Zdravím Vás.Prosím o preventivní kontrolu logu.Občas mi při zobrazení výsledků v google zmizí "nalezené výsledky"...celá stránka kromě hlavičky.Po aktualizaci stránky se výsledky opět zobrazí.A to se děje několikrát.Děkuji za ochotu.Oslik6
Logfile of random's system information tool 1.08 (written by random/random)
Run by Pavilion at 2013-12-28 22:11:49
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 494 GB (82%) free of 598 GB
Total RAM: 3839 MB (61% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 22:12:03, on 28.12.2013
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.16428)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\Canon\Solution Menu EX\CNSEMAIN.EXE
C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_8_800_94.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_8_800_94.exe
C:\Program Files\trend micro\Pavilion.exe
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: Canon Easy-WebPrint EX BHO - {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O4 - HKLM\..\Run: [CanonSolutionMenuEx] c:\program files (x86)\canon\solution menu ex\cnsemain.exe /logon
O4 - HKLM\..\Run: [avgnt] "C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe" /min
O8 - Extra context menu item: Free YouTube to MP3 Converter - C:\Users\Pavilion\AppData\Roaming\DVDVideoSoftIEHelpers\freeyoutubetomp3converter.htm
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: Avira Scheduler (AntiVirSchedulerService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
O23 - Service: Avira Real-Time Protection (AntiVirService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
O23 - Service: Autodesk Content Service - Autodesk, Inc. - C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: Easybits Services for Windows (ezSharedSvc) - EasyBits Software AS - C:\Windows\System32\ezSharedSvcHost.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: FLEXnet Licensing Service 64 - Flexera Software, Inc. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - c:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: PDF Document Manager (pdfcDispatcher) - PDF Complete Inc - C:\Program Files (x86)\PDF Complete\pdfsvc.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 6437 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
winlogon.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
"c:\Program Files\Microsoft Security Client\MsMpEng.exe"
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\svchost.exe -k NetworkService
atieclxx
C:\Windows\System32\spoolsv.exe
"C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe"
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe"
"C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe"
C:\Windows\SysWOW64\ezSharedSvcHost.exe
"c:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe"
"C:\Program Files (x86)\PDF Complete\pdfsvc.exe" /startedbyscm:66B66708-40E2BE4D-pdfcService
"C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe" avshadowcontrol0_00000648
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\system32\SearchIndexer.exe /Embedding
"taskhost.exe"
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"C:\Program Files\Canon\MyPrinter\BJMYPRT.EXE" /logon
"C:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey
"C:\Program Files (x86)\Canon\Solution Menu EX\CNSEMAIN.EXE" /logon
"C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe" /min
C:\Windows\system32\svchost.exe -k imgsvc
C:\Windows\splwow64.exe 12288
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\Windows\system32\svchost.exe -k SDRSVC
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe"
"C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe" --channel=3848.a45e100.997705845 "C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_8_800_94.dll" -greomni "C:\Program Files (x86)\Mozilla Firefox\omni.ja" -appomni "C:\Program Files (x86)\Mozilla Firefox\browser\omni.ja" -appdir "C:\Program Files (x86)\Mozilla Firefox\browser" E7CF176E110C211B 3848 "\\.\pipe\gecko-crash-server-pipe.3848" plugin
"C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_8_800_94.exe" --proxy-stub-channel=Flash4304.6940B990.20586 --host-broker-channel=Flash4304.6940B990.25614 --host-pid=4304 --host-npapi-version=27 --plugin-path="C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_8_800_94.dll"
"C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_8_800_94.exe" --channel=3940.0014F5D4.1554231409 --proxy-stub-channel=Flash4304.6940B990.20586 --plugin-path="C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_8_800_94.dll" --host-npapi-version=27 --type=renderer
taskhost.exe $(Arg0)
"C:\Users\Pavilion\Desktop\RSITx64(1).exe"
C:\Windows\system32\wbem\wmiprvse.exe
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2013-05-29 553376]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2013-05-29 211360]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3785D0AD-BFFF-47F6-BF5B-A587C162FED9}]
Canon Easy-WebPrint EX BHO - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll [2010-11-08 202144]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2013-03-14 461216]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2013-03-14 170912]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"CanonMyPrinter"=c:\program files\canon\myprinter\bjmyprt.exe [2010-03-24 2726728]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-04-04 958576]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Autodesk Sync]
C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe [2012-02-05 415680]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\avgnt]
C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [2013-12-18 684600]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CanonMyPrinter]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CanonSolutionMenuEx]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HP Software Update]
c:\program files (x86)\hp\hp software update\hpwuschd2.exe [2008-12-08 54576]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\hpsysdrv]
c:\program files (x86)\hewlett-packard\hp odometer\hpsysdrv.exe [2008-11-20 62768]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KSS]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MSC]
c:\Program Files\Microsoft Security Client\msseces.exe [2013-10-23 1266912]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PDF Complete]
c:\program files (x86)\pdf complete\pdfsty.exe [2009-10-15 563736]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QIP Internet Guardian]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
[]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"CanonSolutionMenuEx"=c:\program files (x86)\canon\solution menu ex\cnsemain.exe [2010-04-02 1185112]
"avgnt"=C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [2013-12-18 684600]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MsMpSvc]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
""=
"NoDriveTypeAutoRun"=145
"NoDrives"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"EnableShellExecuteHooks"=1
"NoDrives"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
======List of files/folders created in the last 1 months======
2013-12-20 19:54:09 ----D---- C:\Program Files (x86)\Mozilla Firefox
2013-12-15 01:31:40 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2013-12-15 01:31:39 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2013-12-15 01:31:39 ----A---- C:\Windows\SYSWOW64\ieui.dll
2013-12-15 01:31:39 ----A---- C:\Windows\system32\jsproxy.dll
2013-12-15 01:31:39 ----A---- C:\Windows\system32\ieui.dll
2013-12-15 01:31:38 ----A---- C:\Windows\system32\ieUnatt.exe
2013-12-15 01:31:38 ----A---- C:\Windows\system32\iesetup.dll
2013-12-15 01:31:38 ----A---- C:\Windows\system32\iernonce.dll
2013-12-15 01:31:38 ----A---- C:\Windows\system32\ieetwproxystub.dll
2013-12-15 01:31:38 ----A---- C:\Windows\system32\ieetwcollector.exe
2013-12-15 01:31:38 ----A---- C:\Windows\system32\ie4uinit.exe
2013-12-15 01:31:37 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2013-12-15 01:31:37 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2013-12-15 01:31:37 ----A---- C:\Windows\system32\mshtml.dll
2013-12-15 01:31:37 ----A---- C:\Windows\system32\jscript9diag.dll
2013-12-15 01:31:37 ----A---- C:\Windows\system32\ieapfltr.dll
2013-12-15 01:31:36 ----A---- C:\Windows\SYSWOW64\wininet.dll
2013-12-15 01:31:36 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2013-12-15 01:31:36 ----A---- C:\Windows\system32\iertutil.dll
2013-12-15 01:31:35 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2013-12-15 01:31:35 ----A---- C:\Windows\system32\wininet.dll
2013-12-15 01:31:35 ----A---- C:\Windows\system32\urlmon.dll
2013-12-15 01:31:33 ----A---- C:\Windows\system32\ieframe.dll
2013-12-15 01:31:32 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2013-12-15 01:31:31 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2013-12-15 01:31:31 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2013-12-15 01:31:31 ----A---- C:\Windows\system32\jscript9.dll
2013-12-14 02:09:44 ----A---- C:\Windows\system32\IEUDINIT.EXE
2013-12-14 01:58:43 ----A---- C:\Windows\SYSWOW64\elshyph.dll
2013-12-14 01:58:43 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2013-12-14 01:58:37 ----A---- C:\Windows\SYSWOW64\RegisterIEPKEYs.exe
2013-12-14 01:58:37 ----A---- C:\Windows\SYSWOW64\msrating.dll
2013-12-14 01:58:37 ----A---- C:\Windows\SYSWOW64\msls31.dll
2013-12-14 01:58:37 ----A---- C:\Windows\SYSWOW64\jsIntl.dll
2013-12-14 01:58:37 ----A---- C:\Windows\system32\elshyph.dll
2013-12-14 01:58:36 ----A---- C:\Windows\SYSWOW64\url.dll
2013-12-14 01:58:36 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2013-12-14 01:58:36 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2013-12-14 01:58:36 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2013-12-14 01:58:36 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2013-12-14 01:58:35 ----A---- C:\Windows\SYSWOW64\wextract.exe
2013-12-14 01:58:35 ----A---- C:\Windows\SYSWOW64\webcheck.dll
2013-12-14 01:58:35 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2013-12-14 01:58:35 ----A---- C:\Windows\SYSWOW64\pngfilt.dll
2013-12-14 01:58:35 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2013-12-14 01:58:35 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2013-12-14 01:58:35 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2013-12-14 01:58:35 ----A---- C:\Windows\SYSWOW64\licmgr10.dll
2013-12-14 01:58:35 ----A---- C:\Windows\SYSWOW64\inseng.dll
2013-12-14 01:58:35 ----A---- C:\Windows\SYSWOW64\iexpress.exe
2013-12-14 01:58:35 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2013-12-14 01:58:35 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2013-12-14 01:58:35 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2013-12-14 01:58:35 ----A---- C:\Windows\SYSWOW64\icardie.dll
2013-12-14 01:58:34 ----A---- C:\Windows\SYSWOW64\SetIEInstalledDate.exe
2013-12-14 01:58:34 ----A---- C:\Windows\SYSWOW64\occache.dll
2013-12-14 01:58:34 ----A---- C:\Windows\SYSWOW64\mshtmler.dll
2013-12-14 01:58:34 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2013-12-14 01:58:34 ----A---- C:\Windows\SYSWOW64\mshta.exe
2013-12-14 01:58:34 ----A---- C:\Windows\SYSWOW64\msfeedssync.exe
2013-12-14 01:58:34 ----A---- C:\Windows\SYSWOW64\msfeedsbs.dll
2013-12-14 01:58:34 ----A---- C:\Windows\SYSWOW64\jscript.dll
2013-12-14 01:58:34 ----A---- C:\Windows\SYSWOW64\imgutil.dll
2013-12-14 01:58:34 ----A---- C:\Windows\SYSWOW64\iesysprep.dll
2013-12-14 01:58:34 ----A---- C:\Windows\SYSWOW64\iepeers.dll
2013-12-14 01:58:34 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2013-12-14 01:58:34 ----A---- C:\Windows\SYSWOW64\IEAdvpack.dll
2013-12-14 01:58:33 ----A---- C:\Windows\system32\RegisterIEPKEYs.exe
2013-12-14 01:58:33 ----A---- C:\Windows\system32\msrating.dll
2013-12-14 01:58:33 ----A---- C:\Windows\system32\msls31.dll
2013-12-14 01:58:33 ----A---- C:\Windows\system32\msfeedssync.exe
2013-12-14 01:58:33 ----A---- C:\Windows\system32\msfeedsbs.dll
2013-12-14 01:58:33 ----A---- C:\Windows\system32\jsIntl.dll
2013-12-14 01:58:33 ----A---- C:\Windows\system32\IEAdvpack.dll
2013-12-14 01:58:32 ----A---- C:\Windows\system32\SetIEInstalledDate.exe
2013-12-14 01:58:32 ----A---- C:\Windows\system32\mshtmler.dll
2013-12-14 01:58:32 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2013-12-14 01:58:32 ----A---- C:\Windows\system32\iesysprep.dll
2013-12-14 01:58:31 ----A---- C:\Windows\system32\wextract.exe
2013-12-14 01:58:31 ----A---- C:\Windows\system32\webcheck.dll
2013-12-14 01:58:31 ----A---- C:\Windows\system32\url.dll
2013-12-14 01:58:31 ----A---- C:\Windows\system32\mshtmlmedia.dll
2013-12-14 01:58:31 ----A---- C:\Windows\system32\mshtmled.dll
2013-12-14 01:58:31 ----A---- C:\Windows\system32\msfeeds.dll
2013-12-14 01:58:31 ----A---- C:\Windows\system32\licmgr10.dll
2013-12-14 01:58:31 ----A---- C:\Windows\system32\inseng.dll
2013-12-14 01:58:31 ----A---- C:\Windows\system32\iexpress.exe
2013-12-14 01:58:31 ----A---- C:\Windows\system32\iedkcs32.dll
2013-12-14 01:58:31 ----A---- C:\Windows\system32\icardie.dll
2013-12-14 01:58:31 ----A---- C:\Windows\system32\dxtrans.dll
2013-12-14 01:58:31 ----A---- C:\Windows\system32\dxtmsft.dll
2013-12-14 01:58:30 ----A---- C:\Windows\system32\vbscript.dll
2013-12-14 01:58:30 ----A---- C:\Windows\system32\pngfilt.dll
2013-12-14 01:58:30 ----A---- C:\Windows\system32\occache.dll
2013-12-14 01:58:30 ----A---- C:\Windows\system32\MshtmlDac.dll
2013-12-14 01:58:30 ----A---- C:\Windows\system32\mshta.exe
2013-12-14 01:58:30 ----A---- C:\Windows\system32\jscript.dll
2013-12-14 01:58:30 ----A---- C:\Windows\system32\imgutil.dll
2013-12-14 01:58:30 ----A---- C:\Windows\system32\iepeers.dll
2013-12-12 01:45:07 ----A---- C:\Windows\system32\wmploc.DLL
2013-12-12 01:45:06 ----A---- C:\Windows\SYSWOW64\wmploc.DLL
2013-12-12 01:45:06 ----A---- C:\Windows\SYSWOW64\wmp.dll
2013-12-12 01:45:04 ----A---- C:\Windows\system32\wmp.dll
2013-12-11 11:23:32 ----A---- C:\Windows\system32\msieftp.dll
2013-12-11 11:23:31 ----A---- C:\Windows\SYSWOW64\msieftp.dll
2013-12-11 11:23:29 ----A---- C:\Windows\system32\win32k.sys
2013-12-11 11:23:28 ----A---- C:\Windows\SYSWOW64\WMPhoto.dll
2013-12-11 11:23:28 ----A---- C:\Windows\system32\WMPhoto.dll
2013-12-11 11:23:27 ----A---- C:\Windows\SYSWOW64\imagehlp.dll
2013-12-11 11:23:27 ----A---- C:\Windows\system32\imagehlp.dll
2013-12-11 11:23:24 ----A---- C:\Windows\SYSWOW64\tzres.dll
2013-12-11 11:23:24 ----A---- C:\Windows\system32\tzres.dll
2013-12-11 11:23:19 ----A---- C:\Windows\SYSWOW64\wscript.exe
2013-12-11 11:23:19 ----A---- C:\Windows\SYSWOW64\scrrun.dll
2013-12-11 11:23:19 ----A---- C:\Windows\SYSWOW64\cscript.exe
2013-12-11 11:23:19 ----A---- C:\Windows\system32\wscript.exe
2013-12-11 11:23:19 ----A---- C:\Windows\system32\scrrun.dll
2013-12-11 11:23:19 ----A---- C:\Windows\system32\cscript.exe
2013-12-01 22:07:17 ----D---- C:\Users\Pavilion\AppData\Roaming\Guitar Pro 6
2013-12-01 22:07:17 ----D---- C:\ProgramData\Guitar Pro 6
======List of files/folders modified in the last 1 months======
2013-12-28 22:12:03 ----D---- C:\Windows\Prefetch
2013-12-28 22:11:53 ----D---- C:\Program Files\trend micro
2013-12-28 22:10:48 ----D---- C:\Windows\temp
2013-12-28 21:59:39 ----D---- C:\Windows\system32\config
2013-12-28 20:49:36 ----D---- C:\Users\Pavilion\AppData\Roaming\QuickScan
2013-12-28 20:06:48 ----D---- C:\ProgramData\Spybot - Search & Destroy
2013-12-28 19:55:06 ----D---- C:\Users\Pavilion\AppData\Roaming\Winamp
2013-12-28 19:55:03 ----D---- C:\Windows\inf
2013-12-28 19:55:00 ----AD---- C:\Windows
2013-12-27 20:30:16 ----D---- C:\Program Files (x86)\The KMPlayer
2013-12-27 18:09:27 ----SHD---- C:\System Volume Information
2013-12-25 20:45:22 ----AD---- C:\Windows\System32
2013-12-25 20:45:22 ----A---- C:\Windows\system32\PerfStringBackup.INI
2013-12-22 00:18:46 ----D---- C:\ProgramData\PDFC
2013-12-21 08:48:02 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2013-12-20 21:13:31 ----D---- C:\Program Files (x86)
2013-12-18 07:58:53 ----D---- C:\Windows\system32\catroot
2013-12-18 07:58:52 ----D---- C:\Windows\system32\drivers
2013-12-16 10:16:49 ----D---- C:\Windows\debug
2013-12-16 00:42:05 ----D---- C:\Windows\system32\MRT
2013-12-16 00:39:52 ----A---- C:\Windows\system32\MRT.exe
2013-12-16 00:39:42 ----D---- C:\Windows\system32\catroot2
2013-12-15 09:35:01 ----D---- C:\Windows\winsxs
2013-12-15 09:34:02 ----D---- C:\Windows\SysWOW64
2013-12-15 09:34:02 ----D---- C:\Program Files\Internet Explorer
2013-12-15 09:34:02 ----D---- C:\Program Files (x86)\Internet Explorer
2013-12-14 19:20:36 ----D---- C:\Windows\system32\drivers\etc
2013-12-14 19:13:33 ----D---- C:\Windows\Panther
2013-12-14 19:13:33 ----D---- C:\Windows\Logs
2013-12-14 11:26:39 ----D---- C:\Windows\SYSWOW64\sv-SE
2013-12-14 11:26:38 ----D---- C:\Windows\SYSWOW64\nb-NO
2013-12-14 11:26:38 ----D---- C:\Windows\system32\sv-SE
2013-12-14 11:26:38 ----D---- C:\Windows\system32\nb-NO
2013-12-14 11:26:37 ----D---- C:\Windows\SYSWOW64\fi-FI
2013-12-14 11:26:37 ----D---- C:\Windows\system32\fi-FI
2013-12-14 11:26:36 ----D---- C:\Windows\SYSWOW64\da-DK
2013-12-14 11:26:36 ----D---- C:\Windows\system32\da-DK
2013-12-14 11:26:35 ----D---- C:\Windows\SYSWOW64\cs-CZ
2013-12-14 11:26:35 ----D---- C:\Windows\system32\cs-CZ
2013-12-14 11:26:32 ----D---- C:\Windows\SYSWOW64\migration
2013-12-14 11:26:31 ----D---- C:\Windows\SYSWOW64\en-US
2013-12-14 11:26:28 ----D---- C:\Windows\system32\migration
2013-12-14 11:26:28 ----D---- C:\Windows\PolicyDefinitions
2013-12-14 11:26:27 ----D---- C:\Windows\system32\en-US
2013-12-12 10:16:07 ----D---- C:\Program Files (x86)\Windows Media Player
2013-12-12 10:16:05 ----D---- C:\Program Files\Windows Media Player
2013-12-12 10:15:54 ----D---- C:\Windows\system32\DriverStore
2013-12-12 01:44:45 ----SHD---- C:\Windows\Installer
2013-12-12 01:44:45 ----D---- C:\Config.Msi
2013-12-01 22:07:17 ----D---- C:\ProgramData
2013-11-30 13:47:53 ----D---- C:\Windows\system32\NDF
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 AtiPcie;AMD PCI Express (3GIO) Filter; C:\Windows\system32\DRIVERS\AtiPcie64.sys [2010-03-10 16440]
R0 MpFilter;Microsoft Malware Protection Driver; C:\Windows\system32\DRIVERS\MpFilter.sys [2013-09-27 248240]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R1 avipbb;avipbb; C:\Windows\system32\DRIVERS\avipbb.sys [2013-12-18 131576]
R1 avkmgr;avkmgr; C:\Windows\system32\DRIVERS\avkmgr.sys [2013-11-25 28600]
R2 avgntflt;avgntflt; C:\Windows\system32\DRIVERS\avgntflt.sys [2013-12-18 108440]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atipmdag.sys [2010-02-02 6366720]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2010-02-01 186880]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2010-03-31 2332192]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2010-03-04 346144]
R3 usbfilter;AMD USB Filter Driver; C:\Windows\system32\DRIVERS\usbfilter.sys [2009-12-21 38456]
S3 AmUStor;AM USB Stroage Driver; C:\Windows\system32\drivers\AmUStor.SYS [2009-10-23 46592]
S3 BridgeMP;@%SystemRoot%\system32\bridgeres.dll,-1; C:\Windows\system32\DRIVERS\bridge.sys [2009-07-14 95232]
S3 catchme;catchme; \??\C:\ComboFix\catchme.sys []
S3 KORGUMDS;KORG USB-MIDI Driver for Windows x64 Edition; C:\Windows\System32\Drivers\KORGUM64.SYS [2009-10-15 31832]
S3 NisDrv;Microsoft Network Inspection System; C:\Windows\system32\DRIVERS\NisDrvWFP.sys [2013-09-27 134944]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-10-26 19456]
S3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader; C:\Windows\System32\Drivers\RtsUStor.sys [2010-04-09 243744]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2012-10-26 57856]
S3 usbscan;Ovladač skeneru USB; C:\Windows\system32\drivers\usbscan.sys [2013-07-03 42496]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 41984]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2013-05-10 65640]
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2010-02-02 202752]
R2 AntiVirService;Avira Real-Time Protection; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [2013-11-25 440376]
R2 AntiVirSchedulerService;Avira Scheduler; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [2013-12-18 440376]
R2 Autodesk Content Service;Autodesk Content Service; C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe [2012-01-31 19232]
R2 ezSharedSvc;Easybits Services for Windows; C:\Windows\syswow64\ezSharedSvcHost.exe [2010-04-23 514232]
R2 LightScribeService;LightScribeService Direct Disc Labeling Service; c:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe [2010-05-19 73728]
R2 MsMpSvc;Microsoft Antimalware Service; c:\Program Files\Microsoft Security Client\MsMpEng.exe [2013-10-23 23808]
R2 pdfcDispatcher;PDF Document Manager; C:\Program Files (x86)\PDF Complete\pdfsvc.exe [2009-10-15 635416]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2012-07-13 160944]
S3 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2010-03-18 44376]
S3 FLEXnet Licensing Service 64;FLEXnet Licensing Service 64; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe [2013-02-19 1432400]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2013-11-26 111616]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2013-12-20 119408]
S3 NisSrv;@c:\Program Files\Microsoft Security Client\MpAsDesc.dll,-243; c:\Program Files\Microsoft Security Client\NisSrv.exe [2013-10-23 348376]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2011-08-19 1255736]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Prosba o kontrolu logu.
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Re: Prosba o kontrolu logu.
Zdravim 
Nejprve odinstalujte jeden z Antiviru! Bezi vam tam Avira A MSE.
Stahnete AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner a ulozte ho na plochu.
Ukoncete vsechny programy, jinak to AdwCleaner udela za vas.
Kliknete na nej pravym mysidlem a levym na Spustit jako spravce.
Kliknete na Scan a program zacne pracovat.
Az skonci, vyplivne na vas log (pokud ne, najdete ho zde C:\AdwCleaner\AdwCleaner[R?].txt ), ten mi sem zkopirujte.
Nejprve odinstalujte jeden z Antiviru! Bezi vam tam Avira A MSE. Stahnete AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner a ulozte ho na plochu.Ukoncete vsechny programy, jinak to AdwCleaner udela za vas.
Kliknete na nej pravym mysidlem a levym na Spustit jako spravce.
Kliknete na Scan a program zacne pracovat.
Az skonci, vyplivne na vas log (pokud ne, najdete ho zde C:\AdwCleaner\AdwCleaner[R?].txt ), ten mi sem zkopirujte.
Pokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Re: Prosba o kontrolu logu.
Zde je vložen požadovaný log.Můžu se Vás prosím zeptat,proč je můj příspěvěk označen černou tečkou?(úplně v levém sloupku)...patrně jsem něco udělal špatně,ale nemůžu přijít na to co. Díky za odpověď. oslik6
# AdwCleaner v3.016 - Report created 29/12/2013 at 18:16:18
# Updated 23/12/2013 by Xplode
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)
# Username : Pavilion - PAVILION-HP
# Running from : C:\Users\Pavilion\Desktop\adwcleaner.exe
# Option : Scan
***** [ Services ] *****
***** [ Files / Folders ] *****
Folder Found : C:\Users\Pavilion\AppData\Local\Google\Chrome\User Data\Default\Extensions\olakgnkoldmagdblaalodobkmeokmgjj
***** [ Shortcuts ] *****
***** [ Registry ] *****
Key Found : HKLM\SOFTWARE\Classes\CLSID\{4C836512-BB70-11D2-A5A7-00105A9C91C6}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{DB797690-40E0-11D2-9BD5-0060082AE372}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{DB797681-40E0-11D2-9BD5-0060082AE372}
Key Found : HKLM\SOFTWARE\Google\Chrome\Extensions\hbcennhacfaagdopikcegfcobcadeocj
Key Found : HKLM\SOFTWARE\Google\Chrome\Extensions\icdlfehblmklkikfigmjhbmmpmkmpooj
Key Found : HKLM\SOFTWARE\Google\Chrome\Extensions\mhkaekfpcppmmioggniknbnbdbcigpkk
Key Found : HKLM\SOFTWARE\Google\Chrome\Extensions\pfndaklgolladniicklehhancnlgocpp
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\au__rasapi32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\au__rasmancs
***** [ Browsers ] *****
-\\ Internet Explorer v11.0.9600.16428
-\\ Mozilla Firefox v26.0 (cs)
[ File : C:\Users\Pavilion\AppData\Roaming\Mozilla\Firefox\Profiles\wun6gddw.default\prefs.js ]
*************************
AdwCleaner[R0].txt - [9242 octets] - [08/10/2013 22:10:01]
AdwCleaner[R1].txt - [1524 octets] - [29/12/2013 18:16:18]
AdwCleaner[S0].txt - [9254 octets] - [08/10/2013 22:15:33]
########## EOF - C:\AdwCleaner\AdwCleaner[R1].txt - [1644 octets] ##########
# AdwCleaner v3.016 - Report created 29/12/2013 at 18:16:18
# Updated 23/12/2013 by Xplode
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)
# Username : Pavilion - PAVILION-HP
# Running from : C:\Users\Pavilion\Desktop\adwcleaner.exe
# Option : Scan
***** [ Services ] *****
***** [ Files / Folders ] *****
Folder Found : C:\Users\Pavilion\AppData\Local\Google\Chrome\User Data\Default\Extensions\olakgnkoldmagdblaalodobkmeokmgjj
***** [ Shortcuts ] *****
***** [ Registry ] *****
Key Found : HKLM\SOFTWARE\Classes\CLSID\{4C836512-BB70-11D2-A5A7-00105A9C91C6}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{DB797690-40E0-11D2-9BD5-0060082AE372}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{DB797681-40E0-11D2-9BD5-0060082AE372}
Key Found : HKLM\SOFTWARE\Google\Chrome\Extensions\hbcennhacfaagdopikcegfcobcadeocj
Key Found : HKLM\SOFTWARE\Google\Chrome\Extensions\icdlfehblmklkikfigmjhbmmpmkmpooj
Key Found : HKLM\SOFTWARE\Google\Chrome\Extensions\mhkaekfpcppmmioggniknbnbdbcigpkk
Key Found : HKLM\SOFTWARE\Google\Chrome\Extensions\pfndaklgolladniicklehhancnlgocpp
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\au__rasapi32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\au__rasmancs
***** [ Browsers ] *****
-\\ Internet Explorer v11.0.9600.16428
-\\ Mozilla Firefox v26.0 (cs)
[ File : C:\Users\Pavilion\AppData\Roaming\Mozilla\Firefox\Profiles\wun6gddw.default\prefs.js ]
*************************
AdwCleaner[R0].txt - [9242 octets] - [08/10/2013 22:10:01]
AdwCleaner[R1].txt - [1524 octets] - [29/12/2013 18:16:18]
AdwCleaner[S0].txt - [9254 octets] - [08/10/2013 22:15:33]
########## EOF - C:\AdwCleaner\AdwCleaner[R1].txt - [1644 octets] ##########
Naposledy upravil(a) vyosek dne 29 pro 2013 18:34, celkem upraveno 1 x.
Důvod: Odstranena citace odpovedi, pouzivejte tlacitko Odpovedet
Důvod: Odstranena citace odpovedi, pouzivejte tlacitko Odpovedet
Re: Prosba o kontrolu logu.
Znovu ukoncete vsechny programy a spustte AdwCleaner jako spravce.Tentokrat kliknete na Clean
Program zacne pracovat (muze dojit k restartu pc) a vyplivne dalsi log (pripadne bude zde C:\AdwCleaner\AdwCleaner [S?].txt ). Ten mi sem zase zkopirujte.
Udelejte !!!kompletni!!! kontrolu s MBAM http://forum.viry.cz/viewtopic.php?f=29&t=115222 a dejte sem vysledky. Predem nic nemazte, miva obcas falesne detekceNic jste neprovedl. Ta tecka se objevi u kazdeho tematu, do ktereho napisete. Je to pro lepsi orientacioslik6 píše:Můžu se Vás prosím zeptat,proč je můj příspěvěk označen černou tečkou?(úplně v levém sloupku)...patrně jsem něco udělal špatně,ale nemůžu přijít na to co.
A objevuje se tam kazdemu.Pokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Re: Prosba o kontrolu logu.
Márty84 píše:
Tentokrat kliknete na Clean
Program zacne pracovat (muze dojit k restartu pc) a vyplivne dalsi log (pripadne bude zde C:\AdwCleaner\AdwCleaner [S?].txt ). Ten mi sem zase zkopirujte.
Nic jste neprovedl. Ta tecka se objevi u kazdeho tematu, do ktereho napisete. Je to pro lepsi orientacioslik6 píše:Můžu se Vás prosím zeptat,proč je můj příspěvěk označen černou tečkou?(úplně v levém sloupku)...patrně jsem něco udělal špatně,ale nemůžu přijít na to co.
Vložen log :AdwCleaner
# AdwCleaner v3.016 - Report created 29/12/2013 at 19:44:04
# Updated 23/12/2013 by Xplode
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)
# Username : Pavilion - PAVILION-HP
# Running from : C:\Users\Pavilion\Desktop\adwcleaner.exe
# Option : Clean
***** [ Services ] *****
***** [ Files / Folders ] *****
Folder Deleted : C:\Users\Pavilion\AppData\Local\Google\Chrome\User Data\Default\Extensions\olakgnkoldmagdblaalodobkmeokmgjj
***** [ Shortcuts ] *****
***** [ Registry ] *****
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\hbcennhacfaagdopikcegfcobcadeocj
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\icdlfehblmklkikfigmjhbmmpmkmpooj
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\mhkaekfpcppmmioggniknbnbdbcigpkk
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\pfndaklgolladniicklehhancnlgocpp
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\au__rasapi32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\au__rasmancs
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{4C836512-BB70-11D2-A5A7-00105A9C91C6}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{DB797690-40E0-11D2-9BD5-0060082AE372}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{DB797681-40E0-11D2-9BD5-0060082AE372}
***** [ Browsers ] *****
-\\ Internet Explorer v11.0.9600.16428
-\\ Mozilla Firefox v26.0 (cs)
[ File : C:\Users\Pavilion\AppData\Roaming\Mozilla\Firefox\Profiles\wun6gddw.default\prefs.js ]
*************************
AdwCleaner[R0].txt - [9242 octets] - [08/10/2013 22:10:01]
AdwCleaner[R1].txt - [1724 octets] - [29/12/2013 18:16:18]
AdwCleaner[R2].txt - [1784 octets] - [29/12/2013 19:43:04]
AdwCleaner[S0].txt - [9254 octets] - [08/10/2013 22:15:33]
AdwCleaner[S1].txt - [1725 octets] - [29/12/2013 19:44:04]
########## EOF - C:\AdwCleaner\AdwCleaner[S1].txt - [1785 octets] ##########
Zde je log Malwarebytes Anti-Malware....omlouvám se,že to trvalo tak dlouho.
Malwarebytes Anti-Malware (Zkušební verze Malwarebytes Anti-Malware.) 1.75.0.1300
http://www.malwarebytes.org
Verze: v2013.12.29.05
Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 11.0.9600.16476
Pavilion :: PAVILION-HP [administrátor]
Ochrana: Povolena
29.12.2013 20:04:34
MBAM-log-2013-12-29 (21-59-41).txt
Typ: Kompletní kontrola (C:\|D:\|)
Nastavení kontroly povoleno: Paměť | Po spuštění | Registr | Systémové soubory | Heuristická analýza Extra | Heuristická analýza Shuriken | PUP | PUM
Nastavení kontroly zakázáno: P2P
Kontrolované objekty: 507581
Uplynulý čas: 1 hodin, 50 minut, 42 sekund
Nalezené procesy v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené moduly v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené klíče v registru: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené hodnoty v registru: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené datové položky v registru: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené složky: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené soubory: 2
C:\Config.Msi\f8692b.rbf (PUP.Optional.SweetIM) -> Nebyla provedena žádná instrukce.
