Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

Kontrola logu

Nemáte v tuto chvíli žádný problém s pc a chcete se jen ujistit, že je vše v pořádku?
Vložte log z FRST nebo RSIT.

Moderátor: Moderátoři

Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]

Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.

!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Zamčeno
Zpráva
Autor
Márty84
VIP
VIP
Příspěvky: 21679
Registrován: 05 pro 2009 20:08
Bydliště: Ostrava

Re: Kontrola logu

#16 Příspěvek od Márty84 »

:arrow: Stahnete crystal disk info http://sourceforge.jp/projects/crystald ... 5_0_0.zip/
Spustte jako spravce. Za chvili se zobrazi vysledek.
Kliknete nahore na napis Úpravy a pak na napis Kopírovat. To co se zkopiruje (ulozi se to do pameti) mi sem vlozte (ctrl + V)


:arrow: Dejte novy log z RSIT
Pokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz

Možnost podpořit naše fórum https://platba.viry.cz/payment/

Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Nahoru
Madmaxik
Návštěvník
Návštěvník
Příspěvky: 110
Registrován: 09 lis 2013 17:28

Re: Kontrola logu

#17 Příspěvek od Madmaxik »

----------------------------------------------------------------------------
CrystalDiskInfo 5.0.0 (C) 2008-2012 hiyohiyo
Crystal Dew World : http://crystalmark.info/
----------------------------------------------------------------------------

OS : Windows 7 Professional [6.1 Build 7600] (x64)
Date : 2013/11/10 20:33:54

-- Controller Map ----------------------------------------------------------
+ ATA Channel 0 (0) [ATA]
- SAMSUNG HD502HI ATA Device
- Optiarc DVD RW AD-7240S ATA Device
- ATA Channel 1 (1) [ATA]
- ATA Channel 0 (0) [ATA]
- ATA Channel 1 (1) [ATA]
+ Intel(R) 82801GB/GR/GH (ICH7 Family) Serial ATA Storage Controller - 27C0 [ATA]
- ATA Channel 0 (0)
- ATA Channel 1 (1)
+ Intel(R) 82801G (ICH7 Family) Ultra ATA Storage Controllers - 27DF [ATA]
- ATA Channel 0 (0)
- ATA Channel 1 (1)
+ AKS38Z3F IDE Controller [SCSI]
- WHSFMF QJGXIN8XUJK SCSI CdRom Device
- WHSFMF QJGXIN8XUJK SCSI CdRom Device
- WHSFMF QJGXIN8XUJK SCSI CdRom Device

-- Disk List ---------------------------------------------------------------
(1) SAMSUNG HD502HI : 500,1 GB [0/2/0, pd1]

----------------------------------------------------------------------------
(1) SAMSUNG HD502HI
----------------------------------------------------------------------------
Model : SAMSUNG HD502HI
Firmware : 1AG01118
Serial Number : S1VZJ9BS902010
Disk Size : 500,1 GB (8,4/137,4/500,1)
Buffer Size : 16384 KB
Queue Depth : 32
# of Sectors : 976773168
Rotation Rate : Neznámy údaj
Interface : Serial ATA
Major Version : ATA/ATAPI-7
Minor Version : ATA8-ACS version 3b
Transfer Mode : SATA/300
Power On Hours : 13239 hod.
Power On Count : 2666 krát
Temparature : 26 C (78 F)
Health Status : Dobrý
Features : S.M.A.R.T., APM, AAM, 48bit LBA, NCQ
APM Level : 0000h [OFF]
AAM Level : FEFEh [ON]

-- S.M.A.R.T. --------------------------------------------------------------
ID Cur Wor Thr RawValues(6) Attribute Name
01 100 _99 _51 000000000000 Počet chyb čtení
03 _93 _93 _11 000000000BF4 Čas na roztočení ploten
04 _97 _97 __0 000000000A76 Počet spuštění/zastavení
05 100 100 _10 000000000000 Počet přemapovaných sektorů
07 100 100 _51 000000000000 Počet chybných hledání
08 100 100 _15 000000000000 Čas potřebný na vyhledání
09 _97 _97 __0 0000000033B7 Hodin v činnosti
0A 100 100 _51 000000000000 Počet opakovaných pokusů o roztočení ploten
0B 100 100 __0 000000000000 Počet pokusů o překalibrování
0C _97 _97 __0 000000000A6A Počet cyklů zapnutí zařízení
0D 100 _99 __0 000000000000 Počet pokusů o softvérové opravení chyb při čtení programů z disku
B7 100 100 __0 000000000000 Neznámý
B8 100 100 __0 000000000000 Ukončovacích chyb
BB 100 100 __0 000000000007 Ohlášeno neopravitelných chyb
BC 100 100 __0 000000000000 Časový limit příkazu
BE _74 _67 __0 00001B0E001A Teplota toku vzduchu
C2 _74 _66 __0 00001D0E001A Teplota
C3 100 100 __0 00000DBFE450 Počet oprav chybného čtení
C4 100 100 __0 000000000000 Počet udalostí s číslem realokování sektorů
C5 100 100 __0 000000000000 Počet podezřelých sektorů
C6 100 100 __0 000000000000 Počet neopravitelných sektorů
C7 100 100 __0 000000000000 Počet chyb v kontrolním součtu UltraDMA
C8 100 100 __0 000000000000 Počet chyb při zápisu sektorů
C9 100 100 __0 000000000000 Počet chyb při čtení programů z disku

-- IDENTIFY_DEVICE ---------------------------------------------------------
0 1 2 3 4 5 6 7 8 9
000: 0040 3FFF C837 0010 8856 003F 003F 0000 0000 0000
010: 5331 565A 4A39 4253 3930 3130 3130 2020 2020 2020
020: 0003 8000 0004 3141 4730 3138 3138 5341 4D53 554E
030: 4720 4844 3530 3248 4920 2020 2020 2020 2020 2020
040: 2020 2020 2020 2020 2020 2020 2020 8010 0000 2F00
050: 4000 0200 0200 0007 3FFF 003F 003F FC10 00FB 0110
060: FFFF 0FFF 0000 0007 0003 0078 0078 0078 0078 0000
070: 0000 0000 0000 0000 0000 1706 1706 0000 004C 0040
080: 00F8 0052 746B 7F69 4133 BE41 BE41 4123 20FF 0034
090: 0034 0000 FFFE 0000 FEFE 0007 0007 006C 86A0 0001
100: 6030 3A38 0000 0000 0064 0000 0000 0000 5002 4E92
110: 010A 5272 0000 0000 0000 0000 0000 0000 0000 401C
120: 401C 0000 0000 0000 0000 0000 0000 0000 0029 0000
130: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
140: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
150: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
160: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
170: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
180: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
190: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
200: 0000 0000 0000 0000 0000 003F 003F 0000 0000 0000
210: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
220: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
230: 0000 0000 0000 0000 0001 0000 0000 0000 0000 0000
240: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
250: 0000 0000 0000 0000 0000 20A5
Nahoru
Madmaxik
Návštěvník
Návštěvník
Příspěvky: 110
Registrován: 09 lis 2013 17:28

Re: Kontrola logu

#18 Příspěvek od Madmaxik »

Logfile of random's system information tool 1.09 (written by random/random)
Run by ASUS at 2013-11-10 20:41:49
Microsoft Windows 7 Professional
System drive C: has 128 GB (54%) free of 238 GB
Total RAM: 4095 MB (34% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 20:41:52, on 10.11.2013
Platform: Windows 7 (WinNT 6.00.3504)
MSIE: Internet Explorer v8.00 (8.00.7600.16385)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe
C:\Program Files (x86)\screenSHU\screenSHU.exe
C:\Program Files (x86)\Clownfish\Clownfish.exe
C:\Windows\V0700Mon.exe
C:\Program Files (x86)\Mobogenie\DaemonProcess.exe
C:\Windows\SysWOW64\DllHost.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\RealNetworks\RealDownloader\recordingmanager.exe
C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_9_900_117.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_9_900_117.exe
C:\Program Files (x86)\Skype\Phone\Skype.exe
C:\Games\World_of_Tanks\WorldOfTanks.exe
C:\Users\ASUS\Desktop\DiskInfo.exe
C:\Program Files\trend micro\ASUS.exe
C:\Program Files (x86)\Mobogenie\mgusb.exe

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: RealNetworks Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll
O2 - BHO: Search-Results Toolbar - {377e5d4d-77e5-476a-8716-7e70a9272da0} - (no file)
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~3\Office12\GR469A~1.DLL
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: Pomocná služba pro přihlášení k účtu Microsoft - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Rich Media Downloader - {A7DF592F-6E2A-45C4-9A87-4BD217D714ED} - C:\Users\ASUS\AppData\Local\Rich Media Player\BrowserExtensions\IE\RichMediaDownloader.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O2 - BHO: Rich Media Player - {FEB703F7-E7B2-4AB0-9566-87658AC70095} - C:\Users\ASUS\AppData\Local\Rich Media Player\BrowserExtensions\IE\PluginRichmediaplayer.dll
O3 - Toolbar: DAEMON Tools Toolbar - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files (x86)\DAEMON Tools Toolbar\DTToolbar.dll
O3 - Toolbar: (no name) - {377e5d4d-77e5-476a-8716-7e70a9272da0} - (no file)
O4 - HKLM\..\Run: [HDAudDeck] C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe -r
O4 - HKLM\..\Run: [V0700Mon.exe] C:\Windows\V0700Mon.exe
O4 - HKLM\..\Run: [mobilegeni daemon] C:\Program Files (x86)\Mobogenie\DaemonProcess.exe
O4 - HKLM\..\Run: [LogMeIn Hamachi Ui] "C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-start
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [screenSHU] "C:\Program Files (x86)\screenSHU\screenSHU.exe" --hidden
O4 - HKCU\..\Run: [Clownfish] "C:\Program Files (x86)\Clownfish\Clownfish.exe"
O4 - HKUS\S-1-5-21-14876253-2174864908-1153771479-1001\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'UpdatusUser')
O4 - HKUS\S-1-5-21-14876253-2174864908-1153771479-1001\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'UpdatusUser')
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~3\Office12\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - (no file)
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - (no file)
O9 - Extra button: Přidat na blog - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Přidat na blog Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~3\Office12\REFIEBAR.DLL
O9 - Extra button: Rich Media Downloader - {A7DF592F-6E2A-45C4-9A87-4BD217D714ED} - C:\Users\ASUS\AppData\Local\Rich Media Player\BrowserExtensions\IE\RichMediaDownloader.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\PROGRA~2\MICROS~3\Office12\GRA32A~1.DLL
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: LogMeIn Hamachi Tunneling Engine (Hamachi2Svc) - LogMeIn Inc. - C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: LMIGuardianSvc - LogMeIn, Inc. - C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: RealNetworks Downloader Resolver Service - Unknown owner - C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 9846 bytes

======Listing Processes======

\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
winlogon.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
"C:\Windows\system32\nvvsvc.exe"
"C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe"
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\AUDIODG.EXE 0x2cc
C:\Windows\system32\svchost.exe -k LocalService
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\Windows\system32\nvvsvc.exe -session -first
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe"
"taskhost.exe"
"C:\Windows\system32\Dwm.exe"
"C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe"
C:\Windows\system32\svchost.exe -k imgsvc
C:\Windows\System32\svchost.exe -k secsvcs
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
"C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe" -s
WLIDSvcM.exe 1312
"C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-start
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\Program Files\Windows Sidebar\sidebar.exe" /autoRun
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1
"C:\Program Files (x86)\screenSHU\screenSHU.exe" --hidden
"C:\Program Files (x86)\Clownfish\Clownfish.exe"
"C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe" -r
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Windows\V0700Mon.exe"
"C:\Program Files (x86)\Mobogenie\DaemonProcess.exe"
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\Windows\SysWOW64\DllHost.exe /Processid:{3F6B5E16-092A-41ED-930B-0B4125D91D4E}
C:\Windows\system32\svchost.exe -k SDRSVC
"C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe"
C:\Windows\explorer.exe
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe" -private-window
"C:\Program Files (x86)\RealNetworks\RealDownloader\recordingmanager.exe" /bgrecordhelpersvc
"C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe" --channel=2420.10b05100.588811872 "C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_117.dll" -greomni "C:\Program Files (x86)\Mozilla Firefox\omni.ja" -appomni "C:\Program Files (x86)\Mozilla Firefox\browser\omni.ja" -appdir "C:\Program Files (x86)\Mozilla Firefox\browser" E7CF176E110C211B 2420 "\\.\pipe\gecko-crash-server-pipe.2420" plugin
"C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_9_900_117.exe" --proxy-stub-channel=Flash3920.730DDFB8.26790 --host-broker-channel=Flash3920.730DDFB8.9178 --host-pid=3920 --host-npapi-version=22 --plugin-path="C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_117.dll"
"C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_9_900_117.exe" --channel=2400.0045F354.37917573 --proxy-stub-channel=Flash3920.730DDFB8.26790 --plugin-path="C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_117.dll" --host-npapi-version=22 --type=renderer
"C:\Program Files (x86)\Skype\Phone\Skype.exe"
"C:\Games\World_of_Tanks\WorldOfTanks.exe" wot_wait_for_mutex
"C:\Users\ASUS\Desktop\DiskInfo.exe"
"C:\Users\ASUS\Downloads\RSITx64.exe"
C:\Windows\system32\wbem\wmiprvse.exe

======Scheduled tasks folder======

C:\Windows\tasks\Adobe Flash Player Updater.job
C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-14876253-2174864908-1153771479-1000Core.job
C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-14876253-2174864908-1153771479-1000UA.job
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job

=========Mozilla firefox=========

ProfilePath - C:\Users\ASUS\AppData\Roaming\Mozilla\Firefox\Profiles\n9rlbgqb.default

prefs.js - "browser.startup.homepage" - "https://www.google.cz/"

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 11.9.900.117 Plugin
"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_117.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/ShockwavePlayer]
"Description"=Adobe Shockwave Player
"Path"=C:\Windows\SysWOW64\Adobe\Director\np32dsw_1202122.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=10.40.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Windows\SysWOW64\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=10.40.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=14.0.8064.0206]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVision]
"Description"=NVIDIA stereo images plugin for Mozilla browsers
"Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVisionStreaming]
"Description"=NVIDIA 3D Vision Streaming plugin for Mozilla browsers
"Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@pandonetworks.com/PandoWebPlugin]
"Description"=This plugin detects and launches Pando Media Booster
"Path"=C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@real.com/nppl3260;version=16.0.3.51]
"Description"=RealPlayer(tm) LiveConnect-Enabled Plug-In
"Path"=C:\Program Files (x86)\Real\RealPlayer\Netscape6\nppl3260.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@real.com/nprndlchromebrowserrecordext;version=1.3.3]
"Description"=RealNetworks(tm) RealDownloader Chrome Background Extension Plug-In
"Path"=C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlchromebrowserrecordext.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@real.com/nprndlhtml5videoshim;version=1.3.3]
"Description"=RealNetworks(tm) RealDownloader HTML5VideoShim Plug-In
"Path"=C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlhtml5videoshim.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@real.com/nprndlpepperflashvideoshim;version=1.3.3]
"Description"=RealNetworks(tm) RealDownloader Peppe rFlash Video Shim Plug-In
"Path"=C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlpepperflashvideoshim.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@real.com/nprpplugin;version=16.0.3.51]
"Description"=RealPlayer Download Plugin
"Path"=C:\Program Files (x86)\Real\RealPlayer\Netscape6\nprpplugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@realnetworks.com/npdlplugin;version=1]
"Description"=RealDownloader Plugin
"Path"=C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\npdlplugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@richmediaplayer.com/nppluginrichmediaplayer]
"Description"=
"Path"=C:\Program Files (x86)\Mozilla Firefox\plugins\nppluginrichmediaplayer.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.21.165\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.21.165\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.0.6]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\adobe.com/AdobeAAMDetect]
"Description"=
"Path"=C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 11.9.900.117 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_11_9_900_117.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=10.7.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Windows\system32\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=10.7.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\adobe.com/AdobeAAMDetect]
"Description"=
"Path"=C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll


C:\Program Files (x86)\Mozilla Firefox\plugins\
npffividiplg.dll
nppluginrichmediaplayer.dll

C:\Program Files (x86)\Mozilla Firefox\searchplugins\
Ask.xml
qvo6.xml
Search_Results.xml

C:\Users\ASUS\AppData\Roaming\Mozilla\Firefox\Profiles\n9rlbgqb.default\extensions\
WebSiteRecommendation@weliketheweb.com

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{4f3ed5cd-0726-42a9-87f5-d13f3d2976ac}]
Windows Live Family Safety Browser Helper Class - C:\Program Files\Windows Live\Family Safety\fssbho.dll [2009-02-06 68976]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2013-08-15 537576]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17 529664]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2013-08-15 193512]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-02-27 75128]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3049C3E9-B461-4BC5-8870-4C09146192CA}]
RealNetworks Download and Record Plugin for Internet Explorer - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll [2013-08-14 542376]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{377e5d4d-77e5-476a-8716-7e70a9272da0}]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~2\MICROS~3\Office12\GR469A~1.DLL [2006-10-27 2210608]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2013-10-03 462248]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Pomocná služba pro přihlášení k účtu Microsoft - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17 441592]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A7DF592F-6E2A-45C4-9A87-4BD217D714ED}]
Rich Media Downloader - C:\Users\ASUS\AppData\Local\Rich Media Player\BrowserExtensions\IE\RichMediaDownloader.dll [2013-07-03 155928]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2013-10-03 171944]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FEB703F7-E7B2-4AB0-9566-87658AC70095}]
Rich Media Player - C:\Users\ASUS\AppData\Local\Rich Media Player\BrowserExtensions\IE\PluginRichmediaplayer.dll [2013-03-12 120600]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{32099AAC-C132-4136-9E9A-4E364A424E17} - DAEMON Tools Toolbar - C:\Program Files (x86)\DAEMON Tools Toolbar\DTToolbar64.dll [2010-03-25 1548096]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{32099AAC-C132-4136-9E9A-4E364A424E17} - DAEMON Tools Toolbar - C:\Program Files (x86)\DAEMON Tools Toolbar\DTToolbar.dll [2010-03-25 968000]
{377e5d4d-77e5-476a-8716-7e70a9272da0}

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2009-09-23 165912]
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2009-09-23 385560]
"Persistence"=C:\Windows\system32\igfxpers.exe [2009-09-23 363544]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2009-07-14 1475072]
"screenSHU"=C:\Program Files (x86)\screenSHU\screenSHU.exe [2012-04-03 2121216]
"Clownfish"=C:\Program Files (x86)\Clownfish\Clownfish.exe [2013-07-02 1276152]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"HDAudDeck"=C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe [2009-10-28 2763776]
"V0700Mon.exe"=C:\Windows\V0700Mon.exe [2011-08-22 28672]
"mobilegeni daemon"=C:\Program Files (x86)\Mobogenie\DaemonProcess.exe [2013-11-09 746176]
"LogMeIn Hamachi Ui"=C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [2013-10-31 2349392]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2009-09-23 261120]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~2\MICROS~3\Office12\GR469A~1.DLL [2006-10-27 2210608]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Hamachi2Svc]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
"NoDrives"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"VIDC.FPS1"=frapsv64.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1

======List of files/folders created in the last 1 month======

2013-11-10 19:02:30 ----A---- C:\ComboFix.txt
2013-11-10 18:59:10 ----D---- C:\$RECYCLE.BIN
2013-11-10 18:57:13 ----D---- C:\Windows\temp
2013-11-10 17:38:25 ----A---- C:\Windows\zip.exe
2013-11-10 17:38:25 ----A---- C:\Windows\SWSC.exe
2013-11-10 17:38:25 ----A---- C:\Windows\SWREG.exe
2013-11-10 17:38:25 ----A---- C:\Windows\sed.exe
2013-11-10 17:38:25 ----A---- C:\Windows\PEV.exe
2013-11-10 17:38:25 ----A---- C:\Windows\NIRCMD.exe
2013-11-10 17:38:25 ----A---- C:\Windows\MBR.exe
2013-11-10 17:38:25 ----A---- C:\Windows\grep.exe
2013-11-10 17:38:18 ----D---- C:\Qoobox
2013-11-10 17:37:56 ----D---- C:\Windows\erdnt
2013-11-10 16:29:23 ----D---- C:\Config.Msi
2013-11-09 22:21:10 ----A---- C:\Windows\SYSWOW64\FAPB54C.tmp
2013-11-09 22:21:02 ----A---- C:\Windows\SYSWOW64\FAP9693.tmp
2013-11-09 22:20:59 ----A---- C:\Windows\SYSWOW64\FAP8AEE.tmp
2013-11-09 22:18:43 ----A---- C:\Windows\SYSWOW64\FAP7817.tmp
2013-11-09 22:14:08 ----A---- C:\Windows\SYSWOW64\FAP461D.tmp
2013-11-09 22:08:32 ----A---- C:\Windows\SYSWOW64\FAP22F2.tmp
2013-11-09 22:07:44 ----A---- C:\Windows\SYSWOW64\FAP676E.tmp
2013-11-09 22:07:42 ----A---- C:\Windows\SYSWOW64\FAP60F7.tmp
2013-11-09 22:06:16 ----A---- C:\Windows\SYSWOW64\FAP1075.tmp
2013-11-09 21:59:23 ----A---- C:\Windows\SYSWOW64\FAPC4A4.tmp
2013-11-09 21:56:25 ----A---- C:\Windows\SYSWOW64\FAPC4C.tmp
2013-11-09 21:56:23 ----A---- C:\Windows\SYSWOW64\FAP69F.tmp
2013-11-09 21:53:23 ----A---- C:\Windows\SYSWOW64\FAP46A9.tmp
2013-11-09 21:42:05 ----A---- C:\Windows\SYSWOW64\FAPED12.tmp
2013-11-09 21:37:33 ----A---- C:\Windows\SYSWOW64\FAPC823.tmp
2013-11-09 21:29:47 ----A---- C:\Windows\SYSWOW64\FAPAC28.tmp
2013-11-09 21:27:34 ----A---- C:\Windows\SYSWOW64\FAPA41B.tmp
2013-11-09 21:27:32 ----A---- C:\Windows\SYSWOW64\FAP9BC0.tmp
2013-11-09 21:27:29 ----A---- C:\Windows\SYSWOW64\FAP8EE2.tmp
2013-11-09 21:22:43 ----A---- C:\Windows\SYSWOW64\FAP3414.tmp
2013-11-09 21:14:12 ----A---- C:\Windows\SYSWOW64\FAP65CB.tmp
2013-11-09 21:10:11 ----A---- C:\Windows\SYSWOW64\FAPBA7D.tmp
2013-11-09 21:09:54 ----A---- C:\Windows\SYSWOW64\FAP7764.tmp
2013-11-09 20:59:10 ----A---- C:\Windows\SYSWOW64\FAPA47A.tmp
2013-11-09 20:53:02 ----A---- C:\Windows\SYSWOW64\FAP491.tmp
2013-11-09 20:53:01 ----A---- C:\Windows\SYSWOW64\FAP200.tmp
2013-11-09 20:50:54 ----A---- C:\Windows\SYSWOW64\FAP1262.tmp
2013-11-09 20:49:55 ----A---- C:\Windows\SYSWOW64\FAP2C17.tmp
2013-11-09 20:43:22 ----A---- C:\Windows\SYSWOW64\FAP2B5A.tmp
2013-11-09 20:43:15 ----A---- C:\Windows\SYSWOW64\FAPEF2.tmp
2013-11-09 20:43:13 ----A---- C:\Windows\SYSWOW64\FAP9C2.tmp
2013-11-09 20:42:59 ----A---- C:\Windows\SYSWOW64\FAPD2F8.tmp
2013-11-09 20:42:57 ----A---- C:\Windows\SYSWOW64\FAPCA8D.tmp
2013-11-09 20:39:26 ----A---- C:\Windows\SYSWOW64\FAP9181.tmp
2013-11-09 20:39:24 ----A---- C:\Windows\SYSWOW64\FAP8A5E.tmp
2013-11-09 19:24:50 ----A---- C:\Windows\SYSWOW64\FAP4704.tmp
2013-11-09 19:24:47 ----A---- C:\Windows\SYSWOW64\FAP3B6E.tmp
2013-11-09 19:16:20 ----D---- C:\Users\ASUS\AppData\Roaming\Malwarebytes
2013-11-09 19:16:00 ----D---- C:\ProgramData\Malwarebytes
2013-11-09 19:15:57 ----D---- C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-11-09 19:15:10 ----A---- C:\Windows\SYSWOW64\FAP6CF7.tmp
2013-11-09 19:13:50 ----A---- C:\Windows\SYSWOW64\FAP340B.tmp
2013-11-09 19:10:03 ----A---- C:\Windows\SYSWOW64\FAPBBBE.tmp
2013-11-09 19:09:44 ----A---- C:\Windows\SYSWOW64\FAP7328.tmp
2013-11-09 19:07:34 ----A---- C:\Windows\SYSWOW64\FAP75E4.tmp
2013-11-09 19:06:02 ----A---- C:\Windows\SYSWOW64\FAP109B.tmp
2013-11-09 19:05:56 ----A---- C:\Windows\SYSWOW64\FAPF5AA.tmp
2013-11-09 19:05:55 ----A---- C:\Windows\SYSWOW64\FAPF29C.tmp
2013-11-09 19:04:51 ----A---- C:\Windows\SYSWOW64\FAPF8B2.tmp
2013-11-09 19:04:46 ----A---- C:\Windows\SYSWOW64\FAPE54F.tmp
2013-11-09 19:04:41 ----A---- C:\Windows\SYSWOW64\FAPD1BD.tmp
2013-11-09 19:03:03 ----A---- C:\Windows\SYSWOW64\FAP53F4.tmp
2013-11-09 19:02:52 ----A---- C:\Windows\SYSWOW64\FAP2776.tmp
2013-11-09 18:58:54 ----A---- C:\Windows\SYSWOW64\FAP88C6.tmp
2013-11-09 18:58:44 ----A---- C:\Windows\SYSWOW64\FAP5E4A.tmp
2013-11-09 18:58:40 ----A---- C:\Windows\SYSWOW64\FAP4FC8.tmp
2013-11-09 18:56:34 ----A---- C:\Windows\SYSWOW64\FAP6346.tmp
2013-11-09 18:55:51 ----A---- C:\Windows\SYSWOW64\FAPBAB6.tmp
2013-11-09 18:55:08 ----A---- C:\Windows\SYSWOW64\FAP133F.tmp
2013-11-09 18:55:02 ----A---- C:\Windows\SYSWOW64\FAPFCB1.tmp
2013-11-09 18:53:42 ----A---- C:\Windows\SYSWOW64\FAPC386.tmp
2013-11-09 18:52:14 ----A---- C:\Windows\SYSWOW64\FAP6B47.tmp
2013-11-09 18:52:07 ----A---- C:\Windows\SYSWOW64\FAP4FB9.tmp
2013-11-09 18:51:59 ----A---- C:\Windows\SYSWOW64\FAP3342.tmp
2013-11-09 18:51:53 ----A---- C:\Windows\SYSWOW64\FAP195A.tmp
2013-11-09 18:47:02 ----A---- C:\Windows\SYSWOW64\FAPAB5A.tmp
2013-11-09 18:45:16 ----A---- C:\Windows\SYSWOW64\FAPD64.tmp
2013-11-09 18:44:03 ----A---- C:\Windows\SYSWOW64\FAPEE8D.tmp
2013-11-09 18:43:06 ----A---- C:\Windows\SYSWOW64\FAP1156.tmp
2013-11-09 18:42:53 ----A---- C:\Windows\SYSWOW64\FAPDEC0.tmp
2013-11-09 18:42:35 ----A---- C:\Windows\SYSWOW64\FAP9763.tmp
2013-11-09 18:42:30 ----A---- C:\Windows\SYSWOW64\FAP8180.tmp
2013-11-09 18:35:43 ----A---- C:\Windows\SYSWOW64\FAP4B71.tmp
2013-11-09 18:35:19 ----A---- C:\Windows\SYSWOW64\FAPF15E.tmp
2013-11-09 18:35:14 ----A---- C:\Windows\SYSWOW64\FAPDDDC.tmp
2013-11-09 18:34:16 ----A---- C:\Windows\SYSWOW64\FAPF81D.tmp
2013-11-09 18:30:07 ----A---- C:\Windows\SYSWOW64\FAP2DEA.tmp
2013-11-09 18:29:47 ----A---- C:\Windows\SYSWOW64\FAPDFD8.tmp
2013-11-09 18:29:40 ----A---- C:\Windows\SYSWOW64\FAPC287.tmp
2013-11-09 18:29:39 ----A---- C:\Windows\SYSWOW64\FAPC0E0.tmp
2013-11-09 18:28:57 ----A---- C:\Windows\SYSWOW64\FAP1A33.tmp
2013-11-09 18:28:55 ----A---- C:\Windows\SYSWOW64\FAP1532.tmp
2013-11-09 18:28:55 ----A---- C:\Windows\SYSWOW64\FAP1494.tmp
2013-11-09 18:28:54 ----A---- C:\Windows\SYSWOW64\FAP1148.tmp
2013-11-09 18:28:52 ----A---- C:\Windows\SYSWOW64\FAP7E3.tmp
2013-11-09 18:28:51 ----A---- C:\Windows\SYSWOW64\FAP256.tmp
2013-11-09 18:28:37 ----A---- C:\Windows\SYSWOW64\FAPCB3D.tmp
2013-11-09 18:26:55 ----A---- C:\Windows\SYSWOW64\FAP401C.tmp
2013-11-09 18:26:49 ----A---- C:\Windows\SYSWOW64\FAP2598.tmp
2013-11-09 18:26:48 ----A---- C:\Windows\SYSWOW64\FAP21B0.tmp
2013-11-09 18:26:32 ----A---- C:\Windows\SYSWOW64\FAPE634.tmp
2013-11-09 18:26:31 ----A---- C:\Windows\SYSWOW64\FAPE02A.tmp
2013-11-09 18:26:05 ----A---- C:\Windows\SYSWOW64\FAP7CA5.tmp
2013-11-09 18:26:05 ----A---- C:\Windows\SYSWOW64\FAP7ADE.tmp
2013-11-09 18:26:03 ----A---- C:\Windows\SYSWOW64\FAP74C4.tmp
2013-11-09 18:24:53 ----A---- C:\Windows\SYSWOW64\FAP63C2.tmp
2013-11-09 18:24:31 ----A---- C:\Windows\SYSWOW64\FAPB73.tmp
2013-11-09 18:23:15 ----A---- C:\Windows\SYSWOW64\FAPE25F.tmp
2013-11-09 18:23:02 ----A---- C:\Windows\SYSWOW64\FAPB20A.tmp
2013-11-09 18:22:52 ----A---- C:\Windows\SYSWOW64\FAP8953.tmp
2013-11-09 18:22:47 ----A---- C:\Windows\SYSWOW64\FAP765D.tmp
2013-11-09 18:22:25 ----A---- C:\Windows\SYSWOW64\FAP211B.tmp
2013-11-09 18:22:16 ----A---- C:\Windows\SYSWOW64\FAPFCE6.tmp
2013-11-09 18:20:11 ----A---- C:\Windows\SYSWOW64\FAP13FD.tmp
2013-11-09 18:20:03 ----A---- C:\Windows\SYSWOW64\FAPF63E.tmp
2013-11-09 18:19:59 ----A---- C:\Windows\SYSWOW64\FAPE616.tmp
2013-11-09 18:19:31 ----A---- C:\Windows\SYSWOW64\FAP77A9.tmp
2013-11-09 18:19:27 ----A---- C:\Windows\SYSWOW64\FAP6983.tmp
2013-11-09 18:18:49 ----A---- C:\Windows\SYSWOW64\FAPD5AB.tmp
2013-11-09 18:13:06 ----A---- C:\Windows\SYSWOW64\FAP99F1.tmp
2013-11-09 18:12:20 ----A---- C:\Windows\SYSWOW64\FAPE3DA.tmp
2013-11-09 18:11:55 ----A---- C:\Windows\SYSWOW64\FAP846A.tmp
2013-11-09 18:11:01 ----A---- C:\Windows\SYSWOW64\FAPAE36.tmp
2013-11-09 18:07:53 ----A---- C:\Windows\SYSWOW64\FAPD266.tmp
2013-11-09 18:07:50 ----A---- C:\Windows\SYSWOW64\FAPC74D.tmp
2013-11-09 18:07:03 ----A---- C:\Windows\SYSWOW64\FAPD50.tmp
2013-11-09 18:06:20 ----A---- C:\Windows\SYSWOW64\FAP679D.tmp
2013-11-09 18:06:15 ----A---- C:\Windows\SYSWOW64\FAP5237.tmp
2013-11-09 18:01:10 ----A---- C:\Windows\SYSWOW64\FAPA9A7.tmp
2013-11-09 18:00:39 ----A---- C:\Windows\SYSWOW64\FAP312C.tmp
2013-11-09 18:00:35 ----A---- C:\Windows\SYSWOW64\FAP2364.tmp
2013-11-09 18:00:26 ----A---- C:\Windows\SYSWOW64\FAP1A.tmp
2013-11-09 17:59:48 ----A---- C:\Windows\SYSWOW64\FAP6994.tmp
2013-11-09 17:59:40 ----A---- C:\Windows\SYSWOW64\FAP4DA9.tmp
2013-11-09 17:59:30 ----A---- C:\Windows\SYSWOW64\FAP24F2.tmp
2013-11-09 17:59:12 ----A---- C:\Windows\SYSWOW64\FAPDFC6.tmp
2013-11-09 17:57:29 ----A---- C:\Windows\SYSWOW64\FAP4AC6.tmp
2013-11-09 17:56:43 ----A---- C:\Windows\SYSWOW64\FAP97CA.tmp
2013-11-09 17:56:20 ----A---- C:\Windows\SYSWOW64\FAP3E15.tmp
2013-11-09 17:56:12 ----A---- C:\Windows\SYSWOW64\FAP2008.tmp
2013-11-09 17:54:32 ----A---- C:\Windows\SYSWOW64\FAP9795.tmp
2013-11-09 17:54:17 ----A---- C:\Windows\SYSWOW64\FAP5E0D.tmp
2013-11-09 17:54:05 ----A---- C:\Windows\SYSWOW64\FAP3047.tmp
2013-11-09 17:53:41 ----A---- C:\Windows\SYSWOW64\FAPD0F7.tmp
2013-11-09 17:52:02 ----A---- C:\Windows\SYSWOW64\FAP5051.tmp
2013-11-09 17:50:09 ----A---- C:\Windows\SYSWOW64\FAP96FF.tmp
2013-11-09 17:50:03 ----A---- C:\Windows\SYSWOW64\FAP7CF8.tmp
2013-11-09 17:49:07 ----A---- C:\Windows\SYSWOW64\FAPA4D0.tmp
2013-11-09 17:44:25 ----A---- C:\Windows\SYSWOW64\FAP571C.tmp
2013-11-09 17:42:21 ----A---- C:\Windows\SYSWOW64\FAP7209.tmp
2013-11-09 17:42:16 ----A---- C:\Windows\SYSWOW64\FAP5E77.tmp
2013-11-09 17:40:38 ----A---- C:\Windows\SYSWOW64\FAPDFF4.tmp
2013-11-09 17:39:20 ----A---- C:\Windows\SYSWOW64\FAPAE86.tmp
2013-11-09 17:39:05 ----A---- C:\Windows\SYSWOW64\FAP74FD.tmp
2013-11-09 17:37:20 ----A---- C:\Windows\SYSWOW64\FAPD9B6.tmp
2013-11-09 17:36:01 ----A---- C:\Windows\SYSWOW64\FAPA443.tmp
2013-11-09 17:33:02 ----D---- C:\Program Files\trend micro
2013-11-09 17:33:01 ----D---- C:\rsit
2013-11-09 17:32:20 ----A---- C:\Windows\SYSWOW64\FAP46B7.tmp
2013-11-09 17:31:26 ----A---- C:\Windows\SYSWOW64\FAP717C.tmp
2013-11-09 17:31:23 ----A---- C:\Windows\SYSWOW64\FAP6605.tmp
2013-11-09 17:31:14 ----A---- C:\Windows\SYSWOW64\FAP4460.tmp
2013-11-09 17:31:05 ----A---- C:\Windows\SYSWOW64\FAP2115.tmp
2013-11-09 17:30:59 ----A---- C:\Windows\SYSWOW64\FAP885.tmp
2013-11-09 17:30:06 ----A---- C:\Windows\SYSWOW64\FAP3933.tmp
2013-11-09 17:30:01 ----A---- C:\Windows\SYSWOW64\FAP2831.tmp
2013-11-09 17:29:56 ----A---- C:\Windows\SYSWOW64\FAP1396.tmp
2013-11-09 17:29:53 ----A---- C:\Windows\SYSWOW64\FAP8BB.tmp
2013-11-09 17:29:46 ----A---- C:\Windows\SYSWOW64\FAPED5D.tmp
2013-11-09 17:29:03 ----A---- C:\Windows\SYSWOW64\FAP448E.tmp
2013-11-09 17:29:01 ----A---- C:\Windows\SYSWOW64\FAP3A4F.tmp
2013-11-09 17:28:10 ----A---- C:\Windows\SYSWOW64\FAP72CB.tmp
2013-11-09 17:27:33 ----A---- C:\Windows\SYSWOW64\FAPE48E.tmp
2013-11-09 17:27:11 ----A---- C:\Windows\SYSWOW64\FAP8F0D.tmp
2013-11-09 14:30:15 ----AH---- C:\Windows\system32\hamachi.sys
2013-11-09 14:30:12 ----D---- C:\ProgramData\LogMeIn
2013-11-09 14:30:12 ----D---- C:\Program Files (x86)\LogMeIn Hamachi
2013-11-09 13:42:53 ----D---- C:\Program Files (x86)\Microsoft Games
2013-11-09 13:03:37 ----A---- C:\Windows\SYSWOW64\d3dx9_26.dll
2013-11-09 13:03:37 ----A---- C:\Windows\system32\d3dx9_26.dll
2013-11-09 13:03:32 ----A---- C:\Windows\SYSWOW64\d3dx9_25.dll
2013-11-09 13:03:32 ----A---- C:\Windows\system32\d3dx9_25.dll
2013-11-09 12:24:26 ----D---- C:\Users\ASUS\AppData\Roaming\Python-Eggs
2013-11-09 12:24:20 ----D---- C:\Users\ASUS\AppData\Roaming\BitLord
2013-11-09 12:24:20 ----A---- C:\Users\ASUS\AppData\Roaming\bitlord_log.txt
2013-11-09 12:22:35 ----D---- C:\Program Files (x86)\BitLord 2
2013-11-09 12:22:31 ----D---- C:\Program Files (x86)\Mobogenie
2013-11-09 12:22:17 ----D---- C:\Program Files (x86)\SimilarSites
2013-11-09 12:22:11 ----D---- C:\Users\ASUS\AppData\Roaming\SimilarSites
2013-11-09 12:18:59 ----D---- C:\Program Files (x86)\iVIDI.org plugin
2013-11-09 12:16:56 ----D---- C:\Program Files (x86)\Age of Empires 3 crack 100%funguje!
2013-11-06 16:10:25 ----D---- C:\ProgramData\RealNetworks
2013-11-06 15:34:34 ----D---- C:\Program Files (x86)\Mozilla Firefox
2013-11-04 16:37:45 ----D---- C:\ProgramData\WarThunder
2013-11-04 16:36:55 ----D---- C:\Program Files (x86)\WarThunder
2013-10-18 12:22:29 ----D---- C:\Users\ASUS\AppData\Roaming\LolClient
2013-10-18 11:10:29 ----A---- C:\Windows\SYSWOW64\d3dx10_39.dll
2013-10-18 11:10:29 ----A---- C:\Windows\SYSWOW64\D3DCompiler_39.dll
2013-10-18 11:10:28 ----A---- C:\Windows\SYSWOW64\D3DX9_39.dll
2013-10-18 11:10:03 ----SHD---- C:\Windows\SYSWOW64\AI_RecycleBin
2013-10-18 11:09:56 ----D---- C:\Riot Games
2013-10-14 18:34:25 ----D---- C:\Program Files (x86)\Diablo II
2013-10-14 18:26:17 ----AT---- C:\Windows\SYSWOW64\SIntfNT.dll
2013-10-14 18:26:17 ----AT---- C:\Windows\SYSWOW64\SIntf32.dll
2013-10-14 18:26:17 ----AT---- C:\Windows\SYSWOW64\SIntf16.dll
2013-10-14 15:50:56 ----D---- C:\Users\ASUS\AppData\Roaming\vegas120
2013-10-13 19:52:39 ----D---- C:\Users\ASUS\AppData\Roaming\Publish Providers
2013-10-13 19:50:26 ----D---- C:\ProgramData\Sony
2013-10-13 19:50:26 ----D---- C:\Program Files\Sony
2013-10-13 19:50:26 ----D---- C:\Program Files (x86)\Sony
2013-10-13 19:43:37 ----D---- C:\Users\ASUS\AppData\Roaming\Sony

