pref("CT3078318.installerVersion", "1.5.4.1");
Line Found : user_pref("CT3078318.keyword", "true");
Line Found : user_pref("CT3078318.originalHomepage", "hxxp://start.mysearchdial.com/?f=1&a=coolmsd&cd=2XzuyEtN2Y1L1QzutDtDtC0DyB0DtDzz0D0BtD0FtB0AtB0AtN0D0Tzu0CyDtCzytN1L2XzutBtFtBtFtCtFyDyByEtN1L1Czu1R1F1F1I1H1B1[...]
Line Found : user_pref("CT3078318.originalSearchAddressUrl", "");
Line Found : user_pref("CT3078318.originalSearchEngine", "Mysearchdial");
Line Found : user_pref("CT3078318.searchRevert", "false");
Line Found : user_pref("CT3078318.searchUserMode", "2");
Line Found : user_pref("CT3078318.smartbar.homepage", "true");
Line Found : user_pref("CT3078318.versionFromInstaller", "10.16.4.19");
Line Found : user_pref("Smartbar.SearchFromAddressBarSavedUrl", "");
Line Found : user_pref("browser.search.defaultenginename", "ytbyclick Customized Web Search");
Line Found : user_pref("browser.search.defaultthis.engineName", "ytbyclick Customized Web Search");
Line Found : user_pref("browser.search.defaulturl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT3078318&CUI=UN11759097091214527&UM=2&SearchSource=3&q={searchTerms}");
Line Found : user_pref("browser.search.selectedEngine", "ytbyclick Customized Web Search");
Line Found : user_pref("extensions.mysearchdial.aflt", "coolmsd");
Line Found : user_pref("extensions.mysearchdial.appId", "{CA5CAA63-B27C-4963-9BEC-CB16A36D56F8}");
Line Found : user_pref("extensions.mysearchdial.dfltLng", "");
Line Found : user_pref("extensions.mysearchdial.dfltSrch", true);
Line Found : user_pref("extensions.mysearchdial.dnsErr", true);
Line Found : user_pref("extensions.mysearchdial.excTlbr", false);
Line Found : user_pref("extensions.mysearchdial.hmpg", true);
Line Found : user_pref("extensions.mysearchdial.hmpgUrl", "hxxp://start.mysearchdial.com/?f=1&a=coolmsd&cd=2XzuyEtN2Y1L1QzutDtDtC0DyB0DtDzz0D0BtD0FtB0AtB0AtN0D0Tzu0CyDtCzytN1L2XzutBtFtBtFtCtFyDyByEtN1L1Czu1R1F1F1I[...]
Line Found : user_pref("extensions.mysearchdial.id", "001D7D08DB0F2A2A");
Line Found : user_pref("extensions.mysearchdial.instlDay", "15858");
Line Found : user_pref("extensions.mysearchdial.instlRef", "");
Line Found : user_pref("extensions.mysearchdial.newTabUrl", "hxxp://start.mysearchdial.com/?f=2&a=coolmsd&cd=2XzuyEtN2Y1L1QzutDtDtC0DyB0DtDzz0D0BtD0FtB0AtB0AtN0D0Tzu0CyDtCzytN1L2XzutBtFtBtFtCtFyDyByEtN1L1Czu1R1F1F[...]
Line Found : user_pref("extensions.mysearchdial.prdct", "mysearchdial");
Line Found : user_pref("extensions.mysearchdial.prtnrId", "mysearchdial");
Line Found : user_pref("extensions.mysearchdial.srchPrvdr", "Mysearchdial");
Line Found : user_pref("extensions.mysearchdial.tlbrId", "base");
Line Found : user_pref("extensions.mysearchdial.tlbrSrchUrl", "hxxp://start.mysearchdial.com/?f=3&a=coolmsd&cd=2XzuyEtN2Y1L1QzutDtDtC0DyB0DtDzz0D0BtD0FtB0AtB0AtN0D0Tzu0CyDtCzytN1L2XzutBtFtBtFtCtFyDyByEtN1L1Czu1R1F[...]
Line Found : user_pref("extensions.mysearchdial.vrsn", "");
Line Found : user_pref("extensions.mysearchdial.vrsni", "");
Line Found : user_pref("extensions.mysearchdial_i.hmpg", true);
Line Found : user_pref("extensions.mysearchdial_i.newTab", false);
Line Found : user_pref("extensions.mysearchdial_i.smplGrp", "none");
Line Found : user_pref("extensions.mysearchdial_i.vrsnTs", "18:25:23");
Line Found : user_pref("smartbar.addressBarOwnerCTID", "CT3078318");
Line Found : user_pref("smartbar.conduitHomepageList", "hxxp://search.conduit.com/?ctid=CT3078318&CUI=UN11759097091214527&UM=2&SearchSource=13,hxxp://search.conduit.com/?ctid=CT3078318&octid=CT3078318&SearchSource[...]