C:\Config.Msi\f8696a.rbf (PUP.Optional.SweetIM) -> Nebyla provedena žádná instrukce.
(konec)
Re: Prosba o kontrolu logu.
Nalezy MBAM nechte odstranit, pak MBAM odinstalujte Stahnete RogueKiller http://www.sur-la-toile.com/RogueKiller/RogueKiller.exe , ulozte ho na plochu, kliknete na nej pravym mysidlem a levym na Spustit jako spravce.Probehne kratoucky testik a pak se zpristupni vpravo nahore tlacitko Prohledat. Na to kliknete a probehne dalsi test.
Po dokonceni kliknete na napis Zprava a objevi se log. Ten mi sem vlozte
Pokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Re: Prosba o kontrolu logu.
Márty84 píše:
Probehne kratoucky testik a pak se zpristupni vpravo nahore tlacitko Prohledat. Na to kliknete a probehne dalsi test.
Po dokonceni kliknete na napis Zprava a objevi se log. Ten mi sem vlozte
Log RogueKiller
RogueKiller V8.8.0 [Dec 27 2013] by Tigzy
mail : tigzyRK<at>gmail<dot>com
Podpora : http://www.adlice.com/forum/
Webové stránky : http://www.adlice.com/softwares/roguekiller/
: http://www.adlice.com
Operační systém : Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Spuštěno v : Normální režim
Uživatel : Pavilion [Práva správce]
Mód : Kontrola -- Datum : 12/30/2013 09:49:45
| ARK || FAK || MBR |
¤¤¤ Škodlivé procesy: : 0 ¤¤¤
¤¤¤ ¤¤¤ Záznamy Registrů: : 8 ¤¤¤
[HJ POL][PUM] HKLM\[...]\System : DisableRegistryTools (0) -> NALEZENO
[HJ POL][PUM] HKLM\[...]\System : ConsentPromptBehaviorAdmin (0) -> NALEZENO
[HJ POL][PUM] HKLM\[...]\System : EnableLUA (0) -> NALEZENO
[HJ POL][PUM] HKLM\[...]\Wow6432Node\[...]\System : DisableRegistryTools (0) -> NALEZENO
[HJ POL][PUM] HKLM\[...]\Wow6432Node\[...]\System : ConsentPromptBehaviorAdmin (0) -> NALEZENO
[HJ POL][PUM] HKLM\[...]\Wow6432Node\[...]\System : EnableLUA (0) -> NALEZENO
[HJ DESK][PUM] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> NALEZENO
[HJ DESK][PUM] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> NALEZENO
¤¤¤ naplánované úlohy : 5 ¤¤¤
[V2][SUSP UNIC] {0CBDE8C6-DC82-4663-9762-F20F17741471} : C:\Users\Pavilion\Desktop\Nová složka (2)\win7\ToneLabST USB-ASIO Driver\TLSTSetup.exe [7] -> NALEZENO
[V2][SUSP UNIC] {159D4190-E1B3-47B3-9EAC-941BC2041009} : C:\Users\Pavilion\Desktop\Nová složka (2)\win7\ToneLabST USB-ASIO Driver\TLSTSetup.exe [7] -> NALEZENO
[V2][SUSP UNIC] {3E89B3EB-4D6C-4EE7-8209-622BA62A39BE} : C:\Users\Pavilion\Desktop\Nová složka (2)\win7\ToneLabST USB-ASIO Driver\TLSTSetup.exe [7] -> NALEZENO
[V2][SUSP UNIC] {4CA5B562-E244-46B1-8C71-2148BED43457} : C:\Users\Pavilion\Desktop\Nová složka (2)\win7\ToneLabST USB-ASIO Driver\TLSTSetup.exe [7] -> NALEZENO
[V2][SUSP UNIC] {A9FCA9AA-871F-4919-9A5F-5D3EBC1307AE} : C:\Users\Pavilion\Desktop\Nová složka (2)\win7\ToneLabST USB-ASIO Driver\TLSTSetup.exe [7] -> NALEZENO
¤¤¤ spuštění položky : 0 ¤¤¤
¤¤¤ Webové prohlížeče : 0 ¤¤¤
¤¤¤ Browser Addons : 0 ¤¤¤
¤¤¤ Zvláštní soubory / Složky: ¤¤¤
¤¤¤ Ovladač : [NENAHRÁNO 0x0] ¤¤¤
¤¤¤ Externí včelstvo: ¤¤¤
¤¤¤ Nákaza : ¤¤¤
¤¤¤ Soubor HOSTS: ¤¤¤
--> %SystemRoot%\System32\drivers\etc\hosts
127.0.0.1 localhost
127.0.0.1 http://www.007guard.com
127.0.0.1 007guard.com
127.0.0.1 008i.com
127.0.0.1 http://www.008k.com
127.0.0.1 008k.com
127.0.0.1 http://www.00hq.com
127.0.0.1 00hq.com
127.0.0.1 010402.com
127.0.0.1 http://www.032439.com
127.0.0.1 032439.com
127.0.0.1 http://www.0scan.com
127.0.0.1 0scan.com
127.0.0.1 1000gratisproben.com
127.0.0.1 http://www.1000gratisproben.com
127.0.0.1 1001namen.com
127.0.0.1 http://www.1001namen.com
127.0.0.1 100888290cs.com
127.0.0.1 http://www.100888290cs.com
127.0.0.1 http://www.100sexlinks.com
[...]
¤¤¤ Kontrola MBR: ¤¤¤
+++++ PhysicalDrive0: (\\.\PHYSICALDRIVE0 @ IDE) WDC WD64 00AAKS-65Z7B0 SATA Disk Device +++++
--- User ---
[MBR] c4c4dcd7e0ff40191994743b823a05da
[BSP] 5cc2a49f4fc5e593aae83aadff6677de : Windows Vista/7/8 MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 2048 | Size: 100 Mo
1 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 206911 | Size: 598453 Mo
2 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 1225840640 | Size: 11923 Mo
User = LL1 ... OK!
User = LL2 ... OK!
Dokončeno : << RKreport[0]_S_12302013_094945.txt >>
Re: Prosba o kontrolu logu.
Znovu spustte RogueKiller jako spravce (pokud jste ho jeste nezavrel/a, rovnou kliknete na napis Smazat)Probehne kratoucky testik a pak se zpristupni vpravo nahore tlacitko Prohledat. Na to kliknete a probehne dalsi test.
Po dokonceni kliknete na napis Smazat.
Pak kliknete na napis Zprava a objevi se log. Ten mi sem vlozte.
Pak kliknete na napis Oprava Host a Zprava.
Objevi se dalsi log. I ten mi sem vlozte.
Pokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Re: Prosba o kontrolu logu.
Márty84 píše:
Probehne kratoucky testik a pak se zpristupni vpravo nahore tlacitko Prohledat. Na to kliknete a probehne dalsi test.
Po dokonceni kliknete na napis Smazat.
Pak kliknete na napis Zprava a objevi se log. Ten mi sem vlozte.
Pak kliknete na napis Oprava Host a Zprava.
Objevi se dalsi log. I ten mi sem vlozte.
Druhý log Rogue Killer
RogueKiller V8.8.0 [Dec 27 2013] by Tigzy
mail : tigzyRK<at>gmail<dot>com
Podpora : http://www.adlice.com/forum/
Webové stránky : http://www.adlice.com/softwares/roguekiller/
: http://www.adlice.com
Operační systém : Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Spuštěno v : Normální režim
Uživatel : Pavilion [Práva správce]
Mód : Odebrat -- Datum : 12/30/2013 20:52:43
| ARK || FAK || MBR |
¤¤¤ Škodlivé procesy: : 0 ¤¤¤
¤¤¤ ¤¤¤ Záznamy Registrů: : 0 ¤¤¤
¤¤¤ naplánované úlohy : 0 ¤¤¤
¤¤¤ spuštění položky : 0 ¤¤¤
¤¤¤ Webové prohlížeče : 0 ¤¤¤
¤¤¤ Browser Addons : 0 ¤¤¤
¤¤¤ Zvláštní soubory / Složky: ¤¤¤
¤¤¤ Ovladač : [NENAHRÁNO 0x0] ¤¤¤
¤¤¤ Externí včelstvo: ¤¤¤
¤¤¤ Nákaza : ¤¤¤
¤¤¤ Soubor HOSTS: ¤¤¤
--> %SystemRoot%\System32\drivers\etc\hosts
127.0.0.1 localhost
127.0.0.1 www.007guard.com
127.0.0.1 007guard.com
127.0.0.1 008i.com
127.0.0.1 www.008k.com
127.0.0.1 008k.com
127.0.0.1 www.00hq.com
127.0.0.1 00hq.com
127.0.0.1 010402.com
127.0.0.1 www.032439.com
127.0.0.1 032439.com
127.0.0.1 www.0scan.com
127.0.0.1 0scan.com
127.0.0.1 1000gratisproben.com
127.0.0.1 www.1000gratisproben.com
127.0.0.1 1001namen.com
127.0.0.1 www.1001namen.com
127.0.0.1 100888290cs.com
127.0.0.1 www.100888290cs.com
127.0.0.1 www.100sexlinks.com
[...]
¤¤¤ Kontrola MBR: ¤¤¤
+++++ PhysicalDrive0: (\\.\PHYSICALDRIVE0 @ IDE) WDC WD64 00AAKS-65Z7B0 SATA Disk Device +++++
--- User ---
[MBR] c4c4dcd7e0ff40191994743b823a05da
[BSP] 5cc2a49f4fc5e593aae83aadff6677de : Windows Vista/7/8 MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 2048 | Size: 100 Mo
1 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 206911 | Size: 598453 Mo
2 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 1225840640 | Size: 11923 Mo
User = LL1 ... OK!
User = LL2 ... OK!
Dokončeno : << RKreport[0]_D_12302013_205243.txt >>
RKreport[0]_D_12302013_205028.txt;RKreport[0]_S_12302013_094945.txt;RKreport[0]_S_12302013_205209.txt
Log-Oprava Host
RogueKiller V8.8.0 [Dec 27 2013] by Tigzy
mail : tigzyRK<at>gmail<dot>com
Podpora : http://www.adlice.com/forum/
Webové stránky : http://www.adlice.com/softwares/roguekiller/
: http://www.adlice.com
Operační systém : Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Spuštěno v : Normální režim
Uživatel : Pavilion [Práva správce]
Mód : Oprava HOSTS -- Datum : 12/30/2013 20:55:57
| ARK || FAK || MBR |
¤¤¤ Škodlivé procesy: : 0 ¤¤¤
¤¤¤ ¤¤¤ Záznamy Registrů: : 0 ¤¤¤
¤¤¤ Ovladač : [NENAHRÁNO 0x0] ¤¤¤
¤¤¤ Externí včelstvo: ¤¤¤
¤¤¤ Nákaza : ¤¤¤
¤¤¤ Soubor HOSTS: ¤¤¤
--> %SystemRoot%\System32\drivers\etc\hosts
127.0.0.1 localhost
127.0.0.1 www.007guard.com
127.0.0.1 007guard.com
127.0.0.1 008i.com
127.0.0.1 www.008k.com
127.0.0.1 008k.com
127.0.0.1 www.00hq.com
127.0.0.1 00hq.com
127.0.0.1 010402.com
127.0.0.1 www.032439.com
127.0.0.1 032439.com
127.0.0.1 www.0scan.com
127.0.0.1 0scan.com
127.0.0.1 1000gratisproben.com
127.0.0.1 www.1000gratisproben.com
127.0.0.1 1001namen.com
127.0.0.1 www.1001namen.com
127.0.0.1 100888290cs.com
127.0.0.1 www.100888290cs.com
127.0.0.1 www.100sexlinks.com
[...]
¤¤¤ Resetovaný HOSTS: ¤¤¤
127.0.0.1 localhost
Dokončeno : << RKreport[0]_H_12302013_205557.txt >>
RKreport[0]_D_12302013_205028.txt;RKreport[0]_D_12302013_205243.txt;RKreport[0]_S_12302013_094945.txt
RKreport[0]_S_12302013_205209.txt
Re: Prosba o kontrolu logu.
Dejte novy log z RSIT
Pokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Re: Prosba o kontrolu logu.
Márty84 píše:Dejte novy log z RSIT
Nový log.RSIT
Logfile of random's system information tool 1.08 (written by random/random)
Run by Pavilion at 2013-12-31 11:07:04
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 496 GB (83%) free of 598 GB
Total RAM: 3839 MB (62% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 11:07:15, on 31.12.2013
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.16428)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\Canon\Solution Menu EX\CNSEMAIN.EXE
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files\trend micro\Pavilion.exe
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: Canon Easy-WebPrint EX BHO - {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O4 - HKLM\..\Run: [CanonSolutionMenuEx] c:\program files (x86)\canon\solution menu ex\cnsemain.exe /logon
O8 - Extra context menu item: Free YouTube to MP3 Converter - C:\Users\Pavilion\AppData\Roaming\DVDVideoSoftIEHelpers\freeyoutubetomp3converter.htm
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: Autodesk Content Service - Autodesk, Inc. - C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: Easybits Services for Windows (ezSharedSvc) - EasyBits Software AS - C:\Windows\System32\ezSharedSvcHost.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: FLEXnet Licensing Service 64 - Flexera Software, Inc. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - c:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: PDF Document Manager (pdfcDispatcher) - PDF Complete Inc - C:\Program Files (x86)\PDF Complete\pdfsvc.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 5791 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
winlogon.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
"c:\Program Files\Microsoft Security Client\MsMpEng.exe"
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
atieclxx
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe"
C:\Windows\SysWOW64\ezSharedSvcHost.exe
"c:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe"
"C:\Program Files (x86)\PDF Complete\pdfsvc.exe" /startedbyscm:66B66708-40E2BE4D-pdfcService
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\system32\SearchIndexer.exe /Embedding
"c:\Program Files\Microsoft Security Client\NisSrv.exe"
"taskhost.exe"
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"C:\Program Files\Canon\MyPrinter\BJMYPRT.EXE" /logon
"C:\Program Files (x86)\Canon\Solution Menu EX\CNSEMAIN.EXE" /logon
C:\Windows\system32\svchost.exe -k imgsvc
C:\Windows\splwow64.exe 8192
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe"
C:\Windows\system32\svchost.exe -k SDRSVC
"C:\Users\Pavilion\Desktop\RSITx64(1).exe"
C:\Windows\system32\wbem\wmiprvse.exe
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2013-05-29 553376]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2013-05-29 211360]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3785D0AD-BFFF-47F6-BF5B-A587C162FED9}]
Canon Easy-WebPrint EX BHO - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll [2010-11-08 202144]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2013-03-14 461216]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2013-03-14 170912]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"CanonMyPrinter"=c:\program files\canon\myprinter\bjmyprt.exe [2010-03-24 2726728]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-04-04 958576]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Autodesk Sync]
C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe [2012-02-05 415680]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\avgnt]
C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe /min []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CanonMyPrinter]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CanonSolutionMenuEx]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HP Software Update]
c:\program files (x86)\hp\hp software update\hpwuschd2.exe [2008-12-08 54576]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\hpsysdrv]
c:\program files (x86)\hewlett-packard\hp odometer\hpsysdrv.exe [2008-11-20 62768]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KSS]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MSC]
c:\Program Files\Microsoft Security Client\msseces.exe [2013-10-23 1266912]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PDF Complete]
c:\program files (x86)\pdf complete\pdfsty.exe [2009-10-15 563736]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QIP Internet Guardian]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
[]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"CanonSolutionMenuEx"=c:\program files (x86)\canon\solution menu ex\cnsemain.exe [2010-04-02 1185112]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MsMpSvc]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
""=
"NoDriveTypeAutoRun"=145
"NoDrives"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"EnableShellExecuteHooks"=1
"NoDrives"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
======List of files/folders created in the last 1 months======
2013-12-30 09:49:43 ----A---- C:\Windows\system32\drivers\WUDFRd.sys.bak
2013-12-30 09:49:43 ----A---- C:\Windows\system32\drivers\WUDFPf.sys.bak
2013-12-30 09:49:43 ----A---- C:\Windows\system32\drivers\ws2ifsl.sys.bak
2013-12-30 09:49:42 ----A---- C:\Windows\system32\drivers\wmilib.sys.bak
2013-12-30 09:49:42 ----A---- C:\Windows\system32\drivers\wmiacpi.sys.bak
2013-12-30 09:49:42 ----A---- C:\Windows\system32\drivers\winusb.sys.bak
2013-12-30 09:49:42 ----A---- C:\Windows\system32\drivers\wimmount.sys.bak
2013-12-30 09:49:42 ----A---- C:\Windows\system32\drivers\wfplwf.sys.bak
2013-12-30 09:49:42 ----A---- C:\Windows\system32\drivers\WdfLdr.sys.bak
2013-12-30 09:49:42 ----A---- C:\Windows\system32\drivers\Wdf01000.sys.bak
2013-12-30 09:49:42 ----A---- C:\Windows\system32\drivers\wd.sys.bak
2013-12-30 09:49:42 ----A---- C:\Windows\system32\drivers\watchdog.sys.bak
2013-12-30 09:49:41 ----A---- C:\Windows\system32\drivers\wanarp.sys.bak
2013-12-30 09:49:41 ----A---- C:\Windows\system32\drivers\wacompen.sys.bak
2013-12-30 09:49:41 ----A---- C:\Windows\system32\drivers\vwifimp.sys.bak
2013-12-30 09:49:41 ----A---- C:\Windows\system32\drivers\vwififlt.sys.bak
2013-12-30 09:49:41 ----A---- C:\Windows\system32\drivers\vwifibus.sys.bak
2013-12-30 09:49:41 ----A---- C:\Windows\system32\drivers\vsmraid.sys.bak
2013-12-30 09:49:40 ----A---- C:\Windows\system32\drivers\volsnap.sys.bak
2013-12-30 09:49:40 ----A---- C:\Windows\system32\drivers\volmgrx.sys.bak
2013-12-30 09:49:40 ----A---- C:\Windows\system32\drivers\volmgr.sys.bak
2013-12-30 09:49:40 ----A---- C:\Windows\system32\drivers\videoprt.sys.bak
2013-12-30 09:49:40 ----A---- C:\Windows\system32\drivers\viaide.sys.bak
2013-12-30 09:49:40 ----A---- C:\Windows\system32\drivers\vhdmp.sys.bak
2013-12-30 09:49:39 ----A---- C:\Windows\system32\drivers\vgapnp.sys.bak
2013-12-30 09:49:39 ----A---- C:\Windows\system32\drivers\vga.sys.bak
2013-12-30 09:49:39 ----A---- C:\Windows\system32\drivers\vdrvroot.sys.bak
2013-12-30 09:49:39 ----A---- C:\Windows\system32\drivers\usbuhci.sys.bak
2013-12-30 09:49:39 ----A---- C:\Windows\system32\drivers\USBSTOR.SYS.bak
2013-12-30 09:49:39 ----A---- C:\Windows\system32\drivers\usbscan.sys.bak
2013-12-30 09:49:39 ----A---- C:\Windows\system32\drivers\usbrpm.sys.bak
2013-12-30 09:49:39 ----A---- C:\Windows\system32\drivers\usbprint.sys.bak
2013-12-30 09:49:38 ----A---- C:\Windows\system32\drivers\usbport.sys.bak
2013-12-30 09:49:38 ----A---- C:\Windows\system32\drivers\usbohci.sys.bak
2013-12-30 09:49:38 ----A---- C:\Windows\system32\drivers\usbhub.sys.bak
2013-12-30 09:49:38 ----A---- C:\Windows\system32\drivers\usbfilter.sys.bak
2013-12-30 09:49:38 ----A---- C:\Windows\system32\drivers\usbehci.sys.bak
2013-12-30 09:49:38 ----A---- C:\Windows\system32\drivers\usbd.sys.bak
2013-12-30 09:49:38 ----A---- C:\Windows\system32\drivers\usbcir.sys.bak
2013-12-30 09:49:38 ----A---- C:\Windows\system32\drivers\usbccgp.sys.bak
2013-12-30 09:49:38 ----A---- C:\Windows\system32\drivers\USBCAMD2.sys.bak
2013-12-30 09:49:37 ----A---- C:\Windows\system32\drivers\USBAUDIO.sys.bak
2013-12-30 09:49:37 ----A---- C:\Windows\system32\drivers\usb8023.sys.bak
2013-12-30 09:49:37 ----A---- C:\Windows\system32\drivers\umpass.sys.bak
2013-12-30 09:49:37 ----A---- C:\Windows\system32\drivers\umbus.sys.bak
2013-12-30 09:49:37 ----A---- C:\Windows\system32\drivers\ULIAGPKX.SYS.bak
2013-12-30 09:49:37 ----A---- C:\Windows\system32\drivers\udfs.sys.bak
2013-12-30 09:49:37 ----A---- C:\Windows\system32\drivers\UAGP35.SYS.bak
2013-12-30 09:49:36 ----A---- C:\Windows\system32\drivers\tunnel.sys.bak
2013-12-30 09:49:36 ----A---- C:\Windows\system32\drivers\TsUsbFlt.sys.bak
2013-12-30 09:49:36 ----A---- C:\Windows\system32\drivers\tssecsrv.sys.bak
2013-12-30 09:49:36 ----A---- C:\Windows\system32\drivers\termdd.sys.bak
2013-12-30 09:49:36 ----A---- C:\Windows\system32\drivers\tdx.sys.bak
2013-12-30 09:49:36 ----A---- C:\Windows\system32\drivers\tdtcp.sys.bak
2013-12-30 09:49:36 ----A---- C:\Windows\system32\drivers\tdpipe.sys.bak
2013-12-30 09:49:36 ----A---- C:\Windows\system32\drivers\tdi.sys.bak
2013-12-30 09:49:35 ----A---- C:\Windows\system32\drivers\tcpipreg.sys.bak
2013-12-30 09:49:35 ----A---- C:\Windows\system32\drivers\tcpip.sys.bak
2013-12-30 09:49:35 ----A---- C:\Windows\system32\drivers\tape.sys.bak
2013-12-30 09:49:35 ----A---- C:\Windows\system32\drivers\swenum.sys.bak
2013-12-30 09:49:35 ----A---- C:\Windows\system32\drivers\stream.sys.bak
2013-12-30 09:49:34 ----A---- C:\Windows\system32\drivers\storport.sys.bak
2013-12-30 09:49:34 ----A---- C:\Windows\system32\drivers\stexstor.sys.bak
2013-12-30 09:49:34 ----A---- C:\Windows\system32\drivers\srvnet.sys.bak
2013-12-30 09:49:34 ----A---- C:\Windows\system32\drivers\srv2.sys.bak
2013-12-30 09:49:34 ----A---- C:\Windows\system32\drivers\srv.sys.bak
2013-12-30 09:49:33 ----A---- C:\Windows\system32\drivers\spsys.sys.bak
2013-12-30 09:49:33 ----A---- C:\Windows\system32\drivers\spldr.sys.bak
2013-12-30 09:49:33 ----A---- C:\Windows\system32\drivers\smclib.sys.bak
2013-12-30 09:49:33 ----A---- C:\Windows\system32\drivers\smb.sys.bak
2013-12-30 09:49:33 ----A---- C:\Windows\system32\drivers\sisraid4.sys.bak
2013-12-30 09:49:33 ----A---- C:\Windows\system32\drivers\sisraid2.sys.bak
2013-12-30 09:49:33 ----A---- C:\Windows\system32\drivers\sfloppy.sys.bak
2013-12-30 09:49:33 ----A---- C:\Windows\system32\drivers\sffp_sd.sys.bak
2013-12-30 09:49:33 ----A---- C:\Windows\system32\drivers\sffp_mmc.sys.bak
2013-12-30 09:49:33 ----A---- C:\Windows\system32\drivers\sffdisk.sys.bak
2013-12-30 09:49:32 ----A---- C:\Windows\system32\drivers\sermouse.sys.bak
2013-12-30 09:49:32 ----A---- C:\Windows\system32\drivers\serial.sys.bak
2013-12-30 09:49:32 ----A---- C:\Windows\system32\drivers\serenum.sys.bak
2013-12-30 09:49:32 ----A---- C:\Windows\system32\drivers\secdrv.sys.bak
2013-12-30 09:49:32 ----A---- C:\Windows\system32\drivers\scsiport.sys.bak
2013-12-30 09:49:32 ----A---- C:\Windows\system32\drivers\scfilter.sys.bak
2013-12-30 09:49:32 ----A---- C:\Windows\system32\drivers\sbp2port.sys.bak
2013-12-30 09:49:31 ----A---- C:\Windows\system32\drivers\RtsUStor.sys.bak
2013-12-30 09:49:31 ----A---- C:\Windows\system32\drivers\RTKVHD64.sys.bak
2013-12-30 09:49:31 ----A---- C:\Windows\system32\drivers\Rt64win7.sys.bak
2013-12-30 09:49:31 ----A---- C:\Windows\system32\drivers\rspndr.sys.bak
2013-12-30 09:49:31 ----A---- C:\Windows\system32\drivers\rootmdm.sys.bak
2013-12-30 09:49:31 ----A---- C:\Windows\system32\drivers\RNDISMP.sys.bak
2013-12-30 09:49:31 ----A---- C:\Windows\system32\drivers\rmcast.sys.bak
2013-12-30 09:49:30 ----A---- C:\Windows\system32\drivers\rdyboost.sys.bak
2013-12-30 09:49:30 ----A---- C:\Windows\system32\drivers\rdpwd.sys.bak
2013-12-30 09:49:30 ----A---- C:\Windows\system32\drivers\rdpvideominiport.sys.bak
2013-12-30 09:49:30 ----A---- C:\Windows\system32\drivers\RDPREFMP.sys.bak
2013-12-30 09:49:30 ----A---- C:\Windows\system32\drivers\RDPENCDD.sys.bak
2013-12-30 09:49:30 ----A---- C:\Windows\system32\drivers\RDPCDD.sys.bak
2013-12-30 09:49:30 ----A---- C:\Windows\system32\drivers\rdpbus.sys.bak
2013-12-30 09:49:30 ----A---- C:\Windows\system32\drivers\rdbss.sys.bak
2013-12-30 09:49:29 ----A---- C:\Windows\system32\drivers\rassstp.sys.bak
2013-12-30 09:49:29 ----A---- C:\Windows\system32\drivers\raspptp.sys.bak
2013-12-30 09:49:29 ----A---- C:\Windows\system32\drivers\raspppoe.sys.bak
2013-12-30 09:49:29 ----A---- C:\Windows\system32\drivers\rasl2tp.sys.bak
2013-12-30 09:49:29 ----A---- C:\Windows\system32\drivers\rasacd.sys.bak
2013-12-30 09:49:29 ----A---- C:\Windows\system32\drivers\qwavedrv.sys.bak
2013-12-30 09:49:29 ----A---- C:\Windows\system32\drivers\ql40xx.sys.bak
2013-12-30 09:49:28 ----A---- C:\Windows\system32\drivers\ql2300.sys.bak
2013-12-30 09:49:28 ----A---- C:\Windows\system32\drivers\processr.sys.bak
2013-12-30 09:49:28 ----A---- C:\Windows\system32\drivers\portcls.sys.bak
2013-12-30 09:49:28 ----A---- C:\Windows\system32\drivers\PEAuth.sys.bak
2013-12-30 09:49:28 ----A---- C:\Windows\system32\drivers\pcw.sys.bak
2013-12-30 09:49:28 ----A---- C:\Windows\system32\drivers\pcmcia.sys.bak
2013-12-30 09:49:28 ----A---- C:\Windows\system32\drivers\pciidex.sys.bak
2013-12-30 09:49:27 ----A---- C:\Windows\system32\drivers\pciide.sys.bak
2013-12-30 09:49:27 ----A---- C:\Windows\system32\drivers\pci.sys.bak
2013-12-30 09:49:27 ----A---- C:\Windows\system32\drivers\partmgr.sys.bak
2013-12-30 09:49:27 ----A---- C:\Windows\system32\drivers\parport.sys.bak
2013-12-30 09:49:27 ----A---- C:\Windows\system32\drivers\pacer.sys.bak
2013-12-30 09:49:27 ----A---- C:\Windows\system32\drivers\ohci1394.sys.bak
2013-12-30 09:49:26 ----A---- C:\Windows\system32\drivers\nwifi.sys.bak
2013-12-30 09:49:26 ----A---- C:\Windows\system32\drivers\nvstor.sys.bak
2013-12-30 09:49:26 ----A---- C:\Windows\system32\drivers\nvraid.sys.bak
2013-12-30 09:49:26 ----A---- C:\Windows\system32\drivers\NV_AGP.SYS.bak
2013-12-30 09:49:26 ----A---- C:\Windows\system32\drivers\null.sys.bak
2013-12-30 09:49:25 ----A---- C:\Windows\system32\drivers\ntfs.sys.bak
2013-12-30 09:49:25 ----A---- C:\Windows\system32\drivers\nsiproxy.sys.bak
2013-12-30 09:49:25 ----A---- C:\Windows\system32\drivers\npfs.sys.bak
2013-12-30 09:49:25 ----A---- C:\Windows\system32\drivers\NisDrvWFP.sys.bak
2013-12-30 09:49:25 ----A---- C:\Windows\system32\drivers\nfrd960.sys.bak
2013-12-30 09:49:25 ----A---- C:\Windows\system32\drivers\netio.sys.bak
2013-12-30 09:49:25 ----A---- C:\Windows\system32\drivers\netbt.sys.bak
2013-12-30 09:49:24 ----A---- C:\Windows\system32\drivers\netbios.sys.bak
2013-12-30 09:49:24 ----A---- C:\Windows\system32\drivers\ndproxy.sys.bak
2013-12-30 09:49:24 ----A---- C:\Windows\system32\drivers\ndiswan.sys.bak
2013-12-30 09:49:24 ----A---- C:\Windows\system32\drivers\ndisuio.sys.bak
2013-12-30 09:49:24 ----A---- C:\Windows\system32\drivers\ndistapi.sys.bak
2013-12-30 09:49:24 ----A---- C:\Windows\system32\drivers\ndiscap.sys.bak
2013-12-30 09:49:24 ----A---- C:\Windows\system32\drivers\ndis.sys.bak
2013-12-30 09:49:23 ----A---- C:\Windows\system32\drivers\mup.sys.bak
2013-12-30 09:49:23 ----A---- C:\Windows\system32\drivers\MTConfig.sys.bak
2013-12-30 09:49:23 ----A---- C:\Windows\system32\drivers\mstee.sys.bak
2013-12-30 09:49:23 ----A---- C:\Windows\system32\drivers\mssmbios.sys.bak
2013-12-30 09:49:23 ----A---- C:\Windows\system32\drivers\msrpc.sys.bak
2013-12-30 09:49:23 ----A---- C:\Windows\system32\drivers\mspqm.sys.bak
2013-12-30 09:49:23 ----A---- C:\Windows\system32\drivers\mspclock.sys.bak
2013-12-30 09:49:23 ----A---- C:\Windows\system32\drivers\mskssrv.sys.bak
2013-12-30 09:49:23 ----A---- C:\Windows\system32\drivers\msiscsi.sys.bak
2013-12-30 09:49:23 ----A---- C:\Windows\system32\drivers\msisadrv.sys.bak
2013-12-30 09:49:23 ----A---- C:\Windows\system32\drivers\mshidkmdf.sys.bak
2013-12-30 09:49:22 ----A---- C:\Windows\system32\drivers\msfs.sys.bak
2013-12-30 09:49:22 ----A---- C:\Windows\system32\drivers\msdsm.sys.bak
2013-12-30 09:49:22 ----A---- C:\Windows\system32\drivers\msahci.sys.bak
2013-12-30 09:49:22 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys.bak
2013-12-30 09:49:22 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys.bak
2013-12-30 09:49:22 ----A---- C:\Windows\system32\drivers\mrxsmb.sys.bak
2013-12-30 09:49:21 ----A---- C:\Windows\system32\drivers\mrxdav.sys.bak
2013-12-30 09:49:21 ----A---- C:\Windows\system32\drivers\mpsdrv.sys.bak
2013-12-30 09:49:21 ----A---- C:\Windows\system32\drivers\mpio.sys.bak
2013-12-30 09:49:21 ----A---- C:\Windows\system32\drivers\MpFilter.sys.bak
2013-12-30 09:49:21 ----A---- C:\Windows\system32\drivers\mountmgr.sys.bak
2013-12-30 09:49:21 ----A---- C:\Windows\system32\drivers\mouhid.sys.bak
2013-12-30 09:49:21 ----A---- C:\Windows\system32\drivers\mouclass.sys.bak
2013-12-30 09:49:20 ----A---- C:\Windows\system32\drivers\monitor.sys.bak
2013-12-30 09:49:20 ----A---- C:\Windows\system32\drivers\modem.sys.bak
