Zdravim pocitac nejde vypnout.Nesel spustit spy bot a Malwarebytes Anti-Malware.
Projel sem to ted RSIT programkem a prikladam log.
Logfile of random's system information tool 1.10 (written by random/random)
Run by lukas at 2014-06-19 09:47:41
Microsoft Windows 7 Ultimate
System drive C: has 20 GB (28%) free of 71 GB
Total RAM: 8153 MB (71% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 9:48:00, on 19.6.2014
Platform: Windows 7 (WinNT 6.00.3504)
MSIE: Unable to get Internet Explorer version!
Boot mode: Normal
Running processes:
C:\Program Files (x86)\ASUS\AI Suite II\AsRoutineController.exe
C:\Program Files (x86)\ASUS\AI Suite II\EasyUpdate\EzUpdt.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files (x86)\Common Files\Comodo\GeekBuddyRSP.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\AdTrustMedia\PrivDog\2.1.0.23\trustedadssvc.exe
C:\Program Files (x86)\ASUS\AI Suite II\TurboV EVO\TurboVHelp.exe
C:\Program Files (x86)\ASUS\AI Suite II\EPU\EPUHelp.exe
C:\Program Files (x86)\ASUS\AI Suite II\AI Suite II.exe
C:\Program Files (x86)\ASUS\AI Suite II\Sensor\AlertHelper\AlertHelper.exe
C:\Users\lukas\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\lukas\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\lukas\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\lukas\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\lukas\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\lukas\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\lukas\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\lukas\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Program Files\trend micro\lukas.exe
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
O2 - BHO: AMD SteadyVideo BHO - {6C680BAE-655C-4E3D-8FC4-E6A520C3D928} - C:\Program Files (x86)\amd\SteadyVideo\SteadyVideo.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O2 - BHO: PrivDogExtension - {FB16E5C3-A9E2-47A2-8EFC-319E775E62CC} - C:\Program Files (x86)\AdTrustMedia\PrivDog\2.1.0.23\trustedads.dll
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [tvncontrol] "C:\Program Files (x86)\Common Files\COMODO\GeekBuddyRSP.exe" -controlservice -slave
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [PrivDogService] "C:\Program Files (x86)\AdTrustMedia\PrivDog\2.1.0.23\trustedadssvc.exe"
O9 - Extra button: PrivDog - {2F5C139F-79BD-4C84-A95A-E7140525BC55} - C:\Program Files (x86)\AdTrustMedia\PrivDog\2.1.0.23\trustedads.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Filter: video/mp4 - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files (x86)\amd\SteadyVideo\VideoMIMEFilter.dll
O18 - Filter: video/x-flv - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files (x86)\amd\SteadyVideo\VideoMIMEFilter.dll
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: AMD FUEL Service - Advanced Micro Devices, Inc. - C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
O23 - Service: ASUS Com Service (asComSvc) - Unknown owner - C:\Program Files (x86)\ASUS\AXSP\1.00.19\atkexComSvc.exe
O23 - Service: ASUS HM Com Service (asHmComSvc) - Unknown owner - C:\Program Files (x86)\ASUS\AAHM\1.00.14\aaHMSvc.exe
O23 - Service: ASUS System Control Service (AsSysCtrlService) - ASUSTeK Computer Inc. - C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.13\AsSysCtrlService.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: COMODO LPS Launcher (CLPSLauncher) - Comodo Security Solutions, Inc. - C:\Program Files (x86)\Common Files\COMODO\launcher_service.exe
O23 - Service: COMODO Internet Security Helper Service (cmdAgent) - COMODO - C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
O23 - Service: COMODO Virtual Service Manager (cmdvirth) - COMODO - C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: GeekBuddyRSP Server (GeekBuddyRSP) - Comodo Security Solutions, Inc. - C:\Program Files (x86)\Common Files\COMODO\GeekBuddyRSP.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @C:\Program Files (x86)\Nero\Update\NASvc.exe,-200 (NAUpdate) - Nero AG - C:\Program Files (x86)\Nero\Update\NASvc.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Internet Pass-Through Service (PassThru Service) - Unknown owner - C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Protexis Licensing V2 (PSI_SVC_2) - Protexis Inc. - c:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: Sony PC Companion - Avanquest Software - C:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 8859 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
winlogon.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
"C:\Program Files (x86)\Common Files\COMODO\launcher_service.exe"
C:\Windows\system32\svchost.exe -k RPCSS
"C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe"
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
atieclxx
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"taskhost.exe"
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe" /launchService
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
taskeng.exe {F9894D22-59DF-4314-9B5A-816409C03EEF}
"C:\Program Files\COMODO\COMODO Internet Security\cistray.exe"
"C:\Program Files (x86)\ASUS\AI Suite II\AsRoutineController.exe" -open
"C:\Program Files (x86)\ASUS\AXSP\1.00.19\atkexComSvc.exe"
"C:\Program Files (x86)\ASUS\AI Suite II\EasyUpdate\EzUpdt.exe" -onlytray
"C:\Program Files (x86)\ASUS\AAHM\1.00.14\aaHMSvc.exe"
"C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
"C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.13\AsSysCtrlService.exe"
"C:\Program Files (x86)\Common Files\Comodo\GeekBuddyRSP.exe" -controlservice -slave
"C:\Program Files (x86)\Common Files\COMODO\GeekBuddyRSP.exe" -service
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM" PriorityLow
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
"C:\Program Files (x86)\AdTrustMedia\PrivDog\2.1.0.23\trustedadssvc.exe"
"C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe"
C:\Windows\SysWOW64\PnkBstrA.exe
"c:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe"
"C:\Program Files (x86)\ASUS\AI Suite II\TurboV EVO\TurboVHelp.exe" -Init
C:\Windows\system32\svchost.exe -k imgsvc
C:\Windows\System32\svchost.exe -k secsvcs
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
WLIDSvcM.exe 2912
"C:\Program Files (x86)\ASUS\AI Suite II\EPU\EPUHelp.exe" -Init
C:\Windows\system32\SearchIndexer.exe /Embedding
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\Program Files (x86)\ASUS\AI Suite II\AI Suite II.exe" -hide
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files\COMODO\COMODO Internet Security\cavwp.exe" /ModeAvMonitor -Embedding
"C:\Program Files (x86)\ASUS\AI Suite II\Sensor\AlertHelper\AlertHelper.exe" -hide
"C:\Program Files\COMODO\COMODO Internet Security\cis.exe" --alertsUI
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0
"C:\Program Files (x86)\Nero\Update\NASvc.exe"
C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Users\lukas\AppData\Local\Google\Chrome\Application\chrome.exe"
"C:\Users\lukas\AppData\Local\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="6028.0.1035621626\621618799" --supports-dual-gpus=false --gpu-driver-bug-workarounds=1,15 --disable-accelerated-video-decode --gpu-vendor-id=0x1002 --gpu-device-id=0x94b3 --gpu-driver-vendor="Advanced Micro Devices, Inc." --gpu-driver-version=8.970.100.0 --ignored=" --type=renderer " /prefetch:822062411
"C:\Users\lukas\AppData\Local\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="BrowserBlacklist/Enabled/BrowserPreReadExperiment/100-pct-default/ChromeSuggestions/Most Likely with Kodachrome/EmbeddedSearch/Group5 pct:10e stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/ExtensionInstallVerification/Enforce/GoogleNow/Enable/OmniboxBundledExperimentV1/StandardR4/OmniboxStopTimer/Standard/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/QUIC/Disabled/SettingsEnforcement/no_enforcement/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group6/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_09/UMA-Uniformity-Trial-1-Percent/group_59/UMA-Uniformity-Trial-10-Percent/group_06/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_03/UMA-Uniformity-Trial-5-Percent/group_14/UMA-Uniformity-Trial-50-Percent/default/VoiceTrigger/Install/" --extension-process --renderer-print-preview --enable-threaded-compositing --enable-delegated-renderer --disable-accelerated-video-decode --enable-software-compositing --channel="6028.2.1575638703\2126800505" /prefetch:673131151
"C:\Users\lukas\AppData\Local\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="BrowserBlacklist/Enabled/BrowserPreReadExperiment/100-pct-default/ChromeSuggestions/Most Likely with Kodachrome/EmbeddedSearch/Group5 pct:10e stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/ExtensionInstallVerification/Enforce/GoogleNow/Enable/OmniboxBundledExperimentV1/StandardR4/OmniboxStopTimer/Standard/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/QUIC/Disabled/SettingsEnforcement/no_enforcement/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group6/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_09/UMA-Uniformity-Trial-1-Percent/group_59/UMA-Uniformity-Trial-10-Percent/group_06/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_03/UMA-Uniformity-Trial-5-Percent/group_14/UMA-Uniformity-Trial-50-Percent/default/VoiceTrigger/Install/" --extension-process --renderer-print-preview --enable-threaded-compositing --enable-delegated-renderer --disable-accelerated-video-decode --enable-software-compositing --channel="6028.3.86709719\1364959527" /prefetch:673131151
"C:\Users\lukas\AppData\Local\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="BrowserBlacklist/Enabled/BrowserPreReadExperiment/100-pct-default/ChromeSuggestions/Most Likely with Kodachrome/EmbeddedSearch/Group5 pct:10e stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/ExtensionInstallVerification/Enforce/GoogleNow/Enable/OmniboxBundledExperimentV1/StandardR4/OmniboxStopTimer/Standard/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/QUIC/Disabled/SettingsEnforcement/no_enforcement/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group6/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_09/UMA-Uniformity-Trial-1-Percent/group_59/UMA-Uniformity-Trial-10-Percent/group_06/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_03/UMA-Uniformity-Trial-5-Percent/group_14/UMA-Uniformity-Trial-50-Percent/default/VoiceTrigger/Install/" --extension-process --renderer-print-preview --enable-threaded-compositing --enable-delegated-renderer --disable-accelerated-video-decode --enable-software-compositing --channel="6028.4.358161879\1687640849" /prefetch:673131151
"C:\Users\lukas\AppData\Local\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="BrowserBlacklist/Enabled/BrowserPreReadExperiment/100-pct-default/ChromeSuggestions/Most Likely with Kodachrome/EmbeddedSearch/Group5 pct:10e stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/ExtensionInstallVerification/Enforce/GoogleNow/Enable/OmniboxBundledExperimentV1/StandardR4/OmniboxStopTimer/Standard/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/QUIC/Disabled/SettingsEnforcement/no_enforcement/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group6/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_09/UMA-Uniformity-Trial-1-Percent/group_59/UMA-Uniformity-Trial-10-Percent/group_06/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_03/UMA-Uniformity-Trial-5-Percent/group_14/UMA-Uniformity-Trial-50-Percent/default/VoiceTrigger/Install/" --extension-process --renderer-print-preview --enable-threaded-compositing --enable-delegated-renderer --disable-accelerated-video-decode --enable-software-compositing --channel="6028.5.14681708\2043582264" /prefetch:673131151
"C:\Users\lukas\AppData\Local\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="BrowserBlacklist/Enabled/BrowserPreReadExperiment/100-pct-default/ChromeSuggestions/Most Likely with Kodachrome/EmbeddedSearch/Group5 pct:10e stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/ExtensionInstallVerification/Enforce/GoogleNow/Enable/OmniboxBundledExperimentV1/StandardR4/OmniboxStopTimer/Standard/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/QUIC/Disabled/SettingsEnforcement/no_enforcement/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group6/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_09/UMA-Uniformity-Trial-1-Percent/group_59/UMA-Uniformity-Trial-10-Percent/group_06/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_03/UMA-Uniformity-Trial-5-Percent/group_14/UMA-Uniformity-Trial-50-Percent/default/VoiceTrigger/Install/" --renderer-print-preview --enable-threaded-compositing --enable-delegated-renderer --disable-accelerated-video-decode --enable-software-compositing --channel="6028.8.1837440525\1952244555" /prefetch:673131151
"C:\Users\lukas\AppData\Local\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="BrowserBlacklist/Enabled/BrowserPreReadExperiment/100-pct-default/ChromeSuggestions/Most Likely with Kodachrome/EmbeddedSearch/Group5 pct:10e stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/ExtensionInstallVerification/Enforce/GoogleNow/Enable/OmniboxBundledExperimentV1/StandardR4/OmniboxStopTimer/Standard/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/QUIC/Disabled/SettingsEnforcement/no_enforcement/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group6/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_09/UMA-Uniformity-Trial-1-Percent/group_59/UMA-Uniformity-Trial-10-Percent/group_06/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_03/UMA-Uniformity-Trial-5-Percent/group_14/UMA-Uniformity-Trial-50-Percent/default/VoiceTrigger/Install/" --renderer-print-preview --instant-process --enable-threaded-compositing --enable-delegated-renderer --disable-accelerated-video-decode --enable-software-compositing --channel="6028.9.436525444\1505567868" /prefetch:673131151
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe3_ Global\UsGthrCtrlFltPipeMssGthrPipe3 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Windows\system32\SearchFilterHost.exe" 0 820 824 832 65536 828
"E:\download\RSITx64.exe"
C:\Windows\System32\svchost.exe -k WerSvcGroup
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1575853709-75552691-4080425000-1000Core.job - C:\Users\lukas\AppData\Local\Google\Update\GoogleUpdate.exe /c
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1575853709-75552691-4080425000-1000UA.job - C:\Users\lukas\AppData\Local\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
=========Mozilla firefox=========
ProfilePath - C:\Users\lukas\AppData\Roaming\Mozilla\Firefox\Profiles\dbwjkwv5.default
prefs.js - "browser.startup.homepage" - "http://www.thesettlers-online.cz/cs/dom ... r%C3%A1nka"
