Prosím o preventivku.
Logfile of random's system information tool 1.09 (written by random/random)
Run by domishek at 2013-12-05 16:52:11
Microsoft® Windows Vista™ Ultimate Service Pack 2
System drive C: has 24 GB (10%) free of 238 GB
Total RAM: 2046 MB (42% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 16:52:25, on 5. 12. 2013
Platform: Windows Vista SP2 (WinNT 6.00.1906)
MSIE: Internet Explorer v9.00 (9.00.8112.16520)
Boot mode: Normal
Running processes:
C:\Windows\system32\taskeng.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Users\domishek\AppData\Local\Google\Update\GoogleUpdate.exe
C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
C:\Windows\System32\mobsync.exe
C:\Users\domishek\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\domishek\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\domishek\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\domishek\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\domishek\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\domishek\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Users\domishek\Saved Games\Downloads\RSIT.exe
C:\Program Files\trend micro\domishek.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O1 - Hosts: ::1 localhost
O2 - BHO: Media Access Startup - {25B8D58C-B0CB-46b0-BA64-05B3804E4E86} - (no file)
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG10\avgssie.dll
O3 - Toolbar: (no name) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - (no file)
O3 - Toolbar: (no name) - {bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} - (no file)
O4 - HKCU\..\Run: [Google Update] "C:\Users\domishek\AppData\Local\Google\Update\GoogleUpdate.exe" /c
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-21-1055357281-2900607726-3267283594-1009\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'UpdatusUser')
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: GetStyles - {14CD42DD-ABCD-3586-DCAB-40E3693E3737} - (no file)
O9 - Extra 'Tools' menuitem: GetStyles - {14CD42DD-ABCD-3586-DCAB-40E3693E3737} - (no file)
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - (no file)
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - (no file)
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {1D4DB7D2-6EC9-47A3-BD87-1E41684E07BB} - http://ak.exe.imgfarm.com/images/nocach ... .0.1.1.cab
O16 - DPF: {8100D56A-5661-482C-BEE8-AFECE305D968} (Facebook Photo Uploader 5 Control) - http://upload.facebook.com/controls/200 ... ader55.cab
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG10\avgpp.dll
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Filter hijack: text/html - {574940E0-1B7A-4881-8FA3-1E809714B156} - (no file)
O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\Windows\system32\browseui.dll
O23 - Service: AVG Security Toolbar Service - Unknown owner - C:\Program Files\AVG\AVG10\Toolbar\ToolbarBroker.exe
O23 - Service: AVG Firewall (avgfws) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG10\avgfws.exe
O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG10\avgwdsvc.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: NOD32 Kernel Service (NOD32krn) - Eset - C:\Program Files\Eset\nod32krn.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files\Common Files\Steam\SteamService.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
--
End of file - 6126 bytes
======Scheduled tasks folder======
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1055357281-2900607726-3267283594-1008Core.job
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1055357281-2900607726-3267283594-1008UA.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{25B8D58C-B0CB-46b0-BA64-05B3804E4E86}]
Media Access Startup
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}]
AVG Safe Search - C:\Program Files\AVG\AVG10\avgssie.dll [2011-09-09 2276704]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{CCC7A320-B3CA-4199-B1A6-9F516DD69829}
{bf7380fa-e3b4-4db2-af3e-9d8783a45bfc}
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Google Update"=C:\Users\domishek\AppData\Local\Google\Update\GoogleUpdate.exe [2013-01-07 116648]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfPf]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfRd]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfUsbccidDriver]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableUIADesktopToggle"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"BindDirectlyToPropertySetStorage"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvyu"=msyuv.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.i420"=i420vfw.dll
"vidc.yvu9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.cvid"=iccvid.dll
"vidc.VP60"=C:\Windows\system32\vp6vfw.dll
"vidc.VP61"=C:\Windows\system32\vp6vfw.dll
"msacm.iac2"=C:\Windows\system32\iac25_32.ax
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"vidc.yv12"=yv12vfw.dll
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2013-12-05 16:52:12 ----D---- C:\Program Files\trend micro
2013-12-05 16:52:11 ----D---- C:\rsit
2013-11-13 17:49:02 ----A---- C:\Windows\system32\FNTCACHE.DAT
2013-11-13 15:18:04 ----A---- C:\Windows\system32\mshtmled.dll
2013-11-13 15:18:03 ----A---- C:\Windows\system32\vbscript.dll
2013-11-13 15:18:02 ----A---- C:\Windows\system32\jsproxy.dll
2013-11-13 15:18:02 ----A---- C:\Windows\system32\ieui.dll
2013-11-13 15:18:01 ----A---- C:\Windows\system32\ieUnatt.exe
2013-11-13 15:18:00 ----A---- C:\Windows\system32\wininet.dll
2013-11-13 15:18:00 ----A---- C:\Windows\system32\msfeeds.dll
2013-11-13 15:18:00 ----A---- C:\Windows\system32\jscript.dll
2013-11-13 15:17:59 ----A---- C:\Windows\system32\url.dll
2013-11-13 15:17:59 ----A---- C:\Windows\system32\jscript9.dll
2013-11-13 15:17:58 ----A---- C:\Windows\system32\iertutil.dll
2013-11-13 15:17:56 ----A---- C:\Windows\system32\urlmon.dll
2013-11-13 15:17:54 ----A---- C:\Windows\system32\ieframe.dll
2013-11-13 15:17:53 ----A---- C:\Windows\system32\mshtml.dll
2013-11-13 14:51:05 ----A---- C:\Windows\system32\gdi32.dll
2013-11-13 14:51:03 ----A---- C:\Windows\system32\IKEEXT.DLL
2013-11-13 14:51:02 ----A---- C:\Windows\system32\FWPUCLNT.DLL
2013-11-13 14:50:56 ----A---- C:\Windows\system32\crypt32.dll
======List of files/folders modified in the last 1 month======
2013-12-05 16:52:25 ----D---- C:\Windows\Prefetch
2013-12-05 16:52:16 ----D---- C:\Windows\Temp
2013-12-05 16:52:12 ----RD---- C:\Program Files
2013-12-05 16:27:52 ----SHD---- C:\Windows\Installer
2013-12-05 16:27:52 ----SHD---- C:\Config.Msi
2013-12-05 16:26:36 ----D---- C:\Windows\System32
2013-12-05 16:17:19 ----A---- C:\Windows\system32\PerfStringBackup.INI
2013-12-05 16:17:18 ----D---- C:\Windows\inf
2013-12-05 16:12:51 ----D---- C:\ProgramData\NVIDIA
2013-12-05 12:01:11 ----D---- C:\Windows\system32\drivers\AVG
2013-12-03 10:05:18 ----SHD---- C:\System Volume Information
2013-12-02 10:00:46 ----D---- C:\Windows\Minidump
2013-12-02 10:00:46 ----D---- C:\Windows
2013-12-01 11:53:52 ----D---- C:\Windows\system32\catroot2
2013-11-25 20:18:42 ----D---- C:\ProgramData\Microsoft Help
2013-11-13 18:07:28 ----D---- C:\Windows\rescache
2013-11-13 17:47:56 ----D---- C:\Windows\system32\migration
2013-11-13 17:47:54 ----D---- C:\Program Files\Internet Explorer
2013-11-13 17:47:53 ----D---- C:\Windows\system32\sk-SK
2013-11-13 15:18:29 ----D---- C:\Windows\winsxs
2013-11-13 15:18:21 ----D---- C:\Windows\system32\catroot
2013-11-13 15:16:04 ----D---- C:\Windows\system32\MRT
2013-11-13 15:13:26 ----D---- C:\Windows\Debug
2013-11-13 15:13:18 ----A---- C:\Windows\system32\mrt.exe
2013-11-13 15:08:20 ----RD---- C:\Users
2013-11-13 15:07:38 ----D---- C:\PFiles
2013-11-13 14:53:42 ----SHD---- C:\Boot
2013-11-13 14:52:55 ----D---- C:\Windows\system32\config
2013-11-13 14:32:17 ----D---- C:\Windows\SoftwareDistribution
2013-11-12 19:25:38 ----D---- C:\Windows\Tasks
2013-11-12 19:25:38 ----D---- C:\Windows\system32\Tasks
2013-11-09 17:08:26 ----D---- C:\Program Files\EA GAMES
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 AVGIDSEH;AVGIDSEH; C:\Windows\system32\DRIVERS\AVGIDSEH.Sys [2011-02-22 22992]
R0 Avgrkx86;AVG Anti-Rootkit Driver; C:\Windows\system32\DRIVERS\avgrkx86.sys [2011-03-16 32592]
R0 fvevol;BitLocker Drive Encryption Filter Driver; C:\Windows\System32\DRIVERS\fvevol.sys [2009-04-11 143848]
R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2011-10-04 443448]
R1 Avgfwfd;AVG network filter service; C:\Windows\system32\DRIVERS\avgfwd6x.sys [2010-07-12 54112]
R1 Avgldx86;AVG AVI Loader Driver; C:\Windows\system32\DRIVERS\avgldx86.sys [2012-11-12 255968]
R1 Avgmfx86;AVG Mini-Filter Resident Anti-Virus Shield; C:\Windows\system32\DRIVERS\avgmfx86.sys [2011-03-01 34896]
R1 Avgtdix;AVG TDI Driver; C:\Windows\system32\DRIVERS\avgtdix.sys [2011-04-04 297168]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2013-07-31 232512]
R1 nod32drv;nod32drv; C:\Windows\system32\drivers\nod32drv.sys [2009-02-03 15424]
R2 AMON;AMON; C:\Windows\system32\drivers\amon.sys [2009-02-03 512096]
R3 AVGIDSDriver;AVGIDSDriver; C:\Windows\system32\DRIVERS\AVGIDSDriver.Sys [2011-05-27 134480]
R3 AVGIDSFilter;AVGIDSFilter; C:\Windows\system32\DRIVERS\AVGIDSFilter.Sys [2011-02-10 24144]
R3 AVGIDSShim;AVGIDSShim; C:\Windows\system32\DRIVERS\AVGIDSShim.Sys [2011-02-10 28624]
R3 HdAudAddService;Microsoft 1.1 UAA Function Driver for High Definition Audio Service; C:\Windows\system32\drivers\HdAudio.sys [2009-04-11 236544]
R3 nvlddmkm;nvlddmkm; C:\Windows\system32\DRIVERS\nvlddmkm.sys [2013-02-25 8939296]
R3 RTL8169;Realtek 8169 NT Driver; C:\Windows\system32\DRIVERS\Rtlh86.sys [2008-02-14 118784]
R3 WUDFRd;WUDFRd; C:\Windows\system32\DRIVERS\WUDFRd.sys [2008-01-19 83328]
S3 ab04tu7a;ab04tu7a; C:\Windows\system32\drivers\ab04tu7a.sys []
S3 asx7pmez;asx7pmez; C:\Windows\system32\drivers\asx7pmez.sys []
S3 drmkaud;Microsoft Kernel DRM Audio Descrambler; C:\Windows\system32\drivers\drmkaud.sys [2008-01-19 5632]
S3 hamachi;Hamachi Network Interface; C:\Windows\system32\DRIVERS\hamachi.sys [2009-04-01 25280]
S3 MSKSSRV;Microsoft Streaming Service Proxy; C:\Windows\system32\drivers\MSKSSRV.sys [2008-01-19 8192]
S3 MSPCLOCK;Microsoft Streaming Clock Proxy; C:\Windows\system32\drivers\MSPCLOCK.sys [2008-01-19 5888]
S3 MSPQM;Microsoft Streaming Quality Manager Proxy; C:\Windows\system32\drivers\MSPQM.sys [2008-01-19 5504]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\Windows\system32\drivers\MSTEE.sys [2008-01-19 6016]
S3 pcouffin;VSO Software pcouffin; C:\Windows\System32\Drivers\pcouffin.sys [2011-10-04 47360]
S3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv; \??\C:\Program Files\TuneUp Utilities 2012\TuneUpUtilitiesDriver32.sys []
S3 usbscan;USB Scanner Driver; C:\Windows\system32\DRIVERS\usbscan.sys [2013-07-03 35328]
S3 winusb;WinUSB Service; C:\Windows\system32\DRIVERS\winusb.sys [2009-04-11 31616]
S3 WpdUsb;WpdUsb; C:\Windows\system32\DRIVERS\wpdusb.sys [2008-01-19 39936]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 avgfws;AVG Firewall; C:\Program Files\AVG\AVG10\avgfws.exe [2011-03-09 2708024]
R2 avgwd;AVG WatchDog; C:\Program Files\AVG\AVG10\avgwdsvc.exe [2011-02-08 269520]
R2 FontCache;@%systemroot%\system32\FntCache.dll,-100; C:\Windows\system32\svchost.exe [2008-01-19 21504]
R2 NOD32krn;NOD32 Kernel Service; C:\Program Files\Eset\nod32krn.exe [2009-02-03 552064]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2013-01-18 639776]
R2 nvUpdatusService;NVIDIA Update Service Daemon; C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2013-02-25 1260320]
R2 RapiMgr;@%windir%\WindowsMobile\rapimgr.dll,-104; C:\Windows\system32\svchost.exe [2008-01-19 21504]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2013-01-18 383264]
R2 WcesComm;@%windir%\WindowsMobile\wcescomm.dll,-40079; C:\Windows\system32\svchost.exe [2008-01-19 21504]
S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2012-07-13 160944]
S3 AVG Security Toolbar Service;AVG Security Toolbar Service; C:\Program Files\AVG\AVG10\Toolbar\ToolbarBroker.exe [2011-11-10 167264]
S3 gusvc;Google Updater Service; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2011-05-09 136120]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe [2009-02-26 64856]
S3 NBService;NBService; C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe [2006-11-10 774144]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 Steam Client Service;Steam Client Service; C:\Program Files\Common Files\Steam\SteamService.exe [2011-04-30 403240]
-----------------EOF-----------------
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
preventivka
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Re: preventivka
Zdravim 
Stahnete OTL http://oldtimer.geekstogo.com/OTL.exe a ulozte na plochu.
Kliknete na nej pravym mysidlem a levym na Spustit jako spravce
Oznacte polozky (dejte tam zatrzitka) Pro všechny uživatele, Kontrola na havěť "LOP" a Kontrola na havěť "Purity"
Do spodniho okna vlozte nasledujici text
Kliknete na Prohledat
Po skenu se vytvori dva logy (OTL.Txt a Extras.txt), oba sem vlozte (kdyz budou dlouhe, rozdelte je do vice prispevku).
Stahnete OTL http://oldtimer.geekstogo.com/OTL.exe a ulozte na plochu.Kliknete na nej pravym mysidlem a levym na Spustit jako spravce
Oznacte polozky (dejte tam zatrzitka) Pro všechny uživatele, Kontrola na havěť "LOP" a Kontrola na havěť "Purity"
Do spodniho okna vlozte nasledujici text
Kód: Vybrat vše
CREATERESTOREPOINT
netsvcs
drivers32
savembr:0
/md5start
adp3132.sys
AGP440.sys
ahcix86.sys
ahcix86s.sys
atapi.sys
autochk.exe
cdrom.sys
cngaudit.dll
cryptsvc.dll
eNetHook.dll
eventlog.dll
explorer.exe
hal.dll
Changer.sys
iaStor.sys
iastorv.sys
IdeChnDr.sys
isapnp.sys
JakNDis.sys
KR10N.sys
logevent.dll
lsass.exe
mv61xx.sys
ndis.sys
netlogon.dll
ntelogon.dll
nvata.sys
nvatabus.sys
nvgts.sys
nvraid.sys
nvrd32.sys
nvstor.sys
nvstor32.sys
scecli.dll
sceclt.dll
smss.exe
svchost.exe
symmpi.sys
tcpip.sys
userinit.exe
vaxscsi.sys
viamraid.sys
viasraid.sys
ViPrt.sys
winlogon.exe
ws2_32.dll
/md5stop
%systemroot%*.* /U /s
%SYSTEMDRIVE%\*.exe
%ALLUSERSPROFILE%\Application Data\*.
%ALLUSERSPROFILE%\Application Data\*.exe /s
%APPDATA%\*.
%APPDATA%\*.exe /s
%systemroot%\*. /mp /s
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\Tasks\*.job /lockedfiles
%systemroot%\system32\drivers\*.sys /lockedfiles
%systemroot%\System32\config\*.sav
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\system32\drivers\*.sys /3
%systemroot%\system32\*.* /3
%SYSTEMDRIVE%\*.exe
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s
reg query "HKLM\Software\Microsoft\Windows NT\CurrentVersion\winlogon" /v GinaDLL /c
reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv" /v ImagePath /c
reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS" /v ImagePath /c
type c:\boot.ini >> test.txt /c
%SystemDrive%\PhysicalMBR.bin /md5
*crack* /s
*keygen* /s
*AntiWPA* /s
*loader* /s
*minodlogin* /s
*tnod* /s
*AutoKMS* /s
*activator* /s
*serial* /s
*w7lxe* /s
Po skenu se vytvori dva logy (OTL.Txt a Extras.txt), oba sem vlozte (kdyz budou dlouhe, rozdelte je do vice prispevku).
Pokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Re: preventivka
OTL Extras logfile created on: 7. 12. 2013 9:14:36 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\domishek\Desktop
Windows Vista Ultimate Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 0000041b | Country: Slovenská republika | Language: SKY | Date Format: d. M. yyyy
2,00 Gb Total Physical Memory | 0,77 Gb Available Physical Memory | 38,52% Memory free
4,23 Gb Paging File | 2,84 Gb Available in Paging File | 67,20% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 232,76 Gb Total Space | 22,76 Gb Free Space | 9,78% Space Free | Partition Type: NTFS
Computer Name: DODA-PC | User Name: domishek | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Extra Registry (SafeList) ==========
========== File Associations ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\System32\control.exe (Microsoft Corporation)
.hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation)
========== Shell Spawning ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
http [open] -- Reg Error: Value error.
https [open] -- Reg Error: Value error.
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe /separate,/idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /separate,/e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
========== Security Center Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
"VistaSp1" = Reg Error: Unknown registry data type -- File not found
"VistaSp2" = Reg Error: Unknown registry data type -- File not found
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]
========== Firewall Settings ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 0
========== Authorized Applications List ==========
========== Vista Active Open Ports Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{0A677552-FC3B-4830-BB3C-1B6DF0252520}" = rport=137 | protocol=17 | dir=out | app=system |
"{2BB7A8AD-033E-48FC-8FE9-ACE341BF2B13}" = lport=139 | protocol=6 | dir=in | app=system |
"{53ADDA94-5D77-475E-9BE3-68BE6BB2EEDD}" = lport=137 | protocol=17 | dir=in | app=system |
"{5E6FBBD8-FF7C-44B4-8BD7-712124AC1B3B}" = lport=138 | protocol=17 | dir=in | app=system |
"{6A2DE1BE-695E-4BD8-89BF-4A4B072C3F90}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
"{71B6D161-C2C5-48F5-A7A9-588D6ACDEDC3}" = rport=139 | protocol=6 | dir=out | app=system |
"{91B0256C-4D90-4D51-B06D-812B3973F15E}" = rport=138 | protocol=17 | dir=out | app=system |
"{AD7ECCA1-2EE7-47DE-9137-1C905797BDC9}" = lport=8396 | protocol=6 | dir=in | name=league of legends launcher |
"{B67F9D6C-9350-42AC-9CE0-A73B70CE2A95}" = lport=6991 | protocol=6 | dir=in | name=league of legends launcher |
"{C00004D1-7EAB-4899-9894-2BF06FFBC3CE}" = lport=6991 | protocol=17 | dir=in | name=league of legends launcher |
"{C006B86F-492F-48C0-B71B-1E801FD655BF}" = lport=445 | protocol=6 | dir=in | app=system |
"{D592DA5C-2453-429B-81FF-78706033F38B}" = lport=8396 | protocol=17 | dir=in | name=league of legends launcher |
"{E972534C-0A5A-47ED-A04E-0EC281496EBD}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 |
"{F93B8D42-44C5-4114-919C-B0E8CFC0C146}" = rport=445 | protocol=6 | dir=out | app=system |
========== Vista Active Application Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{18BF486D-680B-4271-BD43-BD6317ED232B}" = protocol=6 | dir=in | app=c:\program files\avg\avg10\avgmfapx.exe |
"{2ACB52C5-FC92-4BA1-818D-9DE8D98E3447}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 |
"{43CE1E7D-9085-4978-880A-5D2BCF1D406E}" = protocol=17 | dir=in | app=c:\program files\microsoft office\office12\onenote.exe |
"{51CC214C-85D4-4B28-991B-190AFFAD3DA5}" = protocol=58 | dir=out | name=@iphlpsvc.dll,-203 |
"{841EAE6A-2EEF-4305-9BD6-CD539536C95B}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 |
"{96E3DCE1-ADA8-474B-B844-698454BB69F3}" = protocol=58 | dir=in | app=system |
"{9B2DE36C-C462-407B-A57E-1E8A81418C75}" = protocol=6 | dir=in | app=c:\program files\microsoft office\office12\onenote.exe |
"{B37027DA-4827-466A-8FC6-21E28A60065C}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 |
"{B3FA8584-DBCB-475F-8A15-4951C7F53D0E}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{BEADF705-6C0C-4583-86EF-281ADC946195}" = protocol=17 | dir=in | app=c:\program files\microsoft office\office12\groove.exe |
"{C42AAAE5-0BF6-4551-9203-66E9A4980405}" = protocol=6 | dir=in | app=c:\program files\microsoft office\office12\groove.exe |
"{E5E742CD-EE8F-4F1B-A5DB-D73FD67E7930}" = protocol=17 | dir=in | app=c:\program files\avg\avg10\avgmfapx.exe |
"{F044EA9A-DADB-4B06-BDBE-CB81E78B47AA}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 |
"TCP Query User{E223E308-E0A3-47D4-9705-8C8F94C8ED32}C:\program files\internet explorer\iexplore.exe" = protocol=6 | dir=in | app=c:\program files\internet explorer\iexplore.exe |
"TCP Query User{F15AE2AC-955B-4F9D-8ABE-732510F67E37}C:\windows\system32\wfs.exe" = protocol=6 | dir=in | app=c:\windows\system32\wfs.exe |
"TCP Query User{FEA4F226-29E2-42DF-8D8D-C146186E0EA9}C:\windows\explorer.exe" = protocol=6 | dir=in | app=c:\windows\explorer.exe |
"UDP Query User{18806FD5-0B1A-4695-BDD6-1EF0800B815D}C:\windows\system32\wfs.exe" = protocol=17 | dir=in | app=c:\windows\system32\wfs.exe |
"UDP Query User{9E8D7F3E-F3AB-4397-B305-1C57490F2FAA}C:\program files\internet explorer\iexplore.exe" = protocol=17 | dir=in | app=c:\program files\internet explorer\iexplore.exe |
"UDP Query User{B2C49697-5908-4D15-8277-51E0523385B1}C:\windows\explorer.exe" = protocol=17 | dir=in | app=c:\windows\explorer.exe |
========== HKEY_LOCAL_MACHINE Uninstall List ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{00000405-78E1-11D2-B60F-006097C998E7}" = Microsoft Office 2000 Premium
"{137EA7E1-D30B-4373-B8B6-CB7E85107F6D}" = Angry Birds Rio
"{196BB40D-1578-3D01-B289-BEFC77A11A1E}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{3F5C371F-8EA2-4F25-9D3D-D0B4526E3AEA}" = NVIDIA PhysX
"{4817189D-1785-4627-A33C-39FD90919300}" = The Sims™ 2 Mazlíčci
"{4908C75E-E5E2-43F7-B1DF-023CBA831051}" = Nero 7 Ultra Edition
"{50316C0A-CC2A-460A-9EA5-F486E54AC17D}_is1" = AVG PC Tuneup 2011
"{550B69DF-9C7D-4988-9535-3D7526BC0A4E}_is1" = AMV Converter Studio V1.3.4
"{56C049BE-79E9-4502-BEA7-9754A3E60F9B}" = neroxml
"{6522C636-B04C-4333-9BEB-9E0C0B6350D6}" = The Sims™ 2 Koupelny a kuchyně Interiérový design Kolekce
"{656A70D4-98FD-41F8-B172-575F60C922BB}" = AVG 2011
"{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}" = Windows Media Player Firefox Plugin
"{6E17F9751-F056-4335-B718-8AF1B1092AFB}" = The Sims™ 2 IKEA® Domov Kolekce
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
"{84DDE556-43EF-43ed-B2DF-37AF9E5DDD75}" = The Sims™ 2 H&M® Móda Kolekce
"{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}" = Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570
"{90120000-0015-0405-0000-0000000FF1CE}" = Microsoft Office Access MUI (Czech) 2007
"{90120000-0015-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-0016-0405-0000-0000000FF1CE}" = Microsoft Office Excel MUI (Czech) 2007
"{90120000-0016-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-0018-0405-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (Czech) 2007
"{90120000-0018-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-0019-0405-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (Czech) 2007
"{90120000-0019-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-001A-0405-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (Czech) 2007
"{90120000-001A-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-001B-0405-0000-0000000FF1CE}" = Microsoft Office Word MUI (Czech) 2007
"{90120000-001B-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-001F-0405-0000-0000000FF1CE}" = Microsoft Office Proof (Czech) 2007
"{90120000-001F-0405-0000-0000000FF1CE}_ENTERPRISE_{0B7A4B67-2A38-42B1-9857-662FAB361E08}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
"{90120000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2007
"{90120000-001F-0407-0000-0000000FF1CE}_ENTERPRISE_{928D7B99-2BEA-49F9-83B8-20FA57860643}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-0409-0000-0000000FF1CE}_ENTERPRISE_{1FF96026-A04A-4C3E-B50A-BB7022654D0F}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
"{90120000-001F-041B-0000-0000000FF1CE}" = Microsoft Office Proof (Slovak) 2007
"{90120000-001F-041B-0000-0000000FF1CE}_ENTERPRISE_{FDF9A959-241A-4662-A8DE-7DED9C22D160}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
"{90120000-002C-0405-0000-0000000FF1CE}" = Microsoft Office Proofing (Czech) 2007
"{90120000-0030-0000-0000-0000000FF1CE}" = Microsoft Office Enterprise 2007
"{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-0044-0405-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (Czech) 2007
"{90120000-0044-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-006E-0405-0000-0000000FF1CE}" = Microsoft Office Shared MUI (Czech) 2007
"{90120000-006E-0405-0000-0000000FF1CE}_ENTERPRISE_{A0AAD4D5-9F9C-49BB-AB64-0FD4695424E8}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-00A1-0405-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (Czech) 2007
"{90120000-00A1-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-00BA-0405-0000-0000000FF1CE}" = Microsoft Office Groove MUI (Czech) 2007
"{90120000-00BA-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90140000-2005-0000-0000-0000000FF1CE}" = Microsoft Office File Validation Add-In
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{A8F2089B-1F79-4BF6-B385-A2C2B0B9A74D}" = ImagXpress
"{AC76BA86-7AD7-1029-7B44-A90000000001}" = Adobe Reader 9 - Czech
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision" = NVIDIA Ovládač 3D Vision 311.06
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel" = Ovládací panel NVIDIA 311.06
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver" = NVIDIA Grafický ovládač 311.06
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update" = Aktualizácie NVIDIA 1.11.3
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer" = NVIDIA Install Application
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NVIDIA.Update" = NVIDIA Update Components
"{B6CF2967-C81E-40C0-9815-C05774FEF120}" = Skype Click to Call
"{CAE7D1D9-3794-4169-B4DD-964ADBC534EE}" = HP Product Detection
"{D68ED35B-7D9B-4F5F-B38A-92286DDE2EBF}" = AVG 2011
"{DFEF49D9-FC95-4301-99B9-2FB91C6ABA06}" = The Sims™ 2 Seasons
"{EAA38532-7AD0-4f78-918A-4F4F02096ECE}" = The Sims™ 2 Pojďme slavit! Kolekce
"{EB2F05F5-3084-4E69-BC82-8C9A4FD82544}" = Setup
"{EE7257A2-39A2-4D2F-9DAC-F9F25B8AE1D8}" = Skype™ 5.10
"Adobe Shockwave Player" = Adobe Shockwave Player 11.5
"Any Video Converter_is1" = Any Video Converter 3.5.8
"AVG" = AVG 2011
"AVS Update Manager_is1" = AVS Update Manager 1.0
"AVS4YOU Software Navigator_is1" = AVS4YOU Software Navigator 1.4
"AVS4YOU Video Converter 7_is1" = AVS Video Converter 7
"CCleaner" = CCleaner
"DAEMON Tools Lite" = DAEMON Tools Lite
"ENTERPRISE" = Microsoft Office Enterprise 2007
"FilesFrog Update Checker" = FilesFrog Update Checker
"FormatFactory" = FormatFactory 2.50
"FTP Commander" = FTP Commander
"Chicken Invaders: Revenge of the Yolk (Christmas Edition)_is1" = Chicken Invaders: Revenge of the Yolk (Christmas Edition) v3.20
"Jazz Jackrabbit 2" = Jazz Jackrabbit 2
"NVIDIAStereo" = NVIDIA Stereoscopic 3D Driver
"Picasa 3" = Picasa 3
"Revo Uninstaller" = Revo Uninstaller 1.93
"Uninstall_is1" = Uninstall 1.0.0.1
"VLC media player" = VLC media player 1.1.5
"WinRAR archiver" = WinRAR
"Wise Registry Cleaner_is1" = Wise Registry Cleaner 4 Free 4.92
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\domishek\Desktop
Windows Vista Ultimate Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 0000041b | Country: Slovenská republika | Language: SKY | Date Format: d. M. yyyy
2,00 Gb Total Physical Memory | 0,77 Gb Available Physical Memory | 38,52% Memory free
4,23 Gb Paging File | 2,84 Gb Available in Paging File | 67,20% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 232,76 Gb Total Space | 22,76 Gb Free Space | 9,78% Space Free | Partition Type: NTFS
Computer Name: DODA-PC | User Name: domishek | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Extra Registry (SafeList) ==========
========== File Associations ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\System32\control.exe (Microsoft Corporation)
.hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation)
========== Shell Spawning ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
http [open] -- Reg Error: Value error.
https [open] -- Reg Error: Value error.
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe /separate,/idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /separate,/e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
========== Security Center Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
"VistaSp1" = Reg Error: Unknown registry data type -- File not found
"VistaSp2" = Reg Error: Unknown registry data type -- File not found
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]
========== Firewall Settings ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 0
========== Authorized Applications List ==========
========== Vista Active Open Ports Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{0A677552-FC3B-4830-BB3C-1B6DF0252520}" = rport=137 | protocol=17 | dir=out | app=system |
"{2BB7A8AD-033E-48FC-8FE9-ACE341BF2B13}" = lport=139 | protocol=6 | dir=in | app=system |
"{53ADDA94-5D77-475E-9BE3-68BE6BB2EEDD}" = lport=137 | protocol=17 | dir=in | app=system |
"{5E6FBBD8-FF7C-44B4-8BD7-712124AC1B3B}" = lport=138 | protocol=17 | dir=in | app=system |
"{6A2DE1BE-695E-4BD8-89BF-4A4B072C3F90}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
"{71B6D161-C2C5-48F5-A7A9-588D6ACDEDC3}" = rport=139 | protocol=6 | dir=out | app=system |
"{91B0256C-4D90-4D51-B06D-812B3973F15E}" = rport=138 | protocol=17 | dir=out | app=system |
"{AD7ECCA1-2EE7-47DE-9137-1C905797BDC9}" = lport=8396 | protocol=6 | dir=in | name=league of legends launcher |
"{B67F9D6C-9350-42AC-9CE0-A73B70CE2A95}" = lport=6991 | protocol=6 | dir=in | name=league of legends launcher |
"{C00004D1-7EAB-4899-9894-2BF06FFBC3CE}" = lport=6991 | protocol=17 | dir=in | name=league of legends launcher |
"{C006B86F-492F-48C0-B71B-1E801FD655BF}" = lport=445 | protocol=6 | dir=in | app=system |
"{D592DA5C-2453-429B-81FF-78706033F38B}" = lport=8396 | protocol=17 | dir=in | name=league of legends launcher |
"{E972534C-0A5A-47ED-A04E-0EC281496EBD}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 |
"{F93B8D42-44C5-4114-919C-B0E8CFC0C146}" = rport=445 | protocol=6 | dir=out | app=system |
========== Vista Active Application Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{18BF486D-680B-4271-BD43-BD6317ED232B}" = protocol=6 | dir=in | app=c:\program files\avg\avg10\avgmfapx.exe |
"{2ACB52C5-FC92-4BA1-818D-9DE8D98E3447}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 |
"{43CE1E7D-9085-4978-880A-5D2BCF1D406E}" = protocol=17 | dir=in | app=c:\program files\microsoft office\office12\onenote.exe |
"{51CC214C-85D4-4B28-991B-190AFFAD3DA5}" = protocol=58 | dir=out | name=@iphlpsvc.dll,-203 |
"{841EAE6A-2EEF-4305-9BD6-CD539536C95B}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 |
"{96E3DCE1-ADA8-474B-B844-698454BB69F3}" = protocol=58 | dir=in | app=system |
"{9B2DE36C-C462-407B-A57E-1E8A81418C75}" = protocol=6 | dir=in | app=c:\program files\microsoft office\office12\onenote.exe |
"{B37027DA-4827-466A-8FC6-21E28A60065C}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 |
"{B3FA8584-DBCB-475F-8A15-4951C7F53D0E}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{BEADF705-6C0C-4583-86EF-281ADC946195}" = protocol=17 | dir=in | app=c:\program files\microsoft office\office12\groove.exe |
"{C42AAAE5-0BF6-4551-9203-66E9A4980405}" = protocol=6 | dir=in | app=c:\program files\microsoft office\office12\groove.exe |
"{E5E742CD-EE8F-4F1B-A5DB-D73FD67E7930}" = protocol=17 | dir=in | app=c:\program files\avg\avg10\avgmfapx.exe |
"{F044EA9A-DADB-4B06-BDBE-CB81E78B47AA}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 |
"TCP Query User{E223E308-E0A3-47D4-9705-8C8F94C8ED32}C:\program files\internet explorer\iexplore.exe" = protocol=6 | dir=in | app=c:\program files\internet explorer\iexplore.exe |
"TCP Query User{F15AE2AC-955B-4F9D-8ABE-732510F67E37}C:\windows\system32\wfs.exe" = protocol=6 | dir=in | app=c:\windows\system32\wfs.exe |
"TCP Query User{FEA4F226-29E2-42DF-8D8D-C146186E0EA9}C:\windows\explorer.exe" = protocol=6 | dir=in | app=c:\windows\explorer.exe |
"UDP Query User{18806FD5-0B1A-4695-BDD6-1EF0800B815D}C:\windows\system32\wfs.exe" = protocol=17 | dir=in | app=c:\windows\system32\wfs.exe |
"UDP Query User{9E8D7F3E-F3AB-4397-B305-1C57490F2FAA}C:\program files\internet explorer\iexplore.exe" = protocol=17 | dir=in | app=c:\program files\internet explorer\iexplore.exe |
"UDP Query User{B2C49697-5908-4D15-8277-51E0523385B1}C:\windows\explorer.exe" = protocol=17 | dir=in | app=c:\windows\explorer.exe |
========== HKEY_LOCAL_MACHINE Uninstall List ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{00000405-78E1-11D2-B60F-006097C998E7}" = Microsoft Office 2000 Premium
"{137EA7E1-D30B-4373-B8B6-CB7E85107F6D}" = Angry Birds Rio
"{196BB40D-1578-3D01-B289-BEFC77A11A1E}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{3F5C371F-8EA2-4F25-9D3D-D0B4526E3AEA}" = NVIDIA PhysX
"{4817189D-1785-4627-A33C-39FD90919300}" = The Sims™ 2 Mazlíčci
"{4908C75E-E5E2-43F7-B1DF-023CBA831051}" = Nero 7 Ultra Edition
"{50316C0A-CC2A-460A-9EA5-F486E54AC17D}_is1" = AVG PC Tuneup 2011
"{550B69DF-9C7D-4988-9535-3D7526BC0A4E}_is1" = AMV Converter Studio V1.3.4
"{56C049BE-79E9-4502-BEA7-9754A3E60F9B}" = neroxml
"{6522C636-B04C-4333-9BEB-9E0C0B6350D6}" = The Sims™ 2 Koupelny a kuchyně Interiérový design Kolekce
"{656A70D4-98FD-41F8-B172-575F60C922BB}" = AVG 2011
"{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}" = Windows Media Player Firefox Plugin
"{6E17F9751-F056-4335-B718-8AF1B1092AFB}" = The Sims™ 2 IKEA® Domov Kolekce
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
"{84DDE556-43EF-43ed-B2DF-37AF9E5DDD75}" = The Sims™ 2 H&M® Móda Kolekce
"{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}" = Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570
"{90120000-0015-0405-0000-0000000FF1CE}" = Microsoft Office Access MUI (Czech) 2007
"{90120000-0015-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-0016-0405-0000-0000000FF1CE}" = Microsoft Office Excel MUI (Czech) 2007
"{90120000-0016-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-0018-0405-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (Czech) 2007
"{90120000-0018-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-0019-0405-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (Czech) 2007
"{90120000-0019-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-001A-0405-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (Czech) 2007
"{90120000-001A-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-001B-0405-0000-0000000FF1CE}" = Microsoft Office Word MUI (Czech) 2007
"{90120000-001B-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-001F-0405-0000-0000000FF1CE}" = Microsoft Office Proof (Czech) 2007
"{90120000-001F-0405-0000-0000000FF1CE}_ENTERPRISE_{0B7A4B67-2A38-42B1-9857-662FAB361E08}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
"{90120000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2007
"{90120000-001F-0407-0000-0000000FF1CE}_ENTERPRISE_{928D7B99-2BEA-49F9-83B8-20FA57860643}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-0409-0000-0000000FF1CE}_ENTERPRISE_{1FF96026-A04A-4C3E-B50A-BB7022654D0F}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
"{90120000-001F-041B-0000-0000000FF1CE}" = Microsoft Office Proof (Slovak) 2007
"{90120000-001F-041B-0000-0000000FF1CE}_ENTERPRISE_{FDF9A959-241A-4662-A8DE-7DED9C22D160}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
"{90120000-002C-0405-0000-0000000FF1CE}" = Microsoft Office Proofing (Czech) 2007
"{90120000-0030-0000-0000-0000000FF1CE}" = Microsoft Office Enterprise 2007
"{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-0044-0405-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (Czech) 2007
"{90120000-0044-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-006E-0405-0000-0000000FF1CE}" = Microsoft Office Shared MUI (Czech) 2007
"{90120000-006E-0405-0000-0000000FF1CE}_ENTERPRISE_{A0AAD4D5-9F9C-49BB-AB64-0FD4695424E8}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-00A1-0405-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (Czech) 2007
"{90120000-00A1-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-00BA-0405-0000-0000000FF1CE}" = Microsoft Office Groove MUI (Czech) 2007
"{90120000-00BA-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90140000-2005-0000-0000-0000000FF1CE}" = Microsoft Office File Validation Add-In
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{A8F2089B-1F79-4BF6-B385-A2C2B0B9A74D}" = ImagXpress
"{AC76BA86-7AD7-1029-7B44-A90000000001}" = Adobe Reader 9 - Czech
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision" = NVIDIA Ovládač 3D Vision 311.06
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel" = Ovládací panel NVIDIA 311.06
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver" = NVIDIA Grafický ovládač 311.06
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update" = Aktualizácie NVIDIA 1.11.3
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer" = NVIDIA Install Application
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NVIDIA.Update" = NVIDIA Update Components
"{B6CF2967-C81E-40C0-9815-C05774FEF120}" = Skype Click to Call
"{CAE7D1D9-3794-4169-B4DD-964ADBC534EE}" = HP Product Detection
"{D68ED35B-7D9B-4F5F-B38A-92286DDE2EBF}" = AVG 2011
"{DFEF49D9-FC95-4301-99B9-2FB91C6ABA06}" = The Sims™ 2 Seasons
"{EAA38532-7AD0-4f78-918A-4F4F02096ECE}" = The Sims™ 2 Pojďme slavit! Kolekce
"{EB2F05F5-3084-4E69-BC82-8C9A4FD82544}" = Setup
"{EE7257A2-39A2-4D2F-9DAC-F9F25B8AE1D8}" = Skype™ 5.10
"Adobe Shockwave Player" = Adobe Shockwave Player 11.5
"Any Video Converter_is1" = Any Video Converter 3.5.8
"AVG" = AVG 2011
"AVS Update Manager_is1" = AVS Update Manager 1.0
"AVS4YOU Software Navigator_is1" = AVS4YOU Software Navigator 1.4
"AVS4YOU Video Converter 7_is1" = AVS Video Converter 7
"CCleaner" = CCleaner
"DAEMON Tools Lite" = DAEMON Tools Lite
"ENTERPRISE" = Microsoft Office Enterprise 2007
"FilesFrog Update Checker" = FilesFrog Update Checker
"FormatFactory" = FormatFactory 2.50
"FTP Commander" = FTP Commander
"Chicken Invaders: Revenge of the Yolk (Christmas Edition)_is1" = Chicken Invaders: Revenge of the Yolk (Christmas Edition) v3.20
"Jazz Jackrabbit 2" = Jazz Jackrabbit 2
"NVIDIAStereo" = NVIDIA Stereoscopic 3D Driver
"Picasa 3" = Picasa 3
"Revo Uninstaller" = Revo Uninstaller 1.93
"Uninstall_is1" = Uninstall 1.0.0.1
"VLC media player" = VLC media player 1.1.5
"WinRAR archiver" = WinRAR
"Wise Registry Cleaner_is1" = Wise Registry Cleaner 4 Free 4.92
Re: preventivka
========== HKEY_USERS Uninstall List ==========
[HKEY_USERS\S-1-5-21-1055357281-2900607726-3267283594-1008\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Google Chrome" = Google Chrome
========== Last 20 Event Log Errors ==========
[ Application Events ]
Error - 25. 11. 2013 11:22:19 | Computer Name = doda-PC | Source = Windows Search Service | ID = 3028
Description =
Error - 25. 11. 2013 11:22:19 | Computer Name = doda-PC | Source = Windows Search Service | ID = 3058
Description =
Error - 25. 11. 2013 11:44:33 | Computer Name = doda-PC | Source = Application Error | ID = 1000
Description = Chybová aplikácia avgam.exe, verzia 10.0.0.1295, časová značka 0x4d50953f,
chybový modul unknown, verzia 0.0.0.0, časová značka 0x00000000, kód výnimky 0xc0000005,
odstup chyby 0x6e3f6008, identifikácia procesu 0xe04, čas spustenia aplikácie 0x01cee9f21ba07251.
Error - 25. 11. 2013 14:39:57 | Computer Name = doda-PC | Source = Application Error | ID = 1000
Description = Chybová aplikácia avgwdsvc.exe, verzia 10.0.0.1295, časová značka
0x4d5096de, chybový modul avgidpsdkx.dll_unloaded, verzia 0.0.0.0, časová značka
0x4d536e37, kód výnimky 0xc0000005, odstup chyby 0x6d1c6008, identifikácia procesu
0x9cc, čas spustenia aplikácie 0x01ceea0c79ef04d4.
Error - 25. 11. 2013 14:40:05 | Computer Name = doda-PC | Source = Application Error | ID = 1000
Description = Chybová aplikácia avgfws.exe, verzia 10.0.0.1350, časová značka 0x4d7797a0,
chybový modul unknown, verzia 0.0.0.0, časová značka 0x00000000, kód výnimky 0xc0000005,
odstup chyby 0x6d1c6008, identifikácia procesu 0x9c0, čas spustenia aplikácie 0x01ceea0c79e0bc94.
Error - 29. 11. 2013 10:11:46 | Computer Name = doda-PC | Source = Application Error | ID = 1000
Description = Chybová aplikácia avgfws.exe, verzia 10.0.0.1350, časová značka 0x4d7797a0,
chybový modul unknown, verzia 0.0.0.0, časová značka 0x00000000, kód výnimky 0xc0000005,
odstup chyby 0x71056008, identifikácia procesu 0x4fc, čas spustenia aplikácie 0x01ceed0b2945e97d.
Error - 30. 11. 2013 3:56:50 | Computer Name = doda-PC | Source = Application Error | ID = 1000
Description = Chybová aplikácia avgfws.exe, verzia 10.0.0.1350, časová značka 0x4d7797a0,
chybový modul unknown, verzia 0.0.0.0, časová značka 0x00000000, kód výnimky 0xc0000005,
odstup chyby 0x6ff86008, identifikácia procesu 0x704, čas spustenia aplikácie 0x01ceeda0385ac4c5.
Error - 30. 11. 2013 12:11:58 | Computer Name = doda-PC | Source = EventSystem | ID = 4621
Description =
Error - 1. 12. 2013 14:02:43 | Computer Name = doda-PC | Source = Application Error | ID = 1000
Description = Chybová aplikácia avgfws.exe, verzia 10.0.0.1350, časová značka 0x4d7797a0,
chybový modul unknown, verzia 0.0.0.0, časová značka 0x00000000, kód výnimky 0xc0000005,
odstup chyby 0x6fc86008, identifikácia procesu 0x81c, čas spustenia aplikácie 0x01ceeeba40931b94.
Error - 4. 12. 2013 16:24:25 | Computer Name = doda-PC | Source = Application Error | ID = 1000
Description = Chybová aplikácia avgmfapx.exe, verzia 10.0.0.1431, časová značka
0x51518d00, chybový modul winspamcatcher.dll_unloaded, verzia 0.0.0.0, časová značka
0x4d0b07a4, kód výnimky 0xc0000005, odstup chyby 0x684b1a10, identifikácia procesu
0xea8, čas spustenia aplikácie 0x01cef12e71f1b525.
[HKEY_USERS\S-1-5-21-1055357281-2900607726-3267283594-1008\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Google Chrome" = Google Chrome
========== Last 20 Event Log Errors ==========
[ Application Events ]
Error - 25. 11. 2013 11:22:19 | Computer Name = doda-PC | Source = Windows Search Service | ID = 3028
Description =
Error - 25. 11. 2013 11:22:19 | Computer Name = doda-PC | Source = Windows Search Service | ID = 3058
Description =
Error - 25. 11. 2013 11:44:33 | Computer Name = doda-PC | Source = Application Error | ID = 1000
Description = Chybová aplikácia avgam.exe, verzia 10.0.0.1295, časová značka 0x4d50953f,
chybový modul unknown, verzia 0.0.0.0, časová značka 0x00000000, kód výnimky 0xc0000005,
odstup chyby 0x6e3f6008, identifikácia procesu 0xe04, čas spustenia aplikácie 0x01cee9f21ba07251.
Error - 25. 11. 2013 14:39:57 | Computer Name = doda-PC | Source = Application Error | ID = 1000
Description = Chybová aplikácia avgwdsvc.exe, verzia 10.0.0.1295, časová značka
0x4d5096de, chybový modul avgidpsdkx.dll_unloaded, verzia 0.0.0.0, časová značka
0x4d536e37, kód výnimky 0xc0000005, odstup chyby 0x6d1c6008, identifikácia procesu
0x9cc, čas spustenia aplikácie 0x01ceea0c79ef04d4.