2013-12-30 09:49:20 ----A---- C:\Windows\system32\drivers\MegaSR.sys.bak
2013-12-30 09:49:20 ----A---- C:\Windows\system32\drivers\megasas.sys.bak
2013-12-30 09:49:20 ----A---- C:\Windows\system32\drivers\mcd.sys.bak
2013-12-30 09:49:20 ----A---- C:\Windows\system32\drivers\luafv.sys.bak
2013-12-30 09:49:20 ----A---- C:\Windows\system32\drivers\lsi_scsi.sys.bak
2013-12-30 09:49:19 ----A---- C:\Windows\system32\drivers\lsi_sas2.sys.bak
2013-12-30 09:49:19 ----A---- C:\Windows\system32\drivers\lsi_sas.sys.bak
2013-12-30 09:49:19 ----A---- C:\Windows\system32\drivers\lsi_fc.sys.bak
2013-12-30 09:49:19 ----A---- C:\Windows\system32\drivers\lltdio.sys.bak
2013-12-30 09:49:19 ----A---- C:\Windows\system32\drivers\ksthunk.sys.bak
2013-12-30 09:49:19 ----A---- C:\Windows\system32\drivers\ksecpkg.sys.bak
2013-12-30 09:49:19 ----A---- C:\Windows\system32\drivers\ksecdd.sys.bak
2013-12-30 09:49:19 ----A---- C:\Windows\system32\drivers\ks.sys.bak
2013-12-30 09:49:19 ----A---- C:\Windows\system32\drivers\KORGUM64.SYS.bak
2013-12-30 09:49:18 ----A---- C:\Windows\system32\drivers\kbdhid.sys.bak
2013-12-30 09:49:18 ----A---- C:\Windows\system32\drivers\kbdclass.sys.bak
2013-12-30 09:49:18 ----A---- C:\Windows\system32\drivers\isapnp.sys.bak
2013-12-30 09:49:18 ----A---- C:\Windows\system32\drivers\irenum.sys.bak
2013-12-30 09:49:18 ----A---- C:\Windows\system32\drivers\irda.sys.bak
2013-12-30 09:49:18 ----A---- C:\Windows\system32\drivers\ipnat.sys.bak
2013-12-30 09:49:18 ----A---- C:\Windows\system32\drivers\IPMIDrv.sys.bak
2013-12-30 09:49:18 ----A---- C:\Windows\system32\drivers\ipfltdrv.sys.bak
2013-12-30 09:49:17 ----A---- C:\Windows\system32\drivers\intelppm.sys.bak
2013-12-30 09:49:17 ----A---- C:\Windows\system32\drivers\intelide.sys.bak
2013-12-30 09:49:17 ----A---- C:\Windows\system32\drivers\iirsp.sys.bak
2013-12-30 09:49:17 ----A---- C:\Windows\system32\drivers\iaStorV.sys.bak
2013-12-30 09:49:17 ----A---- C:\Windows\system32\drivers\i8042prt.sys.bak
2013-12-30 09:49:17 ----A---- C:\Windows\system32\drivers\hwpolicy.sys.bak
2013-12-30 09:49:17 ----A---- C:\Windows\system32\drivers\http.sys.bak
2013-12-30 09:49:17 ----A---- C:\Windows\system32\drivers\HpSAMD.sys.bak
2013-12-30 09:49:16 ----A---- C:\Windows\system32\drivers\hidusb.sys.bak
2013-12-30 09:49:16 ----A---- C:\Windows\system32\drivers\hidparse.sys.bak
2013-12-30 09:49:16 ----A---- C:\Windows\system32\drivers\hidir.sys.bak
2013-12-30 09:49:16 ----A---- C:\Windows\system32\drivers\hidclass.sys.bak
2013-12-30 09:49:16 ----A---- C:\Windows\system32\drivers\hidbth.sys.bak
2013-12-30 09:49:16 ----A---- C:\Windows\system32\drivers\hidbatt.sys.bak
2013-12-30 09:49:16 ----A---- C:\Windows\system32\drivers\hdaudbus.sys.bak
2013-12-30 09:49:16 ----A---- C:\Windows\system32\drivers\hcw85cir.sys.bak
2013-12-30 09:49:16 ----A---- C:\Windows\system32\drivers\GAGP30KX.SYS.bak
2013-12-30 09:49:15 ----A---- C:\Windows\system32\drivers\FWPKCLNT.SYS.bak
2013-12-30 09:49:15 ----A---- C:\Windows\system32\drivers\fvevol.sys.bak
2013-12-30 09:49:15 ----A---- C:\Windows\system32\drivers\fsdepends.sys.bak
2013-12-30 09:49:15 ----A---- C:\Windows\system32\drivers\fs_rec.sys.bak
2013-12-30 09:49:15 ----A---- C:\Windows\system32\drivers\fltMgr.sys.bak
2013-12-30 09:49:15 ----A---- C:\Windows\system32\drivers\flpydisk.sys.bak
2013-12-30 09:49:15 ----A---- C:\Windows\system32\drivers\filetrace.sys.bak
2013-12-30 09:49:15 ----A---- C:\Windows\system32\drivers\fileinfo.sys.bak
2013-12-30 09:49:15 ----A---- C:\Windows\system32\drivers\fdc.sys.bak
2013-12-30 09:49:15 ----A---- C:\Windows\system32\drivers\fastfat.sys.bak
2013-12-30 09:49:14 ----A---- C:\Windows\system32\drivers\exfat.sys.bak
2013-12-30 09:49:14 ----A---- C:\Windows\system32\drivers\evbda.sys.bak
2013-12-30 09:49:14 ----A---- C:\Windows\system32\drivers\errdev.sys.bak
2013-12-30 09:49:14 ----A---- C:\Windows\system32\drivers\elxstor.sys.bak
2013-12-30 09:49:14 ----A---- C:\Windows\system32\drivers\dxgmms1.sys.bak
2013-12-30 09:49:13 ----A---- C:\Windows\system32\drivers\dxgkrnl.sys.bak
2013-12-30 09:49:13 ----A---- C:\Windows\system32\drivers\dxg.sys.bak
2013-12-30 09:49:13 ----A---- C:\Windows\system32\drivers\dxapi.sys.bak
2013-12-30 09:49:13 ----A---- C:\Windows\system32\drivers\dumpfve.sys.bak
2013-12-30 09:49:13 ----A---- C:\Windows\system32\drivers\Dumpata.sys.bak
2013-12-30 09:49:13 ----A---- C:\Windows\system32\drivers\drmkaud.sys.bak
2013-12-30 09:49:13 ----A---- C:\Windows\system32\drivers\drmk.sys.bak
2013-12-30 09:49:13 ----A---- C:\Windows\system32\drivers\Diskdump.sys.bak
2013-12-30 09:49:13 ----A---- C:\Windows\system32\drivers\disk.sys.bak
2013-12-30 09:49:12 ----A---- C:\Windows\system32\drivers\discache.sys.bak
2013-12-30 09:49:12 ----A---- C:\Windows\system32\drivers\dfsc.sys.bak
2013-12-30 09:49:12 ----A---- C:\Windows\system32\drivers\crcdisk.sys.bak
2013-12-30 09:49:12 ----A---- C:\Windows\system32\drivers\crashdmp.sys.bak
2013-12-30 09:49:12 ----A---- C:\Windows\system32\drivers\cqcpu.sys.bak
2013-12-30 09:49:12 ----A---- C:\Windows\system32\drivers\cpqdfw.sys.bak
2013-12-30 09:49:12 ----A---- C:\Windows\system32\drivers\CompositeBus.sys.bak
2013-12-30 09:49:11 ----A---- C:\Windows\system32\drivers\compbatt.sys.bak
2013-12-30 09:49:11 ----A---- C:\Windows\system32\drivers\cng.sys.bak
2013-12-30 09:49:10 ----A---- C:\Windows\system32\drivers\cmdide.sys.bak
2013-12-30 09:49:10 ----A---- C:\Windows\system32\drivers\CmBatt.sys.bak
2013-12-30 09:49:10 ----A---- C:\Windows\system32\drivers\Classpnp.sys.bak
2013-12-30 09:49:10 ----A---- C:\Windows\system32\drivers\circlass.sys.bak
2013-12-30 09:49:10 ----A---- C:\Windows\system32\drivers\cdrom.sys.bak
2013-12-30 09:49:10 ----A---- C:\Windows\system32\drivers\cdfs.sys.bak
2013-12-30 09:49:10 ----A---- C:\Windows\system32\drivers\bxvbda.sys.bak
2013-12-30 09:49:10 ----A---- C:\Windows\system32\drivers\bthmodem.sys.bak
2013-12-30 09:49:09 ----A---- C:\Windows\system32\drivers\BrUsbSer.sys.bak
2013-12-30 09:49:09 ----A---- C:\Windows\system32\drivers\BrUsbMdm.sys.bak
2013-12-30 09:49:09 ----A---- C:\Windows\system32\drivers\BrSerWdm.sys.bak
2013-12-30 09:49:09 ----A---- C:\Windows\system32\drivers\BrSerId.sys.bak
2013-12-30 09:49:09 ----A---- C:\Windows\system32\drivers\bridge.sys.bak
2013-12-30 09:49:09 ----A---- C:\Windows\system32\drivers\BrFiltUp.sys.bak
2013-12-30 09:49:09 ----A---- C:\Windows\system32\drivers\BrFiltLo.sys.bak
2013-12-30 09:49:09 ----A---- C:\Windows\system32\drivers\bowser.sys.bak
2013-12-30 09:49:09 ----A---- C:\Windows\system32\drivers\blbdrive.sys.bak
2013-12-30 09:49:09 ----A---- C:\Windows\system32\drivers\beep.sys.bak
2013-12-30 09:49:09 ----A---- C:\Windows\system32\drivers\battc.sys.bak
2013-12-30 09:49:08 ----A---- C:\Windows\system32\drivers\b57nd60a.sys.bak
2013-12-30 09:49:08 ----A---- C:\Windows\system32\drivers\atipmdag.sys.bak
2013-12-30 09:49:07 ----A---- C:\Windows\system32\drivers\AtiPcie64.sys.bak
2013-12-30 09:49:07 ----A---- C:\Windows\system32\drivers\atikmpag.sys.bak
2013-12-30 09:49:07 ----A---- C:\Windows\system32\drivers\atikmdag.sys.bak
2013-12-30 09:49:07 ----A---- C:\Windows\system32\drivers\ataport.sys.bak
2013-12-30 09:49:07 ----A---- C:\Windows\system32\drivers\atapi.sys.bak
2013-12-30 09:49:06 ----A---- C:\Windows\system32\drivers\asyncmac.sys.bak
2013-12-30 09:49:06 ----A---- C:\Windows\system32\drivers\arcsas.sys.bak
2013-12-30 09:49:06 ----A---- C:\Windows\system32\drivers\arc.sys.bak
2013-12-30 09:49:06 ----A---- C:\Windows\system32\drivers\appid.sys.bak
2013-12-30 09:49:06 ----A---- C:\Windows\system32\drivers\AmUStor.sys.bak
2013-12-30 09:49:06 ----A---- C:\Windows\system32\drivers\amdxata.sys.bak
2013-12-30 09:49:06 ----A---- C:\Windows\system32\drivers\amdsbs.sys.bak
2013-12-30 09:49:06 ----A---- C:\Windows\system32\drivers\amdsata.sys.bak
2013-12-30 09:49:06 ----A---- C:\Windows\system32\drivers\amdppm.sys.bak
2013-12-30 09:49:06 ----A---- C:\Windows\system32\drivers\amdk8.sys.bak
2013-12-30 09:49:05 ----A---- C:\Windows\system32\drivers\amdide.sys.bak
2013-12-30 09:49:05 ----A---- C:\Windows\system32\drivers\aliide.sys.bak
2013-12-30 09:49:05 ----A---- C:\Windows\system32\drivers\AGP440.sys.bak
2013-12-30 09:49:05 ----A---- C:\Windows\system32\drivers\agilevpn.sys.bak
2013-12-30 09:49:05 ----A---- C:\Windows\system32\drivers\afd.sys.bak
2013-12-30 09:49:05 ----A---- C:\Windows\system32\drivers\adpu320.sys.bak
2013-12-30 09:49:05 ----A---- C:\Windows\system32\drivers\adpahci.sys.bak
2013-12-30 09:49:05 ----A---- C:\Windows\system32\drivers\adp94xx.sys.bak
2013-12-30 09:49:05 ----A---- C:\Windows\system32\drivers\acpipmi.sys.bak
2013-12-30 09:49:05 ----A---- C:\Windows\system32\drivers\acpi.sys.bak
2013-12-30 09:49:04 ----A---- C:\Windows\system32\drivers\1394ohci.sys.bak
2013-12-30 09:49:04 ----A---- C:\Windows\system32\drivers\1394bus.sys.bak
2013-12-29 20:00:58 ----D---- C:\Users\Pavilion\AppData\Roaming\Malwarebytes
2013-12-29 20:00:23 ----D---- C:\ProgramData\Malwarebytes
2013-12-20 19:54:09 ----D---- C:\Program Files (x86)\Mozilla Firefox
2013-12-15 01:31:40 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2013-12-15 01:31:39 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2013-12-15 01:31:39 ----A---- C:\Windows\SYSWOW64\ieui.dll
2013-12-15 01:31:39 ----A---- C:\Windows\system32\jsproxy.dll
2013-12-15 01:31:39 ----A---- C:\Windows\system32\ieui.dll
2013-12-15 01:31:38 ----A---- C:\Windows\system32\ieUnatt.exe
2013-12-15 01:31:38 ----A---- C:\Windows\system32\iesetup.dll
2013-12-15 01:31:38 ----A---- C:\Windows\system32\iernonce.dll
2013-12-15 01:31:38 ----A---- C:\Windows\system32\ieetwproxystub.dll
2013-12-15 01:31:38 ----A---- C:\Windows\system32\ieetwcollector.exe
2013-12-15 01:31:38 ----A---- C:\Windows\system32\ie4uinit.exe
2013-12-15 01:31:37 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2013-12-15 01:31:37 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2013-12-15 01:31:37 ----A---- C:\Windows\system32\mshtml.dll
2013-12-15 01:31:37 ----A---- C:\Windows\system32\jscript9diag.dll
2013-12-15 01:31:37 ----A---- C:\Windows\system32\ieapfltr.dll
2013-12-15 01:31:36 ----A---- C:\Windows\SYSWOW64\wininet.dll
2013-12-15 01:31:36 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2013-12-15 01:31:36 ----A---- C:\Windows\system32\iertutil.dll
2013-12-15 01:31:35 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2013-12-15 01:31:35 ----A---- C:\Windows\system32\wininet.dll
2013-12-15 01:31:35 ----A---- C:\Windows\system32\urlmon.dll
2013-12-15 01:31:33 ----A---- C:\Windows\system32\ieframe.dll
2013-12-15 01:31:32 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2013-12-15 01:31:31 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2013-12-15 01:31:31 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2013-12-15 01:31:31 ----A---- C:\Windows\system32\jscript9.dll
2013-12-14 02:09:44 ----A---- C:\Windows\system32\IEUDINIT.EXE
2013-12-14 01:58:43 ----A---- C:\Windows\SYSWOW64\elshyph.dll
2013-12-14 01:58:43 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2013-12-14 01:58:37 ----A---- C:\Windows\SYSWOW64\RegisterIEPKEYs.exe
2013-12-14 01:58:37 ----A---- C:\Windows\SYSWOW64\msrating.dll
2013-12-14 01:58:37 ----A---- C:\Windows\SYSWOW64\msls31.dll
2013-12-14 01:58:37 ----A---- C:\Windows\SYSWOW64\jsIntl.dll
2013-12-14 01:58:37 ----A---- C:\Windows\system32\elshyph.dll
2013-12-14 01:58:36 ----A---- C:\Windows\SYSWOW64\url.dll
2013-12-14 01:58:36 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2013-12-14 01:58:36 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2013-12-14 01:58:36 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2013-12-14 01:58:36 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2013-12-14 01:58:35 ----A---- C:\Windows\SYSWOW64\wextract.exe
2013-12-14 01:58:35 ----A---- C:\Windows\SYSWOW64\webcheck.dll
2013-12-14 01:58:35 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2013-12-14 01:58:35 ----A---- C:\Windows\SYSWOW64\pngfilt.dll
2013-12-14 01:58:35 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2013-12-14 01:58:35 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2013-12-14 01:58:35 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2013-12-14 01:58:35 ----A---- C:\Windows\SYSWOW64\licmgr10.dll
2013-12-14 01:58:35 ----A---- C:\Windows\SYSWOW64\inseng.dll
2013-12-14 01:58:35 ----A---- C:\Windows\SYSWOW64\iexpress.exe
2013-12-14 01:58:35 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2013-12-14 01:58:35 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2013-12-14 01:58:35 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2013-12-14 01:58:35 ----A---- C:\Windows\SYSWOW64\icardie.dll
2013-12-14 01:58:34 ----A---- C:\Windows\SYSWOW64\SetIEInstalledDate.exe
2013-12-14 01:58:34 ----A---- C:\Windows\SYSWOW64\occache.dll
2013-12-14 01:58:34 ----A---- C:\Windows\SYSWOW64\mshtmler.dll
2013-12-14 01:58:34 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2013-12-14 01:58:34 ----A---- C:\Windows\SYSWOW64\mshta.exe
2013-12-14 01:58:34 ----A---- C:\Windows\SYSWOW64\msfeedssync.exe
2013-12-14 01:58:34 ----A---- C:\Windows\SYSWOW64\msfeedsbs.dll
2013-12-14 01:58:34 ----A---- C:\Windows\SYSWOW64\jscript.dll
2013-12-14 01:58:34 ----A---- C:\Windows\SYSWOW64\imgutil.dll
2013-12-14 01:58:34 ----A---- C:\Windows\SYSWOW64\iesysprep.dll
2013-12-14 01:58:34 ----A---- C:\Windows\SYSWOW64\iepeers.dll
2013-12-14 01:58:34 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2013-12-14 01:58:34 ----A---- C:\Windows\SYSWOW64\IEAdvpack.dll
2013-12-14 01:58:33 ----A---- C:\Windows\system32\RegisterIEPKEYs.exe
2013-12-14 01:58:33 ----A---- C:\Windows\system32\msrating.dll
2013-12-14 01:58:33 ----A---- C:\Windows\system32\msls31.dll
2013-12-14 01:58:33 ----A---- C:\Windows\system32\msfeedssync.exe
2013-12-14 01:58:33 ----A---- C:\Windows\system32\msfeedsbs.dll
2013-12-14 01:58:33 ----A---- C:\Windows\system32\jsIntl.dll
2013-12-14 01:58:33 ----A---- C:\Windows\system32\IEAdvpack.dll
2013-12-14 01:58:32 ----A---- C:\Windows\system32\SetIEInstalledDate.exe
2013-12-14 01:58:32 ----A---- C:\Windows\system32\mshtmler.dll
2013-12-14 01:58:32 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2013-12-14 01:58:32 ----A---- C:\Windows\system32\iesysprep.dll
2013-12-14 01:58:31 ----A---- C:\Windows\system32\wextract.exe
2013-12-14 01:58:31 ----A---- C:\Windows\system32\webcheck.dll
2013-12-14 01:58:31 ----A---- C:\Windows\system32\url.dll
2013-12-14 01:58:31 ----A---- C:\Windows\system32\mshtmlmedia.dll
2013-12-14 01:58:31 ----A---- C:\Windows\system32\mshtmled.dll
2013-12-14 01:58:31 ----A---- C:\Windows\system32\msfeeds.dll
2013-12-14 01:58:31 ----A---- C:\Windows\system32\licmgr10.dll
2013-12-14 01:58:31 ----A---- C:\Windows\system32\inseng.dll
2013-12-14 01:58:31 ----A---- C:\Windows\system32\iexpress.exe
2013-12-14 01:58:31 ----A---- C:\Windows\system32\iedkcs32.dll
2013-12-14 01:58:31 ----A---- C:\Windows\system32\icardie.dll
2013-12-14 01:58:31 ----A---- C:\Windows\system32\dxtrans.dll
2013-12-14 01:58:31 ----A---- C:\Windows\system32\dxtmsft.dll
2013-12-14 01:58:30 ----A---- C:\Windows\system32\vbscript.dll
2013-12-14 01:58:30 ----A---- C:\Windows\system32\pngfilt.dll
2013-12-14 01:58:30 ----A---- C:\Windows\system32\occache.dll
2013-12-14 01:58:30 ----A---- C:\Windows\system32\MshtmlDac.dll
2013-12-14 01:58:30 ----A---- C:\Windows\system32\mshta.exe
2013-12-14 01:58:30 ----A---- C:\Windows\system32\jscript.dll
2013-12-14 01:58:30 ----A---- C:\Windows\system32\imgutil.dll
2013-12-14 01:58:30 ----A---- C:\Windows\system32\iepeers.dll
2013-12-12 01:45:07 ----A---- C:\Windows\system32\wmploc.DLL
2013-12-12 01:45:06 ----A---- C:\Windows\SYSWOW64\wmploc.DLL
2013-12-12 01:45:06 ----A---- C:\Windows\SYSWOW64\wmp.dll
2013-12-12 01:45:04 ----A---- C:\Windows\system32\wmp.dll
2013-12-11 11:23:32 ----A---- C:\Windows\system32\msieftp.dll
2013-12-11 11:23:31 ----A---- C:\Windows\SYSWOW64\msieftp.dll
2013-12-11 11:23:29 ----A---- C:\Windows\system32\win32k.sys
2013-12-11 11:23:28 ----A---- C:\Windows\SYSWOW64\WMPhoto.dll
2013-12-11 11:23:28 ----A---- C:\Windows\system32\WMPhoto.dll
2013-12-11 11:23:27 ----A---- C:\Windows\SYSWOW64\imagehlp.dll
2013-12-11 11:23:27 ----A---- C:\Windows\system32\imagehlp.dll
2013-12-11 11:23:24 ----A---- C:\Windows\SYSWOW64\tzres.dll
2013-12-11 11:23:24 ----A---- C:\Windows\system32\tzres.dll
2013-12-11 11:23:19 ----A---- C:\Windows\SYSWOW64\wscript.exe
2013-12-11 11:23:19 ----A---- C:\Windows\SYSWOW64\scrrun.dll
2013-12-11 11:23:19 ----A---- C:\Windows\SYSWOW64\cscript.exe
2013-12-11 11:23:19 ----A---- C:\Windows\system32\wscript.exe
2013-12-11 11:23:19 ----A---- C:\Windows\system32\scrrun.dll
2013-12-11 11:23:19 ----A---- C:\Windows\system32\cscript.exe
2013-12-01 22:07:17 ----D---- C:\Users\Pavilion\AppData\Roaming\Guitar Pro 6
2013-12-01 22:07:17 ----D---- C:\ProgramData\Guitar Pro 6
======List of files/folders modified in the last 1 months======
2013-12-31 11:07:06 ----D---- C:\Program Files\trend micro
2013-12-31 11:07:00 ----D---- C:\Windows\Prefetch
2013-12-31 10:55:44 ----D---- C:\Windows\system32\config
2013-12-31 10:45:34 ----D---- C:\Windows\temp
2013-12-31 10:38:45 ----SHD---- C:\System Volume Information
2013-12-31 10:26:37 ----AD---- C:\Windows
2013-12-30 20:52:07 ----D---- C:\Windows\system32\drivers
2013-12-30 20:50:27 ----D---- C:\Windows\system32\Tasks
2013-12-30 09:47:25 ----D---- C:\Program Files (x86)
2013-12-30 09:43:07 ----D---- C:\Config.Msi
2013-12-30 02:47:44 ----D---- C:\Windows\inf
2013-12-29 21:21:27 ----D---- C:\Program Files (x86)\The KMPlayer
2013-12-29 20:00:23 ----D---- C:\ProgramData
2013-12-29 19:44:07 ----D---- C:\AdwCleaner
2013-12-29 02:24:51 ----D---- C:\ProgramData\Spybot - Search & Destroy
2013-12-29 00:29:23 ----D---- C:\ProgramData\PDFC
2013-12-28 22:31:42 ----D---- C:\rsit
2013-12-28 20:49:36 ----D---- C:\Users\Pavilion\AppData\Roaming\QuickScan
2013-12-28 19:55:06 ----D---- C:\Users\Pavilion\AppData\Roaming\Winamp
2013-12-25 20:45:22 ----AD---- C:\Windows\System32
2013-12-25 20:45:22 ----A---- C:\Windows\system32\PerfStringBackup.INI
2013-12-21 08:48:02 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2013-12-18 07:58:53 ----D---- C:\Windows\system32\catroot
2013-12-16 10:16:49 ----D---- C:\Windows\debug
2013-12-16 00:42:05 ----D---- C:\Windows\system32\MRT
2013-12-16 00:39:52 ----A---- C:\Windows\system32\MRT.exe
2013-12-16 00:39:42 ----D---- C:\Windows\system32\catroot2
2013-12-15 09:35:01 ----D---- C:\Windows\winsxs
2013-12-15 09:34:02 ----D---- C:\Windows\SysWOW64
2013-12-15 09:34:02 ----D---- C:\Program Files\Internet Explorer
2013-12-15 09:34:02 ----D---- C:\Program Files (x86)\Internet Explorer
2013-12-14 19:20:36 ----D---- C:\Windows\system32\drivers\etc
2013-12-14 19:13:33 ----D---- C:\Windows\Panther
2013-12-14 19:13:33 ----D---- C:\Windows\Logs
2013-12-14 11:26:39 ----D---- C:\Windows\SYSWOW64\sv-SE
2013-12-14 11:26:38 ----D---- C:\Windows\SYSWOW64\nb-NO
2013-12-14 11:26:38 ----D---- C:\Windows\system32\sv-SE
2013-12-14 11:26:38 ----D---- C:\Windows\system32\nb-NO
2013-12-14 11:26:37 ----D---- C:\Windows\SYSWOW64\fi-FI
2013-12-14 11:26:37 ----D---- C:\Windows\system32\fi-FI
2013-12-14 11:26:36 ----D---- C:\Windows\SYSWOW64\da-DK
2013-12-14 11:26:36 ----D---- C:\Windows\system32\da-DK
2013-12-14 11:26:35 ----D---- C:\Windows\SYSWOW64\cs-CZ
2013-12-14 11:26:35 ----D---- C:\Windows\system32\cs-CZ
2013-12-14 11:26:32 ----D---- C:\Windows\SYSWOW64\migration
2013-12-14 11:26:31 ----D---- C:\Windows\SYSWOW64\en-US
2013-12-14 11:26:28 ----D---- C:\Windows\system32\migration
2013-12-14 11:26:28 ----D---- C:\Windows\PolicyDefinitions
2013-12-14 11:26:27 ----D---- C:\Windows\system32\en-US
2013-12-12 10:16:07 ----D---- C:\Program Files (x86)\Windows Media Player
2013-12-12 10:16:05 ----D---- C:\Program Files\Windows Media Player
2013-12-12 10:15:54 ----D---- C:\Windows\system32\DriverStore
2013-12-12 01:44:45 ----SHD---- C:\Windows\Installer
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 AtiPcie;AMD PCI Express (3GIO) Filter; C:\Windows\system32\DRIVERS\AtiPcie64.sys [2010-03-10 16440]
R0 MpFilter;Microsoft Malware Protection Driver; C:\Windows\system32\DRIVERS\MpFilter.sys [2013-09-27 248240]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R2 NisDrv;Microsoft Network Inspection System; C:\Windows\system32\DRIVERS\NisDrvWFP.sys [2013-09-27 134944]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atipmdag.sys [2010-02-02 6366720]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2010-02-01 186880]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2010-03-31 2332192]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2010-03-04 346144]
R3 usbfilter;AMD USB Filter Driver; C:\Windows\system32\DRIVERS\usbfilter.sys [2009-12-21 38456]
S3 AmUStor;AM USB Stroage Driver; C:\Windows\system32\drivers\AmUStor.SYS [2009-10-23 46592]
S3 BridgeMP;@%SystemRoot%\system32\bridgeres.dll,-1; C:\Windows\system32\DRIVERS\bridge.sys [2009-07-14 95232]
S3 catchme;catchme; \??\C:\ComboFix\catchme.sys []
S3 KORGUMDS;KORG USB-MIDI Driver for Windows x64 Edition; C:\Windows\System32\Drivers\KORGUM64.SYS [2009-10-15 31832]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-10-26 19456]
S3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader; C:\Windows\System32\Drivers\RtsUStor.sys [2010-04-09 243744]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2012-10-26 57856]
S3 usbscan;Ovladač skeneru USB; C:\Windows\system32\drivers\usbscan.sys [2013-07-03 42496]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 41984]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2013-05-10 65640]
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2010-02-02 202752]
R2 Autodesk Content Service;Autodesk Content Service; C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe [2012-01-31 19232]
R2 ezSharedSvc;Easybits Services for Windows; C:\Windows\syswow64\ezSharedSvcHost.exe [2010-04-23 514232]
R2 LightScribeService;LightScribeService Direct Disc Labeling Service; c:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe [2010-05-19 73728]
R2 MsMpSvc;Microsoft Antimalware Service; c:\Program Files\Microsoft Security Client\MsMpEng.exe [2013-10-23 23808]
R2 pdfcDispatcher;PDF Document Manager; C:\Program Files (x86)\PDF Complete\pdfsvc.exe [2009-10-15 635416]
R3 NisSrv;@c:\Program Files\Microsoft Security Client\MpAsDesc.dll,-243; c:\Program Files\Microsoft Security Client\NisSrv.exe [2013-10-23 348376]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2012-07-13 160944]
S3 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2010-03-18 44376]
S3 FLEXnet Licensing Service 64;FLEXnet Licensing Service 64; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe [2013-02-19 1432400]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2013-11-26 111616]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2013-12-20 119408]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2011-08-19 1255736]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
-----------------EOF-----------------
Re: Prosba o kontrolu logu.
Jeste jeden sken a budem mazat.
Stahnete OTL http://oldtimer.geekstogo.com/OTL.exe a ulozte na plochu.
Kliknete na nej pravym mysidlem a levym na Spustit jako spravce
Oznacte polozky (dejte tam zatrzitka) Pro všechny uživatele, Kontrola na havěť "LOP" a Kontrola na havěť "Purity"
Do spodniho okna vlozte nasledujici text
Kliknete na Prohledat
Po skenu se vytvori dva logy (OTL.Txt a Extras.txt), oba sem vlozte (kdyz budou dlouhe, rozdelte je do vice prispevku).
Stahnete OTL http://oldtimer.geekstogo.com/OTL.exe a ulozte na plochu.Kliknete na nej pravym mysidlem a levym na Spustit jako spravce
Oznacte polozky (dejte tam zatrzitka) Pro všechny uživatele, Kontrola na havěť "LOP" a Kontrola na havěť "Purity"
Do spodniho okna vlozte nasledujici text
Kód: Vybrat vše
CREATERESTOREPOINT
netsvcs
drivers32
savembr:0
/md5start
adp3132.sys
AGP440.sys
ahcix86.sys
ahcix86s.sys
atapi.sys
autochk.exe
cdrom.sys
cngaudit.dll
cryptsvc.dll
eNetHook.dll
eventlog.dll
explorer.exe
hal.dll
Changer.sys
iaStor.sys
iastorv.sys
IdeChnDr.sys
isapnp.sys
JakNDis.sys
KR10N.sys
logevent.dll
lsass.exe
mv61xx.sys
ndis.sys
netlogon.dll
ntelogon.dll
nvata.sys
nvatabus.sys
nvgts.sys
nvraid.sys
nvrd32.sys
nvstor.sys
nvstor32.sys
scecli.dll
sceclt.dll
smss.exe
svchost.exe
symmpi.sys
tcpip.sys
userinit.exe
vaxscsi.sys
viamraid.sys
viasraid.sys
ViPrt.sys
winlogon.exe
ws2_32.dll
/md5stop
%systemroot%*.* /U /s
%SYSTEMDRIVE%\*.exe
%ALLUSERSPROFILE%\Application Data\*.
%ALLUSERSPROFILE%\Application Data\*.exe /s
%APPDATA%\*.
%APPDATA%\*.exe /s
%systemroot%\*. /mp /s
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\Tasks\*.job /lockedfiles
%systemroot%\system32\drivers\*.sys /lockedfiles
%systemroot%\System32\config\*.sav
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\system32\drivers\*.sys /3
%systemroot%\system32\*.* /3
%SYSTEMDRIVE%\*.exe
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s
reg query "HKLM\Software\Microsoft\Windows NT\CurrentVersion\winlogon" /v GinaDLL /c
reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv" /v ImagePath /c
reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS" /v ImagePath /c
type c:\boot.ini >> test.txt /c
%SystemDrive%\PhysicalMBR.bin /md5
*crack* /s
*keygen* /s
*AntiWPA* /s
*loader* /s
*minodlogin* /s
*tnod* /s
*AutoKMS* /s
*activator* /s
*serial* /s
*w7lxe* /s
Po skenu se vytvori dva logy (OTL.Txt a Extras.txt), oba sem vlozte (kdyz budou dlouhe, rozdelte je do vice prispevku).
Pokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Re: Prosba o kontrolu logu.