prefs.js - "extensions.enabledItems" - "{CAFEEFAC-0016-0000-0010-ABCDEFFEDCBA}:6.0.10, {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.6"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 13.0.0.214 Plugin
"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_13_0_0_214.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@esn/esnlaunch,version=1.104.0]
"Description"=
"Path"=C:\Program Files (x86)\Battlelog Web Plugins\1.104.0\npesnlaunch.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@esn/esnlaunch,version=1.132.0]
"Description"=
"Path"=C:\Program Files (x86)\Battlelog Web Plugins\1.132.0\npesnlaunch.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=10.55.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=10.55.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Nero.com/KM]
"Description"=
"Path"=C:\PROGRA~2\COMMON~1\Nero\BROWSE~1\NPBROW~1.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@ngm.nexoneu.com/NxGame]
"Description"=Nexon Game Controller
"Path"=C:\ProgramData\NexonEU\NGM\npNxGameEU.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@pandonetworks.com/PandoWebPlugin]
"Description"=This plugin detects and launches Pando Media Booster
"Path"=C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 13.0.0.214 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_13_0_0_214.dll
e:\Program Files (x86)\Mozilla Firefox\components\
npwachk.xpt
e:\Program Files (x86)\Mozilla Firefox\plugins\
nppdf32.dll
npwachk.dll
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6C680BAE-655C-4E3D-8FC4-E6A520C3D928}]
SteadyVideoBHO Class - C:\Program Files\AMD\SteadyVideo\SteadyVideo.dll [2012-02-13 81024]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2014-04-10 724512]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-08-18 532336]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6C680BAE-655C-4E3D-8FC4-E6A520C3D928}]
SteadyVideoBHO Class - C:\Program Files (x86)\amd\SteadyVideo\SteadyVideo.dll [2012-02-13 69760]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2014-05-16 462760]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2014-04-10 597816]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-08-18 403840]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2014-05-16 171944]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FB16E5C3-A9E2-47A2-8EFC-319E775E62CC}]
PrivDog Extension - C:\Program Files (x86)\AdTrustMedia\PrivDog\2.1.0.23\trustedads.dll [2014-04-29 932520]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{318A227B-5E9F-45bd-8999-7F8F10CA4CF5}
{CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F}
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2010-11-19 11613288]
"COMODO Internet Security"=C:\Program Files\COMODO\COMODO Internet Security\cistray.exe [2014-03-25 1275608]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ASUS AiChargerPlus Execute]
C:\Program Files (x86)\InstallShield Installation Information\{E6931688-DA2B-4E16-8539-3D323D69C677}\AiChargerPlus.exe [2010-11-08 465536]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^lukas^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Dropbox.lnk]
C:\Users\lukas\AppData\Roaming\Dropbox\bin\Dropbox.exe [2014-05-08 32668056]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2013-04-24 642304]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2014-04-10 3854640]
"tvncontrol"=C:\Program Files (x86)\Common Files\COMODO\GeekBuddyRSP.exe [2014-05-05 2327248]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2013-07-02 254336]
"PrivDogService"=C:\Program Files (x86)\AdTrustMedia\PrivDog\2.1.0.23\trustedadssvc.exe [2014-04-29 663208]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PEVSystemStart]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\procexp90.Sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\PEVSystemStart]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\procexp90.Sys]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvyu"=msyuv.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"vidc.yvu9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
======List of files/folders created in the last 1 month======
2014-06-19 09:47:41 ----D---- C:\rsit
2014-06-19 09:47:41 ----D---- C:\Program Files\trend micro
2014-06-19 09:16:15 ----SHD---- C:\$RECYCLE.BIN
2014-06-19 08:53:06 ----D---- C:\abc
2014-06-16 23:14:51 ----A---- C:\Windows\system32\drivers\fvstore.dat
2014-06-16 22:56:12 ----D---- C:\Users\lukas\AppData\Roaming\Comodo
2014-06-16 22:56:00 ----D---- C:\Program Files\AdTrustMedia
2014-06-16 22:55:59 ----D---- C:\Program Files (x86)\AdTrustMedia
2014-06-16 22:55:58 ----D---- C:\ProgramData\Adtrustmedia
2014-06-16 22:55:34 ----D---- C:\ProgramData\Comodo Downloader
2014-06-16 22:55:06 ----D---- C:\ProgramData\Shared Space
2014-06-16 22:54:49 ----A---- C:\Windows\SYSWOW64\cmdvrt32.dll
2014-06-16 22:54:49 ----A---- C:\Windows\SYSWOW64\cmdkbd32.dll
2014-06-16 22:54:49 ----A---- C:\Windows\system32\cmdvrt64.dll
2014-06-16 22:54:49 ----A---- C:\Windows\system32\cmdkbd64.dll
2014-06-16 14:02:48 ----D---- C:\Users\lukas\AppData\Roaming\.mono
2014-06-01 21:08:15 ----D---- C:\Program Files (x86)\Malwarebytes Anti-Malware
2014-06-01 21:08:15 ----A---- C:\Windows\system32\drivers\mwac.sys
2014-06-01 21:08:15 ----A---- C:\Windows\system32\drivers\mbam.sys
2014-05-27 12:47:54 ----D---- C:\Users\lukas\AppData\Roaming\Audacity
2014-05-24 20:29:12 ----D---- C:\Program Files (x86)\Trend Micro
2014-05-23 08:18:32 ----RD---- C:\Program Files (x86)\Skype
======List of files/folders modified in the last 1 month======
2014-06-19 09:47:51 ----D---- C:\Windows\Temp
2014-06-19 09:47:41 ----RD---- C:\Program Files
2014-06-19 09:07:36 ----D---- C:\Windows\Tasks
2014-06-19 09:06:22 ----D---- C:\Windows\erdnt
2014-06-19 09:05:41 ----D---- C:\Windows
2014-06-19 09:05:41 ----A---- C:\Windows\system.ini
2014-06-19 09:05:18 ----D---- C:\Windows\system32\drivers\etc
2014-06-19 09:00:59 ----D---- C:\Windows\SYSWOW64\drivers
2014-06-19 09:00:59 ----D---- C:\Windows\SysWOW64
2014-06-19 09:00:59 ----D---- C:\Windows\AppPatch
2014-06-19 09:00:57 ----D---- C:\Program Files (x86)\Common Files
2014-06-19 08:50:20 ----D---- C:\Windows\system32\drivers
2014-06-19 08:26:10 ----D---- C:\Windows\Prefetch
2014-06-18 15:32:22 ----D---- C:\Users\lukas\AppData\Roaming\Skype
2014-06-18 14:59:03 ----D---- C:\Program Files (x86)\DAEMON Tools Lite
2014-06-18 14:37:29 ----D---- C:\Windows\system32\config
2014-06-18 12:08:15 ----D---- C:\Windows\System32
2014-06-18 12:08:15 ----D---- C:\Windows\inf
2014-06-18 12:08:15 ----A---- C:\Windows\system32\PerfStringBackup.INI
2014-06-18 12:01:26 ----D---- C:\Users\lukas\AppData\Roaming\uTorrent
2014-06-18 11:57:45 ----D---- C:\Recovery
2014-06-18 11:31:25 ----SHD---- C:\System Volume Information
2014-06-18 10:37:50 ----A---- C:\Windows\SYSWOW64\PnkBstrB.exe
2014-06-17 20:14:33 ----D---- C:\ProgramData\PMB Files
2014-06-17 10:35:11 ----D---- C:\Users\lukas\AppData\Roaming\.minecraft
2014-06-16 22:55:59 ----D---- C:\Program Files (x86)
2014-06-16 22:55:58 ----D---- C:\ProgramData
2014-06-16 22:55:34 ----D---- C:\Windows\system32\Tasks
2014-06-16 22:53:41 ----SHD---- C:\Windows\Installer
2014-06-13 18:23:17 ----D---- C:\Windows\system32\catroot2
2014-06-09 16:43:55 ----D---- C:\ProgramData\Spybot - Search & Destroy
2014-06-03 21:31:33 ----D---- C:\Users\lukas\AppData\Roaming\Winamp
2014-06-02 08:01:12 ----RSD---- C:\Windows\Fonts
2014-06-01 21:08:15 ----D---- C:\ProgramData\Malwarebytes
2014-06-01 21:05:56 ----D---- C:\Users\lukas\AppData\Roaming\DAEMON Tools Lite
2014-06-01 21:05:39 ----D---- C:\Windows\Minidump
2014-06-01 21:05:39 ----D---- C:\Windows\Logs
2014-05-26 12:35:08 ----RSD---- C:\Windows\assembly
2014-05-24 10:00:05 ----D---- C:\Program Files (x86)\Battle.net
2014-05-24 07:06:53 ----D---- C:\Users\lukas\AppData\Roaming\Dropbox
2014-05-23 08:18:38 ----D---- C:\ProgramData\Skype
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 AiChargerPlus;ASUS Charger Plus Driver; C:\Windows\system32\DRIVERS\AiChargerPlus.sys [2010-11-08 14464]
R0 aswRvrt;avast! Revert; C:\Windows\system32\drivers\aswRvrt.sys [2014-04-10 65776]
R0 aswVmm;avast! VM Monitor; C:\Windows\system32\drivers\aswVmm.sys [2014-04-10 208928]
R0 JRAID;JRAID; C:\Windows\system32\DRIVERS\jraid.sys [2010-11-25 120408]
R0 pciide;pciide; C:\Windows\system32\DRIVERS\pciide.sys [2009-07-14 12352]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2009-07-14 214096]
R0 speedfan;speedfan; C:\Windows\SysWOW64\speedfan.sys [2012-12-29 28664]
R1 AsIO;AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [2013-11-01 15232]
R1 AsUpIO;AsUpIO; C:\Windows\SysWow64\drivers\AsUpIO.sys [2013-11-01 14464]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [2014-04-10 93568]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2014-04-10 1039096]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2014-04-10 423240]
R1 cmdGuard;COMODO Internet Security Sandbox Driver; C:\Windows\System32\DRIVERS\cmdguard.sys [2014-04-16 738472]
R1 cmdHlp;COMODO Internet Security Helper Driver; C:\Windows\System32\DRIVERS\cmdhlp.sys [2014-04-16 48360]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2009-07-14 514048]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2012-03-01 283200]
R1 HWiNFO32;HWiNFO32/64 Kernel Driver; \??\C:\Windows\system32\drivers\HWiNFO64A.SYS [2013-09-06 31136]
R1 inspect;COMODO Internet Security Firewall Driver; C:\Windows\system32\DRIVERS\inspect.sys [2014-04-16 105552]
R2 AODDriver4.01;AODDriver4.01; \??\C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [2012-03-05 53888]
R2 aswMonFlt;aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [2014-04-10 79184]
R3 amdiox64;AMD IO Driver; C:\Windows\system32\DRIVERS\amdiox64.sys [2010-02-18 46136]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2013-04-24 11922944]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2013-04-24 359936]
R3 asmthub3;ASMedia USB3 Hub Service; C:\Windows\system32\DRIVERS\asmthub3.sys [2011-02-24 126952]
R3 asmtxhci;ASMEDIA XHCI Service; C:\Windows\system32\DRIVERS\asmtxhci.sys [2011-02-24 389608]
R3 aswStm;aswStm; C:\Windows\system32\drivers\aswStm.sys [2014-04-10 84816]
R3 AtiHDAudioService;AMD Function Driver for HD Audio Service; C:\Windows\system32\drivers\AtihdW76.sys [2012-05-14 96896]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2010-11-23 2565736]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2011-03-21 452200]
R3 usbfilter;AMD USB Filter Driver; C:\Windows\system32\DRIVERS\usbfilter.sys [2010-12-16 47232]
S1 CFRMD;CFRMD; C:\Windows\system32\DRIVERS\CFRMD.sys []
S2 AODDriver4.1;AODDriver4.1; \??\C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [2012-03-05 53888]
S3 BridgeMP;@%SystemRoot%\system32\bridgeres.dll,-1; C:\Windows\system32\DRIVERS\bridge.sys [2009-07-14 95232]
S3 catchme;catchme; \??\C:\abc\catchme.sys []
S3 DrvAgent64;DrvAgent64; \??\C:\Windows\SysWOW64\Drivers\DrvAgent64.SYS [2014-04-18 21712]
S3 EagleX64;EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys []
S3 ggflt;SEMC USB Flash Driver Filter; C:\Windows\system32\DRIVERS\ggflt.sys [2011-12-13 13352]
S3 ggsemc;SEMC USB Flash Driver; C:\Windows\system32\DRIVERS\ggsemc.sys [2011-12-13 27176]
S3 hamachi;Hamachi Network Interface; C:\Windows\system32\DRIVERS\hamachi.sys [2012-07-24 33344]
S3 HTCAND64;HTC Device Driver; C:\Windows\System32\Drivers\ANDROIDUSB.sys [2009-11-02 33736]
S3 htcnprot;HTC NDIS Protocol Driver; C:\Windows\system32\DRIVERS\htcnprot.sys [2010-06-25 36928]
S3 mbamchameleon;mbamchameleon; \??\C:\Windows\system32\drivers\mbamchameleon.sys [2014-05-12 91352]
S3 MBAMSwissArmy;MBAMSwissArmy; \??\C:\Windows\system32\drivers\MBAMSwissArmy.sys [2014-06-19 122584]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2009-07-14 165376]
S3 s3cap;s3cap; C:\Windows\system32\DRIVERS\vms3cap.sys [2009-07-14 6656]
S3 storvsc;storvsc; C:\Windows\system32\DRIVERS\storvsc.sys [2009-07-14 34896]
S3 usbscan;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2009-07-14 41984]
S3 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\system32\DRIVERS\vmbus.sys [2009-07-14 200272]
S3 VMBusHID;VMBusHID; C:\Windows\system32\DRIVERS\VMBusHID.sys [2009-07-14 21760]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2009-07-14 40448]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2013-04-24 238080]
R2 AMD FUEL Service;AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [2013-04-24 361984]
R2 asComSvc;ASUS Com Service; C:\Program Files (x86)\ASUS\AXSP\1.00.19\atkexComSvc.exe [2013-11-01 920736]
R2 asHmComSvc;ASUS HM Com Service; C:\Program Files (x86)\ASUS\AAHM\1.00.14\aaHMSvc.exe [2014-02-24 915584]
R2 AsSysCtrlService;ASUS System Control Service; C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.13\AsSysCtrlService.exe [2013-11-01 149120]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2014-04-10 50344]
R2 CLPSLauncher;COMODO LPS Launcher; C:\Program Files (x86)\Common Files\COMODO\launcher_service.exe [2014-05-05 70864]
R2 cmdAgent;COMODO Internet Security Helper Service; C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe [2014-04-16 6817544]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 GeekBuddyRSP;GeekBuddyRSP Server; C:\Program Files (x86)\Common Files\COMODO\GeekBuddyRSP.exe [2014-05-05 2327248]
R2 NAUpdate;@C:\Program Files (x86)\Nero\Update\NASvc.exe,-200; C:\Program Files (x86)\Nero\Update\NASvc.exe [2011-11-25 687400]
R2 PassThru Service;Internet Pass-Through Service; C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe [2011-09-15 88576]
R2 PnkBstrA;PnkBstrA; C:\Windows\syswow64\PnkBstrA.exe [2012-09-13 76888]
R2 PSI_SVC_2;Protexis Licensing V2; c:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe [2010-03-10 189728]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2009-08-18 2291568]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2014-04-03 315008]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-05-13 257712]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S3 aspnet_state;ASP.NET State Service; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2010-03-18 44376]
S3 cmdvirth;COMODO Virtual Service Manager; C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe [2014-03-25 2264280]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2012-11-29 115168]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 Sony PC Companion;Sony PC Companion; C:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe [2012-01-18 155320]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2014-06-10 542400]
S3 SwitchBoard;SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
-----------------EOF-----------------
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
pocitac nevypina
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Re: pocitac nevypina
Zdravim 
Spybota odinstalujte, program je zastaraly.