Error - 25. 11. 2013 14:40:05 | Computer Name = doda-PC | Source = Application Error | ID = 1000
Description = Chybová aplikácia avgfws.exe, verzia 10.0.0.1350, časová značka 0x4d7797a0,
chybový modul unknown, verzia 0.0.0.0, časová značka 0x00000000, kód výnimky 0xc0000005,
odstup chyby 0x6d1c6008, identifikácia procesu 0x9c0, čas spustenia aplikácie 0x01ceea0c79e0bc94.
Error - 29. 11. 2013 10:11:46 | Computer Name = doda-PC | Source = Application Error | ID = 1000
Description = Chybová aplikácia avgfws.exe, verzia 10.0.0.1350, časová značka 0x4d7797a0,
chybový modul unknown, verzia 0.0.0.0, časová značka 0x00000000, kód výnimky 0xc0000005,
odstup chyby 0x71056008, identifikácia procesu 0x4fc, čas spustenia aplikácie 0x01ceed0b2945e97d.
Error - 30. 11. 2013 3:56:50 | Computer Name = doda-PC | Source = Application Error | ID = 1000
Description = Chybová aplikácia avgfws.exe, verzia 10.0.0.1350, časová značka 0x4d7797a0,
chybový modul unknown, verzia 0.0.0.0, časová značka 0x00000000, kód výnimky 0xc0000005,
odstup chyby 0x6ff86008, identifikácia procesu 0x704, čas spustenia aplikácie 0x01ceeda0385ac4c5.
Error - 30. 11. 2013 12:11:58 | Computer Name = doda-PC | Source = EventSystem | ID = 4621
Description =
Error - 1. 12. 2013 14:02:43 | Computer Name = doda-PC | Source = Application Error | ID = 1000
Description = Chybová aplikácia avgfws.exe, verzia 10.0.0.1350, časová značka 0x4d7797a0,
chybový modul unknown, verzia 0.0.0.0, časová značka 0x00000000, kód výnimky 0xc0000005,
odstup chyby 0x6fc86008, identifikácia procesu 0x81c, čas spustenia aplikácie 0x01ceeeba40931b94.
Error - 4. 12. 2013 16:24:25 | Computer Name = doda-PC | Source = Application Error | ID = 1000
Description = Chybová aplikácia avgmfapx.exe, verzia 10.0.0.1431, časová značka
0x51518d00, chybový modul winspamcatcher.dll_unloaded, verzia 0.0.0.0, časová značka
0x4d0b07a4, kód výnimky 0xc0000005, odstup chyby 0x684b1a10, identifikácia procesu
0xea8, čas spustenia aplikácie 0x01cef12e71f1b525.
Re: preventivka
OTL logfile created on: 7. 12. 2013 9:14:36 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\domishek\Desktop
Windows Vista Ultimate Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 0000041b | Country: Slovenská republika | Language: SKY | Date Format: d. M. yyyy
2,00 Gb Total Physical Memory | 0,77 Gb Available Physical Memory | 38,52% Memory free
4,23 Gb Paging File | 2,84 Gb Available in Paging File | 67,20% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 232,76 Gb Total Space | 22,76 Gb Free Space | 9,78% Space Free | Partition Type: NTFS
Computer Name: DODA-PC | User Name: domishek | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Processes (SafeList) ==========
PRC - [2013/12/07 09:10:32 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\domishek\Desktop\OTL.exe
PRC - [2013/12/07 09:10:22 | 001,210,320 | ---- | M] (Google Inc.) -- C:\Users\domishek\AppData\Local\Temp\CR_956A0.tmp\setup.exe
PRC - [2013/12/04 15:30:00 | 001,751,392 | ---- | M] () -- C:\Users\domishek\AppData\Local\Google\Update\Install\{6F86D6F8-E6DE-4D1F-9B13-991C0E59DFE4}\31.0.1650.63_31.0.1650.57_chrome_updater.exe
PRC - [2013/04/10 08:26:39 | 004,362,800 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\avgmfapx.exe
PRC - [2013/02/25 23:22:34 | 001,260,320 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
PRC - [2013/01/18 15:21:02 | 000,873,248 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
PRC - [2013/01/18 15:21:00 | 001,821,984 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
PRC - [2013/01/18 07:14:20 | 000,383,264 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
PRC - [2011/09/09 02:10:56 | 001,082,208 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\avgnsx.exe
PRC - [2011/08/18 00:33:26 | 000,659,296 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\avgrsx.exe
PRC - [2011/05/23 13:13:04 | 000,657,248 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\avgchsvx.exe
PRC - [2011/03/28 02:00:52 | 000,351,072 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\avgcsrvx.exe
PRC - [2011/03/09 18:24:44 | 002,708,024 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\avgfws.exe
PRC - [2011/02/08 04:33:42 | 000,269,520 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\avgwdsvc.exe
PRC - [2011/02/08 04:32:42 | 000,750,432 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\avgam.exe
PRC - [2009/04/11 07:28:15 | 000,117,248 | ---- | M] () -- \\?\C:\Windows\System32\wbem\WMIADAP.EXE
PRC - [2009/04/11 07:27:36 | 002,926,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
PRC - [2009/02/03 17:17:06 | 000,552,064 | ---- | M] (Eset ) -- C:\Program Files\Eset\nod32krn.exe
========== Modules (No Company Name) ==========
MOD - [2013/12/04 15:30:00 | 001,751,392 | ---- | M] () -- C:\Users\domishek\AppData\Local\Google\Update\Install\{6F86D6F8-E6DE-4D1F-9B13-991C0E59DFE4}\31.0.1650.63_31.0.1650.57_chrome_updater.exe
MOD - [2013/11/14 12:29:31 | 000,399,312 | ---- | M] () -- C:\Users\domishek\AppData\Local\Google\Chrome\Application\31.0.1650.57\ppGoogleNaClPluginChrome.dll
MOD - [2013/11/14 12:29:29 | 004,055,504 | ---- | M] () -- C:\Users\domishek\AppData\Local\Google\Chrome\Application\31.0.1650.57\pdf.dll
MOD - [2013/11/14 12:28:37 | 000,702,416 | ---- | M] () -- C:\Users\domishek\AppData\Local\Google\Chrome\Application\31.0.1650.57\libglesv2.dll
MOD - [2013/11/14 12:28:36 | 000,099,792 | ---- | M] () -- C:\Users\domishek\AppData\Local\Google\Chrome\Application\31.0.1650.57\libegl.dll
MOD - [2013/11/14 12:28:34 | 001,619,408 | ---- | M] () -- C:\Users\domishek\AppData\Local\Google\Chrome\Application\31.0.1650.57\ffmpegsumo.dll
MOD - [2008/09/03 15:28:24 | 000,319,488 | ---- | M] () -- C:\Program Files\WinRAR\rarlng.dll
MOD - [2008/08/29 10:55:00 | 000,132,608 | ---- | M] () -- C:\Program Files\WinRAR\RarExt.dll
========== Services (SafeList) ==========
SRV - [2013/02/25 23:22:34 | 001,260,320 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe -- (nvUpdatusService)
SRV - [2013/01/18 07:14:20 | 000,383,264 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe -- (Stereo Service)
SRV - [2012/07/13 13:14:14 | 000,160,944 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files\Skype\Updater\Updater.exe -- (SkypeUpdate)
SRV - [2011/11/10 14:17:31 | 000,167,264 | ---- | M] () [On_Demand | Stopped] -- C:\Program Files\AVG\AVG10\Toolbar\ToolbarBroker.exe -- (AVG Security Toolbar Service)
SRV - [2011/04/30 07:19:43 | 000,403,240 | ---- | M] (Valve Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\Steam\SteamService.exe -- (Steam Client Service)
SRV - [2011/03/09 18:24:44 | 002,708,024 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files\AVG\AVG10\avgfws.exe -- (avgfws)
SRV - [2011/02/08 04:33:42 | 000,269,520 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files\AVG\AVG10\avgwdsvc.exe -- (avgwd)
SRV - [2009/02/03 17:17:06 | 000,552,064 | ---- | M] (Eset ) [Auto | Running] -- C:\Program Files\Eset\nod32krn.exe -- (NOD32krn)
SRV - [2008/01/19 08:38:24 | 000,272,952 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2008/01/19 08:36:49 | 000,365,568 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\WindowsMobile\wcescomm.dll -- (WcesComm)
SRV - [2008/01/19 08:36:15 | 000,167,936 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\WindowsMobile\rapimgr.dll -- (RapiMgr)
========== Driver Services (SafeList) ==========
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Program Files\TuneUp Utilities 2012\TuneUpUtilitiesDriver32.sys -- (TuneUpUtilitiesDrv)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\nwlnkfwd.sys -- (NwlnkFwd)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\nwlnkflt.sys -- (NwlnkFlt)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\ipinip.sys -- (IpInIp)
DRV - File not found [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\blbdrive.sys -- (blbdrive)
DRV - File not found [Kernel | On_Demand | Unknown] -- -- (av78n34g)
DRV - File not found [Kernel | On_Demand | Unknown] -- -- (a0fbkvfi)
DRV - [2013/07/31 18:40:19 | 000,232,512 | ---- | M] (DT Soft Ltd) [Kernel | System | Running] -- C:\Windows\System32\drivers\dtsoftbus01.sys -- (dtsoftbus01)
DRV - [2013/02/25 23:22:06 | 008,939,296 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\nvlddmkm.sys -- (nvlddmkm)
DRV - [2012/11/12 04:47:48 | 000,255,968 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\Windows\System32\drivers\avgldx86.sys -- (Avgldx86)
DRV - [2011/10/04 13:56:51 | 000,443,448 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\System32\drivers\sptd.sys -- (sptd)
DRV - [2011/05/27 18:05:18 | 000,134,480 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\AVGIDSDriver.sys -- (AVGIDSDriver)
DRV - [2011/04/04 23:59:56 | 000,297,168 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\Windows\System32\drivers\avgtdix.sys -- (Avgtdix)
DRV - [2011/03/16 15:03:20 | 000,032,592 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | Boot | Running] -- C:\Windows\System32\drivers\avgrkx86.sys -- (Avgrkx86)
DRV - [2011/03/01 13:25:18 | 000,034,896 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | System | Running] -- C:\Windows\System32\drivers\avgmfx86.sys -- (Avgmfx86)
DRV - [2011/02/22 07:12:38 | 000,022,992 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\AVGIDSEH.sys -- (AVGIDSEH)
DRV - [2011/02/10 06:53:30 | 000,028,624 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\AVGIDSShim.sys -- (AVGIDSShim)
DRV - [2011/02/10 06:53:28 | 000,024,144 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\AVGIDSFilter.sys -- (AVGIDSFilter)
DRV - [2010/07/12 04:34:02 | 000,054,112 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\Windows\System32\drivers\avgfwd6x.sys -- (Avgfwfd)
DRV - [2009/04/11 05:42:52 | 000,031,616 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\winusb.sys -- (winusb)
DRV - [2009/04/01 18:18:29 | 000,025,280 | ---- | M] (LogMeIn, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\hamachi.sys -- (hamachi)
DRV - [2009/02/03 17:17:06 | 000,512,096 | ---- | M] (Eset ) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\amon.sys -- (AMON)
DRV - [2009/02/03 17:17:06 | 000,015,424 | ---- | M] () [Kernel | System | Running] -- C:\Windows\System32\drivers\nod32drv.sys -- (nod32drv)
DRV - [2008/02/14 07:56:02 | 000,118,784 | ---- | M] (Realtek Corporation ) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\Rtlh86.sys -- (RTL8169)
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE - HKLM\..\URLSearchHook: - No CLSID value found
IE - HKLM\..\URLSearchHook: {855F3B16-6D32-4fe6-8A56-BBB695989046} - No CLSID value found
IE - HKLM\..\URLSearchHook: {bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} - No CLSID value found
IE - HKLM\..\SearchScopes,DefaultScope = {afdbddaa-5d3f-42ee-b79c-185a7020515b}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKLM\..\SearchScopes\{56256A51-B582-467e-B8D4-7786EDA79AE0}: "URL" = http://www.mywebsearch.com/jsp/cfg_redi ... earchTerms}
IE - HKLM\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.com/search?q={searchT ... urceid=ie7
IE - HKLM\..\SearchScopes\{8A96AF9E-4074-43b7-BEA3-87217BDA74C8}: "URL" = http://www.searchqu.com/web?src=ieb&q={searchTerms}
IE - HKLM\..\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}: "URL" = http://search.conduit.com/ResultsExt.as ... =CT2786678
IE - HKU\.DEFAULT\..\URLSearchHook: - No CLSID value found
IE - HKU\.DEFAULT\..\URLSearchHook: {855F3B16-6D32-4fe6-8A56-BBB695989046} - No CLSID value found
IE - HKU\.DEFAULT\..\URLSearchHook: {A3BC75A2-1F87-4686-AA43-5347D756017C} - No CLSID value found
IE - HKU\.DEFAULT\..\SearchScopes\{CCC7A320-B3CA-4199-B1A6-9F516DD69829}: "URL" = http://us.yhs.search.yahoo.com/avg/sear ... earchTerms}
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-18\..\URLSearchHook: - No CLSID value found
IE - HKU\S-1-5-18\..\URLSearchHook: {855F3B16-6D32-4fe6-8A56-BBB695989046} - No CLSID value found
IE - HKU\S-1-5-18\..\URLSearchHook: {A3BC75A2-1F87-4686-AA43-5347D756017C} - No CLSID value found
IE - HKU\S-1-5-18\..\SearchScopes\{CCC7A320-B3CA-4199-B1A6-9F516DD69829}: "URL" = http://us.yhs.search.yahoo.com/avg/sear ... earchTerms}
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-1055357281-2900607726-3267283594-1008\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com/ie
IE - HKU\S-1-5-21-1055357281-2900607726-3267283594-1008\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://www.google.com/ie
IE - HKU\S-1-5-21-1055357281-2900607726-3267283594-1008\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
IE - HKU\S-1-5-21-1055357281-2900607726-3267283594-1008\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 99 13 95 D6 06 F4 CD 01 [binary data]
IE - HKU\S-1-5-21-1055357281-2900607726-3267283594-1008\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.google.com/ie
IE - HKU\S-1-5-21-1055357281-2900607726-3267283594-1008\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com/ie
IE - HKU\S-1-5-21-1055357281-2900607726-3267283594-1008\..\SearchScopes,DefaultScope = {6A1806CD-94D4-4689nsInAddressGlobal
IE - HKU\S-1-5-21-1055357281-2900607726-3267283594-1008\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.com/search?q={sear
IE - HKU\S-1-5-21-1055357281-2900607726-3267283594-1008\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
========== FireFox ==========
FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\Windows\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@google.com/npPicasa3,version=3.0.0: C:\Program Files\Google\Picasa3\npPicasa3.dll (Google, Inc.)
FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVision: C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVisionStreaming: C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF - HKLM\Software\MozillaPlugins\@pandonetworks.com/PandoWebPlugin: File not found
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Users\domishek\AppData\Local\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Users\domishek\AppData\Local\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.)
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\avg@igeared: C:\Program Files\AVG\AVG10\Toolbar\Firefox\avg@igeared [2013/01/02 16:18:38 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{1E73965B-8B48-48be-9C8D-68B920ABC1C4}: C:\Program Files\AVG\AVG10\Firefox4\ [2013/12/06 19:04:48 | 000,000,000 | ---D | M]
========== Chrome ==========
CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:bookmarkBarPinned}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}{google:omniboxStartMarginParameter}ie={inputEncoding}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client={google:suggestClient}&q={searchTerms}&{google:cursorPosition}{google:zeroPrefixUrl}{google:pageClassification}sugkey={google:suggestAPIKeyParameter},
CHR - plugin: Shockwave Flash (Enabled) = C:\Users\domishek\AppData\Local\Google\Chrome\Application\31.0.1650.57\PepperFlash\pepflashplayer.dll
CHR - plugin: Chrome Remote Desktop Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Users\domishek\AppData\Local\Google\Chrome\Application\31.0.1650.57\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Users\domishek\AppData\Local\Google\Chrome\Application\31.0.1650.57\pdf.dll
CHR - plugin: AVG Internet Security (Enabled) = C:\Users\domishek\AppData\Local\Google\Chrome\User Data\Default\Extensions\jmfkcklnlgedgbglfkkgedjfmejoahla\10.0.0.1409_0\plugins/avgnpss.dll
CHR - plugin: Adobe Acrobat (Enabled) = C:\Program Files\Adobe\Reader 9.0\Reader\Browser\nppdf32.dll
CHR - plugin: AVG SiteSafety plugin (Enabled) = C:\Program Files\Common Files\AVG Secure Search\SiteSafetyInstaller\13.2.0\\npsitesafety.dll
CHR - plugin: Picasa (Enabled) = C:\Program Files\Google\Picasa3\npPicasa3.dll
CHR - plugin: Google Update (Enabled) = C:\Users\domishek\AppData\Local\Google\Update\1.3.21.124\npGoogleUpdate3.dll
CHR - plugin: Shockwave for Director (Enabled) = C:\Windows\system32\Adobe\Director\np32dsw.dll
CHR - Extension: Pen\u011B\u017Eenka Google = C:\Users\domishek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.5.0_0\
CHR - Extension: Charlotte Ronson = C:\Users\domishek\AppData\Local\Google\Chrome\User Data\Default\Extensions\obakimnhgahiedhcjlcnohielmendpen\3_0\
O1 HOSTS File: ([2006/09/18 22:41:30 | 000,000,761 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O2 - BHO: (no name) - {25B8D58C-B0CB-46b0-BA64-05B3804E4E86} - No CLSID value found.
O2 - BHO: (AVG Safe Search) - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG10\avgssie.dll (AVG Technologies CZ, s.r.o.)
O3 - HKLM\..\Toolbar: (no name) - {bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} - No CLSID value found.
O3 - HKLM\..\Toolbar: (no name) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - No CLSID value found.
O4 - HKU\S-1-5-19..\Run: [WindowsWelcomeCenter] C:\Windows\System32\oobefldr.dll (Microsoft Corporation)
O4 - HKU\S-1-5-20..\Run: [WindowsWelcomeCenter] C:\Windows\System32\oobefldr.dll (Microsoft Corporation)
O4 - HKU\S-1-5-21-1055357281-2900607726-3267283594-1009..\Run: [WindowsWelcomeCenter] C:\Windows\System32\oobefldr.dll (Microsoft Corporation)
O8 - Extra context menu item: Add to Google Photos Screensa&ver - C:\Windows\System32\GPhotos.scr (Google Inc.)
O9 - Extra Button: GetStyles - {14CD42DD-ABCD-3586-DCAB-40E3693E3737} - Reg Error: Value error. File not found
O9 - Extra 'Tools' menuitem : GetStyles - {14CD42DD-ABCD-3586-DCAB-40E3693E3737} - Reg Error: Value error. File not found
O9 - Extra Button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - Reg Error: Value error. File not found
O9 - Extra 'Tools' menuitem : Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - Reg Error: Value error. File not found
O13 - gopher Prefix: missing
O16 - DPF: {166B1BCA-3F9C-11CF-8075-444553540000} http://download.macromedia.com/pub/shoc ... tor/sw.cab (Shockwave ActiveX Control)
O16 - DPF: {1D4DB7D2-6EC9-47A3-BD87-1E41684E07BB} http://ak.exe.imgfarm.com/images/nocach ... .0.1.1.cab (Reg Error: Key error.)
O16 - DPF: {8100D56A-5661-482C-BEE8-AFECE305D968} http://upload.facebook.com/controls/200 ... ader55.cab (Facebook Photo Uploader 5 Control)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Reg Error: Value error.)
O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} http://fpdownload.macromedia.com/get/fl ... rashim.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Reg Error: Value error.)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Reg Error: Key error.)
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Key error.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 10.0.0.138
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{7AAE6186-FE11-410B-9D4E-BEC063A3328D}: DhcpNameServer = 10.0.0.138
O18 - Protocol\Handler\linkscanner {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG10\avgpp.dll (AVG Technologies CZ, s.r.o.)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O18 - Protocol\Filter\text/html - No CLSID value found
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\System32\userinit.exe (Microsoft Corporation)
O24 - Desktop WallPaper: C:\Users\domishek\AppData\Roaming\Microsoft\Windows Photo Gallery\Tapeta programu Windows Fotogaléria.jpg
O24 - Desktop BackupWallPaper: C:\Users\domishek\AppData\Roaming\Microsoft\Windows Photo Gallery\Tapeta programu Windows Fotogaléria.jpg
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2006/09/18 22:43:36 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O33 - MountPoints2\{23179953-fa07-11e2-9ff2-001fd08d0075}\Shell - "" = AutoRun
O33 - MountPoints2\{231799bb-fa07-11e2-9ff2-001fd08d0075}\Shell - "" = AutoRun
O34 - HKLM BootExecute: (autocheck autochk *)
O34 - HKLM BootExecute: (C:\PROGRA~1\AVG\AVG10\avgchsvx.exe /sync)
O34 - HKLM BootExecute: (C:\PROGRA~1\AVG\AVG10\avgrsx.exe /sync /restart)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
CREATERESTOREPOINT
Restore point Set: OTL Restore Point
NetSvcs: FastUserSwitchingCompatibility - File not found
NetSvcs: Ias - C:\Windows\System32\ias.dll (Microsoft Corporation)
NetSvcs: Nla - File not found
NetSvcs: Ntmssvc - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: SRService - File not found
NetSvcs: WmdmPmSp - File not found
NetSvcs: LogonHours - File not found
NetSvcs: PCAudit - File not found
NetSvcs: helpsvc - File not found
NetSvcs: uploadmgr - File not found
Drivers32: msacm.iac2 - C:\Windows\System32\iac25_32.ax (Intel Corporation)
Drivers32: msacm.l3acm - C:\Windows\System32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: vidc.cvid - C:\Windows\System32\iccvid.dll (Radius Inc.)
Drivers32: vidc.i420 - C:\Windows\System32\i420vfw.dll (www.helixcommunity.org)
Drivers32: vidc.VP60 - C:\Windows\System32\vp6vfw.dll (On2.com)
Drivers32: vidc.VP61 - C:\Windows\System32\vp6vfw.dll (On2.com)
Drivers32: vidc.yv12 - C:\Windows\System32\yv12vfw.dll (www.helixcommunity.org)
PhysicalDisk0 MBR saved to C:\PhysicalMBR.bin
========== Files/Folders - Created Within 30 Days ==========
[2013/12/07 09:10:21 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\domishek\Desktop\OTL.exe
[2013/12/05 16:52:12 | 000,000,000 | ---D | C] -- C:\Program Files\trend micro
[2013/12/05 16:52:11 | 000,000,000 | ---D | C] -- C:\rsit
[2013/11/26 10:10:56 | 000,000,000 | ---D | C] -- C:\Users\domishek\Desktop\Taneční-Terka
[2013/11/13 15:18:04 | 002,382,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mshtml.tlb
[2013/11/13 15:18:02 | 000,176,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieui.dll
[2013/11/13 15:18:02 | 000,065,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jsproxy.dll
[2013/11/13 15:18:01 | 000,142,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieUnatt.exe
[2013/11/13 15:18:00 | 000,607,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeeds.dll
[2013/11/13 15:17:59 | 001,806,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jscript9.dll
[2013/11/13 15:17:59 | 000,231,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\url.dll
[2013/11/13 15:17:55 | 001,427,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\inetcpl.cpl
[2013/11/13 15:03:35 | 000,000,000 | ---D | C] -- C:\Users\domishek\Desktop\Filmy
[2013/11/13 14:51:02 | 000,596,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\FWPUCLNT.DLL
[1 C:\Windows\System32\*.tmp files -> C:\Windows\System32\*.tmp -> ]
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
========== Files - Modified Within 30 Days ==========
[2013/12/07 09:17:02 | 000,000,512 | ---- | M] () -- C:\PhysicalMBR.bin
[2013/12/07 09:14:16 | 000,589,596 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2013/12/07 09:14:16 | 000,102,266 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2013/12/07 09:14:16 | 000,028,384 | ---- | M] () -- C:\Windows\System32\perfh01B.dat
[2013/12/07 09:14:16 | 000,007,758 | ---- | M] () -- C:\Windows\System32\perfc01B.dat
[2013/12/07 09:12:44 | 145,314,819 | ---- | M] () -- C:\Windows\System32\drivers\AVG\incavi.avm
[2013/12/07 09:10:32 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\domishek\Desktop\OTL.exe
[2013/12/07 09:08:26 | 000,004,432 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2013/12/07 09:08:26 | 000,004,432 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2013/12/07 09:08:15 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2013/12/06 19:29:59 | 000,000,958 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1055357281-2900607726-3267283594-1008UA.job
[2013/12/06 19:29:59 | 000,000,906 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1055357281-2900607726-3267283594-1008Core.job
[2013/11/25 20:53:25 | 000,375,432 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
[2013/11/13 15:07:09 | 000,022,016 | ---- | M] () -- C:\Users\domishek\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[1 C:\Windows\System32\*.tmp files -> C:\Windows\System32\*.tmp -> ]
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
========== Files Created - No Company Name ==========
[2013/12/07 09:17:02 | 000,000,512 | ---- | C] () -- C:\PhysicalMBR.bin
[2013/11/13 17:49:02 | 000,375,432 | ---- | C] () -- C:\Windows\System32\FNTCACHE.DAT
[2013/11/13 14:51:02 | 000,218,228 | ---- | C] () -- C:\Windows\System32\WFP.TMF
[2013/11/12 19:25:38 | 000,000,958 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1055357281-2900607726-3267283594-1008UA.job
[2013/11/12 19:25:37 | 000,000,906 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1055357281-2900607726-3267283594-1008Core.job
[2013/07/31 18:50:47 | 2936,340,480 | ---- | C] () -- C:\Users\domishek\The-Sims-2-cz---základní-hra-by-Hunys.iso
[2013/03/06 15:19:06 | 000,022,016 | ---- | C] () -- C:\Users\domishek\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
========== ZeroAccess Check ==========
[2006/11/02 13:53:06 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini
[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2012/06/08 18:47:00 | 011,586,048 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2009/04/11 07:28:19 | 000,614,912 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
"" = %systemroot%\system32\wbem\wbemess.dll -- [2009/04/11 07:28:25 | 000,347,648 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both
========== LOP Check ==========
[2012/12/12 10:16:33 | 000,000,000 | ---D | M] -- C:\Users\Default\AppData\Roaming\TuneUp Software
[2012/12/12 10:16:33 | 000,000,000 | ---D | M] -- C:\Users\Default User\AppData\Roaming\TuneUp Software
[2009/07/29 12:33:35 | 000,000,000 | -HSD | M] -- C:\Users\doda\AppData\Roaming\.#
[2009/07/29 14:55:28 | 000,000,000 | ---D | M] -- C:\Users\doda\AppData\Roaming\Aisle 5 Games, Inc
[2009/12/23 11:30:43 | 000,000,000 | ---D | M] -- C:\Users\doda\AppData\Roaming\Any Video Converter
[2009/04/15 18:21:00 | 000,000,000 | ---D | M] -- C:\Users\doda\AppData\Roaming\Ashampoo
[2009/07/29 14:29:16 | 000,000,000 | ---D | M] -- C:\Users\doda\AppData\Roaming\Babylonia
[2009/06/27 16:42:17 | 000,000,000 | ---D | M] -- C:\Users\doda\AppData\Roaming\BlamGames
[2009/07/29 15:09:43 | 000,000,000 | ---D | M] -- C:\Users\doda\AppData\Roaming\cerasus.media
[2009/03/09 18:06:38 | 000,000,000 | ---D | M] -- C:\Users\doda\AppData\Roaming\DAEMON Tools
[2009/03/09 18:07:20 | 000,000,000 | ---D | M] -- C:\Users\doda\AppData\Roaming\DAEMON Tools Lite
[2009/03/09 18:07:50 | 000,000,000 | ---D | M] -- C:\Users\doda\AppData\Roaming\DAEMON Tools Pro
[2009/03/13 15:10:27 | 000,000,000 | ---D | M] -- C:\Users\doda\AppData\Roaming\EleFun Games
[2009/06/27 16:34:53 | 000,000,000 | ---D | M] -- C:\Users\doda\AppData\Roaming\ERS G-Studio
[2009/02/14 16:24:07 | 000,000,000 | ---D | M] -- C:\Users\doda\AppData\Roaming\F-Secure
[2009/03/01 12:55:41 | 000,000,000 | ---D | M] -- C:\Users\doda\AppData\Roaming\Farm Mania
[2009/06/27 18:07:52 | 000,000,000 | ---D | M] -- C:\Users\doda\AppData\Roaming\GameInvest
[2009/03/01 14:06:10 | 000,000,000 | ---D | M] -- C:\Users\doda\AppData\Roaming\Gamelab
[2009/06/27 16:31:59 | 000,000,000 | ---D | M] -- C:\Users\doda\AppData\Roaming\GAMESHASTRA
[2009/06/28 08:38:35 | 000,000,000 | ---D | M] -- C:\Users\doda\AppData\Roaming\GetRightToGo
[2009/04/17 16:34:38 | 000,000,000 | ---D | M] -- C:\Users\doda\AppData\Roaming\GHISLER
[2009/12/04 17:00:11 | 000,000,000 | ---D | M] -- C:\Users\doda\AppData\Roaming\ICQ
[2009/03/13 15:41:22 | 000,000,000 | ---D | M] -- C:\Users\doda\AppData\Roaming\iWin
[2009/02/21 12:02:14 | 000,000,000 | ---D | M] -- C:\Users\doda\AppData\Roaming\JLC's Software
[2009/08/11 13:00:59 | 000,000,000 | ---D | M] -- C:\Users\doda\AppData\Roaming\Meridian93
[2009/11/16 10:33:35 | 000,000,000 | ---D | M] -- C:\Users\doda\AppData\Roaming\MysteryStudio
[2009/11/05 09:14:38 | 000,000,000 | ---D | M] -- C:\Users\doda\AppData\Roaming\PlayFirst
[2009/11/16 10:34:31 | 000,000,000 | ---D | M] -- C:\Users\doda\AppData\Roaming\Playrix Entertainment
[2009/07/29 14:30:09 | 000,000,000 | ---D | M] -- C:\Users\doda\AppData\Roaming\Reflexive 3 Days Zoo Mystery
[2009/04/16 12:19:21 | 000,000,000 | ---D | M] -- C:\Users\doda\AppData\Roaming\Reflexive Ashtons Family Resort
[2009/07/29 10:38:33 | 000,000,000 | ---D | M] -- C:\Users\doda\AppData\Roaming\Reflexive JanesZOO
[2009/02/24 18:06:24 | 000,000,000 | ---D | M] -- C:\Users\doda\AppData\Roaming\SecondLife
[2009/03/25 19:06:48 | 000,000,000 | ---D | M] -- C:\Users\doda\AppData\Roaming\Uniblue
[2009/04/14 19:54:55 | 000,000,000 | ---D | M] -- C:\Users\doda\AppData\Roaming\URSoft
[2009/06/27 18:12:23 | 000,000,000 | ---D | M] -- C:\Users\doda\AppData\Roaming\ViquaSoft
[2009/12/23 11:31:41 | 000,000,000 | ---D | M] -- C:\Users\Dominishka\AppData\Roaming\AnvSoft
[2009/12/23 11:22:27 | 000,000,000 | ---D | M] -- C:\Users\Dominishka\AppData\Roaming\Any Video Converter
[2009/12/23 11:23:04 | 000,000,000 | ---D | M] -- C:\Users\Dominishka\AppData\Roaming\DAEMON Tools
[2009/12/23 11:23:04 | 000,000,000 | ---D | M] -- C:\Users\Dominishka\AppData\Roaming\DAEMON Tools Lite
[2009/12/23 11:23:04 | 000,000,000 | ---D | M] -- C:\Users\Dominishka\AppData\Roaming\DAEMON Tools Pro
[2010/01/20 20:01:15 | 000,000,000 | ---D | M] -- C:\Users\Dominishka\AppData\Roaming\ICQ
[2009/12/23 11:25:30 | 000,000,000 | ---D | M] -- C:\Users\Dominishka\AppData\Roaming\URSoft
[2010/02/03 13:16:29 | 000,000,000 | ---D | M] -- C:\Users\Dominishka\AppData\Roaming\uTorrent
[2010/01/23 20:31:11 | 000,000,000 | ---D | M] -- C:\Users\Domisheek\AppData\Roaming\AnvSoft
[2010/12/25 10:45:06 | 000,000,000 | ---D | M] -- C:\Users\Domisheek\AppData\Roaming\Apowersoft
[2011/03/06 10:49:26 | 000,000,000 | ---D | M] -- C:\Users\Domisheek\AppData\Roaming\AVG
[2011/03/05 19:28:06 | 000,000,000 | ---D | M] -- C:\Users\Domisheek\AppData\Roaming\AVG10
[2010/03/08 17:25:42 | 000,000,000 | ---D | M] -- C:\Users\Domisheek\AppData\Roaming\AVG9
[2010/05/29 11:26:31 | 000,000,000 | ---D | M] -- C:\Users\Domisheek\AppData\Roaming\BeachPartyCraze
[2010/01/23 17:25:03 | 000,000,000 | ---D | M] -- C:\Users\Domisheek\AppData\Roaming\DAEMON Tools
[2010/01/23 17:25:03 | 000,000,000 | ---D | M] -- C:\Users\Domisheek\AppData\Roaming\DAEMON Tools Lite
[2010/01/23 17:25:03 | 000,000,000 | ---D | M] -- C:\Users\Domisheek\AppData\Roaming\DAEMON Tools Pro
[2010/02/03 14:04:43 | 000,000,000 | ---D | M] -- C:\Users\Domisheek\AppData\Roaming\GHISLER
[2011/07/11 09:56:54 | 000,000,000 | ---D | M] -- C:\Users\Domisheek\AppData\Roaming\ICQ
[2010/05/07 08:52:58 | 000,000,000 | ---D | M] -- C:\Users\Domisheek\AppData\Roaming\Merscom
[2010/03/31 08:18:52 | 000,000,000 | ---D | M] -- C:\Users\Domisheek\AppData\Roaming\My Games
[2010/05/22 09:51:43 | 000,000,000 | ---D | M] -- C:\Users\Domisheek\AppData\Roaming\Plan It Green Files
[2010/05/02 10:24:43 | 000,000,000 | ---D | M] -- C:\Users\Domisheek\AppData\Roaming\PlayFirst
[2011/07/07 19:19:51 | 000,000,000 | ---D | M] -- C:\Users\Domisheek\AppData\Roaming\Ubisoft
[2010/01/23 17:24:29 | 000,000,000 | ---D | M] -- C:\Users\Domisheek\AppData\Roaming\URSoft
[2011/07/09 18:05:23 | 000,000,000 | ---D | M] -- C:\Users\Domisheek\AppData\Roaming\uTorrent
[2010/05/29 11:24:49 | 000,000,000 | ---D | M] -- C:\Users\Domisheek\AppData\Roaming\Western Software Technologies
[2010/02/14 13:07:43 | 000,000,000 | ---D | M] -- C:\Users\Domisheek\AppData\Roaming\Zoner
[2013/07/08 12:26:37 | 000,000,000 | ---D | M] -- C:\Users\domishek\AppData\Roaming\Allmyapps
[2013/01/12 15:06:09 | 000,000,000 | ---D | M] -- C:\Users\domishek\AppData\Roaming\AVG10
[2013/11/04 22:13:22 | 000,000,000 | ---D | M] -- C:\Users\domishek\AppData\Roaming\DAEMON Tools Lite
[2013/01/29 16:51:50 | 000,000,000 | ---D | M] -- C:\Users\domishek\AppData\Roaming\Rovio
[2013/11/04 23:03:34 | 000,000,000 | ---D | M] -- C:\Users\domishek\AppData\Roaming\Seznam.cz
[2012/12/12 10:16:33 | 000,000,000 | ---D | M] -- C:\Users\domishek\AppData\Roaming\TuneUp Software
[2011/07/22 16:35:07 | 000,000,000 | ---D | M] -- C:\Users\Juchůůů\AppData\Roaming\AnvSoft
[2011/07/12 14:23:30 | 000,000,000 | ---D | M] -- C:\Users\Juchůůů\AppData\Roaming\AVG10
[2011/09/04 20:21:20 | 000,000,000 | ---D | M] -- C:\Users\Juchůůů\AppData\Roaming\DAEMON Tools
[2011/10/04 14:04:41 | 000,000,000 | ---D | M] -- C:\Users\Juchůůů\AppData\Roaming\DAEMON Tools Lite
[2011/09/04 20:21:20 | 000,000,000 | ---D | M] -- C:\Users\Juchůůů\AppData\Roaming\DAEMON Tools Pro
[2012/01/12 15:32:32 | 000,000,000 | ---D | M] -- C:\Users\Juchůůů\AppData\Roaming\DVDVideoSoftIEHelpers
[2012/03/10 18:50:17 | 000,000,000 | ---D | M] -- C:\Users\Juchůůů\AppData\Roaming\ICQ
[2011/08/29 11:02:21 | 000,000,000 | ---D | M] -- C:\Users\Juchůůů\AppData\Roaming\Rovio
[2011/12/25 18:08:14 | 000,000,000 | ---D | M] -- C:\Users\Juchůůů\AppData\Roaming\Vso
[2013/01/13 12:58:35 | 000,000,000 | ---D | M] -- C:\Users\juhu\AppData\Roaming\AnvSoft
[2012/07/14 11:15:11 | 000,000,000 | ---D | M] -- C:\Users\juhu\AppData\Roaming\Apowersoft
[2012/05/06 13:46:53 | 000,000,000 | ---D | M] -- C:\Users\juhu\AppData\Roaming\AVG10
[2013/09/22 09:02:25 | 000,000,000 | ---D | M] -- C:\Users\juhu\AppData\Roaming\Babylon
[2012/10/28 11:48:33 | 000,000,000 | ---D | M] -- C:\Users\juhu\AppData\Roaming\ICQ
[2012/06/23 11:41:54 | 000,000,000 | ---D | M] -- C:\Users\juhu\AppData\Roaming\ICQ Search
[2013/09/22 09:12:21 | 000,000,000 | ---D | M] -- C:\Users\juhu\AppData\Roaming\PlayFirst
[2012/11/30 12:51:06 | 000,000,000 | ---D | M] -- C:\Users\juhu\AppData\Roaming\Rovio
[2013/12/06 19:00:40 | 000,000,000 | ---D | M] -- C:\Users\juhu\AppData\Roaming\Seznam.cz
[2012/09/04 20:09:36 | 000,000,000 | ---D | M] -- C:\Users\juhu\AppData\Roaming\TuneUp Software
[2013/10/04 14:57:42 | 000,000,000 | ---D | M] -- C:\Users\juhu\AppData\Roaming\Unity
[2010/11/14 17:38:38 | 000,000,000 | ---D | M] -- C:\Users\Terka\AppData\Roaming\Ace
[2010/10/06 20:15:21 | 000,000,000 | ---D | M] -- C:\Users\Terka\AppData\Roaming\AnvSoft
[2010/12/25 10:45:21 | 000,000,000 | ---D | M] -- C:\Users\Terka\AppData\Roaming\Apowersoft
[2011/03/05 19:51:16 | 000,000,000 | ---D | M] -- C:\Users\Terka\AppData\Roaming\AVG10
[2010/03/26 12:32:56 | 000,000,000 | ---D | M] -- C:\Users\Terka\AppData\Roaming\BearShare
[2011/04/25 18:29:03 | 000,000,000 | ---D | M] -- C:\Users\Terka\AppData\Roaming\DAEMON Tools
[2011/05/02 16:12:45 | 000,000,000 | ---D | M] -- C:\Users\Terka\AppData\Roaming\DAEMON Tools Lite
[2011/04/25 18:29:03 | 000,000,000 | ---D | M] -- C:\Users\Terka\AppData\Roaming\DAEMON Tools Pro
[2010/11/14 17:54:34 | 000,000,000 | ---D | M] -- C:\Users\Terka\AppData\Roaming\Disney Interactive Studios
[2011/03/03 14:26:01 | 000,000,000 | ---D | M] -- C:\Users\Terka\AppData\Roaming\Ice Age 2
[2011/07/13 11:04:37 | 000,000,000 | ---D | M] -- C:\Users\Terka\AppData\Roaming\ICQ
[2011/02/24 14:13:43 | 000,000,000 | ---D | M] -- C:\Users\Terka\AppData\Roaming\LolClient
[2010/05/12 13:41:07 | 000,000,000 | ---D | M] -- C:\Users\Terka\AppData\Roaming\Merscom
[2010/05/07 09:12:35 | 000,000,000 | ---D | M] -- C:\Users\Terka\AppData\Roaming\PlayFirst
[2011/07/06 12:28:46 | 000,000,000 | ---D | M] -- C:\Users\Terka\AppData\Roaming\Ubisoft
[2011/07/09 20:43:14 | 000,000,000 | ---D | M] -- C:\Users\Terka\AppData\Roaming\uTorrent
[2010/05/29 11:37:27 | 000,000,000 | ---D | M] -- C:\Users\Terka\AppData\Roaming\Western Software Technologies
[2010/11/22 18:45:21 | 000,000,000 | ---D | M] -- C:\Users\Terka\AppData\Roaming\Zoner
[2010/01/07 19:35:18 | 000,000,000 | ---D | M] -- C:\Users\Terkaa\AppData\Roaming\AnvSoft
[2010/01/22 20:10:40 | 000,000,000 | ---D | M] -- C:\Users\Terkaa\AppData\Roaming\ICQ
[2010/01/06 20:26:58 | 000,000,000 | -HSD | M] -- C:\Users\Terkaa\AppData\Roaming\lowsec
[2010/01/08 11:27:33 | 000,000,000 | ---D | M] -- C:\Users\Terkaa\AppData\Roaming\Zoner
[2012/12/12 10:16:33 | 000,000,000 | ---D | M] -- C:\Users\UpdatusUser\AppData\Roaming\TuneUp Software
========== Purity Check ==========
========== Custom Scans ==========
< >
[2006/11/02 14:00:25 | 000,000,006 | -H-- | C] () -- C:\Windows\Tasks\SA.DAT
[2006/11/02 14:00:25 | 000,032,580 | ---- | C] () -- C:\Windows\Tasks\SCHEDLGU.TXT
[2013/11/12 19:25:37 | 000,000,906 | ---- | C] () -- C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1055357281-2900607726-3267283594-1008Core.job
[2013/11/12 19:25:38 | 000,000,958 | ---- | C] () -- C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1055357281-2900607726-3267283594-1008UA.job
< >
< MD5 for: AGP440.SYS >
[2008/01/19 08:42:25 | 000,056,376 | ---- | M] (Microsoft Corporation) MD5=13F9E33747E6B41A3FF305C37DB0D360 -- C:\Windows\System32\DriverStore\FileRepository\machine.inf_51b95d75\AGP440.sys
[2008/01/19 08:42:25 | 000,056,376 | ---- | M] (Microsoft Corporation) MD5=13F9E33747E6B41A3FF305C37DB0D360 -- C:\Windows\System32\DriverStore\FileRepository\machine.inf_f750e484\AGP440.sys
[2008/01/19 08:42:25 | 000,056,376 | ---- | M] (Microsoft Corporation) MD5=13F9E33747E6B41A3FF305C37DB0D360 -- C:\Windows\winsxs\x86_machine.inf_31bf3856ad364e35_6.0.6001.18000_none_ba12ed3bbeb0d97a\AGP440.sys
[2008/01/19 08:42:25 | 000,056,376 | ---- | M] (Microsoft Corporation) MD5=13F9E33747E6B41A3FF305C37DB0D360 -- C:\Windows\winsxs\x86_machine.inf_31bf3856ad364e35_6.0.6002.18005_none_bbfe6647bbd2a4c6\AGP440.sys
[2006/11/02 10:49:52 | 000,053,864 | ---- | M] (Microsoft Corporation) MD5=EF23439CDD587F64C2C1B8825CEAD7D8 -- C:\Windows\System32\drivers\AGP440.sys
[2006/11/02 10:49:52 | 000,053,864 | ---- | M] (Microsoft Corporation) MD5=EF23439CDD587F64C2C1B8825CEAD7D8 -- C:\Windows\System32\DriverStore\FileRepository\machine.inf_920a2c1f\AGP440.sys
< MD5 for: ATAPI.SYS >
[2009/04/11 07:32:26 | 000,019,944 | ---- | M] (Microsoft Corporation) MD5=1F05B78AB91C9075565A9D8A4B880BC4 -- C:\Windows\System32\drivers\atapi.sys
[2009/04/11 07:32:26 | 000,019,944 | ---- | M] (Microsoft Corporation) MD5=1F05B78AB91C9075565A9D8A4B880BC4 -- C:\Windows\System32\DriverStore\FileRepository\mshdc.inf_b12d8e84\atapi.sys
[2009/04/11 07:32:26 | 000,019,944 | ---- | M] (Microsoft Corporation) MD5=1F05B78AB91C9075565A9D8A4B880BC4 -- C:\Windows\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.0.6002.18005_none_df23a1261eab99e8\atapi.sys
[2008/01/19 08:41:30 | 000,021,560 | ---- | M] (Microsoft Corporation) MD5=2D9C903DC76A66813D350A562DE40ED9 -- C:\Windows\System32\DriverStore\FileRepository\mshdc.inf_cc18792d\atapi.sys
[2008/01/19 08:41:30 | 000,021,560 | ---- | M] (Microsoft Corporation) MD5=2D9C903DC76A66813D350A562DE40ED9 -- C:\Windows\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.0.6001.18000_none_dd38281a2189ce9c\atapi.sys
[2006/11/02 10:49:36 | 000,019,048 | ---- | M] (Microsoft Corporation) MD5=4F4FCB8B6EA06784FB6D475B7EC7300F -- C:\Windows\System32\DriverStore\FileRepository\mshdc.inf_c6c2e699\atapi.sys
< MD5 for: AUTOCHK.EXE >
[2009/04/11 07:27:20 | 000,643,072 | ---- | M] (Microsoft Corporation) MD5=10761177A6EBE45843F443E99509F5E7 -- C:\Windows\System32\autochk.exe
[2009/04/11 07:27:20 | 000,643,072 | ---- | M] (Microsoft Corporation) MD5=10761177A6EBE45843F443E99509F5E7 -- C:\Windows\winsxs\x86_microsoft-windows-autochk_31bf3856ad364e35_6.0.6002.18005_none_e3df6655bee2ee3b\autochk.exe
[2008/01/19 08:33:01 | 000,642,560 | ---- | M] (Microsoft Corporation) MD5=2FC5BE79B51714B479809358E4908FC3 -- C:\Windows\winsxs\x86_microsoft-windows-autochk_31bf3856ad364e35_6.0.6001.18000_none_e1f3ed49c1c122ef\autochk.exe
[2006/11/02 10:44:50 | 000,640,000 | ---- | M] (Microsoft Corporation) MD5=C08D1FE284C3330934E45D6E5F5B768B -- C:\Windows\winsxs\x86_microsoft-windows-autochk_31bf3856ad364e35_6.0.6000.16386_none_dfbd2b4dc4d6121b\autochk.exe
< MD5 for: CDROM.SYS >
[2008/01/19 06:49:51 | 000,067,072 | ---- | M] (Microsoft Corporation) MD5=1EC25CEA0DE6AC4718BF89F9E1778B57 -- C:\Windows\System32\DriverStore\FileRepository\cdrom.inf_a29e71c6\cdrom.sys
[2008/01/19 06:49:51 | 000,067,072 | ---- | M] (Microsoft Corporation) MD5=1EC25CEA0DE6AC4718BF89F9E1778B57 -- C:\Windows\winsxs\x86_cdrom.inf_31bf3856ad364e35_6.0.6001.18000_none_5fa95be2a3c76a4a\cdrom.sys
[2009/04/11 05:39:17 | 000,067,072 | ---- | M] (Microsoft Corporation) MD5=6B4BFFB9BECD728097024276430DB314 -- C:\Windows\System32\drivers\cdrom.sys
[2009/04/11 05:39:17 | 000,067,072 | ---- | M] (Microsoft Corporation) MD5=6B4BFFB9BECD728097024276430DB314 -- C:\Windows\System32\DriverStore\FileRepository\cdrom.inf_c949a5b6\cdrom.sys
