

Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Program blokovan zasadami skupiny co stím ?
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Re: Program blokovan zasadami skupiny co stím ?
Aha a to RSIT je kde ? 

Re: Program blokovan zasadami skupiny co stím ?
Ja nevim kde ho mateKristina píše:Aha a to RSIT je kde ?![]()


Jinak nove muzete stahnout tady http://images.malwareremoval.com/random/RSIT.exe
Pokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Re: Program blokovan zasadami skupiny co stím ?
Jo , ale to jsem mela mam takovej pocit smazat ne?:D ale nevadi stahla jsem znova vyskocilo mi tam zase to s temi zasadami skupiny , ale log se mi vytvoril :
Logfile of random's system information tool 1.09 (written by random/random)
Run by asus at 2014-03-27 22:24:51
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 32 GB (32%) free of 102 GB
Total RAM: 2038 MB (61% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 18:20:23, on 23.3.2014
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.16521)
Boot mode: Normal
Running processes:
C:\windows\System32\smss.exe
C:\windows\system32\csrss.exe
C:\windows\system32\wininit.exe
C:\windows\system32\csrss.exe
C:\windows\system32\winlogon.exe
C:\windows\system32\services.exe
C:\windows\system32\lsass.exe
C:\windows\system32\lsm.exe
C:\windows\system32\svchost.exe
C:\windows\system32\svchost.exe
C:\Program Files\Microsoft Security Client\MsMpEng.exe
C:\windows\System32\svchost.exe
C:\windows\System32\svchost.exe
C:\windows\system32\svchost.exe
C:\windows\system32\svchost.exe
C:\windows\system32\svchost.exe
C:\Program Files\AVAST Software\Avast\AvastSvc.exe
C:\windows\System32\spoolsv.exe
C:\windows\system32\Dwm.exe
C:\windows\system32\taskhost.exe
C:\windows\Explorer.EXE
C:\windows\System32\svchost.exe
C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
C:\windows\system32\svchost.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
C:\windows\system32\svchost.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
C:\windows\system32\svchost.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Users\asus\AppData\Roaming\uTorrent\uTorrent.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\windows\system32\wbem\wmiprvse.exe
C:\Program Files\trend micro\asus.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://asus.msn.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = 127.0.0.1:9421;<local>
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: (no name) - - (no file)
O2 - BHO: Lync Click to Call BHO - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\Office15\OCHelper.dll
O2 - BHO: Canon Easy Web Print Helper - {68F9551E-0411-48E4-9AAF-4BC42A6A46BE} - C:\Program Files\Canon\Easy-WebPrint\EWPBrowseLoader.dll
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files\Windows Live\Companion\companioncore.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MIF5BA~1\Office15\URLREDIR.DLL
O2 - BHO: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\PROGRA~1\MIF5BA~1\Office15\GROOVEEX.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
O3 - Toolbar: Easy-WebPrint - {327C2873-E90D-4c37-AA9D-10AC9BABA46C} - C:\Program Files\Canon\Easy-WebPrint\Toolband.dll
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKCU\..\Run: [oxrwzv] regsvr32.exe "C:\ProgramData\oxrwzv.dat"
O4 - HKCU\..\Run: [uTorrent] "C:\Users\asus\AppData\Roaming\uTorrent\uTorrent.exe" /MINIMIZED
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MIF5BA~1\Office15\EXCEL.EXE/3000
O8 - Extra context menu item: Odeslat obrázek do zařízení &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O8 - Extra context menu item: Odeslat stránku do zařízení &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O8 - Extra context menu item: Se&nd to OneNote - res://C:\PROGRA~1\MIF5BA~1\Office15\ONBttnIE.dll/105
O9 - Extra button: @C:\Program Files\Windows Live\Companion\companionlang.dll,-600 - {0000036B-C524-4050-81A0-243669A86B9F} - C:\Program Files\Windows Live\Companion\companioncore.dll
O9 - Extra button: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office15\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office15\ONBttnIE.dll
O9 - Extra button: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\Office15\OCHelper.dll
O9 - Extra 'Tools' menuitem: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\Office15\OCHelper.dll
O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office15\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office15\ONBttnIELinkedNotes.dll
O9 - Extra button: @C:\Program Files\WIDCOMM\Bluetooth Software\btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: @C:\Program Files\WIDCOMM\Bluetooth Software\btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O18 - Filter hijack: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE15\MSOXMLMF.DLL
O20 - AppInit_DLLs:
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
--
End of file - 8188 bytes
======Scheduled tasks folder======
C:\windows\tasks\Adobe Flash Player Updater.job
C:\windows\tasks\GoogleUpdateTaskMachineCore.job
C:\windows\tasks\GoogleUpdateTaskMachineUA.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Lync Browser Helper - C:\Program Files\Microsoft Office\Office15\OCHelper.dll [2014-03-03 153248]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{68F9551E-0411-48E4-9AAF-4BC42A6A46BE}]
EWPBrowseObject Class - C:\Program Files\Canon\Easy-WebPrint\EWPBrowseLoader.dll [2006-04-18 34304]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6EBF7485-159F-4bff-A14F-B9E3AAC4465B}]
Search Helper - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll [2010-09-22 191792]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2014-03-21 462760]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 439168]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9FDDE16B-836F-4806-AB1F-1455CBEFF289}]
Windows Live Messenger Companion Helper - C:\Program Files\Windows Live\Companion\companioncore.dll [2010-11-10 393600]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MIF5BA~1\Office15\URLREDIR.DLL [2013-09-13 705240]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft SkyDrive Pro Browser Helper - C:\PROGRA~1\MIF5BA~1\Office15\GROOVEEX.DLL [2013-11-02 1727176]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2014-03-21 171944]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"EA Core"=C:\Program Files\Electronic Arts\EADM\Core.exe -silent []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ASUSWebStorage]
C:\Program Files\ASUS\ASUS WebStorage\3.0.108.222\AsusWSPanel.exe [2011-07-29 737104]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\EeeStorageBackup]
C:\Program Files\ASUS\Asus WebStorage\BackupService.exe [2009-07-31 947472]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HotKeyMon]
AsusSender.exe C:\Program Files\EeePC\HotkeyService\HotKeyMon.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HotKeysCmds]
C:\windows\system32\hkcmd.exe [2009-10-15 354840]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HotkeyService]
AsusSender.exe C:\Program Files\EeePC\HotkeyService\HotkeyService.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IgfxExt]
C:\windows\system32\IgfxExt.exe [2009-10-15 174616]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IgfxTray]
C:\windows\system32\igfxtray.exe [2009-10-15 137752]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LiveUpdate]
AsusSender.exe C:\Program Files\Asus\LiveUpdate\LiveUpdate.exe auto []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MSC]
C:\Program Files\Microsoft Security Client\msseces.exe [2013-10-23 948440]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SuperHybridEngine]
AsusSender.exe C:\Program Files\EeePC\SHE\SuperHybridEngine.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SynAsusAcpi]
C:\Program Files\Synaptics\SynTP\SynAsusAcpi.exe [2009-11-19 83240]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SynTPEnh]
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2009-11-19 1594664]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^AsusVibeLauncher.lnk]
C:\Program Files\ASUS\AsusVibe\AsusVibeLauncher.exe [2012-09-27 1957040]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^HotKeyMon.lnk]
C:\Program Files\EeePC\HotkeyService\HotKeyMon.exe [2009-09-11 100328]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MsMpSvc]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
"NoDrives"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.cvid"=iccvid.dll
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"msacm.siren"=sirenacm.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"vidc.VP60"=C:\windows\system32\vp6vfw.dll
"vidc.VP61"=C:\windows\system32\vp6vfw.dll
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
======List of files/folders created in the last 1 month======
2014-03-27 18:56:28 ----AC---- C:\ComboFix.txt
2014-03-27 18:49:15 ----DC---- C:\$RECYCLE.BIN
2014-03-27 16:24:32 ----D---- C:\windows\temp
2014-03-27 06:09:21 ----DC---- C:\Config.Msi
2014-03-26 19:55:50 ----A---- C:\windows\ntbtlog.txt
2014-03-26 14:13:46 ----A---- C:\windows\SWREG.exe
2014-03-26 14:13:46 ----A---- C:\windows\PEV.exe
2014-03-26 14:13:46 ----A---- C:\windows\NIRCMD.exe
2014-03-26 14:13:46 ----A---- C:\windows\MBR.exe
2014-03-26 14:13:45 ----A---- C:\windows\zip.exe
2014-03-26 14:13:45 ----A---- C:\windows\SWSC.exe
2014-03-26 14:13:45 ----A---- C:\windows\sed.exe
2014-03-26 14:13:45 ----A---- C:\windows\grep.exe
2014-03-26 14:11:33 ----DC---- C:\Qoobox
2014-03-26 14:10:31 ----D---- C:\windows\erdnt
2014-03-25 20:07:15 ----A---- C:\windows\system32\drivers\wStLibG.sys
2014-03-25 18:40:00 ----D---- C:\Program Files\Seznam.cz
2014-03-25 18:36:28 ----D---- C:\Program Files\PCData
2014-03-25 18:34:44 ----D---- C:\Program Files\Surftastic
2014-03-25 17:38:37 ----D---- C:\Users\asus\AppData\Roaming\Origin
2014-03-25 17:38:24 ----D---- C:\ProgramData\Origin
2014-03-25 17:38:23 ----D---- C:\Program Files\Origin Games
2014-03-25 17:33:52 ----D---- C:\Program Files\Origin
2014-03-25 17:03:11 ----D---- C:\ProgramData\Electronic Arts
2014-03-25 16:34:11 ----D---- C:\Program Files\Electronic Arts
2014-03-24 20:52:18 ----A---- C:\windows\system32\vp6vfw.dll
2014-03-24 20:52:04 ----D---- C:\Program Files\Microsoft WSE
2014-03-24 19:51:31 ----DC---- C:\AdwCleaner
2014-03-24 18:55:45 ----D---- C:\Program Files\SmartTweak
2014-03-24 18:52:56 ----D---- C:\Users\asus\AppData\Roaming\Seznam.cz
2014-03-24 16:33:49 ----A---- C:\windows\system32\drivers\dtsoftbus01.sys
2014-03-24 16:33:03 ----D---- C:\Program Files\DAEMON Tools Lite
2014-03-24 16:16:27 ----D---- C:\Users\asus\AppData\Roaming\AVG
2014-03-24 16:13:25 ----D---- C:\ProgramData\AVG
2014-03-24 16:12:51 ----SHD---- C:\ProgramData\{01BD4FC9-2F86-4706-A62E-774BB7E9D308}
2014-03-24 16:11:06 ----D---- C:\Users\asus\AppData\Roaming\DAEMON Tools Lite
2014-03-24 16:09:49 ----D---- C:\ProgramData\DAEMON Tools Lite
2014-03-23 21:06:20 ----D---- C:\Users\asus\AppData\Roaming\Malwarebytes
2014-03-23 21:04:17 ----D---- C:\ProgramData\Malwarebytes
2014-03-23 21:03:55 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2014-03-23 17:52:02 ----D---- C:\Program Files\trend micro
2014-03-23 17:52:01 ----DC---- C:\rsit
2014-03-22 10:57:15 ----D---- C:\Users\asus\AppData\Roaming\uTorrent
2014-03-21 19:36:11 ----D---- C:\ProgramData\Oracle
2014-03-21 19:35:34 ----D---- C:\Program Files\Common Files\Java
2014-03-21 19:35:01 ----A---- C:\windows\system32\javaws.exe
2014-03-21 19:33:33 ----A---- C:\windows\system32\WindowsAccessBridge.dll
2014-03-21 19:33:32 ----A---- C:\windows\system32\javaw.exe
2014-03-21 19:33:32 ----A---- C:\windows\system32\java.exe
2014-03-21 19:19:03 ----D---- C:\Users\asus\AppData\Roaming\DropboxMaster
2014-03-21 19:12:45 ----D---- C:\Users\asus\AppData\Roaming\Dropbox
2014-03-21 18:58:11 ----D---- C:\ProgramData\AVAST Software
2014-03-15 08:07:32 ----A---- C:\windows\system32\qedit.dll
2014-03-15 08:07:23 ----A---- C:\windows\system32\jsproxy.dll
2014-03-15 08:07:23 ----A---- C:\windows\system32\iernonce.dll
2014-03-15 08:07:23 ----A---- C:\windows\system32\ieetwproxystub.dll
2014-03-15 08:07:23 ----A---- C:\windows\system32\ieetwcollector.exe
2014-03-15 08:07:21 ----A---- C:\windows\system32\MsSpellCheckingFacility.exe
2014-03-15 08:07:21 ----A---- C:\windows\system32\jscript9diag.dll
2014-03-15 08:07:21 ----A---- C:\windows\system32\ieetwcollectorres.dll
2014-03-15 08:07:20 ----A---- C:\windows\system32\ieapfltr.dll
2014-03-15 08:07:19 ----A---- C:\windows\system32\wininet.dll
2014-03-15 08:07:15 ----A---- C:\windows\system32\ieui.dll
2014-03-15 08:07:12 ----A---- C:\windows\system32\ieUnatt.exe
2014-03-15 08:07:11 ----A---- C:\windows\system32\iertutil.dll
2014-03-15 08:07:08 ----A---- C:\windows\system32\jscript9.dll
2014-03-15 08:07:05 ----A---- C:\windows\system32\mshtml.dll
2014-03-15 08:07:01 ----A---- C:\windows\system32\urlmon.dll
2014-03-15 08:06:59 ----A---- C:\windows\system32\msfeeds.dll
2014-03-15 08:06:55 ----A---- C:\windows\system32\msrating.dll
2014-03-15 08:06:54 ----A---- C:\windows\system32\iesetup.dll
2014-03-15 08:06:54 ----A---- C:\windows\system32\ie4uinit.exe
2014-03-15 08:06:52 ----A---- C:\windows\system32\ieframe.dll
2014-03-15 08:04:47 ----A---- C:\windows\system32\wwansvc.dll
2014-03-15 08:04:38 ----A---- C:\windows\system32\win32k.sys
2014-03-15 08:04:26 ----A---- C:\windows\system32\WindowsCodecs.dll
2014-03-15 08:04:21 ----A---- C:\windows\system32\wer.dll
2014-03-06 11:59:23 ----D---- C:\windows\Migration
2014-03-06 09:06:33 ----A---- C:\windows\system32\vbscript.dll
======List of files/folders modified in the last 1 month======
2014-03-27 22:24:58 ----D---- C:\windows\Prefetch
2014-03-27 18:56:34 ----D---- C:\windows\system32\drivers
2014-03-27 18:49:27 ----D---- C:\Windows
2014-03-27 18:49:27 ----AC---- C:\windows\system.ini
2014-03-27 18:49:11 ----D---- C:\windows\system32\drivers\etc
2014-03-27 17:38:30 ----SHD---- C:\System Volume Information
2014-03-27 17:28:56 ----D---- C:\windows\system32\config
2014-03-27 16:14:49 ----D---- C:\windows\System32
2014-03-27 16:14:49 ----D---- C:\windows\AppPatch
2014-03-27 16:14:42 ----D---- C:\Program Files\Common Files
2014-03-27 06:09:48 ----A---- C:\windows\win.ini
2014-03-27 06:09:33 ----SHD---- C:\windows\Installer
2014-03-26 19:58:55 ----RD---- C:\Program Files
2014-03-26 19:26:06 ----A---- C:\windows\system32\PerfStringBackup.INI
2014-03-26 19:26:05 ----D---- C:\windows\inf
2014-03-26 17:43:44 ----D---- C:\windows\system32\Tasks
2014-03-26 16:51:04 ----HD---- C:\Program Files\InstallShield Installation Information
2014-03-26 06:40:59 ----D---- C:\windows\Tasks
2014-03-25 17:38:24 ----D---- C:\ProgramData
2014-03-25 16:45:27 ----D---- C:\windows\winsxs
2014-03-25 16:34:06 ----D---- C:\windows\system32\catroot2
2014-03-24 22:25:19 ----D---- C:\Program Files\Common Files\microsoft shared
2014-03-24 20:52:13 ----RSD---- C:\windows\assembly
2014-03-24 20:52:05 ----SD---- C:\Users\asus\AppData\Roaming\Microsoft
2014-03-24 20:01:19 ----D---- C:\windows\system32\catroot
2014-03-24 19:59:28 ----D---- C:\ProgramData\ICQ
2014-03-24 19:46:19 ----D---- C:\windows\Sun
2014-03-24 16:40:17 ----D---- C:\windows\system32\DriverStore
2014-03-23 17:39:18 ----D---- C:\windows\debug
2014-03-21 19:31:27 ----D---- C:\Program Files\Java
2014-03-21 19:24:14 ----D---- C:\Program Files\Adobe
2014-03-21 19:24:02 ----D---- C:\Program Files\Common Files\Adobe AIR
2014-03-21 13:25:25 ----D---- C:\Program Files\Internet Explorer
2014-03-21 13:25:17 ----D---- C:\Program Files\Microsoft Silverlight
2014-03-20 22:18:13 ----D---- C:\ProgramData\Microsoft Help
2014-03-20 22:11:05 ----D---- C:\windows\system32\MRT
2014-03-20 22:06:55 ----A---- C:\windows\system32\MRT.exe
2014-03-20 21:30:14 ----D---- C:\Program Files\Google
2014-03-15 08:11:06 ----A---- C:\windows\system32\FlashPlayerApp.exe
2014-03-08 15:50:13 ----D---- C:\windows\Microsoft.NET
2014-03-06 19:07:37 ----D---- C:\windows\rescache
2014-03-06 12:00:08 ----D---- C:\windows\system32\en-US
2014-03-06 11:59:23 ----SD---- C:\ProgramData\Microsoft
2014-03-06 09:02:10 ----D---- C:\windows\system32\cs-CZ
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 MpFilter;Microsoft Malware Protection Driver; C:\windows\system32\DRIVERS\MpFilter.sys [2013-09-27 214696]
R0 pciide;pciide; C:\windows\system32\drivers\pciide.sys [2009-07-14 12368]
R0 rdyboost;ReadyBoost; C:\windows\System32\drivers\rdyboost.sys [2010-11-20 173440]
R1 AsUpIO;AsUpIO; C:\windows\system32\drivers\AsUpIO.sys [2009-07-06 11448]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\windows\system32\DRIVERS\dtsoftbus01.sys [2014-03-24 243128]
R1 MpKsl961fa0af;MpKsl961fa0af; \??\C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{9A77BD69-DC01-401E-A58B-C5CAB729A9D1}\MpKsl961fa0af.sys [2014-03-27 39464]
R1 vwififlt;Virtual WiFi Filter Driver; C:\windows\system32\DRIVERS\vwififlt.sys [2009-07-14 48128]
R2 NisDrv;Microsoft Network Inspection System; C:\windows\system32\DRIVERS\NisDrvWFP.sys [2013-09-27 104768]
R3 athr;Atheros Extensible Wireless LAN device driver; C:\windows\system32\DRIVERS\athr.sys [2009-10-05 1221632]
R3 BthEnum;Ovladač pro Bluetooth Request Block; C:\windows\system32\drivers\BthEnum.sys [2009-07-14 34816]
R3 BthMtpEnum;Modul pro výčet zařízení Bluetooth MTP; C:\windows\system32\DRIVERS\BthMtpEnum.sys [2009-07-14 51200]
R3 BthPan;Zařízení Bluetooth (síť PAN); C:\windows\system32\DRIVERS\bthpan.sys [2009-07-14 93696]
R3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\windows\System32\Drivers\BTHUSB.sys [2011-04-28 60416]
R3 btwaudio;Bluetooth Audio Device Service; C:\windows\system32\drivers\btwaudio.sys [2009-07-01 86056]
R3 btwavdt;Bluetooth AVDT Service; C:\windows\system32\DRIVERS\btwavdt.sys [2009-07-01 108072]
R3 btwl2cap;Bluetooth L2CAP Service; C:\windows\system32\DRIVERS\btwl2cap.sys [2009-04-07 29472]
R3 btwrchid;btwrchid; C:\windows\system32\DRIVERS\btwrchid.sys [2009-07-01 18344]
R3 igd;igd; C:\windows\system32\DRIVERS\igdkmd32.sys [2009-10-10 635552]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\windows\system32\drivers\RTKVHDA.sys [2009-07-20 2664032]
R3 kbfiltr;Keyboard Filter; C:\windows\system32\DRIVERS\kbfiltr.sys [2009-07-20 13880]
R3 L1C;NDIS Miniport Driver for Atheros AR8131/AR8132 PCI-E Ethernet Controller (NDIS 6.20); C:\windows\system32\DRIVERS\L1C62x86.sys [2009-07-13 50688]
R3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); C:\windows\system32\DRIVERS\rfcomm.sys [2009-07-14 129536]
R3 SynTP;Synaptics TouchPad Driver; C:\windows\system32\DRIVERS\SynTP.sys [2009-11-19 230448]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\windows\system32\DRIVERS\vwifimp.sys [2009-07-14 14336]
S2 Parvdm;Parvdm; C:\windows\system32\DRIVERS\parvdm.sys [2009-07-14 8704]
S3 aic78xx;aic78xx; C:\windows\system32\DRIVERS\djsvs.sys [2009-07-14 70720]
S3 amdagp;Ovladač filtru AMD portu AGP; C:\windows\system32\drivers\amdagp.sys [2009-07-14 53312]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\windows\system32\DRIVERS\b57nd60x.sys [2009-07-13 229888]
S3 BridgeMP;@%SystemRoot%\system32\bridgeres.dll,-1; C:\windows\system32\DRIVERS\bridge.sys [2009-07-14 78336]
S3 BTHPORT;Ovladač portu Bluetooth; C:\windows\System32\Drivers\BTHport.sys [2012-07-06 393728]
S3 catchme;catchme; \??\C:\Users\asus\AppData\Local\Temp\catchme.sys []
S3 FlashUSB;FlashUSB; C:\windows\system32\DRIVERS\FlashUSB.sys [2010-05-12 16896]
S3 fssfltr;FssFltr; C:\windows\system32\DRIVERS\fssfltr.sys [2010-09-23 39272]
S3 igfx;igfx; C:\windows\system32\DRIVERS\igdkmd32.sys [2009-10-10 635552]
S3 mbr;mbr; \??\C:\Users\asus\AppData\Local\Temp\mbr.sys []
S3 sisagp;Filtr SIS sběrnice AGP; C:\windows\system32\drivers\sisagp.sys [2009-07-14 52304]
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\windows\System32\drivers\tsusbflt.sys [2010-11-20 52224]
S3 usbbus;LGE Mobile Composite USB Device; C:\windows\system32\DRIVERS\lgusbbus.sys []
S3 UsbDiag;LGE Mobile USB Serial Port; C:\windows\system32\DRIVERS\lgusbdiag.sys []
S3 USBModem;LGE Mobile USB Modem; C:\windows\system32\DRIVERS\lgusbmodem.sys []
S3 usbscan;Ovladač skeneru USB; C:\windows\system32\DRIVERS\usbscan.sys [2013-07-03 36352]
S3 viaagp;Filtr VIA sběrnice AGP; C:\windows\system32\drivers\viaagp.sys [2009-07-14 53328]
S3 ViaC7;VIA C7 Processor Driver; C:\windows\system32\DRIVERS\viac7.sys [2009-07-14 52736]
S3 WinUsb;WinUsb; C:\windows\system32\DRIVERS\WinUsb.sys [2010-11-20 35968]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 MsMpSvc;Microsoft Antimalware Service; C:\Program Files\Microsoft Security Client\MsMpEng.exe [2013-10-23 22208]
R2 SeaPort;SeaPort; C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe [2010-09-22 249136]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2010-09-21 1710464]
R3 NisSrv;@C:\Program Files\Microsoft Security Client\MpAsDesc.dll,-243; C:\Program Files\Microsoft Security Client\NisSrv.exe [2013-10-23 280288]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-09-11 105144]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2014-03-20 116648]
S3 aspnet_state;Stavová služba ASP.NET; C:\windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2013-09-11 46688]
S3 fsssvc;Windows Live Family Safety Service; C:\Program Files\Windows Live\Family Safety\fsssvc.exe [2010-09-23 1493352]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2014-03-20 116648]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\windows\system32\IEEtwCollector.exe [2014-03-01 108032]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2012-12-08 150600]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2012-10-01 4846168]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\windows\system32\Wat\WatAdminSvc.exe [2010-05-24 1343400]
S4 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [2013-12-21 65432]
S4 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2014-03-15 257928]
S4 AsusService;Asus Launcher Service; C:\Windows\System32\AsusService.exe [2009-08-19 219136]
S4 btwdins;Bluetooth Service; C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe [2009-07-01 582944]
S4 NetMsmqActivator;@C:\windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetPipeActivator;@C:\windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetTcpActivator;@C:\windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 wlcrasvc;Windows Live Mesh remote connections service; C:\Program Files\Windows Live\Mesh\wlcrasvc.exe [2010-09-22 51040]
-----------------EOF-----------------
Logfile of random's system information tool 1.09 (written by random/random)
Run by asus at 2014-03-27 22:24:51
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 32 GB (32%) free of 102 GB
Total RAM: 2038 MB (61% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 18:20:23, on 23.3.2014
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.16521)
Boot mode: Normal
Running processes:
C:\windows\System32\smss.exe
C:\windows\system32\csrss.exe
C:\windows\system32\wininit.exe
C:\windows\system32\csrss.exe
C:\windows\system32\winlogon.exe
C:\windows\system32\services.exe
C:\windows\system32\lsass.exe
C:\windows\system32\lsm.exe
C:\windows\system32\svchost.exe
C:\windows\system32\svchost.exe
C:\Program Files\Microsoft Security Client\MsMpEng.exe
C:\windows\System32\svchost.exe
C:\windows\System32\svchost.exe
C:\windows\system32\svchost.exe
C:\windows\system32\svchost.exe
C:\windows\system32\svchost.exe
C:\Program Files\AVAST Software\Avast\AvastSvc.exe
C:\windows\System32\spoolsv.exe
C:\windows\system32\Dwm.exe
C:\windows\system32\taskhost.exe
C:\windows\Explorer.EXE
C:\windows\System32\svchost.exe
C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
C:\windows\system32\svchost.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
C:\windows\system32\svchost.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
C:\windows\system32\svchost.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Users\asus\AppData\Roaming\uTorrent\uTorrent.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\windows\system32\wbem\wmiprvse.exe
C:\Program Files\trend micro\asus.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://asus.msn.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = 127.0.0.1:9421;<local>
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: (no name) - - (no file)
O2 - BHO: Lync Click to Call BHO - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\Office15\OCHelper.dll
O2 - BHO: Canon Easy Web Print Helper - {68F9551E-0411-48E4-9AAF-4BC42A6A46BE} - C:\Program Files\Canon\Easy-WebPrint\EWPBrowseLoader.dll
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files\Windows Live\Companion\companioncore.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MIF5BA~1\Office15\URLREDIR.DLL
O2 - BHO: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\PROGRA~1\MIF5BA~1\Office15\GROOVEEX.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
O3 - Toolbar: Easy-WebPrint - {327C2873-E90D-4c37-AA9D-10AC9BABA46C} - C:\Program Files\Canon\Easy-WebPrint\Toolband.dll
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKCU\..\Run: [oxrwzv] regsvr32.exe "C:\ProgramData\oxrwzv.dat"
O4 - HKCU\..\Run: [uTorrent] "C:\Users\asus\AppData\Roaming\uTorrent\uTorrent.exe" /MINIMIZED
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MIF5BA~1\Office15\EXCEL.EXE/3000
O8 - Extra context menu item: Odeslat obrázek do zařízení &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O8 - Extra context menu item: Odeslat stránku do zařízení &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O8 - Extra context menu item: Se&nd to OneNote - res://C:\PROGRA~1\MIF5BA~1\Office15\ONBttnIE.dll/105
O9 - Extra button: @C:\Program Files\Windows Live\Companion\companionlang.dll,-600 - {0000036B-C524-4050-81A0-243669A86B9F} - C:\Program Files\Windows Live\Companion\companioncore.dll
O9 - Extra button: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office15\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office15\ONBttnIE.dll
O9 - Extra button: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\Office15\OCHelper.dll
O9 - Extra 'Tools' menuitem: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\Office15\OCHelper.dll
O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office15\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office15\ONBttnIELinkedNotes.dll
O9 - Extra button: @C:\Program Files\WIDCOMM\Bluetooth Software\btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: @C:\Program Files\WIDCOMM\Bluetooth Software\btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O18 - Filter hijack: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE15\MSOXMLMF.DLL
O20 - AppInit_DLLs:
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
--
End of file - 8188 bytes
======Scheduled tasks folder======
C:\windows\tasks\Adobe Flash Player Updater.job
C:\windows\tasks\GoogleUpdateTaskMachineCore.job
C:\windows\tasks\GoogleUpdateTaskMachineUA.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Lync Browser Helper - C:\Program Files\Microsoft Office\Office15\OCHelper.dll [2014-03-03 153248]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{68F9551E-0411-48E4-9AAF-4BC42A6A46BE}]
EWPBrowseObject Class - C:\Program Files\Canon\Easy-WebPrint\EWPBrowseLoader.dll [2006-04-18 34304]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6EBF7485-159F-4bff-A14F-B9E3AAC4465B}]
Search Helper - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll [2010-09-22 191792]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2014-03-21 462760]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 439168]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9FDDE16B-836F-4806-AB1F-1455CBEFF289}]
Windows Live Messenger Companion Helper - C:\Program Files\Windows Live\Companion\companioncore.dll [2010-11-10 393600]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MIF5BA~1\Office15\URLREDIR.DLL [2013-09-13 705240]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft SkyDrive Pro Browser Helper - C:\PROGRA~1\MIF5BA~1\Office15\GROOVEEX.DLL [2013-11-02 1727176]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2014-03-21 171944]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"EA Core"=C:\Program Files\Electronic Arts\EADM\Core.exe -silent []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ASUSWebStorage]
C:\Program Files\ASUS\ASUS WebStorage\3.0.108.222\AsusWSPanel.exe [2011-07-29 737104]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\EeeStorageBackup]
C:\Program Files\ASUS\Asus WebStorage\BackupService.exe [2009-07-31 947472]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HotKeyMon]
AsusSender.exe C:\Program Files\EeePC\HotkeyService\HotKeyMon.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HotKeysCmds]
C:\windows\system32\hkcmd.exe [2009-10-15 354840]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HotkeyService]
AsusSender.exe C:\Program Files\EeePC\HotkeyService\HotkeyService.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IgfxExt]
C:\windows\system32\IgfxExt.exe [2009-10-15 174616]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IgfxTray]
C:\windows\system32\igfxtray.exe [2009-10-15 137752]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LiveUpdate]
AsusSender.exe C:\Program Files\Asus\LiveUpdate\LiveUpdate.exe auto []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MSC]
C:\Program Files\Microsoft Security Client\msseces.exe [2013-10-23 948440]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SuperHybridEngine]
AsusSender.exe C:\Program Files\EeePC\SHE\SuperHybridEngine.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SynAsusAcpi]
C:\Program Files\Synaptics\SynTP\SynAsusAcpi.exe [2009-11-19 83240]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SynTPEnh]
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2009-11-19 1594664]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^AsusVibeLauncher.lnk]
C:\Program Files\ASUS\AsusVibe\AsusVibeLauncher.exe [2012-09-27 1957040]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^HotKeyMon.lnk]
C:\Program Files\EeePC\HotkeyService\HotKeyMon.exe [2009-09-11 100328]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MsMpSvc]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
"NoDrives"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.cvid"=iccvid.dll
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"msacm.siren"=sirenacm.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"vidc.VP60"=C:\windows\system32\vp6vfw.dll
"vidc.VP61"=C:\windows\system32\vp6vfw.dll
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
======List of files/folders created in the last 1 month======
2014-03-27 18:56:28 ----AC---- C:\ComboFix.txt
2014-03-27 18:49:15 ----DC---- C:\$RECYCLE.BIN
2014-03-27 16:24:32 ----D---- C:\windows\temp
2014-03-27 06:09:21 ----DC---- C:\Config.Msi
2014-03-26 19:55:50 ----A---- C:\windows\ntbtlog.txt
2014-03-26 14:13:46 ----A---- C:\windows\SWREG.exe
2014-03-26 14:13:46 ----A---- C:\windows\PEV.exe
2014-03-26 14:13:46 ----A---- C:\windows\NIRCMD.exe
2014-03-26 14:13:46 ----A---- C:\windows\MBR.exe
2014-03-26 14:13:45 ----A---- C:\windows\zip.exe
2014-03-26 14:13:45 ----A---- C:\windows\SWSC.exe
2014-03-26 14:13:45 ----A---- C:\windows\sed.exe
2014-03-26 14:13:45 ----A---- C:\windows\grep.exe
2014-03-26 14:11:33 ----DC---- C:\Qoobox
2014-03-26 14:10:31 ----D---- C:\windows\erdnt
2014-03-25 20:07:15 ----A---- C:\windows\system32\drivers\wStLibG.sys
2014-03-25 18:40:00 ----D---- C:\Program Files\Seznam.cz
2014-03-25 18:36:28 ----D---- C:\Program Files\PCData
2014-03-25 18:34:44 ----D---- C:\Program Files\Surftastic
2014-03-25 17:38:37 ----D---- C:\Users\asus\AppData\Roaming\Origin
2014-03-25 17:38:24 ----D---- C:\ProgramData\Origin
2014-03-25 17:38:23 ----D---- C:\Program Files\Origin Games
2014-03-25 17:33:52 ----D---- C:\Program Files\Origin
2014-03-25 17:03:11 ----D---- C:\ProgramData\Electronic Arts
2014-03-25 16:34:11 ----D---- C:\Program Files\Electronic Arts
2014-03-24 20:52:18 ----A---- C:\windows\system32\vp6vfw.dll
2014-03-24 20:52:04 ----D---- C:\Program Files\Microsoft WSE
2014-03-24 19:51:31 ----DC---- C:\AdwCleaner
2014-03-24 18:55:45 ----D---- C:\Program Files\SmartTweak
2014-03-24 18:52:56 ----D---- C:\Users\asus\AppData\Roaming\Seznam.cz
2014-03-24 16:33:49 ----A---- C:\windows\system32\drivers\dtsoftbus01.sys
2014-03-24 16:33:03 ----D---- C:\Program Files\DAEMON Tools Lite
2014-03-24 16:16:27 ----D---- C:\Users\asus\AppData\Roaming\AVG
2014-03-24 16:13:25 ----D---- C:\ProgramData\AVG
2014-03-24 16:12:51 ----SHD---- C:\ProgramData\{01BD4FC9-2F86-4706-A62E-774BB7E9D308}
2014-03-24 16:11:06 ----D---- C:\Users\asus\AppData\Roaming\DAEMON Tools Lite
2014-03-24 16:09:49 ----D---- C:\ProgramData\DAEMON Tools Lite
2014-03-23 21:06:20 ----D---- C:\Users\asus\AppData\Roaming\Malwarebytes
2014-03-23 21:04:17 ----D---- C:\ProgramData\Malwarebytes
2014-03-23 21:03:55 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2014-03-23 17:52:02 ----D---- C:\Program Files\trend micro
2014-03-23 17:52:01 ----DC---- C:\rsit
2014-03-22 10:57:15 ----D---- C:\Users\asus\AppData\Roaming\uTorrent
2014-03-21 19:36:11 ----D---- C:\ProgramData\Oracle
2014-03-21 19:35:34 ----D---- C:\Program Files\Common Files\Java
2014-03-21 19:35:01 ----A---- C:\windows\system32\javaws.exe
2014-03-21 19:33:33 ----A---- C:\windows\system32\WindowsAccessBridge.dll
2014-03-21 19:33:32 ----A---- C:\windows\system32\javaw.exe
2014-03-21 19:33:32 ----A---- C:\windows\system32\java.exe
2014-03-21 19:19:03 ----D---- C:\Users\asus\AppData\Roaming\DropboxMaster
2014-03-21 19:12:45 ----D---- C:\Users\asus\AppData\Roaming\Dropbox
2014-03-21 18:58:11 ----D---- C:\ProgramData\AVAST Software
2014-03-15 08:07:32 ----A---- C:\windows\system32\qedit.dll
2014-03-15 08:07:23 ----A---- C:\windows\system32\jsproxy.dll
2014-03-15 08:07:23 ----A---- C:\windows\system32\iernonce.dll
2014-03-15 08:07:23 ----A---- C:\windows\system32\ieetwproxystub.dll
2014-03-15 08:07:23 ----A---- C:\windows\system32\ieetwcollector.exe
2014-03-15 08:07:21 ----A---- C:\windows\system32\MsSpellCheckingFacility.exe
2014-03-15 08:07:21 ----A---- C:\windows\system32\jscript9diag.dll
2014-03-15 08:07:21 ----A---- C:\windows\system32\ieetwcollectorres.dll
2014-03-15 08:07:20 ----A---- C:\windows\system32\ieapfltr.dll
2014-03-15 08:07:19 ----A---- C:\windows\system32\wininet.dll
2014-03-15 08:07:15 ----A---- C:\windows\system32\ieui.dll
2014-03-15 08:07:12 ----A---- C:\windows\system32\ieUnatt.exe
2014-03-15 08:07:11 ----A---- C:\windows\system32\iertutil.dll
2014-03-15 08:07:08 ----A---- C:\windows\system32\jscript9.dll
2014-03-15 08:07:05 ----A---- C:\windows\system32\mshtml.dll
2014-03-15 08:07:01 ----A---- C:\windows\system32\urlmon.dll
2014-03-15 08:06:59 ----A---- C:\windows\system32\msfeeds.dll
2014-03-15 08:06:55 ----A---- C:\windows\system32\msrating.dll
2014-03-15 08:06:54 ----A---- C:\windows\system32\iesetup.dll
2014-03-15 08:06:54 ----A---- C:\windows\system32\ie4uinit.exe
2014-03-15 08:06:52 ----A---- C:\windows\system32\ieframe.dll
2014-03-15 08:04:47 ----A---- C:\windows\system32\wwansvc.dll
2014-03-15 08:04:38 ----A---- C:\windows\system32\win32k.sys
2014-03-15 08:04:26 ----A---- C:\windows\system32\WindowsCodecs.dll
2014-03-15 08:04:21 ----A---- C:\windows\system32\wer.dll
2014-03-06 11:59:23 ----D---- C:\windows\Migration
2014-03-06 09:06:33 ----A---- C:\windows\system32\vbscript.dll
======List of files/folders modified in the last 1 month======
2014-03-27 22:24:58 ----D---- C:\windows\Prefetch
2014-03-27 18:56:34 ----D---- C:\windows\system32\drivers
2014-03-27 18:49:27 ----D---- C:\Windows
2014-03-27 18:49:27 ----AC---- C:\windows\system.ini
2014-03-27 18:49:11 ----D---- C:\windows\system32\drivers\etc
2014-03-27 17:38:30 ----SHD---- C:\System Volume Information
2014-03-27 17:28:56 ----D---- C:\windows\system32\config
2014-03-27 16:14:49 ----D---- C:\windows\System32
2014-03-27 16:14:49 ----D---- C:\windows\AppPatch
2014-03-27 16:14:42 ----D---- C:\Program Files\Common Files
2014-03-27 06:09:48 ----A---- C:\windows\win.ini
2014-03-27 06:09:33 ----SHD---- C:\windows\Installer
2014-03-26 19:58:55 ----RD---- C:\Program Files
2014-03-26 19:26:06 ----A---- C:\windows\system32\PerfStringBackup.INI
2014-03-26 19:26:05 ----D---- C:\windows\inf
2014-03-26 17:43:44 ----D---- C:\windows\system32\Tasks
2014-03-26 16:51:04 ----HD---- C:\Program Files\InstallShield Installation Information
2014-03-26 06:40:59 ----D---- C:\windows\Tasks
2014-03-25 17:38:24 ----D---- C:\ProgramData
2014-03-25 16:45:27 ----D---- C:\windows\winsxs
2014-03-25 16:34:06 ----D---- C:\windows\system32\catroot2
2014-03-24 22:25:19 ----D---- C:\Program Files\Common Files\microsoft shared
2014-03-24 20:52:13 ----RSD---- C:\windows\assembly
2014-03-24 20:52:05 ----SD---- C:\Users\asus\AppData\Roaming\Microsoft
2014-03-24 20:01:19 ----D---- C:\windows\system32\catroot
2014-03-24 19:59:28 ----D---- C:\ProgramData\ICQ
2014-03-24 19:46:19 ----D---- C:\windows\Sun
2014-03-24 16:40:17 ----D---- C:\windows\system32\DriverStore
2014-03-23 17:39:18 ----D---- C:\windows\debug
2014-03-21 19:31:27 ----D---- C:\Program Files\Java
2014-03-21 19:24:14 ----D---- C:\Program Files\Adobe
2014-03-21 19:24:02 ----D---- C:\Program Files\Common Files\Adobe AIR
2014-03-21 13:25:25 ----D---- C:\Program Files\Internet Explorer
2014-03-21 13:25:17 ----D---- C:\Program Files\Microsoft Silverlight
2014-03-20 22:18:13 ----D---- C:\ProgramData\Microsoft Help
2014-03-20 22:11:05 ----D---- C:\windows\system32\MRT
2014-03-20 22:06:55 ----A---- C:\windows\system32\MRT.exe
2014-03-20 21:30:14 ----D---- C:\Program Files\Google
2014-03-15 08:11:06 ----A---- C:\windows\system32\FlashPlayerApp.exe
2014-03-08 15:50:13 ----D---- C:\windows\Microsoft.NET
2014-03-06 19:07:37 ----D---- C:\windows\rescache
2014-03-06 12:00:08 ----D---- C:\windows\system32\en-US
2014-03-06 11:59:23 ----SD---- C:\ProgramData\Microsoft
2014-03-06 09:02:10 ----D---- C:\windows\system32\cs-CZ
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 MpFilter;Microsoft Malware Protection Driver; C:\windows\system32\DRIVERS\MpFilter.sys [2013-09-27 214696]
R0 pciide;pciide; C:\windows\system32\drivers\pciide.sys [2009-07-14 12368]
R0 rdyboost;ReadyBoost; C:\windows\System32\drivers\rdyboost.sys [2010-11-20 173440]
R1 AsUpIO;AsUpIO; C:\windows\system32\drivers\AsUpIO.sys [2009-07-06 11448]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\windows\system32\DRIVERS\dtsoftbus01.sys [2014-03-24 243128]
R1 MpKsl961fa0af;MpKsl961fa0af; \??\C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{9A77BD69-DC01-401E-A58B-C5CAB729A9D1}\MpKsl961fa0af.sys [2014-03-27 39464]
R1 vwififlt;Virtual WiFi Filter Driver; C:\windows\system32\DRIVERS\vwififlt.sys [2009-07-14 48128]
R2 NisDrv;Microsoft Network Inspection System; C:\windows\system32\DRIVERS\NisDrvWFP.sys [2013-09-27 104768]
R3 athr;Atheros Extensible Wireless LAN device driver; C:\windows\system32\DRIVERS\athr.sys [2009-10-05 1221632]
R3 BthEnum;Ovladač pro Bluetooth Request Block; C:\windows\system32\drivers\BthEnum.sys [2009-07-14 34816]
R3 BthMtpEnum;Modul pro výčet zařízení Bluetooth MTP; C:\windows\system32\DRIVERS\BthMtpEnum.sys [2009-07-14 51200]
R3 BthPan;Zařízení Bluetooth (síť PAN); C:\windows\system32\DRIVERS\bthpan.sys [2009-07-14 93696]
R3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\windows\System32\Drivers\BTHUSB.sys [2011-04-28 60416]
R3 btwaudio;Bluetooth Audio Device Service; C:\windows\system32\drivers\btwaudio.sys [2009-07-01 86056]
R3 btwavdt;Bluetooth AVDT Service; C:\windows\system32\DRIVERS\btwavdt.sys [2009-07-01 108072]
R3 btwl2cap;Bluetooth L2CAP Service; C:\windows\system32\DRIVERS\btwl2cap.sys [2009-04-07 29472]
R3 btwrchid;btwrchid; C:\windows\system32\DRIVERS\btwrchid.sys [2009-07-01 18344]
R3 igd;igd; C:\windows\system32\DRIVERS\igdkmd32.sys [2009-10-10 635552]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\windows\system32\drivers\RTKVHDA.sys [2009-07-20 2664032]
R3 kbfiltr;Keyboard Filter; C:\windows\system32\DRIVERS\kbfiltr.sys [2009-07-20 13880]
R3 L1C;NDIS Miniport Driver for Atheros AR8131/AR8132 PCI-E Ethernet Controller (NDIS 6.20); C:\windows\system32\DRIVERS\L1C62x86.sys [2009-07-13 50688]
R3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); C:\windows\system32\DRIVERS\rfcomm.sys [2009-07-14 129536]
R3 SynTP;Synaptics TouchPad Driver; C:\windows\system32\DRIVERS\SynTP.sys [2009-11-19 230448]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\windows\system32\DRIVERS\vwifimp.sys [2009-07-14 14336]
S2 Parvdm;Parvdm; C:\windows\system32\DRIVERS\parvdm.sys [2009-07-14 8704]
S3 aic78xx;aic78xx; C:\windows\system32\DRIVERS\djsvs.sys [2009-07-14 70720]
S3 amdagp;Ovladač filtru AMD portu AGP; C:\windows\system32\drivers\amdagp.sys [2009-07-14 53312]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\windows\system32\DRIVERS\b57nd60x.sys [2009-07-13 229888]
S3 BridgeMP;@%SystemRoot%\system32\bridgeres.dll,-1; C:\windows\system32\DRIVERS\bridge.sys [2009-07-14 78336]
S3 BTHPORT;Ovladač portu Bluetooth; C:\windows\System32\Drivers\BTHport.sys [2012-07-06 393728]
S3 catchme;catchme; \??\C:\Users\asus\AppData\Local\Temp\catchme.sys []
S3 FlashUSB;FlashUSB; C:\windows\system32\DRIVERS\FlashUSB.sys [2010-05-12 16896]
S3 fssfltr;FssFltr; C:\windows\system32\DRIVERS\fssfltr.sys [2010-09-23 39272]
S3 igfx;igfx; C:\windows\system32\DRIVERS\igdkmd32.sys [2009-10-10 635552]
S3 mbr;mbr; \??\C:\Users\asus\AppData\Local\Temp\mbr.sys []
S3 sisagp;Filtr SIS sběrnice AGP; C:\windows\system32\drivers\sisagp.sys [2009-07-14 52304]
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\windows\System32\drivers\tsusbflt.sys [2010-11-20 52224]
S3 usbbus;LGE Mobile Composite USB Device; C:\windows\system32\DRIVERS\lgusbbus.sys []
S3 UsbDiag;LGE Mobile USB Serial Port; C:\windows\system32\DRIVERS\lgusbdiag.sys []
S3 USBModem;LGE Mobile USB Modem; C:\windows\system32\DRIVERS\lgusbmodem.sys []
S3 usbscan;Ovladač skeneru USB; C:\windows\system32\DRIVERS\usbscan.sys [2013-07-03 36352]
S3 viaagp;Filtr VIA sběrnice AGP; C:\windows\system32\drivers\viaagp.sys [2009-07-14 53328]
S3 ViaC7;VIA C7 Processor Driver; C:\windows\system32\DRIVERS\viac7.sys [2009-07-14 52736]
S3 WinUsb;WinUsb; C:\windows\system32\DRIVERS\WinUsb.sys [2010-11-20 35968]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 MsMpSvc;Microsoft Antimalware Service; C:\Program Files\Microsoft Security Client\MsMpEng.exe [2013-10-23 22208]
R2 SeaPort;SeaPort; C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe [2010-09-22 249136]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2010-09-21 1710464]
R3 NisSrv;@C:\Program Files\Microsoft Security Client\MpAsDesc.dll,-243; C:\Program Files\Microsoft Security Client\NisSrv.exe [2013-10-23 280288]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-09-11 105144]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2014-03-20 116648]
S3 aspnet_state;Stavová služba ASP.NET; C:\windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2013-09-11 46688]
S3 fsssvc;Windows Live Family Safety Service; C:\Program Files\Windows Live\Family Safety\fsssvc.exe [2010-09-23 1493352]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2014-03-20 116648]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\windows\system32\IEEtwCollector.exe [2014-03-01 108032]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2012-12-08 150600]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2012-10-01 4846168]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\windows\system32\Wat\WatAdminSvc.exe [2010-05-24 1343400]
S4 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [2013-12-21 65432]
S4 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2014-03-15 257928]
S4 AsusService;Asus Launcher Service; C:\Windows\System32\AsusService.exe [2009-08-19 219136]
S4 btwdins;Bluetooth Service; C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe [2009-07-01 582944]
S4 NetMsmqActivator;@C:\windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetPipeActivator;@C:\windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetTcpActivator;@C:\windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 wlcrasvc;Windows Live Mesh remote connections service; C:\Program Files\Windows Live\Mesh\wlcrasvc.exe [2010-09-22 51040]
-----------------EOF-----------------
Re: Program blokovan zasadami skupiny co stím ?