======List of files/folders modified in the last 1 month======

2013-11-10 20:23:15 ----D---- C:\Users\ASUS\AppData\Roaming\Skype
2013-11-10 19:04:51 ----D---- C:\Windows\System32
2013-11-10 19:04:51 ----A---- C:\Windows\system32\PerfStringBackup.INI
2013-11-10 19:04:50 ----D---- C:\Windows\inf
2013-11-10 19:02:33 ----D---- C:\Windows\system32\drivers
2013-11-10 18:59:12 ----D---- C:\Windows
2013-11-10 18:59:12 ----A---- C:\Windows\system.ini
2013-11-10 18:59:04 ----D---- C:\Windows\system32\drivers\etc
2013-11-10 18:58:42 ----D---- C:\ProgramData\NVIDIA
2013-11-10 18:57:33 ----D---- C:\Windows\system32\config
2013-11-10 18:54:43 ----D---- C:\Windows\SYSWOW64\drivers
2013-11-10 18:54:43 ----D---- C:\Windows\SysWOW64
2013-11-10 18:54:43 ----D---- C:\Windows\AppPatch
2013-11-10 18:54:42 ----D---- C:\Program Files (x86)\Common Files
2013-11-10 16:33:14 ----SHD---- C:\Windows\Installer
2013-11-10 16:33:12 ----SHD---- C:\System Volume Information
2013-11-10 16:31:46 ----D---- C:\ProgramData
2013-11-10 16:31:37 ----RD---- C:\Program Files
2013-11-10 16:31:12 ----D---- C:\Windows\Logs
2013-11-10 16:30:49 ----D---- C:\Program Files (x86)\Steam
2013-11-10 16:30:21 ----D---- C:\Windows\system32\DriverStore
2013-11-10 16:30:21 ----D---- C:\Windows\system32\catroot
2013-11-10 16:14:08 ----D---- C:\Windows\system32\Tasks
2013-11-10 14:35:10 ----D---- C:\Users\ASUS\AppData\Roaming\Seznam.cz
2013-11-10 14:16:00 ----RD---- C:\Program Files (x86)
2013-11-10 14:12:39 ----D---- C:\Users\ASUS\AppData\Roaming\DefaultTab
2013-11-10 14:12:38 ----D---- C:\Program Files (x86)\Movies Toolbar
2013-11-10 14:12:37 ----D---- C:\Program Files (x86)\Search Results Toolbar
2013-11-10 14:12:01 ----D---- C:\ProgramData\Wincert
2013-11-09 22:24:21 ----D---- C:\Users\ASUS\AppData\Roaming\com.flash.WidgetBrowser
2013-11-09 17:26:58 ----D---- C:\Users\ASUS\AppData\Roaming\DAEMON Tools Lite
2013-11-09 17:26:47 ----D---- C:\Windows\Minidump
2013-11-09 17:14:29 ----D---- C:\Windows\Prefetch
2013-11-09 13:47:10 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2013-11-09 13:47:06 ----RSD---- C:\Windows\assembly
2013-11-09 13:46:52 ----D---- C:\Windows\winsxs
2013-11-08 21:54:59 ----D---- C:\Program Files (x86)\OBS
2013-11-08 17:11:13 ----D---- C:\Windows\system32\wdi
2013-11-07 21:20:11 ----D---- C:\Windows\system32\LogFiles
2013-11-07 19:36:41 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2013-11-06 22:06:34 ----D---- C:\Windows\system32\catroot2
2013-11-06 18:31:46 ----D---- C:\Users\ASUS\AppData\Roaming\.technic
2013-11-06 18:29:42 ----D---- C:\Program Files (x86)\Ford Racing 2
2013-11-06 16:10:26 ----D---- C:\Program Files (x86)\RealNetworks
2013-11-06 16:09:34 ----D---- C:\Program Files (x86)\Real
2013-11-06 16:09:28 ----D---- C:\ProgramData\Real
2013-11-06 16:09:23 ----A---- C:\Windows\SYSWOW64\rmoc3260.dll
2013-11-06 16:09:16 ----A---- C:\Windows\SYSWOW64\pndx5032.dll
2013-11-06 16:09:16 ----A---- C:\Windows\SYSWOW64\pndx5016.dll
2013-11-06 16:09:15 ----A---- C:\Windows\SYSWOW64\pncrt.dll
2013-11-06 16:09:10 ----A---- C:\Windows\SYSWOW64\msvcr71.dll
2013-11-06 16:09:10 ----A---- C:\Windows\SYSWOW64\msvcp71.dll
2013-11-06 15:43:42 ----D---- C:\Windows\system32\NDF
2013-11-05 18:03:09 ----D---- C:\ProgramData\PMB Files
2013-11-05 16:10:01 ----D---- C:\ProgramData\Skype
2013-11-05 16:09:54 ----RD---- C:\Program Files (x86)\Skype
2013-11-04 16:34:01 ----D---- C:\Users\ASUS\AppData\Roaming\.minecraft
2013-10-18 11:10:04 ----D---- C:\Windows\Tasks
2013-10-14 17:02:30 ----D---- C:\Users\ASUS\AppData\Roaming\Audacity
2013-10-13 17:13:05 ----D---- C:\Windows\system32\drivers\UMDF
2013-10-11 14:09:10 ----D---- C:\Program Files (x86)\The KMPlayer

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2009-07-14 214096]
R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2013-03-29 834544]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2009-07-14 514048]
R3 hamachi;Hamachi Network Interface; C:\Windows\system32\DRIVERS\hamachi.sys [2009-03-18 33856]
R3 L1E;NDIS Miniport Driver for Atheros AR8121/AR8113/AR8114 PCI-E Ethernet Controller(NDIS6.20); C:\Windows\system32\DRIVERS\L1E62x64.sys [2009-06-20 54272]
R3 NVHDA;Service for NVIDIA High Definition Audio Driver; C:\Windows\system32\drivers\nvhda64v.sys [2012-12-19 194488]
R3 VIAHdAudAddService;VIA High Definition Audio Driver Service; C:\Windows\system32\drivers\viahduaa.sys [2009-10-21 1270784]
S3 AIDA64Driver;FinalWire AIDA64 Kernel Driver; \??\C:\Program Files (x86)\FinalWire\AIDA64 Extreme Edition\kerneld.x64 [2012-10-28 30624]
S3 aks38z3f;aks38z3f; C:\Windows\system32\drivers\aks38z3f.sys []
S3 androidusb;SAMSUNG Android Composite ADB Interface Driver; C:\Windows\System32\Drivers\ssadadb.sys [2011-05-13 36328]
S3 BridgeMP;@%SystemRoot%\system32\bridgeres.dll,-1; C:\Windows\system32\DRIVERS\bridge.sys [2009-07-14 95232]
S3 BthEnum;Služba Bluetooth Enumerator; C:\Windows\system32\DRIVERS\BthEnum.sys [2009-07-14 41984]
S3 BthPan;Zařízení Bluetooth (síť PAN); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
S3 BTHPORT;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2009-07-14 551936]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2009-07-14 79360]
S3 catchme;catchme; \??\C:\ComboFix\catchme.sys []
S3 fssfltr;FssFltr; C:\Windows\system32\DRIVERS\fssfltr.sys [2012-09-12 57856]
S3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2009-09-23 6180832]
S3 pciide;pciide; C:\Windows\system32\DRIVERS\pciide.sys [2009-07-14 12352]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2009-07-14 165376]
S3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
S3 s3cap;s3cap; C:\Windows\system32\DRIVERS\vms3cap.sys [2009-07-14 6656]
S3 ssadbus;SAMSUNG Android USB Composite Device driver (WDM); C:\Windows\system32\DRIVERS\ssadbus.sys [2011-05-13 157672]
S3 ssadmdfl;SAMSUNG Android USB Modem (Filter); C:\Windows\system32\DRIVERS\ssadmdfl.sys [2011-05-13 16872]
S3 ssadmdm;SAMSUNG Android USB Modem Drivers; C:\Windows\system32\DRIVERS\ssadmdm.sys [2011-05-13 177640]
S3 ssadserd;SAMSUNG Android USB Diagnostic Serial Port (WDM); C:\Windows\system32\DRIVERS\ssadserd.sys [2011-05-13 146920]
S3 storvsc;storvsc; C:\Windows\system32\DRIVERS\storvsc.sys [2009-07-14 34896]
S3 usbscan;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2009-07-14 41984]
S3 V0700Vid;Creative Live! Cam Chat HD Driver; C:\Windows\system32\DRIVERS\V0700Vid.sys [2011-09-07 393920]
S3 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\system32\DRIVERS\vmbus.sys [2009-07-14 200272]
S3 VMBusHID;VMBusHID; C:\Windows\system32\DRIVERS\VMBusHID.sys [2009-07-14 21760]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2009-07-14 40448]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 Hamachi2Svc;LogMeIn Hamachi Tunneling Engine; C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe [2013-10-31 2756944]
R2 LMIGuardianSvc;LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [2013-10-11 377104]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2013-03-15 877856]
R2 nvUpdatusService;NVIDIA Update Service Daemon; C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2013-03-15 1266464]
R2 RealNetworks Downloader Resolver Service;RealNetworks Downloader Resolver Service; C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe [2013-08-14 39056]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2013-03-14 383264]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2012-07-17 2292480]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-03-29 136176]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-10-09 257416]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S3 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2010-03-18 44376]
S3 fsssvc;Windows Live Zabezpečení rodiny; C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe [2009-02-06 533360]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-03-29 136176]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe [2006-10-27 65824]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2013-11-06 119408]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2006-10-26 441136]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2013-04-19 543656]
S3 StorSvc;@%SystemRoot%\System32\StorSvc.dll,-100; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]

-----------------EOF-----------------
Nahoru
Márty84
VIP
VIP
Příspěvky: 21679
Registrován: 05 pro 2009 20:08
Bydliště: Ostrava

Re: Kontrola logu

#19 Příspěvek od Márty84 »

Na ten disk pozor
BB 100 100 __0 000000000007 Ohlášeno neopravitelných chyb
C3 100 100 __0 00000DBFE450 Počet oprav chybného čtení

:???: Kam zmizel antivir?


:arrow: Stahnete OTL http://oldtimer.geekstogo.com/OTL.exe a ulozte na plochu.
Kliknete na nej pravym mysidlem a levym na Spustit jako spravce
Oznacte polozky (dejte tam zatrzitka) Pro všechny uživatele, Kontrola na havěť "LOP" a Kontrola na havěť "Purity"
Do spodniho okna vlozte nasledujici text

Kód: Vybrat vše

CREATERESTOREPOINT

netsvcs
drivers32
savembr:0

/md5start
adp3132.sys
AGP440.sys
ahcix86.sys
ahcix86s.sys
atapi.sys
autochk.exe
cdrom.sys
cngaudit.dll
cryptsvc.dll
eNetHook.dll
eventlog.dll
explorer.exe
hal.dll
Changer.sys
iaStor.sys
iastorv.sys
IdeChnDr.sys
isapnp.sys
JakNDis.sys
KR10N.sys
logevent.dll
lsass.exe
mv61xx.sys
ndis.sys
netlogon.dll
ntelogon.dll
nvata.sys
nvatabus.sys
nvgts.sys
nvraid.sys
nvrd32.sys
nvstor.sys
nvstor32.sys
scecli.dll
sceclt.dll
smss.exe
svchost.exe
symmpi.sys
tcpip.sys
userinit.exe
vaxscsi.sys
viamraid.sys
viasraid.sys
ViPrt.sys
winlogon.exe
ws2_32.dll
/md5stop

%systemroot%*.* /U /s
%SYSTEMDRIVE%\*.exe
%ALLUSERSPROFILE%\Application Data\*.
%ALLUSERSPROFILE%\Application Data\*.exe /s
%APPDATA%\*.
%APPDATA%\*.exe /s
%systemroot%\*. /mp /s
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\Tasks\*.job /lockedfiles
%systemroot%\system32\drivers\*.sys /lockedfiles
%systemroot%\System32\config\*.sav
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\system32\drivers\*.sys /3
%systemroot%\system32\*.* /3
%SYSTEMDRIVE%\*.exe

HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s
reg query "HKLM\Software\Microsoft\Windows NT\CurrentVersion\winlogon" /v GinaDLL /c
reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv" /v ImagePath /c
reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS" /v ImagePath /c

type c:\boot.ini >> test.txt /c
%SystemDrive%\PhysicalMBR.bin /md5

*crack* /s
*keygen* /s
*AntiWPA* /s
*loader* /s
*minodlogin* /s
*tnod* /s
*AutoKMS* /s
*activator* /s
*serial* /s
*w7lxe* /s
Kliknete na Prohledat
Po skenu se vytvori dva logy (OTL.Txt a Extras.txt), oba sem vlozte (kdyz budou dlouhe, rozdelte je do vice prispevku).
Pokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz

Možnost podpořit naše fórum https://platba.viry.cz/payment/

Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Nahoru
Madmaxik
Návštěvník
Návštěvník
Příspěvky: 110
Registrován: 09 lis 2013 17:28

Re: Kontrola logu

#20 Příspěvek od Madmaxik »

Můžu se zaptat co je s diskem?

Antivir mi nějak blb a tak jsem ho smazal a to i kvůly bezproblémové funkci programu CFScript jinak jsem antivir znovu na instalovat. :)

A chtěl bych jsem se zeptat jak to vypadá mě ty logy moc neřeknou. :)

OTL logfile created on: 11.11.2013 7:04:32 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\ASUS\Downloads
64bit- Professional (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7600.16385)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

4,00 Gb Total Physical Memory | 2,42 Gb Available Physical Memory | 60,48% Memory free
8,00 Gb Paging File | 6,26 Gb Available in Paging File | 78,34% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 232,42 Gb Total Space | 131,01 Gb Free Space | 56,37% Space Free | Partition Type: NTFS
Drive D: | 233,33 Gb Total Space | 85,14 Gb Free Space | 36,49% Space Free | Partition Type: NTFS

Computer Name: ASUS-PC | User Name: ASUS | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2013.11.11 06:58:36 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\ASUS\Downloads\OTL.exe
PRC - [2013.11.09 12:38:44 | 000,746,176 | ---- | M] () -- C:\Program Files (x86)\Mobogenie\DaemonProcess.exe
PRC - [2013.11.06 15:34:39 | 000,275,568 | ---- | M] (Mozilla Corporation) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
PRC - [2013.10.31 13:53:34 | 002,349,392 | ---- | M] (LogMeIn Inc.) -- C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe
PRC - [2013.09.12 12:06:22 | 001,337,752 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe
PRC - [2013.08.14 15:19:58 | 000,233,048 | ---- | M] (RealNetworks, Inc.) -- C:\Program Files (x86)\RealNetworks\RealDownloader\recordingmanager.exe
PRC - [2013.08.14 15:19:24 | 000,039,056 | ---- | M] () -- C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe
PRC - [2013.03.15 06:53:06 | 001,266,464 | R--- | M] (NVIDIA Corporation) -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
PRC - [2013.03.14 21:07:46 | 000,383,264 | ---- | M] (NVIDIA Corporation) -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
PRC - [2011.08.22 14:48:12 | 000,028,672 | ---- | M] (Creative Technology Ltd.) -- C:\Windows\V0700Mon.exe


========== Modules (No Company Name) ==========

MOD - [2013.11.09 12:38:44 | 000,746,176 | ---- | M] () -- C:\Program Files (x86)\Mobogenie\DaemonProcess.exe
MOD - [2013.11.06 15:34:39 | 003,368,048 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefox\mozjs.dll


========== Services (SafeList) ==========

SRV:64bit: - [2013.09.12 12:06:22 | 001,337,752 | ---- | M] (ESET) [Auto | Running] -- C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe -- (ekrn)
SRV:64bit: - [2009.07.14 02:41:27 | 001,011,712 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV:64bit: - [2009.07.14 02:40:01 | 000,193,536 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\appmgmts.dll -- (AppMgmt)
SRV - [2013.11.06 15:34:39 | 000,119,408 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2013.10.31 13:53:34 | 002,756,944 | ---- | M] (LogMeIn Inc.) [Auto | Running] -- C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe -- (Hamachi2Svc)
SRV - [2013.10.11 11:51:18 | 000,377,104 | ---- | M] (LogMeIn, Inc.) [Auto | Running] -- C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe -- (LMIGuardianSvc)
SRV - [2013.10.09 19:11:43 | 000,257,416 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2013.08.14 15:19:24 | 000,039,056 | ---- | M] () [Auto | Running] -- C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe -- (RealNetworks Downloader Resolver Service)
SRV - [2013.04.19 22:10:50 | 000,543,656 | ---- | M] (Valve Corporation) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Steam\SteamService.exe -- (Steam Client Service)
SRV - [2013.03.15 06:53:06 | 001,266,464 | R--- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe -- (nvUpdatusService)
SRV - [2013.03.14 21:07:46 | 000,383,264 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe -- (Stereo Service)
SRV - [2010.03.18 12:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2009.06.10 22:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)


========== Driver Services (SafeList) ==========

DRV:64bit: - [2013.09.17 15:17:38 | 000,239,320 | ---- | M] (ESET) [File_System | System | Running] -- C:\Windows\SysNative\drivers\eamonm.sys -- (eamonm)
DRV:64bit: - [2013.09.17 15:17:38 | 000,239,296 | ---- | M] (ESET) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\edevmon.sys -- (edevmon)
DRV:64bit: - [2013.09.17 15:17:38 | 000,220,232 | ---- | M] (ESET) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\epfw.sys -- (epfw)
DRV:64bit: - [2013.09.17 15:17:38 | 000,168,256 | ---- | M] (ESET) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\ehdrv.sys -- (ehdrv)
DRV:64bit: - [2013.09.17 15:17:38 | 000,062,136 | ---- | M] (ESET) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\epfwwfp.sys -- (epfwwfp)
DRV:64bit: - [2013.09.17 15:17:38 | 000,044,120 | ---- | M] (ESET) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\EpfwLWF.sys -- (EpfwLWF)
DRV:64bit: - [2013.03.29 17:39:51 | 000,834,544 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\sptd.sys -- (sptd)
DRV:64bit: - [2012.12.19 06:41:52 | 000,194,488 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\nvhda64v.sys -- (NVHDA)
DRV:64bit: - [2012.09.12 14:20:04 | 000,057,856 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\fssfltr.sys -- (fssfltr)
DRV:64bit: - [2011.09.07 00:00:02 | 000,393,920 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\V0700Vid.sys -- (V0700Vid)
DRV:64bit: - [2011.05.13 02:21:04 | 000,177,640 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ssadmdm.sys -- (ssadmdm)
DRV:64bit: - [2011.05.13 02:21:04 | 000,146,920 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ssadserd.sys -- (ssadserd)
DRV:64bit: - [2011.05.13 02:21:02 | 000,157,672 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ssadbus.sys -- (ssadbus)
DRV:64bit: - [2011.05.13 02:21:02 | 000,036,328 | ---- | M] (Google Inc) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ssadadb.sys -- (androidusb)
DRV:64bit: - [2011.05.13 02:21:02 | 000,016,872 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ssadmdfl.sys -- (ssadmdfl)
DRV:64bit: - [2009.10.21 11:30:32 | 001,270,784 | ---- | M] (VIA Technologies, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\viahduaa.sys -- (VIAHdAudAddService)
DRV:64bit: - [2009.09.23 18:23:02 | 006,180,832 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\igdkmd64.sys -- (igfx)
DRV:64bit: - [2009.07.14 02:52:21 | 000,106,576 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:64bit: - [2009.07.14 02:52:21 | 000,028,752 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:64bit: - [2009.07.14 02:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:64bit: - [2009.07.14 02:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:64bit: - [2009.07.14 02:47:48 | 000,077,888 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:64bit: - [2009.07.14 02:47:48 | 000,023,104 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\Windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
DRV:64bit: - [2009.07.14 02:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:64bit: - [2009.06.20 03:09:57 | 000,054,272 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\L1E62x64.sys -- (L1E)
DRV:64bit: - [2009.06.10 21:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:64bit: - [2009.06.10 21:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:64bit: - [2009.06.10 21:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:64bit: - [2009.06.10 21:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
DRV:64bit: - [2009.03.18 18:35:42 | 000,033,856 | -H-- | M] (LogMeIn, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\hamachi.sys -- (hamachi)
DRV - [2012.10.28 11:28:28 | 000,030,624 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Program Files (x86)\FinalWire\AIDA64 Extreme Edition\kerneld.x64 -- (AIDA64Driver)
DRV - [2009.07.14 02:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.qvo6.com/?utm_source=b&utm_m ... 1380213436
IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {33BB0A4E-99AF-4226-BDF6-49120163DE86}
IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE:64bit: - HKLM\..\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}: "URL" = http://search.qvo6.com/web/?utm_source= ... earchTerms}
IE:64bit: - HKLM\..\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}: "URL" = http://dts.search.ask.com/sr?src=ieb&gc ... earchTerms}
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKLM\..\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}: "URL" = http://dts.search.ask.com/sr?src=ieb&gc ... earchTerms}


IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0



IE - HKU\S-1-5-21-14876253-2174864908-1153771479-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
IE - HKU\S-1-5-21-14876253-2174864908-1153771479-1000\..\SearchScopes,DefaultScope = {33BB0A4E-99AF-4226-BDF6-49120163DE86}
IE - HKU\S-1-5-21-14876253-2174864908-1153771479-1000\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTer ... ORM=IE8SRC
IE - HKU\S-1-5-21-14876253-2174864908-1153771479-1000\..\SearchScopes\{1B3880A0-E137-48C3-BF06-E07388B68D7F}: "URL" = http://www.mapy.cz/?query={searchTerms} ... arch_16194
IE - HKU\S-1-5-21-14876253-2174864908-1153771479-1000\..\SearchScopes\{792F0C27-EAF2-457E-95AD-1041A2ABEDAF}: "URL" = http://slovnik.seznam.cz/?q={searchTerm ... arch_16194
IE - HKU\S-1-5-21-14876253-2174864908-1153771479-1000\..\SearchScopes\{86B86822-E152-4CBB-9EC5-D7F577F450FB}: "URL" = http://encyklopedie.seznam.cz/search?q= ... arch_16194
IE - HKU\S-1-5-21-14876253-2174864908-1153771479-1000\..\SearchScopes\{87DBA894-968F-4243-99DE-EC882ADD1389}: "URL" = http://slovnik.seznam.cz/?q={searchTerm ... arch_16194
IE - HKU\S-1-5-21-14876253-2174864908-1153771479-1000\..\SearchScopes\{94844975-414F-40D0-9C6A-DC2EAA847DEC}: "URL" = http://www.firmy.cz/?q={searchTerms}&so ... arch_16194
IE - HKU\S-1-5-21-14876253-2174864908-1153771479-1000\..\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}: "URL" = http://dts.search.ask.com/sr?src=ieb&gc ... earchTerms}
IE - HKU\S-1-5-21-14876253-2174864908-1153771479-1000\..\SearchScopes\{C654FB6D-6DBE-4687-9317-51164F6BC3C0}: "URL" = http://www.zbozi.cz/?q={searchTerms}&r= ... arch_16194
IE - HKU\S-1-5-21-14876253-2174864908-1153771479-1000\..\SearchScopes\{C765890E-245D-4703-A102-908EFFC3C08E}: "URL" = http://search.seznam.cz/?q={searchTerms ... arch_16194
IE - HKU\S-1-5-21-14876253-2174864908-1153771479-1000\..\SearchScopes\{C89BBD62-DB93-40C6-B36E-FAF36C89456E}: "URL" = http://www.mysearchresults.com/search?c ... earchTerms}
IE - HKU\S-1-5-21-14876253-2174864908-1153771479-1000\..\SearchScopes\{CD753BAD-9B12-42D2-A4B0-29AECA459366}: "URL" = http://tv.seznam.cz/hledej?w={searchTer ... arch_16194
IE - HKU\S-1-5-21-14876253-2174864908-1153771479-1000\..\SearchScopes\{DAE33B51-825B-4F2C-809E-B738C6B4BE12}: "URL" = http://www.novinky.cz/hledej?w={searchT ... arch_16194
IE - HKU\S-1-5-21-14876253-2174864908-1153771479-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0


========== FireFox ==========

FF - prefs.js..browser.startup.homepage: "https://www.google.cz/"
FF - prefs.js..extensions.enabledAddons: %7BDF153AFF-6948-45d7-AC98-4FC4AF8A08E2%7D:1.3.3
FF - prefs.js..extensions.enabledAddons: WebSiteRecommendation%40weliketheweb.com:1.0.6
FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:25.0
FF - user.js - File not found

FF:64bit: - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF64_11_9_900_117.dll File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.7.2: C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF:64bit: - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.7.2: C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF:64bit: - HKLM\Software\MozillaPlugins\adobe.com/AdobeAAMDetect: C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll (Adobe Systems)
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_117.dll ()
FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\Windows\SysWOW64\Adobe\Director\np32dsw_1202122.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.40.2: C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.40.2: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=14.0.8064.0206: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVision: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVisionStreaming: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF - HKLM\Software\MozillaPlugins\@pandonetworks.com/PandoWebPlugin: C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF - HKLM\Software\MozillaPlugins\@real.com/nppl3260;version=16.0.3.51: C:\Program Files (x86)\Real\RealPlayer\Netscape6\nppl3260.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprndlchromebrowserrecordext;version=1.3.3: C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlchromebrowserrecordext.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprndlhtml5videoshim;version=1.3.3: C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlhtml5videoshim.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprndlpepperflashvideoshim;version=1.3.3: C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlpepperflashvideoshim.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprpplugin;version=16.0.3.51: C:\Program Files (x86)\Real\RealPlayer\Netscape6\nprpplugin.dll (RealPlayer)
FF - HKLM\Software\MozillaPlugins\@realnetworks.com/npdlplugin;version=1: C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\npdlplugin.dll (RealDownloader)
FF - HKLM\Software\MozillaPlugins\@richmediaplayer.com/nppluginrichmediaplayer: C:\Program Files (x86)\Mozilla Firefox\plugins\nppluginrichmediaplayer.dll ()
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.0.6: C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF - HKLM\Software\MozillaPlugins\adobe.com/AdobeAAMDetect: C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll (Adobe Systems)
FF - HKCU\Software\MozillaPlugins\@Skype Limited.com/Facebook Video Calling Plugin: C:\Users\ASUS\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll (Skype Limited)
FF - HKCU\Software\MozillaPlugins\@unity3d.com/UnityPlayer,version=1.0: C:\Users\ASUS\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF - HKCU\Software\MozillaPlugins\pandonetworks.com/PandoWebPlugin: C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)

64bit-FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\eplgTb@eset.com: C:\PROGRAM FILES\ESET\ESET SMART SECURITY\MOZILLA THUNDERBIRD [2013.11.11 06:59:35 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{3DF4B26D-DB19-45DF-962A-6719D071245B}: C:\Users\ASUS\AppData\Local\Rich Media Player\BrowserExtensions\Firefox\{3DF4B26D-DB19-45DF-962A-6719D071245B} [2013.08.15 17:58:11 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{ABDE892B-13A8-4d1b-88E6-365A6E755758}: C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext [2013.11.06 16:10:26 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{DF153AFF-6948-45d7-AC98-4FC4AF8A08E2}: C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext\ [2013.11.06 16:10:26 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 25.0\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 25.0\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins [2013.11.09 12:18:59 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\eplgTb@eset.com: C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird [2013.11.11 06:59:35 | 000,000,000 | ---D | M]

[2013.11.10 14:12:00 | 000,000,000 | ---D | M] (No name found) -- C:\Users\ASUS\AppData\Roaming\Mozilla\Extensions
[2013.11.09 12:22:23 | 000,000,000 | ---D | M] (No name found) -- C:\Users\ASUS\AppData\Roaming\Mozilla\Firefox\Profiles\n9rlbgqb.default\extensions
[2013.11.09 12:22:23 | 000,000,000 | ---D | M] ("WebSite Recommendation") -- C:\Users\ASUS\AppData\Roaming\Mozilla\Firefox\Profiles\n9rlbgqb.default\extensions\WebSiteRecommendation@weliketheweb.com
[2013.11.09 12:22:15 | 000,000,000 | ---D | M] (No name found) -- C:\Users\ASUS\AppData\Roaming\Mozilla\Firefox\Profilesn9rlbgqb.default\extensions
[2013.11.09 12:22:15 | 000,000,000 | ---D | M] (No name found) -- C:\Users\ASUS\AppData\Roaming\Mozilla\Firefox\Profilesn9rlbgqb.default\extensions\staged
[2013.11.06 15:34:35 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\extensions
[2013.11.06 15:34:34 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\browser\extensions
[2013.11.06 15:34:39 | 000,000,000 | ---D | M] (Default) -- C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
[2013.11.06 16:10:26 | 000,000,000 | ---D | M] (RealDownloader) -- C:\PROGRAMDATA\REALNETWORKS\REALDOWNLOADER\BROWSERPLUGINS\FIREFOX\EXT
[2012.11.05 19:12:28 | 000,172,032 | ---- | M] (iVIDI.org) -- C:\Program Files (x86)\mozilla firefox\plugins\npffividiplg.dll
[2013.03.12 09:27:46 | 000,093,976 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\plugins\nppluginrichmediaplayer.dll
[2013.09.18 04:47:38 | 000,002,662 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\Ask.xml
[2013.09.26 17:37:17 | 000,000,810 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\qvo6.xml
[2013.04.16 16:28:44 | 000,002,687 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\Search_Results.xml

========== Chrome ==========

CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}{google:omniboxStartMarginParameter}ie={inputEncoding}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client={google:suggestClient}&q={searchTerms}&{google:cursorPosition}{google:zeroPrefixUrl}{google:pageClassification}sugkey={google:suggestAPIKeyParameter},
CHR - plugin: Shockwave Flash (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\30.0.1599.101\PepperFlash\pepflashplayer.dll
CHR - plugin: Chrome Remote Desktop Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\30.0.1599.101\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\30.0.1599.101\pdf.dll
CHR - plugin: Adobe Acrobat (Enabled) = C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Browser\nppdf32.dll
CHR - plugin: AdobeAAMDetect (Enabled) = C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll
CHR - plugin: Google Update (Enabled) = C:\Program Files (x86)\Google\Update\1.3.21.145\npGoogleUpdate3.dll
CHR - plugin: Java(TM) Platform SE 7 U21 (Enabled) = C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll
CHR - plugin: RealPlayer(tm) G2 LiveConnect-Enabled Plug-In (32-bit) (Enabled) = C:\Program Files (x86)\Real\RealPlayer\Netscape6\nppl3260.dll
CHR - plugin: RealPlayer Download Plugin (Enabled) = C:\Program Files (x86)\Real\RealPlayer\Netscape6\nprpplugin.dll
CHR - plugin: VLC Web Plugin (Enabled) = C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
CHR - plugin: Windows Live\u00AE Photo Gallery (Enabled) = C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
CHR - plugin: RealNetworks(tm) RealDownloader Chrome Background Extension Plug-In (32-bit) (Enabled) = C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlchromebrowserrecordext.dll
CHR - plugin: RealNetworks(tm) RealDownloader HTML5VideoShim Plug-In (32-bit) (Enabled) = C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlhtml5videoshim.dll
CHR - plugin: RealNetworks(tm) RealDownloader PepperFlashVideoShim Plug-In (32-bit) (Enabled) = C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlpepperflashvideoshim.dll
CHR - plugin: RealDownloader Plugin (Enabled) = C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\npdlplugin.dll
CHR - plugin: Shockwave for Director (Enabled) = C:\Windows\SysWOW64\Adobe\Director\np32dsw_1202122.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_7_700_202.dll
CHR - plugin: Java Deployment Toolkit 7.0.210.11 (Enabled) = C:\Windows\SysWOW64\npDeployJava1.dll
CHR - Extension: Download Video = C:\Users\ASUS\AppData\Local\Google\Chrome\User Data\Default\Extensions\doagiokpgboiomffjfhaiimafndmmpni\1.3.1_0\
CHR - Extension: lucky leap = C:\Users\ASUS\AppData\Local\Google\Chrome\User Data\Default\Extensions\eiimolhnbbbdagljikeckdkldgemmmlj\1.0.0_0\
CHR - Extension: iVIDI.org plugin = C:\Users\ASUS\AppData\Local\Google\Chrome\User Data\Default\Extensions\giacfgjdclhnmkacnfbaljbmpnelflol\1.3_0\
CHR - Extension: DefaultTab = C:\Users\ASUS\AppData\Local\Google\Chrome\User Data\Default\Extensions\kdidombaedgpfiiedeimiebkmbilgmlc\1.1.19_0\
CHR - Extension: DefaultTab = C:\Users\ASUS\AppData\Local\Google\Chrome\User Data\Default\Extensions\kdidombaedgpfiiedeimiebkmbilgmlc\1.1.25_0\
CHR - Extension: DefaultTab = C:\Users\ASUS\AppData\Local\Google\Chrome\User Data\Default\Extensions\kdidombaedgpfiiedeimiebkmbilgmlc\1.1.27_0\
CHR - Extension: DefaultTab = C:\Users\ASUS\AppData\Local\Google\Chrome\User Data\Default\Extensions\kdidombaedgpfiiedeimiebkmbilgmlc\1.1.28_0\
CHR - Extension: Pen\u011B\u017Eenka Google = C:\Users\ASUS\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.4.10_0\
CHR - Extension: Pen\u011B\u017Eenka Google = C:\Users\ASUS\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.4.11_0\
CHR - Extension: Pen\u011B\u017Eenka Google = C:\Users\ASUS\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.4.9_0\
CHR - Extension: Pen\u011B\u017Eenka Google = C:\Users\ASUS\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.5.0_0\
CHR - Extension: WebSite Recommendation = C:\Users\ASUS\AppData\Local\Google\Chrome\User Data\Default\Extensions\olakgnkoldmagdblaalodobkmeokmgjj\2.2_0\

O1 HOSTS File: ([2013.11.10 18:59:04 | 000,000,027 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2:64bit: - BHO: (Windows Live Family Safety Browser Helper Class) - {4f3ed5cd-0726-42a9-87f5-d13f3d2976ac} - C:\Program Files\Windows Live\Family Safety\fssbho.dll (Microsoft Corporation)
O2:64bit: - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2:64bit: - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O2 - BHO: (RealNetworks Download and Record Plugin for Internet Explorer) - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll (RealDownloader)
O2 - BHO: (no name) - {377e5d4d-77e5-476a-8716-7e70a9272da0} - No CLSID value found.
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (Rich Media Downloader) - {A7DF592F-6E2A-45C4-9A87-4BD217D714ED} - C:\Users\ASUS\AppData\Local\Rich Media Player\BrowserExtensions\IE\RichMediaDownloader.dll (Radiocom CJSC)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O2 - BHO: (Rich Media Player) - {FEB703F7-E7B2-4AB0-9566-87658AC70095} - C:\Users\ASUS\AppData\Local\Rich Media Player\BrowserExtensions\IE\PluginRichmediaplayer.dll ()
O3:64bit: - HKLM\..\Toolbar: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files (x86)\DAEMON Tools Toolbar\DTToolbar64.dll ()
O3 - HKLM\..\Toolbar: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files (x86)\DAEMON Tools Toolbar\DTToolbar.dll ()
O3 - HKLM\..\Toolbar: (no name) - {377e5d4d-77e5-476a-8716-7e70a9272da0} - No CLSID value found.
O3 - HKLM\..\Toolbar: (no name) - 10 - No CLSID value found.
O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O3:64bit: - HKU\S-1-5-21-14876253-2174864908-1153771479-1000\..\Toolbar\WebBrowser: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files (x86)\DAEMON Tools Toolbar\DTToolbar64.dll ()
O3 - HKU\S-1-5-21-14876253-2174864908-1153771479-1000\..\Toolbar\WebBrowser: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files (x86)\DAEMON Tools Toolbar\DTToolbar.dll ()
O4:64bit: - HKLM..\Run: [egui] C:\Program Files\ESET\ESET Smart Security\egui.exe (ESET)
O4:64bit: - HKLM..\Run: [HotKeysCmds] C:\Windows\SysNative\hkcmd.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [IgfxTray] C:\Windows\SysNative\igfxtray.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [Persistence] C:\Windows\SysNative\igfxpers.exe (Intel Corporation)
O4 - HKLM..\Run: [HDAudDeck] C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe (VIA)
O4 - HKLM..\Run: [LogMeIn Hamachi Ui] C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe (LogMeIn Inc.)
O4 - HKLM..\Run: [mobilegeni daemon] C:\Program Files (x86)\Mobogenie\DaemonProcess.exe ()
O4 - HKLM..\Run: [V0700Mon.exe] C:\Windows\V0700Mon.exe (Creative Technology Ltd.)
O4 - HKU\S-1-5-21-14876253-2174864908-1153771479-1000..\Run: [Clownfish] C:\Program Files (x86)\Clownfish\Clownfish.exe (Bogdan Sharkov)
O4 - HKU\S-1-5-21-14876253-2174864908-1153771479-1000..\Run: [screenSHU] C:\Program Files (x86)\screenSHU\screenSHU.exe ()
O4 - HKU\S-1-5-21-14876253-2174864908-1153771479-1001..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-21-14876253-2174864908-1153771479-1001..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0
O7 - HKU\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-19\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-20\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-14876253-2174864908-1153771479-1000\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-14876253-2174864908-1153771479-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-14876253-2174864908-1153771479-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O7 - HKU\S-1-5-21-14876253-2174864908-1153771479-1001\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O9 - Extra 'Tools' menuitem : Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - Reg Error: Key error. File not found
O9 - Extra Button: Rich Media Downloader - {A7DF592F-6E2A-45C4-9A87-4BD217D714ED} - C:\Users\ASUS\AppData\Local\Rich Media Player\BrowserExtensions\IE\RichMediaDownloader.dll (Radiocom CJSC)
O13 - gopher Prefix: missing
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.0.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{53E2A577-0C35-4B6E-9C69-F9F58F71CBB4}: DhcpNameServer = 192.168.0.1
O18:64bit: - Protocol\Handler\grooveLocalGWS - No CLSID value found
O18:64bit: - Protocol\Handler\livecall - No CLSID value found
O18:64bit: - Protocol\Handler\ms-help - No CLSID value found
O18:64bit: - Protocol\Handler\msnim - No CLSID value found
O18:64bit: - Protocol\Handler\skype4com - No CLSID value found
O18:64bit: - Protocol\Handler\wlmailhtml - No CLSID value found
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O20:64bit: - HKLM Winlogon: Shell - (Explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysWOW64\userinit.exe (Microsoft Corporation)
O20:64bit: - Winlogon\Notify\igfxcui: DllName - (igfxdev.dll) - C:\Windows\SysNative\igfxdev.dll (Intel Corporation)
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O34 - HKLM BootExecute: (autocheck autochk /p \??\F:)
O34 - HKLM BootExecute: (autocheck autochk *)
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = ComFile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = ComFile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

CREATERESTOREPOINT
Restore point Set: OTL Restore Point

NetSvcs:64bit: AppMgmt - C:\Windows\SysNative\appmgmts.dll (Microsoft Corporation)

Drivers32:64bit: msacm.l3acm - C:\Windows\System32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32:64bit: VIDC.FPS1 - frapsv64.dll (Beepa P/L)
Drivers32: msacm.l3acm - C:\Windows\SysWOW64\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: vidc.cvid - C:\Windows\SysWow64\iccvid.dll (Radius Inc.)
Drivers32: VIDC.FPS1 - frapsvid.dll File not found
PhysicalDisk0 MBR saved to C:\PhysicalMBR.bin