Line Found : user_pref("smartbar.conduitSearchAddressUrlList", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT3078318&SearchSource=2&CUI=UN11759097091214527&UM=2&q=");
Line Found : user_pref("smartbar.defaultSearchOwnerCTID", "CT3078318");
Line Found : user_pref("smartbar.homePageOwnerCTID", "CT3078318");
Line Found : user_pref("smartbar.machineId", "VRPSBC4YZVAA5JN0DYZEPMQJCYH9SOOFUEBVVRMD919YPECTJGUQFF5BSL+8+XCLK8Z7QPYG7STHX+PUK3ZHNQ");
Line Found : user_pref("smartbar.originalHomepage", "hxxp://search.conduit.com/?ctid=CT3078318&CUI=UN11759097091214527&UM=2&SearchSource=13");
-\\ Google Chrome v
[ File : C:\Users\MM\AppData\Local\Google\Chrome\User Data\Default\preferences ]
Found : urls_to_restore_on_startup
Found : urls_to_restore_on_startup
Found : urls_to_restore_on_startup
*************************
AdwCleaner[R0].txt - [10284 octets] - [27/10/2013 18:08:46]
########## EOF - C:\AdwCleaner\AdwCleaner[R0].txt - [10345 octets] ##########
# Updated 20/10/2013 by Xplode
# Operating System : Windows 7 Ultimate Service Pack 1 (32 bits)
# Username : MM - MM-PC
# Running from : C:\Users\MM\Desktop\adwcleaner.exe
# Option : Scan
***** [ Services ] *****
***** [ Files / Folders ] *****
File Found : C:\Users\MM\AppData\Roaming\Mozilla\Firefox\Profiles\cdxqgtr4.default\Extensions\ftdownloader4@ftdownloader.com.xpi
File Found : C:\Users\MM\AppData\Roaming\Mozilla\Firefox\Profiles\cdxqgtr4.default\searchplugins\Conduit.xml
File Found : C:\Users\MM\AppData\Roaming\Mozilla\Firefox\Profiles\cdxqgtr4.default\searchplugins\Mysearchdial.xml
File Found : C:\Users\MM\AppData\Roaming\Mozilla\Firefox\Profiles\cdxqgtr4.default\user.js
File Found : C:\Windows\System32\Tasks\Dealply
File Found : C:\Windows\System32\Tasks\GoforFilesUpdate
File Found : C:\Windows\Tasks\Dealply.job
Folder Found : C:\Users\MM\AppData\Local\Google\Chrome\User Data\Default\Extensions\edflbdjfhpiboilnedfoiepbmcllkedb
Folder Found : C:\Users\MM\AppData\Roaming\Mozilla\Firefox\Profiles\cdxqgtr4.default\Extensions\{d4f1c433-f9c3-49f2-8645-37dbeca19e90}
Folder Found C:\Program Files\Conduit
Folder Found C:\Program Files\SimilarSites
Folder Found C:\ProgramData\apn
Folder Found C:\Users\MM\AppData\Local\Conduit
Folder Found C:\Users\MM\AppData\Local\PutLockerDownloader
Folder Found C:\Users\MM\AppData\LocalLow\Conduit
Folder Found C:\Users\MM\AppData\LocalLow\Mysearchdial
Folder Found C:\Users\MM\AppData\Roaming\goforfiles
Folder Found C:\Users\MM\AppData\Roaming\Mozilla\Firefox\Profiles\cdxqgtr4.default\CT3078318
Folder Found C:\Users\MM\AppData\Roaming\SimilarSites
***** [ Shortcuts ] *****
***** [ Registry ] *****
Key Found : HKCU\Software\AppDataLow\Software\Conduit
Key Found : HKCU\Software\AppDataLow\Software\ConduitSearchScopes
Key Found : HKCU\Software\AppDataLow\Software\Crossrider
Key Found : HKCU\Software\AppDataLow\Software\smartbar
Key Found : HKCU\Software\Conduit
Key Found : HKCU\Software\installedbrowserextensions
Key Found : HKCU\Software\mysearchdial
Key Found : HKCU\Software\Softonic
Key Found : HKCU\Software\UpdateStar
Key Found : HKLM\SOFTWARE\Classes\AppID\esrv.EXE
Key Found : HKLM\SOFTWARE\Classes\CLSID\{00000001-4FEF-40D3-B3FA-E0531B897F98}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{64697678-0000-0010-8000-00AA00389B71}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{DE9028D0-5FFA-4E69-94E3-89EE8741F468}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{FB684D26-01F4-4D9D-87CB-F486BEBA56DC}
Key Found : HKLM\SOFTWARE\Classes\esrv.mysearchdialESrvc
Key Found : HKLM\SOFTWARE\Classes\esrv.mysearchdialESrvc.1
Key Found : HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Key Found : HKLM\SOFTWARE\Classes\Interface\{813A22E0-3E2B-4188-9BDA-ECA9878B8D48}
Key Found : HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Key Found : HKLM\SOFTWARE\Classes\Interface\{BCFF5F55-6F44-11D2-86F8-00104B265ED5}
Key Found : HKLM\SOFTWARE\Classes\Toolbar.CT3078318
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{9C049BA6-EA47-4AC3-AED6-A66D8DC9E1D8}
Key Found : HKLM\Software\Conduit
Key Found : HKLM\SOFTWARE\Google\Chrome\Extensions\bicnnkjibmphdeigoodpjlcklcnaobdj
Key Found : HKLM\SOFTWARE\Google\Chrome\Extensions\edflbdjfhpiboilnedfoiepbmcllkedb
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\FTDownloader_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\FTDownloader_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\WebCakeDesktop_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\WebCakeDesktop_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\Dealply