Ne, smazat (odinstalovat) jste mela MBAM. To jsou sice taky 4 pismenka, ale jinaKristina píše:Jo , ale to jsem mela mam takovej pocit smazat ne?

Jeste jeden sken a budeme mazat

Kliknete na nej pravym mysidlem a levym na Spustit jako spravce
Oznacte polozky (dejte tam zatrzitka) Pro všechny uživatele, Kontrola na havěť "LOP" a Kontrola na havěť "Purity"
Do spodniho okna vlozte nasledujici text
Kód: Vybrat vše
CREATERESTOREPOINT
netsvcs
drivers32
savembr:0
/md5start
adp3132.sys
AGP440.sys
ahcix86.sys
ahcix86s.sys
atapi.sys
autochk.exe
cdrom.sys
cngaudit.dll
cryptsvc.dll
eNetHook.dll
eventlog.dll
explorer.exe
hal.dll
Changer.sys
iaStor.sys
iastorv.sys
IdeChnDr.sys
isapnp.sys
JakNDis.sys
KR10N.sys
logevent.dll
lsass.exe
mv61xx.sys
ndis.sys
netlogon.dll
ntelogon.dll
nvata.sys
nvatabus.sys
nvgts.sys
nvraid.sys
nvrd32.sys
nvstor.sys
nvstor32.sys
scecli.dll
sceclt.dll
smss.exe
svchost.exe
symmpi.sys
tcpip.sys
userinit.exe
vaxscsi.sys
viamraid.sys
viasraid.sys
ViPrt.sys
winlogon.exe
ws2_32.dll
/md5stop
%systemroot%*.* /U /s
%SYSTEMDRIVE%\*.exe
%ALLUSERSPROFILE%\Application Data\*.
%ALLUSERSPROFILE%\Application Data\*.exe /s
%APPDATA%\*.
%APPDATA%\*.exe /s
%systemroot%\*. /mp /s
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\Tasks\*.job /lockedfiles
%systemroot%\system32\drivers\*.sys /lockedfiles
%systemroot%\System32\config\*.sav
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\system32\drivers\*.sys /3
%systemroot%\system32\*.* /3
%SYSTEMDRIVE%\*.exe
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s
reg query "HKLM\Software\Microsoft\Windows NT\CurrentVersion\winlogon" /v GinaDLL /c
reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv" /v ImagePath /c
reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS" /v ImagePath /c
type c:\boot.ini >> test.txt /c
%SystemDrive%\PhysicalMBR.bin /md5
*crack* /s
*keygen* /s
*AntiWPA* /s
*loader* /s
*minodlogin* /s
*tnod* /s
*AutoKMS* /s
*activator* /s
*serial* /s
*w7lxe* /s
Po skenu se vytvori dva logy (OTL.Txt a Extras.txt), oba sem vlozte (kdyz budou dlouhe, rozdelte je do vice prispevku).
Pokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Re: Program blokovan zasadami skupiny co stím ?
OTL logfile created on: 3/28/2014 9:37:19 AM - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\asus\Desktop
Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.11.9600.16521)
Locale: 00000409 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy
1.99 Gb Total Physical Memory | 0.98 Gb Available Physical Memory | 49.40% Memory free
3.98 Gb Paging File | 2.84 Gb Available in Paging File | 71.40% Paging File free
Paging file location(s): d:\pagefile.sys 0 0 [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\windows | %ProgramFiles% = C:\Program Files
Drive C: | 100.00 Gb Total Space | 31.65 Gb Free Space | 31.65% Space Free | Partition Type: NTFS
Drive D: | 122.87 Gb Total Space | 118.93 Gb Free Space | 96.79% Space Free | Partition Type: NTFS
Computer Name: KRISTINA_ASUS | User Name: asus | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Processes (SafeList) ==========
PRC - [2014/03/28 09:35:14 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\asus\Desktop\OTL.exe
PRC - [2014/03/15 01:50:42 | 000,859,976 | ---- | M] (Google Inc.) -- C:\Program Files\Google\Chrome\Application\chrome.exe
PRC - [2013/10/23 15:01:10 | 000,280,288 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Security Client\NisSrv.exe
PRC - [2013/10/23 15:01:10 | 000,022,208 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Security Client\MsMpEng.exe
PRC - [2012/11/23 03:48:41 | 000,049,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\taskhost.exe
PRC - [2011/02/25 06:30:54 | 002,616,320 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
========== Modules (No Company Name) ==========
MOD - [2014/03/15 01:50:40 | 000,394,568 | ---- | M] () -- C:\Program Files\Google\Chrome\Application\33.0.1750.154\ppgooglenaclpluginchrome.dll
MOD - [2014/03/15 01:50:38 | 004,061,000 | ---- | M] () -- C:\Program Files\Google\Chrome\Application\33.0.1750.154\pdf.dll
MOD - [2014/03/15 01:50:35 | 000,716,616 | ---- | M] () -- C:\Program Files\Google\Chrome\Application\33.0.1750.154\libglesv2.dll
MOD - [2014/03/15 01:50:34 | 000,100,168 | ---- | M] () -- C:\Program Files\Google\Chrome\Application\33.0.1750.154\libegl.dll
MOD - [2014/03/15 01:50:32 | 001,647,432 | ---- | M] () -- C:\Program Files\Google\Chrome\Application\33.0.1750.154\ffmpegsumo.dll
MOD - [2014/03/15 01:50:30 | 000,051,016 | ---- | M] () -- C:\Program Files\Google\Chrome\Application\33.0.1750.154\chrome_elf.dll
MOD - [2012/08/08 14:59:06 | 000,441,536 | ---- | M] () -- C:\Program Files\TotalDocConverter\axTotalConverter.dll
MOD - [2010/09/02 12:08:00 | 000,118,784 | ---- | M] () -- C:\Program Files\ASUS\Asus WebStorage\3.0.108.222\AsusWSShellExt.dll
MOD - [2010/03/15 10:28:24 | 000,141,824 | ---- | M] () -- C:\Program Files\WinRAR\RarExt.dll
========== Services (SafeList) ==========
SRV - [2014/03/15 08:11:11 | 000,257,928 | ---- | M] (Adobe Systems Incorporated) [Disabled | Stopped] -- C:\Windows\System32\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2014/03/01 04:38:23 | 000,108,032 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\windows\System32\IEEtwCollector.exe -- (IEEtwCollectorService)
SRV - [2013/12/21 07:04:16 | 000,065,432 | ---- | M] (Adobe Systems Incorporated) [Disabled | Stopped] -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2013/10/23 15:01:10 | 000,280,288 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Program Files\Microsoft Security Client\NisSrv.exe -- (NisSrv)
SRV - [2013/10/23 15:01:10 | 000,022,208 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Microsoft Security Client\MsMpEng.exe -- (MsMpSvc)
SRV - [2013/05/27 05:57:27 | 000,680,960 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2010/05/24 15:11:17 | 001,343,400 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\Wat\WatAdminSvc.exe -- (WatAdminSvc)
SRV - [2009/08/19 01:35:56 | 000,219,136 | ---- | M] () [Disabled | Stopped] -- C:\Windows\System32\AsusService.exe -- (AsusService)
SRV - [2009/07/14 02:16:13 | 000,025,088 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\sensrsvc.dll -- (SensrSvc)
SRV - [2009/07/01 17:03:12 | 000,582,944 | ---- | M] (Broadcom Corporation.) [Disabled | Stopped] -- C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe -- (btwdins)
========== Driver Services (SafeList) ==========
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\lgusbmodem.sys -- (USBModem)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\lgusbdiag.sys -- (UsbDiag)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\lgusbbus.sys -- (usbbus)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Users\asus\AppData\Local\Temp\catchme.sys -- (catchme)
DRV - [2014/03/24 16:33:49 | 000,243,128 | ---- | M] (Disc Soft Ltd) [Kernel | System | Running] -- C:\Windows\System32\drivers\dtsoftbus01.sys -- (dtsoftbus01)
DRV - [2013/09/27 09:53:06 | 000,104,768 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\NisDrvWFP.sys -- (NisDrv)
DRV - [2010/11/20 11:24:41 | 000,052,224 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV - [2010/11/20 10:59:44 | 000,035,968 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\winusb.sys -- (WinUsb)
DRV - [2010/05/12 12:23:04 | 000,016,896 | ---- | M] (Danish Wireless Design A/S) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\FlashUSB.sys -- (FlashUSB)
DRV - [2009/10/05 15:31:50 | 001,221,632 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\athr.sys -- (athr)
DRV - [2009/07/20 10:29:40 | 000,013,880 | ---- | M] ( ) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\kbfiltr.sys -- (kbfiltr)
DRV - [2009/07/14 01:06:49 | 000,051,200 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\BthMtpEnum.sys -- (BthMtpEnum)
DRV - [2009/07/14 00:52:10 | 000,014,336 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\vwifimp.sys -- (vwifimp)
DRV - [2009/07/13 23:02:47 | 000,050,688 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\L1C62x86.sys -- (L1C)
DRV - [2009/07/06 09:48:02 | 000,011,448 | ---- | M] () [Kernel | System | Running] -- C:\Windows\System32\drivers\AsUpIO.sys -- (AsUpIO)
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE - HKLM\..\SearchScopes,DefaultScope =
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-19\..\SearchScopes,DefaultScope =
IE - HKU\S-1-5-20\..\SearchScopes,DefaultScope =
IE - HKU\S-1-5-21-2318946186-1565977137-1874626250-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = http://eeepc.asus.com [binary data]
IE - HKU\S-1-5-21-2318946186-1565977137-1874626250-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
IE - HKU\S-1-5-21-2318946186-1565977137-1874626250-1000\..\URLSearchHook: - No CLSID value found
IE - HKU\S-1-5-21-2318946186-1565977137-1874626250-1000\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKU\S-1-5-21-2318946186-1565977137-1874626250-1000\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTer ... ORM=IE11SR
IE - HKU\S-1-5-21-2318946186-1565977137-1874626250-1000\..\SearchScopes\{12995981-2FD6-4BEE-9FB0-B1674E8E5E7E}: "URL" = http://websearch.4shared.com/results?q={searchTerms}
IE - HKU\S-1-5-21-2318946186-1565977137-1874626250-1000\..\SearchScopes\{2CA77391-6B3D-4C6D-9B73-3AE71385D909}: "URL" = http://search.yahoo.com/search?fr=chr-g ... earchTerms}
IE - HKU\S-1-5-21-2318946186-1565977137-1874626250-1000\..\SearchScopes\{367F3737-EEAB-4D48-B2A5-454460B1E483}: "URL" = http://websearch.ask.com/redirect?clien ... 8CB85D40F6
IE - HKU\S-1-5-21-2318946186-1565977137-1874626250-1000\..\SearchScopes\{386C26C0-4923-41C5-B6EE-7519328BAA74}: "URL" = http://tv.seznam.cz/hledej?w={searchTer ... arch_16194
IE - HKU\S-1-5-21-2318946186-1565977137-1874626250-1000\..\SearchScopes\{746DE492-AC71-492D-92AB-84499609727E}: "URL" = http://encyklopedie.seznam.cz/search?q= ... arch_16194
IE - HKU\S-1-5-21-2318946186-1565977137-1874626250-1000\..\SearchScopes\{774AA36B-688F-4565-AE8E-6A7E1EAF5761}: "URL" = http://search.seznam.cz/?q={searchTerms ... arch_16194
IE - HKU\S-1-5-21-2318946186-1565977137-1874626250-1000\..\SearchScopes\{97091B95-5A56-4F9C-AE45-9B8698CB6DFF}: "URL" = http://slovnik.seznam.cz/?q={searchTerm ... arch_16194
IE - HKU\S-1-5-21-2318946186-1565977137-1874626250-1000\..\SearchScopes\{A2124B83-4E16-4C57-B429-3CC51AAB7BA4}: "URL" = http://www.mapy.cz/?query={searchTerms} ... arch_16194
IE - HKU\S-1-5-21-2318946186-1565977137-1874626250-1000\..\SearchScopes\{B50A0689-B00E-4555-933B-B636029B19B1}: "URL" = http://www.novinky.cz/hledej?w={searchT ... arch_16194
IE - HKU\S-1-5-21-2318946186-1565977137-1874626250-1000\..\SearchScopes\{C9622A0B-12FE-4DD9-AAAA-7C53117445EB}: "URL" = http://www.firmy.cz/?q={searchTerms}&so ... arch_16194
IE - HKU\S-1-5-21-2318946186-1565977137-1874626250-1000\..\SearchScopes\{D4A3D2BE-546A-4C6C-B455-E753E60CAE2D}: "URL" = http://slovnik.seznam.cz/?q={searchTerm ... arch_16194
IE - HKU\S-1-5-21-2318946186-1565977137-1874626250-1000\..\SearchScopes\{FFDEDE5B-DD12-4B72-A0CB-85C9E0EECB49}: "URL" = http://www.zbozi.cz/?q={searchTerms}&r= ... arch_16194
IE - HKU\S-1-5-21-2318946186-1565977137-1874626250-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
========== FireFox ==========
FF - prefs.js..extensions.enabledAddons: %7Bea614400-e918-4741-9a97-7a972ff7c30b%7D:2.5.14
FF - prefs.js..extensions.enabledAddons: 2020Player_IKEA%402020Technologies.com:5.0.94.0
FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:19.0.2
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\windows\system32\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.51.2: C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.51.2: C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@microsoft.com/Lync,version=15.0: C:\Program Files\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~1\MIF5BA~1\Office15\NPSPWRAP.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922: C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3508.1109: C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.23.9\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=8: C:\Program Files\Google\Update\1.2.183.39\npGoogleOneClick8.dll File not found
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.23.9\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
[2013/03/08 07:34:30 | 000,000,000 | ---D | M] (No name found) -- C:\Users\asus\AppData\Roaming\mozilla\Extensions
[2013/03/08 07:43:01 | 000,000,000 | ---D | M] (No name found) -- C:\Users\asus\AppData\Roaming\mozilla\Firefox\Profiles\til23mwg.default\extensions
[2013/03/08 07:34:49 | 000,000,000 | ---D | M] (Seznam lištička) -- C:\Users\asus\AppData\Roaming\mozilla\Firefox\Profiles\til23mwg.default\extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}
[2013/03/08 07:43:01 | 000,000,000 | ---D | M] (20-20 3D Viewer - IKEA) -- C:\Users\asus\AppData\Roaming\mozilla\Firefox\Profiles\til23mwg.default\extensions\2020Player_IKEA@2020Technologies.com
[2013/11/15 03:30:36 | 000,034,072 | ---- | M] (Microsoft Corporation) -- C:\Program Files\mozilla firefox\plugins\npMeetingJoinPluginOC.dll
[2010/07/12 17:33:56 | 000,012,800 | ---- | M] (Nullsoft, Inc.) -- C:\Program Files\mozilla firefox\plugins\npwachk.dll
========== Chrome ==========
CHR - default_search_provider: Ask Search (Enabled)
CHR - default_search_provider: search_url = http://www.search.ask.com/web?p2=%5EBBK ... earchTerms}
CHR - default_search_provider: suggest_url = http://ss.websearch.ask.com/query?li=ff ... earchTerms},
CHR - homepage: http://www.seznam.cz/?clid=16194
CHR - plugin: Error reading preferences file
CHR - Extension: Peněženka Google = C:\Users\asus\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.1_0\
CHR - Extension: Seznam Lištička - Rychlá volba = C:\Users\asus\AppData\Local\Google\Chrome\User Data\Default\Extensions\olfeabkoenfaoljndfecamgilllcpiak\1.6.5_0\
O1 HOSTS File: ([2014/03/27 18:49:11 | 000,000,027 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (Lync Browser Helper) - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\Office15\OCHelper.dll (Microsoft Corporation)
O2 - BHO: (EWPBrowseObject Class) - {68F9551E-0411-48E4-9AAF-4BC42A6A46BE} - C:\Program Files\Canon\Easy-WebPrint\EWPBrowseLoader.dll ()
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (Office Document Cache Handler) - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office15\URLREDIR.DLL (Microsoft Corporation)
O2 - BHO: (Microsoft SkyDrive Pro Browser Helper) - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O3 - HKU\S-1-5-21-2318946186-1565977137-1874626250-1000\..\Toolbar\WebBrowser: (no name) - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - No CLSID value found.
O4 - HKU\S-1-5-21-2318946186-1565977137-1874626250-1000..\Run: [EA Core] "C:\Program Files\Electronic Arts\EADM\Core.exe" -silent File not found
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0
O7 - HKU\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-19\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-20\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-2318946186-1565977137-1874626250-1000\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-2318946186-1565977137-1874626250-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-2318946186-1565977137-1874626250-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O8 - Extra context menu item: E&xport to Microsoft Excel - C:\Program Files\Microsoft Office\Office15\EXCEL.EXE (Microsoft Corporation)
O8 - Extra context menu item: Odeslat obrázek do zařízení &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm ()
O8 - Extra context menu item: Odeslat stránku do zařízení &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O8 - Extra context menu item: Se&nd to OneNote - C:\Program Files\Microsoft Office\Office15\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra Button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office15\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office15\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra Button: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\Office15\OCHelper.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\Office15\OCHelper.dll (Microsoft Corporation)
O9 - Extra Button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office15\ONBttnIELinkedNotes.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office15\ONBttnIELinkedNotes.dll (Microsoft Corporation)
O9 - Extra Button: @C:\Program Files\WIDCOMM\Bluetooth Software\btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O9 - Extra 'Tools' menuitem : @C:\Program Files\WIDCOMM\Bluetooth Software\btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O15 - HKU\S-1-5-21-2318946186-1565977137-1874626250-1000\..Trusted Domains: localhost ([]http in Internet)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{9F3D4AA1-E73D-48EF-976F-4C4B4121FB32}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{A659526D-AF5A-4F1A-AA7E-2D86CDA7DC17}: DhcpNameServer = 10.0.0.138
O18 - Protocol\Handler\osf {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\windows\system32\userinit.exe) - C:\Windows\System32\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009/06/10 22:42:20 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = ComFile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)
CREATERESTOREPOINT
Restore point Set: OTL Restore Point
NetSvcs: FastUserSwitchingCompatibility - File not found
NetSvcs: Ias - C:\windows\System32\ias.dll (Microsoft Corporation)
NetSvcs: Nla - File not found
NetSvcs: Ntmssvc - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: SRService - File not found
NetSvcs: WmdmPmSp - File not found
NetSvcs: LogonHours - File not found
NetSvcs: PCAudit - File not found
NetSvcs: helpsvc - File not found
NetSvcs: uploadmgr - File not found
Drivers32: msacm.l3acm - C:\Windows\System32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: MSVideo8 - C:\windows\System32\vfwwdm32.dll (Microsoft Corporation)
Drivers32: vidc.cvid - C:\windows\System32\iccvid.dll (Radius Inc.)
Drivers32: vidc.VP60 - C:\Windows\System32\vp6vfw.dll (On2.com)
Drivers32: vidc.VP61 - C:\Windows\System32\vp6vfw.dll (On2.com)
PhysicalDisk0 MBR saved to C:\PhysicalMBR.bin
========== Files/Folders - Created Within 30 Days ==========
[2014/03/28 09:34:58 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\asus\Desktop\OTL.exe
[2014/03/27 19:07:27 | 000,000,000 | ---D | C] -- C:\Users\asus\AppData\Local\{1AD498A4-1331-4211-8319-BCB540FC03E0}
[2014/03/27 18:56:31 | 000,000,000 | ---D | C] -- C:\Users\asus\AppData\Local\temp
[2014/03/27 18:49:15 | 000,000,000 | ---D | C] -- C:\$RECYCLE.BIN
[2014/03/27 16:24:32 | 000,000,000 | ---D | C] -- C:\windows\temp
[2014/03/27 06:09:21 | 000,000,000 | ---D | C] -- C:\Config.Msi
[2014/03/26 16:57:44 | 000,000,000 | ---D | C] -- C:\Users\asus\Documents\Electronic Arts
[2014/03/26 14:13:46 | 000,518,144 | ---- | C] (SteelWerX) -- C:\windows\SWREG.exe
[2014/03/26 14:13:46 | 000,060,416 | ---- | C] (NirSoft) -- C:\windows\NIRCMD.exe
[2014/03/26 14:13:45 | 000,406,528 | ---- | C] (SteelWerX) -- C:\windows\SWSC.exe
[2014/03/26 14:11:33 | 000,000,000 | ---D | C] -- C:\Qoobox
[2014/03/26 14:10:31 | 000,000,000 | ---D | C] -- C:\windows\erdnt
[2014/03/26 14:08:23 | 005,192,353 | R--- | C] (Swearware) -- C:\Users\asus\Desktop\ComboFix.exe
[2014/03/25 21:50:53 | 000,000,000 | ---D | C] -- C:\Users\asus\AppData\Local\Avg2014
[2014/03/25 20:07:15 | 000,052,928 | ---- | C] (StdLib) -- C:\windows\System32\drivers\wStLibG.sys
[2014/03/25 18:40:00 | 000,000,000 | ---D | C] -- C:\Program Files\Seznam.cz
[2014/03/25 18:36:28 | 000,000,000 | ---D | C] -- C:\Program Files\PCData
[2014/03/25 18:34:44 | 000,000,000 | ---D | C] -- C:\Program Files\Surftastic
[2014/03/25 18:31:54 | 000,000,000 | ---D | C] -- C:\Users\asus\AppData\Local\87542dc6-8938-4565-f241-7774dad144a1
[2014/03/25 17:38:37 | 000,000,000 | ---D | C] -- C:\Users\asus\AppData\Roaming\Origin
[2014/03/25 17:38:34 | 000,000,000 | ---D | C] -- C:\Users\asus\AppData\Local\Origin
[2014/03/25 17:38:29 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Origin
[2014/03/25 17:38:28 | 000,000,000 | ---D | C] -- C:\Users\asus\AppData\Local\CrashDumps
[2014/03/25 17:38:24 | 000,000,000 | ---D | C] -- C:\ProgramData\Origin
[2014/03/25 17:38:23 | 000,000,000 | ---D | C] -- C:\Program Files\Origin Games
[2014/03/25 17:33:52 | 000,000,000 | ---D | C] -- C:\Program Files\Origin
[2014/03/25 17:03:11 | 000,000,000 | ---D | C] -- C:\ProgramData\Electronic Arts
[2014/03/25 16:34:11 | 000,000,000 | ---D | C] -- C:\Program Files\Electronic Arts
[2014/03/25 12:05:46 | 000,000,000 | ---D | C] -- C:\Users\asus\Desktop\RK_Quarantine
[2014/03/24 20:52:18 | 000,447,752 | ---- | C] (On2.com) -- C:\windows\System32\vp6vfw.dll
[2014/03/24 20:52:04 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft WSE
[2014/03/24 19:51:31 | 000,000,000 | ---D | C] -- C:\AdwCleaner
[2014/03/24 18:57:14 | 000,000,000 | ---D | C] -- C:\Users\asus\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SmartTweak Software
[2014/03/24 18:55:45 | 000,000,000 | ---D | C] -- C:\Program Files\SmartTweak
[2014/03/24 18:52:56 | 000,000,000 | ---D | C] -- C:\Users\asus\AppData\Roaming\Seznam.cz
[2014/03/24 16:48:23 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DAEMON Tools Lite
[2014/03/24 16:33:49 | 000,243,128 | ---- | C] (Disc Soft Ltd) -- C:\windows\System32\drivers\dtsoftbus01.sys
[2014/03/24 16:33:03 | 000,000,000 | ---D | C] -- C:\Program Files\DAEMON Tools Lite
[2014/03/24 16:16:27 | 000,000,000 | ---D | C] -- C:\Users\asus\AppData\Roaming\AVG
[2014/03/24 16:13:25 | 000,000,000 | ---D | C] -- C:\ProgramData\AVG
[2014/03/24 16:12:51 | 000,000,000 | -HSD | C] -- C:\ProgramData\{01BD4FC9-2F86-4706-A62E-774BB7E9D308}
[2014/03/24 16:11:06 | 000,000,000 | ---D | C] -- C:\Users\asus\AppData\Roaming\DAEMON Tools Lite
[2014/03/24 16:09:49 | 000,000,000 | ---D | C] -- C:\ProgramData\DAEMON Tools Lite
[2014/03/23 21:06:20 | 000,000,000 | ---D | C] -- C:\Users\asus\AppData\Roaming\Malwarebytes
[2014/03/23 21:04:17 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2014/03/23 21:03:55 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2014/03/23 21:03:38 | 000,000,000 | ---D | C] -- C:\Users\asus\AppData\Local\Programs
[2014/03/23 17:52:02 | 000,000,000 | ---D | C] -- C:\Program Files\trend micro
[2014/03/23 17:52:01 | 000,000,000 | ---D | C] -- C:\rsit
[2014/03/22 10:57:15 | 000,000,000 | ---D | C] -- C:\Users\asus\AppData\Roaming\uTorrent
[2014/03/21 21:05:55 | 000,000,000 | ---D | C] -- C:\Users\asus\Documents\The KMPlayer
[2014/03/21 19:46:53 | 000,000,000 | ---D | C] -- C:\Users\asus\AppData\Local\Microsoft Games
[2014/03/21 19:36:11 | 000,000,000 | ---D | C] -- C:\ProgramData\Oracle
[2014/03/21 19:35:34 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Java
[2014/03/21 19:35:01 | 000,264,616 | ---- | C] (Oracle Corporation) -- C:\windows\System32\javaws.exe
[2014/03/21 19:33:35 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
[2014/03/21 19:33:33 | 000,094,632 | ---- | C] (Oracle Corporation) -- C:\windows\System32\WindowsAccessBridge.dll
[2014/03/21 19:33:32 | 000,175,016 | ---- | C] (Oracle Corporation) -- C:\windows\System32\javaw.exe
[2014/03/21 19:33:32 | 000,174,504 | ---- | C] (Oracle Corporation) -- C:\windows\System32\java.exe
[2014/03/21 19:19:03 | 000,000,000 | ---D | C] -- C:\Users\asus\AppData\Roaming\DropboxMaster
[2014/03/21 19:17:34 | 000,000,000 | ---D | C] -- C:\Users\asus\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
[2014/03/21 19:12:45 | 000,000,000 | ---D | C] -- C:\Users\asus\AppData\Roaming\Dropbox
[2014/03/21 18:58:11 | 000,000,000 | ---D | C] -- C:\ProgramData\AVAST Software
[2014/03/15 08:07:32 | 000,509,440 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\qedit.dll
[2014/03/15 08:07:23 | 000,108,032 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\ieetwcollector.exe
[2014/03/15 08:07:23 | 000,051,200 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\ieetwproxystub.dll
[2014/03/15 08:07:23 | 000,043,008 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\jsproxy.dll
[2014/03/15 08:07:23 | 000,032,768 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\iernonce.dll
[2014/03/15 08:07:21 | 000,646,144 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\MsSpellCheckingFacility.exe
[2014/03/15 08:07:21 | 000,553,472 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\jscript9diag.dll
[2014/03/15 08:07:21 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\ieetwcollectorres.dll
[2014/03/15 08:07:20 | 000,703,488 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\ieapfltr.dll
[2014/03/15 08:07:15 | 000,440,832 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\ieui.dll
[2014/03/15 08:07:12 | 000,112,128 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\ieUnatt.exe
[2014/03/15 08:07:08 | 004,244,480 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\jscript9.dll
[2014/03/15 08:06:59 | 002,724,864 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\mshtml.tlb
[2014/03/15 08:06:59 | 000,524,288 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\msfeeds.dll
[2014/03/15 08:06:56 | 001,964,032 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\inetcpl.cpl
[2014/03/15 08:06:55 | 000,164,864 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\msrating.dll
[2014/03/15 08:06:54 | 000,208,896 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\ie4uinit.exe
[2014/03/15 08:06:54 | 000,061,952 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\iesetup.dll
[2014/03/15 08:04:38 | 002,349,056 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\win32k.sys
[2014/03/15 08:04:21 | 000,381,440 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\wer.dll
[2014/03/15 08:02:01 | 000,000,000 | ---D | C] -- C:\Users\asus\Documents\Ostatní
[2014/03/06 12:37:57 | 000,000,000 | ---D | C] -- C:\Users\asus\AppData\Local\{ACAF6B20-1C93-43D0-A296-08649F5A593D}
[2014/03/06 11:59:23 | 000,000,000 | ---D | C] -- C:\windows\Migration
========== Files - Modified Within 30 Days ==========
[2014/03/28 09:41:57 | 000,000,512 | ---- | M] () -- C:\PhysicalMBR.bin
[2014/03/28 09:38:11 | 000,009,920 | -H-- | M] () -- C:\windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2014/03/28 09:38:11 | 000,009,920 | -H-- | M] () -- C:\windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2014/03/28 09:35:14 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\asus\Desktop\OTL.exe
[2014/03/28 09:31:14 | 000,000,932 | ---- | M] () -- C:\windows\tasks\GoogleUpdateTaskMachineCore.job
[2014/03/28 09:30:38 | 000,067,584 | --S- | M] () -- C:\windows\bootstat.dat
[2014/03/28 09:30:24 | 1602,691,072 | -HS- | M] () -- C:\hiberfil.sys
[2014/03/27 22:30:00 | 000,000,936 | ---- | M] () -- C:\windows\tasks\GoogleUpdateTaskMachineUA.job
[2014/03/27 22:22:20 | 000,781,383 | ---- | M] () -- C:\Users\asus\Desktop\RSIT.exe
[2014/03/27 22:10:00 | 000,000,914 | ---- | M] () -- C:\windows\tasks\Adobe Flash Player Updater.job
[2014/03/27 18:49:11 | 000,000,027 | ---- | M] () -- C:\windows\System32\drivers\etc\hosts
[2014/03/26 19:26:06 | 000,648,242 | ---- | M] () -- C:\windows\System32\perfh005.dat
[2014/03/26 19:26:06 | 000,633,436 | ---- | M] () -- C:\windows\System32\perfh009.dat
[2014/03/26 19:26:06 | 000,133,570 | ---- | M] () -- C:\windows\System32\perfc005.dat
[2014/03/26 19:26:06 | 000,115,298 | ---- | M] () -- C:\windows\System32\perfc009.dat
[2014/03/26 16:55:40 | 000,002,182 | ---- | M] () -- C:\Users\Public\Desktop\The Sims™ 3 Po setmění.lnk
[2014/03/26 16:42:50 | 000,002,036 | ---- | M] () -- C:\Users\Public\Desktop\The Sims™ 3.lnk
[2014/03/26 14:08:24 | 005,192,353 | R--- | M] (Swearware) -- C:\Users\asus\Desktop\ComboFix.exe
[2014/03/25 20:07:16 | 000,052,928 | ---- | M] (StdLib) -- C:\windows\System32\drivers\wStLibG.sys
[2014/03/25 12:04:42 | 003,943,424 | ---- | M] () -- C:\Users\asus\Desktop\RogueKiller.exe
[2014/03/24 19:51:08 | 001,950,720 | ---- | M] () -- C:\Users\asus\Desktop\adwcleaner.exe
[2014/03/24 18:51:07 | 000,001,901 | ---- | M] () -- C:\Users\Public\Desktop\DAEMON Tools Lite.lnk
[2014/03/24 16:33:49 | 000,243,128 | ---- | M] (Disc Soft Ltd) -- C:\windows\System32\drivers\dtsoftbus01.sys
[2014/03/22 10:58:13 | 000,000,851 | ---- | M] () -- C:\Users\asus\Desktop\µTorrent.lnk
[2014/03/21 19:32:06 | 000,094,632 | ---- | M] (Oracle Corporation) -- C:\windows\System32\WindowsAccessBridge.dll
[2014/03/21 19:31:46 | 000,264,616 | ---- | M] (Oracle Corporation) -- C:\windows\System32\javaws.exe
[2014/03/21 19:31:45 | 000,175,016 | ---- | M] (Oracle Corporation) -- C:\windows\System32\javaw.exe
[2014/03/21 19:31:43 | 000,174,504 | ---- | M] (Oracle Corporation) -- C:\windows\System32\java.exe
[2014/03/21 18:53:18 | 000,002,198 | ---- | M] () -- C:\windows\epplauncher.mif
[2014/03/21 13:32:28 | 000,001,729 | ---- | M] () -- C:\Users\asus\Desktop\chrome – zástupce.lnk
[2014/03/21 13:27:11 | 000,463,168 | ---- | M] () -- C:\windows\System32\FNTCACHE.DAT
[2014/03/15 08:11:06 | 000,692,616 | ---- | M] (Adobe Systems Incorporated) -- C:\windows\System32\FlashPlayerApp.exe
[2014/03/15 08:11:06 | 000,071,048 | ---- | M] (Adobe Systems Incorporated) -- C:\windows\System32\FlashPlayerCPLApp.cpl
[2014/03/01 05:11:20 | 002,724,864 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\mshtml.tlb
[2014/03/01 05:10:48 | 000,004,096 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\ieetwcollectorres.dll
[2014/03/01 04:52:43 | 000,061,952 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\iesetup.dll
[2014/03/01 04:51:53 | 000,051,200 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\ieetwproxystub.dll
[2014/03/01 04:43:55 | 000,043,008 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\jsproxy.dll
[2014/03/01 04:43:28 | 000,032,768 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\iernonce.dll
[2014/03/01 04:40:17 | 000,440,832 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\ieui.dll
[2014/03/01 04:38:26 | 000,112,128 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\ieUnatt.exe
[2014/03/01 04:38:23 | 000,108,032 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\ieetwcollector.exe
[2014/03/01 04:37:35 | 000,553,472 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\jscript9diag.dll
[2014/03/01 04:31:30 | 000,646,144 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\MsSpellCheckingFacility.exe
[2014/03/01 04:25:29 | 000,208,896 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\ie4uinit.exe
[2014/03/01 04:16:09 | 000,164,864 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\msrating.dll
[2014/03/01 04:14:15 | 004,244,480 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\jscript9.dll
[2014/03/01 04:03:49 | 000,524,288 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\msfeeds.dll
[2014/03/01 04:00:08 | 001,964,032 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\inetcpl.cpl
[2014/03/01 03:25:42 | 000,703,488 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\ieapfltr.dll
========== Files Created - No Company Name ==========
[2014/03/28 09:41:57 | 000,000,512 | ---- | C] () -- C:\PhysicalMBR.bin
[2014/03/27 22:21:55 | 000,781,383 | ---- | C] () -- C:\Users\asus\Desktop\RSIT.exe
[2014/03/26 16:55:40 | 000,002,182 | ---- | C] () -- C:\Users\Public\Desktop\The Sims™ 3 Po setmění.lnk
[2014/03/26 16:42:50 | 000,002,036 | ---- | C] () -- C:\Users\Public\Desktop\The Sims™ 3.lnk
[2014/03/26 14:13:46 | 000,256,000 | ---- | C] () -- C:\windows\PEV.exe
[2014/03/26 14:13:46 | 000,208,896 | ---- | C] () -- C:\windows\MBR.exe
[2014/03/26 14:13:45 | 000,098,816 | ---- | C] () -- C:\windows\sed.exe
[2014/03/26 14:13:45 | 000,080,412 | ---- | C] () -- C:\windows\grep.exe
[2014/03/26 14:13:45 | 000,068,096 | ---- | C] () -- C:\windows\zip.exe
[2014/03/25 12:04:27 | 003,943,424 | ---- | C] () -- C:\Users\asus\Desktop\RogueKiller.exe
[2014/03/24 19:50:55 | 001,950,720 | ---- | C] () -- C:\Users\asus\Desktop\adwcleaner.exe
[2014/03/24 18:51:07 | 000,001,901 | ---- | C] () -- C:\Users\Public\Desktop\DAEMON Tools Lite.lnk
[2014/03/22 10:58:13 | 000,000,851 | ---- | C] () -- C:\Users\asus\Desktop\µTorrent.lnk
[2014/03/20 22:04:04 | 000,001,729 | ---- | C] () -- C:\Users\asus\Desktop\chrome – zástupce.lnk
[2013/05/18 12:57:01 | 000,000,292 | ---- | C] () -- C:\Users\asus\AppData\Local\HamsterBookConverter.cfg
[2013/04/20 07:49:26 | 000,000,000 | ---- | C] () -- C:\Users\asus\teamviewer.exe
[2011/05/23 00:20:22 | 000,020,480 | ---- | C] () -- C:\Users\asus\AppData\Roaming\client.db
[2011/05/22 15:29:24 | 000,000,017 | ---- | C] () -- C:\Users\asus\AppData\Local\resmon.resmoncfg
[2011/01/13 14:07:47 | 000,003,584 | ---- | C] () -- C:\Users\asus\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010/10/31 21:42:49 | 000,000,056 | -H-- | C] () -- C:\ProgramData\ezsidmv.dat
[2010/01/02 16:50:37 | 000,002,406 | ---- | C] () -- C:\Users\asus\AppData\Roaming\wklnhst.dat
========== ZeroAccess Check ==========
[2009/07/14 05:42:31 | 000,000,227 | RHS- | M] () -- C:\windows\assembly\Desktop.ini
[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2013/07/26 02:55:59 | 012,872,704 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2010/11/20 13:19:02 | 000,606,208 | ---- | M] (Microsoft Corporation)
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
"" = %systemroot%\system32\wbem\wbemess.dll -- [2009/07/14 02:16:17 | 000,342,528 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both
========== LOP Check ==========
[2010/12/26 21:02:01 | 000,000,000 | ---D | M] -- C:\Users\asus\AppData\Roaming\Asus
[2012/05/30 16:07:43 | 000,000,000 | ---D | M] -- C:\Users\asus\AppData\Roaming\Asus WebStorage
[2014/03/24 16:16:27 | 000,000,000 | ---D | M] -- C:\Users\asus\AppData\Roaming\AVG
[2011/05/23 00:20:28 | 000,000,000 | ---D | M] -- C:\Users\asus\AppData\Roaming\BS_Temp
[2012/12/11 18:05:28 | 000,000,000 | ---D | M] -- C:\Users\asus\AppData\Roaming\calibre
[2014/03/24 18:55:26 | 000,000,000 | ---D | M] -- C:\Users\asus\AppData\Roaming\DAEMON Tools Lite
[2014/03/21 19:20:03 | 000,000,000 | ---D | M] -- C:\Users\asus\AppData\Roaming\Dropbox
[2014/03/21 19:19:57 | 000,000,000 | ---D | M] -- C:\Users\asus\AppData\Roaming\DropboxMaster
[2009/12/26 10:09:02 | 000,000,000 | ---D | M] -- C:\Users\asus\AppData\Roaming\EeeStorageUploader
[2010/03/15 11:02:27 | 000,000,000 | ---D | M] -- C:\Users\asus\AppData\Roaming\OpenOffice.org
[2011/05/21 19:39:56 | 000,000,000 | ---D | M] -- C:\Users\asus\AppData\Roaming\Opera
[2014/03/25 17:38:37 | 000,000,000 | ---D | M] -- C:\Users\asus\AppData\Roaming\Origin
[2014/03/25 18:40:19 | 000,000,000 | ---D | M] -- C:\Users\asus\AppData\Roaming\Seznam.cz
[2013/05/18 13:00:00 | 000,000,000 | ---D | M] -- C:\Users\asus\AppData\Roaming\Softplicity
[2011/05/22 20:16:39 | 000,000,000 | ---D | M] -- C:\Users\asus\AppData\Roaming\temp
[2010/02/23 19:30:36 | 000,000,000 | ---D | M] -- C:\Users\asus\AppData\Roaming\Template
[2011/05/23 00:20:34 | 000,000,000 | ---D | M] -- C:\Users\asus\AppData\Roaming\Update
[2014/03/27 15:53:17 | 000,000,000 | ---D | M] -- C:\Users\asus\AppData\Roaming\uTorrent
[2010/02/03 20:58:58 | 000,000,000 | ---D | M] -- C:\Users\asus\AppData\Roaming\Windows Live Writer
[2009/08/29 04:24:16 | 000,000,000 | ---D | M] -- C:\Users\Default\AppData\Roaming\Asus WebStorage
[2009/08/29 04:24:16 | 000,000,000 | ---D | M] -- C:\Users\Default User\AppData\Roaming\Asus WebStorage
========== Purity Check ==========
========== Custom Scans ==========
< >
[2009/07/14 05:53:46 | 000,032,596 | ---- | C] () -- C:\windows\Tasks\SCHEDLGU.TXT
[2009/07/14 05:53:47 | 000,000,006 | -H-- | C] () -- C:\windows\Tasks\SA.DAT
[2010/05/06 19:35:35 | 000,000,932 | ---- | C] () -- C:\windows\Tasks\GoogleUpdateTaskMachineCore.job
[2010/05/06 19:35:38 | 000,000,936 | ---- | C] () -- C:\windows\Tasks\GoogleUpdateTaskMachineUA.job
[2013/01/22 20:52:47 | 000,000,914 | ---- | C] () -- C:\windows\Tasks\Adobe Flash Player Updater.job
< >
< MD5 for: AGP440.SYS >
[2009/07/14 02:26:15 | 000,053,312 | ---- | M] (Microsoft Corporation) MD5=507812C3054C21CEF746B6EE3D04DD6E -- C:\Windows\erdnt\cache\AGP440.sys
[2009/07/14 02:26:15 | 000,053,312 | ---- | M] (Microsoft Corporation) MD5=507812C3054C21CEF746B6EE3D04DD6E -- C:\Windows\System32\drivers\AGP440.sys
[2009/07/14 02:26:15 | 000,053,312 | ---- | M] (Microsoft Corporation) MD5=507812C3054C21CEF746B6EE3D04DD6E -- C:\Windows\System32\DriverStore\FileRepository\machine.inf_x86_neutral_a97a2a0d0fbc6696\AGP440.sys
[2009/07/14 02:26:15 | 000,053,312 | ---- | M] (Microsoft Corporation) MD5=507812C3054C21CEF746B6EE3D04DD6E -- C:\Windows\winsxs\x86_machine.inf_31bf3856ad364e35_6.1.7601.17514_none_bc1a57271cf2f285\AGP440.sys
< MD5 for: ATAPI.SYS >
[2009/07/14 02:26:15 | 000,021,584 | ---- | M] (Microsoft Corporation) MD5=338C86357871C167A96AB976519BF59E -- C:\Windows\erdnt\cache\atapi.sys
[2009/07/14 02:26:15 | 000,021,584 | ---- | M] (Microsoft Corporation) MD5=338C86357871C167A96AB976519BF59E -- C:\Windows\System32\drivers\atapi.sys
[2009/07/14 02:26:15 | 000,021,584 | ---- | M] (Microsoft Corporation) MD5=338C86357871C167A96AB976519BF59E -- C:\Windows\System32\DriverStore\FileRepository\mshdc.inf_x86_neutral_a5025d31bee4647c\atapi.sys
[2009/07/14 02:26:15 | 000,021,584 | ---- | M] (Microsoft Corporation) MD5=338C86357871C167A96AB976519BF59E -- C:\Windows\System32\DriverStore\FileRepository\mshdc.inf_x86_neutral_fab873f3e8a3315c\atapi.sys
[2009/07/14 02:26:15 | 000,021,584 | ---- | M] (Microsoft Corporation) MD5=338C86357871C167A96AB976519BF59E -- C:\Windows\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.1.7601.17514_none_df3f92057fcbe7a7\atapi.sys
[2009/07/14 02:26:15 | 000,021,584 | ---- | M] (Microsoft Corporation) MD5=338C86357871C167A96AB976519BF59E -- C:\Windows\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.1.7601.18231_none_df26d4d57fdef5b0\atapi.sys
[2009/07/14 02:26:15 | 000,021,584 | ---- | M] (Microsoft Corporation) MD5=338C86357871C167A96AB976519BF59E -- C:\Windows\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.1.7601.22414_none_dfc9143c98e9a6c4\atapi.sys
< MD5 for: AUTOCHK.EXE >
[2010/11/20 13:16:54 | 000,668,160 | ---- | M] (Microsoft Corporation) MD5=F88A52EB62019D6A62FDD9E08034DBD8 -- C:\Windows\System32\autochk.exe
[2010/11/20 13:16:54 | 000,668,160 | ---- | M] (Microsoft Corporation) MD5=F88A52EB62019D6A62FDD9E08034DBD8 -- C:\Windows\winsxs\x86_microsoft-windows-autochk_31bf3856ad364e35_6.1.7601.17514_none_e3fb573520033bfa\autochk.exe
< MD5 for: CDROM.SYS >
[2010/11/20 09:38:10 | 000,108,544 | ---- | M] (Microsoft Corporation) MD5=BE167ED0FDB9C1FA1133953C18D5A6C9 -- C:\Windows\System32\drivers\cdrom.sys
[2010/11/20 09:38:10 | 000,108,544 | ---- | M] (Microsoft Corporation) MD5=BE167ED0FDB9C1FA1133953C18D5A6C9 -- C:\Windows\System32\DriverStore\FileRepository\cdrom.inf_x86_neutral_6381e09675524225\cdrom.sys
[2010/11/20 09:38:10 | 000,108,544 | ---- | M] (Microsoft Corporation) MD5=BE167ED0FDB9C1FA1133953C18D5A6C9 -- C:\Windows\winsxs\x86_cdrom.inf_31bf3856ad364e35_6.1.7601.17514_none_61b0c5ce02098355\cdrom.sys
< MD5 for: CNGAUDIT.DLL >
[2009/07/14 02:15:06 | 000,012,288 | ---- | M] (Microsoft Corporation) MD5=50BA656134F78AF64E4DD3C8B6FEFD7E -- C:\Windows\erdnt\cache\cngaudit.dll
[2009/07/14 02:15:06 | 000,012,288 | ---- | M] (Microsoft Corporation) MD5=50BA656134F78AF64E4DD3C8B6FEFD7E -- C:\Windows\System32\cngaudit.dll
[2009/07/14 02:15:06 | 000,012,288 | ---- | M] (Microsoft Corporation) MD5=50BA656134F78AF64E4DD3C8B6FEFD7E -- C:\Windows\winsxs\x86_microsoft-windows-cngaudit-dll_31bf3856ad364e35_6.1.7600.16385_none_e83a414890e8132b\cngaudit.dll
< MD5 for: CRYPTSVC.DLL >
[2012/06/02 05:52:32 | 000,142,336 | ---- | M] (Microsoft Corporation) MD5=063DD65889D21035311463337BD268E7 -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7601.22010_none_788c7cc71232cc19\cryptsvc.dll
[2013/05/10 05:49:59 | 000,140,288 | ---- | M] (Microsoft Corporation) MD5=33ADF6E0853AB39EA1723BE82842C1D3 -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7601.18150_none_77d7a417f9359661\cryptsvc.dll
[2013/05/13 05:45:55 | 000,140,288 | ---- | M] (Microsoft Corporation) MD5=3897DFF247D9ED0006190349DE264E14 -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7601.18151_none_77d8a461f934afb8\cryptsvc.dll
[2013/07/09 14:57:37 | 000,142,848 | ---- | M] (Microsoft Corporation) MD5=6DB499DEFCC827317C5371164A7CDB27 -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7601.22380_none_7840d305126b8725\cryptsvc.dll
[2013/07/09 05:46:31 | 000,140,288 | ---- | M] (Microsoft Corporation) MD5=7CA1BECEA5DE2643ADDAD32670E7A4C9 -- C:\Windows\erdnt\cache\cryptsvc.dll
[2013/07/09 05:46:31 | 000,140,288 | ---- | M] (Microsoft Corporation) MD5=7CA1BECEA5DE2643ADDAD32670E7A4C9 -- C:\Windows\System32\cryptsvc.dll
[2013/07/09 05:46:31 | 000,140,288 | ---- | M] (Microsoft Corporation) MD5=7CA1BECEA5DE2643ADDAD32670E7A4C9 -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7601.18205_none_7812b70bf9088686\cryptsvc.dll