========== Files/Folders - Created Within 30 Days ==========

[2013.11.11 06:59:34 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ESET
[2013.11.11 06:59:34 | 000,000,000 | ---D | C] -- C:\ProgramData\ESET
[2013.11.11 06:59:34 | 000,000,000 | ---D | C] -- C:\Program Files\ESET
[2013.11.10 20:33:32 | 000,000,000 | ---D | C] -- C:\Users\ASUS\Desktop\Smart
[2013.11.10 20:33:16 | 001,149,912 | ---- | C] (Crystal Dew World) -- C:\Users\ASUS\Desktop\DiskInfo.exe
[2013.11.10 20:33:16 | 000,000,000 | ---D | C] -- C:\Users\ASUS\Desktop\CdiResource
[2013.11.10 18:59:10 | 000,000,000 | ---D | C] -- C:\$RECYCLE.BIN
[2013.11.10 18:57:13 | 000,000,000 | ---D | C] -- C:\Windows\temp
[2013.11.10 17:38:25 | 000,518,144 | ---- | C] (SteelWerX) -- C:\Windows\SWREG.exe
[2013.11.10 17:38:25 | 000,406,528 | ---- | C] (SteelWerX) -- C:\Windows\SWSC.exe
[2013.11.10 17:38:25 | 000,060,416 | ---- | C] (NirSoft) -- C:\Windows\NIRCMD.exe
[2013.11.10 17:38:18 | 000,000,000 | ---D | C] -- C:\Qoobox
[2013.11.10 17:37:56 | 000,000,000 | ---D | C] -- C:\Windows\erdnt
[2013.11.10 16:28:40 | 005,144,429 | R--- | C] (Swearware) -- C:\Users\ASUS\Desktop\ComboFix.exe
[2013.11.10 15:55:22 | 000,000,000 | ---D | C] -- C:\Users\ASUS\Desktop\RK_Quarantine
[2013.11.09 19:16:20 | 000,000,000 | ---D | C] -- C:\Users\ASUS\AppData\Roaming\Malwarebytes
[2013.11.09 19:16:00 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2013.11.09 19:15:57 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware
[2013.11.09 17:33:02 | 000,000,000 | ---D | C] -- C:\Program Files\trend micro
[2013.11.09 17:33:01 | 000,000,000 | ---D | C] -- C:\rsit
[2013.11.09 14:30:15 | 000,033,856 | -H-- | C] (LogMeIn, Inc.) -- C:\Windows\SysNative\hamachi.sys
[2013.11.09 14:30:13 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogMeIn Hamachi
[2013.11.09 14:30:12 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\LogMeIn Hamachi
[2013.11.09 14:30:12 | 000,000,000 | ---D | C] -- C:\Users\ASUS\AppData\Local\LogMeIn
[2013.11.09 14:30:12 | 000,000,000 | ---D | C] -- C:\ProgramData\LogMeIn
[2013.11.09 14:29:51 | 000,000,000 | ---D | C] -- C:\Users\ASUS\AppData\Local\LogMeIn Hamachi
[2013.11.09 13:47:06 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Games
[2013.11.09 13:42:53 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Games
[2013.11.09 13:03:37 | 003,767,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_26.dll
[2013.11.09 13:03:37 | 002,297,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_26.dll
[2013.11.09 13:03:32 | 003,823,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_25.dll
[2013.11.09 13:03:32 | 002,337,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_25.dll
[2013.11.09 12:42:38 | 000,000,000 | ---D | C] -- C:\Users\ASUS\.android
[2013.11.09 12:24:26 | 000,000,000 | ---D | C] -- C:\Users\ASUS\AppData\Roaming\Python-Eggs
[2013.11.09 12:24:20 | 000,000,000 | ---D | C] -- C:\Users\ASUS\AppData\Roaming\BitLord
[2013.11.09 12:24:15 | 000,000,000 | ---D | C] -- C:\Users\ASUS\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BitLord
[2013.11.09 12:23:29 | 000,000,000 | ---D | C] -- C:\Users\ASUS\AppData\Local\cache
[2013.11.09 12:23:22 | 000,000,000 | ---D | C] -- C:\Users\ASUS\Documents\Mobogenie
[2013.11.09 12:23:22 | 000,000,000 | ---D | C] -- C:\Users\ASUS\AppData\Local\Mobogenie
[2013.11.09 12:22:47 | 000,000,000 | ---D | C] -- C:\Users\ASUS\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Mobogenie
[2013.11.09 12:22:35 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\BitLord 2
[2013.11.09 12:22:31 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mobogenie
[2013.11.09 12:22:17 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\SimilarSites
[2013.11.09 12:22:11 | 000,000,000 | ---D | C] -- C:\Users\ASUS\AppData\Roaming\SimilarSites
[2013.11.09 12:18:59 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\iVIDI.org plugin
[2013.11.06 16:10:25 | 000,000,000 | ---D | C] -- C:\ProgramData\RealNetworks
[2013.11.06 16:09:29 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\xing shared
[2013.11.06 15:34:34 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mozilla Firefox
[2013.11.04 16:37:45 | 000,000,000 | ---D | C] -- C:\Users\ASUS\AppData\Local\WarThunder
[2013.11.04 16:37:45 | 000,000,000 | ---D | C] -- C:\ProgramData\WarThunder
[2013.11.04 16:36:55 | 000,000,000 | ---D | C] -- C:\Users\ASUS\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WarThunder
[2013.11.04 16:36:55 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\WarThunder
[2013.11.04 16:36:55 | 000,000,000 | ---D | C] -- C:\Users\ASUS\Documents\My Games
[2013.10.25 18:34:01 | 000,000,000 | ---D | C] -- C:\Users\ASUS\Desktop\Nová složka
[2013.10.18 12:22:29 | 000,000,000 | ---D | C] -- C:\Users\ASUS\AppData\Roaming\LolClient
[2013.10.18 11:10:29 | 001,493,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_39.dll
[2013.10.18 11:10:29 | 000,467,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_39.dll
[2013.10.18 11:10:28 | 003,851,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_39.dll
[2013.10.18 11:10:03 | 000,000,000 | -HSD | C] -- C:\Windows\SysWow64\AI_RecycleBin
[2013.10.18 11:09:56 | 000,000,000 | ---D | C] -- C:\Riot Games
[2013.10.18 11:09:56 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\League of Legends
[2013.10.14 18:35:21 | 000,000,000 | ---D | C] -- C:\Users\ASUS\Desktop\save
[2013.10.14 18:34:25 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Diablo II
[2013.10.14 15:50:56 | 000,000,000 | ---D | C] -- C:\Users\ASUS\AppData\Roaming\vegas120
[2013.10.14 15:50:56 | 000,000,000 | ---D | C] -- C:\Users\ASUS\AppData\Local\vegas120
[2013.10.13 19:52:39 | 000,000,000 | ---D | C] -- C:\Users\ASUS\AppData\Roaming\Publish Providers
[2013.10.13 19:51:17 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sony
[2013.10.13 19:50:26 | 000,000,000 | ---D | C] -- C:\Users\ASUS\AppData\Local\Sony
[2013.10.13 19:50:26 | 000,000,000 | ---D | C] -- C:\ProgramData\Sony
[2013.10.13 19:50:26 | 000,000,000 | ---D | C] -- C:\Program Files\Sony
[2013.10.13 19:50:26 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Sony
[2013.10.13 19:43:37 | 000,000,000 | ---D | C] -- C:\Users\ASUS\AppData\Roaming\Sony
[2012.09.13 23:38:00 | 002,777,920 | ---- | C] (Beepa Pty Ltd) -- C:\Users\ASUS\AppData\Local\Tempsetup_fraps.exe
[199 C:\Windows\SysWow64\*.tmp files -> C:\Windows\SysWow64\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2013.11.11 07:06:05 | 000,000,512 | ---- | M] () -- C:\PhysicalMBR.bin
[2013.11.11 07:01:30 | 000,014,032 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2013.11.11 07:01:30 | 000,014,032 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2013.11.11 07:00:12 | 001,583,754 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2013.11.11 07:00:12 | 000,668,960 | ---- | M] () -- C:\Windows\SysNative\perfh005.dat
[2013.11.11 07:00:12 | 000,654,354 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2013.11.11 07:00:12 | 000,140,592 | ---- | M] () -- C:\Windows\SysNative\perfc005.dat
[2013.11.11 07:00:12 | 000,121,226 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2013.11.11 06:54:23 | 000,000,944 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2013.11.11 06:54:03 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2013.11.11 06:53:59 | 3220,578,304 | -HS- | M] () -- C:\hiberfil.sys
[2013.11.10 21:12:56 | 000,000,416 | ---- | M] () -- C:\Users\ASUS\Desktop\DiskInfo.ini
[2013.11.10 21:09:00 | 000,000,914 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2013.11.10 20:35:00 | 000,000,952 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2013.11.10 20:06:02 | 000,000,924 | ---- | M] () -- C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-14876253-2174864908-1153771479-1000UA.job
[2013.11.10 18:59:04 | 000,000,027 | ---- | M] () -- C:\Windows\SysNative\drivers\etc\hosts
[2013.11.10 17:06:09 | 000,000,902 | ---- | M] () -- C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-14876253-2174864908-1153771479-1000Core.job
[2013.11.10 16:28:59 | 005,144,429 | R--- | M] (Swearware) -- C:\Users\ASUS\Desktop\ComboFix.exe
[2013.11.10 15:55:19 | 003,538,944 | ---- | M] () -- C:\Users\ASUS\Desktop\RogueKiller.exe
[2013.11.10 14:25:08 | 000,000,044 | ---- | M] () -- C:\Users\ASUS\AppData\Roaming\mbam.context.scan
[2013.11.09 13:47:06 | 000,002,163 | ---- | M] () -- C:\Users\Public\Desktop\Age of Empires III.lnk
[2013.11.09 13:36:54 | 000,000,218 | ---- | M] () -- C:\Users\ASUS\AppData\Local\recently-used.xbel
[2013.11.09 12:24:15 | 000,002,029 | ---- | M] () -- C:\Users\ASUS\Desktop\BitLord.lnk
[2013.11.09 12:22:47 | 000,001,025 | ---- | M] () -- C:\Users\ASUS\Desktop\Mobogenie.lnk
[2013.11.08 19:05:04 | 000,201,159 | ---- | M] () -- C:\Users\ASUS\Desktop\WTF.dib
[2013.11.08 18:59:25 | 000,207,051 | ---- | M] () -- C:\Users\ASUS\Desktop\nahravaní.png
[2013.11.08 17:19:11 | 001,151,821 | ---- | M] () -- C:\Users\ASUS\Desktop\Bez názvu.png
[2013.11.08 16:18:01 | 000,439,325 | ---- | M] () -- C:\Users\ASUS\Desktop\zase.png
[2013.11.08 13:56:23 | 000,013,952 | ---- | M] () -- C:\Users\ASUS\Documents\Untitled.veg
[2013.11.08 13:44:41 | 000,000,728 | ---- | M] () -- C:\Users\ASUS\Documents\Default.sfvidcap
[2013.11.08 13:22:39 | 002,565,024 | ---- | M] () -- C:\Users\ASUS\Desktop\Untitled.mp4.sfk
[2013.11.07 21:41:40 | 1762,690,705 | ---- | M] () -- C:\Users\ASUS\Desktop\Untitled.mp4
[2013.11.07 21:33:30 | 000,415,190 | ---- | M] () -- C:\Users\ASUS\Desktop\Néééé.png
[2013.11.07 19:07:33 | 281,655,100 | ---- | M] () -- C:\Users\ASUS\Documents\Wot.mp4
[2013.11.07 19:00:40 | 000,065,969 | ---- | M] () -- C:\Users\ASUS\Desktop\konec.png
[2013.11.06 16:10:36 | 000,001,270 | ---- | M] () -- C:\Users\Public\Desktop\RealPlayer.lnk
[2013.11.06 16:09:23 | 000,201,872 | ---- | M] (RealNetworks, Inc.) -- C:\Windows\SysWow64\rmoc3260.dll
[2013.11.06 16:09:16 | 000,006,656 | ---- | M] (RealNetworks, Inc.) -- C:\Windows\SysWow64\pndx5016.dll
[2013.11.06 16:09:16 | 000,005,632 | ---- | M] (RealNetworks, Inc.) -- C:\Windows\SysWow64\pndx5032.dll
[2013.11.06 16:09:15 | 000,272,896 | ---- | M] (Progressive Networks) -- C:\Windows\SysWow64\pncrt.dll
[2013.11.04 16:36:56 | 000,001,107 | ---- | M] () -- C:\Users\Public\Desktop\WarThunder.lnk
[2013.10.25 18:51:42 | 003,166,706 | ---- | M] () -- C:\Users\ASUS\Desktop\SAM_2996.JPG
[2013.10.18 11:09:58 | 000,001,613 | ---- | M] () -- C:\Users\Public\Desktop\Play League of Legends.lnk
[2013.10.14 18:43:35 | 000,021,840 | ---- | M] () -- C:\Windows\SysWow64\SIntfNT.dll
[2013.10.14 18:43:35 | 000,017,212 | ---- | M] () -- C:\Windows\SysWow64\SIntf32.dll
[2013.10.14 18:43:35 | 000,012,067 | ---- | M] () -- C:\Windows\SysWow64\SIntf16.dll
[2013.10.14 17:57:18 | 003,465,876 | ---- | M] () -- C:\Users\ASUS\Desktop\WOT_1.png
[2013.10.13 19:51:21 | 000,001,044 | ---- | M] () -- C:\Users\Public\Desktop\Vegas Pro 12.0 (64-bit).lnk
[2013.10.13 17:13:32 | 000,000,000 | -H-- | M] () -- C:\Windows\SysNative\drivers\Msft_User_WpdMtpDr_01_09_00.Wdf
[199 C:\Windows\SysWow64\*.tmp files -> C:\Windows\SysWow64\*.tmp -> ]

========== Files Created - No Company Name ==========

[2013.11.11 07:06:05 | 000,000,512 | ---- | C] () -- C:\PhysicalMBR.bin
[2013.11.10 20:33:25 | 000,000,416 | ---- | C] () -- C:\Users\ASUS\Desktop\DiskInfo.ini
[2013.11.10 17:38:25 | 000,256,000 | ---- | C] () -- C:\Windows\PEV.exe
[2013.11.10 17:38:25 | 000,208,896 | ---- | C] () -- C:\Windows\MBR.exe
[2013.11.10 17:38:25 | 000,098,816 | ---- | C] () -- C:\Windows\sed.exe
[2013.11.10 17:38:25 | 000,080,412 | ---- | C] () -- C:\Windows\grep.exe
[2013.11.10 17:38:25 | 000,068,096 | ---- | C] () -- C:\Windows\zip.exe
[2013.11.10 15:55:07 | 003,538,944 | ---- | C] () -- C:\Users\ASUS\Desktop\RogueKiller.exe
[2013.11.10 14:25:08 | 000,000,044 | ---- | C] () -- C:\Users\ASUS\AppData\Roaming\mbam.context.scan
[2013.11.09 13:47:06 | 000,002,163 | ---- | C] () -- C:\Users\Public\Desktop\Age of Empires III.lnk
[2013.11.09 13:36:54 | 000,000,218 | ---- | C] () -- C:\Users\ASUS\AppData\Local\recently-used.xbel
[2013.11.09 12:24:15 | 000,002,029 | ---- | C] () -- C:\Users\ASUS\Desktop\BitLord.lnk
[2013.11.09 12:22:47 | 000,001,025 | ---- | C] () -- C:\Users\ASUS\Desktop\Mobogenie.lnk
[2013.11.08 19:05:04 | 000,201,159 | ---- | C] () -- C:\Users\ASUS\Desktop\WTF.dib
[2013.11.08 18:59:24 | 000,207,051 | ---- | C] () -- C:\Users\ASUS\Desktop\nahravaní.png
[2013.11.08 16:18:01 | 000,439,325 | ---- | C] () -- C:\Users\ASUS\Desktop\zase.png
[2013.11.08 13:56:23 | 000,013,952 | ---- | C] () -- C:\Users\ASUS\Documents\Untitled.veg
[2013.11.08 13:44:41 | 000,000,728 | ---- | C] () -- C:\Users\ASUS\Documents\Default.sfvidcap
[2013.11.08 13:17:12 | 002,565,024 | ---- | C] () -- C:\Users\ASUS\Desktop\Untitled.mp4.sfk
[2013.11.07 21:33:30 | 000,415,190 | ---- | C] () -- C:\Users\ASUS\Desktop\Néééé.png
[2013.11.07 19:39:40 | 1762,690,705 | ---- | C] () -- C:\Users\ASUS\Desktop\Untitled.mp4
[2013.11.07 19:07:33 | 281,655,100 | ---- | C] () -- C:\Users\ASUS\Documents\Wot.mp4
[2013.11.07 19:00:40 | 000,065,969 | ---- | C] () -- C:\Users\ASUS\Desktop\konec.png
[2013.11.07 18:36:01 | 001,151,821 | ---- | C] () -- C:\Users\ASUS\Desktop\Bez názvu.png
[2013.11.06 16:10:36 | 000,001,270 | ---- | C] () -- C:\Users\Public\Desktop\RealPlayer.lnk
[2013.11.04 16:36:56 | 000,001,107 | ---- | C] () -- C:\Users\Public\Desktop\WarThunder.lnk
[2013.10.25 18:51:40 | 003,166,706 | ---- | C] () -- C:\Users\ASUS\Desktop\SAM_2996.JPG
[2013.10.18 11:09:58 | 000,001,613 | ---- | C] () -- C:\Users\Public\Desktop\Play League of Legends.lnk
[2013.10.14 18:26:17 | 000,021,840 | ---- | C] () -- C:\Windows\SysWow64\SIntfNT.dll
[2013.10.14 18:26:17 | 000,017,212 | ---- | C] () -- C:\Windows\SysWow64\SIntf32.dll
[2013.10.14 18:26:17 | 000,012,067 | ---- | C] () -- C:\Windows\SysWow64\SIntf16.dll
[2013.10.14 17:57:18 | 003,465,876 | ---- | C] () -- C:\Users\ASUS\Desktop\WOT_1.png
[2013.10.13 19:51:21 | 000,001,044 | ---- | C] () -- C:\Users\Public\Desktop\Vegas Pro 12.0 (64-bit).lnk
[2013.10.13 17:13:32 | 000,000,000 | -H-- | C] () -- C:\Windows\SysNative\drivers\Msft_User_WpdMtpDr_01_09_00.Wdf
[2013.08.24 06:28:26 | 000,000,896 | RHS- | C] () -- C:\Users\ASUS\ntuser.pol
[2013.08.15 18:24:00 | 000,234,010 | ---- | C] () -- C:\Windows\SysWow64\poclbm130302GeForce GTX 650 Tigv1w256l4.bin
[2013.08.15 18:23:29 | 000,000,000 | ---- | C] () -- C:\Users\ASUS\regbcm
[2013.04.27 10:31:34 | 000,722,983 | ---- | C] () -- C:\Windows\Counter-Strike 1.6 Standalone Uninstaller.exe
[2013.04.26 14:24:56 | 000,000,106 | ---- | C] () -- C:\Windows\SysWow64\verze.dat
[2013.04.11 15:13:21 | 000,000,058 | ---- | C] () -- C:\Windows\SysWow64\DonationCoder_ScreenshotCaptor_InstallInfo.dat
[2013.04.11 15:13:21 | 000,000,058 | ---- | C] () -- C:\Users\ASUS\AppData\Local\DonationCoder_ScreenshotCaptor_InstallInfo.dat
[2013.03.31 15:16:28 | 000,007,600 | ---- | C] () -- C:\Users\ASUS\AppData\Local\Resmon.ResmonCfg
[2013.03.29 18:09:19 | 001,562,216 | ---- | C] () -- C:\Windows\SysWow64\PerfStringBackup.INI
[2013.03.29 17:19:10 | 000,001,769 | ---- | C] () -- C:\Windows\Language_trs.ini

========== ZeroAccess Check ==========

[2009.07.14 05:55:00 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
"" = C:\Windows\SysNative\shell32.dll -- [2009.07.14 02:41:54 | 014,161,920 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2009.07.14 02:16:14 | 012,866,560 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\fastprox.dll -- [2009.07.14 02:40:51 | 000,909,312 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2009.07.14 02:15:20 | 000,605,696 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\wbemess.dll -- [2009.07.14 02:41:56 | 000,505,856 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]

========== LOP Check ==========

[2013.11.04 16:34:01 | 000,000,000 | ---D | M] -- C:\Users\ASUS\AppData\Roaming\.minecraft
[2013.11.06 18:31:46 | 000,000,000 | ---D | M] -- C:\Users\ASUS\AppData\Roaming\.technic
[2013.10.14 17:02:30 | 000,000,000 | ---D | M] -- C:\Users\ASUS\AppData\Roaming\Audacity
[2013.11.09 13:01:50 | 000,000,000 | ---D | M] -- C:\Users\ASUS\AppData\Roaming\BitLord
[2013.11.09 22:24:21 | 000,000,000 | ---D | M] -- C:\Users\ASUS\AppData\Roaming\com.flash.WidgetBrowser
[2013.11.09 17:26:58 | 000,000,000 | ---D | M] -- C:\Users\ASUS\AppData\Roaming\DAEMON Tools Lite
[2013.11.10 14:12:39 | 000,000,000 | ---D | M] -- C:\Users\ASUS\AppData\Roaming\DefaultTab
[2013.04.11 15:13:21 | 000,000,000 | ---D | M] -- C:\Users\ASUS\AppData\Roaming\DonationCoder
[2013.10.06 14:27:36 | 000,000,000 | ---D | M] -- C:\Users\ASUS\AppData\Roaming\ESET
[2013.09.28 14:42:43 | 000,000,000 | ---D | M] -- C:\Users\ASUS\AppData\Roaming\eUpdate
[2013.10.10 17:20:47 | 000,000,000 | ---D | M] -- C:\Users\ASUS\AppData\Roaming\ftblauncher
[2013.03.29 17:28:47 | 000,000,000 | ---D | M] -- C:\Users\ASUS\AppData\Roaming\GHISLER
[2013.04.09 15:50:25 | 000,000,000 | ---D | M] -- C:\Users\ASUS\AppData\Roaming\Jasc
[2013.10.18 12:22:29 | 000,000,000 | ---D | M] -- C:\Users\ASUS\AppData\Roaming\LolClient
[2013.09.17 18:02:39 | 000,000,000 | ---D | M] -- C:\Users\ASUS\AppData\Roaming\OBS
[2013.10.13 19:52:39 | 000,000,000 | ---D | M] -- C:\Users\ASUS\AppData\Roaming\Publish Providers
[2013.11.09 12:24:26 | 000,000,000 | ---D | M] -- C:\Users\ASUS\AppData\Roaming\Python-Eggs
[2013.09.12 05:16:04 | 000,000,000 | ---D | M] -- C:\Users\ASUS\AppData\Roaming\Radiocom
[2013.09.02 10:48:48 | 000,000,000 | ---D | M] -- C:\Users\ASUS\AppData\Roaming\Riot Games
[2013.11.10 14:35:10 | 000,000,000 | ---D | M] -- C:\Users\ASUS\AppData\Roaming\Seznam.cz
[2013.11.09 12:22:11 | 000,000,000 | ---D | M] -- C:\Users\ASUS\AppData\Roaming\SimilarSites
[2013.11.07 19:07:33 | 000,000,000 | ---D | M] -- C:\Users\ASUS\AppData\Roaming\Sony
[2013.05.30 04:08:51 | 000,000,000 | ---D | M] -- C:\Users\ASUS\AppData\Roaming\Splitscreen Studios
[2013.08.29 09:50:33 | 000,000,000 | ---D | M] -- C:\Users\ASUS\AppData\Roaming\TS3Client
[2013.06.14 08:23:25 | 000,000,000 | ---D | M] -- C:\Users\ASUS\AppData\Roaming\Unity
[2013.10.14 15:50:56 | 000,000,000 | ---D | M] -- C:\Users\ASUS\AppData\Roaming\vegas120
[2013.08.31 18:05:25 | 000,000,000 | ---D | M] -- C:\Users\ASUS\AppData\Roaming\Wargaming.net

========== Purity Check ==========



========== Custom Scans ==========

< >
[2009.07.14 06:08:49 | 000,000,006 | -H-- | C] () -- C:\Windows\Tasks\SA.DAT
[2009.07.14 06:08:49 | 000,032,586 | ---- | C] () -- C:\Windows\Tasks\SCHEDLGU.TXT
[2013.03.29 17:31:30 | 000,000,944 | ---- | C] () -- C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
[2013.06.13 16:01:49 | 000,000,902 | ---- | C] () -- C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-14876253-2174864908-1153771479-1000Core.job
[2013.06.13 16:01:50 | 000,000,924 | ---- | C] () -- C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-14876253-2174864908-1153771479-1000UA.job
[2013.07.08 10:20:50 | 000,000,952 | ---- | C] () -- C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
[2013.10.03 16:41:07 | 000,000,914 | ---- | C] () -- C:\Windows\Tasks\Adobe Flash Player Updater.job

< >

< MD5 for: AGP440.SYS >
[2009.07.14 02:52:21 | 000,061,008 | ---- | M] (Microsoft Corporation) MD5=608C14DBA7299D8CB6ED035A68A15799 -- C:\Windows\SysNative\drivers\AGP440.sys
[2009.07.14 02:52:21 | 000,061,008 | ---- | M] (Microsoft Corporation) MD5=608C14DBA7299D8CB6ED035A68A15799 -- C:\Windows\SysNative\DriverStore\FileRepository\machine.inf_amd64_neutral_9e6bb86c3b39a3e9\AGP440.sys
[2009.07.14 02:52:21 | 000,061,008 | ---- | M] (Microsoft Corporation) MD5=608C14DBA7299D8CB6ED035A68A15799 -- C:\Windows\winsxs\amd64_machine.inf_31bf3856ad364e35_6.1.7600.16385_none_1607dee2d861e021\AGP440.sys

< MD5 for: ATAPI.SYS >
[2009.07.14 02:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\erdnt\cache64\atapi.sys
[2009.07.14 02:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\SysNative\drivers\atapi.sys
[2009.07.14 02:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\SysNative\DriverStore\FileRepository\mshdc.inf_amd64_neutral_a69a58a4286f0b22\atapi.sys
[2009.07.14 02:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\winsxs\amd64_mshdc.inf_31bf3856ad364e35_6.1.7600.16385_none_392d19c13b3ad543\atapi.sys

< MD5 for: AUTOCHK.EXE >
[2009.07.14 02:14:12 | 000,668,160 | ---- | M] (Microsoft Corporation) MD5=41E4C8EBA464E7D6A5BA5E8827732AEB -- C:\Windows\SysWOW64\autochk.exe
[2009.07.14 02:14:12 | 000,668,160 | ---- | M] (Microsoft Corporation) MD5=41E4C8EBA464E7D6A5BA5E8827732AEB -- C:\Windows\winsxs\x86_microsoft-windows-autochk_31bf3856ad364e35_6.1.7600.16385_none_e1ca436d2314b860\autochk.exe
[2009.07.14 02:38:56 | 000,777,728 | ---- | M] (Microsoft Corporation) MD5=8B7F8E882A649D81CEA1EDE9BBB68FFF -- C:\Windows\SysNative\autochk.exe
[2009.07.14 02:38:56 | 000,777,728 | ---- | M] (Microsoft Corporation) MD5=8B7F8E882A649D81CEA1EDE9BBB68FFF -- C:\Windows\winsxs\amd64_microsoft-windows-autochk_31bf3856ad364e35_6.1.7600.16385_none_3de8def0db722996\autochk.exe

< MD5 for: CDROM.SYS >
[2009.07.14 00:19:54 | 000,147,456 | ---- | M] (Microsoft Corporation) MD5=83D2D75E1EFB81B3450C18131443F7DB -- C:\Windows\SysNative\drivers\cdrom.sys
[2009.07.14 00:19:54 | 000,147,456 | ---- | M] (Microsoft Corporation) MD5=83D2D75E1EFB81B3450C18131443F7DB -- C:\Windows\SysNative\DriverStore\FileRepository\cdrom.inf_amd64_neutral_8363d00ecae4322d\cdrom.sys
[2009.07.14 00:19:54 | 000,147,456 | ---- | M] (Microsoft Corporation) MD5=83D2D75E1EFB81B3450C18131443F7DB -- C:\Windows\winsxs\amd64_cdrom.inf_31bf3856ad364e35_6.1.7600.16385_none_bb9e4d89bd7870f1\cdrom.sys

< MD5 for: CNGAUDIT.DLL >
[2009.07.14 02:15:06 | 000,012,288 | ---- | M] (Microsoft Corporation) MD5=50BA656134F78AF64E4DD3C8B6FEFD7E -- C:\Windows\erdnt\cache86\cngaudit.dll
[2009.07.14 02:15:06 | 000,012,288 | ---- | M] (Microsoft Corporation) MD5=50BA656134F78AF64E4DD3C8B6FEFD7E -- C:\Windows\SysWOW64\cngaudit.dll
[2009.07.14 02:15:06 | 000,012,288 | ---- | M] (Microsoft Corporation) MD5=50BA656134F78AF64E4DD3C8B6FEFD7E -- C:\Windows\winsxs\x86_microsoft-windows-cngaudit-dll_31bf3856ad364e35_6.1.7600.16385_none_e83a414890e8132b\cngaudit.dll
[2009.07.14 02:40:20 | 000,018,944 | ---- | M] (Microsoft Corporation) MD5=86FE1B1F8FD42CD0DB641AB1CDB13093 -- C:\Windows\erdnt\cache64\cngaudit.dll
[2009.07.14 02:40:20 | 000,018,944 | ---- | M] (Microsoft Corporation) MD5=86FE1B1F8FD42CD0DB641AB1CDB13093 -- C:\Windows\SysNative\cngaudit.dll
[2009.07.14 02:40:20 | 000,018,944 | ---- | M] (Microsoft Corporation) MD5=86FE1B1F8FD42CD0DB641AB1CDB13093 -- C:\Windows\winsxs\amd64_microsoft-windows-cngaudit-dll_31bf3856ad364e35_6.1.7600.16385_none_4458dccc49458461\cngaudit.dll

< MD5 for: CRYPTSVC.DLL >
[2009.07.14 02:40:24 | 000,175,104 | ---- | M] (Microsoft Corporation) MD5=8C57411B66282C01533CB776F98AD384 -- C:\Windows\erdnt\cache64\cryptsvc.dll
[2009.07.14 02:40:24 | 000,175,104 | ---- | M] (Microsoft Corporation) MD5=8C57411B66282C01533CB776F98AD384 -- C:\Windows\SysNative\cryptsvc.dll
[2009.07.14 02:40:24 | 000,175,104 | ---- | M] (Microsoft Corporation) MD5=8C57411B66282C01533CB776F98AD384 -- C:\Windows\winsxs\amd64_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7600.16385_none_d1f48b0bb4805490\cryptsvc.dll
[2009.07.14 02:15:07 | 000,135,680 | ---- | M] (Microsoft Corporation) MD5=9C231178CE4FB385F4B54B0A9080B8A4 -- C:\Windows\erdnt\cache86\cryptsvc.dll
[2009.07.14 02:15:07 | 000,135,680 | ---- | M] (Microsoft Corporation) MD5=9C231178CE4FB385F4B54B0A9080B8A4 -- C:\Windows\SysWOW64\cryptsvc.dll
[2009.07.14 02:15:07 | 000,135,680 | ---- | M] (Microsoft Corporation) MD5=9C231178CE4FB385F4B54B0A9080B8A4 -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7600.16385_none_75d5ef87fc22e35a\cryptsvc.dll

< MD5 for: EXPLORER.EXE >
[2011.02.26 07:23:14 | 002,870,272 | ---- | M] (Microsoft Corporation) MD5=0862495E0C825893DB75EF44FAEA8E93 -- C:\Windows\SoftwareDistribution\Download\71d84967e1e9a8a414d570c6caa8bb08\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16768_none_adc24107935a7e25\explorer.exe
[2011.02.26 06:19:21 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=0FB9C74046656D1579A64660AD67B746 -- C:\Windows\SoftwareDistribution\Download\71d84967e1e9a8a414d570c6caa8bb08\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.21669_none_ba87e574ddfe652d\explorer.exe
[2009.07.14 02:14:20 | 002,613,248 | ---- | M] (Microsoft Corporation) MD5=15BC38A7492BEFE831966ADB477CF76F -- C:\Windows\SysWOW64\explorer.exe
[2009.07.14 02:14:20 | 002,613,248 | ---- | M] (Microsoft Corporation) MD5=15BC38A7492BEFE831966ADB477CF76F -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16385_none_b7fe430bc7ce3761\explorer.exe
[2011.02.26 06:51:13 | 002,614,784 | ---- | M] (Microsoft Corporation) MD5=255CF508D7CFB10E0794D6AC93280BD8 -- C:\Windows\SoftwareDistribution\Download\71d84967e1e9a8a414d570c6caa8bb08\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20910_none_b8ce9756e0b786a4\explorer.exe
[2009.10.31 06:45:39 | 002,614,272 | ---- | M] (Microsoft Corporation) MD5=2626FC9755BE22F805D3CFA0CE3EE727 -- C:\Windows\SoftwareDistribution\Download\0cfc8dbf763c806fb82e646c7352a6fc\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16450_none_b819b343c7ba6202\explorer.exe
[2011.02.26 06:33:07 | 002,614,784 | ---- | M] (Microsoft Corporation) MD5=2AF58D15EDC06EC6FDACCE1F19482BBF -- C:\Windows\SoftwareDistribution\Download\71d84967e1e9a8a414d570c6caa8bb08\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16768_none_b816eb59c7bb4020\explorer.exe
[2011.02.25 07:19:30 | 002,871,808 | ---- | M] (Microsoft Corporation) MD5=332FEAB1435662FC6C672E25BEB37BE3 -- C:\Windows\SoftwareDistribution\Download\71d84967e1e9a8a414d570c6caa8bb08\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17567_none_afa79dc39081d0ba\explorer.exe
[2011.02.26 07:14:34 | 002,871,808 | ---- | M] (Microsoft Corporation) MD5=3B69712041F3D63605529BD66DC00C48 -- C:\Windows\SoftwareDistribution\Download\71d84967e1e9a8a414d570c6caa8bb08\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.21669_none_b0333b22a99da332\explorer.exe
[2009.08.03 07:19:07 | 002,868,224 | ---- | M] (Microsoft Corporation) MD5=700073016DAC1C3D2E7E2CE4223334B6 -- C:\Windows\SoftwareDistribution\Download\00236e2e422dab929dcda56260d05350\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20500_none_ae84b558ac4eb41c\explorer.exe
[2011.02.25 06:30:54 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=8B88EBBB05A0E56B7DCC708498C02B3E -- C:\Windows\SoftwareDistribution\Download\71d84967e1e9a8a414d570c6caa8bb08\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17567_none_b9fc4815c4e292b5\explorer.exe
[2009.10.31 07:34:59 | 002,870,272 | ---- | M] (Microsoft Corporation) MD5=9AAAEC8DAC27AA17B053E6352AD233AE -- C:\Windows\SoftwareDistribution\Download\0cfc8dbf763c806fb82e646c7352a6fc\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16450_none_adc508f19359a007\explorer.exe
[2009.08.03 06:49:47 | 002,613,248 | ---- | M] (Microsoft Corporation) MD5=9FF6C4C91A3711C0A3B18F87B08B518D -- C:\Windows\SoftwareDistribution\Download\00236e2e422dab929dcda56260d05350\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20500_none_b8d95faae0af7617\explorer.exe
[2009.10.31 07:38:38 | 002,870,272 | ---- | M] (Microsoft Corporation) MD5=B8EC4BD49CE8F6FC457721BFC210B67F -- C:\Windows\SoftwareDistribution\Download\0cfc8dbf763c806fb82e646c7352a6fc\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20563_none_ae46d6aeac7ca7c7\explorer.exe
[2009.08.03 06:35:50 | 002,613,248 | ---- | M] (Microsoft Corporation) MD5=B95EEB0F4E5EFBF1038A35B3351CF047 -- C:\Windows\SoftwareDistribution\Download\00236e2e422dab929dcda56260d05350\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16404_none_b853c407c78e3ba9\explorer.exe
[2009.07.14 02:39:10 | 002,868,224 | ---- | M] (Microsoft Corporation) MD5=C235A51CB740E45FFA0EBFB9BAFCDA64 -- C:\Windows\erdnt\cache86\explorer.exe
[2009.07.14 02:39:10 | 002,868,224 | ---- | M] (Microsoft Corporation) MD5=C235A51CB740E45FFA0EBFB9BAFCDA64 -- C:\Windows\explorer.exe
[2009.07.14 02:39:10 | 002,868,224 | ---- | M] (Microsoft Corporation) MD5=C235A51CB740E45FFA0EBFB9BAFCDA64 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16385_none_ada998b9936d7566\explorer.exe
[2009.10.31 07:00:51 | 002,614,272 | ---- | M] (Microsoft Corporation) MD5=C76153C7ECA00FA852BB0C193378F917 -- C:\Windows\SoftwareDistribution\Download\0cfc8dbf763c806fb82e646c7352a6fc\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20563_none_b89b8100e0dd69c2\explorer.exe
[2011.02.26 07:26:45 | 002,870,784 | ---- | M] (Microsoft Corporation) MD5=E38899074D4951D31B4040E994DD7C8D -- C:\Windows\SoftwareDistribution\Download\71d84967e1e9a8a414d570c6caa8bb08\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20910_none_ae79ed04ac56c4a9\explorer.exe
[2009.08.03 07:17:37 | 002,868,224 | ---- | M] (Microsoft Corporation) MD5=F170B4A061C9E026437B193B4D571799 -- C:\Windows\SoftwareDistribution\Download\00236e2e422dab929dcda56260d05350\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16404_none_adff19b5932d79ae\explorer.exe

< MD5 for: HAL.DLL >
[2009.07.14 02:47:48 | 000,263,232 | ---- | M] (Microsoft Corporation) MD5=C0A6F6E05E14FBCAEDE7796C8590B7AC -- C:\Windows\SysNative\hal.dll
[2009.07.14 02:47:48 | 000,263,232 | ---- | M] (Microsoft Corporation) MD5=C0A6F6E05E14FBCAEDE7796C8590B7AC -- C:\Windows\winsxs\amd64_microsoft-windows-hal_31bf3856ad364e35_6.1.7600.16385_none_071de44b735b3dfc\hal.dll

< MD5 for: IASTORV.SYS >
[2009.07.14 02:48:04 | 000,410,688 | ---- | M] (Intel Corporation) MD5=D83EFB6FD45DF9D55E9A1AFC63640D50 -- C:\Windows\SysNative\drivers\iaStorV.sys
[2009.07.14 02:48:04 | 000,410,688 | ---- | M] (Intel Corporation) MD5=D83EFB6FD45DF9D55E9A1AFC63640D50 -- C:\Windows\SysNative\DriverStore\FileRepository\iastorv.inf_amd64_neutral_18cccb83b34e1453\iaStorV.sys
[2009.07.14 02:48:04 | 000,410,688 | ---- | M] (Intel Corporation) MD5=D83EFB6FD45DF9D55E9A1AFC63640D50 -- C:\Windows\winsxs\amd64_iastorv.inf_31bf3856ad364e35_6.1.7600.16385_none_0b06441fa1790136\iaStorV.sys

< MD5 for: ISAPNP.SYS >
[2009.07.14 02:48:04 | 000,020,544 | ---- | M] (Microsoft Corporation) MD5=2F7B28DC3E1183E5EB418DF55C204F38 -- C:\Windows\SysNative\drivers\isapnp.sys
[2009.07.14 02:48:04 | 000,020,544 | ---- | M] (Microsoft Corporation) MD5=2F7B28DC3E1183E5EB418DF55C204F38 -- C:\Windows\SysNative\DriverStore\FileRepository\machine.inf_amd64_neutral_9e6bb86c3b39a3e9\isapnp.sys
[2009.07.14 02:48:04 | 000,020,544 | ---- | M] (Microsoft Corporation) MD5=2F7B28DC3E1183E5EB418DF55C204F38 -- C:\Windows\winsxs\amd64_machine.inf_31bf3856ad364e35_6.1.7600.16385_none_1607dee2d861e021\isapnp.sys

< MD5 for: LSASS.EXE >
[2009.07.14 02:39:16 | 000,031,232 | ---- | M] (Microsoft Corporation) MD5=0793F40B9B8A1BDD266296409DBD91EA -- C:\Windows\erdnt\cache64\lsass.exe
[2009.07.14 02:39:16 | 000,031,232 | ---- | M] (Microsoft Corporation) MD5=0793F40B9B8A1BDD266296409DBD91EA -- C:\Windows\SysNative\lsass.exe
[2009.07.14 02:39:16 | 000,031,232 | ---- | M] (Microsoft Corporation) MD5=0793F40B9B8A1BDD266296409DBD91EA -- C:\Windows\winsxs\amd64_microsoft-windows-lsa_31bf3856ad364e35_6.1.7600.16385_none_023f7c69767c3edd\lsass.exe
[2009.07.14 02:39:16 | 000,031,232 | ---- | M] (Microsoft Corporation) MD5=0793F40B9B8A1BDD266296409DBD91EA -- C:\Windows\winsxs\amd64_microsoft-windows-lsa_31bf3856ad364e35_6.1.7600.16484_none_023e7e05767d22ad\lsass.exe
[2009.07.14 02:39:16 | 000,031,232 | ---- | M] (Microsoft Corporation) MD5=0793F40B9B8A1BDD266296409DBD91EA -- C:\Windows\winsxs\amd64_microsoft-windows-lsa_31bf3856ad364e35_6.1.7600.20594_none_02bd4ae48fa2de68\lsass.exe

< MD5 for: NDIS.SYS >
[2009.07.14 02:48:27 | 000,947,776 | ---- | M] (Microsoft Corporation) MD5=CAD515DBD07D082BB317D9928CE8962C -- C:\Windows\erdnt\cache64\ndis.sys
[2009.07.14 02:48:27 | 000,947,776 | ---- | M] (Microsoft Corporation) MD5=CAD515DBD07D082BB317D9928CE8962C -- C:\Windows\SysNative\drivers\ndis.sys
[2009.07.14 02:48:27 | 000,947,776 | ---- | M] (Microsoft Corporation) MD5=CAD515DBD07D082BB317D9928CE8962C -- C:\Windows\winsxs\amd64_microsoft-windows-ndis_31bf3856ad364e35_6.1.7600.16385_none_03bc1d6e35c013bf\ndis.sys

< MD5 for: NETLOGON.DLL >
[2009.07.14 02:41:52 | 000,692,736 | ---- | M] (Microsoft Corporation) MD5=956D030D375F207B22FB111E06EF9C35 -- C:\Windows\erdnt\cache64\netlogon.dll
[2009.07.14 02:41:52 | 000,692,736 | ---- | M] (Microsoft Corporation) MD5=956D030D375F207B22FB111E06EF9C35 -- C:\Windows\SysNative\netlogon.dll
[2009.07.14 02:41:52 | 000,692,736 | ---- | M] (Microsoft Corporation) MD5=956D030D375F207B22FB111E06EF9C35 -- C:\Windows\winsxs\amd64_microsoft-windows-security-netlogon_31bf3856ad364e35_6.1.7600.16385_none_59aca8ea51aaeefe\netlogon.dll
[2009.07.14 02:16:02 | 000,563,712 | ---- | M] (Microsoft Corporation) MD5=EAA75D9000B71F10EEC04D2AE6C60E81 -- C:\Windows\erdnt\cache86\netlogon.dll
[2009.07.14 02:16:02 | 000,563,712 | ---- | M] (Microsoft Corporation) MD5=EAA75D9000B71F10EEC04D2AE6C60E81 -- C:\Windows\SysWOW64\netlogon.dll
[2009.07.14 02:16:02 | 000,563,712 | ---- | M] (Microsoft Corporation) MD5=EAA75D9000B71F10EEC04D2AE6C60E81 -- C:\Windows\winsxs\wow64_microsoft-windows-security-netlogon_31bf3856ad364e35_6.1.7600.16385_none_6401533c860bb0f9\netlogon.dll

< MD5 for: NVRAID.SYS >
[2009.07.14 02:48:27 | 000,149,056 | ---- | M] (NVIDIA Corporation) MD5=3E38712941E9BB4DDBEE00AFFE3FED3D -- C:\Windows\SysNative\drivers\nvraid.sys
[2009.07.14 02:48:27 | 000,149,056 | ---- | M] (NVIDIA Corporation) MD5=3E38712941E9BB4DDBEE00AFFE3FED3D -- C:\Windows\SysNative\DriverStore\FileRepository\nvraid.inf_amd64_neutral_5bde3fe2945bce9e\nvraid.sys
[2009.07.14 02:48:27 | 000,149,056 | ---- | M] (NVIDIA Corporation) MD5=3E38712941E9BB4DDBEE00AFFE3FED3D -- C:\Windows\winsxs\amd64_nvraid.inf_31bf3856ad364e35_6.1.7600.16385_none_95cfb4ced8afab0e\nvraid.sys

< MD5 for: NVSTOR.SYS >
[2009.07.14 02:45:45 | 000,167,488 | ---- | M] (NVIDIA Corporation) MD5=477DC4D6DEB99BE37084C9AC6D013DA1 -- C:\Windows\SysNative\drivers\nvstor.sys
[2009.07.14 02:45:45 | 000,167,488 | ---- | M] (NVIDIA Corporation) MD5=477DC4D6DEB99BE37084C9AC6D013DA1 -- C:\Windows\SysNative\DriverStore\FileRepository\nvraid.inf_amd64_neutral_5bde3fe2945bce9e\nvstor.sys
[2009.07.14 02:45:45 | 000,167,488 | ---- | M] (NVIDIA Corporation) MD5=477DC4D6DEB99BE37084C9AC6D013DA1 -- C:\Windows\winsxs\amd64_nvraid.inf_31bf3856ad364e35_6.1.7600.16385_none_95cfb4ced8afab0e\nvstor.sys

< MD5 for: SCECLI.DLL >
[2009.07.14 02:16:13 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=26073302DAEA83CC5B944C546D6B47D2 -- C:\Windows\erdnt\cache86\scecli.dll
[2009.07.14 02:16:13 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=26073302DAEA83CC5B944C546D6B47D2 -- C:\Windows\SysWOW64\scecli.dll
[2009.07.14 02:16:13 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=26073302DAEA83CC5B944C546D6B47D2 -- C:\Windows\winsxs\wow64_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7600.16385_none_9e577e55272d37b4\scecli.dll
[2009.07.14 02:41:53 | 000,232,448 | ---- | M] (Microsoft Corporation) MD5=398712DDDAEFB85EDF61DF6A07B65C79 -- C:\Windows\erdnt\cache64\scecli.dll
[2009.07.14 02:41:53 | 000,232,448 | ---- | M] (Microsoft Corporation) MD5=398712DDDAEFB85EDF61DF6A07B65C79 -- C:\Windows\SysNative\scecli.dll
[2009.07.14 02:41:53 | 000,232,448 | ---- | M] (Microsoft Corporation) MD5=398712DDDAEFB85EDF61DF6A07B65C79 -- C:\Windows\winsxs\amd64_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7600.16385_none_9402d402f2cc75b9\scecli.dll

< MD5 for: SMSS.EXE >
[2009.07.14 02:39:41 | 000,112,640 | ---- | M] (Microsoft Corporation) MD5=1911A3356FA3F77CCC825CCBAC038C2A -- C:\Windows\SysNative\smss.exe
[2009.07.14 02:39:41 | 000,112,640 | ---- | M] (Microsoft Corporation) MD5=1911A3356FA3F77CCC825CCBAC038C2A -- C:\Windows\winsxs\amd64_microsoft-windows-smss_31bf3856ad364e35_6.1.7600.16385_none_082f99a432e2a661\smss.exe