Key Found : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\GoforFilesUpdate
Key Found : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\Dealply
Key Found : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\GoforFilesUpdate
Key Found : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Dealply
Key Found : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoforFilesUpdate
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\464AA55239C100F32AF2D438EDDC0F47
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\5652BA3D5FB98AE31B337BF0AF939856
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\86EB95E1AFCBABE3DB9ECCC669B99494
Key Found : HKLM\Software\mysearchdial
Key Found : HKLM\Software\Tarma Installer
***** [ Browsers ] *****
-\\ Internet Explorer v10.0.9200.16720
Setting Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURls [Tabs] - hxxp://start.mysearchdial.com/?f=2&a=coolmsd&cd=2XzuyEtN2Y1L1QzutDtDtC0DyB0DtDzz0D0BtD0FtB0AtB0AtN0D0Tzu0CyDtCzytN1L2XzutBtFtBtFtCtFyDyByEtN1L1Czu1R1F1F1I1H1B1Q&cr=875243925&ir=
-\\ Mozilla Firefox v21.0 (cs)
[ File : C:\Users\MM\AppData\Roaming\Mozilla\Firefox\Profiles\cdxqgtr4.default\prefs.js ]
Line Found : user_pref("CT3078318.FF19Solved", "true");
Line Found : user_pref("CT3078318.UserID", "UN11759097091214527");
Line Found : user_pref("CT3078318.browser.search.defaultthis.engineName", "true");
Line Found : user_pref("CT3078318.fullUserID", "UN11759097091214527.IN.2013063000820");
Line Found : user_pref("CT3078318.installDate", "30/06/2013 0:08:20");
Line Found : user_pref("CT3078318.installSessionId", "-1");
Line Found : user_pref("CT3078318.installSp", "TRUE");
Line Found : user_pref("CT3078318.installerVersion", "1.5.4.1");
Line Found : user_pref("CT3078318.keyword", "true");
Line Found : user_pref("CT3078318.originalHomepage", "hxxp://start.mysearchdial.com/?f=1&a=coolmsd&cd=2XzuyEtN2Y1L1QzutDtDtC0DyB0DtDzz0D0BtD0FtB0AtB0AtN0D0Tzu0CyDtCzytN1L2XzutBtFtBtFtCtFyDyByEtN1L1Czu1R1F1F1I1H1B1[...]
Line Found : user_pref("CT3078318.originalSearchAddressUrl", "");
Line Found : user_pref("CT3078318.originalSearchEngine", "Mysearchdial");
Line Found : user_pref("CT3078318.searchRevert", "false");
Line Found : user_pref("CT3078318.searchUserMode", "2");
Line Found : user_pref("CT3078318.smartbar.homepage", "true");
Line Found : user_pref("CT3078318.versionFromInstaller", "10.16.4.19");
Line Found : user_pref("Smartbar.SearchFromAddressBarSavedUrl", "");
Line Found : user_pref("browser.search.defaultenginename", "ytbyclick Customized Web Search");
Line Found : user_pref("browser.search.defaultthis.engineName", "ytbyclick Customized Web Search");
Line Found : user_pref("browser.search.defaulturl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT3078318&CUI=UN11759097091214527&UM=2&SearchSource=3&q={searchTerms}");
Line Found : user_pref("browser.search.selectedEngine", "ytbyclick Customized Web Search");
Line Found : user_pref("extensions.mysearchdial.aflt", "coolmsd");
Line Found : user_pref("extensions.mysearchdial.appId", "{CA5CAA63-B27C-4963-9BEC-CB16A36D56F8}");
Line Found : user_pref("extensions.mysearchdial.dfltLng", "");
Line Found : user_pref("extensions.mysearchdial.dfltSrch", true);
Line Found : user_pref("extensions.mysearchdial.dnsErr", true);
Line Found : user_pref("extensions.mysearchdial.excTlbr", false);
Line Found : user_pref("extensions.mysearchdial.hmpg", true);
Line Found : user_pref("extensions.mysearchdial.hmpgUrl", "hxxp://start.mysearchdial.com/?f=1&a=coolmsd&cd=2XzuyEtN2Y1L1QzutDtDtC0DyB0DtDzz0D0BtD0FtB0AtB0AtN0D0Tzu0CyDtCzytN1L2XzutBtFtBtFtCtFyDyByEtN1L1Czu1R1F1F1I[...]
Line Found : user_pref("extensions.mysearchdial.id", "001D7D08DB0F2A2A");
Line Found : user_pref("extensions.mysearchdial.instlDay", "15858");
Line Found : user_pref("extensions.mysearchdial.instlRef", "");
Line Found : user_pref("extensions.mysearchdial.newTabUrl", "hxxp://start.mysearchdial.com/?f=2&a=coolmsd&cd=2XzuyEtN2Y1L1QzutDtDtC0DyB0DtDzz0D0BtD0FtB0AtB0AtN0D0Tzu0CyDtCzytN1L2XzutBtFtBtFtCtFyDyByEtN1L1Czu1R1F1F[...]
Line Found : user_pref("extensions.mysearchdial.prdct", "mysearchdial");
Line Found : user_pref("extensions.mysearchdial.prtnrId", "mysearchdial");
Line Found : user_pref("extensions.mysearchdial.srchPrvdr", "Mysearchdial");
Line Found : user_pref("extensions.mysearchdial.tlbrId", "base");
Line Found : user_pref("extensions.mysearchdial.tlbrSrchUrl", "hxxp://start.mysearchdial.com/?f=3&a=coolmsd&cd=2XzuyEtN2Y1L1QzutDtDtC0DyB0DtDzz0D0BtD0FtB0AtB0AtN0D0Tzu0CyDtCzytN1L2XzutBtFtBtFtCtFyDyByEtN1L1Czu1R1F[...]