[2009/04/11 05:39:17 | 000,067,072 | ---- | M] (Microsoft Corporation) MD5=6B4BFFB9BECD728097024276430DB314 -- C:\Windows\winsxs\x86_cdrom.inf_31bf3856ad364e35_6.0.6002.18005_none_6194d4eea0e93596\cdrom.sys
[2006/11/02 09:51:44 | 000,067,072 | ---- | M] (Microsoft Corporation) MD5=8D1866E61AF096AE8B582454F5E4D303 -- C:\Windows\System32\DriverStore\FileRepository\cdrom.inf_e487f727\cdrom.sys
< MD5 for: CNGAUDIT.DLL >
[2006/11/02 10:46:03 | 000,011,776 | ---- | M] (Microsoft Corporation) MD5=7F15B4953378C8B5161D65C26D5FED4D -- C:\Windows\System32\cngaudit.dll
[2006/11/02 10:46:03 | 000,011,776 | ---- | M] (Microsoft Corporation) MD5=7F15B4953378C8B5161D65C26D5FED4D -- C:\Windows\winsxs\x86_microsoft-windows-cngaudit-dll_31bf3856ad364e35_6.0.6000.16386_none_e62d292932a96ce6\cngaudit.dll
< MD5 for: CRYPTSVC.DLL >
[2013/10/03 14:16:48 | 000,135,168 | ---- | M] (Microsoft Corporation) MD5=165E9D93A84A7F55EBEEB1B554110680 -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.0.6002.23235_none_78542a95b127239a\cryptsvc.dll
[2006/11/02 10:46:03 | 000,123,392 | ---- | M] (Microsoft Corporation) MD5=1C26FB097170A2A91066D1E3A24366E3 -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.0.6000.16386_none_73c8d7689de43d15\cryptsvc.dll
[2013/04/24 05:00:30 | 000,133,120 | ---- | M] (Microsoft Corporation) MD5=3EDE4C1F9672C972479201544969ADCB -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.0.6002.18831_none_77c6b0b4980cf0e4\cryptsvc.dll
[2013/07/08 05:16:55 | 000,133,120 | ---- | M] (Microsoft Corporation) MD5=684C130BBC6DB681BAD4920A4C944AA5 -- C:\Windows\System32\cryptsvc.dll
[2013/07/08 05:16:55 | 000,133,120 | ---- | M] (Microsoft Corporation) MD5=684C130BBC6DB681BAD4920A4C944AA5 -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.0.6002.18881_none_7790a11898357c99\cryptsvc.dll
[2008/01/19 08:34:00 | 000,128,000 | ---- | M] (Microsoft Corporation) MD5=6DE363F9F99334514C46AEC02D3E3678 -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.0.6001.18000_none_75ff99649acf4de9\cryptsvc.dll
[2012/04/23 17:00:53 | 000,133,120 | ---- | M] (Microsoft Corporation) MD5=75C6A297E364014840B48ECCD7525E30 -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.0.6002.18618_none_77e34ec697f67015\cryptsvc.dll
[2013/07/08 03:50:53 | 000,135,168 | ---- | M] (Microsoft Corporation) MD5=828805E2E7F529B24849AD52740288DA -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.0.6002.23154_none_783d888db13844fe\cryptsvc.dll
[2012/04/23 15:48:06 | 000,135,168 | ---- | M] (Microsoft Corporation) MD5=C979AEA8C4D8F875CD25507D08980006 -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.0.6002.22840_none_78447b63b1339621\cryptsvc.dll
[2012/06/02 12:09:26 | 000,135,168 | ---- | M] (Microsoft Corporation) MD5=DD9CCF40ED80DD0D62F1B607A1EA4449 -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.0.6002.22869_none_7837de25b13bb212\cryptsvc.dll
[2012/06/02 01:02:32 | 000,133,120 | ---- | M] (Microsoft Corporation) MD5=F1E8C34892336D33EDDCDFE44E474F64 -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.0.6002.18643_none_77bddd9098134535\cryptsvc.dll
[2009/04/11 07:28:18 | 000,129,024 | ---- | M] (Microsoft Corporation) MD5=FB27772BEAF8E1D28CCD825C09DA939B -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.0.6002.18005_none_77eb127097f11935\cryptsvc.dll
[2013/04/24 04:46:45 | 000,135,168 | ---- | M] (Microsoft Corporation) MD5=FBE051C07C3D2B9011ECB1C7A73120C1 -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.0.6002.23101_none_7870974bb1126d44\cryptsvc.dll
< MD5 for: EXPLORER.EXE >
[2009/02/03 11:41:21 | 002,923,520 | ---- | M] (Microsoft Corporation) MD5=37440D09DEAE0B672A04DCCF7ABF06BE -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6000.16771_none_4f83bb287ccdb7e3\explorer.exe
[2009/02/03 11:41:20 | 002,927,104 | ---- | M] (Microsoft Corporation) MD5=4F554999D7D5F05DAAEBBA7B5BA1089D -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6001.18164_none_5177ca9879e978e8\explorer.exe
[2009/02/03 11:41:20 | 002,927,616 | ---- | M] (Microsoft Corporation) MD5=50BA5850147410CDE89C523AD3BC606E -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6001.22298_none_51e4f8c7931bd1e1\explorer.exe
[2009/04/11 07:27:36 | 002,926,592 | ---- | M] (Microsoft Corporation) MD5=D07D4C3038F3578FFCE1C0237F2A1253 -- C:\Windows\explorer.exe
[2009/04/11 07:27:36 | 002,926,592 | ---- | M] (Microsoft Corporation) MD5=D07D4C3038F3578FFCE1C0237F2A1253 -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6002.18005_none_53a0201e76de3a0b\explorer.exe
[2009/02/03 11:41:20 | 002,923,520 | ---- | M] (Microsoft Corporation) MD5=E7156B0B74762D9DE0E66BDCDE06E5FB -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6000.20947_none_5033cb5995cd990b\explorer.exe
[2006/11/02 10:45:07 | 002,923,520 | ---- | M] (Microsoft Corporation) MD5=FD8C53FB002217F6F888BCF6F5D7084D -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6000.16386_none_4f7de5167cd15deb\explorer.exe
[2008/01/19 08:33:10 | 002,927,104 | ---- | M] (Microsoft Corporation) MD5=FFA764631CB70A30065C12EF8E174F9F -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6001.18000_none_51b4a71279bc6ebf\explorer.exe
< MD5 for: HAL.DLL >
[2009/04/11 07:32:46 | 000,177,128 | ---- | M] (Microsoft Corporation) MD5=B8D52005181A15D7D1470CBF2AF214DD -- C:\Windows\System32\hal.dll
< MD5 for: IASTORV.SYS >
[2008/01/19 08:42:51 | 000,235,064 | ---- | M] (Intel Corporation) MD5=54155EA1B0DF185878E0FC9EC3AC3A14 -- C:\Windows\System32\DriverStore\FileRepository\iastorv.inf_c9df7691\iaStorV.sys
[2008/01/19 08:42:51 | 000,235,064 | ---- | M] (Intel Corporation) MD5=54155EA1B0DF185878E0FC9EC3AC3A14 -- C:\Windows\winsxs\x86_iastorv.inf_31bf3856ad364e35_6.0.6001.18000_none_af11527887c7fa8f\iaStorV.sys
[2006/11/02 10:51:25 | 000,232,040 | ---- | M] (Intel Corporation) MD5=C957BF4B5D80B46C5017BF0101E6C906 -- C:\Windows\System32\drivers\iaStorV.sys
[2006/11/02 10:51:25 | 000,232,040 | ---- | M] (Intel Corporation) MD5=C957BF4B5D80B46C5017BF0101E6C906 -- C:\Windows\System32\DriverStore\FileRepository\iastorv.inf_37cdafa4\iaStorV.sys
< MD5 for: ISAPNP.SYS >
[2006/11/02 10:50:24 | 000,047,208 | ---- | M] (Microsoft Corporation) MD5=350FCA7E73CF65BCEF43FAE1E4E91293 -- C:\Windows\System32\drivers\isapnp.sys
[2006/11/02 10:50:24 | 000,047,208 | ---- | M] (Microsoft Corporation) MD5=350FCA7E73CF65BCEF43FAE1E4E91293 -- C:\Windows\System32\DriverStore\FileRepository\machine.inf_920a2c1f\isapnp.sys
[2008/01/19 08:42:15 | 000,049,720 | ---- | M] (Microsoft Corporation) MD5=6C70698A3E5C4376C6AB5C7C17FB0614 -- C:\Windows\System32\DriverStore\FileRepository\machine.inf_51b95d75\isapnp.sys
[2008/01/19 08:42:15 | 000,049,720 | ---- | M] (Microsoft Corporation) MD5=6C70698A3E5C4376C6AB5C7C17FB0614 -- C:\Windows\System32\DriverStore\FileRepository\machine.inf_f750e484\isapnp.sys
[2008/01/19 08:42:15 | 000,049,720 | ---- | M] (Microsoft Corporation) MD5=6C70698A3E5C4376C6AB5C7C17FB0614 -- C:\Windows\winsxs\x86_machine.inf_31bf3856ad364e35_6.0.6001.18000_none_ba12ed3bbeb0d97a\isapnp.sys
[2008/01/19 08:42:15 | 000,049,720 | ---- | M] (Microsoft Corporation) MD5=6C70698A3E5C4376C6AB5C7C17FB0614 -- C:\Windows\winsxs\x86_machine.inf_31bf3856ad364e35_6.0.6002.18005_none_bbfe6647bbd2a4c6\isapnp.sys
< MD5 for: LSASS.EXE >
[2009/06/15 13:51:56 | 000,009,728 | ---- | M] (Microsoft Corporation) MD5=203D86EBD6D8E4C8501B222421E81506 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6002.22152_none_a886901f7335e2fc\lsass.exe
[2009/09/10 15:44:14 | 000,009,728 | ---- | M] (Microsoft Corporation) MD5=2D3AC5E7AC01E905F3ABD2D745FE3A9B -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6002.22223_none_a8a80213731ca5a7\lsass.exe
[2009/06/15 13:48:49 | 000,009,728 | ---- | M] (Microsoft Corporation) MD5=3978F3540329E16C0AC3BCF677E5669F -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6002.18051_none_a7fbf30a5a1929db\lsass.exe
[2009/02/13 08:26:04 | 000,007,680 | ---- | M] (Microsoft Corporation) MD5=59DE082968FDD257FFF0D209B9A5B460 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6000.16820_none_a44eb0105fb4d975\lsass.exe
[2012/06/01 23:37:38 | 000,009,728 | ---- | M] (Microsoft Corporation) MD5=613DEB66A91820F0A41915B40BB8833F -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6002.22869_none_a882cf8373379c5f\lsass.exe
[2006/11/02 10:45:21 | 000,007,680 | ---- | M] (Microsoft Corporation) MD5=6A0E382E74280E4CC0DF17FE2661D003 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6000.16386_none_a413c8c65fe02762\lsass.exe
[2009/06/15 14:03:38 | 000,009,728 | ---- | M] (Microsoft Corporation) MD5=6F1F23D3599EAE17734451936B7F17C6 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6001.22450_none_a69e1da376115b2a\lsass.exe
[2011/11/16 15:12:25 | 000,009,728 | ---- | M] (Microsoft Corporation) MD5=A3E186B4B935905B829219502557314E -- C:\Windows\System32\lsass.exe
[2011/11/16 15:12:25 | 000,009,728 | ---- | M] (Microsoft Corporation) MD5=A3E186B4B935905B829219502557314E -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6002.18541_none_a806cc745a10ffad\lsass.exe
[2011/11/16 15:12:25 | 000,009,728 | ---- | M] (Microsoft Corporation) MD5=A3E186B4B935905B829219502557314E -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6002.18643_none_a808ceee5a0f2f82\lsass.exe
[2009/06/15 13:57:59 | 000,009,728 | ---- | M] (Microsoft Corporation) MD5=A911ECAC81F94ADEAFBE8E3F7873EDB0 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6001.18272_none_a600dfae5d0228c9\lsass.exe
[2009/02/13 05:58:37 | 000,007,680 | ---- | M] (Microsoft Corporation) MD5=AFF8A58280863629CA4FFA9E0B259F1E -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6000.21010_none_a4e2f4e978ca9090\lsass.exe
[2009/06/15 13:59:08 | 000,007,680 | ---- | M] (Microsoft Corporation) MD5=BA9A67672E025078C77967731BCFC560 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6000.21067_none_a4b3e75378eccda6\lsass.exe
[2009/06/15 14:10:12 | 000,007,680 | ---- | M] (Microsoft Corporation) MD5=C731B1FE449D4E9CEA358C9D55B69BE9 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6000.16870_none_a418a0745fdd652a\lsass.exe
[2009/09/09 12:09:38 | 000,009,728 | ---- | M] (Microsoft Corporation) MD5=CB7E838C140B4087B2DA323F2D4523C5 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6001.22518_none_a6d1618975e9b345\lsass.exe
[2009/09/10 15:47:51 | 000,007,680 | ---- | M] (Microsoft Corporation) MD5=D09A5DA84B7C9CA9B02EBCD7FAE41C8D -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6000.21125_none_a4dd285578ce285b\lsass.exe
[2008/01/19 08:33:14 | 000,009,728 | ---- | M] (Microsoft Corporation) MD5=DCF733788C7D088D814E5F80EB4B3E0F -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6001.18000_none_a64a8ac25ccb3836\lsass.exe
[2008/01/19 08:33:14 | 000,009,728 | ---- | M] (Microsoft Corporation) MD5=DCF733788C7D088D814E5F80EB4B3E0F -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6001.18215_none_a644c0145ccecd28\lsass.exe
[2008/01/19 08:33:14 | 000,009,728 | ---- | M] (Microsoft Corporation) MD5=DCF733788C7D088D814E5F80EB4B3E0F -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6002.18005_none_a83603ce59ed0382\lsass.exe
[2011/11/16 14:57:04 | 000,009,728 | ---- | M] (Microsoft Corporation) MD5=EBFAEB786C46B407930811F94F08877D -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6002.22742_none_a8916b6f732db5f5\lsass.exe
[2009/02/13 09:20:29 | 000,009,728 | ---- | M] (Microsoft Corporation) MD5=F4C62B07E5BF96F1FDCA9DB393ECED22 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6001.22376_none_a68e7da1761c2def\lsass.exe
< MD5 for: NDIS.SYS >
[2009/04/11 07:32:49 | 000,527,848 | ---- | M] (Microsoft Corporation) MD5=1357274D1883F68300AEADD15D7BBB42 -- C:\Windows\System32\drivers\ndis.sys
[2009/04/11 07:32:49 | 000,527,848 | ---- | M] (Microsoft Corporation) MD5=1357274D1883F68300AEADD15D7BBB42 -- C:\Windows\winsxs\x86_microsoft-windows-ndis_31bf3856ad364e35_6.0.6002.18005_none_a9b2a4d31930d864\ndis.sys
[2006/11/02 10:51:42 | 000,500,840 | ---- | M] (Microsoft Corporation) MD5=227C11E1E7CF6EF8AFB2A238D209760C -- C:\Windows\winsxs\x86_microsoft-windows-ndis_31bf3856ad364e35_6.0.6000.16386_none_a59069cb1f23fc44\ndis.sys
[2008/01/19 08:43:31 | 000,529,464 | ---- | M] (Microsoft Corporation) MD5=9BDC71790FA08F0A0B5F10462B1BD0B1 -- C:\Windows\winsxs\x86_microsoft-windows-ndis_31bf3856ad364e35_6.0.6001.18000_none_a7c72bc71c0f0d18\ndis.sys
< MD5 for: NETLOGON.DLL >
[2006/11/02 10:46:11 | 000,559,616 | ---- | M] (Microsoft Corporation) MD5=889A2C9F2AACCD8F64EF50AC0B3D553B -- C:\Windows\winsxs\x86_microsoft-windows-security-netlogon_31bf3856ad364e35_6.0.6000.16386_none_fb80f5473b0ed783\netlogon.dll
[2009/04/11 07:28:23 | 000,592,896 | ---- | M] (Microsoft Corporation) MD5=95DAECF0FB120A7B5DA679CC54E37DDE -- C:\Windows\System32\netlogon.dll
[2009/04/11 07:28:23 | 000,592,896 | ---- | M] (Microsoft Corporation) MD5=95DAECF0FB120A7B5DA679CC54E37DDE -- C:\Windows\winsxs\x86_microsoft-windows-security-netlogon_31bf3856ad364e35_6.0.6002.18005_none_ffa3304f351bb3a3\netlogon.dll
[2008/01/19 08:35:36 | 000,592,384 | ---- | M] (Microsoft Corporation) MD5=A8EFC0B6E75B789F7FD3BA5025D4E37F -- C:\Windows\winsxs\x86_microsoft-windows-security-netlogon_31bf3856ad364e35_6.0.6001.18000_none_fdb7b74337f9e857\netlogon.dll
< MD5 for: NVRAID.SYS >
[2008/01/19 08:43:01 | 000,102,968 | ---- | M] (NVIDIA Corporation) MD5=2EDF9E7751554B42CBB60116DE727101 -- C:\Windows\System32\DriverStore\FileRepository\nvraid.inf_31c3d71d\nvraid.sys
[2008/01/19 08:43:01 | 000,102,968 | ---- | M] (NVIDIA Corporation) MD5=2EDF9E7751554B42CBB60116DE727101 -- C:\Windows\winsxs\x86_nvraid.inf_31bf3856ad364e35_6.0.6001.18000_none_39dac327befea467\nvraid.sys
[2006/11/02 10:50:24 | 000,088,680 | ---- | M] (NVIDIA Corporation) MD5=E69E946F80C1C31C53003BFBF50CBB7C -- C:\Windows\System32\drivers\nvraid.sys
[2006/11/02 10:50:24 | 000,088,680 | ---- | M] (NVIDIA Corporation) MD5=E69E946F80C1C31C53003BFBF50CBB7C -- C:\Windows\System32\DriverStore\FileRepository\nvraid.inf_733654ff\nvraid.sys
< MD5 for: NVSTOR.SYS >
[2006/11/02 10:50:13 | 000,040,040 | ---- | M] (NVIDIA Corporation) MD5=9E0BA19A28C498A6D323D065DB76DFFC -- C:\Windows\System32\drivers\nvstor.sys
[2006/11/02 10:50:13 | 000,040,040 | ---- | M] (NVIDIA Corporation) MD5=9E0BA19A28C498A6D323D065DB76DFFC -- C:\Windows\System32\DriverStore\FileRepository\nvraid.inf_733654ff\nvstor.sys
[2008/01/19 08:42:09 | 000,045,112 | ---- | M] (NVIDIA Corporation) MD5=ABED0C09758D1D97DB0042DBB2688177 -- C:\Windows\System32\DriverStore\FileRepository\nvraid.inf_31c3d71d\nvstor.sys
[2008/01/19 08:42:09 | 000,045,112 | ---- | M] (NVIDIA Corporation) MD5=ABED0C09758D1D97DB0042DBB2688177 -- C:\Windows\winsxs\x86_nvraid.inf_31bf3856ad364e35_6.0.6001.18000_none_39dac327befea467\nvstor.sys
< MD5 for: SCECLI.DLL >
[2008/01/19 08:36:19 | 000,177,152 | ---- | M] (Microsoft Corporation) MD5=28B84EB538F7E8A0FE8B9299D591E0B9 -- C:\Windows\winsxs\x86_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.0.6001.18000_none_380de25bd91b6f12\scecli.dll
[2006/11/02 10:46:12 | 000,176,640 | ---- | M] (Microsoft Corporation) MD5=80E2839D05CA5970A86D7BE2A08BFF61 -- C:\Windows\winsxs\x86_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.0.6000.16386_none_35d7205fdc305e3e\scecli.dll
[2009/04/11 07:28:24 | 000,177,152 | ---- | M] (Microsoft Corporation) MD5=8FC182167381E9915651267044105EE1 -- C:\Windows\System32\scecli.dll
[2009/04/11 07:28:24 | 000,177,152 | ---- | M] (Microsoft Corporation) MD5=8FC182167381E9915651267044105EE1 -- C:\Windows\winsxs\x86_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.0.6002.18005_none_39f95b67d63d3a5e\scecli.dll
< MD5 for: SMSS.EXE >
[2013/07/08 02:18:50 | 000,064,512 | ---- | M] (Microsoft Corporation) MD5=18CE0D0DCB7AF0D3E67ECF12BDE1382D -- C:\Windows\winsxs\x86_microsoft-windows-smss_31bf3856ad364e35_6.0.6002.23154_none_ae7897262f9a96cf\smss.exe
[2013/03/09 02:16:53 | 000,064,512 | ---- | M] (Microsoft Corporation) MD5=44A40B18D9F6315D35F4539A41ECDE0D -- C:\Windows\winsxs\x86_microsoft-windows-smss_31bf3856ad364e35_6.0.6002.23076_none_ae64f5fc2fa90438\smss.exe
[2008/01/19 08:33:31 | 000,064,000 | ---- | M] (Microsoft Corporation) MD5=6701DDAF68BEDE6BBEEA9D514D73A35B -- C:\Windows\winsxs\x86_microsoft-windows-smss_31bf3856ad364e35_6.0.6001.18000_none_ac3aa7fd19319fba\smss.exe
[2009/04/11 07:28:04 | 000,064,000 | ---- | M] (Microsoft Corporation) MD5=98AF15A94CD6AC37248E72E5FE789B35 -- C:\Windows\winsxs\x86_microsoft-windows-smss_31bf3856ad364e35_6.0.6002.18005_none_ae26210916536b06\smss.exe
[2013/05/02 02:27:42 | 000,064,512 | ---- | M] (Microsoft Corporation) MD5=AF2F8F104F119DD10AFA8B54A006F1B6 -- C:\Windows\winsxs\x86_microsoft-windows-smss_31bf3856ad364e35_6.0.6002.23103_none_aeada6782f72f1c3\smss.exe
[2013/03/09 02:28:08 | 000,064,000 | ---- | M] (Microsoft Corporation) MD5=BE7480C91E89EB82FC080F772C220AE4 -- C:\Windows\System32\smss.exe
[2013/03/09 02:28:08 | 000,064,000 | ---- | M] (Microsoft Corporation) MD5=BE7480C91E89EB82FC080F772C220AE4 -- C:\Windows\winsxs\x86_microsoft-windows-smss_31bf3856ad364e35_6.0.6002.18805_none_ae2630391653543e\smss.exe
[2006/11/02 10:45:45 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=CAA75757BB3695478C23CB0624342A61 -- C:\Windows\winsxs\x86_microsoft-windows-smss_31bf3856ad364e35_6.0.6000.16386_none_aa03e6011c468ee6\smss.exe
< MD5 for: SVCHOST.EXE >
[2006/11/02 10:45:47 | 000,022,016 | ---- | M] (Microsoft Corporation) MD5=10DA15933D582D2FEDCF705EFE394B09 -- C:\Windows\winsxs\x86_microsoft-windows-services-svchost_31bf3856ad364e35_6.0.6000.16386_none_b38497a50862ad11\svchost.exe
[2008/01/19 08:33:32 | 000,021,504 | ---- | M] (Microsoft Corporation) MD5=3794B461C45882E06856F282EEF025AF -- C:\Windows\System32\svchost.exe
[2008/01/19 08:33:32 | 000,021,504 | ---- | M] (Microsoft Corporation) MD5=3794B461C45882E06856F282EEF025AF -- C:\Windows\winsxs\x86_microsoft-windows-services-svchost_31bf3856ad364e35_6.0.6001.18000_none_b5bb59a1054dbde5\svchost.exe
< MD5 for: TCPIP.SYS >
[2008/04/26 09:08:16 | 000,891,448 | ---- | M] (Microsoft Corporation) MD5=01EC1E92595F839BEE70D439C46796E3 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.22167_none_b36dd19b7fae39c7\tcpip.sys
[2013/05/08 04:40:36 | 000,914,792 | ---- | M] (Microsoft Corporation) MD5=078218D74C4EFC2CE7E4C6DF22A94F2F -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6002.23106_none_b59411ab7ca4df04\tcpip.sys
[2009/04/11 07:33:02 | 000,897,000 | ---- | M] (Microsoft Corporation) MD5=0E6B0885C3D5E4643ED2D043DE3433D8 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6002.18005_none_b5098b5e63880c42\tcpip.sys
[2011/09/20 22:02:55 | 000,913,280 | ---- | M] (Microsoft Corporation) MD5=16731B631F28F63CD9F4CB60940E7DDD -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6002.22719_none_b58c64c97caa1c43\tcpip.sys
[2009/12/08 21:52:30 | 000,897,624 | ---- | M] (Microsoft Corporation) MD5=1ACBB7A47E78F4CC82D2EFFB72901528 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.18377_none_b2d96a966698ad63\tcpip.sys
[2009/08/15 22:30:53 | 000,816,640 | ---- | M] (Microsoft Corporation) MD5=2512B4D1353370D6688B1AF1F5AFA1CF -- C:\Windows\winsxs\x86_microsoft-windows-tcpip_31bf3856ad364e35_6.0.6000.21108_none_6030d425ab49af00\tcpip.sys
[2009/08/14 18:01:55 | 000,900,168 | ---- | M] (Microsoft Corporation) MD5=2608E71AAD54564647D4BB984E1925AA -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.22497_none_b34d67897fc6850f\tcpip.sys
[2011/06/17 21:13:55 | 000,905,104 | ---- | M] (Microsoft Corporation) MD5=2756186E287139310997090797E0182B -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6002.18484_none_b4b2134c63c9c70f\tcpip.sys
[2012/03/30 13:39:11 | 000,905,600 | ---- | M] (Microsoft Corporation) MD5=27D470DABC77BC60D0A3B0E4DEB6CB91 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6002.18604_none_b50896786388e1d5\tcpip.sys
[2010/02/18 12:51:51 | 000,818,688 | ---- | M] (Microsoft Corporation) MD5=2C1F7005AA3B62721BFDB307BD5F5010 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip_31bf3856ad364e35_6.0.6000.21226_none_6019359fab5bb15b\tcpip.sys
[2010/02/18 15:49:38 | 000,898,952 | ---- | M] (Microsoft Corporation) MD5=2EAE4500984C2F8DACFB977060300A15 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.18427_none_b30f7c1866701ed5\tcpip.sys
[2009/08/14 15:24:47 | 000,813,568 | ---- | M] (Microsoft Corporation) MD5=300208927321066EA53761FDC98747C6 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip_31bf3856ad364e35_6.0.6000.16908_none_5fa75f38922bdbf4\tcpip.sys
[2013/01/04 12:28:19 | 000,914,792 | ---- | M] (Microsoft Corporation) MD5=3535CD93F944C00F098E73E12EE7FEB6 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6002.23013_none_b5863efb7cafb1c9\tcpip.sys
[2009/12/08 21:15:00 | 000,907,832 | ---- | M] (Microsoft Corporation) MD5=46E6685F3E92AEC743773ADD4CD54F57 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6002.22283_none_b53aaa1b7ce8560d\tcpip.sys
[2010/02/18 15:07:16 | 000,904,576 | ---- | M] (Microsoft Corporation) MD5=48CBE6D53632D0067C2D6B20F90D84CA -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6002.18209_none_b50d905263846bec\tcpip.sys
[2010/02/18 13:05:37 | 000,815,104 | ---- | M] (Microsoft Corporation) MD5=4A82FA8F0DF67AA354580C3FAAF8BDE3 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip_31bf3856ad364e35_6.0.6000.17021_none_5f8a957c924295b7\tcpip.sys
[2009/02/03 11:39:45 | 000,806,400 | ---- | M] (Microsoft Corporation) MD5=52A8BD6294F7D1443C6184C67AE13AF4 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip_31bf3856ad364e35_6.0.6000.20752_none_5ff4e4f9ab7777f4\tcpip.sys
[2013/05/08 05:37:21 | 000,905,576 | ---- | M] (Microsoft Corporation) MD5=548E198BAE21EFC21F8B5F0C1728AD27 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6002.18835_none_b4e92aca63a0494d\tcpip.sys
[2009/12/08 21:37:09 | 000,900,696 | ---- | M] (Microsoft Corporation) MD5=5653230D480A9C54D169E1B080B72CF5 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.22577_none_b36309477fb64a54\tcpip.sys
[2009/02/03 11:39:45 | 000,803,328 | ---- | M] (Microsoft Corporation) MD5=5DF77458AA92FDB36FCE79C60F74AB5D -- C:\Windows\winsxs\x86_microsoft-windows-tcpip_31bf3856ad364e35_6.0.6000.16627_none_5f90b964923d030a\tcpip.sys
[2010/06/16 16:55:58 | 000,902,032 | ---- | M] (Microsoft Corporation) MD5=6216A954ED7045B62880A92D6C9B9FC7 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.22713_none_b39feb737f8937a0\tcpip.sys
[2009/08/14 17:27:34 | 000,904,776 | ---- | M] (Microsoft Corporation) MD5=65877AA1B6A7CB797488E831698973E9 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6002.18091_none_b4a43aea63d4a25f\tcpip.sys
[2011/06/17 21:13:55 | 000,913,296 | ---- | M] (Microsoft Corporation) MD5=6647FCE6FC4970DAAFE5C64C794513D3 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6002.22662_none_b54f51417cd8f970\tcpip.sys
[2010/06/16 17:39:32 | 000,912,776 | ---- | M] (Microsoft Corporation) MD5=6A10AFCE0B38371064BE41C1FBFD3C6B -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6002.22425_none_b57d8e037cb5db63\tcpip.sys
[2013/07/05 04:20:37 | 000,914,880 | ---- | M] (Microsoft Corporation) MD5=6D0D344F643E28B31262AC2682109A3C -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6002.23152_none_b55a00e77cd1055d\tcpip.sys
[2013/01/04 12:28:18 | 000,905,576 | ---- | M] (Microsoft Corporation) MD5=74E2D020C47BB2B2FCCBA29A518A7EB4 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6002.18764_none_b4c7b8d663b986a2\tcpip.sys
[2010/06/16 16:59:54 | 000,898,952 | ---- | M] (Microsoft Corporation) MD5=782568AB6A43160A159B6215B70BCCE9 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.18493_none_b2bfcb7c66ac7d10\tcpip.sys
[2011/09/20 22:02:55 | 000,905,088 | ---- | M] (Microsoft Corporation) MD5=814A1C66FBD4E1B310A517221F1456BF -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6002.18519_none_b502c618638c7f52\tcpip.sys
[2008/04/26 09:26:49 | 000,891,448 | ---- | M] (Microsoft Corporation) MD5=82E266BEE5F0167E41C6ECFDD2A79C02 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.18063_none_b2e033a8669434a1\tcpip.sys
[2009/12/08 18:58:13 | 000,813,568 | ---- | M] (Microsoft Corporation) MD5=8734BD051FFDCBF8425CF222141C3741 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip_31bf3856ad364e35_6.0.6000.16973_none_5f56ae52926920d8\tcpip.sys
[2009/08/14 18:07:56 | 000,897,608 | ---- | M] (Microsoft Corporation) MD5=8A7AD2A214233F684242F289ED83EBC3 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.18311_none_b3144862666d6db3\tcpip.sys
[2010/02/18 18:36:50 | 000,902,024 | ---- | M] (Microsoft Corporation) MD5=93A5655CD9CD2F080EF1CB71A3666215 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.22636_none_b38d4a937f96be60\tcpip.sys
[2010/06/16 17:04:57 | 000,905,088 | ---- | M] (Microsoft Corporation) MD5=A474879AFA4A596B3A531F3E69730DBF -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6002.18272_none_b4baded863c37e22\tcpip.sys
[2009/12/08 18:45:32 | 000,816,640 | ---- | M] (Microsoft Corporation) MD5=CA3A5756672013A66BB9D547A5A62DCA -- C:\Windows\winsxs\x86_microsoft-windows-tcpip_31bf3856ad364e35_6.0.6000.21175_none_5fe223d3ab852692\tcpip.sys
[2013/07/05 05:53:33 | 000,905,664 | ---- | M] (Microsoft Corporation) MD5=D18D53974FD715D50FC76F9FFE1C830D -- C:\Windows\System32\drivers\tcpip.sys
[2013/07/05 05:53:33 | 000,905,664 | ---- | M] (Microsoft Corporation) MD5=D18D53974FD715D50FC76F9FFE1C830D -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6002.18880_none_b4ae19bc63cd564f\tcpip.sys
[2006/11/02 09:58:38 | 000,802,816 | ---- | M] (Microsoft Corporation) MD5=D944522B048A5FEB7700B5170D3D9423 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip_31bf3856ad364e35_6.0.6000.16386_none_5f4ed3e0926e99e4\tcpip.sys
[2010/02/18 15:22:11 | 000,910,216 | ---- | M] (Microsoft Corporation) MD5=D9F5DD5BBC8348E8F8220CCBF14C022E -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6002.22341_none_b563eb1d7cc9b0c2\tcpip.sys
[2009/12/08 21:01:08 | 000,904,776 | ---- | M] (Microsoft Corporation) MD5=DA467E7619AE5F4588E6262C13C8940A -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6002.18160_none_b4c3ac4a63bd325c\tcpip.sys
[2012/03/30 13:39:11 | 000,914,304 | ---- | M] (Microsoft Corporation) MD5=EE7E10BED85C312C1D5D30C435BDDA9F -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6002.22828_none_b58096797cb31c04\tcpip.sys
[2008/01/19 08:43:39 | 000,891,448 | ---- | M] (Microsoft Corporation) MD5=FC6E2835D667774D409C7C7021EAF9C4 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.18000_none_b31e1252666640f6\tcpip.sys
[2009/08/14 17:33:50 | 000,905,784 | ---- | M] (Microsoft Corporation) MD5=FF71856BD4CD6D4367F9FD84BE79A874 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6002.22200_none_b58e289d7caa2a80\tcpip.sys
< MD5 for: USERINIT.EXE >
[2008/01/19 08:33:33 | 000,025,088 | ---- | M] (Microsoft Corporation) MD5=0E135526E9785D085BCD9AEDE6FBCBF9 -- C:\Windows\System32\userinit.exe
[2008/01/19 08:33:33 | 000,025,088 | ---- | M] (Microsoft Corporation) MD5=0E135526E9785D085BCD9AEDE6FBCBF9 -- C:\Windows\winsxs\x86_microsoft-windows-userinit_31bf3856ad364e35_6.0.6001.18000_none_dc28ba15d1aff80b\userinit.exe
[2006/11/02 10:45:50 | 000,024,576 | ---- | M] (Microsoft Corporation) MD5=22027835939F86C3E47AD8E3FBDE3D11 -- C:\Windows\winsxs\x86_microsoft-windows-userinit_31bf3856ad364e35_6.0.6000.16386_none_d9f1f819d4c4e737\userinit.exe
< MD5 for: WINLOGON.EXE >
[2009/04/11 07:28:13 | 000,314,368 | ---- | M] (Microsoft Corporation) MD5=898E7C06A350D4A1A64A9EA264D55452 -- C:\Windows\System32\winlogon.exe
[2009/04/11 07:28:13 | 000,314,368 | ---- | M] (Microsoft Corporation) MD5=898E7C06A350D4A1A64A9EA264D55452 -- C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.0.6002.18005_none_71ae7a22d2134741\winlogon.exe
[2006/11/02 10:45:57 | 000,308,224 | ---- | M] (Microsoft Corporation) MD5=9F75392B9128A91ABAFB044EA350BAAD -- C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.0.6000.16386_none_6d8c3f1ad8066b21\winlogon.exe
[2008/01/19 08:33:37 | 000,314,880 | ---- | M] (Microsoft Corporation) MD5=C2610B6BDBEFC053BBDAB4F1B965CB24 -- C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.0.6001.18000_none_6fc30116d4f17bf5\winlogon.exe
< MD5 for: WS2_32.DLL >
[2006/11/02 10:46:14 | 000,178,688 | ---- | M] (Microsoft Corporation) MD5=D99A071C1018BB3D4ABAAD4B62048AC2 -- C:\Windows\winsxs\x86_microsoft-windows-w..nfrastructure-ws232_31bf3856ad364e35_6.0.6000.16386_none_f080eec6d16af4f0\ws2_32.dll
[2008/01/19 08:37:09 | 000,179,200 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\System32\ws2_32.dll
[2008/01/19 08:37:09 | 000,179,200 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\winsxs\x86_microsoft-windows-w..nfrastructure-ws232_31bf3856ad364e35_6.0.6001.18000_none_f2b7b0c2ce5605c4\ws2_32.dll
< >
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\domishek\Desktop
Windows Vista Ultimate Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 0000041b | Country: Slovenská republika | Language: SKY | Date Format: d. M. yyyy
2,00 Gb Total Physical Memory | 0,77 Gb Available Physical Memory | 38,52% Memory free
4,23 Gb Paging File | 2,84 Gb Available in Paging File | 67,20% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 232,76 Gb Total Space | 22,76 Gb Free Space | 9,78% Space Free | Partition Type: NTFS
Computer Name: DODA-PC | User Name: domishek | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Processes (SafeList) ==========
PRC - [2013/12/07 09:10:32 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\domishek\Desktop\OTL.exe
PRC - [2013/12/07 09:10:22 | 001,210,320 | ---- | M] (Google Inc.) -- C:\Users\domishek\AppData\Local\Temp\CR_956A0.tmp\setup.exe
PRC - [2013/12/04 15:30:00 | 001,751,392 | ---- | M] () -- C:\Users\domishek\AppData\Local\Google\Update\Install\{6F86D6F8-E6DE-4D1F-9B13-991C0E59DFE4}\31.0.1650.63_31.0.1650.57_chrome_updater.exe
PRC - [2013/04/10 08:26:39 | 004,362,800 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\avgmfapx.exe
PRC - [2013/02/25 23:22:34 | 001,260,320 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
PRC - [2013/01/18 15:21:02 | 000,873,248 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
PRC - [2013/01/18 15:21:00 | 001,821,984 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
PRC - [2013/01/18 07:14:20 | 000,383,264 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
PRC - [2011/09/09 02:10:56 | 001,082,208 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\avgnsx.exe
PRC - [2011/08/18 00:33:26 | 000,659,296 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\avgrsx.exe
PRC - [2011/05/23 13:13:04 | 000,657,248 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\avgchsvx.exe
PRC - [2011/03/28 02:00:52 | 000,351,072 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\avgcsrvx.exe
PRC - [2011/03/09 18:24:44 | 002,708,024 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\avgfws.exe
PRC - [2011/02/08 04:33:42 | 000,269,520 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\avgwdsvc.exe
PRC - [2011/02/08 04:32:42 | 000,750,432 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\avgam.exe
PRC - [2009/04/11 07:28:15 | 000,117,248 | ---- | M] () -- \\?\C:\Windows\System32\wbem\WMIADAP.EXE
PRC - [2009/04/11 07:27:36 | 002,926,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
PRC - [2009/02/03 17:17:06 | 000,552,064 | ---- | M] (Eset ) -- C:\Program Files\Eset\nod32krn.exe
========== Modules (No Company Name) ==========
MOD - [2013/12/04 15:30:00 | 001,751,392 | ---- | M] () -- C:\Users\domishek\AppData\Local\Google\Update\Install\{6F86D6F8-E6DE-4D1F-9B13-991C0E59DFE4}\31.0.1650.63_31.0.1650.57_chrome_updater.exe
MOD - [2013/11/14 12:29:31 | 000,399,312 | ---- | M] () -- C:\Users\domishek\AppData\Local\Google\Chrome\Application\31.0.1650.57\ppGoogleNaClPluginChrome.dll
MOD - [2013/11/14 12:29:29 | 004,055,504 | ---- | M] () -- C:\Users\domishek\AppData\Local\Google\Chrome\Application\31.0.1650.57\pdf.dll
MOD - [2013/11/14 12:28:37 | 000,702,416 | ---- | M] () -- C:\Users\domishek\AppData\Local\Google\Chrome\Application\31.0.1650.57\libglesv2.dll
MOD - [2013/11/14 12:28:36 | 000,099,792 | ---- | M] () -- C:\Users\domishek\AppData\Local\Google\Chrome\Application\31.0.1650.57\libegl.dll
MOD - [2013/11/14 12:28:34 | 001,619,408 | ---- | M] () -- C:\Users\domishek\AppData\Local\Google\Chrome\Application\31.0.1650.57\ffmpegsumo.dll
MOD - [2008/09/03 15:28:24 | 000,319,488 | ---- | M] () -- C:\Program Files\WinRAR\rarlng.dll
MOD - [2008/08/29 10:55:00 | 000,132,608 | ---- | M] () -- C:\Program Files\WinRAR\RarExt.dll
========== Services (SafeList) ==========
SRV - [2013/02/25 23:22:34 | 001,260,320 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe -- (nvUpdatusService)
SRV - [2013/01/18 07:14:20 | 000,383,264 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe -- (Stereo Service)
SRV - [2012/07/13 13:14:14 | 000,160,944 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files\Skype\Updater\Updater.exe -- (SkypeUpdate)
SRV - [2011/11/10 14:17:31 | 000,167,264 | ---- | M] () [On_Demand | Stopped] -- C:\Program Files\AVG\AVG10\Toolbar\ToolbarBroker.exe -- (AVG Security Toolbar Service)
SRV - [2011/04/30 07:19:43 | 000,403,240 | ---- | M] (Valve Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\Steam\SteamService.exe -- (Steam Client Service)
SRV - [2011/03/09 18:24:44 | 002,708,024 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files\AVG\AVG10\avgfws.exe -- (avgfws)
SRV - [2011/02/08 04:33:42 | 000,269,520 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files\AVG\AVG10\avgwdsvc.exe -- (avgwd)
SRV - [2009/02/03 17:17:06 | 000,552,064 | ---- | M] (Eset ) [Auto | Running] -- C:\Program Files\Eset\nod32krn.exe -- (NOD32krn)
SRV - [2008/01/19 08:38:24 | 000,272,952 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2008/01/19 08:36:49 | 000,365,568 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\WindowsMobile\wcescomm.dll -- (WcesComm)
SRV - [2008/01/19 08:36:15 | 000,167,936 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\WindowsMobile\rapimgr.dll -- (RapiMgr)
========== Driver Services (SafeList) ==========
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Program Files\TuneUp Utilities 2012\TuneUpUtilitiesDriver32.sys -- (TuneUpUtilitiesDrv)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\nwlnkfwd.sys -- (NwlnkFwd)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\nwlnkflt.sys -- (NwlnkFlt)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\ipinip.sys -- (IpInIp)
DRV - File not found [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\blbdrive.sys -- (blbdrive)
DRV - File not found [Kernel | On_Demand | Unknown] -- -- (av78n34g)
DRV - File not found [Kernel | On_Demand | Unknown] -- -- (a0fbkvfi)
DRV - [2013/07/31 18:40:19 | 000,232,512 | ---- | M] (DT Soft Ltd) [Kernel | System | Running] -- C:\Windows\System32\drivers\dtsoftbus01.sys -- (dtsoftbus01)
DRV - [2013/02/25 23:22:06 | 008,939,296 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\nvlddmkm.sys -- (nvlddmkm)
DRV - [2012/11/12 04:47:48 | 000,255,968 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\Windows\System32\drivers\avgldx86.sys -- (Avgldx86)
DRV - [2011/10/04 13:56:51 | 000,443,448 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\System32\drivers\sptd.sys -- (sptd)
DRV - [2011/05/27 18:05:18 | 000,134,480 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\AVGIDSDriver.sys -- (AVGIDSDriver)
DRV - [2011/04/04 23:59:56 | 000,297,168 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\Windows\System32\drivers\avgtdix.sys -- (Avgtdix)
DRV - [2011/03/16 15:03:20 | 000,032,592 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | Boot | Running] -- C:\Windows\System32\drivers\avgrkx86.sys -- (Avgrkx86)
DRV - [2011/03/01 13:25:18 | 000,034,896 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | System | Running] -- C:\Windows\System32\drivers\avgmfx86.sys -- (Avgmfx86)
DRV - [2011/02/22 07:12:38 | 000,022,992 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\AVGIDSEH.sys -- (AVGIDSEH)
DRV - [2011/02/10 06:53:30 | 000,028,624 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\AVGIDSShim.sys -- (AVGIDSShim)
DRV - [2011/02/10 06:53:28 | 000,024,144 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\AVGIDSFilter.sys -- (AVGIDSFilter)
DRV - [2010/07/12 04:34:02 | 000,054,112 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\Windows\System32\drivers\avgfwd6x.sys -- (Avgfwfd)
DRV - [2009/04/11 05:42:52 | 000,031,616 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\winusb.sys -- (winusb)
DRV - [2009/04/01 18:18:29 | 000,025,280 | ---- | M] (LogMeIn, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\hamachi.sys -- (hamachi)
DRV - [2009/02/03 17:17:06 | 000,512,096 | ---- | M] (Eset ) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\amon.sys -- (AMON)
DRV - [2009/02/03 17:17:06 | 000,015,424 | ---- | M] () [Kernel | System | Running] -- C:\Windows\System32\drivers\nod32drv.sys -- (nod32drv)
DRV - [2008/02/14 07:56:02 | 000,118,784 | ---- | M] (Realtek Corporation ) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\Rtlh86.sys -- (RTL8169)
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE - HKLM\..\URLSearchHook: - No CLSID value found
IE - HKLM\..\URLSearchHook: {855F3B16-6D32-4fe6-8A56-BBB695989046} - No CLSID value found
IE - HKLM\..\URLSearchHook: {bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} - No CLSID value found
IE - HKLM\..\SearchScopes,DefaultScope = {afdbddaa-5d3f-42ee-b79c-185a7020515b}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKLM\..\SearchScopes\{56256A51-B582-467e-B8D4-7786EDA79AE0}: "URL" = http://www.mywebsearch.com/jsp/cfg_redi ... earchTerms}
IE - HKLM\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.com/search?q={searchT ... urceid=ie7
IE - HKLM\..\SearchScopes\{8A96AF9E-4074-43b7-BEA3-87217BDA74C8}: "URL" = http://www.searchqu.com/web?src=ieb&q={searchTerms}
IE - HKLM\..\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}: "URL" = http://search.conduit.com/ResultsExt.as ... =CT2786678
IE - HKU\.DEFAULT\..\URLSearchHook: - No CLSID value found
IE - HKU\.DEFAULT\..\URLSearchHook: {855F3B16-6D32-4fe6-8A56-BBB695989046} - No CLSID value found
IE - HKU\.DEFAULT\..\URLSearchHook: {A3BC75A2-1F87-4686-AA43-5347D756017C} - No CLSID value found
IE - HKU\.DEFAULT\..\SearchScopes\{CCC7A320-B3CA-4199-B1A6-9F516DD69829}: "URL" = http://us.yhs.search.yahoo.com/avg/sear ... earchTerms}
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-18\..\URLSearchHook: - No CLSID value found
IE - HKU\S-1-5-18\..\URLSearchHook: {855F3B16-6D32-4fe6-8A56-BBB695989046} - No CLSID value found
IE - HKU\S-1-5-18\..\URLSearchHook: {A3BC75A2-1F87-4686-AA43-5347D756017C} - No CLSID value found
IE - HKU\S-1-5-18\..\SearchScopes\{CCC7A320-B3CA-4199-B1A6-9F516DD69829}: "URL" = http://us.yhs.search.yahoo.com/avg/sear ... earchTerms}
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-1055357281-2900607726-3267283594-1008\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com/ie
IE - HKU\S-1-5-21-1055357281-2900607726-3267283594-1008\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://www.google.com/ie
IE - HKU\S-1-5-21-1055357281-2900607726-3267283594-1008\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
IE - HKU\S-1-5-21-1055357281-2900607726-3267283594-1008\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 99 13 95 D6 06 F4 CD 01 [binary data]
IE - HKU\S-1-5-21-1055357281-2900607726-3267283594-1008\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.google.com/ie
IE - HKU\S-1-5-21-1055357281-2900607726-3267283594-1008\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com/ie
IE - HKU\S-1-5-21-1055357281-2900607726-3267283594-1008\..\SearchScopes,DefaultScope = {6A1806CD-94D4-4689nsInAddressGlobal
IE - HKU\S-1-5-21-1055357281-2900607726-3267283594-1008\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.com/search?q={sear
IE - HKU\S-1-5-21-1055357281-2900607726-3267283594-1008\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
========== FireFox ==========
FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\Windows\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@google.com/npPicasa3,version=3.0.0: C:\Program Files\Google\Picasa3\npPicasa3.dll (Google, Inc.)
FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVision: C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVisionStreaming: C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF - HKLM\Software\MozillaPlugins\@pandonetworks.com/PandoWebPlugin: File not found
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Users\domishek\AppData\Local\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Users\domishek\AppData\Local\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.)
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\avg@igeared: C:\Program Files\AVG\AVG10\Toolbar\Firefox\avg@igeared [2013/01/02 16:18:38 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{1E73965B-8B48-48be-9C8D-68B920ABC1C4}: C:\Program Files\AVG\AVG10\Firefox4\ [2013/12/06 19:04:48 | 000,000,000 | ---D | M]
========== Chrome ==========
CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:bookmarkBarPinned}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}{google:omniboxStartMarginParameter}ie={inputEncoding}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client={google:suggestClient}&q={searchTerms}&{google:cursorPosition}{google:zeroPrefixUrl}{google:pageClassification}sugkey={google:suggestAPIKeyParameter},
CHR - plugin: Shockwave Flash (Enabled) = C:\Users\domishek\AppData\Local\Google\Chrome\Application\31.0.1650.57\PepperFlash\pepflashplayer.dll
CHR - plugin: Chrome Remote Desktop Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Users\domishek\AppData\Local\Google\Chrome\Application\31.0.1650.57\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Users\domishek\AppData\Local\Google\Chrome\Application\31.0.1650.57\pdf.dll
CHR - plugin: AVG Internet Security (Enabled) = C:\Users\domishek\AppData\Local\Google\Chrome\User Data\Default\Extensions\jmfkcklnlgedgbglfkkgedjfmejoahla\10.0.0.1409_0\plugins/avgnpss.dll
CHR - plugin: Adobe Acrobat (Enabled) = C:\Program Files\Adobe\Reader 9.0\Reader\Browser\nppdf32.dll
CHR - plugin: AVG SiteSafety plugin (Enabled) = C:\Program Files\Common Files\AVG Secure Search\SiteSafetyInstaller\13.2.0\\npsitesafety.dll
CHR - plugin: Picasa (Enabled) = C:\Program Files\Google\Picasa3\npPicasa3.dll
CHR - plugin: Google Update (Enabled) = C:\Users\domishek\AppData\Local\Google\Update\1.3.21.124\npGoogleUpdate3.dll
CHR - plugin: Shockwave for Director (Enabled) = C:\Windows\system32\Adobe\Director\np32dsw.dll
CHR - Extension: Pen\u011B\u017Eenka Google = C:\Users\domishek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.5.0_0\
CHR - Extension: Charlotte Ronson = C:\Users\domishek\AppData\Local\Google\Chrome\User Data\Default\Extensions\obakimnhgahiedhcjlcnohielmendpen\3_0\
O1 HOSTS File: ([2006/09/18 22:41:30 | 000,000,761 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O2 - BHO: (no name) - {25B8D58C-B0CB-46b0-BA64-05B3804E4E86} - No CLSID value found.
O2 - BHO: (AVG Safe Search) - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG10\avgssie.dll (AVG Technologies CZ, s.r.o.)
O3 - HKLM\..\Toolbar: (no name) - {bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} - No CLSID value found.
O3 - HKLM\..\Toolbar: (no name) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - No CLSID value found.
O4 - HKU\S-1-5-19..\Run: [WindowsWelcomeCenter] C:\Windows\System32\oobefldr.dll (Microsoft Corporation)
O4 - HKU\S-1-5-20..\Run: [WindowsWelcomeCenter] C:\Windows\System32\oobefldr.dll (Microsoft Corporation)
O4 - HKU\S-1-5-21-1055357281-2900607726-3267283594-1009..\Run: [WindowsWelcomeCenter] C:\Windows\System32\oobefldr.dll (Microsoft Corporation)
O8 - Extra context menu item: Add to Google Photos Screensa&ver - C:\Windows\System32\GPhotos.scr (Google Inc.)
O9 - Extra Button: GetStyles - {14CD42DD-ABCD-3586-DCAB-40E3693E3737} - Reg Error: Value error. File not found
O9 - Extra 'Tools' menuitem : GetStyles - {14CD42DD-ABCD-3586-DCAB-40E3693E3737} - Reg Error: Value error. File not found
O9 - Extra Button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - Reg Error: Value error. File not found
O9 - Extra 'Tools' menuitem : Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - Reg Error: Value error. File not found
O13 - gopher Prefix: missing
O16 - DPF: {166B1BCA-3F9C-11CF-8075-444553540000} http://download.macromedia.com/pub/shoc ... tor/sw.cab (Shockwave ActiveX Control)
O16 - DPF: {1D4DB7D2-6EC9-47A3-BD87-1E41684E07BB} http://ak.exe.imgfarm.com/images/nocach ... .0.1.1.cab (Reg Error: Key error.)
O16 - DPF: {8100D56A-5661-482C-BEE8-AFECE305D968} http://upload.facebook.com/controls/200 ... ader55.cab (Facebook Photo Uploader 5 Control)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Reg Error: Value error.)
O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} http://fpdownload.macromedia.com/get/fl ... rashim.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Reg Error: Value error.)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Reg Error: Key error.)
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Key error.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 10.0.0.138
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{7AAE6186-FE11-410B-9D4E-BEC063A3328D}: DhcpNameServer = 10.0.0.138
O18 - Protocol\Handler\linkscanner {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG10\avgpp.dll (AVG Technologies CZ, s.r.o.)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O18 - Protocol\Filter\text/html - No CLSID value found
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\System32\userinit.exe (Microsoft Corporation)
O24 - Desktop WallPaper: C:\Users\domishek\AppData\Roaming\Microsoft\Windows Photo Gallery\Tapeta programu Windows Fotogaléria.jpg
O24 - Desktop BackupWallPaper: C:\Users\domishek\AppData\Roaming\Microsoft\Windows Photo Gallery\Tapeta programu Windows Fotogaléria.jpg
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2006/09/18 22:43:36 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O33 - MountPoints2\{23179953-fa07-11e2-9ff2-001fd08d0075}\Shell - "" = AutoRun
O33 - MountPoints2\{231799bb-fa07-11e2-9ff2-001fd08d0075}\Shell - "" = AutoRun
O34 - HKLM BootExecute: (autocheck autochk *)
O34 - HKLM BootExecute: (C:\PROGRA~1\AVG\AVG10\avgchsvx.exe /sync)
O34 - HKLM BootExecute: (C:\PROGRA~1\AVG\AVG10\avgrsx.exe /sync /restart)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
CREATERESTOREPOINT
Restore point Set: OTL Restore Point
NetSvcs: FastUserSwitchingCompatibility - File not found
NetSvcs: Ias - C:\Windows\System32\ias.dll (Microsoft Corporation)
NetSvcs: Nla - File not found
NetSvcs: Ntmssvc - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: SRService - File not found
NetSvcs: WmdmPmSp - File not found
NetSvcs: LogonHours - File not found
NetSvcs: PCAudit - File not found
NetSvcs: helpsvc - File not found
NetSvcs: uploadmgr - File not found
Drivers32: msacm.iac2 - C:\Windows\System32\iac25_32.ax (Intel Corporation)
Drivers32: msacm.l3acm - C:\Windows\System32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: vidc.cvid - C:\Windows\System32\iccvid.dll (Radius Inc.)
Drivers32: vidc.i420 - C:\Windows\System32\i420vfw.dll (www.helixcommunity.org)
Drivers32: vidc.VP60 - C:\Windows\System32\vp6vfw.dll (On2.com)
Drivers32: vidc.VP61 - C:\Windows\System32\vp6vfw.dll (On2.com)
Drivers32: vidc.yv12 - C:\Windows\System32\yv12vfw.dll (www.helixcommunity.org)
PhysicalDisk0 MBR saved to C:\PhysicalMBR.bin
========== Files/Folders - Created Within 30 Days ==========
[2013/12/07 09:10:21 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\domishek\Desktop\OTL.exe
[2013/12/05 16:52:12 | 000,000,000 | ---D | C] -- C:\Program Files\trend micro
[2013/12/05 16:52:11 | 000,000,000 | ---D | C] -- C:\rsit
[2013/11/26 10:10:56 | 000,000,000 | ---D | C] -- C:\Users\domishek\Desktop\Taneční-Terka
[2013/11/13 15:18:04 | 002,382,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mshtml.tlb
[2013/11/13 15:18:02 | 000,176,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieui.dll
[2013/11/13 15:18:02 | 000,065,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jsproxy.dll
[2013/11/13 15:18:01 | 000,142,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieUnatt.exe
[2013/11/13 15:18:00 | 000,607,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeeds.dll
[2013/11/13 15:17:59 | 001,806,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jscript9.dll
[2013/11/13 15:17:59 | 000,231,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\url.dll
[2013/11/13 15:17:55 | 001,427,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\inetcpl.cpl
[2013/11/13 15:03:35 | 000,000,000 | ---D | C] -- C:\Users\domishek\Desktop\Filmy
[2013/11/13 14:51:02 | 000,596,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\FWPUCLNT.DLL
[1 C:\Windows\System32\*.tmp files -> C:\Windows\System32\*.tmp -> ]
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
========== Files - Modified Within 30 Days ==========
[2013/12/07 09:17:02 | 000,000,512 | ---- | M] () -- C:\PhysicalMBR.bin
[2013/12/07 09:14:16 | 000,589,596 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2013/12/07 09:14:16 | 000,102,266 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2013/12/07 09:14:16 | 000,028,384 | ---- | M] () -- C:\Windows\System32\perfh01B.dat
[2013/12/07 09:14:16 | 000,007,758 | ---- | M] () -- C:\Windows\System32\perfc01B.dat
[2013/12/07 09:12:44 | 145,314,819 | ---- | M] () -- C:\Windows\System32\drivers\AVG\incavi.avm
[2013/12/07 09:10:32 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\domishek\Desktop\OTL.exe
[2013/12/07 09:08:26 | 000,004,432 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2013/12/07 09:08:26 | 000,004,432 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2013/12/07 09:08:15 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2013/12/06 19:29:59 | 000,000,958 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1055357281-2900607726-3267283594-1008UA.job
[2013/12/06 19:29:59 | 000,000,906 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1055357281-2900607726-3267283594-1008Core.job
[2013/11/25 20:53:25 | 000,375,432 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
[2013/11/13 15:07:09 | 000,022,016 | ---- | M] () -- C:\Users\domishek\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[1 C:\Windows\System32\*.tmp files -> C:\Windows\System32\*.tmp -> ]
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
========== Files Created - No Company Name ==========
[2013/12/07 09:17:02 | 000,000,512 | ---- | C] () -- C:\PhysicalMBR.bin
[2013/11/13 17:49:02 | 000,375,432 | ---- | C] () -- C:\Windows\System32\FNTCACHE.DAT
[2013/11/13 14:51:02 | 000,218,228 | ---- | C] () -- C:\Windows\System32\WFP.TMF
[2013/11/12 19:25:38 | 000,000,958 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1055357281-2900607726-3267283594-1008UA.job
[2013/11/12 19:25:37 | 000,000,906 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1055357281-2900607726-3267283594-1008Core.job
[2013/07/31 18:50:47 | 2936,340,480 | ---- | C] () -- C:\Users\domishek\The-Sims-2-cz---základní-hra-by-Hunys.iso
[2013/03/06 15:19:06 | 000,022,016 | ---- | C] () -- C:\Users\domishek\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
========== ZeroAccess Check ==========
[2006/11/02 13:53:06 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini
[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2012/06/08 18:47:00 | 011,586,048 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2009/04/11 07:28:19 | 000,614,912 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
"" = %systemroot%\system32\wbem\wbemess.dll -- [2009/04/11 07:28:25 | 000,347,648 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both
========== LOP Check ==========
[2012/12/12 10:16:33 | 000,000,000 | ---D | M] -- C:\Users\Default\AppData\Roaming\TuneUp Software
[2012/12/12 10:16:33 | 000,000,000 | ---D | M] -- C:\Users\Default User\AppData\Roaming\TuneUp Software
[2009/07/29 12:33:35 | 000,000,000 | -HSD | M] -- C:\Users\doda\AppData\Roaming\.#
[2009/07/29 14:55:28 | 000,000,000 | ---D | M] -- C:\Users\doda\AppData\Roaming\Aisle 5 Games, Inc
[2009/12/23 11:30:43 | 000,000,000 | ---D | M] -- C:\Users\doda\AppData\Roaming\Any Video Converter
[2009/04/15 18:21:00 | 000,000,000 | ---D | M] -- C:\Users\doda\AppData\Roaming\Ashampoo
[2009/07/29 14:29:16 | 000,000,000 | ---D | M] -- C:\Users\doda\AppData\Roaming\Babylonia
[2009/06/27 16:42:17 | 000,000,000 | ---D | M] -- C:\Users\doda\AppData\Roaming\BlamGames
[2009/07/29 15:09:43 | 000,000,000 | ---D | M] -- C:\Users\doda\AppData\Roaming\cerasus.media
[2009/03/09 18:06:38 | 000,000,000 | ---D | M] -- C:\Users\doda\AppData\Roaming\DAEMON Tools
[2009/03/09 18:07:20 | 000,000,000 | ---D | M] -- C:\Users\doda\AppData\Roaming\DAEMON Tools Lite
[2009/03/09 18:07:50 | 000,000,000 | ---D | M] -- C:\Users\doda\AppData\Roaming\DAEMON Tools Pro
[2009/03/13 15:10:27 | 000,000,000 | ---D | M] -- C:\Users\doda\AppData\Roaming\EleFun Games
[2009/06/27 16:34:53 | 000,000,000 | ---D | M] -- C:\Users\doda\AppData\Roaming\ERS G-Studio
[2009/02/14 16:24:07 | 000,000,000 | ---D | M] -- C:\Users\doda\AppData\Roaming\F-Secure
[2009/03/01 12:55:41 | 000,000,000 | ---D | M] -- C:\Users\doda\AppData\Roaming\Farm Mania
[2009/06/27 18:07:52 | 000,000,000 | ---D | M] -- C:\Users\doda\AppData\Roaming\GameInvest
[2009/03/01 14:06:10 | 000,000,000 | ---D | M] -- C:\Users\doda\AppData\Roaming\Gamelab
[2009/06/27 16:31:59 | 000,000,000 | ---D | M] -- C:\Users\doda\AppData\Roaming\GAMESHASTRA
[2009/06/28 08:38:35 | 000,000,000 | ---D | M] -- C:\Users\doda\AppData\Roaming\GetRightToGo
[2009/04/17 16:34:38 | 000,000,000 | ---D | M] -- C:\Users\doda\AppData\Roaming\GHISLER
[2009/12/04 17:00:11 | 000,000,000 | ---D | M] -- C:\Users\doda\AppData\Roaming\ICQ
[2009/03/13 15:41:22 | 000,000,000 | ---D | M] -- C:\Users\doda\AppData\Roaming\iWin
[2009/02/21 12:02:14 | 000,000,000 | ---D | M] -- C:\Users\doda\AppData\Roaming\JLC's Software
[2009/08/11 13:00:59 | 000,000,000 | ---D | M] -- C:\Users\doda\AppData\Roaming\Meridian93
[2009/11/16 10:33:35 | 000,000,000 | ---D | M] -- C:\Users\doda\AppData\Roaming\MysteryStudio
[2009/11/05 09:14:38 | 000,000,000 | ---D | M] -- C:\Users\doda\AppData\Roaming\PlayFirst
[2009/11/16 10:34:31 | 000,000,000 | ---D | M] -- C:\Users\doda\AppData\Roaming\Playrix Entertainment
[2009/07/29 14:30:09 | 000,000,000 | ---D | M] -- C:\Users\doda\AppData\Roaming\Reflexive 3 Days Zoo Mystery
[2009/04/16 12:19:21 | 000,000,000 | ---D | M] -- C:\Users\doda\AppData\Roaming\Reflexive Ashtons Family Resort
[2009/07/29 10:38:33 | 000,000,000 | ---D | M] -- C:\Users\doda\AppData\Roaming\Reflexive JanesZOO
[2009/02/24 18:06:24 | 000,000,000 | ---D | M] -- C:\Users\doda\AppData\Roaming\SecondLife
[2009/03/25 19:06:48 | 000,000,000 | ---D | M] -- C:\Users\doda\AppData\Roaming\Uniblue
[2009/04/14 19:54:55 | 000,000,000 | ---D | M] -- C:\Users\doda\AppData\Roaming\URSoft
[2009/06/27 18:12:23 | 000,000,000 | ---D | M] -- C:\Users\doda\AppData\Roaming\ViquaSoft
[2009/12/23 11:31:41 | 000,000,000 | ---D | M] -- C:\Users\Dominishka\AppData\Roaming\AnvSoft
[2009/12/23 11:22:27 | 000,000,000 | ---D | M] -- C:\Users\Dominishka\AppData\Roaming\Any Video Converter
[2009/12/23 11:23:04 | 000,000,000 | ---D | M] -- C:\Users\Dominishka\AppData\Roaming\DAEMON Tools
[2009/12/23 11:23:04 | 000,000,000 | ---D | M] -- C:\Users\Dominishka\AppData\Roaming\DAEMON Tools Lite
[2009/12/23 11:23:04 | 000,000,000 | ---D | M] -- C:\Users\Dominishka\AppData\Roaming\DAEMON Tools Pro
[2010/01/20 20:01:15 | 000,000,000 | ---D | M] -- C:\Users\Dominishka\AppData\Roaming\ICQ
[2009/12/23 11:25:30 | 000,000,000 | ---D | M] -- C:\Users\Dominishka\AppData\Roaming\URSoft
[2010/02/03 13:16:29 | 000,000,000 | ---D | M] -- C:\Users\Dominishka\AppData\Roaming\uTorrent
[2010/01/23 20:31:11 | 000,000,000 | ---D | M] -- C:\Users\Domisheek\AppData\Roaming\AnvSoft
[2010/12/25 10:45:06 | 000,000,000 | ---D | M] -- C:\Users\Domisheek\AppData\Roaming\Apowersoft
[2011/03/06 10:49:26 | 000,000,000 | ---D | M] -- C:\Users\Domisheek\AppData\Roaming\AVG
[2011/03/05 19:28:06 | 000,000,000 | ---D | M] -- C:\Users\Domisheek\AppData\Roaming\AVG10
[2010/03/08 17:25:42 | 000,000,000 | ---D | M] -- C:\Users\Domisheek\AppData\Roaming\AVG9
[2010/05/29 11:26:31 | 000,000,000 | ---D | M] -- C:\Users\Domisheek\AppData\Roaming\BeachPartyCraze
[2010/01/23 17:25:03 | 000,000,000 | ---D | M] -- C:\Users\Domisheek\AppData\Roaming\DAEMON Tools
[2010/01/23 17:25:03 | 000,000,000 | ---D | M] -- C:\Users\Domisheek\AppData\Roaming\DAEMON Tools Lite
[2010/01/23 17:25:03 | 000,000,000 | ---D | M] -- C:\Users\Domisheek\AppData\Roaming\DAEMON Tools Pro
[2010/02/03 14:04:43 | 000,000,000 | ---D | M] -- C:\Users\Domisheek\AppData\Roaming\GHISLER
[2011/07/11 09:56:54 | 000,000,000 | ---D | M] -- C:\Users\Domisheek\AppData\Roaming\ICQ
[2010/05/07 08:52:58 | 000,000,000 | ---D | M] -- C:\Users\Domisheek\AppData\Roaming\Merscom
[2010/03/31 08:18:52 | 000,000,000 | ---D | M] -- C:\Users\Domisheek\AppData\Roaming\My Games
[2010/05/22 09:51:43 | 000,000,000 | ---D | M] -- C:\Users\Domisheek\AppData\Roaming\Plan It Green Files
[2010/05/02 10:24:43 | 000,000,000 | ---D | M] -- C:\Users\Domisheek\AppData\Roaming\PlayFirst
[2011/07/07 19:19:51 | 000,000,000 | ---D | M] -- C:\Users\Domisheek\AppData\Roaming\Ubisoft
[2010/01/23 17:24:29 | 000,000,000 | ---D | M] -- C:\Users\Domisheek\AppData\Roaming\URSoft
[2011/07/09 18:05:23 | 000,000,000 | ---D | M] -- C:\Users\Domisheek\AppData\Roaming\uTorrent
[2010/05/29 11:24:49 | 000,000,000 | ---D | M] -- C:\Users\Domisheek\AppData\Roaming\Western Software Technologies
[2010/02/14 13:07:43 | 000,000,000 | ---D | M] -- C:\Users\Domisheek\AppData\Roaming\Zoner
[2013/07/08 12:26:37 | 000,000,000 | ---D | M] -- C:\Users\domishek\AppData\Roaming\Allmyapps
[2013/01/12 15:06:09 | 000,000,000 | ---D | M] -- C:\Users\domishek\AppData\Roaming\AVG10
[2013/11/04 22:13:22 | 000,000,000 | ---D | M] -- C:\Users\domishek\AppData\Roaming\DAEMON Tools Lite
[2013/01/29 16:51:50 | 000,000,000 | ---D | M] -- C:\Users\domishek\AppData\Roaming\Rovio
[2013/11/04 23:03:34 | 000,000,000 | ---D | M] -- C:\Users\domishek\AppData\Roaming\Seznam.cz
[2012/12/12 10:16:33 | 000,000,000 | ---D | M] -- C:\Users\domishek\AppData\Roaming\TuneUp Software
[2011/07/22 16:35:07 | 000,000,000 | ---D | M] -- C:\Users\Juchůůů\AppData\Roaming\AnvSoft
[2011/07/12 14:23:30 | 000,000,000 | ---D | M] -- C:\Users\Juchůůů\AppData\Roaming\AVG10
[2011/09/04 20:21:20 | 000,000,000 | ---D | M] -- C:\Users\Juchůůů\AppData\Roaming\DAEMON Tools
[2011/10/04 14:04:41 | 000,000,000 | ---D | M] -- C:\Users\Juchůůů\AppData\Roaming\DAEMON Tools Lite
[2011/09/04 20:21:20 | 000,000,000 | ---D | M] -- C:\Users\Juchůůů\AppData\Roaming\DAEMON Tools Pro
[2012/01/12 15:32:32 | 000,000,000 | ---D | M] -- C:\Users\Juchůůů\AppData\Roaming\DVDVideoSoftIEHelpers
[2012/03/10 18:50:17 | 000,000,000 | ---D | M] -- C:\Users\Juchůůů\AppData\Roaming\ICQ
[2011/08/29 11:02:21 | 000,000,000 | ---D | M] -- C:\Users\Juchůůů\AppData\Roaming\Rovio
[2011/12/25 18:08:14 | 000,000,000 | ---D | M] -- C:\Users\Juchůůů\AppData\Roaming\Vso
[2013/01/13 12:58:35 | 000,000,000 | ---D | M] -- C:\Users\juhu\AppData\Roaming\AnvSoft
[2012/07/14 11:15:11 | 000,000,000 | ---D | M] -- C:\Users\juhu\AppData\Roaming\Apowersoft
[2012/05/06 13:46:53 | 000,000,000 | ---D | M] -- C:\Users\juhu\AppData\Roaming\AVG10
[2013/09/22 09:02:25 | 000,000,000 | ---D | M] -- C:\Users\juhu\AppData\Roaming\Babylon
[2012/10/28 11:48:33 | 000,000,000 | ---D | M] -- C:\Users\juhu\AppData\Roaming\ICQ
[2012/06/23 11:41:54 | 000,000,000 | ---D | M] -- C:\Users\juhu\AppData\Roaming\ICQ Search
[2013/09/22 09:12:21 | 000,000,000 | ---D | M] -- C:\Users\juhu\AppData\Roaming\PlayFirst
[2012/11/30 12:51:06 | 000,000,000 | ---D | M] -- C:\Users\juhu\AppData\Roaming\Rovio
[2013/12/06 19:00:40 | 000,000,000 | ---D | M] -- C:\Users\juhu\AppData\Roaming\Seznam.cz
[2012/09/04 20:09:36 | 000,000,000 | ---D | M] -- C:\Users\juhu\AppData\Roaming\TuneUp Software
[2013/10/04 14:57:42 | 000,000,000 | ---D | M] -- C:\Users\juhu\AppData\Roaming\Unity
[2010/11/14 17:38:38 | 000,000,000 | ---D | M] -- C:\Users\Terka\AppData\Roaming\Ace
[2010/10/06 20:15:21 | 000,000,000 | ---D | M] -- C:\Users\Terka\AppData\Roaming\AnvSoft
[2010/12/25 10:45:21 | 000,000,000 | ---D | M] -- C:\Users\Terka\AppData\Roaming\Apowersoft
[2011/03/05 19:51:16 | 000,000,000 | ---D | M] -- C:\Users\Terka\AppData\Roaming\AVG10
[2010/03/26 12:32:56 | 000,000,000 | ---D | M] -- C:\Users\Terka\AppData\Roaming\BearShare
[2011/04/25 18:29:03 | 000,000,000 | ---D | M] -- C:\Users\Terka\AppData\Roaming\DAEMON Tools
[2011/05/02 16:12:45 | 000,000,000 | ---D | M] -- C:\Users\Terka\AppData\Roaming\DAEMON Tools Lite
[2011/04/25 18:29:03 | 000,000,000 | ---D | M] -- C:\Users\Terka\AppData\Roaming\DAEMON Tools Pro
[2010/11/14 17:54:34 | 000,000,000 | ---D | M] -- C:\Users\Terka\AppData\Roaming\Disney Interactive Studios
[2011/03/03 14:26:01 | 000,000,000 | ---D | M] -- C:\Users\Terka\AppData\Roaming\Ice Age 2
[2011/07/13 11:04:37 | 000,000,000 | ---D | M] -- C:\Users\Terka\AppData\Roaming\ICQ
[2011/02/24 14:13:43 | 000,000,000 | ---D | M] -- C:\Users\Terka\AppData\Roaming\LolClient
[2010/05/12 13:41:07 | 000,000,000 | ---D | M] -- C:\Users\Terka\AppData\Roaming\Merscom
[2010/05/07 09:12:35 | 000,000,000 | ---D | M] -- C:\Users\Terka\AppData\Roaming\PlayFirst
[2011/07/06 12:28:46 | 000,000,000 | ---D | M] -- C:\Users\Terka\AppData\Roaming\Ubisoft
[2011/07/09 20:43:14 | 000,000,000 | ---D | M] -- C:\Users\Terka\AppData\Roaming\uTorrent
[2010/05/29 11:37:27 | 000,000,000 | ---D | M] -- C:\Users\Terka\AppData\Roaming\Western Software Technologies
[2010/11/22 18:45:21 | 000,000,000 | ---D | M] -- C:\Users\Terka\AppData\Roaming\Zoner
[2010/01/07 19:35:18 | 000,000,000 | ---D | M] -- C:\Users\Terkaa\AppData\Roaming\AnvSoft
[2010/01/22 20:10:40 | 000,000,000 | ---D | M] -- C:\Users\Terkaa\AppData\Roaming\ICQ
[2010/01/06 20:26:58 | 000,000,000 | -HSD | M] -- C:\Users\Terkaa\AppData\Roaming\lowsec
[2010/01/08 11:27:33 | 000,000,000 | ---D | M] -- C:\Users\Terkaa\AppData\Roaming\Zoner
[2012/12/12 10:16:33 | 000,000,000 | ---D | M] -- C:\Users\UpdatusUser\AppData\Roaming\TuneUp Software
========== Purity Check ==========
========== Custom Scans ==========
< >
[2006/11/02 14:00:25 | 000,000,006 | -H-- | C] () -- C:\Windows\Tasks\SA.DAT
[2006/11/02 14:00:25 | 000,032,580 | ---- | C] () -- C:\Windows\Tasks\SCHEDLGU.TXT
[2013/11/12 19:25:37 | 000,000,906 | ---- | C] () -- C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1055357281-2900607726-3267283594-1008Core.job
[2013/11/12 19:25:38 | 000,000,958 | ---- | C] () -- C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1055357281-2900607726-3267283594-1008UA.job
< >
< MD5 for: AGP440.SYS >
[2008/01/19 08:42:25 | 000,056,376 | ---- | M] (Microsoft Corporation) MD5=13F9E33747E6B41A3FF305C37DB0D360 -- C:\Windows\System32\DriverStore\FileRepository\machine.inf_51b95d75\AGP440.sys
[2008/01/19 08:42:25 | 000,056,376 | ---- | M] (Microsoft Corporation) MD5=13F9E33747E6B41A3FF305C37DB0D360 -- C:\Windows\System32\DriverStore\FileRepository\machine.inf_f750e484\AGP440.sys
[2008/01/19 08:42:25 | 000,056,376 | ---- | M] (Microsoft Corporation) MD5=13F9E33747E6B41A3FF305C37DB0D360 -- C:\Windows\winsxs\x86_machine.inf_31bf3856ad364e35_6.0.6001.18000_none_ba12ed3bbeb0d97a\AGP440.sys
[2008/01/19 08:42:25 | 000,056,376 | ---- | M] (Microsoft Corporation) MD5=13F9E33747E6B41A3FF305C37DB0D360 -- C:\Windows\winsxs\x86_machine.inf_31bf3856ad364e35_6.0.6002.18005_none_bbfe6647bbd2a4c6\AGP440.sys
[2006/11/02 10:49:52 | 000,053,864 | ---- | M] (Microsoft Corporation) MD5=EF23439CDD587F64C2C1B8825CEAD7D8 -- C:\Windows\System32\drivers\AGP440.sys
[2006/11/02 10:49:52 | 000,053,864 | ---- | M] (Microsoft Corporation) MD5=EF23439CDD587F64C2C1B8825CEAD7D8 -- C:\Windows\System32\DriverStore\FileRepository\machine.inf_920a2c1f\AGP440.sys
< MD5 for: ATAPI.SYS >
[2009/04/11 07:32:26 | 000,019,944 | ---- | M] (Microsoft Corporation) MD5=1F05B78AB91C9075565A9D8A4B880BC4 -- C:\Windows\System32\drivers\atapi.sys
[2009/04/11 07:32:26 | 000,019,944 | ---- | M] (Microsoft Corporation) MD5=1F05B78AB91C9075565A9D8A4B880BC4 -- C:\Windows\System32\DriverStore\FileRepository\mshdc.inf_b12d8e84\atapi.sys
[2009/04/11 07:32:26 | 000,019,944 | ---- | M] (Microsoft Corporation) MD5=1F05B78AB91C9075565A9D8A4B880BC4 -- C:\Windows\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.0.6002.18005_none_df23a1261eab99e8\atapi.sys
[2008/01/19 08:41:30 | 000,021,560 | ---- | M] (Microsoft Corporation) MD5=2D9C903DC76A66813D350A562DE40ED9 -- C:\Windows\System32\DriverStore\FileRepository\mshdc.inf_cc18792d\atapi.sys
[2008/01/19 08:41:30 | 000,021,560 | ---- | M] (Microsoft Corporation) MD5=2D9C903DC76A66813D350A562DE40ED9 -- C:\Windows\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.0.6001.18000_none_dd38281a2189ce9c\atapi.sys
[2006/11/02 10:49:36 | 000,019,048 | ---- | M] (Microsoft Corporation) MD5=4F4FCB8B6EA06784FB6D475B7EC7300F -- C:\Windows\System32\DriverStore\FileRepository\mshdc.inf_c6c2e699\atapi.sys
< MD5 for: AUTOCHK.EXE >
[2009/04/11 07:27:20 | 000,643,072 | ---- | M] (Microsoft Corporation) MD5=10761177A6EBE45843F443E99509F5E7 -- C:\Windows\System32\autochk.exe
[2009/04/11 07:27:20 | 000,643,072 | ---- | M] (Microsoft Corporation) MD5=10761177A6EBE45843F443E99509F5E7 -- C:\Windows\winsxs\x86_microsoft-windows-autochk_31bf3856ad364e35_6.0.6002.18005_none_e3df6655bee2ee3b\autochk.exe
[2008/01/19 08:33:01 | 000,642,560 | ---- | M] (Microsoft Corporation) MD5=2FC5BE79B51714B479809358E4908FC3 -- C:\Windows\winsxs\x86_microsoft-windows-autochk_31bf3856ad364e35_6.0.6001.18000_none_e1f3ed49c1c122ef\autochk.exe
[2006/11/02 10:44:50 | 000,640,000 | ---- | M] (Microsoft Corporation) MD5=C08D1FE284C3330934E45D6E5F5B768B -- C:\Windows\winsxs\x86_microsoft-windows-autochk_31bf3856ad364e35_6.0.6000.16386_none_dfbd2b4dc4d6121b\autochk.exe
< MD5 for: CDROM.SYS >
[2008/01/19 06:49:51 | 000,067,072 | ---- | M] (Microsoft Corporation) MD5=1EC25CEA0DE6AC4718BF89F9E1778B57 -- C:\Windows\System32\DriverStore\FileRepository\cdrom.inf_a29e71c6\cdrom.sys
[2008/01/19 06:49:51 | 000,067,072 | ---- | M] (Microsoft Corporation) MD5=1EC25CEA0DE6AC4718BF89F9E1778B57 -- C:\Windows\winsxs\x86_cdrom.inf_31bf3856ad364e35_6.0.6001.18000_none_5fa95be2a3c76a4a\cdrom.sys
[2009/04/11 05:39:17 | 000,067,072 | ---- | M] (Microsoft Corporation) MD5=6B4BFFB9BECD728097024276430DB314 -- C:\Windows\System32\drivers\cdrom.sys
[2009/04/11 05:39:17 | 000,067,072 | ---- | M] (Microsoft Corporation) MD5=6B4BFFB9BECD728097024276430DB314 -- C:\Windows\System32\DriverStore\FileRepository\cdrom.inf_c949a5b6\cdrom.sys
[2009/04/11 05:39:17 | 000,067,072 | ---- | M] (Microsoft Corporation) MD5=6B4BFFB9BECD728097024276430DB314 -- C:\Windows\winsxs\x86_cdrom.inf_31bf3856ad364e35_6.0.6002.18005_none_6194d4eea0e93596\cdrom.sys
[2006/11/02 09:51:44 | 000,067,072 | ---- | M] (Microsoft Corporation) MD5=8D1866E61AF096AE8B582454F5E4D303 -- C:\Windows\System32\DriverStore\FileRepository\cdrom.inf_e487f727\cdrom.sys
< MD5 for: CNGAUDIT.DLL >
[2006/11/02 10:46:03 | 000,011,776 | ---- | M] (Microsoft Corporation) MD5=7F15B4953378C8B5161D65C26D5FED4D -- C:\Windows\System32\cngaudit.dll
[2006/11/02 10:46:03 | 000,011,776 | ---- | M] (Microsoft Corporation) MD5=7F15B4953378C8B5161D65C26D5FED4D -- C:\Windows\winsxs\x86_microsoft-windows-cngaudit-dll_31bf3856ad364e35_6.0.6000.16386_none_e62d292932a96ce6\cngaudit.dll
< MD5 for: CRYPTSVC.DLL >
[2013/10/03 14:16:48 | 000,135,168 | ---- | M] (Microsoft Corporation) MD5=165E9D93A84A7F55EBEEB1B554110680 -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.0.6002.23235_none_78542a95b127239a\cryptsvc.dll
[2006/11/02 10:46:03 | 000,123,392 | ---- | M] (Microsoft Corporation) MD5=1C26FB097170A2A91066D1E3A24366E3 -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.0.6000.16386_none_73c8d7689de43d15\cryptsvc.dll
[2013/04/24 05:00:30 | 000,133,120 | ---- | M] (Microsoft Corporation) MD5=3EDE4C1F9672C972479201544969ADCB -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.0.6002.18831_none_77c6b0b4980cf0e4\cryptsvc.dll
[2013/07/08 05:16:55 | 000,133,120 | ---- | M] (Microsoft Corporation) MD5=684C130BBC6DB681BAD4920A4C944AA5 -- C:\Windows\System32\cryptsvc.dll
[2013/07/08 05:16:55 | 000,133,120 | ---- | M] (Microsoft Corporation) MD5=684C130BBC6DB681BAD4920A4C944AA5 -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.0.6002.18881_none_7790a11898357c99\cryptsvc.dll
[2008/01/19 08:34:00 | 000,128,000 | ---- | M] (Microsoft Corporation) MD5=6DE363F9F99334514C46AEC02D3E3678 -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.0.6001.18000_none_75ff99649acf4de9\cryptsvc.dll
[2012/04/23 17:00:53 | 000,133,120 | ---- | M] (Microsoft Corporation) MD5=75C6A297E364014840B48ECCD7525E30 -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.0.6002.18618_none_77e34ec697f67015\cryptsvc.dll
[2013/07/08 03:50:53 | 000,135,168 | ---- | M] (Microsoft Corporation) MD5=828805E2E7F529B24849AD52740288DA -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.0.6002.23154_none_783d888db13844fe\cryptsvc.dll
[2012/04/23 15:48:06 | 000,135,168 | ---- | M] (Microsoft Corporation) MD5=C979AEA8C4D8F875CD25507D08980006 -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.0.6002.22840_none_78447b63b1339621\cryptsvc.dll
[2012/06/02 12:09:26 | 000,135,168 | ---- | M] (Microsoft Corporation) MD5=DD9CCF40ED80DD0D62F1B607A1EA4449 -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.0.6002.22869_none_7837de25b13bb212\cryptsvc.dll
[2012/06/02 01:02:32 | 000,133,120 | ---- | M] (Microsoft Corporation) MD5=F1E8C34892336D33EDDCDFE44E474F64 -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.0.6002.18643_none_77bddd9098134535\cryptsvc.dll
[2009/04/11 07:28:18 | 000,129,024 | ---- | M] (Microsoft Corporation) MD5=FB27772BEAF8E1D28CCD825C09DA939B -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.0.6002.18005_none_77eb127097f11935\cryptsvc.dll
[2013/04/24 04:46:45 | 000,135,168 | ---- | M] (Microsoft Corporation) MD5=FBE051C07C3D2B9011ECB1C7A73120C1 -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.0.6002.23101_none_7870974bb1126d44\cryptsvc.dll
< MD5 for: EXPLORER.EXE >
[2009/02/03 11:41:21 | 002,923,520 | ---- | M] (Microsoft Corporation) MD5=37440D09DEAE0B672A04DCCF7ABF06BE -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6000.16771_none_4f83bb287ccdb7e3\explorer.exe
[2009/02/03 11:41:20 | 002,927,104 | ---- | M] (Microsoft Corporation) MD5=4F554999D7D5F05DAAEBBA7B5BA1089D -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6001.18164_none_5177ca9879e978e8\explorer.exe
[2009/02/03 11:41:20 | 002,927,616 | ---- | M] (Microsoft Corporation) MD5=50BA5850147410CDE89C523AD3BC606E -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6001.22298_none_51e4f8c7931bd1e1\explorer.exe
[2009/04/11 07:27:36 | 002,926,592 | ---- | M] (Microsoft Corporation) MD5=D07D4C3038F3578FFCE1C0237F2A1253 -- C:\Windows\explorer.exe
[2009/04/11 07:27:36 | 002,926,592 | ---- | M] (Microsoft Corporation) MD5=D07D4C3038F3578FFCE1C0237F2A1253 -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6002.18005_none_53a0201e76de3a0b\explorer.exe
[2009/02/03 11:41:20 | 002,923,520 | ---- | M] (Microsoft Corporation) MD5=E7156B0B74762D9DE0E66BDCDE06E5FB -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6000.20947_none_5033cb5995cd990b\explorer.exe
[2006/11/02 10:45:07 | 002,923,520 | ---- | M] (Microsoft Corporation) MD5=FD8C53FB002217F6F888BCF6F5D7084D -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6000.16386_none_4f7de5167cd15deb\explorer.exe
[2008/01/19 08:33:10 | 002,927,104 | ---- | M] (Microsoft Corporation) MD5=FFA764631CB70A30065C12EF8E174F9F -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6001.18000_none_51b4a71279bc6ebf\explorer.exe
< MD5 for: HAL.DLL >
[2009/04/11 07:32:46 | 000,177,128 | ---- | M] (Microsoft Corporation) MD5=B8D52005181A15D7D1470CBF2AF214DD -- C:\Windows\System32\hal.dll
< MD5 for: IASTORV.SYS >
[2008/01/19 08:42:51 | 000,235,064 | ---- | M] (Intel Corporation) MD5=54155EA1B0DF185878E0FC9EC3AC3A14 -- C:\Windows\System32\DriverStore\FileRepository\iastorv.inf_c9df7691\iaStorV.sys
[2008/01/19 08:42:51 | 000,235,064 | ---- | M] (Intel Corporation) MD5=54155EA1B0DF185878E0FC9EC3AC3A14 -- C:\Windows\winsxs\x86_iastorv.inf_31bf3856ad364e35_6.0.6001.18000_none_af11527887c7fa8f\iaStorV.sys
[2006/11/02 10:51:25 | 000,232,040 | ---- | M] (Intel Corporation) MD5=C957BF4B5D80B46C5017BF0101E6C906 -- C:\Windows\System32\drivers\iaStorV.sys
[2006/11/02 10:51:25 | 000,232,040 | ---- | M] (Intel Corporation) MD5=C957BF4B5D80B46C5017BF0101E6C906 -- C:\Windows\System32\DriverStore\FileRepository\iastorv.inf_37cdafa4\iaStorV.sys
< MD5 for: ISAPNP.SYS >
[2006/11/02 10:50:24 | 000,047,208 | ---- | M] (Microsoft Corporation) MD5=350FCA7E73CF65BCEF43FAE1E4E91293 -- C:\Windows\System32\drivers\isapnp.sys
[2006/11/02 10:50:24 | 000,047,208 | ---- | M] (Microsoft Corporation) MD5=350FCA7E73CF65BCEF43FAE1E4E91293 -- C:\Windows\System32\DriverStore\FileRepository\machine.inf_920a2c1f\isapnp.sys
[2008/01/19 08:42:15 | 000,049,720 | ---- | M] (Microsoft Corporation) MD5=6C70698A3E5C4376C6AB5C7C17FB0614 -- C:\Windows\System32\DriverStore\FileRepository\machine.inf_51b95d75\isapnp.sys
[2008/01/19 08:42:15 | 000,049,720 | ---- | M] (Microsoft Corporation) MD5=6C70698A3E5C4376C6AB5C7C17FB0614 -- C:\Windows\System32\DriverStore\FileRepository\machine.inf_f750e484\isapnp.sys
[2008/01/19 08:42:15 | 000,049,720 | ---- | M] (Microsoft Corporation) MD5=6C70698A3E5C4376C6AB5C7C17FB0614 -- C:\Windows\winsxs\x86_machine.inf_31bf3856ad364e35_6.0.6001.18000_none_ba12ed3bbeb0d97a\isapnp.sys
[2008/01/19 08:42:15 | 000,049,720 | ---- | M] (Microsoft Corporation) MD5=6C70698A3E5C4376C6AB5C7C17FB0614 -- C:\Windows\winsxs\x86_machine.inf_31bf3856ad364e35_6.0.6002.18005_none_bbfe6647bbd2a4c6\isapnp.sys
< MD5 for: LSASS.EXE >
[2009/06/15 13:51:56 | 000,009,728 | ---- | M] (Microsoft Corporation) MD5=203D86EBD6D8E4C8501B222421E81506 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6002.22152_none_a886901f7335e2fc\lsass.exe
[2009/09/10 15:44:14 | 000,009,728 | ---- | M] (Microsoft Corporation) MD5=2D3AC5E7AC01E905F3ABD2D745FE3A9B -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6002.22223_none_a8a80213731ca5a7\lsass.exe
[2009/06/15 13:48:49 | 000,009,728 | ---- | M] (Microsoft Corporation) MD5=3978F3540329E16C0AC3BCF677E5669F -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6002.18051_none_a7fbf30a5a1929db\lsass.exe
[2009/02/13 08:26:04 | 000,007,680 | ---- | M] (Microsoft Corporation) MD5=59DE082968FDD257FFF0D209B9A5B460 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6000.16820_none_a44eb0105fb4d975\lsass.exe
[2012/06/01 23:37:38 | 000,009,728 | ---- | M] (Microsoft Corporation) MD5=613DEB66A91820F0A41915B40BB8833F -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6002.22869_none_a882cf8373379c5f\lsass.exe
[2006/11/02 10:45:21 | 000,007,680 | ---- | M] (Microsoft Corporation) MD5=6A0E382E74280E4CC0DF17FE2661D003 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6000.16386_none_a413c8c65fe02762\lsass.exe
[2009/06/15 14:03:38 | 000,009,728 | ---- | M] (Microsoft Corporation) MD5=6F1F23D3599EAE17734451936B7F17C6 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6001.22450_none_a69e1da376115b2a\lsass.exe
[2011/11/16 15:12:25 | 000,009,728 | ---- | M] (Microsoft Corporation) MD5=A3E186B4B935905B829219502557314E -- C:\Windows\System32\lsass.exe
[2011/11/16 15:12:25 | 000,009,728 | ---- | M] (Microsoft Corporation) MD5=A3E186B4B935905B829219502557314E -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6002.18541_none_a806cc745a10ffad\lsass.exe
[2011/11/16 15:12:25 | 000,009,728 | ---- | M] (Microsoft Corporation) MD5=A3E186B4B935905B829219502557314E -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6002.18643_none_a808ceee5a0f2f82\lsass.exe
[2009/06/15 13:57:59 | 000,009,728 | ---- | M] (Microsoft Corporation) MD5=A911ECAC81F94ADEAFBE8E3F7873EDB0 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6001.18272_none_a600dfae5d0228c9\lsass.exe
[2009/02/13 05:58:37 | 000,007,680 | ---- | M] (Microsoft Corporation) MD5=AFF8A58280863629CA4FFA9E0B259F1E -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6000.21010_none_a4e2f4e978ca9090\lsass.exe
[2009/06/15 13:59:08 | 000,007,680 | ---- | M] (Microsoft Corporation) MD5=BA9A67672E025078C77967731BCFC560 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6000.21067_none_a4b3e75378eccda6\lsass.exe
[2009/06/15 14:10:12 | 000,007,680 | ---- | M] (Microsoft Corporation) MD5=C731B1FE449D4E9CEA358C9D55B69BE9 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6000.16870_none_a418a0745fdd652a\lsass.exe
[2009/09/09 12:09:38 | 000,009,728 | ---- | M] (Microsoft Corporation) MD5=CB7E838C140B4087B2DA323F2D4523C5 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6001.22518_none_a6d1618975e9b345\lsass.exe
[2009/09/10 15:47:51 | 000,007,680 | ---- | M] (Microsoft Corporation) MD5=D09A5DA84B7C9CA9B02EBCD7FAE41C8D -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6000.21125_none_a4dd285578ce285b\lsass.exe
[2008/01/19 08:33:14 | 000,009,728 | ---- | M] (Microsoft Corporation) MD5=DCF733788C7D088D814E5F80EB4B3E0F -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6001.18000_none_a64a8ac25ccb3836\lsass.exe
[2008/01/19 08:33:14 | 000,009,728 | ---- | M] (Microsoft Corporation) MD5=DCF733788C7D088D814E5F80EB4B3E0F -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6001.18215_none_a644c0145ccecd28\lsass.exe
[2008/01/19 08:33:14 | 000,009,728 | ---- | M] (Microsoft Corporation) MD5=DCF733788C7D088D814E5F80EB4B3E0F -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6002.18005_none_a83603ce59ed0382\lsass.exe
[2011/11/16 14:57:04 | 000,009,728 | ---- | M] (Microsoft Corporation) MD5=EBFAEB786C46B407930811F94F08877D -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6002.22742_none_a8916b6f732db5f5\lsass.exe