< MD5 for: SVCHOST.EXE >
[2009.07.14 02:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\erdnt\cache86\svchost.exe
[2009.07.14 02:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\SysWOW64\svchost.exe
[2009.07.14 02:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\winsxs\x86_microsoft-windows-services-svchost_31bf3856ad364e35_6.1.7600.16385_none_b591afc466a15356\svchost.exe
[2009.07.14 02:39:46 | 000,027,136 | ---- | M] (Microsoft Corporation) MD5=C78655BC80301D76ED4FEF1C1EA40A7D -- C:\Windows\erdnt\cache64\svchost.exe
[2009.07.14 02:39:46 | 000,027,136 | ---- | M] (Microsoft Corporation) MD5=C78655BC80301D76ED4FEF1C1EA40A7D -- C:\Windows\SysNative\svchost.exe
[2009.07.14 02:39:46 | 000,027,136 | ---- | M] (Microsoft Corporation) MD5=C78655BC80301D76ED4FEF1C1EA40A7D -- C:\Windows\winsxs\amd64_microsoft-windows-services-svchost_31bf3856ad364e35_6.1.7600.16385_none_11b04b481efec48c\svchost.exe

< MD5 for: TCPIP.SYS >
[2013.01.04 06:41:01 | 001,893,224 | ---- | M] (Microsoft Corporation) MD5=5CFB7AB8F9524D1A1E14369DE63B83CC -- C:\Windows\SoftwareDistribution\Download\1517cd3e78933c75fefc6befb4b61aa1\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.17206_none_0f6a6af57fd59de6\tcpip.sys
[2013.01.03 06:57:12 | 001,876,824 | ---- | M] (Microsoft Corporation) MD5=692969AB90BDA19F56E27BF89A9260E2 -- C:\Windows\SoftwareDistribution\Download\1517cd3e78933c75fefc6befb4b61aa1\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.21415_none_0fe8397098fc3d71\tcpip.sys
[2009.07.14 02:45:55 | 001,898,576 | ---- | M] (Microsoft Corporation) MD5=912107716BAB424C7870E8E6AF5E07E1 -- C:\Windows\erdnt\cache64\tcpip.sys
[2009.07.14 02:45:55 | 001,898,576 | ---- | M] (Microsoft Corporation) MD5=912107716BAB424C7870E8E6AF5E07E1 -- C:\Windows\SysNative\drivers\tcpip.sys
[2009.07.14 02:45:55 | 001,898,576 | ---- | M] (Microsoft Corporation) MD5=912107716BAB424C7870E8E6AF5E07E1 -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.16385_none_0f1303f98017479d\tcpip.sys
[2013.01.03 07:00:54 | 001,913,192 | ---- | M] (Microsoft Corporation) MD5=B62A953F2BF3922C8764A29C34A22899 -- C:\Windows\SoftwareDistribution\Download\1517cd3e78933c75fefc6befb4b61aa1\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.18042_none_112187237d20143a\tcpip.sys
[2013.01.04 06:47:43 | 001,901,416 | ---- | M] (Microsoft Corporation) MD5=B8C1AAC0523E1C33AEB0EF7572144BA2 -- C:\Windows\SoftwareDistribution\Download\1517cd3e78933c75fefc6befb4b61aa1\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.22209_none_11dd678a9616f2c8\tcpip.sys

< MD5 for: USERINIT.EXE >
[2009.07.14 02:14:43 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=6DE80F60D7DE9CE6B8C2DDFDF79EF175 -- C:\Windows\erdnt\cache86\userinit.exe
[2009.07.14 02:14:43 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=6DE80F60D7DE9CE6B8C2DDFDF79EF175 -- C:\Windows\SysWOW64\userinit.exe
[2009.07.14 02:14:43 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=6DE80F60D7DE9CE6B8C2DDFDF79EF175 -- C:\Windows\winsxs\x86_microsoft-windows-userinit_31bf3856ad364e35_6.1.7600.16385_none_dbff103933038d7c\userinit.exe
[2009.07.14 02:39:48 | 000,030,208 | ---- | M] (Microsoft Corporation) MD5=6F8F1376A13114CC10C0E69274F5A4DE -- C:\Windows\erdnt\cache64\userinit.exe
[2009.07.14 02:39:48 | 000,030,208 | ---- | M] (Microsoft Corporation) MD5=6F8F1376A13114CC10C0E69274F5A4DE -- C:\Windows\SysNative\userinit.exe
[2009.07.14 02:39:48 | 000,030,208 | ---- | M] (Microsoft Corporation) MD5=6F8F1376A13114CC10C0E69274F5A4DE -- C:\Windows\winsxs\amd64_microsoft-windows-userinit_31bf3856ad364e35_6.1.7600.16385_none_381dabbceb60feb2\userinit.exe

< MD5 for: WINLOGON.EXE >
[2009.07.14 02:39:52 | 000,389,120 | ---- | M] (Microsoft Corporation) MD5=132328DF455B0028F13BF0ABEE51A63A -- C:\Windows\erdnt\cache64\winlogon.exe
[2009.07.14 02:39:52 | 000,389,120 | ---- | M] (Microsoft Corporation) MD5=132328DF455B0028F13BF0ABEE51A63A -- C:\Windows\SysNative\winlogon.exe
[2009.07.14 02:39:52 | 000,389,120 | ---- | M] (Microsoft Corporation) MD5=132328DF455B0028F13BF0ABEE51A63A -- C:\Windows\winsxs\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7600.16385_none_cbb7f2bdeea2829c\winlogon.exe
[2009.10.28 08:01:57 | 000,389,632 | ---- | M] (Microsoft Corporation) MD5=A93D41A4D4B0D91C072D11DD8AF266DE -- C:\Windows\SoftwareDistribution\Download\0cfc8dbf763c806fb82e646c7352a6fc\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7600.20560_none_cc522fd507b468f8\winlogon.exe
[2009.10.28 07:24:40 | 000,389,632 | ---- | M] (Microsoft Corporation) MD5=DA3E2A6FA9660CC75B471530CE88453A -- C:\Windows\SoftwareDistribution\Download\0cfc8dbf763c806fb82e646c7352a6fc\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7600.16447_none_cbe534e7ee8042ad\winlogon.exe

< MD5 for: WS2_32.DLL >
[2009.07.14 02:41:58 | 000,296,448 | ---- | M] (Microsoft Corporation) MD5=7083F463788CB34FCC42F565D56F89E8 -- C:\Windows\erdnt\cache64\ws2_32.dll
[2009.07.14 02:41:58 | 000,296,448 | ---- | M] (Microsoft Corporation) MD5=7083F463788CB34FCC42F565D56F89E8 -- C:\Windows\SysNative\ws2_32.dll
[2009.07.14 02:41:58 | 000,296,448 | ---- | M] (Microsoft Corporation) MD5=7083F463788CB34FCC42F565D56F89E8 -- C:\Windows\winsxs\amd64_microsoft-windows-w..nfrastructure-ws232_31bf3856ad364e35_6.1.7600.16385_none_4eaca269e8070c6b\ws2_32.dll
[2009.07.14 02:16:20 | 000,206,336 | ---- | M] (Microsoft Corporation) MD5=DAAE8A9B8C0ACC7F858454132553C30D -- C:\Windows\erdnt\cache86\ws2_32.dll
[2009.07.14 02:16:20 | 000,206,336 | ---- | M] (Microsoft Corporation) MD5=DAAE8A9B8C0ACC7F858454132553C30D -- C:\Windows\SysWOW64\ws2_32.dll
[2009.07.14 02:16:20 | 000,206,336 | ---- | M] (Microsoft Corporation) MD5=DAAE8A9B8C0ACC7F858454132553C30D -- C:\Windows\winsxs\x86_microsoft-windows-w..nfrastructure-ws232_31bf3856ad364e35_6.1.7600.16385_none_f28e06e62fa99b35\ws2_32.dll

Prokračování...
Nahoru
Madmaxik
Návštěvník
Návštěvník
Příspěvky: 110
Registrován: 09 lis 2013 17:28

Re: Kontrola logu

#21 Příspěvek od Madmaxik »

< >

< %systemroot%*.* /U /s >
[1 C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp files -> C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp -> ]
[2 C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\*.tmp files -> C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\AuthCabs\7971f918-a847-4430-9279-4a52d1efe18d\*.tmp files -> C:\Windows\SoftwareDistribution\AuthCabs\7971f918-a847-4430-9279-4a52d1efe18d\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\0224f89b0f4f58ffbde564c254a99d6c\*.tmp files -> C:\Windows\SoftwareDistribution\Download\0224f89b0f4f58ffbde564c254a99d6c\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\026d37d9d0d955fde910ecf59f7b93de\*.tmp files -> C:\Windows\SoftwareDistribution\Download\026d37d9d0d955fde910ecf59f7b93de\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\03362803671dde45fc50c92286a4c1ba\*.tmp files -> C:\Windows\SoftwareDistribution\Download\03362803671dde45fc50c92286a4c1ba\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\04200c1f0c6dd7c6d80d3f0ec2a26185\*.tmp files -> C:\Windows\SoftwareDistribution\Download\04200c1f0c6dd7c6d80d3f0ec2a26185\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\044b75a9933a066fe2c94660a1436533\*.tmp files -> C:\Windows\SoftwareDistribution\Download\044b75a9933a066fe2c94660a1436533\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\08080b0c78f74103916d78ce7d0beeaf\*.tmp files -> C:\Windows\SoftwareDistribution\Download\08080b0c78f74103916d78ce7d0beeaf\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\0862135f20e6ce88f4e7820ce7b199a8\*.tmp files -> C:\Windows\SoftwareDistribution\Download\0862135f20e6ce88f4e7820ce7b199a8\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\08de3c83def3f05ce0c5a1bd84d93296\*.tmp files -> C:\Windows\SoftwareDistribution\Download\08de3c83def3f05ce0c5a1bd84d93296\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\0aa3ef2f0c8b6eedf450a9dff1fe028e\*.tmp files -> C:\Windows\SoftwareDistribution\Download\0aa3ef2f0c8b6eedf450a9dff1fe028e\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\0d185f1dfa9b452bbcf641fb0708a086\*.tmp files -> C:\Windows\SoftwareDistribution\Download\0d185f1dfa9b452bbcf641fb0708a086\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\0e3bf0a19e9400ba9f0a6dcf5dee14d2\*.tmp files -> C:\Windows\SoftwareDistribution\Download\0e3bf0a19e9400ba9f0a6dcf5dee14d2\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\0f920aabece236b9b498d2c2d7b0b6df\*.tmp files -> C:\Windows\SoftwareDistribution\Download\0f920aabece236b9b498d2c2d7b0b6df\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\15f515a6d2264980fd04ce886425ba94\*.tmp files -> C:\Windows\SoftwareDistribution\Download\15f515a6d2264980fd04ce886425ba94\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\1864546dde46f748b869774490650166\*.tmp files -> C:\Windows\SoftwareDistribution\Download\1864546dde46f748b869774490650166\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\188c584a5234d4390c93a98c81b1a2a2\*.tmp files -> C:\Windows\SoftwareDistribution\Download\188c584a5234d4390c93a98c81b1a2a2\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\19df9194884c2590880b9ee43a82b203\*.tmp files -> C:\Windows\SoftwareDistribution\Download\19df9194884c2590880b9ee43a82b203\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\1b2c0a5ab3de5f5851190554ba72c2db\*.tmp files -> C:\Windows\SoftwareDistribution\Download\1b2c0a5ab3de5f5851190554ba72c2db\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\1fadb9307007a21c57062875a04bfffe\*.tmp files -> C:\Windows\SoftwareDistribution\Download\1fadb9307007a21c57062875a04bfffe\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\21351a2a3c4febf49cd7600e8646f132\*.tmp files -> C:\Windows\SoftwareDistribution\Download\21351a2a3c4febf49cd7600e8646f132\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\26204eef8d98a8c0a2a1d76049625e00\*.tmp files -> C:\Windows\SoftwareDistribution\Download\26204eef8d98a8c0a2a1d76049625e00\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\2630c3fa94148f9f4562cb340e358591\*.tmp files -> C:\Windows\SoftwareDistribution\Download\2630c3fa94148f9f4562cb340e358591\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\27f18a17b9aa0306baa879c4704300aa\*.tmp files -> C:\Windows\SoftwareDistribution\Download\27f18a17b9aa0306baa879c4704300aa\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\291e4c970688f0ae75ac6de78e4a5e7f\*.tmp files -> C:\Windows\SoftwareDistribution\Download\291e4c970688f0ae75ac6de78e4a5e7f\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\2c22bd1fd1408eeaafd0524c06788a59\*.tmp files -> C:\Windows\SoftwareDistribution\Download\2c22bd1fd1408eeaafd0524c06788a59\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\2d0996b635d571b17effc64a35def62d\*.tmp files -> C:\Windows\SoftwareDistribution\Download\2d0996b635d571b17effc64a35def62d\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\2ea9831e17856e84683ddfa825ce04cb\*.tmp files -> C:\Windows\SoftwareDistribution\Download\2ea9831e17856e84683ddfa825ce04cb\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\2ee2700248091ae70a9add61528396c7\*.tmp files -> C:\Windows\SoftwareDistribution\Download\2ee2700248091ae70a9add61528396c7\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\2f5d20a0e19ee0383d29ff3d1f1b72d0\*.tmp files -> C:\Windows\SoftwareDistribution\Download\2f5d20a0e19ee0383d29ff3d1f1b72d0\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\30586ca8d10d70d0efef987e7dd1a59e\*.tmp files -> C:\Windows\SoftwareDistribution\Download\30586ca8d10d70d0efef987e7dd1a59e\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\30622f2fa48ace2bae45ab270c09437d\*.tmp files -> C:\Windows\SoftwareDistribution\Download\30622f2fa48ace2bae45ab270c09437d\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\31956b57ca141adee42015821cd60197\*.tmp files -> C:\Windows\SoftwareDistribution\Download\31956b57ca141adee42015821cd60197\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\32906ff4c08a30275ceeb80eeb8bb731\*.tmp files -> C:\Windows\SoftwareDistribution\Download\32906ff4c08a30275ceeb80eeb8bb731\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\33a1b5a0475cdbfea139233e4d990a8c\*.tmp files -> C:\Windows\SoftwareDistribution\Download\33a1b5a0475cdbfea139233e4d990a8c\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\33df691527b299a5f50b5884c5979589\*.tmp files -> C:\Windows\SoftwareDistribution\Download\33df691527b299a5f50b5884c5979589\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\35f960a717c3b31a0c52e875b6f47446\*.tmp files -> C:\Windows\SoftwareDistribution\Download\35f960a717c3b31a0c52e875b6f47446\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\36617577b73b29d25ec8a293a5391ec3\*.tmp files -> C:\Windows\SoftwareDistribution\Download\36617577b73b29d25ec8a293a5391ec3\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\372cec5cab40b5ede78ec0e25075836b\*.tmp files -> C:\Windows\SoftwareDistribution\Download\372cec5cab40b5ede78ec0e25075836b\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\3aed1aa5b59cef5c49e8f1f715aeda28\*.tmp files -> C:\Windows\SoftwareDistribution\Download\3aed1aa5b59cef5c49e8f1f715aeda28\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\3cef3bdabd9795560eb86ad86c7e6ddb\*.tmp files -> C:\Windows\SoftwareDistribution\Download\3cef3bdabd9795560eb86ad86c7e6ddb\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\3e952de7b8a53d3ae5b44bdf3dbbf7a9\*.tmp files -> C:\Windows\SoftwareDistribution\Download\3e952de7b8a53d3ae5b44bdf3dbbf7a9\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\3ee6fc61af46916dc0991b5c8f068c58\*.tmp files -> C:\Windows\SoftwareDistribution\Download\3ee6fc61af46916dc0991b5c8f068c58\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\3fedcac79b66bcf0809496c7a29500cd\*.tmp files -> C:\Windows\SoftwareDistribution\Download\3fedcac79b66bcf0809496c7a29500cd\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\451be858cb41a8a65dd01aed60de3f52\*.tmp files -> C:\Windows\SoftwareDistribution\Download\451be858cb41a8a65dd01aed60de3f52\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\46027e7fcb224853acbae96ce2d9b252\*.tmp files -> C:\Windows\SoftwareDistribution\Download\46027e7fcb224853acbae96ce2d9b252\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\48e080ff90ec32026be2594e254ffb45\*.tmp files -> C:\Windows\SoftwareDistribution\Download\48e080ff90ec32026be2594e254ffb45\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\48ffb769a0e6fdd59056da3fe7133cee\*.tmp files -> C:\Windows\SoftwareDistribution\Download\48ffb769a0e6fdd59056da3fe7133cee\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\4d02c1250f51eac26497b1642633258c\*.tmp files -> C:\Windows\SoftwareDistribution\Download\4d02c1250f51eac26497b1642633258c\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\4d8195c5f3cf0cc51170733e68ff048d\*.tmp files -> C:\Windows\SoftwareDistribution\Download\4d8195c5f3cf0cc51170733e68ff048d\*.tmp -> ]
[2 C:\Windows\SoftwareDistribution\Download\4fb7217d98ee9433f26246d7f41741d1\*.tmp files -> C:\Windows\SoftwareDistribution\Download\4fb7217d98ee9433f26246d7f41741d1\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\53442a8b5ee8a88106f6d53046f67298\*.tmp files -> C:\Windows\SoftwareDistribution\Download\53442a8b5ee8a88106f6d53046f67298\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\535ca0fd253e320e6b02cb7f1db43182\*.tmp files -> C:\Windows\SoftwareDistribution\Download\535ca0fd253e320e6b02cb7f1db43182\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\544163722657dbafb8667d8541f353f5\*.tmp files -> C:\Windows\SoftwareDistribution\Download\544163722657dbafb8667d8541f353f5\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\55f75f185ccfa484dbb705fc93df5260\*.tmp files -> C:\Windows\SoftwareDistribution\Download\55f75f185ccfa484dbb705fc93df5260\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\55ff0f20a379d1442eb4ecbd4f5f378c\*.tmp files -> C:\Windows\SoftwareDistribution\Download\55ff0f20a379d1442eb4ecbd4f5f378c\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\56fa1b1c38a8c1f0f4a2d4cd584cdc12\*.tmp files -> C:\Windows\SoftwareDistribution\Download\56fa1b1c38a8c1f0f4a2d4cd584cdc12\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\58eb619db5f01e6c35f0d1feac88a898\*.tmp files -> C:\Windows\SoftwareDistribution\Download\58eb619db5f01e6c35f0d1feac88a898\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\58fcd5eb3996d5b9738f8d4b935d5f50\*.tmp files -> C:\Windows\SoftwareDistribution\Download\58fcd5eb3996d5b9738f8d4b935d5f50\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\59b316bd3b78f3a6950f5b09651c514d\*.tmp files -> C:\Windows\SoftwareDistribution\Download\59b316bd3b78f3a6950f5b09651c514d\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\5ce6e84d9f598e2c5ffe9f02ca9c3ea5\*.tmp files -> C:\Windows\SoftwareDistribution\Download\5ce6e84d9f598e2c5ffe9f02ca9c3ea5\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\61f858b96c5d63eaa9c4c8d453dfc25a\*.tmp files -> C:\Windows\SoftwareDistribution\Download\61f858b96c5d63eaa9c4c8d453dfc25a\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\697ee5a8a85ca1592c6a7e4c034057e5\*.tmp files -> C:\Windows\SoftwareDistribution\Download\697ee5a8a85ca1592c6a7e4c034057e5\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\6cfd6c69fabc14dc6659c83354800a5e\*.tmp files -> C:\Windows\SoftwareDistribution\Download\6cfd6c69fabc14dc6659c83354800a5e\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\70d0f1ff039fa976b42afafd0153f45a\*.tmp files -> C:\Windows\SoftwareDistribution\Download\70d0f1ff039fa976b42afafd0153f45a\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\70e95d586497f82038fdcff6e3b3bf04\*.tmp files -> C:\Windows\SoftwareDistribution\Download\70e95d586497f82038fdcff6e3b3bf04\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\72a39236b565c42341f8b487582b1628\*.tmp files -> C:\Windows\SoftwareDistribution\Download\72a39236b565c42341f8b487582b1628\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\7718ca97671278d4f6b4c5091a742c56\*.tmp files -> C:\Windows\SoftwareDistribution\Download\7718ca97671278d4f6b4c5091a742c56\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\7c201910e6c80a9b3ba127594b1b6859\*.tmp files -> C:\Windows\SoftwareDistribution\Download\7c201910e6c80a9b3ba127594b1b6859\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\7ed2e7108754fc6b19e85a1d7cb02603\*.tmp files -> C:\Windows\SoftwareDistribution\Download\7ed2e7108754fc6b19e85a1d7cb02603\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\7f5b7c5127b02932973fe0a3d84d7160\*.tmp files -> C:\Windows\SoftwareDistribution\Download\7f5b7c5127b02932973fe0a3d84d7160\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\8203120214560b3c41749aa863ff3299\*.tmp files -> C:\Windows\SoftwareDistribution\Download\8203120214560b3c41749aa863ff3299\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\830164e973b7bbbb1d528c3bb20ac620\*.tmp files -> C:\Windows\SoftwareDistribution\Download\830164e973b7bbbb1d528c3bb20ac620\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\8bcd04d4dcc9490cbdfd86cf5981803d\*.tmp files -> C:\Windows\SoftwareDistribution\Download\8bcd04d4dcc9490cbdfd86cf5981803d\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\8d61d43739b4487b943c81348a5b3336\*.tmp files -> C:\Windows\SoftwareDistribution\Download\8d61d43739b4487b943c81348a5b3336\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\8de8eccc51302e3ad3cd631c70492dc1\*.tmp files -> C:\Windows\SoftwareDistribution\Download\8de8eccc51302e3ad3cd631c70492dc1\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\92c033bb0d88e7988b4badd9eeacecf8\*.tmp files -> C:\Windows\SoftwareDistribution\Download\92c033bb0d88e7988b4badd9eeacecf8\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\939eb95be9371239b481e26fe9e33bc5\*.tmp files -> C:\Windows\SoftwareDistribution\Download\939eb95be9371239b481e26fe9e33bc5\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\93d61bf5880947a37cabfac4264997f3\*.tmp files -> C:\Windows\SoftwareDistribution\Download\93d61bf5880947a37cabfac4264997f3\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\9ac73b94dc0da0993cfcd6a1219babe7\*.tmp files -> C:\Windows\SoftwareDistribution\Download\9ac73b94dc0da0993cfcd6a1219babe7\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\9b63cb96ee0d108fd148446f3969796a\*.tmp files -> C:\Windows\SoftwareDistribution\Download\9b63cb96ee0d108fd148446f3969796a\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\9c4afe3ca8e12d11080ab23a016e04ee\*.tmp files -> C:\Windows\SoftwareDistribution\Download\9c4afe3ca8e12d11080ab23a016e04ee\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\a28e3389a953363ac71869db2db2034e\*.tmp files -> C:\Windows\SoftwareDistribution\Download\a28e3389a953363ac71869db2db2034e\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\a3e068fbf75f1a54d5a83588af47bf45\*.tmp files -> C:\Windows\SoftwareDistribution\Download\a3e068fbf75f1a54d5a83588af47bf45\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\a48de5540fd761b74e35f3b798391a6d\*.tmp files -> C:\Windows\SoftwareDistribution\Download\a48de5540fd761b74e35f3b798391a6d\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\a49dd0722e7551b305d8481f1941cace\*.tmp files -> C:\Windows\SoftwareDistribution\Download\a49dd0722e7551b305d8481f1941cace\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\a80dd4649fdbc970fe911588e9eabb89\*.tmp files -> C:\Windows\SoftwareDistribution\Download\a80dd4649fdbc970fe911588e9eabb89\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\a857ae6a868251417a02c32fe167a0aa\*.tmp files -> C:\Windows\SoftwareDistribution\Download\a857ae6a868251417a02c32fe167a0aa\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\a85dcdc930a22102c245c4ee1e7ac95a\*.tmp files -> C:\Windows\SoftwareDistribution\Download\a85dcdc930a22102c245c4ee1e7ac95a\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\abc3fbcf627c846e12d9edc8795a4489\*.tmp files -> C:\Windows\SoftwareDistribution\Download\abc3fbcf627c846e12d9edc8795a4489\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\ac330a2d895779989ef6964972ea55b6\*.tmp files -> C:\Windows\SoftwareDistribution\Download\ac330a2d895779989ef6964972ea55b6\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\aeeab75a8ce8b4b128a14c8ba4631fae\*.tmp files -> C:\Windows\SoftwareDistribution\Download\aeeab75a8ce8b4b128a14c8ba4631fae\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\b068ac22ee1c2bdac02e4711231d7773\*.tmp files -> C:\Windows\SoftwareDistribution\Download\b068ac22ee1c2bdac02e4711231d7773\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\b4a4b0c23c4ed96c9f03ca89b5ed4ee6\*.tmp files -> C:\Windows\SoftwareDistribution\Download\b4a4b0c23c4ed96c9f03ca89b5ed4ee6\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\b5b917bd0413d0c148733046281a854c\*.tmp files -> C:\Windows\SoftwareDistribution\Download\b5b917bd0413d0c148733046281a854c\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\bd7e6ac2c888c1eb7ed48b5350df6ef7\*.tmp files -> C:\Windows\SoftwareDistribution\Download\bd7e6ac2c888c1eb7ed48b5350df6ef7\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\c4a2c3746087b73f999e33ea00318b96\*.tmp files -> C:\Windows\SoftwareDistribution\Download\c4a2c3746087b73f999e33ea00318b96\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\c5c6f2334243316daafd154b95809aaf\*.tmp files -> C:\Windows\SoftwareDistribution\Download\c5c6f2334243316daafd154b95809aaf\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\c8287a0e7781ce3ea6ab559e9e350639\*.tmp files -> C:\Windows\SoftwareDistribution\Download\c8287a0e7781ce3ea6ab559e9e350639\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\cada7cb1e9e3cb0b0c6c30d1acdb14d0\*.tmp files -> C:\Windows\SoftwareDistribution\Download\cada7cb1e9e3cb0b0c6c30d1acdb14d0\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\cd8f0f64a44e565131cb912f33693fa8\*.tmp files -> C:\Windows\SoftwareDistribution\Download\cd8f0f64a44e565131cb912f33693fa8\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\ce2ce75139db225257f403be451d4309\*.tmp files -> C:\Windows\SoftwareDistribution\Download\ce2ce75139db225257f403be451d4309\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\d1933581bd0c37a44f64f7d3d008f302\*.tmp files -> C:\Windows\SoftwareDistribution\Download\d1933581bd0c37a44f64f7d3d008f302\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\d20363de2fe32bc89bc6e0d361726a8e\*.tmp files -> C:\Windows\SoftwareDistribution\Download\d20363de2fe32bc89bc6e0d361726a8e\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\d2a920c360ee6e73f4087c382b160ea4\*.tmp files -> C:\Windows\SoftwareDistribution\Download\d2a920c360ee6e73f4087c382b160ea4\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\d567c2e9951ce9dc180b711326078ff6\*.tmp files -> C:\Windows\SoftwareDistribution\Download\d567c2e9951ce9dc180b711326078ff6\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\d864176a41065814d0cd6677b475457f\*.tmp files -> C:\Windows\SoftwareDistribution\Download\d864176a41065814d0cd6677b475457f\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\dbc4e637bf9d29a8359e46a7e031721c\*.tmp files -> C:\Windows\SoftwareDistribution\Download\dbc4e637bf9d29a8359e46a7e031721c\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\e0b4398bafa4af4d0ec31a2fc18ecba0\*.tmp files -> C:\Windows\SoftwareDistribution\Download\e0b4398bafa4af4d0ec31a2fc18ecba0\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\e22cf94ac2b22cf857176f33307b4f9a\*.tmp files -> C:\Windows\SoftwareDistribution\Download\e22cf94ac2b22cf857176f33307b4f9a\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\e2c27fdf51d82bbfd10ca60913711a22\*.tmp files -> C:\Windows\SoftwareDistribution\Download\e2c27fdf51d82bbfd10ca60913711a22\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\e46fdd768e882f91528a9c1c5580a6cb\*.tmp files -> C:\Windows\SoftwareDistribution\Download\e46fdd768e882f91528a9c1c5580a6cb\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\e4b32293488dfa2d5ff78bfe2a305432\*.tmp files -> C:\Windows\SoftwareDistribution\Download\e4b32293488dfa2d5ff78bfe2a305432\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\e598859c87d8aff848767671b6d79ecf\*.tmp files -> C:\Windows\SoftwareDistribution\Download\e598859c87d8aff848767671b6d79ecf\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\e7c2e8b575f5099906de31b77517c1bd\*.tmp files -> C:\Windows\SoftwareDistribution\Download\e7c2e8b575f5099906de31b77517c1bd\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\eb7fb956ac3e7318aa9335bf43b6899a\*.tmp files -> C:\Windows\SoftwareDistribution\Download\eb7fb956ac3e7318aa9335bf43b6899a\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\ec0520ea2782b9e5ef3a9768e55fa20f\*.tmp files -> C:\Windows\SoftwareDistribution\Download\ec0520ea2782b9e5ef3a9768e55fa20f\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\ed9c93c9a3e8c3c9e13e72162a17f485\*.tmp files -> C:\Windows\SoftwareDistribution\Download\ed9c93c9a3e8c3c9e13e72162a17f485\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\f2dcf84e486b9b0860ae2540f571dcb0\*.tmp files -> C:\Windows\SoftwareDistribution\Download\f2dcf84e486b9b0860ae2540f571dcb0\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\f4497846ad80cdd8c129bc375fb3f670\*.tmp files -> C:\Windows\SoftwareDistribution\Download\f4497846ad80cdd8c129bc375fb3f670\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\f6748feb9c180a89415e60f868670780\*.tmp files -> C:\Windows\SoftwareDistribution\Download\f6748feb9c180a89415e60f868670780\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\f81f2e5868469130ec2b380bdb409a5b\*.tmp files -> C:\Windows\SoftwareDistribution\Download\f81f2e5868469130ec2b380bdb409a5b\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\f8a4aebd2e2440adc172b74e7047eed7\*.tmp files -> C:\Windows\SoftwareDistribution\Download\f8a4aebd2e2440adc172b74e7047eed7\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\ff4e24c02f266a4c8e571cced8507a99\*.tmp files -> C:\Windows\SoftwareDistribution\Download\ff4e24c02f266a4c8e571cced8507a99\*.tmp -> ]
[199 C:\Windows\System32\*.tmp files -> C:\Windows\System32\*.tmp -> ]
[199 C:\Windows\SysWOW64\*.tmp files -> C:\Windows\SysWOW64\*.tmp -> ]
[9 C:\Windows\temp\*.tmp files -> C:\Windows\temp\*.tmp -> ]

< %SYSTEMDRIVE%\*.exe >

< %ALLUSERSPROFILE%\Application Data\*. >

< %ALLUSERSPROFILE%\Application Data\*.exe /s >

< %APPDATA%\*. >
[2013.11.04 16:34:01 | 000,000,000 | ---D | M] -- C:\Users\ASUS\AppData\Roaming\.minecraft
[2013.11.06 18:31:46 | 000,000,000 | ---D | M] -- C:\Users\ASUS\AppData\Roaming\.technic
[2013.06.09 15:32:26 | 000,000,000 | ---D | M] -- C:\Users\ASUS\AppData\Roaming\Adobe
[2013.10.14 17:02:30 | 000,000,000 | ---D | M] -- C:\Users\ASUS\AppData\Roaming\Audacity
[2013.11.09 13:01:50 | 000,000,000 | ---D | M] -- C:\Users\ASUS\AppData\Roaming\BitLord
[2013.11.09 22:24:21 | 000,000,000 | ---D | M] -- C:\Users\ASUS\AppData\Roaming\com.flash.WidgetBrowser
[2013.11.09 17:26:58 | 000,000,000 | ---D | M] -- C:\Users\ASUS\AppData\Roaming\DAEMON Tools Lite
[2013.11.10 14:12:39 | 000,000,000 | ---D | M] -- C:\Users\ASUS\AppData\Roaming\DefaultTab
[2013.04.11 15:13:21 | 000,000,000 | ---D | M] -- C:\Users\ASUS\AppData\Roaming\DonationCoder
[2013.10.06 14:27:36 | 000,000,000 | ---D | M] -- C:\Users\ASUS\AppData\Roaming\ESET
[2013.09.28 14:42:43 | 000,000,000 | ---D | M] -- C:\Users\ASUS\AppData\Roaming\eUpdate
[2013.10.10 17:20:47 | 000,000,000 | ---D | M] -- C:\Users\ASUS\AppData\Roaming\ftblauncher
[2013.03.29 17:28:47 | 000,000,000 | ---D | M] -- C:\Users\ASUS\AppData\Roaming\GHISLER
[2013.03.29 16:59:11 | 000,000,000 | ---D | M] -- C:\Users\ASUS\AppData\Roaming\Identities
[2013.04.21 16:31:31 | 000,000,000 | ---D | M] -- C:\Users\ASUS\AppData\Roaming\Intelli-studio
[2013.04.09 15:50:25 | 000,000,000 | ---D | M] -- C:\Users\ASUS\AppData\Roaming\Jasc
[2013.10.18 12:22:29 | 000,000,000 | ---D | M] -- C:\Users\ASUS\AppData\Roaming\LolClient
[2013.03.31 18:27:22 | 000,000,000 | ---D | M] -- C:\Users\ASUS\AppData\Roaming\Macromedia
[2013.11.09 19:16:20 | 000,000,000 | ---D | M] -- C:\Users\ASUS\AppData\Roaming\Malwarebytes
[2009.07.14 16:36:58 | 000,000,000 | ---D | M] -- C:\Users\ASUS\AppData\Roaming\Media Center Programs
[2013.10.01 18:06:03 | 000,000,000 | --SD | M] -- C:\Users\ASUS\AppData\Roaming\Microsoft
[2013.03.31 18:16:45 | 000,000,000 | ---D | M] -- C:\Users\ASUS\AppData\Roaming\Mozilla
[2013.08.15 18:25:39 | 000,000,000 | ---D | M] -- C:\Users\ASUS\AppData\Roaming\NVIDIA
[2013.09.17 18:02:39 | 000,000,000 | ---D | M] -- C:\Users\ASUS\AppData\Roaming\OBS
[2013.10.13 19:52:39 | 000,000,000 | ---D | M] -- C:\Users\ASUS\AppData\Roaming\Publish Providers
[2013.11.09 12:24:26 | 000,000,000 | ---D | M] -- C:\Users\ASUS\AppData\Roaming\Python-Eggs
[2013.09.12 05:16:04 | 000,000,000 | ---D | M] -- C:\Users\ASUS\AppData\Roaming\Radiocom
[2013.06.21 16:17:17 | 000,000,000 | ---D | M] -- C:\Users\ASUS\AppData\Roaming\Real
[2013.04.01 17:03:42 | 000,000,000 | ---D | M] -- C:\Users\ASUS\AppData\Roaming\RealNetworks
[2013.09.02 10:48:48 | 000,000,000 | ---D | M] -- C:\Users\ASUS\AppData\Roaming\Riot Games
[2013.11.10 14:35:10 | 000,000,000 | ---D | M] -- C:\Users\ASUS\AppData\Roaming\Seznam.cz
[2013.11.09 12:22:11 | 000,000,000 | ---D | M] -- C:\Users\ASUS\AppData\Roaming\SimilarSites
[2013.11.10 21:08:39 | 000,000,000 | ---D | M] -- C:\Users\ASUS\AppData\Roaming\Skype
[2013.11.07 19:07:33 | 000,000,000 | ---D | M] -- C:\Users\ASUS\AppData\Roaming\Sony
[2013.05.30 04:08:51 | 000,000,000 | ---D | M] -- C:\Users\ASUS\AppData\Roaming\Splitscreen Studios
[2013.08.29 09:50:33 | 000,000,000 | ---D | M] -- C:\Users\ASUS\AppData\Roaming\TS3Client
[2013.06.14 08:23:25 | 000,000,000 | ---D | M] -- C:\Users\ASUS\AppData\Roaming\Unity
[2013.10.14 15:50:56 | 000,000,000 | ---D | M] -- C:\Users\ASUS\AppData\Roaming\vegas120
[2013.10.07 19:23:32 | 000,000,000 | ---D | M] -- C:\Users\ASUS\AppData\Roaming\vlc
[2013.08.31 18:05:25 | 000,000,000 | ---D | M] -- C:\Users\ASUS\AppData\Roaming\Wargaming.net
[2013.04.01 14:35:04 | 000,000,000 | ---D | M] -- C:\Users\ASUS\AppData\Roaming\WinRAR

< %APPDATA%\*.exe /s >
[2013.11.06 18:30:38 | 002,295,500 | ---- | M] () -- C:\Users\ASUS\AppData\Roaming\.technic\temp.exe
[2013.04.28 04:45:30 | 000,020,480 | ---- | M] () -- C:\Users\ASUS\AppData\Roaming\com.flash.WidgetBrowser\bfgminer-rpc.exe
[2013.04.28 04:45:30 | 000,558,592 | ---- | M] () -- C:\Users\ASUS\AppData\Roaming\com.flash.WidgetBrowser\Cisvc.exe
[2013.11.08 21:53:49 | 000,119,808 | ---- | M] (obsproject.com) -- C:\Users\ASUS\AppData\Roaming\OBS\updates\updater.exe
[2013.06.21 16:17:23 | 000,468,560 | ---- | M] (RealNetworks, Inc.) -- C:\Users\ASUS\AppData\Roaming\Real\Update\temp\~Upg0\rnupgagent.exe
[2013.09.04 13:21:06 | 000,469,072 | ---- | M] (RealNetworks, Inc.) -- C:\Users\ASUS\AppData\Roaming\Real\Update\temp\~Upg3\rnupgagent.exe
[2013.10.10 14:36:53 | 000,469,072 | ---- | M] (RealNetworks, Inc.) -- C:\Users\ASUS\AppData\Roaming\Real\Update\temp\~Upg5\rnupgagent.exe
[2013.06.21 16:17:23 | 000,468,560 | ---- | M] (RealNetworks, Inc.) -- C:\Users\ASUS\AppData\Roaming\Real\Update\UpgradeHelper\RealPlayer\10.50\agent\rnupgagent.exe
[2013.06.21 19:43:19 | 038,409,632 | ---- | M] (RealNetworks, Inc.) -- C:\Users\ASUS\AppData\Roaming\Real\Update\UpgradeHelper\RealPlayer\10.50\agent\stub_data\RealPlayer.exe
[2013.06.21 19:42:50 | 000,775,344 | ---- | M] (RealNetworks, Inc.) -- C:\Users\ASUS\AppData\Roaming\Real\Update\UpgradeHelper\RealPlayer\10.50\agent\stub_exe\RealPlayer.exe
[2013.09.04 13:21:06 | 000,469,072 | ---- | M] (RealNetworks, Inc.) -- C:\Users\ASUS\AppData\Roaming\Real\Update\UpgradeHelper\RealPlayer\10.60\agent\rnupgagent.exe
[2013.05.16 14:25:04 | 001,062,472 | ---- | M] () -- C:\Users\ASUS\AppData\Roaming\Seznam.cz\szninstall.exe
[2013.05.16 14:26:24 | 002,589,256 | ---- | M] () -- C:\Users\ASUS\AppData\Roaming\Seznam.cz\sznsetup.exe
[2013.04.16 12:52:34 | 000,055,808 | ---- | M] () -- C:\Users\ASUS\AppData\Roaming\Seznam.cz\bin\ffkill.exe
[2013.04.29 11:53:34 | 000,045,560 | ---- | M] () -- C:\Users\ASUS\AppData\Roaming\Seznam.cz\bin\listicka-x64.exe
[2013.04.12 09:13:24 | 000,457,208 | ---- | M] () -- C:\Users\ASUS\AppData\Roaming\Seznam.cz\bin\szndesktop.exe
[2013.04.12 09:10:22 | 000,092,664 | ---- | M] () -- C:\Users\ASUS\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe
[2012.12.09 21:29:50 | 000,229,961 | ---- | M] () -- C:\Users\ASUS\AppData\Roaming\Splitscreen Studios\Pirate Galaxy\Launcher.exe
[2013.05.30 04:09:03 | 000,070,971 | ---- | M] (Splitscreen Studios GmbH) -- C:\Users\ASUS\AppData\Roaming\Splitscreen Studios\Pirate Galaxy\uninstall.exe
[2012.12.09 18:36:52 | 000,047,592 | ---- | M] (Oracle Corporation) -- C:\Users\ASUS\AppData\Roaming\Splitscreen Studios\Pirate Galaxy\java_vm\bin\jabswitch.exe
[2012.12.09 18:36:52 | 000,014,824 | ---- | M] (Oracle Corporation) -- C:\Users\ASUS\AppData\Roaming\Splitscreen Studios\Pirate Galaxy\java_vm\bin\java-rmi.exe
[2012.12.09 18:36:52 | 000,174,056 | ---- | M] (Oracle Corporation) -- C:\Users\ASUS\AppData\Roaming\Splitscreen Studios\Pirate Galaxy\java_vm\bin\java.exe
[2012.12.09 18:36:52 | 000,065,000 | ---- | M] (Oracle Corporation) -- C:\Users\ASUS\AppData\Roaming\Splitscreen Studios\Pirate Galaxy\java_vm\bin\javacpl.exe
[2012.12.09 18:36:52 | 000,174,056 | ---- | M] (Oracle Corporation) -- C:\Users\ASUS\AppData\Roaming\Splitscreen Studios\Pirate Galaxy\java_vm\bin\javaw.exe
[2012.12.09 18:36:52 | 000,246,760 | ---- | M] (Oracle Corporation) -- C:\Users\ASUS\AppData\Roaming\Splitscreen Studios\Pirate Galaxy\java_vm\bin\javaws.exe
[2012.12.09 18:36:52 | 000,035,304 | ---- | M] (Oracle Corporation) -- C:\Users\ASUS\AppData\Roaming\Splitscreen Studios\Pirate Galaxy\java_vm\bin\jp2launcher.exe
[2012.12.09 18:36:52 | 000,161,768 | ---- | M] (Oracle Corporation) -- C:\Users\ASUS\AppData\Roaming\Splitscreen Studios\Pirate Galaxy\java_vm\bin\jqs.exe
[2012.12.09 18:36:52 | 000,014,824 | ---- | M] (Oracle Corporation) -- C:\Users\ASUS\AppData\Roaming\Splitscreen Studios\Pirate Galaxy\java_vm\bin\keytool.exe
[2012.12.09 18:36:52 | 000,014,824 | ---- | M] (Oracle Corporation) -- C:\Users\ASUS\AppData\Roaming\Splitscreen Studios\Pirate Galaxy\java_vm\bin\kinit.exe
[2012.12.09 18:36:52 | 000,014,824 | ---- | M] (Oracle Corporation) -- C:\Users\ASUS\AppData\Roaming\Splitscreen Studios\Pirate Galaxy\java_vm\bin\klist.exe
[2012.12.09 18:36:52 | 000,014,824 | ---- | M] (Oracle Corporation) -- C:\Users\ASUS\AppData\Roaming\Splitscreen Studios\Pirate Galaxy\java_vm\bin\ktab.exe
[2012.12.09 18:36:52 | 000,014,824 | ---- | M] (Oracle Corporation) -- C:\Users\ASUS\AppData\Roaming\Splitscreen Studios\Pirate Galaxy\java_vm\bin\orbd.exe
[2012.12.09 18:36:52 | 000,014,824 | ---- | M] (Oracle Corporation) -- C:\Users\ASUS\AppData\Roaming\Splitscreen Studios\Pirate Galaxy\java_vm\bin\pack200.exe
[2012.12.09 18:36:52 | 000,014,824 | ---- | M] (Oracle Corporation) -- C:\Users\ASUS\AppData\Roaming\Splitscreen Studios\Pirate Galaxy\java_vm\bin\policytool.exe
[2012.12.09 18:36:52 | 000,014,824 | ---- | M] (Oracle Corporation) -- C:\Users\ASUS\AppData\Roaming\Splitscreen Studios\Pirate Galaxy\java_vm\bin\rmid.exe
[2012.12.09 18:36:52 | 000,014,824 | ---- | M] (Oracle Corporation) -- C:\Users\ASUS\AppData\Roaming\Splitscreen Studios\Pirate Galaxy\java_vm\bin\rmiregistry.exe
[2012.12.09 18:36:52 | 000,014,824 | ---- | M] (Oracle Corporation) -- C:\Users\ASUS\AppData\Roaming\Splitscreen Studios\Pirate Galaxy\java_vm\bin\servertool.exe
[2012.12.09 18:36:52 | 000,046,568 | ---- | M] (Oracle Corporation) -- C:\Users\ASUS\AppData\Roaming\Splitscreen Studios\Pirate Galaxy\java_vm\bin\ssvagent.exe
[2012.12.09 18:36:52 | 000,014,824 | ---- | M] (Oracle Corporation) -- C:\Users\ASUS\AppData\Roaming\Splitscreen Studios\Pirate Galaxy\java_vm\bin\tnameserv.exe
[2012.12.09 18:36:52 | 000,144,872 | ---- | M] (Oracle Corporation) -- C:\Users\ASUS\AppData\Roaming\Splitscreen Studios\Pirate Galaxy\java_vm\bin\unpack200.exe