Line Found : user_pref("extensions.mysearchdial.vrsn", "");
Line Found : user_pref("extensions.mysearchdial.vrsni", "");
Line Found : user_pref("extensions.mysearchdial_i.hmpg", true);
Line Found : user_pref("extensions.mysearchdial_i.newTab", false);
Line Found : user_pref("extensions.mysearchdial_i.smplGrp", "none");
Line Found : user_pref("extensions.mysearchdial_i.vrsnTs", "18:25:23");
Line Found : user_pref("smartbar.addressBarOwnerCTID", "CT3078318");
Line Found : user_pref("smartbar.conduitHomepageList", "hxxp://search.conduit.com/?ctid=CT3078318&CUI=UN11759097091214527&UM=2&SearchSource=13,hxxp://search.conduit.com/?ctid=CT3078318&octid=CT3078318&SearchSource[...]
Line Found : user_pref("smartbar.conduitSearchAddressUrlList", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT3078318&SearchSource=2&CUI=UN11759097091214527&UM=2&q=");
Line Found : user_pref("smartbar.defaultSearchOwnerCTID", "CT3078318");
Line Found : user_pref("smartbar.homePageOwnerCTID", "CT3078318");
Line Found : user_pref("smartbar.machineId", "VRPSBC4YZVAA5JN0DYZEPMQJCYH9SOOFUEBVVRMD919YPECTJGUQFF5BSL+8+XCLK8Z7QPYG7STHX+PUK3ZHNQ");
Line Found : user_pref("smartbar.originalHomepage", "hxxp://search.conduit.com/?ctid=CT3078318&CUI=UN11759097091214527&UM=2&SearchSource=13");
-\\ Google Chrome v
[ File : C:\Users\MM\AppData\Local\Google\Chrome\User Data\Default\preferences ]
Found : urls_to_restore_on_startup
Found : urls_to_restore_on_startup
Found : urls_to_restore_on_startup
*************************
AdwCleaner[R0].txt - [10284 octets] - [27/10/2013 18:08:46]
########## EOF - C:\AdwCleaner\AdwCleaner[R0].txt - [10345 octets] ##########
Re: Prosím o preventivní kontrolu
Znovu ukoncete vsechny programy a spustte AdwCleaner jako spravce.Tentokrat kliknete na Clean
Program zacne pracovat (muze dojit k restartu pc) a vyplivne dalsi log (pripadne bude zde C:\AdwCleaner\AdwCleaner [S?].txt ). Ten mi sem zase zkopirujte.
Pokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Re: Prosím o preventivní kontrolu
# AdwCleaner v3.010 - Report created 28/10/2013 at 18:25:17
# Updated 20/10/2013 by Xplode
# Operating System : Windows 7 Ultimate Service Pack 1 (32 bits)
# Username : MM - MM-PC
# Running from : C:\Users\MM\Desktop\adwcleaner.exe
# Option : Clean
***** [ Services ] *****
***** [ Files / Folders ] *****
Folder Deleted : C:\ProgramData\apn
Folder Deleted : C:\Program Files\Conduit
Folder Deleted : C:\Program Files\SimilarSites
Folder Deleted : C:\Users\MM\AppData\Local\Conduit
Folder Deleted : C:\Users\MM\AppData\Local\PutLockerDownloader
Folder Deleted : C:\Users\MM\AppData\LocalLow\Conduit
Folder Deleted : C:\Users\MM\AppData\LocalLow\Mysearchdial
Folder Deleted : C:\Users\MM\AppData\Roaming\goforfiles
Folder Deleted : C:\Users\MM\AppData\Roaming\SimilarSites
Folder Deleted : C:\Users\MM\AppData\Roaming\Mozilla\Firefox\Profiles\cdxqgtr4.default\CT3078318
Folder Deleted : C:\Users\MM\AppData\Roaming\Mozilla\Firefox\Profiles\cdxqgtr4.default\Extensions\{d4f1c433-f9c3-49f2-8645-37dbeca19e90}
Folder Deleted : C:\Users\MM\AppData\Local\Google\Chrome\User Data\Default\Extensions\edflbdjfhpiboilnedfoiepbmcllkedb
File Deleted : C:\Users\MM\AppData\Roaming\Mozilla\Firefox\Profiles\cdxqgtr4.default\Extensions\ftdownloader4@ftdownloader.com.xpi
File Deleted : C:\Users\MM\AppData\Roaming\Mozilla\Firefox\Profiles\cdxqgtr4.default\searchplugins\Conduit.xml
File Deleted : C:\Users\MM\AppData\Roaming\Mozilla\Firefox\Profiles\cdxqgtr4.default\searchplugins\Mysearchdial.xml
File Deleted : C:\Users\MM\AppData\Roaming\Mozilla\Firefox\Profiles\cdxqgtr4.default\user.js
File Deleted : C:\Windows\Tasks\Dealply.job
File Deleted : C:\Windows\System32\Tasks\Dealply
File Deleted : C:\Windows\System32\Tasks\GoforFilesUpdate
***** [ Shortcuts ] *****
***** [ Registry ] *****
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\bicnnkjibmphdeigoodpjlcklcnaobdj
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\edflbdjfhpiboilnedfoiepbmcllkedb
[#] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Dealply
[#] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{96A2F8E0-7560-4BA1-83CF-B1D2373D0497}
[#] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{96A2F8E0-7560-4BA1-83CF-B1D2373D0497}
[#] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoforFilesUpdate
[#] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{12DFFB0C-1866-4DB6-92DC-9ECCDD6F7C7D}
[#] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{12DFFB0C-1866-4DB6-92DC-9ECCDD6F7C7D}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\esrv.EXE
Key Deleted : HKLM\SOFTWARE\Classes\esrv.mysearchdialESrvc