[2012/06/02 05:36:29 | 000,140,288 | ---- | M] (Microsoft Corporation) MD5=96C0E38905CFD788313BE8E11DAE3F2F -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7601.17856_none_77ddc9e5f93000db\cryptsvc.dll
[2010/11/20 13:18:24 | 000,136,192 | ---- | M] (Microsoft Corporation) MD5=A585BEBF7D054BD9618EDA0922D5484A -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7601.17514_none_7807034ff91166f4\cryptsvc.dll
[2013/05/11 05:59:05 | 000,142,848 | ---- | M] (Microsoft Corporation) MD5=AC04D05309BB2C418D0D80B9FB014642 -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7601.22322_none_7883b3211239122d\cryptsvc.dll
[2013/05/10 06:06:21 | 000,142,848 | ---- | M] (Microsoft Corporation) MD5=E122AA1C9A3CC46FF9DDDE46E5EB0C58 -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7601.22321_none_7882b2d71239f8d6\cryptsvc.dll
[2013/10/05 02:52:03 | 000,142,848 | ---- | M] (Microsoft Corporation) MD5=F2D9242C3BBD1C36467FCAE1AE01733F -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7601.22473_none_784ea5b51260b460\cryptsvc.dll
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\asus\Desktop
Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.11.9600.16521)
Locale: 00000409 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy
1.99 Gb Total Physical Memory | 0.98 Gb Available Physical Memory | 49.40% Memory free
3.98 Gb Paging File | 2.84 Gb Available in Paging File | 71.40% Paging File free
Paging file location(s): d:\pagefile.sys 0 0 [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\windows | %ProgramFiles% = C:\Program Files
Drive C: | 100.00 Gb Total Space | 31.65 Gb Free Space | 31.65% Space Free | Partition Type: NTFS
Drive D: | 122.87 Gb Total Space | 118.93 Gb Free Space | 96.79% Space Free | Partition Type: NTFS
Computer Name: KRISTINA_ASUS | User Name: asus | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Processes (SafeList) ==========
PRC - [2014/03/28 09:35:14 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\asus\Desktop\OTL.exe
PRC - [2014/03/15 01:50:42 | 000,859,976 | ---- | M] (Google Inc.) -- C:\Program Files\Google\Chrome\Application\chrome.exe
PRC - [2013/10/23 15:01:10 | 000,280,288 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Security Client\NisSrv.exe
PRC - [2013/10/23 15:01:10 | 000,022,208 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Security Client\MsMpEng.exe
PRC - [2012/11/23 03:48:41 | 000,049,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\taskhost.exe
PRC - [2011/02/25 06:30:54 | 002,616,320 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
========== Modules (No Company Name) ==========
MOD - [2014/03/15 01:50:40 | 000,394,568 | ---- | M] () -- C:\Program Files\Google\Chrome\Application\33.0.1750.154\ppgooglenaclpluginchrome.dll
MOD - [2014/03/15 01:50:38 | 004,061,000 | ---- | M] () -- C:\Program Files\Google\Chrome\Application\33.0.1750.154\pdf.dll
MOD - [2014/03/15 01:50:35 | 000,716,616 | ---- | M] () -- C:\Program Files\Google\Chrome\Application\33.0.1750.154\libglesv2.dll
MOD - [2014/03/15 01:50:34 | 000,100,168 | ---- | M] () -- C:\Program Files\Google\Chrome\Application\33.0.1750.154\libegl.dll
MOD - [2014/03/15 01:50:32 | 001,647,432 | ---- | M] () -- C:\Program Files\Google\Chrome\Application\33.0.1750.154\ffmpegsumo.dll
MOD - [2014/03/15 01:50:30 | 000,051,016 | ---- | M] () -- C:\Program Files\Google\Chrome\Application\33.0.1750.154\chrome_elf.dll
MOD - [2012/08/08 14:59:06 | 000,441,536 | ---- | M] () -- C:\Program Files\TotalDocConverter\axTotalConverter.dll
MOD - [2010/09/02 12:08:00 | 000,118,784 | ---- | M] () -- C:\Program Files\ASUS\Asus WebStorage\3.0.108.222\AsusWSShellExt.dll
MOD - [2010/03/15 10:28:24 | 000,141,824 | ---- | M] () -- C:\Program Files\WinRAR\RarExt.dll
========== Services (SafeList) ==========
SRV - [2014/03/15 08:11:11 | 000,257,928 | ---- | M] (Adobe Systems Incorporated) [Disabled | Stopped] -- C:\Windows\System32\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2014/03/01 04:38:23 | 000,108,032 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\windows\System32\IEEtwCollector.exe -- (IEEtwCollectorService)
SRV - [2013/12/21 07:04:16 | 000,065,432 | ---- | M] (Adobe Systems Incorporated) [Disabled | Stopped] -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2013/10/23 15:01:10 | 000,280,288 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Program Files\Microsoft Security Client\NisSrv.exe -- (NisSrv)
SRV - [2013/10/23 15:01:10 | 000,022,208 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Microsoft Security Client\MsMpEng.exe -- (MsMpSvc)
SRV - [2013/05/27 05:57:27 | 000,680,960 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2010/05/24 15:11:17 | 001,343,400 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\Wat\WatAdminSvc.exe -- (WatAdminSvc)
SRV - [2009/08/19 01:35:56 | 000,219,136 | ---- | M] () [Disabled | Stopped] -- C:\Windows\System32\AsusService.exe -- (AsusService)
SRV - [2009/07/14 02:16:13 | 000,025,088 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\sensrsvc.dll -- (SensrSvc)
SRV - [2009/07/01 17:03:12 | 000,582,944 | ---- | M] (Broadcom Corporation.) [Disabled | Stopped] -- C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe -- (btwdins)
========== Driver Services (SafeList) ==========
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\lgusbmodem.sys -- (USBModem)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\lgusbdiag.sys -- (UsbDiag)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\lgusbbus.sys -- (usbbus)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Users\asus\AppData\Local\Temp\catchme.sys -- (catchme)
DRV - [2014/03/24 16:33:49 | 000,243,128 | ---- | M] (Disc Soft Ltd) [Kernel | System | Running] -- C:\Windows\System32\drivers\dtsoftbus01.sys -- (dtsoftbus01)
DRV - [2013/09/27 09:53:06 | 000,104,768 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\NisDrvWFP.sys -- (NisDrv)
DRV - [2010/11/20 11:24:41 | 000,052,224 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV - [2010/11/20 10:59:44 | 000,035,968 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\winusb.sys -- (WinUsb)
DRV - [2010/05/12 12:23:04 | 000,016,896 | ---- | M] (Danish Wireless Design A/S) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\FlashUSB.sys -- (FlashUSB)
DRV - [2009/10/05 15:31:50 | 001,221,632 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\athr.sys -- (athr)
DRV - [2009/07/20 10:29:40 | 000,013,880 | ---- | M] ( ) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\kbfiltr.sys -- (kbfiltr)
DRV - [2009/07/14 01:06:49 | 000,051,200 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\BthMtpEnum.sys -- (BthMtpEnum)
DRV - [2009/07/14 00:52:10 | 000,014,336 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\vwifimp.sys -- (vwifimp)
DRV - [2009/07/13 23:02:47 | 000,050,688 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\L1C62x86.sys -- (L1C)
DRV - [2009/07/06 09:48:02 | 000,011,448 | ---- | M] () [Kernel | System | Running] -- C:\Windows\System32\drivers\AsUpIO.sys -- (AsUpIO)
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE - HKLM\..\SearchScopes,DefaultScope =
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-19\..\SearchScopes,DefaultScope =
IE - HKU\S-1-5-20\..\SearchScopes,DefaultScope =
IE - HKU\S-1-5-21-2318946186-1565977137-1874626250-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = http://eeepc.asus.com [binary data]
IE - HKU\S-1-5-21-2318946186-1565977137-1874626250-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
IE - HKU\S-1-5-21-2318946186-1565977137-1874626250-1000\..\URLSearchHook: - No CLSID value found
IE - HKU\S-1-5-21-2318946186-1565977137-1874626250-1000\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKU\S-1-5-21-2318946186-1565977137-1874626250-1000\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTer ... ORM=IE11SR
IE - HKU\S-1-5-21-2318946186-1565977137-1874626250-1000\..\SearchScopes\{12995981-2FD6-4BEE-9FB0-B1674E8E5E7E}: "URL" = http://websearch.4shared.com/results?q={searchTerms}
IE - HKU\S-1-5-21-2318946186-1565977137-1874626250-1000\..\SearchScopes\{2CA77391-6B3D-4C6D-9B73-3AE71385D909}: "URL" = http://search.yahoo.com/search?fr=chr-g ... earchTerms}
IE - HKU\S-1-5-21-2318946186-1565977137-1874626250-1000\..\SearchScopes\{367F3737-EEAB-4D48-B2A5-454460B1E483}: "URL" = http://websearch.ask.com/redirect?clien ... 8CB85D40F6
IE - HKU\S-1-5-21-2318946186-1565977137-1874626250-1000\..\SearchScopes\{386C26C0-4923-41C5-B6EE-7519328BAA74}: "URL" = http://tv.seznam.cz/hledej?w={searchTer ... arch_16194
IE - HKU\S-1-5-21-2318946186-1565977137-1874626250-1000\..\SearchScopes\{746DE492-AC71-492D-92AB-84499609727E}: "URL" = http://encyklopedie.seznam.cz/search?q= ... arch_16194
IE - HKU\S-1-5-21-2318946186-1565977137-1874626250-1000\..\SearchScopes\{774AA36B-688F-4565-AE8E-6A7E1EAF5761}: "URL" = http://search.seznam.cz/?q={searchTerms ... arch_16194
IE - HKU\S-1-5-21-2318946186-1565977137-1874626250-1000\..\SearchScopes\{97091B95-5A56-4F9C-AE45-9B8698CB6DFF}: "URL" = http://slovnik.seznam.cz/?q={searchTerm ... arch_16194
IE - HKU\S-1-5-21-2318946186-1565977137-1874626250-1000\..\SearchScopes\{A2124B83-4E16-4C57-B429-3CC51AAB7BA4}: "URL" = http://www.mapy.cz/?query={searchTerms} ... arch_16194
IE - HKU\S-1-5-21-2318946186-1565977137-1874626250-1000\..\SearchScopes\{B50A0689-B00E-4555-933B-B636029B19B1}: "URL" = http://www.novinky.cz/hledej?w={searchT ... arch_16194
IE - HKU\S-1-5-21-2318946186-1565977137-1874626250-1000\..\SearchScopes\{C9622A0B-12FE-4DD9-AAAA-7C53117445EB}: "URL" = http://www.firmy.cz/?q={searchTerms}&so ... arch_16194
IE - HKU\S-1-5-21-2318946186-1565977137-1874626250-1000\..\SearchScopes\{D4A3D2BE-546A-4C6C-B455-E753E60CAE2D}: "URL" = http://slovnik.seznam.cz/?q={searchTerm ... arch_16194
IE - HKU\S-1-5-21-2318946186-1565977137-1874626250-1000\..\SearchScopes\{FFDEDE5B-DD12-4B72-A0CB-85C9E0EECB49}: "URL" = http://www.zbozi.cz/?q={searchTerms}&r= ... arch_16194
IE - HKU\S-1-5-21-2318946186-1565977137-1874626250-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
========== FireFox ==========
FF - prefs.js..extensions.enabledAddons: %7Bea614400-e918-4741-9a97-7a972ff7c30b%7D:2.5.14
FF - prefs.js..extensions.enabledAddons: 2020Player_IKEA%402020Technologies.com:5.0.94.0
FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:19.0.2
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\windows\system32\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.51.2: C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.51.2: C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@microsoft.com/Lync,version=15.0: C:\Program Files\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~1\MIF5BA~1\Office15\NPSPWRAP.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922: C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3508.1109: C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.23.9\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=8: C:\Program Files\Google\Update\1.2.183.39\npGoogleOneClick8.dll File not found
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.23.9\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
[2013/03/08 07:34:30 | 000,000,000 | ---D | M] (No name found) -- C:\Users\asus\AppData\Roaming\mozilla\Extensions
[2013/03/08 07:43:01 | 000,000,000 | ---D | M] (No name found) -- C:\Users\asus\AppData\Roaming\mozilla\Firefox\Profiles\til23mwg.default\extensions
[2013/03/08 07:34:49 | 000,000,000 | ---D | M] (Seznam lištička) -- C:\Users\asus\AppData\Roaming\mozilla\Firefox\Profiles\til23mwg.default\extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}
[2013/03/08 07:43:01 | 000,000,000 | ---D | M] (20-20 3D Viewer - IKEA) -- C:\Users\asus\AppData\Roaming\mozilla\Firefox\Profiles\til23mwg.default\extensions\2020Player_IKEA@2020Technologies.com
[2013/11/15 03:30:36 | 000,034,072 | ---- | M] (Microsoft Corporation) -- C:\Program Files\mozilla firefox\plugins\npMeetingJoinPluginOC.dll
[2010/07/12 17:33:56 | 000,012,800 | ---- | M] (Nullsoft, Inc.) -- C:\Program Files\mozilla firefox\plugins\npwachk.dll
========== Chrome ==========
CHR - default_search_provider: Ask Search (Enabled)
CHR - default_search_provider: search_url = http://www.search.ask.com/web?p2=%5EBBK ... earchTerms}
CHR - default_search_provider: suggest_url = http://ss.websearch.ask.com/query?li=ff ... earchTerms},
CHR - homepage: http://www.seznam.cz/?clid=16194
CHR - plugin: Error reading preferences file
CHR - Extension: Peněženka Google = C:\Users\asus\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.1_0\
CHR - Extension: Seznam Lištička - Rychlá volba = C:\Users\asus\AppData\Local\Google\Chrome\User Data\Default\Extensions\olfeabkoenfaoljndfecamgilllcpiak\1.6.5_0\
O1 HOSTS File: ([2014/03/27 18:49:11 | 000,000,027 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (Lync Browser Helper) - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\Office15\OCHelper.dll (Microsoft Corporation)
O2 - BHO: (EWPBrowseObject Class) - {68F9551E-0411-48E4-9AAF-4BC42A6A46BE} - C:\Program Files\Canon\Easy-WebPrint\EWPBrowseLoader.dll ()
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (Office Document Cache Handler) - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office15\URLREDIR.DLL (Microsoft Corporation)
O2 - BHO: (Microsoft SkyDrive Pro Browser Helper) - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O3 - HKU\S-1-5-21-2318946186-1565977137-1874626250-1000\..\Toolbar\WebBrowser: (no name) - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - No CLSID value found.
O4 - HKU\S-1-5-21-2318946186-1565977137-1874626250-1000..\Run: [EA Core] "C:\Program Files\Electronic Arts\EADM\Core.exe" -silent File not found
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0
O7 - HKU\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-19\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-20\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-2318946186-1565977137-1874626250-1000\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-2318946186-1565977137-1874626250-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-2318946186-1565977137-1874626250-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O8 - Extra context menu item: E&xport to Microsoft Excel - C:\Program Files\Microsoft Office\Office15\EXCEL.EXE (Microsoft Corporation)
O8 - Extra context menu item: Odeslat obrázek do zařízení &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm ()
O8 - Extra context menu item: Odeslat stránku do zařízení &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O8 - Extra context menu item: Se&nd to OneNote - C:\Program Files\Microsoft Office\Office15\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra Button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office15\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office15\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra Button: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\Office15\OCHelper.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\Office15\OCHelper.dll (Microsoft Corporation)
O9 - Extra Button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office15\ONBttnIELinkedNotes.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office15\ONBttnIELinkedNotes.dll (Microsoft Corporation)
O9 - Extra Button: @C:\Program Files\WIDCOMM\Bluetooth Software\btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O9 - Extra 'Tools' menuitem : @C:\Program Files\WIDCOMM\Bluetooth Software\btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O15 - HKU\S-1-5-21-2318946186-1565977137-1874626250-1000\..Trusted Domains: localhost ([]http in Internet)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{9F3D4AA1-E73D-48EF-976F-4C4B4121FB32}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{A659526D-AF5A-4F1A-AA7E-2D86CDA7DC17}: DhcpNameServer = 10.0.0.138
O18 - Protocol\Handler\osf {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\windows\system32\userinit.exe) - C:\Windows\System32\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009/06/10 22:42:20 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = ComFile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)
CREATERESTOREPOINT
Restore point Set: OTL Restore Point
NetSvcs: FastUserSwitchingCompatibility - File not found
NetSvcs: Ias - C:\windows\System32\ias.dll (Microsoft Corporation)
NetSvcs: Nla - File not found
NetSvcs: Ntmssvc - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: SRService - File not found
NetSvcs: WmdmPmSp - File not found
NetSvcs: LogonHours - File not found
NetSvcs: PCAudit - File not found
NetSvcs: helpsvc - File not found
NetSvcs: uploadmgr - File not found
Drivers32: msacm.l3acm - C:\Windows\System32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: MSVideo8 - C:\windows\System32\vfwwdm32.dll (Microsoft Corporation)
Drivers32: vidc.cvid - C:\windows\System32\iccvid.dll (Radius Inc.)
Drivers32: vidc.VP60 - C:\Windows\System32\vp6vfw.dll (On2.com)
Drivers32: vidc.VP61 - C:\Windows\System32\vp6vfw.dll (On2.com)
PhysicalDisk0 MBR saved to C:\PhysicalMBR.bin
========== Files/Folders - Created Within 30 Days ==========
[2014/03/28 09:34:58 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\asus\Desktop\OTL.exe
[2014/03/27 19:07:27 | 000,000,000 | ---D | C] -- C:\Users\asus\AppData\Local\{1AD498A4-1331-4211-8319-BCB540FC03E0}
[2014/03/27 18:56:31 | 000,000,000 | ---D | C] -- C:\Users\asus\AppData\Local\temp
[2014/03/27 18:49:15 | 000,000,000 | ---D | C] -- C:\$RECYCLE.BIN
[2014/03/27 16:24:32 | 000,000,000 | ---D | C] -- C:\windows\temp
[2014/03/27 06:09:21 | 000,000,000 | ---D | C] -- C:\Config.Msi
[2014/03/26 16:57:44 | 000,000,000 | ---D | C] -- C:\Users\asus\Documents\Electronic Arts
[2014/03/26 14:13:46 | 000,518,144 | ---- | C] (SteelWerX) -- C:\windows\SWREG.exe
[2014/03/26 14:13:46 | 000,060,416 | ---- | C] (NirSoft) -- C:\windows\NIRCMD.exe
[2014/03/26 14:13:45 | 000,406,528 | ---- | C] (SteelWerX) -- C:\windows\SWSC.exe
[2014/03/26 14:11:33 | 000,000,000 | ---D | C] -- C:\Qoobox
[2014/03/26 14:10:31 | 000,000,000 | ---D | C] -- C:\windows\erdnt
[2014/03/26 14:08:23 | 005,192,353 | R--- | C] (Swearware) -- C:\Users\asus\Desktop\ComboFix.exe
[2014/03/25 21:50:53 | 000,000,000 | ---D | C] -- C:\Users\asus\AppData\Local\Avg2014
[2014/03/25 20:07:15 | 000,052,928 | ---- | C] (StdLib) -- C:\windows\System32\drivers\wStLibG.sys
[2014/03/25 18:40:00 | 000,000,000 | ---D | C] -- C:\Program Files\Seznam.cz
[2014/03/25 18:36:28 | 000,000,000 | ---D | C] -- C:\Program Files\PCData
[2014/03/25 18:34:44 | 000,000,000 | ---D | C] -- C:\Program Files\Surftastic
[2014/03/25 18:31:54 | 000,000,000 | ---D | C] -- C:\Users\asus\AppData\Local\87542dc6-8938-4565-f241-7774dad144a1
[2014/03/25 17:38:37 | 000,000,000 | ---D | C] -- C:\Users\asus\AppData\Roaming\Origin
[2014/03/25 17:38:34 | 000,000,000 | ---D | C] -- C:\Users\asus\AppData\Local\Origin
[2014/03/25 17:38:29 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Origin
[2014/03/25 17:38:28 | 000,000,000 | ---D | C] -- C:\Users\asus\AppData\Local\CrashDumps
[2014/03/25 17:38:24 | 000,000,000 | ---D | C] -- C:\ProgramData\Origin
[2014/03/25 17:38:23 | 000,000,000 | ---D | C] -- C:\Program Files\Origin Games
[2014/03/25 17:33:52 | 000,000,000 | ---D | C] -- C:\Program Files\Origin
[2014/03/25 17:03:11 | 000,000,000 | ---D | C] -- C:\ProgramData\Electronic Arts
[2014/03/25 16:34:11 | 000,000,000 | ---D | C] -- C:\Program Files\Electronic Arts
[2014/03/25 12:05:46 | 000,000,000 | ---D | C] -- C:\Users\asus\Desktop\RK_Quarantine
[2014/03/24 20:52:18 | 000,447,752 | ---- | C] (On2.com) -- C:\windows\System32\vp6vfw.dll
[2014/03/24 20:52:04 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft WSE
[2014/03/24 19:51:31 | 000,000,000 | ---D | C] -- C:\AdwCleaner
[2014/03/24 18:57:14 | 000,000,000 | ---D | C] -- C:\Users\asus\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SmartTweak Software
[2014/03/24 18:55:45 | 000,000,000 | ---D | C] -- C:\Program Files\SmartTweak
[2014/03/24 18:52:56 | 000,000,000 | ---D | C] -- C:\Users\asus\AppData\Roaming\Seznam.cz
[2014/03/24 16:48:23 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DAEMON Tools Lite
[2014/03/24 16:33:49 | 000,243,128 | ---- | C] (Disc Soft Ltd) -- C:\windows\System32\drivers\dtsoftbus01.sys
[2014/03/24 16:33:03 | 000,000,000 | ---D | C] -- C:\Program Files\DAEMON Tools Lite
[2014/03/24 16:16:27 | 000,000,000 | ---D | C] -- C:\Users\asus\AppData\Roaming\AVG
[2014/03/24 16:13:25 | 000,000,000 | ---D | C] -- C:\ProgramData\AVG
[2014/03/24 16:12:51 | 000,000,000 | -HSD | C] -- C:\ProgramData\{01BD4FC9-2F86-4706-A62E-774BB7E9D308}
[2014/03/24 16:11:06 | 000,000,000 | ---D | C] -- C:\Users\asus\AppData\Roaming\DAEMON Tools Lite
[2014/03/24 16:09:49 | 000,000,000 | ---D | C] -- C:\ProgramData\DAEMON Tools Lite
[2014/03/23 21:06:20 | 000,000,000 | ---D | C] -- C:\Users\asus\AppData\Roaming\Malwarebytes
[2014/03/23 21:04:17 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2014/03/23 21:03:55 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2014/03/23 21:03:38 | 000,000,000 | ---D | C] -- C:\Users\asus\AppData\Local\Programs
[2014/03/23 17:52:02 | 000,000,000 | ---D | C] -- C:\Program Files\trend micro
[2014/03/23 17:52:01 | 000,000,000 | ---D | C] -- C:\rsit
[2014/03/22 10:57:15 | 000,000,000 | ---D | C] -- C:\Users\asus\AppData\Roaming\uTorrent
[2014/03/21 21:05:55 | 000,000,000 | ---D | C] -- C:\Users\asus\Documents\The KMPlayer
[2014/03/21 19:46:53 | 000,000,000 | ---D | C] -- C:\Users\asus\AppData\Local\Microsoft Games
[2014/03/21 19:36:11 | 000,000,000 | ---D | C] -- C:\ProgramData\Oracle
[2014/03/21 19:35:34 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Java
[2014/03/21 19:35:01 | 000,264,616 | ---- | C] (Oracle Corporation) -- C:\windows\System32\javaws.exe
[2014/03/21 19:33:35 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
[2014/03/21 19:33:33 | 000,094,632 | ---- | C] (Oracle Corporation) -- C:\windows\System32\WindowsAccessBridge.dll
[2014/03/21 19:33:32 | 000,175,016 | ---- | C] (Oracle Corporation) -- C:\windows\System32\javaw.exe
[2014/03/21 19:33:32 | 000,174,504 | ---- | C] (Oracle Corporation) -- C:\windows\System32\java.exe
[2014/03/21 19:19:03 | 000,000,000 | ---D | C] -- C:\Users\asus\AppData\Roaming\DropboxMaster
[2014/03/21 19:17:34 | 000,000,000 | ---D | C] -- C:\Users\asus\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
[2014/03/21 19:12:45 | 000,000,000 | ---D | C] -- C:\Users\asus\AppData\Roaming\Dropbox
[2014/03/21 18:58:11 | 000,000,000 | ---D | C] -- C:\ProgramData\AVAST Software
[2014/03/15 08:07:32 | 000,509,440 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\qedit.dll
[2014/03/15 08:07:23 | 000,108,032 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\ieetwcollector.exe
[2014/03/15 08:07:23 | 000,051,200 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\ieetwproxystub.dll
[2014/03/15 08:07:23 | 000,043,008 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\jsproxy.dll
[2014/03/15 08:07:23 | 000,032,768 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\iernonce.dll
[2014/03/15 08:07:21 | 000,646,144 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\MsSpellCheckingFacility.exe
[2014/03/15 08:07:21 | 000,553,472 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\jscript9diag.dll
[2014/03/15 08:07:21 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\ieetwcollectorres.dll
[2014/03/15 08:07:20 | 000,703,488 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\ieapfltr.dll
[2014/03/15 08:07:15 | 000,440,832 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\ieui.dll
[2014/03/15 08:07:12 | 000,112,128 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\ieUnatt.exe
[2014/03/15 08:07:08 | 004,244,480 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\jscript9.dll
[2014/03/15 08:06:59 | 002,724,864 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\mshtml.tlb
[2014/03/15 08:06:59 | 000,524,288 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\msfeeds.dll
[2014/03/15 08:06:56 | 001,964,032 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\inetcpl.cpl
[2014/03/15 08:06:55 | 000,164,864 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\msrating.dll
[2014/03/15 08:06:54 | 000,208,896 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\ie4uinit.exe
[2014/03/15 08:06:54 | 000,061,952 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\iesetup.dll
[2014/03/15 08:04:38 | 002,349,056 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\win32k.sys
[2014/03/15 08:04:21 | 000,381,440 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\wer.dll
[2014/03/15 08:02:01 | 000,000,000 | ---D | C] -- C:\Users\asus\Documents\Ostatní
[2014/03/06 12:37:57 | 000,000,000 | ---D | C] -- C:\Users\asus\AppData\Local\{ACAF6B20-1C93-43D0-A296-08649F5A593D}
[2014/03/06 11:59:23 | 000,000,000 | ---D | C] -- C:\windows\Migration
========== Files - Modified Within 30 Days ==========
[2014/03/28 09:41:57 | 000,000,512 | ---- | M] () -- C:\PhysicalMBR.bin
[2014/03/28 09:38:11 | 000,009,920 | -H-- | M] () -- C:\windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2014/03/28 09:38:11 | 000,009,920 | -H-- | M] () -- C:\windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2014/03/28 09:35:14 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\asus\Desktop\OTL.exe
[2014/03/28 09:31:14 | 000,000,932 | ---- | M] () -- C:\windows\tasks\GoogleUpdateTaskMachineCore.job
[2014/03/28 09:30:38 | 000,067,584 | --S- | M] () -- C:\windows\bootstat.dat
[2014/03/28 09:30:24 | 1602,691,072 | -HS- | M] () -- C:\hiberfil.sys
[2014/03/27 22:30:00 | 000,000,936 | ---- | M] () -- C:\windows\tasks\GoogleUpdateTaskMachineUA.job
[2014/03/27 22:22:20 | 000,781,383 | ---- | M] () -- C:\Users\asus\Desktop\RSIT.exe
[2014/03/27 22:10:00 | 000,000,914 | ---- | M] () -- C:\windows\tasks\Adobe Flash Player Updater.job
[2014/03/27 18:49:11 | 000,000,027 | ---- | M] () -- C:\windows\System32\drivers\etc\hosts
[2014/03/26 19:26:06 | 000,648,242 | ---- | M] () -- C:\windows\System32\perfh005.dat
[2014/03/26 19:26:06 | 000,633,436 | ---- | M] () -- C:\windows\System32\perfh009.dat
[2014/03/26 19:26:06 | 000,133,570 | ---- | M] () -- C:\windows\System32\perfc005.dat
[2014/03/26 19:26:06 | 000,115,298 | ---- | M] () -- C:\windows\System32\perfc009.dat
[2014/03/26 16:55:40 | 000,002,182 | ---- | M] () -- C:\Users\Public\Desktop\The Sims™ 3 Po setmění.lnk
[2014/03/26 16:42:50 | 000,002,036 | ---- | M] () -- C:\Users\Public\Desktop\The Sims™ 3.lnk
[2014/03/26 14:08:24 | 005,192,353 | R--- | M] (Swearware) -- C:\Users\asus\Desktop\ComboFix.exe
[2014/03/25 20:07:16 | 000,052,928 | ---- | M] (StdLib) -- C:\windows\System32\drivers\wStLibG.sys
[2014/03/25 12:04:42 | 003,943,424 | ---- | M] () -- C:\Users\asus\Desktop\RogueKiller.exe
[2014/03/24 19:51:08 | 001,950,720 | ---- | M] () -- C:\Users\asus\Desktop\adwcleaner.exe
[2014/03/24 18:51:07 | 000,001,901 | ---- | M] () -- C:\Users\Public\Desktop\DAEMON Tools Lite.lnk
[2014/03/24 16:33:49 | 000,243,128 | ---- | M] (Disc Soft Ltd) -- C:\windows\System32\drivers\dtsoftbus01.sys
[2014/03/22 10:58:13 | 000,000,851 | ---- | M] () -- C:\Users\asus\Desktop\µTorrent.lnk
[2014/03/21 19:32:06 | 000,094,632 | ---- | M] (Oracle Corporation) -- C:\windows\System32\WindowsAccessBridge.dll
[2014/03/21 19:31:46 | 000,264,616 | ---- | M] (Oracle Corporation) -- C:\windows\System32\javaws.exe
[2014/03/21 19:31:45 | 000,175,016 | ---- | M] (Oracle Corporation) -- C:\windows\System32\javaw.exe
[2014/03/21 19:31:43 | 000,174,504 | ---- | M] (Oracle Corporation) -- C:\windows\System32\java.exe
[2014/03/21 18:53:18 | 000,002,198 | ---- | M] () -- C:\windows\epplauncher.mif
[2014/03/21 13:32:28 | 000,001,729 | ---- | M] () -- C:\Users\asus\Desktop\chrome – zástupce.lnk
[2014/03/21 13:27:11 | 000,463,168 | ---- | M] () -- C:\windows\System32\FNTCACHE.DAT
[2014/03/15 08:11:06 | 000,692,616 | ---- | M] (Adobe Systems Incorporated) -- C:\windows\System32\FlashPlayerApp.exe
[2014/03/15 08:11:06 | 000,071,048 | ---- | M] (Adobe Systems Incorporated) -- C:\windows\System32\FlashPlayerCPLApp.cpl
[2014/03/01 05:11:20 | 002,724,864 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\mshtml.tlb
[2014/03/01 05:10:48 | 000,004,096 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\ieetwcollectorres.dll
[2014/03/01 04:52:43 | 000,061,952 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\iesetup.dll
[2014/03/01 04:51:53 | 000,051,200 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\ieetwproxystub.dll
[2014/03/01 04:43:55 | 000,043,008 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\jsproxy.dll
[2014/03/01 04:43:28 | 000,032,768 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\iernonce.dll
[2014/03/01 04:40:17 | 000,440,832 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\ieui.dll
[2014/03/01 04:38:26 | 000,112,128 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\ieUnatt.exe
[2014/03/01 04:38:23 | 000,108,032 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\ieetwcollector.exe
[2014/03/01 04:37:35 | 000,553,472 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\jscript9diag.dll
[2014/03/01 04:31:30 | 000,646,144 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\MsSpellCheckingFacility.exe
[2014/03/01 04:25:29 | 000,208,896 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\ie4uinit.exe
[2014/03/01 04:16:09 | 000,164,864 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\msrating.dll
[2014/03/01 04:14:15 | 004,244,480 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\jscript9.dll
[2014/03/01 04:03:49 | 000,524,288 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\msfeeds.dll
[2014/03/01 04:00:08 | 001,964,032 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\inetcpl.cpl
[2014/03/01 03:25:42 | 000,703,488 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\ieapfltr.dll
========== Files Created - No Company Name ==========
[2014/03/28 09:41:57 | 000,000,512 | ---- | C] () -- C:\PhysicalMBR.bin
[2014/03/27 22:21:55 | 000,781,383 | ---- | C] () -- C:\Users\asus\Desktop\RSIT.exe
[2014/03/26 16:55:40 | 000,002,182 | ---- | C] () -- C:\Users\Public\Desktop\The Sims™ 3 Po setmění.lnk
[2014/03/26 16:42:50 | 000,002,036 | ---- | C] () -- C:\Users\Public\Desktop\The Sims™ 3.lnk
[2014/03/26 14:13:46 | 000,256,000 | ---- | C] () -- C:\windows\PEV.exe
[2014/03/26 14:13:46 | 000,208,896 | ---- | C] () -- C:\windows\MBR.exe
[2014/03/26 14:13:45 | 000,098,816 | ---- | C] () -- C:\windows\sed.exe
[2014/03/26 14:13:45 | 000,080,412 | ---- | C] () -- C:\windows\grep.exe
[2014/03/26 14:13:45 | 000,068,096 | ---- | C] () -- C:\windows\zip.exe
[2014/03/25 12:04:27 | 003,943,424 | ---- | C] () -- C:\Users\asus\Desktop\RogueKiller.exe
[2014/03/24 19:50:55 | 001,950,720 | ---- | C] () -- C:\Users\asus\Desktop\adwcleaner.exe
[2014/03/24 18:51:07 | 000,001,901 | ---- | C] () -- C:\Users\Public\Desktop\DAEMON Tools Lite.lnk
[2014/03/22 10:58:13 | 000,000,851 | ---- | C] () -- C:\Users\asus\Desktop\µTorrent.lnk
[2014/03/20 22:04:04 | 000,001,729 | ---- | C] () -- C:\Users\asus\Desktop\chrome – zástupce.lnk
[2013/05/18 12:57:01 | 000,000,292 | ---- | C] () -- C:\Users\asus\AppData\Local\HamsterBookConverter.cfg
[2013/04/20 07:49:26 | 000,000,000 | ---- | C] () -- C:\Users\asus\teamviewer.exe
[2011/05/23 00:20:22 | 000,020,480 | ---- | C] () -- C:\Users\asus\AppData\Roaming\client.db
[2011/05/22 15:29:24 | 000,000,017 | ---- | C] () -- C:\Users\asus\AppData\Local\resmon.resmoncfg
[2011/01/13 14:07:47 | 000,003,584 | ---- | C] () -- C:\Users\asus\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010/10/31 21:42:49 | 000,000,056 | -H-- | C] () -- C:\ProgramData\ezsidmv.dat
[2010/01/02 16:50:37 | 000,002,406 | ---- | C] () -- C:\Users\asus\AppData\Roaming\wklnhst.dat
========== ZeroAccess Check ==========
[2009/07/14 05:42:31 | 000,000,227 | RHS- | M] () -- C:\windows\assembly\Desktop.ini
[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2013/07/26 02:55:59 | 012,872,704 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2010/11/20 13:19:02 | 000,606,208 | ---- | M] (Microsoft Corporation)
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
"" = %systemroot%\system32\wbem\wbemess.dll -- [2009/07/14 02:16:17 | 000,342,528 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both
========== LOP Check ==========
[2010/12/26 21:02:01 | 000,000,000 | ---D | M] -- C:\Users\asus\AppData\Roaming\Asus
[2012/05/30 16:07:43 | 000,000,000 | ---D | M] -- C:\Users\asus\AppData\Roaming\Asus WebStorage
[2014/03/24 16:16:27 | 000,000,000 | ---D | M] -- C:\Users\asus\AppData\Roaming\AVG
[2011/05/23 00:20:28 | 000,000,000 | ---D | M] -- C:\Users\asus\AppData\Roaming\BS_Temp
[2012/12/11 18:05:28 | 000,000,000 | ---D | M] -- C:\Users\asus\AppData\Roaming\calibre
[2014/03/24 18:55:26 | 000,000,000 | ---D | M] -- C:\Users\asus\AppData\Roaming\DAEMON Tools Lite
[2014/03/21 19:20:03 | 000,000,000 | ---D | M] -- C:\Users\asus\AppData\Roaming\Dropbox
[2014/03/21 19:19:57 | 000,000,000 | ---D | M] -- C:\Users\asus\AppData\Roaming\DropboxMaster
[2009/12/26 10:09:02 | 000,000,000 | ---D | M] -- C:\Users\asus\AppData\Roaming\EeeStorageUploader
[2010/03/15 11:02:27 | 000,000,000 | ---D | M] -- C:\Users\asus\AppData\Roaming\OpenOffice.org
[2011/05/21 19:39:56 | 000,000,000 | ---D | M] -- C:\Users\asus\AppData\Roaming\Opera
[2014/03/25 17:38:37 | 000,000,000 | ---D | M] -- C:\Users\asus\AppData\Roaming\Origin
[2014/03/25 18:40:19 | 000,000,000 | ---D | M] -- C:\Users\asus\AppData\Roaming\Seznam.cz
[2013/05/18 13:00:00 | 000,000,000 | ---D | M] -- C:\Users\asus\AppData\Roaming\Softplicity
[2011/05/22 20:16:39 | 000,000,000 | ---D | M] -- C:\Users\asus\AppData\Roaming\temp
[2010/02/23 19:30:36 | 000,000,000 | ---D | M] -- C:\Users\asus\AppData\Roaming\Template
[2011/05/23 00:20:34 | 000,000,000 | ---D | M] -- C:\Users\asus\AppData\Roaming\Update
[2014/03/27 15:53:17 | 000,000,000 | ---D | M] -- C:\Users\asus\AppData\Roaming\uTorrent
[2010/02/03 20:58:58 | 000,000,000 | ---D | M] -- C:\Users\asus\AppData\Roaming\Windows Live Writer
[2009/08/29 04:24:16 | 000,000,000 | ---D | M] -- C:\Users\Default\AppData\Roaming\Asus WebStorage
[2009/08/29 04:24:16 | 000,000,000 | ---D | M] -- C:\Users\Default User\AppData\Roaming\Asus WebStorage
========== Purity Check ==========
========== Custom Scans ==========
< >
[2009/07/14 05:53:46 | 000,032,596 | ---- | C] () -- C:\windows\Tasks\SCHEDLGU.TXT
[2009/07/14 05:53:47 | 000,000,006 | -H-- | C] () -- C:\windows\Tasks\SA.DAT
[2010/05/06 19:35:35 | 000,000,932 | ---- | C] () -- C:\windows\Tasks\GoogleUpdateTaskMachineCore.job
[2010/05/06 19:35:38 | 000,000,936 | ---- | C] () -- C:\windows\Tasks\GoogleUpdateTaskMachineUA.job
[2013/01/22 20:52:47 | 000,000,914 | ---- | C] () -- C:\windows\Tasks\Adobe Flash Player Updater.job
< >
< MD5 for: AGP440.SYS >
[2009/07/14 02:26:15 | 000,053,312 | ---- | M] (Microsoft Corporation) MD5=507812C3054C21CEF746B6EE3D04DD6E -- C:\Windows\erdnt\cache\AGP440.sys
[2009/07/14 02:26:15 | 000,053,312 | ---- | M] (Microsoft Corporation) MD5=507812C3054C21CEF746B6EE3D04DD6E -- C:\Windows\System32\drivers\AGP440.sys
[2009/07/14 02:26:15 | 000,053,312 | ---- | M] (Microsoft Corporation) MD5=507812C3054C21CEF746B6EE3D04DD6E -- C:\Windows\System32\DriverStore\FileRepository\machine.inf_x86_neutral_a97a2a0d0fbc6696\AGP440.sys
[2009/07/14 02:26:15 | 000,053,312 | ---- | M] (Microsoft Corporation) MD5=507812C3054C21CEF746B6EE3D04DD6E -- C:\Windows\winsxs\x86_machine.inf_31bf3856ad364e35_6.1.7601.17514_none_bc1a57271cf2f285\AGP440.sys
< MD5 for: ATAPI.SYS >
[2009/07/14 02:26:15 | 000,021,584 | ---- | M] (Microsoft Corporation) MD5=338C86357871C167A96AB976519BF59E -- C:\Windows\erdnt\cache\atapi.sys
[2009/07/14 02:26:15 | 000,021,584 | ---- | M] (Microsoft Corporation) MD5=338C86357871C167A96AB976519BF59E -- C:\Windows\System32\drivers\atapi.sys
[2009/07/14 02:26:15 | 000,021,584 | ---- | M] (Microsoft Corporation) MD5=338C86357871C167A96AB976519BF59E -- C:\Windows\System32\DriverStore\FileRepository\mshdc.inf_x86_neutral_a5025d31bee4647c\atapi.sys
[2009/07/14 02:26:15 | 000,021,584 | ---- | M] (Microsoft Corporation) MD5=338C86357871C167A96AB976519BF59E -- C:\Windows\System32\DriverStore\FileRepository\mshdc.inf_x86_neutral_fab873f3e8a3315c\atapi.sys
[2009/07/14 02:26:15 | 000,021,584 | ---- | M] (Microsoft Corporation) MD5=338C86357871C167A96AB976519BF59E -- C:\Windows\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.1.7601.17514_none_df3f92057fcbe7a7\atapi.sys
[2009/07/14 02:26:15 | 000,021,584 | ---- | M] (Microsoft Corporation) MD5=338C86357871C167A96AB976519BF59E -- C:\Windows\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.1.7601.18231_none_df26d4d57fdef5b0\atapi.sys
[2009/07/14 02:26:15 | 000,021,584 | ---- | M] (Microsoft Corporation) MD5=338C86357871C167A96AB976519BF59E -- C:\Windows\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.1.7601.22414_none_dfc9143c98e9a6c4\atapi.sys
< MD5 for: AUTOCHK.EXE >
[2010/11/20 13:16:54 | 000,668,160 | ---- | M] (Microsoft Corporation) MD5=F88A52EB62019D6A62FDD9E08034DBD8 -- C:\Windows\System32\autochk.exe
[2010/11/20 13:16:54 | 000,668,160 | ---- | M] (Microsoft Corporation) MD5=F88A52EB62019D6A62FDD9E08034DBD8 -- C:\Windows\winsxs\x86_microsoft-windows-autochk_31bf3856ad364e35_6.1.7601.17514_none_e3fb573520033bfa\autochk.exe
< MD5 for: CDROM.SYS >
[2010/11/20 09:38:10 | 000,108,544 | ---- | M] (Microsoft Corporation) MD5=BE167ED0FDB9C1FA1133953C18D5A6C9 -- C:\Windows\System32\drivers\cdrom.sys
[2010/11/20 09:38:10 | 000,108,544 | ---- | M] (Microsoft Corporation) MD5=BE167ED0FDB9C1FA1133953C18D5A6C9 -- C:\Windows\System32\DriverStore\FileRepository\cdrom.inf_x86_neutral_6381e09675524225\cdrom.sys
[2010/11/20 09:38:10 | 000,108,544 | ---- | M] (Microsoft Corporation) MD5=BE167ED0FDB9C1FA1133953C18D5A6C9 -- C:\Windows\winsxs\x86_cdrom.inf_31bf3856ad364e35_6.1.7601.17514_none_61b0c5ce02098355\cdrom.sys
< MD5 for: CNGAUDIT.DLL >
[2009/07/14 02:15:06 | 000,012,288 | ---- | M] (Microsoft Corporation) MD5=50BA656134F78AF64E4DD3C8B6FEFD7E -- C:\Windows\erdnt\cache\cngaudit.dll
[2009/07/14 02:15:06 | 000,012,288 | ---- | M] (Microsoft Corporation) MD5=50BA656134F78AF64E4DD3C8B6FEFD7E -- C:\Windows\System32\cngaudit.dll
[2009/07/14 02:15:06 | 000,012,288 | ---- | M] (Microsoft Corporation) MD5=50BA656134F78AF64E4DD3C8B6FEFD7E -- C:\Windows\winsxs\x86_microsoft-windows-cngaudit-dll_31bf3856ad364e35_6.1.7600.16385_none_e83a414890e8132b\cngaudit.dll
< MD5 for: CRYPTSVC.DLL >
[2012/06/02 05:52:32 | 000,142,336 | ---- | M] (Microsoft Corporation) MD5=063DD65889D21035311463337BD268E7 -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7601.22010_none_788c7cc71232cc19\cryptsvc.dll
[2013/05/10 05:49:59 | 000,140,288 | ---- | M] (Microsoft Corporation) MD5=33ADF6E0853AB39EA1723BE82842C1D3 -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7601.18150_none_77d7a417f9359661\cryptsvc.dll
[2013/05/13 05:45:55 | 000,140,288 | ---- | M] (Microsoft Corporation) MD5=3897DFF247D9ED0006190349DE264E14 -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7601.18151_none_77d8a461f934afb8\cryptsvc.dll
[2013/07/09 14:57:37 | 000,142,848 | ---- | M] (Microsoft Corporation) MD5=6DB499DEFCC827317C5371164A7CDB27 -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7601.22380_none_7840d305126b8725\cryptsvc.dll
[2013/07/09 05:46:31 | 000,140,288 | ---- | M] (Microsoft Corporation) MD5=7CA1BECEA5DE2643ADDAD32670E7A4C9 -- C:\Windows\erdnt\cache\cryptsvc.dll
[2013/07/09 05:46:31 | 000,140,288 | ---- | M] (Microsoft Corporation) MD5=7CA1BECEA5DE2643ADDAD32670E7A4C9 -- C:\Windows\System32\cryptsvc.dll
[2013/07/09 05:46:31 | 000,140,288 | ---- | M] (Microsoft Corporation) MD5=7CA1BECEA5DE2643ADDAD32670E7A4C9 -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7601.18205_none_7812b70bf9088686\cryptsvc.dll
[2012/06/02 05:36:29 | 000,140,288 | ---- | M] (Microsoft Corporation) MD5=96C0E38905CFD788313BE8E11DAE3F2F -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7601.17856_none_77ddc9e5f93000db\cryptsvc.dll
[2010/11/20 13:18:24 | 000,136,192 | ---- | M] (Microsoft Corporation) MD5=A585BEBF7D054BD9618EDA0922D5484A -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7601.17514_none_7807034ff91166f4\cryptsvc.dll
[2013/05/11 05:59:05 | 000,142,848 | ---- | M] (Microsoft Corporation) MD5=AC04D05309BB2C418D0D80B9FB014642 -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7601.22322_none_7883b3211239122d\cryptsvc.dll
[2013/05/10 06:06:21 | 000,142,848 | ---- | M] (Microsoft Corporation) MD5=E122AA1C9A3CC46FF9DDDE46E5EB0C58 -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7601.22321_none_7882b2d71239f8d6\cryptsvc.dll
[2013/10/05 02:52:03 | 000,142,848 | ---- | M] (Microsoft Corporation) MD5=F2D9242C3BBD1C36467FCAE1AE01733F -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7601.22473_none_784ea5b51260b460\cryptsvc.dll
Re: Program blokovan zasadami skupiny co stím ?