To jste mohl napsat sem
Obcas se to stane, ze OTL tuhle chybku vyhodi
Spustte ho podle stejneho navodu jeste jednou, ale s timto upravenym skriptem
Obcas se to stane, ze OTL tuhle chybku vyhodi
Spustte ho podle stejneho navodu jeste jednou, ale s timto upravenym skriptem
Kód: Vybrat vše
CREATERESTOREPOINT
netsvcs
drivers32
savembr:0
/md5start
atapi.sys
autochk.exe
cdrom.sys
explorer.exe
hal.dll
scecli.dll
svchost.exe
tcpip.sys
userinit.exe
winlogon.exe
/md5stop
%systemroot%*.* /U /s
%SYSTEMDRIVE%\*.exe
%ALLUSERSPROFILE%\Application Data\*.
%ALLUSERSPROFILE%\Application Data\*.exe /s
%APPDATA%\*.
%APPDATA%\*.exe /s
%systemroot%\*. /mp /s
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\Tasks\*.job
%systemroot%\system32\drivers\*.sys /lockedfiles
%systemroot%\System32\config\*.sav
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\system32\drivers\*.sys /3
%systemroot%\system32\*.* /3
%SYSTEMDRIVE%\*.exe
*crack* /s
*keygen* /s
*AntiWPA* /s
*loader* /s
*minodlogin* /s
*tnod* /s
*AutoKMS* /s
*activator* /s
*serial* /s
*w7lxe* /sPokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Re: Prosba o kontrolu logu.
Takže logy se podařily
log Extras.Txt
OTL Extras logfile created on: 1.1.2014 2:18:58 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Pavilion\Desktop
64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.11.9600.16428)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy
3,75 Gb Total Physical Memory | 2,00 Gb Available Physical Memory | 53,30% Memory free
7,50 Gb Paging File | 5,75 Gb Available in Paging File | 76,70% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 584,43 Gb Total Space | 482,70 Gb Free Space | 82,59% Space Free | Partition Type: NTFS
Drive D: | 11,64 Gb Total Space | 1,25 Gb Free Space | 10,70% Space Free | Partition Type: NTFS
Computer Name: PAVILION-HP | User Name: Pavilion | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Extra Registry (SafeList) ==========
========== File Associations ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.html[@ = Opera.HTML] -- C:\Program Files (x86)\Opera\Opera.exe (Opera Software)
.url[@ = InternetShortcut] -- C:\Windows\SysNative\rundll32.exe (Microsoft Corporation)
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation)
.html [@ = Opera.HTML] -- C:\Program Files (x86)\Opera\Opera.exe (Opera Software)
[HKEY_USERS\S-1-5-21-2005895358-2267774490-3321710968-1000\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation)
========== Shell Spawning ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- Reg Error: Key error.
htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [print] -- rundll32.exe %SystemRoot%\system32\mshtml.dll,PrintHTML "%1" (Microsoft Corporation)
http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
https [open] -- "C:\Program Files (x86)\Opera\Opera.exe" "%1" (Opera Software)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [Browse with FastStone] -- "C:\Program Files (x86)\FastStone Image Viewer\FSViewer.exe" "%1" ()
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Directory [Winamp.Bookmark] -- "C:\Program Files (x86)\Winamp\winamp.exe" /BOOKMARK "%1" (Nullsoft, Inc.)
Directory [Winamp.Enqueue] -- "C:\Program Files (x86)\Winamp\winamp.exe" /ADD "%1" (Nullsoft, Inc.)
Directory [Winamp.Play] -- "C:\Program Files (x86)\Winamp\winamp.exe" "%1" (Nullsoft, Inc.)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- "C:\Program Files\Internet Explorer\iexplore.exe" (Microsoft Corporation)
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- Reg Error: Key error.
htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
https [open] -- "C:\Program Files (x86)\Opera\Opera.exe" "%1" (Opera Software)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [Browse with FastStone] -- "C:\Program Files (x86)\FastStone Image Viewer\FSViewer.exe" "%1" ()
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Directory [Winamp.Bookmark] -- "C:\Program Files (x86)\Winamp\winamp.exe" /BOOKMARK "%1" (Nullsoft, Inc.)
Directory [Winamp.Enqueue] -- "C:\Program Files (x86)\Winamp\winamp.exe" /ADD "%1" (Nullsoft, Inc.)
Directory [Winamp.Play] -- "C:\Program Files (x86)\Winamp\winamp.exe" "%1" (Nullsoft, Inc.)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- Reg Error: Value error.
========== Security Center Settings ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
"FirewallDisableNotify" = 0
"AntiVirusDisableNotify" = 0
"UpdatesDisableNotify" = 0
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = 28 4D B2 76 41 04 CA 01 [binary data]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]
"DisableMonitoring" = 1
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
========== System Restore Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0
========== Firewall Settings ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall]
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile]
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile]
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile]
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
========== Authorized Applications List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
========== Vista Active Open Ports Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{064F4AF2-7055-48A6-8491-F398A03ED24E}" = lport=137 | protocol=17 | dir=in | app=system |
"{089FE27C-093E-4D05-AE1C-26EF74761665}" = rport=139 | protocol=6 | dir=out | app=system |
"{0D16B1FE-F366-49C1-B5BD-AA8CDE494C05}" = lport=138 | protocol=17 | dir=in | app=system |
"{17835C14-BF95-4F7F-9D1E-8E76E445DC88}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
"{1D97A9BA-F818-4D5C-B8EA-A52030922530}" = rport=138 | protocol=17 | dir=out | app=system |
"{1E41835F-BCF0-4167-8714-A943D6B276E9}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 |
"{4623C683-5876-42F8-A9F4-DD77128E1798}" = lport=139 | protocol=6 | dir=in | app=system |
"{58DE137C-DE64-4FB5-A2AD-5D9E224E0541}" = rport=445 | protocol=6 | dir=out | app=system |
"{BD9C9D6F-2F02-4C42-AADA-5A6320CF79C9}" = lport=50248 | protocol=6 | dir=in | name=autodesk content service |
"{C7F73BD7-E104-4024-9AE0-21260FE7C5AE}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{E1A78B6B-D377-40A6-B84E-E41BAA75FBBB}" = lport=445 | protocol=6 | dir=in | app=system |
"{F14955BD-85F2-4BF0-87A6-5AD7E9F92BB2}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{FF22E17F-168E-4D01-9671-693252453F61}" = rport=137 | protocol=17 | dir=out | app=system |
========== Vista Active Application Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{046D2A4D-D809-457F-AAE9-F81AA00A47B3}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 |
"{0BF5BAF2-5FA4-4DC9-841B-8A9636EC955D}" = protocol=17 | dir=in | app=c:\program files (x86)\opera\opera.exe |
"{14BFC6A0-D28D-447E-BFA7-D2A4779F0B81}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{15740178-F6F2-4FF4-BF3E-B1C7DC63F776}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 |
"{5D697EC3-D1AE-4275-BB6F-9EEFF9F0DB05}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 |
"{7D3544B7-663D-420E-A48B-E0897280DB5F}" = protocol=17 | dir=in | app=c:\program files (x86)\opera\opera.exe |
"{8D8E0945-2D9A-4089-B90A-DAE77E0B647E}" = protocol=6 | dir=in | app=c:\windows\syswow64\msiexec.exe |
"{8E76C2F3-5123-4DE6-A84E-C2DF79AB253E}" = protocol=17 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{A470FB17-7E28-4ACB-940B-16C9EED3BD29}" = protocol=6 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{A795E283-48C0-4A72-AE7B-EE99375FC12B}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 |
"{BC2E3F48-3DE9-477A-8704-5EA750A8E497}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{C3A0ADBA-97DA-49FD-A03B-A30FF5E0E149}" = protocol=6 | dir=in | app=c:\program files (x86)\opera\opera.exe |
"{D7960607-C596-4584-B04D-2C2665B25AAC}" = protocol=17 | dir=in | app=c:\program files (x86)\qip\qip.exe |
"{D7C8528A-4752-4564-BCD5-FF0F18289597}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{E74EE719-31C6-4575-9767-51D99607A328}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{E7DC4BA5-F20D-429F-9269-80CC8D4E7D1E}" = protocol=6 | dir=in | app=c:\program files (x86)\opera\opera.exe |
"{EA7C0F6A-7D23-4418-82B9-16ED29C28C9B}" = protocol=17 | dir=in | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{ED8F65B1-D2B1-499D-B5A4-DE6F561949BE}" = protocol=17 | dir=in | app=c:\windows\syswow64\msiexec.exe |
"{F9EFD820-D229-4AD8-9E26-1B9C8E904921}" = protocol=6 | dir=in | app=c:\program files (x86)\qip\qip.exe |
"TCP Query User{1F8C658A-8038-4266-8A37-A38F86354260}C:\program files (x86)\winamp\winamp.exe" = protocol=6 | dir=in | app=c:\program files (x86)\winamp\winamp.exe |
"TCP Query User{4354FD58-FC88-4706-AD99-76BC26D80702}C:\program files (x86)\qip\qip.exe" = protocol=6 | dir=in | app=c:\program files (x86)\qip\qip.exe |
"TCP Query User{5F495AE7-5D80-4B83-80D5-C46AD287FD50}C:\program files (x86)\winamp\winamp.exe" = protocol=6 | dir=in | app=c:\program files (x86)\winamp\winamp.exe |
"TCP Query User{8EB7A45D-6015-4733-B3B1-873BE89A2C04}C:\program files (x86)\mozilla firefox\plugin-container.exe" = protocol=6 | dir=in | app=c:\program files (x86)\mozilla firefox\plugin-container.exe |
"TCP Query User{D34D40EE-794E-4BCE-B3A6-84EBF816DBA1}C:\program files (x86)\videolan\vlc\vlc.exe" = protocol=6 | dir=in | app=c:\program files (x86)\videolan\vlc\vlc.exe |
"TCP Query User{F8CF5CE9-FDDB-4891-9EAC-22754F985D6D}C:\program files (x86)\mozilla firefox\plugin-container.exe" = protocol=6 | dir=in | app=c:\program files (x86)\mozilla firefox\plugin-container.exe |
"UDP Query User{1A1C3068-42F3-4279-89E5-2FC178408D8C}C:\program files (x86)\mozilla firefox\plugin-container.exe" = protocol=17 | dir=in | app=c:\program files (x86)\mozilla firefox\plugin-container.exe |
"UDP Query User{2A30D583-1BC3-41B1-88A2-532B48D78EE7}C:\program files (x86)\winamp\winamp.exe" = protocol=17 | dir=in | app=c:\program files (x86)\winamp\winamp.exe |
"UDP Query User{37573536-B4C9-4BF4-83D0-F9323A6A4C11}C:\program files (x86)\qip\qip.exe" = protocol=17 | dir=in | app=c:\program files (x86)\qip\qip.exe |
"UDP Query User{83C6F572-087D-4901-BC71-9979EF1905BF}C:\program files (x86)\winamp\winamp.exe" = protocol=17 | dir=in | app=c:\program files (x86)\winamp\winamp.exe |
"UDP Query User{8F519AA8-BE3E-4119-BE7E-F9242C6430DA}C:\program files (x86)\mozilla firefox\plugin-container.exe" = protocol=17 | dir=in | app=c:\program files (x86)\mozilla firefox\plugin-container.exe |
"UDP Query User{B7E25D1F-8EC4-49F7-B280-555DD9AA537E}C:\program files (x86)\videolan\vlc\vlc.exe" = protocol=17 | dir=in | app=c:\program files (x86)\videolan\vlc\vlc.exe |
========== HKEY_LOCAL_MACHINE Uninstall List ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{071c9b48-7c32-4621-a0ac-3f809523288f}" = Microsoft Visual C++ 2005 Redistributable (x64)
"{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MG5200_series" = Canon MG5200 series MP Drivers
"{17CA32D1-73BD-4990-B8F6-369D8D34B05D}" = Microsoft Antimalware Service CS-CZ Language Pack
"{1D8E6291-B0D5-35EC-8441-6616F567A0F7}" = Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219
"{26A24AE4-039D-4CA4-87B4-2F86417021FF}" = Java 7 Update 21 (64-bit)
"{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148
"{5783F2D7-B001-0000-0102-0060B0CE6BBA}" = AutoCAD 2013 – Čeština (Czech)
"{5783F2D7-B001-0405-1102-0060B0CE6BBA}" = AutoCAD 2013 Language Pack – Čeština (Czech)
"{5783F2D7-B001-0405-2102-0060B0CE6BBA}" = AutoCAD 2013 – Čeština (Czech)
"{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161
"{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}" = Microsoft Visual C++ 2005 Redistributable (x64)
"{790E02A1-145A-3843-8C13-A4F41C9B48B7}" = Microsoft .NET Framework 4 Client Profile CSY Language Pack
"{8220EEFE-38CD-377E-8595-13398D740ACE}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17
"{82C1E6E4-6718-4EFD-9DCC-E276D690EF46}" = Modul plug-in aplikace Autodesk Inventor Fusion pro aplikaci AutoCAD 2013
"{8E34682C-8118-31F1-BC4C-98CD9675E1C2}" = Microsoft .NET Framework 4 Extended
"{948B1FD6-9F98-47EE-AABF-8697F2FD44B0}" = ccc-utility64
"{A278382D-4F1B-4D47-9885-8523F7261E8D}_is1" = PDF-Viewer
"{A324DC11-FF02-3CE8-9D6F-67EBC006D970}" = Microsoft .NET Framework 4 Extended CSY Language Pack
"{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}" = Microsoft Visual C++ 2005 Redistributable (x64)
"{B6E3757B-5E77-3915-866A-CCFC4B8D194C}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053
"{D79A02E9-6713-4335-9668-AAC7474C0C0E}" = HP Vision Hardware Diagnostics
"{DC911ADF-7B60-40F2-A112-FB1EB6402D07}" = Microsoft Security Client CS-CZ Language Pack
"{E102B843-786A-4F58-AF75-6504570E207B}" = Microsoft Security Client
"{EE5F74BC-5CD5-4EF2-86BA-81E6CF46A18F}" = Autodesk Sync
"{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}" = Microsoft .NET Framework 4 Client Profile
"{FE2F4875-095C-427C-9A97-4F8DE05ACF22}" = Jazykový balíček Autodesk Inventor Fusion plug-in pro aplikaci AutoCAD 2013
"{FFF5619F-2013-0064-A85E-9994F70A9E5D}" = Autodesk Inventor Fusion 2013
"AutoCAD 2013 – Čeština (Czech)" = AutoCAD 2013 – Čeština (Czech)
"Autodesk Inventor Fusion 2013" = Autodesk Inventor Fusion 2013
"CCleaner" = CCleaner
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Microsoft .NET Framework 4 Client Profile CSY Language Pack" = Microsoft .NET Framework 4 Client Profile CSY Language Pack
"Microsoft .NET Framework 4 Extended" = Microsoft .NET Framework 4 Extended
"Microsoft .NET Framework 4 Extended CSY Language Pack" = Microsoft .NET Framework 4 Extended CSY Language Pack
"Microsoft Security Client" = Microsoft Security Essentials
"Modul plug-in aplikace Autodesk Inventor Fusion pro aplikaci AutoCAD 2013" = Autodesk Inventor Fusion plug-in for AutoCAD 2013
"WinRAR archiver" = WinRAR 4.00 (64-bit)
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{07FA4960-B038-49EB-891B-9F95930AA544}" = HP Customer Experience Enhancements
"{08235411-48C8-A293-8642-D9575891E7D9}" = Catalyst Control Center InstallProxy
"{08548558-3EC9-BD0B-3D09-632500268F59}" = CCC Help Portuguese
"{117EBEEB-5DB0-43C8-9FD6-DD583DB152DD}" = Autodesk Material Library 2013
"{137B2CE7-30A2-4836-0830-707F1010F517}" = CCC Help English
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{22139F5D-9405-455A-BDEB-658B1A4E4861}" = Catalyst Control Center - Branding
"{25F2A86D-E2E2-C2AD-8173-86C18632F214}" = CCC Help Chinese Traditional
"{26A24AE4-039D-4CA4-87B4-2F83217017FF}" = Java 7 Update 17
"{2842077A-7895-5310-4F0C-42C83501E770}" = CCC Help Thai
"{28E82311-8616-11E1-BEB0-B8AC6F97B88E}" = Google Earth
"{2ACAB850-69A5-8090-08B7-D27CC6D8652C}" = CCC Help German
"{2B2B5D2B-0F01-410B-843B-8F437FD75FBF}" = FreeCAD 0.13
"{2BAD00A4-7FD1-61C5-10C3-8275723943AD}" = CCC Help Danish
"{2BDD6161-833F-482C-8C04-B0D4A4B1F266}_is1" = ZK Faktury 2.10
"{2BF943D5-1468-589A-50E3-DD0ED6596022}" = Catalyst Control Center Graphics Full New
"{2F3ACB0A-2E3B-4ACA-BFEC-12FA555F770D}" = ToneLabST USB-MIDI Driver Setup for Windows
"{34DB1D69-9FFC-7899-6F4D-22C4C15ADD54}" = CCC Help Polish
"{3F310D8D-AC3B-5478-5AEA-D2EF5D7437E7}" = CCC Help Swedish
"{40BF1E83-20EB-11D8-97C5-0009C5020658}" = Power2Go
"{44B2A0AB-412E-4F8C-B058-D1E8AECCDFF5}" = Recovery Manager
"{46BA053F-57B3-4153-BDB6-D37EEC8B12D7}" = LightScribe System Software
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{56009CA3-423B-41F8-884A-E5B049534F15}" = Kaspersky Security Scan
"{595007B2-E139-535C-D723-4B0442FC40F5}" = CCC Help Italian
"{5A21C631-0494-7377-1E3B-99353E04F83B}" = CCC Help Japanese
"{60470F9B-980C-4557-A2ED-43EEB38FA201}" = ToneLabST Sound Librarian
"{606E12B9-641F-4644-A22A-FF38AE980AFD}" = Autodesk Material Library Base Resolution Image Library 2013
"{62F029AB-85F2-0000-866A-9FC0DD99DDBC}" = Autodesk Content Service
"{62F029AB-85F2-0001-866A-9FC0DD99DDBC}" = Autodesk Content Service Language Pack
"{670A9A20-E29D-40C3-9937-2AFF89C3AC82}_is1" = PROFIT 2013.04
"{695C04CF-CF98-FAD6-9590-6C555B2E2E79}" = CCC Help Chinese Standard
"{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}" = Windows Media Player Firefox Plugin
"{6F277272-77D6-1E03-B8BB-B408B26C5140}" = CCC Help Czech
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{7240A994-0ED4-4841-AD3B-5E5F72850F67}" = Catalyst Control Center Graphics Previews Vista
"{7C66E480-E42D-3664-B207-5CE9A706BC1F}" = Catalyst Control Center Graphics Light
"{7CAAA7B2-D9EA-2416-9D63-DDBC8E669059}" = CCC Help French
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{84B4C4F4-F244-6A7E-EDC6-ECD46ACAAE59}" = CCC Help Greek
"{8763793B-4D7D-49C8-A859-5C582EC02640}" = Nexus Radio
"{8EB84BE2-1F31-4950-83D8-C211A9A08739}" = AM Usb Card Reader Driver
"{90120000-0020-0405-0000-0000000FF1CE}" = Sada Compatibility Pack pro systém Office 2007
"{951B0F30-9F1A-4BF6-B3DA-99EB0E917B1C}" = FARO LS 1.1.406.58
"{96AE7E41-E34E-47D0-AC07-1091A8127911}" = Realtek USB 2.0 Card Reader
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{AC76BA86-7AD7-1029-7B44-AA1000000001}" = Adobe Reader X (10.1.8) - Czech
"{AF4A82A7-F453-CE12-A942-E55FAC234387}" = ccc-core-static
"{B4092C6D-E886-4CB2-BA68-FE5A88D31DE6}_is1" = Spybot - Search & Destroy
"{B5B7E8FF-62F6-FA85-4C4A-83AAF816CE6E}" = CCC Help Spanish
"{B6CF2967-C81E-40C0-9815-C05774FEF120}" = Skype Click to Call
"{B8089767-9A45-0E84-FCDE-15698650FF17}" = CCC Help Hungarian
"{B8AC1A89-FFD1-4F97-8051-E505A160F562}" = HP Odometer
"{B9A03B7B-E0FF-4FB3-BA83-762E58A1B0AA}" = HP Support Information
"{C59C179C-668D-49A9-B6EA-0121CCFC1243}" = LabelPrint
"{C9496C0E-BE4C-7800-900B-5E66B958AEC1}" = CCC Help Russian
"{D5B94160-4A07-4956-9C73-8C5EEFEF180F}" = OpenOffice.org 3.3
"{DE77FE3F-A33D-499A-87AD-5FC406617B40}" = HP Update
"{E848D976-CE38-43DC-9D22-5CBAC9130387}" = CompressionPackage
"{EB1A6595-613F-9654-E58E-0876F8B0E8F3}" = Catalyst Control Center Localization All
"{EDD1E22B-249A-5ED7-BA0A-C41BAA8256ED}" = CCC Help Korean
"{EE7257A2-39A2-4D2F-9DAC-F9F25B8AE1D8}" = Skype™ 5.10
"{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F252C428-A4AE-C73E-031A-C451FDD660A9}" = CCC Help Norwegian
"{F67EA3C6-38B0-675A-E2F9-8C343DE1C826}" = Catalyst Control Center Graphics Full Existing
"{F686E613-03C4-085F-188A-9E5DC1455787}" = CCC Help Turkish
"{F7F7626C-4612-BF7B-38D5-07E247973A1A}" = Catalyst Control Center Core Implementation
"{F8CA8746-F561-61D7-A496-8D4C4E1F8A57}" = CCC Help Dutch
"{FCDDC9D3-5524-9AD1-651C-467910CC1903}" = CCC Help Finnish
"Adobe Flash Player ActiveX" = Adobe Flash Player 11 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin
"AmUStor" = AM Usb Card Reader Driver
"Autodesk Content Service" = Autodesk Content Service
"CanonMyPrinter" = Canon My Printer
"CanonSolutionMenuEX" = Canon Solution Menu EX
"Cromelin" = Cromelin 02.11
"Deny" = Deny 02.10
"Easy-PhotoPrint EX" = Canon Easy-PhotoPrint EX
"Easy-WebPrint EX" = Canon Easy-WebPrint EX
"ESET Online Scanner" = ESET Online Scanner v3
"FastStone Image Viewer" = FastStone Image Viewer 4.6
"FastStone Photo Resizer" = FastStone Photo Resizer 3.0
"Free YouTube to MP3 Converter_is1" = Free YouTube to MP3 Converter version 3.11.34.1015
"InstallShield_{40BF1E83-20EB-11D8-97C5-0009C5020658}" = Power2Go
"InstallShield_{C59C179C-668D-49A9-B6EA-0121CCFC1243}" = LabelPrint
"KLiteCodecPack_is1" = K-Lite Codec Pack 7.1.0 (Full)
"Machinarium" = Machinarium
"Mozilla Firefox 26.0 (x86 cs)" = Mozilla Firefox 26.0 (x86 cs)
"MozillaMaintenanceService" = Mozilla Maintenance Service
"MP Navigator EX 4.0" = Canon MP Navigator EX 4.0
"Opera 12.16.1860" = Opera 12.16
"PDF Complete" = PDF Complete Special Edition
"Pracovní kalendář" = Pracovní kalendář
"Registrace uživatele zařízení Canon MG5200 series" = Registrace uživatele zařízení Canon MG5200 series
"The KMPlayer" = The KMPlayer (remove only)
"ToneLabST USB-ASIO Driver" = ToneLabST USB-ASIO Driver
"Transcribe!_is1" = Transcribe! 7.51
"VLC media player" = VLC media player 1.1.9
"Winamp" = Winamp
"WinRAR archiver" = WinRAR 4.00 (32-bit)
========== Last 20 Event Log Errors ==========
[ Application Events ]
Error - 17.3.2013 8:31:30 | Computer Name = Pavilion-HP | Source = Microsoft-Windows-User Profiles Service | ID = 1542
Description = Systém Windows nemůže načíst soubor registru tříd. PODROBNOSTI – Systém
nemůže nalézt uvedený soubor.
Error - 17.3.2013 8:31:31 | Computer Name = Pavilion-HP | Source = Microsoft-Windows-User Profiles Service | ID = 1542
Description = Systém Windows nemůže načíst soubor registru tříd. PODROBNOSTI – Systém
nemůže nalézt uvedený soubor.
Error - 18.3.2013 3:01:23 | Computer Name = Pavilion-HP | Source = Microsoft-Windows-User Profiles Service | ID = 1542
Description = Systém Windows nemůže načíst soubor registru tříd. PODROBNOSTI – Systém
nemůže nalézt uvedený soubor.
Error - 18.3.2013 3:01:23 | Computer Name = Pavilion-HP | Source = Microsoft-Windows-User Profiles Service | ID = 1542
Description = Systém Windows nemůže načíst soubor registru tříd. PODROBNOSTI – Systém
nemůže nalézt uvedený soubor.
Error - 19.3.2013 7:35:28 | Computer Name = Pavilion-HP | Source = Microsoft-Windows-User Profiles Service | ID = 1542
Description = Systém Windows nemůže načíst soubor registru tříd. PODROBNOSTI – Systém
nemůže nalézt uvedený soubor.
Error - 19.3.2013 7:35:28 | Computer Name = Pavilion-HP | Source = Microsoft-Windows-User Profiles Service | ID = 1542
Description = Systém Windows nemůže načíst soubor registru tříd. PODROBNOSTI – Systém
nemůže nalézt uvedený soubor.
Error - 20.3.2013 3:40:52 | Computer Name = Pavilion-HP | Source = Microsoft-Windows-User Profiles Service | ID = 1542
Description = Systém Windows nemůže načíst soubor registru tříd. PODROBNOSTI – Systém
nemůže nalézt uvedený soubor.
Error - 20.3.2013 3:40:52 | Computer Name = Pavilion-HP | Source = Microsoft-Windows-User Profiles Service | ID = 1542
Description = Systém Windows nemůže načíst soubor registru tříd. PODROBNOSTI – Systém
nemůže nalézt uvedený soubor.
Error - 21.3.2013 1:56:13 | Computer Name = Pavilion-HP | Source = Microsoft-Windows-User Profiles Service | ID = 1542
Description = Systém Windows nemůže načíst soubor registru tříd. PODROBNOSTI – Systém
nemůže nalézt uvedený soubor.
Error - 21.3.2013 1:56:13 | Computer Name = Pavilion-HP | Source = Microsoft-Windows-User Profiles Service | ID = 1542
Description = Systém Windows nemůže načíst soubor registru tříd. PODROBNOSTI – Systém
nemůže nalézt uvedený soubor.
[ Hewlett-Packard Events ]
Error - 29.10.2012 7:31:38 | Computer Name = Pavilion-HP | Source = HPSFMsgr.exe | ID = 4000
Description = HP Error ID: -2147221164 v System.RuntimeTypeHandle.CreateInstance(RuntimeType
type, Boolean publicOnly, Boolean noCheck, Boolean& canBeCached, RuntimeMethodHandle&
ctor, Boolean& bNeedSecurityCheck) v System.RuntimeType.CreateInstanceSlow(Boolean
publicOnly, Boolean fillCache) v System.RuntimeType.CreateInstanceImpl(Boolean
publicOnly, Boolean skipVisibilityChecks, Boolean fillCache) v System.Activator.CreateInstance(Type
type, Boolean nonPublic) v HPSA_Messenger.MessengerCom.TrayDeskBand.isTaskbarDisplayed()
StackTrace:
v System.RuntimeTypeHandle.CreateInstance(RuntimeType type, Boolean publicOnly,
Boolean noCheck, Boolean& canBeCached, RuntimeMethodHandle& ctor, Boolean& bNeedSecurityCheck)
v System.RuntimeType.CreateInstanceSlow(Boolean publicOnly, Boolean fillCache)
v System.RuntimeType.CreateInstanceImpl(Boolean publicOnly, Boolean skipVisibilityChecks,
Boolean fillCache) v System.Activator.CreateInstance(Type type, Boolean nonPublic)
v HPSA_Messenger.MessengerCom.TrayDeskBand.isTaskbarDisplayed() Source: mscorlib
Name:
HPSFMsgr.exe Version: 01.00.00.00 Path: C:\Program Files (x86)\Hewlett-Packard\HP
Support Framework\Resources\HPSFMessenger\HPSFMsgr.exe Format: cs-CZ RAM: 3839 Ram
Utilization: TargetSite: System.Object CreateInstance(System.RuntimeType, Boolean,
Boolean, Boolean ByRef, System.RuntimeMethodHandle ByRef, Boolean ByRef)
Error - 23.11.2012 12:24:21 | Computer Name = Pavilion-HP | Source = HPSF.exe | ID = 4000
Description = HP Error ID: -2146233087 Server stack trace: v System.ServiceModel.Channels.ServiceChannel.Call(String
action, Boolean oneway, ProxyOperationRuntime operation, Object[] ins, Object[]
outs, TimeSpan timeout) v System.ServiceModel.Channels.ServiceChannel.Call(String
action, Boolean oneway, ProxyOperationRuntime operation, Object[] ins, Object[]
outs) v System.ServiceModel.Channels.ServiceChannelProxy.InvokeService(IMethodCallMessage
methodCall, ProxyOperationRuntime operation) v System.ServiceModel.Channels.ServiceChannelProxy.Invoke(IMessage
message) Exception rethrown at [0] Message: Server neposkytl smysluplnou odpověď.
Může to být způsobeno neshodou kontraktů, předčasným ukončením relace nebo vnitřní
chybou serveru. StackTrace: Server stack trace: v System.ServiceModel.Channels.ServiceChannel.Call(String
action, Boolean oneway, ProxyOperationRuntime operation, Object[] ins, Object[]
outs, TimeSpan timeout) v System.ServiceModel.Channels.ServiceChannel.Call(String
action, Boolean oneway, ProxyOperationRuntime operation, Object[] ins, Object[]
outs) v System.ServiceModel.Channels.ServiceChannelProxy.InvokeService(IMethodCallMessage
methodCall, ProxyOperationRuntime operation) v System.ServiceModel.Channels.ServiceChannelProxy.Invoke(IMessage
message) Exception rethrown at [0]: v System.Runtime.Remoting.Proxies.RealProxy.HandleReturnMessage(IMessage
reqMsg, IMessage retMsg) v System.Runtime.Remoting.Proxies.RealProxy.PrivateInvoke(MessageData&
msgData, Int32 type) v HP.SupportFramework.Communicator.MessengerComm.IMessengerCommunicator.UpdateTimer()
v HP.SupportAssistant.UI.MessengerCommunication.sendTimerUpdate() Source: mscorlib
Name:
HPSF.exe Version: 06.00.01.01 Path: C:\Program Files (x86)\Hewlett-Packard\HP Support
Framework\HPSF.exe Format: cs-CZ RAM: 3839 Ram Utilization: 20 TargetSite: Void HandleReturnMessage(System.Runtime.Remoting.Messaging.IMessage,
System.Runtime.Remoting.Messaging.IMessage)
Error - 23.11.2012 12:24:36 | Computer Name = Pavilion-HP | Source = HPSF.exe | ID = 4000
Description =
Error - 23.11.2012 12:24:36 | Computer Name = Pavilion-HP | Source = HPSF.exe | ID = 4000
Description =
Error - 23.11.2012 12:24:37 | Computer Name = Pavilion-HP | Source = HPSF.exe | ID = 4000
Description =
Error - 23.11.2012 12:24:48 | Computer Name = Pavilion-HP | Source = HPSF.exe | ID = 4000
Description =
Error - 11.12.2012 16:44:50 | Computer Name = Pavilion-HP | Source = hpsa_service.exe | ID = 2000
Description = HP Error ID: -2146233088 v HP.ActiveCheckLocalMode.SessionManager.ActiveCheckManager.UpdateDetail(String
category) v HP.ActiveCheckLocalMode.SessionManager.ActiveCheckManager.UpdateAndDetectCore()
v HP.SupportAssistant.Service.ACLM.ActiveCheck.LaunchActiveCheck(Boolean singleScan,
Boolean localScan) Message: Failed to perform update. StackTrace: v HP.ActiveCheckLocalMode.SessionManager.ActiveCheckManager.UpdateDetail(String
category) v HP.ActiveCheckLocalMode.SessionManager.ActiveCheckManager.UpdateAndDetectCore()
v HP.SupportAssistant.Service.ACLM.ActiveCheck.LaunchActiveCheck(Boolean singleScan,
Boolean localScan) Source: HP.ActiveCheckLocalMode.SessionManager InnerException.Message:
Objekt /e8f52109_a69b_40cc_a22a_86dc476f0e7d/xdwhxkk6haxmqsx5unx5plgf_5.rem byl
odpojen nebo na serveru neexistuje. Name: hpsa_service.exe Version: 06.00.01.01 Path:
C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe Format:
cs-CZ RAM: 3839 Ram Utilization: 30 TargetSite: Void UpdateDetail(System.String)
Error - 18.12.2012 16:37:40 | Computer Name = Pavilion-HP | Source = HPSF.exe | ID = 4000
Description =
Error - 18.12.2012 16:38:00 | Computer Name = Pavilion-HP | Source = HPSF.exe | ID = 4000
Description =
Error - 26.12.2012 13:51:06 | Computer Name = Pavilion-HP | Source = HPSFMsgr.exe | ID = 4000
Description = HP Error ID: -2147221164 v System.RuntimeTypeHandle.CreateInstance(RuntimeType
type, Boolean publicOnly, Boolean noCheck, Boolean& canBeCached, RuntimeMethodHandle&
ctor, Boolean& bNeedSecurityCheck) v System.RuntimeType.CreateInstanceSlow(Boolean
publicOnly, Boolean fillCache) v System.RuntimeType.CreateInstanceImpl(Boolean
publicOnly, Boolean skipVisibilityChecks, Boolean fillCache) v System.Activator.CreateInstance(Type
type, Boolean nonPublic) v HPSA_Messenger.MessengerCom.TrayDeskBand.isTaskbarDisplayed()
StackTrace:
v System.RuntimeTypeHandle.CreateInstance(RuntimeType type, Boolean publicOnly,
Boolean noCheck, Boolean& canBeCached, RuntimeMethodHandle& ctor, Boolean& bNeedSecurityCheck)
v System.RuntimeType.CreateInstanceSlow(Boolean publicOnly, Boolean fillCache)
v System.RuntimeType.CreateInstanceImpl(Boolean publicOnly, Boolean skipVisibilityChecks,
Boolean fillCache) v System.Activator.CreateInstance(Type type, Boolean nonPublic)
v HPSA_Messenger.MessengerCom.TrayDeskBand.isTaskbarDisplayed() Source: mscorlib
Name:
HPSFMsgr.exe Version: 01.00.00.00 Path: C:\Program Files (x86)\Hewlett-Packard\HP
Support Framework\Resources\HPSFMessenger\HPSFMsgr.exe Format: cs-CZ RAM: 3839 Ram
Utilization: TargetSite: System.Object CreateInstance(System.RuntimeType, Boolean,
Boolean, Boolean ByRef, System.RuntimeMethodHandle ByRef, Boolean ByRef)
[ System Events ]
Error - 20.12.2013 11:42:42 | Computer Name = Pavilion-HP | Source = DCOM | ID = 10016
Description =
Error - 21.12.2013 6:21:14 | Computer Name = Pavilion-HP | Source = DCOM | ID = 10010
Description =
Error - 22.12.2013 10:54:24 | Computer Name = Pavilion-HP | Source = DCOM | ID = 10010
Description =
Error - 22.12.2013 10:54:24 | Computer Name = Pavilion-HP | Source = Service Control Manager | ID = 7011
Description = Při čekání na odezvu transakce služby AntiVirSchedulerService bylo
dosaženo časového limitu (30000 ms).