< %systemroot%\*. /mp /s >

< %systemroot%\system32\*.dll /lockedfiles >
[199 C:\Windows\system32\*.tmp files -> C:\Windows\system32\*.tmp -> ]

< %systemroot%\Tasks\*.job /lockedfiles >

< %systemroot%\system32\drivers\*.sys /lockedfiles >

< %systemroot%\System32\config\*.sav >

< %systemroot%\system32\*.dll /lockedfiles >
[199 C:\Windows\system32\*.tmp files -> C:\Windows\system32\*.tmp -> ]

< %systemroot%\system32\drivers\*.sys /3 >

< %systemroot%\system32\*.* /3 >
[199 C:\Windows\system32\*.tmp files -> C:\Windows\system32\*.tmp -> ]

< %SYSTEMDRIVE%\*.exe >

< >

< HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s >
"Sidebar" = C:\Program Files\Windows Sidebar\sidebar.exe /autoRun -- [2009.07.14 02:39:41 | 001,475,072 | ---- | M] (Microsoft Corporation)
"screenSHU" = "C:\Program Files (x86)\screenSHU\screenSHU.exe" --hidden -- [2012.04.03 19:45:36 | 002,121,216 | ---- | M] ()
"Clownfish" = "C:\Program Files (x86)\Clownfish\Clownfish.exe" -- [2013.07.02 08:57:00 | 001,276,152 | ---- | M] (Bogdan Sharkov)

< reg query "HKLM\Software\Microsoft\Windows NT\CurrentVersion\winlogon" /v GinaDLL /c >

< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv" /v ImagePath /c >
HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\SERVICES\WUAUSERV
IMAGEPATH REG_EXPAND_SZ %systemroot%\system32\svchost.exe -k netsvcs

< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS" /v ImagePath /c >
HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\SERVICES\BITS
IMAGEPATH REG_EXPAND_SZ %SystemRoot%\System32\svchost.exe -k netsvcs

< >

< type c:\boot.ini >> test.txt /c >

< %SystemDrive%\PhysicalMBR.bin /md5 >
[2013.11.11 07:06:05 | 000,000,512 | ---- | M] () MD5=F16C6A6FD3061D66DADA9B7BDE590B2B -- C:\PhysicalMBR.bin

< >

< *crack* /s >
[2013.03.13 16:54:00 | 000,000,661 | ---- | M] () -- \Users\ASUS\AppData\Roaming\.minecraft\texturepacks\X1\textures\blocks\stonebricksmooth_cracked.png
[2013.03.13 16:54:00 | 000,000,661 | ---- | M] () -- \Users\ASUS\AppData\Roaming\.minecraft\texturepacks\X2\textures\blocks\stonebricksmooth_cracked.png
[2013.06.13 18:45:24 | 000,001,062 | ---- | M] () -- \Users\ASUS\AppData\Roaming\ftblauncher\ModPacks\MindCrack\logo_minecrack.png
[2013.06.13 18:45:24 | 000,008,681 | ---- | M] () -- \Users\ASUS\AppData\Roaming\ftblauncher\ModPacks\MindCrack\mindcrack_splash.png

< *keygen* /s >

< *AntiWPA* /s >

< *loader* /s >
[2003.09.15 14:02:00 | 000,169,384 | ---- | M] () -- \Counter-Strike 1.6\cstrike\models\qloader.mdl
[2003.09.15 13:55:50 | 000,352,548 | ---- | M] () -- \Counter-Strike 1.6\valve\models\loader.mdl
[2003.09.15 13:56:04 | 000,012,764 | ---- | M] () -- \Counter-Strike 1.6\valve\sound\ambience\loader_hydra1.wav
[2003.09.15 13:56:04 | 000,012,164 | ---- | M] () -- \Counter-Strike 1.6\valve\sound\ambience\loader_step1.wav
[2013.07.16 08:35:19 | 000,071,208 | ---- | M] () -- \Games\World_of_Tanks\PhysXLoader.dll
[2013.09.04 19:10:18 | 000,002,221 | ---- | M] () -- \Games\World_of_Tanks\res\scripts\client\gui\doc_loaders\graphicspresetsloader.pyc
[2013.09.04 19:10:18 | 000,007,015 | ---- | M] () -- \Games\World_of_Tanks\res\scripts\client\gui\doc_loaders\guicolorsloader.pyc
[2013.09.04 19:10:18 | 000,003,974 | ---- | M] () -- \Games\World_of_Tanks\res\scripts\client\gui\doc_loaders\guisoundsloader.pyc
[2013.10.24 12:45:58 | 000,006,629 | ---- | M] () -- \Games\World_of_Tanks\res\scripts\client\gui\doc_loaders\logindataloader.pyc
[2013.09.04 19:10:18 | 000,002,773 | ---- | M] () -- \Games\World_of_Tanks\res\scripts\client\gui\doc_loaders\windowsstoreddataloader.pyc
[2013.09.04 19:10:18 | 000,001,504 | ---- | M] () -- \Games\World_of_Tanks\res\scripts\client\gui\scaleform\framework\entities\abstract\loadermanagermeta.pyc
[2013.10.24 12:45:58 | 000,006,542 | ---- | M] () -- \Games\World_of_Tanks\res\scripts\client\gui\scaleform\framework\managers\loaders.pyc
[2013.07.16 08:35:19 | 000,003,668 | ---- | M] () -- \Games\World_of_Tanks\res\scripts\client\helpers\rssdownloader.pyc
[2013.09.04 19:10:18 | 000,006,907 | ---- | M] () -- \Games\World_of_Tanks\res\scripts\client\tutorial\loader.pyc
[2013.08.23 17:52:25 | 000,004,344 | ---- | M] () -- \Games\World_of_Warplanes\res\scripts\client\Helpers\ModelLoader.pyc
[2013.08.23 17:52:25 | 000,001,245 | ---- | M] () -- \Games\World_of_Warplanes\res\scripts\client\input\ProfileLoader\GamepadProfileLoader.pyc
[2012.02.07 17:11:22 | 000,008,192 | ---- | M] () -- \Program Files (x86)\BitLord 2\Bitlord files\_win32sysloader.pyd
[2013.08.27 11:42:52 | 000,005,612 | ---- | M] () -- \Program Files (x86)\BitLord 2\Bitlord files\deluge-2.3.2_245-py2.6.egg\deluge\httpdownloader.pyc
[2011.07.06 13:32:14 | 000,001,878 | ---- | M] () -- \Program Files (x86)\BitLord 2\Bitlord files\etc\gtk-2.0\gdk-pixbuf.loaders
[2011.07.06 13:32:14 | 000,014,336 | ---- | M] () -- \Program Files (x86)\BitLord 2\Bitlord files\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-png.dll
[2006.10.26 13:40:34 | 000,057,344 | ---- | M] () -- \Program Files (x86)\Common Files\microsoft shared\VS7DEBUG\coloader.dll
[2006.10.26 13:40:34 | 000,005,120 | ---- | M] () -- \Program Files (x86)\Common Files\microsoft shared\VS7DEBUG\coloader.tlb
[2011.03.19 22:13:33 | 000,169,384 | ---- | M] () -- \Program Files (x86)\Counter-Strike 1.6 Standalone\cstrike\models\qloader.mdl
[2011.03.19 22:09:50 | 000,352,548 | ---- | M] () -- \Program Files (x86)\Counter-Strike 1.6 Standalone\valve\models\loader.mdl
[2011.03.19 22:09:55 | 000,012,764 | ---- | M] () -- \Program Files (x86)\Counter-Strike 1.6 Standalone\valve\sound\ambience\loader_hydra1.wav
[2011.03.19 22:09:55 | 000,012,164 | ---- | M] () -- \Program Files (x86)\Counter-Strike 1.6 Standalone\valve\sound\ambience\loader_step1.wav
[2013.06.08 02:16:08 | 000,176,104 | ---- | M] () -- \Program Files (x86)\Cheat Engine 6.3\Kernelmoduleunloader.exe
[2013.06.19 17:36:30 | 000,000,132 | ---- | M] () -- \Program Files (x86)\Cheat Engine 6.3\Kernelmoduleunloader.exe.sig
[2005.09.19 12:30:30 | 000,001,825 | R--- | M] () -- \Program Files (x86)\Microsoft Games\Age of Empires III\AI\aiLoaderInactive.xs
[2005.09.19 12:30:30 | 000,001,575 | R--- | M] () -- \Program Files (x86)\Microsoft Games\Age of Empires III\AI\aiLoaderStandard.xs
[2013.11.09 12:38:46 | 000,002,545 | ---- | M] () -- \Program Files (x86)\Mobogenie\templates\web\images\prettyPhoto\dark_rounded\loader.gif
[2013.11.09 12:38:46 | 000,002,545 | ---- | M] () -- \Program Files (x86)\Mobogenie\templates\web\images\prettyPhoto\dark_square\loader.gif
[2013.11.09 12:38:46 | 000,006,331 | ---- | M] () -- \Program Files (x86)\Mobogenie\templates\web\images\prettyPhoto\default\loader.gif
[2013.11.09 12:38:46 | 000,002,545 | ---- | M] () -- \Program Files (x86)\Mobogenie\templates\web\images\prettyPhoto\facebook\loader.gif
[2013.11.09 12:38:46 | 000,002,545 | ---- | M] () -- \Program Files (x86)\Mobogenie\templates\web\images\prettyPhoto\light_rounded\loader.gif
[2013.11.09 12:38:46 | 000,002,545 | ---- | M] () -- \Program Files (x86)\Mobogenie\templates\web\images\prettyPhoto\light_square\loader.gif
[2012.11.01 08:32:14 | 000,057,224 | ---- | M] () -- \Program Files (x86)\NVIDIA Corporation\PhysX\Common\PhysXLoader.dll
[2012.11.01 08:32:44 | 000,065,416 | ---- | M] () -- \Program Files (x86)\NVIDIA Corporation\PhysX\Common\PhysXLoader64.dll
[2012.09.04 22:34:12 | 000,083,848 | ---- | M] () -- \Program Files (x86)\NVIDIA Corporation\PhysX\Common\PhysXUpdateLoader.dll
[2012.09.04 22:34:12 | 000,088,968 | ---- | M] () -- \Program Files (x86)\NVIDIA Corporation\PhysX\Common\PhysXUpdateLoader64.dll
[2013.08.14 15:19:52 | 000,251,905 | ---- | M] () -- \Program Files (x86)\RealNetworks\RealDownloader\downloader.vs
[2013.01.09 11:41:56 | 000,030,608 | ---- | M] () -- \Program Files (x86)\Seznam.cz\distribution\install\cz.seznam.software.libfoxloader-3.0.0-win32.zip
[2008.02.25 07:05:22 | 000,856,064 | ---- | M] () -- \Program Files (x86)\The KMPlayer\ImLoader.dll
[2006.12.23 16:37:56 | 000,044,032 | ---- | M] () -- \Program Files (x86)\WinRAR\RarExtLoader.exe
[2009.08.16 17:05:14 | 000,053,760 | ---- | M] () -- \Program Files\WinRAR\Formats\ace32loader.exe
[2013.11.06 16:10:27 | 000,002,563 | ---- | M] () -- \ProgramData\Microsoft\Windows\Start Menu\Programs\RealNetworks\RealDownloader.lnk
[2013.08.15 17:58:15 | 000,001,152 | ---- | M] () -- \ProgramData\Microsoft\Windows\Start Menu\Programs\Rich Media Player\Rich Media Downloader.lnk
[2013.08.14 15:19:04 | 000,014,136 | ---- | M] () -- \ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext\Chrome\Content\browserrecordloader.js
[2013.08.14 14:48:20 | 000,000,319 | ---- | M] () -- \ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext\Chrome\Content\browserrecordloader.xul
[2013.08.14 15:24:38 | 000,002,587 | ---- | M] () -- \ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Chrome\Ext\realdownloader.crx
[2013.02.20 15:28:38 | 000,072,638 | ---- | M] () -- \ProgramData\Skype\Apps\login\images\loader.gif
[2013.02.20 15:28:38 | 000,003,032 | ---- | M] () -- \ProgramData\Skype\Apps\login\images\loader.png
[2013.10.09 17:07:12 | 000,006,012 | ---- | M] () -- \ProgramData\Skype\Apps\login\images\normal\loader_15fps.gif
[2013.10.09 17:07:12 | 000,021,956 | ---- | M] () -- \ProgramData\Skype\Apps\login\images\normal\loader_30fps.gif
[2013.02.20 15:28:38 | 000,009,772 | ---- | M] () -- \ProgramData\Skype\Apps\login\images\retina\loader@2x.png
[2013.10.18 11:33:04 | 000,000,404 | ---- | M] () -- \Riot Games\League of Legends\RADS\projects\lol_air_client\releases\0.0.1.55\deploy\assets\storeImages\layout\small_loader.gif
[2013.11.06 16:10:27 | 000,002,563 | ---- | M] () -- \Users\All Users\Microsoft\Windows\Start Menu\Programs\RealNetworks\RealDownloader.lnk
[2013.08.15 17:58:15 | 000,001,152 | ---- | M] () -- \Users\All Users\Microsoft\Windows\Start Menu\Programs\Rich Media Player\Rich Media Downloader.lnk
[2013.08.14 15:19:04 | 000,014,136 | ---- | M] () -- \Users\All Users\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext\Chrome\Content\browserrecordloader.js
[2013.08.14 14:48:20 | 000,000,319 | ---- | M] () -- \Users\All Users\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext\Chrome\Content\browserrecordloader.xul
[2013.08.14 15:24:38 | 000,002,587 | ---- | M] () -- \Users\All Users\RealNetworks\RealDownloader\BrowserPlugins\Chrome\Ext\realdownloader.crx
[2013.02.20 15:28:38 | 000,072,638 | ---- | M] () -- \Users\All Users\Skype\Apps\login\images\loader.gif
[2013.02.20 15:28:38 | 000,003,032 | ---- | M] () -- \Users\All Users\Skype\Apps\login\images\loader.png
[2013.10.09 17:07:12 | 000,006,012 | ---- | M] () -- \Users\All Users\Skype\Apps\login\images\normal\loader_15fps.gif
[2013.10.09 17:07:12 | 000,021,956 | ---- | M] () -- \Users\All Users\Skype\Apps\login\images\normal\loader_30fps.gif
[2013.02.20 15:28:38 | 000,009,772 | ---- | M] () -- \Users\All Users\Skype\Apps\login\images\retina\loader@2x.png
[2013.08.16 21:34:23 | 000,085,784 | ---- | M] () -- \Users\ASUS\AppData\Local\Google\Chrome\User Data\Default\Extensions\doagiokpgboiomffjfhaiimafndmmpni\1.3.1_0\nprichmediadownloader.dll
[2013.11.10 19:07:26 | 000,110,642 | ---- | M] () -- \Users\ASUS\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\ZX6RBLBX\AdLoader-05424a4ab7d836fbf1bc3b5c2b3458f1.min[1].js
[2013.11.10 19:07:26 | 000,001,537 | ---- | M] () -- \Users\ASUS\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\ZX6RBLBX\AdLoader[1].htm
[2013.11.09 12:38:46 | 000,002,545 | ---- | M] () -- \Users\ASUS\AppData\Local\Mobogenie\Version\OldVersion\Mobogenie\templates\web\images\prettyPhoto\dark_rounded\loader.gif
[2013.11.09 12:38:46 | 000,002,545 | ---- | M] () -- \Users\ASUS\AppData\Local\Mobogenie\Version\OldVersion\Mobogenie\templates\web\images\prettyPhoto\dark_square\loader.gif
[2013.11.09 12:38:46 | 000,006,331 | ---- | M] () -- \Users\ASUS\AppData\Local\Mobogenie\Version\OldVersion\Mobogenie\templates\web\images\prettyPhoto\default\loader.gif
[2013.11.09 12:38:46 | 000,002,545 | ---- | M] () -- \Users\ASUS\AppData\Local\Mobogenie\Version\OldVersion\Mobogenie\templates\web\images\prettyPhoto\facebook\loader.gif
[2013.11.09 12:38:46 | 000,002,545 | ---- | M] () -- \Users\ASUS\AppData\Local\Mobogenie\Version\OldVersion\Mobogenie\templates\web\images\prettyPhoto\light_rounded\loader.gif
[2013.11.09 12:38:46 | 000,002,545 | ---- | M] () -- \Users\ASUS\AppData\Local\Mobogenie\Version\OldVersion\Mobogenie\templates\web\images\prettyPhoto\light_square\loader.gif
[2013.08.13 11:24:12 | 001,491,224 | ---- | M] () -- \Users\ASUS\AppData\Local\Rich Media Player\rmdownloader.exe
[2013.07.23 10:49:28 | 000,051,005 | ---- | M] () -- \Users\ASUS\AppData\Local\Rich Media Player\BrowserExtensions\Chrome\richmediadownloader.crx
[2013.07.23 11:33:18 | 000,046,204 | ---- | M] () -- \Users\ASUS\AppData\Local\Rich Media Player\BrowserExtensions\Chrome\richmediadownloader.rar
[2013.07.23 10:49:28 | 000,085,784 | ---- | M] () -- \Users\ASUS\AppData\Local\Rich Media Player\BrowserExtensions\Chrome\richmediadownloader\nprichmediadownloader.dll
[2013.07.03 12:51:14 | 000,155,928 | ---- | M] () -- \Users\ASUS\AppData\Local\Rich Media Player\BrowserExtensions\IE\RichMediaDownloader.dll
[2013.11.06 18:35:12 | 000,545,146 | ---- | M] () -- \Users\ASUS\AppData\Roaming\.technic\bigdig\ForgeModLoader-client-0.log
[2013.11.06 18:33:14 | 000,000,000 | ---- | M] () -- \Users\ASUS\AppData\Roaming\.technic\bigdig\ForgeModLoader-client-0.log.lck
[2013.09.22 15:27:32 | 000,005,384 | ---- | M] () -- \Users\ASUS\AppData\Roaming\.technic\bigdig\ForgeModLoader-client-1.log
[2013.09.17 18:22:18 | 000,571,183 | ---- | M] () -- \Users\ASUS\AppData\Roaming\.technic\bigdig\ForgeModLoader-client-2.log
[2013.09.24 19:05:48 | 000,628,272 | ---- | M] () -- \Users\ASUS\AppData\Roaming\.technic\hexxit\ForgeModLoader-client-0.log
[2013.09.24 18:58:28 | 000,000,000 | ---- | M] () -- \Users\ASUS\AppData\Roaming\.technic\hexxit\ForgeModLoader-client-0.log.lck
[2013.09.24 18:56:49 | 000,783,593 | ---- | M] () -- \Users\ASUS\AppData\Roaming\.technic\hexxit\ForgeModLoader-client-1.log
[2013.08.25 14:23:12 | 000,692,531 | ---- | M] () -- \Users\ASUS\AppData\Roaming\.technic\hexxit\ForgeModLoader-client-2.log
[2013.06.04 14:34:38 | 025,767,915 | ---- | M] () -- \Users\ASUS\AppData\Roaming\.technic\majnuj-test-modpack\ForgeModLoader-client-0.log
[2013.06.04 14:08:59 | 000,000,000 | ---- | M] () -- \Users\ASUS\AppData\Roaming\.technic\majnuj-test-modpack\ForgeModLoader-client-0.log.lck
[2013.10.03 04:35:25 | 000,061,257 | ---- | M] () -- \Users\ASUS\AppData\Roaming\.technic\tekkit\ForgeModLoader-0.log
[2013.09.15 15:48:27 | 000,065,587 | ---- | M] () -- \Users\ASUS\AppData\Roaming\.technic\tekkit\ForgeModLoader-0.log.1
[2013.09.15 15:47:41 | 000,000,000 | ---- | M] () -- \Users\ASUS\AppData\Roaming\.technic\tekkit\ForgeModLoader-0.log.1.lck
[2013.09.24 15:07:02 | 000,061,257 | ---- | M] () -- \Users\ASUS\AppData\Roaming\.technic\tekkit\ForgeModLoader-1.log
[2013.09.13 13:16:41 | 000,064,934 | ---- | M] () -- \Users\ASUS\AppData\Roaming\.technic\tekkit\ForgeModLoader-1.log.1
[2013.09.23 14:49:08 | 000,061,257 | ---- | M] () -- \Users\ASUS\AppData\Roaming\.technic\tekkit\ForgeModLoader-2.log
[2013.09.12 18:07:12 | 000,422,969 | ---- | M] () -- \Users\ASUS\AppData\Roaming\.technic\tekkit\ForgeModLoader-2.log.1
[2012.04.23 19:31:42 | 000,001,980 | ---- | M] () -- \Users\ASUS\AppData\Roaming\.technic\tekkit\mods\ComputerCraft\org\luaj\vm2\luajc\JavaLoader.class
[2013.08.15 19:19:06 | 000,341,976 | ---- | M] () -- \Users\ASUS\AppData\Roaming\.technic\tekkitmain\ForgeModLoader-client-0.log
[2013.08.15 19:16:07 | 000,000,000 | ---- | M] () -- \Users\ASUS\AppData\Roaming\.technic\tekkitmain\ForgeModLoader-client-0.log.lck
[2013.06.12 19:08:46 | 000,351,717 | ---- | M] () -- \Users\ASUS\AppData\Roaming\.technic\tekkitmain\ForgeModLoader-client-1.log
[2013.03.29 12:37:34 | 000,059,384 | ---- | M] () -- \Users\ASUS\AppData\Roaming\Seznam.cz\bin\13988libfoxloader.dll
[2013.04.15 12:32:10 | 000,060,416 | ---- | M] () -- \Users\ASUS\AppData\Roaming\Seznam.cz\bin\7330libfoxloader-x64.dll
[2013.05.04 21:01:17 | 000,000,165 | ---- | M] () -- \Users\ASUS\AppData\Roaming\Seznam.cz\conf\szndesktop.d\libfoxloader.conf
[2013.01.09 11:41:56 | 000,030,608 | ---- | M] () -- \Users\ASUS\AppData\Roaming\Seznam.cz\install\cz.seznam.software.libfoxloader-3.0.0-win32.zip
[2013.03.25 15:27:20 | 000,000,665 | ---- | M] () -- \Users\ASUS\AppData\Roaming\Seznam.cz\uninstall\cz_seznam_software_libfoxloader_3_1_2.install.bat
[2013.03.25 15:27:26 | 000,000,117 | ---- | M] () -- \Users\ASUS\AppData\Roaming\Seznam.cz\uninstall\cz_seznam_software_libfoxloader_3_1_2.uninstall.bat
[2013.10.10 17:29:52 | 000,013,990 | ---- | M] () -- \Users\ASUS\Desktop\blbosti na ploše\LapitosGalacticraft\minecraft\ForgeModLoader-client-0.log
[2013.10.10 17:28:22 | 000,000,000 | ---- | M] () -- \Users\ASUS\Desktop\blbosti na ploše\LapitosGalacticraft\minecraft\ForgeModLoader-client-0.log.lck
[2013.10.14 17:43:16 | 000,629,521 | ---- | M] () -- \Users\ASUS\Desktop\blbosti na ploše\Unhinged\minecraft\ForgeModLoader-client-0.log
[2013.10.11 15:05:28 | 000,895,327 | ---- | M] () -- \Users\ASUS\Desktop\blbosti na ploše\Unhinged\minecraft\ForgeModLoader-client-0.log.1
[2013.10.11 14:17:57 | 000,000,000 | ---- | M] () -- \Users\ASUS\Desktop\blbosti na ploše\Unhinged\minecraft\ForgeModLoader-client-0.log.1.lck
[2013.10.14 16:57:33 | 000,000,000 | ---- | M] () -- \Users\ASUS\Desktop\blbosti na ploše\Unhinged\minecraft\ForgeModLoader-client-0.log.lck
[2013.10.11 14:05:53 | 000,494,297 | ---- | M] () -- \Users\ASUS\Desktop\blbosti na ploše\Unhinged\minecraft\ForgeModLoader-client-1.log
[2013.11.06 17:57:22 | 000,036,972 | ---- | M] () -- \Users\ASUS\Desktop\Hry\FTB\FTBRETROSMP\minecraft\ForgeModLoader-0.log
[2013.11.06 17:56:26 | 000,001,090 | ---- | M] () -- \Users\ASUS\Desktop\Hry\FTB\FTBRETROSMP\minecraft\config\ModLoader.cfg
[2013.11.06 18:36:42 | 000,045,338 | ---- | M] () -- \Users\ASUS\Desktop\Hry\FTB\FTBRETROSSP\minecraft\ForgeModLoader-0.log
[2013.11.06 18:01:12 | 000,055,828 | ---- | M] () -- \Users\ASUS\Desktop\Hry\FTB\FTBRETROSSP\minecraft\ForgeModLoader-1.log
[2013.11.06 17:59:42 | 000,001,090 | ---- | M] () -- \Users\ASUS\Desktop\Hry\FTB\FTBRETROSSP\minecraft\config\ModLoader.cfg
[2013.11.05 19:23:35 | 209,940,209 | ---- | M] () -- \Users\ASUS\Desktop\Hry\FTB\Unleashed\minecraft\ForgeModLoader-client-0.log
[2013.11.05 19:08:55 | 000,000,000 | ---- | M] () -- \Users\ASUS\Desktop\Hry\FTB\Unleashed\minecraft\ForgeModLoader-client-0.log.lck
[2013.10.26 08:06:13 | 582,659,270 | ---- | M] () -- \Users\ASUS\Desktop\Hry\FTB\Unleashed\minecraft\ForgeModLoader-client-1.log
[2013.10.26 07:39:54 | 053,480,393 | ---- | M] () -- \Users\ASUS\Desktop\Hry\FTB\Unleashed\minecraft\ForgeModLoader-client-2.log
[2013.03.29 18:01:31 | 000,082,784 | ---- | M] () -- \Windows\assembly\GAC\IALoader\1.7.6223.0__31bf3856ad364e35\IALoader.dll
[2009.07.14 13:25:34 | 000,223,744 | R--- | M] () -- \Windows\ConfigSetRoot\sources\upgloader.dll
[2009.07.14 13:25:34 | 000,024,064 | R--- | M] () -- \Windows\ConfigSetRoot\sources\cs-cz\upgloader.dll.mui
[2013.11.11 06:56:23 | 000,027,202 | ---- | M] () -- \Windows\Prefetch\RAREXTLOADER.EXE-4B76CB3C.pf
[2011.02.05 14:09:50 | 000,005,799 | ---- | M] () -- \Windows\SoftwareDistribution\Download\d639f7376b627c8f37f9acbbf7c6234a\amd64_microsoft-windows-e..vironment-os-loader_31bf3856ad364e35_6.1.7600.16757_none_9c05f879842e1792.manifest
[2011.02.05 14:05:03 | 000,005,799 | ---- | M] () -- \Windows\SoftwareDistribution\Download\d639f7376b627c8f37f9acbbf7c6234a\amd64_microsoft-windows-e..vironment-os-loader_31bf3856ad364e35_6.1.7600.20897_none_9c6455949d6c2720.manifest
[2011.02.05 18:34:40 | 000,005,799 | ---- | M] () -- \Windows\SoftwareDistribution\Download\d639f7376b627c8f37f9acbbf7c6234a\amd64_microsoft-windows-e..vironment-os-loader_31bf3856ad364e35_6.1.7601.17556_none_9deb553581556a27.manifest
[2011.02.05 14:10:12 | 000,005,799 | ---- | M] () -- \Windows\SoftwareDistribution\Download\d639f7376b627c8f37f9acbbf7c6234a\amd64_microsoft-windows-e..vironment-os-loader_31bf3856ad364e35_6.1.7601.21655_none_9e73f1b69a73f09a.manifest
[2009.07.14 02:03:49 | 000,003,584 | -H-- | M] () -- \Windows\System32\api-ms-win-core-libraryloader-l1-1-0.dll
[2009.07.14 02:15:12 | 000,038,400 | ---- | M] () -- \Windows\System32\dmloader.dll
[199 \Windows\System32\*.tmp files -> \Windows\System32\*.tmp -> ]
[2013.04.03 14:13:18 | 000,012,532 | ---- | M] () -- \Windows\System32\Adobe\Shockwave 12\shockwave_Projector_Loader.dcr
[2013.04.04 05:47:00 | 000,009,622 | ---- | M] () -- \Windows\System32\Macromed\Shockwave 10\shockwave_Projector_Loader.dcr
[2009.07.14 02:03:49 | 000,003,584 | -H-- | M] () -- \Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
[2009.07.14 02:15:12 | 000,038,400 | ---- | M] () -- \Windows\SysWOW64\dmloader.dll
[199 \Windows\SysWOW64\*.tmp files -> \Windows\SysWOW64\*.tmp -> ]
[2013.04.03 14:13:18 | 000,012,532 | ---- | M] () -- \Windows\SysWOW64\Adobe\Shockwave 12\shockwave_Projector_Loader.dcr
[2013.04.04 05:47:00 | 000,009,622 | ---- | M] () -- \Windows\SysWOW64\Macromed\Shockwave 10\shockwave_Projector_Loader.dcr
[2009.07.14 02:40:31 | 000,047,616 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-audio-dmusic_31bf3856ad364e35_6.1.7600.16385_none_a1e90d98a953d601\dmloader.dll
[2009.07.14 02:24:53 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.16385_none_66a6e19d9580f9e3\api-ms-win-core-libraryloader-l1-1-0.dll
[2009.07.14 16:17:49 | 000,004,431 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_8f37605116ba80bc.manifest
[2009.07.14 16:17:49 | 000,033,360 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_8f37605116ba80bc_winload.efi.mui_35ee487d
[2009.07.14 16:17:49 | 000,034,896 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_8f37605116ba80bc_winload.exe.mui_3bc5b827
[2009.07.14 16:17:49 | 000,029,776 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_8f37605116ba80bc_winresume.efi.mui_f412814e
[2009.07.14 16:17:49 | 000,030,288 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_8f37605116ba80bc_winresume.exe.mui_ff8b5358
[2009.07.14 03:58:45 | 000,005,745 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7600.16385_none_b71babd98657e6ef.manifest
[2009.07.14 03:58:45 | 000,641,088 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7600.16385_none_b71babd98657e6ef_winload.efi_75834aa0
[2009.07.14 03:58:45 | 000,604,192 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7600.16385_none_b71babd98657e6ef_winload.exe_75835076
[2009.07.14 03:58:45 | 000,557,136 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7600.16385_none_b71babd98657e6ef_winresume.efi_85cd069f
[2009.07.14 03:58:45 | 000,518,352 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7600.16385_none_b71babd98657e6ef_winresume.exe_85cd1215
[2009.07.14 03:57:50 | 000,002,896 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-s..ive-blackbox-loader_31bf3856ad364e35_6.1.7600.16385_none_c72819e06acceb59.manifest
[2009.07.14 03:57:50 | 000,019,008 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-s..ive-blackbox-loader_31bf3856ad364e35_6.1.7600.16385_none_c72819e06acceb59_spldr.sys_98bd87a0
[2009.07.14 16:15:51 | 000,004,431 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_8f37605116ba80bc.manifest
[2009.07.14 03:13:42 | 000,005,745 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7600.16385_none_b71babd98657e6ef.manifest
[2011.02.05 14:09:31 | 000,005,745 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7600.16757_none_b73e23c9863dba66.manifest
[2011.02.05 14:04:44 | 000,005,745 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7600.20897_none_b79c80e49f7bc9f4.manifest
[2011.02.05 18:34:23 | 000,005,745 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.17556_none_b923808583650cfb.manifest
[2011.02.05 14:09:57 | 000,005,745 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.21655_none_b9ac1d069c83936e.manifest
[2009.07.14 03:18:27 | 000,002,896 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-s..ive-blackbox-loader_31bf3856ad364e35_6.1.7600.16385_none_c72819e06acceb59.manifest
[2009.07.14 02:15:12 | 000,038,400 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-audio-dmusic_31bf3856ad364e35_6.1.7600.16385_none_45ca7214f0f664cb\dmloader.dll
[2009.07.14 02:03:49 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.16385_none_0a884619dd2388ad\api-ms-win-core-libraryloader-l1-1-0.dll

< *minodlogin* /s >

< *tnod* /s >

< *AutoKMS* /s >

< *activator* /s >
[2013.04.21 02:21:28 | 000,000,462 | ---- | M] () -- \Users\ASUS\AppData\Roaming\.minecraft\texturepacks\X1\textures\blocks\activatorRail.png
[2013.04.21 02:22:22 | 000,000,514 | ---- | M] () -- \Users\ASUS\AppData\Roaming\.minecraft\texturepacks\X1\textures\blocks\activatorRail_powered.png

< *serial* /s >
[2013.09.04 19:10:18 | 000,003,176 | ---- | M] () -- \Games\World_of_Tanks\res\scripts\client\gui\shared\gui_items\serializers.pyc
[2009.06.10 22:13:54 | 000,970,752 | ---- | M] () -- \Program Files (x86)\Reference Assemblies\Microsoft\Framework\v3.0\System.Runtime.Serialization.dll
[2009.07.14 16:17:32 | 000,090,112 | ---- | M] () -- \Program Files (x86)\Reference Assemblies\Microsoft\Framework\v3.0\cs\System.RunTime.Serialization.Resources.dll
[2009.06.10 21:30:43 | 000,847,872 | ---- | M] () -- \Program Files\Reference Assemblies\Microsoft\Framework\v3.0\System.Runtime.Serialization.dll
[2009.07.14 16:17:32 | 000,090,112 | ---- | M] () -- \Program Files\Reference Assemblies\Microsoft\Framework\v3.0\cs\System.RunTime.Serialization.Resources.dll
[2013.10.01 11:53:54 | 000,321,824 | ---- | M] () -- \Program Files\Sony\Vegas Pro 12.0\CoreUI.XmlSerializers.dll
[2013.10.01 11:53:58 | 000,461,088 | ---- | M] () -- \Program Files\Sony\Vegas Pro 12.0\Sony.MediaSoftware.TextGen.CoreGraphics.XmlSerializers.dll
[2 \Program Files\Sony\Vegas Pro 12.0\*.tmp files -> \Program Files\Sony\Vegas Pro 12.0\*.tmp -> ]
[2009.07.14 16:17:20 | 000,011,776 | ---- | M] () -- \Windows\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap.resources\2.0.0.0_cs_b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2009.06.10 22:23:19 | 000,131,072 | ---- | M] () -- \Windows\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap\2.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.dll
[2009.07.14 16:17:32 | 000,090,112 | ---- | M] () -- \Windows\assembly\GAC_MSIL\system.runtime.serialization.resources\3.0.0.0_cs_b77a5c561934e089\System.RunTime.Serialization.Resources.dll
[2009.06.10 22:13:54 | 000,970,752 | ---- | M] () -- \Windows\assembly\GAC_MSIL\System.Runtime.Serialization\3.0.0.0__b77a5c561934e089\System.Runtime.Serialization.dll
[2009.07.14 05:56:20 | 002,347,008 | ---- | M] () -- \Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Seri#\39e53f507d9cbc5c10a2f47c4b0d09dd\System.Runtime.Serialization.ni.dll
[2009.07.14 05:55:32 | 000,310,784 | ---- | M] () -- \Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Seri#\d57d865568209a71d63739fa448ed6df\System.Runtime.Serialization.Formatters.Soap.ni.dll
[2009.07.14 05:59:40 | 003,073,536 | ---- | M] () -- \Windows\assembly\NativeImages_v2.0.50727_64\System.Runtime.Seri#\12aaff696a0c54773664b4c5407deaa2\System.Runtime.Serialization.ni.dll
[2009.07.14 05:57:59 | 000,396,288 | ---- | M] () -- \Windows\assembly\NativeImages_v2.0.50727_64\System.Runtime.Seri#\d0c6d3aadce1e38bbcb06905e132a503\System.Runtime.Serialization.Formatters.Soap.ni.dll
[2013.05.10 06:23:40 | 000,310,272 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_32\System.Runtime.Seri#\d0ff3383438d688a0118d0fa19ed1dc4\System.Runtime.Serialization.Formatters.Soap.ni.dll
[2013.05.10 06:23:55 | 002,625,024 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_32\System.Runtime.Seri#\e9f8a45b1063d6c6a62718c88a5623d1\System.Runtime.Serialization.ni.dll
[2013.05.09 19:39:52 | 003,375,616 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_64\System.Runtime.Seri#\08fba6b56d838ad48b4451c82e5728d4\System.Runtime.Serialization.ni.dll
[2013.05.09 19:41:00 | 000,374,272 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_64\System.Runtime.Seri#\b468f9d8655e91b7a6aa11473eca4a97\System.Runtime.Serialization.Formatters.Soap.ni.dll
[2013.05.09 17:03:18 | 000,017,840 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap.resources\v4.0_4.0.0.0_cs_b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2013.05.09 16:59:55 | 000,122,264 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.dll
[2013.05.09 17:03:17 | 000,099,208 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.RunTime.Serialization.resources\v4.0_4.0.0.0_cs_b77a5c561934e089\System.RunTime.Serialization.resources.dll
[2013.05.09 16:59:54 | 001,026,936 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization\v4.0_4.0.0.0__b77a5c561934e089\System.Runtime.Serialization.dll
[2009.06.10 22:23:19 | 000,131,072 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v2.0.50727\System.Runtime.Serialization.Formatters.Soap.dll
[2009.07.14 16:17:21 | 000,011,776 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v2.0.50727\cs\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2009.06.10 22:14:06 | 000,970,752 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\System.Runtime.Serialization.dll
[2010.03.18 12:16:28 | 001,026,936 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\System.Runtime.Serialization.dll
[2010.03.18 12:16:28 | 000,122,264 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\System.Runtime.Serialization.Formatters.Soap.dll
[2010.06.15 01:33:16 | 000,017,840 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\cs\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2010.06.15 01:33:16 | 000,099,208 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\cs\System.RunTime.Serialization.resources.dll
[2009.06.10 21:40:06 | 000,131,072 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v2.0.50727\System.Runtime.Serialization.Formatters.Soap.dll
[2009.07.14 16:17:19 | 000,011,776 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v2.0.50727\cs\System.Runtime.Serialization.Formatters.Soap.Resources.dll
[2009.06.10 21:30:46 | 000,847,872 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\System.Runtime.Serialization.dll
[2010.03.18 12:16:28 | 001,026,936 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v4.0.30319\System.Runtime.Serialization.dll
[2010.03.18 12:16:28 | 000,122,264 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v4.0.30319\System.Runtime.Serialization.Formatters.Soap.dll
[2010.06.15 01:48:20 | 000,017,840 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v4.0.30319\cs\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2010.06.15 01:48:20 | 000,099,208 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v4.0.30319\cs\System.RunTime.Serialization.resources.dll
[2009.07.14 02:16:13 | 000,015,360 | ---- | M] () -- \Windows\System32\serialui.dll
[199 \Windows\System32\*.tmp files -> \Windows\System32\*.tmp -> ]
[2009.07.14 16:17:13 | 000,005,120 | ---- | M] () -- \Windows\System32\cs-CZ\serialui.dll.mui
[2009.07.14 01:00:40 | 000,094,208 | ---- | M] () -- \Windows\System32\DriverStore\FileRepository\msports.inf_amd64_neutral_fdcfb86ce78678d1\serial.sys
[2009.06.10 21:37:50 | 000,038,400 | ---- | M] () -- \Windows\System32\DriverStore\FileRepository\smartcrd.inf_amd64_neutral_6fb75ea318f84fe5\grserial.sys
[2009.07.14 02:16:13 | 000,015,360 | ---- | M] () -- \Windows\SysWOW64\serialui.dll
[199 \Windows\SysWOW64\*.tmp files -> \Windows\SysWOW64\*.tmp -> ]
[2009.07.14 16:17:13 | 000,005,120 | ---- | M] () -- \Windows\SysWOW64\cs-CZ\serialui.dll.mui
[2009.07.14 16:17:19 | 000,011,776 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-n..xcorecomp.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_1c215c9ac50719c5\System.Runtime.Serialization.Formatters.Soap.Resources.dll
[2009.07.14 16:17:22 | 000,005,120 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-u..em-config.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_aa5fd338fd5bcb23\serialui.dll.mui
[2009.07.14 02:41:54 | 000,017,920 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-unimodem-config_31bf3856ad364e35_6.1.7600.16385_none_50f69335385bc360\serialui.dll
[2009.07.14 16:17:32 | 000,090,112 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-wcfcorecomp.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_b96904386c2fe002\System.RunTime.Serialization.Resources.dll
[2009.07.14 16:17:25 | 000,009,728 | ---- | M] () -- \Windows\winsxs\amd64_msports.inf.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_20ab142d65ed6acc\serial.sys.mui
[2009.07.14 01:00:40 | 000,094,208 | ---- | M] () -- \Windows\winsxs\amd64_msports.inf_31bf3856ad364e35_6.1.7600.16385_none_548ca258d20f4ada\serial.sys
[2009.06.10 21:40:06 | 000,131,072 | ---- | M] () -- \Windows\winsxs\amd64_netfx-system.runtim..ion.formatters.soap_b03f5f7f11d50a3a_6.1.7600.16385_none_a9d1bee515273f56\System.Runtime.Serialization.Formatters.Soap.dll
[2009.06.10 21:37:50 | 000,038,400 | ---- | M] () -- \Windows\winsxs\amd64_smartcrd.inf_31bf3856ad364e35_6.1.7600.16385_none_ce9ed3064deed3aa\grserial.sys
[2009.06.10 21:30:46 | 000,847,872 | ---- | M] () -- \Windows\winsxs\amd64_wcf-system.runtime.serialization.ref_b03f5f7f11d50a3a_6.1.7600.16385_none_5943b25a748cb06c\System.Runtime.Serialization.dll
[2009.06.10 21:30:43 | 000,847,872 | ---- | M] () -- \Windows\winsxs\amd64_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7600.16385_none_941abf24c884ab05\System.Runtime.Serialization.dll
[2009.07.14 03:57:21 | 000,002,766 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..gertransport-serial_31bf3856ad364e35_6.1.7600.16385_none_6daa7ec5c65bf5bc.manifest
[2009.07.14 03:57:21 | 000,017,984 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..gertransport-serial_31bf3856ad364e35_6.1.7600.16385_none_6daa7ec5c65bf5bc_kdcom.dll_db5e7744
[2009.07.14 16:17:49 | 000,005,120 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-u..em-config.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_aa5fd338fd5bcb23_serialui.dll.mui_7d29d2a3
[2009.07.14 03:57:29 | 000,017,920 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-unimodem-config_31bf3856ad364e35_6.1.7600.16385_none_50f69335385bc360_serialui.dll_bea29328
[2009.07.14 16:17:47 | 000,005,120 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-u..em-config.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_4e4137b544fe59ed_serialui.dll.mui_7d29d2a3
[2009.07.14 03:58:37 | 000,015,360 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-unimodem-config_31bf3856ad364e35_6.1.7600.16385_none_f4d7f7b17ffe522a_serialui.dll_bea29328
[2009.07.14 03:15:17 | 000,002,766 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..gertransport-serial_31bf3856ad364e35_6.1.7600.16385_none_6daa7ec5c65bf5bc.manifest
[2011.02.05 14:10:43 | 000,002,766 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..gertransport-serial_31bf3856ad364e35_6.1.7600.16757_none_6dccf6b5c641c933.manifest
[2011.02.05 14:05:47 | 000,002,766 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..gertransport-serial_31bf3856ad364e35_6.1.7600.20897_none_6e2b53d0df7fd8c1.manifest
[2011.02.05 18:35:45 | 000,002,766 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..gertransport-serial_31bf3856ad364e35_6.1.7601.17556_none_6fb25371c3691bc8.manifest
[2011.02.05 14:11:05 | 000,002,766 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..gertransport-serial_31bf3856ad364e35_6.1.7601.21655_none_703aeff2dc87a23b.manifest
[2009.07.14 03:11:30 | 000,000,868 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft.windows.h..tserial-driverclass_31bf3856ad364e35_6.1.7600.16385_none_88b1c48f2026fe3f.manifest
[2009.07.14 03:26:23 | 000,002,237 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_wcf-system.runtime.serialization.ref_b03f5f7f11d50a3a_6.1.7600.16385_none_5943b25a748cb06c.manifest
[2009.07.14 03:27:09 | 000,002,262 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7600.16385_none_941abf24c884ab05.manifest
[2009.07.14 02:52:33 | 000,002,226 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.ref_b77a5c561934e089_6.1.7600.16385_none_a6aa149474833896.manifest
[2009.07.14 16:16:38 | 000,001,626 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7600.16385_cs-cz_34555b4d83cf58b0.manifest
[2009.07.14 02:51:52 | 000,001,985 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization_b77a5c561934e089_6.1.7600.16385_none_d6ed4a2e9c2a39c9.manifest
[2009.07.14 02:57:53 | 000,002,260 | ---- | M] () -- \Windows\winsxs\Manifests\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7600.16385_none_dbc7f5fbdd00d40b.manifest
[2009.06.10 22:23:19 | 000,131,072 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.seri..ion.formatters.soap_b03f5f7f11d50a3a_6.1.7600.16385_none_1c9a3ec1e01c684b\System.Runtime.Serialization.Formatters.Soap.dll
[2009.07.14 16:17:20 | 000,011,776 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.seri..ters.soap.resources_b03f5f7f11d50a3a_6.1.7600.16385_cs-cz_d5c3552dd9b47144\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2009.06.10 22:14:06 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.ref_b77a5c561934e089_6.1.7600.16385_none_a6aa149474833896\System.Runtime.Serialization.dll
[2009.07.14 16:17:32 | 000,090,112 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7600.16385_cs-cz_34555b4d83cf58b0\System.RunTime.Serialization.Resources.dll
[2009.06.10 22:13:54 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization_b77a5c561934e089_6.1.7600.16385_none_d6ed4a2e9c2a39c9\System.Runtime.Serialization.dll
[2009.07.14 16:17:21 | 000,011,776 | ---- | M] () -- \Windows\winsxs\wow64_microsoft-windows-n..xcorecomp.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_267606ecf967dbc0\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2009.07.14 16:17:13 | 000,005,120 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-u..em-config.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_4e4137b544fe59ed\serialui.dll.mui
[2009.07.14 02:16:13 | 000,015,360 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-unimodem-config_31bf3856ad364e35_6.1.7600.16385_none_f4d7f7b17ffe522a\serialui.dll
[2009.07.14 16:17:32 | 000,090,112 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-wcfcorecomp.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_5d4a68b4b3d26ecc\System.RunTime.Serialization.Resources.dll
[2009.06.10 22:13:54 | 000,970,752 | ---- | M] () -- \Windows\winsxs\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7600.16385_none_dbc7f5fbdd00d40b\System.Runtime.Serialization.dll