Key Deleted : HKLM\SOFTWARE\Classes\esrv.mysearchdialESrvc.1
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\FTDownloader_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\FTDownloader_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\WebCakeDesktop_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\WebCakeDesktop_RASMANCS
Key Deleted : HKLM\SOFTWARE\Classes\Toolbar.CT3078318
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{00000001-4FEF-40D3-B3FA-E0531B897F98}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{64697678-0000-0010-8000-00AA00389B71}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{DE9028D0-5FFA-4E69-94E3-89EE8741F468}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{FB684D26-01F4-4D9D-87CB-F486BEBA56DC}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{813A22E0-3E2B-4188-9BDA-ECA9878B8D48}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{BCFF5F55-6F44-11D2-86F8-00104B265ED5}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{9C049BA6-EA47-4AC3-AED6-A66D8DC9E1D8}
Key Deleted : HKCU\Software\Conduit
Key Deleted : HKCU\Software\installedbrowserextensions
Key Deleted : HKCU\Software\mysearchdial
Key Deleted : HKCU\Software\Softonic
Key Deleted : HKCU\Software\UpdateStar
Key Deleted : HKCU\Software\AppDataLow\Software\Conduit
Key Deleted : HKCU\Software\AppDataLow\Software\ConduitSearchScopes
Key Deleted : HKCU\Software\AppDataLow\Software\Crossrider
Key Deleted : HKCU\Software\AppDataLow\Software\smartbar
Key Deleted : HKLM\Software\Conduit
Key Deleted : HKLM\Software\mysearchdial
Key Deleted : HKLM\Software\Tarma Installer
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\464AA55239C100F32AF2D438EDDC0F47
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\5652BA3D5FB98AE31B337BF0AF939856
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\86EB95E1AFCBABE3DB9ECCC669B99494
***** [ Browsers ] *****
-\\ Internet Explorer v10.0.9200.16720
Setting Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURls [Tabs]
-\\ Mozilla Firefox v21.0 (cs)
[ File : C:\Users\MM\AppData\Roaming\Mozilla\Firefox\Profiles\cdxqgtr4.default\prefs.js ]
Line Deleted : user_pref("CT3078318.FF19Solved", "true");
Line Deleted : user_pref("CT3078318.UserID", "UN11759097091214527");
Line Deleted : user_pref("CT3078318.browser.search.defaultthis.engineName", "true");
Line Deleted : user_pref("CT3078318.fullUserID", "UN11759097091214527.IN.2013063000820");
Line Deleted : user_pref("CT3078318.installDate", "30/06/2013 0:08:20");
Line Deleted : user_pref("CT3078318.installSessionId", "-1");
Line Deleted : user_pref("CT3078318.installSp", "TRUE");
Line Deleted : user_pref("CT3078318.installerVersion", "1.5.4.1");
Line Deleted : user_pref("CT3078318.keyword", "true");
Line Deleted : user_pref("CT3078318.originalHomepage", "hxxp://start.mysearchdial.com/?f=1&a=coolmsd&cd=2XzuyEtN2Y1L1QzutDtDtC0DyB0DtDzz0D0BtD0FtB0AtB0AtN0D0Tzu0CyDtCzytN1L2XzutBtFtBtFtCtFyDyByEtN1L1Czu1R1F1F1I1H1B1[...]
Line Deleted : user_pref("CT3078318.originalSearchAddressUrl", "");
Line Deleted : user_pref("CT3078318.originalSearchEngine", "Mysearchdial");
Line Deleted : user_pref("CT3078318.searchRevert", "false");
Line Deleted : user_pref("CT3078318.searchUserMode", "2");
Line Deleted : user_pref("CT3078318.smartbar.homepage", "true");
Line Deleted : user_pref("CT3078318.versionFromInstaller", "10.16.4.19");
Line Deleted : user_pref("Smartbar.SearchFromAddressBarSavedUrl", "");
Line Deleted : user_pref("browser.search.defaultenginename", "ytbyclick Customized Web Search");
Line Deleted : user_pref("browser.search.defaultthis.engineName", "ytbyclick Customized Web Search");
Line Deleted : user_pref("browser.search.defaulturl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT3078318&CUI=UN11759097091214527&UM=2&SearchSource=3&q={searchTerms}");
Line Deleted : user_pref("browser.search.selectedEngine", "ytbyclick Customized Web Search");
Line Deleted : user_pref("extensions.mysearchdial.aflt", "coolmsd");
Line Deleted : user_pref("extensions.mysearchdial.appId", "{CA5CAA63-B27C-4963-9BEC-CB16A36D56F8}");
Line Deleted : user_pref("extensions.mysearchdial.dfltLng", "");
Line Deleted : user_pref("extensions.mysearchdial.dfltSrch", true);
Line Deleted : user_pref("extensions.mysearchdial.dnsErr", true);
Line Deleted : user_pref("extensions.mysearchdial.excTlbr", false);
Line Deleted : user_pref("extensions.mysearchdial.hmpg", true);
Line Deleted : user_pref("extensions.mysearchdial.hmpgUrl", "hxxp://start.mysearchdial.com/?f=1&a=coolmsd&cd=2XzuyEtN2Y1L1QzutDtDtC0DyB0DtDzz0D0BtD0FtB0AtB0AtN0D0Tzu0CyDtCzytN1L2XzutBtFtBtFtCtFyDyByEtN1L1Czu1R1F1F1I[...]