Error - 23.12.2013 5:16:07 | Computer Name = Pavilion-HP | Source = DCOM | ID = 10016
Description =
Error - 24.12.2013 9:37:48 | Computer Name = Pavilion-HP | Source = DCOM | ID = 10010
Description =
Error - 24.12.2013 9:39:17 | Computer Name = Pavilion-HP | Source = Service Control Manager | ID = 7009
Description = Při čekání na připojení služby Služba Zasílání zpráv o chybách systému
Windows bylo dosaženo časového limitu (30000 ms).
Error - 26.12.2013 11:28:45 | Computer Name = Pavilion-HP | Source = Service Control Manager | ID = 7011
Description = Při čekání na odezvu transakce služby AntiVirSchedulerService bylo
dosaženo časového limitu (30000 ms).
Error - 27.12.2013 6:02:37 | Computer Name = Pavilion-HP | Source = Service Control Manager | ID = 7011
Description = Při čekání na odezvu transakce služby AntiVirSchedulerService bylo
dosaženo časového limitu (30000 ms).
Error - 29.12.2013 13:01:43 | Computer Name = Pavilion-HP | Source = DCOM | ID = 10010
Description =
< End of report >
log Extras.Txt
OTL Extras logfile created on: 1.1.2014 2:18:58 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Pavilion\Desktop
64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.11.9600.16428)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy
3,75 Gb Total Physical Memory | 2,00 Gb Available Physical Memory | 53,30% Memory free
7,50 Gb Paging File | 5,75 Gb Available in Paging File | 76,70% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 584,43 Gb Total Space | 482,70 Gb Free Space | 82,59% Space Free | Partition Type: NTFS
Drive D: | 11,64 Gb Total Space | 1,25 Gb Free Space | 10,70% Space Free | Partition Type: NTFS
Computer Name: PAVILION-HP | User Name: Pavilion | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Extra Registry (SafeList) ==========
========== File Associations ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.html[@ = Opera.HTML] -- C:\Program Files (x86)\Opera\Opera.exe (Opera Software)
.url[@ = InternetShortcut] -- C:\Windows\SysNative\rundll32.exe (Microsoft Corporation)
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation)
.html [@ = Opera.HTML] -- C:\Program Files (x86)\Opera\Opera.exe (Opera Software)
[HKEY_USERS\S-1-5-21-2005895358-2267774490-3321710968-1000\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation)
========== Shell Spawning ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- Reg Error: Key error.
htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [print] -- rundll32.exe %SystemRoot%\system32\mshtml.dll,PrintHTML "%1" (Microsoft Corporation)
http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
https [open] -- "C:\Program Files (x86)\Opera\Opera.exe" "%1" (Opera Software)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [Browse with FastStone] -- "C:\Program Files (x86)\FastStone Image Viewer\FSViewer.exe" "%1" ()
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Directory [Winamp.Bookmark] -- "C:\Program Files (x86)\Winamp\winamp.exe" /BOOKMARK "%1" (Nullsoft, Inc.)
Directory [Winamp.Enqueue] -- "C:\Program Files (x86)\Winamp\winamp.exe" /ADD "%1" (Nullsoft, Inc.)
Directory [Winamp.Play] -- "C:\Program Files (x86)\Winamp\winamp.exe" "%1" (Nullsoft, Inc.)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- "C:\Program Files\Internet Explorer\iexplore.exe" (Microsoft Corporation)
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- Reg Error: Key error.
htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
https [open] -- "C:\Program Files (x86)\Opera\Opera.exe" "%1" (Opera Software)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [Browse with FastStone] -- "C:\Program Files (x86)\FastStone Image Viewer\FSViewer.exe" "%1" ()
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Directory [Winamp.Bookmark] -- "C:\Program Files (x86)\Winamp\winamp.exe" /BOOKMARK "%1" (Nullsoft, Inc.)
Directory [Winamp.Enqueue] -- "C:\Program Files (x86)\Winamp\winamp.exe" /ADD "%1" (Nullsoft, Inc.)
Directory [Winamp.Play] -- "C:\Program Files (x86)\Winamp\winamp.exe" "%1" (Nullsoft, Inc.)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- Reg Error: Value error.
========== Security Center Settings ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
"FirewallDisableNotify" = 0
"AntiVirusDisableNotify" = 0
"UpdatesDisableNotify" = 0
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = 28 4D B2 76 41 04 CA 01 [binary data]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]
"DisableMonitoring" = 1
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
========== System Restore Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0
========== Firewall Settings ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall]
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile]
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile]
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile]
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
========== Authorized Applications List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
========== Vista Active Open Ports Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{064F4AF2-7055-48A6-8491-F398A03ED24E}" = lport=137 | protocol=17 | dir=in | app=system |
"{089FE27C-093E-4D05-AE1C-26EF74761665}" = rport=139 | protocol=6 | dir=out | app=system |
"{0D16B1FE-F366-49C1-B5BD-AA8CDE494C05}" = lport=138 | protocol=17 | dir=in | app=system |
"{17835C14-BF95-4F7F-9D1E-8E76E445DC88}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
"{1D97A9BA-F818-4D5C-B8EA-A52030922530}" = rport=138 | protocol=17 | dir=out | app=system |
"{1E41835F-BCF0-4167-8714-A943D6B276E9}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 |
"{4623C683-5876-42F8-A9F4-DD77128E1798}" = lport=139 | protocol=6 | dir=in | app=system |
"{58DE137C-DE64-4FB5-A2AD-5D9E224E0541}" = rport=445 | protocol=6 | dir=out | app=system |
"{BD9C9D6F-2F02-4C42-AADA-5A6320CF79C9}" = lport=50248 | protocol=6 | dir=in | name=autodesk content service |
"{C7F73BD7-E104-4024-9AE0-21260FE7C5AE}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{E1A78B6B-D377-40A6-B84E-E41BAA75FBBB}" = lport=445 | protocol=6 | dir=in | app=system |
"{F14955BD-85F2-4BF0-87A6-5AD7E9F92BB2}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{FF22E17F-168E-4D01-9671-693252453F61}" = rport=137 | protocol=17 | dir=out | app=system |
========== Vista Active Application Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{046D2A4D-D809-457F-AAE9-F81AA00A47B3}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 |
"{0BF5BAF2-5FA4-4DC9-841B-8A9636EC955D}" = protocol=17 | dir=in | app=c:\program files (x86)\opera\opera.exe |
"{14BFC6A0-D28D-447E-BFA7-D2A4779F0B81}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{15740178-F6F2-4FF4-BF3E-B1C7DC63F776}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 |
"{5D697EC3-D1AE-4275-BB6F-9EEFF9F0DB05}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 |
"{7D3544B7-663D-420E-A48B-E0897280DB5F}" = protocol=17 | dir=in | app=c:\program files (x86)\opera\opera.exe |
"{8D8E0945-2D9A-4089-B90A-DAE77E0B647E}" = protocol=6 | dir=in | app=c:\windows\syswow64\msiexec.exe |
"{8E76C2F3-5123-4DE6-A84E-C2DF79AB253E}" = protocol=17 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{A470FB17-7E28-4ACB-940B-16C9EED3BD29}" = protocol=6 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{A795E283-48C0-4A72-AE7B-EE99375FC12B}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 |
"{BC2E3F48-3DE9-477A-8704-5EA750A8E497}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{C3A0ADBA-97DA-49FD-A03B-A30FF5E0E149}" = protocol=6 | dir=in | app=c:\program files (x86)\opera\opera.exe |
"{D7960607-C596-4584-B04D-2C2665B25AAC}" = protocol=17 | dir=in | app=c:\program files (x86)\qip\qip.exe |
"{D7C8528A-4752-4564-BCD5-FF0F18289597}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{E74EE719-31C6-4575-9767-51D99607A328}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{E7DC4BA5-F20D-429F-9269-80CC8D4E7D1E}" = protocol=6 | dir=in | app=c:\program files (x86)\opera\opera.exe |
"{EA7C0F6A-7D23-4418-82B9-16ED29C28C9B}" = protocol=17 | dir=in | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{ED8F65B1-D2B1-499D-B5A4-DE6F561949BE}" = protocol=17 | dir=in | app=c:\windows\syswow64\msiexec.exe |
"{F9EFD820-D229-4AD8-9E26-1B9C8E904921}" = protocol=6 | dir=in | app=c:\program files (x86)\qip\qip.exe |
"TCP Query User{1F8C658A-8038-4266-8A37-A38F86354260}C:\program files (x86)\winamp\winamp.exe" = protocol=6 | dir=in | app=c:\program files (x86)\winamp\winamp.exe |
"TCP Query User{4354FD58-FC88-4706-AD99-76BC26D80702}C:\program files (x86)\qip\qip.exe" = protocol=6 | dir=in | app=c:\program files (x86)\qip\qip.exe |
"TCP Query User{5F495AE7-5D80-4B83-80D5-C46AD287FD50}C:\program files (x86)\winamp\winamp.exe" = protocol=6 | dir=in | app=c:\program files (x86)\winamp\winamp.exe |
"TCP Query User{8EB7A45D-6015-4733-B3B1-873BE89A2C04}C:\program files (x86)\mozilla firefox\plugin-container.exe" = protocol=6 | dir=in | app=c:\program files (x86)\mozilla firefox\plugin-container.exe |
"TCP Query User{D34D40EE-794E-4BCE-B3A6-84EBF816DBA1}C:\program files (x86)\videolan\vlc\vlc.exe" = protocol=6 | dir=in | app=c:\program files (x86)\videolan\vlc\vlc.exe |
"TCP Query User{F8CF5CE9-FDDB-4891-9EAC-22754F985D6D}C:\program files (x86)\mozilla firefox\plugin-container.exe" = protocol=6 | dir=in | app=c:\program files (x86)\mozilla firefox\plugin-container.exe |
"UDP Query User{1A1C3068-42F3-4279-89E5-2FC178408D8C}C:\program files (x86)\mozilla firefox\plugin-container.exe" = protocol=17 | dir=in | app=c:\program files (x86)\mozilla firefox\plugin-container.exe |
"UDP Query User{2A30D583-1BC3-41B1-88A2-532B48D78EE7}C:\program files (x86)\winamp\winamp.exe" = protocol=17 | dir=in | app=c:\program files (x86)\winamp\winamp.exe |
"UDP Query User{37573536-B4C9-4BF4-83D0-F9323A6A4C11}C:\program files (x86)\qip\qip.exe" = protocol=17 | dir=in | app=c:\program files (x86)\qip\qip.exe |
"UDP Query User{83C6F572-087D-4901-BC71-9979EF1905BF}C:\program files (x86)\winamp\winamp.exe" = protocol=17 | dir=in | app=c:\program files (x86)\winamp\winamp.exe |
"UDP Query User{8F519AA8-BE3E-4119-BE7E-F9242C6430DA}C:\program files (x86)\mozilla firefox\plugin-container.exe" = protocol=17 | dir=in | app=c:\program files (x86)\mozilla firefox\plugin-container.exe |
"UDP Query User{B7E25D1F-8EC4-49F7-B280-555DD9AA537E}C:\program files (x86)\videolan\vlc\vlc.exe" = protocol=17 | dir=in | app=c:\program files (x86)\videolan\vlc\vlc.exe |
========== HKEY_LOCAL_MACHINE Uninstall List ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{071c9b48-7c32-4621-a0ac-3f809523288f}" = Microsoft Visual C++ 2005 Redistributable (x64)
"{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MG5200_series" = Canon MG5200 series MP Drivers
"{17CA32D1-73BD-4990-B8F6-369D8D34B05D}" = Microsoft Antimalware Service CS-CZ Language Pack
"{1D8E6291-B0D5-35EC-8441-6616F567A0F7}" = Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219
"{26A24AE4-039D-4CA4-87B4-2F86417021FF}" = Java 7 Update 21 (64-bit)
"{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148
"{5783F2D7-B001-0000-0102-0060B0CE6BBA}" = AutoCAD 2013 – Čeština (Czech)
"{5783F2D7-B001-0405-1102-0060B0CE6BBA}" = AutoCAD 2013 Language Pack – Čeština (Czech)
"{5783F2D7-B001-0405-2102-0060B0CE6BBA}" = AutoCAD 2013 – Čeština (Czech)
"{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161
"{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}" = Microsoft Visual C++ 2005 Redistributable (x64)
"{790E02A1-145A-3843-8C13-A4F41C9B48B7}" = Microsoft .NET Framework 4 Client Profile CSY Language Pack
"{8220EEFE-38CD-377E-8595-13398D740ACE}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17
"{82C1E6E4-6718-4EFD-9DCC-E276D690EF46}" = Modul plug-in aplikace Autodesk Inventor Fusion pro aplikaci AutoCAD 2013
"{8E34682C-8118-31F1-BC4C-98CD9675E1C2}" = Microsoft .NET Framework 4 Extended
"{948B1FD6-9F98-47EE-AABF-8697F2FD44B0}" = ccc-utility64
"{A278382D-4F1B-4D47-9885-8523F7261E8D}_is1" = PDF-Viewer
"{A324DC11-FF02-3CE8-9D6F-67EBC006D970}" = Microsoft .NET Framework 4 Extended CSY Language Pack
"{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}" = Microsoft Visual C++ 2005 Redistributable (x64)
"{B6E3757B-5E77-3915-866A-CCFC4B8D194C}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053
"{D79A02E9-6713-4335-9668-AAC7474C0C0E}" = HP Vision Hardware Diagnostics
"{DC911ADF-7B60-40F2-A112-FB1EB6402D07}" = Microsoft Security Client CS-CZ Language Pack
"{E102B843-786A-4F58-AF75-6504570E207B}" = Microsoft Security Client
"{EE5F74BC-5CD5-4EF2-86BA-81E6CF46A18F}" = Autodesk Sync
"{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}" = Microsoft .NET Framework 4 Client Profile
"{FE2F4875-095C-427C-9A97-4F8DE05ACF22}" = Jazykový balíček Autodesk Inventor Fusion plug-in pro aplikaci AutoCAD 2013
"{FFF5619F-2013-0064-A85E-9994F70A9E5D}" = Autodesk Inventor Fusion 2013
"AutoCAD 2013 – Čeština (Czech)" = AutoCAD 2013 – Čeština (Czech)
"Autodesk Inventor Fusion 2013" = Autodesk Inventor Fusion 2013
"CCleaner" = CCleaner
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Microsoft .NET Framework 4 Client Profile CSY Language Pack" = Microsoft .NET Framework 4 Client Profile CSY Language Pack
"Microsoft .NET Framework 4 Extended" = Microsoft .NET Framework 4 Extended
"Microsoft .NET Framework 4 Extended CSY Language Pack" = Microsoft .NET Framework 4 Extended CSY Language Pack
"Microsoft Security Client" = Microsoft Security Essentials
"Modul plug-in aplikace Autodesk Inventor Fusion pro aplikaci AutoCAD 2013" = Autodesk Inventor Fusion plug-in for AutoCAD 2013
"WinRAR archiver" = WinRAR 4.00 (64-bit)
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{07FA4960-B038-49EB-891B-9F95930AA544}" = HP Customer Experience Enhancements
"{08235411-48C8-A293-8642-D9575891E7D9}" = Catalyst Control Center InstallProxy
"{08548558-3EC9-BD0B-3D09-632500268F59}" = CCC Help Portuguese
"{117EBEEB-5DB0-43C8-9FD6-DD583DB152DD}" = Autodesk Material Library 2013
"{137B2CE7-30A2-4836-0830-707F1010F517}" = CCC Help English
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{22139F5D-9405-455A-BDEB-658B1A4E4861}" = Catalyst Control Center - Branding
"{25F2A86D-E2E2-C2AD-8173-86C18632F214}" = CCC Help Chinese Traditional
"{26A24AE4-039D-4CA4-87B4-2F83217017FF}" = Java 7 Update 17
"{2842077A-7895-5310-4F0C-42C83501E770}" = CCC Help Thai
"{28E82311-8616-11E1-BEB0-B8AC6F97B88E}" = Google Earth
"{2ACAB850-69A5-8090-08B7-D27CC6D8652C}" = CCC Help German
"{2B2B5D2B-0F01-410B-843B-8F437FD75FBF}" = FreeCAD 0.13
"{2BAD00A4-7FD1-61C5-10C3-8275723943AD}" = CCC Help Danish
"{2BDD6161-833F-482C-8C04-B0D4A4B1F266}_is1" = ZK Faktury 2.10
"{2BF943D5-1468-589A-50E3-DD0ED6596022}" = Catalyst Control Center Graphics Full New
"{2F3ACB0A-2E3B-4ACA-BFEC-12FA555F770D}" = ToneLabST USB-MIDI Driver Setup for Windows
"{34DB1D69-9FFC-7899-6F4D-22C4C15ADD54}" = CCC Help Polish
"{3F310D8D-AC3B-5478-5AEA-D2EF5D7437E7}" = CCC Help Swedish
"{40BF1E83-20EB-11D8-97C5-0009C5020658}" = Power2Go
"{44B2A0AB-412E-4F8C-B058-D1E8AECCDFF5}" = Recovery Manager
"{46BA053F-57B3-4153-BDB6-D37EEC8B12D7}" = LightScribe System Software
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{56009CA3-423B-41F8-884A-E5B049534F15}" = Kaspersky Security Scan
"{595007B2-E139-535C-D723-4B0442FC40F5}" = CCC Help Italian
"{5A21C631-0494-7377-1E3B-99353E04F83B}" = CCC Help Japanese
"{60470F9B-980C-4557-A2ED-43EEB38FA201}" = ToneLabST Sound Librarian
"{606E12B9-641F-4644-A22A-FF38AE980AFD}" = Autodesk Material Library Base Resolution Image Library 2013
"{62F029AB-85F2-0000-866A-9FC0DD99DDBC}" = Autodesk Content Service
"{62F029AB-85F2-0001-866A-9FC0DD99DDBC}" = Autodesk Content Service Language Pack
"{670A9A20-E29D-40C3-9937-2AFF89C3AC82}_is1" = PROFIT 2013.04
"{695C04CF-CF98-FAD6-9590-6C555B2E2E79}" = CCC Help Chinese Standard
"{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}" = Windows Media Player Firefox Plugin
"{6F277272-77D6-1E03-B8BB-B408B26C5140}" = CCC Help Czech
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{7240A994-0ED4-4841-AD3B-5E5F72850F67}" = Catalyst Control Center Graphics Previews Vista
"{7C66E480-E42D-3664-B207-5CE9A706BC1F}" = Catalyst Control Center Graphics Light
"{7CAAA7B2-D9EA-2416-9D63-DDBC8E669059}" = CCC Help French
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{84B4C4F4-F244-6A7E-EDC6-ECD46ACAAE59}" = CCC Help Greek
"{8763793B-4D7D-49C8-A859-5C582EC02640}" = Nexus Radio
"{8EB84BE2-1F31-4950-83D8-C211A9A08739}" = AM Usb Card Reader Driver
"{90120000-0020-0405-0000-0000000FF1CE}" = Sada Compatibility Pack pro systém Office 2007
"{951B0F30-9F1A-4BF6-B3DA-99EB0E917B1C}" = FARO LS 1.1.406.58
"{96AE7E41-E34E-47D0-AC07-1091A8127911}" = Realtek USB 2.0 Card Reader
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{AC76BA86-7AD7-1029-7B44-AA1000000001}" = Adobe Reader X (10.1.8) - Czech
"{AF4A82A7-F453-CE12-A942-E55FAC234387}" = ccc-core-static
"{B4092C6D-E886-4CB2-BA68-FE5A88D31DE6}_is1" = Spybot - Search & Destroy
"{B5B7E8FF-62F6-FA85-4C4A-83AAF816CE6E}" = CCC Help Spanish
"{B6CF2967-C81E-40C0-9815-C05774FEF120}" = Skype Click to Call
"{B8089767-9A45-0E84-FCDE-15698650FF17}" = CCC Help Hungarian
"{B8AC1A89-FFD1-4F97-8051-E505A160F562}" = HP Odometer
"{B9A03B7B-E0FF-4FB3-BA83-762E58A1B0AA}" = HP Support Information
"{C59C179C-668D-49A9-B6EA-0121CCFC1243}" = LabelPrint
"{C9496C0E-BE4C-7800-900B-5E66B958AEC1}" = CCC Help Russian
"{D5B94160-4A07-4956-9C73-8C5EEFEF180F}" = OpenOffice.org 3.3
"{DE77FE3F-A33D-499A-87AD-5FC406617B40}" = HP Update
"{E848D976-CE38-43DC-9D22-5CBAC9130387}" = CompressionPackage
"{EB1A6595-613F-9654-E58E-0876F8B0E8F3}" = Catalyst Control Center Localization All
"{EDD1E22B-249A-5ED7-BA0A-C41BAA8256ED}" = CCC Help Korean
"{EE7257A2-39A2-4D2F-9DAC-F9F25B8AE1D8}" = Skype™ 5.10
"{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F252C428-A4AE-C73E-031A-C451FDD660A9}" = CCC Help Norwegian
"{F67EA3C6-38B0-675A-E2F9-8C343DE1C826}" = Catalyst Control Center Graphics Full Existing
"{F686E613-03C4-085F-188A-9E5DC1455787}" = CCC Help Turkish
"{F7F7626C-4612-BF7B-38D5-07E247973A1A}" = Catalyst Control Center Core Implementation
"{F8CA8746-F561-61D7-A496-8D4C4E1F8A57}" = CCC Help Dutch
"{FCDDC9D3-5524-9AD1-651C-467910CC1903}" = CCC Help Finnish
"Adobe Flash Player ActiveX" = Adobe Flash Player 11 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin
"AmUStor" = AM Usb Card Reader Driver
"Autodesk Content Service" = Autodesk Content Service
"CanonMyPrinter" = Canon My Printer
"CanonSolutionMenuEX" = Canon Solution Menu EX
"Cromelin" = Cromelin 02.11
"Deny" = Deny 02.10
"Easy-PhotoPrint EX" = Canon Easy-PhotoPrint EX
"Easy-WebPrint EX" = Canon Easy-WebPrint EX
"ESET Online Scanner" = ESET Online Scanner v3
"FastStone Image Viewer" = FastStone Image Viewer 4.6
"FastStone Photo Resizer" = FastStone Photo Resizer 3.0
"Free YouTube to MP3 Converter_is1" = Free YouTube to MP3 Converter version 3.11.34.1015
"InstallShield_{40BF1E83-20EB-11D8-97C5-0009C5020658}" = Power2Go
"InstallShield_{C59C179C-668D-49A9-B6EA-0121CCFC1243}" = LabelPrint
"KLiteCodecPack_is1" = K-Lite Codec Pack 7.1.0 (Full)
"Machinarium" = Machinarium
"Mozilla Firefox 26.0 (x86 cs)" = Mozilla Firefox 26.0 (x86 cs)
"MozillaMaintenanceService" = Mozilla Maintenance Service
"MP Navigator EX 4.0" = Canon MP Navigator EX 4.0
"Opera 12.16.1860" = Opera 12.16
"PDF Complete" = PDF Complete Special Edition
"Pracovní kalendář" = Pracovní kalendář
"Registrace uživatele zařízení Canon MG5200 series" = Registrace uživatele zařízení Canon MG5200 series
"The KMPlayer" = The KMPlayer (remove only)
"ToneLabST USB-ASIO Driver" = ToneLabST USB-ASIO Driver
"Transcribe!_is1" = Transcribe! 7.51
"VLC media player" = VLC media player 1.1.9
"Winamp" = Winamp
"WinRAR archiver" = WinRAR 4.00 (32-bit)
========== Last 20 Event Log Errors ==========
[ Application Events ]
Error - 17.3.2013 8:31:30 | Computer Name = Pavilion-HP | Source = Microsoft-Windows-User Profiles Service | ID = 1542
Description = Systém Windows nemůže načíst soubor registru tříd. PODROBNOSTI – Systém
nemůže nalézt uvedený soubor.
Error - 17.3.2013 8:31:31 | Computer Name = Pavilion-HP | Source = Microsoft-Windows-User Profiles Service | ID = 1542
Description = Systém Windows nemůže načíst soubor registru tříd. PODROBNOSTI – Systém
nemůže nalézt uvedený soubor.
Error - 18.3.2013 3:01:23 | Computer Name = Pavilion-HP | Source = Microsoft-Windows-User Profiles Service | ID = 1542
Description = Systém Windows nemůže načíst soubor registru tříd. PODROBNOSTI – Systém
nemůže nalézt uvedený soubor.
Error - 18.3.2013 3:01:23 | Computer Name = Pavilion-HP | Source = Microsoft-Windows-User Profiles Service | ID = 1542
Description = Systém Windows nemůže načíst soubor registru tříd. PODROBNOSTI – Systém
nemůže nalézt uvedený soubor.
Error - 19.3.2013 7:35:28 | Computer Name = Pavilion-HP | Source = Microsoft-Windows-User Profiles Service | ID = 1542
Description = Systém Windows nemůže načíst soubor registru tříd. PODROBNOSTI – Systém
nemůže nalézt uvedený soubor.
Error - 19.3.2013 7:35:28 | Computer Name = Pavilion-HP | Source = Microsoft-Windows-User Profiles Service | ID = 1542
Description = Systém Windows nemůže načíst soubor registru tříd. PODROBNOSTI – Systém
nemůže nalézt uvedený soubor.
Error - 20.3.2013 3:40:52 | Computer Name = Pavilion-HP | Source = Microsoft-Windows-User Profiles Service | ID = 1542
Description = Systém Windows nemůže načíst soubor registru tříd. PODROBNOSTI – Systém
nemůže nalézt uvedený soubor.
Error - 20.3.2013 3:40:52 | Computer Name = Pavilion-HP | Source = Microsoft-Windows-User Profiles Service | ID = 1542
Description = Systém Windows nemůže načíst soubor registru tříd. PODROBNOSTI – Systém
nemůže nalézt uvedený soubor.
Error - 21.3.2013 1:56:13 | Computer Name = Pavilion-HP | Source = Microsoft-Windows-User Profiles Service | ID = 1542
Description = Systém Windows nemůže načíst soubor registru tříd. PODROBNOSTI – Systém
nemůže nalézt uvedený soubor.
Error - 21.3.2013 1:56:13 | Computer Name = Pavilion-HP | Source = Microsoft-Windows-User Profiles Service | ID = 1542
Description = Systém Windows nemůže načíst soubor registru tříd. PODROBNOSTI – Systém
nemůže nalézt uvedený soubor.
[ Hewlett-Packard Events ]
Error - 29.10.2012 7:31:38 | Computer Name = Pavilion-HP | Source = HPSFMsgr.exe | ID = 4000
Description = HP Error ID: -2147221164 v System.RuntimeTypeHandle.CreateInstance(RuntimeType
type, Boolean publicOnly, Boolean noCheck, Boolean& canBeCached, RuntimeMethodHandle&
ctor, Boolean& bNeedSecurityCheck) v System.RuntimeType.CreateInstanceSlow(Boolean
publicOnly, Boolean fillCache) v System.RuntimeType.CreateInstanceImpl(Boolean
publicOnly, Boolean skipVisibilityChecks, Boolean fillCache) v System.Activator.CreateInstance(Type
type, Boolean nonPublic) v HPSA_Messenger.MessengerCom.TrayDeskBand.isTaskbarDisplayed()
StackTrace:
v System.RuntimeTypeHandle.CreateInstance(RuntimeType type, Boolean publicOnly,
Boolean noCheck, Boolean& canBeCached, RuntimeMethodHandle& ctor, Boolean& bNeedSecurityCheck)
v System.RuntimeType.CreateInstanceSlow(Boolean publicOnly, Boolean fillCache)
v System.RuntimeType.CreateInstanceImpl(Boolean publicOnly, Boolean skipVisibilityChecks,
Boolean fillCache) v System.Activator.CreateInstance(Type type, Boolean nonPublic)
v HPSA_Messenger.MessengerCom.TrayDeskBand.isTaskbarDisplayed() Source: mscorlib
Name:
HPSFMsgr.exe Version: 01.00.00.00 Path: C:\Program Files (x86)\Hewlett-Packard\HP
Support Framework\Resources\HPSFMessenger\HPSFMsgr.exe Format: cs-CZ RAM: 3839 Ram
Utilization: TargetSite: System.Object CreateInstance(System.RuntimeType, Boolean,
Boolean, Boolean ByRef, System.RuntimeMethodHandle ByRef, Boolean ByRef)
Error - 23.11.2012 12:24:21 | Computer Name = Pavilion-HP | Source = HPSF.exe | ID = 4000
Description = HP Error ID: -2146233087 Server stack trace: v System.ServiceModel.Channels.ServiceChannel.Call(String
action, Boolean oneway, ProxyOperationRuntime operation, Object[] ins, Object[]
outs, TimeSpan timeout) v System.ServiceModel.Channels.ServiceChannel.Call(String
action, Boolean oneway, ProxyOperationRuntime operation, Object[] ins, Object[]
outs) v System.ServiceModel.Channels.ServiceChannelProxy.InvokeService(IMethodCallMessage
methodCall, ProxyOperationRuntime operation) v System.ServiceModel.Channels.ServiceChannelProxy.Invoke(IMessage
message) Exception rethrown at [0] Message: Server neposkytl smysluplnou odpověď.