< MD5 for: EXPLORER.EXE >
[2011/02/26 06:19:21 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=0FB9C74046656D1579A64660AD67B746 -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.21669_none_54149f9ef14031fc\explorer.exe
[2010/11/20 13:17:09 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=40D777B7A95E00593EB1568C68514493 -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17514_none_53bc10fdd7fe87ca\explorer.exe
[2011/02/25 06:30:54 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=8B88EBBB05A0E56B7DCC708498C02B3E -- C:\Windows\erdnt\cache\explorer.exe
[2011/02/25 06:30:54 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=8B88EBBB05A0E56B7DCC708498C02B3E -- C:\Windows\explorer.exe
[2011/02/25 06:30:54 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=8B88EBBB05A0E56B7DCC708498C02B3E -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17567_none_5389023fd8245f84\explorer.exe
< MD5 for: HAL.DLL >
[2010/11/20 13:29:53 | 000,194,432 | ---- | M] (Microsoft Corporation) MD5=1BF0D4727FDB437D513CFF8A9359C050 -- C:\Windows\System32\hal.dll
[2010/11/20 13:29:53 | 000,194,432 | ---- | M] (Microsoft Corporation) MD5=1BF0D4727FDB437D513CFF8A9359C050 -- C:\Windows\winsxs\x86_microsoft-windows-hal_31bf3856ad364e35_6.1.7601.17514_none_ad305c8fb7ec5060\hal.dll
< MD5 for: IASTORV.SYS >
[2011/03/11 06:38:51 | 000,332,160 | ---- | M] (Intel Corporation) MD5=5CD5F9A5444E6CDCB0AC89BD62D8B76E -- C:\Windows\System32\drivers\iaStorV.sys
[2011/03/11 06:38:51 | 000,332,160 | ---- | M] (Intel Corporation) MD5=5CD5F9A5444E6CDCB0AC89BD62D8B76E -- C:\Windows\System32\DriverStore\FileRepository\iastorv.inf_x86_neutral_0bcee2057afcc090\iaStorV.sys
[2011/03/11 06:38:51 | 000,332,160 | ---- | M] (Intel Corporation) MD5=5CD5F9A5444E6CDCB0AC89BD62D8B76E -- C:\Windows\winsxs\x86_iastorv.inf_31bf3856ad364e35_6.1.7601.17577_none_b0daddb9e6380745\iaStorV.sys
[2011/03/11 06:28:00 | 000,332,160 | ---- | M] (Intel Corporation) MD5=778D0E6D7D9EBA0C403BADBAAD41DB20 -- C:\Windows\winsxs\x86_iastorv.inf_31bf3856ad364e35_6.1.7601.21680_none_b152a892ff64119f\iaStorV.sys
[2010/11/20 13:29:54 | 000,332,160 | ---- | M] (Intel Corporation) MD5=A3CAE5D281DB4CFF7CFF8233507EE5AD -- C:\Windows\System32\DriverStore\FileRepository\iastorv.inf_x86_neutral_668286aa35d55928\iaStorV.sys
[2010/11/20 13:29:54 | 000,332,160 | ---- | M] (Intel Corporation) MD5=A3CAE5D281DB4CFF7CFF8233507EE5AD -- C:\Windows\winsxs\x86_iastorv.inf_31bf3856ad364e35_6.1.7601.17514_none_b118bc63e60a139a\iaStorV.sys
< MD5 for: ISAPNP.SYS >
[2009/07/14 02:20:36 | 000,046,656 | ---- | M] (Microsoft Corporation) MD5=1F32BB6B38F62F7DF1A7AB7292638A35 -- C:\Windows\System32\drivers\isapnp.sys
[2009/07/14 02:20:36 | 000,046,656 | ---- | M] (Microsoft Corporation) MD5=1F32BB6B38F62F7DF1A7AB7292638A35 -- C:\Windows\System32\DriverStore\FileRepository\machine.inf_x86_neutral_a97a2a0d0fbc6696\isapnp.sys
[2009/07/14 02:20:36 | 000,046,656 | ---- | M] (Microsoft Corporation) MD5=1F32BB6B38F62F7DF1A7AB7292638A35 -- C:\Windows\winsxs\x86_machine.inf_31bf3856ad364e35_6.1.7601.17514_none_bc1a57271cf2f285\isapnp.sys
< MD5 for: LSASS.EXE >
[2013/09/25 01:54:21 | 000,022,016 | ---- | M] (Microsoft Corporation) MD5=559C7769B397F07E12725EE55337D4C6 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.22465_none_a8a66792d452b56a\lsass.exe
[2013/09/25 01:49:20 | 000,022,016 | ---- | M] (Microsoft Corporation) MD5=803B370865D907EA21DC0C2B6A8936B5 -- C:\Windows\erdnt\cache\lsass.exe
[2013/09/25 01:49:20 | 000,022,016 | ---- | M] (Microsoft Corporation) MD5=803B370865D907EA21DC0C2B6A8936B5 -- C:\Windows\System32\lsass.exe
[2013/09/25 01:49:20 | 000,022,016 | ---- | M] (Microsoft Corporation) MD5=803B370865D907EA21DC0C2B6A8936B5 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.18270_none_a80cf783bb41b5b7\lsass.exe
[2011/11/17 06:29:50 | 000,022,528 | ---- | M] (Microsoft Corporation) MD5=81951F51E318AECC2D68559E47485CC4 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.17725_none_a84828d7bb1480d7\lsass.exe
[2009/07/14 02:14:23 | 000,022,528 | ---- | M] (Microsoft Corporation) MD5=F42309C4191C506B71DB5D1126D26318 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.17514_none_a851f4adbb0d5141\lsass.exe
[2011/11/17 06:24:04 | 000,022,528 | ---- | M] (Microsoft Corporation) MD5=FBCB2DFA40862DAA7B1534C9538208A5 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.21861_none_a8a284cad4562b09\lsass.exe
< MD5 for: NDIS.SYS >
[2012/08/22 18:05:16 | 000,712,048 | ---- | M] (Microsoft Corporation) MD5=15B74B6283CEBCCE3054C1001CA01B5E -- C:\Windows\winsxs\x86_microsoft-windows-ndis_31bf3856ad364e35_6.1.7601.22097_none_aa0491cf93ad1c31\ndis.sys
[2012/08/22 18:16:46 | 000,712,048 | ---- | M] (Microsoft Corporation) MD5=8C9C922D71F1CD4DEF73F186416B7896 -- C:\Windows\erdnt\cache\ndis.sys
[2012/08/22 18:16:46 | 000,712,048 | ---- | M] (Microsoft Corporation) MD5=8C9C922D71F1CD4DEF73F186416B7896 -- C:\Windows\System32\drivers\ndis.sys
[2012/08/22 18:16:46 | 000,712,048 | ---- | M] (Microsoft Corporation) MD5=8C9C922D71F1CD4DEF73F186416B7896 -- C:\Windows\winsxs\x86_microsoft-windows-ndis_31bf3856ad364e35_6.1.7601.17939_none_a9bdfee47a5cd154\ndis.sys
[2010/11/20 13:30:06 | 000,712,576 | ---- | M] (Microsoft Corporation) MD5=E7C54812A2AAF43316EB6930C1FFA108 -- C:\Windows\winsxs\x86_microsoft-windows-ndis_31bf3856ad364e35_6.1.7601.17514_none_a9ce95b27a512623\ndis.sys
< MD5 for: NETLOGON.DLL >
[2010/11/20 13:20:28 | 000,563,712 | ---- | M] (Microsoft Corporation) MD5=C1809B9907ADEDAF16F50C894100883B -- C:\Windows\erdnt\cache\netlogon.dll
[2010/11/20 13:20:28 | 000,563,712 | ---- | M] (Microsoft Corporation) MD5=C1809B9907ADEDAF16F50C894100883B -- C:\Windows\System32\netlogon.dll
[2010/11/20 13:20:28 | 000,563,712 | ---- | M] (Microsoft Corporation) MD5=C1809B9907ADEDAF16F50C894100883B -- C:\Windows\winsxs\x86_microsoft-windows-security-netlogon_31bf3856ad364e35_6.1.7601.17514_none_ffbf212e963c0162\netlogon.dll
< MD5 for: NVRAID.SYS >
[2010/11/20 13:30:06 | 000,117,120 | ---- | M] (NVIDIA Corporation) MD5=AF2EEC9580C1D32FB7EAF105D9784061 -- C:\Windows\System32\DriverStore\FileRepository\nvraid.inf_x86_neutral_dd659ed032d28a14\nvraid.sys
[2010/11/20 13:30:06 | 000,117,120 | ---- | M] (NVIDIA Corporation) MD5=AF2EEC9580C1D32FB7EAF105D9784061 -- C:\Windows\winsxs\x86_nvraid.inf_31bf3856ad364e35_6.1.7601.17514_none_3be22d131d40bd72\nvraid.sys
[2011/03/11 06:39:00 | 000,117,120 | ---- | M] (NVIDIA Corporation) MD5=B3E25EE28883877076E0E1FF877D02E0 -- C:\Windows\System32\drivers\nvraid.sys
[2011/03/11 06:39:00 | 000,117,120 | ---- | M] (NVIDIA Corporation) MD5=B3E25EE28883877076E0E1FF877D02E0 -- C:\Windows\System32\DriverStore\FileRepository\nvraid.inf_x86_neutral_0276fc3b3ea60d41\nvraid.sys
[2011/03/11 06:39:00 | 000,117,120 | ---- | M] (NVIDIA Corporation) MD5=B3E25EE28883877076E0E1FF877D02E0 -- C:\Windows\winsxs\x86_nvraid.inf_31bf3856ad364e35_6.1.7601.17577_none_3ba44e691d6eb11d\nvraid.sys
[2011/03/11 06:28:10 | 000,117,120 | ---- | M] (NVIDIA Corporation) MD5=E3B840350A72CA6F39BD2BEF85A2BCFB -- C:\Windows\winsxs\x86_nvraid.inf_31bf3856ad364e35_6.1.7601.21680_none_3c1c1942369abb77\nvraid.sys
< MD5 for: NVSTOR.SYS >
[2011/03/11 06:39:00 | 000,143,744 | ---- | M] (NVIDIA Corporation) MD5=4380E59A170D88C4F1022EFF6719A8A4 -- C:\Windows\System32\drivers\nvstor.sys
[2011/03/11 06:39:00 | 000,143,744 | ---- | M] (NVIDIA Corporation) MD5=4380E59A170D88C4F1022EFF6719A8A4 -- C:\Windows\System32\DriverStore\FileRepository\nvraid.inf_x86_neutral_0276fc3b3ea60d41\nvstor.sys
[2011/03/11 06:39:00 | 000,143,744 | ---- | M] (NVIDIA Corporation) MD5=4380E59A170D88C4F1022EFF6719A8A4 -- C:\Windows\winsxs\x86_nvraid.inf_31bf3856ad364e35_6.1.7601.17577_none_3ba44e691d6eb11d\nvstor.sys
[2011/03/11 06:28:10 | 000,143,744 | ---- | M] (NVIDIA Corporation) MD5=66D468654A58594F5F3BA63D5AD5B1AF -- C:\Windows\winsxs\x86_nvraid.inf_31bf3856ad364e35_6.1.7601.21680_none_3c1c1942369abb77\nvstor.sys
[2010/11/20 13:30:06 | 000,143,744 | ---- | M] (NVIDIA Corporation) MD5=9283C58EBAA2618F93482EB5DABCEC82 -- C:\Windows\System32\DriverStore\FileRepository\nvraid.inf_x86_neutral_dd659ed032d28a14\nvstor.sys
[2010/11/20 13:30:06 | 000,143,744 | ---- | M] (NVIDIA Corporation) MD5=9283C58EBAA2618F93482EB5DABCEC82 -- C:\Windows\winsxs\x86_nvraid.inf_31bf3856ad364e35_6.1.7601.17514_none_3be22d131d40bd72\nvstor.sys
< MD5 for: SCECLI.DLL >
[2010/11/20 13:21:04 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=8124944EC89D6A1815E4E53F5B96AAF4 -- C:\Windows\erdnt\cache\scecli.dll
[2010/11/20 13:21:04 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=8124944EC89D6A1815E4E53F5B96AAF4 -- C:\Windows\System32\scecli.dll
[2010/11/20 13:21:04 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=8124944EC89D6A1815E4E53F5B96AAF4 -- C:\Windows\winsxs\x86_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7601.17514_none_3a154c47375d881d\scecli.dll
< MD5 for: SMSS.EXE >
[2013/03/19 03:43:41 | 000,069,632 | ---- | M] (Microsoft Corporation) MD5=0294CC751D7FAEB13621EEFB8A749429 -- C:\Windows\winsxs\x86_microsoft-windows-smss_31bf3856ad364e35_6.1.7601.22280_none_ae7bdfb790cddbcf\smss.exe
[2009/07/14 02:14:39 | 000,069,632 | ---- | M] (Microsoft Corporation) MD5=16742790895960690237A5143CEDEC8B -- C:\Windows\winsxs\x86_microsoft-windows-smss_31bf3856ad364e35_6.1.7600.16385_none_ac10fe207a85352b\smss.exe
[2013/07/08 04:02:28 | 000,069,632 | ---- | M] (Microsoft Corporation) MD5=634E0B45780F502304592C5615A31089 -- C:\Windows\winsxs\x86_microsoft-windows-smss_31bf3856ad364e35_6.1.7601.22379_none_ae8fb42390bda114\smss.exe
[2013/08/29 01:51:28 | 000,069,632 | ---- | M] (Microsoft Corporation) MD5=D2A72C71CD6C18A99E920EC5761F0C7D -- C:\Windows\winsxs\x86_microsoft-windows-smss_31bf3856ad364e35_6.1.7601.22436_none_aeb7f4db909fe272\smss.exe
[2013/03/19 03:49:16 | 000,069,632 | ---- | M] (Microsoft Corporation) MD5=DE91DCC7BC55E940979097E98F743205 -- C:\Windows\System32\smss.exe
[2013/03/19 03:49:16 | 000,069,632 | ---- | M] (Microsoft Corporation) MD5=DE91DCC7BC55E940979097E98F743205 -- C:\Windows\winsxs\x86_microsoft-windows-smss_31bf3856ad364e35_6.1.7601.18113_none_ae40f33e7774c473\smss.exe
[2013/05/06 04:02:20 | 000,069,632 | ---- | M] (Microsoft Corporation) MD5=EC745C0949B101129AB6D39CD63808A6 -- C:\Windows\winsxs\x86_microsoft-windows-smss_31bf3856ad364e35_6.1.7601.22318_none_aecf9361908de017\smss.exe
< MD5 for: SVCHOST.EXE >
[2009/07/14 02:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\erdnt\cache\svchost.exe
[2009/07/14 02:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\System32\svchost.exe
[2009/07/14 02:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\winsxs\x86_microsoft-windows-services-svchost_31bf3856ad364e35_6.1.7600.16385_none_b591afc466a15356\svchost.exe
< MD5 for: TCPIP.SYS >
[2012/08/22 18:05:21 | 001,306,992 | ---- | M] (Microsoft Corporation) MD5=23790A44D9A6B67F8690C34D4F516446 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.22097_none_b55b785ade04500f\tcpip.sys
[2010/11/20 13:30:12 | 001,290,112 | ---- | M] (Microsoft Corporation) MD5=37E8FA3779668837CA9E2C36D2415949 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.17514_none_b5257c3dc4a85a01\tcpip.sys
[2013/01/04 05:56:23 | 001,308,504 | ---- | M] (Microsoft Corporation) MD5=4A95845C5F33A4DDEB6AEF6367FB6520 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.22209_none_b5becc06ddb98192\tcpip.sys
[2013/07/06 06:05:35 | 001,293,760 | ---- | M] (Microsoft Corporation) MD5=4E8B9BE71B807B3BAEDB7F4243F85E3C -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.18203_none_b52f2f65c4a146e5\tcpip.sys
[2013/07/06 05:57:37 | 001,309,120 | ---- | M] (Microsoft Corporation) MD5=528F7CC60391DD0FAB0344F32F051FDF -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.22378_none_b5721e2eddf328f9\tcpip.sys
[2013/05/08 07:15:22 | 001,309,032 | ---- | M] (Microsoft Corporation) MD5=6088D01FAD49729EA0A5A3D9B9BA8B84 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.22319_none_b5b3fe00ddc19aaa\tcpip.sys
[2013/09/07 03:06:48 | 001,309,120 | ---- | M] (Microsoft Corporation) MD5=6C4F3D92764FFA22D28061A4D9235446 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.22444_none_b58e8eb0ddde6cf1\tcpip.sys
[2013/01/03 06:05:20 | 001,293,672 | ---- | M] (Microsoft Corporation) MD5=7C0507D2391AF5933600CBCED799F277 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.18042_none_b502eb9fc4c2a304\tcpip.sys
[2012/08/22 18:16:54 | 001,292,144 | ---- | M] (Microsoft Corporation) MD5=A5EBB8F648000E88B7D9390B514976BF -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.17939_none_b514e56fc4b40532\tcpip.sys
[2013/09/08 03:07:12 | 001,294,272 | ---- | M] (Microsoft Corporation) MD5=CA59F7C570AF70BC174F477CFE2D9EE3 -- C:\Windows\erdnt\cache\tcpip.sys
[2013/09/08 03:07:12 | 001,294,272 | ---- | M] (Microsoft Corporation) MD5=CA59F7C570AF70BC174F477CFE2D9EE3 -- C:\Windows\System32\drivers\tcpip.sys
[2013/09/08 03:07:12 | 001,294,272 | ---- | M] (Microsoft Corporation) MD5=CA59F7C570AF70BC174F477CFE2D9EE3 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.18254_none_b4fa2013c4c8ebf1\tcpip.sys
[2013/05/08 06:38:00 | 001,293,672 | ---- | M] (Microsoft Corporation) MD5=D32FDAC73FCD76B85389C39BC1087F2A -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.18148_none_b508ef41c4bd3835\tcpip.sys
[2012/10/03 17:44:01 | 001,308,040 | ---- | M] (Microsoft Corporation) MD5=D490DD0A91B4EAC3B4EE08D11EE37C31 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.22124_none_b5a428d6ddce3d9a\tcpip.sys
[2013/11/26 12:07:37 | 001,309,632 | ---- | M] (Microsoft Corporation) MD5=DC08335B30D83FB61E9EFE6FDD09D40D -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.22525_none_b5a530b8ddcd4b8d\tcpip.sys
[2012/10/03 17:58:30 | 001,293,680 | ---- | M] (Microsoft Corporation) MD5=E23A56F843E2AEBBB209D0ACCA73C640 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.17964_none_b4ef7439c4d0da52\tcpip.sys
< MD5 for: USERINIT.EXE >
[2010/11/20 13:17:48 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=61AC3EFDFACFDD3F0F11DD4FD4044223 -- C:\Windows\erdnt\cache\userinit.exe
[2010/11/20 13:17:48 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=61AC3EFDFACFDD3F0F11DD4FD4044223 -- C:\Windows\System32\userinit.exe
[2010/11/20 13:17:48 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=61AC3EFDFACFDD3F0F11DD4FD4044223 -- C:\Windows\winsxs\x86_microsoft-windows-userinit_31bf3856ad364e35_6.1.7601.17514_none_de3024012ff21116\userinit.exe
< MD5 for: WINLOGON.EXE >
[2010/11/20 13:17:54 | 000,286,720 | ---- | M] (Microsoft Corporation) MD5=6D13E1406F50C66E2A95D97F22C47560 -- C:\Windows\erdnt\cache\winlogon.exe
[2010/11/20 13:17:54 | 000,286,720 | ---- | M] (Microsoft Corporation) MD5=6D13E1406F50C66E2A95D97F22C47560 -- C:\Windows\System32\winlogon.exe
[2010/11/20 13:17:54 | 000,286,720 | ---- | M] (Microsoft Corporation) MD5=6D13E1406F50C66E2A95D97F22C47560 -- C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7601.17514_none_71ca6b0233339500\winlogon.exe
< MD5 for: WS2_32.DLL >
[2010/11/20 13:21:38 | 000,206,848 | ---- | M] (Microsoft Corporation) MD5=7FF15A4F092CD4A96055BA69F903E3E9 -- C:\Windows\erdnt\cache\ws2_32.dll
[2010/11/20 13:21:38 | 000,206,848 | ---- | M] (Microsoft Corporation) MD5=7FF15A4F092CD4A96055BA69F903E3E9 -- C:\Windows\System32\ws2_32.dll
[2010/11/20 13:21:38 | 000,206,848 | ---- | M] (Microsoft Corporation) MD5=7FF15A4F092CD4A96055BA69F903E3E9 -- C:\Windows\winsxs\x86_microsoft-windows-w..nfrastructure-ws232_31bf3856ad364e35_6.1.7601.17514_none_f4bf1aae2c981ecf\ws2_32.dll
< >
< %systemroot%*.* /U /s >
[43 C:\windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp files -> C:\windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp -> ]
[1 C:\windows\Installer\*.tmp files -> C:\windows\Installer\*.tmp -> ]
[1 C:\windows\SoftwareDistribution\Download\02f54841db666ca427a60ad7f6f6d71b\*.tmp files -> C:\windows\SoftwareDistribution\Download\02f54841db666ca427a60ad7f6f6d71b\*.tmp -> ]
[1 C:\windows\SoftwareDistribution\Download\096da6fd1c749aa15e3496c247e71864\*.tmp files -> C:\windows\SoftwareDistribution\Download\096da6fd1c749aa15e3496c247e71864\*.tmp -> ]
[1 C:\windows\SoftwareDistribution\Download\0a70d7cba0b4fcc081e3a0175c0c9e5a\*.tmp files -> C:\windows\SoftwareDistribution\Download\0a70d7cba0b4fcc081e3a0175c0c9e5a\*.tmp -> ]
[1 C:\windows\SoftwareDistribution\Download\10dc61acfc339f34cc946e6e0132cd00\*.tmp files -> C:\windows\SoftwareDistribution\Download\10dc61acfc339f34cc946e6e0132cd00\*.tmp -> ]
[1 C:\windows\SoftwareDistribution\Download\1a550dbfa990b01fd4aa177f131d6c6f\*.tmp files -> C:\windows\SoftwareDistribution\Download\1a550dbfa990b01fd4aa177f131d6c6f\*.tmp -> ]
[1 C:\windows\SoftwareDistribution\Download\22fd73a211fa6c1d4701d943d4e269e9\*.tmp files -> C:\windows\SoftwareDistribution\Download\22fd73a211fa6c1d4701d943d4e269e9\*.tmp -> ]
[1 C:\windows\SoftwareDistribution\Download\2a71341789a25c58614ce3d2d4959909\*.tmp files -> C:\windows\SoftwareDistribution\Download\2a71341789a25c58614ce3d2d4959909\*.tmp -> ]
[1 C:\windows\SoftwareDistribution\Download\40ad21d172f8472a7cd0054c7162ec3e\*.tmp files -> C:\windows\SoftwareDistribution\Download\40ad21d172f8472a7cd0054c7162ec3e\*.tmp -> ]
[1 C:\windows\SoftwareDistribution\Download\51463790424f1ebee097da7efb4bd6fe\*.tmp files -> C:\windows\SoftwareDistribution\Download\51463790424f1ebee097da7efb4bd6fe\*.tmp -> ]
[1 C:\windows\SoftwareDistribution\Download\5cb4d231a7ca6d84ff854c8b9b8865af\*.tmp files -> C:\windows\SoftwareDistribution\Download\5cb4d231a7ca6d84ff854c8b9b8865af\*.tmp -> ]
[1 C:\windows\SoftwareDistribution\Download\60980927f1538a388994d026f31ca72f\*.tmp files -> C:\windows\SoftwareDistribution\Download\60980927f1538a388994d026f31ca72f\*.tmp -> ]
[1 C:\windows\SoftwareDistribution\Download\710df4cda8080038ff775e3e9e476d4f\*.tmp files -> C:\windows\SoftwareDistribution\Download\710df4cda8080038ff775e3e9e476d4f\*.tmp -> ]
[1 C:\windows\SoftwareDistribution\Download\8db526ef36cf2f69cd68ac01b599bd18\*.tmp files -> C:\windows\SoftwareDistribution\Download\8db526ef36cf2f69cd68ac01b599bd18\*.tmp -> ]
[1 C:\windows\SoftwareDistribution\Download\8f195415b4b843f13a46d35bb0decbac\*.tmp files -> C:\windows\SoftwareDistribution\Download\8f195415b4b843f13a46d35bb0decbac\*.tmp -> ]
[1 C:\windows\SoftwareDistribution\Download\94161cb22681dd26124a51da7101576f\*.tmp files -> C:\windows\SoftwareDistribution\Download\94161cb22681dd26124a51da7101576f\*.tmp -> ]
[1 C:\windows\SoftwareDistribution\Download\a0a4cfb5cb3af146ad441fb09f967b2c\*.tmp files -> C:\windows\SoftwareDistribution\Download\a0a4cfb5cb3af146ad441fb09f967b2c\*.tmp -> ]
[1 C:\windows\SoftwareDistribution\Download\a397861a93d0ecdc515d887fcd34e8be\*.tmp files -> C:\windows\SoftwareDistribution\Download\a397861a93d0ecdc515d887fcd34e8be\*.tmp -> ]
[1 C:\windows\SoftwareDistribution\Download\a55e1a53a5b2736ed6d4560e5143524b\*.tmp files -> C:\windows\SoftwareDistribution\Download\a55e1a53a5b2736ed6d4560e5143524b\*.tmp -> ]
[1 C:\windows\SoftwareDistribution\Download\a7a1de40e6970116de18bf67cd084348\*.tmp files -> C:\windows\SoftwareDistribution\Download\a7a1de40e6970116de18bf67cd084348\*.tmp -> ]
[1 C:\windows\SoftwareDistribution\Download\ab7fb6af980e7d2a44a94b99be45af3a\*.tmp files -> C:\windows\SoftwareDistribution\Download\ab7fb6af980e7d2a44a94b99be45af3a\*.tmp -> ]
[1 C:\windows\SoftwareDistribution\Download\adda5b98ebfb0b3dfcefd459a6f2053e\*.tmp files -> C:\windows\SoftwareDistribution\Download\adda5b98ebfb0b3dfcefd459a6f2053e\*.tmp -> ]
[1 C:\windows\SoftwareDistribution\Download\b06d43ef1ad47f1ecbb69abdd61d49c8\*.tmp files -> C:\windows\SoftwareDistribution\Download\b06d43ef1ad47f1ecbb69abdd61d49c8\*.tmp -> ]
[1 C:\windows\SoftwareDistribution\Download\c266a5a5ef3011e235f88e9f42e86d4b\*.tmp files -> C:\windows\SoftwareDistribution\Download\c266a5a5ef3011e235f88e9f42e86d4b\*.tmp -> ]
[1 C:\windows\SoftwareDistribution\Download\ceb1937dd852874c8f265fa43d37d064\*.tmp files -> C:\windows\SoftwareDistribution\Download\ceb1937dd852874c8f265fa43d37d064\*.tmp -> ]
[1 C:\windows\SoftwareDistribution\Download\d00387fa20bf5ac8db3ac301306fc75d\*.tmp files -> C:\windows\SoftwareDistribution\Download\d00387fa20bf5ac8db3ac301306fc75d\*.tmp -> ]
[1 C:\windows\SoftwareDistribution\Download\e049e6462b8295b0012f2251f41988e8\*.tmp files -> C:\windows\SoftwareDistribution\Download\e049e6462b8295b0012f2251f41988e8\*.tmp -> ]
[1 C:\windows\SoftwareDistribution\Download\e2ce61d05a13071581f6b7dd8c0d82ac\*.tmp files -> C:\windows\SoftwareDistribution\Download\e2ce61d05a13071581f6b7dd8c0d82ac\*.tmp -> ]
[1 C:\windows\SoftwareDistribution\Download\e3aaec9858a582d21ced29b87a276347\*.tmp files -> C:\windows\SoftwareDistribution\Download\e3aaec9858a582d21ced29b87a276347\*.tmp -> ]
[1 C:\windows\SoftwareDistribution\Download\e3b8028f1dcc934be29b195d6130edb9\*.tmp files -> C:\windows\SoftwareDistribution\Download\e3b8028f1dcc934be29b195d6130edb9\*.tmp -> ]
[1 C:\windows\SoftwareDistribution\Download\f1b61dcfb3a11c472679e68923e165f2\*.tmp files -> C:\windows\SoftwareDistribution\Download\f1b61dcfb3a11c472679e68923e165f2\*.tmp -> ]
[1 C:\windows\SoftwareDistribution\Download\f3375b2ca9411258ad41fd3f1ae1ed17\*.tmp files -> C:\windows\SoftwareDistribution\Download\f3375b2ca9411258ad41fd3f1ae1ed17\*.tmp -> ]
[1 C:\windows\SoftwareDistribution\Download\fe5fb5884ec32a370b6af65fcecd3f70\*.tmp files -> C:\windows\SoftwareDistribution\Download\fe5fb5884ec32a370b6af65fcecd3f70\*.tmp -> ]
[1 C:\windows\SoftwareDistribution\Download\ffccc887133f8d4c2dbb4b0d8d2e25ef\*.tmp files -> C:\windows\SoftwareDistribution\Download\ffccc887133f8d4c2dbb4b0d8d2e25ef\*.tmp -> ]
< %SYSTEMDRIVE%\*.exe >
< %ALLUSERSPROFILE%\Application Data\*. >
< %ALLUSERSPROFILE%\Application Data\*.exe /s >
< %APPDATA%\*. >
[2013/03/04 11:14:01 | 000,000,000 | ---D | M] -- C:\Users\asus\AppData\Roaming\Adobe
[2010/12/26 21:02:01 | 000,000,000 | ---D | M] -- C:\Users\asus\AppData\Roaming\Asus
[2012/05/30 16:07:43 | 000,000,000 | ---D | M] -- C:\Users\asus\AppData\Roaming\Asus WebStorage
[2014/03/24 16:16:27 | 000,000,000 | ---D | M] -- C:\Users\asus\AppData\Roaming\AVG
[2011/05/22 21:15:53 | 000,000,000 | ---D | M] -- C:\Users\asus\AppData\Roaming\AVG8
[2011/05/23 00:20:28 | 000,000,000 | ---D | M] -- C:\Users\asus\AppData\Roaming\BS_Temp
[2012/12/11 18:05:28 | 000,000,000 | ---D | M] -- C:\Users\asus\AppData\Roaming\calibre
[2014/03/24 18:55:26 | 000,000,000 | ---D | M] -- C:\Users\asus\AppData\Roaming\DAEMON Tools Lite
[2014/03/21 19:20:03 | 000,000,000 | ---D | M] -- C:\Users\asus\AppData\Roaming\Dropbox
[2014/03/21 19:19:57 | 000,000,000 | ---D | M] -- C:\Users\asus\AppData\Roaming\DropboxMaster
[2009/12/26 10:09:02 | 000,000,000 | ---D | M] -- C:\Users\asus\AppData\Roaming\EeeStorageUploader
[2009/07/14 05:54:12 | 000,000,000 | ---D | M] -- C:\Users\asus\AppData\Roaming\Identities
[2009/08/29 04:21:06 | 000,000,000 | ---D | M] -- C:\Users\asus\AppData\Roaming\InstallShield
[2009/08/28 09:15:16 | 000,000,000 | ---D | M] -- C:\Users\asus\AppData\Roaming\Macromedia
[2014/03/23 21:06:20 | 000,000,000 | ---D | M] -- C:\Users\asus\AppData\Roaming\Malwarebytes
[2014/03/24 20:52:05 | 000,000,000 | --SD | M] -- C:\Users\asus\AppData\Roaming\Microsoft
[2013/03/08 07:34:30 | 000,000,000 | ---D | M] -- C:\Users\asus\AppData\Roaming\Mozilla
[2010/03/15 11:02:27 | 000,000,000 | ---D | M] -- C:\Users\asus\AppData\Roaming\OpenOffice.org
[2011/05/21 19:39:56 | 000,000,000 | ---D | M] -- C:\Users\asus\AppData\Roaming\Opera
[2014/03/25 17:38:37 | 000,000,000 | ---D | M] -- C:\Users\asus\AppData\Roaming\Origin
[2014/03/25 18:40:19 | 000,000,000 | ---D | M] -- C:\Users\asus\AppData\Roaming\Seznam.cz
[2011/03/11 08:51:20 | 000,000,000 | ---D | M] -- C:\Users\asus\AppData\Roaming\Skype
[2011/03/11 08:06:46 | 000,000,000 | ---D | M] -- C:\Users\asus\AppData\Roaming\skypePM
[2013/05/18 13:00:00 | 000,000,000 | ---D | M] -- C:\Users\asus\AppData\Roaming\Softplicity
[2011/05/22 20:16:39 | 000,000,000 | ---D | M] -- C:\Users\asus\AppData\Roaming\temp
[2010/02/23 19:30:36 | 000,000,000 | ---D | M] -- C:\Users\asus\AppData\Roaming\Template
[2011/05/23 00:20:34 | 000,000,000 | ---D | M] -- C:\Users\asus\AppData\Roaming\Update
[2014/03/27 15:53:17 | 000,000,000 | ---D | M] -- C:\Users\asus\AppData\Roaming\uTorrent
[2010/02/03 20:58:58 | 000,000,000 | ---D | M] -- C:\Users\asus\AppData\Roaming\Windows Live Writer
[2011/05/23 14:54:41 | 000,000,000 | ---D | M] -- C:\Users\asus\AppData\Roaming\WinRAR
< %APPDATA%\*.exe /s >
[2011/05/22 20:16:21 | 000,087,376 | ---- | M] (eCareme Technologies, Inc.) -- C:\Users\asus\AppData\Roaming\Asus WebStorage\EeeStorageUpdate.EXE
[2014/01/08 15:55:46 | 016,333,592 | ---- | M] (ASUS Cloud Corporation) -- C:\Users\asus\AppData\Roaming\Asus WebStorage\Update\ASUSWebStorage3.0.143.296.exe
[2014/03/19 13:17:02 | 032,667,896 | ---- | M] (Dropbox, Inc.) -- C:\Users\asus\AppData\Roaming\Dropbox\bin\Dropbox.exe
[2014/03/19 13:18:14 | 000,244,648 | ---- | M] (Dropbox, Inc.) -- C:\Users\asus\AppData\Roaming\Dropbox\bin\DropboxUninstaller.exe
[2014/03/19 13:17:06 | 000,143,616 | ---- | M] (Dropbox, Inc.) -- C:\Users\asus\AppData\Roaming\Dropbox\bin\DropboxUpdateHelper.exe
[2014/03/21 19:23:08 | 000,054,632 | ---- | M] (Adobe Systems Inc.) -- C:\Users\asus\AppData\Roaming\Macromedia\Flash Player\www.macromedia.com\bin\airappinstaller\airappinstaller.exe
[2014/03/24 20:52:05 | 000,010,134 | R--- | M] () -- C:\Users\asus\AppData\Roaming\Microsoft\Installer\{E3E71D07-CD27-46CB-8448-16D4FB29AA13}\ARPPRODUCTICON.exe
[2008/12/02 07:40:14 | 000,028,672 | R--- | M] () -- C:\Users\asus\AppData\Roaming\Microsoft\Windows\Templates\E\UninstallMSI.exe
[2008/12/01 12:29:00 | 000,014,336 | R--- | M] () -- C:\Users\asus\AppData\Roaming\Microsoft\Windows\Templates\E\UninstallMSI32.exe
[2008/12/01 12:29:00 | 000,016,896 | R--- | M] () -- C:\Users\asus\AppData\Roaming\Microsoft\Windows\Templates\E\UninstallMSI64.exe
[2009/03/20 06:09:32 | 001,360,008 | R--- | M] () -- C:\Users\asus\AppData\Roaming\Microsoft\Windows\Templates\E\USBAutoRun.exe
[2013/05/16 14:25:04 | 001,062,472 | ---- | M] () -- C:\Users\asus\AppData\Roaming\Seznam.cz\szninstall.exe
[2013/05/16 14:26:24 | 002,589,256 | ---- | M] () -- C:\Users\asus\AppData\Roaming\Seznam.cz\sznsetup.exe
[2013/04/16 12:52:34 | 000,055,808 | ---- | M] () -- C:\Users\asus\AppData\Roaming\Seznam.cz\bin\ffkill.exe
[2013/04/29 11:53:34 | 000,045,560 | ---- | M] () -- C:\Users\asus\AppData\Roaming\Seznam.cz\bin\listicka-x64.exe
[2013/04/12 09:13:24 | 000,457,208 | ---- | M] () -- C:\Users\asus\AppData\Roaming\Seznam.cz\bin\szndesktop.exe
[2013/04/12 09:10:22 | 000,092,664 | ---- | M] () -- C:\Users\asus\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe
[2014/03/22 10:59:48 | 001,208,152 | ---- | M] (BitTorrent Inc.) -- C:\Users\asus\AppData\Roaming\uTorrent\uTorrent.exe
[2014/03/22 10:58:13 | 001,853,008 | ---- | M] (BitTorrent Inc.) -- C:\Users\asus\AppData\Roaming\uTorrent\updates\3.4.0_30635.exe
[2014/03/22 10:59:48 | 001,208,152 | ---- | M] (BitTorrent Inc.) -- C:\Users\asus\AppData\Roaming\uTorrent\updates\3.4.0_30660.exe
< %systemroot%\*. /mp /s >
< %systemroot%\system32\*.dll /lockedfiles >
< %systemroot%\Tasks\*.job /lockedfiles >
< %systemroot%\system32\drivers\*.sys /lockedfiles >
< %systemroot%\System32\config\*.sav >
< %systemroot%\system32\*.dll /lockedfiles >
< %systemroot%\system32\drivers\*.sys /3 >
[2014/03/25 20:07:16 | 000,052,928 | ---- | M] (StdLib) -- C:\windows\system32\drivers\wStLibG.sys
< %systemroot%\system32\*.* /3 >
[2014/03/28 09:38:11 | 000,009,920 | -H-- | M] () -- C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2014/03/28 09:38:11 | 000,009,920 | -H-- | M] () -- C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2014/03/26 19:26:06 | 000,133,570 | ---- | M] () -- C:\windows\system32\perfc005.dat
[2014/03/26 19:26:06 | 000,115,298 | ---- | M] () -- C:\windows\system32\perfc009.dat
[2014/03/26 19:26:06 | 000,648,242 | ---- | M] () -- C:\windows\system32\perfh005.dat
[2014/03/26 19:26:06 | 000,633,436 | ---- | M] () -- C:\windows\system32\perfh009.dat
[2014/03/26 19:26:06 | 001,525,756 | ---- | M] () -- C:\windows\system32\PerfStringBackup.INI
< %SYSTEMDRIVE%\*.exe >
< >
< HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s >
"EA Core" = "C:\Program Files\Electronic Arts\EADM\Core.exe" -silent
< reg query "HKLM\Software\Microsoft\Windows NT\CurrentVersion\winlogon" /v GinaDLL /c >
< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv" /v ImagePath /c >
HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\SERVICES\WUAUSERV
IMAGEPATH REG_EXPAND_SZ %systemroot%\system32\svchost.exe -k netsvcs
< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS" /v ImagePath /c >
HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\SERVICES\BITS
IMAGEPATH REG_EXPAND_SZ %SystemRoot%\System32\svchost.exe -k netsvcs
< >
< type c:\boot.ini >> test.txt /c >
< %SystemDrive%\PhysicalMBR.bin /md5 >
[2014/03/28 09:41:57 | 000,000,512 | ---- | M] () MD5=4C0D28FCDA9853029213EB7715BF5C03 -- C:\PhysicalMBR.bin
< >
< *crack* /s >
[2010/05/16 07:13:47 | 005,100,831 | ---- | M] () -- \Users\Public\Music\Eminem Feat. Dr. Dre & 50 Cent - Crack A Bottle (Prod. By Dr. Dre) (Official) ( 2009 ).mp3
[2009/02/18 13:01:16 | 006,941,133 | ---- | M] () -- \Users\Public\Music\Eminem-Crack a bottle.mp3
< *keygen* /s >
< *AntiWPA* /s >
< *loader* /s >
[2013/11/18 13:04:52 | 000,002,545 | ---- | M] () -- \AdwCleaner\Quarantine\C\Program Files\Mobogenie\templates\web\images\prettyPhoto\dark_rounded\loader.gif.vir
[2013/11/18 13:04:52 | 000,002,545 | ---- | M] () -- \AdwCleaner\Quarantine\C\Program Files\Mobogenie\templates\web\images\prettyPhoto\dark_square\loader.gif.vir
[2013/11/18 13:04:52 | 000,006,331 | ---- | M] () -- \AdwCleaner\Quarantine\C\Program Files\Mobogenie\templates\web\images\prettyPhoto\default\loader.gif.vir
[2013/11/18 13:04:52 | 000,002,545 | ---- | M] () -- \AdwCleaner\Quarantine\C\Program Files\Mobogenie\templates\web\images\prettyPhoto\facebook\loader.gif.vir
[2013/11/18 13:04:52 | 000,002,545 | ---- | M] () -- \AdwCleaner\Quarantine\C\Program Files\Mobogenie\templates\web\images\prettyPhoto\light_rounded\loader.gif.vir
[2013/11/18 13:04:52 | 000,002,545 | ---- | M] () -- \AdwCleaner\Quarantine\C\Program Files\Mobogenie\templates\web\images\prettyPhoto\light_square\loader.gif.vir
[2009/07/31 09:08:40 | 000,079,120 | ---- | M] () -- \Program Files\ASUS\Asus WebStorage\EeeStorageUploader.exe
[2010/09/01 09:49:08 | 000,014,666 | ---- | M] () -- \Program Files\ASUS\Asus WebStorage\3.0.108.222\panel\assets\images\uploader_photo.png
[2010/09/14 08:15:20 | 000,000,946 | ---- | M] () -- \Program Files\ASUS\Asus WebStorage\3.0.108.222\panel\assets\images\uploader_title.png
[2010/09/01 09:49:08 | 000,014,666 | ---- | M] () -- \Program Files\ASUS\Asus WebStorage\3.0.84.161\panel\assets\images\uploader_photo.png
[2010/09/14 08:15:20 | 000,000,946 | ---- | M] () -- \Program Files\ASUS\Asus WebStorage\3.0.84.161\panel\assets\images\uploader_title.png
[2006/04/18 19:04:14 | 000,034,304 | ---- | M] () -- \Program Files\Canon\Easy-WebPrint\EWPBrowseLoader.dll
[2013/05/09 01:40:52 | 000,268,440 | ---- | M] () -- \Program Files\Common Files\microsoft shared\VSTO\10.0\VSTOLoader.dll
[2013/05/09 01:40:52 | 000,019,080 | ---- | M] () -- \Program Files\Common Files\microsoft shared\VSTO\10.0\1033\VSTOLoaderUI.dll
[2011/01/15 15:42:09 | 000,005,795 | ---- | M] () -- \Program Files\ICQ7.2\imApp\theme\IMAGES\XtraPreloader\loader.jpg
[2011/01/15 15:42:09 | 000,005,520 | ---- | M] () -- \Program Files\ICQ7.2\imApp\theme\IMAGES\XtraPreloader\loader.swf
[2011/01/15 15:42:10 | 000,004,180 | ---- | M] () -- \Program Files\ICQ7.2\imApp\theme\IMAGES\XtraPreloader\zlango-preloader.png
[2011/01/15 15:42:09 | 000,005,520 | ---- | M] () -- \Program Files\ICQ7.2\imApp\theme\MUICoreLib\xtraLoader.swf
[2011/01/18 17:26:14 | 000,000,402 | ---- | M] () -- \Program Files\ICQ7.2\Xtraz\icq\content\icq_profile\preloader.html
[2011/01/18 17:26:22 | 000,000,402 | ---- | M] () -- \Program Files\ICQ7.2\Xtraz\icq\content\profile_forms\preloader.html
[2011/01/18 17:26:20 | 000,000,402 | ---- | M] () -- \Program Files\ICQ7.2\Xtraz\icq\content\profile_lightboxs\preloader.html
[2013/01/09 11:41:56 | 000,030,608 | ---- | M] () -- \Program Files\Seznam.cz\distribution\install\cz.seznam.software.libfoxloader-3.0.0-win32.zip
[2008/02/25 07:05:22 | 000,856,064 | ---- | M] () -- \Program Files\The KMPlayer\ImLoader.dll
[2010/03/15 10:28:24 | 000,045,056 | ---- | M] () -- \Program Files\WinRAR\RarExtLoader.exe
[2014/03/24 18:54:26 | 000,031,516 | ---- | M] () -- \Users\asus\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\AGTBHAZM\cz.seznam.software.libfoxloader-3.1.2-win32[1].zip
[2013/03/29 12:37:34 | 000,059,384 | ---- | M] () -- \Users\asus\AppData\Roaming\Seznam.cz\bin\31586libfoxloader.dll
[2013/04/15 12:32:10 | 000,060,416 | ---- | M] () -- \Users\asus\AppData\Roaming\Seznam.cz\bin\31622libfoxloader-x64.dll
[2014/03/25 18:39:35 | 000,000,165 | ---- | M] () -- \Users\asus\AppData\Roaming\Seznam.cz\conf\szndesktop.d\libfoxloader.conf
[2013/01/09 11:41:56 | 000,030,608 | ---- | M] () -- \Users\asus\AppData\Roaming\Seznam.cz\install\cz.seznam.software.libfoxloader-3.0.0-win32.zip
[2013/03/25 15:27:20 | 000,000,665 | ---- | M] () -- \Users\asus\AppData\Roaming\Seznam.cz\uninstall\cz_seznam_software_libfoxloader_3_1_2.install.bat
[2013/03/25 15:27:26 | 000,000,117 | ---- | M] () -- \Users\asus\AppData\Roaming\Seznam.cz\uninstall\cz_seznam_software_libfoxloader_3_1_2.uninstall.bat
[2014/03/08 15:33:54 | 000,017,408 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_32\Microsoft.O29577370#\bf1fece0f8125c1fe7bb0f6bb90642c2\Microsoft.Office.InfoPath.CLRLoader.ni.dll
[2014/03/08 15:33:54 | 000,000,796 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_32\Microsoft.O29577370#\bf1fece0f8125c1fe7bb0f6bb90642c2\Microsoft.Office.InfoPath.CLRLoader.ni.dll.aux
[2012/10/01 20:30:04 | 000,019,048 | R--- | M] () -- \Windows\Installer\$PatchCache$\Managed\00005109110000000000000000F01FEC\15.0.4420\FL_VSTOLoaderUI_dll_x86_ln.3643236F_FC70_11D3_A536_0090278A1BB8.923C1899_09AE_418B_B39D_A7A9EB6A7951
[2012/10/01 20:30:04 | 000,268,384 | R--- | M] () -- \Windows\Installer\$PatchCache$\Managed\00005109110000000000000000F01FEC\15.0.4420\VSTOLoader_dll_x86.3643236F_FC70_11D3_A536_0090278A1BB8.923C1899_09AE_418B_B39D_A7A9EB6A7951
[2013/12/02 19:50:13 | 000,015,528 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\Microsoft.Office.InfoPath.CLRLoader\v4.0_15.0.0.0__71e9bce111e9429c\Microsoft.Office.Infopath.CLRLoader.dll
[2013/08/02 02:48:15 | 000,003,584 | -H-- | M] () -- \Windows\System32\api-ms-win-core-libraryloader-l1-1-0.dll
[2009/07/14 02:15:12 | 000,038,400 | ---- | M] () -- \Windows\System32\dmloader.dll
[2009/07/14 05:54:01 | 000,003,532 | ---- | M] () -- \Windows\System32\Tasks\Microsoft\Windows\WindowsColorSystem\Calibration Loader
[2009/06/20 20:13:59 | 000,002,883 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_3318c4cd5e5d0f86.manifest
[2009/06/20 20:13:59 | 000,034,896 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_3318c4cd5e5d0f86_winload.exe.mui_3bc5b827
[2009/06/20 20:13:59 | 000,030,272 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_3318c4cd5e5d0f86_winresume.exe.mui_ff8b5358
[2011/05/22 22:25:58 | 000,004,225 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.17514_none_5d2e241dcae8f953.manifest
[2011/05/22 22:25:59 | 000,508,904 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.17514_none_5d2e241dcae8f953_winload.exe_75835076
[2011/05/22 22:26:00 | 000,442,720 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.17514_none_5d2e241dcae8f953_winresume.exe_85cd1215
[2009/07/14 03:17:38 | 000,002,894 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-s..ive-blackbox-loader_31bf3856ad364e35_6.1.7600.16385_none_6b097e5cb26f7a23.manifest
[2009/07/14 03:17:38 | 000,017,472 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-s..ive-blackbox-loader_31bf3856ad364e35_6.1.7600.16385_none_6b097e5cb26f7a23_spldr.sys_98bd87a0