Mala technicka. Jak je to s legalitou systemu? Ultimate neni zrovna bezna domaci verze 
Spybota odinstalujte, program je zastaraly. Mala technicka. Jak je to s legalitou systemu? Ultimate neni zrovna bezna domaci verze Pokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Re: pocitac nevypina
Zdravim takze spybot odinstaloval.Ano verze to neni bezna protoze sem se svezl na vlne upgradu pc ve firme.
Re: pocitac nevypina
Ale jedna se o domaci pc, je to tak?
U Comoda mate zapnuty jen Firewall?
Stahnete crystal disk info http://sourceforge.jp/projects/crystald ... 5_0_0.zip/
Spustte jako spravce. Za chvili se zobrazi vysledek.
Kliknete nahore na napis Úpravy a pak na napis Kopírovat. To co se zkopiruje (ulozi se to do pameti) mi sem vlozte (ctrl + V)
Jestli bude Avast rvat, ze to chce otevrit v sandboxu, nedovolte to! Vyberte moznost Otevrit normalne
Stahnete OTL http://oldtimer.geekstogo.com/OTL.exe a ulozte na plochu.
Kliknete na nej pravym mysidlem a levym na Spustit jako spravce
Oznacte polozky (dejte tam zatrzitka) Pro všechny uživatele, Kontrola na havěť "LOP" a Kontrola na havěť "Purity"
Do spodniho okna vlozte nasledujici text
Kliknete na Prohledat
Po skenu se vytvori dva logy (OTL.Txt a Extras.txt), oba sem vlozte (kdyz budou dlouhe, rozdelte je do vice prispevku).
U Comoda mate zapnuty jen Firewall?
Stahnete crystal disk info http://sourceforge.jp/projects/crystald ... 5_0_0.zip/Spustte jako spravce. Za chvili se zobrazi vysledek.
Kliknete nahore na napis Úpravy a pak na napis Kopírovat. To co se zkopiruje (ulozi se to do pameti) mi sem vlozte (ctrl + V)
Jestli bude Avast rvat, ze to chce otevrit v sandboxu, nedovolte to! Vyberte moznost Otevrit normalne Stahnete OTL http://oldtimer.geekstogo.com/OTL.exe a ulozte na plochu.Kliknete na nej pravym mysidlem a levym na Spustit jako spravce
Oznacte polozky (dejte tam zatrzitka) Pro všechny uživatele, Kontrola na havěť "LOP" a Kontrola na havěť "Purity"
Do spodniho okna vlozte nasledujici text
Kód: Vybrat vše
CREATERESTOREPOINT
netsvcs
drivers32
savembr:0
/md5start
adp3132.sys
AGP440.sys
ahcix86.sys
ahcix86s.sys
atapi.sys
autochk.exe
cdrom.sys
cngaudit.dll
cryptsvc.dll
eNetHook.dll
eventlog.dll
explorer.exe
hal.dll
Changer.sys
iaStor.sys
iastorv.sys
IdeChnDr.sys
isapnp.sys
JakNDis.sys
KR10N.sys
logevent.dll
lsass.exe
mv61xx.sys
ndis.sys
netlogon.dll
ntelogon.dll
nvata.sys
nvatabus.sys
nvgts.sys
nvraid.sys
nvrd32.sys
nvstor.sys
nvstor32.sys
scecli.dll
sceclt.dll
smss.exe
svchost.exe
symmpi.sys
tcpip.sys
userinit.exe
vaxscsi.sys
viamraid.sys
viasraid.sys
ViPrt.sys
winlogon.exe
ws2_32.dll
/md5stop
%systemroot%*.* /U /s
%SYSTEMDRIVE%\*.exe
%ALLUSERSPROFILE%\Application Data\*.
%ALLUSERSPROFILE%\Application Data\*.exe /s
%APPDATA%\*.
%APPDATA%\*.exe /s
%systemroot%\*. /mp /s
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\Tasks\*.job /lockedfiles
%systemroot%\system32\drivers\*.sys /lockedfiles
%systemroot%\System32\config\*.sav
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\system32\drivers\*.sys /3
%systemroot%\system32\*.* /3
%SYSTEMDRIVE%\*.exe
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s
reg query "HKLM\Software\Microsoft\Windows NT\CurrentVersion\winlogon" /v GinaDLL /c
reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv" /v ImagePath /c
reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS" /v ImagePath /c
type c:\boot.ini >> test.txt /c
%SystemDrive%\PhysicalMBR.bin /md5
*crack* /s
*keygen* /s
*AntiWPA* /s
*loader* /s
*minodlogin* /s
*tnod* /s
*AutoKMS* /s
*activator* /s
*serial* /s
*w7lxe* /s
Po skenu se vytvori dva logy (OTL.Txt a Extras.txt), oba sem vlozte (kdyz budou dlouhe, rozdelte je do vice prispevku).
Pokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Re: pocitac nevypina
Takze comodo jen firewall rezim bezpecny rezim, autosandbox a HIPS neaktivni v comodu.
Tady je ten crystal
----------------------------------------------------------------------------
CrystalDiskInfo 5.0.0 (C) 2008-2012 hiyohiyo
Crystal Dew World : http://crystalmark.info/
----------------------------------------------------------------------------
OS : Windows 7 Ultimate Edition [6.1 Build 7600] (x64)
Date : 2014/06/19 11:02:31
-- Controller Map ----------------------------------------------------------
+ ATA Channel 0 (0) [ATA]
- HL-DT-ST DVD-RAM GH22NS30 ATA Device
- ATA Channel 1 (1) [ATA]
+ ATA Channel 0 (0) [ATA]
- WDC WD740GD-00FLA0 ATA Device
- ST3300622AS ATA Device
+ ATA Channel 1 (1) [ATA]
- ST3250310AS ATA Device
+ PCI Standardní dvoukanálový řadič IDE [ATA]
- ATA Channel 0 (0)
- ATA Channel 1 (1)
+ PCI Standardní dvoukanálový řadič IDE [ATA]
- ATA Channel 0 (0)
- ATA Channel 1 (1)
- JMicron JMB36X Controller [SCSI]
- JMicron JMB36X Controller [SCSI]
-- Disk List ---------------------------------------------------------------
(1) WDC WD740GD-00FLA0 : 74,3 GB [0/2/0, pd1]
(2) ST3300622AS : 300,0 GB [1/2/1, pd1] - st
(3) ST3250310AS : 250,0 GB [2/3/1, pd1] - st
----------------------------------------------------------------------------
(1) WDC WD740GD-00FLA0
----------------------------------------------------------------------------
Model : WDC WD740GD-00FLA0
Firmware : 21.08U21
Serial Number : WD-WMAKE1029047
Disk Size : 74,3 GB (8,4/74,3/74,3)
Buffer Size : 8192 KB
Queue Depth : 32
# of Sectors : 145223999
Rotation Rate : Neznámy údaj
Interface : Serial ATA
Major Version : ATA/ATAPI-6
Minor Version : ----
Transfer Mode : SATA/150
Power On Hours : 27374 hod.
Power On Count : 4343 krát
Temparature : 43 C (109 F)
Health Status : Pozor
Features : S.M.A.R.T., AAM, 48bit LBA
APM Level : ----
AAM Level : 80FEh [OFF]
-- S.M.A.R.T. --------------------------------------------------------------
ID Cur Wor Thr RawValues(6) Attribute Name
01 200 200 _51 000000000000 Počet chyb čtení
03 110 _73 _21 000000000BC0 Čas na roztočení ploten
04 _96 _96 _40 0000000011CB Počet spuštění/zastavení
05 185 185 140 0000000000E2 Počet přemapovaných sektorů
07 200 200 _51 000000000000 Počet chybných hledání
09 _63 _63 __0 000000006AEE Hodin v činnosti
0A 100 100 _51 000000000000 Počet opakovaných pokusů o roztočení ploten
0B 100 100 _51 000000000000 Počet pokusů o překalibrování
0C _96 _96 __0 0000000010F7 Počet cyklů zapnutí zařízení
C2 104 _87 __0 00000000002B Teplota
C4 172 172 __0 00000000001C Počet udalostí s číslem realokování sektorů
C5 200 200 __0 000000000000 Počet podezřelých sektorů
C6 200 200 __0 000000000000 Počet neopravitelných sektorů
C7 200 253 __0 00000000000E Počet chyb v kontrolním součtu UltraDMA
C8 200 179 _51 000000000000 Počet chyb při zápisu sektorů
-- IDENTIFY_DEVICE ---------------------------------------------------------
0 1 2 3 4 5 6 7 8 9
000: 427A 3FFF 0000 0010 E100 003F 003F 0000 0000 000E
010: 5744 2D57 4D41 4B45 3130 3034 3034 3700 0000 0000
020: 0003 4000 004A 3231 2E30 3231 3231 5744 4320 5744
030: 3734 3047 442D 3030 464C 2020 2020 2020 2020 2020
040: 2020 2020 2020 2020 2020 2020 2020 8010 0000 2F00
050: 4001 0280 0000 0007 3FFF 003F 003F FC10 00FB 0110
060: F13F 08A7 0000 0007 0003 0078 0078 0078 0078 0000
070: 0000 0000 0000 0000 0000 0202 0202 0000 0008 0008
080: 007E 0000 74EB 7F63 4003 3C43 3C43 4003 407F 0000
090: 0000 0000 0000 604B 80FE 0000 0000 0000 0000 0000
100: F13F 08A7 0000 0000 0000 0000 0000 0000 0000 0000
110: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
120: 0000 0000 0000 0000 0000 0000 0000 0000 0009 0141
130: 0000 0000 0000 0746 0000 0000 0000 0000 0000 0000
140: 0000 0000 0002 0001 0000 0000 0000 0000 0000 0000
150: 0000 0000 0000 0000 0000 0000 0000 0000 0000 001F
160: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
170: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
180: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
190: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
200: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
210: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
220: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
230: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
240: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
250: 0000 0000 0000 0000 0000 0CA5
----------------------------------------------------------------------------
(2) ST3300622AS
----------------------------------------------------------------------------
Model : ST3300622AS
Firmware : 3.AAH
Serial Number : 4NF016GX
Disk Size : 300,0 GB (8,4/137,4/300,0)
Buffer Size : 16384 KB
Queue Depth : 32
# of Sectors : 586070255
Rotation Rate : Neznámy údaj
Interface : Serial ATA
Major Version : ATA/ATAPI-7
Minor Version : ----
Transfer Mode : SATA/300
Power On Hours : 29062 hod.
Power On Count : 5716 krát
Temparature : 45 C (113 F)
Health Status : Pozor
Features : S.M.A.R.T., 48bit LBA, NCQ
APM Level : ----
AAM Level : ----
-- S.M.A.R.T. --------------------------------------------------------------
ID Cur Wor Thr RawValues(6) Attribute Name
01 _86 _67 __6 000009CCE6D5 Počet chyb čtení
03 _99 _96 __0 000000000000 Čas na roztočení ploten
04 _89 _89 _20 000000002FAA Počet spuštění/zastavení
05 100 100 _36 000000000001 Počet přemapovaných sektorů
07 _87 _60 _30 000027BE3751 Počet chybných hledání
09 _67 _67 __0 000000007186 Hodin v činnosti
0A 100 100 _97 000000000000 Počet opakovaných pokusů o roztočení ploten
0C _95 _95 _20 000000001654 Počet cyklů zapnutí zařízení
BB 100 100 __0 000000000000 Ohlášeno neopravitelných chyb
BD 100 100 __0 000000000000 Vysoká rychlost zápisu
BE _55 _40 _45 00002D2C002D Teplota toku vzduchu
C2 _45 _60 __0 000E0000002D Teplota
C3 _53 _46 __0 000009BF19DF Počet oprav chybného čtení
C5 100 100 __0 000000000000 Počet podezřelých sektorů
C6 100 100 __0 000000000000 Počet neopravitelných sektorů
C7 200 200 __0 000000000001 Počet chyb v kontrolním součtu UltraDMA
C8 100 253 __0 000000000000 Počet chyb při zápisu sektorů
CA 100 253 __0 000000000000 Počet chyb při směrování údajů
-- IDENTIFY_DEVICE ---------------------------------------------------------
0 1 2 3 4 5 6 7 8 9
000: 0C5A 3FFF C837 0010 0000 003F 003F 0000 0000 0000
010: 2020 2020 2020 2020 2020 344E 344E 4630 3136 4758
020: 0000 8000 0004 332E 4141 2020 2020 5354 3333 3030
030: 3632 3241 5320 2020 2020 2020 2020 2020 2020 2020
040: 2020 2020 2020 2020 2020 2020 2020 8010 0000 2F00
050: 4000 0200 0200 0007 3FFF 003F 003F FC10 00FB 0110
060: FFFF 0FFF 0000 0007 0003 0078 0078 00F0 0078 0000
070: 0000 0000 0000 0000 0000 0506 0506 0000 0040 0040
080: 00FE 0000 346B 7D01 4023 3C01 3C01 4023 407F 0000
090: 0000 FEFE FFFE 0000 FE00 0000 0000 0000 0000 0000
100: B8EF 22EE 0000 0000 0000 4000 4000 0000 0000 0000
110: 0000 0000 0000 0000 0000 0000 0000 0100 0000 0000
120: 0000 0000 0000 0000 0000 0000 0000 0000 0009 C130
130: 22EE C130 22EE 2020 0002 0002 0002 008A 3C06 3C0A
140: 0000 07C6 0100 0800 100F 0002 0002 0080 0000 0000
150: 00A2 0202 0000 0404 0000 0000 0000 0000 1000 000B
160: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
170: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
180: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
190: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
200: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
210: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
220: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
230: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
240: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
250: 0000 0000 0000 0000 0000 E8A5
----------------------------------------------------------------------------
(3) ST3250310AS
----------------------------------------------------------------------------
Model : ST3250310AS
Firmware : 3.AAC
Serial Number : 5RY0RJPW
Disk Size : 250,0 GB (8,4/137,4/250,0)
Buffer Size : 8192 KB
Queue Depth : 32
# of Sectors : 488395055
Rotation Rate : Neznámy údaj
Interface : Serial ATA
Major Version : ATA/ATAPI-7
Minor Version : ----
Transfer Mode : SATA/300
Power On Hours : 17075 hod.