[2009/02/13 09:20:29 | 000,009,728 | ---- | M] (Microsoft Corporation) MD5=F4C62B07E5BF96F1FDCA9DB393ECED22 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6001.22376_none_a68e7da1761c2def\lsass.exe
< MD5 for: NDIS.SYS >
[2009/04/11 07:32:49 | 000,527,848 | ---- | M] (Microsoft Corporation) MD5=1357274D1883F68300AEADD15D7BBB42 -- C:\Windows\System32\drivers\ndis.sys
[2009/04/11 07:32:49 | 000,527,848 | ---- | M] (Microsoft Corporation) MD5=1357274D1883F68300AEADD15D7BBB42 -- C:\Windows\winsxs\x86_microsoft-windows-ndis_31bf3856ad364e35_6.0.6002.18005_none_a9b2a4d31930d864\ndis.sys
[2006/11/02 10:51:42 | 000,500,840 | ---- | M] (Microsoft Corporation) MD5=227C11E1E7CF6EF8AFB2A238D209760C -- C:\Windows\winsxs\x86_microsoft-windows-ndis_31bf3856ad364e35_6.0.6000.16386_none_a59069cb1f23fc44\ndis.sys
[2008/01/19 08:43:31 | 000,529,464 | ---- | M] (Microsoft Corporation) MD5=9BDC71790FA08F0A0B5F10462B1BD0B1 -- C:\Windows\winsxs\x86_microsoft-windows-ndis_31bf3856ad364e35_6.0.6001.18000_none_a7c72bc71c0f0d18\ndis.sys
< MD5 for: NETLOGON.DLL >
[2006/11/02 10:46:11 | 000,559,616 | ---- | M] (Microsoft Corporation) MD5=889A2C9F2AACCD8F64EF50AC0B3D553B -- C:\Windows\winsxs\x86_microsoft-windows-security-netlogon_31bf3856ad364e35_6.0.6000.16386_none_fb80f5473b0ed783\netlogon.dll
[2009/04/11 07:28:23 | 000,592,896 | ---- | M] (Microsoft Corporation) MD5=95DAECF0FB120A7B5DA679CC54E37DDE -- C:\Windows\System32\netlogon.dll
[2009/04/11 07:28:23 | 000,592,896 | ---- | M] (Microsoft Corporation) MD5=95DAECF0FB120A7B5DA679CC54E37DDE -- C:\Windows\winsxs\x86_microsoft-windows-security-netlogon_31bf3856ad364e35_6.0.6002.18005_none_ffa3304f351bb3a3\netlogon.dll
[2008/01/19 08:35:36 | 000,592,384 | ---- | M] (Microsoft Corporation) MD5=A8EFC0B6E75B789F7FD3BA5025D4E37F -- C:\Windows\winsxs\x86_microsoft-windows-security-netlogon_31bf3856ad364e35_6.0.6001.18000_none_fdb7b74337f9e857\netlogon.dll
< MD5 for: NVRAID.SYS >
[2008/01/19 08:43:01 | 000,102,968 | ---- | M] (NVIDIA Corporation) MD5=2EDF9E7751554B42CBB60116DE727101 -- C:\Windows\System32\DriverStore\FileRepository\nvraid.inf_31c3d71d\nvraid.sys
[2008/01/19 08:43:01 | 000,102,968 | ---- | M] (NVIDIA Corporation) MD5=2EDF9E7751554B42CBB60116DE727101 -- C:\Windows\winsxs\x86_nvraid.inf_31bf3856ad364e35_6.0.6001.18000_none_39dac327befea467\nvraid.sys
[2006/11/02 10:50:24 | 000,088,680 | ---- | M] (NVIDIA Corporation) MD5=E69E946F80C1C31C53003BFBF50CBB7C -- C:\Windows\System32\drivers\nvraid.sys
[2006/11/02 10:50:24 | 000,088,680 | ---- | M] (NVIDIA Corporation) MD5=E69E946F80C1C31C53003BFBF50CBB7C -- C:\Windows\System32\DriverStore\FileRepository\nvraid.inf_733654ff\nvraid.sys
< MD5 for: NVSTOR.SYS >
[2006/11/02 10:50:13 | 000,040,040 | ---- | M] (NVIDIA Corporation) MD5=9E0BA19A28C498A6D323D065DB76DFFC -- C:\Windows\System32\drivers\nvstor.sys
[2006/11/02 10:50:13 | 000,040,040 | ---- | M] (NVIDIA Corporation) MD5=9E0BA19A28C498A6D323D065DB76DFFC -- C:\Windows\System32\DriverStore\FileRepository\nvraid.inf_733654ff\nvstor.sys
[2008/01/19 08:42:09 | 000,045,112 | ---- | M] (NVIDIA Corporation) MD5=ABED0C09758D1D97DB0042DBB2688177 -- C:\Windows\System32\DriverStore\FileRepository\nvraid.inf_31c3d71d\nvstor.sys
[2008/01/19 08:42:09 | 000,045,112 | ---- | M] (NVIDIA Corporation) MD5=ABED0C09758D1D97DB0042DBB2688177 -- C:\Windows\winsxs\x86_nvraid.inf_31bf3856ad364e35_6.0.6001.18000_none_39dac327befea467\nvstor.sys
< MD5 for: SCECLI.DLL >
[2008/01/19 08:36:19 | 000,177,152 | ---- | M] (Microsoft Corporation) MD5=28B84EB538F7E8A0FE8B9299D591E0B9 -- C:\Windows\winsxs\x86_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.0.6001.18000_none_380de25bd91b6f12\scecli.dll
[2006/11/02 10:46:12 | 000,176,640 | ---- | M] (Microsoft Corporation) MD5=80E2839D05CA5970A86D7BE2A08BFF61 -- C:\Windows\winsxs\x86_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.0.6000.16386_none_35d7205fdc305e3e\scecli.dll
[2009/04/11 07:28:24 | 000,177,152 | ---- | M] (Microsoft Corporation) MD5=8FC182167381E9915651267044105EE1 -- C:\Windows\System32\scecli.dll
[2009/04/11 07:28:24 | 000,177,152 | ---- | M] (Microsoft Corporation) MD5=8FC182167381E9915651267044105EE1 -- C:\Windows\winsxs\x86_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.0.6002.18005_none_39f95b67d63d3a5e\scecli.dll
< MD5 for: SMSS.EXE >
[2013/07/08 02:18:50 | 000,064,512 | ---- | M] (Microsoft Corporation) MD5=18CE0D0DCB7AF0D3E67ECF12BDE1382D -- C:\Windows\winsxs\x86_microsoft-windows-smss_31bf3856ad364e35_6.0.6002.23154_none_ae7897262f9a96cf\smss.exe
[2013/03/09 02:16:53 | 000,064,512 | ---- | M] (Microsoft Corporation) MD5=44A40B18D9F6315D35F4539A41ECDE0D -- C:\Windows\winsxs\x86_microsoft-windows-smss_31bf3856ad364e35_6.0.6002.23076_none_ae64f5fc2fa90438\smss.exe
[2008/01/19 08:33:31 | 000,064,000 | ---- | M] (Microsoft Corporation) MD5=6701DDAF68BEDE6BBEEA9D514D73A35B -- C:\Windows\winsxs\x86_microsoft-windows-smss_31bf3856ad364e35_6.0.6001.18000_none_ac3aa7fd19319fba\smss.exe
[2009/04/11 07:28:04 | 000,064,000 | ---- | M] (Microsoft Corporation) MD5=98AF15A94CD6AC37248E72E5FE789B35 -- C:\Windows\winsxs\x86_microsoft-windows-smss_31bf3856ad364e35_6.0.6002.18005_none_ae26210916536b06\smss.exe
[2013/05/02 02:27:42 | 000,064,512 | ---- | M] (Microsoft Corporation) MD5=AF2F8F104F119DD10AFA8B54A006F1B6 -- C:\Windows\winsxs\x86_microsoft-windows-smss_31bf3856ad364e35_6.0.6002.23103_none_aeada6782f72f1c3\smss.exe
[2013/03/09 02:28:08 | 000,064,000 | ---- | M] (Microsoft Corporation) MD5=BE7480C91E89EB82FC080F772C220AE4 -- C:\Windows\System32\smss.exe
[2013/03/09 02:28:08 | 000,064,000 | ---- | M] (Microsoft Corporation) MD5=BE7480C91E89EB82FC080F772C220AE4 -- C:\Windows\winsxs\x86_microsoft-windows-smss_31bf3856ad364e35_6.0.6002.18805_none_ae2630391653543e\smss.exe
[2006/11/02 10:45:45 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=CAA75757BB3695478C23CB0624342A61 -- C:\Windows\winsxs\x86_microsoft-windows-smss_31bf3856ad364e35_6.0.6000.16386_none_aa03e6011c468ee6\smss.exe
< MD5 for: SVCHOST.EXE >
[2006/11/02 10:45:47 | 000,022,016 | ---- | M] (Microsoft Corporation) MD5=10DA15933D582D2FEDCF705EFE394B09 -- C:\Windows\winsxs\x86_microsoft-windows-services-svchost_31bf3856ad364e35_6.0.6000.16386_none_b38497a50862ad11\svchost.exe
[2008/01/19 08:33:32 | 000,021,504 | ---- | M] (Microsoft Corporation) MD5=3794B461C45882E06856F282EEF025AF -- C:\Windows\System32\svchost.exe
[2008/01/19 08:33:32 | 000,021,504 | ---- | M] (Microsoft Corporation) MD5=3794B461C45882E06856F282EEF025AF -- C:\Windows\winsxs\x86_microsoft-windows-services-svchost_31bf3856ad364e35_6.0.6001.18000_none_b5bb59a1054dbde5\svchost.exe
< MD5 for: TCPIP.SYS >
[2008/04/26 09:08:16 | 000,891,448 | ---- | M] (Microsoft Corporation) MD5=01EC1E92595F839BEE70D439C46796E3 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.22167_none_b36dd19b7fae39c7\tcpip.sys
[2013/05/08 04:40:36 | 000,914,792 | ---- | M] (Microsoft Corporation) MD5=078218D74C4EFC2CE7E4C6DF22A94F2F -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6002.23106_none_b59411ab7ca4df04\tcpip.sys
[2009/04/11 07:33:02 | 000,897,000 | ---- | M] (Microsoft Corporation) MD5=0E6B0885C3D5E4643ED2D043DE3433D8 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6002.18005_none_b5098b5e63880c42\tcpip.sys
[2011/09/20 22:02:55 | 000,913,280 | ---- | M] (Microsoft Corporation) MD5=16731B631F28F63CD9F4CB60940E7DDD -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6002.22719_none_b58c64c97caa1c43\tcpip.sys
[2009/12/08 21:52:30 | 000,897,624 | ---- | M] (Microsoft Corporation) MD5=1ACBB7A47E78F4CC82D2EFFB72901528 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.18377_none_b2d96a966698ad63\tcpip.sys
[2009/08/15 22:30:53 | 000,816,640 | ---- | M] (Microsoft Corporation) MD5=2512B4D1353370D6688B1AF1F5AFA1CF -- C:\Windows\winsxs\x86_microsoft-windows-tcpip_31bf3856ad364e35_6.0.6000.21108_none_6030d425ab49af00\tcpip.sys
[2009/08/14 18:01:55 | 000,900,168 | ---- | M] (Microsoft Corporation) MD5=2608E71AAD54564647D4BB984E1925AA -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.22497_none_b34d67897fc6850f\tcpip.sys
[2011/06/17 21:13:55 | 000,905,104 | ---- | M] (Microsoft Corporation) MD5=2756186E287139310997090797E0182B -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6002.18484_none_b4b2134c63c9c70f\tcpip.sys
[2012/03/30 13:39:11 | 000,905,600 | ---- | M] (Microsoft Corporation) MD5=27D470DABC77BC60D0A3B0E4DEB6CB91 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6002.18604_none_b50896786388e1d5\tcpip.sys
[2010/02/18 12:51:51 | 000,818,688 | ---- | M] (Microsoft Corporation) MD5=2C1F7005AA3B62721BFDB307BD5F5010 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip_31bf3856ad364e35_6.0.6000.21226_none_6019359fab5bb15b\tcpip.sys
[2010/02/18 15:49:38 | 000,898,952 | ---- | M] (Microsoft Corporation) MD5=2EAE4500984C2F8DACFB977060300A15 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.18427_none_b30f7c1866701ed5\tcpip.sys
[2009/08/14 15:24:47 | 000,813,568 | ---- | M] (Microsoft Corporation) MD5=300208927321066EA53761FDC98747C6 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip_31bf3856ad364e35_6.0.6000.16908_none_5fa75f38922bdbf4\tcpip.sys
[2013/01/04 12:28:19 | 000,914,792 | ---- | M] (Microsoft Corporation) MD5=3535CD93F944C00F098E73E12EE7FEB6 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6002.23013_none_b5863efb7cafb1c9\tcpip.sys
[2009/12/08 21:15:00 | 000,907,832 | ---- | M] (Microsoft Corporation) MD5=46E6685F3E92AEC743773ADD4CD54F57 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6002.22283_none_b53aaa1b7ce8560d\tcpip.sys
[2010/02/18 15:07:16 | 000,904,576 | ---- | M] (Microsoft Corporation) MD5=48CBE6D53632D0067C2D6B20F90D84CA -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6002.18209_none_b50d905263846bec\tcpip.sys
[2010/02/18 13:05:37 | 000,815,104 | ---- | M] (Microsoft Corporation) MD5=4A82FA8F0DF67AA354580C3FAAF8BDE3 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip_31bf3856ad364e35_6.0.6000.17021_none_5f8a957c924295b7\tcpip.sys
[2009/02/03 11:39:45 | 000,806,400 | ---- | M] (Microsoft Corporation) MD5=52A8BD6294F7D1443C6184C67AE13AF4 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip_31bf3856ad364e35_6.0.6000.20752_none_5ff4e4f9ab7777f4\tcpip.sys
[2013/05/08 05:37:21 | 000,905,576 | ---- | M] (Microsoft Corporation) MD5=548E198BAE21EFC21F8B5F0C1728AD27 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6002.18835_none_b4e92aca63a0494d\tcpip.sys
[2009/12/08 21:37:09 | 000,900,696 | ---- | M] (Microsoft Corporation) MD5=5653230D480A9C54D169E1B080B72CF5 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.22577_none_b36309477fb64a54\tcpip.sys
[2009/02/03 11:39:45 | 000,803,328 | ---- | M] (Microsoft Corporation) MD5=5DF77458AA92FDB36FCE79C60F74AB5D -- C:\Windows\winsxs\x86_microsoft-windows-tcpip_31bf3856ad364e35_6.0.6000.16627_none_5f90b964923d030a\tcpip.sys
[2010/06/16 16:55:58 | 000,902,032 | ---- | M] (Microsoft Corporation) MD5=6216A954ED7045B62880A92D6C9B9FC7 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.22713_none_b39feb737f8937a0\tcpip.sys
[2009/08/14 17:27:34 | 000,904,776 | ---- | M] (Microsoft Corporation) MD5=65877AA1B6A7CB797488E831698973E9 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6002.18091_none_b4a43aea63d4a25f\tcpip.sys
[2011/06/17 21:13:55 | 000,913,296 | ---- | M] (Microsoft Corporation) MD5=6647FCE6FC4970DAAFE5C64C794513D3 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6002.22662_none_b54f51417cd8f970\tcpip.sys
[2010/06/16 17:39:32 | 000,912,776 | ---- | M] (Microsoft Corporation) MD5=6A10AFCE0B38371064BE41C1FBFD3C6B -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6002.22425_none_b57d8e037cb5db63\tcpip.sys
[2013/07/05 04:20:37 | 000,914,880 | ---- | M] (Microsoft Corporation) MD5=6D0D344F643E28B31262AC2682109A3C -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6002.23152_none_b55a00e77cd1055d\tcpip.sys
[2013/01/04 12:28:18 | 000,905,576 | ---- | M] (Microsoft Corporation) MD5=74E2D020C47BB2B2FCCBA29A518A7EB4 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6002.18764_none_b4c7b8d663b986a2\tcpip.sys
[2010/06/16 16:59:54 | 000,898,952 | ---- | M] (Microsoft Corporation) MD5=782568AB6A43160A159B6215B70BCCE9 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.18493_none_b2bfcb7c66ac7d10\tcpip.sys
[2011/09/20 22:02:55 | 000,905,088 | ---- | M] (Microsoft Corporation) MD5=814A1C66FBD4E1B310A517221F1456BF -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6002.18519_none_b502c618638c7f52\tcpip.sys
[2008/04/26 09:26:49 | 000,891,448 | ---- | M] (Microsoft Corporation) MD5=82E266BEE5F0167E41C6ECFDD2A79C02 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.18063_none_b2e033a8669434a1\tcpip.sys
[2009/12/08 18:58:13 | 000,813,568 | ---- | M] (Microsoft Corporation) MD5=8734BD051FFDCBF8425CF222141C3741 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip_31bf3856ad364e35_6.0.6000.16973_none_5f56ae52926920d8\tcpip.sys
[2009/08/14 18:07:56 | 000,897,608 | ---- | M] (Microsoft Corporation) MD5=8A7AD2A214233F684242F289ED83EBC3 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.18311_none_b3144862666d6db3\tcpip.sys
[2010/02/18 18:36:50 | 000,902,024 | ---- | M] (Microsoft Corporation) MD5=93A5655CD9CD2F080EF1CB71A3666215 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.22636_none_b38d4a937f96be60\tcpip.sys
[2010/06/16 17:04:57 | 000,905,088 | ---- | M] (Microsoft Corporation) MD5=A474879AFA4A596B3A531F3E69730DBF -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6002.18272_none_b4baded863c37e22\tcpip.sys
[2009/12/08 18:45:32 | 000,816,640 | ---- | M] (Microsoft Corporation) MD5=CA3A5756672013A66BB9D547A5A62DCA -- C:\Windows\winsxs\x86_microsoft-windows-tcpip_31bf3856ad364e35_6.0.6000.21175_none_5fe223d3ab852692\tcpip.sys
[2013/07/05 05:53:33 | 000,905,664 | ---- | M] (Microsoft Corporation) MD5=D18D53974FD715D50FC76F9FFE1C830D -- C:\Windows\System32\drivers\tcpip.sys
[2013/07/05 05:53:33 | 000,905,664 | ---- | M] (Microsoft Corporation) MD5=D18D53974FD715D50FC76F9FFE1C830D -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6002.18880_none_b4ae19bc63cd564f\tcpip.sys
[2006/11/02 09:58:38 | 000,802,816 | ---- | M] (Microsoft Corporation) MD5=D944522B048A5FEB7700B5170D3D9423 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip_31bf3856ad364e35_6.0.6000.16386_none_5f4ed3e0926e99e4\tcpip.sys
[2010/02/18 15:22:11 | 000,910,216 | ---- | M] (Microsoft Corporation) MD5=D9F5DD5BBC8348E8F8220CCBF14C022E -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6002.22341_none_b563eb1d7cc9b0c2\tcpip.sys
[2009/12/08 21:01:08 | 000,904,776 | ---- | M] (Microsoft Corporation) MD5=DA467E7619AE5F4588E6262C13C8940A -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6002.18160_none_b4c3ac4a63bd325c\tcpip.sys
[2012/03/30 13:39:11 | 000,914,304 | ---- | M] (Microsoft Corporation) MD5=EE7E10BED85C312C1D5D30C435BDDA9F -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6002.22828_none_b58096797cb31c04\tcpip.sys
[2008/01/19 08:43:39 | 000,891,448 | ---- | M] (Microsoft Corporation) MD5=FC6E2835D667774D409C7C7021EAF9C4 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.18000_none_b31e1252666640f6\tcpip.sys
[2009/08/14 17:33:50 | 000,905,784 | ---- | M] (Microsoft Corporation) MD5=FF71856BD4CD6D4367F9FD84BE79A874 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6002.22200_none_b58e289d7caa2a80\tcpip.sys
< MD5 for: USERINIT.EXE >
[2008/01/19 08:33:33 | 000,025,088 | ---- | M] (Microsoft Corporation) MD5=0E135526E9785D085BCD9AEDE6FBCBF9 -- C:\Windows\System32\userinit.exe
[2008/01/19 08:33:33 | 000,025,088 | ---- | M] (Microsoft Corporation) MD5=0E135526E9785D085BCD9AEDE6FBCBF9 -- C:\Windows\winsxs\x86_microsoft-windows-userinit_31bf3856ad364e35_6.0.6001.18000_none_dc28ba15d1aff80b\userinit.exe
[2006/11/02 10:45:50 | 000,024,576 | ---- | M] (Microsoft Corporation) MD5=22027835939F86C3E47AD8E3FBDE3D11 -- C:\Windows\winsxs\x86_microsoft-windows-userinit_31bf3856ad364e35_6.0.6000.16386_none_d9f1f819d4c4e737\userinit.exe
< MD5 for: WINLOGON.EXE >
[2009/04/11 07:28:13 | 000,314,368 | ---- | M] (Microsoft Corporation) MD5=898E7C06A350D4A1A64A9EA264D55452 -- C:\Windows\System32\winlogon.exe
[2009/04/11 07:28:13 | 000,314,368 | ---- | M] (Microsoft Corporation) MD5=898E7C06A350D4A1A64A9EA264D55452 -- C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.0.6002.18005_none_71ae7a22d2134741\winlogon.exe
[2006/11/02 10:45:57 | 000,308,224 | ---- | M] (Microsoft Corporation) MD5=9F75392B9128A91ABAFB044EA350BAAD -- C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.0.6000.16386_none_6d8c3f1ad8066b21\winlogon.exe
[2008/01/19 08:33:37 | 000,314,880 | ---- | M] (Microsoft Corporation) MD5=C2610B6BDBEFC053BBDAB4F1B965CB24 -- C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.0.6001.18000_none_6fc30116d4f17bf5\winlogon.exe
< MD5 for: WS2_32.DLL >
[2006/11/02 10:46:14 | 000,178,688 | ---- | M] (Microsoft Corporation) MD5=D99A071C1018BB3D4ABAAD4B62048AC2 -- C:\Windows\winsxs\x86_microsoft-windows-w..nfrastructure-ws232_31bf3856ad364e35_6.0.6000.16386_none_f080eec6d16af4f0\ws2_32.dll
[2008/01/19 08:37:09 | 000,179,200 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\System32\ws2_32.dll
[2008/01/19 08:37:09 | 000,179,200 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\winsxs\x86_microsoft-windows-w..nfrastructure-ws232_31bf3856ad364e35_6.0.6001.18000_none_f2b7b0c2ce5605c4\ws2_32.dll
< >
Re: preventivka
< %systemroot%*.* /U /s >
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
[5 C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp files -> C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp -> ]
[61 C:\Windows\Installer\*.tmp files -> C:\Windows\Installer\*.tmp -> ]
[35 C:\Windows\ServiceProfiles\NetworkService\AppData\Local\Temp\*.tmp files -> C:\Windows\ServiceProfiles\NetworkService\AppData\Local\Temp\*.tmp -> ]
[1 C:\Windows\System32\*.tmp files -> C:\Windows\System32\*.tmp -> ]
[69 C:\Windows\Temp\*.tmp files -> C:\Windows\Temp\*.tmp -> ]
< %SYSTEMDRIVE%\*.exe >
< %ALLUSERSPROFILE%\Application Data\*. >
< %ALLUSERSPROFILE%\Application Data\*.exe /s >
< %APPDATA%\*. >
[2013/01/15 17:30:35 | 000,000,000 | ---D | M] -- C:\Users\domishek\AppData\Roaming\Adobe
[2013/07/31 19:02:22 | 000,000,000 | ---D | M] -- C:\Users\domishek\AppData\Roaming\Ahead
[2013/07/08 12:26:37 | 000,000,000 | ---D | M] -- C:\Users\domishek\AppData\Roaming\Allmyapps
[2013/01/12 15:06:09 | 000,000,000 | ---D | M] -- C:\Users\domishek\AppData\Roaming\AVG10
[2013/11/04 22:13:22 | 000,000,000 | ---D | M] -- C:\Users\domishek\AppData\Roaming\DAEMON Tools Lite
[2013/08/20 15:28:54 | 000,000,000 | ---D | M] -- C:\Users\domishek\AppData\Roaming\dvdcss
[2013/01/03 01:07:57 | 000,000,000 | ---D | M] -- C:\Users\domishek\AppData\Roaming\Identities
[2013/01/07 20:58:07 | 000,000,000 | ---D | M] -- C:\Users\domishek\AppData\Roaming\Macromedia
[2006/11/02 13:35:50 | 000,000,000 | ---D | M] -- C:\Users\domishek\AppData\Roaming\Media Center Programs
[2013/03/20 16:06:47 | 000,000,000 | --SD | M] -- C:\Users\domishek\AppData\Roaming\Microsoft
[2013/09/21 20:37:33 | 000,000,000 | ---D | M] -- C:\Users\domishek\AppData\Roaming\NVIDIA
[2013/01/29 16:51:50 | 000,000,000 | ---D | M] -- C:\Users\domishek\AppData\Roaming\Rovio
[2013/11/04 23:03:34 | 000,000,000 | ---D | M] -- C:\Users\domishek\AppData\Roaming\Seznam.cz
[2012/12/12 10:16:33 | 000,000,000 | ---D | M] -- C:\Users\domishek\AppData\Roaming\TuneUp Software
[2013/10/13 11:00:55 | 000,000,000 | ---D | M] -- C:\Users\domishek\AppData\Roaming\vlc
[2013/01/20 12:39:29 | 000,000,000 | ---D | M] -- C:\Users\domishek\AppData\Roaming\WinRAR
< %APPDATA%\*.exe /s >
< %systemroot%\*. /mp /s >
< %systemroot%\system32\*.dll /lockedfiles >
[1 C:\Windows\system32\*.tmp files -> C:\Windows\system32\*.tmp -> ]
< %systemroot%\Tasks\*.job /lockedfiles >
< %systemroot%\system32\drivers\*.sys /lockedfiles >
[2011/10/04 13:56:51 | 000,443,448 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\sptd.sys
< %systemroot%\System32\config\*.sav >
[2006/11/02 11:34:05 | 000,008,192 | ---- | M] () -- C:\Windows\System32\config\COMPONENTS.SAV
[2006/11/02 11:34:05 | 000,020,480 | ---- | M] () -- C:\Windows\System32\config\DEFAULT.SAV
[2006/11/02 11:34:05 | 000,008,192 | ---- | M] () -- C:\Windows\System32\config\SECURITY.SAV
[2006/11/02 11:34:08 | 010,133,504 | ---- | M] () -- C:\Windows\System32\config\SOFTWARE.SAV
[2006/11/02 11:34:08 | 001,826,816 | ---- | M] () -- C:\Windows\System32\config\SYSTEM.SAV
< %systemroot%\system32\*.dll /lockedfiles >
[1 C:\Windows\system32\*.tmp files -> C:\Windows\system32\*.tmp -> ]
< %systemroot%\system32\drivers\*.sys /3 >
< %systemroot%\system32\*.* /3 >
[2013/12/07 09:08:26 | 000,004,432 | -H-- | M] () -- C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2013/12/07 09:08:26 | 000,004,432 | -H-- | M] () -- C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2013/12/07 09:14:16 | 000,102,266 | ---- | M] () -- C:\Windows\system32\perfc009.dat
[2013/12/07 09:14:16 | 000,007,758 | ---- | M] () -- C:\Windows\system32\perfc01B.dat
[2013/12/07 09:14:16 | 000,589,596 | ---- | M] () -- C:\Windows\system32\perfh009.dat
[2013/12/07 09:14:16 | 000,028,384 | ---- | M] () -- C:\Windows\system32\perfh01B.dat
[2013/12/07 09:14:16 | 000,714,190 | ---- | M] () -- C:\Windows\system32\PerfStringBackup.INI
[1 C:\Windows\system32\*.tmp files -> C:\Windows\system32\*.tmp -> ]
< %SYSTEMDRIVE%\*.exe >
< >
< HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s >
"Google Update" = "C:\Users\domishek\AppData\Local\Google\Update\GoogleUpdate.exe" /c -- [2013/01/07 20:59:11 | 000,116,648 | ---- | M] (Google Inc.)
< reg query "HKLM\Software\Microsoft\Windows NT\CurrentVersion\winlogon" /v GinaDLL /c >
< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv" /v ImagePath /c >
HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\SERVICES\WUAUSERV
IMAGEPATH REG_EXPAND_SZ %systemroot%\system32\svchost.exe -k netsvcs
< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS" /v ImagePath /c >
HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\SERVICES\BITS
IMAGEPATH REG_EXPAND_SZ %SystemRoot%\System32\svchost.exe -k netsvcs
< >
< type c:\boot.ini >> test.txt /c >
< %SystemDrive%\PhysicalMBR.bin /md5 >
[2013/12/07 09:17:02 | 000,000,512 | ---- | M] () MD5=52B6CD3C48525E9895739A46C647FA29 -- C:\PhysicalMBR.bin
< >
< *crack* /s >
[2009/12/13 18:41:59 | 000,000,657 | ---- | M] () -- \Users\doda\AppData\Roaming\Microsoft\Windows\Recent\The Sims 2 DVD Nemusí být Crack.lnk
< *keygen* /s >
[2013/08/02 10:42:48 | 000,110,080 | ---- | M] () -- \Users\domishek\Desktop\The Sims 2 Seasons\keygen.exe
< *AntiWPA* /s >
< *loader* /s >
[2006/11/09 21:31:32 | 000,163,840 | ---- | M] () -- \Program Files\Common Files\Ahead\Lib\NeGuideStoreLoader.dll
[2010/08/30 18:10:50 | 004,856,904 | ---- | M] () -- \Program Files\Common Files\AVSMedia\MobileUploader\AVSMobileUploader.exe
[2010/08/06 15:22:32 | 000,081,256 | ---- | M] () -- \Program Files\Common Files\AVSMedia\MobileUploader\AVSMobileUploader.sil
[2010/08/16 16:08:02 | 004,309,576 | ---- | M] () -- \Program Files\Common Files\AVSMedia\VideoUploader\AVSVideoUploader.exe
[2010/08/31 16:55:10 | 000,038,075 | ---- | M] () -- \Program Files\Common Files\AVSMedia\VideoUploader\AVSVideoUploader.sib
[2006/10/26 13:40:34 | 000,057,344 | ---- | M] () -- \Program Files\Common Files\microsoft shared\VS7DEBUG\coloader.dll
[2006/10/26 13:40:34 | 000,005,120 | ---- | M] () -- \Program Files\Common Files\microsoft shared\VS7DEBUG\coloader.tlb
[2013/02/09 02:39:28 | 000,000,934 | ---- | M] () -- \Program Files\Google\Picasa3\runtime\gpuploader_main.fen
[2009/05/31 03:21:00 | 000,071,008 | ---- | M] () -- \Program Files\NVIDIA Corporation\PhysX\Common\PhysXLoader.dll
[2008/06/20 19:13:32 | 000,044,032 | ---- | M] () -- \Program Files\WinRAR\RarExtLoader.exe
[2010/12/25 10:59:11 | 000,001,185 | ---- | M] () -- \ProgramData\Microsoft\Windows\Start Menu\Programs\AVS4YOU\Video\AVS Video Uploader.lnk
[2012/06/18 11:39:40 | 000,072,638 | ---- | M] () -- \ProgramData\Skype\Apps\login\images\loader.gif
[2012/06/18 11:39:40 | 000,003,032 | ---- | M] () -- \ProgramData\Skype\Apps\login\images\loader.png
[2010/12/25 10:59:11 | 000,001,185 | ---- | M] () -- \Users\All Users\Microsoft\Windows\Start Menu\Programs\AVS4YOU\Video\AVS Video Uploader.lnk
[2012/06/18 11:39:40 | 000,072,638 | ---- | M] () -- \Users\All Users\Skype\Apps\login\images\loader.gif
[2012/06/18 11:39:40 | 000,003,032 | ---- | M] () -- \Users\All Users\Skype\Apps\login\images\loader.png
[2009/08/09 11:51:07 | 000,000,060 | ---- | M] () -- \Users\doda\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\FJ2CQHC2\1000her.cz\loading\load.swf\MiniclipLoaderAd.sol
[2009/11/24 11:57:21 | 000,000,054 | ---- | M] () -- \Users\doda\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\FJ2CQHC2\media.mtvnservices.com\player\loader\loaderLogging.sol
[2009/08/09 11:59:47 | 000,000,060 | ---- | M] () -- \Users\doda\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\FJ2CQHC2\miniclip.com\games\bush-shoot-out\en\bushshootout_game.swf\MiniclipLoaderAd.sol
[2009/11/24 13:08:43 | 000,000,054 | ---- | M] () -- \Users\doda\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\FJ2CQHC2\www.mtv.com\global\apps\player\flex\Loader.swf\loaderLogging.sol
[2009/09/14 17:30:56 | 000,000,919 | ---- | M] () -- \Users\doda\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\YouTube Downloader.lnk
[2009/09/08 19:22:27 | 000,001,764 | ---- | M] () -- \Users\doda\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\YouTube Downloader\YouTube Downloader Help.lnk
[2009/09/08 19:22:27 | 000,001,859 | ---- | M] () -- \Users\doda\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\YouTube Downloader\YouTube Downloader.lnk
[2009/06/01 15:52:53 | 000,000,919 | ---- | M] () -- \Users\doda\Desktop\youtube\YouTube Downloader.lnk
[2009/06/01 15:52:38 | 005,637,845 | ---- | M] () -- \Users\doda\Desktop\youtube\youtubedownloader.exe
[2009/02/20 16:46:42 | 000,451,188 | ---- | M] () -- \Users\doda\Documents\Instal\youtubedownloader.exe
[2010/01/10 14:21:17 | 000,001,681 | ---- | M] () -- \Users\Dominishka\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\8WJLM6W4\preloader[1].js
[2009/12/25 13:38:21 | 000,000,777 | ---- | M] () -- \Users\Dominishka\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\12IDWSQW\_loader_v[1].htm
[2010/01/23 14:21:43 | 000,000,773 | ---- | M] () -- \Users\Dominishka\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\F80IK9X4\_loader[1].htm
[2010/01/23 15:28:38 | 000,000,773 | ---- | M] () -- \Users\Dominishka\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\ME3X2I0H\_loader[1].htm
[2010/01/23 13:59:49 | 000,000,773 | ---- | M] () -- \Users\Dominishka\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\NNM91K0P\_loader[1].htm
[2010/01/23 15:28:38 | 000,000,777 | ---- | M] () -- \Users\Dominishka\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\NNM91K0P\_loader_v[2].htm
[2009/09/08 19:22:24 | 000,000,919 | ---- | M] () -- \Users\Dominishka\Desktop\Jen tak\YouTube Downloader.lnk
[2009/09/08 19:21:31 | 003,096,261 | ---- | M] () -- \Users\Dominishka\Desktop\Jen tak\YoutubeDownloaderSetup.exe
[2011/01/18 14:20:39 | 000,000,402 | ---- | M] () -- \Users\Domisheek\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\0QTLX0V2\preloader[1].htm
[2011/01/08 12:57:34 | 000,002,931 | ---- | M] () -- \Users\Domisheek\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\0QTLX0V2\preloader[1].swf
[2011/01/18 20:20:41 | 000,000,402 | ---- | M] () -- \Users\Domisheek\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\0QTLX0V2\preloader[2].htm
[2011/01/18 20:20:42 | 000,000,402 | ---- | M] () -- \Users\Domisheek\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\0QTLX0V2\preloader[3].htm
[2011/05/26 06:30:00 | 000,001,891 | ---- | M] () -- \Users\Domisheek\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\CDUMQWZD\preloader[1].js
[2011/05/26 06:30:00 | 000,002,931 | ---- | M] () -- \Users\Domisheek\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\H0XFEG3K\preloader[1].swf
[2011/04/16 15:48:06 | 000,002,326 | ---- | M] () -- \Users\Domisheek\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\42O5XK55\loader[1].js
[2011/04/14 10:55:36 | 000,001,047 | ---- | M] () -- \Users\Domisheek\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\42O5XK55\logoloader[1].js
[2011/04/13 09:07:53 | 000,002,326 | ---- | M] () -- \Users\Domisheek\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\72C7MW9K\loader[1].js
[2011/04/13 07:01:37 | 000,000,773 | ---- | M] () -- \Users\Domisheek\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\72C7MW9K\_loader[1].htm
[2011/02/21 09:30:11 | 000,000,773 | ---- | M] () -- \Users\Domisheek\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\P9QE0L74\_loader[1].htm
[2011/04/22 14:55:45 | 000,002,326 | ---- | M] () -- \Users\Domisheek\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\PQSF3WPV\loader[1].js
[2011/04/28 07:08:38 | 000,000,777 | ---- | M] () -- \Users\Domisheek\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\PQSF3WPV\_loader_v[1].htm
[2011/05/27 06:39:25 | 000,011,994 | ---- | M] () -- \Users\Domisheek\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\RTC3EVDJ\loaders-gen[1].gif
[2011/06/06 12:08:18 | 000,006,610 | ---- | M] () -- \Users\Domisheek\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\RTC3EVDJ\loader[1].js
[2011/05/27 06:37:24 | 000,000,777 | ---- | M] () -- \Users\Domisheek\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\RTC3EVDJ\_loader_v[1].htm
[2011/06/08 07:10:00 | 000,000,777 | ---- | M] () -- \Users\Domisheek\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\RTC3EVDJ\_loader_v[2].htm
[2011/07/11 11:30:06 | 000,003,619 | ---- | M] () -- \Users\Domisheek\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\S8NRPEKI\loader[1].js
[2011/04/22 10:47:27 | 000,002,576 | ---- | M] () -- \Users\Domisheek\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\SK0Y3388\preloader2[1].gif
[2011/04/14 10:55:36 | 000,002,004 | ---- | M] () -- \Users\Domisheek\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\V2U0J8HA\loader[1].js
[2010/07/13 08:54:52 | 000,197,914 | ---- | M] () -- \Users\Domisheek\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\W5I10NQV\LoaderImage_0[1].jpg
[2011/04/16 06:59:53 | 000,002,004 | ---- | M] () -- \Users\Domisheek\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\WHMEI6ZN\loader[1].js
[2011/04/16 06:59:53 | 000,001,047 | ---- | M] () -- \Users\Domisheek\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\WHMEI6ZN\logoloader[1].js
[384 \Users\Domisheek\AppData\Local\Temp\Low\*.tmp files -> \Users\Domisheek\AppData\Local\Temp\Low\*.tmp -> ]
[2010/02/07 14:28:03 | 000,000,177 | ---- | M] () -- \Users\Domisheek\AppData\Roaming\Microsoft\Windows\Cookies\Low\domisheek@downloader.zex[2].txt
[2010/12/25 10:59:09 | 000,001,197 | ---- | M] () -- \Users\Domisheek\AppData\Roaming\Microsoft\Windows\SendTo\AVS Mobile Uploader.lnk
[2010/12/25 10:59:11 | 000,001,185 | ---- | M] () -- \Users\Domisheek\AppData\Roaming\Microsoft\Windows\SendTo\AVS Video Uploader.lnk
[2013/05/19 12:04:09 | 000,000,121 | ---- | M] () -- \Users\juhu\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\D6LVG9YB\vp.videoplaza.tv\com.videoplaza.bootloader.sol
[2013/10/22 11:33:15 | 000,167,544 | ---- | M] () -- \Users\juhu\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\0CBO2JDR\FLVPlayerUpdate_downloader_by_FLVPlayerUpdate[1].exe
[2013/10/22 11:33:16 | 000,167,544 | ---- | M] () -- \Users\juhu\AppData\Local\Temp\FLVPlayerUpdate_downloader_by_FLVPlayerUpdate.exe
[15 \Users\juhu\AppData\Local\Temp\*.tmp files -> \Users\juhu\AppData\Local\Temp\*.tmp -> ]
[2012/09/13 14:45:58 | 000,058,424 | ---- | M] () -- \Users\juhu\AppData\Roaming\Seznam.cz\bin\libfoxloader.dll
[2012/08/07 13:39:12 | 000,000,165 | ---- | M] () -- \Users\juhu\AppData\Roaming\Seznam.cz\conf\szndesktop.d\libfoxloader.conf
[2013/01/21 15:03:44 | 000,030,608 | ---- | M] () -- \Users\juhu\AppData\Roaming\Seznam.cz\install\cz.seznam.software.libfoxloader-3.0.0-win32.zip
[2012/08/13 18:05:28 | 000,000,235 | ---- | M] () -- \Users\juhu\AppData\Roaming\Seznam.cz\uninstall\cz_seznam_software_libfoxloader_3_0_0.install.bat
[2012/08/13 18:05:26 | 000,000,130 | ---- | M] () -- \Users\juhu\AppData\Roaming\Seznam.cz\uninstall\cz_seznam_software_libfoxloader_3_0_0.uninstall.bat
[2011/10/04 13:57:13 | 000,057,728 | ---- | M] () -- \Users\Juchůůů\AppData\Local\Microsoft\Windows Sidebar\Gadgets\DT.gadget\img\dt_dadget_loader.png
[2011/10/04 13:57:15 | 000,057,728 | ---- | M] () -- \Users\Juchůůů\AppData\Local\Microsoft\Windows Sidebar\Gadgets\DT.gadget\skins\skin1\dt_dadget_loader.png
[2011/10/04 13:57:16 | 000,057,728 | ---- | M] () -- \Users\Juchůůů\AppData\Local\Microsoft\Windows Sidebar\Gadgets\DT.gadget\skins\skin2\dt_dadget_loader.png
[2011/08/28 09:02:07 | 000,004,176 | ---- | M] () -- \Users\Juchůůů\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\68631LAK\loader[2].gif
[2011/08/28 09:10:40 | 000,115,509 | ---- | M] () -- \Users\Juchůůů\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\68631LAK\main_2010_with_preloader[1].swf
[2011/08/30 08:55:42 | 000,004,176 | ---- | M] () -- \Users\Juchůůů\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\7VW6USJN\loader[2].gif
[2011/12/23 12:13:58 | 000,003,712 | ---- | M] () -- \Users\Juchůůů\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\F2JY1P83\loader[1].js
[2011/08/28 08:08:36 | 000,090,088 | ---- | M] () -- \Users\Juchůůů\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\LMNA5RM0\GamePreLoader[1].swf
[2012/04/03 07:13:31 | 000,009,427 | ---- | M] () -- \Users\Juchůůů\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\NBYBI6DU\ajax-loader[1].gif
[2012/04/03 07:14:33 | 000,000,673 | ---- | M] () -- \Users\Juchůůů\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\NBYBI6DU\loader.white[1].gif
[2012/04/03 07:14:36 | 000,002,199 | ---- | M] () -- \Users\Juchůůů\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\XQ28H63J\preloader[1].swf
[2012/04/08 15:39:05 | 000,000,060 | ---- | M] () -- \Users\Juchůůů\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\ZVB63YHL\superhry.cz\HSO_40e1f8z\bushroaylits.swf\MiniclipLoaderAd.sol
[2010/12/12 12:52:59 | 000,003,830 | ---- | M] () -- \Users\Terka\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\0HUKWKPQ\preloader02[1].swf
[2011/07/02 10:00:25 | 000,001,891 | ---- | M] () -- \Users\Terka\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\AZKZ6M0R\preloader[1].js
[2011/07/02 10:00:25 | 000,002,931 | ---- | M] () -- \Users\Terka\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\HAF8MPSX\preloader[1].swf
[2011/06/27 06:06:24 | 000,004,176 | ---- | M] () -- \Users\Terka\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\04Q9UP15\loader[1].gif
[2011/06/22 06:42:05 | 000,003,097 | ---- | M] () -- \Users\Terka\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\04Q9UP15\loader[1].js
[2011/06/28 18:49:25 | 000,003,619 | ---- | M] () -- \Users\Terka\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\04Q9UP15\loader[2].js
[2011/07/07 13:34:21 | 000,003,619 | ---- | M] () -- \Users\Terka\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\LF7AO7B3\loader[1].js
[2010/06/02 11:39:03 | 000,004,178 | ---- | M] () -- \Users\Terka\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5\E339C5GQ\ajax-loader[1].gif
[2010/10/20 06:39:09 | 000,010,819 | ---- | M] () -- \Users\Terka\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5\E339C5GQ\loader[1].gif
[2008/01/03 14:46:51 | 000,005,795 | ---- | M] () -- \Users\Terka\AppData\Roaming\ICQ\Application\ICQ7.0\imApp\theme\IMAGES\XtraPreloader\loader.jpg
[2008/01/03 14:46:51 | 000,005,520 | ---- | M] () -- \Users\Terka\AppData\Roaming\ICQ\Application\ICQ7.0\imApp\theme\IMAGES\XtraPreloader\loader.swf
[2009/12/20 08:55:30 | 000,004,180 | ---- | M] () -- \Users\Terka\AppData\Roaming\ICQ\Application\ICQ7.0\imApp\theme\IMAGES\XtraPreloader\zlango-preloader.png
[2008/01/03 14:46:51 | 000,005,520 | ---- | M] () -- \Users\Terka\AppData\Roaming\ICQ\Application\ICQ7.0\imApp\theme\MUICoreLib\xtraLoader.swf
[2010/09/03 19:11:48 | 000,002,886 | ---- | M] () -- \Users\Terka\AppData\Roaming\ICQ\Application\ICQ7.0\Xtraz\icq\content\babylon_feed\preloader01_b.swf
[2011/03/13 19:26:07 | 000,000,402 | ---- | M] () -- \Users\Terka\AppData\Roaming\ICQ\Application\ICQ7.0\Xtraz\icq\content\icq_profile\preloader.html
[2011/01/18 14:49:26 | 000,000,402 | ---- | M] () -- \Users\Terka\AppData\Roaming\ICQ\Application\ICQ7.0\Xtraz\icq\content\profile_forms\preloader.html
[2011/01/18 14:49:26 | 000,000,402 | ---- | M] () -- \Users\Terka\AppData\Roaming\ICQ\Application\ICQ7.0\Xtraz\icq\content\profile_lightboxs\preloader.html
[2011/02/05 11:16:04 | 000,003,830 | ---- | M] () -- \Users\Terka\AppData\Roaming\ICQ\Application\ICQ7.0\Xtraz\icq\content\rps\preloader02.swf
[2011/02/05 11:11:48 | 000,003,830 | ---- | M] () -- \Users\Terka\AppData\Roaming\ICQ\Application\ICQ7.0\Xtraz\icq\content\slide-a-lama\preloader02.swf
[2010/03/21 13:14:44 | 000,552,798 | ---- | M] () -- \Users\Terka\AppData\Roaming\ICQ\Application\ICQ7.0\Xtraz\icq\theme\game_center\loaderBkg.png
[2011/07/06 09:13:32 | 000,009,767 | ---- | M] () -- \Users\Terka\AppData\Roaming\Mozilla\Firefox\Profiles\lzp4blfi.default\conduitCommon\modules\3.5.0.12\ExternalLibraryLoader.jsm
[2011/07/06 09:13:32 | 000,009,767 | ---- | M] () -- \Users\Terka\AppData\Roaming\Mozilla\Firefox\Profiles\lzp4blfi.default\extensions\{bf7380fa-e3b4-4db2-af3e-9d8783a45bfc}\modules\ExternalLibraryLoader.jsm
[2011/07/13 07:47:28 | 000,000,442 | ---- | M] () -- \Users\Terka\Favorites\Links\http--downloader.zex.cz-index.phpPHPSESSID=3f3c62917319a60145bc736f958cd786&url=http%3A%2F%2Fwww.youtube.url
[2010/01/07 18:47:42 | 000,003,830 | ---- | M] () -- \Users\Terkaa\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\00WOLVHF\preloader02[1].swf