[2009/06/20 20:13:08 | 000,002,883 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_3318c4cd5e5d0f86.manifest
[2010/11/20 04:02:40 | 000,004,225 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.17514_none_5d2e241dcae8f953.manifest
[2009/07/14 02:52:31 | 000,002,894 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-s..ive-blackbox-loader_31bf3856ad364e35_6.1.7600.16385_none_6b097e5cb26f7a23.manifest
[2009/07/14 02:15:12 | 000,038,400 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-audio-dmusic_31bf3856ad364e35_6.1.7600.16385_none_45ca7214f0f664cb\dmloader.dll
[2009/07/14 02:03:49 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.16385_none_0a884619dd2388ad\api-ms-win-core-libraryloader-l1-1-0.dll
[2012/11/30 05:45:15 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.18015_none_0cba39e5da114d7c\api-ms-win-core-libraryloader-l1-1-0.dll
[2013/08/02 02:48:15 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.18229_none_0cb36eedda15c917\api-ms-win-core-libraryloader-l1-1-0.dll
[2012/11/30 05:46:37 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.22177_none_0d04f7bcf35dc79a\api-ms-win-core-libraryloader-l1-1-0.dll
[2013/08/02 06:53:29 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.22411_none_0d3fdb3af3327f5f\api-ms-win-core-libraryloader-l1-1-0.dll
< *minodlogin* /s >
< *tnod* /s >
< *AutoKMS* /s >
< *activator* /s >
< *serial* /s >
[2013/09/13 06:01:54 | 000,167,528 | ---- | M] () -- \Program Files\Microsoft Office\Office15\ADDINS\PowerPivot Excel Add-in\Microsoft.AnalysisServices.Excel.BackEnd.XmlSerializers.dll
[2013/09/13 06:01:54 | 000,210,024 | ---- | M] () -- \Program Files\Microsoft Office\Office15\ADDINS\PowerPivot Excel Add-in\Microsoft.AnalysisServices.Excel.Common.FrontEnd.XmlSerializers.dll
[2014/02/13 22:57:42 | 000,434,368 | ---- | M] () -- \Program Files\Microsoft Silverlight\5.1.30214.0\System.Runtime.Serialization.dll
[2014/03/20 22:12:50 | 001,164,288 | ---- | M] () -- \Program Files\Microsoft Silverlight\5.1.30214.0\System.Runtime.Serialization.ni.dll
[2012/10/05 11:53:23 | 000,970,752 | ---- | M] () -- \Program Files\Reference Assemblies\Microsoft\Framework\v3.0\System.Runtime.Serialization.dll
[2010/11/05 02:53:39 | 000,090,112 | ---- | M] () -- \Program Files\Reference Assemblies\Microsoft\Framework\v3.0\cs\System.RunTime.Serialization.Resources.dll
[2010/04/14 18:20:46 | 000,415,592 | ---- | M] () -- \Program Files\Windows Live\Mesh\System.Runtime.Serialization.dll
[2010/04/14 18:20:46 | 000,141,168 | ---- | M] () -- \Program Files\Windows Live\Mesh\System.Runtime.Serialization.Json.dll
[2010/04/14 18:20:46 | 000,321,376 | ---- | M] () -- \Program Files\Windows Live\Mesh\System.Xml.Serialization.dll
[2012/11/22 13:12:29 | 002,647,040 | ---- | M] () -- \System Volume Information\SystemRestore\FRStaging\Windows\assembly\NativeImages_v4.0.30319_32\System.Runtime.Seri#\0d2c8da8749c683b47f01101c9ea26d5\System.Runtime.Serialization.ni.dll
[2012/11/22 13:12:48 | 000,311,296 | ---- | M] () -- \System Volume Information\SystemRestore\FRStaging\Windows\assembly\NativeImages_v4.0.30319_32\System.Runtime.Seri#\87ac195467372a8cee1c388028e15606\System.Runtime.Serialization.Formatters.Soap.ni.dll
[2012/11/22 13:20:12 | 000,009,216 | ---- | M] () -- \System Volume Information\SystemRestore\FRStaging\Windows\assembly\NativeImages_v4.0.30319_32\System.Xml.Serializ#\e245e7c9819fa2e66c0403b82c2897d7\System.Xml.Serialization.ni.dll
[2009/06/20 20:13:48 | 000,090,112 | ---- | M] () -- \System Volume Information\SystemRestore\FRStaging\Windows\winsxs\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7600.16385_cs-cz_34555b4d83cf58b0\System.RunTime.Serialization.Resources.dll
[2010/11/05 02:52:27 | 000,970,752 | ---- | M] () -- \System Volume Information\SystemRestore\FRStaging\Windows\winsxs\msil_system.runtime.serialization_b77a5c561934e089_6.1.7601.17514_none_d6c257b29c81807f\System.Runtime.Serialization.dll
[2010/11/05 02:52:27 | 000,970,752 | ---- | M] () -- \System Volume Information\SystemRestore\FRStaging\Windows\winsxs\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.17514_none_db9d037fdd581ac1\System.Runtime.Serialization.dll
[2014/03/21 13:42:49 | 000,003,608 | ---- | M] () -- \Users\asus\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.serialzone.cz_0.localstorage-journal
[2009/06/20 20:13:40 | 000,011,776 | ---- | M] () -- \Windows\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap.resources\2.0.0.0_cs_b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2009/06/10 22:23:19 | 000,131,072 | ---- | M] () -- \Windows\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap\2.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.dll
[2010/11/13 02:55:26 | 000,090,112 | ---- | M] () -- \Windows\assembly\GAC_MSIL\system.runtime.serialization.resources\3.0.0.0_cs_b77a5c561934e089\System.RunTime.Serialization.Resources.dll
[2012/10/05 11:53:23 | 000,970,752 | ---- | M] () -- \Windows\assembly\GAC_MSIL\System.Runtime.Serialization\3.0.0.0__b77a5c561934e089\System.Runtime.Serialization.dll
[2014/03/06 12:43:54 | 000,310,784 | ---- | M] () -- \Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Seri#\553e7bfc9cac5e4feaa83d8ee1e187bd\System.Runtime.Serialization.Formatters.Soap.ni.dll
[2014/03/06 13:41:49 | 002,347,008 | ---- | M] () -- \Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Seri#\f177ea74036d5fdc6c6b9c967dc877cf\System.Runtime.Serialization.ni.dll
[2014/03/07 09:08:07 | 000,309,760 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_32\System.Runt9064068c#\abb3fbf787b74b7d2513a8c409b5ef74\System.Runtime.Serialization.Formatters.Soap.ni.dll
[2014/03/07 09:08:07 | 000,000,580 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_32\System.Runt9064068c#\abb3fbf787b74b7d2513a8c409b5ef74\System.Runtime.Serialization.Formatters.Soap.ni.dll.aux
[2014/03/07 09:10:27 | 002,825,216 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_32\System.Runteb92aa12#\f6d7bb59f318c130d68816a89335d05e\System.Runtime.Serialization.ni.dll
[2014/03/07 09:10:27 | 000,001,308 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_32\System.Runteb92aa12#\f6d7bb59f318c130d68816a89335d05e\System.Runtime.Serialization.ni.dll.aux
[2014/03/08 15:48:17 | 000,026,624 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_32\System.Xml.84e525b7#\94ce7a3b39b335283a0087f9964e9099\System.Xml.Serialization.ni.dll
[2014/03/08 15:48:17 | 000,000,376 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_32\System.Xml.84e525b7#\94ce7a3b39b335283a0087f9964e9099\System.Xml.Serialization.ni.dll.aux
[2012/10/01 20:32:44 | 000,166,864 | R--- | M] () -- \Windows\Installer\$PatchCache$\Managed\00005109110000000000000000F01FEC\15.0.4420\AS_Client_BackEnd_XmlSerializers_dll_32.B4988E63_555A_4DEB_A5F4_A9E5864569F1
[2012/10/01 20:32:44 | 000,209,360 | R--- | M] () -- \Windows\Installer\$PatchCache$\Managed\00005109110000000000000000F01FEC\15.0.4420\AS_Client_Common_FrontEnd_XmlSerializers_dll_32.B4988E63_555A_4DEB_A5F4_A9E5864569F1
[2013/09/11 22:33:38 | 000,027,920 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap.resources\v4.0_4.0.0.0_cs_b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2013/09/11 22:33:38 | 000,133,344 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.dll
[2013/09/11 21:21:54 | 000,022,176 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization.Json\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Json.dll
[2013/09/11 21:21:54 | 000,022,208 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization.Primitives\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Primitives.dll
[2013/09/11 22:33:38 | 000,113,864 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.RunTime.Serialization.resources\v4.0_4.0.0.0_cs_b77a5c561934e089\System.RunTime.Serialization.resources.dll
[2013/09/11 21:21:54 | 000,022,176 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization.Xml\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Xml.dll
[2013/09/11 22:33:38 | 001,052,320 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization\v4.0_4.0.0.0__b77a5c561934e089\System.Runtime.Serialization.dll
[2013/09/11 21:21:54 | 000,036,480 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Xml.Serialization\v4.0_4.0.0.0__b77a5c561934e089\System.Xml.Serialization.dll
[2013/09/11 21:21:54 | 000,022,656 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Xml.XmlSerializer\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Xml.XmlSerializer.dll
[2009/06/10 22:23:19 | 000,131,072 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v2.0.50727\System.Runtime.Serialization.Formatters.Soap.dll
[2010/11/05 02:53:33 | 000,011,776 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v2.0.50727\cs\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2012/10/05 11:53:24 | 000,970,752 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\System.Runtime.Serialization.dll
[2013/09/11 22:33:38 | 001,052,320 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\System.Runtime.Serialization.dll
[2013/09/11 22:33:38 | 000,133,344 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\System.Runtime.Serialization.Formatters.Soap.dll
[2013/09/11 21:21:54 | 000,022,176 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\System.Runtime.Serialization.Json.dll
[2013/09/11 21:21:54 | 000,022,208 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\System.Runtime.Serialization.Primitives.dll
[2013/09/11 21:21:54 | 000,022,176 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\System.Runtime.Serialization.Xml.dll
[2013/09/11 21:21:54 | 000,036,480 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\System.Xml.Serialization.dll
[2013/09/11 21:21:54 | 000,022,656 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\System.Xml.XmlSerializer.dll
[2013/09/11 22:33:38 | 000,027,920 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\cs\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2013/09/11 22:33:38 | 000,113,864 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\cs\System.RunTime.Serialization.resources.dll
[2009/07/14 02:16:13 | 000,015,360 | ---- | M] () -- \Windows\System32\serialui.dll
[2009/06/20 20:13:36 | 000,005,120 | ---- | M] () -- \Windows\System32\cs-CZ\serialui.dll.mui
[2009/07/14 00:45:33 | 000,083,456 | ---- | M] () -- \Windows\System32\drivers\serial.sys
[2009/06/20 20:13:45 | 000,009,728 | ---- | M] () -- \Windows\System32\drivers\cs-CZ\serial.sys.mui
[2009/07/13 23:13:45 | 001,068,032 | ---- | M] () -- \Windows\System32\DriverStore\FileRepository\mdmmotsm.inf_x86_neutral_c1415d9789c54b89\smserial.sys
[2009/07/14 00:45:33 | 000,083,456 | ---- | M] () -- \Windows\System32\DriverStore\FileRepository\msports.inf_x86_neutral_c1a802e06677f73f\serial.sys
[2009/07/13 23:09:18 | 000,031,232 | ---- | M] () -- \Windows\System32\DriverStore\FileRepository\smartcrd.inf_x86_neutral_63e72c669d043f14\grserial.sys
[2009/07/14 03:18:03 | 000,002,762 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..gertransport-serial_31bf3856ad364e35_6.1.7600.16385_none_118be3420dfe8486.manifest
[2009/07/14 03:18:03 | 000,015,952 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..gertransport-serial_31bf3856ad364e35_6.1.7600.16385_none_118be3420dfe8486_kdcom.dll_db5e7744
[2009/06/20 20:13:58 | 000,005,120 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-u..em-config.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_4e4137b544fe59ed_serialui.dll.mui_7d29d2a3
[2009/07/14 03:18:51 | 000,015,360 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-unimodem-config_31bf3856ad364e35_6.1.7600.16385_none_f4d7f7b17ffe522a_serialui.dll_bea29328
[2010/11/20 04:06:16 | 000,002,226 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.ref_b77a5c561934e089_6.1.7601.17514_none_a67f221874da7f4c.manifest
[2012/10/05 18:15:39 | 000,002,226 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.ref_b77a5c561934e089_6.1.7601.17966_none_a683f56a74d63285.manifest
[2012/10/05 18:17:50 | 000,002,226 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.ref_b77a5c561934e089_6.1.7601.22126_none_8fb250ac8e81277d.manifest
[2009/06/20 20:12:58 | 000,001,626 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7600.16385_cs-cz_34555b4d83cf58b0.manifest
[2012/10/05 20:04:43 | 000,001,626 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.17966_cs-cz_342f3c238422529f.manifest
[2012/10/05 20:02:24 | 000,001,626 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.22126_cs-cz_1d5d97659dcd4797.manifest
[2010/11/20 04:05:38 | 000,001,985 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization_b77a5c561934e089_6.1.7601.17514_none_d6c257b29c81807f.manifest
[2012/10/05 18:15:03 | 000,001,985 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization_b77a5c561934e089_6.1.7601.17966_none_d6c72b049c7d33b8.manifest
[2012/10/05 18:17:15 | 000,001,985 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization_b77a5c561934e089_6.1.7601.22126_none_bff58646b62828b0.manifest
[2009/07/14 02:49:26 | 000,002,762 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..gertransport-serial_31bf3856ad364e35_6.1.7600.16385_none_118be3420dfe8486.manifest
[2009/07/14 02:45:27 | 000,000,866 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft.windows.h..tserial-driverclass_31bf3856ad364e35_6.1.7600.16385_none_2c93290b67c98d09.manifest
[2010/11/20 04:10:46 | 000,002,260 | ---- | M] () -- \Windows\winsxs\Manifests\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.17514_none_db9d037fdd581ac1.manifest
[2012/10/05 18:19:53 | 000,002,260 | ---- | M] () -- \Windows\winsxs\Manifests\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.17966_none_dba1d6d1dd53cdfa.manifest
[2012/10/05 18:22:10 | 000,002,260 | ---- | M] () -- \Windows\winsxs\Manifests\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.22126_none_c4d03213f6fec2f2.manifest
[2009/06/10 22:23:19 | 000,131,072 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.seri..ion.formatters.soap_b03f5f7f11d50a3a_6.1.7600.16385_none_1c9a3ec1e01c684b\System.Runtime.Serialization.Formatters.Soap.dll
[2009/06/20 20:13:40 | 000,011,776 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.seri..ters.soap.resources_b03f5f7f11d50a3a_6.1.7600.16385_cs-cz_d5c3552dd9b47144\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2010/11/05 02:52:39 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.ref_b77a5c561934e089_6.1.7601.17514_none_a67f221874da7f4c\System.Runtime.Serialization.dll
[2012/10/05 11:53:24 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.ref_b77a5c561934e089_6.1.7601.17966_none_a683f56a74d63285\System.Runtime.Serialization.dll
[2012/10/05 11:56:07 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.ref_b77a5c561934e089_6.1.7601.22126_none_8fb250ac8e81277d\System.Runtime.Serialization.dll
[2009/06/20 20:13:48 | 000,090,112 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7600.16385_cs-cz_34555b4d83cf58b0\System.RunTime.Serialization.Resources.dll
[2010/11/13 02:55:26 | 000,090,112 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.17966_cs-cz_342f3c238422529f\System.RunTime.Serialization.Resources.dll
[2010/11/13 03:37:50 | 000,090,112 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.22126_cs-cz_1d5d97659dcd4797\System.RunTime.Serialization.Resources.dll
[2010/11/05 02:52:27 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization_b77a5c561934e089_6.1.7601.17514_none_d6c257b29c81807f\System.Runtime.Serialization.dll
[2012/10/05 11:53:23 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization_b77a5c561934e089_6.1.7601.17966_none_d6c72b049c7d33b8\System.Runtime.Serialization.dll
[2012/10/05 11:56:05 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization_b77a5c561934e089_6.1.7601.22126_none_bff58646b62828b0\System.Runtime.Serialization.dll
[2009/07/13 23:13:45 | 001,068,032 | ---- | M] () -- \Windows\winsxs\x86_mdmmotsm.inf_31bf3856ad364e35_6.1.7600.16385_none_7a97936f8a972896\smserial.sys
[2010/11/05 02:53:33 | 000,011,776 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-n..xcorecomp.resources_31bf3856ad364e35_6.1.7601.17514_cs-cz_c233d4df09982c29\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2009/06/20 20:13:36 | 000,005,120 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-u..em-config.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_4e4137b544fe59ed\serialui.dll.mui
[2009/07/14 02:16:13 | 000,015,360 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-unimodem-config_31bf3856ad364e35_6.1.7600.16385_none_f4d7f7b17ffe522a\serialui.dll
[2010/11/05 02:53:39 | 000,090,112 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-wcfcorecomp.resources_31bf3856ad364e35_6.1.7601.17514_cs-cz_5f7b7c7cb0c0f266\System.RunTime.Serialization.Resources.dll
[2009/06/20 20:13:45 | 000,009,728 | ---- | M] () -- \Windows\winsxs\x86_msports.inf.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_c48c78a9ad8ff996\serial.sys.mui
[2009/07/14 00:45:33 | 000,083,456 | ---- | M] () -- \Windows\winsxs\x86_msports.inf_31bf3856ad364e35_6.1.7600.16385_none_f86e06d519b1d9a4\serial.sys
[2009/07/13 23:09:18 | 000,031,232 | ---- | M] () -- \Windows\winsxs\x86_smartcrd.inf_31bf3856ad364e35_6.1.7600.16385_none_7280378295916274\grserial.sys
[2010/11/05 02:52:27 | 000,970,752 | ---- | M] () -- \Windows\winsxs\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.17514_none_db9d037fdd581ac1\System.Runtime.Serialization.dll
[2012/10/05 11:53:23 | 000,970,752 | ---- | M] () -- \Windows\winsxs\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.17966_none_dba1d6d1dd53cdfa\System.Runtime.Serialization.dll
[2012/10/05 11:56:05 | 000,970,752 | ---- | M] () -- \Windows\winsxs\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.22126_none_c4d03213f6fec2f2\System.Runtime.Serialization.dll
< *w7lxe* /s >
========== Alternate Data Streams ==========
@Alternate Data Stream - 6248 bytes -> C:\windows\PLA\System\System Diagnostics.xml:0v1ieca3Feahez0jAwxjjk5uRh
< End of report >
[2011/02/26 06:19:21 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=0FB9C74046656D1579A64660AD67B746 -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.21669_none_54149f9ef14031fc\explorer.exe
[2010/11/20 13:17:09 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=40D777B7A95E00593EB1568C68514493 -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17514_none_53bc10fdd7fe87ca\explorer.exe
[2011/02/25 06:30:54 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=8B88EBBB05A0E56B7DCC708498C02B3E -- C:\Windows\erdnt\cache\explorer.exe
[2011/02/25 06:30:54 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=8B88EBBB05A0E56B7DCC708498C02B3E -- C:\Windows\explorer.exe
[2011/02/25 06:30:54 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=8B88EBBB05A0E56B7DCC708498C02B3E -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17567_none_5389023fd8245f84\explorer.exe
< MD5 for: HAL.DLL >
[2010/11/20 13:29:53 | 000,194,432 | ---- | M] (Microsoft Corporation) MD5=1BF0D4727FDB437D513CFF8A9359C050 -- C:\Windows\System32\hal.dll
[2010/11/20 13:29:53 | 000,194,432 | ---- | M] (Microsoft Corporation) MD5=1BF0D4727FDB437D513CFF8A9359C050 -- C:\Windows\winsxs\x86_microsoft-windows-hal_31bf3856ad364e35_6.1.7601.17514_none_ad305c8fb7ec5060\hal.dll
< MD5 for: IASTORV.SYS >
[2011/03/11 06:38:51 | 000,332,160 | ---- | M] (Intel Corporation) MD5=5CD5F9A5444E6CDCB0AC89BD62D8B76E -- C:\Windows\System32\drivers\iaStorV.sys
[2011/03/11 06:38:51 | 000,332,160 | ---- | M] (Intel Corporation) MD5=5CD5F9A5444E6CDCB0AC89BD62D8B76E -- C:\Windows\System32\DriverStore\FileRepository\iastorv.inf_x86_neutral_0bcee2057afcc090\iaStorV.sys
[2011/03/11 06:38:51 | 000,332,160 | ---- | M] (Intel Corporation) MD5=5CD5F9A5444E6CDCB0AC89BD62D8B76E -- C:\Windows\winsxs\x86_iastorv.inf_31bf3856ad364e35_6.1.7601.17577_none_b0daddb9e6380745\iaStorV.sys
[2011/03/11 06:28:00 | 000,332,160 | ---- | M] (Intel Corporation) MD5=778D0E6D7D9EBA0C403BADBAAD41DB20 -- C:\Windows\winsxs\x86_iastorv.inf_31bf3856ad364e35_6.1.7601.21680_none_b152a892ff64119f\iaStorV.sys
[2010/11/20 13:29:54 | 000,332,160 | ---- | M] (Intel Corporation) MD5=A3CAE5D281DB4CFF7CFF8233507EE5AD -- C:\Windows\System32\DriverStore\FileRepository\iastorv.inf_x86_neutral_668286aa35d55928\iaStorV.sys
[2010/11/20 13:29:54 | 000,332,160 | ---- | M] (Intel Corporation) MD5=A3CAE5D281DB4CFF7CFF8233507EE5AD -- C:\Windows\winsxs\x86_iastorv.inf_31bf3856ad364e35_6.1.7601.17514_none_b118bc63e60a139a\iaStorV.sys
< MD5 for: ISAPNP.SYS >
[2009/07/14 02:20:36 | 000,046,656 | ---- | M] (Microsoft Corporation) MD5=1F32BB6B38F62F7DF1A7AB7292638A35 -- C:\Windows\System32\drivers\isapnp.sys
[2009/07/14 02:20:36 | 000,046,656 | ---- | M] (Microsoft Corporation) MD5=1F32BB6B38F62F7DF1A7AB7292638A35 -- C:\Windows\System32\DriverStore\FileRepository\machine.inf_x86_neutral_a97a2a0d0fbc6696\isapnp.sys
[2009/07/14 02:20:36 | 000,046,656 | ---- | M] (Microsoft Corporation) MD5=1F32BB6B38F62F7DF1A7AB7292638A35 -- C:\Windows\winsxs\x86_machine.inf_31bf3856ad364e35_6.1.7601.17514_none_bc1a57271cf2f285\isapnp.sys
< MD5 for: LSASS.EXE >
[2013/09/25 01:54:21 | 000,022,016 | ---- | M] (Microsoft Corporation) MD5=559C7769B397F07E12725EE55337D4C6 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.22465_none_a8a66792d452b56a\lsass.exe
[2013/09/25 01:49:20 | 000,022,016 | ---- | M] (Microsoft Corporation) MD5=803B370865D907EA21DC0C2B6A8936B5 -- C:\Windows\erdnt\cache\lsass.exe
[2013/09/25 01:49:20 | 000,022,016 | ---- | M] (Microsoft Corporation) MD5=803B370865D907EA21DC0C2B6A8936B5 -- C:\Windows\System32\lsass.exe
[2013/09/25 01:49:20 | 000,022,016 | ---- | M] (Microsoft Corporation) MD5=803B370865D907EA21DC0C2B6A8936B5 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.18270_none_a80cf783bb41b5b7\lsass.exe
[2011/11/17 06:29:50 | 000,022,528 | ---- | M] (Microsoft Corporation) MD5=81951F51E318AECC2D68559E47485CC4 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.17725_none_a84828d7bb1480d7\lsass.exe
[2009/07/14 02:14:23 | 000,022,528 | ---- | M] (Microsoft Corporation) MD5=F42309C4191C506B71DB5D1126D26318 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.17514_none_a851f4adbb0d5141\lsass.exe
[2011/11/17 06:24:04 | 000,022,528 | ---- | M] (Microsoft Corporation) MD5=FBCB2DFA40862DAA7B1534C9538208A5 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.21861_none_a8a284cad4562b09\lsass.exe
< MD5 for: NDIS.SYS >
[2012/08/22 18:05:16 | 000,712,048 | ---- | M] (Microsoft Corporation) MD5=15B74B6283CEBCCE3054C1001CA01B5E -- C:\Windows\winsxs\x86_microsoft-windows-ndis_31bf3856ad364e35_6.1.7601.22097_none_aa0491cf93ad1c31\ndis.sys
[2012/08/22 18:16:46 | 000,712,048 | ---- | M] (Microsoft Corporation) MD5=8C9C922D71F1CD4DEF73F186416B7896 -- C:\Windows\erdnt\cache\ndis.sys
[2012/08/22 18:16:46 | 000,712,048 | ---- | M] (Microsoft Corporation) MD5=8C9C922D71F1CD4DEF73F186416B7896 -- C:\Windows\System32\drivers\ndis.sys
[2012/08/22 18:16:46 | 000,712,048 | ---- | M] (Microsoft Corporation) MD5=8C9C922D71F1CD4DEF73F186416B7896 -- C:\Windows\winsxs\x86_microsoft-windows-ndis_31bf3856ad364e35_6.1.7601.17939_none_a9bdfee47a5cd154\ndis.sys
[2010/11/20 13:30:06 | 000,712,576 | ---- | M] (Microsoft Corporation) MD5=E7C54812A2AAF43316EB6930C1FFA108 -- C:\Windows\winsxs\x86_microsoft-windows-ndis_31bf3856ad364e35_6.1.7601.17514_none_a9ce95b27a512623\ndis.sys
< MD5 for: NETLOGON.DLL >
[2010/11/20 13:20:28 | 000,563,712 | ---- | M] (Microsoft Corporation) MD5=C1809B9907ADEDAF16F50C894100883B -- C:\Windows\erdnt\cache\netlogon.dll
[2010/11/20 13:20:28 | 000,563,712 | ---- | M] (Microsoft Corporation) MD5=C1809B9907ADEDAF16F50C894100883B -- C:\Windows\System32\netlogon.dll
[2010/11/20 13:20:28 | 000,563,712 | ---- | M] (Microsoft Corporation) MD5=C1809B9907ADEDAF16F50C894100883B -- C:\Windows\winsxs\x86_microsoft-windows-security-netlogon_31bf3856ad364e35_6.1.7601.17514_none_ffbf212e963c0162\netlogon.dll
< MD5 for: NVRAID.SYS >
[2010/11/20 13:30:06 | 000,117,120 | ---- | M] (NVIDIA Corporation) MD5=AF2EEC9580C1D32FB7EAF105D9784061 -- C:\Windows\System32\DriverStore\FileRepository\nvraid.inf_x86_neutral_dd659ed032d28a14\nvraid.sys
[2010/11/20 13:30:06 | 000,117,120 | ---- | M] (NVIDIA Corporation) MD5=AF2EEC9580C1D32FB7EAF105D9784061 -- C:\Windows\winsxs\x86_nvraid.inf_31bf3856ad364e35_6.1.7601.17514_none_3be22d131d40bd72\nvraid.sys
[2011/03/11 06:39:00 | 000,117,120 | ---- | M] (NVIDIA Corporation) MD5=B3E25EE28883877076E0E1FF877D02E0 -- C:\Windows\System32\drivers\nvraid.sys
[2011/03/11 06:39:00 | 000,117,120 | ---- | M] (NVIDIA Corporation) MD5=B3E25EE28883877076E0E1FF877D02E0 -- C:\Windows\System32\DriverStore\FileRepository\nvraid.inf_x86_neutral_0276fc3b3ea60d41\nvraid.sys
[2011/03/11 06:39:00 | 000,117,120 | ---- | M] (NVIDIA Corporation) MD5=B3E25EE28883877076E0E1FF877D02E0 -- C:\Windows\winsxs\x86_nvraid.inf_31bf3856ad364e35_6.1.7601.17577_none_3ba44e691d6eb11d\nvraid.sys
[2011/03/11 06:28:10 | 000,117,120 | ---- | M] (NVIDIA Corporation) MD5=E3B840350A72CA6F39BD2BEF85A2BCFB -- C:\Windows\winsxs\x86_nvraid.inf_31bf3856ad364e35_6.1.7601.21680_none_3c1c1942369abb77\nvraid.sys
< MD5 for: NVSTOR.SYS >
[2011/03/11 06:39:00 | 000,143,744 | ---- | M] (NVIDIA Corporation) MD5=4380E59A170D88C4F1022EFF6719A8A4 -- C:\Windows\System32\drivers\nvstor.sys
[2011/03/11 06:39:00 | 000,143,744 | ---- | M] (NVIDIA Corporation) MD5=4380E59A170D88C4F1022EFF6719A8A4 -- C:\Windows\System32\DriverStore\FileRepository\nvraid.inf_x86_neutral_0276fc3b3ea60d41\nvstor.sys
[2011/03/11 06:39:00 | 000,143,744 | ---- | M] (NVIDIA Corporation) MD5=4380E59A170D88C4F1022EFF6719A8A4 -- C:\Windows\winsxs\x86_nvraid.inf_31bf3856ad364e35_6.1.7601.17577_none_3ba44e691d6eb11d\nvstor.sys
[2011/03/11 06:28:10 | 000,143,744 | ---- | M] (NVIDIA Corporation) MD5=66D468654A58594F5F3BA63D5AD5B1AF -- C:\Windows\winsxs\x86_nvraid.inf_31bf3856ad364e35_6.1.7601.21680_none_3c1c1942369abb77\nvstor.sys
[2010/11/20 13:30:06 | 000,143,744 | ---- | M] (NVIDIA Corporation) MD5=9283C58EBAA2618F93482EB5DABCEC82 -- C:\Windows\System32\DriverStore\FileRepository\nvraid.inf_x86_neutral_dd659ed032d28a14\nvstor.sys
[2010/11/20 13:30:06 | 000,143,744 | ---- | M] (NVIDIA Corporation) MD5=9283C58EBAA2618F93482EB5DABCEC82 -- C:\Windows\winsxs\x86_nvraid.inf_31bf3856ad364e35_6.1.7601.17514_none_3be22d131d40bd72\nvstor.sys
< MD5 for: SCECLI.DLL >
[2010/11/20 13:21:04 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=8124944EC89D6A1815E4E53F5B96AAF4 -- C:\Windows\erdnt\cache\scecli.dll
[2010/11/20 13:21:04 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=8124944EC89D6A1815E4E53F5B96AAF4 -- C:\Windows\System32\scecli.dll
[2010/11/20 13:21:04 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=8124944EC89D6A1815E4E53F5B96AAF4 -- C:\Windows\winsxs\x86_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7601.17514_none_3a154c47375d881d\scecli.dll
< MD5 for: SMSS.EXE >
[2013/03/19 03:43:41 | 000,069,632 | ---- | M] (Microsoft Corporation) MD5=0294CC751D7FAEB13621EEFB8A749429 -- C:\Windows\winsxs\x86_microsoft-windows-smss_31bf3856ad364e35_6.1.7601.22280_none_ae7bdfb790cddbcf\smss.exe
[2009/07/14 02:14:39 | 000,069,632 | ---- | M] (Microsoft Corporation) MD5=16742790895960690237A5143CEDEC8B -- C:\Windows\winsxs\x86_microsoft-windows-smss_31bf3856ad364e35_6.1.7600.16385_none_ac10fe207a85352b\smss.exe
[2013/07/08 04:02:28 | 000,069,632 | ---- | M] (Microsoft Corporation) MD5=634E0B45780F502304592C5615A31089 -- C:\Windows\winsxs\x86_microsoft-windows-smss_31bf3856ad364e35_6.1.7601.22379_none_ae8fb42390bda114\smss.exe
[2013/08/29 01:51:28 | 000,069,632 | ---- | M] (Microsoft Corporation) MD5=D2A72C71CD6C18A99E920EC5761F0C7D -- C:\Windows\winsxs\x86_microsoft-windows-smss_31bf3856ad364e35_6.1.7601.22436_none_aeb7f4db909fe272\smss.exe
[2013/03/19 03:49:16 | 000,069,632 | ---- | M] (Microsoft Corporation) MD5=DE91DCC7BC55E940979097E98F743205 -- C:\Windows\System32\smss.exe
[2013/03/19 03:49:16 | 000,069,632 | ---- | M] (Microsoft Corporation) MD5=DE91DCC7BC55E940979097E98F743205 -- C:\Windows\winsxs\x86_microsoft-windows-smss_31bf3856ad364e35_6.1.7601.18113_none_ae40f33e7774c473\smss.exe
[2013/05/06 04:02:20 | 000,069,632 | ---- | M] (Microsoft Corporation) MD5=EC745C0949B101129AB6D39CD63808A6 -- C:\Windows\winsxs\x86_microsoft-windows-smss_31bf3856ad364e35_6.1.7601.22318_none_aecf9361908de017\smss.exe
< MD5 for: SVCHOST.EXE >
[2009/07/14 02:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\erdnt\cache\svchost.exe
[2009/07/14 02:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\System32\svchost.exe
[2009/07/14 02:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\winsxs\x86_microsoft-windows-services-svchost_31bf3856ad364e35_6.1.7600.16385_none_b591afc466a15356\svchost.exe
< MD5 for: TCPIP.SYS >
[2012/08/22 18:05:21 | 001,306,992 | ---- | M] (Microsoft Corporation) MD5=23790A44D9A6B67F8690C34D4F516446 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.22097_none_b55b785ade04500f\tcpip.sys
[2010/11/20 13:30:12 | 001,290,112 | ---- | M] (Microsoft Corporation) MD5=37E8FA3779668837CA9E2C36D2415949 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.17514_none_b5257c3dc4a85a01\tcpip.sys
[2013/01/04 05:56:23 | 001,308,504 | ---- | M] (Microsoft Corporation) MD5=4A95845C5F33A4DDEB6AEF6367FB6520 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.22209_none_b5becc06ddb98192\tcpip.sys
[2013/07/06 06:05:35 | 001,293,760 | ---- | M] (Microsoft Corporation) MD5=4E8B9BE71B807B3BAEDB7F4243F85E3C -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.18203_none_b52f2f65c4a146e5\tcpip.sys
[2013/07/06 05:57:37 | 001,309,120 | ---- | M] (Microsoft Corporation) MD5=528F7CC60391DD0FAB0344F32F051FDF -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.22378_none_b5721e2eddf328f9\tcpip.sys
[2013/05/08 07:15:22 | 001,309,032 | ---- | M] (Microsoft Corporation) MD5=6088D01FAD49729EA0A5A3D9B9BA8B84 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.22319_none_b5b3fe00ddc19aaa\tcpip.sys
[2013/09/07 03:06:48 | 001,309,120 | ---- | M] (Microsoft Corporation) MD5=6C4F3D92764FFA22D28061A4D9235446 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.22444_none_b58e8eb0ddde6cf1\tcpip.sys
[2013/01/03 06:05:20 | 001,293,672 | ---- | M] (Microsoft Corporation) MD5=7C0507D2391AF5933600CBCED799F277 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.18042_none_b502eb9fc4c2a304\tcpip.sys
[2012/08/22 18:16:54 | 001,292,144 | ---- | M] (Microsoft Corporation) MD5=A5EBB8F648000E88B7D9390B514976BF -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.17939_none_b514e56fc4b40532\tcpip.sys
[2013/09/08 03:07:12 | 001,294,272 | ---- | M] (Microsoft Corporation) MD5=CA59F7C570AF70BC174F477CFE2D9EE3 -- C:\Windows\erdnt\cache\tcpip.sys
[2013/09/08 03:07:12 | 001,294,272 | ---- | M] (Microsoft Corporation) MD5=CA59F7C570AF70BC174F477CFE2D9EE3 -- C:\Windows\System32\drivers\tcpip.sys
[2013/09/08 03:07:12 | 001,294,272 | ---- | M] (Microsoft Corporation) MD5=CA59F7C570AF70BC174F477CFE2D9EE3 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.18254_none_b4fa2013c4c8ebf1\tcpip.sys
[2013/05/08 06:38:00 | 001,293,672 | ---- | M] (Microsoft Corporation) MD5=D32FDAC73FCD76B85389C39BC1087F2A -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.18148_none_b508ef41c4bd3835\tcpip.sys
[2012/10/03 17:44:01 | 001,308,040 | ---- | M] (Microsoft Corporation) MD5=D490DD0A91B4EAC3B4EE08D11EE37C31 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.22124_none_b5a428d6ddce3d9a\tcpip.sys
[2013/11/26 12:07:37 | 001,309,632 | ---- | M] (Microsoft Corporation) MD5=DC08335B30D83FB61E9EFE6FDD09D40D -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.22525_none_b5a530b8ddcd4b8d\tcpip.sys
[2012/10/03 17:58:30 | 001,293,680 | ---- | M] (Microsoft Corporation) MD5=E23A56F843E2AEBBB209D0ACCA73C640 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.17964_none_b4ef7439c4d0da52\tcpip.sys
< MD5 for: USERINIT.EXE >
[2010/11/20 13:17:48 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=61AC3EFDFACFDD3F0F11DD4FD4044223 -- C:\Windows\erdnt\cache\userinit.exe
[2010/11/20 13:17:48 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=61AC3EFDFACFDD3F0F11DD4FD4044223 -- C:\Windows\System32\userinit.exe
[2010/11/20 13:17:48 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=61AC3EFDFACFDD3F0F11DD4FD4044223 -- C:\Windows\winsxs\x86_microsoft-windows-userinit_31bf3856ad364e35_6.1.7601.17514_none_de3024012ff21116\userinit.exe
< MD5 for: WINLOGON.EXE >
[2010/11/20 13:17:54 | 000,286,720 | ---- | M] (Microsoft Corporation) MD5=6D13E1406F50C66E2A95D97F22C47560 -- C:\Windows\erdnt\cache\winlogon.exe
[2010/11/20 13:17:54 | 000,286,720 | ---- | M] (Microsoft Corporation) MD5=6D13E1406F50C66E2A95D97F22C47560 -- C:\Windows\System32\winlogon.exe
[2010/11/20 13:17:54 | 000,286,720 | ---- | M] (Microsoft Corporation) MD5=6D13E1406F50C66E2A95D97F22C47560 -- C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7601.17514_none_71ca6b0233339500\winlogon.exe
< MD5 for: WS2_32.DLL >
[2010/11/20 13:21:38 | 000,206,848 | ---- | M] (Microsoft Corporation) MD5=7FF15A4F092CD4A96055BA69F903E3E9 -- C:\Windows\erdnt\cache\ws2_32.dll
[2010/11/20 13:21:38 | 000,206,848 | ---- | M] (Microsoft Corporation) MD5=7FF15A4F092CD4A96055BA69F903E3E9 -- C:\Windows\System32\ws2_32.dll
[2010/11/20 13:21:38 | 000,206,848 | ---- | M] (Microsoft Corporation) MD5=7FF15A4F092CD4A96055BA69F903E3E9 -- C:\Windows\winsxs\x86_microsoft-windows-w..nfrastructure-ws232_31bf3856ad364e35_6.1.7601.17514_none_f4bf1aae2c981ecf\ws2_32.dll
< >
< %systemroot%*.* /U /s >
[43 C:\windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp files -> C:\windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp -> ]
[1 C:\windows\Installer\*.tmp files -> C:\windows\Installer\*.tmp -> ]
[1 C:\windows\SoftwareDistribution\Download\02f54841db666ca427a60ad7f6f6d71b\*.tmp files -> C:\windows\SoftwareDistribution\Download\02f54841db666ca427a60ad7f6f6d71b\*.tmp -> ]
[1 C:\windows\SoftwareDistribution\Download\096da6fd1c749aa15e3496c247e71864\*.tmp files -> C:\windows\SoftwareDistribution\Download\096da6fd1c749aa15e3496c247e71864\*.tmp -> ]
[1 C:\windows\SoftwareDistribution\Download\0a70d7cba0b4fcc081e3a0175c0c9e5a\*.tmp files -> C:\windows\SoftwareDistribution\Download\0a70d7cba0b4fcc081e3a0175c0c9e5a\*.tmp -> ]
[1 C:\windows\SoftwareDistribution\Download\10dc61acfc339f34cc946e6e0132cd00\*.tmp files -> C:\windows\SoftwareDistribution\Download\10dc61acfc339f34cc946e6e0132cd00\*.tmp -> ]
[1 C:\windows\SoftwareDistribution\Download\1a550dbfa990b01fd4aa177f131d6c6f\*.tmp files -> C:\windows\SoftwareDistribution\Download\1a550dbfa990b01fd4aa177f131d6c6f\*.tmp -> ]
[1 C:\windows\SoftwareDistribution\Download\22fd73a211fa6c1d4701d943d4e269e9\*.tmp files -> C:\windows\SoftwareDistribution\Download\22fd73a211fa6c1d4701d943d4e269e9\*.tmp -> ]
[1 C:\windows\SoftwareDistribution\Download\2a71341789a25c58614ce3d2d4959909\*.tmp files -> C:\windows\SoftwareDistribution\Download\2a71341789a25c58614ce3d2d4959909\*.tmp -> ]
[1 C:\windows\SoftwareDistribution\Download\40ad21d172f8472a7cd0054c7162ec3e\*.tmp files -> C:\windows\SoftwareDistribution\Download\40ad21d172f8472a7cd0054c7162ec3e\*.tmp -> ]
[1 C:\windows\SoftwareDistribution\Download\51463790424f1ebee097da7efb4bd6fe\*.tmp files -> C:\windows\SoftwareDistribution\Download\51463790424f1ebee097da7efb4bd6fe\*.tmp -> ]
[1 C:\windows\SoftwareDistribution\Download\5cb4d231a7ca6d84ff854c8b9b8865af\*.tmp files -> C:\windows\SoftwareDistribution\Download\5cb4d231a7ca6d84ff854c8b9b8865af\*.tmp -> ]
[1 C:\windows\SoftwareDistribution\Download\60980927f1538a388994d026f31ca72f\*.tmp files -> C:\windows\SoftwareDistribution\Download\60980927f1538a388994d026f31ca72f\*.tmp -> ]
[1 C:\windows\SoftwareDistribution\Download\710df4cda8080038ff775e3e9e476d4f\*.tmp files -> C:\windows\SoftwareDistribution\Download\710df4cda8080038ff775e3e9e476d4f\*.tmp -> ]
[1 C:\windows\SoftwareDistribution\Download\8db526ef36cf2f69cd68ac01b599bd18\*.tmp files -> C:\windows\SoftwareDistribution\Download\8db526ef36cf2f69cd68ac01b599bd18\*.tmp -> ]