< *w7lxe* /s >

< End of report >
Nahoru
Madmaxik
Návštěvník
Návštěvník
Příspěvky: 110
Registrován: 09 lis 2013 17:28

Re: Kontrola logu

#22 Příspěvek od Madmaxik »

OTL Extras logfile created on: 11.11.2013 7:04:32 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\ASUS\Downloads
64bit- Professional (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7600.16385)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

4,00 Gb Total Physical Memory | 2,42 Gb Available Physical Memory | 60,48% Memory free
8,00 Gb Paging File | 6,26 Gb Available in Paging File | 78,34% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 232,42 Gb Total Space | 131,01 Gb Free Space | 56,37% Space Free | Partition Type: NTFS
Drive D: | 233,33 Gb Total Space | 85,14 Gb Free Space | 36,49% Space Free | Partition Type: NTFS

Computer Name: ASUS-PC | User Name: ASUS | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Extra Registry (SafeList) ==========


========== File Associations ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.html[@ = htmlfile] -- C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)
.url[@ = InternetShortcut] -- C:\Windows\SysNative\rundll32.exe (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation)
.html [@ = htmlfile] -- C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)

[HKEY_USERS\S-1-5-21-14876253-2174864908-1153771479-1000\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation)

========== Shell Spawning ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [print] -- rundll32.exe %SystemRoot%\system32\mshtml.dll,PrintHTML "%1" (Microsoft Corporation)
http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" (VideoLAN)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PIE Browse] -- C:\Program Files (x86)\Picmeta\PIE\PIE.exe %1 (Picmeta Systems)
Directory [PlayWithRMP] -- "C:\Users\ASUS\AppData\Local\Rich Media Player\rmplayer.exe" "%1" (Radiocom)
Directory [PlayWithVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" (VideoLAN)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" (VideoLAN)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PIE Browse] -- C:\Program Files (x86)\Picmeta\PIE\PIE.exe %1 (Picmeta Systems)
Directory [PlayWithRMP] -- "C:\Users\ASUS\AppData\Local\Rich Media Player\rmplayer.exe" "%1" (Radiocom)
Directory [PlayWithVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" (VideoLAN)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
"FirewallDisableNotify" = 0
"AntiVirusDisableNotify" = 0
"UpdatesDisableNotify" = 0

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = 28 4D B2 76 41 04 CA 01 [binary data]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]

========== System Restore Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0

========== Firewall Settings ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall]

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile]

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile]

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile]

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]


========== Vista Active Open Ports Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{05D7EBDC-5B51-420A-AAC7-19F08C6BBEE5}" = lport=58180 | protocol=6 | dir=in | name=pando media booster |
"{5FE0DC08-0D10-49FC-A5C7-F44887C31E7A}" = lport=2869 | protocol=6 | dir=in | app=system |
"{62190899-3951-4B78-B754-AE81638D9346}" = lport=443 | protocol=6 | dir=in | name=war thunder |
"{6EFD27B1-27BA-4959-9657-45831E9E258F}" = lport=33333 | protocol=6 | dir=in | name=war thunder |
"{782ED997-5EC4-4B8D-9D08-5F089485FAF3}" = lport=8090 | protocol=6 | dir=in | name=war thunder |
"{88A85E23-00B0-496F-9409-CC36F0D63792}" = lport=58180 | protocol=17 | dir=in | name=pando media booster |
"{90776C1B-BF4B-4644-851A-B135E3AE67D8}" = lport=6881 | protocol=6 | dir=in | name=war thunder |
"{953A15F7-1317-4AD5-9C06-B5E369A67C06}" = lport=6004 | protocol=17 | dir=in | app=c:\program files (x86)\microsoft office\office12\outlook.exe |
"{AA71942E-539C-4CB7-934D-C0AA6E414F40}" = lport=7850 | protocol=6 | dir=in | name=war thunder |
"{B24DCC1B-6E92-4181-AA7F-11B61DAB3EC0}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=svchost.exe |
"{BBF60125-F2D4-4199-9A1B-C3695539F559}" = lport=20443 | protocol=6 | dir=in | name=war thunder |
"{C17CDD11-3AA7-41EA-BC26-E35D04719F83}" = lport=58180 | protocol=6 | dir=in | name=pando media booster |
"{C38646F6-919E-4CA1-9A2C-90C358E3B323}" = lport=20010 | protocol=17 | dir=in | name=war thunder |
"{E65AFA36-3E8F-4DF9-9C79-C163E4AFDFBF}" = lport=58180 | protocol=17 | dir=in | name=pando media booster |
"{F0D74D2E-B47E-4D61-8669-30E70F9AA086}" = lport=80 | protocol=6 | dir=in | name=war thunder |
"{F1AC1E09-C6A6-4DC8-88E8-96C4EDBD3A71}" = lport=27022 | protocol=6 | dir=in | name=war thunder |
"{FF652467-416D-426B-BE53-C1D1D0800597}" = lport=3478 | protocol=17 | dir=in | name=war thunder |

========== Vista Active Application Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{1298012E-528A-4CCF-A6EA-66C900B79CE9}" = protocol=6 | dir=in | app=c:\program files (x86)\bitlord 2\bitlord files\bitlord.exe |
"{18EE209F-E4FF-4573-B60F-7A470BCC9B99}" = protocol=17 | dir=in | app=c:\program files (x86)\microsoft office\office12\groove.exe |
"{1B37CF92-E221-4BCC-A84F-EAA26DD01A0A}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steam.exe |
"{3FFB48B9-DA22-42B3-802B-1E1BE956E779}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{556353F7-C323-4F61-911E-BAFAD119B78D}" = protocol=17 | dir=in | app=c:\program files (x86)\bitlord 2\bitlord files\bitlord.exe |
"{77F5AABF-99AE-4C56-ACE8-0F3B67F20FAA}" = protocol=6 | dir=in | app=c:\program files (x86)\pando networks\media booster\pmb.exe |
"{7DDCECC0-73C2-448C-A26C-681F06C1F2FF}" = protocol=17 | dir=in | app=c:\program files (x86)\pando networks\media booster\pmb.exe |
"{90DD0801-58A7-4216-9F7E-BFD5C22F8AA9}" = dir=in | app=c:\users\asus\appdata\local\facebook\video\skype\facebookvideocalling.exe |
"{970156C8-C7F7-483F-B55B-B55B0C64141D}" = protocol=17 | dir=in | app=c:\program files (x86)\warthunder\launcher.exe |
"{A890C876-C13E-4AB8-BF73-115F75A53148}" = dir=in | app=c:\program files (x86)\pando networks\media booster\pmb.exe |
"{A9285A22-AAFA-4595-B306-A9034F63F8A5}" = protocol=17 | dir=in | app=c:\program files (x86)\pando networks\media booster\pmb.exe |
"{B6200356-8A16-40DF-94F4-ABAB81AB33B8}" = protocol=6 | dir=in | app=c:\program files (x86)\microsoft games\age of empires iii\age3.exe |
"{B80F22A6-D0BB-4519-8CDD-F6BEA2D34F2C}" = protocol=17 | dir=in | app=c:\program files (x86)\microsoft office\office12\onenote.exe |
"{CDC396AB-3C75-4D77-85FC-C9180357FFE9}" = protocol=6 | dir=in | app=c:\program files (x86)\microsoft office\office12\onenote.exe |
"{CF5BC885-3501-46ED-90D2-FF296A6E0DEE}" = protocol=6 | dir=in | app=c:\program files (x86)\microsoft office\office12\groove.exe |
"{DB60DDA6-7F96-48E5-AA61-C8AD30730F47}" = protocol=17 | dir=in | app=c:\program files (x86)\microsoft games\age of empires iii\age3.exe |
"{EB3E6962-4F5C-4DBF-8CD9-E07797C490B2}" = protocol=6 | dir=in | app=c:\program files (x86)\warthunder\launcher.exe |
"{F5DD359A-9E06-4E98-8A70-3E7DED894276}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steam.exe |
"{F6377E92-3C17-4A5D-A975-E99B42F1E2D8}" = protocol=6 | dir=in | app=c:\program files (x86)\pando networks\media booster\pmb.exe |
"TCP Query User{07D56D4D-955C-4821-B67C-E9ADB3F73214}C:\program files (x86)\kbot\kbot 7.32\kbotc.exe" = protocol=6 | dir=in | app=c:\program files (x86)\kbot\kbot 7.32\kbotc.exe |
"TCP Query User{0B9B2759-367F-4A61-BDB4-361525448A44}C:\games\world_of_tanks\wotlauncher.exe" = protocol=6 | dir=in | app=c:\games\world_of_tanks\wotlauncher.exe |
"TCP Query User{0DD87D88-9483-4113-BF1F-50E91C947382}C:\games\world_of_tanks\wotlauncher.exe" = protocol=6 | dir=in | app=c:\games\world_of_tanks\wotlauncher.exe |
"TCP Query User{1F25D426-CE98-48FC-A4F2-4845A36D4AEC}C:\program files (x86)\kbot\kbot 7.16\kbotc.exe" = protocol=6 | dir=in | app=c:\program files (x86)\kbot\kbot 7.16\kbotc.exe |
"TCP Query User{24095DA2-154C-4EE0-A333-3BA7C91098F5}C:\program files\java\jre7\bin\javaw.exe" = protocol=6 | dir=in | app=c:\program files\java\jre7\bin\javaw.exe |
"TCP Query User{27208D51-D86F-474E-88BE-F36E3C5ED9DB}C:\program files\java\jre7\bin\java.exe" = protocol=6 | dir=in | app=c:\program files\java\jre7\bin\java.exe |
"TCP Query User{2D289235-B19A-4C54-9F20-A37777FCA2A0}C:\program files (x86)\kbot\kbot 7.23\kbotc.exe" = protocol=6 | dir=in | app=c:\program files (x86)\kbot\kbot 7.23\kbotc.exe |
"TCP Query User{43F7334D-1557-41D3-8C3D-24BDB63D5335}C:\program files (x86)\kbot\kbot 7.29\kbotc.exe" = protocol=6 | dir=in | app=c:\program files (x86)\kbot\kbot 7.29\kbotc.exe |
"TCP Query User{4AF7FBE1-3E37-4CA4-ACAE-BD5D0672F64B}C:\games\world_of_tanks\worldoftanks.exe" = protocol=6 | dir=in | app=c:\games\world_of_tanks\worldoftanks.exe |
"TCP Query User{6B4FAE06-9B50-4888-81E4-E9D70BA99217}C:\counter-strike 1.6\csko.exe" = protocol=6 | dir=in | app=c:\counter-strike 1.6\csko.exe |
"TCP Query User{6BD873F6-66FD-45CE-BAF4-C622A13F8247}C:\games\world_of_warplanes\wowplauncher.exe" = protocol=6 | dir=in | app=c:\games\world_of_warplanes\wowplauncher.exe |
"TCP Query User{6E24D6C9-62D1-4136-8001-6E54A52876BB}C:\program files (x86)\java\jre7\bin\java.exe" = protocol=6 | dir=in | app=c:\program files (x86)\java\jre7\bin\java.exe |
"TCP Query User{6F3A75EE-78E9-4652-B266-AAAAC0028554}C:\Program Files (x86)\KBot\KBot 7.07\KBotc.exe" = protocol=6 | dir=in | app=c:\program files (x86)\kbot\kbot 7.07\kbotc.exe |
"TCP Query User{75C2F5AC-FEEA-4131-8136-75B51D2C104E}C:\windows\syswow64\javaw.exe" = protocol=6 | dir=in | app=c:\windows\syswow64\javaw.exe |
"TCP Query User{7AAC3091-1D28-4A22-B95E-EDC107F0FA1A}C:\program files (x86)\kbot\kbot 7.14\kbotc.exe" = protocol=6 | dir=in | app=c:\program files (x86)\kbot\kbot 7.14\kbotc.exe |
"TCP Query User{8246C0A8-8760-4E55-95A3-D522AD7536D3}C:\program files (x86)\kbot\kbot 7.24\kbotc.exe" = protocol=6 | dir=in | app=c:\program files (x86)\kbot\kbot 7.24\kbotc.exe |
"TCP Query User{876BC804-3CD5-49E3-ABDE-70F2D73D2229}C:\program files (x86)\kbot\kbot 7.30\kbotc.exe" = protocol=6 | dir=in | app=c:\program files (x86)\kbot\kbot 7.30\kbotc.exe |
"TCP Query User{8D9649EC-3316-43F5-9EC1-1C2596AB8F23}C:\program files (x86)\counter-strike 1.6 standalone\launcher.exe" = protocol=6 | dir=in | app=c:\program files (x86)\counter-strike 1.6 standalone\launcher.exe |
"TCP Query User{AF18A30E-3B30-44B7-96CC-430EAFE4E5B5}C:\users\asus\desktop\blbosti na ploše\age of empires 2 & the conquerors expansion - full game\empires2.exe" = protocol=6 | dir=in | app=c:\users\asus\desktop\blbosti na ploše\age of empires 2 & the conquerors expansion - full game\empires2.exe |
"TCP Query User{C545E489-42AA-4E5D-B7C8-070D915A3C67}E:\easysetupassistant\wr841n\easysetupassistant.exe" = protocol=6 | dir=in | app=e:\easysetupassistant\wr841n\easysetupassistant.exe |
"TCP Query User{D567B8A9-8109-4498-89AB-2B1EC6856B20}C:\program files (x86)\kbot\kbot 7.33\kbotc.exe" = protocol=6 | dir=in | app=c:\program files (x86)\kbot\kbot 7.33\kbotc.exe |
"TCP Query User{D61AA2E0-BA11-46A1-85BA-8C36CF4CF888}C:\games\world_of_tanks\worldoftanks.exe" = protocol=6 | dir=in | app=c:\games\world_of_tanks\worldoftanks.exe |
"TCP Query User{F44EE2D3-3848-40DC-B0EB-7528B356A1A9}C:\program files (x86)\kbot\kbot 7.34\kbotc.exe" = protocol=6 | dir=in | app=c:\program files (x86)\kbot\kbot 7.34\kbotc.exe |
"TCP Query User{F53CBACA-F690-48EB-9E17-1CF0408BF0F2}C:\program files (x86)\kbot\kbot 7.28\kbotc.exe" = protocol=6 | dir=in | app=c:\program files (x86)\kbot\kbot 7.28\kbotc.exe |
"TCP Query User{F799ED46-9F16-4503-864A-562A846E1959}C:\program files (x86)\java\jre7\bin\javaw.exe" = protocol=6 | dir=in | app=c:\program files (x86)\java\jre7\bin\javaw.exe |
"TCP Query User{FA49A552-305D-4763-A6FA-AC651030E0E6}C:\windows\syswow64\dplaysvr.exe" = protocol=6 | dir=in | app=c:\windows\syswow64\dplaysvr.exe |
"TCP Query User{FDA0043B-016E-40B7-8916-54B7689D2992}C:\windows\syswow64\dplaysvr.exe" = protocol=6 | dir=in | app=c:\windows\syswow64\dplaysvr.exe |
"UDP Query User{0C5F2632-78C9-4693-9BD5-F6F42487B66F}C:\program files\java\jre7\bin\javaw.exe" = protocol=17 | dir=in | app=c:\program files\java\jre7\bin\javaw.exe |
"UDP Query User{0E3A9591-C848-4E65-83FE-C050FAD3E7F4}C:\program files (x86)\kbot\kbot 7.16\kbotc.exe" = protocol=17 | dir=in | app=c:\program files (x86)\kbot\kbot 7.16\kbotc.exe |
"UDP Query User{1590324F-2835-4101-9B3B-27B331B86D66}C:\program files (x86)\counter-strike 1.6 standalone\launcher.exe" = protocol=17 | dir=in | app=c:\program files (x86)\counter-strike 1.6 standalone\launcher.exe |
"UDP Query User{3CC74ECC-6895-449A-AD23-809478440753}C:\program files\java\jre7\bin\java.exe" = protocol=17 | dir=in | app=c:\program files\java\jre7\bin\java.exe |
"UDP Query User{4DAA8003-AED1-485C-B7EB-21C90B91322E}C:\games\world_of_tanks\worldoftanks.exe" = protocol=17 | dir=in | app=c:\games\world_of_tanks\worldoftanks.exe |
"UDP Query User{572693F9-2633-4D62-B6CF-3E4622AF8AF8}C:\program files (x86)\java\jre7\bin\javaw.exe" = protocol=17 | dir=in | app=c:\program files (x86)\java\jre7\bin\javaw.exe |
"UDP Query User{5AC2E130-31B7-4A05-B884-D24108EB94F5}C:\Program Files (x86)\KBot\KBot 7.07\KBotc.exe" = protocol=17 | dir=in | app=c:\program files (x86)\kbot\kbot 7.07\kbotc.exe |
"UDP Query User{5E35332D-93F2-494A-9AA8-1445755B869D}C:\program files (x86)\kbot\kbot 7.28\kbotc.exe" = protocol=17 | dir=in | app=c:\program files (x86)\kbot\kbot 7.28\kbotc.exe |
"UDP Query User{6C160687-CB7E-4BEA-A1BC-34E39B7056BB}C:\program files (x86)\kbot\kbot 7.24\kbotc.exe" = protocol=17 | dir=in | app=c:\program files (x86)\kbot\kbot 7.24\kbotc.exe |
"UDP Query User{721576D1-2114-4501-AD29-5457A99AA441}C:\games\world_of_warplanes\wowplauncher.exe" = protocol=17 | dir=in | app=c:\games\world_of_warplanes\wowplauncher.exe |
"UDP Query User{765F2F4A-1C37-4235-84C8-6C457FD41C43}C:\games\world_of_tanks\worldoftanks.exe" = protocol=17 | dir=in | app=c:\games\world_of_tanks\worldoftanks.exe |
"UDP Query User{7986E12B-3A6B-4CAA-90EE-159B9F60CE14}C:\program files (x86)\kbot\kbot 7.33\kbotc.exe" = protocol=17 | dir=in | app=c:\program files (x86)\kbot\kbot 7.33\kbotc.exe |
"UDP Query User{79D2AAB7-CAC4-4EC4-B0DA-316FA3E9F564}C:\games\world_of_tanks\wotlauncher.exe" = protocol=17 | dir=in | app=c:\games\world_of_tanks\wotlauncher.exe |
"UDP Query User{7BA237DC-E95E-494B-B634-7B5909FCF627}C:\program files (x86)\kbot\kbot 7.29\kbotc.exe" = protocol=17 | dir=in | app=c:\program files (x86)\kbot\kbot 7.29\kbotc.exe |
"UDP Query User{7BF80F51-8E63-4EA6-9625-A11E791DB095}C:\games\world_of_tanks\wotlauncher.exe" = protocol=17 | dir=in | app=c:\games\world_of_tanks\wotlauncher.exe |
"UDP Query User{8CD97F5A-EFC3-4DE1-970E-F56602A03B2E}C:\windows\syswow64\dplaysvr.exe" = protocol=17 | dir=in | app=c:\windows\syswow64\dplaysvr.exe |
"UDP Query User{94247247-8EC1-4052-A976-4C7BA0DF6D61}C:\windows\syswow64\javaw.exe" = protocol=17 | dir=in | app=c:\windows\syswow64\javaw.exe |
"UDP Query User{951C07B6-0014-47DF-A4A7-09A89BB359B3}C:\program files (x86)\java\jre7\bin\java.exe" = protocol=17 | dir=in | app=c:\program files (x86)\java\jre7\bin\java.exe |
"UDP Query User{A3772EF4-8B09-4EC2-BC3F-96DD164BCACD}C:\counter-strike 1.6\csko.exe" = protocol=17 | dir=in | app=c:\counter-strike 1.6\csko.exe |
"UDP Query User{A876B847-B9F1-463D-B83C-4FA8361940CC}C:\users\asus\desktop\blbosti na ploše\age of empires 2 & the conquerors expansion - full game\empires2.exe" = protocol=17 | dir=in | app=c:\users\asus\desktop\blbosti na ploše\age of empires 2 & the conquerors expansion - full game\empires2.exe |
"UDP Query User{B9B25F28-FD74-4AFE-B1AC-5DF0B1A12056}E:\easysetupassistant\wr841n\easysetupassistant.exe" = protocol=17 | dir=in | app=e:\easysetupassistant\wr841n\easysetupassistant.exe |
"UDP Query User{CA8DFF86-AFE0-48EF-A323-AD4DB06F2E56}C:\program files (x86)\kbot\kbot 7.32\kbotc.exe" = protocol=17 | dir=in | app=c:\program files (x86)\kbot\kbot 7.32\kbotc.exe |
"UDP Query User{CCDE8289-8C93-4748-9689-042033DE3CF2}C:\program files (x86)\kbot\kbot 7.23\kbotc.exe" = protocol=17 | dir=in | app=c:\program files (x86)\kbot\kbot 7.23\kbotc.exe |
"UDP Query User{D79F305D-6BCA-4F85-983F-3FA94AF3A88E}C:\program files (x86)\kbot\kbot 7.34\kbotc.exe" = protocol=17 | dir=in | app=c:\program files (x86)\kbot\kbot 7.34\kbotc.exe |
"UDP Query User{E4679C28-6AE4-4B58-B056-CED0392BCB44}C:\windows\syswow64\dplaysvr.exe" = protocol=17 | dir=in | app=c:\windows\syswow64\dplaysvr.exe |
"UDP Query User{F96DADB3-ADB6-4CEE-8A8B-9B03528AF80F}C:\program files (x86)\kbot\kbot 7.14\kbotc.exe" = protocol=17 | dir=in | app=c:\program files (x86)\kbot\kbot 7.14\kbotc.exe |
"UDP Query User{FD4C01E7-BF83-4FF3-B19B-82E14BBD8A61}C:\program files (x86)\kbot\kbot 7.30\kbotc.exe" = protocol=17 | dir=in | app=c:\program files (x86)\kbot\kbot 7.30\kbotc.exe |

========== HKEY_LOCAL_MACHINE Uninstall List ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{26A24AE4-039D-4CA4-87B4-2F86417007FF}" = Java 7 Update 7 (64-bit)
"{64A98EF1-2680-11E3-A909-F04DA23A5C58}" = Vegas Pro 12.0 (64-bit)
"{6B00F0E1-2680-11E3-95F5-F04DA23A5C58}" = MSVCRT Redists
"{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}" = Microsoft Visual C++ 2005 Redistributable (x64)
"{790E02A1-145A-3843-8C13-A4F41C9B48B7}" = Microsoft .NET Framework 4 Client Profile CSY Language Pack
"{8220EEFE-38CD-377E-8595-13398D740ACE}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17
"{8E34682C-8118-31F1-BC4C-98CD9675E1C2}" = Microsoft .NET Framework 4 Extended
"{90120000-002A-0000-1000-0000000FF1CE}" = Microsoft Office Office 64-bit Components 2007
"{90120000-002A-0405-1000-0000000FF1CE}" = Microsoft Office Shared 64-bit MUI (Czech) 2007
"{95120000-00B9-0409-1000-0000000FF1CE}" = Microsoft Application Error Reporting
"{A324DC11-FF02-3CE8-9D6F-67EBC006D970}" = Microsoft .NET Framework 4 Extended CSY Language Pack
"{B1920A83-25A3-4DBB-B1F5-2395BD05370E}" = ESET Smart Security
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision" = NVIDIA Ovladač 3D Vision 314.22
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel" = Ovládací panel NVIDIA 314.22
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver" = NVIDIA Ovladače grafiky 314.22
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB" = NVIDIA Ovladač řídící jednotky 3D Vision 314.22
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX" = NVIDIA Systémový software PhysX 9.12.1031
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update" = Aktualizace NVIDIA 1.12.12
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver" = NVIDIA Ovladač HD audia 1.3.23.1
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer" = NVIDIA Install Application
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NVIDIA.Update" = NVIDIA Update Components
"{CE52672C-A0E9-4450-8875-88A221D5CD50}" = Windows Live ID Sign-in Assistant
"{D6B98CCC-7375-4B15-BED6-1410E553032B}" = Windows Live Zabezpečení rodiny
"{E9FA781F-3E80-4399-825A-AD3E11C28C77}" = MSVCRT110_amd64
"{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}" = Microsoft .NET Framework 4 Client Profile
"CCleaner" = CCleaner
"Creative VF0700" = Creative Live! Cam Chat HD (VF0700) (1.01.01.00)
"HDMI" = Intel(R) Graphics Media Accelerator Driver
"lucky leap" = lucky leap 3.0.0
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Microsoft .NET Framework 4 Client Profile CSY Language Pack" = Microsoft .NET Framework 4 Client Profile CSY Language Pack
"Microsoft .NET Framework 4 Extended" = Microsoft .NET Framework 4 Extended
"Microsoft .NET Framework 4 Extended CSY Language Pack" = Microsoft .NET Framework 4 Extended CSY Language Pack
"Windows Movie Maker" = Windows Movie Maker
"WinRAR archiver" = WinRAR

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{048298C9-A4D3-490B-9FF9-AB023A9238F3}" = Steam
"{174D5678-D941-433C-BD23-58A5C7B0D36D}" = Jasc Animation Shop 3
"{196BB40D-1578-3D01-B289-BEFC77A11A1E}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319
"{1EAC1D02-C6AC-4FA6-9A44-96258C37C812EU}_is1" = World of Tanks
"{1EAC1D02-C6AC-4FA6-9A44-96258C37C813EU}_is1" = World of Warplanes
"{1F082EA8-0F22-40CA-9FA8-8F85458026AF}" = Windows Live Fotogalerie
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{20D0CDB1-5F03-4A5D-86EB-7C218053B157}" = Windows Live Messenger
"{20D4A895-748C-4D88-871C-FDB1695B0169}" = Platform
"{26A24AE4-039D-4CA4-87B4-2F83217040FF}" = Java 7 Update 40
"{28C2DED6-325B-4CC7-983A-1777C8F7FBAB}" = RealUpgrade 1.1
"{3B4E636E-9D65-4D67-BA61-189800823F52}" = Windows Live Communications Platform
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4DE3E3D9-AE81-45DE-9195-3015F7B1DBF3}" = Junk Mail filter update
"{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}" = Skype™ 6.10
"{54FEAF1A-8F2A-44C1-95CA-5C1C21F4F934}" = Windows Live Mail
"{612C34C7-5E90-47D8-9B5C-0F717DD82726}" = swMSM
"{620DA0EB-574D-45B5-B3E9-B85AECA41D59}" = AX88772A & AX88772 Windows 7 Drivers
"{645CF8E7-16ED-4827-BD89-94F2CE974396}" = LogMeIn Hamachi
"{6E5EEE1B-3907-44C3-83BA-AD4B8CE40F76}" = Windows Live Writer
"{7770E71B-2D43-4800-9CB3-5B6CAAEBEBEA}" = RealNetworks - Microsoft Visual C++ 2008 Runtime
"{79BF4901-1EC4-4726-B3C2-A7859706C6E7}" = League of Legends
"{7B9CC60A-9B81-46A3-A953-76B6BF9EEC97}" = Age of Empires III
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{8833FFB6-5B0C-4764-81AA-06DFEED9A476}" = Realtek 8136 8168 8169 Ethernet Driver
"{8B922CF8-8A6C-41CE-A858-F1755D7F5D29}" = NVIDIA PhysX
"{8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}" = MSVCRT
"{8E14DDC8-EA60-4E18-B3E3-1937104D5BDA}" = MSVCRT110
"{8FFC5648-FAF8-43A3-BC8F-42BA1E275C4E}" = Choice Guard
"{90120000-0015-0405-0000-0000000FF1CE}" = Microsoft Office Access MUI (Czech) 2007
"{90120000-0016-0405-0000-0000000FF1CE}" = Microsoft Office Excel MUI (Czech) 2007
"{90120000-0018-0405-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (Czech) 2007
"{90120000-0019-0405-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (Czech) 2007
"{90120000-001A-0405-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (Czech) 2007
"{90120000-001B-0405-0000-0000000FF1CE}" = Microsoft Office Word MUI (Czech) 2007
"{90120000-001F-0405-0000-0000000FF1CE}" = Microsoft Office Proof (Czech) 2007
"{90120000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2007
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-041B-0000-0000000FF1CE}" = Microsoft Office Proof (Slovak) 2007
"{90120000-002C-0405-0000-0000000FF1CE}" = Microsoft Office Proofing (Czech) 2007
"{90120000-0030-0000-0000-0000000FF1CE}" = Microsoft Office Enterprise 2007
"{90120000-0044-0405-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (Czech) 2007
"{90120000-006E-0405-0000-0000000FF1CE}" = Microsoft Office Shared MUI (Czech) 2007
"{90120000-00A1-0405-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (Czech) 2007
"{90120000-00BA-0405-0000-0000000FF1CE}" = Microsoft Office Groove MUI (Czech) 2007
"{980A182F-E0A2-4A40-94C1-AE0C1235902E}" = Pando Media Booster
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{AAECF7BA-E83B-4A10-87EA-DE0B333F8734}" = RealNetworks - Microsoft Visual C++ 2010 Runtime
"{AC76BA86-7AD7-1029-7B44-A91000000001}" = Adobe Reader 9.1 - Czech
"{B92C5909-1D37-4C51-8397-A28BB28E5DC3}" = Facebook Video Calling 1.2.0.287
"{C424CD5E-EA05-4D3E-B5DA-F9F149E1D3AC}" = Windows Live Installer
"{C8E8D2E3-EF6A-4B1D-A09E-7B27EBE2F3CE}" = RealDownloader
"{D0B44725-3666-492D-BEF6-587A14BD9BD9}" = MSVCRT_amd64
"{D8E5D8F5-6252-4092-8513-38BE27A1D975}" = Windows Live Movie Maker Beta
"{ed8deea4-29fa-3932-9612-e2122d8a62d9}}_is1" = War Thunder Launcher 1.0.1.278
"{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}" = Microsoft SQL Server 2005 Compact Edition [ENU]
"{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
"Adobe Flash Player ActiveX" = Adobe Flash Player 11 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin
"Adobe Shockwave Player" = Adobe Shockwave Player 12.0
"AIDA64 Extreme Edition_is1" = AIDA64 Extreme Edition v2.70
"Audacity_is1" = Audacity 2.0.4
"BitLord" = BitLord 2.3
"Clownfish" = Clownfish for Skype
"Counter-Strike 1.6 Standalone" = Counter-Strike 1.6 Standalone
"DAEMON Tools Toolbar" = DAEMON Tools Toolbar
"Drakensang Online" = Drakensang Online
"ENTERPRISE" = Microsoft Office Enterprise 2007
"Fraps" = Fraps (remove only)
"Free WMA to MP3 Converter_is1" = Free WMA to MP3 Converter 1.16
"Google Chrome" = Google Chrome
"Cheat Engine 6.3_is1" = Cheat Engine 6.3
"InstallShield_{20D4A895-748C-4D88-871C-FDB1695B0169}" = VIA Platforma Ovladače zařízení
"InstallShield_{620DA0EB-574D-45B5-B3E9-B85AECA41D59}" = AX88772A & AX88772 Windows 7 Drivers
"InstallShield_{7B9CC60A-9B81-46A3-A953-76B6BF9EEC97}" = Age of Empires III
"iVIDI Plugin" = iVIDI Plugin 1.3
"League of Legends 3.0.1" = League of Legends
"LogMeIn Hamachi" = LogMeIn Hamachi
"Mobogenie" = Mobogenie
"Mozilla Firefox 25.0 (x86 cs)" = Mozilla Firefox 25.0 (x86 cs)
"MozillaMaintenanceService" = Mozilla Maintenance Service
"NVIDIAStereo" = NVIDIA Stereoscopic 3D Driver
"Open Broadcaster Software" = Open Broadcaster Software
"PIE_is1" = PIE Free v6.5
"RealPlayer 16.0" = RealPlayer
"Rich Media Player" = Rich Media Player
"screenSHU" = screenSHU - the fastest screen capture ever.
"ST6UNST #1" = Hero Editor V0.96
"TeamSpeak 3 Client" = TeamSpeak 3 Client
"The KMPlayer" = The KMPlayer (remove only)
"Totalcmd" = Total Commander (Remove or Repair)
"VLC media player" = VLC media player 2.0.6
"WinRAR archiver" = WinRAR archiver

========== HKEY_USERS Uninstall List ==========

[HKEY_USERS\S-1-5-21-14876253-2174864908-1153771479-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Counter-Strike 1.6_is1" = Counter-Strike 1.6 v42
"Pirate Galaxy" = Pirate Galaxy
"SeznamInstall" = Seznam Software
"UnityWebPlayer" = Unity Web Player

========== Last 20 Event Log Errors ==========

[ Application Events ]
Error - 9.11.2013 17:27:58 | Computer Name = ASUS-PC | Source = Windows Search Service | ID = 3058
Description =

Error - 9.11.2013 17:27:58 | Computer Name = ASUS-PC | Source = Windows Search Service | ID = 7010
Description =

Error - 10.11.2013 9:27:41 | Computer Name = ASUS-PC | Source = Application Error | ID = 1000
Description = Název chybující aplikace: WorldOfTanks.exe, verze: 0.8.9.0, časové
razítko: 0x526137d2 Název chybujícího modulu: WorldOfTanks.exe, verze: 0.8.9.0,
časové razítko: 0x526137d2 Kód výjimky: 0xc0000005 Posun chyby: 0x0040ef4f ID chybujícího
procesu: 0xda8 Čas spuštění chybující aplikace: 0x01cede188ba4ab0b Cesta k chybující
aplikaci: C:\Games\World_of_Tanks\WorldOfTanks.exe Cesta k chybujícímu modulu: C:\Games\World_of_Tanks\WorldOfTanks.exe
ID
zprávy: df5b6111-4a0b-11e3-ac3e-90e6ba606e37

Error - 10.11.2013 9:32:04 | Computer Name = ASUS-PC | Source = Application Error | ID = 1000
Description = Název chybující aplikace: WorldOfTanks.exe, verze: 0.8.9.0, časové
razítko: 0x526137d2 Název chybujícího modulu: WorldOfTanks.exe, verze: 0.8.9.0,
časové razítko: 0x526137d2 Kód výjimky: 0xc0000005 Posun chyby: 0x0040ef4f ID chybujícího
procesu: 0xee8 Čas spuštění chybující aplikace: 0x01cede1925bf5201 Cesta k chybující
aplikaci: C:\Games\World_of_Tanks\WorldOfTanks.exe Cesta k chybujícímu modulu: C:\Games\World_of_Tanks\WorldOfTanks.exe
ID
zprávy: 7c39d8b6-4a0c-11e3-885e-90e6ba606e37

Error - 10.11.2013 10:55:49 | Computer Name = ASUS-PC | Source = SideBySide | ID = 16842785
Description = Generování kontextu aktivace pro C:\Windows\Installer\{C8E8D2E3-EF6A-4B1D-A09E-7B27EBE2F3CE}\recordingmanager.exe
se nezdařilo. Závislé sestavení rpshellextension.1.0,language="&#x2a;",type="win32",version="1.0.0.0"
nelze najít. Podrobnější diagnostické údaje získáte pomocí programu sxstrace.exe.

Error - 10.11.2013 10:55:49 | Computer Name = ASUS-PC | Source = SideBySide | ID = 16842785
Description = Generování kontextu aktivace pro C:\Windows\Installer\{C8E8D2E3-EF6A-4B1D-A09E-7B27EBE2F3CE}\recordingmanager.exe
se nezdařilo. Závislé sestavení rpshellextension.1.0,language="&#x2a;",type="win32",version="1.0.0.0"
nelze najít. Podrobnější diagnostické údaje získáte pomocí programu sxstrace.exe.

Error - 10.11.2013 11:55:39 | Computer Name = ASUS-PC | Source = Application Hang | ID = 1002
Description = Program WorldOfTanks.exe verze 0.8.9.0 přestal spolupracovat se systémem
Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací o tomto
problému, vyhledejte historii problému v ovládacím panelu Centrum akcí. ID procesu:
c28 Čas spuštění: 01cede2d3189c92f Čas ukončení: 120 Cesta k aplikaci: C:\Games\World_of_Tanks\WorldOfTanks.exe

ID
hlášení: 89092e26-4a20-11e3-885e-90e6ba606e37

Error - 10.11.2013 13:20:53 | Computer Name = ASUS-PC | Source = SideBySide | ID = 16842785
Description = Generování kontextu aktivace pro C:\Windows\Installer\{C8E8D2E3-EF6A-4B1D-A09E-7B27EBE2F3CE}\recordingmanager.exe
se nezdařilo. Závislé sestavení rpshellextension.1.0,language="&#x2a;",type="win32",version="1.0.0.0"
nelze najít. Podrobnější diagnostické údaje získáte pomocí programu sxstrace.exe.

Error - 10.11.2013 13:20:53 | Computer Name = ASUS-PC | Source = SideBySide | ID = 16842785
Description = Generování kontextu aktivace pro C:\Windows\Installer\{C8E8D2E3-EF6A-4B1D-A09E-7B27EBE2F3CE}\recordingmanager.exe
se nezdařilo. Závislé sestavení rpshellextension.1.0,language="&#x2a;",type="win32",version="1.0.0.0"
nelze najít. Podrobnější diagnostické údaje získáte pomocí programu sxstrace.exe.