Může to být způsobeno neshodou kontraktů, předčasným ukončením relace nebo vnitřní
chybou serveru. StackTrace: Server stack trace: v System.ServiceModel.Channels.ServiceChannel.Call(String
action, Boolean oneway, ProxyOperationRuntime operation, Object[] ins, Object[]
outs, TimeSpan timeout) v System.ServiceModel.Channels.ServiceChannel.Call(String
action, Boolean oneway, ProxyOperationRuntime operation, Object[] ins, Object[]
outs) v System.ServiceModel.Channels.ServiceChannelProxy.InvokeService(IMethodCallMessage
methodCall, ProxyOperationRuntime operation) v System.ServiceModel.Channels.ServiceChannelProxy.Invoke(IMessage
message) Exception rethrown at [0]: v System.Runtime.Remoting.Proxies.RealProxy.HandleReturnMessage(IMessage
reqMsg, IMessage retMsg) v System.Runtime.Remoting.Proxies.RealProxy.PrivateInvoke(MessageData&
msgData, Int32 type) v HP.SupportFramework.Communicator.MessengerComm.IMessengerCommunicator.UpdateTimer()
v HP.SupportAssistant.UI.MessengerCommunication.sendTimerUpdate() Source: mscorlib
Name:
HPSF.exe Version: 06.00.01.01 Path: C:\Program Files (x86)\Hewlett-Packard\HP Support
Framework\HPSF.exe Format: cs-CZ RAM: 3839 Ram Utilization: 20 TargetSite: Void HandleReturnMessage(System.Runtime.Remoting.Messaging.IMessage,
System.Runtime.Remoting.Messaging.IMessage)
Error - 23.11.2012 12:24:36 | Computer Name = Pavilion-HP | Source = HPSF.exe | ID = 4000
Description =
Error - 23.11.2012 12:24:36 | Computer Name = Pavilion-HP | Source = HPSF.exe | ID = 4000
Description =
Error - 23.11.2012 12:24:37 | Computer Name = Pavilion-HP | Source = HPSF.exe | ID = 4000
Description =
Error - 23.11.2012 12:24:48 | Computer Name = Pavilion-HP | Source = HPSF.exe | ID = 4000
Description =
Error - 11.12.2012 16:44:50 | Computer Name = Pavilion-HP | Source = hpsa_service.exe | ID = 2000
Description = HP Error ID: -2146233088 v HP.ActiveCheckLocalMode.SessionManager.ActiveCheckManager.UpdateDetail(String
category) v HP.ActiveCheckLocalMode.SessionManager.ActiveCheckManager.UpdateAndDetectCore()
v HP.SupportAssistant.Service.ACLM.ActiveCheck.LaunchActiveCheck(Boolean singleScan,
Boolean localScan) Message: Failed to perform update. StackTrace: v HP.ActiveCheckLocalMode.SessionManager.ActiveCheckManager.UpdateDetail(String
category) v HP.ActiveCheckLocalMode.SessionManager.ActiveCheckManager.UpdateAndDetectCore()
v HP.SupportAssistant.Service.ACLM.ActiveCheck.LaunchActiveCheck(Boolean singleScan,
Boolean localScan) Source: HP.ActiveCheckLocalMode.SessionManager InnerException.Message:
Objekt /e8f52109_a69b_40cc_a22a_86dc476f0e7d/xdwhxkk6haxmqsx5unx5plgf_5.rem byl
odpojen nebo na serveru neexistuje. Name: hpsa_service.exe Version: 06.00.01.01 Path:
C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe Format:
cs-CZ RAM: 3839 Ram Utilization: 30 TargetSite: Void UpdateDetail(System.String)
Error - 18.12.2012 16:37:40 | Computer Name = Pavilion-HP | Source = HPSF.exe | ID = 4000
Description =
Error - 18.12.2012 16:38:00 | Computer Name = Pavilion-HP | Source = HPSF.exe | ID = 4000
Description =
Error - 26.12.2012 13:51:06 | Computer Name = Pavilion-HP | Source = HPSFMsgr.exe | ID = 4000
Description = HP Error ID: -2147221164 v System.RuntimeTypeHandle.CreateInstance(RuntimeType
type, Boolean publicOnly, Boolean noCheck, Boolean& canBeCached, RuntimeMethodHandle&
ctor, Boolean& bNeedSecurityCheck) v System.RuntimeType.CreateInstanceSlow(Boolean
publicOnly, Boolean fillCache) v System.RuntimeType.CreateInstanceImpl(Boolean
publicOnly, Boolean skipVisibilityChecks, Boolean fillCache) v System.Activator.CreateInstance(Type
type, Boolean nonPublic) v HPSA_Messenger.MessengerCom.TrayDeskBand.isTaskbarDisplayed()
StackTrace:
v System.RuntimeTypeHandle.CreateInstance(RuntimeType type, Boolean publicOnly,
Boolean noCheck, Boolean& canBeCached, RuntimeMethodHandle& ctor, Boolean& bNeedSecurityCheck)
v System.RuntimeType.CreateInstanceSlow(Boolean publicOnly, Boolean fillCache)
v System.RuntimeType.CreateInstanceImpl(Boolean publicOnly, Boolean skipVisibilityChecks,
Boolean fillCache) v System.Activator.CreateInstance(Type type, Boolean nonPublic)
v HPSA_Messenger.MessengerCom.TrayDeskBand.isTaskbarDisplayed() Source: mscorlib
Name:
HPSFMsgr.exe Version: 01.00.00.00 Path: C:\Program Files (x86)\Hewlett-Packard\HP
Support Framework\Resources\HPSFMessenger\HPSFMsgr.exe Format: cs-CZ RAM: 3839 Ram
Utilization: TargetSite: System.Object CreateInstance(System.RuntimeType, Boolean,
Boolean, Boolean ByRef, System.RuntimeMethodHandle ByRef, Boolean ByRef)
[ System Events ]
Error - 20.12.2013 11:42:42 | Computer Name = Pavilion-HP | Source = DCOM | ID = 10016
Description =
Error - 21.12.2013 6:21:14 | Computer Name = Pavilion-HP | Source = DCOM | ID = 10010
Description =
Error - 22.12.2013 10:54:24 | Computer Name = Pavilion-HP | Source = DCOM | ID = 10010
Description =
Error - 22.12.2013 10:54:24 | Computer Name = Pavilion-HP | Source = Service Control Manager | ID = 7011
Description = Při čekání na odezvu transakce služby AntiVirSchedulerService bylo
dosaženo časového limitu (30000 ms).
Error - 23.12.2013 5:16:07 | Computer Name = Pavilion-HP | Source = DCOM | ID = 10016
Description =
Error - 24.12.2013 9:37:48 | Computer Name = Pavilion-HP | Source = DCOM | ID = 10010
Description =
Error - 24.12.2013 9:39:17 | Computer Name = Pavilion-HP | Source = Service Control Manager | ID = 7009
Description = Při čekání na připojení služby Služba Zasílání zpráv o chybách systému
Windows bylo dosaženo časového limitu (30000 ms).
Error - 26.12.2013 11:28:45 | Computer Name = Pavilion-HP | Source = Service Control Manager | ID = 7011
Description = Při čekání na odezvu transakce služby AntiVirSchedulerService bylo
dosaženo časového limitu (30000 ms).
Error - 27.12.2013 6:02:37 | Computer Name = Pavilion-HP | Source = Service Control Manager | ID = 7011
Description = Při čekání na odezvu transakce služby AntiVirSchedulerService bylo
dosaženo časového limitu (30000 ms).
Error - 29.12.2013 13:01:43 | Computer Name = Pavilion-HP | Source = DCOM | ID = 10010
Description =
< End of report >
Re: Prosba o kontrolu logu.
Log OTL.Txt (1)
OTL logfile created on: 1.1.2014 2:18:58 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Pavilion\Desktop
64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.11.9600.16428)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy
3,75 Gb Total Physical Memory | 2,00 Gb Available Physical Memory | 53,30% Memory free
7,50 Gb Paging File | 5,75 Gb Available in Paging File | 76,70% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 584,43 Gb Total Space | 482,70 Gb Free Space | 82,59% Space Free | Partition Type: NTFS
Drive D: | 11,64 Gb Total Space | 1,25 Gb Free Space | 10,70% Space Free | Partition Type: NTFS
Computer Name: PAVILION-HP | User Name: Pavilion | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Processes (SafeList) ==========
PRC - [2013.12.31 20:16:22 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Pavilion\Desktop\OTL.exe
PRC - [2013.12.20 19:54:36 | 000,275,568 | ---- | M] (Mozilla Corporation) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
PRC - [2013.07.12 20:18:38 | 001,861,512 | ---- | M] (Adobe Systems, Inc.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_8_800_94.exe
PRC - [2013.05.10 08:57:22 | 000,065,640 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
PRC - [2012.01.31 09:46:56 | 000,019,232 | ---- | M] (Autodesk, Inc.) -- C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe
PRC - [2010.04.23 21:00:00 | 000,514,232 | ---- | M] (EasyBits Software AS) -- C:\Windows\SysWOW64\ezSharedSvcHost.exe
PRC - [2010.04.02 09:18:54 | 001,185,112 | ---- | M] (CANON INC.) -- C:\Program Files (x86)\Canon\Solution Menu EX\CNSEMAIN.EXE
PRC - [2009.10.15 00:53:20 | 000,635,416 | ---- | M] (PDF Complete Inc) -- C:\Program Files (x86)\PDF Complete\pdfsvc.exe
========== Modules (No Company Name) ==========
MOD - [2013.12.20 19:54:16 | 003,559,024 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefox\mozjs.dll
MOD - [2013.07.12 20:18:37 | 016,166,280 | ---- | M] () -- C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_8_800_94.dll
========== Services (SafeList) ==========
SRV:64bit: - [2013.11.26 10:18:09 | 000,111,616 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\IEEtwCollector.exe -- (IEEtwCollectorService)
SRV:64bit: - [2013.10.23 17:14:22 | 000,348,376 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- c:\Program Files\Microsoft Security Client\NisSrv.exe -- (NisSrv)
SRV:64bit: - [2013.10.23 17:14:22 | 000,023,808 | ---- | M] (Microsoft Corporation) [Auto | Running] -- c:\Program Files\Microsoft Security Client\MsMpEng.exe -- (MsMpSvc)
SRV:64bit: - [2013.05.27 06:50:47 | 001,011,712 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV:64bit: - [2013.02.19 18:44:19 | 001,432,400 | ---- | M] (Flexera Software, Inc.) [On_Demand | Stopped] -- C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe -- (FLEXnet Licensing Service 64)
SRV:64bit: - [2010.02.02 00:17:12 | 000,202,752 | ---- | M] (AMD) [Auto | Running] -- C:\Windows\SysNative\atiesrxx.exe -- (AMD External Events Utility)
SRV - [2013.12.20 19:54:36 | 000,119,408 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2013.05.10 08:57:22 | 000,065,640 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2012.07.13 12:28:36 | 000,160,944 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files (x86)\Skype\Updater\Updater.exe -- (SkypeUpdate)
SRV - [2012.01.31 09:46:56 | 000,019,232 | ---- | M] (Autodesk, Inc.) [Auto | Running] -- C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe -- (Autodesk Content Service)
SRV - [2010.03.18 12:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2009.10.15 00:53:20 | 000,635,416 | ---- | M] (PDF Complete Inc) [Auto | Running] -- C:\Program Files (x86)\PDF Complete\pdfsvc.exe -- (pdfcDispatcher)
SRV - [2009.06.10 22:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)
========== Driver Services (SafeList) ==========
DRV:64bit: - [2013.09.27 09:53:06 | 000,134,944 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\NisDrvWFP.sys -- (NisDrv)
DRV:64bit: - [2012.10.26 12:36:47 | 000,057,856 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV:64bit: - [2012.10.26 12:36:47 | 000,019,456 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\rdpvideominiport.sys -- (RdpVideoMiniport)
DRV:64bit: - [2012.03.01 07:46:16 | 000,023,408 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\Windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
DRV:64bit: - [2010.11.20 14:33:35 | 000,078,720 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:64bit: - [2010.04.09 00:12:00 | 000,243,744 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\RtsUStor.sys -- (RSUSBSTOR)
DRV:64bit: - [2010.03.10 01:33:52 | 000,016,440 | ---- | M] (Advanced Micro Devices Inc.) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\AtiPcie64.sys -- (AtiPcie)
DRV:64bit: - [2010.03.04 14:43:00 | 000,346,144 | ---- | M] (Realtek ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Rt64win7.sys -- (RTL8167)
DRV:64bit: - [2010.02.02 00:55:20 | 006,366,720 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\atipmdag.sys -- (amdkmdag)
DRV:64bit: - [2010.02.01 23:24:00 | 000,186,880 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\atikmpag.sys -- (amdkmdap)
DRV:64bit: - [2009.12.21 19:26:36 | 000,038,456 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\usbfilter.sys -- (usbfilter)
DRV:64bit: - [2009.10.23 09:26:14 | 000,046,592 | ---- | M] (Alcor Micro, Corp.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\AmUStor.sys -- (AmUStor)
DRV:64bit: - [2009.10.15 01:12:00 | 000,031,832 | ---- | M] (KORG INC.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\KORGUM64.SYS -- (KORGUMDS)
DRV:64bit: - [2009.10.08 01:13:34 | 000,070,200 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:64bit: - [2009.10.08 01:13:34 | 000,028,728 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:64bit: - [2009.07.14 02:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:64bit: - [2009.07.14 02:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:64bit: - [2009.07.14 02:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:64bit: - [2009.06.10 21:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:64bit: - [2009.06.10 21:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:64bit: - [2009.06.10 21:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:64bit: - [2009.06.10 21:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
DRV - [2009.07.14 02:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount)
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE:64bit: - HKLM\..\SearchScopes,DefaultScope =
IE:64bit: - HKLM\..\SearchScopes\{5EAFB9AB-9F17-4EF4-B4E3-FDA1674C746F}: "URL" = http://uk.search.yahoo.com/search?p={se ... ype=CPDTDF
IE:64bit: - HKLM\..\SearchScopes\{B52B27D3-7187-45B3-99BB-5B8F3A829C67}: "URL" = http://en.wikipedia.org/wiki/Special:Se ... earchTerms}
IE:64bit: - HKLM\..\SearchScopes\{CBCA8CF1-7BEE-43D1-90A5-213A3E83F32C}: "URL" = http://www.bing.com/search?q={searchTer ... -SearchBox
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\..\SearchScopes,DefaultScope =
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKLM\..\SearchScopes\{5EAFB9AB-9F17-4EF4-B4E3-FDA1674C746F}: "URL" = http://uk.search.yahoo.com/search?p={se ... ype=CPDTDF
IE - HKLM\..\SearchScopes\{B52B27D3-7187-45B3-99BB-5B8F3A829C67}: "URL" = http://en.wikipedia.org/wiki/Special:Se ... earchTerms}
IE - HKLM\..\SearchScopes\{CBCA8CF1-7BEE-43D1-90A5-213A3E83F32C}: "URL" = http://www.bing.com/search?q={searchTer ... -SearchBox
IE - HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.bing.com
IE - HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\Main,First Home Page = http://www.bing.com
IE - HKU\.DEFAULT\..\URLSearchHook: {03EB0E9C-7A91-4381-A220-9B52B641CDB1} - No CLSID value found
IE - HKU\.DEFAULT\..\SearchScopes,DefaultScope =
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-18\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.bing.com
IE - HKU\S-1-5-18\SOFTWARE\Microsoft\Internet Explorer\Main,First Home Page = http://www.bing.com
IE - HKU\S-1-5-18\..\URLSearchHook: {03EB0E9C-7A91-4381-A220-9B52B641CDB1} - No CLSID value found
IE - HKU\S-1-5-18\..\SearchScopes,DefaultScope =
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-19\..\SearchScopes,DefaultScope =
IE - HKU\S-1-5-20\..\SearchScopes,DefaultScope =
IE - HKU\S-1-5-21-2005895358-2267774490-3321710968-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
IE - HKU\S-1-5-21-2005895358-2267774490-3321710968-1000\..\SearchScopes,DefaultScope =
IE - HKU\S-1-5-21-2005895358-2267774490-3321710968-1000\..\SearchScopes\{033148B9-330D-4EAC-8107-7CDCE8DD868A}: "URL" = http://search.yahoo.com/search?fr=chr-g ... earchTerms}
IE - HKU\S-1-5-21-2005895358-2267774490-3321710968-1000\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTer ... ORM=IE10SR
IE - HKU\S-1-5-21-2005895358-2267774490-3321710968-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
========== FireFox ==========
FF:64bit: - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF64_11_8_800_94.dll File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf: C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll (Tracker Software Products (Canada) Ltd.)
FF:64bit: - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.21.2: C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF:64bit: - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.21.2: C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@tracker-software.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf: C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll (Tracker Software Products (Canada) Ltd.)
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_8_800_94.dll ()
FF - HKLM\Software\MozillaPlugins\@canon.com/EPPEX: C:\Program Files (x86)\Canon\Easy-PhotoPrint EX\NPEZFFPI.DLL (CANON INC.)
FF - HKLM\Software\MozillaPlugins\@docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf: C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll (Tracker Software Products (Canada) Ltd.)
FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.17.2: C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.17.2: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@tracker-software.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf: C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll (Tracker Software Products (Canada) Ltd.)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\@docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf: C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll (Tracker Software Products (Canada) Ltd.)
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 26.0\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 26.0\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins [2013.12.20 19:54:10 | 000,000,000 | ---D | M]
[2013.12.20 19:54:10 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\extensions
[2013.12.20 19:54:10 | 000,000,000 | ---D | M] (Skype Click to Call) -- C:\Program Files (x86)\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
[2013.12.20 19:54:09 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\browser\extensions
[2013.12.20 19:54:37 | 000,000,000 | ---D | M] (Default) -- C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
[2013.01.18 22:56:20 | 000,171,584 | ---- | M] (Tracker Software Products (Canada) Ltd.) -- C:\Program Files (x86)\mozilla firefox\plugins\npPDFXCviewNPPlugin.dll
O1 HOSTS File: ([2013.12.30 20:55:57 | 000,000,741 | R--- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2:64bit: - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2:64bit: - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O2 - BHO: (Canon Easy-WebPrint EX BHO) - {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll (CANON INC.)
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O3 - HKU\S-1-5-21-2005895358-2267774490-3321710968-1000\..\Toolbar\WebBrowser: (Canon Easy-WebPrint EX) - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll (CANON INC.)
O4:64bit: - HKLM..\Run: [CanonMyPrinter] c:\program files\canon\myprinter\bjmyprt.exe (CANON INC.)
O4 - HKLM..\Run: [CanonSolutionMenuEx] c:\program files (x86)\canon\solution menu ex\cnsemain.exe (CANON INC.)
O4 - Startup: C:\Users\All Users\ABBYY [2013.04.03 14:43:37 | 000,000,000 | ---D | M]
O4 - Startup: C:\Users\All Users\Adobe [2012.11.07 11:51:42 | 000,000,000 | ---D | M]
O4 - Startup: C:\Users\All Users\AmUStor [2010.12.16 03:58:38 | 000,000,000 | ---D | M]
O4 - Startup: C:\Users\All Users\Application Data [2009.07.14 06:08:56 | 000,000,000 | -HSD | M]
O4 - Startup: C:\Users\All Users\ATI [2010.12.16 03:56:01 | 000,000,000 | ---D | M]
O4 - Startup: C:\Users\All Users\Autodesk [2013.05.23 21:55:21 | 000,000,000 | ---D | M]
O4 - Startup: C:\Users\All Users\CanonBJ [2011.09.04 09:48:22 | 000,000,000 | -H-D | M]
O4 - Startup: C:\Users\All Users\CanonEPP [2012.08.10 15:35:06 | 000,000,000 | -H-D | M]
O4 - Startup: C:\Users\All Users\CanonIJEGV [2013.07.17 12:03:50 | 000,000,000 | -H-D | M]
O4 - Startup: C:\Users\All Users\CanonIJEPPEX2 [2012.08.10 15:35:06 | 000,000,000 | -H-D | M]
O4 - Startup: C:\Users\All Users\CanonIJMSetup [2012.08.10 15:30:56 | 000,000,000 | ---D | M]
O4 - Startup: C:\Users\All Users\CanonIJScan [2012.10.07 20:25:48 | 000,000,000 | -H-D | M]
O4 - Startup: C:\Users\All Users\CanonIJWSpt [2012.08.10 15:29:45 | 000,000,000 | ---D | M]
O4 - Startup: C:\Users\All Users\CyberLink [2011.11.28 18:12:04 | 000,000,000 | ---D | M]
O4 - Startup: C:\Users\All Users\Desktop [2009.07.14 06:08:56 | 000,000,000 | -HSD | M]
O4 - Startup: C:\Users\All Users\Documents [2009.07.14 06:08:56 | 000,000,000 | -HSD | M]
O4 - Startup: C:\Users\All Users\F-Secure [2011.08.20 10:31:40 | 000,000,000 | ---D | M]
O4 - Startup: C:\Users\All Users\Favorites [2009.07.14 06:08:56 | 000,000,000 | -HSD | M]
O4 - Startup: C:\Users\All Users\FLEXnet [2013.05.22 08:57:21 | 000,000,000 | ---D | M]
O4 - Startup: C:\Users\All Users\Guitar Pro 6 [2013.12.01 22:07:17 | 000,000,000 | ---D | M]
O4 - Startup: C:\Users\All Users\Hewlett-Packard [2011.11.01 20:26:15 | 000,000,000 | ---D | M]
O4 - Startup: C:\Users\All Users\IObit [2013.03.12 08:59:35 | 000,000,000 | ---D | M]
O4 - Startup: C:\Users\All Users\Kaspersky Lab [2013.01.16 12:08:23 | 000,000,000 | ---D | M]
O4 - Startup: C:\Users\All Users\Malwarebytes [2013.12.29 20:00:23 | 000,000,000 | ---D | M]
O4 - Startup: C:\Users\All Users\McAfee [2012.02.28 12:56:25 | 000,000,000 | ---D | M]
O4 - Startup: C:\Users\All Users\Microsoft [2013.03.24 22:04:04 | 000,000,000 | --SD | M]
O4 - Startup: C:\Users\All Users\Microsoft.SqlServer.Compact.351.32.bc ()
O4 - Startup: C:\Users\All Users\Mozilla [2012.04.25 16:02:14 | 000,000,000 | ---D | M]
O4 - Startup: C:\Users\All Users\Norton [2011.11.02 13:02:45 | 000,000,000 | ---D | M]
O4 - Startup: C:\Users\All Users\NortonInstaller [2010.12.16 04:05:36 | 000,000,000 | ---D | M]
O4 - Startup: C:\Users\All Users\PDFC [2013.12.29 00:29:23 | 000,000,000 | ---D | M]
O4 - Startup: C:\Users\All Users\Recovery [2011.12.28 18:08:46 | 000,000,000 | ---D | M]
O4 - Startup: C:\Users\All Users\Skype [2013.04.04 20:47:21 | 000,000,000 | ---D | M]
O4 - Startup: C:\Users\All Users\Spybot - Search & Destroy [2013.12.29 02:24:51 | 000,000,000 | ---D | M]
O4 - Startup: C:\Users\All Users\Start Menu [2009.07.14 06:08:56 | 000,000,000 | -HSD | M]
O4 - Startup: C:\Users\All Users\Sun [2011.05.11 14:39:26 | 000,000,000 | ---D | M]
O4 - Startup: C:\Users\All Users\Temp [2013.04.19 17:57:57 | 000,000,000 | ---D | M]
O4 - Startup: C:\Users\All Users\Templates [2009.07.14 06:08:56 | 000,000,000 | -HSD | M]
O4 - Startup: C:\Users\All Users\WildTangent [2012.07.12 20:12:21 | 000,000,000 | ---D | M]
O4 - Startup: C:\Users\All Users\{9BF4D58B-C6D6-467B-BC5A-FD0C1278F4AF} [2013.04.03 10:24:40 | 000,000,000 | ---D | M]
O4 - Startup: C:\Users\All Users\{CED89F1A-945F-46EC-B23C-5EAF6D2DB12A} [2013.03.12 08:56:34 | 000,000,000 | ---D | M]
O4 - Startup: C:\Users\Default\AppData [2009.07.14 04:20:08 | 000,000,000 | -H-D | M]
O4 - Startup: C:\Users\Default\Application Data [2009.07.14 06:08:56 | 000,000,000 | -HSD | M]
O4 - Startup: C:\Users\Default\Desktop [2009.07.14 03:34:59 | 000,000,000 | R--D | M]
O4 - Startup: C:\Users\Default\Documents [2009.07.14 06:08:56 | 000,000,000 | R--D | M]
O4 - Startup: C:\Users\Default\Downloads [2009.07.14 03:34:59 | 000,000,000 | R--D | M]
O4 - Startup: C:\Users\Default\Favorites [2011.11.02 12:54:20 | 000,000,000 | R--D | M]
O4 - Startup: C:\Users\Default\Links [2009.07.14 03:34:59 | 000,000,000 | R--D | M]
O4 - Startup: C:\Users\Default\Local Settings [2009.07.14 06:08:56 | 000,000,000 | -HSD | M]
O4 - Startup: C:\Users\Default\Music [2009.07.14 03:34:59 | 000,000,000 | R--D | M]
O4 - Startup: C:\Users\Default\My Documents [2009.07.14 06:08:56 | 000,000,000 | -HSD | M]
O4 - Startup: C:\Users\Default\NetHood [2009.07.14 06:08:56 | 000,000,000 | -HSD | M]
O4 - Startup: C:\Users\Default\NTUSER.DAT ()
O4 - Startup: C:\Users\Default\NTUSER.DAT.LOG1 ()
O4 - Startup: C:\Users\Default\NTUSER.DAT.LOG2 ()
O4 - Startup: C:\Users\Default\NTUSER.DAT{016888bd-6c6f-11de-8d1d-001e0bcde3ec}.TM.blf ()
O4 - Startup: C:\Users\Default\NTUSER.DAT{016888bd-6c6f-11de-8d1d-001e0bcde3ec}.TMContainer00000000000000000001.regtrans-ms ()
O4 - Startup: C:\Users\Default\NTUSER.DAT{016888bd-6c6f-11de-8d1d-001e0bcde3ec}.TMContainer00000000000000000002.regtrans-ms ()
O4 - Startup: C:\Users\Default\Pictures [2009.07.14 03:34:59 | 000,000,000 | R--D | M]
O4 - Startup: C:\Users\Default\PrintHood [2009.07.14 06:08:56 | 000,000,000 | -HSD | M]
O4 - Startup: C:\Users\Default\Recent [2009.07.14 06:08:56 | 000,000,000 | -HSD | M]
O4 - Startup: C:\Users\Default\Saved Games [2009.07.14 03:34:59 | 000,000,000 | ---D | M]
O4 - Startup: C:\Users\Default\SendTo [2009.07.14 06:08:56 | 000,000,000 | -HSD | M]
O4 - Startup: C:\Users\Default\Start Menu [2009.07.14 06:08:56 | 000,000,000 | -HSD | M]
O4 - Startup: C:\Users\Default\Templates [2009.07.14 06:08:56 | 000,000,000 | -HSD | M]
O4 - Startup: C:\Users\Default\Videos [2009.07.14 03:34:59 | 000,000,000 | R--D | M]
O4 - Startup: C:\Users\Guest\AppData [2012.02.26 19:07:11 | 000,000,000 | -H-D | M]
O4 - Startup: C:\Users\Guest\Contacts [2013.09.13 09:34:41 | 000,000,000 | R--D | M]
O4 - Startup: C:\Users\Guest\Data aplikací [2012.02.26 19:07:11 | 000,000,000 | -HSD | M]
O4 - Startup: C:\Users\Guest\Desktop [2013.11.17 10:31:58 | 000,000,000 | R--D | M]
O4 - Startup: C:\Users\Guest\Dokumenty [2012.02.26 19:07:11 | 000,000,000 | -HSD | M]
O4 - Startup: C:\Users\Guest\Dokumenty [2012.02.26 19:07:11 | 000,000,000 | -HSD | M]
O4 - Startup: C:\Users\Guest\Downloads [2013.11.17 10:31:04 | 000,000,000 | R--D | M]
O4 - Startup: C:\Users\Guest\Favorites [2013.09.13 09:34:41 | 000,000,000 | R--D | M]
O4 - Startup: C:\Users\Guest\Links [2013.09.13 09:34:42 | 000,000,000 | R--D | M]
O4 - Startup: C:\Users\Guest\Local Settings [2012.02.26 19:07:11 | 000,000,000 | -HSD | M]
O4 - Startup: C:\Users\Guest\Music [2013.09.13 09:34:41 | 000,000,000 | R--D | M]
O4 - Startup: C:\Users\Guest\Nabídka Start [2012.02.26 19:07:11 | 000,000,000 | -HSD | M]
O4 - Startup: C:\Users\Guest\ntuser.dat ()
O4 - Startup: C:\Users\Guest\NTUSER.DAT.iobit ()
O4 - Startup: C:\Users\Guest\ntuser.dat.LOG1 ()
O4 - Startup: C:\Users\Guest\ntuser.dat.LOG2 ()
O4 - Startup: C:\Users\Guest\NTUSER.DAT{016888bd-6c6f-11de-8d1d-001e0bcde3ec}.TM.blf ()
O4 - Startup: C:\Users\Guest\NTUSER.DAT{016888bd-6c6f-11de-8d1d-001e0bcde3ec}.TMContainer00000000000000000001.regtrans-ms ()
O4 - Startup: C:\Users\Guest\NTUSER.DAT{016888bd-6c6f-11de-8d1d-001e0bcde3ec}.TMContainer00000000000000000002.regtrans-ms ()
O4 - Startup: C:\Users\Guest\ntuser.ini ()
O4 - Startup: C:\Users\Guest\Okolní síť [2012.02.26 19:07:11 | 000,000,000 | -HSD | M]
O4 - Startup: C:\Users\Guest\Okolní tiskárny [2012.02.26 19:07:11 | 000,000,000 | -HSD | M]
O4 - Startup: C:\Users\Guest\Pictures [2013.09.13 09:34:41 | 000,000,000 | R--D | M]
O4 - Startup: C:\Users\Guest\Poslední [2012.02.26 19:07:11 | 000,000,000 | -HSD | M]
O4 - Startup: C:\Users\Guest\Saved Games [2013.09.13 09:34:42 | 000,000,000 | R--D | M]
O4 - Startup: C:\Users\Guest\Searches [2013.09.13 09:34:41 | 000,000,000 | R--D | M]
O4 - Startup: C:\Users\Guest\SendTo [2012.02.26 19:07:11 | 000,000,000 | -HSD | M]
O4 - Startup: C:\Users\Guest\Soubory cookie [2012.02.26 19:07:11 | 000,000,000 | -HSD | M]
O4 - Startup: C:\Users\Guest\Sti_Trace.log ()
O4 - Startup: C:\Users\Guest\Videos [2013.09.13 09:34:41 | 000,000,000 | R--D | M]
O4 - Startup: C:\Users\Guest\Šablony [2012.02.26 19:07:11 | 000,000,000 | -HSD | M]
O4 - Startup: C:\Users\Pavilion\AppData [2011.11.02 12:54:55 | 000,000,000 | -H-D | M]
O4 - Startup: C:\Users\Pavilion\Application Data [2011.11.02 12:54:55 | 000,000,000 | -HSD | M]
O4 - Startup: C:\Users\Pavilion\Contacts [2013.09.12 19:53:13 | 000,000,000 | R--D | M]
O4 - Startup: C:\Users\Pavilion\Cookies [2011.11.02 12:54:55 | 000,000,000 | -HSD | M]
O4 - Startup: C:\Users\Pavilion\Desktop [2013.12.31 22:10:01 | 000,000,000 | R--D | M]
O4 - Startup: C:\Users\Pavilion\Documents [2013.11.25 12:36:30 | 000,000,000 | R--D | M]
O4 - Startup: C:\Users\Pavilion\Downloads [2013.12.31 20:17:36 | 000,000,000 | R--D | M]
O4 - Startup: C:\Users\Pavilion\Favorites [2013.09.12 19:53:13 | 000,000,000 | R--D | M]
O4 - Startup: C:\Users\Pavilion\Links [2013.09.12 19:53:13 | 000,000,000 | R--D | M]
O4 - Startup: C:\Users\Pavilion\Local Settings [2011.11.02 12:54:55 | 000,000,000 | -HSD | M]
O4 - Startup: C:\Users\Pavilion\Music [2013.09.12 19:53:13 | 000,000,000 | R--D | M]
O4 - Startup: C:\Users\Pavilion\My Documents [2011.11.02 12:54:55 | 000,000,000 | -HSD | M]
O4 - Startup: C:\Users\Pavilion\NetHood [2011.11.02 12:54:55 | 000,000,000 | -HSD | M]
O4 - Startup: C:\Users\Pavilion\ntuser.dat ()
O4 - Startup: C:\Users\Pavilion\ntuser.dat.iobit ()
O4 - Startup: C:\Users\Pavilion\ntuser.dat.LOG1 ()
O4 - Startup: C:\Users\Pavilion\ntuser.dat.LOG2 ()
O4 - Startup: C:\Users\Pavilion\NTUSER.DAT{016888bd-6c6f-11de-8d1d-001e0bcde3ec}.TM.blf ()
O4 - Startup: C:\Users\Pavilion\NTUSER.DAT{016888bd-6c6f-11de-8d1d-001e0bcde3ec}.TMContainer00000000000000000001.regtrans-ms ()
O4 - Startup: C:\Users\Pavilion\NTUSER.DAT{016888bd-6c6f-11de-8d1d-001e0bcde3ec}.TMContainer00000000000000000002.regtrans-ms ()
O4 - Startup: C:\Users\Pavilion\ntuser.dat{63d2c5aa-eecd-11e2-b891-d485640c7441}.TM.blf ()
O4 - Startup: C:\Users\Pavilion\ntuser.dat{63d2c5aa-eecd-11e2-b891-d485640c7441}.TMContainer00000000000000000001.regtrans-ms ()
O4 - Startup: C:\Users\Pavilion\ntuser.dat{63d2c5aa-eecd-11e2-b891-d485640c7441}.TMContainer00000000000000000002.regtrans-ms ()
O4 - Startup: C:\Users\Pavilion\ntuser.dat{6edc282d-4ab4-11e1-9cf5-d485640c7441}.TM.blf ()
O4 - Startup: C:\Users\Pavilion\ntuser.dat{6edc282d-4ab4-11e1-9cf5-d485640c7441}.TMContainer00000000000000000001.regtrans-ms ()
O4 - Startup: C:\Users\Pavilion\ntuser.dat{6edc282d-4ab4-11e1-9cf5-d485640c7441}.TMContainer00000000000000000002.regtrans-ms ()
O4 - Startup: C:\Users\Pavilion\ntuser.ini ()
O4 - Startup: C:\Users\Pavilion\Pictures [2013.12.11 23:38:22 | 000,000,000 | R--D | M]
O4 - Startup: C:\Users\Pavilion\PrintHood [2011.11.02 12:54:55 | 000,000,000 | -HSD | M]
O4 - Startup: C:\Users\Pavilion\Recent [2011.11.02 12:54:55 | 000,000,000 | -HSD | M]
O4 - Startup: C:\Users\Pavilion\Saved Games [2013.09.12 19:53:13 | 000,000,000 | R--D | M]
O4 - Startup: C:\Users\Pavilion\Searches [2013.09.12 19:53:13 | 000,000,000 | R--D | M]
O4 - Startup: C:\Users\Pavilion\SendTo [2011.11.02 12:54:55 | 000,000,000 | -HSD | M]
O4 - Startup: C:\Users\Pavilion\Start Menu [2011.11.02 12:54:55 | 000,000,000 | -HSD | M]
O4 - Startup: C:\Users\Pavilion\Sti_Trace.log ()
O4 - Startup: C:\Users\Pavilion\Templates [2011.11.02 12:54:55 | 000,000,000 | -HSD | M]
O4 - Startup: C:\Users\Pavilion\Videos [2013.12.21 23:17:15 | 000,000,000 | R--D | M]
O4 - Startup: C:\Users\Public\AppData [2013.11.25 12:54:20 | 000,000,000 | ---D | M]
O4 - Startup: C:\Users\Public\CyberLink [2011.11.28 18:12:04 | 000,000,000 | ---D | M]
O4 - Startup: C:\Users\Public\Desktop [2013.12.30 09:47:23 | 000,000,000 | RH-D | M]
O4 - Startup: C:\Users\Public\Documents [2013.10.24 18:51:27 | 000,000,000 | R--D | M]
O4 - Startup: C:\Users\Public\Downloads [2009.07.14 05:54:24 | 000,000,000 | R--D | M]
O4 - Startup: C:\Users\Public\Favorites [2009.07.14 03:34:59 | 000,000,000 | RH-D | M]
O4 - Startup: C:\Users\Public\Libraries [2013.03.24 22:04:10 | 000,000,000 | RH-D | M]
O4 - Startup: C:\Users\Public\Music [2009.07.14 05:54:24 | 000,000,000 | R--D | M]
O4 - Startup: C:\Users\Public\Pictures [2009.07.14 05:54:24 | 000,000,000 | R--D | M]
O4 - Startup: C:\Users\Public\Recorded TV [2012.01.29 22:48:14 | 000,000,000 | R--D | M]
O4 - Startup: C:\Users\Public\Videos [2009.07.14 05:54:24 | 000,000,000 | R--D | M]
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: EnableShellExecuteHooks = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0
O7 - HKU\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-19\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-20\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-2005895358-2267774490-3321710968-1000\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-2005895358-2267774490-3321710968-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: =
O7 - HKU\S-1-5-21-2005895358-2267774490-3321710968-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-2005895358-2267774490-3321710968-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O8:64bit: - Extra context menu item: Free YouTube to MP3 Converter - C:\Users\Pavilion\AppData\Roaming\DVDVideoSoftIEHelpers\freeyoutubetomp3converter.htm File not found
O8 - Extra context menu item: Free YouTube to MP3 Converter - C:\Users\Pavilion\AppData\Roaming\DVDVideoSoftIEHelpers\freeyoutubetomp3converter.htm File not found
O9:64bit: - Extra Button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - Reg Error: Key error. File not found
O13 - gopher Prefix: missing
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 10.144.1.1 10.144.52.253
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{9E7CEC8B-0AA6-4313-B321-37DC74B83FD5}: DhcpNameServer = 10.144.1.1 10.144.52.253
O18:64bit: - Protocol\Handler\skype4com - No CLSID value found
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O20:64bit: - HKLM Winlogon: Shell - (Explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysWOW64\userinit.exe (Microsoft Corporation)
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2013.05.23 21:29:04 | 000,000,000 | ---D | M] - C:\Autodesk -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = ComFile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = ComFile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)
CREATERESTOREPOINT
Restore point Set: OTL Restore Point
Drivers32:64bit: midi3 - KORGUM64.DRV (KORG INC.)