[2010/01/09 16:16:06 | 000,003,479 | ---- | M] () -- \Users\Terkaa\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\T19J6DF6\preloader04[1].swf
[2010/01/19 17:33:38 | 000,001,681 | ---- | M] () -- \Users\Terkaa\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\T19J6DF6\preloader[1].js
[2010/01/07 14:20:53 | 000,001,681 | ---- | M] () -- \Users\Terkaa\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\T19J6DF6\preloader[2].js
[2010/01/10 16:48:07 | 000,003,830 | ---- | M] () -- \Users\Terkaa\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\T93V9SPR\preloader02[1].swf
[2010/01/07 09:23:28 | 000,001,681 | ---- | M] () -- \Users\Terkaa\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\T93V9SPR\preloader[1].js
[2010/01/10 16:12:08 | 000,001,681 | ---- | M] () -- \Users\Terkaa\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\T93V9SPR\preloader[2].js
[2009/12/16 17:19:13 | 000,001,188 | ---- | M] () -- \Users\Terkaa\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\2GCI8TMH\LinePreloader[1].swf
[2009/12/16 17:17:01 | 000,000,673 | ---- | M] () -- \Users\Terkaa\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\2GCI8TMH\loader.white[1].gif
[2010/01/10 16:21:33 | 000,000,777 | ---- | M] () -- \Users\Terkaa\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\P0J58I3R\_loader_v[1].htm
[2010/01/10 16:21:30 | 000,000,773 | ---- | M] () -- \Users\Terkaa\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\UL4IMQXH\_loader[1].htm
[2009/02/04 20:54:51 | 000,082,784 | ---- | M] () -- \Windows\assembly\GAC\IALoader\1.7.6223.0__31bf3856ad364e35\IALoader.dll
[2008/01/19 08:34:04 | 000,038,400 | ---- | M] () -- \Windows\System32\dmloader.dll
[1 \Windows\System32\*.tmp files -> \Windows\System32\*.tmp -> ]
[2009/04/28 10:48:06 | 000,009,622 | ---- | M] () -- \Windows\System32\Adobe\Shockwave 11\shockwave_Projector_Loader.dcr
[2009/02/16 16:58:38 | 000,003,402 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.0.6001.18000_en-us_7698ba05e403d673.manifest
[2009/02/16 16:58:38 | 000,026,112 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.0.6001.18000_en-us_7698ba05e403d673_winload.exe.mui_3bc5b827
[2009/02/16 16:58:38 | 000,019,456 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.0.6001.18000_en-us_7698ba05e403d673_winresume.exe.mui_ff8b5358
[2009/12/21 14:42:16 | 000,004,864 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.0.6002.18005_none_5d12333e69c8ab94.manifest
[2009/12/21 14:42:18 | 000,986,600 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.0.6002.18005_none_5d12333e69c8ab94_winload.exe_75835076
[2009/12/21 14:42:19 | 000,926,184 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.0.6002.18005_none_5d12333e69c8ab94_winresume.exe_85cd1215
[2009/02/16 16:58:21 | 000,003,885 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-s..ive-blackbox-loader_31bf3856ad364e35_6.0.6001.18000_none_6b332839511be4b2.manifest
[2009/02/16 16:58:21 | 000,021,048 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-s..ive-blackbox-loader_31bf3856ad364e35_6.0.6001.18000_none_6b332839511be4b2_spldr.sys_98bd87a0
[2009/02/04 09:02:50 | 000,003,414 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.0.6000.16646_de-de_cb9c6772f81a418b.manifest
[2009/02/04 09:02:31 | 000,003,414 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.0.6000.16646_en-us_748d3d6be6f84d50.manifest
[2009/02/04 09:03:02 | 000,003,414 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.0.6000.16646_es-es_74589a4fe71f3ef5.manifest
[2009/02/04 09:02:32 | 000,003,414 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.0.6000.16646_fr-fr_1710104ed9f15557.manifest
[2009/02/04 09:03:40 | 000,003,414 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.0.6000.16646_it-it_01380695b1233ad5.manifest
[2009/02/04 09:03:46 | 000,003,414 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.0.6000.16646_ja-jp_a35d85a2a43e4cb0.manifest
[2009/02/04 09:04:06 | 000,003,414 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.0.6000.16646_nl-nl_2d992eca70004957.manifest
[2009/02/04 09:02:50 | 000,003,414 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.0.6000.20782_de-de_cbf6c366115bebbd.manifest
[2009/02/04 09:02:31 | 000,003,414 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.0.6000.20782_en-us_74e7995f0039f782.manifest
[2009/02/04 09:03:02 | 000,003,414 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.0.6000.20782_es-es_74b2f6430060e927.manifest
[2009/02/04 09:02:32 | 000,003,414 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.0.6000.20782_fr-fr_176a6c41f332ff89.manifest
[2009/02/04 09:03:40 | 000,003,414 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.0.6000.20782_it-it_01926288ca64e507.manifest
[2009/02/04 09:03:46 | 000,003,414 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.0.6000.20782_ja-jp_a3b7e195bd7ff6e2.manifest
[2009/02/04 09:04:05 | 000,003,414 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.0.6000.20782_nl-nl_2df38abd8941f389.manifest
[2008/01/19 00:03:54 | 000,003,402 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.0.6001.18000_en-us_7698ba05e403d673.manifest
[2009/02/04 09:02:24 | 000,004,858 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.0.6000.16646_none_591b3d986f9b5725.manifest
[2009/02/04 09:02:23 | 000,004,858 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.0.6000.20782_none_5975998b88dd0157.manifest
[2008/01/19 00:00:00 | 000,004,864 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.0.6001.18000_none_5b26ba326ca6e048.manifest
[2009/02/04 09:02:12 | 000,004,864 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.0.6001.18027_none_5b181c606cb0c98b.manifest
[2009/02/04 09:02:12 | 000,004,864 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.0.6001.22125_none_5b9fb89785d036a7.manifest
[2009/04/10 23:12:44 | 000,004,864 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.0.6002.18005_none_5d12333e69c8ab94.manifest
[2006/11/02 11:13:06 | 000,003,970 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-s..ive-blackbox-loader_31bf3856ad364e35_6.0.6000.16386_none_68fc663d5430d3de.manifest
[2008/01/19 00:05:22 | 000,003,885 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-s..ive-blackbox-loader_31bf3856ad364e35_6.0.6001.18000_none_6b332839511be4b2.manifest
[2006/11/02 13:32:26 | 000,038,400 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-audio-dmusic_31bf3856ad364e35_6.0.6000.16386_none_43bd59f592b7be86\dmloader.dll
[2008/01/19 08:34:04 | 000,038,400 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-audio-dmusic_31bf3856ad364e35_6.0.6001.18000_none_45f41bf18fa2cf5a\dmloader.dll
[2008/01/19 08:34:04 | 000,038,400 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-audio-dmusic_31bf3856ad364e35_6.0.6002.18005_none_47df94fd8cc49aa6\dmloader.dll
< *minodlogin* /s >
< *tnod* /s >
[2013/10/29 11:35:19 | 000,001,504 | ---- | M] () -- \Users\domishek\AppData\Local\Ares\Data\DHTnodes.dat
< *AutoKMS* /s >
< *activator* /s >
[2009/12/21 13:23:12 | 000,006,620 | ---- | M] () -- \Users\doda\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\KJJYYSEU\activator[1].js
[2010/01/23 14:26:35 | 000,006,620 | ---- | M] () -- \Users\Dominishka\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\NNM91K0P\activator[1].js
[2011/05/27 07:13:32 | 000,006,623 | ---- | M] () -- \Users\Domisheek\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\RTC3EVDJ\activator[1].js
[2011/05/17 08:49:00 | 000,006,623 | ---- | M] () -- \Users\Domisheek\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\SK0Y3388\activator[1].js
[2011/04/16 15:48:04 | 000,006,623 | ---- | M] () -- \Users\Domisheek\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\V2U0J8HA\activator[1].js
[2010/11/17 18:45:32 | 000,738,816 | ---- | M] () -- \Users\Terka\Downloads\Need.for.Speed.Hot.Pursuit-RELOADED\Crack\NFSHP_Activator.exe
< *serial* /s >
[2012/10/08 12:01:03 | 000,970,752 | ---- | M] () -- \Program Files\Reference Assemblies\Microsoft\Framework\v3.0\System.Runtime.Serialization.dll
[2009/03/12 16:55:12 | 000,000,269 | ---- | M] () -- \Users\doda\Favorites\Serials.hu.cz - Články Tropická bouře (Titulky).url
[2010/01/10 14:23:00 | 000,009,384 | ---- | M] () -- \Users\Dominishka\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\NNM91K0P\2535023-party-serialu-ordinace-v-ruzove-zahrade-zlata-adamovska[1].jpg
[2009/12/24 21:25:07 | 000,000,301 | ---- | M] () -- \Users\Dominishka\AppData\Roaming\Microsoft\Windows\Cookies\Low\dominishka@fajn-serialy[2].txt
[2009/12/24 22:00:02 | 000,000,355 | ---- | M] () -- \Users\Dominishka\AppData\Roaming\Microsoft\Windows\Cookies\Low\dominishka@serialy-online.okamzite[1].txt
[2009/12/24 21:25:07 | 000,000,416 | ---- | M] () -- \Users\Dominishka\AppData\Roaming\Microsoft\Windows\Cookies\Low\dominishka@serialy-online.vialoca[1].txt
[2011/05/27 07:02:01 | 000,022,304 | ---- | M] () -- \Users\Domisheek\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\RTC3EVDJ\1865-serialova-hvezda-dana-moravkova-je-ve-ctyriceti-hubenejsi-nez-ve-dvaceti-jak-to-dela[1].html
[2011/06/09 13:23:55 | 000,009,359 | ---- | M] () -- \Users\Domisheek\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\RTC3EVDJ\921901-img-ordinace-zvrat-osud-preziti-serial[1].jpg
[2011/06/10 08:22:47 | 000,004,297 | ---- | M] () -- \Users\Domisheek\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\RTC3EVDJ\921901-img-ordinace-zvrat-osud-preziti-serial[2].jpg
[2010/03/08 14:18:37 | 000,000,349 | ---- | M] () -- \Users\Domisheek\AppData\Roaming\Microsoft\Windows\Cookies\Low\domisheek@iserialy[2].txt
[2010/01/30 09:52:35 | 000,000,421 | ---- | M] () -- \Users\Domisheek\AppData\Roaming\Microsoft\Windows\Cookies\Low\domisheek@online-serialy.vsetu[2].txt
[2010/02/14 19:01:58 | 000,000,343 | ---- | M] () -- \Users\Domisheek\AppData\Roaming\Microsoft\Windows\Cookies\Low\domisheek@serial-horakovi.estranky[1].txt
[2010/01/30 09:54:03 | 000,000,408 | ---- | M] () -- \Users\Domisheek\AppData\Roaming\Microsoft\Windows\Cookies\Low\domisheek@serialzone[2].txt
[2010/01/30 09:54:03 | 000,000,396 | ---- | M] () -- \Users\Domisheek\AppData\Roaming\Microsoft\Windows\Cookies\Low\domisheek@www.serialzone[2].txt
[2013/10/18 17:02:06 | 000,000,024 | ---- | M] () -- \Users\domishek\AppData\Local\Google\Picasa2\cache\cacheindex_serial.pmp
[2013/10/05 10:28:13 | 000,000,024 | ---- | M] () -- \Users\juhu\AppData\Local\Google\Picasa2\cache\cacheindex_serial.pmp
[2011/08/07 22:10:00 | 000,000,392 | ---- | M] () -- \Users\Juchůůů\AppData\Roaming\Microsoft\Windows\Cookies\Low\juchůůů@serialy.kinotip[2].txt
[2011/07/31 22:02:36 | 000,000,374 | ---- | M] () -- \Users\Juchůůů\AppData\Roaming\Microsoft\Windows\Cookies\Low\juchůůů@serialzone[1].txt
[2011/07/31 22:02:36 | 000,000,315 | ---- | M] () -- \Users\Juchůůů\AppData\Roaming\Microsoft\Windows\Cookies\Low\juchůůů@sledujserialy.estranky[1].txt
[2011/07/31 22:02:36 | 000,000,118 | ---- | M] () -- \Users\Juchůůů\AppData\Roaming\Microsoft\Windows\Cookies\Low\juchůůů@www.serialzone[1].txt
[2011/07/31 21:05:15 | 000,000,128 | ---- | M] () -- \Users\Juchůůů\AppData\Roaming\Microsoft\Windows\Cookies\Low\juchůůů@www.sledujserialy.estranky[1].txt
[2011/07/31 21:05:22 | 000,000,143 | ---- | M] () -- \Users\Juchůůů\AppData\Roaming\Microsoft\Windows\Cookies\Low\juchůůů@www.sledujserialy.estranky[3].txt
[2011/07/31 21:05:22 | 000,000,121 | ---- | M] () -- \Users\Juchůůů\AppData\Roaming\Microsoft\Windows\Cookies\Low\juchůůů@www.sledujserialy.estranky[4].txt
[2011/07/07 12:48:29 | 000,022,229 | ---- | M] () -- \Users\Terka\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\FRLD8HQ6\3058-takhle-dnes-vypada-peggy-bundova-ze-serialu-zenaty-se-zavazky-poznali-byste-ji[1].html
[2011/07/04 14:15:11 | 000,000,394 | ---- | M] () -- \Users\Terka\AppData\Roaming\Microsoft\Windows\Cookies\Low\terka@filmy.serialstv[2].txt
[2011/07/11 15:30:18 | 000,000,300 | ---- | M] () -- \Users\Terka\AppData\Roaming\Microsoft\Windows\Cookies\Low\terka@serialy.kinotip[2].txt
[2011/07/13 07:47:28 | 000,000,538 | ---- | M] () -- \Users\Terka\Favorites\Links\Přátelé serialy.kinotip.cz - online seriály zdarma.url
[2010/01/08 12:36:34 | 000,003,447 | ---- | M] () -- \Users\Terkaa\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\T19J6DF6\2801004-party-serialu-ordinace-v-ruzove-zahrade-zlata-adamovska[1].jpg
[2010/01/11 19:05:29 | 000,000,335 | ---- | M] () -- \Users\Terkaa\AppData\Roaming\Microsoft\Windows\Cookies\Low\terkaa@online-serialy.vsetu[1].txt
[2010/01/05 09:42:56 | 000,000,226 | ---- | M] () -- \Users\Terkaa\Favorites\1.série - Serialy ke shlédnutí.url
[2009/03/30 05:42:19 | 000,131,072 | ---- | M] () -- \Windows\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap\2.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.dll
[2012/10/08 12:01:03 | 000,970,752 | ---- | M] () -- \Windows\assembly\GAC_MSIL\System.Runtime.Serialization\3.0.0.0__b77a5c561934e089\System.Runtime.Serialization.dll
[2013/10/11 11:51:37 | 002,346,496 | ---- | M] () -- \Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Seri#\1bf91944c0a39048bb079c5d81f90529\System.Runtime.Serialization.ni.dll
[2013/10/11 11:51:16 | 000,311,296 | ---- | M] () -- \Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Seri#\aecbf967d699e9d2da69afdf5412491c\System.Runtime.Serialization.Formatters.Soap.ni.dll
[2009/03/30 05:42:19 | 000,131,072 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v2.0.50727\System.Runtime.Serialization.Formatters.Soap.dll
[2012/10/08 12:01:09 | 000,970,752 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\System.Runtime.Serialization.dll
[2009/04/12 08:26:00 | 000,002,584 | ---- | M] () -- \Windows\SoftwareDistribution\Download\15d05090e6f876555f2419af621dda9f\msil_system.runtime.serialization.resources_b77a5c561934e089_6.0.6002.18005_ar-sa_05e1545e8b2b1edf.manifest
[2009/04/11 10:04:50 | 000,002,584 | ---- | M] () -- \Windows\SoftwareDistribution\Download\15d05090e6f876555f2419af621dda9f\msil_system.runtime.serialization.resources_b77a5c561934e089_6.0.6002.18005_cs-cz_5fa99224c7d4e0ed.manifest
[2009/04/11 09:47:40 | 000,002,584 | ---- | M] () -- \Windows\SoftwareDistribution\Download\15d05090e6f876555f2419af621dda9f\msil_system.runtime.serialization.resources_b77a5c561934e089_6.0.6002.18005_da-dk_8da4929ee55b5326.manifest
[2009/04/10 22:48:14 | 000,002,584 | ---- | M] () -- \Windows\SoftwareDistribution\Download\15d05090e6f876555f2419af621dda9f\msil_system.runtime.serialization.resources_b77a5c561934e089_6.0.6002.18005_de-de_8de9734ee52710dc.manifest
[2009/04/12 08:26:08 | 000,002,584 | ---- | M] () -- \Windows\SoftwareDistribution\Download\15d05090e6f876555f2419af621dda9f\msil_system.runtime.serialization.resources_b77a5c561934e089_6.0.6002.18005_el-gr_bacec0ff037a053e.manifest
[2009/04/10 22:47:52 | 000,002,584 | ---- | M] () -- \Windows\SoftwareDistribution\Download\15d05090e6f876555f2419af621dda9f\msil_system.runtime.serialization.resources_b77a5c561934e089_6.0.6002.18005_es-es_bacaef4d037bd842.manifest
[2009/04/11 09:47:40 | 000,002,584 | ---- | M] () -- \Windows\SoftwareDistribution\Download\15d05090e6f876555f2419af621dda9f\msil_system.runtime.serialization.resources_b77a5c561934e089_6.0.6002.18005_fi-fi_e897e27b2123a0e8.manifest
[2009/04/10 22:47:56 | 000,002,584 | ---- | M] () -- \Windows\SoftwareDistribution\Download\15d05090e6f876555f2419af621dda9f\msil_system.runtime.serialization.resources_b77a5c561934e089_6.0.6002.18005_fr-fr_e83f95c921648070.manifest
[2009/04/28 12:32:16 | 000,002,584 | ---- | M] () -- \Windows\SoftwareDistribution\Download\15d05090e6f876555f2419af621dda9f\msil_system.runtime.serialization.resources_b77a5c561934e089_6.0.6002.18005_he-il_434921295d1f4772.manifest
[2009/04/11 10:02:50 | 000,002,584 | ---- | M] () -- \Windows\SoftwareDistribution\Download\15d05090e6f876555f2419af621dda9f\msil_system.runtime.serialization.resources_b77a5c561934e089_6.0.6002.18005_hu-hu_42f7d4975d59db34.manifest
[2009/04/12 08:26:32 | 000,002,584 | ---- | M] () -- \Windows\SoftwareDistribution\Download\15d05090e6f876555f2419af621dda9f\msil_system.runtime.serialization.resources_b77a5c561934e089_6.0.6002.18005_it-it_706c7b137b428362.manifest
[2009/04/10 22:49:38 | 000,002,584 | ---- | M] () -- \Windows\SoftwareDistribution\Download\15d05090e6f876555f2419af621dda9f\msil_system.runtime.serialization.resources_b77a5c561934e089_6.0.6002.18005_ja-jp_9def8c1f99230f9f.manifest
[2009/04/11 10:01:10 | 000,002,584 | ---- | M] () -- \Windows\SoftwareDistribution\Download\15d05090e6f876555f2419af621dda9f\msil_system.runtime.serialization.resources_b77a5c561934e089_6.0.6002.18005_ko-kr_cb52c72db71687b9.manifest
[2009/04/11 09:47:44 | 000,002,584 | ---- | M] () -- \Windows\SoftwareDistribution\Download\15d05090e6f876555f2419af621dda9f\msil_system.runtime.serialization.resources_b77a5c561934e089_6.0.6002.18005_nb-no_53a6b7be10d982dd.manifest
[2009/04/28 12:35:26 | 000,002,584 | ---- | M] () -- \Windows\SoftwareDistribution\Download\15d05090e6f876555f2419af621dda9f\msil_system.runtime.serialization.resources_b77a5c561934e089_6.0.6002.18005_nl-nl_53d12a6610b82c70.manifest
[2009/04/11 10:03:24 | 000,002,584 | ---- | M] () -- \Windows\SoftwareDistribution\Download\15d05090e6f876555f2419af621dda9f\msil_system.runtime.serialization.resources_b77a5c561934e089_6.0.6002.18005_pl-pl_aea6d81a4c97e75c.manifest
[2009/04/11 09:51:58 | 000,002,593 | ---- | M] () -- \Windows\SoftwareDistribution\Download\15d05090e6f876555f2419af621dda9f\msil_system.runtime.serialization.resources_b77a5c561934e089_6.0.6002.18005_pt-br_ae6de04e4cc18198.manifest
[2009/04/11 10:01:40 | 000,002,590 | ---- | M] () -- \Windows\SoftwareDistribution\Download\15d05090e6f876555f2419af621dda9f\msil_system.runtime.serialization.resources_b77a5c561934e089_6.0.6002.18005_pt-pt_ae585b0a4cd1919c.manifest
[2009/04/11 09:51:54 | 000,002,584 | ---- | M] () -- \Windows\SoftwareDistribution\Download\15d05090e6f876555f2419af621dda9f\msil_system.runtime.serialization.resources_b77a5c561934e089_6.0.6002.18005_ru-ru_0924391c88b881d0.manifest
[2009/04/11 10:02:52 | 000,002,584 | ---- | M] () -- \Windows\SoftwareDistribution\Download\15d05090e6f876555f2419af621dda9f\msil_system.runtime.serialization.resources_b77a5c561934e089_6.0.6002.18005_sv-se_373d0f00a625b98d.manifest
[2009/04/11 10:04:52 | 000,002,584 | ---- | M] () -- \Windows\SoftwareDistribution\Download\15d05090e6f876555f2419af621dda9f\msil_system.runtime.serialization.resources_b77a5c561934e089_6.0.6002.18005_tr-tr_641755b6c4829ce4.manifest
[2009/04/12 08:30:04 | 000,002,596 | ---- | M] () -- \Windows\SoftwareDistribution\Download\15d05090e6f876555f2419af621dda9f\msil_system.runtime.serialization.resources_b77a5c561934e089_6.0.6002.18005_zh-cn_74b96ff5780aa1fd.manifest
[2009/04/11 10:06:36 | 000,002,596 | ---- | M] () -- \Windows\SoftwareDistribution\Download\15d05090e6f876555f2419af621dda9f\msil_system.runtime.serialization.resources_b77a5c561934e089_6.0.6002.18005_zh-tw_745840ef78536d0d.manifest
[2008/01/19 08:36:21 | 000,015,360 | ---- | M] () -- \Windows\System32\serialui.dll
[1 \Windows\System32\*.tmp files -> \Windows\System32\*.tmp -> ]
[2008/01/19 06:49:35 | 000,083,456 | ---- | M] () -- \Windows\System32\drivers\serial.sys
[2007/01/16 05:53:37 | 000,004,096 | ---- | M] () -- \Windows\System32\drivers\en-US\grserial.sys.mui
[2007/01/16 05:51:53 | 000,010,752 | ---- | M] () -- \Windows\System32\drivers\en-US\serial.sys.mui
[2008/01/19 06:49:35 | 000,083,456 | ---- | M] () -- \Windows\System32\DriverStore\FileRepository\hiddigi.inf_33048ac2\serial.sys
[2006/11/02 09:51:30 | 000,083,456 | ---- | M] () -- \Windows\System32\DriverStore\FileRepository\hiddigi.inf_9d4661e2\serial.sys
[2006/11/02 08:41:49 | 001,010,560 | ---- | M] () -- \Windows\System32\DriverStore\FileRepository\mdmmotsm.inf_91bbdacd\smserial.sys
[2008/01/19 06:49:35 | 000,083,456 | ---- | M] () -- \Windows\System32\DriverStore\FileRepository\msports.inf_44880ea7\serial.sys
[2006/11/02 09:51:30 | 000,083,456 | ---- | M] () -- \Windows\System32\DriverStore\FileRepository\msports.inf_ac874de4\serial.sys
[2006/11/02 09:51:28 | 000,031,232 | ---- | M] () -- \Windows\System32\DriverStore\FileRepository\smartcrd.inf_a24cc104\grserial.sys
[2008/01/19 06:49:33 | 000,031,232 | ---- | M] () -- \Windows\System32\DriverStore\FileRepository\smartcrd.inf_bec36faa\grserial.sys
[2007/01/16 05:51:41 | 000,005,632 | ---- | M] () -- \Windows\System32\sk-SK\serialui.dll.mui
[2009/12/21 14:42:24 | 000,003,462 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..gertransport-serial_31bf3856ad364e35_6.0.6002.18005_none_13a1062aa9ccba61.manifest
[2009/12/21 14:42:24 | 000,017,384 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..gertransport-serial_31bf3856ad364e35_6.0.6002.18005_none_13a1062aa9ccba61_kdcom.dll_db5e7744
[2007/01/16 05:56:06 | 000,005,632 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-u..em-config.resources_31bf3856ad364e35_6.0.6000.16386_sk-sk_77c6875313d8fdd7_serialui.dll.mui_7d29d2a3
[2009/12/21 14:43:42 | 000,015,360 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-unimodem-config_31bf3856ad364e35_6.0.6002.18005_none_f6ed1a9a1bcc8805_serialui.dll_bea29328
[2006/11/02 13:31:33 | 000,003,028 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.ref_b77a5c561934e089_6.0.6000.16386_none_d24e4473b7df83f3.manifest
[2008/01/19 00:05:26 | 000,003,028 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.ref_b77a5c561934e089_6.0.6001.18000_none_d222c62fb8372cbf.manifest
[2009/04/10 23:16:00 | 000,003,028 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.ref_b77a5c561934e089_6.0.6002.18005_none_d1fe4b6bb888c0d3.manifest
[2010/04/12 19:29:50 | 000,003,028 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.ref_b77a5c561934e089_6.0.6002.18239_none_d200f0e1b88673fe.manifest
[2012/10/08 17:24:13 | 000,003,028 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.ref_b77a5c561934e089_6.0.6002.18707_none_d1fe1cdfb888f64c.manifest
[2010/04/12 20:40:05 | 000,003,028 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.ref_b77a5c561934e089_6.0.6002.22380_none_bb39189bd2286c0e.manifest
[2012/10/08 16:03:48 | 000,003,028 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.ref_b77a5c561934e089_6.0.6002.22945_none_bb34a4b3d22c88bd.manifest
[2006/11/02 13:38:17 | 000,000,633 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_6.0.6000.16386_en-us_bb16054302d6ef1f.manifest
[2010/04/12 18:44:55 | 000,000,633 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_6.0.6002.18239_en-us_bac8b1b1037ddf2a.manifest
[2012/10/08 17:20:22 | 000,000,633 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_6.0.6002.18707_en-us_bac5ddaf03806178.manifest
[2010/04/12 19:41:31 | 000,000,633 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_6.0.6002.22380_en-us_a400d96b1d1fd73a.manifest
[2012/10/08 16:00:20 | 000,000,633 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_6.0.6002.22945_en-us_a3fc65831d23f3e9.manifest
[2006/11/02 13:31:33 | 000,003,227 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization_b77a5c561934e089_6.0.6000.16386_none_02917a0ddf868526.manifest
[2008/01/19 00:04:20 | 000,003,227 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization_b77a5c561934e089_6.0.6001.18000_none_0265fbc9dfde2df2.manifest
[2009/04/10 23:15:32 | 000,003,227 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization_b77a5c561934e089_6.0.6002.18005_none_02418105e02fc206.manifest
[2010/04/12 19:29:29 | 000,003,227 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization_b77a5c561934e089_6.0.6002.18239_none_0244267be02d7531.manifest
[2012/10/08 17:23:59 | 000,003,227 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization_b77a5c561934e089_6.0.6002.18707_none_02415279e02ff77f.manifest
[2010/04/12 20:39:45 | 000,003,227 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization_b77a5c561934e089_6.0.6002.22380_none_eb7c4e35f9cf6d41.manifest
[2012/10/08 16:03:34 | 000,003,227 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization_b77a5c561934e089_6.0.6002.22945_none_eb77da4df9d389f0.manifest
[2006/11/02 11:18:20 | 000,003,462 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..gertransport-serial_31bf3856ad364e35_6.0.6000.16386_none_0f7ecb22afbfde41.manifest
[2008/01/19 00:01:04 | 000,003,462 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..gertransport-serial_31bf3856ad364e35_6.0.6001.18000_none_11b58d1eacaaef15.manifest
[2009/04/10 23:13:32 | 000,003,462 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..gertransport-serial_31bf3856ad364e35_6.0.6002.18005_none_13a1062aa9ccba61.manifest
[2006/11/02 11:02:09 | 000,001,406 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft.windows.h..tserial-driverclass_31bf3856ad364e35_6.0.6000.16386_none_2a8610ec098ae6c4.manifest
[2006/11/02 13:31:32 | 000,003,062 | ---- | M] () -- \Windows\winsxs\Manifests\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.0.6000.16386_none_076c25db205d1f68.manifest
[2008/01/19 00:13:44 | 000,003,062 | ---- | M] () -- \Windows\winsxs\Manifests\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.0.6001.18000_none_0740a79720b4c834.manifest
[2009/04/10 23:18:56 | 000,003,062 | ---- | M] () -- \Windows\winsxs\Manifests\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.0.6002.18005_none_071c2cd321065c48.manifest
[2010/04/12 19:32:33 | 000,003,062 | ---- | M] () -- \Windows\winsxs\Manifests\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.0.6002.18239_none_071ed24921040f73.manifest
[2012/10/08 17:26:11 | 000,003,062 | ---- | M] () -- \Windows\winsxs\Manifests\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.0.6002.18707_none_071bfe47210691c1.manifest
[2010/04/12 20:42:39 | 000,003,062 | ---- | M] () -- \Windows\winsxs\Manifests\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.0.6002.22380_none_f056fa033aa60783.manifest
[2012/10/08 16:05:32 | 000,003,062 | ---- | M] () -- \Windows\winsxs\Manifests\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.0.6002.22945_none_f052861b3aaa2432.manifest
[2006/10/20 02:14:53 | 000,131,072 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.seri..ion.formatters.soap_b03f5f7f11d50a3a_6.0.6000.16386_none_483e6ea12378b3a8\System.Runtime.Serialization.Formatters.Soap.dll
[2008/01/05 12:26:58 | 000,131,072 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.seri..ion.formatters.soap_b03f5f7f11d50a3a_6.0.6001.18000_none_4812f05d23d05c74\System.Runtime.Serialization.Formatters.Soap.dll
[2009/03/30 05:42:19 | 000,131,072 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.seri..ion.formatters.soap_b03f5f7f11d50a3a_6.0.6002.18005_none_47ee75992421f088\System.Runtime.Serialization.Formatters.Soap.dll
[2006/11/02 13:33:44 | 000,888,832 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.ref_b77a5c561934e089_6.0.6000.16386_none_d24e4473b7df83f3\System.Runtime.Serialization.dll
[2008/01/05 12:21:39 | 000,929,792 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.ref_b77a5c561934e089_6.0.6001.18000_none_d222c62fb8372cbf\System.Runtime.Serialization.dll
[2009/02/18 19:38:43 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.ref_b77a5c561934e089_6.0.6002.18005_none_d1fe4b6bb888c0d3\System.Runtime.Serialization.dll
[2010/04/12 13:21:15 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.ref_b77a5c561934e089_6.0.6002.18239_none_d200f0e1b88673fe\System.Runtime.Serialization.dll
[2012/10/08 12:01:09 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.ref_b77a5c561934e089_6.0.6002.18707_none_d1fe1cdfb888f64c\System.Runtime.Serialization.dll
[2010/04/12 13:22:49 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.ref_b77a5c561934e089_6.0.6002.22380_none_bb39189bd2286c0e\System.Runtime.Serialization.dll
[2012/10/08 11:59:43 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.ref_b77a5c561934e089_6.0.6002.22945_none_bb34a4b3d22c88bd\System.Runtime.Serialization.dll
[2006/11/02 13:33:44 | 000,888,832 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization_b77a5c561934e089_6.0.6000.16386_none_02917a0ddf868526\System.Runtime.Serialization.dll
[2008/01/05 12:21:38 | 000,929,792 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization_b77a5c561934e089_6.0.6001.18000_none_0265fbc9dfde2df2\System.Runtime.Serialization.dll
[2009/02/18 19:38:39 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization_b77a5c561934e089_6.0.6002.18005_none_02418105e02fc206\System.Runtime.Serialization.dll
[2010/04/12 13:21:01 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization_b77a5c561934e089_6.0.6002.18239_none_0244267be02d7531\System.Runtime.Serialization.dll
[2012/10/08 12:01:03 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization_b77a5c561934e089_6.0.6002.18707_none_02415279e02ff77f\System.Runtime.Serialization.dll
[2010/04/12 13:22:23 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization_b77a5c561934e089_6.0.6002.22380_none_eb7c4e35f9cf6d41\System.Runtime.Serialization.dll
[2012/10/08 11:59:29 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization_b77a5c561934e089_6.0.6002.22945_none_eb77da4df9d389f0\System.Runtime.Serialization.dll
[2007/01/16 05:53:37 | 000,010,752 | ---- | M] () -- \Windows\winsxs\x86_hiddigi.inf.resources_31bf3856ad364e35_6.0.6000.16386_en-us_34b5f355d987afa1\serial.sys.mui
[2008/01/19 06:49:35 | 000,083,456 | ---- | M] () -- \Windows\winsxs\x86_hiddigi.inf_31bf3856ad364e35_6.0.6001.18000_none_955c449145dbf667\serial.sys
[2007/01/16 05:51:41 | 000,005,632 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-u..em-config.resources_31bf3856ad364e35_6.0.6000.16386_sk-sk_77c6875313d8fdd7\serialui.dll.mui
[2006/11/02 10:46:12 | 000,015,360 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-unimodem-config_31bf3856ad364e35_6.0.6000.16386_none_f2cadf9221bfabe5\serialui.dll
[2008/01/19 08:36:21 | 000,015,360 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-unimodem-config_31bf3856ad364e35_6.0.6001.18000_none_f501a18e1eaabcb9\serialui.dll
[2008/01/19 08:36:21 | 000,015,360 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-unimodem-config_31bf3856ad364e35_6.0.6002.18005_none_f6ed1a9a1bcc8805\serialui.dll
[2007/01/16 05:51:53 | 000,010,752 | ---- | M] () -- \Windows\winsxs\x86_msports.inf.resources_31bf3856ad364e35_6.0.6000.16386_en-us_05d5abe6364bafaf\serial.sys.mui
[2008/01/19 06:49:35 | 000,083,456 | ---- | M] () -- \Windows\winsxs\x86_msports.inf_31bf3856ad364e35_6.0.6001.18000_none_f897b0b1b85e4433\serial.sys
[2007/01/16 05:53:37 | 000,004,096 | ---- | M] () -- \Windows\winsxs\x86_smartcrd.inf.resources_31bf3856ad364e35_6.0.6000.16386_en-us_f75d56acd8933ebf\grserial.sys.mui
[2008/01/19 06:49:33 | 000,031,232 | ---- | M] () -- \Windows\winsxs\x86_smartcrd.inf_31bf3856ad364e35_6.0.6001.18000_none_72a9e15f343dcd03\grserial.sys
[2006/11/02 13:33:43 | 000,888,832 | ---- | M] () -- \Windows\winsxs\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.0.6000.16386_none_076c25db205d1f68\System.Runtime.Serialization.dll
[2008/01/05 12:21:38 | 000,929,792 | ---- | M] () -- \Windows\winsxs\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.0.6001.18000_none_0740a79720b4c834\System.Runtime.Serialization.dll
[2009/02/18 19:38:39 | 000,970,752 | ---- | M] () -- \Windows\winsxs\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.0.6002.18005_none_071c2cd321065c48\System.Runtime.Serialization.dll
[2010/04/12 13:21:01 | 000,970,752 | ---- | M] () -- \Windows\winsxs\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.0.6002.18239_none_071ed24921040f73\System.Runtime.Serialization.dll
[2012/10/08 12:01:03 | 000,970,752 | ---- | M] () -- \Windows\winsxs\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.0.6002.18707_none_071bfe47210691c1\System.Runtime.Serialization.dll
[2010/04/12 13:22:23 | 000,970,752 | ---- | M] () -- \Windows\winsxs\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.0.6002.22380_none_f056fa033aa60783\System.Runtime.Serialization.dll
[2012/10/08 11:59:29 | 000,970,752 | ---- | M] () -- \Windows\winsxs\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.0.6002.22945_none_f052861b3aaa2432\System.Runtime.Serialization.dll
< *w7lxe* /s >
========== Alternate Data Streams ==========
@Alternate Data Stream - 97 bytes -> C:\ProgramData\TEMP:A6881EE7
@Alternate Data Stream - 95 bytes -> C:\ProgramData\TEMP:75E82066
@Alternate Data Stream - 171 bytes -> C:\ProgramData\TEMP:B3D74A13
@Alternate Data Stream - 145 bytes -> C:\ProgramData\TEMP:DFC5A2B2
@Alternate Data Stream - 140 bytes -> C:\ProgramData\TEMP:9256664B
@Alternate Data Stream - 132 bytes -> C:\ProgramData\TEMP:32A82570
@Alternate Data Stream - 131 bytes -> C:\ProgramData\TEMP:9494338C
@Alternate Data Stream - 126 bytes -> C:\ProgramData\TEMP:5FA4CB99
@Alternate Data Stream - 125 bytes -> C:\ProgramData\TEMP:237E4B91
@Alternate Data Stream - 124 bytes -> C:\ProgramData\TEMP:B1FBA7E1
@Alternate Data Stream - 124 bytes -> C:\ProgramData\TEMP:0B4227B4
@Alternate Data Stream - 123 bytes -> C:\ProgramData\TEMP:0DFE2AE1
@Alternate Data Stream - 119 bytes -> C:\ProgramData\TEMP:90876BA3
@Alternate Data Stream - 117 bytes -> C:\ProgramData\TEMP:A6346EE9
@Alternate Data Stream - 117 bytes -> C:\ProgramData\TEMP:0E22C5DB
@Alternate Data Stream - 117 bytes -> C:\ProgramData\TEMP:05BF1B63
@Alternate Data Stream - 114 bytes -> C:\ProgramData\TEMP:F6C0CA66
@Alternate Data Stream - 113 bytes -> C:\ProgramData\TEMP:7B2BB690
@Alternate Data Stream - 112 bytes -> C:\ProgramData\TEMP:0860D6D6
@Alternate Data Stream - 110 bytes -> C:\ProgramData\TEMP:52DBE86F
@Alternate Data Stream - 109 bytes -> C:\ProgramData\TEMP:DF0BC727
@Alternate Data Stream - 109 bytes -> C:\ProgramData\TEMP:D92485C9
@Alternate Data Stream - 103 bytes -> C:\ProgramData\TEMP:02B823FE
@Alternate Data Stream - 102 bytes -> C:\ProgramData\TEMP:09CD1DC6
@Alternate Data Stream - 101 bytes -> C:\ProgramData\TEMP:4A0829E0
< End of report >
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
[5 C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp files -> C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp -> ]
[61 C:\Windows\Installer\*.tmp files -> C:\Windows\Installer\*.tmp -> ]
[35 C:\Windows\ServiceProfiles\NetworkService\AppData\Local\Temp\*.tmp files -> C:\Windows\ServiceProfiles\NetworkService\AppData\Local\Temp\*.tmp -> ]
[1 C:\Windows\System32\*.tmp files -> C:\Windows\System32\*.tmp -> ]
[69 C:\Windows\Temp\*.tmp files -> C:\Windows\Temp\*.tmp -> ]
< %SYSTEMDRIVE%\*.exe >
< %ALLUSERSPROFILE%\Application Data\*. >
< %ALLUSERSPROFILE%\Application Data\*.exe /s >
< %APPDATA%\*. >
[2013/01/15 17:30:35 | 000,000,000 | ---D | M] -- C:\Users\domishek\AppData\Roaming\Adobe
[2013/07/31 19:02:22 | 000,000,000 | ---D | M] -- C:\Users\domishek\AppData\Roaming\Ahead
[2013/07/08 12:26:37 | 000,000,000 | ---D | M] -- C:\Users\domishek\AppData\Roaming\Allmyapps
[2013/01/12 15:06:09 | 000,000,000 | ---D | M] -- C:\Users\domishek\AppData\Roaming\AVG10
[2013/11/04 22:13:22 | 000,000,000 | ---D | M] -- C:\Users\domishek\AppData\Roaming\DAEMON Tools Lite
[2013/08/20 15:28:54 | 000,000,000 | ---D | M] -- C:\Users\domishek\AppData\Roaming\dvdcss
[2013/01/03 01:07:57 | 000,000,000 | ---D | M] -- C:\Users\domishek\AppData\Roaming\Identities
[2013/01/07 20:58:07 | 000,000,000 | ---D | M] -- C:\Users\domishek\AppData\Roaming\Macromedia
[2006/11/02 13:35:50 | 000,000,000 | ---D | M] -- C:\Users\domishek\AppData\Roaming\Media Center Programs
[2013/03/20 16:06:47 | 000,000,000 | --SD | M] -- C:\Users\domishek\AppData\Roaming\Microsoft
[2013/09/21 20:37:33 | 000,000,000 | ---D | M] -- C:\Users\domishek\AppData\Roaming\NVIDIA
[2013/01/29 16:51:50 | 000,000,000 | ---D | M] -- C:\Users\domishek\AppData\Roaming\Rovio
[2013/11/04 23:03:34 | 000,000,000 | ---D | M] -- C:\Users\domishek\AppData\Roaming\Seznam.cz
[2012/12/12 10:16:33 | 000,000,000 | ---D | M] -- C:\Users\domishek\AppData\Roaming\TuneUp Software
[2013/10/13 11:00:55 | 000,000,000 | ---D | M] -- C:\Users\domishek\AppData\Roaming\vlc
[2013/01/20 12:39:29 | 000,000,000 | ---D | M] -- C:\Users\domishek\AppData\Roaming\WinRAR
< %APPDATA%\*.exe /s >
< %systemroot%\*. /mp /s >
< %systemroot%\system32\*.dll /lockedfiles >
[1 C:\Windows\system32\*.tmp files -> C:\Windows\system32\*.tmp -> ]
< %systemroot%\Tasks\*.job /lockedfiles >
< %systemroot%\system32\drivers\*.sys /lockedfiles >
[2011/10/04 13:56:51 | 000,443,448 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\sptd.sys
< %systemroot%\System32\config\*.sav >
[2006/11/02 11:34:05 | 000,008,192 | ---- | M] () -- C:\Windows\System32\config\COMPONENTS.SAV
[2006/11/02 11:34:05 | 000,020,480 | ---- | M] () -- C:\Windows\System32\config\DEFAULT.SAV
[2006/11/02 11:34:05 | 000,008,192 | ---- | M] () -- C:\Windows\System32\config\SECURITY.SAV
[2006/11/02 11:34:08 | 010,133,504 | ---- | M] () -- C:\Windows\System32\config\SOFTWARE.SAV
[2006/11/02 11:34:08 | 001,826,816 | ---- | M] () -- C:\Windows\System32\config\SYSTEM.SAV
< %systemroot%\system32\*.dll /lockedfiles >
[1 C:\Windows\system32\*.tmp files -> C:\Windows\system32\*.tmp -> ]
< %systemroot%\system32\drivers\*.sys /3 >
< %systemroot%\system32\*.* /3 >
[2013/12/07 09:08:26 | 000,004,432 | -H-- | M] () -- C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2013/12/07 09:08:26 | 000,004,432 | -H-- | M] () -- C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2013/12/07 09:14:16 | 000,102,266 | ---- | M] () -- C:\Windows\system32\perfc009.dat
[2013/12/07 09:14:16 | 000,007,758 | ---- | M] () -- C:\Windows\system32\perfc01B.dat
[2013/12/07 09:14:16 | 000,589,596 | ---- | M] () -- C:\Windows\system32\perfh009.dat
[2013/12/07 09:14:16 | 000,028,384 | ---- | M] () -- C:\Windows\system32\perfh01B.dat
[2013/12/07 09:14:16 | 000,714,190 | ---- | M] () -- C:\Windows\system32\PerfStringBackup.INI
[1 C:\Windows\system32\*.tmp files -> C:\Windows\system32\*.tmp -> ]
< %SYSTEMDRIVE%\*.exe >
< >
< HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s >
"Google Update" = "C:\Users\domishek\AppData\Local\Google\Update\GoogleUpdate.exe" /c -- [2013/01/07 20:59:11 | 000,116,648 | ---- | M] (Google Inc.)