Power On Count : 5349 krát
Temparature : 45 C (113 F)
Health Status : Pozor
Features : S.M.A.R.T., 48bit LBA, NCQ
APM Level : ----
AAM Level : ----
-- S.M.A.R.T. --------------------------------------------------------------
ID Cur Wor Thr RawValues(6) Attribute Name
01 _98 _76 __6 00000D3D75A9 Počet chyb čtení
03 _98 _97 __0 000000000000 Čas na roztočení ploten
04 _90 _90 _20 000000002827 Počet spuštění/zastavení
05 100 100 _36 000000000000 Počet přemapovaných sektorů
07 _85 _60 _30 00001730075C Počet chybných hledání
09 _81 _81 __0 0000000042B3 Hodin v činnosti
0A 100 _99 _97 000000000000 Počet opakovaných pokusů o roztočení ploten
0C _95 _95 _20 0000000014E5 Počet cyklů zapnutí zařízení
BB _95 _95 __0 000000000005 Ohlášeno neopravitelných chyb
BD 100 100 __0 000000000000 Vysoká rychlost zápisu
BE _55 _42 _45 00002E2C002D Teplota toku vzduchu
C2 _45 _58 __0 00120000002D Teplota
C3 _66 _55 __0 0000015E3CFF Počet oprav chybného čtení
C5 100 100 __0 000000000001 Počet podezřelých sektorů
C6 100 100 __0 000000000001 Počet neopravitelných sektorů
C7 200 200 __0 000000000000 Počet chyb v kontrolním součtu UltraDMA
C8 100 253 __0 000000000000 Počet chyb při zápisu sektorů
CA _95 248 __0 000000000005 Počet chyb při směrování údajů
-- IDENTIFY_DEVICE ---------------------------------------------------------
0 1 2 3 4 5 6 7 8 9
000: 0C5A 3FFF C837 0010 0000 003F 003F 0000 0000 0000
010: 2020 2020 2020 2020 2020 3552 3552 5930 524A 5057
020: 0000 4000 0004 332E 4141 2020 2020 5354 3332 3530
030: 3331 3041 5320 2020 2020 2020 2020 2020 2020 2020
040: 2020 2020 2020 2020 2020 2020 2020 8010 0000 2F00
050: 4000 0200 0200 0007 3FFF 003F 003F FC10 00FB 0110
060: FFFF 0FFF 0000 0007 0003 0078 0078 0078 0078 0000
070: 0000 0000 0000 0000 0000 0506 0506 0000 0048 0040
080: 00FE 0000 346B 7D01 4023 BC01 BC01 4023 407F 0000
090: 0000 FEFE FFFE 0000 D000 0000 0000 0000 0000 0000
100: 512F 1D1C 0000 0000 0000 4000 4000 0000 0000 0000
110: 0000 0000 0000 0000 0000 0000 0000 0000 0000 401E
120: 401C 0000 0000 0000 0000 0000 0000 0000 0009 5970
130: 1D1C 5970 1D1C 2020 0002 0002 0002 008A 3C06 3C0A
140: 0000 07C6 0100 0800 1314 0002 0002 0080 0000 0000
150: 0082 0202 0000 0404 0000 0000 0000 0000 1D00 000B
160: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
170: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
180: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
190: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
200: 0000 0000 0000 0000 0000 0001 0001 0000 0000 0000
210: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
220: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
230: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
240: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
250: 0000 0000 0000 0000 0000 63A5
Tady je ten crystal
----------------------------------------------------------------------------
CrystalDiskInfo 5.0.0 (C) 2008-2012 hiyohiyo
Crystal Dew World : http://crystalmark.info/
----------------------------------------------------------------------------
OS : Windows 7 Ultimate Edition [6.1 Build 7600] (x64)
Date : 2014/06/19 11:02:31
-- Controller Map ----------------------------------------------------------
+ ATA Channel 0 (0) [ATA]
- HL-DT-ST DVD-RAM GH22NS30 ATA Device
- ATA Channel 1 (1) [ATA]
+ ATA Channel 0 (0) [ATA]
- WDC WD740GD-00FLA0 ATA Device
- ST3300622AS ATA Device
+ ATA Channel 1 (1) [ATA]
- ST3250310AS ATA Device
+ PCI Standardní dvoukanálový řadič IDE [ATA]
- ATA Channel 0 (0)
- ATA Channel 1 (1)
+ PCI Standardní dvoukanálový řadič IDE [ATA]
- ATA Channel 0 (0)
- ATA Channel 1 (1)
- JMicron JMB36X Controller [SCSI]
- JMicron JMB36X Controller [SCSI]
-- Disk List ---------------------------------------------------------------
(1) WDC WD740GD-00FLA0 : 74,3 GB [0/2/0, pd1]
(2) ST3300622AS : 300,0 GB [1/2/1, pd1] - st
(3) ST3250310AS : 250,0 GB [2/3/1, pd1] - st
----------------------------------------------------------------------------
(1) WDC WD740GD-00FLA0
----------------------------------------------------------------------------
Model : WDC WD740GD-00FLA0
Firmware : 21.08U21
Serial Number : WD-WMAKE1029047
Disk Size : 74,3 GB (8,4/74,3/74,3)
Buffer Size : 8192 KB
Queue Depth : 32
# of Sectors : 145223999
Rotation Rate : Neznámy údaj
Interface : Serial ATA
Major Version : ATA/ATAPI-6
Minor Version : ----
Transfer Mode : SATA/150
Power On Hours : 27374 hod.
Power On Count : 4343 krát
Temparature : 43 C (109 F)
Health Status : Pozor
Features : S.M.A.R.T., AAM, 48bit LBA
APM Level : ----
AAM Level : 80FEh [OFF]
-- S.M.A.R.T. --------------------------------------------------------------
ID Cur Wor Thr RawValues(6) Attribute Name
01 200 200 _51 000000000000 Počet chyb čtení
03 110 _73 _21 000000000BC0 Čas na roztočení ploten
04 _96 _96 _40 0000000011CB Počet spuštění/zastavení
05 185 185 140 0000000000E2 Počet přemapovaných sektorů
07 200 200 _51 000000000000 Počet chybných hledání
09 _63 _63 __0 000000006AEE Hodin v činnosti
0A 100 100 _51 000000000000 Počet opakovaných pokusů o roztočení ploten
0B 100 100 _51 000000000000 Počet pokusů o překalibrování
0C _96 _96 __0 0000000010F7 Počet cyklů zapnutí zařízení
C2 104 _87 __0 00000000002B Teplota
C4 172 172 __0 00000000001C Počet udalostí s číslem realokování sektorů
C5 200 200 __0 000000000000 Počet podezřelých sektorů
C6 200 200 __0 000000000000 Počet neopravitelných sektorů
C7 200 253 __0 00000000000E Počet chyb v kontrolním součtu UltraDMA
C8 200 179 _51 000000000000 Počet chyb při zápisu sektorů
-- IDENTIFY_DEVICE ---------------------------------------------------------
0 1 2 3 4 5 6 7 8 9
000: 427A 3FFF 0000 0010 E100 003F 003F 0000 0000 000E
010: 5744 2D57 4D41 4B45 3130 3034 3034 3700 0000 0000
020: 0003 4000 004A 3231 2E30 3231 3231 5744 4320 5744
030: 3734 3047 442D 3030 464C 2020 2020 2020 2020 2020
040: 2020 2020 2020 2020 2020 2020 2020 8010 0000 2F00
050: 4001 0280 0000 0007 3FFF 003F 003F FC10 00FB 0110
060: F13F 08A7 0000 0007 0003 0078 0078 0078 0078 0000
070: 0000 0000 0000 0000 0000 0202 0202 0000 0008 0008
080: 007E 0000 74EB 7F63 4003 3C43 3C43 4003 407F 0000
090: 0000 0000 0000 604B 80FE 0000 0000 0000 0000 0000
100: F13F 08A7 0000 0000 0000 0000 0000 0000 0000 0000
110: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
120: 0000 0000 0000 0000 0000 0000 0000 0000 0009 0141
130: 0000 0000 0000 0746 0000 0000 0000 0000 0000 0000
140: 0000 0000 0002 0001 0000 0000 0000 0000 0000 0000
150: 0000 0000 0000 0000 0000 0000 0000 0000 0000 001F
160: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
170: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
180: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
190: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
200: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
210: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
220: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
230: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
240: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
250: 0000 0000 0000 0000 0000 0CA5
----------------------------------------------------------------------------
(2) ST3300622AS
----------------------------------------------------------------------------
Model : ST3300622AS
Firmware : 3.AAH
Serial Number : 4NF016GX
Disk Size : 300,0 GB (8,4/137,4/300,0)
Buffer Size : 16384 KB
Queue Depth : 32
# of Sectors : 586070255
Rotation Rate : Neznámy údaj
Interface : Serial ATA
Major Version : ATA/ATAPI-7
Minor Version : ----
Transfer Mode : SATA/300
Power On Hours : 29062 hod.
Power On Count : 5716 krát
Temparature : 45 C (113 F)
Health Status : Pozor
Features : S.M.A.R.T., 48bit LBA, NCQ
APM Level : ----
AAM Level : ----
-- S.M.A.R.T. --------------------------------------------------------------
ID Cur Wor Thr RawValues(6) Attribute Name
01 _86 _67 __6 000009CCE6D5 Počet chyb čtení
03 _99 _96 __0 000000000000 Čas na roztočení ploten
04 _89 _89 _20 000000002FAA Počet spuštění/zastavení
05 100 100 _36 000000000001 Počet přemapovaných sektorů
07 _87 _60 _30 000027BE3751 Počet chybných hledání
09 _67 _67 __0 000000007186 Hodin v činnosti
0A 100 100 _97 000000000000 Počet opakovaných pokusů o roztočení ploten
0C _95 _95 _20 000000001654 Počet cyklů zapnutí zařízení
BB 100 100 __0 000000000000 Ohlášeno neopravitelných chyb
BD 100 100 __0 000000000000 Vysoká rychlost zápisu
BE _55 _40 _45 00002D2C002D Teplota toku vzduchu
C2 _45 _60 __0 000E0000002D Teplota
C3 _53 _46 __0 000009BF19DF Počet oprav chybného čtení
C5 100 100 __0 000000000000 Počet podezřelých sektorů
C6 100 100 __0 000000000000 Počet neopravitelných sektorů
C7 200 200 __0 000000000001 Počet chyb v kontrolním součtu UltraDMA
C8 100 253 __0 000000000000 Počet chyb při zápisu sektorů
CA 100 253 __0 000000000000 Počet chyb při směrování údajů
-- IDENTIFY_DEVICE ---------------------------------------------------------
0 1 2 3 4 5 6 7 8 9
000: 0C5A 3FFF C837 0010 0000 003F 003F 0000 0000 0000
010: 2020 2020 2020 2020 2020 344E 344E 4630 3136 4758
020: 0000 8000 0004 332E 4141 2020 2020 5354 3333 3030
030: 3632 3241 5320 2020 2020 2020 2020 2020 2020 2020
040: 2020 2020 2020 2020 2020 2020 2020 8010 0000 2F00
050: 4000 0200 0200 0007 3FFF 003F 003F FC10 00FB 0110
060: FFFF 0FFF 0000 0007 0003 0078 0078 00F0 0078 0000
070: 0000 0000 0000 0000 0000 0506 0506 0000 0040 0040
080: 00FE 0000 346B 7D01 4023 3C01 3C01 4023 407F 0000
090: 0000 FEFE FFFE 0000 FE00 0000 0000 0000 0000 0000
100: B8EF 22EE 0000 0000 0000 4000 4000 0000 0000 0000
110: 0000 0000 0000 0000 0000 0000 0000 0100 0000 0000
120: 0000 0000 0000 0000 0000 0000 0000 0000 0009 C130
130: 22EE C130 22EE 2020 0002 0002 0002 008A 3C06 3C0A
140: 0000 07C6 0100 0800 100F 0002 0002 0080 0000 0000
150: 00A2 0202 0000 0404 0000 0000 0000 0000 1000 000B
160: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
170: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
180: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
190: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
200: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
210: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
220: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
230: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
240: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
250: 0000 0000 0000 0000 0000 E8A5
----------------------------------------------------------------------------
(3) ST3250310AS
----------------------------------------------------------------------------
Model : ST3250310AS
Firmware : 3.AAC
Serial Number : 5RY0RJPW
Disk Size : 250,0 GB (8,4/137,4/250,0)
Buffer Size : 8192 KB
Queue Depth : 32
# of Sectors : 488395055
Rotation Rate : Neznámy údaj
Interface : Serial ATA
Major Version : ATA/ATAPI-7
Minor Version : ----
Transfer Mode : SATA/300
Power On Hours : 17075 hod.
Power On Count : 5349 krát
Temparature : 45 C (113 F)
Health Status : Pozor
Features : S.M.A.R.T., 48bit LBA, NCQ
APM Level : ----
AAM Level : ----
-- S.M.A.R.T. --------------------------------------------------------------
ID Cur Wor Thr RawValues(6) Attribute Name
01 _98 _76 __6 00000D3D75A9 Počet chyb čtení
03 _98 _97 __0 000000000000 Čas na roztočení ploten
04 _90 _90 _20 000000002827 Počet spuštění/zastavení
05 100 100 _36 000000000000 Počet přemapovaných sektorů
07 _85 _60 _30 00001730075C Počet chybných hledání
09 _81 _81 __0 0000000042B3 Hodin v činnosti
0A 100 _99 _97 000000000000 Počet opakovaných pokusů o roztočení ploten
0C _95 _95 _20 0000000014E5 Počet cyklů zapnutí zařízení
BB _95 _95 __0 000000000005 Ohlášeno neopravitelných chyb
BD 100 100 __0 000000000000 Vysoká rychlost zápisu
BE _55 _42 _45 00002E2C002D Teplota toku vzduchu
C2 _45 _58 __0 00120000002D Teplota
C3 _66 _55 __0 0000015E3CFF Počet oprav chybného čtení
C5 100 100 __0 000000000001 Počet podezřelých sektorů
C6 100 100 __0 000000000001 Počet neopravitelných sektorů
C7 200 200 __0 000000000000 Počet chyb v kontrolním součtu UltraDMA
C8 100 253 __0 000000000000 Počet chyb při zápisu sektorů
CA _95 248 __0 000000000005 Počet chyb při směrování údajů
-- IDENTIFY_DEVICE ---------------------------------------------------------
0 1 2 3 4 5 6 7 8 9
000: 0C5A 3FFF C837 0010 0000 003F 003F 0000 0000 0000
010: 2020 2020 2020 2020 2020 3552 3552 5930 524A 5057
020: 0000 4000 0004 332E 4141 2020 2020 5354 3332 3530
030: 3331 3041 5320 2020 2020 2020 2020 2020 2020 2020
040: 2020 2020 2020 2020 2020 2020 2020 8010 0000 2F00
050: 4000 0200 0200 0007 3FFF 003F 003F FC10 00FB 0110
060: FFFF 0FFF 0000 0007 0003 0078 0078 0078 0078 0000
070: 0000 0000 0000 0000 0000 0506 0506 0000 0048 0040
080: 00FE 0000 346B 7D01 4023 BC01 BC01 4023 407F 0000
090: 0000 FEFE FFFE 0000 D000 0000 0000 0000 0000 0000
100: 512F 1D1C 0000 0000 0000 4000 4000 0000 0000 0000
110: 0000 0000 0000 0000 0000 0000 0000 0000 0000 401E
120: 401C 0000 0000 0000 0000 0000 0000 0000 0009 5970
130: 1D1C 5970 1D1C 2020 0002 0002 0002 008A 3C06 3C0A
140: 0000 07C6 0100 0800 1314 0002 0002 0080 0000 0000
150: 0082 0202 0000 0404 0000 0000 0000 0000 1D00 000B
160: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
170: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
180: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
190: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
200: 0000 0000 0000 0000 0000 0001 0001 0000 0000 0000
210: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
220: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
230: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
240: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
250: 0000 0000 0000 0000 0000 63A5
Re: pocitac nevypina
U druheho programku OTl sem spustil zatrhl zkopiroval text a programek neodpovida tak nevim zda mam cekat nebo vypnout a spustit znova
Re: pocitac nevypina
Pokud vite jiste, ze OTL nebezi, zkuste to jeste jednou. Kdyby to neslo, tak to zkuste v nouzovem rezimu.
Pokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Re: pocitac nevypina
OTL Extras logfile created on: 19.6.2014 11:26:02 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\lukas\Desktop
64bit- Ultimate Edition (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7600.16385)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy
7,96 Gb Total Physical Memory | 6,12 Gb Available Physical Memory | 76,84% Memory free
15,92 Gb Paging File | 13,96 Gb Available in Paging File | 87,68% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 69,15 Gb Total Space | 18,70 Gb Free Space | 27,04% Space Free | Partition Type: NTFS
Drive E: | 279,46 Gb Total Space | 20,70 Gb Free Space | 7,41% Space Free | Partition Type: NTFS
Drive G: | 232,88 Gb Total Space | 23,43 Gb Free Space | 10,06% Space Free | Partition Type: NTFS
Computer Name: LUKAS-PC | User Name: lukas | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Extra Registry (SafeList) ==========
========== File Associations ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.html[@ = Opera.HTML] -- Reg Error: Key error. File not found
.url[@ = InternetShortcut] -- C:\Windows\SysNative\rundll32.exe (Microsoft Corporation)
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation)
.html [@ = Opera.HTML] -- Reg Error: Key error. File not found
========== Shell Spawning ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- Reg Error: Key error.
htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1
htmlfile [print] -- rundll32.exe %SystemRoot%\system32\mshtml.dll,PrintHTML "%1" (Microsoft Corporation)
http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1
https [open] -- "C:\Program Files (x86)\Opera\Opera.exe" "%1"
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [Bridge] -- C:\Program Files (x86)\Adobe\Adobe Bridge CS5\Bridge.exe "%L" (Adobe Systems, Inc.)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Directory [Winamp.Bookmark] -- "C:\Program Files (x86)\Winamp\winamp.exe" /BOOKMARK "%1" (Nullsoft, Inc.)
Directory [Winamp.Enqueue] -- "C:\Program Files (x86)\Winamp\winamp.exe" /ADD "%1" (Nullsoft, Inc.)
Directory [Winamp.Play] -- "C:\Program Files (x86)\Winamp\winamp.exe" "%1" (Nullsoft, Inc.)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- Reg Error: Key error.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- Reg Error: Key error.
htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1
http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1
https [open] -- "C:\Program Files (x86)\Opera\Opera.exe" "%1"
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [Bridge] -- C:\Program Files (x86)\Adobe\Adobe Bridge CS5\Bridge.exe "%L" (Adobe Systems, Inc.)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Directory [Winamp.Bookmark] -- "C:\Program Files (x86)\Winamp\winamp.exe" /BOOKMARK "%1" (Nullsoft, Inc.)
Directory [Winamp.Enqueue] -- "C:\Program Files (x86)\Winamp\winamp.exe" /ADD "%1" (Nullsoft, Inc.)
Directory [Winamp.Play] -- "C:\Program Files (x86)\Winamp\winamp.exe" "%1" (Nullsoft, Inc.)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- Reg Error: Key error.
========== Security Center Settings ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
"FirewallDisableNotify" = 0
"AntiVirusDisableNotify" = 0
"UpdatesDisableNotify" = 0
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = 28 4D B2 76 41 04 CA 01 [binary data]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
========== System Restore Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0
========== Firewall Settings ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall]
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile]
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile]
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile]
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 0
"DoNotAllowExceptions" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 0
"DoNotAllowExceptions" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 0
========== Authorized Applications List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
========== Vista Active Open Ports Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{02C62FD1-D0C1-40D8-A655-AAED53E75B05}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{06B8813C-D374-4DB3-A3CE-B2AEDA7D70FC}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
"{0C21EC68-B50A-4AB5-BF0A-FF8337AF674A}" = lport=137 | protocol=17 | dir=in | app=system |
"{0D5A78FF-A662-40F4-B589-097D54AA5B7B}" = lport=80 | protocol=6 | dir=in | name=war thunder |
"{0D61BA7B-1590-4B30-847B-255BD78AD6A2}" = lport=7679 | protocol=6 | dir=in | name=allshareframeworkdms service tcp port2 |
"{1250A317-47A4-49CC-B3F6-33C1FCD965D0}" = lport=27022 | protocol=6 | dir=in | name=war thunder |
"{171CF9AE-D035-4C7A-8CDD-79CAC92B7AF6}" = lport=3478 | protocol=17 | dir=in | name=war thunder |
"{2C4E53A3-6B6F-4D61-A2B7-D1FF53DD2486}" = lport=2177 | protocol=17 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{2C81BDF3-6BDA-46D3-A088-A5D07C9E2B16}" = lport=7900 | protocol=6 | dir=in | name=allshareframework dms service udp port2 |
"{2D1EF8EF-AEB1-457E-B010-5A6DC92EDB45}" = lport=7676 | protocol=6 | dir=in | name=allshareframeworkdms service tcp port1 |
"{3219EE44-84FD-42A0-85C3-49853FC4634F}" = lport=58595 | protocol=6 | dir=in | name=pando media booster |
"{37ECEA06-58B8-4436-A500-2792C164D00D}" = rport=138 | protocol=17 | dir=out | app=system |
"{3DD5BEE7-3BF2-4E07-BD03-761CE57C4EAC}" = lport=445 | protocol=6 | dir=in | app=system |
"{4506F258-CB3F-467C-A63A-E110CFD6FDEF}" = lport=58595 | protocol=17 | dir=in | name=pando media booster |
"{50BA1335-CB74-4BAA-8405-109931CC365C}" = lport=8090 | protocol=6 | dir=in | name=war thunder |
"{540ED324-AAD0-4E5A-8931-13CCF3134075}" = lport=58595 | protocol=17 | dir=in | name=pando media booster |
"{5A31A571-E7F7-451A-B1EA-15A7687CE166}" = lport=8643 | protocol=6 | dir=in | name=allshareframeworkdms event tcp port |
"{5DAB9E03-C007-4341-8941-351402B4BFD3}" = lport=33333 | protocol=6 | dir=in | name=war thunder |
"{672AE53C-E9A1-4852-8C77-CB2BB36C7FB1}" = lport=2869 | protocol=6 | dir=in | app=system |
"{68C3816C-C101-4A08-AC3D-CFCE036F6E53}" = lport=58595 | protocol=6 | dir=in | name=pando media booster |
"{6D78066C-6577-4144-A771-8C9692EC34FB}" = lport=20443 | protocol=6 | dir=in | name=war thunder |
"{76345ECC-87EC-45B6-877E-F3B4113F60BD}" = lport=8743 | protocol=6 | dir=in | name=allshareframeworkdms action tcp port |
"{784F10AA-66B3-4080-BF54-4DE735D57255}" = lport=7850 | protocol=6 | dir=in | name=war thunder |
"{7F2786EF-9BA0-496C-BDE7-9079715302BC}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{85FB034B-7885-4EF4-81DC-6A8241659608}" = rport=2177 | protocol=17 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{898AA9FC-E73B-43A8-BEEC-17C07F4A1491}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 |
"{921ECE7C-D1DA-452A-BDF6-D095FDEAB84E}" = rport=139 | protocol=6 | dir=out | app=system |
"{96D3C0E3-55BE-4AF6-9387-6C2832D6B4E2}" = lport=139 | protocol=6 | dir=in | app=system |
"{9E8298D4-8DC5-4697-AF93-336C1AA06AF7}" = lport=138 | protocol=17 | dir=in | app=system |
"{A73C3FDC-7E18-499B-A129-5EFE4E2124AE}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{A90CFE6F-EB6E-4507-86FB-6F891E413051}" = lport=10243 | protocol=6 | dir=in | app=system |
"{BA0B5075-0FD5-43DF-BB8C-99F87104F375}" = rport=137 | protocol=17 | dir=out | app=system |
"{BE6B104C-DB36-4C29-9B75-0AD64BC268C7}" = rport=445 | protocol=6 | dir=out | app=system |
"{BEED5721-42A5-41CF-8A30-10D68332F90B}" = lport=20010 | protocol=17 | dir=in | name=war thunder |
"{C0D9E6B0-3DC1-458D-9F80-41E97B8B2912}" = rport=10243 | protocol=6 | dir=out | app=system |
"{C5766F4E-826F-4983-8D01-6169120A0A4F}" = lport=2177 | protocol=6 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{CCF9F6BD-DFA2-4275-9CD2-C3D650240AB1}" = rport=2177 | protocol=6 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{D4452720-13AB-4B3E-9862-11FD9744173C}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{D4E6D538-3494-4F41-BD00-5A0CE43E4D76}" = lport=6881 | protocol=6 | dir=in | name=war thunder |
"{D877A5A4-BF97-42B1-A5A8-17D5C00B0E57}" = lport=443 | protocol=6 | dir=in | name=war thunder |
"{DF76A04B-982A-4BAA-A197-A552D3A32835}" = lport=24234 | protocol=6 | dir=in | name=allshareframework dms service udp port1 |
"{EF2CCDDA-7991-45D4-A89C-BD1F543E8262}" = lport=1900 | protocol=6 | dir=in | name=upnp multicast port |
========== Vista Active Application Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{00053D14-D5FB-4BB5-98C6-0BD737AA3686}" = protocol=6 | dir=in | app=g:\program files\steam\steamapps\common\xcom apocalypse\dosbox.exe |
"{02FE9EDA-0FA5-4993-BA4C-47E024E4A4FE}" = protocol=17 | dir=in | app=c:\windows\syswow64\pnkbstrb.exe |
"{06C34C4C-91EF-487B-9201-6371118AB3C2}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{073AFE37-CAF5-4130-9D73-2A77ECD7E831}" = protocol=6 | dir=in | app=c:\windows\syswow64\pnkbstrb.exe |
"{0AB868F7-8327-4B62-A87E-FC07888B5685}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{0B5E9E8A-6A89-4003-A82D-4B6B777B8256}" = protocol=17 | dir=in | app=f:\games\battlefield 3\bf3.exe |
"{0B771C67-E5AA-41B7-A388-8E4BB168443B}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 |
"{1310B071-08D0-478D-9CE7-E51FEFC05826}" = protocol=6 | dir=in | app=g:\program files\steam\steamapps\common\amd driver updater, vista and 7, 64 bit\setup.exe |
"{15F9D291-4825-4005-86A0-5DAD9C38C101}" = protocol=17 | dir=in | app=c:\programdata\nexoneu\ngm\ngm.exe |
"{185B7901-B67A-4EE4-9D7D-700FC3016F11}" = protocol=17 | dir=in | app=g:\program files\steam\steam.exe |
"{19267A88-5AAC-4964-824E-A99D095DA87F}" = protocol=17 | dir=in | app=g:\program files\steam\steamapps\common\battlefield bad company 2\support\ea help\electronic_arts_technical_support.htm |
"{19F71101-1CF1-468F-92DF-D9370ECD6607}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{1C551BF6-DAB5-4DDF-B89B-C58B2ECD6ECC}" = protocol=6 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{1ED5B747-8942-4F4B-AE14-6796AE2D3BE0}" = protocol=6 | dir=in | app=g:\program files\steam\steamapps\common\hearts of iron 3\hoi3game.exe |
"{209E40BC-E338-4F46-BCD8-C1A3106A6A87}" = protocol=17 | dir=in | app=g:\program files\steam\steamapps\common\europa universalis iv\eu4.exe |
"{21AEA532-EF49-421A-915B-ACC81560F390}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{22C0B410-ED49-4D38-A9EC-5EE7AD3563C2}" = protocol=6 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{232AB07A-72F5-4E87-9D0A-261E8470E83E}" = protocol=17 | dir=in | app=g:\program files\steam\steamapps\common\hearts of iron 3\hoi3game.exe |
"{23894B07-676E-4E3E-BDAC-3C9D2A24FF27}" = protocol=17 | dir=in | app=g:\program files\steam\steamapps\common\company of heroes relaunch\reliccoh.exe |
"{2FB7F3F0-AE70-4732-A2F5-A34D9FE42CF8}" = protocol=6 | dir=in | app=g:\program files\steam\steam.exe |
"{33F84670-9C9D-4CAF-8060-B7765F0363A4}" = protocol=6 | dir=out | app=system |
"{3B650FC7-9219-40D4-B3E5-7F80BB3430CA}" = protocol=6 | dir=in | app=g:\program files\steam\steamapps\common\battlefield bad company 2\bfbc2game.exe |
"{3B734DA9-04CC-4E04-975A-8B912B095F00}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{4278E043-CB99-4B0F-A0F1-E3AA8E54EDFA}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{44FE9A81-89CE-45D3-948B-4206EFCCB093}" = protocol=17 | dir=in | app=g:\program files\steam\steamapps\common\sid meier's civilization iv beyond the sword\beyond the sword\civ4beyondsword.exe |
"{4DB11355-5C7F-4562-A436-80BB07F47641}" = protocol=6 | dir=in | app=g:\program files\steam\steamapps\common\company of heroes relaunch\reliccoh.exe |
"{4EB3D827-A843-44E1-A1E0-B6945B9CB155}" = protocol=6 | dir=in | app=c:\program files (x86)\asus\ai suite ii\ai suite ii.exe |
"{4F45B19D-4E70-4BC6-BF60-D6F51F0EEF9E}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{51E8F60B-C7F2-4D31-8C55-E125612B7509}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{51EC5203-F032-42B1-8EE5-05FF32033918}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{542D9580-955C-4048-A899-5A5ECCAC2FC5}" = protocol=17 | dir=in | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{5B62847A-B6F2-4373-B67D-C0F412E38C2A}" = protocol=17 | dir=in | app=g:\program files\steam\steamapps\common\company of heroes relaunch\reliccoh.exe |