[1 C:\windows\SoftwareDistribution\Download\8f195415b4b843f13a46d35bb0decbac\*.tmp files -> C:\windows\SoftwareDistribution\Download\8f195415b4b843f13a46d35bb0decbac\*.tmp -> ]
[1 C:\windows\SoftwareDistribution\Download\94161cb22681dd26124a51da7101576f\*.tmp files -> C:\windows\SoftwareDistribution\Download\94161cb22681dd26124a51da7101576f\*.tmp -> ]
[1 C:\windows\SoftwareDistribution\Download\a0a4cfb5cb3af146ad441fb09f967b2c\*.tmp files -> C:\windows\SoftwareDistribution\Download\a0a4cfb5cb3af146ad441fb09f967b2c\*.tmp -> ]
[1 C:\windows\SoftwareDistribution\Download\a397861a93d0ecdc515d887fcd34e8be\*.tmp files -> C:\windows\SoftwareDistribution\Download\a397861a93d0ecdc515d887fcd34e8be\*.tmp -> ]
[1 C:\windows\SoftwareDistribution\Download\a55e1a53a5b2736ed6d4560e5143524b\*.tmp files -> C:\windows\SoftwareDistribution\Download\a55e1a53a5b2736ed6d4560e5143524b\*.tmp -> ]
[1 C:\windows\SoftwareDistribution\Download\a7a1de40e6970116de18bf67cd084348\*.tmp files -> C:\windows\SoftwareDistribution\Download\a7a1de40e6970116de18bf67cd084348\*.tmp -> ]
[1 C:\windows\SoftwareDistribution\Download\ab7fb6af980e7d2a44a94b99be45af3a\*.tmp files -> C:\windows\SoftwareDistribution\Download\ab7fb6af980e7d2a44a94b99be45af3a\*.tmp -> ]
[1 C:\windows\SoftwareDistribution\Download\adda5b98ebfb0b3dfcefd459a6f2053e\*.tmp files -> C:\windows\SoftwareDistribution\Download\adda5b98ebfb0b3dfcefd459a6f2053e\*.tmp -> ]
[1 C:\windows\SoftwareDistribution\Download\b06d43ef1ad47f1ecbb69abdd61d49c8\*.tmp files -> C:\windows\SoftwareDistribution\Download\b06d43ef1ad47f1ecbb69abdd61d49c8\*.tmp -> ]
[1 C:\windows\SoftwareDistribution\Download\c266a5a5ef3011e235f88e9f42e86d4b\*.tmp files -> C:\windows\SoftwareDistribution\Download\c266a5a5ef3011e235f88e9f42e86d4b\*.tmp -> ]
[1 C:\windows\SoftwareDistribution\Download\ceb1937dd852874c8f265fa43d37d064\*.tmp files -> C:\windows\SoftwareDistribution\Download\ceb1937dd852874c8f265fa43d37d064\*.tmp -> ]
[1 C:\windows\SoftwareDistribution\Download\d00387fa20bf5ac8db3ac301306fc75d\*.tmp files -> C:\windows\SoftwareDistribution\Download\d00387fa20bf5ac8db3ac301306fc75d\*.tmp -> ]
[1 C:\windows\SoftwareDistribution\Download\e049e6462b8295b0012f2251f41988e8\*.tmp files -> C:\windows\SoftwareDistribution\Download\e049e6462b8295b0012f2251f41988e8\*.tmp -> ]
[1 C:\windows\SoftwareDistribution\Download\e2ce61d05a13071581f6b7dd8c0d82ac\*.tmp files -> C:\windows\SoftwareDistribution\Download\e2ce61d05a13071581f6b7dd8c0d82ac\*.tmp -> ]
[1 C:\windows\SoftwareDistribution\Download\e3aaec9858a582d21ced29b87a276347\*.tmp files -> C:\windows\SoftwareDistribution\Download\e3aaec9858a582d21ced29b87a276347\*.tmp -> ]
[1 C:\windows\SoftwareDistribution\Download\e3b8028f1dcc934be29b195d6130edb9\*.tmp files -> C:\windows\SoftwareDistribution\Download\e3b8028f1dcc934be29b195d6130edb9\*.tmp -> ]
[1 C:\windows\SoftwareDistribution\Download\f1b61dcfb3a11c472679e68923e165f2\*.tmp files -> C:\windows\SoftwareDistribution\Download\f1b61dcfb3a11c472679e68923e165f2\*.tmp -> ]
[1 C:\windows\SoftwareDistribution\Download\f3375b2ca9411258ad41fd3f1ae1ed17\*.tmp files -> C:\windows\SoftwareDistribution\Download\f3375b2ca9411258ad41fd3f1ae1ed17\*.tmp -> ]
[1 C:\windows\SoftwareDistribution\Download\fe5fb5884ec32a370b6af65fcecd3f70\*.tmp files -> C:\windows\SoftwareDistribution\Download\fe5fb5884ec32a370b6af65fcecd3f70\*.tmp -> ]
[1 C:\windows\SoftwareDistribution\Download\ffccc887133f8d4c2dbb4b0d8d2e25ef\*.tmp files -> C:\windows\SoftwareDistribution\Download\ffccc887133f8d4c2dbb4b0d8d2e25ef\*.tmp -> ]
< %SYSTEMDRIVE%\*.exe >
< %ALLUSERSPROFILE%\Application Data\*. >
< %ALLUSERSPROFILE%\Application Data\*.exe /s >
< %APPDATA%\*. >
[2013/03/04 11:14:01 | 000,000,000 | ---D | M] -- C:\Users\asus\AppData\Roaming\Adobe
[2010/12/26 21:02:01 | 000,000,000 | ---D | M] -- C:\Users\asus\AppData\Roaming\Asus
[2012/05/30 16:07:43 | 000,000,000 | ---D | M] -- C:\Users\asus\AppData\Roaming\Asus WebStorage
[2014/03/24 16:16:27 | 000,000,000 | ---D | M] -- C:\Users\asus\AppData\Roaming\AVG
[2011/05/22 21:15:53 | 000,000,000 | ---D | M] -- C:\Users\asus\AppData\Roaming\AVG8
[2011/05/23 00:20:28 | 000,000,000 | ---D | M] -- C:\Users\asus\AppData\Roaming\BS_Temp
[2012/12/11 18:05:28 | 000,000,000 | ---D | M] -- C:\Users\asus\AppData\Roaming\calibre
[2014/03/24 18:55:26 | 000,000,000 | ---D | M] -- C:\Users\asus\AppData\Roaming\DAEMON Tools Lite
[2014/03/21 19:20:03 | 000,000,000 | ---D | M] -- C:\Users\asus\AppData\Roaming\Dropbox
[2014/03/21 19:19:57 | 000,000,000 | ---D | M] -- C:\Users\asus\AppData\Roaming\DropboxMaster
[2009/12/26 10:09:02 | 000,000,000 | ---D | M] -- C:\Users\asus\AppData\Roaming\EeeStorageUploader
[2009/07/14 05:54:12 | 000,000,000 | ---D | M] -- C:\Users\asus\AppData\Roaming\Identities
[2009/08/29 04:21:06 | 000,000,000 | ---D | M] -- C:\Users\asus\AppData\Roaming\InstallShield
[2009/08/28 09:15:16 | 000,000,000 | ---D | M] -- C:\Users\asus\AppData\Roaming\Macromedia
[2014/03/23 21:06:20 | 000,000,000 | ---D | M] -- C:\Users\asus\AppData\Roaming\Malwarebytes
[2014/03/24 20:52:05 | 000,000,000 | --SD | M] -- C:\Users\asus\AppData\Roaming\Microsoft
[2013/03/08 07:34:30 | 000,000,000 | ---D | M] -- C:\Users\asus\AppData\Roaming\Mozilla
[2010/03/15 11:02:27 | 000,000,000 | ---D | M] -- C:\Users\asus\AppData\Roaming\OpenOffice.org
[2011/05/21 19:39:56 | 000,000,000 | ---D | M] -- C:\Users\asus\AppData\Roaming\Opera
[2014/03/25 17:38:37 | 000,000,000 | ---D | M] -- C:\Users\asus\AppData\Roaming\Origin
[2014/03/25 18:40:19 | 000,000,000 | ---D | M] -- C:\Users\asus\AppData\Roaming\Seznam.cz
[2011/03/11 08:51:20 | 000,000,000 | ---D | M] -- C:\Users\asus\AppData\Roaming\Skype
[2011/03/11 08:06:46 | 000,000,000 | ---D | M] -- C:\Users\asus\AppData\Roaming\skypePM
[2013/05/18 13:00:00 | 000,000,000 | ---D | M] -- C:\Users\asus\AppData\Roaming\Softplicity
[2011/05/22 20:16:39 | 000,000,000 | ---D | M] -- C:\Users\asus\AppData\Roaming\temp
[2010/02/23 19:30:36 | 000,000,000 | ---D | M] -- C:\Users\asus\AppData\Roaming\Template
[2011/05/23 00:20:34 | 000,000,000 | ---D | M] -- C:\Users\asus\AppData\Roaming\Update
[2014/03/27 15:53:17 | 000,000,000 | ---D | M] -- C:\Users\asus\AppData\Roaming\uTorrent
[2010/02/03 20:58:58 | 000,000,000 | ---D | M] -- C:\Users\asus\AppData\Roaming\Windows Live Writer
[2011/05/23 14:54:41 | 000,000,000 | ---D | M] -- C:\Users\asus\AppData\Roaming\WinRAR
< %APPDATA%\*.exe /s >
[2011/05/22 20:16:21 | 000,087,376 | ---- | M] (eCareme Technologies, Inc.) -- C:\Users\asus\AppData\Roaming\Asus WebStorage\EeeStorageUpdate.EXE
[2014/01/08 15:55:46 | 016,333,592 | ---- | M] (ASUS Cloud Corporation) -- C:\Users\asus\AppData\Roaming\Asus WebStorage\Update\ASUSWebStorage3.0.143.296.exe
[2014/03/19 13:17:02 | 032,667,896 | ---- | M] (Dropbox, Inc.) -- C:\Users\asus\AppData\Roaming\Dropbox\bin\Dropbox.exe
[2014/03/19 13:18:14 | 000,244,648 | ---- | M] (Dropbox, Inc.) -- C:\Users\asus\AppData\Roaming\Dropbox\bin\DropboxUninstaller.exe
[2014/03/19 13:17:06 | 000,143,616 | ---- | M] (Dropbox, Inc.) -- C:\Users\asus\AppData\Roaming\Dropbox\bin\DropboxUpdateHelper.exe
[2014/03/21 19:23:08 | 000,054,632 | ---- | M] (Adobe Systems Inc.) -- C:\Users\asus\AppData\Roaming\Macromedia\Flash Player\www.macromedia.com\bin\airappinstaller\airappinstaller.exe
[2014/03/24 20:52:05 | 000,010,134 | R--- | M] () -- C:\Users\asus\AppData\Roaming\Microsoft\Installer\{E3E71D07-CD27-46CB-8448-16D4FB29AA13}\ARPPRODUCTICON.exe
[2008/12/02 07:40:14 | 000,028,672 | R--- | M] () -- C:\Users\asus\AppData\Roaming\Microsoft\Windows\Templates\E\UninstallMSI.exe
[2008/12/01 12:29:00 | 000,014,336 | R--- | M] () -- C:\Users\asus\AppData\Roaming\Microsoft\Windows\Templates\E\UninstallMSI32.exe
[2008/12/01 12:29:00 | 000,016,896 | R--- | M] () -- C:\Users\asus\AppData\Roaming\Microsoft\Windows\Templates\E\UninstallMSI64.exe
[2009/03/20 06:09:32 | 001,360,008 | R--- | M] () -- C:\Users\asus\AppData\Roaming\Microsoft\Windows\Templates\E\USBAutoRun.exe
[2013/05/16 14:25:04 | 001,062,472 | ---- | M] () -- C:\Users\asus\AppData\Roaming\Seznam.cz\szninstall.exe
[2013/05/16 14:26:24 | 002,589,256 | ---- | M] () -- C:\Users\asus\AppData\Roaming\Seznam.cz\sznsetup.exe
[2013/04/16 12:52:34 | 000,055,808 | ---- | M] () -- C:\Users\asus\AppData\Roaming\Seznam.cz\bin\ffkill.exe
[2013/04/29 11:53:34 | 000,045,560 | ---- | M] () -- C:\Users\asus\AppData\Roaming\Seznam.cz\bin\listicka-x64.exe
[2013/04/12 09:13:24 | 000,457,208 | ---- | M] () -- C:\Users\asus\AppData\Roaming\Seznam.cz\bin\szndesktop.exe
[2013/04/12 09:10:22 | 000,092,664 | ---- | M] () -- C:\Users\asus\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe
[2014/03/22 10:59:48 | 001,208,152 | ---- | M] (BitTorrent Inc.) -- C:\Users\asus\AppData\Roaming\uTorrent\uTorrent.exe
[2014/03/22 10:58:13 | 001,853,008 | ---- | M] (BitTorrent Inc.) -- C:\Users\asus\AppData\Roaming\uTorrent\updates\3.4.0_30635.exe
[2014/03/22 10:59:48 | 001,208,152 | ---- | M] (BitTorrent Inc.) -- C:\Users\asus\AppData\Roaming\uTorrent\updates\3.4.0_30660.exe
< %systemroot%\*. /mp /s >
< %systemroot%\system32\*.dll /lockedfiles >
< %systemroot%\Tasks\*.job /lockedfiles >
< %systemroot%\system32\drivers\*.sys /lockedfiles >
< %systemroot%\System32\config\*.sav >
< %systemroot%\system32\*.dll /lockedfiles >
< %systemroot%\system32\drivers\*.sys /3 >
[2014/03/25 20:07:16 | 000,052,928 | ---- | M] (StdLib) -- C:\windows\system32\drivers\wStLibG.sys
< %systemroot%\system32\*.* /3 >
[2014/03/28 09:38:11 | 000,009,920 | -H-- | M] () -- C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2014/03/28 09:38:11 | 000,009,920 | -H-- | M] () -- C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2014/03/26 19:26:06 | 000,133,570 | ---- | M] () -- C:\windows\system32\perfc005.dat
[2014/03/26 19:26:06 | 000,115,298 | ---- | M] () -- C:\windows\system32\perfc009.dat
[2014/03/26 19:26:06 | 000,648,242 | ---- | M] () -- C:\windows\system32\perfh005.dat
[2014/03/26 19:26:06 | 000,633,436 | ---- | M] () -- C:\windows\system32\perfh009.dat
[2014/03/26 19:26:06 | 001,525,756 | ---- | M] () -- C:\windows\system32\PerfStringBackup.INI
< %SYSTEMDRIVE%\*.exe >
< >
< HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s >
"EA Core" = "C:\Program Files\Electronic Arts\EADM\Core.exe" -silent
< reg query "HKLM\Software\Microsoft\Windows NT\CurrentVersion\winlogon" /v GinaDLL /c >
< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv" /v ImagePath /c >
HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\SERVICES\WUAUSERV
IMAGEPATH REG_EXPAND_SZ %systemroot%\system32\svchost.exe -k netsvcs
< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS" /v ImagePath /c >
HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\SERVICES\BITS
IMAGEPATH REG_EXPAND_SZ %SystemRoot%\System32\svchost.exe -k netsvcs
< >
< type c:\boot.ini >> test.txt /c >
< %SystemDrive%\PhysicalMBR.bin /md5 >
[2014/03/28 09:41:57 | 000,000,512 | ---- | M] () MD5=4C0D28FCDA9853029213EB7715BF5C03 -- C:\PhysicalMBR.bin
< >
< *crack* /s >
[2010/05/16 07:13:47 | 005,100,831 | ---- | M] () -- \Users\Public\Music\Eminem Feat. Dr. Dre & 50 Cent - Crack A Bottle (Prod. By Dr. Dre) (Official) ( 2009 ).mp3
[2009/02/18 13:01:16 | 006,941,133 | ---- | M] () -- \Users\Public\Music\Eminem-Crack a bottle.mp3
< *keygen* /s >
< *AntiWPA* /s >
< *loader* /s >
[2013/11/18 13:04:52 | 000,002,545 | ---- | M] () -- \AdwCleaner\Quarantine\C\Program Files\Mobogenie\templates\web\images\prettyPhoto\dark_rounded\loader.gif.vir
[2013/11/18 13:04:52 | 000,002,545 | ---- | M] () -- \AdwCleaner\Quarantine\C\Program Files\Mobogenie\templates\web\images\prettyPhoto\dark_square\loader.gif.vir
[2013/11/18 13:04:52 | 000,006,331 | ---- | M] () -- \AdwCleaner\Quarantine\C\Program Files\Mobogenie\templates\web\images\prettyPhoto\default\loader.gif.vir
[2013/11/18 13:04:52 | 000,002,545 | ---- | M] () -- \AdwCleaner\Quarantine\C\Program Files\Mobogenie\templates\web\images\prettyPhoto\facebook\loader.gif.vir
[2013/11/18 13:04:52 | 000,002,545 | ---- | M] () -- \AdwCleaner\Quarantine\C\Program Files\Mobogenie\templates\web\images\prettyPhoto\light_rounded\loader.gif.vir
[2013/11/18 13:04:52 | 000,002,545 | ---- | M] () -- \AdwCleaner\Quarantine\C\Program Files\Mobogenie\templates\web\images\prettyPhoto\light_square\loader.gif.vir
[2009/07/31 09:08:40 | 000,079,120 | ---- | M] () -- \Program Files\ASUS\Asus WebStorage\EeeStorageUploader.exe
[2010/09/01 09:49:08 | 000,014,666 | ---- | M] () -- \Program Files\ASUS\Asus WebStorage\3.0.108.222\panel\assets\images\uploader_photo.png
[2010/09/14 08:15:20 | 000,000,946 | ---- | M] () -- \Program Files\ASUS\Asus WebStorage\3.0.108.222\panel\assets\images\uploader_title.png
[2010/09/01 09:49:08 | 000,014,666 | ---- | M] () -- \Program Files\ASUS\Asus WebStorage\3.0.84.161\panel\assets\images\uploader_photo.png
[2010/09/14 08:15:20 | 000,000,946 | ---- | M] () -- \Program Files\ASUS\Asus WebStorage\3.0.84.161\panel\assets\images\uploader_title.png
[2006/04/18 19:04:14 | 000,034,304 | ---- | M] () -- \Program Files\Canon\Easy-WebPrint\EWPBrowseLoader.dll
[2013/05/09 01:40:52 | 000,268,440 | ---- | M] () -- \Program Files\Common Files\microsoft shared\VSTO\10.0\VSTOLoader.dll
[2013/05/09 01:40:52 | 000,019,080 | ---- | M] () -- \Program Files\Common Files\microsoft shared\VSTO\10.0\1033\VSTOLoaderUI.dll
[2011/01/15 15:42:09 | 000,005,795 | ---- | M] () -- \Program Files\ICQ7.2\imApp\theme\IMAGES\XtraPreloader\loader.jpg
[2011/01/15 15:42:09 | 000,005,520 | ---- | M] () -- \Program Files\ICQ7.2\imApp\theme\IMAGES\XtraPreloader\loader.swf
[2011/01/15 15:42:10 | 000,004,180 | ---- | M] () -- \Program Files\ICQ7.2\imApp\theme\IMAGES\XtraPreloader\zlango-preloader.png
[2011/01/15 15:42:09 | 000,005,520 | ---- | M] () -- \Program Files\ICQ7.2\imApp\theme\MUICoreLib\xtraLoader.swf
[2011/01/18 17:26:14 | 000,000,402 | ---- | M] () -- \Program Files\ICQ7.2\Xtraz\icq\content\icq_profile\preloader.html
[2011/01/18 17:26:22 | 000,000,402 | ---- | M] () -- \Program Files\ICQ7.2\Xtraz\icq\content\profile_forms\preloader.html
[2011/01/18 17:26:20 | 000,000,402 | ---- | M] () -- \Program Files\ICQ7.2\Xtraz\icq\content\profile_lightboxs\preloader.html
[2013/01/09 11:41:56 | 000,030,608 | ---- | M] () -- \Program Files\Seznam.cz\distribution\install\cz.seznam.software.libfoxloader-3.0.0-win32.zip
[2008/02/25 07:05:22 | 000,856,064 | ---- | M] () -- \Program Files\The KMPlayer\ImLoader.dll
[2010/03/15 10:28:24 | 000,045,056 | ---- | M] () -- \Program Files\WinRAR\RarExtLoader.exe
[2014/03/24 18:54:26 | 000,031,516 | ---- | M] () -- \Users\asus\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\AGTBHAZM\cz.seznam.software.libfoxloader-3.1.2-win32[1].zip
[2013/03/29 12:37:34 | 000,059,384 | ---- | M] () -- \Users\asus\AppData\Roaming\Seznam.cz\bin\31586libfoxloader.dll
[2013/04/15 12:32:10 | 000,060,416 | ---- | M] () -- \Users\asus\AppData\Roaming\Seznam.cz\bin\31622libfoxloader-x64.dll
[2014/03/25 18:39:35 | 000,000,165 | ---- | M] () -- \Users\asus\AppData\Roaming\Seznam.cz\conf\szndesktop.d\libfoxloader.conf
[2013/01/09 11:41:56 | 000,030,608 | ---- | M] () -- \Users\asus\AppData\Roaming\Seznam.cz\install\cz.seznam.software.libfoxloader-3.0.0-win32.zip
[2013/03/25 15:27:20 | 000,000,665 | ---- | M] () -- \Users\asus\AppData\Roaming\Seznam.cz\uninstall\cz_seznam_software_libfoxloader_3_1_2.install.bat
[2013/03/25 15:27:26 | 000,000,117 | ---- | M] () -- \Users\asus\AppData\Roaming\Seznam.cz\uninstall\cz_seznam_software_libfoxloader_3_1_2.uninstall.bat
[2014/03/08 15:33:54 | 000,017,408 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_32\Microsoft.O29577370#\bf1fece0f8125c1fe7bb0f6bb90642c2\Microsoft.Office.InfoPath.CLRLoader.ni.dll
[2014/03/08 15:33:54 | 000,000,796 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_32\Microsoft.O29577370#\bf1fece0f8125c1fe7bb0f6bb90642c2\Microsoft.Office.InfoPath.CLRLoader.ni.dll.aux
[2012/10/01 20:30:04 | 000,019,048 | R--- | M] () -- \Windows\Installer\$PatchCache$\Managed\00005109110000000000000000F01FEC\15.0.4420\FL_VSTOLoaderUI_dll_x86_ln.3643236F_FC70_11D3_A536_0090278A1BB8.923C1899_09AE_418B_B39D_A7A9EB6A7951
[2012/10/01 20:30:04 | 000,268,384 | R--- | M] () -- \Windows\Installer\$PatchCache$\Managed\00005109110000000000000000F01FEC\15.0.4420\VSTOLoader_dll_x86.3643236F_FC70_11D3_A536_0090278A1BB8.923C1899_09AE_418B_B39D_A7A9EB6A7951
[2013/12/02 19:50:13 | 000,015,528 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\Microsoft.Office.InfoPath.CLRLoader\v4.0_15.0.0.0__71e9bce111e9429c\Microsoft.Office.Infopath.CLRLoader.dll
[2013/08/02 02:48:15 | 000,003,584 | -H-- | M] () -- \Windows\System32\api-ms-win-core-libraryloader-l1-1-0.dll
[2009/07/14 02:15:12 | 000,038,400 | ---- | M] () -- \Windows\System32\dmloader.dll
[2009/07/14 05:54:01 | 000,003,532 | ---- | M] () -- \Windows\System32\Tasks\Microsoft\Windows\WindowsColorSystem\Calibration Loader
[2009/06/20 20:13:59 | 000,002,883 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_3318c4cd5e5d0f86.manifest
[2009/06/20 20:13:59 | 000,034,896 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_3318c4cd5e5d0f86_winload.exe.mui_3bc5b827
[2009/06/20 20:13:59 | 000,030,272 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_3318c4cd5e5d0f86_winresume.exe.mui_ff8b5358
[2011/05/22 22:25:58 | 000,004,225 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.17514_none_5d2e241dcae8f953.manifest
[2011/05/22 22:25:59 | 000,508,904 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.17514_none_5d2e241dcae8f953_winload.exe_75835076
[2011/05/22 22:26:00 | 000,442,720 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.17514_none_5d2e241dcae8f953_winresume.exe_85cd1215
[2009/07/14 03:17:38 | 000,002,894 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-s..ive-blackbox-loader_31bf3856ad364e35_6.1.7600.16385_none_6b097e5cb26f7a23.manifest
[2009/07/14 03:17:38 | 000,017,472 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-s..ive-blackbox-loader_31bf3856ad364e35_6.1.7600.16385_none_6b097e5cb26f7a23_spldr.sys_98bd87a0
[2009/06/20 20:13:08 | 000,002,883 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_3318c4cd5e5d0f86.manifest
[2010/11/20 04:02:40 | 000,004,225 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.17514_none_5d2e241dcae8f953.manifest
[2009/07/14 02:52:31 | 000,002,894 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-s..ive-blackbox-loader_31bf3856ad364e35_6.1.7600.16385_none_6b097e5cb26f7a23.manifest
[2009/07/14 02:15:12 | 000,038,400 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-audio-dmusic_31bf3856ad364e35_6.1.7600.16385_none_45ca7214f0f664cb\dmloader.dll
[2009/07/14 02:03:49 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.16385_none_0a884619dd2388ad\api-ms-win-core-libraryloader-l1-1-0.dll
[2012/11/30 05:45:15 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.18015_none_0cba39e5da114d7c\api-ms-win-core-libraryloader-l1-1-0.dll
[2013/08/02 02:48:15 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.18229_none_0cb36eedda15c917\api-ms-win-core-libraryloader-l1-1-0.dll
[2012/11/30 05:46:37 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.22177_none_0d04f7bcf35dc79a\api-ms-win-core-libraryloader-l1-1-0.dll
[2013/08/02 06:53:29 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.22411_none_0d3fdb3af3327f5f\api-ms-win-core-libraryloader-l1-1-0.dll
< *minodlogin* /s >
< *tnod* /s >
< *AutoKMS* /s >
< *activator* /s >
< *serial* /s >
[2013/09/13 06:01:54 | 000,167,528 | ---- | M] () -- \Program Files\Microsoft Office\Office15\ADDINS\PowerPivot Excel Add-in\Microsoft.AnalysisServices.Excel.BackEnd.XmlSerializers.dll
[2013/09/13 06:01:54 | 000,210,024 | ---- | M] () -- \Program Files\Microsoft Office\Office15\ADDINS\PowerPivot Excel Add-in\Microsoft.AnalysisServices.Excel.Common.FrontEnd.XmlSerializers.dll
[2014/02/13 22:57:42 | 000,434,368 | ---- | M] () -- \Program Files\Microsoft Silverlight\5.1.30214.0\System.Runtime.Serialization.dll
[2014/03/20 22:12:50 | 001,164,288 | ---- | M] () -- \Program Files\Microsoft Silverlight\5.1.30214.0\System.Runtime.Serialization.ni.dll
[2012/10/05 11:53:23 | 000,970,752 | ---- | M] () -- \Program Files\Reference Assemblies\Microsoft\Framework\v3.0\System.Runtime.Serialization.dll
[2010/11/05 02:53:39 | 000,090,112 | ---- | M] () -- \Program Files\Reference Assemblies\Microsoft\Framework\v3.0\cs\System.RunTime.Serialization.Resources.dll
[2010/04/14 18:20:46 | 000,415,592 | ---- | M] () -- \Program Files\Windows Live\Mesh\System.Runtime.Serialization.dll
[2010/04/14 18:20:46 | 000,141,168 | ---- | M] () -- \Program Files\Windows Live\Mesh\System.Runtime.Serialization.Json.dll
[2010/04/14 18:20:46 | 000,321,376 | ---- | M] () -- \Program Files\Windows Live\Mesh\System.Xml.Serialization.dll
[2012/11/22 13:12:29 | 002,647,040 | ---- | M] () -- \System Volume Information\SystemRestore\FRStaging\Windows\assembly\NativeImages_v4.0.30319_32\System.Runtime.Seri#\0d2c8da8749c683b47f01101c9ea26d5\System.Runtime.Serialization.ni.dll
[2012/11/22 13:12:48 | 000,311,296 | ---- | M] () -- \System Volume Information\SystemRestore\FRStaging\Windows\assembly\NativeImages_v4.0.30319_32\System.Runtime.Seri#\87ac195467372a8cee1c388028e15606\System.Runtime.Serialization.Formatters.Soap.ni.dll
[2012/11/22 13:20:12 | 000,009,216 | ---- | M] () -- \System Volume Information\SystemRestore\FRStaging\Windows\assembly\NativeImages_v4.0.30319_32\System.Xml.Serializ#\e245e7c9819fa2e66c0403b82c2897d7\System.Xml.Serialization.ni.dll
[2009/06/20 20:13:48 | 000,090,112 | ---- | M] () -- \System Volume Information\SystemRestore\FRStaging\Windows\winsxs\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7600.16385_cs-cz_34555b4d83cf58b0\System.RunTime.Serialization.Resources.dll
[2010/11/05 02:52:27 | 000,970,752 | ---- | M] () -- \System Volume Information\SystemRestore\FRStaging\Windows\winsxs\msil_system.runtime.serialization_b77a5c561934e089_6.1.7601.17514_none_d6c257b29c81807f\System.Runtime.Serialization.dll
[2010/11/05 02:52:27 | 000,970,752 | ---- | M] () -- \System Volume Information\SystemRestore\FRStaging\Windows\winsxs\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.17514_none_db9d037fdd581ac1\System.Runtime.Serialization.dll
[2014/03/21 13:42:49 | 000,003,608 | ---- | M] () -- \Users\asus\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.serialzone.cz_0.localstorage-journal
[2009/06/20 20:13:40 | 000,011,776 | ---- | M] () -- \Windows\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap.resources\2.0.0.0_cs_b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2009/06/10 22:23:19 | 000,131,072 | ---- | M] () -- \Windows\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap\2.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.dll
[2010/11/13 02:55:26 | 000,090,112 | ---- | M] () -- \Windows\assembly\GAC_MSIL\system.runtime.serialization.resources\3.0.0.0_cs_b77a5c561934e089\System.RunTime.Serialization.Resources.dll
[2012/10/05 11:53:23 | 000,970,752 | ---- | M] () -- \Windows\assembly\GAC_MSIL\System.Runtime.Serialization\3.0.0.0__b77a5c561934e089\System.Runtime.Serialization.dll
[2014/03/06 12:43:54 | 000,310,784 | ---- | M] () -- \Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Seri#\553e7bfc9cac5e4feaa83d8ee1e187bd\System.Runtime.Serialization.Formatters.Soap.ni.dll
[2014/03/06 13:41:49 | 002,347,008 | ---- | M] () -- \Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Seri#\f177ea74036d5fdc6c6b9c967dc877cf\System.Runtime.Serialization.ni.dll
[2014/03/07 09:08:07 | 000,309,760 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_32\System.Runt9064068c#\abb3fbf787b74b7d2513a8c409b5ef74\System.Runtime.Serialization.Formatters.Soap.ni.dll
[2014/03/07 09:08:07 | 000,000,580 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_32\System.Runt9064068c#\abb3fbf787b74b7d2513a8c409b5ef74\System.Runtime.Serialization.Formatters.Soap.ni.dll.aux
[2014/03/07 09:10:27 | 002,825,216 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_32\System.Runteb92aa12#\f6d7bb59f318c130d68816a89335d05e\System.Runtime.Serialization.ni.dll
[2014/03/07 09:10:27 | 000,001,308 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_32\System.Runteb92aa12#\f6d7bb59f318c130d68816a89335d05e\System.Runtime.Serialization.ni.dll.aux
[2014/03/08 15:48:17 | 000,026,624 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_32\System.Xml.84e525b7#\94ce7a3b39b335283a0087f9964e9099\System.Xml.Serialization.ni.dll
[2014/03/08 15:48:17 | 000,000,376 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_32\System.Xml.84e525b7#\94ce7a3b39b335283a0087f9964e9099\System.Xml.Serialization.ni.dll.aux
[2012/10/01 20:32:44 | 000,166,864 | R--- | M] () -- \Windows\Installer\$PatchCache$\Managed\00005109110000000000000000F01FEC\15.0.4420\AS_Client_BackEnd_XmlSerializers_dll_32.B4988E63_555A_4DEB_A5F4_A9E5864569F1
[2012/10/01 20:32:44 | 000,209,360 | R--- | M] () -- \Windows\Installer\$PatchCache$\Managed\00005109110000000000000000F01FEC\15.0.4420\AS_Client_Common_FrontEnd_XmlSerializers_dll_32.B4988E63_555A_4DEB_A5F4_A9E5864569F1
[2013/09/11 22:33:38 | 000,027,920 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap.resources\v4.0_4.0.0.0_cs_b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2013/09/11 22:33:38 | 000,133,344 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.dll
[2013/09/11 21:21:54 | 000,022,176 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization.Json\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Json.dll
[2013/09/11 21:21:54 | 000,022,208 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization.Primitives\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Primitives.dll
[2013/09/11 22:33:38 | 000,113,864 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.RunTime.Serialization.resources\v4.0_4.0.0.0_cs_b77a5c561934e089\System.RunTime.Serialization.resources.dll
[2013/09/11 21:21:54 | 000,022,176 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization.Xml\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Xml.dll
[2013/09/11 22:33:38 | 001,052,320 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization\v4.0_4.0.0.0__b77a5c561934e089\System.Runtime.Serialization.dll
[2013/09/11 21:21:54 | 000,036,480 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Xml.Serialization\v4.0_4.0.0.0__b77a5c561934e089\System.Xml.Serialization.dll
[2013/09/11 21:21:54 | 000,022,656 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Xml.XmlSerializer\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Xml.XmlSerializer.dll
[2009/06/10 22:23:19 | 000,131,072 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v2.0.50727\System.Runtime.Serialization.Formatters.Soap.dll
[2010/11/05 02:53:33 | 000,011,776 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v2.0.50727\cs\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2012/10/05 11:53:24 | 000,970,752 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\System.Runtime.Serialization.dll
[2013/09/11 22:33:38 | 001,052,320 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\System.Runtime.Serialization.dll
[2013/09/11 22:33:38 | 000,133,344 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\System.Runtime.Serialization.Formatters.Soap.dll
[2013/09/11 21:21:54 | 000,022,176 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\System.Runtime.Serialization.Json.dll
[2013/09/11 21:21:54 | 000,022,208 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\System.Runtime.Serialization.Primitives.dll
[2013/09/11 21:21:54 | 000,022,176 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\System.Runtime.Serialization.Xml.dll
[2013/09/11 21:21:54 | 000,036,480 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\System.Xml.Serialization.dll
[2013/09/11 21:21:54 | 000,022,656 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\System.Xml.XmlSerializer.dll
[2013/09/11 22:33:38 | 000,027,920 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\cs\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2013/09/11 22:33:38 | 000,113,864 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\cs\System.RunTime.Serialization.resources.dll
[2009/07/14 02:16:13 | 000,015,360 | ---- | M] () -- \Windows\System32\serialui.dll
[2009/06/20 20:13:36 | 000,005,120 | ---- | M] () -- \Windows\System32\cs-CZ\serialui.dll.mui
[2009/07/14 00:45:33 | 000,083,456 | ---- | M] () -- \Windows\System32\drivers\serial.sys
[2009/06/20 20:13:45 | 000,009,728 | ---- | M] () -- \Windows\System32\drivers\cs-CZ\serial.sys.mui
[2009/07/13 23:13:45 | 001,068,032 | ---- | M] () -- \Windows\System32\DriverStore\FileRepository\mdmmotsm.inf_x86_neutral_c1415d9789c54b89\smserial.sys
[2009/07/14 00:45:33 | 000,083,456 | ---- | M] () -- \Windows\System32\DriverStore\FileRepository\msports.inf_x86_neutral_c1a802e06677f73f\serial.sys
[2009/07/13 23:09:18 | 000,031,232 | ---- | M] () -- \Windows\System32\DriverStore\FileRepository\smartcrd.inf_x86_neutral_63e72c669d043f14\grserial.sys
[2009/07/14 03:18:03 | 000,002,762 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..gertransport-serial_31bf3856ad364e35_6.1.7600.16385_none_118be3420dfe8486.manifest
[2009/07/14 03:18:03 | 000,015,952 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..gertransport-serial_31bf3856ad364e35_6.1.7600.16385_none_118be3420dfe8486_kdcom.dll_db5e7744
[2009/06/20 20:13:58 | 000,005,120 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-u..em-config.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_4e4137b544fe59ed_serialui.dll.mui_7d29d2a3
[2009/07/14 03:18:51 | 000,015,360 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-unimodem-config_31bf3856ad364e35_6.1.7600.16385_none_f4d7f7b17ffe522a_serialui.dll_bea29328
[2010/11/20 04:06:16 | 000,002,226 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.ref_b77a5c561934e089_6.1.7601.17514_none_a67f221874da7f4c.manifest
[2012/10/05 18:15:39 | 000,002,226 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.ref_b77a5c561934e089_6.1.7601.17966_none_a683f56a74d63285.manifest
[2012/10/05 18:17:50 | 000,002,226 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.ref_b77a5c561934e089_6.1.7601.22126_none_8fb250ac8e81277d.manifest
[2009/06/20 20:12:58 | 000,001,626 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7600.16385_cs-cz_34555b4d83cf58b0.manifest
[2012/10/05 20:04:43 | 000,001,626 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.17966_cs-cz_342f3c238422529f.manifest
[2012/10/05 20:02:24 | 000,001,626 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.22126_cs-cz_1d5d97659dcd4797.manifest
[2010/11/20 04:05:38 | 000,001,985 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization_b77a5c561934e089_6.1.7601.17514_none_d6c257b29c81807f.manifest
[2012/10/05 18:15:03 | 000,001,985 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization_b77a5c561934e089_6.1.7601.17966_none_d6c72b049c7d33b8.manifest
[2012/10/05 18:17:15 | 000,001,985 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization_b77a5c561934e089_6.1.7601.22126_none_bff58646b62828b0.manifest
[2009/07/14 02:49:26 | 000,002,762 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..gertransport-serial_31bf3856ad364e35_6.1.7600.16385_none_118be3420dfe8486.manifest
[2009/07/14 02:45:27 | 000,000,866 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft.windows.h..tserial-driverclass_31bf3856ad364e35_6.1.7600.16385_none_2c93290b67c98d09.manifest
[2010/11/20 04:10:46 | 000,002,260 | ---- | M] () -- \Windows\winsxs\Manifests\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.17514_none_db9d037fdd581ac1.manifest
[2012/10/05 18:19:53 | 000,002,260 | ---- | M] () -- \Windows\winsxs\Manifests\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.17966_none_dba1d6d1dd53cdfa.manifest
[2012/10/05 18:22:10 | 000,002,260 | ---- | M] () -- \Windows\winsxs\Manifests\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.22126_none_c4d03213f6fec2f2.manifest
[2009/06/10 22:23:19 | 000,131,072 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.seri..ion.formatters.soap_b03f5f7f11d50a3a_6.1.7600.16385_none_1c9a3ec1e01c684b\System.Runtime.Serialization.Formatters.Soap.dll
[2009/06/20 20:13:40 | 000,011,776 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.seri..ters.soap.resources_b03f5f7f11d50a3a_6.1.7600.16385_cs-cz_d5c3552dd9b47144\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2010/11/05 02:52:39 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.ref_b77a5c561934e089_6.1.7601.17514_none_a67f221874da7f4c\System.Runtime.Serialization.dll
[2012/10/05 11:53:24 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.ref_b77a5c561934e089_6.1.7601.17966_none_a683f56a74d63285\System.Runtime.Serialization.dll
[2012/10/05 11:56:07 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.ref_b77a5c561934e089_6.1.7601.22126_none_8fb250ac8e81277d\System.Runtime.Serialization.dll
[2009/06/20 20:13:48 | 000,090,112 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7600.16385_cs-cz_34555b4d83cf58b0\System.RunTime.Serialization.Resources.dll
[2010/11/13 02:55:26 | 000,090,112 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.17966_cs-cz_342f3c238422529f\System.RunTime.Serialization.Resources.dll
[2010/11/13 03:37:50 | 000,090,112 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.22126_cs-cz_1d5d97659dcd4797\System.RunTime.Serialization.Resources.dll
[2010/11/05 02:52:27 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization_b77a5c561934e089_6.1.7601.17514_none_d6c257b29c81807f\System.Runtime.Serialization.dll
[2012/10/05 11:53:23 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization_b77a5c561934e089_6.1.7601.17966_none_d6c72b049c7d33b8\System.Runtime.Serialization.dll
[2012/10/05 11:56:05 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization_b77a5c561934e089_6.1.7601.22126_none_bff58646b62828b0\System.Runtime.Serialization.dll
[2009/07/13 23:13:45 | 001,068,032 | ---- | M] () -- \Windows\winsxs\x86_mdmmotsm.inf_31bf3856ad364e35_6.1.7600.16385_none_7a97936f8a972896\smserial.sys
[2010/11/05 02:53:33 | 000,011,776 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-n..xcorecomp.resources_31bf3856ad364e35_6.1.7601.17514_cs-cz_c233d4df09982c29\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2009/06/20 20:13:36 | 000,005,120 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-u..em-config.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_4e4137b544fe59ed\serialui.dll.mui
[2009/07/14 02:16:13 | 000,015,360 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-unimodem-config_31bf3856ad364e35_6.1.7600.16385_none_f4d7f7b17ffe522a\serialui.dll
[2010/11/05 02:53:39 | 000,090,112 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-wcfcorecomp.resources_31bf3856ad364e35_6.1.7601.17514_cs-cz_5f7b7c7cb0c0f266\System.RunTime.Serialization.Resources.dll
[2009/06/20 20:13:45 | 000,009,728 | ---- | M] () -- \Windows\winsxs\x86_msports.inf.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_c48c78a9ad8ff996\serial.sys.mui
[2009/07/14 00:45:33 | 000,083,456 | ---- | M] () -- \Windows\winsxs\x86_msports.inf_31bf3856ad364e35_6.1.7600.16385_none_f86e06d519b1d9a4\serial.sys
[2009/07/13 23:09:18 | 000,031,232 | ---- | M] () -- \Windows\winsxs\x86_smartcrd.inf_31bf3856ad364e35_6.1.7600.16385_none_7280378295916274\grserial.sys
[2010/11/05 02:52:27 | 000,970,752 | ---- | M] () -- \Windows\winsxs\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.17514_none_db9d037fdd581ac1\System.Runtime.Serialization.dll
[2012/10/05 11:53:23 | 000,970,752 | ---- | M] () -- \Windows\winsxs\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.17966_none_dba1d6d1dd53cdfa\System.Runtime.Serialization.dll
[2012/10/05 11:56:05 | 000,970,752 | ---- | M] () -- \Windows\winsxs\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.22126_none_c4d03213f6fec2f2\System.Runtime.Serialization.dll
< *w7lxe* /s >
========== Alternate Data Streams ==========
@Alternate Data Stream - 6248 bytes -> C:\windows\PLA\System\System Diagnostics.xml:0v1ieca3Feahez0jAwxjjk5uRh
< End of report >
Re: Program blokovan zasadami skupiny co stím ?