< reg query "HKLM\Software\Microsoft\Windows NT\CurrentVersion\winlogon" /v GinaDLL /c >
< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv" /v ImagePath /c >
HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\SERVICES\WUAUSERV
IMAGEPATH REG_EXPAND_SZ %systemroot%\system32\svchost.exe -k netsvcs
< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS" /v ImagePath /c >
HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\SERVICES\BITS
IMAGEPATH REG_EXPAND_SZ %SystemRoot%\System32\svchost.exe -k netsvcs
< >
< type c:\boot.ini >> test.txt /c >
< %SystemDrive%\PhysicalMBR.bin /md5 >
[2013/12/07 09:17:02 | 000,000,512 | ---- | M] () MD5=52B6CD3C48525E9895739A46C647FA29 -- C:\PhysicalMBR.bin
< >
< *crack* /s >
[2009/12/13 18:41:59 | 000,000,657 | ---- | M] () -- \Users\doda\AppData\Roaming\Microsoft\Windows\Recent\The Sims 2 DVD Nemusí být Crack.lnk
< *keygen* /s >
[2013/08/02 10:42:48 | 000,110,080 | ---- | M] () -- \Users\domishek\Desktop\The Sims 2 Seasons\keygen.exe
< *AntiWPA* /s >
< *loader* /s >
[2006/11/09 21:31:32 | 000,163,840 | ---- | M] () -- \Program Files\Common Files\Ahead\Lib\NeGuideStoreLoader.dll
[2010/08/30 18:10:50 | 004,856,904 | ---- | M] () -- \Program Files\Common Files\AVSMedia\MobileUploader\AVSMobileUploader.exe
[2010/08/06 15:22:32 | 000,081,256 | ---- | M] () -- \Program Files\Common Files\AVSMedia\MobileUploader\AVSMobileUploader.sil
[2010/08/16 16:08:02 | 004,309,576 | ---- | M] () -- \Program Files\Common Files\AVSMedia\VideoUploader\AVSVideoUploader.exe
[2010/08/31 16:55:10 | 000,038,075 | ---- | M] () -- \Program Files\Common Files\AVSMedia\VideoUploader\AVSVideoUploader.sib
[2006/10/26 13:40:34 | 000,057,344 | ---- | M] () -- \Program Files\Common Files\microsoft shared\VS7DEBUG\coloader.dll
[2006/10/26 13:40:34 | 000,005,120 | ---- | M] () -- \Program Files\Common Files\microsoft shared\VS7DEBUG\coloader.tlb
[2013/02/09 02:39:28 | 000,000,934 | ---- | M] () -- \Program Files\Google\Picasa3\runtime\gpuploader_main.fen
[2009/05/31 03:21:00 | 000,071,008 | ---- | M] () -- \Program Files\NVIDIA Corporation\PhysX\Common\PhysXLoader.dll
[2008/06/20 19:13:32 | 000,044,032 | ---- | M] () -- \Program Files\WinRAR\RarExtLoader.exe
[2010/12/25 10:59:11 | 000,001,185 | ---- | M] () -- \ProgramData\Microsoft\Windows\Start Menu\Programs\AVS4YOU\Video\AVS Video Uploader.lnk
[2012/06/18 11:39:40 | 000,072,638 | ---- | M] () -- \ProgramData\Skype\Apps\login\images\loader.gif
[2012/06/18 11:39:40 | 000,003,032 | ---- | M] () -- \ProgramData\Skype\Apps\login\images\loader.png
[2010/12/25 10:59:11 | 000,001,185 | ---- | M] () -- \Users\All Users\Microsoft\Windows\Start Menu\Programs\AVS4YOU\Video\AVS Video Uploader.lnk
[2012/06/18 11:39:40 | 000,072,638 | ---- | M] () -- \Users\All Users\Skype\Apps\login\images\loader.gif
[2012/06/18 11:39:40 | 000,003,032 | ---- | M] () -- \Users\All Users\Skype\Apps\login\images\loader.png
[2009/08/09 11:51:07 | 000,000,060 | ---- | M] () -- \Users\doda\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\FJ2CQHC2\1000her.cz\loading\load.swf\MiniclipLoaderAd.sol
[2009/11/24 11:57:21 | 000,000,054 | ---- | M] () -- \Users\doda\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\FJ2CQHC2\media.mtvnservices.com\player\loader\loaderLogging.sol
[2009/08/09 11:59:47 | 000,000,060 | ---- | M] () -- \Users\doda\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\FJ2CQHC2\miniclip.com\games\bush-shoot-out\en\bushshootout_game.swf\MiniclipLoaderAd.sol
[2009/11/24 13:08:43 | 000,000,054 | ---- | M] () -- \Users\doda\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\FJ2CQHC2\www.mtv.com\global\apps\player\flex\Loader.swf\loaderLogging.sol
[2009/09/14 17:30:56 | 000,000,919 | ---- | M] () -- \Users\doda\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\YouTube Downloader.lnk
[2009/09/08 19:22:27 | 000,001,764 | ---- | M] () -- \Users\doda\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\YouTube Downloader\YouTube Downloader Help.lnk
[2009/09/08 19:22:27 | 000,001,859 | ---- | M] () -- \Users\doda\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\YouTube Downloader\YouTube Downloader.lnk
[2009/06/01 15:52:53 | 000,000,919 | ---- | M] () -- \Users\doda\Desktop\youtube\YouTube Downloader.lnk
[2009/06/01 15:52:38 | 005,637,845 | ---- | M] () -- \Users\doda\Desktop\youtube\youtubedownloader.exe
[2009/02/20 16:46:42 | 000,451,188 | ---- | M] () -- \Users\doda\Documents\Instal\youtubedownloader.exe
[2010/01/10 14:21:17 | 000,001,681 | ---- | M] () -- \Users\Dominishka\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\8WJLM6W4\preloader[1].js
[2009/12/25 13:38:21 | 000,000,777 | ---- | M] () -- \Users\Dominishka\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\12IDWSQW\_loader_v[1].htm
[2010/01/23 14:21:43 | 000,000,773 | ---- | M] () -- \Users\Dominishka\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\F80IK9X4\_loader[1].htm
[2010/01/23 15:28:38 | 000,000,773 | ---- | M] () -- \Users\Dominishka\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\ME3X2I0H\_loader[1].htm
[2010/01/23 13:59:49 | 000,000,773 | ---- | M] () -- \Users\Dominishka\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\NNM91K0P\_loader[1].htm
[2010/01/23 15:28:38 | 000,000,777 | ---- | M] () -- \Users\Dominishka\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\NNM91K0P\_loader_v[2].htm
[2009/09/08 19:22:24 | 000,000,919 | ---- | M] () -- \Users\Dominishka\Desktop\Jen tak\YouTube Downloader.lnk
[2009/09/08 19:21:31 | 003,096,261 | ---- | M] () -- \Users\Dominishka\Desktop\Jen tak\YoutubeDownloaderSetup.exe
[2011/01/18 14:20:39 | 000,000,402 | ---- | M] () -- \Users\Domisheek\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\0QTLX0V2\preloader[1].htm
[2011/01/08 12:57:34 | 000,002,931 | ---- | M] () -- \Users\Domisheek\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\0QTLX0V2\preloader[1].swf
[2011/01/18 20:20:41 | 000,000,402 | ---- | M] () -- \Users\Domisheek\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\0QTLX0V2\preloader[2].htm
[2011/01/18 20:20:42 | 000,000,402 | ---- | M] () -- \Users\Domisheek\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\0QTLX0V2\preloader[3].htm
[2011/05/26 06:30:00 | 000,001,891 | ---- | M] () -- \Users\Domisheek\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\CDUMQWZD\preloader[1].js
[2011/05/26 06:30:00 | 000,002,931 | ---- | M] () -- \Users\Domisheek\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\H0XFEG3K\preloader[1].swf
[2011/04/16 15:48:06 | 000,002,326 | ---- | M] () -- \Users\Domisheek\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\42O5XK55\loader[1].js
[2011/04/14 10:55:36 | 000,001,047 | ---- | M] () -- \Users\Domisheek\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\42O5XK55\logoloader[1].js
[2011/04/13 09:07:53 | 000,002,326 | ---- | M] () -- \Users\Domisheek\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\72C7MW9K\loader[1].js
[2011/04/13 07:01:37 | 000,000,773 | ---- | M] () -- \Users\Domisheek\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\72C7MW9K\_loader[1].htm
[2011/02/21 09:30:11 | 000,000,773 | ---- | M] () -- \Users\Domisheek\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\P9QE0L74\_loader[1].htm
[2011/04/22 14:55:45 | 000,002,326 | ---- | M] () -- \Users\Domisheek\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\PQSF3WPV\loader[1].js
[2011/04/28 07:08:38 | 000,000,777 | ---- | M] () -- \Users\Domisheek\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\PQSF3WPV\_loader_v[1].htm
[2011/05/27 06:39:25 | 000,011,994 | ---- | M] () -- \Users\Domisheek\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\RTC3EVDJ\loaders-gen[1].gif
[2011/06/06 12:08:18 | 000,006,610 | ---- | M] () -- \Users\Domisheek\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\RTC3EVDJ\loader[1].js
[2011/05/27 06:37:24 | 000,000,777 | ---- | M] () -- \Users\Domisheek\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\RTC3EVDJ\_loader_v[1].htm
[2011/06/08 07:10:00 | 000,000,777 | ---- | M] () -- \Users\Domisheek\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\RTC3EVDJ\_loader_v[2].htm
[2011/07/11 11:30:06 | 000,003,619 | ---- | M] () -- \Users\Domisheek\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\S8NRPEKI\loader[1].js
[2011/04/22 10:47:27 | 000,002,576 | ---- | M] () -- \Users\Domisheek\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\SK0Y3388\preloader2[1].gif
[2011/04/14 10:55:36 | 000,002,004 | ---- | M] () -- \Users\Domisheek\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\V2U0J8HA\loader[1].js
[2010/07/13 08:54:52 | 000,197,914 | ---- | M] () -- \Users\Domisheek\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\W5I10NQV\LoaderImage_0[1].jpg
[2011/04/16 06:59:53 | 000,002,004 | ---- | M] () -- \Users\Domisheek\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\WHMEI6ZN\loader[1].js
[2011/04/16 06:59:53 | 000,001,047 | ---- | M] () -- \Users\Domisheek\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\WHMEI6ZN\logoloader[1].js
[384 \Users\Domisheek\AppData\Local\Temp\Low\*.tmp files -> \Users\Domisheek\AppData\Local\Temp\Low\*.tmp -> ]
[2010/02/07 14:28:03 | 000,000,177 | ---- | M] () -- \Users\Domisheek\AppData\Roaming\Microsoft\Windows\Cookies\Low\domisheek@downloader.zex[2].txt
[2010/12/25 10:59:09 | 000,001,197 | ---- | M] () -- \Users\Domisheek\AppData\Roaming\Microsoft\Windows\SendTo\AVS Mobile Uploader.lnk
[2010/12/25 10:59:11 | 000,001,185 | ---- | M] () -- \Users\Domisheek\AppData\Roaming\Microsoft\Windows\SendTo\AVS Video Uploader.lnk
[2013/05/19 12:04:09 | 000,000,121 | ---- | M] () -- \Users\juhu\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\D6LVG9YB\vp.videoplaza.tv\com.videoplaza.bootloader.sol
[2013/10/22 11:33:15 | 000,167,544 | ---- | M] () -- \Users\juhu\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\0CBO2JDR\FLVPlayerUpdate_downloader_by_FLVPlayerUpdate[1].exe
[2013/10/22 11:33:16 | 000,167,544 | ---- | M] () -- \Users\juhu\AppData\Local\Temp\FLVPlayerUpdate_downloader_by_FLVPlayerUpdate.exe
[15 \Users\juhu\AppData\Local\Temp\*.tmp files -> \Users\juhu\AppData\Local\Temp\*.tmp -> ]
[2012/09/13 14:45:58 | 000,058,424 | ---- | M] () -- \Users\juhu\AppData\Roaming\Seznam.cz\bin\libfoxloader.dll
[2012/08/07 13:39:12 | 000,000,165 | ---- | M] () -- \Users\juhu\AppData\Roaming\Seznam.cz\conf\szndesktop.d\libfoxloader.conf
[2013/01/21 15:03:44 | 000,030,608 | ---- | M] () -- \Users\juhu\AppData\Roaming\Seznam.cz\install\cz.seznam.software.libfoxloader-3.0.0-win32.zip
[2012/08/13 18:05:28 | 000,000,235 | ---- | M] () -- \Users\juhu\AppData\Roaming\Seznam.cz\uninstall\cz_seznam_software_libfoxloader_3_0_0.install.bat
[2012/08/13 18:05:26 | 000,000,130 | ---- | M] () -- \Users\juhu\AppData\Roaming\Seznam.cz\uninstall\cz_seznam_software_libfoxloader_3_0_0.uninstall.bat
[2011/10/04 13:57:13 | 000,057,728 | ---- | M] () -- \Users\Juchůůů\AppData\Local\Microsoft\Windows Sidebar\Gadgets\DT.gadget\img\dt_dadget_loader.png
[2011/10/04 13:57:15 | 000,057,728 | ---- | M] () -- \Users\Juchůůů\AppData\Local\Microsoft\Windows Sidebar\Gadgets\DT.gadget\skins\skin1\dt_dadget_loader.png
[2011/10/04 13:57:16 | 000,057,728 | ---- | M] () -- \Users\Juchůůů\AppData\Local\Microsoft\Windows Sidebar\Gadgets\DT.gadget\skins\skin2\dt_dadget_loader.png
[2011/08/28 09:02:07 | 000,004,176 | ---- | M] () -- \Users\Juchůůů\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\68631LAK\loader[2].gif
[2011/08/28 09:10:40 | 000,115,509 | ---- | M] () -- \Users\Juchůůů\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\68631LAK\main_2010_with_preloader[1].swf
[2011/08/30 08:55:42 | 000,004,176 | ---- | M] () -- \Users\Juchůůů\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\7VW6USJN\loader[2].gif
[2011/12/23 12:13:58 | 000,003,712 | ---- | M] () -- \Users\Juchůůů\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\F2JY1P83\loader[1].js
[2011/08/28 08:08:36 | 000,090,088 | ---- | M] () -- \Users\Juchůůů\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\LMNA5RM0\GamePreLoader[1].swf
[2012/04/03 07:13:31 | 000,009,427 | ---- | M] () -- \Users\Juchůůů\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\NBYBI6DU\ajax-loader[1].gif
[2012/04/03 07:14:33 | 000,000,673 | ---- | M] () -- \Users\Juchůůů\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\NBYBI6DU\loader.white[1].gif
[2012/04/03 07:14:36 | 000,002,199 | ---- | M] () -- \Users\Juchůůů\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\XQ28H63J\preloader[1].swf
[2012/04/08 15:39:05 | 000,000,060 | ---- | M] () -- \Users\Juchůůů\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\ZVB63YHL\superhry.cz\HSO_40e1f8z\bushroaylits.swf\MiniclipLoaderAd.sol
[2010/12/12 12:52:59 | 000,003,830 | ---- | M] () -- \Users\Terka\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\0HUKWKPQ\preloader02[1].swf
[2011/07/02 10:00:25 | 000,001,891 | ---- | M] () -- \Users\Terka\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\AZKZ6M0R\preloader[1].js
[2011/07/02 10:00:25 | 000,002,931 | ---- | M] () -- \Users\Terka\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\HAF8MPSX\preloader[1].swf
[2011/06/27 06:06:24 | 000,004,176 | ---- | M] () -- \Users\Terka\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\04Q9UP15\loader[1].gif
[2011/06/22 06:42:05 | 000,003,097 | ---- | M] () -- \Users\Terka\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\04Q9UP15\loader[1].js
[2011/06/28 18:49:25 | 000,003,619 | ---- | M] () -- \Users\Terka\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\04Q9UP15\loader[2].js
[2011/07/07 13:34:21 | 000,003,619 | ---- | M] () -- \Users\Terka\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\LF7AO7B3\loader[1].js
[2010/06/02 11:39:03 | 000,004,178 | ---- | M] () -- \Users\Terka\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5\E339C5GQ\ajax-loader[1].gif
[2010/10/20 06:39:09 | 000,010,819 | ---- | M] () -- \Users\Terka\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5\E339C5GQ\loader[1].gif
[2008/01/03 14:46:51 | 000,005,795 | ---- | M] () -- \Users\Terka\AppData\Roaming\ICQ\Application\ICQ7.0\imApp\theme\IMAGES\XtraPreloader\loader.jpg
[2008/01/03 14:46:51 | 000,005,520 | ---- | M] () -- \Users\Terka\AppData\Roaming\ICQ\Application\ICQ7.0\imApp\theme\IMAGES\XtraPreloader\loader.swf
[2009/12/20 08:55:30 | 000,004,180 | ---- | M] () -- \Users\Terka\AppData\Roaming\ICQ\Application\ICQ7.0\imApp\theme\IMAGES\XtraPreloader\zlango-preloader.png
[2008/01/03 14:46:51 | 000,005,520 | ---- | M] () -- \Users\Terka\AppData\Roaming\ICQ\Application\ICQ7.0\imApp\theme\MUICoreLib\xtraLoader.swf
[2010/09/03 19:11:48 | 000,002,886 | ---- | M] () -- \Users\Terka\AppData\Roaming\ICQ\Application\ICQ7.0\Xtraz\icq\content\babylon_feed\preloader01_b.swf
[2011/03/13 19:26:07 | 000,000,402 | ---- | M] () -- \Users\Terka\AppData\Roaming\ICQ\Application\ICQ7.0\Xtraz\icq\content\icq_profile\preloader.html
[2011/01/18 14:49:26 | 000,000,402 | ---- | M] () -- \Users\Terka\AppData\Roaming\ICQ\Application\ICQ7.0\Xtraz\icq\content\profile_forms\preloader.html
[2011/01/18 14:49:26 | 000,000,402 | ---- | M] () -- \Users\Terka\AppData\Roaming\ICQ\Application\ICQ7.0\Xtraz\icq\content\profile_lightboxs\preloader.html
[2011/02/05 11:16:04 | 000,003,830 | ---- | M] () -- \Users\Terka\AppData\Roaming\ICQ\Application\ICQ7.0\Xtraz\icq\content\rps\preloader02.swf
[2011/02/05 11:11:48 | 000,003,830 | ---- | M] () -- \Users\Terka\AppData\Roaming\ICQ\Application\ICQ7.0\Xtraz\icq\content\slide-a-lama\preloader02.swf
[2010/03/21 13:14:44 | 000,552,798 | ---- | M] () -- \Users\Terka\AppData\Roaming\ICQ\Application\ICQ7.0\Xtraz\icq\theme\game_center\loaderBkg.png
[2011/07/06 09:13:32 | 000,009,767 | ---- | M] () -- \Users\Terka\AppData\Roaming\Mozilla\Firefox\Profiles\lzp4blfi.default\conduitCommon\modules\3.5.0.12\ExternalLibraryLoader.jsm
[2011/07/06 09:13:32 | 000,009,767 | ---- | M] () -- \Users\Terka\AppData\Roaming\Mozilla\Firefox\Profiles\lzp4blfi.default\extensions\{bf7380fa-e3b4-4db2-af3e-9d8783a45bfc}\modules\ExternalLibraryLoader.jsm
[2011/07/13 07:47:28 | 000,000,442 | ---- | M] () -- \Users\Terka\Favorites\Links\http--downloader.zex.cz-index.phpPHPSESSID=3f3c62917319a60145bc736f958cd786&url=http%3A%2F%2Fwww.youtube.url
[2010/01/07 18:47:42 | 000,003,830 | ---- | M] () -- \Users\Terkaa\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\00WOLVHF\preloader02[1].swf
[2010/01/09 16:16:06 | 000,003,479 | ---- | M] () -- \Users\Terkaa\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\T19J6DF6\preloader04[1].swf
[2010/01/19 17:33:38 | 000,001,681 | ---- | M] () -- \Users\Terkaa\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\T19J6DF6\preloader[1].js
[2010/01/07 14:20:53 | 000,001,681 | ---- | M] () -- \Users\Terkaa\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\T19J6DF6\preloader[2].js
[2010/01/10 16:48:07 | 000,003,830 | ---- | M] () -- \Users\Terkaa\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\T93V9SPR\preloader02[1].swf
[2010/01/07 09:23:28 | 000,001,681 | ---- | M] () -- \Users\Terkaa\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\T93V9SPR\preloader[1].js
[2010/01/10 16:12:08 | 000,001,681 | ---- | M] () -- \Users\Terkaa\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\T93V9SPR\preloader[2].js
[2009/12/16 17:19:13 | 000,001,188 | ---- | M] () -- \Users\Terkaa\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\2GCI8TMH\LinePreloader[1].swf
[2009/12/16 17:17:01 | 000,000,673 | ---- | M] () -- \Users\Terkaa\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\2GCI8TMH\loader.white[1].gif
[2010/01/10 16:21:33 | 000,000,777 | ---- | M] () -- \Users\Terkaa\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\P0J58I3R\_loader_v[1].htm
[2010/01/10 16:21:30 | 000,000,773 | ---- | M] () -- \Users\Terkaa\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\UL4IMQXH\_loader[1].htm
[2009/02/04 20:54:51 | 000,082,784 | ---- | M] () -- \Windows\assembly\GAC\IALoader\1.7.6223.0__31bf3856ad364e35\IALoader.dll
[2008/01/19 08:34:04 | 000,038,400 | ---- | M] () -- \Windows\System32\dmloader.dll
[1 \Windows\System32\*.tmp files -> \Windows\System32\*.tmp -> ]
[2009/04/28 10:48:06 | 000,009,622 | ---- | M] () -- \Windows\System32\Adobe\Shockwave 11\shockwave_Projector_Loader.dcr
[2009/02/16 16:58:38 | 000,003,402 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.0.6001.18000_en-us_7698ba05e403d673.manifest
[2009/02/16 16:58:38 | 000,026,112 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.0.6001.18000_en-us_7698ba05e403d673_winload.exe.mui_3bc5b827
[2009/02/16 16:58:38 | 000,019,456 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.0.6001.18000_en-us_7698ba05e403d673_winresume.exe.mui_ff8b5358
[2009/12/21 14:42:16 | 000,004,864 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.0.6002.18005_none_5d12333e69c8ab94.manifest
[2009/12/21 14:42:18 | 000,986,600 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.0.6002.18005_none_5d12333e69c8ab94_winload.exe_75835076
[2009/12/21 14:42:19 | 000,926,184 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.0.6002.18005_none_5d12333e69c8ab94_winresume.exe_85cd1215
[2009/02/16 16:58:21 | 000,003,885 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-s..ive-blackbox-loader_31bf3856ad364e35_6.0.6001.18000_none_6b332839511be4b2.manifest
[2009/02/16 16:58:21 | 000,021,048 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-s..ive-blackbox-loader_31bf3856ad364e35_6.0.6001.18000_none_6b332839511be4b2_spldr.sys_98bd87a0
[2009/02/04 09:02:50 | 000,003,414 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.0.6000.16646_de-de_cb9c6772f81a418b.manifest
[2009/02/04 09:02:31 | 000,003,414 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.0.6000.16646_en-us_748d3d6be6f84d50.manifest
[2009/02/04 09:03:02 | 000,003,414 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.0.6000.16646_es-es_74589a4fe71f3ef5.manifest
[2009/02/04 09:02:32 | 000,003,414 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.0.6000.16646_fr-fr_1710104ed9f15557.manifest
[2009/02/04 09:03:40 | 000,003,414 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.0.6000.16646_it-it_01380695b1233ad5.manifest
[2009/02/04 09:03:46 | 000,003,414 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.0.6000.16646_ja-jp_a35d85a2a43e4cb0.manifest
[2009/02/04 09:04:06 | 000,003,414 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.0.6000.16646_nl-nl_2d992eca70004957.manifest
[2009/02/04 09:02:50 | 000,003,414 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.0.6000.20782_de-de_cbf6c366115bebbd.manifest
[2009/02/04 09:02:31 | 000,003,414 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.0.6000.20782_en-us_74e7995f0039f782.manifest
[2009/02/04 09:03:02 | 000,003,414 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.0.6000.20782_es-es_74b2f6430060e927.manifest
[2009/02/04 09:02:32 | 000,003,414 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.0.6000.20782_fr-fr_176a6c41f332ff89.manifest
[2009/02/04 09:03:40 | 000,003,414 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.0.6000.20782_it-it_01926288ca64e507.manifest
[2009/02/04 09:03:46 | 000,003,414 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.0.6000.20782_ja-jp_a3b7e195bd7ff6e2.manifest
[2009/02/04 09:04:05 | 000,003,414 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.0.6000.20782_nl-nl_2df38abd8941f389.manifest
[2008/01/19 00:03:54 | 000,003,402 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.0.6001.18000_en-us_7698ba05e403d673.manifest
[2009/02/04 09:02:24 | 000,004,858 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.0.6000.16646_none_591b3d986f9b5725.manifest
[2009/02/04 09:02:23 | 000,004,858 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.0.6000.20782_none_5975998b88dd0157.manifest
[2008/01/19 00:00:00 | 000,004,864 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.0.6001.18000_none_5b26ba326ca6e048.manifest
[2009/02/04 09:02:12 | 000,004,864 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.0.6001.18027_none_5b181c606cb0c98b.manifest
[2009/02/04 09:02:12 | 000,004,864 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.0.6001.22125_none_5b9fb89785d036a7.manifest
[2009/04/10 23:12:44 | 000,004,864 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.0.6002.18005_none_5d12333e69c8ab94.manifest
[2006/11/02 11:13:06 | 000,003,970 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-s..ive-blackbox-loader_31bf3856ad364e35_6.0.6000.16386_none_68fc663d5430d3de.manifest
[2008/01/19 00:05:22 | 000,003,885 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-s..ive-blackbox-loader_31bf3856ad364e35_6.0.6001.18000_none_6b332839511be4b2.manifest
[2006/11/02 13:32:26 | 000,038,400 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-audio-dmusic_31bf3856ad364e35_6.0.6000.16386_none_43bd59f592b7be86\dmloader.dll
[2008/01/19 08:34:04 | 000,038,400 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-audio-dmusic_31bf3856ad364e35_6.0.6001.18000_none_45f41bf18fa2cf5a\dmloader.dll
[2008/01/19 08:34:04 | 000,038,400 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-audio-dmusic_31bf3856ad364e35_6.0.6002.18005_none_47df94fd8cc49aa6\dmloader.dll
< *minodlogin* /s >
< *tnod* /s >
[2013/10/29 11:35:19 | 000,001,504 | ---- | M] () -- \Users\domishek\AppData\Local\Ares\Data\DHTnodes.dat
< *AutoKMS* /s >
< *activator* /s >
[2009/12/21 13:23:12 | 000,006,620 | ---- | M] () -- \Users\doda\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\KJJYYSEU\activator[1].js
[2010/01/23 14:26:35 | 000,006,620 | ---- | M] () -- \Users\Dominishka\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\NNM91K0P\activator[1].js
[2011/05/27 07:13:32 | 000,006,623 | ---- | M] () -- \Users\Domisheek\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\RTC3EVDJ\activator[1].js
[2011/05/17 08:49:00 | 000,006,623 | ---- | M] () -- \Users\Domisheek\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\SK0Y3388\activator[1].js
[2011/04/16 15:48:04 | 000,006,623 | ---- | M] () -- \Users\Domisheek\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\V2U0J8HA\activator[1].js
[2010/11/17 18:45:32 | 000,738,816 | ---- | M] () -- \Users\Terka\Downloads\Need.for.Speed.Hot.Pursuit-RELOADED\Crack\NFSHP_Activator.exe
< *serial* /s >
[2012/10/08 12:01:03 | 000,970,752 | ---- | M] () -- \Program Files\Reference Assemblies\Microsoft\Framework\v3.0\System.Runtime.Serialization.dll
[2009/03/12 16:55:12 | 000,000,269 | ---- | M] () -- \Users\doda\Favorites\Serials.hu.cz - Články Tropická bouře (Titulky).url
[2010/01/10 14:23:00 | 000,009,384 | ---- | M] () -- \Users\Dominishka\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\NNM91K0P\2535023-party-serialu-ordinace-v-ruzove-zahrade-zlata-adamovska[1].jpg
[2009/12/24 21:25:07 | 000,000,301 | ---- | M] () -- \Users\Dominishka\AppData\Roaming\Microsoft\Windows\Cookies\Low\dominishka@fajn-serialy[2].txt
[2009/12/24 22:00:02 | 000,000,355 | ---- | M] () -- \Users\Dominishka\AppData\Roaming\Microsoft\Windows\Cookies\Low\dominishka@serialy-online.okamzite[1].txt
[2009/12/24 21:25:07 | 000,000,416 | ---- | M] () -- \Users\Dominishka\AppData\Roaming\Microsoft\Windows\Cookies\Low\dominishka@serialy-online.vialoca[1].txt
[2011/05/27 07:02:01 | 000,022,304 | ---- | M] () -- \Users\Domisheek\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\RTC3EVDJ\1865-serialova-hvezda-dana-moravkova-je-ve-ctyriceti-hubenejsi-nez-ve-dvaceti-jak-to-dela[1].html
[2011/06/09 13:23:55 | 000,009,359 | ---- | M] () -- \Users\Domisheek\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\RTC3EVDJ\921901-img-ordinace-zvrat-osud-preziti-serial[1].jpg
[2011/06/10 08:22:47 | 000,004,297 | ---- | M] () -- \Users\Domisheek\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\RTC3EVDJ\921901-img-ordinace-zvrat-osud-preziti-serial[2].jpg
[2010/03/08 14:18:37 | 000,000,349 | ---- | M] () -- \Users\Domisheek\AppData\Roaming\Microsoft\Windows\Cookies\Low\domisheek@iserialy[2].txt
[2010/01/30 09:52:35 | 000,000,421 | ---- | M] () -- \Users\Domisheek\AppData\Roaming\Microsoft\Windows\Cookies\Low\domisheek@online-serialy.vsetu[2].txt
[2010/02/14 19:01:58 | 000,000,343 | ---- | M] () -- \Users\Domisheek\AppData\Roaming\Microsoft\Windows\Cookies\Low\domisheek@serial-horakovi.estranky[1].txt
[2010/01/30 09:54:03 | 000,000,408 | ---- | M] () -- \Users\Domisheek\AppData\Roaming\Microsoft\Windows\Cookies\Low\domisheek@serialzone[2].txt
[2010/01/30 09:54:03 | 000,000,396 | ---- | M] () -- \Users\Domisheek\AppData\Roaming\Microsoft\Windows\Cookies\Low\domisheek@www.serialzone[2].txt
[2013/10/18 17:02:06 | 000,000,024 | ---- | M] () -- \Users\domishek\AppData\Local\Google\Picasa2\cache\cacheindex_serial.pmp
[2013/10/05 10:28:13 | 000,000,024 | ---- | M] () -- \Users\juhu\AppData\Local\Google\Picasa2\cache\cacheindex_serial.pmp
[2011/08/07 22:10:00 | 000,000,392 | ---- | M] () -- \Users\Juchůůů\AppData\Roaming\Microsoft\Windows\Cookies\Low\juchůůů@serialy.kinotip[2].txt
[2011/07/31 22:02:36 | 000,000,374 | ---- | M] () -- \Users\Juchůůů\AppData\Roaming\Microsoft\Windows\Cookies\Low\juchůůů@serialzone[1].txt
[2011/07/31 22:02:36 | 000,000,315 | ---- | M] () -- \Users\Juchůůů\AppData\Roaming\Microsoft\Windows\Cookies\Low\juchůůů@sledujserialy.estranky[1].txt
[2011/07/31 22:02:36 | 000,000,118 | ---- | M] () -- \Users\Juchůůů\AppData\Roaming\Microsoft\Windows\Cookies\Low\juchůůů@www.serialzone[1].txt
[2011/07/31 21:05:15 | 000,000,128 | ---- | M] () -- \Users\Juchůůů\AppData\Roaming\Microsoft\Windows\Cookies\Low\juchůůů@www.sledujserialy.estranky[1].txt
[2011/07/31 21:05:22 | 000,000,143 | ---- | M] () -- \Users\Juchůůů\AppData\Roaming\Microsoft\Windows\Cookies\Low\juchůůů@www.sledujserialy.estranky[3].txt
[2011/07/31 21:05:22 | 000,000,121 | ---- | M] () -- \Users\Juchůůů\AppData\Roaming\Microsoft\Windows\Cookies\Low\juchůůů@www.sledujserialy.estranky[4].txt
[2011/07/07 12:48:29 | 000,022,229 | ---- | M] () -- \Users\Terka\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\FRLD8HQ6\3058-takhle-dnes-vypada-peggy-bundova-ze-serialu-zenaty-se-zavazky-poznali-byste-ji[1].html
[2011/07/04 14:15:11 | 000,000,394 | ---- | M] () -- \Users\Terka\AppData\Roaming\Microsoft\Windows\Cookies\Low\terka@filmy.serialstv[2].txt
[2011/07/11 15:30:18 | 000,000,300 | ---- | M] () -- \Users\Terka\AppData\Roaming\Microsoft\Windows\Cookies\Low\terka@serialy.kinotip[2].txt
[2011/07/13 07:47:28 | 000,000,538 | ---- | M] () -- \Users\Terka\Favorites\Links\Přátelé serialy.kinotip.cz - online seriály zdarma.url
[2010/01/08 12:36:34 | 000,003,447 | ---- | M] () -- \Users\Terkaa\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\T19J6DF6\2801004-party-serialu-ordinace-v-ruzove-zahrade-zlata-adamovska[1].jpg
[2010/01/11 19:05:29 | 000,000,335 | ---- | M] () -- \Users\Terkaa\AppData\Roaming\Microsoft\Windows\Cookies\Low\terkaa@online-serialy.vsetu[1].txt
[2010/01/05 09:42:56 | 000,000,226 | ---- | M] () -- \Users\Terkaa\Favorites\1.série - Serialy ke shlédnutí.url
[2009/03/30 05:42:19 | 000,131,072 | ---- | M] () -- \Windows\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap\2.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.dll
[2012/10/08 12:01:03 | 000,970,752 | ---- | M] () -- \Windows\assembly\GAC_MSIL\System.Runtime.Serialization\3.0.0.0__b77a5c561934e089\System.Runtime.Serialization.dll
[2013/10/11 11:51:37 | 002,346,496 | ---- | M] () -- \Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Seri#\1bf91944c0a39048bb079c5d81f90529\System.Runtime.Serialization.ni.dll
[2013/10/11 11:51:16 | 000,311,296 | ---- | M] () -- \Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Seri#\aecbf967d699e9d2da69afdf5412491c\System.Runtime.Serialization.Formatters.Soap.ni.dll
[2009/03/30 05:42:19 | 000,131,072 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v2.0.50727\System.Runtime.Serialization.Formatters.Soap.dll
[2012/10/08 12:01:09 | 000,970,752 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\System.Runtime.Serialization.dll
[2009/04/12 08:26:00 | 000,002,584 | ---- | M] () -- \Windows\SoftwareDistribution\Download\15d05090e6f876555f2419af621dda9f\msil_system.runtime.serialization.resources_b77a5c561934e089_6.0.6002.18005_ar-sa_05e1545e8b2b1edf.manifest
[2009/04/11 10:04:50 | 000,002,584 | ---- | M] () -- \Windows\SoftwareDistribution\Download\15d05090e6f876555f2419af621dda9f\msil_system.runtime.serialization.resources_b77a5c561934e089_6.0.6002.18005_cs-cz_5fa99224c7d4e0ed.manifest
[2009/04/11 09:47:40 | 000,002,584 | ---- | M] () -- \Windows\SoftwareDistribution\Download\15d05090e6f876555f2419af621dda9f\msil_system.runtime.serialization.resources_b77a5c561934e089_6.0.6002.18005_da-dk_8da4929ee55b5326.manifest
[2009/04/10 22:48:14 | 000,002,584 | ---- | M] () -- \Windows\SoftwareDistribution\Download\15d05090e6f876555f2419af621dda9f\msil_system.runtime.serialization.resources_b77a5c561934e089_6.0.6002.18005_de-de_8de9734ee52710dc.manifest
[2009/04/12 08:26:08 | 000,002,584 | ---- | M] () -- \Windows\SoftwareDistribution\Download\15d05090e6f876555f2419af621dda9f\msil_system.runtime.serialization.resources_b77a5c561934e089_6.0.6002.18005_el-gr_bacec0ff037a053e.manifest
[2009/04/10 22:47:52 | 000,002,584 | ---- | M] () -- \Windows\SoftwareDistribution\Download\15d05090e6f876555f2419af621dda9f\msil_system.runtime.serialization.resources_b77a5c561934e089_6.0.6002.18005_es-es_bacaef4d037bd842.manifest
[2009/04/11 09:47:40 | 000,002,584 | ---- | M] () -- \Windows\SoftwareDistribution\Download\15d05090e6f876555f2419af621dda9f\msil_system.runtime.serialization.resources_b77a5c561934e089_6.0.6002.18005_fi-fi_e897e27b2123a0e8.manifest
[2009/04/10 22:47:56 | 000,002,584 | ---- | M] () -- \Windows\SoftwareDistribution\Download\15d05090e6f876555f2419af621dda9f\msil_system.runtime.serialization.resources_b77a5c561934e089_6.0.6002.18005_fr-fr_e83f95c921648070.manifest
[2009/04/28 12:32:16 | 000,002,584 | ---- | M] () -- \Windows\SoftwareDistribution\Download\15d05090e6f876555f2419af621dda9f\msil_system.runtime.serialization.resources_b77a5c561934e089_6.0.6002.18005_he-il_434921295d1f4772.manifest
[2009/04/11 10:02:50 | 000,002,584 | ---- | M] () -- \Windows\SoftwareDistribution\Download\15d05090e6f876555f2419af621dda9f\msil_system.runtime.serialization.resources_b77a5c561934e089_6.0.6002.18005_hu-hu_42f7d4975d59db34.manifest
[2009/04/12 08:26:32 | 000,002,584 | ---- | M] () -- \Windows\SoftwareDistribution\Download\15d05090e6f876555f2419af621dda9f\msil_system.runtime.serialization.resources_b77a5c561934e089_6.0.6002.18005_it-it_706c7b137b428362.manifest
[2009/04/10 22:49:38 | 000,002,584 | ---- | M] () -- \Windows\SoftwareDistribution\Download\15d05090e6f876555f2419af621dda9f\msil_system.runtime.serialization.resources_b77a5c561934e089_6.0.6002.18005_ja-jp_9def8c1f99230f9f.manifest
[2009/04/11 10:01:10 | 000,002,584 | ---- | M] () -- \Windows\SoftwareDistribution\Download\15d05090e6f876555f2419af621dda9f\msil_system.runtime.serialization.resources_b77a5c561934e089_6.0.6002.18005_ko-kr_cb52c72db71687b9.manifest
[2009/04/11 09:47:44 | 000,002,584 | ---- | M] () -- \Windows\SoftwareDistribution\Download\15d05090e6f876555f2419af621dda9f\msil_system.runtime.serialization.resources_b77a5c561934e089_6.0.6002.18005_nb-no_53a6b7be10d982dd.manifest
[2009/04/28 12:35:26 | 000,002,584 | ---- | M] () -- \Windows\SoftwareDistribution\Download\15d05090e6f876555f2419af621dda9f\msil_system.runtime.serialization.resources_b77a5c561934e089_6.0.6002.18005_nl-nl_53d12a6610b82c70.manifest
[2009/04/11 10:03:24 | 000,002,584 | ---- | M] () -- \Windows\SoftwareDistribution\Download\15d05090e6f876555f2419af621dda9f\msil_system.runtime.serialization.resources_b77a5c561934e089_6.0.6002.18005_pl-pl_aea6d81a4c97e75c.manifest
[2009/04/11 09:51:58 | 000,002,593 | ---- | M] () -- \Windows\SoftwareDistribution\Download\15d05090e6f876555f2419af621dda9f\msil_system.runtime.serialization.resources_b77a5c561934e089_6.0.6002.18005_pt-br_ae6de04e4cc18198.manifest
[2009/04/11 10:01:40 | 000,002,590 | ---- | M] () -- \Windows\SoftwareDistribution\Download\15d05090e6f876555f2419af621dda9f\msil_system.runtime.serialization.resources_b77a5c561934e089_6.0.6002.18005_pt-pt_ae585b0a4cd1919c.manifest
[2009/04/11 09:51:54 | 000,002,584 | ---- | M] () -- \Windows\SoftwareDistribution\Download\15d05090e6f876555f2419af621dda9f\msil_system.runtime.serialization.resources_b77a5c561934e089_6.0.6002.18005_ru-ru_0924391c88b881d0.manifest
[2009/04/11 10:02:52 | 000,002,584 | ---- | M] () -- \Windows\SoftwareDistribution\Download\15d05090e6f876555f2419af621dda9f\msil_system.runtime.serialization.resources_b77a5c561934e089_6.0.6002.18005_sv-se_373d0f00a625b98d.manifest
[2009/04/11 10:04:52 | 000,002,584 | ---- | M] () -- \Windows\SoftwareDistribution\Download\15d05090e6f876555f2419af621dda9f\msil_system.runtime.serialization.resources_b77a5c561934e089_6.0.6002.18005_tr-tr_641755b6c4829ce4.manifest
[2009/04/12 08:30:04 | 000,002,596 | ---- | M] () -- \Windows\SoftwareDistribution\Download\15d05090e6f876555f2419af621dda9f\msil_system.runtime.serialization.resources_b77a5c561934e089_6.0.6002.18005_zh-cn_74b96ff5780aa1fd.manifest
[2009/04/11 10:06:36 | 000,002,596 | ---- | M] () -- \Windows\SoftwareDistribution\Download\15d05090e6f876555f2419af621dda9f\msil_system.runtime.serialization.resources_b77a5c561934e089_6.0.6002.18005_zh-tw_745840ef78536d0d.manifest
[2008/01/19 08:36:21 | 000,015,360 | ---- | M] () -- \Windows\System32\serialui.dll
[1 \Windows\System32\*.tmp files -> \Windows\System32\*.tmp -> ]
[2008/01/19 06:49:35 | 000,083,456 | ---- | M] () -- \Windows\System32\drivers\serial.sys
[2007/01/16 05:53:37 | 000,004,096 | ---- | M] () -- \Windows\System32\drivers\en-US\grserial.sys.mui
[2007/01/16 05:51:53 | 000,010,752 | ---- | M] () -- \Windows\System32\drivers\en-US\serial.sys.mui
[2008/01/19 06:49:35 | 000,083,456 | ---- | M] () -- \Windows\System32\DriverStore\FileRepository\hiddigi.inf_33048ac2\serial.sys
[2006/11/02 09:51:30 | 000,083,456 | ---- | M] () -- \Windows\System32\DriverStore\FileRepository\hiddigi.inf_9d4661e2\serial.sys
[2006/11/02 08:41:49 | 001,010,560 | ---- | M] () -- \Windows\System32\DriverStore\FileRepository\mdmmotsm.inf_91bbdacd\smserial.sys
[2008/01/19 06:49:35 | 000,083,456 | ---- | M] () -- \Windows\System32\DriverStore\FileRepository\msports.inf_44880ea7\serial.sys
[2006/11/02 09:51:30 | 000,083,456 | ---- | M] () -- \Windows\System32\DriverStore\FileRepository\msports.inf_ac874de4\serial.sys
[2006/11/02 09:51:28 | 000,031,232 | ---- | M] () -- \Windows\System32\DriverStore\FileRepository\smartcrd.inf_a24cc104\grserial.sys
[2008/01/19 06:49:33 | 000,031,232 | ---- | M] () -- \Windows\System32\DriverStore\FileRepository\smartcrd.inf_bec36faa\grserial.sys
[2007/01/16 05:51:41 | 000,005,632 | ---- | M] () -- \Windows\System32\sk-SK\serialui.dll.mui
[2009/12/21 14:42:24 | 000,003,462 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..gertransport-serial_31bf3856ad364e35_6.0.6002.18005_none_13a1062aa9ccba61.manifest
[2009/12/21 14:42:24 | 000,017,384 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..gertransport-serial_31bf3856ad364e35_6.0.6002.18005_none_13a1062aa9ccba61_kdcom.dll_db5e7744
[2007/01/16 05:56:06 | 000,005,632 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-u..em-config.resources_31bf3856ad364e35_6.0.6000.16386_sk-sk_77c6875313d8fdd7_serialui.dll.mui_7d29d2a3
[2009/12/21 14:43:42 | 000,015,360 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-unimodem-config_31bf3856ad364e35_6.0.6002.18005_none_f6ed1a9a1bcc8805_serialui.dll_bea29328
[2006/11/02 13:31:33 | 000,003,028 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.ref_b77a5c561934e089_6.0.6000.16386_none_d24e4473b7df83f3.manifest
[2008/01/19 00:05:26 | 000,003,028 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.ref_b77a5c561934e089_6.0.6001.18000_none_d222c62fb8372cbf.manifest
[2009/04/10 23:16:00 | 000,003,028 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.ref_b77a5c561934e089_6.0.6002.18005_none_d1fe4b6bb888c0d3.manifest
[2010/04/12 19:29:50 | 000,003,028 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.ref_b77a5c561934e089_6.0.6002.18239_none_d200f0e1b88673fe.manifest
[2012/10/08 17:24:13 | 000,003,028 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.ref_b77a5c561934e089_6.0.6002.18707_none_d1fe1cdfb888f64c.manifest
[2010/04/12 20:40:05 | 000,003,028 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.ref_b77a5c561934e089_6.0.6002.22380_none_bb39189bd2286c0e.manifest
[2012/10/08 16:03:48 | 000,003,028 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.ref_b77a5c561934e089_6.0.6002.22945_none_bb34a4b3d22c88bd.manifest
[2006/11/02 13:38:17 | 000,000,633 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_6.0.6000.16386_en-us_bb16054302d6ef1f.manifest
[2010/04/12 18:44:55 | 000,000,633 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_6.0.6002.18239_en-us_bac8b1b1037ddf2a.manifest
[2012/10/08 17:20:22 | 000,000,633 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_6.0.6002.18707_en-us_bac5ddaf03806178.manifest
[2010/04/12 19:41:31 | 000,000,633 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_6.0.6002.22380_en-us_a400d96b1d1fd73a.manifest
[2012/10/08 16:00:20 | 000,000,633 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_6.0.6002.22945_en-us_a3fc65831d23f3e9.manifest
[2006/11/02 13:31:33 | 000,003,227 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization_b77a5c561934e089_6.0.6000.16386_none_02917a0ddf868526.manifest
[2008/01/19 00:04:20 | 000,003,227 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization_b77a5c561934e089_6.0.6001.18000_none_0265fbc9dfde2df2.manifest
[2009/04/10 23:15:32 | 000,003,227 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization_b77a5c561934e089_6.0.6002.18005_none_02418105e02fc206.manifest
[2010/04/12 19:29:29 | 000,003,227 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization_b77a5c561934e089_6.0.6002.18239_none_0244267be02d7531.manifest
[2012/10/08 17:23:59 | 000,003,227 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization_b77a5c561934e089_6.0.6002.18707_none_02415279e02ff77f.manifest
[2010/04/12 20:39:45 | 000,003,227 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization_b77a5c561934e089_6.0.6002.22380_none_eb7c4e35f9cf6d41.manifest
[2012/10/08 16:03:34 | 000,003,227 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization_b77a5c561934e089_6.0.6002.22945_none_eb77da4df9d389f0.manifest
[2006/11/02 11:18:20 | 000,003,462 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..gertransport-serial_31bf3856ad364e35_6.0.6000.16386_none_0f7ecb22afbfde41.manifest
[2008/01/19 00:01:04 | 000,003,462 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..gertransport-serial_31bf3856ad364e35_6.0.6001.18000_none_11b58d1eacaaef15.manifest
[2009/04/10 23:13:32 | 000,003,462 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..gertransport-serial_31bf3856ad364e35_6.0.6002.18005_none_13a1062aa9ccba61.manifest
[2006/11/02 11:02:09 | 000,001,406 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft.windows.h..tserial-driverclass_31bf3856ad364e35_6.0.6000.16386_none_2a8610ec098ae6c4.manifest
[2006/11/02 13:31:32 | 000,003,062 | ---- | M] () -- \Windows\winsxs\Manifests\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.0.6000.16386_none_076c25db205d1f68.manifest
[2008/01/19 00:13:44 | 000,003,062 | ---- | M] () -- \Windows\winsxs\Manifests\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.0.6001.18000_none_0740a79720b4c834.manifest
[2009/04/10 23:18:56 | 000,003,062 | ---- | M] () -- \Windows\winsxs\Manifests\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.0.6002.18005_none_071c2cd321065c48.manifest
[2010/04/12 19:32:33 | 000,003,062 | ---- | M] () -- \Windows\winsxs\Manifests\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.0.6002.18239_none_071ed24921040f73.manifest
[2012/10/08 17:26:11 | 000,003,062 | ---- | M] () -- \Windows\winsxs\Manifests\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.0.6002.18707_none_071bfe47210691c1.manifest
[2010/04/12 20:42:39 | 000,003,062 | ---- | M] () -- \Windows\winsxs\Manifests\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.0.6002.22380_none_f056fa033aa60783.manifest
[2012/10/08 16:05:32 | 000,003,062 | ---- | M] () -- \Windows\winsxs\Manifests\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.0.6002.22945_none_f052861b3aaa2432.manifest
[2006/10/20 02:14:53 | 000,131,072 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.seri..ion.formatters.soap_b03f5f7f11d50a3a_6.0.6000.16386_none_483e6ea12378b3a8\System.Runtime.Serialization.Formatters.Soap.dll
[2008/01/05 12:26:58 | 000,131,072 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.seri..ion.formatters.soap_b03f5f7f11d50a3a_6.0.6001.18000_none_4812f05d23d05c74\System.Runtime.Serialization.Formatters.Soap.dll
[2009/03/30 05:42:19 | 000,131,072 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.seri..ion.formatters.soap_b03f5f7f11d50a3a_6.0.6002.18005_none_47ee75992421f088\System.Runtime.Serialization.Formatters.Soap.dll
[2006/11/02 13:33:44 | 000,888,832 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.ref_b77a5c561934e089_6.0.6000.16386_none_d24e4473b7df83f3\System.Runtime.Serialization.dll
[2008/01/05 12:21:39 | 000,929,792 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.ref_b77a5c561934e089_6.0.6001.18000_none_d222c62fb8372cbf\System.Runtime.Serialization.dll
[2009/02/18 19:38:43 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.ref_b77a5c561934e089_6.0.6002.18005_none_d1fe4b6bb888c0d3\System.Runtime.Serialization.dll
[2010/04/12 13:21:15 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.ref_b77a5c561934e089_6.0.6002.18239_none_d200f0e1b88673fe\System.Runtime.Serialization.dll
[2012/10/08 12:01:09 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.ref_b77a5c561934e089_6.0.6002.18707_none_d1fe1cdfb888f64c\System.Runtime.Serialization.dll
[2010/04/12 13:22:49 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.ref_b77a5c561934e089_6.0.6002.22380_none_bb39189bd2286c0e\System.Runtime.Serialization.dll
[2012/10/08 11:59:43 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.ref_b77a5c561934e089_6.0.6002.22945_none_bb34a4b3d22c88bd\System.Runtime.Serialization.dll
[2006/11/02 13:33:44 | 000,888,832 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization_b77a5c561934e089_6.0.6000.16386_none_02917a0ddf868526\System.Runtime.Serialization.dll
[2008/01/05 12:21:38 | 000,929,792 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization_b77a5c561934e089_6.0.6001.18000_none_0265fbc9dfde2df2\System.Runtime.Serialization.dll
[2009/02/18 19:38:39 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization_b77a5c561934e089_6.0.6002.18005_none_02418105e02fc206\System.Runtime.Serialization.dll
[2010/04/12 13:21:01 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization_b77a5c561934e089_6.0.6002.18239_none_0244267be02d7531\System.Runtime.Serialization.dll
[2012/10/08 12:01:03 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization_b77a5c561934e089_6.0.6002.18707_none_02415279e02ff77f\System.Runtime.Serialization.dll
[2010/04/12 13:22:23 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization_b77a5c561934e089_6.0.6002.22380_none_eb7c4e35f9cf6d41\System.Runtime.Serialization.dll
[2012/10/08 11:59:29 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization_b77a5c561934e089_6.0.6002.22945_none_eb77da4df9d389f0\System.Runtime.Serialization.dll
[2007/01/16 05:53:37 | 000,010,752 | ---- | M] () -- \Windows\winsxs\x86_hiddigi.inf.resources_31bf3856ad364e35_6.0.6000.16386_en-us_34b5f355d987afa1\serial.sys.mui
[2008/01/19 06:49:35 | 000,083,456 | ---- | M] () -- \Windows\winsxs\x86_hiddigi.inf_31bf3856ad364e35_6.0.6001.18000_none_955c449145dbf667\serial.sys
[2007/01/16 05:51:41 | 000,005,632 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-u..em-config.resources_31bf3856ad364e35_6.0.6000.16386_sk-sk_77c6875313d8fdd7\serialui.dll.mui
[2006/11/02 10:46:12 | 000,015,360 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-unimodem-config_31bf3856ad364e35_6.0.6000.16386_none_f2cadf9221bfabe5\serialui.dll
[2008/01/19 08:36:21 | 000,015,360 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-unimodem-config_31bf3856ad364e35_6.0.6001.18000_none_f501a18e1eaabcb9\serialui.dll
[2008/01/19 08:36:21 | 000,015,360 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-unimodem-config_31bf3856ad364e35_6.0.6002.18005_none_f6ed1a9a1bcc8805\serialui.dll
[2007/01/16 05:51:53 | 000,010,752 | ---- | M] () -- \Windows\winsxs\x86_msports.inf.resources_31bf3856ad364e35_6.0.6000.16386_en-us_05d5abe6364bafaf\serial.sys.mui
[2008/01/19 06:49:35 | 000,083,456 | ---- | M] () -- \Windows\winsxs\x86_msports.inf_31bf3856ad364e35_6.0.6001.18000_none_f897b0b1b85e4433\serial.sys
[2007/01/16 05:53:37 | 000,004,096 | ---- | M] () -- \Windows\winsxs\x86_smartcrd.inf.resources_31bf3856ad364e35_6.0.6000.16386_en-us_f75d56acd8933ebf\grserial.sys.mui
[2008/01/19 06:49:33 | 000,031,232 | ---- | M] () -- \Windows\winsxs\x86_smartcrd.inf_31bf3856ad364e35_6.0.6001.18000_none_72a9e15f343dcd03\grserial.sys
[2006/11/02 13:33:43 | 000,888,832 | ---- | M] () -- \Windows\winsxs\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.0.6000.16386_none_076c25db205d1f68\System.Runtime.Serialization.dll
[2008/01/05 12:21:38 | 000,929,792 | ---- | M] () -- \Windows\winsxs\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.0.6001.18000_none_0740a79720b4c834\System.Runtime.Serialization.dll
[2009/02/18 19:38:39 | 000,970,752 | ---- | M] () -- \Windows\winsxs\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.0.6002.18005_none_071c2cd321065c48\System.Runtime.Serialization.dll
[2010/04/12 13:21:01 | 000,970,752 | ---- | M] () -- \Windows\winsxs\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.0.6002.18239_none_071ed24921040f73\System.Runtime.Serialization.dll
[2012/10/08 12:01:03 | 000,970,752 | ---- | M] () -- \Windows\winsxs\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.0.6002.18707_none_071bfe47210691c1\System.Runtime.Serialization.dll
[2010/04/12 13:22:23 | 000,970,752 | ---- | M] () -- \Windows\winsxs\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.0.6002.22380_none_f056fa033aa60783\System.Runtime.Serialization.dll
[2012/10/08 11:59:29 | 000,970,752 | ---- | M] () -- \Windows\winsxs\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.0.6002.22945_none_f052861b3aaa2432\System.Runtime.Serialization.dll
< *w7lxe* /s >
========== Alternate Data Streams ==========
@Alternate Data Stream - 97 bytes -> C:\ProgramData\TEMP:A6881EE7
@Alternate Data Stream - 95 bytes -> C:\ProgramData\TEMP:75E82066
@Alternate Data Stream - 171 bytes -> C:\ProgramData\TEMP:B3D74A13
@Alternate Data Stream - 145 bytes -> C:\ProgramData\TEMP:DFC5A2B2
@Alternate Data Stream - 140 bytes -> C:\ProgramData\TEMP:9256664B
@Alternate Data Stream - 132 bytes -> C:\ProgramData\TEMP:32A82570
@Alternate Data Stream - 131 bytes -> C:\ProgramData\TEMP:9494338C
@Alternate Data Stream - 126 bytes -> C:\ProgramData\TEMP:5FA4CB99
@Alternate Data Stream - 125 bytes -> C:\ProgramData\TEMP:237E4B91
@Alternate Data Stream - 124 bytes -> C:\ProgramData\TEMP:B1FBA7E1
@Alternate Data Stream - 124 bytes -> C:\ProgramData\TEMP:0B4227B4
@Alternate Data Stream - 123 bytes -> C:\ProgramData\TEMP:0DFE2AE1
@Alternate Data Stream - 119 bytes -> C:\ProgramData\TEMP:90876BA3
@Alternate Data Stream - 117 bytes -> C:\ProgramData\TEMP:A6346EE9
@Alternate Data Stream - 117 bytes -> C:\ProgramData\TEMP:0E22C5DB
@Alternate Data Stream - 117 bytes -> C:\ProgramData\TEMP:05BF1B63
@Alternate Data Stream - 114 bytes -> C:\ProgramData\TEMP:F6C0CA66
@Alternate Data Stream - 113 bytes -> C:\ProgramData\TEMP:7B2BB690
@Alternate Data Stream - 112 bytes -> C:\ProgramData\TEMP:0860D6D6
@Alternate Data Stream - 110 bytes -> C:\ProgramData\TEMP:52DBE86F
@Alternate Data Stream - 109 bytes -> C:\ProgramData\TEMP:DF0BC727
@Alternate Data Stream - 109 bytes -> C:\ProgramData\TEMP:D92485C9
@Alternate Data Stream - 103 bytes -> C:\ProgramData\TEMP:02B823FE
@Alternate Data Stream - 102 bytes -> C:\ProgramData\TEMP:09CD1DC6
@Alternate Data Stream - 101 bytes -> C:\ProgramData\TEMP:4A0829E0
< End of report >
Re: preventivka
Slusna sbirka smeti
Jen se zeptam, jak je to s legalitou systemu, Ultimate neni zrovna bezna domaci verze 
Udelejte !!!kompletni!!! kontrolu s MBAM http://forum.viry.cz/viewtopic.php?f=29&t=115222 a dejte sem vysledky. Predem nic nemazte, miva obcas falesne detekce
Jen se zeptam, jak je to s legalitou systemu, Ultimate neni zrovna bezna domaci verze Udelejte !!!kompletni!!! kontrolu s MBAM http://forum.viry.cz/viewtopic.php?f=29&t=115222 a dejte sem vysledky. Predem nic nemazte, miva obcas falesne detekcePokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Re: preventivka
Malwarebytes Anti-Malware (Zkušební verze Malwarebytes Anti-Malware.) 1.75.0.1300
www.malwarebytes.org
Verze: v2013.12.08.02
Windows Vista Service Pack 2 x86 NTFS
Internet Explorer 9.0.8112.16421
domishek :: DODA-PC [administrátor]
Ochrana: Povolena
8. 12. 2013 19:31:17
MBAM-log-2013-12-08 (22-01-02).txt
Typ: Kompletní kontrola (C:\|)
Nastavení kontroly povoleno: Paměť | Po spuštění | Registr | Systémové soubory | Heuristická analýza Extra | Heuristická analýza Shuriken | PUP | PUM
Nastavení kontroly zakázáno: P2P
Kontrolované objekty: 679541
Uplynulý čas: 2 hodin, 15 minut, 22 sekund
Nalezené procesy v paměti: 1
C:\Users\juhu\AppData\Local\FilesFrog Update Checker\update_checker.exe (PUP.Optional.FilesFrog.A) -> 2204 -> Nebyla provedena žádná instrukce.