"{5D692E87-E95F-46F9-BF1F-003C57A609A3}" = protocol=17 | dir=in | app=c:\program files (x86)\pando networks\media booster\pmb.exe |
"{5EA3E5AE-241A-4475-978C-A8A9BE54B234}" = protocol=6 | dir=in | app=c:\users\lukas\appdata\roaming\dropbox\bin\dropbox.exe |
"{62C05762-D94A-4A6E-B367-28A8CB05BF2D}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 |
"{66C5AD79-2DAB-4590-AF59-30DABADCF066}" = protocol=17 | dir=in | app=c:\windows\syswow64\pnkbstra.exe |
"{66DBDB1B-51D2-4B95-B638-726FC9D140AE}" = protocol=17 | dir=in | app=e:\diablo 3\diablo iii\diablo iii.exe |
"{6F371FCE-35E8-4F8C-AEAE-7C9101BCC856}" = protocol=6 | dir=in | app=e:\diablo 3\diablo iii\diablo iii.exe |
"{70F8A352-907B-4B8B-ADBE-0C5D5EA316B2}" = protocol=6 | dir=in | app=e:\program files (x86)\ubisoft\the settlers 7 - cesta ke koruně\data\base\_dbg\bin\release\settlers7r.exe |
"{7143D2AA-A473-45D5-8EBD-705C21EBBEC8}" = protocol=6 | dir=in | app=g:\program files\steam\steamapps\common\europa universalis iv\eu4.exe |
"{752C5E1A-0AF9-4407-9983-A2775A0445C1}" = dir=in | app=c:\program files (x86)\pando networks\media booster\pmb.exe |
"{77FE3071-CF81-4BD2-A8E1-CCAF99249648}" = protocol=6 | dir=in | app=g:\program files\steam\steamapps\common\sid meier's civilization iv\civilization4.exe |
"{7FC6F5F9-27D3-4CA1-9A97-4B6DC2A627FC}" = protocol=6 | dir=in | app=g:\program files\steam\steamapps\common\marchofwar\game.exe |
"{84AE3269-26AD-4097-A98B-6D856B0646BF}" = protocol=6 | dir=in | app=c:\program files (x86)\pando networks\media booster\pmb.exe |
"{91A24088-DE01-4DC5-82D7-DB8A0EB1A326}" = protocol=6 | dir=in | app=g:\program files\steam\steamapps\common\company of heroes relaunch\reliccoh.exe |
"{94A1B0B9-48B2-4A4D-8E32-0FEE327ACA26}" = protocol=17 | dir=in | app=g:\program files\steam\steamapps\common\hearts of iron 3\hoi3.exe |
"{9DA5F17D-C622-4B70-8E9A-308C0C8F5568}" = protocol=17 | dir=in | app=c:\program files (x86)\common files\comodo\geekbuddyrsp.exe |
"{9DEF5A9F-841F-4D43-B8E9-7BDEA27E622D}" = protocol=17 | dir=in | app=g:\program files\steam\steamapps\common\battlefield bad company 2\bfbc2game.exe |
"{A0002AA0-B9FF-44ED-A90F-FDD5A21DFBC9}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{A37EFCD9-C4A0-450D-BD1D-FE3740224F66}" = protocol=17 | dir=in | app=c:\program files (x86)\asus\ai suite ii\ai suite ii.exe |
"{A77E7F67-C122-42EC-8490-01F28EF7D6F2}" = protocol=17 | dir=in | app=g:\program files\steam\steamapps\common\marchofwar\game.exe |
"{B7E63B3C-9DB4-411F-AD14-C3EEC09FD0D0}" = protocol=6 | dir=in | app=g:\program files\steam\steamapps\common\hearts of iron 3\hoi3.exe |
"{B84A960B-E43F-4AC0-A52B-5E6B3B6F2981}" = protocol=17 | dir=in | app=c:\users\lukas\appdata\roaming\dropbox\bin\dropbox.exe |
"{BCE9DC8D-7596-4AC5-9185-963FD436CE9E}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 |
"{BECA697C-C8D5-4785-97B6-3B1041123C99}" = protocol=17 | dir=in | app=e:\program files (x86)\ubisoft\the settlers 7 - cesta ke koruně\data\base\_dbg\bin\release\settlers7r.exe |
"{C124B456-D81C-46FD-BF0B-496E3DCB743A}" = protocol=17 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{C1D05185-3ED0-4269-9371-25B82A152AE6}" = protocol=17 | dir=in | app=f:\program files (x86)\microsoft games\rise of nations\thrones.exe |
"{C23B11A1-59BF-4DB1-9B92-FFE5800F89AA}" = protocol=17 | dir=in | app=g:\program files\steam\steamapps\common\sid meier's civilization iv\civilization4.exe |
"{CCA7A3B2-400B-40A8-973B-AE66535414D6}" = protocol=6 | dir=in | app=c:\program files (x86)\pando networks\media booster\pmb.exe |
"{D1175B48-6200-454E-AD84-C00B8AA46489}" = protocol=17 | dir=in | app=c:\program files (x86)\pando networks\media booster\pmb.exe |
"{D3497E65-15CF-4CB1-9533-8372E80B338E}" = protocol=17 | dir=in | app=g:\program files\steam\steamapps\common\amd driver updater, vista and 7, 64 bit\setup.exe |
"{D74BDDF9-D0E8-426C-AAF6-A70964846674}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 |
"{D96ED7A5-9F07-4028-A877-D84330E6E89D}" = protocol=6 | dir=in | app=c:\program files (x86)\common files\comodo\geekbuddyrsp.exe |
"{DE18C964-D122-424A-9FB5-19BB3D736765}" = protocol=6 | dir=in | app=g:\program files\steam\steamapps\common\sid meier's civilization iv beyond the sword\beyond the sword\civ4beyondsword.exe |
"{E22993C9-82BC-496E-A43D-F64E2EC242FE}" = protocol=6 | dir=in | app=c:\windows\syswow64\pnkbstra.exe |
"{E792A2DA-A389-4497-A69E-C9E6C6BFEBA5}" = protocol=6 | dir=in | app=c:\programdata\nexoneu\ngm\ngm.exe |
"{EBDC44DB-48D9-46A0-9B60-9043905D50B9}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{EE253786-E073-4429-AD65-091BF37CADD9}" = protocol=6 | dir=in | app=g:\program files\steam\steamapps\common\battlefield bad company 2\support\ea help\electronic_arts_technical_support.htm |
"{EF02CF0D-3421-4B7C-A968-1327980129BE}" = protocol=17 | dir=in | app=g:\program files\steam\steamapps\common\xcom apocalypse\dosbox.exe |
"{F37E7CBE-1906-4DBC-8AEF-23918D8F48E0}" = protocol=17 | dir=in | app=c:\program files (x86)\ubisoft\ubisoft game launcher\ubisoftgamelauncher.exe |
"{F5894E32-BE98-491D-A01D-3FB186BC6E13}" = protocol=6 | dir=in | app=f:\program files (x86)\microsoft games\rise of nations\thrones.exe |
"{FBFB64DE-89BD-49F7-BAE9-694F2F179E88}" = protocol=6 | dir=in | app=c:\program files (x86)\ubisoft\ubisoft game launcher\ubisoftgamelauncher.exe |
"{FD065AF9-6588-4EB7-A7A5-26E97897D81A}" = protocol=6 | dir=in | app=f:\games\battlefield 3\bf3.exe |
"TCP Query User{020BF54C-9C23-4F90-8C04-00A841E2F7A8}E:\download\downloader_diablo2_lord_of_destruction_engb (1).exe" = protocol=6 | dir=in | app=e:\download\downloader_diablo2_lord_of_destruction_engb (1).exe |
"TCP Query User{055FB6FD-6D92-45E4-83A8-1EBA0922A1BB}C:\program files (x86)\java\jre7\bin\java.exe" = protocol=6 | dir=in | app=c:\program files (x86)\java\jre7\bin\java.exe |
"TCP Query User{0D60122C-B31F-46B9-BE19-2587FE657230}E:\program files (x86)\skype\phone\skype.exe" = protocol=6 | dir=in | app=e:\program files (x86)\skype\phone\skype.exe |
"TCP Query User{128ACF85-E4AC-4DE1-9530-FB7CC01ED55A}E:\download\downloader_diablo2_lord_of_destruction_engb.exe" = protocol=6 | dir=in | app=e:\download\downloader_diablo2_lord_of_destruction_engb.exe |
"TCP Query User{5678B951-6FC5-4A40-8B9F-0E329FC250CA}E:\games\world_of_tanks_closed_beta\wotlauncher.exe" = protocol=6 | dir=in | app=e:\games\world_of_tanks_closed_beta\wotlauncher.exe |
"TCP Query User{5A702731-5269-49BB-A7A8-481FDB3B4CCC}E:\download\downloader_diablo2_engb.exe" = protocol=6 | dir=in | app=e:\download\downloader_diablo2_engb.exe |
"TCP Query User{618F1BF3-D191-4068-AD47-1A2FCE59B733}C:\users\lukas\appdata\local\google\chrome\application\chrome.exe" = protocol=6 | dir=in | app=c:\users\lukas\appdata\local\google\chrome\application\chrome.exe |
"TCP Query User{6EBC5674-B8AA-422B-B5FE-52E218DDED3C}E:\download\diablo-iii-8370-engb-installer-downloader.exe" = protocol=6 | dir=in | app=e:\download\diablo-iii-8370-engb-installer-downloader.exe |
"TCP Query User{730C97B5-375B-42ED-8984-577E08622CE3}F:\games\world_of_tanks_closed_beta\worldoftanks.exe" = protocol=6 | dir=in | app=f:\games\world_of_tanks_closed_beta\worldoftanks.exe |
"TCP Query User{932CB4AE-0E79-4BFA-A281-FFD4F6FFD2E2}F:\games\world_of_tanks_closed_beta\wotlauncher.exe" = protocol=6 | dir=in | app=f:\games\world_of_tanks_closed_beta\wotlauncher.exe |
"TCP Query User{BBE9DC02-7939-4D00-AD30-865D5096C591}E:\games\world_of_tanks_closed_beta\worldoftanks.exe" = protocol=6 | dir=in | app=e:\games\world_of_tanks_closed_beta\worldoftanks.exe |
"TCP Query User{C37F3C9A-7C00-4A8C-AB57-4D42D469856E}C:\program files (x86)\videolan\vlc\vlc.exe" = protocol=6 | dir=in | app=c:\program files (x86)\videolan\vlc\vlc.exe |
"TCP Query User{C752203F-FC31-4970-9428-73D6B945C0AB}E:\program files (x86)\ubisoft\the settlers 7 - cesta ke koruně\data\base\_dbg\bin\release\uplaybrowser.exe" = protocol=6 | dir=in | app=e:\program files (x86)\ubisoft\the settlers 7 - cesta ke koruně\data\base\_dbg\bin\release\uplaybrowser.exe |
"TCP Query User{E9560295-64ED-4A64-A64A-87794F099C65}C:\program files (x86)\winamp\winamp.exe" = protocol=6 | dir=in | app=c:\program files (x86)\winamp\winamp.exe |
"UDP Query User{111C202B-6175-4BD7-BDC5-5E5CE76B42E2}E:\download\diablo-iii-8370-engb-installer-downloader.exe" = protocol=17 | dir=in | app=e:\download\diablo-iii-8370-engb-installer-downloader.exe |
"UDP Query User{1A2B8BDD-3EF2-415A-AF49-585D3C53CDE1}F:\games\world_of_tanks_closed_beta\worldoftanks.exe" = protocol=17 | dir=in | app=f:\games\world_of_tanks_closed_beta\worldoftanks.exe |
"UDP Query User{20525D66-FB29-4BB1-B57D-56247B0815AD}E:\program files (x86)\skype\phone\skype.exe" = protocol=17 | dir=in | app=e:\program files (x86)\skype\phone\skype.exe |
"UDP Query User{2330E9F4-AD5C-4A31-A003-E222A7D8DD8B}C:\program files (x86)\videolan\vlc\vlc.exe" = protocol=17 | dir=in | app=c:\program files (x86)\videolan\vlc\vlc.exe |
"UDP Query User{327AAED3-04E5-4D56-937A-0E51658BF36A}E:\games\world_of_tanks_closed_beta\wotlauncher.exe" = protocol=17 | dir=in | app=e:\games\world_of_tanks_closed_beta\wotlauncher.exe |
"UDP Query User{46C1BB98-4438-419F-8314-DD50C20D3F20}E:\download\downloader_diablo2_lord_of_destruction_engb (1).exe" = protocol=17 | dir=in | app=e:\download\downloader_diablo2_lord_of_destruction_engb (1).exe |
"UDP Query User{71863701-126D-47B2-9B21-971D36D376DE}C:\program files (x86)\java\jre7\bin\java.exe" = protocol=17 | dir=in | app=c:\program files (x86)\java\jre7\bin\java.exe |
"UDP Query User{951C581D-0DE5-41B5-9F50-A6CFD154717B}F:\games\world_of_tanks_closed_beta\wotlauncher.exe" = protocol=17 | dir=in | app=f:\games\world_of_tanks_closed_beta\wotlauncher.exe |
"UDP Query User{A6FAEE6F-FA3D-4BF4-9F1D-A66AC3CCBFC6}E:\program files (x86)\ubisoft\the settlers 7 - cesta ke koruně\data\base\_dbg\bin\release\uplaybrowser.exe" = protocol=17 | dir=in | app=e:\program files (x86)\ubisoft\the settlers 7 - cesta ke koruně\data\base\_dbg\bin\release\uplaybrowser.exe |
"UDP Query User{BC8EEBB3-FDE0-4086-A4C9-8578DEB4E071}C:\users\lukas\appdata\local\google\chrome\application\chrome.exe" = protocol=17 | dir=in | app=c:\users\lukas\appdata\local\google\chrome\application\chrome.exe |
"UDP Query User{D02A7265-B37E-498C-AA6A-900297AEE91D}C:\program files (x86)\winamp\winamp.exe" = protocol=17 | dir=in | app=c:\program files (x86)\winamp\winamp.exe |
"UDP Query User{E565809F-CD25-4593-B207-53E886B59648}E:\download\downloader_diablo2_engb.exe" = protocol=17 | dir=in | app=e:\download\downloader_diablo2_engb.exe |
"UDP Query User{EDF8A4A6-2852-49E3-BE46-C5415E272119}E:\games\world_of_tanks_closed_beta\worldoftanks.exe" = protocol=17 | dir=in | app=e:\games\world_of_tanks_closed_beta\worldoftanks.exe |
"UDP Query User{EE58C775-603D-435E-AD2E-0C53F74F218C}E:\download\downloader_diablo2_lord_of_destruction_engb.exe" = protocol=17 | dir=in | app=e:\download\downloader_diablo2_lord_of_destruction_engb.exe |
========== HKEY_LOCAL_MACHINE Uninstall List ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_CNQ4807" = CanoScan LiDE 200 Scanner Driver
"{1C38C0D7-F020-4372-DAEF-A526AD8A0D77}" = AMD Fuel
"{1D8E6291-B0D5-35EC-8441-6616F567A0F7}" = Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219
"{1E9FC118-651D-4934-97BE-E53CAE5C7D45}" = Microsoft_VC80_MFCLOC_x86_x64
"{23170F69-40C1-2702-0920-000001000000}" = 7-Zip 9.20 (x64 edition)
"{4569AD91-47F4-4D9E-8FC9-717EC32D7AE1}" = Microsoft_VC80_CRT_x86_x64
"{46DA7FD9-8BC1-7BA8-98D1-27F46647871B}" = AMD Catalyst Install Manager
"{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148
"{4f94b43a-8a00-4ac4-bb94-269cf24aef97}.sdb" = Dungeon Keeper 2
"{503F672D-6C84-448A-8F8F-4BC35AC83441}" = AMD APP SDK Runtime
"{51DDB4F9-7FFF-4970-AED4-DB3C22A5C522}" = Corel Graphics - Windows Shell Extension 64 Bit