Error - 10.11.2013 14:00:04 | Computer Name = ASUS-PC | Source = Windows Backup | ID = 4103
Description =

[ System Events ]
Error - 11.10.2013 6:58:33 | Computer Name = ASUS-PC | Source = Service Control Manager | ID = 7000
Description = Služba DefaultTabSearch neuspěla při spuštění v důsledku následující
chyby: %%2

Error - 11.10.2013 6:58:33 | Computer Name = ASUS-PC | Source = Service Control Manager | ID = 7000
Description = Služba DefaultTabUpdate neuspěla při spuštění v důsledku následující
chyby: %%2

Error - 12.10.2013 11:04:40 | Computer Name = ASUS-PC | Source = Service Control Manager | ID = 7000
Description = Služba Wsys Service neuspěla při spuštění v důsledku následující chyby:
%%2

Error - 12.10.2013 11:04:41 | Computer Name = ASUS-PC | Source = Service Control Manager | ID = 7000
Description = Služba Datamngr Coordinator neuspěla při spuštění v důsledku následující
chyby: %%2

Error - 12.10.2013 11:04:41 | Computer Name = ASUS-PC | Source = Service Control Manager | ID = 7000
Description = Služba DefaultTabSearch neuspěla při spuštění v důsledku následující
chyby: %%2

Error - 12.10.2013 11:04:41 | Computer Name = ASUS-PC | Source = Service Control Manager | ID = 7000
Description = Služba DefaultTabUpdate neuspěla při spuštění v důsledku následující
chyby: %%2

Error - 13.10.2013 1:42:42 | Computer Name = ASUS-PC | Source = Service Control Manager | ID = 7000
Description = Služba Wsys Service neuspěla při spuštění v důsledku následující chyby:
%%2

Error - 13.10.2013 1:42:45 | Computer Name = ASUS-PC | Source = Service Control Manager | ID = 7000
Description = Služba Datamngr Coordinator neuspěla při spuštění v důsledku následující
chyby: %%2

Error - 13.10.2013 1:42:45 | Computer Name = ASUS-PC | Source = Service Control Manager | ID = 7000
Description = Služba DefaultTabSearch neuspěla při spuštění v důsledku následující
chyby: %%2

Error - 13.10.2013 1:42:45 | Computer Name = ASUS-PC | Source = Service Control Manager | ID = 7000
Description = Služba DefaultTabUpdate neuspěla při spuštění v důsledku následující
chyby: %%2


< End of report >
Nahoru
Márty84
VIP
VIP
Příspěvky: 21679
Registrován: 05 pro 2009 20:08
Bydliště: Ostrava

Re: Kontrola logu

#23 Příspěvek od Márty84 »

Madmaxik píše:Můžu se zaptat co je s diskem?
Hlasi chyby. Jake a jak vazne netusim. Kazdopadne bych pravidelne zalohoval.


No ted uz to vypada lepe, uvidime jak dopadne OTL :)



:!: Vypnete antivir, at nebrani programu v praci!
:arrow: Znovu spustte OTL jako spravce
Do spodniho okna vlozte nasledujici text (vcetne te dvojtecky pred slovem commands)

Kód: Vybrat vše

:commands
[EMPTYTEMP]
[EMPTYFLASH]
[Purity]
[CreateRestorePoint]

:services
gupdate
AdobeFlashPlayerUpdateSvc
gupdatem

:files
%windir%\system32\*.tmp.dll /s
%windir%\system32\SET*.tmp /s
%windir%\*.tmp
C:\Windows\tasks\Adobe Flash Player Updater.job
C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-14876253-2174864908-1153771479-1000Core.job
C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-14876253-2174864908-1153771479-1000UA.job
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
C:\Program Files (x86)\Mozilla Firefox\searchplugins\Ask.xml
C:\Program Files (x86)\Mozilla Firefox\searchplugins\qvo6.xml
C:\Program Files (x86)\Mozilla Firefox\searchplugins\Search_Results.xml
C:\Program Files (x86)\Search Results Toolbar

:otl
IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.qvo6.com/?utm_source=b&utm_m ... 1380213436
IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {33BB0A4E-99AF-4226-BDF6-49120163DE86}
IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE:64bit: - HKLM\..\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}: "URL" = http://search.qvo6.com/web/?utm_source= ... default&q={searchTerms}
IE:64bit: - HKLM\..\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}: "URL" = http://dts.search.ask.com/sr?src=ieb&gc ... nrs=AG6&q={searchTerms}
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKLM\..\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}: "URL" = http://dts.search.ask.com/sr?src=ieb&gc ... nrs=AG6&q={searchTerms}
IE - HKU\S-1-5-21-14876253-2174864908-1153771479-1000\..\SearchScopes,DefaultScope = {33BB0A4E-99AF-4226-BDF6-49120163DE86}
IE - HKU\S-1-5-21-14876253-2174864908-1153771479-1000\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC
IE - HKU\S-1-5-21-14876253-2174864908-1153771479-1000\..\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}: "URL" = http://dts.search.ask.com/sr?src=ieb&gc ... nrs=AG6&q={searchTerms}
IE - HKU\S-1-5-21-14876253-2174864908-1153771479-1000\..\SearchScopes\{C89BBD62-DB93-40C6-B36E-FAF36C89456E}: "URL" = http://www.mysearchresults.com/search?c=2408&t=14&q={searchTerms}
FF - HKLM\Software\MozillaPlugins\@pandonetworks.com/PandoWebPlugin: C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF - HKCU\Software\MozillaPlugins\pandonetworks.com/PandoWebPlugin: C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
[2013.09.18 04:47:38 | 000,002,662 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\Ask.xml
[2013.09.26 17:37:17 | 000,000,810 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\qvo6.xml
[2013.04.16 16:28:44 | 000,002,687 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\Search_Results.xml
O2 - BHO: (no name) - {377e5d4d-77e5-476a-8716-7e70a9272da0} - No CLSID value found.
O3:64bit: - HKLM\..\Toolbar: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files (x86)\DAEMON Tools Toolbar\DTToolbar64.dll ()
O3 - HKLM\..\Toolbar: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files (x86)\DAEMON Tools Toolbar\DTToolbar.dll ()
O3 - HKLM\..\Toolbar: (no name) - {377e5d4d-77e5-476a-8716-7e70a9272da0} - No CLSID value found.
O3 - HKLM\..\Toolbar: (no name) - 10 - No CLSID value found.
O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O3:64bit: - HKU\S-1-5-21-14876253-2174864908-1153771479-1000\..\Toolbar\WebBrowser: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files (x86)\DAEMON Tools Toolbar\DTToolbar64.dll ()
O3 - HKU\S-1-5-21-14876253-2174864908-1153771479-1000\..\Toolbar\WebBrowser: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files (x86)\DAEMON Tools Toolbar\DTToolbar.dll ()
O9 - Extra 'Tools' menuitem : Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - Reg Error: Key error. File not found
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
[1 C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp files -> C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp -> ]
[2 C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\*.tmp files -> C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\AuthCabs\7971f918-a847-4430-9279-4a52d1efe18d\*.tmp files -> C:\Windows\SoftwareDistribution\AuthCabs\7971f918-a847-4430-9279-4a52d1efe18d\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\0224f89b0f4f58ffbde564c254a99d6c\*.tmp files -> C:\Windows\SoftwareDistribution\Download\0224f89b0f4f58ffbde564c254a99d6c\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\026d37d9d0d955fde910ecf59f7b93de\*.tmp files -> C:\Windows\SoftwareDistribution\Download\026d37d9d0d955fde910ecf59f7b93de\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\03362803671dde45fc50c92286a4c1ba\*.tmp files -> C:\Windows\SoftwareDistribution\Download\03362803671dde45fc50c92286a4c1ba\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\04200c1f0c6dd7c6d80d3f0ec2a26185\*.tmp files -> C:\Windows\SoftwareDistribution\Download\04200c1f0c6dd7c6d80d3f0ec2a26185\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\044b75a9933a066fe2c94660a1436533\*.tmp files -> C:\Windows\SoftwareDistribution\Download\044b75a9933a066fe2c94660a1436533\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\08080b0c78f74103916d78ce7d0beeaf\*.tmp files -> C:\Windows\SoftwareDistribution\Download\08080b0c78f74103916d78ce7d0beeaf\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\0862135f20e6ce88f4e7820ce7b199a8\*.tmp files -> C:\Windows\SoftwareDistribution\Download\0862135f20e6ce88f4e7820ce7b199a8\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\08de3c83def3f05ce0c5a1bd84d93296\*.tmp files -> C:\Windows\SoftwareDistribution\Download\08de3c83def3f05ce0c5a1bd84d93296\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\0aa3ef2f0c8b6eedf450a9dff1fe028e\*.tmp files -> C:\Windows\SoftwareDistribution\Download\0aa3ef2f0c8b6eedf450a9dff1fe028e\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\0d185f1dfa9b452bbcf641fb0708a086\*.tmp files -> C:\Windows\SoftwareDistribution\Download\0d185f1dfa9b452bbcf641fb0708a086\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\0e3bf0a19e9400ba9f0a6dcf5dee14d2\*.tmp files -> C:\Windows\SoftwareDistribution\Download\0e3bf0a19e9400ba9f0a6dcf5dee14d2\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\0f920aabece236b9b498d2c2d7b0b6df\*.tmp files -> C:\Windows\SoftwareDistribution\Download\0f920aabece236b9b498d2c2d7b0b6df\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\15f515a6d2264980fd04ce886425ba94\*.tmp files -> C:\Windows\SoftwareDistribution\Download\15f515a6d2264980fd04ce886425ba94\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\1864546dde46f748b869774490650166\*.tmp files -> C:\Windows\SoftwareDistribution\Download\1864546dde46f748b869774490650166\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\188c584a5234d4390c93a98c81b1a2a2\*.tmp files -> C:\Windows\SoftwareDistribution\Download\188c584a5234d4390c93a98c81b1a2a2\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\19df9194884c2590880b9ee43a82b203\*.tmp files -> C:\Windows\SoftwareDistribution\Download\19df9194884c2590880b9ee43a82b203\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\1b2c0a5ab3de5f5851190554ba72c2db\*.tmp files -> C:\Windows\SoftwareDistribution\Download\1b2c0a5ab3de5f5851190554ba72c2db\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\1fadb9307007a21c57062875a04bfffe\*.tmp files -> C:\Windows\SoftwareDistribution\Download\1fadb9307007a21c57062875a04bfffe\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\21351a2a3c4febf49cd7600e8646f132\*.tmp files -> C:\Windows\SoftwareDistribution\Download\21351a2a3c4febf49cd7600e8646f132\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\26204eef8d98a8c0a2a1d76049625e00\*.tmp files -> C:\Windows\SoftwareDistribution\Download\26204eef8d98a8c0a2a1d76049625e00\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\2630c3fa94148f9f4562cb340e358591\*.tmp files -> C:\Windows\SoftwareDistribution\Download\2630c3fa94148f9f4562cb340e358591\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\27f18a17b9aa0306baa879c4704300aa\*.tmp files -> C:\Windows\SoftwareDistribution\Download\27f18a17b9aa0306baa879c4704300aa\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\291e4c970688f0ae75ac6de78e4a5e7f\*.tmp files -> C:\Windows\SoftwareDistribution\Download\291e4c970688f0ae75ac6de78e4a5e7f\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\2c22bd1fd1408eeaafd0524c06788a59\*.tmp files -> C:\Windows\SoftwareDistribution\Download\2c22bd1fd1408eeaafd0524c06788a59\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\2d0996b635d571b17effc64a35def62d\*.tmp files -> C:\Windows\SoftwareDistribution\Download\2d0996b635d571b17effc64a35def62d\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\2ea9831e17856e84683ddfa825ce04cb\*.tmp files -> C:\Windows\SoftwareDistribution\Download\2ea9831e17856e84683ddfa825ce04cb\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\2ee2700248091ae70a9add61528396c7\*.tmp files -> C:\Windows\SoftwareDistribution\Download\2ee2700248091ae70a9add61528396c7\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\2f5d20a0e19ee0383d29ff3d1f1b72d0\*.tmp files -> C:\Windows\SoftwareDistribution\Download\2f5d20a0e19ee0383d29ff3d1f1b72d0\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\30586ca8d10d70d0efef987e7dd1a59e\*.tmp files -> C:\Windows\SoftwareDistribution\Download\30586ca8d10d70d0efef987e7dd1a59e\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\30622f2fa48ace2bae45ab270c09437d\*.tmp files -> C:\Windows\SoftwareDistribution\Download\30622f2fa48ace2bae45ab270c09437d\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\31956b57ca141adee42015821cd60197\*.tmp files -> C:\Windows\SoftwareDistribution\Download\31956b57ca141adee42015821cd60197\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\32906ff4c08a30275ceeb80eeb8bb731\*.tmp files -> C:\Windows\SoftwareDistribution\Download\32906ff4c08a30275ceeb80eeb8bb731\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\33a1b5a0475cdbfea139233e4d990a8c\*.tmp files -> C:\Windows\SoftwareDistribution\Download\33a1b5a0475cdbfea139233e4d990a8c\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\33df691527b299a5f50b5884c5979589\*.tmp files -> C:\Windows\SoftwareDistribution\Download\33df691527b299a5f50b5884c5979589\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\35f960a717c3b31a0c52e875b6f47446\*.tmp files -> C:\Windows\SoftwareDistribution\Download\35f960a717c3b31a0c52e875b6f47446\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\36617577b73b29d25ec8a293a5391ec3\*.tmp files -> C:\Windows\SoftwareDistribution\Download\36617577b73b29d25ec8a293a5391ec3\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\372cec5cab40b5ede78ec0e25075836b\*.tmp files -> C:\Windows\SoftwareDistribution\Download\372cec5cab40b5ede78ec0e25075836b\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\3aed1aa5b59cef5c49e8f1f715aeda28\*.tmp files -> C:\Windows\SoftwareDistribution\Download\3aed1aa5b59cef5c49e8f1f715aeda28\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\3cef3bdabd9795560eb86ad86c7e6ddb\*.tmp files -> C:\Windows\SoftwareDistribution\Download\3cef3bdabd9795560eb86ad86c7e6ddb\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\3e952de7b8a53d3ae5b44bdf3dbbf7a9\*.tmp files -> C:\Windows\SoftwareDistribution\Download\3e952de7b8a53d3ae5b44bdf3dbbf7a9\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\3ee6fc61af46916dc0991b5c8f068c58\*.tmp files -> C:\Windows\SoftwareDistribution\Download\3ee6fc61af46916dc0991b5c8f068c58\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\3fedcac79b66bcf0809496c7a29500cd\*.tmp files -> C:\Windows\SoftwareDistribution\Download\3fedcac79b66bcf0809496c7a29500cd\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\451be858cb41a8a65dd01aed60de3f52\*.tmp files -> C:\Windows\SoftwareDistribution\Download\451be858cb41a8a65dd01aed60de3f52\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\46027e7fcb224853acbae96ce2d9b252\*.tmp files -> C:\Windows\SoftwareDistribution\Download\46027e7fcb224853acbae96ce2d9b252\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\48e080ff90ec32026be2594e254ffb45\*.tmp files -> C:\Windows\SoftwareDistribution\Download\48e080ff90ec32026be2594e254ffb45\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\48ffb769a0e6fdd59056da3fe7133cee\*.tmp files -> C:\Windows\SoftwareDistribution\Download\48ffb769a0e6fdd59056da3fe7133cee\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\4d02c1250f51eac26497b1642633258c\*.tmp files -> C:\Windows\SoftwareDistribution\Download\4d02c1250f51eac26497b1642633258c\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\4d8195c5f3cf0cc51170733e68ff048d\*.tmp files -> C:\Windows\SoftwareDistribution\Download\4d8195c5f3cf0cc51170733e68ff048d\*.tmp -> ]
[2 C:\Windows\SoftwareDistribution\Download\4fb7217d98ee9433f26246d7f41741d1\*.tmp files -> C:\Windows\SoftwareDistribution\Download\4fb7217d98ee9433f26246d7f41741d1\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\53442a8b5ee8a88106f6d53046f67298\*.tmp files -> C:\Windows\SoftwareDistribution\Download\53442a8b5ee8a88106f6d53046f67298\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\535ca0fd253e320e6b02cb7f1db43182\*.tmp files -> C:\Windows\SoftwareDistribution\Download\535ca0fd253e320e6b02cb7f1db43182\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\544163722657dbafb8667d8541f353f5\*.tmp files -> C:\Windows\SoftwareDistribution\Download\544163722657dbafb8667d8541f353f5\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\55f75f185ccfa484dbb705fc93df5260\*.tmp files -> C:\Windows\SoftwareDistribution\Download\55f75f185ccfa484dbb705fc93df5260\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\55ff0f20a379d1442eb4ecbd4f5f378c\*.tmp files -> C:\Windows\SoftwareDistribution\Download\55ff0f20a379d1442eb4ecbd4f5f378c\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\56fa1b1c38a8c1f0f4a2d4cd584cdc12\*.tmp files -> C:\Windows\SoftwareDistribution\Download\56fa1b1c38a8c1f0f4a2d4cd584cdc12\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\58eb619db5f01e6c35f0d1feac88a898\*.tmp files -> C:\Windows\SoftwareDistribution\Download\58eb619db5f01e6c35f0d1feac88a898\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\58fcd5eb3996d5b9738f8d4b935d5f50\*.tmp files -> C:\Windows\SoftwareDistribution\Download\58fcd5eb3996d5b9738f8d4b935d5f50\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\59b316bd3b78f3a6950f5b09651c514d\*.tmp files -> C:\Windows\SoftwareDistribution\Download\59b316bd3b78f3a6950f5b09651c514d\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\5ce6e84d9f598e2c5ffe9f02ca9c3ea5\*.tmp files -> C:\Windows\SoftwareDistribution\Download\5ce6e84d9f598e2c5ffe9f02ca9c3ea5\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\61f858b96c5d63eaa9c4c8d453dfc25a\*.tmp files -> C:\Windows\SoftwareDistribution\Download\61f858b96c5d63eaa9c4c8d453dfc25a\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\697ee5a8a85ca1592c6a7e4c034057e5\*.tmp files -> C:\Windows\SoftwareDistribution\Download\697ee5a8a85ca1592c6a7e4c034057e5\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\6cfd6c69fabc14dc6659c83354800a5e\*.tmp files -> C:\Windows\SoftwareDistribution\Download\6cfd6c69fabc14dc6659c83354800a5e\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\70d0f1ff039fa976b42afafd0153f45a\*.tmp files -> C:\Windows\SoftwareDistribution\Download\70d0f1ff039fa976b42afafd0153f45a\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\70e95d586497f82038fdcff6e3b3bf04\*.tmp files -> C:\Windows\SoftwareDistribution\Download\70e95d586497f82038fdcff6e3b3bf04\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\72a39236b565c42341f8b487582b1628\*.tmp files -> C:\Windows\SoftwareDistribution\Download\72a39236b565c42341f8b487582b1628\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\7718ca97671278d4f6b4c5091a742c56\*.tmp files -> C:\Windows\SoftwareDistribution\Download\7718ca97671278d4f6b4c5091a742c56\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\7c201910e6c80a9b3ba127594b1b6859\*.tmp files -> C:\Windows\SoftwareDistribution\Download\7c201910e6c80a9b3ba127594b1b6859\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\7ed2e7108754fc6b19e85a1d7cb02603\*.tmp files -> C:\Windows\SoftwareDistribution\Download\7ed2e7108754fc6b19e85a1d7cb02603\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\7f5b7c5127b02932973fe0a3d84d7160\*.tmp files -> C:\Windows\SoftwareDistribution\Download\7f5b7c5127b02932973fe0a3d84d7160\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\8203120214560b3c41749aa863ff3299\*.tmp files -> C:\Windows\SoftwareDistribution\Download\8203120214560b3c41749aa863ff3299\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\830164e973b7bbbb1d528c3bb20ac620\*.tmp files -> C:\Windows\SoftwareDistribution\Download\830164e973b7bbbb1d528c3bb20ac620\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\8bcd04d4dcc9490cbdfd86cf5981803d\*.tmp files -> C:\Windows\SoftwareDistribution\Download\8bcd04d4dcc9490cbdfd86cf5981803d\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\8d61d43739b4487b943c81348a5b3336\*.tmp files -> C:\Windows\SoftwareDistribution\Download\8d61d43739b4487b943c81348a5b3336\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\8de8eccc51302e3ad3cd631c70492dc1\*.tmp files -> C:\Windows\SoftwareDistribution\Download\8de8eccc51302e3ad3cd631c70492dc1\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\92c033bb0d88e7988b4badd9eeacecf8\*.tmp files -> C:\Windows\SoftwareDistribution\Download\92c033bb0d88e7988b4badd9eeacecf8\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\939eb95be9371239b481e26fe9e33bc5\*.tmp files -> C:\Windows\SoftwareDistribution\Download\939eb95be9371239b481e26fe9e33bc5\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\93d61bf5880947a37cabfac4264997f3\*.tmp files -> C:\Windows\SoftwareDistribution\Download\93d61bf5880947a37cabfac4264997f3\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\9ac73b94dc0da0993cfcd6a1219babe7\*.tmp files -> C:\Windows\SoftwareDistribution\Download\9ac73b94dc0da0993cfcd6a1219babe7\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\9b63cb96ee0d108fd148446f3969796a\*.tmp files -> C:\Windows\SoftwareDistribution\Download\9b63cb96ee0d108fd148446f3969796a\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\9c4afe3ca8e12d11080ab23a016e04ee\*.tmp files -> C:\Windows\SoftwareDistribution\Download\9c4afe3ca8e12d11080ab23a016e04ee\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\a28e3389a953363ac71869db2db2034e\*.tmp files -> C:\Windows\SoftwareDistribution\Download\a28e3389a953363ac71869db2db2034e\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\a3e068fbf75f1a54d5a83588af47bf45\*.tmp files -> C:\Windows\SoftwareDistribution\Download\a3e068fbf75f1a54d5a83588af47bf45\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\a48de5540fd761b74e35f3b798391a6d\*.tmp files -> C:\Windows\SoftwareDistribution\Download\a48de5540fd761b74e35f3b798391a6d\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\a49dd0722e7551b305d8481f1941cace\*.tmp files -> C:\Windows\SoftwareDistribution\Download\a49dd0722e7551b305d8481f1941cace\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\a80dd4649fdbc970fe911588e9eabb89\*.tmp files -> C:\Windows\SoftwareDistribution\Download\a80dd4649fdbc970fe911588e9eabb89\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\a857ae6a868251417a02c32fe167a0aa\*.tmp files -> C:\Windows\SoftwareDistribution\Download\a857ae6a868251417a02c32fe167a0aa\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\a85dcdc930a22102c245c4ee1e7ac95a\*.tmp files -> C:\Windows\SoftwareDistribution\Download\a85dcdc930a22102c245c4ee1e7ac95a\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\abc3fbcf627c846e12d9edc8795a4489\*.tmp files -> C:\Windows\SoftwareDistribution\Download\abc3fbcf627c846e12d9edc8795a4489\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\ac330a2d895779989ef6964972ea55b6\*.tmp files -> C:\Windows\SoftwareDistribution\Download\ac330a2d895779989ef6964972ea55b6\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\aeeab75a8ce8b4b128a14c8ba4631fae\*.tmp files -> C:\Windows\SoftwareDistribution\Download\aeeab75a8ce8b4b128a14c8ba4631fae\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\b068ac22ee1c2bdac02e4711231d7773\*.tmp files -> C:\Windows\SoftwareDistribution\Download\b068ac22ee1c2bdac02e4711231d7773\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\b4a4b0c23c4ed96c9f03ca89b5ed4ee6\*.tmp files -> C:\Windows\SoftwareDistribution\Download\b4a4b0c23c4ed96c9f03ca89b5ed4ee6\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\b5b917bd0413d0c148733046281a854c\*.tmp files -> C:\Windows\SoftwareDistribution\Download\b5b917bd0413d0c148733046281a854c\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\bd7e6ac2c888c1eb7ed48b5350df6ef7\*.tmp files -> C:\Windows\SoftwareDistribution\Download\bd7e6ac2c888c1eb7ed48b5350df6ef7\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\c4a2c3746087b73f999e33ea00318b96\*.tmp files -> C:\Windows\SoftwareDistribution\Download\c4a2c3746087b73f999e33ea00318b96\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\c5c6f2334243316daafd154b95809aaf\*.tmp files -> C:\Windows\SoftwareDistribution\Download\c5c6f2334243316daafd154b95809aaf\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\c8287a0e7781ce3ea6ab559e9e350639\*.tmp files -> C:\Windows\SoftwareDistribution\Download\c8287a0e7781ce3ea6ab559e9e350639\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\cada7cb1e9e3cb0b0c6c30d1acdb14d0\*.tmp files -> C:\Windows\SoftwareDistribution\Download\cada7cb1e9e3cb0b0c6c30d1acdb14d0\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\cd8f0f64a44e565131cb912f33693fa8\*.tmp files -> C:\Windows\SoftwareDistribution\Download\cd8f0f64a44e565131cb912f33693fa8\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\ce2ce75139db225257f403be451d4309\*.tmp files -> C:\Windows\SoftwareDistribution\Download\ce2ce75139db225257f403be451d4309\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\d1933581bd0c37a44f64f7d3d008f302\*.tmp files -> C:\Windows\SoftwareDistribution\Download\d1933581bd0c37a44f64f7d3d008f302\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\d20363de2fe32bc89bc6e0d361726a8e\*.tmp files -> C:\Windows\SoftwareDistribution\Download\d20363de2fe32bc89bc6e0d361726a8e\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\d2a920c360ee6e73f4087c382b160ea4\*.tmp files -> C:\Windows\SoftwareDistribution\Download\d2a920c360ee6e73f4087c382b160ea4\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\d567c2e9951ce9dc180b711326078ff6\*.tmp files -> C:\Windows\SoftwareDistribution\Download\d567c2e9951ce9dc180b711326078ff6\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\d864176a41065814d0cd6677b475457f\*.tmp files -> C:\Windows\SoftwareDistribution\Download\d864176a41065814d0cd6677b475457f\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\dbc4e637bf9d29a8359e46a7e031721c\*.tmp files -> C:\Windows\SoftwareDistribution\Download\dbc4e637bf9d29a8359e46a7e031721c\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\e0b4398bafa4af4d0ec31a2fc18ecba0\*.tmp files -> C:\Windows\SoftwareDistribution\Download\e0b4398bafa4af4d0ec31a2fc18ecba0\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\e22cf94ac2b22cf857176f33307b4f9a\*.tmp files -> C:\Windows\SoftwareDistribution\Download\e22cf94ac2b22cf857176f33307b4f9a\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\e2c27fdf51d82bbfd10ca60913711a22\*.tmp files -> C:\Windows\SoftwareDistribution\Download\e2c27fdf51d82bbfd10ca60913711a22\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\e46fdd768e882f91528a9c1c5580a6cb\*.tmp files -> C:\Windows\SoftwareDistribution\Download\e46fdd768e882f91528a9c1c5580a6cb\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\e4b32293488dfa2d5ff78bfe2a305432\*.tmp files -> C:\Windows\SoftwareDistribution\Download\e4b32293488dfa2d5ff78bfe2a305432\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\e598859c87d8aff848767671b6d79ecf\*.tmp files -> C:\Windows\SoftwareDistribution\Download\e598859c87d8aff848767671b6d79ecf\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\e7c2e8b575f5099906de31b77517c1bd\*.tmp files -> C:\Windows\SoftwareDistribution\Download\e7c2e8b575f5099906de31b77517c1bd\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\eb7fb956ac3e7318aa9335bf43b6899a\*.tmp files -> C:\Windows\SoftwareDistribution\Download\eb7fb956ac3e7318aa9335bf43b6899a\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\ec0520ea2782b9e5ef3a9768e55fa20f\*.tmp files -> C:\Windows\SoftwareDistribution\Download\ec0520ea2782b9e5ef3a9768e55fa20f\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\ed9c93c9a3e8c3c9e13e72162a17f485\*.tmp files -> C:\Windows\SoftwareDistribution\Download\ed9c93c9a3e8c3c9e13e72162a17f485\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\f2dcf84e486b9b0860ae2540f571dcb0\*.tmp files -> C:\Windows\SoftwareDistribution\Download\f2dcf84e486b9b0860ae2540f571dcb0\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\f4497846ad80cdd8c129bc375fb3f670\*.tmp files -> C:\Windows\SoftwareDistribution\Download\f4497846ad80cdd8c129bc375fb3f670\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\f6748feb9c180a89415e60f868670780\*.tmp files -> C:\Windows\SoftwareDistribution\Download\f6748feb9c180a89415e60f868670780\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\f81f2e5868469130ec2b380bdb409a5b\*.tmp files -> C:\Windows\SoftwareDistribution\Download\f81f2e5868469130ec2b380bdb409a5b\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\f8a4aebd2e2440adc172b74e7047eed7\*.tmp files -> C:\Windows\SoftwareDistribution\Download\f8a4aebd2e2440adc172b74e7047eed7\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\ff4e24c02f266a4c8e571cced8507a99\*.tmp files -> C:\Windows\SoftwareDistribution\Download\ff4e24c02f266a4c8e571cced8507a99\*.tmp -> ]
[199 C:\Windows\System32\*.tmp files -> C:\Windows\System32\*.tmp -> ]
[199 C:\Windows\SysWOW64\*.tmp files -> C:\Windows\SysWOW64\*.tmp -> ]
[9 C:\Windows\temp\*.tmp files -> C:\Windows\temp\*.tmp -> ]

:reg
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{4f3ed5cd-0726-42a9-87f5-d13f3d2976ac}]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
[-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{377e5d4d-77e5-476a-8716-7e70a9272da0}]
[-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
[-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
[-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A7DF592F-6E2A-45C4-9A87-4BD217D714ED}]
[-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FEB703F7-E7B2-4AB0-9566-87658AC70095}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{32099AAC-C132-4136-9E9A-4E364A424E17}"=-
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
"{32099AAC-C132-4136-9E9A-4E364A424E17}"=-
"{377e5d4d-77e5-476a-8716-7e70a9272da0}"=-
Kliknete na Opravit a nechte program pracovat. Pri otazce na restart souhlaste.
Po restartu se objevi novy log, ten sem dejte.
Pokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz

Možnost podpořit naše fórum https://platba.viry.cz/payment/

Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Nahoru
Madmaxik
Návštěvník
Návštěvník
Příspěvky: 110
Registrován: 09 lis 2013 17:28

Re: Kontrola logu

#24 Příspěvek od Madmaxik »

Po restartu PC se mi zobrazila světle modrá obrazovka kde se zobrazilo něco ohledně OTL jestli ho chci spustiť.

All processes killed
========== COMMANDS ==========

[EMPTYTEMP]

User: All Users

User: ASUS
->Temp folder emptied: 82179711 bytes
->Temporary Internet Files folder emptied: 3326395 bytes
->Java cache emptied: 17322245 bytes
->FireFox cache emptied: 18258198 bytes
->Google Chrome cache emptied: 6599446 bytes
->Flash cache emptied: 823 bytes

User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Public
->Temp folder emptied: 0 bytes

User: UpdatusUser
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32 (64bit) .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 970 bytes
%systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 67978 bytes
RecycleBin emptied: 2453 bytes

Total Files Cleaned = 122,00 mb


[EMPTYFLASH]