Nalezené moduly v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené klíče v registru: 22
HKCR\CLSID\{25B8D58C-B0CB-46b0-BA64-05B3804E4E86} (Adware.DoubleD) -> Nebyla provedena žádná instrukce.
HKCR\ExplorerBar.FunExplorer.1 (Adware.DoubleD) -> Nebyla provedena žádná instrukce.
HKCR\ExplorerBar.FunExplorer (Adware.DoubleD) -> Nebyla provedena žádná instrukce.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{25B8D58C-B0CB-46B0-BA64-05B3804E4E86} (Adware.DoubleD) -> Nebyla provedena žádná instrukce.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{25B8D58C-B0CB-46B0-BA64-05B3804E4E86} (Adware.DoubleD) -> Nebyla provedena žádná instrukce.
HKCR\CLSID\{35B8D58C-B0CB-46b0-BA64-05B3804E4E86} (Adware.DoubleD) -> Nebyla provedena žádná instrukce.
HKCR\TypeLib\{C28A0312-C403-417B-A425-A915BC0519CD} (Adware.DoubleD) -> Nebyla provedena žádná instrukce.
HKCR\Interface\{877F3EAB-4462-44DF-8475-6064EAFD7FBF} (Adware.DoubleD) -> Nebyla provedena žádná instrukce.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{35B8D58C-B0CB-46B0-BA64-05B3804E4E86} (Adware.DoubleD) -> Nebyla provedena žádná instrukce.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{35B8D58C-B0CB-46B0-BA64-05B3804E4E86} (Adware.DoubleD) -> Nebyla provedena žádná instrukce.
HKCR\CLSID\{539F76FD-084E-4858-86D5-62F02F54AE86} (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
HKCR\TypeLib\{F13D3582-1359-4F8F-9A48-EF3AE9F5701C} (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
HKCR\Interface\{06E50566-0AB7-431C-841D-62794727DAF9} (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
HKCR\CLSID\{60EACC1A-33FA-443D-9846-17B28E2C9BDB} (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
HKCR\CLSID\{AA74D58F-ACD0-450D-A85E-6C04B171C044} (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
HKCR\CLSID\{AAA38851-3CFF-475F-B5E0-720D3645E4A5} (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
HKLM\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{1D4DB7D2-6EC9-47A3-BD87-1E41684E07BB} (PUP.Optional.FunWebProducts.A) -> Nebyla provedena žádná instrukce.
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{56256A51-B582-467e-B8D4-7786EDA79AE0} (Trojan.Vundo) -> Nebyla provedena žádná instrukce.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\FilesFrog Update Checker (PUP.Optional.Somoto.A) -> Nebyla provedena žádná instrukce.
HKCU\SOFTWARE\INSTALLCORE (PUP.Optional.InstallCore.A) -> Nebyla provedena žádná instrukce.
HKLM\SOFTWARE\FunWebProducts\Installer (PUP.Optional.FunWebProducts.A) -> Nebyla provedena žádná instrukce.
HKLM\SOFTWARE\MINIBAR (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
Nalezené hodnoty v registru: 2
HKCU\Software\InstallCore|tb (PUP.Optional.InstallCore.A) -> Data: 0F -> Nebyla provedena žádná instrukce.
HKLM\SOFTWARE\Minibar|NoDns (PUP.Optional.MiniBar.A) -> Data: true -> Nebyla provedena žádná instrukce.
Nalezené datové položky v registru: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené složky: 32
C:\Users\juhu\AppData\Roaming\Babylon (PUP.Optional.Babylon.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\chrome (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\chrome\icons (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\chrome\includes (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\chrome\kango (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\chrome\kango-ui (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\chrome\minibar (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\firefox (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\firefox\chrome (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\firefox\chrome\content (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\firefox\chrome\content\icons (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\firefox\chrome\content\kango (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\firefox\chrome\content\kango-ui (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\firefox\chrome\content\kango-ui\theme (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\firefox\chrome\content\kango-ui\theme\bubble (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\firefox\chrome\content\minibar (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\firefox\plugins (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\Minibar (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\Minibar\icons (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\Minibar\kango (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\Minibar\kango-ui (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\Minibar\kango-ui\theme (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\Minibar\kango-ui\theme\bubble (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\Minibar\minibar (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\DoubleD (Adware.DoubleD) -> Nebyla provedena žádná instrukce.
C:\Program Files\DoubleD\GamingHarbor Toolbar (Adware.DoubleD) -> Nebyla provedena žádná instrukce.
C:\Program Files\DoubleD\GamingHarbor Toolbar\4.2.0.21210 (Adware.DoubleD) -> Nebyla provedena žádná instrukce.
C:\Program Files\INTERNET SAVING OPTIMIZER (Adware.DoubleD) -> Nebyla provedena žádná instrukce.
C:\Program Files\INTERNET SAVING OPTIMIZER\3.6.3.4500 (Adware.DoubleD) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\FilesFrog Update Checker (PUP.Optional.FilesFrog.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FilesFrog Update Checker (PUP.Optional.FilesFrog.A) -> Nebyla provedena žádná instrukce.
Nalezené soubory: 183
C:\Users\juhu\AppData\Local\FilesFrog Update Checker\update_checker.exe (PUP.Optional.FilesFrog.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\INTERNET SAVING OPTIMIZER\3.6.3.4500\NPIEADDON.DLL (Adware.DoubleD) -> Nebyla provedena žádná instrukce.
C:\Program Files\Minibar\Minibar.dll (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\$Recycle.Bin\S-1-5-21-1055357281-2900607726-3267283594-1005\$RGKI5GN\DESKTOP.EXE (Joke.Stressreducer) -> Nebyla provedena žádná instrukce.
C:\$Recycle.Bin\S-1-5-21-1055357281-2900607726-3267283594-1007\$R24H1QL.exe (PUP.Optional.Somoto) -> Nebyla provedena žádná instrukce.
C:\$Recycle.Bin\S-1-5-21-1055357281-2900607726-3267283594-1007\$RUC2OZV.exe (PUP.Optional.Softonic) -> Nebyla provedena žádná instrukce.
C:\Users\Dominishka\Desktop\Jen tak\YoutubeDownloaderSetup.exe (PUP.Dealio.TB) -> Nebyla provedena žádná instrukce.
C:\Users\domishek\AppData\Local\Google\Chrome\User Data\Default\File System\002\t\00\00000000 (PUP.Optional.InstalleRex) -> Nebyla provedena žádná instrukce.
C:\Users\domishek\Desktop\The Sims 2 Seasons\keygen.exe (RiskWare.Tool.CK) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\AppsHat Mobile Apps\Uninstall.exe (PUP.Optional.Somoto.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\FilesFrog Update Checker\uninstall.exe (PUP.Optional.Somoto.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\0CBO2JDR\FLVPlayerUpdate_downloader_by_FLVPlayerUpdate[1].exe (PUP.Optional.Somoto) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\7XIZDE6X\minibar-core[1].exe (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Temp\FLVPlayerUpdate_downloader_by_FLVPlayerUpdate.exe (PUP.Optional.Somoto) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Temp\Offercast2802_MTV_.exe (PUP.Optional.Spigot.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Temp\UpdateCheckerSetup.exe (PUP.Optional.Somoto.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Temp\LemurLeap_sm.exe (PUP.Optional.LemurLeap.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Temp\appshat-distribution.exe (PUP.Optional.Somoto.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Temp\BabylonTB.exe (PUP.Optional.Babylon.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Temp\B104F835-BAB0-7891-B11C-AB291C4E059A\Latest\BabMaint.exe (PUP.Optional.Babylon.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Temp\B104F835-BAB0-7891-B11C-AB291C4E059A\Latest\BExternal.dll (PUP.Optional.Babylon.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Temp\B104F835-BAB0-7891-B11C-AB291C4E059A\Latest\Setup.exe (PUP.Optional.Babylon.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Temp\BF7C1AD6-BAB0-7891-BEFA-FCD255F540C8\Latest\BabMaint.exe (PUP.Optional.Babylon.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Temp\BF7C1AD6-BAB0-7891-BEFA-FCD255F540C8\Latest\BExternal.dll (PUP.Optional.Babylon.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Temp\BF7C1AD6-BAB0-7891-BEFA-FCD255F540C8\Latest\Setup.exe (PUP.Optional.Babylon.A) -> Nebyla provedena žádná instrukce.
C:\Users\Terka\AppData\Local\Temp\He167GM0kM.log (Trojan.Small.Gen) -> Nebyla provedena žádná instrukce.
C:\Users\Terka\Desktop\Různé\PROGRAM\DESKTOP.EXE (Joke.Stressreducer) -> Nebyla provedena žádná instrukce.
C:\Users\Terka\Downloads\Need.for.Speed.Hot.Pursuit-RELOADED\Crack\NFSHP_Activator.exe (RiskWare.Tool.CK) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Roaming\Babylon\log_file.txt (PUP.Optional.Babylon.A) -> Nebyla provedena žádná instrukce.
C:\Windows\inf\ntvdm.inf (Malware.Trace) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\minibar.crx (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\chrome.json (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\chrome.pem (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\chrome_installer.js (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\common.js (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\firefox_installer.js (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\ie_installer.js (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\minibar.xpi (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\SettingsHelper.exe (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\Uninstall.exe (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\chrome\background.html (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\chrome\cached_http_request.js (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\chrome\extension_info.json (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\chrome\initial_config.json (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\chrome\main.js (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\chrome\manifest.json (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\chrome\MinibarPlugin.dll (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\chrome\popup.html (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\chrome\popup.js (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\chrome\tab.html (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\chrome\tab.js (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\chrome\icons\icon128.png (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\chrome\icons\icon19.png (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\chrome\icons\icon32.png (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\chrome\icons\icon48.png (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\chrome\includes\content.js (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\chrome\includes\content_kango.js (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\chrome\includes\content_menu.js (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\chrome\includes\content_messaging.js (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\chrome\includes\content_pageutils.js (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\chrome\includes\content_popup.js (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\chrome\includes\content_toolbar.js (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\chrome\includes\content_toolbar_customfixes.js (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\chrome\includes\content_userscript.js (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\chrome\kango\browser.js (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\chrome\kango\console.js (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\chrome\kango\event_listener.js (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\chrome\kango\initialize.js (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\chrome\kango\io.js (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\chrome\kango\jsonstorage.js (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\chrome\kango\kango.js (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\chrome\kango\lang.js (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\chrome\kango\messaging.js (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\chrome\kango\userscript_engine.js (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\chrome\kango\xhr.js (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\chrome\kango-ui\button.js (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\chrome\kango-ui\toolbar.js (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\chrome\kango-ui\ui.js (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\chrome\minibar\actions.js (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\chrome\minibar\cachedxhr.js (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\chrome\minibar\config.js (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\chrome\minibar\macros.js (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\chrome\minibar\minibar.js (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\firefox\chrome.manifest (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\firefox\install.rdf (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\firefox\chrome\content\content.xul (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\firefox\chrome\content\extension_info.json (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\firefox\chrome\content\main.js (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\firefox\chrome\content\icons\icon128.png (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\firefox\chrome\content\icons\icon19.png (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\firefox\chrome\content\icons\icon32.png (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\firefox\chrome\content\icons\icon48.png (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\firefox\chrome\content\kango\browser.js (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\firefox\chrome\content\kango\console.js (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\firefox\chrome\content\kango\event_listener.js (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\firefox\chrome\content\kango\initialize.js (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\firefox\chrome\content\kango\io.js (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\firefox\chrome\content\kango\jsonstorage.js (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\firefox\chrome\content\kango\kango.js (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\firefox\chrome\content\kango\lang.js (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\firefox\chrome\content\kango\messaging.js (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\firefox\chrome\content\kango\storage.js (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\firefox\chrome\content\kango\uninstall_observer.js (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\firefox\chrome\content\kango\userscript_engine.js (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\firefox\chrome\content\kango\xhr.js (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\firefox\chrome\content\kango-ui\button.js (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\firefox\chrome\content\kango-ui\popup.js (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\firefox\chrome\content\kango-ui\popup_window.js (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\firefox\chrome\content\kango-ui\popup_window.xul (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\firefox\chrome\content\kango-ui\toolbar.js (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\firefox\chrome\content\kango-ui\toolbar_stub.html (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\firefox\chrome\content\kango-ui\ui.js (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\firefox\chrome\content\kango-ui\theme\bubble\bottom-left.png (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\firefox\chrome\content\kango-ui\theme\bubble\bottom-middle.png (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\firefox\chrome\content\kango-ui\theme\bubble\bottom-right.png (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\firefox\chrome\content\kango-ui\theme\bubble\middle-left.png (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\firefox\chrome\content\kango-ui\theme\bubble\middle-right.png (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\firefox\chrome\content\kango-ui\theme\bubble\style.css (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\firefox\chrome\content\kango-ui\theme\bubble\tail-bottom.png (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\firefox\chrome\content\kango-ui\theme\bubble\tail-left.png (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\firefox\chrome\content\kango-ui\theme\bubble\tail-right.png (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\firefox\chrome\content\kango-ui\theme\bubble\tail-top.png (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\firefox\chrome\content\kango-ui\theme\bubble\top-left.png (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\firefox\chrome\content\kango-ui\theme\bubble\top-middle.png (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\firefox\chrome\content\kango-ui\theme\bubble\top-right.png (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\firefox\chrome\content\minibar\actions.js (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\firefox\chrome\content\minibar\cachedxhr.js (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\firefox\chrome\content\minibar\config.js (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\firefox\chrome\content\minibar\homepage_helper.js (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\firefox\chrome\content\minibar\macros.js (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\firefox\chrome\content\minibar\minibar.js (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\firefox\chrome\content\minibar\search_helper.js (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\firefox\chrome\content\minibar\search_hook.js (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\firefox\chrome\content\minibar\tabpage_helper.js (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\firefox\plugins\npMinibarPlugin.dll (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\Minibar\initial_config.json (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\Minibar\config.xml (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\Minibar\extension_info.json (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\Minibar\main.js (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\Minibar\icons\icon128.png (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\Minibar\icons\icon16.ico (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\Minibar\icons\icon19.ico (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\Minibar\icons\icon19.png (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\Minibar\icons\icon32.png (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\Minibar\icons\icon48.png (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\Minibar\kango\browser.js (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\Minibar\kango\console.js (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\Minibar\kango\event_listener.js (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\Minibar\kango\initialize.js (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\Minibar\kango\io.js (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\Minibar\kango\json.js (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\Minibar\kango\jsonstorage.js (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\Minibar\kango\kango.js (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\Minibar\kango\lang.js (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\Minibar\kango\md5.js (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\Minibar\kango\messaging.js (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\Minibar\kango\storage.js (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\Minibar\kango\userscript_engine.js (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\Minibar\kango\utils.js (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\Minibar\kango\xhr.js (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\Minibar\kango-ui\commandbar_button.js (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\Minibar\kango-ui\toolbar.js (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\Minibar\kango-ui\toolbar_stub.html (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\Minibar\kango-ui\ui.js (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\Minibar\kango-ui\theme\bubble\bottom-left.png (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\Minibar\kango-ui\theme\bubble\bottom-middle.png (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\Minibar\kango-ui\theme\bubble\bottom-right.png (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\Minibar\kango-ui\theme\bubble\middle-left.png (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\Minibar\kango-ui\theme\bubble\middle-right.png (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\Minibar\kango-ui\theme\bubble\tail-bottom.png (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\Minibar\kango-ui\theme\bubble\tail-left.png (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\Minibar\kango-ui\theme\bubble\tail-right.png (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\Minibar\kango-ui\theme\bubble\tail-top.png (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\Minibar\kango-ui\theme\bubble\top-left.png (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\Minibar\kango-ui\theme\bubble\top-middle.png (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\Minibar\kango-ui\theme\bubble\top-right.png (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\Minibar\minibar\actions.js (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\Minibar\minibar\cachedxhr.js (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\Minibar\minibar\config.js (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\Minibar\minibar\macros.js (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\Minibar\minibar\minibar.js (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FilesFrog Update Checker\Check for Updates.lnk (PUP.Optional.FilesFrog.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FilesFrog Update Checker\Uninstall.lnk (PUP.Optional.FilesFrog.A) -> Nebyla provedena žádná instrukce.
(konec)
www.malwarebytes.org
Verze: v2013.12.08.02
Windows Vista Service Pack 2 x86 NTFS
Internet Explorer 9.0.8112.16421
domishek :: DODA-PC [administrátor]
Ochrana: Povolena
8. 12. 2013 19:31:17
MBAM-log-2013-12-08 (22-01-02).txt
Typ: Kompletní kontrola (C:\|)
Nastavení kontroly povoleno: Paměť | Po spuštění | Registr | Systémové soubory | Heuristická analýza Extra | Heuristická analýza Shuriken | PUP | PUM
Nastavení kontroly zakázáno: P2P
Kontrolované objekty: 679541
Uplynulý čas: 2 hodin, 15 minut, 22 sekund
Nalezené procesy v paměti: 1
C:\Users\juhu\AppData\Local\FilesFrog Update Checker\update_checker.exe (PUP.Optional.FilesFrog.A) -> 2204 -> Nebyla provedena žádná instrukce.
Nalezené moduly v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené klíče v registru: 22
HKCR\CLSID\{25B8D58C-B0CB-46b0-BA64-05B3804E4E86} (Adware.DoubleD) -> Nebyla provedena žádná instrukce.
HKCR\ExplorerBar.FunExplorer.1 (Adware.DoubleD) -> Nebyla provedena žádná instrukce.
HKCR\ExplorerBar.FunExplorer (Adware.DoubleD) -> Nebyla provedena žádná instrukce.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{25B8D58C-B0CB-46B0-BA64-05B3804E4E86} (Adware.DoubleD) -> Nebyla provedena žádná instrukce.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{25B8D58C-B0CB-46B0-BA64-05B3804E4E86} (Adware.DoubleD) -> Nebyla provedena žádná instrukce.
HKCR\CLSID\{35B8D58C-B0CB-46b0-BA64-05B3804E4E86} (Adware.DoubleD) -> Nebyla provedena žádná instrukce.
HKCR\TypeLib\{C28A0312-C403-417B-A425-A915BC0519CD} (Adware.DoubleD) -> Nebyla provedena žádná instrukce.
HKCR\Interface\{877F3EAB-4462-44DF-8475-6064EAFD7FBF} (Adware.DoubleD) -> Nebyla provedena žádná instrukce.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{35B8D58C-B0CB-46B0-BA64-05B3804E4E86} (Adware.DoubleD) -> Nebyla provedena žádná instrukce.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{35B8D58C-B0CB-46B0-BA64-05B3804E4E86} (Adware.DoubleD) -> Nebyla provedena žádná instrukce.
HKCR\CLSID\{539F76FD-084E-4858-86D5-62F02F54AE86} (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
HKCR\TypeLib\{F13D3582-1359-4F8F-9A48-EF3AE9F5701C} (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
HKCR\Interface\{06E50566-0AB7-431C-841D-62794727DAF9} (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
HKCR\CLSID\{60EACC1A-33FA-443D-9846-17B28E2C9BDB} (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
HKCR\CLSID\{AA74D58F-ACD0-450D-A85E-6C04B171C044} (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
HKCR\CLSID\{AAA38851-3CFF-475F-B5E0-720D3645E4A5} (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
HKLM\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{1D4DB7D2-6EC9-47A3-BD87-1E41684E07BB} (PUP.Optional.FunWebProducts.A) -> Nebyla provedena žádná instrukce.
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{56256A51-B582-467e-B8D4-7786EDA79AE0} (Trojan.Vundo) -> Nebyla provedena žádná instrukce.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\FilesFrog Update Checker (PUP.Optional.Somoto.A) -> Nebyla provedena žádná instrukce.
HKCU\SOFTWARE\INSTALLCORE (PUP.Optional.InstallCore.A) -> Nebyla provedena žádná instrukce.
HKLM\SOFTWARE\FunWebProducts\Installer (PUP.Optional.FunWebProducts.A) -> Nebyla provedena žádná instrukce.
HKLM\SOFTWARE\MINIBAR (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
Nalezené hodnoty v registru: 2
HKCU\Software\InstallCore|tb (PUP.Optional.InstallCore.A) -> Data: 0F -> Nebyla provedena žádná instrukce.
HKLM\SOFTWARE\Minibar|NoDns (PUP.Optional.MiniBar.A) -> Data: true -> Nebyla provedena žádná instrukce.
Nalezené datové položky v registru: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené složky: 32
C:\Users\juhu\AppData\Roaming\Babylon (PUP.Optional.Babylon.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\chrome (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\chrome\icons (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\chrome\includes (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\chrome\kango (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\chrome\kango-ui (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\chrome\minibar (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\firefox (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\firefox\chrome (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\firefox\chrome\content (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\firefox\chrome\content\icons (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\firefox\chrome\content\kango (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\firefox\chrome\content\kango-ui (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\firefox\chrome\content\kango-ui\theme (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\firefox\chrome\content\kango-ui\theme\bubble (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\firefox\chrome\content\minibar (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\firefox\plugins (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\Minibar (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\Minibar\icons (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\Minibar\kango (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\Minibar\kango-ui (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\Minibar\kango-ui\theme (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\Minibar\kango-ui\theme\bubble (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\Minibar\minibar (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\DoubleD (Adware.DoubleD) -> Nebyla provedena žádná instrukce.
C:\Program Files\DoubleD\GamingHarbor Toolbar (Adware.DoubleD) -> Nebyla provedena žádná instrukce.
C:\Program Files\DoubleD\GamingHarbor Toolbar\4.2.0.21210 (Adware.DoubleD) -> Nebyla provedena žádná instrukce.
C:\Program Files\INTERNET SAVING OPTIMIZER (Adware.DoubleD) -> Nebyla provedena žádná instrukce.
C:\Program Files\INTERNET SAVING OPTIMIZER\3.6.3.4500 (Adware.DoubleD) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\FilesFrog Update Checker (PUP.Optional.FilesFrog.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FilesFrog Update Checker (PUP.Optional.FilesFrog.A) -> Nebyla provedena žádná instrukce.
Nalezené soubory: 183
C:\Users\juhu\AppData\Local\FilesFrog Update Checker\update_checker.exe (PUP.Optional.FilesFrog.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\INTERNET SAVING OPTIMIZER\3.6.3.4500\NPIEADDON.DLL (Adware.DoubleD) -> Nebyla provedena žádná instrukce.
C:\Program Files\Minibar\Minibar.dll (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\$Recycle.Bin\S-1-5-21-1055357281-2900607726-3267283594-1005\$RGKI5GN\DESKTOP.EXE (Joke.Stressreducer) -> Nebyla provedena žádná instrukce.
C:\$Recycle.Bin\S-1-5-21-1055357281-2900607726-3267283594-1007\$R24H1QL.exe (PUP.Optional.Somoto) -> Nebyla provedena žádná instrukce.
C:\$Recycle.Bin\S-1-5-21-1055357281-2900607726-3267283594-1007\$RUC2OZV.exe (PUP.Optional.Softonic) -> Nebyla provedena žádná instrukce.
C:\Users\Dominishka\Desktop\Jen tak\YoutubeDownloaderSetup.exe (PUP.Dealio.TB) -> Nebyla provedena žádná instrukce.
C:\Users\domishek\AppData\Local\Google\Chrome\User Data\Default\File System\002\t\00\00000000 (PUP.Optional.InstalleRex) -> Nebyla provedena žádná instrukce.
C:\Users\domishek\Desktop\The Sims 2 Seasons\keygen.exe (RiskWare.Tool.CK) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\AppsHat Mobile Apps\Uninstall.exe (PUP.Optional.Somoto.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\FilesFrog Update Checker\uninstall.exe (PUP.Optional.Somoto.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\0CBO2JDR\FLVPlayerUpdate_downloader_by_FLVPlayerUpdate[1].exe (PUP.Optional.Somoto) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\7XIZDE6X\minibar-core[1].exe (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Temp\FLVPlayerUpdate_downloader_by_FLVPlayerUpdate.exe (PUP.Optional.Somoto) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Temp\Offercast2802_MTV_.exe (PUP.Optional.Spigot.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Temp\UpdateCheckerSetup.exe (PUP.Optional.Somoto.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Temp\LemurLeap_sm.exe (PUP.Optional.LemurLeap.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Temp\appshat-distribution.exe (PUP.Optional.Somoto.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Temp\BabylonTB.exe (PUP.Optional.Babylon.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Temp\B104F835-BAB0-7891-B11C-AB291C4E059A\Latest\BabMaint.exe (PUP.Optional.Babylon.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Temp\B104F835-BAB0-7891-B11C-AB291C4E059A\Latest\BExternal.dll (PUP.Optional.Babylon.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Temp\B104F835-BAB0-7891-B11C-AB291C4E059A\Latest\Setup.exe (PUP.Optional.Babylon.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Temp\BF7C1AD6-BAB0-7891-BEFA-FCD255F540C8\Latest\BabMaint.exe (PUP.Optional.Babylon.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Temp\BF7C1AD6-BAB0-7891-BEFA-FCD255F540C8\Latest\BExternal.dll (PUP.Optional.Babylon.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Temp\BF7C1AD6-BAB0-7891-BEFA-FCD255F540C8\Latest\Setup.exe (PUP.Optional.Babylon.A) -> Nebyla provedena žádná instrukce.
C:\Users\Terka\AppData\Local\Temp\He167GM0kM.log (Trojan.Small.Gen) -> Nebyla provedena žádná instrukce.
C:\Users\Terka\Desktop\Různé\PROGRAM\DESKTOP.EXE (Joke.Stressreducer) -> Nebyla provedena žádná instrukce.
C:\Users\Terka\Downloads\Need.for.Speed.Hot.Pursuit-RELOADED\Crack\NFSHP_Activator.exe (RiskWare.Tool.CK) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Roaming\Babylon\log_file.txt (PUP.Optional.Babylon.A) -> Nebyla provedena žádná instrukce.
C:\Windows\inf\ntvdm.inf (Malware.Trace) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\minibar.crx (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\chrome.json (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\chrome.pem (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\chrome_installer.js (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\common.js (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\firefox_installer.js (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\ie_installer.js (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\minibar.xpi (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\SettingsHelper.exe (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\Uninstall.exe (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\chrome\background.html (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\chrome\cached_http_request.js (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\chrome\extension_info.json (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\chrome\initial_config.json (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\chrome\main.js (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\chrome\manifest.json (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\chrome\MinibarPlugin.dll (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\chrome\popup.html (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\chrome\popup.js (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\chrome\tab.html (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\chrome\tab.js (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\chrome\icons\icon128.png (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\chrome\icons\icon19.png (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\chrome\icons\icon32.png (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\chrome\icons\icon48.png (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\chrome\includes\content.js (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\chrome\includes\content_kango.js (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\chrome\includes\content_menu.js (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\chrome\includes\content_messaging.js (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\chrome\includes\content_pageutils.js (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\chrome\includes\content_popup.js (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\chrome\includes\content_toolbar.js (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\chrome\includes\content_toolbar_customfixes.js (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\chrome\includes\content_userscript.js (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\chrome\kango\browser.js (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\chrome\kango\console.js (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\chrome\kango\event_listener.js (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\chrome\kango\initialize.js (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\chrome\kango\io.js (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\chrome\kango\jsonstorage.js (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\chrome\kango\kango.js (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\chrome\kango\lang.js (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\chrome\kango\messaging.js (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\chrome\kango\userscript_engine.js (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\chrome\kango\xhr.js (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\chrome\kango-ui\button.js (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\chrome\kango-ui\toolbar.js (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\chrome\kango-ui\ui.js (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\chrome\minibar\actions.js (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\chrome\minibar\cachedxhr.js (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\chrome\minibar\config.js (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\chrome\minibar\macros.js (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\chrome\minibar\minibar.js (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\firefox\chrome.manifest (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\firefox\install.rdf (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\firefox\chrome\content\content.xul (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\firefox\chrome\content\extension_info.json (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\firefox\chrome\content\main.js (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\firefox\chrome\content\icons\icon128.png (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\firefox\chrome\content\icons\icon19.png (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\firefox\chrome\content\icons\icon32.png (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\firefox\chrome\content\icons\icon48.png (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\firefox\chrome\content\kango\browser.js (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\firefox\chrome\content\kango\console.js (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\firefox\chrome\content\kango\event_listener.js (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\firefox\chrome\content\kango\initialize.js (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\firefox\chrome\content\kango\io.js (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\firefox\chrome\content\kango\jsonstorage.js (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\firefox\chrome\content\kango\kango.js (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\firefox\chrome\content\kango\lang.js (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\firefox\chrome\content\kango\messaging.js (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\firefox\chrome\content\kango\storage.js (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\firefox\chrome\content\kango\uninstall_observer.js (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\firefox\chrome\content\kango\userscript_engine.js (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\firefox\chrome\content\kango\xhr.js (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\firefox\chrome\content\kango-ui\button.js (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\firefox\chrome\content\kango-ui\popup.js (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\firefox\chrome\content\kango-ui\popup_window.js (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\firefox\chrome\content\kango-ui\popup_window.xul (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\firefox\chrome\content\kango-ui\toolbar.js (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\firefox\chrome\content\kango-ui\toolbar_stub.html (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\firefox\chrome\content\kango-ui\ui.js (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\firefox\chrome\content\kango-ui\theme\bubble\bottom-left.png (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\firefox\chrome\content\kango-ui\theme\bubble\bottom-middle.png (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\firefox\chrome\content\kango-ui\theme\bubble\bottom-right.png (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\firefox\chrome\content\kango-ui\theme\bubble\middle-left.png (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\firefox\chrome\content\kango-ui\theme\bubble\middle-right.png (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\firefox\chrome\content\kango-ui\theme\bubble\style.css (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\firefox\chrome\content\kango-ui\theme\bubble\tail-bottom.png (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\firefox\chrome\content\kango-ui\theme\bubble\tail-left.png (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\firefox\chrome\content\kango-ui\theme\bubble\tail-right.png (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\firefox\chrome\content\kango-ui\theme\bubble\tail-top.png (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\firefox\chrome\content\kango-ui\theme\bubble\top-left.png (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\firefox\chrome\content\kango-ui\theme\bubble\top-middle.png (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\firefox\chrome\content\kango-ui\theme\bubble\top-right.png (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\firefox\chrome\content\minibar\actions.js (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\firefox\chrome\content\minibar\cachedxhr.js (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\firefox\chrome\content\minibar\config.js (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\firefox\chrome\content\minibar\homepage_helper.js (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\firefox\chrome\content\minibar\macros.js (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\firefox\chrome\content\minibar\minibar.js (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\firefox\chrome\content\minibar\search_helper.js (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\firefox\chrome\content\minibar\search_hook.js (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\firefox\chrome\content\minibar\tabpage_helper.js (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Local\Minibar\firefox\plugins\npMinibarPlugin.dll (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\Minibar\initial_config.json (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\Minibar\config.xml (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\Minibar\extension_info.json (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\Minibar\main.js (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\Minibar\icons\icon128.png (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\Minibar\icons\icon16.ico (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\Minibar\icons\icon19.ico (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\Minibar\icons\icon19.png (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\Minibar\icons\icon32.png (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\Minibar\icons\icon48.png (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\Minibar\kango\browser.js (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\Minibar\kango\console.js (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\Minibar\kango\event_listener.js (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\Minibar\kango\initialize.js (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\Minibar\kango\io.js (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\Minibar\kango\json.js (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\Minibar\kango\jsonstorage.js (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\Minibar\kango\kango.js (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\Minibar\kango\lang.js (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\Minibar\kango\md5.js (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\Minibar\kango\messaging.js (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\Minibar\kango\storage.js (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\Minibar\kango\userscript_engine.js (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\Minibar\kango\utils.js (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\Minibar\kango\xhr.js (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\Minibar\kango-ui\commandbar_button.js (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\Minibar\kango-ui\toolbar.js (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\Minibar\kango-ui\toolbar_stub.html (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\Minibar\kango-ui\ui.js (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\Minibar\kango-ui\theme\bubble\bottom-left.png (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\Minibar\kango-ui\theme\bubble\bottom-middle.png (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\Minibar\kango-ui\theme\bubble\bottom-right.png (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\Minibar\kango-ui\theme\bubble\middle-left.png (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\Minibar\kango-ui\theme\bubble\middle-right.png (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\Minibar\kango-ui\theme\bubble\tail-bottom.png (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\Minibar\kango-ui\theme\bubble\tail-left.png (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\Minibar\kango-ui\theme\bubble\tail-right.png (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\Minibar\kango-ui\theme\bubble\tail-top.png (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\Minibar\kango-ui\theme\bubble\top-left.png (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\Minibar\kango-ui\theme\bubble\top-middle.png (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\Minibar\kango-ui\theme\bubble\top-right.png (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\Minibar\minibar\actions.js (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\Minibar\minibar\cachedxhr.js (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\Minibar\minibar\config.js (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\Minibar\minibar\macros.js (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Program Files\Minibar\minibar\minibar.js (PUP.Optional.MiniBar.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FilesFrog Update Checker\Check for Updates.lnk (PUP.Optional.FilesFrog.A) -> Nebyla provedena žádná instrukce.
C:\Users\juhu\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FilesFrog Update Checker\Uninstall.lnk (PUP.Optional.FilesFrog.A) -> Nebyla provedena žádná instrukce.
(konec)
Re: preventivka
Márty84 píše:
25.12. pro neaktivitu
http://forum.viry.cz/viewtopic.php?f=12&t=123975Pokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Přispějete na provoz fóra?