Line Deleted : user_pref("extensions.mysearchdial.id", "001D7D08DB0F2A2A");
Line Deleted : user_pref("extensions.mysearchdial.instlDay", "15858");
Line Deleted : user_pref("extensions.mysearchdial.instlRef", "");
Line Deleted : user_pref("extensions.mysearchdial.newTabUrl", "hxxp://start.mysearchdial.com/?f=2&a=coolmsd&cd=2XzuyEtN2Y1L1QzutDtDtC0DyB0DtDzz0D0BtD0FtB0AtB0AtN0D0Tzu0CyDtCzytN1L2XzutBtFtBtFtCtFyDyByEtN1L1Czu1R1F1F[...]
Line Deleted : user_pref("extensions.mysearchdial.prdct", "mysearchdial");
Line Deleted : user_pref("extensions.mysearchdial.prtnrId", "mysearchdial");
Line Deleted : user_pref("extensions.mysearchdial.srchPrvdr", "Mysearchdial");
Line Deleted : user_pref("extensions.mysearchdial.tlbrId", "base");
Line Deleted : user_pref("extensions.mysearchdial.tlbrSrchUrl", "hxxp://start.mysearchdial.com/?f=3&a=coolmsd&cd=2XzuyEtN2Y1L1QzutDtDtC0DyB0DtDzz0D0BtD0FtB0AtB0AtN0D0Tzu0CyDtCzytN1L2XzutBtFtBtFtCtFyDyByEtN1L1Czu1R1F[...]
Line Deleted : user_pref("extensions.mysearchdial.vrsn", "");
Line Deleted : user_pref("extensions.mysearchdial.vrsni", "");
Line Deleted : user_pref("extensions.mysearchdial_i.hmpg", true);
Line Deleted : user_pref("extensions.mysearchdial_i.newTab", false);
Line Deleted : user_pref("extensions.mysearchdial_i.smplGrp", "none");
Line Deleted : user_pref("extensions.mysearchdial_i.vrsnTs", "18:25:23");
Line Deleted : user_pref("smartbar.addressBarOwnerCTID", "CT3078318");
Line Deleted : user_pref("smartbar.conduitHomepageList", "hxxp://search.conduit.com/?ctid=CT3078318&CUI=UN11759097091214527&UM=2&SearchSource=13,hxxp://search.conduit.com/?ctid=CT3078318&octid=CT3078318&SearchSource[...]
Line Deleted : user_pref("smartbar.conduitSearchAddressUrlList", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT3078318&SearchSource=2&CUI=UN11759097091214527&UM=2&q=");
Line Deleted : user_pref("smartbar.defaultSearchOwnerCTID", "CT3078318");
Line Deleted : user_pref("smartbar.homePageOwnerCTID", "CT3078318");
Line Deleted : user_pref("smartbar.machineId", "VRPSBC4YZVAA5JN0DYZEPMQJCYH9SOOFUEBVVRMD919YPECTJGUQFF5BSL+8+XCLK8Z7QPYG7STHX+PUK3ZHNQ");
Line Deleted : user_pref("smartbar.originalHomepage", "hxxp://search.conduit.com/?ctid=CT3078318&CUI=UN11759097091214527&UM=2&SearchSource=13");
-\\ Google Chrome v
[ File : C:\Users\MM\AppData\Local\Google\Chrome\User Data\Default\preferences ]
Deleted : urls_to_restore_on_startup
*************************
AdwCleaner[R0].txt - [10426 octets] - [27/10/2013 18:08:46]
AdwCleaner[R1].txt - [10487 octets] - [28/10/2013 17:41:04]
AdwCleaner[S0].txt - [10534 octets] - [28/10/2013 18:25:17]
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [10595 octets] ##########
# Updated 20/10/2013 by Xplode
# Operating System : Windows 7 Ultimate Service Pack 1 (32 bits)
# Username : MM - MM-PC
# Running from : C:\Users\MM\Desktop\adwcleaner.exe
# Option : Clean
***** [ Services ] *****
***** [ Files / Folders ] *****
Folder Deleted : C:\ProgramData\apn
Folder Deleted : C:\Program Files\Conduit
Folder Deleted : C:\Program Files\SimilarSites
Folder Deleted : C:\Users\MM\AppData\Local\Conduit
Folder Deleted : C:\Users\MM\AppData\Local\PutLockerDownloader
Folder Deleted : C:\Users\MM\AppData\LocalLow\Conduit
Folder Deleted : C:\Users\MM\AppData\LocalLow\Mysearchdial
Folder Deleted : C:\Users\MM\AppData\Roaming\goforfiles
Folder Deleted : C:\Users\MM\AppData\Roaming\SimilarSites
Folder Deleted : C:\Users\MM\AppData\Roaming\Mozilla\Firefox\Profiles\cdxqgtr4.default\CT3078318
Folder Deleted : C:\Users\MM\AppData\Roaming\Mozilla\Firefox\Profiles\cdxqgtr4.default\Extensions\{d4f1c433-f9c3-49f2-8645-37dbeca19e90}
Folder Deleted : C:\Users\MM\AppData\Local\Google\Chrome\User Data\Default\Extensions\edflbdjfhpiboilnedfoiepbmcllkedb
File Deleted : C:\Users\MM\AppData\Roaming\Mozilla\Firefox\Profiles\cdxqgtr4.default\Extensions\ftdownloader4@ftdownloader.com.xpi
File Deleted : C:\Users\MM\AppData\Roaming\Mozilla\Firefox\Profiles\cdxqgtr4.default\searchplugins\Conduit.xml
File Deleted : C:\Users\MM\AppData\Roaming\Mozilla\Firefox\Profiles\cdxqgtr4.default\searchplugins\Mysearchdial.xml