"{65312278-952C-D46E-8297-4CAB93F5B2DF}" = AMD Media Foundation Decoders
"{669A82E0-43E2-4645-8A2E-1A3DE78F8312}" = Adobe Photoshop Lightroom 4 64-bit
"{6809A67A-D099-48EA-9126-8567130CF377}" = AMD Accelerated Video Transcoding
"{6C1A010F-9108-4162-A26F-9FEC4AC0F0F0}" = Adobe Photoshop Lightroom 5 64-bit
"{8557397C-A42D-486F-97B3-A2CBC2372593}" = Microsoft_VC90_ATL_x86_x64
"{8E34682C-8118-31F1-BC4C-98CD9675E1C2}" = Microsoft .NET Framework 4 Extended
"{925D058B-564A-443A-B4B2-7E90C6432E55}" = Microsoft_VC80_ATL_x86_x64
"{92A3CA0D-55CD-4C5D-BA95-5C2600C20F26}" = Microsoft_VC90_CRT_x86_x64
"{9B48B0AC-C813-4174-9042-476A887592C7}" = Windows Live ID Sign-in Assistant
"{A472B9E4-0AFF-4F7B-B25D-F64F8E928AAB}" = Microsoft_VC90_MFC_x86_x64
"{BE93349C-0BD1-7063-DA1A-D26E0E41477B}" = ccc-utility64
"{C8C1BAD5-54E6-4146-AD07-3A8AD36569C3}" = Microsoft_VC80_MFC_x86_x64
"{D6AB1F5B-FED6-49A9-9747-327BD28FB3C7}" = COMODO Internet Security
"{DA2737A4-B639-96F4-1CC2-30D2919EE1FB}" = AMD Steady Video Plug-In
"{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}" = Microsoft .NET Framework 4 Client Profile
"{F809FFB5-6F9B-AFDE-6048-5D9E95A85505}" = AMD Drag and Drop Transcoding
"CCleaner" = CCleaner
"CPUID CPU-Z_is1" = CPUID CPU-Z 1.67
"CPUID HWMonitor_is1" = CPUID HWMonitor 1.24
"HWiNFO64_is1" = HWiNFO64 Version 4.22
"ICP install2_is1" = ICP 9.0
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Microsoft .NET Framework 4 Extended" = Microsoft .NET Framework 4 Extended
"Recuva" = Recuva
"TeamSpeak 3 Client" = TeamSpeak 3 Client
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"_{B6BFCD02-BA0E-41A9-9C9C-6624C4BB475F}" = Corel Graphics - Windows Shell Extension
"{01501EBA-EC35-4F9F-8889-3BE346E5DA13}" = MSXML4 Parser
"{015E0577-7D4A-456C-A435-DD9EE7E72589}_is1" = Black ICE Mk VII r1904
"{01E9B2FF-DAF4-4529-9CC9-2101625517C7}" = nero.prerequisites.msi
"{033E378E-6AD3-4AD5-BDEB-CBD69B31046C}" = Microsoft_VC90_ATL_x86
"{08D2E121-7F6A-43EB-97FD-629B44903403}" = Microsoft_VC90_CRT_x86
"{0D2DBE8A-43D0-7830-7AE7-CA6C99A832E7}" = Adobe Community Help
"{0F3647F8-E51D-4FCC-8862-9A8D0C5ACF25}" = Microsoft_VC80_ATL_x86
"{10B43A43-FF73-47FD-83E8-A503E84F9ED6}" = OpenOffice.org 3.3
"{15FEDA5F-141C-4127-8D7E-B962D1742728}" = Adobe Photoshop CS5
"{196467F1-C11F-4F76-858B-5812ADC83B94}" = MSXML 4.0 SP3 Parser
"{19BFDA5D-1FE2-4F25-97F9-1A79DD04EE20}" = Microsoft XNA Framework Redistributable 3.1
"{1C72CC1B-C0F6-F698-0E23-0D705A86E224}" = CCC Help Finnish
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{24A500E4-0B12-4D62-9973-2C7E23CCA750}" = Nero Kwik Media
"{24D9A3E0-D086-4B62-AF93-63CF6B05CB48}" = CorelDRAW Graphics Suite X5 - Custom Data
"{260ED378-2B8C-4831-ADAE-D0712D119AC5}" = CorelDRAW Graphics Suite X5 - VSTA
"{26945917-E053-45F6-AF98-309730CFC318}" = Visual Basic for Applications (R) Core
"{26A24AE4-039D-4CA4-87B4-2F83217055FF}" = Java 7 Update 55
"{299C0434-4F4E-341F-A916-4E07AEB35E79}" = Microsoft Visual Studio Tools for Applications 2.0 Runtime
"{2AB66B5F-2613-477F-A4B1-CB2E8C7A2943}" = Banished v1.0.0 32-bit
"{31A559C1-9E4D-423B-9DD3-34A6C5398752}" = HTC BMP USB Driver
"{3472C84E-2FD0-439F-B27F-C290C1E4CD8B}" = CorelDRAW Graphics Suite X5 - Filters
"{34D3688E-A737-44C5-9E2A-FF73618728E1}" = AI Suite II
"{356658C7-8C60-4A43-AF50-75CA8E642934}" = CorelDRAW Graphics Suite X5 - CZ
"{36637D5B-1305-1ED8-EEC3-4C76A6655FCF}" = CCC Help Norwegian
"{3795E3F4-CA46-EA65-4FD2-D861A2A12ECD}" = CCC Help Swedish
"{3997DF5C-EF46-B135-D73B-C8BFE797105A}" = CCC Help Turkish
"{39AB4A9F-97DB-4BCA-981F-B85189115037}" = GeekBuddy
"{3A1B5D40-41E9-43FA-8C7B-A8667F5586EF}" = JMicron JMB36X Driver
"{3C76DB65-E66A-DE04-4CE3-5DA42ED98685}" = CCC Help Chinese Standard
"{3DC9D062-2C3E-7C31-504C-BF2751617224}" = CCC Help Portuguese
"{3F5AED19-3C1C-6ED5-EAF0-CBE15BB3B8F1}" = Catalyst Control Center Localization All
"{441AC599-200D-4E04-B274-C6B7B50C281D}_is1" = Hamster Free EbookConverter
"{45A66726-69BC-466B-A7A4-12FCBA4883D7}" = HiJackThis
"{47416F0B-6589-591E-C6F8-4235D2230B14}" = Catalyst Control Center InstallProxy
"{495EB8CB-A455-8033-EF42-65AEFFF4ED97}" = CCC Help Chinese Traditional
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4A22F96C-993D-3489-2CB1-37C61F29135C}" = CCC Help Korean
"{4CB0307C-565E-4441-86BE-0DF2E4FB828C}" = Microsoft Games for Windows Marketplace
"{54B8F4A1-02B0-4D32-8F37-925526C0EEC6}" = CorelDRAW Graphics Suite X5 - Connect
"{5612D4CE-C024-80F5-9F59-546B95F884B2}" = CCC Help Polish
"{5662A630-98E4-2FDC-CE6A-73D21240DC52}" = CCC Help Hungarian
"{57400C1E-BC51-4ECE-AD2A-A6096204DDEC}" = CorelDRAW Graphics Suite X5 - VBA
"{59123CCF-FED2-46FF-9293-D1DC80042219}" = CorelDRAW Graphics Suite X5 - Redist
"{5A212B2D-140D-46F4-B625-2D1CA5A00594}" = Nero 11 Kwik Themes Basic
"{60982A88-95DF-E0B8-18C7-E7297C200623}" = AMD VISION Engine Control Center
"{62978C1C-FE2E-4A4E-851D-3EB406C9EBC2}" = CorelDRAW Graphics Suite X5 - Draw
"{635FED5B-2C6D-49BE-87E6-7A6FCD22BC5A}" = Microsoft_VC90_MFC_x86
"{65BB0407-4CC8-4DC7-952E-3EEFDF05602A}" = Nero Update
"{681544C2-FFA2-4CFD-A9AD-2A3D25DF8D22}" = CM Installer
"{6910C412-A523-493C-BC22-0213CD7F4F3A}" = Industry Giant 2 - Gold Edition
"{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}" = Windows Media Player Firefox Plugin
"{6AFCA4E1-9B78-3640-8F72-A7BF33448200}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729
"{6D6664A9-3342-4948-9B7E-034EFE366F0F}" = HTC Driver Installer
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{719371E9-93F9-49B2-A82F-2E50991FD298}" = CDBurnerXP
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{73E1C443-5420-442D-B314-649AE103D08B}" = CCC Help Thai
"{77864743-57AB-A566-67D6-12EF64165209}" = CCC Help German
"{7A3C7E05-EE37-47D6-99E1-2EB05A3DA3F7}" = Skype™ 6.16
"{832D9DE0-8AFC-4689-9819-4DBBDEBD3E4F}" = Microsoft Games for Windows - LIVE Redistributable
"{84F49E05-683A-5544-263D-08E4814F196B}" = CCC Help Greek
"{8833FFB6-5B0C-4764-81AA-06DFEED9A476}" = Realtek Ethernet Controller Driver
"{888F1505-C2B3-4FDE-835D-36353EBD4754}" = Ubisoft Game Launcher
"{90579CE9-8FB6-88A3-09ED-68F30E763BBC}" = CCC Help Japanese
"{9193490D-5229-4FC4-9BB9-A6D63C09574A}" = High-Definition Video Playback
"{9244E956-5939-4B88-930C-0699D4AB2B95}" = CorelDRAW Graphics Suite X5 - WT
"{92D58719-BBC1-4CC3-A08B-56C9E884CC2C}" = Microsoft_VC80_CRT_x86
"{980A182F-E0A2-4A40-94C1-AE0C1235902E}" = Pando Media Booster
"{983F7145-CABF-4EDD-9F3D-E06B2F024BD3}" = CorelDRAW Graphics Suite X5 - FontNav
"{9927F5EF-AAB0-E471-1DBF-3940E9477D23}" = CCC Help Spanish
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9C916142-C18C-429D-BFED-40094A7E0BEB}" = The Settlers 7 - CESTA KE KORUNĚ
"{A1B04B6B-25BB-48AD-8BD9-D31A86E89F3E}" = CorelDRAW Graphics Suite X5 - PHOTO-PAINT
"{A78FE97A-C0C8-49CE-89D0-EDD524A17392}" = PDF Settings CS5
"{A7A0BF2E-31CC-49E3-9913-52C503EB969D}" = Nero Audio Pack 1
"{AA4A4B2C-0465-3CF8-BA76-27A027D8ACAB}" = Microsoft Visual Studio Tools for Applications 2.0 - ENU
"{AB77DFDE-9949-4AEF-B180-BE322C3E65D0}" = HTC Sync
"{AB7A4789-7A60-8D6C-96F4-4D21702EC7BD}" = CCC Help Czech
"{ABD4AF09-45DC-F830-0DF0-378C354ED351}" = CCC Help English
"{AEB730BE-17B3-2FA0-9D64-78CD3939C60A}" = CCC Help Dutch
"{B399C91E-96F2-4265-9884-1C9A10E9FCF4}" = CorelDRAW Graphics Suite X5
"{B6BFCD02-BA0E-41A9-9C9C-6624C4BB475F}" = Corel Graphics - Windows Shell Extension
"{B9B1BA7F-7E07-49DD-A713-5B397A5BB66B}" = Nero Kwik Media Help (CHM)
"{BE814218-3919-4EA3-868A-2F60BC135CB4}" = Nero Kwik Media
"{BEBEE34D-84A2-4EDD-8BEA-96CC54371263}" = Nero Core Components 11
"{C715FF52-CBA8-780F-EFD8-5DF5525DBF74}" = Catalyst Control Center Graphics Previews Common
"{CA3861BA-1D96-4D66-B577-318E1602C4F3}" = CorelDRAW Graphics Suite X5 - Common
"{CE54DCE1-E00A-4D91-ACB9-A2D916C24051}" = CorelDRAW Graphics Suite X5 - Setup Files
"{CF6C9984-8F22-00D5-BA0A-F1330035A80E}" = CCC Help Russian
"{D1A19B02-817E-4296-A45B-07853FD74D57}" = Microsoft_VC80_MFC_x86
"{D596EEA2-C6C8-45D3-89DF-FA2DBE99F829}" = Visual Basic for Applications (R) Core - English
"{D642FF8D-438D-4545-A1D5-2EDB4BCAE3BA}" = CorelDRAW Graphics Suite X5 - Photozoom Plugin
"{D6477FB5-3F2F-A7C9-38F7-2FD0E79722B5}" = CCC Help Italian
"{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}" = Microsoft XNA Framework Redistributable 4.0 Refresh
"{D7768225-15B9-F34E-82BD-883CEBE30132}" = CCC Help French
"{D92BBB52-82FF-42ED-8A3C-4E062F944AB7}" = Microsoft_VC80_MFCLOC_x86
"{DE3A9DC5-9A5D-6485-9662-347162C7E4CA}" = Adobe Media Player
"{DE6CBC04-8673-4DBA-BA81-07F1639CEB5F}" = CorelDRAW Graphics Suite X5 - IPM
"{E2F0AF23-FE2F-4222-9A43-55E63CC41EF1}" = Catalyst Control Center - Branding
"{E4FB0B39-C991-4EE7-95DD-1A1A7857D33D}" = Asmedia ASM104x USB 3.0 Host Controller Driver
"{EA450D5D-95EA-4FD0-B8B0-6D8E68FBE2C7}" = Impulse
"{EDB98D5A-A6FB-425C-BFB7-51A0924B762D}" = CorelDRAW Graphics Suite X5 - Capture
"{F09EF8F2-0976-42C1-8D9D-8DF78337C6E3}" = Sony PC Companion 2.10.053
"{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{FE4B83DE-85CF-4DE5-90CE-A2735A0E1F21}" = CorelDRAW Graphics Suite X5 - VideoBrowser
"{FE5683A6-BA08-6417-4F85-96F787B1614E}" = CCC Help Danish
"{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
"Adobe Flash Player Plugin" = Adobe Flash Player 13 Plugin
"Apollo DVD Copy_is1" = Apollo DVD Copy 4.8.47
"Ashampoo Burning Studio 11_is1" = Ashampoo Burning Studio 11 v.11.0.4
"Ashampoo Burning Studio 6 FREE_is1" = Ashampoo Burning Studio 6 FREE v.6.81
"Audacity_is1" = Audacity 2.0.5
"Audio MP3 Editor_is1" = Audio MP3 Editor 5.80
"Avast" = avast! Free Antivirus
"Battle.net" = Battle.net
"Blitzkrieg" = Blitzkrieg Mod
"DAEMON Tools Lite" = DAEMON Tools Lite
"Diablo II" = Diablo II
"Diablo III" = Diablo III
"DriverAgent_is1" = DriverAgent by eSupport.com
"Dungeon Keeper 2_is1" = Dungeon Keeper 2
"DVD Shrink_is1" = DVD Shrink 3.2
"Eastern Front" = Eastern Front
"Endless Space - Disharmony_is1" = Endless Space - Disharmony
"Faster Than Light_is1" = Faster Than Light
"GOGPACKTYRIAN2000_is1" = Tyrian 2000
"ImageConverter Plus_is1" = ImageConverter Plus 8.0
"Impulse" = Impulse
"KLiteCodecPack_is1" = K-Lite Codec Pack 9.3.0 (Basic)
"LAME_is1" = LAME v3.99.3 (for Windows)
"Malwarebytes Anti-Malware_is1" = Malwarebytes Anti-Malware verze 2.0.2.1012
"Mozilla Firefox 17.0.1 (x86 cs)" = Mozilla Firefox 17.0.1 (x86 cs)
"MozillaMaintenanceService" = Mozilla Maintenance Service
"MP Navigator EX 2.0" = Canon MP Navigator EX 2.0
"nGlide" = nGlide 1.02
"OpenAL" = OpenAL
"OpenTTD" = OpenTTD 1.2.2
"Origin" = Origin
"PokerStars" = PokerStars
"PrivDog" = PrivDog
"S2TNG" = The Settlers II - 10th Anniversary
"Shockwave" = Shockwave
"SpeedFan" = SpeedFan (remove only)
"SPORE™ Anthology_is1" = SPORE™ Anthology RePack by SxSxL
"Steam App 228200" = Company of Heroes (New Steam Version)
"Steam App 234310" = March of War
"Steam App 236850" = Europa Universalis IV
"Steam App 25890" = Hearts of Iron III
"Steam App 3900" = Sid Meier's Civilization IV
"Steam App 8800" = Sid Meier's Civilization IV: Beyond the Sword
"TechPowerUp GPU-Z" = TechPowerUp GPU-Z
"Theme Hospital_is1" = Theme Hospital
"UnLock Root" = UnLock Root 2.3
"VLC media player" = VLC media player 1.1.11
"Winamp" = Winamp
========== HKEY_USERS Uninstall List ==========
[HKEY_USERS\S-1-5-21-1575853709-75552691-4080425000-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Dropbox" = Dropbox
"Google Chrome" = Google Chrome
"Mozilla Firefox 29.0.1 (x86 cs)" = Mozilla Firefox 29.0.1 (x86 cs)
"PhotoFiltre 7" = PhotoFiltre 7
"SOE-" = gamelauncher-ps2-live
"TeamSpeak 3 Client" = TeamSpeak 3 Client
"Winamp Detect" = Winamp Detector Plug-in
========== Last 20 Event Log Errors ==========
[ Application Events ]
Error - 27.4.2013 6:01:31 | Computer Name = lukas-PC | Source = SideBySide | ID = 16842824
Description = Generování kontextu aktivace pro c:\program files\microsoft security
client\MSESysprep.dll se nezdařilo. Chyba v souboru manifestu nebo zásady c:\program
files\microsoft security client\MSESysprep.dll na řádku 10. Prvek imaging je zřejmě
podřízeným prvku urn:schemas-microsoft-com:asm.v1^assembly, což tato verze systému
Windows nepodporuje.