User: All Users

User: ASUS
->Flash cache emptied: 0 bytes

User: Default

User: Default User

User: Public

User: UpdatusUser

Total Flash Files Cleaned = 0,00 mb

Restore point Set: OTL Restore Point
========== SERVICES/DRIVERS ==========
Service gupdate stopped successfully!
Service gupdate deleted successfully!
Service AdobeFlashPlayerUpdateSvc stopped successfully!
Service AdobeFlashPlayerUpdateSvc deleted successfully!
Service gupdatem stopped successfully!
Service gupdatem deleted successfully!
========== FILES ==========
File/Folder C:\Windows\system32\*.tmp.dll not found.
File/Folder C:\Windows\system32\SET*.tmp not found.
File/Folder C:\Windows\*.tmp not found.
C:\Windows\tasks\Adobe Flash Player Updater.job moved successfully.
C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-14876253-2174864908-1153771479-1000Core.job moved successfully.
C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-14876253-2174864908-1153771479-1000UA.job moved successfully.
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job moved successfully.
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job moved successfully.
C:\Program Files (x86)\Mozilla Firefox\searchplugins\Ask.xml moved successfully.
C:\Program Files (x86)\Mozilla Firefox\searchplugins\qvo6.xml moved successfully.
C:\Program Files (x86)\Mozilla Firefox\searchplugins\Search_Results.xml moved successfully.
C:\Program Files (x86)\Search Results Toolbar folder moved successfully.
========== OTL ==========
HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\\Start Page| /E : value set successfully!
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope| /E : value set successfully!
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ deleted successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ not found.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}\ deleted successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{33BB0A4E-99AF-4226-BDF6-49120163DE86}\ not found.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}\ deleted successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}\ not found.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope| /E : value set successfully!
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}\ not found.
HKEY_USERS\S-1-5-21-14876253-2174864908-1153771479-1000\Software\Microsoft\Internet Explorer\SearchScopes\\DefaultScope| /E : value set successfully!
Registry key HKEY_USERS\S-1-5-21-14876253-2174864908-1153771479-1000\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ not found.
Registry key HKEY_USERS\S-1-5-21-14876253-2174864908-1153771479-1000\Software\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}\ not found.
Registry key HKEY_USERS\S-1-5-21-14876253-2174864908-1153771479-1000\Software\Microsoft\Internet Explorer\SearchScopes\{C89BBD62-DB93-40C6-B36E-FAF36C89456E}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{C89BBD62-DB93-40C6-B36E-FAF36C89456E}\ not found.
Registry key HKEY_LOCAL_MACHINE\Software\MozillaPlugins\@pandonetworks.com/PandoWebPlugin\ deleted successfully.
C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll moved successfully.
Registry key HKEY_CURRENT_USER\Software\MozillaPlugins\pandonetworks.com/PandoWebPlugin\ deleted successfully.
File C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll not found.
File C:\Program Files (x86)\mozilla firefox\searchplugins\Ask.xml not found.
File C:\Program Files (x86)\mozilla firefox\searchplugins\qvo6.xml not found.
File C:\Program Files (x86)\mozilla firefox\searchplugins\Search_Results.xml not found.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{377e5d4d-77e5-476a-8716-7e70a9272da0}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{377e5d4d-77e5-476a-8716-7e70a9272da0}\ not found.
64bit-Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{32099AAC-C132-4136-9E9A-4E364A424E17} deleted successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{32099AAC-C132-4136-9E9A-4E364A424E17}\ deleted successfully.
C:\Program Files (x86)\DAEMON Tools Toolbar\DTToolbar64.dll moved successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{32099AAC-C132-4136-9E9A-4E364A424E17} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{32099AAC-C132-4136-9E9A-4E364A424E17}\ deleted successfully.
C:\Program Files (x86)\DAEMON Tools Toolbar\DTToolbar.dll moved successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{377e5d4d-77e5-476a-8716-7e70a9272da0} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{377e5d4d-77e5-476a-8716-7e70a9272da0}\ not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\10 deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\Locked deleted successfully.
64bit-Registry value HKEY_USERS\S-1-5-21-14876253-2174864908-1153771479-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{32099AAC-C132-4136-9E9A-4E364A424E17} deleted successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{32099AAC-C132-4136-9E9A-4E364A424E17}\ not found.
File C:\Program Files (x86)\DAEMON Tools Toolbar\DTToolbar64.dll not found.
Registry value HKEY_USERS\S-1-5-21-14876253-2174864908-1153771479-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{32099AAC-C132-4136-9E9A-4E364A424E17} not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{32099AAC-C132-4136-9E9A-4E364A424E17}\ not found.
File C:\Program Files (x86)\DAEMON Tools Toolbar\DTToolbar.dll not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extensions\{08B0E5C0-4FCB-11CF-AAA5-00401C608501}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{08B0E5C0-4FCB-11CF-AAA5-00401C608501}\ deleted successfully.
64bit-Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad\\WebCheck deleted successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{E6FB5E20-DE35-11CF-9C87-00AA005127ED}\ not found.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad\\WebCheck deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{E6FB5E20-DE35-11CF-9C87-00AA005127ED}\ not found.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAP9E41.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\ZAPE291.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\ZAPE56E.tmp folder deleted successfully.
C:\Windows\SoftwareDistribution\AuthCabs\7971f918-a847-4430-9279-4a52d1efe18d\wlt9FC8.tmp deleted successfully.
C:\Windows\SoftwareDistribution\Download\0224f89b0f4f58ffbde564c254a99d6c\BIT181E.tmp deleted successfully.
C:\Windows\SoftwareDistribution\Download\026d37d9d0d955fde910ecf59f7b93de\BITAC06.tmp deleted successfully.
C:\Windows\SoftwareDistribution\Download\03362803671dde45fc50c92286a4c1ba\BIT51DA.tmp deleted successfully.
C:\Windows\SoftwareDistribution\Download\04200c1f0c6dd7c6d80d3f0ec2a26185\BITF1EF.tmp deleted successfully.
C:\Windows\SoftwareDistribution\Download\044b75a9933a066fe2c94660a1436533\BITB924.tmp deleted successfully.
C:\Windows\SoftwareDistribution\Download\08080b0c78f74103916d78ce7d0beeaf\BIT948.tmp deleted successfully.
C:\Windows\SoftwareDistribution\Download\0862135f20e6ce88f4e7820ce7b199a8\BITDF26.tmp deleted successfully.
C:\Windows\SoftwareDistribution\Download\08de3c83def3f05ce0c5a1bd84d93296\BITDA34.tmp deleted successfully.
C:\Windows\SoftwareDistribution\Download\0aa3ef2f0c8b6eedf450a9dff1fe028e\BITB88F.tmp deleted successfully.
C:\Windows\SoftwareDistribution\Download\0d185f1dfa9b452bbcf641fb0708a086\BITCE9A.tmp deleted successfully.
C:\Windows\SoftwareDistribution\Download\0e3bf0a19e9400ba9f0a6dcf5dee14d2\BITEB2E.tmp deleted successfully.
C:\Windows\SoftwareDistribution\Download\0f920aabece236b9b498d2c2d7b0b6df\BIT90EC.tmp deleted successfully.
C:\Windows\SoftwareDistribution\Download\15f515a6d2264980fd04ce886425ba94\BIT58FF.tmp deleted successfully.
C:\Windows\SoftwareDistribution\Download\1864546dde46f748b869774490650166\BITF097.tmp deleted successfully.
C:\Windows\SoftwareDistribution\Download\188c584a5234d4390c93a98c81b1a2a2\BIT541C.tmp deleted successfully.
C:\Windows\SoftwareDistribution\Download\19df9194884c2590880b9ee43a82b203\BITFB3E.tmp deleted successfully.
C:\Windows\SoftwareDistribution\Download\1b2c0a5ab3de5f5851190554ba72c2db\BIT9BFA.tmp deleted successfully.
C:\Windows\SoftwareDistribution\Download\1fadb9307007a21c57062875a04bfffe\BIT4FB7.tmp deleted successfully.
C:\Windows\SoftwareDistribution\Download\21351a2a3c4febf49cd7600e8646f132\BIT96B9.tmp deleted successfully.
C:\Windows\SoftwareDistribution\Download\26204eef8d98a8c0a2a1d76049625e00\BIT3829.tmp deleted successfully.
C:\Windows\SoftwareDistribution\Download\2630c3fa94148f9f4562cb340e358591\BIT16A7.tmp deleted successfully.
C:\Windows\SoftwareDistribution\Download\27f18a17b9aa0306baa879c4704300aa\BITFEE8.tmp deleted successfully.
C:\Windows\SoftwareDistribution\Download\291e4c970688f0ae75ac6de78e4a5e7f\BIT68D1.tmp deleted successfully.
C:\Windows\SoftwareDistribution\Download\2c22bd1fd1408eeaafd0524c06788a59\BIT5D07.tmp deleted successfully.
C:\Windows\SoftwareDistribution\Download\2d0996b635d571b17effc64a35def62d\BITC364.tmp deleted successfully.
C:\Windows\SoftwareDistribution\Download\2ea9831e17856e84683ddfa825ce04cb\BIT373.tmp deleted successfully.
C:\Windows\SoftwareDistribution\Download\2ee2700248091ae70a9add61528396c7\BITFCE4.tmp deleted successfully.
C:\Windows\SoftwareDistribution\Download\2f5d20a0e19ee0383d29ff3d1f1b72d0\BIT44DB.tmp deleted successfully.
C:\Windows\SoftwareDistribution\Download\30586ca8d10d70d0efef987e7dd1a59e\BITADDB.tmp deleted successfully.
C:\Windows\SoftwareDistribution\Download\30622f2fa48ace2bae45ab270c09437d\BIT8F65.tmp deleted successfully.
C:\Windows\SoftwareDistribution\Download\31956b57ca141adee42015821cd60197\BIT563F.tmp deleted successfully.
C:\Windows\SoftwareDistribution\Download\32906ff4c08a30275ceeb80eeb8bb731\BIT97D3.tmp deleted successfully.
C:\Windows\SoftwareDistribution\Download\33a1b5a0475cdbfea139233e4d990a8c\BITDA53.tmp deleted successfully.
C:\Windows\SoftwareDistribution\Download\33df691527b299a5f50b5884c5979589\BITF870.tmp deleted successfully.
C:\Windows\SoftwareDistribution\Download\35f960a717c3b31a0c52e875b6f47446\BIT26E2.tmp deleted successfully.
C:\Windows\SoftwareDistribution\Download\36617577b73b29d25ec8a293a5391ec3\BITE263.tmp deleted successfully.
C:\Windows\SoftwareDistribution\Download\372cec5cab40b5ede78ec0e25075836b\BIT71F9.tmp deleted successfully.
C:\Windows\SoftwareDistribution\Download\3aed1aa5b59cef5c49e8f1f715aeda28\BIT324C.tmp deleted successfully.
C:\Windows\SoftwareDistribution\Download\3cef3bdabd9795560eb86ad86c7e6ddb\BIT1177.tmp deleted successfully.
C:\Windows\SoftwareDistribution\Download\3e952de7b8a53d3ae5b44bdf3dbbf7a9\BIT6342.tmp deleted successfully.
C:\Windows\SoftwareDistribution\Download\3ee6fc61af46916dc0991b5c8f068c58\BITF542.tmp deleted successfully.
C:\Windows\SoftwareDistribution\Download\3fedcac79b66bcf0809496c7a29500cd\BITDC47.tmp deleted successfully.
C:\Windows\SoftwareDistribution\Download\451be858cb41a8a65dd01aed60de3f52\BITF419.tmp deleted successfully.
C:\Windows\SoftwareDistribution\Download\46027e7fcb224853acbae96ce2d9b252\BITDD90.tmp deleted successfully.
C:\Windows\SoftwareDistribution\Download\48e080ff90ec32026be2594e254ffb45\BITC0F3.tmp deleted successfully.
C:\Windows\SoftwareDistribution\Download\48ffb769a0e6fdd59056da3fe7133cee\BIT49CD.tmp deleted successfully.
C:\Windows\SoftwareDistribution\Download\4d02c1250f51eac26497b1642633258c\BITB746.tmp deleted successfully.
C:\Windows\SoftwareDistribution\Download\4d8195c5f3cf0cc51170733e68ff048d\BIT6D94.tmp deleted successfully.
C:\Windows\SoftwareDistribution\Download\4fb7217d98ee9433f26246d7f41741d1\$dpx$.tmp\job.xml deleted successfully.
C:\Windows\SoftwareDistribution\Download\4fb7217d98ee9433f26246d7f41741d1\$dpx$.tmp folder deleted successfully.
C:\Windows\SoftwareDistribution\Download\4fb7217d98ee9433f26246d7f41741d1\BIT86CB.tmp deleted successfully.
C:\Windows\SoftwareDistribution\Download\53442a8b5ee8a88106f6d53046f67298\BITBC40.tmp deleted successfully.
C:\Windows\SoftwareDistribution\Download\535ca0fd253e320e6b02cb7f1db43182\BIT61F9.tmp deleted successfully.
C:\Windows\SoftwareDistribution\Download\544163722657dbafb8667d8541f353f5\BIT7F94.tmp deleted successfully.
C:\Windows\SoftwareDistribution\Download\55f75f185ccfa484dbb705fc93df5260\BITFDC6.tmp deleted successfully.
C:\Windows\SoftwareDistribution\Download\55ff0f20a379d1442eb4ecbd4f5f378c\BIT2DA9.tmp deleted successfully.
C:\Windows\SoftwareDistribution\Download\56fa1b1c38a8c1f0f4a2d4cd584cdc12\BITC514.tmp deleted successfully.
C:\Windows\SoftwareDistribution\Download\58eb619db5f01e6c35f0d1feac88a898\BIT67A8.tmp deleted successfully.
C:\Windows\SoftwareDistribution\Download\58fcd5eb3996d5b9738f8d4b935d5f50\BIT8D62.tmp deleted successfully.
C:\Windows\SoftwareDistribution\Download\59b316bd3b78f3a6950f5b09651c514d\BITA802.tmp deleted successfully.
C:\Windows\SoftwareDistribution\Download\5ce6e84d9f598e2c5ffe9f02ca9c3ea5\BIT4BB.tmp deleted successfully.
C:\Windows\SoftwareDistribution\Download\61f858b96c5d63eaa9c4c8d453dfc25a\BITF14A.tmp deleted successfully.
C:\Windows\SoftwareDistribution\Download\697ee5a8a85ca1592c6a7e4c034057e5\BITCDE3.tmp deleted successfully.
C:\Windows\SoftwareDistribution\Download\6cfd6c69fabc14dc6659c83354800a5e\BITAF81.tmp deleted successfully.
C:\Windows\SoftwareDistribution\Download\70d0f1ff039fa976b42afafd0153f45a\BIT35B8.tmp deleted successfully.
C:\Windows\SoftwareDistribution\Download\70e95d586497f82038fdcff6e3b3bf04\BIT666F.tmp deleted successfully.
C:\Windows\SoftwareDistribution\Download\72a39236b565c42341f8b487582b1628\BITB5BF.tmp deleted successfully.
C:\Windows\SoftwareDistribution\Download\7718ca97671278d4f6b4c5091a742c56\BIT6FD6.tmp deleted successfully.
C:\Windows\SoftwareDistribution\Download\7c201910e6c80a9b3ba127594b1b6859\BITF309.tmp deleted successfully.
C:\Windows\SoftwareDistribution\Download\7ed2e7108754fc6b19e85a1d7cb02603\BITAE6B.tmp deleted successfully.
C:\Windows\SoftwareDistribution\Download\7f5b7c5127b02932973fe0a3d84d7160\BIT78AF.tmp deleted successfully.
C:\Windows\SoftwareDistribution\Download\8203120214560b3c41749aa863ff3299\BITD486.tmp deleted successfully.
C:\Windows\SoftwareDistribution\Download\830164e973b7bbbb1d528c3bb20ac620\BIT1445.tmp deleted successfully.
C:\Windows\SoftwareDistribution\Download\8bcd04d4dcc9490cbdfd86cf5981803d\BIT7593.tmp deleted successfully.
C:\Windows\SoftwareDistribution\Download\8d61d43739b4487b943c81348a5b3336\BITB050.tmp deleted successfully.
C:\Windows\SoftwareDistribution\Download\8de8eccc51302e3ad3cd631c70492dc1\BITA9F6.tmp deleted successfully.
C:\Windows\SoftwareDistribution\Download\92c033bb0d88e7988b4badd9eeacecf8\BITE9F5.tmp deleted successfully.
C:\Windows\SoftwareDistribution\Download\939eb95be9371239b481e26fe9e33bc5\BITCB10.tmp deleted successfully.
C:\Windows\SoftwareDistribution\Download\93d61bf5880947a37cabfac4264997f3\BIT1DC.tmp deleted successfully.
C:\Windows\SoftwareDistribution\Download\9ac73b94dc0da0993cfcd6a1219babe7\BIT2442.tmp deleted successfully.
C:\Windows\SoftwareDistribution\Download\9b63cb96ee0d108fd148446f3969796a\BIT2A5C.tmp deleted successfully.
C:\Windows\SoftwareDistribution\Download\9c4afe3ca8e12d11080ab23a016e04ee\BIT6AE5.tmp deleted successfully.
C:\Windows\SoftwareDistribution\Download\a28e3389a953363ac71869db2db2034e\BITAC0.tmp deleted successfully.
C:\Windows\SoftwareDistribution\Download\a3e068fbf75f1a54d5a83588af47bf45\BITD830.tmp deleted successfully.
C:\Windows\SoftwareDistribution\Download\a48de5540fd761b74e35f3b798391a6d\BIT18F8.tmp deleted successfully.
C:\Windows\SoftwareDistribution\Download\a49dd0722e7551b305d8481f1941cace\BITBA25.tmp deleted successfully.
C:\Windows\SoftwareDistribution\Download\a80dd4649fdbc970fe911588e9eabb89\BITD66A.tmp deleted successfully.
C:\Windows\SoftwareDistribution\Download\a857ae6a868251417a02c32fe167a0aa\BITE251.tmp deleted successfully.
C:\Windows\SoftwareDistribution\Download\a85dcdc930a22102c245c4ee1e7ac95a\BITBD53.tmp deleted successfully.
C:\Windows\SoftwareDistribution\Download\abc3fbcf627c846e12d9edc8795a4489\BITC7B5.tmp deleted successfully.
C:\Windows\SoftwareDistribution\Download\ac330a2d895779989ef6964972ea55b6\BITA5A1.tmp deleted successfully.
C:\Windows\SoftwareDistribution\Download\aeeab75a8ce8b4b128a14c8ba4631fae\BIT4289.tmp deleted successfully.
C:\Windows\SoftwareDistribution\Download\b068ac22ee1c2bdac02e4711231d7773\BIT9245.tmp deleted successfully.
C:\Windows\SoftwareDistribution\Download\b4a4b0c23c4ed96c9f03ca89b5ed4ee6\BITC66.tmp deleted successfully.
C:\Windows\SoftwareDistribution\Download\b5b917bd0413d0c148733046281a854c\BITBEDA.tmp deleted successfully.
C:\Windows\SoftwareDistribution\Download\bd7e6ac2c888c1eb7ed48b5350df6ef7\BIT1ACD.tmp deleted successfully.
C:\Windows\SoftwareDistribution\Download\c4a2c3746087b73f999e33ea00318b96\BITB617.tmp deleted successfully.
C:\Windows\SoftwareDistribution\Download\c5c6f2334243316daafd154b95809aaf\BIT2C60.tmp deleted successfully.
C:\Windows\SoftwareDistribution\Download\c8287a0e7781ce3ea6ab559e9e350639\BITBDF6.tmp deleted successfully.
C:\Windows\SoftwareDistribution\Download\cada7cb1e9e3cb0b0c6c30d1acdb14d0\BIT864A.tmp deleted successfully.
C:\Windows\SoftwareDistribution\Download\cd8f0f64a44e565131cb912f33693fa8\BIT3E54.tmp deleted successfully.
C:\Windows\SoftwareDistribution\Download\ce2ce75139db225257f403be451d4309\BIT2116.tmp deleted successfully.
C:\Windows\SoftwareDistribution\Download\d1933581bd0c37a44f64f7d3d008f302\BITE3FA.tmp deleted successfully.
C:\Windows\SoftwareDistribution\Download\d20363de2fe32bc89bc6e0d361726a8e\BITB16A.tmp deleted successfully.
C:\Windows\SoftwareDistribution\Download\d2a920c360ee6e73f4087c382b160ea4\BIT13D9.tmp deleted successfully.
C:\Windows\SoftwareDistribution\Download\d567c2e9951ce9dc180b711326078ff6\BIT9B5E.tmp deleted successfully.
C:\Windows\SoftwareDistribution\Download\d864176a41065814d0cd6677b475457f\BITA734.tmp deleted successfully.
C:\Windows\SoftwareDistribution\Download\dbc4e637bf9d29a8359e46a7e031721c\BITA458.tmp deleted successfully.
C:\Windows\SoftwareDistribution\Download\e0b4398bafa4af4d0ec31a2fc18ecba0\BITA262.tmp deleted successfully.
C:\Windows\SoftwareDistribution\Download\e22cf94ac2b22cf857176f33307b4f9a\BIT8A26.tmp deleted successfully.
C:\Windows\SoftwareDistribution\Download\e2c27fdf51d82bbfd10ca60913711a22\BITDC76.tmp deleted successfully.
C:\Windows\SoftwareDistribution\Download\e46fdd768e882f91528a9c1c5580a6cb\BIT272.tmp deleted successfully.
C:\Windows\SoftwareDistribution\Download\e4b32293488dfa2d5ff78bfe2a305432\BITBC0A.tmp deleted successfully.
C:\Windows\SoftwareDistribution\Download\e598859c87d8aff848767671b6d79ecf\BITEDFE.tmp deleted successfully.
C:\Windows\SoftwareDistribution\Download\e7c2e8b575f5099906de31b77517c1bd\BITC0CE.tmp deleted successfully.
C:\Windows\SoftwareDistribution\Download\eb7fb956ac3e7318aa9335bf43b6899a\BITF6AA.tmp deleted successfully.
C:\Windows\SoftwareDistribution\Download\ec0520ea2782b9e5ef3a9768e55fa20f\BITE38A.tmp deleted successfully.
C:\Windows\SoftwareDistribution\Download\ed9c93c9a3e8c3c9e13e72162a17f485\BIT9ECA.tmp deleted successfully.
C:\Windows\SoftwareDistribution\Download\f2dcf84e486b9b0860ae2540f571dcb0\BITECC5.tmp deleted successfully.
C:\Windows\SoftwareDistribution\Download\f4497846ad80cdd8c129bc375fb3f670\BIT9D43.tmp deleted successfully.
C:\Windows\SoftwareDistribution\Download\f6748feb9c180a89415e60f868670780\BIT6034.tmp deleted successfully.
C:\Windows\SoftwareDistribution\Download\f81f2e5868469130ec2b380bdb409a5b\BITD0EB.tmp deleted successfully.
C:\Windows\SoftwareDistribution\Download\f8a4aebd2e2440adc172b74e7047eed7\BITE89.tmp deleted successfully.
C:\Windows\SoftwareDistribution\Download\ff4e24c02f266a4c8e571cced8507a99\BIT47AA.tmp deleted successfully.
========== REGISTRY ==========
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{4f3ed5cd-0726-42a9-87f5-d13f3d2976ac}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{4f3ed5cd-0726-42a9-87f5-d13f3d2976ac}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{9030D464-4C02-4ABF-8ECC-5164760863C6}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{377e5d4d-77e5-476a-8716-7e70a9272da0}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{377e5d4d-77e5-476a-8716-7e70a9272da0}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{9030D464-4C02-4ABF-8ECC-5164760863C6}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A7DF592F-6E2A-45C4-9A87-4BD217D714ED}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{A7DF592F-6E2A-45C4-9A87-4BD217D714ED}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FEB703F7-E7B2-4AB0-9566-87658AC70095}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{FEB703F7-E7B2-4AB0-9566-87658AC70095}\ deleted successfully.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar\\{32099AAC-C132-4136-9E9A-4E364A424E17} not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{32099AAC-C132-4136-9E9A-4E364A424E17}\ not found.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar\\{32099AAC-C132-4136-9E9A-4E364A424E17} not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{32099AAC-C132-4136-9E9A-4E364A424E17}\ not found.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar\\{377e5d4d-77e5-476a-8716-7e70a9272da0} not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{377e5d4d-77e5-476a-8716-7e70a9272da0}\ not found.

OTL by OldTimer - Version 3.2.69.0 log created on 11112013_194246

Files\Folders moved on Reboot...
C:\Users\ASUS\AppData\Local\Temp\FXSAPIDebugLogFile.txt moved successfully.

PendingFileRenameOperations files...

Registry entries deleted on Reboot...
Nahoru
Márty84
VIP
VIP
Příspěvky: 21679
Registrován: 05 pro 2009 20:08
Bydliště: Ostrava

Re: Kontrola logu

#25 Příspěvek od Márty84 »

Dejte novy log z RSIT
Pokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz

Možnost podpořit naše fórum https://platba.viry.cz/payment/

Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Nahoru
Madmaxik
Návštěvník
Návštěvník
Příspěvky: 110
Registrován: 09 lis 2013 17:28

Re: Kontrola logu

#26 Příspěvek od Madmaxik »

Děkuji za varování ohledně hardisku zkusím se do budoucna na to připravit. :)

Logfile of random's system information tool 1.09 (written by random/random)
Run by ASUS at 2013-11-11 21:46:36
Microsoft Windows 7 Professional
System drive C: has 132 GB (56%) free of 238 GB
Total RAM: 4095 MB (51% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 21:46:40, on 11.11.2013
Platform: Windows 7 (WinNT 6.00.3504)
MSIE: Internet Explorer v8.00 (8.00.7600.16385)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe
C:\Program Files (x86)\screenSHU\screenSHU.exe
C:\Program Files (x86)\Clownfish\Clownfish.exe
C:\Windows\V0700Mon.exe
C:\Program Files (x86)\Mobogenie\DaemonProcess.exe
C:\Windows\SysWOW64\DllHost.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\RealNetworks\RealDownloader\recordingmanager.exe
C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_9_900_117.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_9_900_117.exe
C:\Program Files\trend micro\ASUS.exe

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: RealNetworks Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O4 - HKLM\..\Run: [HDAudDeck] C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe -r
O4 - HKLM\..\Run: [V0700Mon.exe] C:\Windows\V0700Mon.exe
O4 - HKLM\..\Run: [mobilegeni daemon] C:\Program Files (x86)\Mobogenie\DaemonProcess.exe
O4 - HKLM\..\Run: [LogMeIn Hamachi Ui] "C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-start
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [screenSHU] "C:\Program Files (x86)\screenSHU\screenSHU.exe" --hidden
O4 - HKCU\..\Run: [Clownfish] "C:\Program Files (x86)\Clownfish\Clownfish.exe"
O4 - HKUS\S-1-5-21-14876253-2174864908-1153771479-1001\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'UpdatusUser')
O4 - HKUS\S-1-5-21-14876253-2174864908-1153771479-1001\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'UpdatusUser')
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~3\Office12\EXCEL.EXE/3000
O9 - Extra button: Přidat na blog - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Přidat na blog Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~3\Office12\REFIEBAR.DLL
O9 - Extra button: Rich Media Downloader - {A7DF592F-6E2A-45C4-9A87-4BD217D714ED} - (no file)
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\PROGRA~2\MICROS~3\Office12\GRA32A~1.DLL
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: LogMeIn Hamachi Tunneling Engine (Hamachi2Svc) - LogMeIn Inc. - C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: LMIGuardianSvc - LogMeIn, Inc. - C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: RealNetworks Downloader Resolver Service - Unknown owner - C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 8140 bytes

======Listing Processes======

\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
winlogon.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
"C:\Windows\system32\nvvsvc.exe"
"C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe"
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\AUDIODG.EXE 0x2c4
C:\Windows\system32\svchost.exe -k LocalService
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\Windows\system32\nvvsvc.exe -session -first
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe"
"taskhost.exe"
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
taskeng.exe {D12A8197-3714-44FD-BF21-D595016ABA32}
"C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /c
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe"
"C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe"
C:\Windows\System32\svchost.exe -k secsvcs
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
"C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe" -s
WLIDSvcM.exe 1744
"C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-start
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1
"C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe"
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files\ESET\ESET Smart Security\egui.exe" /hide /waitservice
"C:\Program Files\Windows Sidebar\sidebar.exe" /autoRun
"C:\Program Files (x86)\screenSHU\screenSHU.exe" --hidden
"C:\Program Files (x86)\Clownfish\Clownfish.exe"
"C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe" -r
"C:\Windows\V0700Mon.exe"
"C:\Program Files (x86)\Mobogenie\DaemonProcess.exe"
C:\Windows\SysWOW64\DllHost.exe /Processid:{3F6B5E16-092A-41ED-930B-0B4125D91D4E}
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe" -private-window
"C:\Program Files (x86)\RealNetworks\RealDownloader\recordingmanager.exe" /bgrecordhelpersvc
C:\Windows\system32\svchost.exe -k SDRSVC
"C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe" --channel=3828.bd39600.248037194 "C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_117.dll" -greomni "C:\Program Files (x86)\Mozilla Firefox\omni.ja" -appomni "C:\Program Files (x86)\Mozilla Firefox\browser\omni.ja" -appdir "C:\Program Files (x86)\Mozilla Firefox\browser" E7CF176E110C211B 3828 "\\.\pipe\gecko-crash-server-pipe.3828" plugin
"C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_9_900_117.exe" --proxy-stub-channel=Flash2104.6831DFB8.22417 --host-broker-channel=Flash2104.6831DFB8.32390 --host-pid=2104 --host-npapi-version=22 --plugin-path="C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_117.dll"
"C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_9_900_117.exe" --channel=2868.0027F670.1729513649 --proxy-stub-channel=Flash2104.6831DFB8.22417 --plugin-path="C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_117.dll" --host-npapi-version=22 --type=renderer
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe5_ Global\UsGthrCtrlFltPipeMssGthrPipe5 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Windows\system32\SearchFilterHost.exe" 0 508 512 520 65536 516
"C:\Users\ASUS\Desktop\Programy a jejich logy\RSITx64.exe"
C:\Windows\system32\wbem\wmiprvse.exe

=========Mozilla firefox=========

ProfilePath - C:\Users\ASUS\AppData\Roaming\Mozilla\Firefox\Profiles\n9rlbgqb.default

prefs.js - "browser.startup.homepage" - "https://www.google.cz/"

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 11.9.900.117 Plugin
"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_117.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/ShockwavePlayer]
"Description"=Adobe Shockwave Player
"Path"=C:\Windows\SysWOW64\Adobe\Director\np32dsw_1202122.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=10.40.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Windows\SysWOW64\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=10.40.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=14.0.8064.0206]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVision]
"Description"=NVIDIA stereo images plugin for Mozilla browsers
"Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVisionStreaming]
"Description"=NVIDIA 3D Vision Streaming plugin for Mozilla browsers
"Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@real.com/nppl3260;version=16.0.3.51]
"Description"=RealPlayer(tm) LiveConnect-Enabled Plug-In
"Path"=C:\Program Files (x86)\Real\RealPlayer\Netscape6\nppl3260.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@real.com/nprndlchromebrowserrecordext;version=1.3.3]
"Description"=RealNetworks(tm) RealDownloader Chrome Background Extension Plug-In
"Path"=C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlchromebrowserrecordext.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@real.com/nprndlhtml5videoshim;version=1.3.3]
"Description"=RealNetworks(tm) RealDownloader HTML5VideoShim Plug-In
"Path"=C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlhtml5videoshim.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@real.com/nprndlpepperflashvideoshim;version=1.3.3]
"Description"=RealNetworks(tm) RealDownloader Peppe rFlash Video Shim Plug-In
"Path"=C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlpepperflashvideoshim.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@real.com/nprpplugin;version=16.0.3.51]
"Description"=RealPlayer Download Plugin
"Path"=C:\Program Files (x86)\Real\RealPlayer\Netscape6\nprpplugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@realnetworks.com/npdlplugin;version=1]
"Description"=RealDownloader Plugin
"Path"=C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\npdlplugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@richmediaplayer.com/nppluginrichmediaplayer]
"Description"=
"Path"=C:\Program Files (x86)\Mozilla Firefox\plugins\nppluginrichmediaplayer.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.21.165\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.21.165\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.0.6]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\adobe.com/AdobeAAMDetect]
"Description"=
"Path"=C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 11.9.900.117 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_11_9_900_117.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=10.7.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Windows\system32\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=10.7.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\adobe.com/AdobeAAMDetect]
"Description"=
"Path"=C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll


C:\Program Files (x86)\Mozilla Firefox\plugins\
npffividiplg.dll
nppluginrichmediaplayer.dll

C:\Users\ASUS\AppData\Roaming\Mozilla\Firefox\Profiles\n9rlbgqb.default\extensions\
WebSiteRecommendation@weliketheweb.com

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{4f3ed5cd-0726-42a9-87f5-d13f3d2976ac}]
Windows Live Family Safety Browser Helper Class - C:\Program Files\Windows Live\Family Safety\fssbho.dll [2009-02-06 68976]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2013-08-15 537576]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17 529664]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2013-08-15 193512]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-02-27 75128]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3049C3E9-B461-4BC5-8870-4C09146192CA}]
RealNetworks Download and Record Plugin for Internet Explorer - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll [2013-08-14 542376]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2013-10-03 462248]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2013-10-03 171944]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2009-09-23 165912]
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2009-09-23 385560]
"Persistence"=C:\Windows\system32\igfxpers.exe [2009-09-23 363544]
"egui"=C:\Program Files\ESET\ESET Smart Security\egui.exe [2013-09-12 5618456]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2009-07-14 1475072]
"screenSHU"=C:\Program Files (x86)\screenSHU\screenSHU.exe [2012-04-03 2121216]
"Clownfish"=C:\Program Files (x86)\Clownfish\Clownfish.exe [2013-07-02 1276152]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"HDAudDeck"=C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe [2009-10-28 2763776]
"V0700Mon.exe"=C:\Windows\V0700Mon.exe [2011-08-22 28672]
"mobilegeni daemon"=C:\Program Files (x86)\Mobogenie\DaemonProcess.exe [2013-11-09 746176]
"LogMeIn Hamachi Ui"=C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [2013-10-31 2349392]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2009-09-23 261120]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~2\MICROS~3\Office12\GR469A~1.DLL [2006-10-27 2210608]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Hamachi2Svc]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
"NoDrives"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"VIDC.FPS1"=frapsv64.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1

======List of files/folders created in the last 1 month======

2013-11-11 19:42:46 ----D---- C:\_OTL
2013-11-11 06:59:34 ----D---- C:\ProgramData\ESET
2013-11-11 06:59:34 ----D---- C:\Program Files\ESET
2013-11-10 19:02:30 ----A---- C:\ComboFix.txt
2013-11-10 18:59:10 ----D---- C:\$RECYCLE.BIN
2013-11-10 18:57:13 ----D---- C:\Windows\temp
2013-11-10 17:38:25 ----A---- C:\Windows\zip.exe
2013-11-10 17:38:25 ----A---- C:\Windows\SWSC.exe
2013-11-10 17:38:25 ----A---- C:\Windows\SWREG.exe
2013-11-10 17:38:25 ----A---- C:\Windows\sed.exe
2013-11-10 17:38:25 ----A---- C:\Windows\PEV.exe
2013-11-10 17:38:25 ----A---- C:\Windows\NIRCMD.exe
2013-11-10 17:38:25 ----A---- C:\Windows\MBR.exe
2013-11-10 17:38:25 ----A---- C:\Windows\grep.exe
2013-11-10 17:38:18 ----D---- C:\Qoobox
2013-11-10 17:37:56 ----D---- C:\Windows\erdnt
2013-11-09 19:16:20 ----D---- C:\Users\ASUS\AppData\Roaming\Malwarebytes
2013-11-09 19:16:00 ----D---- C:\ProgramData\Malwarebytes
2013-11-09 19:15:57 ----D---- C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-11-09 17:33:02 ----D---- C:\Program Files\trend micro
2013-11-09 17:33:01 ----D---- C:\rsit
2013-11-09 14:30:15 ----AH---- C:\Windows\system32\hamachi.sys
2013-11-09 14:30:12 ----D---- C:\ProgramData\LogMeIn
2013-11-09 14:30:12 ----D---- C:\Program Files (x86)\LogMeIn Hamachi
2013-11-09 13:42:53 ----D---- C:\Program Files (x86)\Microsoft Games
2013-11-09 13:03:37 ----A---- C:\Windows\SYSWOW64\d3dx9_26.dll
2013-11-09 13:03:37 ----A---- C:\Windows\system32\d3dx9_26.dll
2013-11-09 13:03:32 ----A---- C:\Windows\SYSWOW64\d3dx9_25.dll
2013-11-09 13:03:32 ----A---- C:\Windows\system32\d3dx9_25.dll
2013-11-09 12:24:26 ----D---- C:\Users\ASUS\AppData\Roaming\Python-Eggs
2013-11-09 12:24:20 ----D---- C:\Users\ASUS\AppData\Roaming\BitLord
2013-11-09 12:24:20 ----A---- C:\Users\ASUS\AppData\Roaming\bitlord_log.txt
2013-11-09 12:22:35 ----D---- C:\Program Files (x86)\BitLord 2
2013-11-09 12:22:31 ----D---- C:\Program Files (x86)\Mobogenie
2013-11-09 12:22:17 ----D---- C:\Program Files (x86)\SimilarSites
2013-11-09 12:22:11 ----D---- C:\Users\ASUS\AppData\Roaming\SimilarSites
2013-11-09 12:18:59 ----D---- C:\Program Files (x86)\iVIDI.org plugin
2013-11-06 16:10:25 ----D---- C:\ProgramData\RealNetworks
2013-11-06 15:34:34 ----D---- C:\Program Files (x86)\Mozilla Firefox
2013-11-04 16:37:45 ----D---- C:\ProgramData\WarThunder
2013-11-04 16:36:55 ----D---- C:\Program Files (x86)\WarThunder
2013-10-18 12:22:29 ----D---- C:\Users\ASUS\AppData\Roaming\LolClient
2013-10-18 11:10:29 ----A---- C:\Windows\SYSWOW64\d3dx10_39.dll
2013-10-18 11:10:29 ----A---- C:\Windows\SYSWOW64\D3DCompiler_39.dll
2013-10-18 11:10:28 ----A---- C:\Windows\SYSWOW64\D3DX9_39.dll
2013-10-18 11:10:03 ----SHD---- C:\Windows\SYSWOW64\AI_RecycleBin
2013-10-18 11:09:56 ----D---- C:\Riot Games
2013-10-14 18:34:25 ----D---- C:\Program Files (x86)\Diablo II
2013-10-14 18:26:17 ----AT---- C:\Windows\SYSWOW64\SIntfNT.dll
2013-10-14 18:26:17 ----AT---- C:\Windows\SYSWOW64\SIntf32.dll
2013-10-14 18:26:17 ----AT---- C:\Windows\SYSWOW64\SIntf16.dll
2013-10-14 15:50:56 ----D---- C:\Users\ASUS\AppData\Roaming\vegas120
2013-10-13 19:52:39 ----D---- C:\Users\ASUS\AppData\Roaming\Publish Providers
2013-10-13 19:50:26 ----D---- C:\ProgramData\Sony
2013-10-13 19:50:26 ----D---- C:\Program Files\Sony
2013-10-13 19:50:26 ----D---- C:\Program Files (x86)\Sony
2013-10-13 19:43:37 ----D---- C:\Users\ASUS\AppData\Roaming\Sony

======List of files/folders modified in the last 1 month======

2013-11-11 20:12:43 ----D---- C:\Windows\system32\config
2013-11-11 19:52:43 ----D---- C:\Windows\System32
2013-11-11 19:52:43 ----D---- C:\Windows\inf
2013-11-11 19:52:43 ----A---- C:\Windows\system32\PerfStringBackup.INI
2013-11-11 19:46:31 ----D---- C:\ProgramData\NVIDIA
2013-11-11 19:43:39 ----D---- C:\Program Files (x86)\DAEMON Tools Toolbar
2013-11-11 19:43:36 ----RD---- C:\Program Files (x86)
2013-11-11 19:43:36 ----D---- C:\Windows\Tasks
2013-11-11 19:43:22 ----SHD---- C:\System Volume Information
2013-11-11 19:43:02 ----D---- C:\Windows\SysWOW64
2013-11-11 19:39:46 ----D---- C:\Users\ASUS\AppData\Roaming\Skype
2013-11-11 15:07:50 ----D---- C:\ProgramData\eSafe
2013-11-11 07:00:48 ----SHD---- C:\Windows\Installer
2013-11-11 07:00:20 ----D---- C:\Windows\system32\DriverStore
2013-11-11 07:00:20 ----D---- C:\Windows\system32\drivers
2013-11-11 07:00:20 ----D---- C:\Windows\system32\catroot
2013-11-11 06:59:34 ----RD---- C:\Program Files
2013-11-11 06:59:34 ----D---- C:\ProgramData
2013-11-10 18:59:12 ----D---- C:\Windows
2013-11-10 18:59:12 ----A---- C:\Windows\system.ini
2013-11-10 18:59:04 ----D---- C:\Windows\system32\drivers\etc
2013-11-10 18:54:43 ----D---- C:\Windows\SYSWOW64\drivers
2013-11-10 18:54:43 ----D---- C:\Windows\AppPatch
2013-11-10 18:54:42 ----D---- C:\Program Files (x86)\Common Files
2013-11-10 16:31:12 ----D---- C:\Windows\Logs
2013-11-10 16:30:49 ----D---- C:\Program Files (x86)\Steam
2013-11-10 16:14:08 ----D---- C:\Windows\system32\Tasks
2013-11-10 14:35:10 ----D---- C:\Users\ASUS\AppData\Roaming\Seznam.cz
2013-11-10 14:12:39 ----D---- C:\Users\ASUS\AppData\Roaming\DefaultTab
2013-11-10 14:12:38 ----D---- C:\Program Files (x86)\Movies Toolbar
2013-11-10 14:12:01 ----D---- C:\ProgramData\Wincert
2013-11-09 22:24:21 ----D---- C:\Users\ASUS\AppData\Roaming\com.flash.WidgetBrowser
2013-11-09 17:26:58 ----D---- C:\Users\ASUS\AppData\Roaming\DAEMON Tools Lite
2013-11-09 17:26:47 ----D---- C:\Windows\Minidump
2013-11-09 17:14:29 ----D---- C:\Windows\Prefetch
2013-11-09 13:47:10 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2013-11-09 13:47:06 ----RSD---- C:\Windows\assembly
2013-11-09 13:46:52 ----D---- C:\Windows\winsxs
2013-11-08 21:54:59 ----D---- C:\Program Files (x86)\OBS
2013-11-08 17:11:13 ----D---- C:\Windows\system32\wdi
2013-11-07 21:20:11 ----D---- C:\Windows\system32\LogFiles
2013-11-07 19:36:41 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2013-11-06 22:06:34 ----D---- C:\Windows\system32\catroot2
2013-11-06 18:31:46 ----D---- C:\Users\ASUS\AppData\Roaming\.technic
2013-11-06 18:29:42 ----D---- C:\Program Files (x86)\Ford Racing 2
2013-11-06 16:10:26 ----D---- C:\Program Files (x86)\RealNetworks
2013-11-06 16:09:34 ----D---- C:\Program Files (x86)\Real
2013-11-06 16:09:28 ----D---- C:\ProgramData\Real
2013-11-06 16:09:23 ----A---- C:\Windows\SYSWOW64\rmoc3260.dll
2013-11-06 16:09:16 ----A---- C:\Windows\SYSWOW64\pndx5032.dll
2013-11-06 16:09:16 ----A---- C:\Windows\SYSWOW64\pndx5016.dll
2013-11-06 16:09:15 ----A---- C:\Windows\SYSWOW64\pncrt.dll
2013-11-06 16:09:10 ----A---- C:\Windows\SYSWOW64\msvcr71.dll
2013-11-06 16:09:10 ----A---- C:\Windows\SYSWOW64\msvcp71.dll
2013-11-06 15:43:42 ----D---- C:\Windows\system32\NDF
2013-11-05 18:03:09 ----D---- C:\ProgramData\PMB Files
2013-11-05 16:10:01 ----D---- C:\ProgramData\Skype
2013-11-05 16:09:54 ----RD---- C:\Program Files (x86)\Skype
2013-11-04 16:34:01 ----D---- C:\Users\ASUS\AppData\Roaming\.minecraft
2013-10-14 17:02:30 ----D---- C:\Users\ASUS\AppData\Roaming\Audacity
2013-10-13 17:13:05 ----D---- C:\Windows\system32\drivers\UMDF

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 epfwwfp;epfwwfp; C:\Windows\system32\DRIVERS\epfwwfp.sys [2013-09-17 62136]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2009-07-14 214096]
R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2013-03-29 834544]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2009-07-14 514048]
R1 eamonm;eamonm; C:\Windows\system32\DRIVERS\eamonm.sys [2013-09-17 239320]
R1 ehdrv;ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [2013-09-17 168256]
R1 EpfwLWF;Epfw NDIS LightWeight Filter; C:\Windows\system32\DRIVERS\EpfwLWF.sys [2013-09-17 44120]
R2 epfw;epfw; C:\Windows\system32\DRIVERS\epfw.sys [2013-09-17 220232]
R3 hamachi;Hamachi Network Interface; C:\Windows\system32\DRIVERS\hamachi.sys [2009-03-18 33856]
R3 L1E;NDIS Miniport Driver for Atheros AR8121/AR8113/AR8114 PCI-E Ethernet Controller(NDIS6.20); C:\Windows\system32\DRIVERS\L1E62x64.sys [2009-06-20 54272]
R3 NVHDA;Service for NVIDIA High Definition Audio Driver; C:\Windows\system32\drivers\nvhda64v.sys [2012-12-19 194488]
R3 VIAHdAudAddService;VIA High Definition Audio Driver Service; C:\Windows\system32\drivers\viahduaa.sys [2009-10-21 1270784]
S3 afvb2ite;afvb2ite; C:\Windows\system32\drivers\afvb2ite.sys []
S3 AIDA64Driver;FinalWire AIDA64 Kernel Driver; \??\C:\Program Files (x86)\FinalWire\AIDA64 Extreme Edition\kerneld.x64 [2012-10-28 30624]
S3 androidusb;SAMSUNG Android Composite ADB Interface Driver; C:\Windows\System32\Drivers\ssadadb.sys [2011-05-13 36328]
S3 BridgeMP;@%SystemRoot%\system32\bridgeres.dll,-1; C:\Windows\system32\DRIVERS\bridge.sys [2009-07-14 95232]
S3 BthEnum;Služba Bluetooth Enumerator; C:\Windows\system32\DRIVERS\BthEnum.sys [2009-07-14 41984]
S3 BthPan;Zařízení Bluetooth (síť PAN); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
S3 BTHPORT;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2009-07-14 551936]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2009-07-14 79360]
S3 catchme;catchme; \??\C:\ComboFix\catchme.sys []
S3 fssfltr;FssFltr; C:\Windows\system32\DRIVERS\fssfltr.sys [2012-09-12 57856]
S3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2009-09-23 6180832]
S3 pciide;pciide; C:\Windows\system32\DRIVERS\pciide.sys [2009-07-14 12352]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2009-07-14 165376]
S3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
S3 s3cap;s3cap; C:\Windows\system32\DRIVERS\vms3cap.sys [2009-07-14 6656]
S3 ssadbus;SAMSUNG Android USB Composite Device driver (WDM); C:\Windows\system32\DRIVERS\ssadbus.sys [2011-05-13 157672]
S3 ssadmdfl;SAMSUNG Android USB Modem (Filter); C:\Windows\system32\DRIVERS\ssadmdfl.sys [2011-05-13 16872]
S3 ssadmdm;SAMSUNG Android USB Modem Drivers; C:\Windows\system32\DRIVERS\ssadmdm.sys [2011-05-13 177640]
S3 ssadserd;SAMSUNG Android USB Diagnostic Serial Port (WDM); C:\Windows\system32\DRIVERS\ssadserd.sys [2011-05-13 146920]
S3 storvsc;storvsc; C:\Windows\system32\DRIVERS\storvsc.sys [2009-07-14 34896]
S3 usbscan;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2009-07-14 41984]
S3 V0700Vid;Creative Live! Cam Chat HD Driver; C:\Windows\system32\DRIVERS\V0700Vid.sys [2011-09-07 393920]
S3 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\system32\DRIVERS\vmbus.sys [2009-07-14 200272]
S3 VMBusHID;VMBusHID; C:\Windows\system32\DRIVERS\VMBusHID.sys [2009-07-14 21760]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2009-07-14 40448]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe [2013-09-12 1337752]
R2 Hamachi2Svc;LogMeIn Hamachi Tunneling Engine; C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe [2013-10-31 2756944]
R2 LMIGuardianSvc;LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [2013-10-11 377104]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2013-03-15 877856]
R2 nvUpdatusService;NVIDIA Update Service Daemon; C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2013-03-15 1266464]
R2 RealNetworks Downloader Resolver Service;RealNetworks Downloader Resolver Service; C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe [2013-08-14 39056]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2013-03-14 383264]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2012-07-17 2292480]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S3 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2010-03-18 44376]
S3 fsssvc;Windows Live Zabezpečení rodiny; C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe [2009-02-06 533360]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe [2006-10-27 65824]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2013-11-06 119408]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2006-10-26 441136]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2013-04-19 543656]
S3 StorSvc;@%SystemRoot%\System32\StorSvc.dll,-100; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]

-----------------EOF-----------------
Nahoru
Márty84
VIP
VIP
Příspěvky: 21679
Registrován: 05 pro 2009 20:08
Bydliště: Ostrava

Re: Kontrola logu

#27 Příspěvek od Márty84 »

:!: Vsechny tyto programy - vcetne pripadne instalace - spoustejte jako spravce (kliknete na ne pravym mysidlem a zvolte - Spustit jako spravce)

:arrow: Prejmenujte ComboFix na Uninstall a spustte ho. CF by se mel odinstalovat.

:arrow:
vyosek píše: :arrow: T-Cleaner http://tharifas.sweb.cz/T-Cleaner.exe
  • Stahnete a spustte
  • Pro potvrzeni volby mackejte A, Enter
  • Po pouziti utilitu smazte
  • Antiviry mohou utilitu chybne oznacit jako vir - jedna se o falesny poplach - takze v pohode stahnete (pripadne vypnete pri stahovani antivir)
:arrow: Stahnete OTC http://oldtimer.geekstogo.com/OTC.exe , ulozte a spustte.
Kliknete na napis CleanUp a pote OK - Po uklidu dojde k restartu pc.

:arrow: Stahnete TFC http://oldtimer.geekstogo.com/TFC.exe , ulozte a spustte
Kliknete na START a pote OK - Po uklidu dojde k restartu pc.
Po pouziti muzete programek smazat

:arrow: Stahnete Ccleaner http://www.stahuj.centrum.cz/utility_a_ ... /ccleaner/ a spustte.
Pri instalaci pozor na toolbar (ci jine doplnky), jestli vam nabidne jeho instalaci, tak zruste zatrzitko.
Po spusteni se ocitnete ve funkci Cistic. Vlevo je spousta zatrzitek. Pozor dejte hlavne na kos, pokud nechate zatrzene, vzdy ho vysype.
Dale, podle toho jak je nastaven, smaze vsechna hesla ulozena na netu!!! Takze jestli mate nastavene, at si pocitac hesla pamatuje (coz neni pro bezpecnost dobre), budete je muset pak napsat znova rucne (napr mail, facebook, ruzna fora atd.)
Kliknete na Analyzovat a az dokonci analyzu, kliknete na Spustit Cleaner.
Potom kliknete vlevo na funkci Registry
Kliknete na Hledej problemy, kdyz najde, kliknete na Opravit problemy. Nabidne Vam zalohu, tu udelejte a ulozte ji tak, at ji v pripade potreby najdete.
Funkce Nastroje umoznuje odinstalovani programu. Je dukladnejsi nez samotny windows!

:arrow: Defragmentujte disk(y)
Stahnete program Defraggler http://www.stahuj.centrum.cz/utility_a_ ... efraggler/
Pri instalaci opet pozor na toolbar
Po nainstalovani program spustte a kliknete na Analyzovat, po analyze kliknete na Defragmentovat a programek odvede svou praci.




:arrow: Pak napiste, jak je na tom pc.
Pokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz

Možnost podpořit naše fórum https://platba.viry.cz/payment/

Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Nahoru
Madmaxik
Návštěvník
Návštěvník
Příspěvky: 110
Registrován: 09 lis 2013 17:28

Re: Kontrola logu

#28 Příspěvek od Madmaxik »

PC je teď o něco výkonější. :)
Po defragmentaci jsem v programu Piriform Defraggler udělal test výkonů disku a ukázalo se mi, že hardisk je zatím v dobrém stavu, ale ukázalo mi to neopravitelné chyby. :)
Mám udělat ještě sken v RSIT?
Nebo mám požádat o kontrolu až za 3-4 týdny?

Jinak jestli je to vše tak vám moc děkuji a určitě doporučím stránku viry.cz i mým přátelům. :)
Nahoru
Márty84
VIP
VIP
Příspěvky: 21679
Registrován: 05 pro 2009 20:08
Bydliště: Ostrava

Re: Kontrola logu

#29 Příspěvek od Márty84 »

Madmaxik píše:Po defragmentaci jsem v programu Piriform Defraggler udělal test výkonů disku a ukázalo se mi, že hardisk je zatím v dobrém stavu, ale ukázalo mi to neopravitelné chyby. :)
No, jsou tam, vsak proto doporucuji ty pravidelne zalohy :wink:


Je ted s pc nejaky problem? Pokud se pc chova jak ma, rekl bych, ze mame hotovo a dalsi skeny nejsou potreba. Jestli je nejaky problem, napiste jaky a ja napisu, jaky sken potrebuji :)

Nemate zac! :wink:
Klidne doporucujte :thumbsup:
Pokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz

Možnost podpořit naše fórum https://platba.viry.cz/payment/

Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Nahoru
Madmaxik
Návštěvník
Návštěvník
Příspěvky: 110
Registrován: 09 lis 2013 17:28

Re: Kontrola logu

#30 Příspěvek od Madmaxik »

Pc je v se chová jak má můžete dát lock a ještě jednou vám moc děkuji a doufám, že se tady zase někdy potkáme. :)
Nahoru
Zamčeno

Zpět na „Preventivní kontroly logů“