Druhý :
OTL Extras logfile created on: 3/28/2014 9:37:19 AM - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\asus\Desktop
Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.11.9600.16521)
Locale: 00000409 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy
1.99 Gb Total Physical Memory | 0.98 Gb Available Physical Memory | 49.40% Memory free
3.98 Gb Paging File | 2.84 Gb Available in Paging File | 71.40% Paging File free
Paging file location(s): d:\pagefile.sys 0 0 [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\windows | %ProgramFiles% = C:\Program Files
Drive C: | 100.00 Gb Total Space | 31.65 Gb Free Space | 31.65% Space Free | Partition Type: NTFS
Drive D: | 122.87 Gb Total Space | 118.93 Gb Free Space | 96.79% Space Free | Partition Type: NTFS
Computer Name: KRISTINA_ASUS | User Name: asus | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Extra Registry (SafeList) ==========
========== File Associations ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\windows\System32\control.exe (Microsoft Corporation)
.hlp [@ = hlpfile] -- C:\windows\winhlp32.exe (Microsoft Corporation)
[HKEY_USERS\S-1-5-21-2318946186-1565977137-1874626250-1000\SOFTWARE\Classes\<extension>]
.html [@ = ChromeHTML] -- Reg Error: Key error. File not found
========== Shell Spawning ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
htmlfile [edit] -- "C:\Program Files\Microsoft Office\Office15\msohtmed.exe" %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
========== Security Center Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
"FirewallDisableNotify" = 0
"AntiVirusDisableNotify" = 0
"UpdatesDisableNotify" = 0
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = Reg Error: Unknown registry data type -- File not found
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]
========== System Restore Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0
========== Firewall Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile]
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
========== Authorized Applications List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
========== Vista Active Open Ports Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{0294BB2F-6178-459D-8C46-8D1C40D6AD6B}" = rport=445 | protocol=6 | dir=out | app=system |
"{057550CC-1C7E-4C7B-A2F8-3A8DDC978C8C}" = lport=138 | protocol=17 | dir=in | app=system |
"{08E024BB-596A-4DFF-A430-159062EB67CE}" = lport=10243 | protocol=6 | dir=in | app=system |
"{19A5737B-0BEE-43C8-BCD3-3CC714AA4FD3}" = lport=2177 | protocol=6 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{1C5A47A8-AA4E-408B-98D5-5E339512B923}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{25B9D31D-64EC-44F5-900B-17177C3E5D3C}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{295EF879-34FC-4A05-A484-51AA1443280E}" = lport=445 | protocol=6 | dir=in | app=system |
"{2AC72DA0-17CB-4E2F-8F33-7659D42E6A2C}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{2FA65B31-3A9D-4C20-AFC6-469495F0EF44}" = rport=2177 | protocol=6 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{4084E937-EAAA-47EE-9520-7BE7CE434C09}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
"{4BF5EB07-06A2-40E2-B5B6-244EF5C49A0F}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 |
"{5456EA1E-AF45-48BD-9C96-AB99A6CCF1D9}" = lport=139 | protocol=6 | dir=in | app=system |
"{6364B77A-8796-4078-B3CC-5963A3E70B4F}" = rport=139 | protocol=6 | dir=out | app=system |
"{6EFD3216-D4DB-448C-81DA-E8838C66FFD2}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{7C7BD74E-D59D-40F9-8481-A74C4729E9DD}" = rport=138 | protocol=17 | dir=out | app=system |
"{86444BB3-291D-4D31-A046-BB4AA3243C28}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{AF8150A9-8B4A-4262-900E-D368942052B3}" = lport=2869 | protocol=6 | dir=in | app=system |
"{BE10AB93-C4A6-464B-BE93-069E778BFF99}" = rport=10243 | protocol=6 | dir=out | app=system |
"{C232D951-55E7-4D04-9346-F88A07FC0B22}" = lport=137 | protocol=17 | dir=in | app=system |
"{C428A183-FD79-40B5-990D-895328F43AC8}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{CF0676E6-E2EC-438A-9741-7029DEBD00CE}" = rport=2177 | protocol=17 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{F534D21D-02A4-4E48-A237-A3745ED5E6D3}" = rport=137 | protocol=17 | dir=out | app=system |
"{F9C1EEE5-72B7-40C6-BC7C-64E9DF7DEB39}" = lport=2177 | protocol=17 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
========== Vista Active Application Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{003C7A18-60D9-4C89-94D8-DE42C1AA1D76}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 |
"{02A4D600-582A-4C14-ADFE-C125CF0CB18F}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{1473D86F-6F04-46A3-9153-CD04272511DC}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{4849799C-D8E9-4360-8F9A-6B5F2BCC7EA4}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 |
"{56E808A1-BFD0-4B79-B567-B9FA848D697F}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 |
"{61FB8AD2-C831-45AB-9DFB-D685C3A8300D}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{62F27534-2769-4D2F-B42F-E96E62F64F44}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{65901CFC-D156-4C8F-90EA-C26D256CA195}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{68F6992D-6E9D-4F14-88EC-3E0B8BEC7EFF}" = protocol=6 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{8642AF85-31DC-4BB3-8E9D-1E478C224084}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{A5589677-56C4-46C1-A86B-1F0B5425786F}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{AB3FBA72-52C3-4476-9A38-230DBE05659B}" = protocol=17 | dir=in | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{BC7833D1-AE4B-4CAB-BDD5-6EA587E5C763}" = protocol=6 | dir=out | app=system |
"{CE504808-152F-4073-8BB9-0F8E7C4D30C6}" = protocol=17 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{D3648D1D-2BA3-4973-9B7E-EDC907B6E342}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{E8715BB0-E132-4617-B344-62E03BFE2C1C}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 |
"{E926E57D-011D-4F63-BCC5-FFCFDC28D091}" = protocol=6 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{EFA98652-B437-42AA-B7D3-EFFD71ED4ECD}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{F7DCF881-DB9D-4779-8D1C-CCCBAC7C73FF}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"TCP Query User{2C8164FA-0689-4578-BA19-B02C389F0751}C:\users\asus\appdata\roaming\utorrent\utorrent.exe" = protocol=6 | dir=in | app=c:\users\asus\appdata\roaming\utorrent\utorrent.exe |
"TCP Query User{F1C025D6-2B00-47E2-9FB0-97AB74ED2B9B}C:\users\asus\appdata\roaming\utorrent\utorrent.exe" = protocol=6 | dir=in | app=c:\users\asus\appdata\roaming\utorrent\utorrent.exe |
"UDP Query User{79FD1848-8273-4E4D-8894-0AF74176D7B1}C:\users\asus\appdata\roaming\utorrent\utorrent.exe" = protocol=17 | dir=in | app=c:\users\asus\appdata\roaming\utorrent\utorrent.exe |
"UDP Query User{81FAAE17-E682-4FC6-9937-17B2D9B44D65}C:\users\asus\appdata\roaming\utorrent\utorrent.exe" = protocol=17 | dir=in | app=c:\users\asus\appdata\roaming\utorrent\utorrent.exe |
========== HKEY_LOCAL_MACHINE Uninstall List ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{0891B708-EF3F-4D7E-9724-265245F46276}" = Windows Live Remote Service Resources
"{0B0F231F-CE6A-483D-AA23-77B364F75917}" = Windows Live Installer
"{0CD47142-BA4F-46B0-AA92-2675864928B8}" = Microsoft Security Client
"{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_iP1300" = Canon iP1300
"{123F4E9B-80E6-3A84-BDD4-3CB3AC59ABF0}" = Microsoft .NET Framework 4.5.1 (CSY)
"{17CA32D1-73BD-4990-B8F6-369D8D34B05D}" = Microsoft Antimalware Service CS-CZ Language Pack
"{19A4A990-5343-4FF7-B3B5-6F046C091EDF}" = Windows Live Remote Client
"{1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4}" = Junk Mail filter update
"{200FEC62-3C34-4D60-9CE8-EC372E01C08F}" = Windows Live SOXE Definitions
"{227E8782-B2F4-4E97-B0EE-49DE9CC1C0C0}" = Windows Live Remote Service
"{26A24AE4-039D-4CA4-87B4-2F83216029FF}" = Java(TM) 6 Update 29
"{26A24AE4-039D-4CA4-87B4-2F83217051FF}" = Java 7 Update 51
"{28006915-2739-4EBE-B5E8-49B25D32EB33}" = Atheros Client Installation Program
"{2A3A4BD6-6CE0-4E2A-80D2-1D0FF6ACBFBA}" = LG United Mobile Driver
"{3336F667-9049-4D46-98B6-4C743EEBC5B1}" = Windows Live Photo Gallery
"{38E5A3B1-ADF1-47E0-8024-76310A30EB36}" = LiveUpdate
"{4264C020-850B-4F08-ACBE-98205D9C336C}" = Windows Live Writer
"{45057FCE-5784-48BE-8176-D9D00AF56C3C}" = The Sims™ 3 Po setmění
"{454F5782-A4C3-480E-A629-D435795DEFD8}" = Windows Live Remote Client Resources
"{463F67F4-58D0-4C0D-BBC9-D0CC4E56D1B8}" = Windows Live UX Platform Language Pack
"{4903D172-DCCB-392F-93A3-34CA9D47FE3D}" = Microsoft .NET Framework 4.5.1
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4CBABDFD-49F8-47FD-BE7D-ECDE7270525A}" = Windows Live PIMT Platform
"{4F524A2D-5637-4300-76A7-A758B70C0A03}" = Ask Toolbar
"{50300123-F8FC-4B50-B449-E847D04F1BA2}" = Windows Live Messenger
"{50779A29-834E-4E36-BBEB-B7CABC67A825}" = Microsoft Security Client CS-CZ Language Pack
"{587178E7-B1DF-494E-9838-FA4DD36E873C}" = ASUSUpdate for Eee PC
"{61AD15B2-50DB-4686-A739-14FE180D4429}" = Windows Live ID Sign-in Assistant
"{6426475A-834D-4079-800B-03E272E414D0}" = Windows Phone app for desktop
"{64B2D6B3-71AC-45A7-A6A1-2E07ABF58341}" = Windows Live Movie Maker
"{682B3E4F-696A-42DE-A41C-4C07EA1678B4}" = Windows Live SOXE
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{71C0E38E-09F2-4386-9977-404D4F6640CD}" = Hotkey Service
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{78906B56-0E81-42A7-AC25-F54C946E1538}" = Windows Live Photo Common
"{78A96B4C-A643-4D0F-98C2-A8E16A6669F9}" = Windows Live Messenger Companion Core
"{80E8C65A-8F70-4585-88A2-ABC54BABD576}" = Windows Live Mesh
"{88F08F98-12BC-4613-81A2-8F9B88CFC73E}" = Super Hybrid Engine
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8A30D5C0-BD4A-4E65-AADF-20A457DE6D38}" = Windows Live Family Safety
"{8C6D6116-B724-4810-8F2D-D047E6B7D68E}" = Mesh Runtime
"{8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}" = MSVCRT
"{8FC4F1DD-F7FD-4766-804D-3C8FF1D309B0}" = Ralink RT2860 Wireless LAN Card
"{90120000-0015-0405-0000-0000000FF1CE}" = Microsoft Office Access MUI (Czech) 2007
"{90120000-0015-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-0016-0405-0000-0000000FF1CE}" = Microsoft Office Excel MUI (Czech) 2007
"{90120000-0016-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-0018-0405-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (Czech) 2007
"{90120000-0018-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-0019-0405-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (Czech) 2007
"{90120000-0019-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-001A-0405-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (Czech) 2007
"{90120000-001A-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-001B-0405-0000-0000000FF1CE}" = Microsoft Office Word MUI (Czech) 2007
"{90120000-001B-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-001F-0405-0000-0000000FF1CE}" = Microsoft Office Proof (Czech) 2007
"{90120000-001F-0405-0000-0000000FF1CE}_ENTERPRISE_{0B7A4B67-2A38-42B1-9857-662FAB361E08}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
"{90120000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2007
"{90120000-001F-0407-0000-0000000FF1CE}_ENTERPRISE_{928D7B99-2BEA-49F9-83B8-20FA57860643}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-0409-0000-0000000FF1CE}_ENTERPRISE_{1FF96026-A04A-4C3E-B50A-BB7022654D0F}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
"{90120000-001F-041B-0000-0000000FF1CE}" = Microsoft Office Proof (Slovak) 2007
"{90120000-001F-041B-0000-0000000FF1CE}_ENTERPRISE_{FDF9A959-241A-4662-A8DE-7DED9C22D160}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
"{90120000-002C-0405-0000-0000000FF1CE}" = Microsoft Office Proofing (Czech) 2007
"{90120000-0044-0405-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (Czech) 2007
"{90120000-0044-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-006E-0405-0000-0000000FF1CE}" = Microsoft Office Shared MUI (Czech) 2007
"{90120000-006E-0405-0000-0000000FF1CE}_ENTERPRISE_{A0AAD4D5-9F9C-49BB-AB64-0FD4695424E8}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-00A1-0405-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (Czech) 2007
"{90120000-00A1-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-00BA-0405-0000-0000000FF1CE}" = Microsoft Office Groove MUI (Czech) 2007
"{90120000-00BA-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90140000-2005-0000-0000-0000000FF1CE}" = Microsoft Office File Validation Add-In
"{90150000-0011-0000-0000-0000000FF1CE}" = Microsoft Office Professional Plus 2013
"{90150000-0015-0405-0000-0000000FF1CE}" = Microsoft Access MUI (Czech) 2013
"{90150000-0015-0409-0000-0000000FF1CE}" = Microsoft Access MUI (English) 2013
"{90150000-0016-0405-0000-0000000FF1CE}" = Microsoft Excel MUI (Czech) 2013
"{90150000-0016-0409-0000-0000000FF1CE}" = Microsoft Excel MUI (English) 2013
"{90150000-0017-0405-0000-0000000FF1CE}" = Microsoft SharePoint Designer MUI (Czech) 2013
"{90150000-0018-0405-0000-0000000FF1CE}" = Microsoft PowerPoint MUI (Czech) 2013
"{90150000-0018-0409-0000-0000000FF1CE}" = Microsoft PowerPoint MUI (English) 2013
"{90150000-0019-0405-0000-0000000FF1CE}" = Microsoft Publisher MUI (Czech) 2013
"{90150000-0019-0409-0000-0000000FF1CE}" = Microsoft Publisher MUI (English) 2013
"{90150000-001A-0405-0000-0000000FF1CE}" = Microsoft Outlook MUI (Czech) 2013
"{90150000-001A-0409-0000-0000000FF1CE}" = Microsoft Outlook MUI (English) 2013
"{90150000-001B-0405-0000-0000000FF1CE}" = Microsoft Word MUI (Czech) 2013
"{90150000-001B-0409-0000-0000000FF1CE}" = Microsoft Word MUI (English) 2013
"{90150000-001F-0405-0000-0000000FF1CE}" = Nástroje kontroly pravopisu pro Microsoft Office 2013 – čeština
"{90150000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Korrekturhilfen 2013 - Deutsch
"{90150000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proofing Tools 2013 - English
"{90150000-001F-040C-0000-0000000FF1CE}" = Outils de vérification linguistique 2013 de Microsoft Office - Français
"{90150000-001F-041B-0000-0000000FF1CE}" = Nástroje korektúry balíka Microsoft Office 2013 - slovenčina
"{90150000-001F-0C0A-0000-0000000FF1CE}" = Microsoft Office Proofing Tools 2013 - Español
"{90150000-002C-0405-0000-0000000FF1CE}" = Microsoft Office Proofing (Czech) 2013
"{90150000-002C-0409-0000-0000000FF1CE}" = Microsoft Office Proofing (English) 2013
"{90150000-0044-0405-0000-0000000FF1CE}" = Microsoft InfoPath MUI (Czech) 2013
"{90150000-0044-0409-0000-0000000FF1CE}" = Microsoft InfoPath MUI (English) 2013
"{90150000-006E-0405-0000-0000000FF1CE}" = Microsoft Office Shared MUI (Czech) 2013
"{90150000-006E-0409-0000-0000000FF1CE}" = Microsoft Office Shared MUI (English) 2013
"{90150000-0090-0405-0000-0000000FF1CE}" = Microsoft DCF MUI (Czech) 2013
"{90150000-0090-0409-0000-0000000FF1CE}" = Microsoft DCF MUI (English) 2013
"{90150000-00A1-0405-0000-0000000FF1CE}" = Microsoft OneNote MUI (Czech) 2013
"{90150000-00A1-0409-0000-0000000FF1CE}" = Microsoft OneNote MUI (English) 2013
"{90150000-00BA-0405-0000-0000000FF1CE}" = Microsoft Groove MUI (Czech) 2013
"{90150000-00BA-0409-0000-0000000FF1CE}" = Microsoft Groove MUI (English) 2013
"{90150000-00E1-0405-0000-0000000FF1CE}" = Microsoft Office OSM MUI (Czech) 2013
"{90150000-00E1-0409-0000-0000000FF1CE}" = Microsoft Office OSM MUI (English) 2013
"{90150000-00E2-0405-0000-0000000FF1CE}" = Microsoft Office OSM UX MUI (Czech) 2013
"{90150000-00E2-0409-0000-0000000FF1CE}" = Microsoft Office OSM UX MUI (English) 2013
"{90150000-0100-0405-0000-0000000FF1CE}" = Microsoft Office O MUI (Czech) 2013
"{90150000-0101-0405-0000-0000000FF1CE}" = Microsoft X MUI (Czech) 2013
"{90150000-0115-0409-0000-0000000FF1CE}" = Microsoft Office Shared Setup Metadata MUI (English) 2013
"{90150000-0117-0409-0000-0000000FF1CE}" = Microsoft Access Setup Metadata MUI (English) 2013
"{90150000-012B-0405-0000-0000000FF1CE}" = Microsoft Lync MUI (Czech) 2013
"{90150000-012B-0409-0000-0000000FF1CE}" = Microsoft Lync MUI (English) 2013
"{92EA4134-10D1-418A-91E1-5A0453131A38}" = Windows Live Movie Maker
"{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1029" = Microsoft .NET Framework 4.5.1 (čeština)
"{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033" = Microsoft .NET Framework 4.5.1
"{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting
"{99C91FC5-DB5B-4AA0-BB70-5D89C5A4DF96}" = Software Version Updater
"{9D2B0322-44AE-460E-9283-4D2D7A9205AE}" = Trend Micro Internet Security
"{9D56775A-93F3-44A3-8092-840E3826DE30}" = Windows Live Mail
"{9E9D49A4-1DF4-4138-B7DB-5D87A893088E}" = Software Bluetooth WIDCOMM
"{A726AE06-AAA3-43D1-87E3-70F510314F04}" = Windows Live Writer
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{A9BDCA6B-3653-467B-AC83-94367DA3BFE3}" = Windows Live Photo Common
"{AAAFC670-569B-4A2F-82B4-42945E0DE3EF}" = Windows Live Writer
"{AB78C965-5C67-409B-8433-D7B5BDB12073}" = Windows Live Writer Resources
"{AC76BA86-7AD7-1029-7B44-AB0000000001}" = Adobe Reader XI (11.0.06) - Czech
"{AF844339-2F8A-4593-81B3-9F4C54038C4E}" = Windows Live MIME IFilter
"{B44F3823-52DD-45CA-A916-8B320778715D}" = Messenger Companion
"{B6190387-0036-4BEB-8D74-A0AFC5F14706}" = Ovládací prvek ActiveX platformy Windows Live Mesh pro vzdálená připojení
"{B92C2C6C-F70E-497B-88A7-1FEF9888272B}" = Adobe AIR
"{C04E7C11-A3DA-480B-9018-F292E04CA26A}" = FontResizer
"{C05D8CDB-417D-4335-A38C-A0659EDFD6B8}" = The Sims™ 3
"{C454280F-3C3E-4929-B60E-9E6CED5717E7}" = Windows Live Mail
"{C73B5B3B-F974-48CA-8B91-3E8A432AEA5B}" = Microsoft Works
"{CE95A79E-E4FC-4FFF-8A75-29F04B942FF2}" = Windows Live UX Platform
"{CFF8B8E8-E086-4DE0-935F-FE22CAB54F80}" = Microsoft Search Enhancement Pack
"{D45240D3-B6B3-4FF9-B243-54ECE3E10066}" = Windows Live Communications Platform
"{DECDCB7C-58CC-4865-91AF-627F9798FE48}" = Windows Live Mesh
"{E09C4DB7-630C-4F06-A631-8EA7239923AF}" = D3DX10
"{E1AA8B0F-1176-36F1-8A91-AA19CF39C2F6}" = Google Chrome
"{E3E71D07-CD27-46CB-8448-16D4FB29AA13}" = Microsoft WSE 3.0 Runtime
"{E570CB6B-1CBC-4ADD-969F-7B3338A6BDB6}" = Windows Live Sync
"{EB4DF488-AAEF-406F-A341-CB2AAA315B90}" = Windows Live Messenger
"{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F53D678E-238F-4A71-9742-08BB6774E9DC}" = Windows Live Family Safety
"{FB79FDB7-4DE1-453D-99FE-9A880F57380E}" = Windows Live Fotogalerie
"{FE62C88B-425B-4BDE-8B70-CD5AE3B83176}" = Windows Live Essentials
"Adobe AIR" = Adobe AIR
"Adobe Flash Player ActiveX" = Adobe Flash Player 12 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"Asus Vibe2.0" = AsusVibe2.0
"ASUS WebStorage" = ASUS WebStorage
"AsusVibeCheckUpdate_is1" = AsusVibeCheckUpdate
"CCleaner" = CCleaner
"DAEMON Tools Lite" = DAEMON Tools Lite
"Easy-PhotoPrint" = Canon Utilities Easy-PhotoPrint
"Easy-PrintToolBox" = Canon Utilities Easy-PrintToolBox
"Eee Docking_is1" = Eee Docking 2.6.0
"LPCO" = Intel(R) Graphics Media Accelerator 500
"Microsoft Security Client" = Microsoft Security Essentials
"Office15.OMUI.cs-cz" = Microsoft Office Language Pack 2013 - Czech/čeština
"Office15.PROPLUS" = Microsoft Office Professional Plus 2013
"Origin" = Origin
"PCData App" = PC Data App
"Registrace uživatele zařízení Canon iP1300" = Registrace uživatele zařízení Canon iP1300
"SynTPDeinstKey" = Synaptics Pointing Device Driver
"The KMPlayer" = The KMPlayer (remove only)
"Total Doc Converter_is1" = TotalDocConverter
"WinLiveSuite" = Windows Live Essentials
"WinRAR archiver" = WinRAR
========== HKEY_USERS Uninstall List ==========
[HKEY_USERS\S-1-5-21-2318946186-1565977137-1874626250-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Dropbox" = Dropbox
"SeznamInstall" = Seznam Software
"uTorrent" = µTorrent
OTL Extras logfile created on: 3/28/2014 9:37:19 AM - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\asus\Desktop
Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.11.9600.16521)
Locale: 00000409 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy
1.99 Gb Total Physical Memory | 0.98 Gb Available Physical Memory | 49.40% Memory free
3.98 Gb Paging File | 2.84 Gb Available in Paging File | 71.40% Paging File free
Paging file location(s): d:\pagefile.sys 0 0 [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\windows | %ProgramFiles% = C:\Program Files
Drive C: | 100.00 Gb Total Space | 31.65 Gb Free Space | 31.65% Space Free | Partition Type: NTFS
Drive D: | 122.87 Gb Total Space | 118.93 Gb Free Space | 96.79% Space Free | Partition Type: NTFS
Computer Name: KRISTINA_ASUS | User Name: asus | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Extra Registry (SafeList) ==========
========== File Associations ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\windows\System32\control.exe (Microsoft Corporation)
.hlp [@ = hlpfile] -- C:\windows\winhlp32.exe (Microsoft Corporation)
[HKEY_USERS\S-1-5-21-2318946186-1565977137-1874626250-1000\SOFTWARE\Classes\<extension>]
.html [@ = ChromeHTML] -- Reg Error: Key error. File not found
========== Shell Spawning ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
htmlfile [edit] -- "C:\Program Files\Microsoft Office\Office15\msohtmed.exe" %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
========== Security Center Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
"FirewallDisableNotify" = 0
"AntiVirusDisableNotify" = 0
"UpdatesDisableNotify" = 0
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = Reg Error: Unknown registry data type -- File not found
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]
========== System Restore Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0
========== Firewall Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile]
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
========== Authorized Applications List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
========== Vista Active Open Ports Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{0294BB2F-6178-459D-8C46-8D1C40D6AD6B}" = rport=445 | protocol=6 | dir=out | app=system |
"{057550CC-1C7E-4C7B-A2F8-3A8DDC978C8C}" = lport=138 | protocol=17 | dir=in | app=system |
"{08E024BB-596A-4DFF-A430-159062EB67CE}" = lport=10243 | protocol=6 | dir=in | app=system |
"{19A5737B-0BEE-43C8-BCD3-3CC714AA4FD3}" = lport=2177 | protocol=6 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{1C5A47A8-AA4E-408B-98D5-5E339512B923}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{25B9D31D-64EC-44F5-900B-17177C3E5D3C}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{295EF879-34FC-4A05-A484-51AA1443280E}" = lport=445 | protocol=6 | dir=in | app=system |
"{2AC72DA0-17CB-4E2F-8F33-7659D42E6A2C}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{2FA65B31-3A9D-4C20-AFC6-469495F0EF44}" = rport=2177 | protocol=6 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{4084E937-EAAA-47EE-9520-7BE7CE434C09}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
"{4BF5EB07-06A2-40E2-B5B6-244EF5C49A0F}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 |
"{5456EA1E-AF45-48BD-9C96-AB99A6CCF1D9}" = lport=139 | protocol=6 | dir=in | app=system |
"{6364B77A-8796-4078-B3CC-5963A3E70B4F}" = rport=139 | protocol=6 | dir=out | app=system |
"{6EFD3216-D4DB-448C-81DA-E8838C66FFD2}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{7C7BD74E-D59D-40F9-8481-A74C4729E9DD}" = rport=138 | protocol=17 | dir=out | app=system |
"{86444BB3-291D-4D31-A046-BB4AA3243C28}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{AF8150A9-8B4A-4262-900E-D368942052B3}" = lport=2869 | protocol=6 | dir=in | app=system |
"{BE10AB93-C4A6-464B-BE93-069E778BFF99}" = rport=10243 | protocol=6 | dir=out | app=system |
"{C232D951-55E7-4D04-9346-F88A07FC0B22}" = lport=137 | protocol=17 | dir=in | app=system |
"{C428A183-FD79-40B5-990D-895328F43AC8}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{CF0676E6-E2EC-438A-9741-7029DEBD00CE}" = rport=2177 | protocol=17 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{F534D21D-02A4-4E48-A237-A3745ED5E6D3}" = rport=137 | protocol=17 | dir=out | app=system |
"{F9C1EEE5-72B7-40C6-BC7C-64E9DF7DEB39}" = lport=2177 | protocol=17 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
========== Vista Active Application Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{003C7A18-60D9-4C89-94D8-DE42C1AA1D76}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 |
"{02A4D600-582A-4C14-ADFE-C125CF0CB18F}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{1473D86F-6F04-46A3-9153-CD04272511DC}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{4849799C-D8E9-4360-8F9A-6B5F2BCC7EA4}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 |
"{56E808A1-BFD0-4B79-B567-B9FA848D697F}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 |
"{61FB8AD2-C831-45AB-9DFB-D685C3A8300D}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{62F27534-2769-4D2F-B42F-E96E62F64F44}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{65901CFC-D156-4C8F-90EA-C26D256CA195}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{68F6992D-6E9D-4F14-88EC-3E0B8BEC7EFF}" = protocol=6 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{8642AF85-31DC-4BB3-8E9D-1E478C224084}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{A5589677-56C4-46C1-A86B-1F0B5425786F}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{AB3FBA72-52C3-4476-9A38-230DBE05659B}" = protocol=17 | dir=in | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{BC7833D1-AE4B-4CAB-BDD5-6EA587E5C763}" = protocol=6 | dir=out | app=system |
"{CE504808-152F-4073-8BB9-0F8E7C4D30C6}" = protocol=17 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{D3648D1D-2BA3-4973-9B7E-EDC907B6E342}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{E8715BB0-E132-4617-B344-62E03BFE2C1C}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 |
"{E926E57D-011D-4F63-BCC5-FFCFDC28D091}" = protocol=6 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{EFA98652-B437-42AA-B7D3-EFFD71ED4ECD}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{F7DCF881-DB9D-4779-8D1C-CCCBAC7C73FF}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"TCP Query User{2C8164FA-0689-4578-BA19-B02C389F0751}C:\users\asus\appdata\roaming\utorrent\utorrent.exe" = protocol=6 | dir=in | app=c:\users\asus\appdata\roaming\utorrent\utorrent.exe |
"TCP Query User{F1C025D6-2B00-47E2-9FB0-97AB74ED2B9B}C:\users\asus\appdata\roaming\utorrent\utorrent.exe" = protocol=6 | dir=in | app=c:\users\asus\appdata\roaming\utorrent\utorrent.exe |
"UDP Query User{79FD1848-8273-4E4D-8894-0AF74176D7B1}C:\users\asus\appdata\roaming\utorrent\utorrent.exe" = protocol=17 | dir=in | app=c:\users\asus\appdata\roaming\utorrent\utorrent.exe |
"UDP Query User{81FAAE17-E682-4FC6-9937-17B2D9B44D65}C:\users\asus\appdata\roaming\utorrent\utorrent.exe" = protocol=17 | dir=in | app=c:\users\asus\appdata\roaming\utorrent\utorrent.exe |
========== HKEY_LOCAL_MACHINE Uninstall List ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{0891B708-EF3F-4D7E-9724-265245F46276}" = Windows Live Remote Service Resources
"{0B0F231F-CE6A-483D-AA23-77B364F75917}" = Windows Live Installer
"{0CD47142-BA4F-46B0-AA92-2675864928B8}" = Microsoft Security Client
"{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_iP1300" = Canon iP1300
"{123F4E9B-80E6-3A84-BDD4-3CB3AC59ABF0}" = Microsoft .NET Framework 4.5.1 (CSY)
"{17CA32D1-73BD-4990-B8F6-369D8D34B05D}" = Microsoft Antimalware Service CS-CZ Language Pack
"{19A4A990-5343-4FF7-B3B5-6F046C091EDF}" = Windows Live Remote Client
"{1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4}" = Junk Mail filter update
"{200FEC62-3C34-4D60-9CE8-EC372E01C08F}" = Windows Live SOXE Definitions
"{227E8782-B2F4-4E97-B0EE-49DE9CC1C0C0}" = Windows Live Remote Service
"{26A24AE4-039D-4CA4-87B4-2F83216029FF}" = Java(TM) 6 Update 29
"{26A24AE4-039D-4CA4-87B4-2F83217051FF}" = Java 7 Update 51
"{28006915-2739-4EBE-B5E8-49B25D32EB33}" = Atheros Client Installation Program
"{2A3A4BD6-6CE0-4E2A-80D2-1D0FF6ACBFBA}" = LG United Mobile Driver
"{3336F667-9049-4D46-98B6-4C743EEBC5B1}" = Windows Live Photo Gallery
"{38E5A3B1-ADF1-47E0-8024-76310A30EB36}" = LiveUpdate
"{4264C020-850B-4F08-ACBE-98205D9C336C}" = Windows Live Writer
"{45057FCE-5784-48BE-8176-D9D00AF56C3C}" = The Sims™ 3 Po setmění
"{454F5782-A4C3-480E-A629-D435795DEFD8}" = Windows Live Remote Client Resources
"{463F67F4-58D0-4C0D-BBC9-D0CC4E56D1B8}" = Windows Live UX Platform Language Pack
"{4903D172-DCCB-392F-93A3-34CA9D47FE3D}" = Microsoft .NET Framework 4.5.1
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4CBABDFD-49F8-47FD-BE7D-ECDE7270525A}" = Windows Live PIMT Platform
"{4F524A2D-5637-4300-76A7-A758B70C0A03}" = Ask Toolbar
"{50300123-F8FC-4B50-B449-E847D04F1BA2}" = Windows Live Messenger
"{50779A29-834E-4E36-BBEB-B7CABC67A825}" = Microsoft Security Client CS-CZ Language Pack
"{587178E7-B1DF-494E-9838-FA4DD36E873C}" = ASUSUpdate for Eee PC
"{61AD15B2-50DB-4686-A739-14FE180D4429}" = Windows Live ID Sign-in Assistant
"{6426475A-834D-4079-800B-03E272E414D0}" = Windows Phone app for desktop
"{64B2D6B3-71AC-45A7-A6A1-2E07ABF58341}" = Windows Live Movie Maker
"{682B3E4F-696A-42DE-A41C-4C07EA1678B4}" = Windows Live SOXE
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{71C0E38E-09F2-4386-9977-404D4F6640CD}" = Hotkey Service
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{78906B56-0E81-42A7-AC25-F54C946E1538}" = Windows Live Photo Common
"{78A96B4C-A643-4D0F-98C2-A8E16A6669F9}" = Windows Live Messenger Companion Core
"{80E8C65A-8F70-4585-88A2-ABC54BABD576}" = Windows Live Mesh
"{88F08F98-12BC-4613-81A2-8F9B88CFC73E}" = Super Hybrid Engine
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8A30D5C0-BD4A-4E65-AADF-20A457DE6D38}" = Windows Live Family Safety
"{8C6D6116-B724-4810-8F2D-D047E6B7D68E}" = Mesh Runtime
"{8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}" = MSVCRT
"{8FC4F1DD-F7FD-4766-804D-3C8FF1D309B0}" = Ralink RT2860 Wireless LAN Card
"{90120000-0015-0405-0000-0000000FF1CE}" = Microsoft Office Access MUI (Czech) 2007
"{90120000-0015-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-0016-0405-0000-0000000FF1CE}" = Microsoft Office Excel MUI (Czech) 2007
"{90120000-0016-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-0018-0405-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (Czech) 2007
"{90120000-0018-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-0019-0405-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (Czech) 2007
"{90120000-0019-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-001A-0405-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (Czech) 2007
"{90120000-001A-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-001B-0405-0000-0000000FF1CE}" = Microsoft Office Word MUI (Czech) 2007
"{90120000-001B-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-001F-0405-0000-0000000FF1CE}" = Microsoft Office Proof (Czech) 2007
"{90120000-001F-0405-0000-0000000FF1CE}_ENTERPRISE_{0B7A4B67-2A38-42B1-9857-662FAB361E08}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
"{90120000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2007
"{90120000-001F-0407-0000-0000000FF1CE}_ENTERPRISE_{928D7B99-2BEA-49F9-83B8-20FA57860643}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-0409-0000-0000000FF1CE}_ENTERPRISE_{1FF96026-A04A-4C3E-B50A-BB7022654D0F}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
"{90120000-001F-041B-0000-0000000FF1CE}" = Microsoft Office Proof (Slovak) 2007
"{90120000-001F-041B-0000-0000000FF1CE}_ENTERPRISE_{FDF9A959-241A-4662-A8DE-7DED9C22D160}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
"{90120000-002C-0405-0000-0000000FF1CE}" = Microsoft Office Proofing (Czech) 2007
"{90120000-0044-0405-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (Czech) 2007
"{90120000-0044-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-006E-0405-0000-0000000FF1CE}" = Microsoft Office Shared MUI (Czech) 2007
"{90120000-006E-0405-0000-0000000FF1CE}_ENTERPRISE_{A0AAD4D5-9F9C-49BB-AB64-0FD4695424E8}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-00A1-0405-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (Czech) 2007
"{90120000-00A1-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-00BA-0405-0000-0000000FF1CE}" = Microsoft Office Groove MUI (Czech) 2007
"{90120000-00BA-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90140000-2005-0000-0000-0000000FF1CE}" = Microsoft Office File Validation Add-In
"{90150000-0011-0000-0000-0000000FF1CE}" = Microsoft Office Professional Plus 2013
"{90150000-0015-0405-0000-0000000FF1CE}" = Microsoft Access MUI (Czech) 2013
"{90150000-0015-0409-0000-0000000FF1CE}" = Microsoft Access MUI (English) 2013
"{90150000-0016-0405-0000-0000000FF1CE}" = Microsoft Excel MUI (Czech) 2013
"{90150000-0016-0409-0000-0000000FF1CE}" = Microsoft Excel MUI (English) 2013
"{90150000-0017-0405-0000-0000000FF1CE}" = Microsoft SharePoint Designer MUI (Czech) 2013
"{90150000-0018-0405-0000-0000000FF1CE}" = Microsoft PowerPoint MUI (Czech) 2013
"{90150000-0018-0409-0000-0000000FF1CE}" = Microsoft PowerPoint MUI (English) 2013
"{90150000-0019-0405-0000-0000000FF1CE}" = Microsoft Publisher MUI (Czech) 2013
"{90150000-0019-0409-0000-0000000FF1CE}" = Microsoft Publisher MUI (English) 2013
"{90150000-001A-0405-0000-0000000FF1CE}" = Microsoft Outlook MUI (Czech) 2013
"{90150000-001A-0409-0000-0000000FF1CE}" = Microsoft Outlook MUI (English) 2013
"{90150000-001B-0405-0000-0000000FF1CE}" = Microsoft Word MUI (Czech) 2013
"{90150000-001B-0409-0000-0000000FF1CE}" = Microsoft Word MUI (English) 2013
"{90150000-001F-0405-0000-0000000FF1CE}" = Nástroje kontroly pravopisu pro Microsoft Office 2013 – čeština
"{90150000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Korrekturhilfen 2013 - Deutsch
"{90150000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proofing Tools 2013 - English
"{90150000-001F-040C-0000-0000000FF1CE}" = Outils de vérification linguistique 2013 de Microsoft Office - Français
"{90150000-001F-041B-0000-0000000FF1CE}" = Nástroje korektúry balíka Microsoft Office 2013 - slovenčina
"{90150000-001F-0C0A-0000-0000000FF1CE}" = Microsoft Office Proofing Tools 2013 - Español
"{90150000-002C-0405-0000-0000000FF1CE}" = Microsoft Office Proofing (Czech) 2013
"{90150000-002C-0409-0000-0000000FF1CE}" = Microsoft Office Proofing (English) 2013
"{90150000-0044-0405-0000-0000000FF1CE}" = Microsoft InfoPath MUI (Czech) 2013
"{90150000-0044-0409-0000-0000000FF1CE}" = Microsoft InfoPath MUI (English) 2013
"{90150000-006E-0405-0000-0000000FF1CE}" = Microsoft Office Shared MUI (Czech) 2013
"{90150000-006E-0409-0000-0000000FF1CE}" = Microsoft Office Shared MUI (English) 2013
"{90150000-0090-0405-0000-0000000FF1CE}" = Microsoft DCF MUI (Czech) 2013
"{90150000-0090-0409-0000-0000000FF1CE}" = Microsoft DCF MUI (English) 2013
"{90150000-00A1-0405-0000-0000000FF1CE}" = Microsoft OneNote MUI (Czech) 2013
"{90150000-00A1-0409-0000-0000000FF1CE}" = Microsoft OneNote MUI (English) 2013
"{90150000-00BA-0405-0000-0000000FF1CE}" = Microsoft Groove MUI (Czech) 2013
"{90150000-00BA-0409-0000-0000000FF1CE}" = Microsoft Groove MUI (English) 2013
"{90150000-00E1-0405-0000-0000000FF1CE}" = Microsoft Office OSM MUI (Czech) 2013
"{90150000-00E1-0409-0000-0000000FF1CE}" = Microsoft Office OSM MUI (English) 2013
"{90150000-00E2-0405-0000-0000000FF1CE}" = Microsoft Office OSM UX MUI (Czech) 2013
"{90150000-00E2-0409-0000-0000000FF1CE}" = Microsoft Office OSM UX MUI (English) 2013
"{90150000-0100-0405-0000-0000000FF1CE}" = Microsoft Office O MUI (Czech) 2013
"{90150000-0101-0405-0000-0000000FF1CE}" = Microsoft X MUI (Czech) 2013
"{90150000-0115-0409-0000-0000000FF1CE}" = Microsoft Office Shared Setup Metadata MUI (English) 2013
"{90150000-0117-0409-0000-0000000FF1CE}" = Microsoft Access Setup Metadata MUI (English) 2013
"{90150000-012B-0405-0000-0000000FF1CE}" = Microsoft Lync MUI (Czech) 2013
"{90150000-012B-0409-0000-0000000FF1CE}" = Microsoft Lync MUI (English) 2013
"{92EA4134-10D1-418A-91E1-5A0453131A38}" = Windows Live Movie Maker
"{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1029" = Microsoft .NET Framework 4.5.1 (čeština)
"{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033" = Microsoft .NET Framework 4.5.1
"{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting
"{99C91FC5-DB5B-4AA0-BB70-5D89C5A4DF96}" = Software Version Updater
"{9D2B0322-44AE-460E-9283-4D2D7A9205AE}" = Trend Micro Internet Security
"{9D56775A-93F3-44A3-8092-840E3826DE30}" = Windows Live Mail
"{9E9D49A4-1DF4-4138-B7DB-5D87A893088E}" = Software Bluetooth WIDCOMM
"{A726AE06-AAA3-43D1-87E3-70F510314F04}" = Windows Live Writer
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{A9BDCA6B-3653-467B-AC83-94367DA3BFE3}" = Windows Live Photo Common
"{AAAFC670-569B-4A2F-82B4-42945E0DE3EF}" = Windows Live Writer
"{AB78C965-5C67-409B-8433-D7B5BDB12073}" = Windows Live Writer Resources
"{AC76BA86-7AD7-1029-7B44-AB0000000001}" = Adobe Reader XI (11.0.06) - Czech
"{AF844339-2F8A-4593-81B3-9F4C54038C4E}" = Windows Live MIME IFilter
"{B44F3823-52DD-45CA-A916-8B320778715D}" = Messenger Companion
"{B6190387-0036-4BEB-8D74-A0AFC5F14706}" = Ovládací prvek ActiveX platformy Windows Live Mesh pro vzdálená připojení
"{B92C2C6C-F70E-497B-88A7-1FEF9888272B}" = Adobe AIR
"{C04E7C11-A3DA-480B-9018-F292E04CA26A}" = FontResizer
"{C05D8CDB-417D-4335-A38C-A0659EDFD6B8}" = The Sims™ 3
"{C454280F-3C3E-4929-B60E-9E6CED5717E7}" = Windows Live Mail
"{C73B5B3B-F974-48CA-8B91-3E8A432AEA5B}" = Microsoft Works
"{CE95A79E-E4FC-4FFF-8A75-29F04B942FF2}" = Windows Live UX Platform
"{CFF8B8E8-E086-4DE0-935F-FE22CAB54F80}" = Microsoft Search Enhancement Pack
"{D45240D3-B6B3-4FF9-B243-54ECE3E10066}" = Windows Live Communications Platform
"{DECDCB7C-58CC-4865-91AF-627F9798FE48}" = Windows Live Mesh
"{E09C4DB7-630C-4F06-A631-8EA7239923AF}" = D3DX10
"{E1AA8B0F-1176-36F1-8A91-AA19CF39C2F6}" = Google Chrome
"{E3E71D07-CD27-46CB-8448-16D4FB29AA13}" = Microsoft WSE 3.0 Runtime
"{E570CB6B-1CBC-4ADD-969F-7B3338A6BDB6}" = Windows Live Sync
"{EB4DF488-AAEF-406F-A341-CB2AAA315B90}" = Windows Live Messenger
"{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F53D678E-238F-4A71-9742-08BB6774E9DC}" = Windows Live Family Safety
"{FB79FDB7-4DE1-453D-99FE-9A880F57380E}" = Windows Live Fotogalerie
"{FE62C88B-425B-4BDE-8B70-CD5AE3B83176}" = Windows Live Essentials
"Adobe AIR" = Adobe AIR
"Adobe Flash Player ActiveX" = Adobe Flash Player 12 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"Asus Vibe2.0" = AsusVibe2.0
"ASUS WebStorage" = ASUS WebStorage
"AsusVibeCheckUpdate_is1" = AsusVibeCheckUpdate
"CCleaner" = CCleaner
"DAEMON Tools Lite" = DAEMON Tools Lite
"Easy-PhotoPrint" = Canon Utilities Easy-PhotoPrint
"Easy-PrintToolBox" = Canon Utilities Easy-PrintToolBox
"Eee Docking_is1" = Eee Docking 2.6.0
"LPCO" = Intel(R) Graphics Media Accelerator 500
"Microsoft Security Client" = Microsoft Security Essentials
"Office15.OMUI.cs-cz" = Microsoft Office Language Pack 2013 - Czech/čeština
"Office15.PROPLUS" = Microsoft Office Professional Plus 2013
"Origin" = Origin
"PCData App" = PC Data App
"Registrace uživatele zařízení Canon iP1300" = Registrace uživatele zařízení Canon iP1300
"SynTPDeinstKey" = Synaptics Pointing Device Driver
"The KMPlayer" = The KMPlayer (remove only)
"Total Doc Converter_is1" = TotalDocConverter
"WinLiveSuite" = Windows Live Essentials
"WinRAR archiver" = WinRAR
========== HKEY_USERS Uninstall List ==========
[HKEY_USERS\S-1-5-21-2318946186-1565977137-1874626250-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Dropbox" = Dropbox
"SeznamInstall" = Seznam Software
"uTorrent" = µTorrent
Re: Program blokovan zasadami skupiny co stím ?
========== Last 20 Event Log Errors ==========
[ Application Events ]
Error - 3/24/2014 3:49:53 PM | Computer Name = Kristina_asus | Source = SideBySide | ID = 16842785
Description = Generování kontextu aktivace pro C:\Program Files\WIDCOMM\Bluetooth
Software\BtwNamespaceExt.dll se nezdařilo. Závislé sestavení Microsoft.VC80.MFC,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0"
nelze najít. Podrobnější diagnostické údaje získáte pomocí programu sxstrace.exe.
Error - 3/24/2014 3:49:53 PM | Computer Name = Kristina_asus | Source = SideBySide | ID = 16842785
Description = Generování kontextu aktivace pro C:\Program Files\WIDCOMM\Bluetooth
Software\BtwNamespaceExt.dll se nezdařilo. Závislé sestavení Microsoft.VC80.MFC,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0"
nelze najít. Podrobnější diagnostické údaje získáte pomocí programu sxstrace.exe.
Error - 3/24/2014 4:39:58 PM | Computer Name = Kristina_asus | Source = Application Hang | ID = 1002
Description = Program TS3.exe verze 0.0.0.11195 přestal spolupracovat se systémem
Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací o tomto
problému, vyhledejte historii problému v ovládacím panelu Centrum akcí. ID procesu:
d9c Čas spuštění: 01cf47a10f3abf3d Čas ukončení: 193 Cesta k aplikaci: C:\Users\asus\Downloads\The
Sims 3\Game\Bin\TS3.exe ID hlášení:
Error - 3/25/2014 12:07:42 PM | Computer Name = Kristina_asus | Source = Application Hang | ID = 1002
Description = Program OneClick.exe verze 14.0.1001.206 přestal spolupracovat se
systémem Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací
o tomto problému, vyhledejte historii problému v ovládacím panelu Centrum akcí.
ID
procesu: 870 Čas spuštění: 01cf484156a810d1 Čas ukončení: 795 Cesta k aplikaci: C:\Program
Files\AVG PC TuneUp 2014\OneClick.exe ID hlášení: 6cfd2792-b437-11e3-b816-002243ffc212
Error - 3/25/2014 12:34:59 PM | Computer Name = Kristina_asus | Source = Windows Installer 3.1 | ID = 921877
Description =
Error - 3/25/2014 12:38:18 PM | Computer Name = Kristina_asus | Source = Application Error | ID = 1000
Description = Název chybující aplikace: TS3W.exe, verze: 0.2.0.164, časové razítko:
0x4e72aec1 Název chybujícího modulu: TS3W.exe, verze: 0.2.0.164, časové razítko:
0x4e72aec1 Kód výjimky: 0x80000003 Posun chyby: 0x0018a526 ID chybujícího procesu:
0xc9c Čas spuštění chybující aplikace: 0x01cf4848960f7c7a Cesta k chybující aplikaci:
C:\Users\asus\Downloads\rld-sim3\Game\Bin\TS3W.exe Cesta k chybujícímu modulu: C:\Users\asus\Downloads\rld-sim3\Game\Bin\TS3W.exe
ID
zprávy: de0d6698-b43b-11e3-b816-002243ffc212
Error - 3/25/2014 12:38:55 PM | Computer Name = Kristina_asus | Source = Application Error | ID = 1000
Description = Název chybující aplikace: TS3W.exe, verze: 0.2.0.164, časové razítko:
0x4e72aec1 Název chybujícího modulu: TS3W.exe, verze: 0.2.0.164, časové razítko:
0x4e72aec1 Kód výjimky: 0x80000003 Posun chyby: 0x0018a526 ID chybujícího procesu:
0xc28 Čas spuštění chybující aplikace: 0x01cf4848b02aa484 Cesta k chybující aplikaci:
C:\Users\asus\Downloads\rld-sim3\Game\Bin\TS3W.exe Cesta k chybujícímu modulu: C:\Users\asus\Downloads\rld-sim3\Game\Bin\TS3W.exe
ID
zprávy: f40c8500-b43b-11e3-b816-002243ffc212
Error - 3/26/2014 5:06:27 AM | Computer Name = Kristina_asus | Source = Application Hang | ID = 1002
Description = Program TS3.exe verze 0.0.0.11190 přestal spolupracovat se systémem
Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací o tomto
problému, vyhledejte historii problému v ovládacím panelu Centrum akcí. ID procesu:
1748 Čas spuštění: 01cf48d2874f4a5d Čas ukončení: 206 Cesta k aplikaci: C:\Users\asus\Downloads\rld-sim3\Game\Bin\TS3.exe
ID
hlášení:
Error - 3/26/2014 9:14:46 AM | Computer Name = Kristina_asus | Source = System Restore | ID = 8193
Description =
Error - 3/26/2014 10:25:39 AM | Computer Name = Kristina_asus | Source = Application Error | ID = 1000
Description = Název chybující aplikace: Sims3LauncherW.exe, verze: 0.2.0.164, časové
razítko: 0x4e72b5ff Název chybujícího modulu: CmdPortalClient.dll_unloaded, verze:
0.0.0.0, časové razítko: 0x4d6d1ae1 Kód výjimky: 0xc0000005 Posun chyby: 0x054d54a8
ID
chybujícího procesu: 0x84c Čas spuštění chybující aplikace: 0x01cf48ff14a236fa Cesta
k chybující aplikaci: C:\Program Files\Electronic Arts\The Sims 3\Game\Bin\Sims3LauncherW.exe
Cesta
k chybujícímu modulu: CmdPortalClient.dll ID zprávy: 80622aca-b4f2-11e3-9f91-002243ffc212
Error - 3/26/2014 10:50:24 AM | Computer Name = Kristina_asus | Source = Application Error | ID = 1000
Description = Název chybující aplikace: Sims3Setup.exe, verze: 15.0.0.498, časové
razítko: 0x482518da Název chybujícího modulu: ISRT.dll_unloaded, verze: 0.0.0.0,
časové razítko: 0x482518ba Kód výjimky: 0xc0000005 Posun chyby: 0x04b73da0 ID chybujícího
procesu: 0x410 Čas spuštění chybující aplikace: 0x01cf4901b55efaef Cesta k chybující
aplikaci: C:\Users\asus\Downloads\rld-sim3\Sims3Setup.exe Cesta k chybujícímu modulu:
ISRT.dll ID zprávy: f5812b8b-b4f5-11e3-9f91-002243ffc212
Error - 3/26/2014 2:57:14 PM | Computer Name = Kristina_asus | Source = System Restore | ID = 8193
Description =
[ Media Center Events ]
Error - 8/25/2010 7:07:15 AM | Computer Name = asus-PC | Source = MCUpdate | ID = 0
Description = 13:07:15 - Chyba při připojování k Internetu 13:07:15 - Nelze kontaktovat
server..
Error - 8/25/2010 7:07:31 AM | Computer Name = asus-PC | Source = MCUpdate | ID = 0
Description = 13:07:21 - Chyba při připojování k Internetu 13:07:21 - Nelze kontaktovat
server..
Error - 8/31/2010 4:57:21 AM | Computer Name = asus-PC | Source = MCUpdate | ID = 0
Description = 10:57:20 - Chyba při připojování k Internetu 10:57:20 - Nelze kontaktovat
server..
Error - 8/31/2010 4:57:55 AM | Computer Name = asus-PC | Source = MCUpdate | ID = 0
Description = 10:57:27 - Chyba při připojování k Internetu 10:57:27 - Nelze kontaktovat
server..
Error - 8/31/2010 5:58:05 AM | Computer Name = asus-PC | Source = MCUpdate | ID = 0
Description = 11:58:04 - Chyba při připojování k Internetu 11:58:05 - Nelze kontaktovat
server..
Error - 8/31/2010 5:58:16 AM | Computer Name = asus-PC | Source = MCUpdate | ID = 0
Description = 11:58:10 - Chyba při připojování k Internetu 11:58:10 - Nelze kontaktovat
server..
Error - 8/31/2010 6:59:12 AM | Computer Name = asus-PC | Source = MCUpdate | ID = 0
Description = 12:59:11 - Chyba při připojování k Internetu 12:59:11 - Nelze kontaktovat
server..
Error - 8/31/2010 6:59:24 AM | Computer Name = asus-PC | Source = MCUpdate | ID = 0
Description = 12:59:17 - Chyba při připojování k Internetu 12:59:17 - Nelze kontaktovat
server..
Error - 8/31/2010 7:59:54 AM | Computer Name = asus-PC | Source = MCUpdate | ID = 0
Description = 13:59:53 - Chyba při připojování k Internetu 13:59:54 - Nelze kontaktovat
server..
Error - 8/31/2010 8:00:06 AM | Computer Name = asus-PC | Source = MCUpdate | ID = 0
Description = 13:59:59 - Chyba při připojování k Internetu 13:59:59 - Nelze kontaktovat
server..
[ System Events ]
Error - 3/27/2014 10:44:34 AM | Computer Name = Kristina_asus | Source = Service Control Manager | ID = 7000
Description = Služba Update Surftastic neuspěla při spuštění v důsledku následující
chyby: %%2
Error - 3/27/2014 10:46:08 AM | Computer Name = Kristina_asus | Source = Microsoft Antimalware | ID = 2001
Description = %%860 zjistil chybu při pokusu o aktualizaci podpisů. Nová verze podpisu:
Předchozí verze podpisu: 1.169.880.0 Zdroj aktualizace: %%859 Fáze aktualizace: %%853
Zdrojová
cesta: http://www.microsoft.com Typ podpisu: %%800 Typ aktualizace: %%803 Uživatel:
NT AUTHORITY\SYSTEM Aktuální verze modulu: Předchozí verze modulu: 1.1.10401.0 Kód
chyby: 0x8024001e Popis chyby: Při zjišťování aktualizací došlo k neočekávaným potížím.