File Deleted : C:\Users\MM\AppData\Roaming\Mozilla\Firefox\Profiles\cdxqgtr4.default\user.js
File Deleted : C:\Windows\Tasks\Dealply.job
File Deleted : C:\Windows\System32\Tasks\Dealply
File Deleted : C:\Windows\System32\Tasks\GoforFilesUpdate
***** [ Shortcuts ] *****
***** [ Registry ] *****
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\bicnnkjibmphdeigoodpjlcklcnaobdj
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\edflbdjfhpiboilnedfoiepbmcllkedb
[#] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Dealply
[#] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{96A2F8E0-7560-4BA1-83CF-B1D2373D0497}
[#] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{96A2F8E0-7560-4BA1-83CF-B1D2373D0497}
[#] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoforFilesUpdate
[#] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{12DFFB0C-1866-4DB6-92DC-9ECCDD6F7C7D}
[#] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{12DFFB0C-1866-4DB6-92DC-9ECCDD6F7C7D}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\esrv.EXE
Key Deleted : HKLM\SOFTWARE\Classes\esrv.mysearchdialESrvc
Key Deleted : HKLM\SOFTWARE\Classes\esrv.mysearchdialESrvc.1
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\FTDownloader_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\FTDownloader_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\WebCakeDesktop_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\WebCakeDesktop_RASMANCS
Key Deleted : HKLM\SOFTWARE\Classes\Toolbar.CT3078318
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{00000001-4FEF-40D3-B3FA-E0531B897F98}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{64697678-0000-0010-8000-00AA00389B71}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{DE9028D0-5FFA-4E69-94E3-89EE8741F468}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{FB684D26-01F4-4D9D-87CB-F486BEBA56DC}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{813A22E0-3E2B-4188-9BDA-ECA9878B8D48}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{BCFF5F55-6F44-11D2-86F8-00104B265ED5}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{9C049BA6-EA47-4AC3-AED6-A66D8DC9E1D8}
Key Deleted : HKCU\Software\Conduit
Key Deleted : HKCU\Software\installedbrowserextensions
Key Deleted : HKCU\Software\mysearchdial
Key Deleted : HKCU\Software\Softonic
Key Deleted : HKCU\Software\UpdateStar
Key Deleted : HKCU\Software\AppDataLow\Software\Conduit
Key Deleted : HKCU\Software\AppDataLow\Software\ConduitSearchScopes
Key Deleted : HKCU\Software\AppDataLow\Software\Crossrider
Key Deleted : HKCU\Software\AppDataLow\Software\smartbar
Key Deleted : HKLM\Software\Conduit
Key Deleted : HKLM\Software\mysearchdial
Key Deleted : HKLM\Software\Tarma Installer
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\464AA55239C100F32AF2D438EDDC0F47
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\5652BA3D5FB98AE31B337BF0AF939856
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\86EB95E1AFCBABE3DB9ECCC669B99494
***** [ Browsers ] *****
-\\ Internet Explorer v10.0.9200.16720
Setting Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURls [Tabs]
-\\ Mozilla Firefox v21.0 (cs)
[ File : C:\Users\MM\AppData\Roaming\Mozilla\Firefox\Profiles\cdxqgtr4.default\prefs.js ]
Line Deleted : user_pref("CT3078318.FF19Solved", "true");
Line Deleted : user_pref("CT3078318.UserID", "UN11759097091214527");
Line Deleted : user_pref("CT3078318.browser.search.defaultthis.engineName", "true");
Line Deleted : user_pref("CT3078318.fullUserID", "UN11759097091214527.IN.2013063000820");
Line Deleted : user_pref("CT3078318.installDate", "30/06/2013 0:08:20");
Line Deleted : user_pref("CT3078318.installSessionId", "-1");
Line Deleted : user_pref("CT3078318.installSp", "TRUE");
Line Deleted : user_pref("CT3078318.installerVersion", "1.5.4.1");
Line Deleted : user_pref("CT3078318.keyword", "true");
Line Deleted : user_pref("CT3078318.originalHomepage", "hxxp://start.mysearchdial.com/?f=1&a=coolmsd&cd=2XzuyEtN2Y1L1QzutDtDtC0DyB0DtDzz0D0BtD0FtB0AtB0AtN0D0Tzu0CyDtCzytN1L2XzutBtFtBtFtCtFyDyByEtN1L1Czu1R1F1F1I1H1B1[...]