Drivers32:64bit: midi4 - KORGUM64.DRV (KORG INC.)
Drivers32:64bit: midi6 - KORGUM64.DRV (KORG INC.)
Drivers32:64bit: msacm.l3acm - C:\Windows\System32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: midi - C:\Windows\SysWow64\KORGUMDD.DRV (KORG INC.)
Drivers32: midi3 - KORGUM64.DRV File not found
Drivers32: midi4 - KORGUM64.DRV File not found
Drivers32: midi6 - KORGUM64.DRV File not found
Drivers32: msacm.ac3acm - C:\Windows\SysWow64\ac3acm.acm (fccHandler)
Drivers32: msacm.l3acm - C:\Windows\SysWOW64\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.lameacm - C:\Windows\SysWow64\lameACM.acm (http://www.mp3dev.org/)
Drivers32: vidc.cvid - C:\Windows\SysWow64\iccvid.dll (Radius Inc.)
Drivers32: VIDC.FFDS - C:\Windows\SysWow64\ff_vfw.dll ()
Drivers32: VIDC.XVID - C:\Windows\SysWow64\xvidvfw.dll ()
Drivers32: VIDC.YV12 - C:\Windows\SysWow64\yv12vfw.dll (www.helixcommunity.org)
PhysicalDisk0 MBR saved to C:\PhysicalMBR.bin
========== Files/Folders - Created Within 30 Days ==========
[2013.12.30 09:49:42 | 000,054,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\WdfLdr.sys.bak
[2013.12.30 09:49:42 | 000,042,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\watchdog.sys.bak
[2013.12.30 09:49:42 | 000,016,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\wmilib.sys.bak
[2013.12.30 09:49:40 | 000,129,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\videoprt.sys.bak
[2013.12.30 09:49:39 | 000,031,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\usbrpm.sys.bak
[2013.12.30 09:49:38 | 000,325,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\usbport.sys.bak
[2013.12.30 09:49:38 | 000,038,456 | ---- | C] (Advanced Micro Devices) -- C:\Windows\SysNative\drivers\usbfilter.sys.bak
[2013.12.30 09:49:38 | 000,032,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\USBCAMD2.sys.bak
[2013.12.30 09:49:38 | 000,007,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\usbd.sys.bak
[2013.12.30 09:49:37 | 000,019,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\usb8023.sys.bak
[2013.12.30 09:49:36 | 000,057,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\TsUsbFlt.sys.bak
[2013.12.30 09:49:36 | 000,026,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\tdi.sys.bak
[2013.12.30 09:49:35 | 000,068,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\stream.sys.bak
[2013.12.30 09:49:35 | 000,029,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\tape.sys.bak
[2013.12.30 09:49:34 | 000,189,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\storport.sys.bak
[2013.12.30 09:49:34 | 000,024,656 | ---- | C] (Promise Technology) -- C:\Windows\SysNative\drivers\stexstor.sys.bak
[2013.12.30 09:49:33 | 000,426,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\spsys.sys.bak
[2013.12.30 09:49:33 | 000,020,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\smclib.sys.bak
[2013.12.30 09:49:32 | 000,171,392 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\scsiport.sys.bak
[2013.12.30 09:49:31 | 000,346,144 | ---- | C] (Realtek ) -- C:\Windows\SysNative\drivers\Rt64win7.sys.bak
[2013.12.30 09:49:31 | 000,243,744 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\drivers\RtsUStor.sys.bak
[2013.12.30 09:49:31 | 000,146,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\rmcast.sys.bak
[2013.12.30 09:49:31 | 000,041,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\RNDISMP.sys.bak
[2013.12.30 09:49:31 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\rootmdm.sys.bak
[2013.12.30 09:49:30 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\rdpvideominiport.sys.bak
[2013.12.30 09:49:28 | 000,230,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\portcls.sys.bak
[2013.12.30 09:49:28 | 000,048,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pciidex.sys.bak
[2013.12.30 09:49:25 | 000,376,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\netio.sys.bak
[2013.12.30 09:49:25 | 000,134,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\NisDrvWFP.sys.bak
[2013.12.30 09:49:20 | 000,022,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\mcd.sys.bak
[2013.12.30 09:49:19 | 000,065,600 | ---- | C] (LSI Corporation) -- C:\Windows\SysNative\drivers\lsi_sas2.sys.bak
[2013.12.30 09:49:19 | 000,031,832 | ---- | C] (KORG INC.) -- C:\Windows\SysNative\drivers\KORGUM64.SYS.bak
[2013.12.30 09:49:18 | 000,120,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\irda.sys.bak
[2013.12.30 09:49:17 | 000,078,720 | ---- | C] (Hewlett-Packard Company) -- C:\Windows\SysNative\drivers\HpSAMD.sys.bak
[2013.12.30 09:49:16 | 000,076,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\hidclass.sys.bak
[2013.12.30 09:49:16 | 000,032,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\hidparse.sys.bak
[2013.12.30 09:49:16 | 000,031,232 | ---- | C] (Hauppauge Computer Works, Inc.) -- C:\Windows\SysNative\drivers\hcw85cir.sys.bak
[2013.12.30 09:49:15 | 000,288,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\FWPKCLNT.SYS.bak
[2013.12.30 09:49:15 | 000,023,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\fs_rec.sys.bak
[2013.12.30 09:49:14 | 003,286,016 | ---- | C] (Broadcom Corporation) -- C:\Windows\SysNative\drivers\evbda.sys.bak
[2013.12.30 09:49:14 | 000,265,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\dxgmms1.sys.bak
[2013.12.30 09:49:13 | 000,116,224 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\drmk.sys.bak
[2013.12.30 09:49:13 | 000,098,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\dxg.sys.bak
[2013.12.30 09:49:13 | 000,055,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\dumpfve.sys.bak
[2013.12.30 09:49:13 | 000,028,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\Dumpata.sys.bak
[2013.12.30 09:49:13 | 000,027,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\Diskdump.sys.bak
[2013.12.30 09:49:13 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\dxapi.sys.bak
[2013.12.30 09:49:12 | 000,039,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\crashdmp.sys.bak
[2013.12.30 09:49:10 | 000,468,480 | ---- | C] (Broadcom Corporation) -- C:\Windows\SysNative\drivers\bxvbda.sys.bak
[2013.12.30 09:49:10 | 000,179,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\Classpnp.sys.bak
[2013.12.30 09:49:09 | 000,028,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\battc.sys.bak
[2013.12.30 09:49:08 | 006,366,720 | ---- | C] (ATI Technologies Inc.) -- C:\Windows\SysNative\drivers\atipmdag.sys.bak
[2013.12.30 09:49:08 | 000,270,848 | ---- | C] (Broadcom Corporation) -- C:\Windows\SysNative\drivers\b57nd60a.sys.bak
[2013.12.30 09:49:07 | 006,366,720 | ---- | C] (ATI Technologies Inc.) -- C:\Windows\SysNative\drivers\atikmdag.sys.bak
[2013.12.30 09:49:07 | 000,186,880 | ---- | C] (Advanced Micro Devices, Inc.) -- C:\Windows\SysNative\drivers\atikmpag.sys.bak
[2013.12.30 09:49:07 | 000,155,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\ataport.sys.bak
[2013.12.30 09:49:07 | 000,016,440 | ---- | C] (Advanced Micro Devices Inc.) -- C:\Windows\SysNative\drivers\AtiPcie64.sys.bak
[2013.12.30 09:49:06 | 000,194,128 | ---- | C] (AMD Technologies Inc.) -- C:\Windows\SysNative\drivers\amdsbs.sys.bak
[2013.12.30 09:49:06 | 000,070,200 | ---- | C] (Advanced Micro Devices) -- C:\Windows\SysNative\drivers\amdsata.sys.bak
[2013.12.30 09:49:06 | 000,046,592 | ---- | C] (Alcor Micro, Corp.) -- C:\Windows\SysNative\drivers\AmUStor.sys.bak
[2013.12.30 09:49:06 | 000,028,728 | ---- | C] (Advanced Micro Devices) -- C:\Windows\SysNative\drivers\amdxata.sys.bak
[2013.12.30 09:49:04 | 000,068,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\1394bus.sys.bak
[2013.12.29 20:00:23 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2013.12.20 19:54:09 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mozilla Firefox
[2013.12.15 01:31:40 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieetwcollectorres.dll
[2013.12.15 01:31:39 | 000,574,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieui.dll
[2013.12.15 01:31:39 | 000,440,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieui.dll
[2013.12.15 01:31:38 | 000,218,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ie4uinit.exe
[2013.12.15 01:31:38 | 000,139,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieUnatt.exe
[2013.12.15 01:31:38 | 000,111,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieetwcollector.exe
[2013.12.15 01:31:38 | 000,066,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iesetup.dll
[2013.12.15 01:31:38 | 000,048,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieetwproxystub.dll
[2013.12.15 01:31:38 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iernonce.dll
[2013.12.15 01:31:37 | 000,817,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieapfltr.dll
[2013.12.15 01:31:37 | 000,708,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript9diag.dll
[2013.12.15 01:31:37 | 000,703,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieapfltr.dll
[2013.12.15 01:31:37 | 000,553,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\jscript9diag.dll
[2013.12.15 01:31:35 | 001,928,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\inetcpl.cpl
[2013.12.15 01:31:33 | 001,995,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\inetcpl.cpl
[2013.12.15 01:31:31 | 005,769,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript9.dll
[2013.12.14 02:09:44 | 000,028,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\IEUDINIT.EXE
[2013.12.14 01:58:43 | 000,940,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MsSpellCheckingFacility.exe
[2013.12.14 01:58:43 | 000,194,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\elshyph.dll
[2013.12.14 01:58:37 | 000,645,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\jsIntl.dll
[2013.12.14 01:58:37 | 000,235,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\elshyph.dll
[2013.12.14 01:58:37 | 000,164,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msrating.dll
[2013.12.14 01:58:37 | 000,071,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\RegisterIEPKEYs.exe
[2013.12.14 01:58:36 | 000,616,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieapfltr.dat
[2013.12.14 01:58:36 | 000,337,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\html.iec
[2013.12.14 01:58:36 | 000,233,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\url.dll
[2013.12.14 01:58:36 | 000,062,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\tdc.ocx
[2013.12.14 01:58:36 | 000,034,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\JavaScriptCollectionAgent.dll
[2013.12.14 01:58:35 | 001,051,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmlmedia.dll
[2013.12.14 01:58:35 | 000,151,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iexpress.exe
[2013.12.14 01:58:35 | 000,139,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wextract.exe
[2013.12.14 01:58:35 | 000,112,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieUnatt.exe
[2013.12.14 01:58:35 | 000,083,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\inseng.dll
[2013.12.14 01:58:35 | 000,069,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmled.dll
[2013.12.14 01:58:35 | 000,069,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\icardie.dll
[2013.12.14 01:58:35 | 000,061,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iesetup.dll
[2013.12.14 01:58:35 | 000,056,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\pngfilt.dll
[2013.12.14 01:58:35 | 000,032,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iernonce.dll
[2013.12.14 01:58:35 | 000,024,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\licmgr10.dll
[2013.12.14 01:58:34 | 000,610,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\jscript.dll
[2013.12.14 01:58:34 | 000,127,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\occache.dll
[2013.12.14 01:58:34 | 000,116,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iepeers.dll
[2013.12.14 01:58:34 | 000,111,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\IEAdvpack.dll
[2013.12.14 01:58:34 | 000,086,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iesysprep.dll
[2013.12.14 01:58:34 | 000,074,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\SetIEInstalledDate.exe
[2013.12.14 01:58:34 | 000,061,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MshtmlDac.dll
[2013.12.14 01:58:34 | 000,051,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieetwproxystub.dll
[2013.12.14 01:58:34 | 000,048,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmler.dll
[2013.12.14 01:58:34 | 000,012,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msfeedssync.exe
[2013.12.14 01:58:33 | 000,942,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jsIntl.dll
[2013.12.14 01:58:33 | 000,247,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msls31.dll
[2013.12.14 01:58:33 | 000,195,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msrating.dll
[2013.12.14 01:58:33 | 000,131,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\IEAdvpack.dll
[2013.12.14 01:58:33 | 000,086,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\RegisterIEPKEYs.exe
[2013.12.14 01:58:33 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msfeedssync.exe
[2013.12.14 01:58:32 | 000,105,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iesysprep.dll
[2013.12.14 01:58:32 | 000,090,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SetIEInstalledDate.exe
[2013.12.14 01:58:32 | 000,077,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\tdc.ocx
[2013.12.14 01:58:32 | 000,048,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mshtmler.dll
[2013.12.14 01:58:32 | 000,040,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\JavaScriptCollectionAgent.dll
[2013.12.14 01:58:31 | 001,228,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mshtmlmedia.dll
[2013.12.14 01:58:31 | 000,626,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msfeeds.dll
[2013.12.14 01:58:31 | 000,616,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieapfltr.dat
[2013.12.14 01:58:31 | 000,453,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dxtmsft.dll
[2013.12.14 01:58:31 | 000,413,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\html.iec
[2013.12.14 01:58:31 | 000,296,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dxtrans.dll
[2013.12.14 01:58:31 | 000,235,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\url.dll
[2013.12.14 01:58:31 | 000,167,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iexpress.exe
[2013.12.14 01:58:31 | 000,143,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wextract.exe
[2013.12.14 01:58:31 | 000,101,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\inseng.dll
[2013.12.14 01:58:31 | 000,084,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mshtmled.dll
[2013.12.14 01:58:31 | 000,081,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\icardie.dll
[2013.12.14 01:58:31 | 000,030,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\licmgr10.dll
[2013.12.14 01:58:30 | 000,774,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript.dll
[2013.12.14 01:58:30 | 000,548,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\vbscript.dll
[2013.12.14 01:58:30 | 000,147,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\occache.dll
[2013.12.14 01:58:30 | 000,135,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iepeers.dll
[2013.12.14 01:58:30 | 000,083,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MshtmlDac.dll
[2013.12.14 01:58:30 | 000,062,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\pngfilt.dll
[2013.12.14 01:58:30 | 000,048,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\imgutil.dll
[2013.12.14 01:58:30 | 000,013,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mshta.exe
[2013.12.12 01:45:07 | 012,625,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wmploc.DLL
[2013.12.12 01:45:06 | 012,625,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wmploc.DLL
[2013.12.12 01:45:06 | 011,410,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wmp.dll
[2013.12.12 01:45:04 | 014,631,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wmp.dll
[2013.12.11 11:23:32 | 000,335,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msieftp.dll
[2013.12.11 11:23:31 | 000,301,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msieftp.dll
[2013.12.11 11:23:28 | 000,465,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WMPhoto.dll
[2013.12.11 11:23:28 | 000,417,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\WMPhoto.dll
[2013.12.11 11:23:27 | 000,081,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\imagehlp.dll
[2013.12.11 11:23:19 | 000,202,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\scrrun.dll
[2013.12.11 11:23:19 | 000,163,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\scrrun.dll
[2013.12.11 11:23:19 | 000,156,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cscript.exe
[2013.12.11 11:23:19 | 000,150,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wshom.ocx
[2013.12.11 11:23:19 | 000,126,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\cscript.exe
[2013.12.11 11:23:19 | 000,121,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wshom.ocx
========== Files - Modified Within 30 Days ==========
OTL logfile created on: 1.1.2014 2:18:58 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Pavilion\Desktop
64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.11.9600.16428)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy
3,75 Gb Total Physical Memory | 2,00 Gb Available Physical Memory | 53,30% Memory free
7,50 Gb Paging File | 5,75 Gb Available in Paging File | 76,70% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 584,43 Gb Total Space | 482,70 Gb Free Space | 82,59% Space Free | Partition Type: NTFS
Drive D: | 11,64 Gb Total Space | 1,25 Gb Free Space | 10,70% Space Free | Partition Type: NTFS
Computer Name: PAVILION-HP | User Name: Pavilion | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Processes (SafeList) ==========
PRC - [2013.12.31 20:16:22 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Pavilion\Desktop\OTL.exe
PRC - [2013.12.20 19:54:36 | 000,275,568 | ---- | M] (Mozilla Corporation) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
PRC - [2013.07.12 20:18:38 | 001,861,512 | ---- | M] (Adobe Systems, Inc.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_8_800_94.exe
PRC - [2013.05.10 08:57:22 | 000,065,640 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
PRC - [2012.01.31 09:46:56 | 000,019,232 | ---- | M] (Autodesk, Inc.) -- C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe
PRC - [2010.04.23 21:00:00 | 000,514,232 | ---- | M] (EasyBits Software AS) -- C:\Windows\SysWOW64\ezSharedSvcHost.exe
PRC - [2010.04.02 09:18:54 | 001,185,112 | ---- | M] (CANON INC.) -- C:\Program Files (x86)\Canon\Solution Menu EX\CNSEMAIN.EXE
PRC - [2009.10.15 00:53:20 | 000,635,416 | ---- | M] (PDF Complete Inc) -- C:\Program Files (x86)\PDF Complete\pdfsvc.exe
========== Modules (No Company Name) ==========
MOD - [2013.12.20 19:54:16 | 003,559,024 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefox\mozjs.dll
MOD - [2013.07.12 20:18:37 | 016,166,280 | ---- | M] () -- C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_8_800_94.dll
========== Services (SafeList) ==========
SRV:64bit: - [2013.11.26 10:18:09 | 000,111,616 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\IEEtwCollector.exe -- (IEEtwCollectorService)
SRV:64bit: - [2013.10.23 17:14:22 | 000,348,376 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- c:\Program Files\Microsoft Security Client\NisSrv.exe -- (NisSrv)
SRV:64bit: - [2013.10.23 17:14:22 | 000,023,808 | ---- | M] (Microsoft Corporation) [Auto | Running] -- c:\Program Files\Microsoft Security Client\MsMpEng.exe -- (MsMpSvc)
SRV:64bit: - [2013.05.27 06:50:47 | 001,011,712 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV:64bit: - [2013.02.19 18:44:19 | 001,432,400 | ---- | M] (Flexera Software, Inc.) [On_Demand | Stopped] -- C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe -- (FLEXnet Licensing Service 64)
SRV:64bit: - [2010.02.02 00:17:12 | 000,202,752 | ---- | M] (AMD) [Auto | Running] -- C:\Windows\SysNative\atiesrxx.exe -- (AMD External Events Utility)
SRV - [2013.12.20 19:54:36 | 000,119,408 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2013.05.10 08:57:22 | 000,065,640 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2012.07.13 12:28:36 | 000,160,944 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files (x86)\Skype\Updater\Updater.exe -- (SkypeUpdate)
SRV - [2012.01.31 09:46:56 | 000,019,232 | ---- | M] (Autodesk, Inc.) [Auto | Running] -- C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe -- (Autodesk Content Service)
SRV - [2010.03.18 12:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2009.10.15 00:53:20 | 000,635,416 | ---- | M] (PDF Complete Inc) [Auto | Running] -- C:\Program Files (x86)\PDF Complete\pdfsvc.exe -- (pdfcDispatcher)
SRV - [2009.06.10 22:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)
========== Driver Services (SafeList) ==========
DRV:64bit: - [2013.09.27 09:53:06 | 000,134,944 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\NisDrvWFP.sys -- (NisDrv)
DRV:64bit: - [2012.10.26 12:36:47 | 000,057,856 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV:64bit: - [2012.10.26 12:36:47 | 000,019,456 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\rdpvideominiport.sys -- (RdpVideoMiniport)
DRV:64bit: - [2012.03.01 07:46:16 | 000,023,408 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\Windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
DRV:64bit: - [2010.11.20 14:33:35 | 000,078,720 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:64bit: - [2010.04.09 00:12:00 | 000,243,744 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\RtsUStor.sys -- (RSUSBSTOR)
DRV:64bit: - [2010.03.10 01:33:52 | 000,016,440 | ---- | M] (Advanced Micro Devices Inc.) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\AtiPcie64.sys -- (AtiPcie)
DRV:64bit: - [2010.03.04 14:43:00 | 000,346,144 | ---- | M] (Realtek ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Rt64win7.sys -- (RTL8167)
DRV:64bit: - [2010.02.02 00:55:20 | 006,366,720 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\atipmdag.sys -- (amdkmdag)
DRV:64bit: - [2010.02.01 23:24:00 | 000,186,880 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\atikmpag.sys -- (amdkmdap)
DRV:64bit: - [2009.12.21 19:26:36 | 000,038,456 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\usbfilter.sys -- (usbfilter)
DRV:64bit: - [2009.10.23 09:26:14 | 000,046,592 | ---- | M] (Alcor Micro, Corp.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\AmUStor.sys -- (AmUStor)
DRV:64bit: - [2009.10.15 01:12:00 | 000,031,832 | ---- | M] (KORG INC.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\KORGUM64.SYS -- (KORGUMDS)
DRV:64bit: - [2009.10.08 01:13:34 | 000,070,200 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:64bit: - [2009.10.08 01:13:34 | 000,028,728 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:64bit: - [2009.07.14 02:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:64bit: - [2009.07.14 02:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:64bit: - [2009.07.14 02:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:64bit: - [2009.06.10 21:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:64bit: - [2009.06.10 21:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:64bit: - [2009.06.10 21:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:64bit: - [2009.06.10 21:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
DRV - [2009.07.14 02:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount)
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE:64bit: - HKLM\..\SearchScopes,DefaultScope =
IE:64bit: - HKLM\..\SearchScopes\{5EAFB9AB-9F17-4EF4-B4E3-FDA1674C746F}: "URL" = http://uk.search.yahoo.com/search?p={se ... ype=CPDTDF
IE:64bit: - HKLM\..\SearchScopes\{B52B27D3-7187-45B3-99BB-5B8F3A829C67}: "URL" = http://en.wikipedia.org/wiki/Special:Se ... earchTerms}
IE:64bit: - HKLM\..\SearchScopes\{CBCA8CF1-7BEE-43D1-90A5-213A3E83F32C}: "URL" = http://www.bing.com/search?q={searchTer ... -SearchBox
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\..\SearchScopes,DefaultScope =
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKLM\..\SearchScopes\{5EAFB9AB-9F17-4EF4-B4E3-FDA1674C746F}: "URL" = http://uk.search.yahoo.com/search?p={se ... ype=CPDTDF
IE - HKLM\..\SearchScopes\{B52B27D3-7187-45B3-99BB-5B8F3A829C67}: "URL" = http://en.wikipedia.org/wiki/Special:Se ... earchTerms}
IE - HKLM\..\SearchScopes\{CBCA8CF1-7BEE-43D1-90A5-213A3E83F32C}: "URL" = http://www.bing.com/search?q={searchTer ... -SearchBox
IE - HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.bing.com
IE - HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\Main,First Home Page = http://www.bing.com
IE - HKU\.DEFAULT\..\URLSearchHook: {03EB0E9C-7A91-4381-A220-9B52B641CDB1} - No CLSID value found
IE - HKU\.DEFAULT\..\SearchScopes,DefaultScope =
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-18\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.bing.com
IE - HKU\S-1-5-18\SOFTWARE\Microsoft\Internet Explorer\Main,First Home Page = http://www.bing.com
IE - HKU\S-1-5-18\..\URLSearchHook: {03EB0E9C-7A91-4381-A220-9B52B641CDB1} - No CLSID value found
IE - HKU\S-1-5-18\..\SearchScopes,DefaultScope =
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-19\..\SearchScopes,DefaultScope =
IE - HKU\S-1-5-20\..\SearchScopes,DefaultScope =
IE - HKU\S-1-5-21-2005895358-2267774490-3321710968-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
IE - HKU\S-1-5-21-2005895358-2267774490-3321710968-1000\..\SearchScopes,DefaultScope =
IE - HKU\S-1-5-21-2005895358-2267774490-3321710968-1000\..\SearchScopes\{033148B9-330D-4EAC-8107-7CDCE8DD868A}: "URL" = http://search.yahoo.com/search?fr=chr-g ... earchTerms}
IE - HKU\S-1-5-21-2005895358-2267774490-3321710968-1000\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTer ... ORM=IE10SR
IE - HKU\S-1-5-21-2005895358-2267774490-3321710968-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
========== FireFox ==========
FF:64bit: - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF64_11_8_800_94.dll File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf: C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll (Tracker Software Products (Canada) Ltd.)
FF:64bit: - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.21.2: C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF:64bit: - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.21.2: C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@tracker-software.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf: C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll (Tracker Software Products (Canada) Ltd.)
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_8_800_94.dll ()
FF - HKLM\Software\MozillaPlugins\@canon.com/EPPEX: C:\Program Files (x86)\Canon\Easy-PhotoPrint EX\NPEZFFPI.DLL (CANON INC.)
FF - HKLM\Software\MozillaPlugins\@docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf: C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll (Tracker Software Products (Canada) Ltd.)
FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.17.2: C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.17.2: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@tracker-software.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf: C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll (Tracker Software Products (Canada) Ltd.)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\@docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf: C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll (Tracker Software Products (Canada) Ltd.)
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 26.0\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 26.0\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins [2013.12.20 19:54:10 | 000,000,000 | ---D | M]
[2013.12.20 19:54:10 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\extensions
[2013.12.20 19:54:10 | 000,000,000 | ---D | M] (Skype Click to Call) -- C:\Program Files (x86)\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
[2013.12.20 19:54:09 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\browser\extensions
[2013.12.20 19:54:37 | 000,000,000 | ---D | M] (Default) -- C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
[2013.01.18 22:56:20 | 000,171,584 | ---- | M] (Tracker Software Products (Canada) Ltd.) -- C:\Program Files (x86)\mozilla firefox\plugins\npPDFXCviewNPPlugin.dll
O1 HOSTS File: ([2013.12.30 20:55:57 | 000,000,741 | R--- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2:64bit: - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2:64bit: - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O2 - BHO: (Canon Easy-WebPrint EX BHO) - {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll (CANON INC.)
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O3 - HKU\S-1-5-21-2005895358-2267774490-3321710968-1000\..\Toolbar\WebBrowser: (Canon Easy-WebPrint EX) - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll (CANON INC.)
O4:64bit: - HKLM..\Run: [CanonMyPrinter] c:\program files\canon\myprinter\bjmyprt.exe (CANON INC.)
O4 - HKLM..\Run: [CanonSolutionMenuEx] c:\program files (x86)\canon\solution menu ex\cnsemain.exe (CANON INC.)