Informace o instalaci nebo řešení potíží s aktualizacemi naleznete v nápovědě a
podpoře.
Error - 3/27/2014 10:46:08 AM | Computer Name = Kristina_asus | Source = Microsoft Antimalware | ID = 2001
Description = %%860 zjistil chybu při pokusu o aktualizaci podpisů. Nová verze podpisu:
Předchozí verze podpisu: 1.169.880.0 Zdroj aktualizace: %%859 Fáze aktualizace: %%853
Zdrojová
cesta: http://www.microsoft.com Typ podpisu: %%800 Typ aktualizace: %%803 Uživatel:
NT AUTHORITY\SYSTEM Aktuální verze modulu: Předchozí verze modulu: 1.1.10401.0 Kód
chyby: 0x8024001e Popis chyby: Při zjišťování aktualizací došlo k neočekávaným potížím.
Informace o instalaci nebo řešení potíží s aktualizacemi naleznete v nápovědě a
podpoře.
Error - 3/27/2014 10:47:27 AM | Computer Name = Kristina_asus | Source = Service Control Manager | ID = 7000
Description = Služba Update Surftastic neuspěla při spuštění v důsledku následující
chyby: %%2
Error - 3/27/2014 11:01:32 AM | Computer Name = Kristina_asus | Source = Service Control Manager | ID = 7030
Description = Služba PEVSystemStart je označena jako interaktivní služba. Avšak
systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba
nebude fungovat správně.
Error - 3/27/2014 11:14:18 AM | Computer Name = Kristina_asus | Source = Service Control Manager | ID = 7030
Description = Služba PEVSystemStart je označena jako interaktivní služba. Avšak
systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba
nebude fungovat správně.
Error - 3/27/2014 11:24:46 AM | Computer Name = Kristina_asus | Source = Service Control Manager | ID = 7030
Description = Služba PEVSystemStart je označena jako interaktivní služba. Avšak
systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba
nebude fungovat správně.
Error - 3/27/2014 11:25:06 AM | Computer Name = Kristina_asus | Source = Service Control Manager | ID = 7030
Description = Služba PEVSystemStart je označena jako interaktivní služba. Avšak
systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba
nebude fungovat správně.
Error - 3/27/2014 11:26:25 AM | Computer Name = Kristina_asus | Source = EventLog | ID = 6008
Description = Předchozí vypnutí systému (16:24:58, ?27.?3.?2014) bylo neočekávané.
Error - 3/27/2014 12:38:30 PM | Computer Name = Kristina_asus | Source = volsnap | ID = 393252
Description = Stínové kopie svazku C: byly přerušeny, protože z důvodu limitu stanoveného
uživatelem se nepodařilo zvětšit úložiště stínové kopie.
< End of report >
[ Application Events ]
Error - 3/24/2014 3:49:53 PM | Computer Name = Kristina_asus | Source = SideBySide | ID = 16842785
Description = Generování kontextu aktivace pro C:\Program Files\WIDCOMM\Bluetooth
Software\BtwNamespaceExt.dll se nezdařilo. Závislé sestavení Microsoft.VC80.MFC,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0"
nelze najít. Podrobnější diagnostické údaje získáte pomocí programu sxstrace.exe.
Error - 3/24/2014 3:49:53 PM | Computer Name = Kristina_asus | Source = SideBySide | ID = 16842785
Description = Generování kontextu aktivace pro C:\Program Files\WIDCOMM\Bluetooth
Software\BtwNamespaceExt.dll se nezdařilo. Závislé sestavení Microsoft.VC80.MFC,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0"
nelze najít. Podrobnější diagnostické údaje získáte pomocí programu sxstrace.exe.
Error - 3/24/2014 4:39:58 PM | Computer Name = Kristina_asus | Source = Application Hang | ID = 1002
Description = Program TS3.exe verze 0.0.0.11195 přestal spolupracovat se systémem
Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací o tomto
problému, vyhledejte historii problému v ovládacím panelu Centrum akcí. ID procesu:
d9c Čas spuštění: 01cf47a10f3abf3d Čas ukončení: 193 Cesta k aplikaci: C:\Users\asus\Downloads\The
Sims 3\Game\Bin\TS3.exe ID hlášení:
Error - 3/25/2014 12:07:42 PM | Computer Name = Kristina_asus | Source = Application Hang | ID = 1002
Description = Program OneClick.exe verze 14.0.1001.206 přestal spolupracovat se
systémem Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací
o tomto problému, vyhledejte historii problému v ovládacím panelu Centrum akcí.
ID
procesu: 870 Čas spuštění: 01cf484156a810d1 Čas ukončení: 795 Cesta k aplikaci: C:\Program
Files\AVG PC TuneUp 2014\OneClick.exe ID hlášení: 6cfd2792-b437-11e3-b816-002243ffc212
Error - 3/25/2014 12:34:59 PM | Computer Name = Kristina_asus | Source = Windows Installer 3.1 | ID = 921877
Description =
Error - 3/25/2014 12:38:18 PM | Computer Name = Kristina_asus | Source = Application Error | ID = 1000
Description = Název chybující aplikace: TS3W.exe, verze: 0.2.0.164, časové razítko:
0x4e72aec1 Název chybujícího modulu: TS3W.exe, verze: 0.2.0.164, časové razítko:
0x4e72aec1 Kód výjimky: 0x80000003 Posun chyby: 0x0018a526 ID chybujícího procesu:
0xc9c Čas spuštění chybující aplikace: 0x01cf4848960f7c7a Cesta k chybující aplikaci:
C:\Users\asus\Downloads\rld-sim3\Game\Bin\TS3W.exe Cesta k chybujícímu modulu: C:\Users\asus\Downloads\rld-sim3\Game\Bin\TS3W.exe
ID
zprávy: de0d6698-b43b-11e3-b816-002243ffc212
Error - 3/25/2014 12:38:55 PM | Computer Name = Kristina_asus | Source = Application Error | ID = 1000
Description = Název chybující aplikace: TS3W.exe, verze: 0.2.0.164, časové razítko:
0x4e72aec1 Název chybujícího modulu: TS3W.exe, verze: 0.2.0.164, časové razítko:
0x4e72aec1 Kód výjimky: 0x80000003 Posun chyby: 0x0018a526 ID chybujícího procesu:
0xc28 Čas spuštění chybující aplikace: 0x01cf4848b02aa484 Cesta k chybující aplikaci:
C:\Users\asus\Downloads\rld-sim3\Game\Bin\TS3W.exe Cesta k chybujícímu modulu: C:\Users\asus\Downloads\rld-sim3\Game\Bin\TS3W.exe
ID
zprávy: f40c8500-b43b-11e3-b816-002243ffc212
Error - 3/26/2014 5:06:27 AM | Computer Name = Kristina_asus | Source = Application Hang | ID = 1002
Description = Program TS3.exe verze 0.0.0.11190 přestal spolupracovat se systémem
Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací o tomto
problému, vyhledejte historii problému v ovládacím panelu Centrum akcí. ID procesu:
1748 Čas spuštění: 01cf48d2874f4a5d Čas ukončení: 206 Cesta k aplikaci: C:\Users\asus\Downloads\rld-sim3\Game\Bin\TS3.exe
ID
hlášení:
Error - 3/26/2014 9:14:46 AM | Computer Name = Kristina_asus | Source = System Restore | ID = 8193
Description =
Error - 3/26/2014 10:25:39 AM | Computer Name = Kristina_asus | Source = Application Error | ID = 1000
Description = Název chybující aplikace: Sims3LauncherW.exe, verze: 0.2.0.164, časové
razítko: 0x4e72b5ff Název chybujícího modulu: CmdPortalClient.dll_unloaded, verze:
0.0.0.0, časové razítko: 0x4d6d1ae1 Kód výjimky: 0xc0000005 Posun chyby: 0x054d54a8
ID
chybujícího procesu: 0x84c Čas spuštění chybující aplikace: 0x01cf48ff14a236fa Cesta
k chybující aplikaci: C:\Program Files\Electronic Arts\The Sims 3\Game\Bin\Sims3LauncherW.exe
Cesta
k chybujícímu modulu: CmdPortalClient.dll ID zprávy: 80622aca-b4f2-11e3-9f91-002243ffc212
Error - 3/26/2014 10:50:24 AM | Computer Name = Kristina_asus | Source = Application Error | ID = 1000
Description = Název chybující aplikace: Sims3Setup.exe, verze: 15.0.0.498, časové
razítko: 0x482518da Název chybujícího modulu: ISRT.dll_unloaded, verze: 0.0.0.0,
časové razítko: 0x482518ba Kód výjimky: 0xc0000005 Posun chyby: 0x04b73da0 ID chybujícího
procesu: 0x410 Čas spuštění chybující aplikace: 0x01cf4901b55efaef Cesta k chybující
aplikaci: C:\Users\asus\Downloads\rld-sim3\Sims3Setup.exe Cesta k chybujícímu modulu:
ISRT.dll ID zprávy: f5812b8b-b4f5-11e3-9f91-002243ffc212
Error - 3/26/2014 2:57:14 PM | Computer Name = Kristina_asus | Source = System Restore | ID = 8193
Description =
[ Media Center Events ]
Error - 8/25/2010 7:07:15 AM | Computer Name = asus-PC | Source = MCUpdate | ID = 0
Description = 13:07:15 - Chyba při připojování k Internetu 13:07:15 - Nelze kontaktovat
server..
Error - 8/25/2010 7:07:31 AM | Computer Name = asus-PC | Source = MCUpdate | ID = 0
Description = 13:07:21 - Chyba při připojování k Internetu 13:07:21 - Nelze kontaktovat
server..
Error - 8/31/2010 4:57:21 AM | Computer Name = asus-PC | Source = MCUpdate | ID = 0
Description = 10:57:20 - Chyba při připojování k Internetu 10:57:20 - Nelze kontaktovat
server..
Error - 8/31/2010 4:57:55 AM | Computer Name = asus-PC | Source = MCUpdate | ID = 0
Description = 10:57:27 - Chyba při připojování k Internetu 10:57:27 - Nelze kontaktovat
server..
Error - 8/31/2010 5:58:05 AM | Computer Name = asus-PC | Source = MCUpdate | ID = 0
Description = 11:58:04 - Chyba při připojování k Internetu 11:58:05 - Nelze kontaktovat
server..
Error - 8/31/2010 5:58:16 AM | Computer Name = asus-PC | Source = MCUpdate | ID = 0
Description = 11:58:10 - Chyba při připojování k Internetu 11:58:10 - Nelze kontaktovat
server..
Error - 8/31/2010 6:59:12 AM | Computer Name = asus-PC | Source = MCUpdate | ID = 0
Description = 12:59:11 - Chyba při připojování k Internetu 12:59:11 - Nelze kontaktovat
server..
Error - 8/31/2010 6:59:24 AM | Computer Name = asus-PC | Source = MCUpdate | ID = 0
Description = 12:59:17 - Chyba při připojování k Internetu 12:59:17 - Nelze kontaktovat
server..
Error - 8/31/2010 7:59:54 AM | Computer Name = asus-PC | Source = MCUpdate | ID = 0
Description = 13:59:53 - Chyba při připojování k Internetu 13:59:54 - Nelze kontaktovat
server..
Error - 8/31/2010 8:00:06 AM | Computer Name = asus-PC | Source = MCUpdate | ID = 0
Description = 13:59:59 - Chyba při připojování k Internetu 13:59:59 - Nelze kontaktovat
server..
[ System Events ]
Error - 3/27/2014 10:44:34 AM | Computer Name = Kristina_asus | Source = Service Control Manager | ID = 7000
Description = Služba Update Surftastic neuspěla při spuštění v důsledku následující
chyby: %%2
Error - 3/27/2014 10:46:08 AM | Computer Name = Kristina_asus | Source = Microsoft Antimalware | ID = 2001
Description = %%860 zjistil chybu při pokusu o aktualizaci podpisů. Nová verze podpisu:
Předchozí verze podpisu: 1.169.880.0 Zdroj aktualizace: %%859 Fáze aktualizace: %%853
Zdrojová
cesta: http://www.microsoft.com Typ podpisu: %%800 Typ aktualizace: %%803 Uživatel:
NT AUTHORITY\SYSTEM Aktuální verze modulu: Předchozí verze modulu: 1.1.10401.0 Kód
chyby: 0x8024001e Popis chyby: Při zjišťování aktualizací došlo k neočekávaným potížím.
Informace o instalaci nebo řešení potíží s aktualizacemi naleznete v nápovědě a
podpoře.
Error - 3/27/2014 10:46:08 AM | Computer Name = Kristina_asus | Source = Microsoft Antimalware | ID = 2001
Description = %%860 zjistil chybu při pokusu o aktualizaci podpisů. Nová verze podpisu:
Předchozí verze podpisu: 1.169.880.0 Zdroj aktualizace: %%859 Fáze aktualizace: %%853
Zdrojová
cesta: http://www.microsoft.com Typ podpisu: %%800 Typ aktualizace: %%803 Uživatel:
NT AUTHORITY\SYSTEM Aktuální verze modulu: Předchozí verze modulu: 1.1.10401.0 Kód
chyby: 0x8024001e Popis chyby: Při zjišťování aktualizací došlo k neočekávaným potížím.
Informace o instalaci nebo řešení potíží s aktualizacemi naleznete v nápovědě a
podpoře.
Error - 3/27/2014 10:47:27 AM | Computer Name = Kristina_asus | Source = Service Control Manager | ID = 7000
Description = Služba Update Surftastic neuspěla při spuštění v důsledku následující
chyby: %%2
Error - 3/27/2014 11:01:32 AM | Computer Name = Kristina_asus | Source = Service Control Manager | ID = 7030
Description = Služba PEVSystemStart je označena jako interaktivní služba. Avšak
systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba
nebude fungovat správně.
Error - 3/27/2014 11:14:18 AM | Computer Name = Kristina_asus | Source = Service Control Manager | ID = 7030
Description = Služba PEVSystemStart je označena jako interaktivní služba. Avšak
systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba
nebude fungovat správně.
Error - 3/27/2014 11:24:46 AM | Computer Name = Kristina_asus | Source = Service Control Manager | ID = 7030
Description = Služba PEVSystemStart je označena jako interaktivní služba. Avšak
systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba
nebude fungovat správně.
Error - 3/27/2014 11:25:06 AM | Computer Name = Kristina_asus | Source = Service Control Manager | ID = 7030
Description = Služba PEVSystemStart je označena jako interaktivní služba. Avšak
systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba
nebude fungovat správně.
Error - 3/27/2014 11:26:25 AM | Computer Name = Kristina_asus | Source = EventLog | ID = 6008
Description = Předchozí vypnutí systému (16:24:58, ?27.?3.?2014) bylo neočekávané.
Error - 3/27/2014 12:38:30 PM | Computer Name = Kristina_asus | Source = volsnap | ID = 393252
Description = Stínové kopie svazku C: byly přerušeny, protože z důvodu limitu stanoveného
uživatelem se nepodařilo zvětšit úložiště stínové kopie.
< End of report >
Re: Program blokovan zasadami skupiny co stím ?


Kliknete na Main menu a na Do a system scan only
U techto radku (pokud je tam najdete) dejte vlevo zatrzitko
Kód: Vybrat vše
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKCU\..\Run: [oxrwzv] regsvr32.exe "C:\ProgramData\oxrwzv.dat"
O4 - HKCU\..\Run: [uTorrent] "C:\Users\asus\AppData\Roaming\uTorrent\uTorrent.exe" /MINIMIZED
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe


Do spodniho okna vlozte nasledujici text (vcetne te dvojtecky pred slovem commands)
Kód: Vybrat vše
:commands
[EMPTYTEMP]
[EMPTYFLASH]
[Purity]
[CreateRestorePoint]
:services
gupdate
gupdatem
avast! Antivirus
Update Surftastic
Util Surftastic
:files
%windir%\system32\*.tmp.dll /s
%windir%\system32\SET*.tmp /s
%windir%\*.tmp
C:\windows\tasks\Adobe Flash Player Updater.job
C:\windows\tasks\GoogleUpdateTaskMachineCore.job
C:\windows\tasks\GoogleUpdateTaskMachineUA.job
C:\Program Files\AVAST Software
c:\users\asus\AppData\Local\Avg2014
c:\users\asus\AppData\Roaming\AVG
c:\programdata\AVG
c:\programdata\AVAST Software
c:\program files\Surftastic
c:\program files\SmartTweak
C:\ProgramData\oxrwzv.dat
:otl
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKU\S-1-5-21-2318946186-1565977137-1874626250-1000\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKU\S-1-5-21-2318946186-1565977137-1874626250-1000\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE11SR
IE - HKU\S-1-5-21-2318946186-1565977137-1874626250-1000\..\SearchScopes\{12995981-2FD6-4BEE-9FB0-B1674E8E5E7E}: "URL" = http://websearch.4shared.com/results?q={searchTerms}
IE - HKU\S-1-5-21-2318946186-1565977137-1874626250-1000\..\SearchScopes\{2CA77391-6B3D-4C6D-9B73-3AE71385D909}: "URL" = http://search.yahoo.com/search?fr=chr-g ... =909627&p={searchTerms}
IE - HKU\S-1-5-21-2318946186-1565977137-1874626250-1000\..\SearchScopes\{367F3737-EEAB-4D48-B2A5-454460B1E483}: "URL" = http://websearch.ask.com/redirect?clien ... &src=kw&q={searchTerms}&locale=&apn_ptnrs=RY&apn_dtid=YYYYYYYYCZ&apn_uid=23b50d80-7196-4f39-a5f7-c9324947ddab&apn_sauid=FED3CEF1-DF0D-4E05-8090-5C8CB85D40F6
CHR - default_search_provider: Ask Search (Enabled)
CHR - default_search_provider: search_url = http://www.search.ask.com/web?p2=%5EBBK ... trgb=CR&q={searchTerms}
CHR - default_search_provider: suggest_url = http://ss.websearch.ask.com/query?li=ff ... =prefix&q={searchTerms},
CHR - plugin: Error reading preferences file
O3 - HKU\S-1-5-21-2318946186-1565977137-1874626250-1000\..\Toolbar\WebBrowser: (no name) - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - No CLSID value found.
O15 - HKU\S-1-5-21-2318946186-1565977137-1874626250-1000\..Trusted Domains: localhost ([]http in Internet)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
[2014/03/24 18:57:14 | 000,000,000 | ---D | C] -- C:\Users\asus\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SmartTweak Software
[43 C:\windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp files -> C:\windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp -> ]
[1 C:\windows\Installer\*.tmp files -> C:\windows\Installer\*.tmp -> ]
[1 C:\windows\SoftwareDistribution\Download\02f54841db666ca427a60ad7f6f6d71b\*.tmp files -> C:\windows\SoftwareDistribution\Download\02f54841db666ca427a60ad7f6f6d71b\*.tmp -> ]
[1 C:\windows\SoftwareDistribution\Download\096da6fd1c749aa15e3496c247e71864\*.tmp files -> C:\windows\SoftwareDistribution\Download\096da6fd1c749aa15e3496c247e71864\*.tmp -> ]
[1 C:\windows\SoftwareDistribution\Download\0a70d7cba0b4fcc081e3a0175c0c9e5a\*.tmp files -> C:\windows\SoftwareDistribution\Download\0a70d7cba0b4fcc081e3a0175c0c9e5a\*.tmp -> ]
[1 C:\windows\SoftwareDistribution\Download\10dc61acfc339f34cc946e6e0132cd00\*.tmp files -> C:\windows\SoftwareDistribution\Download\10dc61acfc339f34cc946e6e0132cd00\*.tmp -> ]
[1 C:\windows\SoftwareDistribution\Download\1a550dbfa990b01fd4aa177f131d6c6f\*.tmp files -> C:\windows\SoftwareDistribution\Download\1a550dbfa990b01fd4aa177f131d6c6f\*.tmp -> ]
[1 C:\windows\SoftwareDistribution\Download\22fd73a211fa6c1d4701d943d4e269e9\*.tmp files -> C:\windows\SoftwareDistribution\Download\22fd73a211fa6c1d4701d943d4e269e9\*.tmp -> ]
[1 C:\windows\SoftwareDistribution\Download\2a71341789a25c58614ce3d2d4959909\*.tmp files -> C:\windows\SoftwareDistribution\Download\2a71341789a25c58614ce3d2d4959909\*.tmp -> ]
[1 C:\windows\SoftwareDistribution\Download\40ad21d172f8472a7cd0054c7162ec3e\*.tmp files -> C:\windows\SoftwareDistribution\Download\40ad21d172f8472a7cd0054c7162ec3e\*.tmp -> ]
[1 C:\windows\SoftwareDistribution\Download\51463790424f1ebee097da7efb4bd6fe\*.tmp files -> C:\windows\SoftwareDistribution\Download\51463790424f1ebee097da7efb4bd6fe\*.tmp -> ]
[1 C:\windows\SoftwareDistribution\Download\5cb4d231a7ca6d84ff854c8b9b8865af\*.tmp files -> C:\windows\SoftwareDistribution\Download\5cb4d231a7ca6d84ff854c8b9b8865af\*.tmp -> ]
[1 C:\windows\SoftwareDistribution\Download\60980927f1538a388994d026f31ca72f\*.tmp files -> C:\windows\SoftwareDistribution\Download\60980927f1538a388994d026f31ca72f\*.tmp -> ]
[1 C:\windows\SoftwareDistribution\Download\710df4cda8080038ff775e3e9e476d4f\*.tmp files -> C:\windows\SoftwareDistribution\Download\710df4cda8080038ff775e3e9e476d4f\*.tmp -> ]
[1 C:\windows\SoftwareDistribution\Download\8db526ef36cf2f69cd68ac01b599bd18\*.tmp files -> C:\windows\SoftwareDistribution\Download\8db526ef36cf2f69cd68ac01b599bd18\*.tmp -> ]
[1 C:\windows\SoftwareDistribution\Download\8f195415b4b843f13a46d35bb0decbac\*.tmp files -> C:\windows\SoftwareDistribution\Download\8f195415b4b843f13a46d35bb0decbac\*.tmp -> ]
[1 C:\windows\SoftwareDistribution\Download\94161cb22681dd26124a51da7101576f\*.tmp files -> C:\windows\SoftwareDistribution\Download\94161cb22681dd26124a51da7101576f\*.tmp -> ]
[1 C:\windows\SoftwareDistribution\Download\a0a4cfb5cb3af146ad441fb09f967b2c\*.tmp files -> C:\windows\SoftwareDistribution\Download\a0a4cfb5cb3af146ad441fb09f967b2c\*.tmp -> ]
[1 C:\windows\SoftwareDistribution\Download\a397861a93d0ecdc515d887fcd34e8be\*.tmp files -> C:\windows\SoftwareDistribution\Download\a397861a93d0ecdc515d887fcd34e8be\*.tmp -> ]
[1 C:\windows\SoftwareDistribution\Download\a55e1a53a5b2736ed6d4560e5143524b\*.tmp files -> C:\windows\SoftwareDistribution\Download\a55e1a53a5b2736ed6d4560e5143524b\*.tmp -> ]
[1 C:\windows\SoftwareDistribution\Download\a7a1de40e6970116de18bf67cd084348\*.tmp files -> C:\windows\SoftwareDistribution\Download\a7a1de40e6970116de18bf67cd084348\*.tmp -> ]
[1 C:\windows\SoftwareDistribution\Download\ab7fb6af980e7d2a44a94b99be45af3a\*.tmp files -> C:\windows\SoftwareDistribution\Download\ab7fb6af980e7d2a44a94b99be45af3a\*.tmp -> ]
[1 C:\windows\SoftwareDistribution\Download\adda5b98ebfb0b3dfcefd459a6f2053e\*.tmp files -> C:\windows\SoftwareDistribution\Download\adda5b98ebfb0b3dfcefd459a6f2053e\*.tmp -> ]
[1 C:\windows\SoftwareDistribution\Download\b06d43ef1ad47f1ecbb69abdd61d49c8\*.tmp files -> C:\windows\SoftwareDistribution\Download\b06d43ef1ad47f1ecbb69abdd61d49c8\*.tmp -> ]
[1 C:\windows\SoftwareDistribution\Download\c266a5a5ef3011e235f88e9f42e86d4b\*.tmp files -> C:\windows\SoftwareDistribution\Download\c266a5a5ef3011e235f88e9f42e86d4b\*.tmp -> ]
[1 C:\windows\SoftwareDistribution\Download\ceb1937dd852874c8f265fa43d37d064\*.tmp files -> C:\windows\SoftwareDistribution\Download\ceb1937dd852874c8f265fa43d37d064\*.tmp -> ]
[1 C:\windows\SoftwareDistribution\Download\d00387fa20bf5ac8db3ac301306fc75d\*.tmp files -> C:\windows\SoftwareDistribution\Download\d00387fa20bf5ac8db3ac301306fc75d\*.tmp -> ]
[1 C:\windows\SoftwareDistribution\Download\e049e6462b8295b0012f2251f41988e8\*.tmp files -> C:\windows\SoftwareDistribution\Download\e049e6462b8295b0012f2251f41988e8\*.tmp -> ]
[1 C:\windows\SoftwareDistribution\Download\e2ce61d05a13071581f6b7dd8c0d82ac\*.tmp files -> C:\windows\SoftwareDistribution\Download\e2ce61d05a13071581f6b7dd8c0d82ac\*.tmp -> ]
[1 C:\windows\SoftwareDistribution\Download\e3aaec9858a582d21ced29b87a276347\*.tmp files -> C:\windows\SoftwareDistribution\Download\e3aaec9858a582d21ced29b87a276347\*.tmp -> ]
[1 C:\windows\SoftwareDistribution\Download\e3b8028f1dcc934be29b195d6130edb9\*.tmp files -> C:\windows\SoftwareDistribution\Download\e3b8028f1dcc934be29b195d6130edb9\*.tmp -> ]
[1 C:\windows\SoftwareDistribution\Download\f1b61dcfb3a11c472679e68923e165f2\*.tmp files -> C:\windows\SoftwareDistribution\Download\f1b61dcfb3a11c472679e68923e165f2\*.tmp -> ]
[1 C:\windows\SoftwareDistribution\Download\f3375b2ca9411258ad41fd3f1ae1ed17\*.tmp files -> C:\windows\SoftwareDistribution\Download\f3375b2ca9411258ad41fd3f1ae1ed17\*.tmp -> ]
[1 C:\windows\SoftwareDistribution\Download\fe5fb5884ec32a370b6af65fcecd3f70\*.tmp files -> C:\windows\SoftwareDistribution\Download\fe5fb5884ec32a370b6af65fcecd3f70\*.tmp -> ]
[1 C:\windows\SoftwareDistribution\Download\ffccc887133f8d4c2dbb4b0d8d2e25ef\*.tmp files -> C:\windows\SoftwareDistribution\Download\ffccc887133f8d4c2dbb4b0d8d2e25ef\*.tmp -> ]
@Alternate Data Stream - 6248 bytes -> C:\windows\PLA\System\System Diagnostics.xml:0v1ieca3Feahez0jAwxjjk5uRh
:reg
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9FDDE16B-836F-4806-AB1F-1455CBEFF289}]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Po restartu se objevi novy log, ten sem dejte.
Pokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Re: Program blokovan zasadami skupiny co stím ?
Já mam pořád problém s tím vypnout ten antivir Microsoftsecurity nebo nejak tak muzu ho nechat zaplej ?
Re: Program blokovan zasadami skupiny co stím ?
Muzete ho nechat zapnuty. Kdyby nahodou delal potize, v logu se to ukaze a zkusite to v nouzovem rezimu, kde je antivir mimo hru 

Pokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Re: Program blokovan zasadami skupiny co stím ?
ten soubor mi nejde otevrit zase mi tam pise ze je to blokovano zasadami skupiny takze to mam nejspis udelat v tom nouzovym retzimu ze?
Re: Program blokovan zasadami skupiny co stím ?
AnoKristina píše:ten soubor mi nejde otevrit zase mi tam pise ze je to blokovano zasadami skupiny takze to mam nejspis udelat v tom nouzovym retzimu ze?

Pokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Re: Program blokovan zasadami skupiny co stím ?
All processes killed
========== COMMANDS ==========
[EMPTYTEMP]
User: All Users
User: asus
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 5067 bytes
->Java cache emptied: 0 bytes
->FireFox cache emptied: 0 bytes
->Google Chrome cache emptied: 6896708 bytes
->Opera cache emptied: 0 bytes
->Flash cache emptied: 0 bytes
User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 0 bytes
User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 0 bytes
User: Public
->Temp folder emptied: 0 bytes
User: wangzhisong
->Temp folder emptied: 0 bytes
%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 0 bytes
RecycleBin emptied: 0 bytes
Total Files Cleaned = 7.00 mb
[EMPTYFLASH]
User: All Users
User: asus
->Flash cache emptied: 0 bytes
User: Default
->Flash cache emptied: 0 bytes
User: Default User
->Flash cache emptied: 0 bytes
User: Public
User: wangzhisong
Total Flash Files Cleaned = 0.00 mb
Restore point Set: OTL Restore Point
========== SERVICES/DRIVERS ==========
Error: No service named gupdate was found to stop!
Service\Driver key gupdate not found.
Error: No service named gupdatem was found to stop!
Service\Driver key gupdatem not found.
Error: No service named avast! Antivirus was found to stop!
Service\Driver key avast! Antivirus not found.
Error: No service named Update Surftastic was found to stop!
Service\Driver key Update Surftastic not found.
Error: No service named Util Surftastic was found to stop!
Service\Driver key Util Surftastic not found.
========== FILES ==========
File/Folder C:\windows\system32\*.tmp.dll not found.
File/Folder C:\windows\system32\SET*.tmp not found.
File/Folder C:\windows\*.tmp not found.
File\Folder C:\windows\tasks\Adobe Flash Player Updater.job not found.
File\Folder C:\windows\tasks\GoogleUpdateTaskMachineCore.job not found.
File\Folder C:\windows\tasks\GoogleUpdateTaskMachineUA.job not found.
File\Folder C:\Program Files\AVAST Software not found.
File\Folder c:\users\asus\AppData\Local\Avg2014 not found.
File\Folder c:\users\asus\AppData\Roaming\AVG not found.
File\Folder c:\programdata\AVG not found.
File\Folder c:\programdata\AVAST Software not found.
File\Folder c:\program files\Surftastic not found.
File\Folder c:\program files\SmartTweak not found.
File\Folder C:\ProgramData\oxrwzv.dat not found.
========== OTL ==========
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ not found.
HKEY_USERS\S-1-5-21-2318946186-1565977137-1874626250-1000\Software\Microsoft\Internet Explorer\SearchScopes\\DefaultScope| /E : value set successfully!
Registry key HKEY_USERS\S-1-5-21-2318946186-1565977137-1874626250-1000\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ not found.
Registry key HKEY_USERS\S-1-5-21-2318946186-1565977137-1874626250-1000\Software\Microsoft\Internet Explorer\SearchScopes\{12995981-2FD6-4BEE-9FB0-B1674E8E5E7E}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{12995981-2FD6-4BEE-9FB0-B1674E8E5E7E}\ not found.
Registry key HKEY_USERS\S-1-5-21-2318946186-1565977137-1874626250-1000\Software\Microsoft\Internet Explorer\SearchScopes\{2CA77391-6B3D-4C6D-9B73-3AE71385D909}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{2CA77391-6B3D-4C6D-9B73-3AE71385D909}\ not found.
Registry key HKEY_USERS\S-1-5-21-2318946186-1565977137-1874626250-1000\Software\Microsoft\Internet Explorer\SearchScopes\{367F3737-EEAB-4D48-B2A5-454460B1E483}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{367F3737-EEAB-4D48-B2A5-454460B1E483}\ not found.
Use Chrome's Settings page to remove the default_search_provider items.
Use Chrome's Settings page to remove the default_search_provider items.
Use Chrome's Settings page to remove the default_search_provider items.
Registry value HKEY_USERS\S-1-5-21-2318946186-1565977137-1874626250-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{21FA44EF-376D-4D53-9B0F-8A89D3229068} not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{21FA44EF-376D-4D53-9B0F-8A89D3229068}\ not found.
Registry key HKEY_USERS\S-1-5-21-2318946186-1565977137-1874626250-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\localhost\ not found.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad\\WebCheck not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{E6FB5E20-DE35-11CF-9C87-00AA005127ED}\ not found.
Folder C:\Users\asus\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SmartTweak Software\ not found.
File/Folder C:\windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp not found.
File/Folder C:\windows\Installer\*.tmp not found.
File/Folder C:\windows\SoftwareDistribution\Download\02f54841db666ca427a60ad7f6f6d71b\*.tmp not found.
File/Folder C:\windows\SoftwareDistribution\Download\096da6fd1c749aa15e3496c247e71864\*.tmp not found.
File/Folder C:\windows\SoftwareDistribution\Download\0a70d7cba0b4fcc081e3a0175c0c9e5a\*.tmp not found.
File/Folder C:\windows\SoftwareDistribution\Download\10dc61acfc339f34cc946e6e0132cd00\*.tmp not found.
File/Folder C:\windows\SoftwareDistribution\Download\1a550dbfa990b01fd4aa177f131d6c6f\*.tmp not found.
File/Folder C:\windows\SoftwareDistribution\Download\22fd73a211fa6c1d4701d943d4e269e9\*.tmp not found.
File/Folder C:\windows\SoftwareDistribution\Download\2a71341789a25c58614ce3d2d4959909\*.tmp not found.
File/Folder C:\windows\SoftwareDistribution\Download\40ad21d172f8472a7cd0054c7162ec3e\*.tmp not found.
File/Folder C:\windows\SoftwareDistribution\Download\51463790424f1ebee097da7efb4bd6fe\*.tmp not found.
File/Folder C:\windows\SoftwareDistribution\Download\5cb4d231a7ca6d84ff854c8b9b8865af\*.tmp not found.
File/Folder C:\windows\SoftwareDistribution\Download\60980927f1538a388994d026f31ca72f\*.tmp not found.
File/Folder C:\windows\SoftwareDistribution\Download\710df4cda8080038ff775e3e9e476d4f\*.tmp not found.
File/Folder C:\windows\SoftwareDistribution\Download\8db526ef36cf2f69cd68ac01b599bd18\*.tmp not found.
File/Folder C:\windows\SoftwareDistribution\Download\8f195415b4b843f13a46d35bb0decbac\*.tmp not found.
File/Folder C:\windows\SoftwareDistribution\Download\94161cb22681dd26124a51da7101576f\*.tmp not found.
File/Folder C:\windows\SoftwareDistribution\Download\a0a4cfb5cb3af146ad441fb09f967b2c\*.tmp not found.
File/Folder C:\windows\SoftwareDistribution\Download\a397861a93d0ecdc515d887fcd34e8be\*.tmp not found.
File/Folder C:\windows\SoftwareDistribution\Download\a55e1a53a5b2736ed6d4560e5143524b\*.tmp not found.
File/Folder C:\windows\SoftwareDistribution\Download\a7a1de40e6970116de18bf67cd084348\*.tmp not found.
File/Folder C:\windows\SoftwareDistribution\Download\ab7fb6af980e7d2a44a94b99be45af3a\*.tmp not found.
File/Folder C:\windows\SoftwareDistribution\Download\adda5b98ebfb0b3dfcefd459a6f2053e\*.tmp not found.
File/Folder C:\windows\SoftwareDistribution\Download\b06d43ef1ad47f1ecbb69abdd61d49c8\*.tmp not found.
File/Folder C:\windows\SoftwareDistribution\Download\c266a5a5ef3011e235f88e9f42e86d4b\*.tmp not found.
File/Folder C:\windows\SoftwareDistribution\Download\ceb1937dd852874c8f265fa43d37d064\*.tmp not found.
File/Folder C:\windows\SoftwareDistribution\Download\d00387fa20bf5ac8db3ac301306fc75d\*.tmp not found.
File/Folder C:\windows\SoftwareDistribution\Download\e049e6462b8295b0012f2251f41988e8\*.tmp not found.
File/Folder C:\windows\SoftwareDistribution\Download\e2ce61d05a13071581f6b7dd8c0d82ac\*.tmp not found.
File/Folder C:\windows\SoftwareDistribution\Download\e3aaec9858a582d21ced29b87a276347\*.tmp not found.
File/Folder C:\windows\SoftwareDistribution\Download\e3b8028f1dcc934be29b195d6130edb9\*.tmp not found.
File/Folder C:\windows\SoftwareDistribution\Download\f1b61dcfb3a11c472679e68923e165f2\*.tmp not found.
File/Folder C:\windows\SoftwareDistribution\Download\f3375b2ca9411258ad41fd3f1ae1ed17\*.tmp not found.
File/Folder C:\windows\SoftwareDistribution\Download\fe5fb5884ec32a370b6af65fcecd3f70\*.tmp not found.
File/Folder C:\windows\SoftwareDistribution\Download\ffccc887133f8d4c2dbb4b0d8d2e25ef\*.tmp not found.
Unable to delete ADS C:\windows\PLA\System\System Diagnostics.xml:0v1ieca3Feahez0jAwxjjk5uRh .
========== REGISTRY ==========
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{9030D464-4C02-4ABF-8ECC-5164760863C6}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9FDDE16B-836F-4806-AB1F-1455CBEFF289}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{9FDDE16B-836F-4806-AB1F-1455CBEFF289}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B4F3A835-0E21-4959-BA22-42B3008E02FF}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}\ not found.
OTL by OldTimer - Version 3.2.69.0 log created on 03302014_094846
Files\Folders moved on Reboot...
File\Folder C:\Users\asus\AppData\Local\Temp\etilqs_JUgihrBpIu2YE4R not found!
PendingFileRenameOperations files...
Registry entries deleted on Reboot...
========== COMMANDS ==========
[EMPTYTEMP]
User: All Users
User: asus
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 5067 bytes
->Java cache emptied: 0 bytes
->FireFox cache emptied: 0 bytes
->Google Chrome cache emptied: 6896708 bytes
->Opera cache emptied: 0 bytes
->Flash cache emptied: 0 bytes
User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 0 bytes
User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 0 bytes
User: Public
->Temp folder emptied: 0 bytes
User: wangzhisong
->Temp folder emptied: 0 bytes
%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 0 bytes
RecycleBin emptied: 0 bytes
Total Files Cleaned = 7.00 mb
[EMPTYFLASH]
User: All Users
User: asus
->Flash cache emptied: 0 bytes
User: Default
->Flash cache emptied: 0 bytes
User: Default User
->Flash cache emptied: 0 bytes
User: Public
User: wangzhisong
Total Flash Files Cleaned = 0.00 mb
Restore point Set: OTL Restore Point
========== SERVICES/DRIVERS ==========
Error: No service named gupdate was found to stop!
Service\Driver key gupdate not found.
Error: No service named gupdatem was found to stop!
Service\Driver key gupdatem not found.
Error: No service named avast! Antivirus was found to stop!
Service\Driver key avast! Antivirus not found.
Error: No service named Update Surftastic was found to stop!
Service\Driver key Update Surftastic not found.
Error: No service named Util Surftastic was found to stop!
Service\Driver key Util Surftastic not found.
========== FILES ==========
File/Folder C:\windows\system32\*.tmp.dll not found.
File/Folder C:\windows\system32\SET*.tmp not found.
File/Folder C:\windows\*.tmp not found.
File\Folder C:\windows\tasks\Adobe Flash Player Updater.job not found.
File\Folder C:\windows\tasks\GoogleUpdateTaskMachineCore.job not found.
File\Folder C:\windows\tasks\GoogleUpdateTaskMachineUA.job not found.
File\Folder C:\Program Files\AVAST Software not found.
File\Folder c:\users\asus\AppData\Local\Avg2014 not found.
File\Folder c:\users\asus\AppData\Roaming\AVG not found.
File\Folder c:\programdata\AVG not found.
File\Folder c:\programdata\AVAST Software not found.
File\Folder c:\program files\Surftastic not found.
File\Folder c:\program files\SmartTweak not found.
File\Folder C:\ProgramData\oxrwzv.dat not found.
========== OTL ==========
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ not found.
HKEY_USERS\S-1-5-21-2318946186-1565977137-1874626250-1000\Software\Microsoft\Internet Explorer\SearchScopes\\DefaultScope| /E : value set successfully!
Registry key HKEY_USERS\S-1-5-21-2318946186-1565977137-1874626250-1000\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ not found.
Registry key HKEY_USERS\S-1-5-21-2318946186-1565977137-1874626250-1000\Software\Microsoft\Internet Explorer\SearchScopes\{12995981-2FD6-4BEE-9FB0-B1674E8E5E7E}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{12995981-2FD6-4BEE-9FB0-B1674E8E5E7E}\ not found.
Registry key HKEY_USERS\S-1-5-21-2318946186-1565977137-1874626250-1000\Software\Microsoft\Internet Explorer\SearchScopes\{2CA77391-6B3D-4C6D-9B73-3AE71385D909}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{2CA77391-6B3D-4C6D-9B73-3AE71385D909}\ not found.
Registry key HKEY_USERS\S-1-5-21-2318946186-1565977137-1874626250-1000\Software\Microsoft\Internet Explorer\SearchScopes\{367F3737-EEAB-4D48-B2A5-454460B1E483}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{367F3737-EEAB-4D48-B2A5-454460B1E483}\ not found.
Use Chrome's Settings page to remove the default_search_provider items.
Use Chrome's Settings page to remove the default_search_provider items.
Use Chrome's Settings page to remove the default_search_provider items.
Registry value HKEY_USERS\S-1-5-21-2318946186-1565977137-1874626250-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{21FA44EF-376D-4D53-9B0F-8A89D3229068} not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{21FA44EF-376D-4D53-9B0F-8A89D3229068}\ not found.
Registry key HKEY_USERS\S-1-5-21-2318946186-1565977137-1874626250-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\localhost\ not found.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad\\WebCheck not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{E6FB5E20-DE35-11CF-9C87-00AA005127ED}\ not found.
Folder C:\Users\asus\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SmartTweak Software\ not found.
File/Folder C:\windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp not found.
File/Folder C:\windows\Installer\*.tmp not found.
File/Folder C:\windows\SoftwareDistribution\Download\02f54841db666ca427a60ad7f6f6d71b\*.tmp not found.
File/Folder C:\windows\SoftwareDistribution\Download\096da6fd1c749aa15e3496c247e71864\*.tmp not found.
File/Folder C:\windows\SoftwareDistribution\Download\0a70d7cba0b4fcc081e3a0175c0c9e5a\*.tmp not found.
File/Folder C:\windows\SoftwareDistribution\Download\10dc61acfc339f34cc946e6e0132cd00\*.tmp not found.
File/Folder C:\windows\SoftwareDistribution\Download\1a550dbfa990b01fd4aa177f131d6c6f\*.tmp not found.
File/Folder C:\windows\SoftwareDistribution\Download\22fd73a211fa6c1d4701d943d4e269e9\*.tmp not found.
File/Folder C:\windows\SoftwareDistribution\Download\2a71341789a25c58614ce3d2d4959909\*.tmp not found.
File/Folder C:\windows\SoftwareDistribution\Download\40ad21d172f8472a7cd0054c7162ec3e\*.tmp not found.
File/Folder C:\windows\SoftwareDistribution\Download\51463790424f1ebee097da7efb4bd6fe\*.tmp not found.
File/Folder C:\windows\SoftwareDistribution\Download\5cb4d231a7ca6d84ff854c8b9b8865af\*.tmp not found.
File/Folder C:\windows\SoftwareDistribution\Download\60980927f1538a388994d026f31ca72f\*.tmp not found.
File/Folder C:\windows\SoftwareDistribution\Download\710df4cda8080038ff775e3e9e476d4f\*.tmp not found.
File/Folder C:\windows\SoftwareDistribution\Download\8db526ef36cf2f69cd68ac01b599bd18\*.tmp not found.
File/Folder C:\windows\SoftwareDistribution\Download\8f195415b4b843f13a46d35bb0decbac\*.tmp not found.
File/Folder C:\windows\SoftwareDistribution\Download\94161cb22681dd26124a51da7101576f\*.tmp not found.
File/Folder C:\windows\SoftwareDistribution\Download\a0a4cfb5cb3af146ad441fb09f967b2c\*.tmp not found.
File/Folder C:\windows\SoftwareDistribution\Download\a397861a93d0ecdc515d887fcd34e8be\*.tmp not found.
File/Folder C:\windows\SoftwareDistribution\Download\a55e1a53a5b2736ed6d4560e5143524b\*.tmp not found.
File/Folder C:\windows\SoftwareDistribution\Download\a7a1de40e6970116de18bf67cd084348\*.tmp not found.
File/Folder C:\windows\SoftwareDistribution\Download\ab7fb6af980e7d2a44a94b99be45af3a\*.tmp not found.
File/Folder C:\windows\SoftwareDistribution\Download\adda5b98ebfb0b3dfcefd459a6f2053e\*.tmp not found.
File/Folder C:\windows\SoftwareDistribution\Download\b06d43ef1ad47f1ecbb69abdd61d49c8\*.tmp not found.
File/Folder C:\windows\SoftwareDistribution\Download\c266a5a5ef3011e235f88e9f42e86d4b\*.tmp not found.
File/Folder C:\windows\SoftwareDistribution\Download\ceb1937dd852874c8f265fa43d37d064\*.tmp not found.
File/Folder C:\windows\SoftwareDistribution\Download\d00387fa20bf5ac8db3ac301306fc75d\*.tmp not found.
File/Folder C:\windows\SoftwareDistribution\Download\e049e6462b8295b0012f2251f41988e8\*.tmp not found.
File/Folder C:\windows\SoftwareDistribution\Download\e2ce61d05a13071581f6b7dd8c0d82ac\*.tmp not found.
File/Folder C:\windows\SoftwareDistribution\Download\e3aaec9858a582d21ced29b87a276347\*.tmp not found.
File/Folder C:\windows\SoftwareDistribution\Download\e3b8028f1dcc934be29b195d6130edb9\*.tmp not found.
File/Folder C:\windows\SoftwareDistribution\Download\f1b61dcfb3a11c472679e68923e165f2\*.tmp not found.
File/Folder C:\windows\SoftwareDistribution\Download\f3375b2ca9411258ad41fd3f1ae1ed17\*.tmp not found.
File/Folder C:\windows\SoftwareDistribution\Download\fe5fb5884ec32a370b6af65fcecd3f70\*.tmp not found.
File/Folder C:\windows\SoftwareDistribution\Download\ffccc887133f8d4c2dbb4b0d8d2e25ef\*.tmp not found.
Unable to delete ADS C:\windows\PLA\System\System Diagnostics.xml:0v1ieca3Feahez0jAwxjjk5uRh .
========== REGISTRY ==========
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{9030D464-4C02-4ABF-8ECC-5164760863C6}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9FDDE16B-836F-4806-AB1F-1455CBEFF289}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{9FDDE16B-836F-4806-AB1F-1455CBEFF289}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B4F3A835-0E21-4959-BA22-42B3008E02FF}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}\ not found.
OTL by OldTimer - Version 3.2.69.0 log created on 03302014_094846
Files\Folders moved on Reboot...
File\Folder C:\Users\asus\AppData\Local\Temp\etilqs_JUgihrBpIu2YE4R not found!
PendingFileRenameOperations files...
Registry entries deleted on Reboot...
Re: Program blokovan zasadami skupiny co stím ?
Vy jste to spustila vicekrat, ze?
Dejte novy log z RSIT

Pokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).