Line Deleted : user_pref("CT3078318.originalSearchAddressUrl", "");
Line Deleted : user_pref("CT3078318.originalSearchEngine", "Mysearchdial");
Line Deleted : user_pref("CT3078318.searchRevert", "false");
Line Deleted : user_pref("CT3078318.searchUserMode", "2");
Line Deleted : user_pref("CT3078318.smartbar.homepage", "true");
Line Deleted : user_pref("CT3078318.versionFromInstaller", "10.16.4.19");
Line Deleted : user_pref("Smartbar.SearchFromAddressBarSavedUrl", "");
Line Deleted : user_pref("browser.search.defaultenginename", "ytbyclick Customized Web Search");
Line Deleted : user_pref("browser.search.defaultthis.engineName", "ytbyclick Customized Web Search");
Line Deleted : user_pref("browser.search.defaulturl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT3078318&CUI=UN11759097091214527&UM=2&SearchSource=3&q={searchTerms}");
Line Deleted : user_pref("browser.search.selectedEngine", "ytbyclick Customized Web Search");
Line Deleted : user_pref("extensions.mysearchdial.aflt", "coolmsd");
Line Deleted : user_pref("extensions.mysearchdial.appId", "{CA5CAA63-B27C-4963-9BEC-CB16A36D56F8}");
Line Deleted : user_pref("extensions.mysearchdial.dfltLng", "");
Line Deleted : user_pref("extensions.mysearchdial.dfltSrch", true);
Line Deleted : user_pref("extensions.mysearchdial.dnsErr", true);
Line Deleted : user_pref("extensions.mysearchdial.excTlbr", false);
Line Deleted : user_pref("extensions.mysearchdial.hmpg", true);
Line Deleted : user_pref("extensions.mysearchdial.hmpgUrl", "hxxp://start.mysearchdial.com/?f=1&a=coolmsd&cd=2XzuyEtN2Y1L1QzutDtDtC0DyB0DtDzz0D0BtD0FtB0AtB0AtN0D0Tzu0CyDtCzytN1L2XzutBtFtBtFtCtFyDyByEtN1L1Czu1R1F1F1I[...]
Line Deleted : user_pref("extensions.mysearchdial.id", "001D7D08DB0F2A2A");
Line Deleted : user_pref("extensions.mysearchdial.instlDay", "15858");
Line Deleted : user_pref("extensions.mysearchdial.instlRef", "");
Line Deleted : user_pref("extensions.mysearchdial.newTabUrl", "hxxp://start.mysearchdial.com/?f=2&a=coolmsd&cd=2XzuyEtN2Y1L1QzutDtDtC0DyB0DtDzz0D0BtD0FtB0AtB0AtN0D0Tzu0CyDtCzytN1L2XzutBtFtBtFtCtFyDyByEtN1L1Czu1R1F1F[...]
Line Deleted : user_pref("extensions.mysearchdial.prdct", "mysearchdial");
Line Deleted : user_pref("extensions.mysearchdial.prtnrId", "mysearchdial");
Line Deleted : user_pref("extensions.mysearchdial.srchPrvdr", "Mysearchdial");
Line Deleted : user_pref("extensions.mysearchdial.tlbrId", "base");
Line Deleted : user_pref("extensions.mysearchdial.tlbrSrchUrl", "hxxp://start.mysearchdial.com/?f=3&a=coolmsd&cd=2XzuyEtN2Y1L1QzutDtDtC0DyB0DtDzz0D0BtD0FtB0AtB0AtN0D0Tzu0CyDtCzytN1L2XzutBtFtBtFtCtFyDyByEtN1L1Czu1R1F[...]
Line Deleted : user_pref("extensions.mysearchdial.vrsn", "");
Line Deleted : user_pref("extensions.mysearchdial.vrsni", "");
Line Deleted : user_pref("extensions.mysearchdial_i.hmpg", true);
Line Deleted : user_pref("extensions.mysearchdial_i.newTab", false);
Line Deleted : user_pref("extensions.mysearchdial_i.smplGrp", "none");
Line Deleted : user_pref("extensions.mysearchdial_i.vrsnTs", "18:25:23");
Line Deleted : user_pref("smartbar.addressBarOwnerCTID", "CT3078318");
Line Deleted : user_pref("smartbar.conduitHomepageList", "hxxp://search.conduit.com/?ctid=CT3078318&CUI=UN11759097091214527&UM=2&SearchSource=13,hxxp://search.conduit.com/?ctid=CT3078318&octid=CT3078318&SearchSource[...]
Line Deleted : user_pref("smartbar.conduitSearchAddressUrlList", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT3078318&SearchSource=2&CUI=UN11759097091214527&UM=2&q=");
Line Deleted : user_pref("smartbar.defaultSearchOwnerCTID", "CT3078318");
Line Deleted : user_pref("smartbar.homePageOwnerCTID", "CT3078318");
Line Deleted : user_pref("smartbar.machineId", "VRPSBC4YZVAA5JN0DYZEPMQJCYH9SOOFUEBVVRMD919YPECTJGUQFF5BSL+8+XCLK8Z7QPYG7STHX+PUK3ZHNQ");
Line Deleted : user_pref("smartbar.originalHomepage", "hxxp://search.conduit.com/?ctid=CT3078318&CUI=UN11759097091214527&UM=2&SearchSource=13");
-\\ Google Chrome v
[ File : C:\Users\MM\AppData\Local\Google\Chrome\User Data\Default\preferences ]
Deleted : urls_to_restore_on_startup
*************************
AdwCleaner[R0].txt - [10426 octets] - [27/10/2013 18:08:46]
AdwCleaner[R1].txt - [10487 octets] - [28/10/2013 17:41:04]
AdwCleaner[S0].txt - [10534 octets] - [28/10/2013 18:25:17]
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [10595 octets] ##########
Přispějete na provoz fóra?