O4 - Startup: C:\Users\All Users\ABBYY [2013.04.03 14:43:37 | 000,000,000 | ---D | M]
O4 - Startup: C:\Users\All Users\Adobe [2012.11.07 11:51:42 | 000,000,000 | ---D | M]
O4 - Startup: C:\Users\All Users\AmUStor [2010.12.16 03:58:38 | 000,000,000 | ---D | M]
O4 - Startup: C:\Users\All Users\Application Data [2009.07.14 06:08:56 | 000,000,000 | -HSD | M]
O4 - Startup: C:\Users\All Users\ATI [2010.12.16 03:56:01 | 000,000,000 | ---D | M]
O4 - Startup: C:\Users\All Users\Autodesk [2013.05.23 21:55:21 | 000,000,000 | ---D | M]
O4 - Startup: C:\Users\All Users\CanonBJ [2011.09.04 09:48:22 | 000,000,000 | -H-D | M]
O4 - Startup: C:\Users\All Users\CanonEPP [2012.08.10 15:35:06 | 000,000,000 | -H-D | M]
O4 - Startup: C:\Users\All Users\CanonIJEGV [2013.07.17 12:03:50 | 000,000,000 | -H-D | M]
O4 - Startup: C:\Users\All Users\CanonIJEPPEX2 [2012.08.10 15:35:06 | 000,000,000 | -H-D | M]
O4 - Startup: C:\Users\All Users\CanonIJMSetup [2012.08.10 15:30:56 | 000,000,000 | ---D | M]
O4 - Startup: C:\Users\All Users\CanonIJScan [2012.10.07 20:25:48 | 000,000,000 | -H-D | M]
O4 - Startup: C:\Users\All Users\CanonIJWSpt [2012.08.10 15:29:45 | 000,000,000 | ---D | M]
O4 - Startup: C:\Users\All Users\CyberLink [2011.11.28 18:12:04 | 000,000,000 | ---D | M]
O4 - Startup: C:\Users\All Users\Desktop [2009.07.14 06:08:56 | 000,000,000 | -HSD | M]
O4 - Startup: C:\Users\All Users\Documents [2009.07.14 06:08:56 | 000,000,000 | -HSD | M]
O4 - Startup: C:\Users\All Users\F-Secure [2011.08.20 10:31:40 | 000,000,000 | ---D | M]
O4 - Startup: C:\Users\All Users\Favorites [2009.07.14 06:08:56 | 000,000,000 | -HSD | M]
O4 - Startup: C:\Users\All Users\FLEXnet [2013.05.22 08:57:21 | 000,000,000 | ---D | M]
O4 - Startup: C:\Users\All Users\Guitar Pro 6 [2013.12.01 22:07:17 | 000,000,000 | ---D | M]
O4 - Startup: C:\Users\All Users\Hewlett-Packard [2011.11.01 20:26:15 | 000,000,000 | ---D | M]
O4 - Startup: C:\Users\All Users\IObit [2013.03.12 08:59:35 | 000,000,000 | ---D | M]
O4 - Startup: C:\Users\All Users\Kaspersky Lab [2013.01.16 12:08:23 | 000,000,000 | ---D | M]
O4 - Startup: C:\Users\All Users\Malwarebytes [2013.12.29 20:00:23 | 000,000,000 | ---D | M]
O4 - Startup: C:\Users\All Users\McAfee [2012.02.28 12:56:25 | 000,000,000 | ---D | M]
O4 - Startup: C:\Users\All Users\Microsoft [2013.03.24 22:04:04 | 000,000,000 | --SD | M]
O4 - Startup: C:\Users\All Users\Microsoft.SqlServer.Compact.351.32.bc ()
O4 - Startup: C:\Users\All Users\Mozilla [2012.04.25 16:02:14 | 000,000,000 | ---D | M]
O4 - Startup: C:\Users\All Users\Norton [2011.11.02 13:02:45 | 000,000,000 | ---D | M]
O4 - Startup: C:\Users\All Users\NortonInstaller [2010.12.16 04:05:36 | 000,000,000 | ---D | M]
O4 - Startup: C:\Users\All Users\PDFC [2013.12.29 00:29:23 | 000,000,000 | ---D | M]
O4 - Startup: C:\Users\All Users\Recovery [2011.12.28 18:08:46 | 000,000,000 | ---D | M]
O4 - Startup: C:\Users\All Users\Skype [2013.04.04 20:47:21 | 000,000,000 | ---D | M]
O4 - Startup: C:\Users\All Users\Spybot - Search & Destroy [2013.12.29 02:24:51 | 000,000,000 | ---D | M]
O4 - Startup: C:\Users\All Users\Start Menu [2009.07.14 06:08:56 | 000,000,000 | -HSD | M]
O4 - Startup: C:\Users\All Users\Sun [2011.05.11 14:39:26 | 000,000,000 | ---D | M]
O4 - Startup: C:\Users\All Users\Temp [2013.04.19 17:57:57 | 000,000,000 | ---D | M]
O4 - Startup: C:\Users\All Users\Templates [2009.07.14 06:08:56 | 000,000,000 | -HSD | M]
O4 - Startup: C:\Users\All Users\WildTangent [2012.07.12 20:12:21 | 000,000,000 | ---D | M]
O4 - Startup: C:\Users\All Users\{9BF4D58B-C6D6-467B-BC5A-FD0C1278F4AF} [2013.04.03 10:24:40 | 000,000,000 | ---D | M]
O4 - Startup: C:\Users\All Users\{CED89F1A-945F-46EC-B23C-5EAF6D2DB12A} [2013.03.12 08:56:34 | 000,000,000 | ---D | M]
O4 - Startup: C:\Users\Default\AppData [2009.07.14 04:20:08 | 000,000,000 | -H-D | M]
O4 - Startup: C:\Users\Default\Application Data [2009.07.14 06:08:56 | 000,000,000 | -HSD | M]
O4 - Startup: C:\Users\Default\Desktop [2009.07.14 03:34:59 | 000,000,000 | R--D | M]
O4 - Startup: C:\Users\Default\Documents [2009.07.14 06:08:56 | 000,000,000 | R--D | M]
O4 - Startup: C:\Users\Default\Downloads [2009.07.14 03:34:59 | 000,000,000 | R--D | M]
O4 - Startup: C:\Users\Default\Favorites [2011.11.02 12:54:20 | 000,000,000 | R--D | M]
O4 - Startup: C:\Users\Default\Links [2009.07.14 03:34:59 | 000,000,000 | R--D | M]
O4 - Startup: C:\Users\Default\Local Settings [2009.07.14 06:08:56 | 000,000,000 | -HSD | M]
O4 - Startup: C:\Users\Default\Music [2009.07.14 03:34:59 | 000,000,000 | R--D | M]
O4 - Startup: C:\Users\Default\My Documents [2009.07.14 06:08:56 | 000,000,000 | -HSD | M]
O4 - Startup: C:\Users\Default\NetHood [2009.07.14 06:08:56 | 000,000,000 | -HSD | M]
O4 - Startup: C:\Users\Default\NTUSER.DAT ()
O4 - Startup: C:\Users\Default\NTUSER.DAT.LOG1 ()
O4 - Startup: C:\Users\Default\NTUSER.DAT.LOG2 ()
O4 - Startup: C:\Users\Default\NTUSER.DAT{016888bd-6c6f-11de-8d1d-001e0bcde3ec}.TM.blf ()
O4 - Startup: C:\Users\Default\NTUSER.DAT{016888bd-6c6f-11de-8d1d-001e0bcde3ec}.TMContainer00000000000000000001.regtrans-ms ()
O4 - Startup: C:\Users\Default\NTUSER.DAT{016888bd-6c6f-11de-8d1d-001e0bcde3ec}.TMContainer00000000000000000002.regtrans-ms ()
O4 - Startup: C:\Users\Default\Pictures [2009.07.14 03:34:59 | 000,000,000 | R--D | M]
O4 - Startup: C:\Users\Default\PrintHood [2009.07.14 06:08:56 | 000,000,000 | -HSD | M]
O4 - Startup: C:\Users\Default\Recent [2009.07.14 06:08:56 | 000,000,000 | -HSD | M]
O4 - Startup: C:\Users\Default\Saved Games [2009.07.14 03:34:59 | 000,000,000 | ---D | M]
O4 - Startup: C:\Users\Default\SendTo [2009.07.14 06:08:56 | 000,000,000 | -HSD | M]
O4 - Startup: C:\Users\Default\Start Menu [2009.07.14 06:08:56 | 000,000,000 | -HSD | M]
O4 - Startup: C:\Users\Default\Templates [2009.07.14 06:08:56 | 000,000,000 | -HSD | M]
O4 - Startup: C:\Users\Default\Videos [2009.07.14 03:34:59 | 000,000,000 | R--D | M]
O4 - Startup: C:\Users\Guest\AppData [2012.02.26 19:07:11 | 000,000,000 | -H-D | M]
O4 - Startup: C:\Users\Guest\Contacts [2013.09.13 09:34:41 | 000,000,000 | R--D | M]
O4 - Startup: C:\Users\Guest\Data aplikací [2012.02.26 19:07:11 | 000,000,000 | -HSD | M]
O4 - Startup: C:\Users\Guest\Desktop [2013.11.17 10:31:58 | 000,000,000 | R--D | M]
O4 - Startup: C:\Users\Guest\Dokumenty [2012.02.26 19:07:11 | 000,000,000 | -HSD | M]
O4 - Startup: C:\Users\Guest\Dokumenty [2012.02.26 19:07:11 | 000,000,000 | -HSD | M]
O4 - Startup: C:\Users\Guest\Downloads [2013.11.17 10:31:04 | 000,000,000 | R--D | M]
O4 - Startup: C:\Users\Guest\Favorites [2013.09.13 09:34:41 | 000,000,000 | R--D | M]
O4 - Startup: C:\Users\Guest\Links [2013.09.13 09:34:42 | 000,000,000 | R--D | M]
O4 - Startup: C:\Users\Guest\Local Settings [2012.02.26 19:07:11 | 000,000,000 | -HSD | M]
O4 - Startup: C:\Users\Guest\Music [2013.09.13 09:34:41 | 000,000,000 | R--D | M]
O4 - Startup: C:\Users\Guest\Nabídka Start [2012.02.26 19:07:11 | 000,000,000 | -HSD | M]
O4 - Startup: C:\Users\Guest\ntuser.dat ()
O4 - Startup: C:\Users\Guest\NTUSER.DAT.iobit ()
O4 - Startup: C:\Users\Guest\ntuser.dat.LOG1 ()
O4 - Startup: C:\Users\Guest\ntuser.dat.LOG2 ()
O4 - Startup: C:\Users\Guest\NTUSER.DAT{016888bd-6c6f-11de-8d1d-001e0bcde3ec}.TM.blf ()
O4 - Startup: C:\Users\Guest\NTUSER.DAT{016888bd-6c6f-11de-8d1d-001e0bcde3ec}.TMContainer00000000000000000001.regtrans-ms ()
O4 - Startup: C:\Users\Guest\NTUSER.DAT{016888bd-6c6f-11de-8d1d-001e0bcde3ec}.TMContainer00000000000000000002.regtrans-ms ()
O4 - Startup: C:\Users\Guest\ntuser.ini ()
O4 - Startup: C:\Users\Guest\Okolní síť [2012.02.26 19:07:11 | 000,000,000 | -HSD | M]
O4 - Startup: C:\Users\Guest\Okolní tiskárny [2012.02.26 19:07:11 | 000,000,000 | -HSD | M]
O4 - Startup: C:\Users\Guest\Pictures [2013.09.13 09:34:41 | 000,000,000 | R--D | M]
O4 - Startup: C:\Users\Guest\Poslední [2012.02.26 19:07:11 | 000,000,000 | -HSD | M]
O4 - Startup: C:\Users\Guest\Saved Games [2013.09.13 09:34:42 | 000,000,000 | R--D | M]
O4 - Startup: C:\Users\Guest\Searches [2013.09.13 09:34:41 | 000,000,000 | R--D | M]
O4 - Startup: C:\Users\Guest\SendTo [2012.02.26 19:07:11 | 000,000,000 | -HSD | M]
O4 - Startup: C:\Users\Guest\Soubory cookie [2012.02.26 19:07:11 | 000,000,000 | -HSD | M]
O4 - Startup: C:\Users\Guest\Sti_Trace.log ()
O4 - Startup: C:\Users\Guest\Videos [2013.09.13 09:34:41 | 000,000,000 | R--D | M]
O4 - Startup: C:\Users\Guest\Šablony [2012.02.26 19:07:11 | 000,000,000 | -HSD | M]
O4 - Startup: C:\Users\Pavilion\AppData [2011.11.02 12:54:55 | 000,000,000 | -H-D | M]
O4 - Startup: C:\Users\Pavilion\Application Data [2011.11.02 12:54:55 | 000,000,000 | -HSD | M]
O4 - Startup: C:\Users\Pavilion\Contacts [2013.09.12 19:53:13 | 000,000,000 | R--D | M]
O4 - Startup: C:\Users\Pavilion\Cookies [2011.11.02 12:54:55 | 000,000,000 | -HSD | M]
O4 - Startup: C:\Users\Pavilion\Desktop [2013.12.31 22:10:01 | 000,000,000 | R--D | M]
O4 - Startup: C:\Users\Pavilion\Documents [2013.11.25 12:36:30 | 000,000,000 | R--D | M]
O4 - Startup: C:\Users\Pavilion\Downloads [2013.12.31 20:17:36 | 000,000,000 | R--D | M]
O4 - Startup: C:\Users\Pavilion\Favorites [2013.09.12 19:53:13 | 000,000,000 | R--D | M]
O4 - Startup: C:\Users\Pavilion\Links [2013.09.12 19:53:13 | 000,000,000 | R--D | M]
O4 - Startup: C:\Users\Pavilion\Local Settings [2011.11.02 12:54:55 | 000,000,000 | -HSD | M]
O4 - Startup: C:\Users\Pavilion\Music [2013.09.12 19:53:13 | 000,000,000 | R--D | M]
O4 - Startup: C:\Users\Pavilion\My Documents [2011.11.02 12:54:55 | 000,000,000 | -HSD | M]
O4 - Startup: C:\Users\Pavilion\NetHood [2011.11.02 12:54:55 | 000,000,000 | -HSD | M]
O4 - Startup: C:\Users\Pavilion\ntuser.dat ()
O4 - Startup: C:\Users\Pavilion\ntuser.dat.iobit ()
O4 - Startup: C:\Users\Pavilion\ntuser.dat.LOG1 ()
O4 - Startup: C:\Users\Pavilion\ntuser.dat.LOG2 ()
O4 - Startup: C:\Users\Pavilion\NTUSER.DAT{016888bd-6c6f-11de-8d1d-001e0bcde3ec}.TM.blf ()
O4 - Startup: C:\Users\Pavilion\NTUSER.DAT{016888bd-6c6f-11de-8d1d-001e0bcde3ec}.TMContainer00000000000000000001.regtrans-ms ()
O4 - Startup: C:\Users\Pavilion\NTUSER.DAT{016888bd-6c6f-11de-8d1d-001e0bcde3ec}.TMContainer00000000000000000002.regtrans-ms ()
O4 - Startup: C:\Users\Pavilion\ntuser.dat{63d2c5aa-eecd-11e2-b891-d485640c7441}.TM.blf ()
O4 - Startup: C:\Users\Pavilion\ntuser.dat{63d2c5aa-eecd-11e2-b891-d485640c7441}.TMContainer00000000000000000001.regtrans-ms ()
O4 - Startup: C:\Users\Pavilion\ntuser.dat{63d2c5aa-eecd-11e2-b891-d485640c7441}.TMContainer00000000000000000002.regtrans-ms ()
O4 - Startup: C:\Users\Pavilion\ntuser.dat{6edc282d-4ab4-11e1-9cf5-d485640c7441}.TM.blf ()
O4 - Startup: C:\Users\Pavilion\ntuser.dat{6edc282d-4ab4-11e1-9cf5-d485640c7441}.TMContainer00000000000000000001.regtrans-ms ()
O4 - Startup: C:\Users\Pavilion\ntuser.dat{6edc282d-4ab4-11e1-9cf5-d485640c7441}.TMContainer00000000000000000002.regtrans-ms ()
O4 - Startup: C:\Users\Pavilion\ntuser.ini ()
O4 - Startup: C:\Users\Pavilion\Pictures [2013.12.11 23:38:22 | 000,000,000 | R--D | M]
O4 - Startup: C:\Users\Pavilion\PrintHood [2011.11.02 12:54:55 | 000,000,000 | -HSD | M]
O4 - Startup: C:\Users\Pavilion\Recent [2011.11.02 12:54:55 | 000,000,000 | -HSD | M]
O4 - Startup: C:\Users\Pavilion\Saved Games [2013.09.12 19:53:13 | 000,000,000 | R--D | M]
O4 - Startup: C:\Users\Pavilion\Searches [2013.09.12 19:53:13 | 000,000,000 | R--D | M]
O4 - Startup: C:\Users\Pavilion\SendTo [2011.11.02 12:54:55 | 000,000,000 | -HSD | M]
O4 - Startup: C:\Users\Pavilion\Start Menu [2011.11.02 12:54:55 | 000,000,000 | -HSD | M]
O4 - Startup: C:\Users\Pavilion\Sti_Trace.log ()
O4 - Startup: C:\Users\Pavilion\Templates [2011.11.02 12:54:55 | 000,000,000 | -HSD | M]
O4 - Startup: C:\Users\Pavilion\Videos [2013.12.21 23:17:15 | 000,000,000 | R--D | M]
O4 - Startup: C:\Users\Public\AppData [2013.11.25 12:54:20 | 000,000,000 | ---D | M]
O4 - Startup: C:\Users\Public\CyberLink [2011.11.28 18:12:04 | 000,000,000 | ---D | M]
O4 - Startup: C:\Users\Public\Desktop [2013.12.30 09:47:23 | 000,000,000 | RH-D | M]
O4 - Startup: C:\Users\Public\Documents [2013.10.24 18:51:27 | 000,000,000 | R--D | M]
O4 - Startup: C:\Users\Public\Downloads [2009.07.14 05:54:24 | 000,000,000 | R--D | M]
O4 - Startup: C:\Users\Public\Favorites [2009.07.14 03:34:59 | 000,000,000 | RH-D | M]
O4 - Startup: C:\Users\Public\Libraries [2013.03.24 22:04:10 | 000,000,000 | RH-D | M]
O4 - Startup: C:\Users\Public\Music [2009.07.14 05:54:24 | 000,000,000 | R--D | M]
O4 - Startup: C:\Users\Public\Pictures [2009.07.14 05:54:24 | 000,000,000 | R--D | M]
O4 - Startup: C:\Users\Public\Recorded TV [2012.01.29 22:48:14 | 000,000,000 | R--D | M]
O4 - Startup: C:\Users\Public\Videos [2009.07.14 05:54:24 | 000,000,000 | R--D | M]
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: EnableShellExecuteHooks = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0
O7 - HKU\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-19\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-20\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-2005895358-2267774490-3321710968-1000\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-2005895358-2267774490-3321710968-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: =
O7 - HKU\S-1-5-21-2005895358-2267774490-3321710968-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-2005895358-2267774490-3321710968-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O8:64bit: - Extra context menu item: Free YouTube to MP3 Converter - C:\Users\Pavilion\AppData\Roaming\DVDVideoSoftIEHelpers\freeyoutubetomp3converter.htm File not found
O8 - Extra context menu item: Free YouTube to MP3 Converter - C:\Users\Pavilion\AppData\Roaming\DVDVideoSoftIEHelpers\freeyoutubetomp3converter.htm File not found
O9:64bit: - Extra Button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - Reg Error: Key error. File not found
O13 - gopher Prefix: missing
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 10.144.1.1 10.144.52.253
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{9E7CEC8B-0AA6-4313-B321-37DC74B83FD5}: DhcpNameServer = 10.144.1.1 10.144.52.253
O18:64bit: - Protocol\Handler\skype4com - No CLSID value found
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O20:64bit: - HKLM Winlogon: Shell - (Explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysWOW64\userinit.exe (Microsoft Corporation)
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2013.05.23 21:29:04 | 000,000,000 | ---D | M] - C:\Autodesk -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = ComFile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = ComFile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)
CREATERESTOREPOINT
Restore point Set: OTL Restore Point
Drivers32:64bit: midi3 - KORGUM64.DRV (KORG INC.)
Drivers32:64bit: midi4 - KORGUM64.DRV (KORG INC.)
Drivers32:64bit: midi6 - KORGUM64.DRV (KORG INC.)
Drivers32:64bit: msacm.l3acm - C:\Windows\System32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: midi - C:\Windows\SysWow64\KORGUMDD.DRV (KORG INC.)
Drivers32: midi3 - KORGUM64.DRV File not found
Drivers32: midi4 - KORGUM64.DRV File not found
Drivers32: midi6 - KORGUM64.DRV File not found
Drivers32: msacm.ac3acm - C:\Windows\SysWow64\ac3acm.acm (fccHandler)
Drivers32: msacm.l3acm - C:\Windows\SysWOW64\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.lameacm - C:\Windows\SysWow64\lameACM.acm (http://www.mp3dev.org/)
Drivers32: vidc.cvid - C:\Windows\SysWow64\iccvid.dll (Radius Inc.)
Drivers32: VIDC.FFDS - C:\Windows\SysWow64\ff_vfw.dll ()
Drivers32: VIDC.XVID - C:\Windows\SysWow64\xvidvfw.dll ()
Drivers32: VIDC.YV12 - C:\Windows\SysWow64\yv12vfw.dll (www.helixcommunity.org)
PhysicalDisk0 MBR saved to C:\PhysicalMBR.bin
========== Files/Folders - Created Within 30 Days ==========
[2013.12.30 09:49:42 | 000,054,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\WdfLdr.sys.bak
[2013.12.30 09:49:42 | 000,042,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\watchdog.sys.bak
[2013.12.30 09:49:42 | 000,016,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\wmilib.sys.bak
[2013.12.30 09:49:40 | 000,129,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\videoprt.sys.bak
[2013.12.30 09:49:39 | 000,031,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\usbrpm.sys.bak
[2013.12.30 09:49:38 | 000,325,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\usbport.sys.bak
[2013.12.30 09:49:38 | 000,038,456 | ---- | C] (Advanced Micro Devices) -- C:\Windows\SysNative\drivers\usbfilter.sys.bak
[2013.12.30 09:49:38 | 000,032,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\USBCAMD2.sys.bak
[2013.12.30 09:49:38 | 000,007,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\usbd.sys.bak
[2013.12.30 09:49:37 | 000,019,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\usb8023.sys.bak
[2013.12.30 09:49:36 | 000,057,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\TsUsbFlt.sys.bak
[2013.12.30 09:49:36 | 000,026,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\tdi.sys.bak
[2013.12.30 09:49:35 | 000,068,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\stream.sys.bak
[2013.12.30 09:49:35 | 000,029,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\tape.sys.bak
[2013.12.30 09:49:34 | 000,189,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\storport.sys.bak
[2013.12.30 09:49:34 | 000,024,656 | ---- | C] (Promise Technology) -- C:\Windows\SysNative\drivers\stexstor.sys.bak
[2013.12.30 09:49:33 | 000,426,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\spsys.sys.bak
[2013.12.30 09:49:33 | 000,020,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\smclib.sys.bak
[2013.12.30 09:49:32 | 000,171,392 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\scsiport.sys.bak
[2013.12.30 09:49:31 | 000,346,144 | ---- | C] (Realtek ) -- C:\Windows\SysNative\drivers\Rt64win7.sys.bak
[2013.12.30 09:49:31 | 000,243,744 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\drivers\RtsUStor.sys.bak
[2013.12.30 09:49:31 | 000,146,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\rmcast.sys.bak
[2013.12.30 09:49:31 | 000,041,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\RNDISMP.sys.bak
[2013.12.30 09:49:31 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\rootmdm.sys.bak
[2013.12.30 09:49:30 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\rdpvideominiport.sys.bak
[2013.12.30 09:49:28 | 000,230,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\portcls.sys.bak
[2013.12.30 09:49:28 | 000,048,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pciidex.sys.bak
[2013.12.30 09:49:25 | 000,376,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\netio.sys.bak
[2013.12.30 09:49:25 | 000,134,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\NisDrvWFP.sys.bak
[2013.12.30 09:49:20 | 000,022,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\mcd.sys.bak
[2013.12.30 09:49:19 | 000,065,600 | ---- | C] (LSI Corporation) -- C:\Windows\SysNative\drivers\lsi_sas2.sys.bak
[2013.12.30 09:49:19 | 000,031,832 | ---- | C] (KORG INC.) -- C:\Windows\SysNative\drivers\KORGUM64.SYS.bak
[2013.12.30 09:49:18 | 000,120,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\irda.sys.bak
[2013.12.30 09:49:17 | 000,078,720 | ---- | C] (Hewlett-Packard Company) -- C:\Windows\SysNative\drivers\HpSAMD.sys.bak
[2013.12.30 09:49:16 | 000,076,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\hidclass.sys.bak
[2013.12.30 09:49:16 | 000,032,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\hidparse.sys.bak
[2013.12.30 09:49:16 | 000,031,232 | ---- | C] (Hauppauge Computer Works, Inc.) -- C:\Windows\SysNative\drivers\hcw85cir.sys.bak
[2013.12.30 09:49:15 | 000,288,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\FWPKCLNT.SYS.bak
[2013.12.30 09:49:15 | 000,023,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\fs_rec.sys.bak
[2013.12.30 09:49:14 | 003,286,016 | ---- | C] (Broadcom Corporation) -- C:\Windows\SysNative\drivers\evbda.sys.bak
[2013.12.30 09:49:14 | 000,265,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\dxgmms1.sys.bak
[2013.12.30 09:49:13 | 000,116,224 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\drmk.sys.bak
[2013.12.30 09:49:13 | 000,098,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\dxg.sys.bak
[2013.12.30 09:49:13 | 000,055,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\dumpfve.sys.bak
[2013.12.30 09:49:13 | 000,028,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\Dumpata.sys.bak
[2013.12.30 09:49:13 | 000,027,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\Diskdump.sys.bak
[2013.12.30 09:49:13 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\dxapi.sys.bak
[2013.12.30 09:49:12 | 000,039,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\crashdmp.sys.bak
[2013.12.30 09:49:10 | 000,468,480 | ---- | C] (Broadcom Corporation) -- C:\Windows\SysNative\drivers\bxvbda.sys.bak
[2013.12.30 09:49:10 | 000,179,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\Classpnp.sys.bak
[2013.12.30 09:49:09 | 000,028,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\battc.sys.bak
[2013.12.30 09:49:08 | 006,366,720 | ---- | C] (ATI Technologies Inc.) -- C:\Windows\SysNative\drivers\atipmdag.sys.bak
[2013.12.30 09:49:08 | 000,270,848 | ---- | C] (Broadcom Corporation) -- C:\Windows\SysNative\drivers\b57nd60a.sys.bak
[2013.12.30 09:49:07 | 006,366,720 | ---- | C] (ATI Technologies Inc.) -- C:\Windows\SysNative\drivers\atikmdag.sys.bak
[2013.12.30 09:49:07 | 000,186,880 | ---- | C] (Advanced Micro Devices, Inc.) -- C:\Windows\SysNative\drivers\atikmpag.sys.bak
[2013.12.30 09:49:07 | 000,155,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\ataport.sys.bak
[2013.12.30 09:49:07 | 000,016,440 | ---- | C] (Advanced Micro Devices Inc.) -- C:\Windows\SysNative\drivers\AtiPcie64.sys.bak
[2013.12.30 09:49:06 | 000,194,128 | ---- | C] (AMD Technologies Inc.) -- C:\Windows\SysNative\drivers\amdsbs.sys.bak
[2013.12.30 09:49:06 | 000,070,200 | ---- | C] (Advanced Micro Devices) -- C:\Windows\SysNative\drivers\amdsata.sys.bak
[2013.12.30 09:49:06 | 000,046,592 | ---- | C] (Alcor Micro, Corp.) -- C:\Windows\SysNative\drivers\AmUStor.sys.bak
[2013.12.30 09:49:06 | 000,028,728 | ---- | C] (Advanced Micro Devices) -- C:\Windows\SysNative\drivers\amdxata.sys.bak
[2013.12.30 09:49:04 | 000,068,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\1394bus.sys.bak
[2013.12.29 20:00:23 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2013.12.20 19:54:09 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mozilla Firefox
[2013.12.15 01:31:40 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieetwcollectorres.dll
[2013.12.15 01:31:39 | 000,574,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieui.dll
[2013.12.15 01:31:39 | 000,440,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieui.dll
[2013.12.15 01:31:38 | 000,218,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ie4uinit.exe
[2013.12.15 01:31:38 | 000,139,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieUnatt.exe
[2013.12.15 01:31:38 | 000,111,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieetwcollector.exe
[2013.12.15 01:31:38 | 000,066,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iesetup.dll
[2013.12.15 01:31:38 | 000,048,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieetwproxystub.dll
[2013.12.15 01:31:38 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iernonce.dll
[2013.12.15 01:31:37 | 000,817,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieapfltr.dll
[2013.12.15 01:31:37 | 000,708,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript9diag.dll
[2013.12.15 01:31:37 | 000,703,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieapfltr.dll
[2013.12.15 01:31:37 | 000,553,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\jscript9diag.dll
[2013.12.15 01:31:35 | 001,928,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\inetcpl.cpl
[2013.12.15 01:31:33 | 001,995,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\inetcpl.cpl
[2013.12.15 01:31:31 | 005,769,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript9.dll
[2013.12.14 02:09:44 | 000,028,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\IEUDINIT.EXE
[2013.12.14 01:58:43 | 000,940,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MsSpellCheckingFacility.exe
[2013.12.14 01:58:43 | 000,194,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\elshyph.dll
[2013.12.14 01:58:37 | 000,645,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\jsIntl.dll
[2013.12.14 01:58:37 | 000,235,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\elshyph.dll
[2013.12.14 01:58:37 | 000,164,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msrating.dll
[2013.12.14 01:58:37 | 000,071,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\RegisterIEPKEYs.exe
[2013.12.14 01:58:36 | 000,616,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieapfltr.dat
[2013.12.14 01:58:36 | 000,337,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\html.iec
[2013.12.14 01:58:36 | 000,233,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\url.dll
[2013.12.14 01:58:36 | 000,062,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\tdc.ocx
[2013.12.14 01:58:36 | 000,034,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\JavaScriptCollectionAgent.dll
[2013.12.14 01:58:35 | 001,051,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmlmedia.dll
[2013.12.14 01:58:35 | 000,151,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iexpress.exe
[2013.12.14 01:58:35 | 000,139,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wextract.exe
[2013.12.14 01:58:35 | 000,112,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieUnatt.exe
[2013.12.14 01:58:35 | 000,083,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\inseng.dll
[2013.12.14 01:58:35 | 000,069,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmled.dll
[2013.12.14 01:58:35 | 000,069,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\icardie.dll
[2013.12.14 01:58:35 | 000,061,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iesetup.dll
[2013.12.14 01:58:35 | 000,056,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\pngfilt.dll
[2013.12.14 01:58:35 | 000,032,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iernonce.dll
[2013.12.14 01:58:35 | 000,024,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\licmgr10.dll
[2013.12.14 01:58:34 | 000,610,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\jscript.dll
[2013.12.14 01:58:34 | 000,127,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\occache.dll
[2013.12.14 01:58:34 | 000,116,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iepeers.dll
[2013.12.14 01:58:34 | 000,111,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\IEAdvpack.dll
[2013.12.14 01:58:34 | 000,086,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iesysprep.dll
[2013.12.14 01:58:34 | 000,074,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\SetIEInstalledDate.exe
[2013.12.14 01:58:34 | 000,061,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MshtmlDac.dll
[2013.12.14 01:58:34 | 000,051,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieetwproxystub.dll
[2013.12.14 01:58:34 | 000,048,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmler.dll
[2013.12.14 01:58:34 | 000,012,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msfeedssync.exe
[2013.12.14 01:58:33 | 000,942,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jsIntl.dll
[2013.12.14 01:58:33 | 000,247,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msls31.dll
[2013.12.14 01:58:33 | 000,195,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msrating.dll
[2013.12.14 01:58:33 | 000,131,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\IEAdvpack.dll
[2013.12.14 01:58:33 | 000,086,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\RegisterIEPKEYs.exe
[2013.12.14 01:58:33 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msfeedssync.exe
[2013.12.14 01:58:32 | 000,105,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iesysprep.dll
[2013.12.14 01:58:32 | 000,090,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SetIEInstalledDate.exe
[2013.12.14 01:58:32 | 000,077,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\tdc.ocx
[2013.12.14 01:58:32 | 000,048,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mshtmler.dll
[2013.12.14 01:58:32 | 000,040,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\JavaScriptCollectionAgent.dll
[2013.12.14 01:58:31 | 001,228,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mshtmlmedia.dll
[2013.12.14 01:58:31 | 000,626,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msfeeds.dll
[2013.12.14 01:58:31 | 000,616,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieapfltr.dat
[2013.12.14 01:58:31 | 000,453,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dxtmsft.dll
[2013.12.14 01:58:31 | 000,413,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\html.iec
[2013.12.14 01:58:31 | 000,296,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dxtrans.dll
[2013.12.14 01:58:31 | 000,235,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\url.dll
[2013.12.14 01:58:31 | 000,167,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iexpress.exe
[2013.12.14 01:58:31 | 000,143,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wextract.exe
[2013.12.14 01:58:31 | 000,101,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\inseng.dll
[2013.12.14 01:58:31 | 000,084,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mshtmled.dll
[2013.12.14 01:58:31 | 000,081,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\icardie.dll
[2013.12.14 01:58:31 | 000,030,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\licmgr10.dll
[2013.12.14 01:58:30 | 000,774,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript.dll
[2013.12.14 01:58:30 | 000,548,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\vbscript.dll
[2013.12.14 01:58:30 | 000,147,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\occache.dll
[2013.12.14 01:58:30 | 000,135,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iepeers.dll
[2013.12.14 01:58:30 | 000,083,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MshtmlDac.dll
[2013.12.14 01:58:30 | 000,062,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\pngfilt.dll
[2013.12.14 01:58:30 | 000,048,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\imgutil.dll
[2013.12.14 01:58:30 | 000,013,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mshta.exe
[2013.12.12 01:45:07 | 012,625,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wmploc.DLL
[2013.12.12 01:45:06 | 012,625,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wmploc.DLL
[2013.12.12 01:45:06 | 011,410,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wmp.dll
[2013.12.12 01:45:04 | 014,631,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wmp.dll
[2013.12.11 11:23:32 | 000,335,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msieftp.dll
[2013.12.11 11:23:31 | 000,301,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msieftp.dll
[2013.12.11 11:23:28 | 000,465,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WMPhoto.dll
[2013.12.11 11:23:28 | 000,417,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\WMPhoto.dll
[2013.12.11 11:23:27 | 000,081,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\imagehlp.dll
[2013.12.11 11:23:19 | 000,202,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\scrrun.dll
[2013.12.11 11:23:19 | 000,163,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\scrrun.dll
[2013.12.11 11:23:19 | 000,156,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cscript.exe
[2013.12.11 11:23:19 | 000,150,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wshom.ocx
[2013.12.11 11:23:19 | 000,126,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\cscript.exe
[2013.12.11 11:23:19 | 000,121,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wshom.ocx
========== Files - Modified Within 30 Days ==========
Přispějete na provoz fóra?