Error - 27.4.2013 12:58:35 | Computer Name = lukas-PC | Source = Application Error | ID = 1000
Error - 28.4.2013 4:41:59 | Computer Name = lukas-PC | Source = SideBySide | ID
= 16842824
Description = Generování kontextu aktivace pro c:\program files\microsoft security client\MSESysprep.dll se nezdařilo. Chyba v souboru manifestu nebo zásady c:\program files\microsoft security client\MSESysprep.dll na řádku 10.
Prvek imaging je zřejmě podřízeným prvku urn:schemas-microsoft-com:asm.v1^assembly, což tato verze systému Windows nepodporuje.
Error - 28.4.2013 11:16:56 | Computer Name = lukas-PC | Source = SideBySide | ID
= 16842832
Description = Generování kontextu aktivace pro E:\download\SoftonicDownloader_for_ace-of-spades.exe se nezdařilo. Chyba v souboru manifestu nebo zásad na řádku .
Verze součásti požadovaná aplikací je v konfliktu s jinou verzí součásti, která je již aktivní.
Konfliktní součásti:
Součást 1: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16385_none_421189da2b7fabfc.manifest.
Součást 2: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16385_none_fa645303170382f6.manifest.
Error - 29.4.2013 8:18:26 | Computer Name = lukas-PC | Source = SideBySide | ID
= 16842824
Description = Generování kontextu aktivace pro c:\program files\microsoft security client\MSESysprep.dll se nezdařilo. Chyba v souboru manifestu nebo zásady c:\program files\microsoft security client\MSESysprep.dll na řádku 10.
Prvek imaging je zřejmě podřízeným prvku urn:schemas-microsoft-com:asm.v1^assembly, což tato verze systému Windows nepodporuje.
Error - 30.4.2013 13:03:20 | Computer Name = lukas-PC | Source = SideBySide | ID
= 16842824
Description = Generování kontextu aktivace pro c:\program files\microsoft security client\MSESysprep.dll se nezdařilo. Chyba v souboru manifestu nebo zásady c:\program files\microsoft security client\MSESysprep.dll na řádku 10.
Prvek imaging je zřejmě podřízeným prvku urn:schemas-microsoft-com:asm.v1^assembly, což tato verze systému Windows nepodporuje.
Error - 1.5.2013 4:34:20 | Computer Name = lukas-PC | Source = SideBySide | ID =
16842824
Description = Generování kontextu aktivace pro c:\program files\microsoft security client\MSESysprep.dll se nezdařilo. Chyba v souboru manifestu nebo zásady c:\program files\microsoft security client\MSESysprep.dll na řádku 10.
Prvek imaging je zřejmě podřízeným prvku urn:schemas-microsoft-com:asm.v1^assembly, což tato verze systému Windows nepodporuje.
Error - 2.5.2013 9:30:31 | Computer Name = lukas-PC | Source = SideBySide | ID =
16842824
Description = Generování kontextu aktivace pro c:\program files\microsoft security client\MSESysprep.dll se nezdařilo. Chyba v souboru manifestu nebo zásady c:\program files\microsoft security client\MSESysprep.dll na řádku 10.
Prvek imaging je zřejmě podřízeným prvku urn:schemas-microsoft-com:asm.v1^assembly, což tato verze systému Windows nepodporuje.
Error - 2.5.2013 10:09:08 | Computer Name = lukas-PC | Source = SideBySide | ID
= 16842824
Description = Generování kontextu aktivace pro c:\program files\microsoft security client\MSESysprep.dll se nezdařilo. Chyba v souboru manifestu nebo zásady c:\program files\microsoft security client\MSESysprep.dll na řádku 10.
Prvek imaging je zřejmě podřízeným prvku urn:schemas-microsoft-com:asm.v1^assembly, což tato verze systému Windows nepodporuje.
Error - 3.5.2013 13:43:24 | Computer Name = lukas-PC | Source = SideBySide | ID
= 16842824
Description = Generování kontextu aktivace pro c:\program files\microsoft security client\MSESysprep.dll se nezdařilo. Chyba v souboru manifestu nebo zásady c:\program files\microsoft security client\MSESysprep.dll na řádku 10.
Prvek imaging je zřejmě podřízeným prvku urn:schemas-microsoft-com:asm.v1^assembly, což tato verze systému Windows nepodporuje.
Error - 4.5.2013 4:09:30 | Computer Name = lukas-PC | Source = SideBySide | ID =
16842824
Description = Generování kontextu aktivace pro c:\program files\microsoft security client\MSESysprep.dll se nezdařilo. Chyba v souboru manifestu nebo zásady c:\program files\microsoft security client\MSESysprep.dll na řádku 10.
Prvek imaging je zřejmě podřízeným prvku urn:schemas-microsoft-com:asm.v1^assembly, což tato verze systému Windows nepodporuje.
Error encountered while reading event logs.
< End of report >
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\lukas\Desktop
64bit- Ultimate Edition (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7600.16385)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy
7,96 Gb Total Physical Memory | 6,12 Gb Available Physical Memory | 76,84% Memory free
15,92 Gb Paging File | 13,96 Gb Available in Paging File | 87,68% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 69,15 Gb Total Space | 18,70 Gb Free Space | 27,04% Space Free | Partition Type: NTFS
Drive E: | 279,46 Gb Total Space | 20,70 Gb Free Space | 7,41% Space Free | Partition Type: NTFS
Drive G: | 232,88 Gb Total Space | 23,43 Gb Free Space | 10,06% Space Free | Partition Type: NTFS
Computer Name: LUKAS-PC | User Name: lukas | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Extra Registry (SafeList) ==========
========== File Associations ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.html[@ = Opera.HTML] -- Reg Error: Key error. File not found
.url[@ = InternetShortcut] -- C:\Windows\SysNative\rundll32.exe (Microsoft Corporation)
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation)
.html [@ = Opera.HTML] -- Reg Error: Key error. File not found
========== Shell Spawning ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- Reg Error: Key error.
htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1
htmlfile [print] -- rundll32.exe %SystemRoot%\system32\mshtml.dll,PrintHTML "%1" (Microsoft Corporation)
http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1
https [open] -- "C:\Program Files (x86)\Opera\Opera.exe" "%1"
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [Bridge] -- C:\Program Files (x86)\Adobe\Adobe Bridge CS5\Bridge.exe "%L" (Adobe Systems, Inc.)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Directory [Winamp.Bookmark] -- "C:\Program Files (x86)\Winamp\winamp.exe" /BOOKMARK "%1" (Nullsoft, Inc.)
Directory [Winamp.Enqueue] -- "C:\Program Files (x86)\Winamp\winamp.exe" /ADD "%1" (Nullsoft, Inc.)
Directory [Winamp.Play] -- "C:\Program Files (x86)\Winamp\winamp.exe" "%1" (Nullsoft, Inc.)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- Reg Error: Key error.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- Reg Error: Key error.
htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1
http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1
https [open] -- "C:\Program Files (x86)\Opera\Opera.exe" "%1"
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [Bridge] -- C:\Program Files (x86)\Adobe\Adobe Bridge CS5\Bridge.exe "%L" (Adobe Systems, Inc.)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Directory [Winamp.Bookmark] -- "C:\Program Files (x86)\Winamp\winamp.exe" /BOOKMARK "%1" (Nullsoft, Inc.)
Directory [Winamp.Enqueue] -- "C:\Program Files (x86)\Winamp\winamp.exe" /ADD "%1" (Nullsoft, Inc.)
Directory [Winamp.Play] -- "C:\Program Files (x86)\Winamp\winamp.exe" "%1" (Nullsoft, Inc.)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- Reg Error: Key error.
========== Security Center Settings ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
"FirewallDisableNotify" = 0
"AntiVirusDisableNotify" = 0
"UpdatesDisableNotify" = 0
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = 28 4D B2 76 41 04 CA 01 [binary data]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
========== System Restore Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0
========== Firewall Settings ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall]
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile]
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile]
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile]
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 0
"DoNotAllowExceptions" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 0
"DoNotAllowExceptions" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 0
========== Authorized Applications List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
========== Vista Active Open Ports Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{02C62FD1-D0C1-40D8-A655-AAED53E75B05}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{06B8813C-D374-4DB3-A3CE-B2AEDA7D70FC}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
"{0C21EC68-B50A-4AB5-BF0A-FF8337AF674A}" = lport=137 | protocol=17 | dir=in | app=system |
"{0D5A78FF-A662-40F4-B589-097D54AA5B7B}" = lport=80 | protocol=6 | dir=in | name=war thunder |
"{0D61BA7B-1590-4B30-847B-255BD78AD6A2}" = lport=7679 | protocol=6 | dir=in | name=allshareframeworkdms service tcp port2 |
"{1250A317-47A4-49CC-B3F6-33C1FCD965D0}" = lport=27022 | protocol=6 | dir=in | name=war thunder |
"{171CF9AE-D035-4C7A-8CDD-79CAC92B7AF6}" = lport=3478 | protocol=17 | dir=in | name=war thunder |
"{2C4E53A3-6B6F-4D61-A2B7-D1FF53DD2486}" = lport=2177 | protocol=17 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{2C81BDF3-6BDA-46D3-A088-A5D07C9E2B16}" = lport=7900 | protocol=6 | dir=in | name=allshareframework dms service udp port2 |
"{2D1EF8EF-AEB1-457E-B010-5A6DC92EDB45}" = lport=7676 | protocol=6 | dir=in | name=allshareframeworkdms service tcp port1 |
"{3219EE44-84FD-42A0-85C3-49853FC4634F}" = lport=58595 | protocol=6 | dir=in | name=pando media booster |
"{37ECEA06-58B8-4436-A500-2792C164D00D}" = rport=138 | protocol=17 | dir=out | app=system |
"{3DD5BEE7-3BF2-4E07-BD03-761CE57C4EAC}" = lport=445 | protocol=6 | dir=in | app=system |
"{4506F258-CB3F-467C-A63A-E110CFD6FDEF}" = lport=58595 | protocol=17 | dir=in | name=pando media booster |
"{50BA1335-CB74-4BAA-8405-109931CC365C}" = lport=8090 | protocol=6 | dir=in | name=war thunder |
"{540ED324-AAD0-4E5A-8931-13CCF3134075}" = lport=58595 | protocol=17 | dir=in | name=pando media booster |
"{5A31A571-E7F7-451A-B1EA-15A7687CE166}" = lport=8643 | protocol=6 | dir=in | name=allshareframeworkdms event tcp port |
"{5DAB9E03-C007-4341-8941-351402B4BFD3}" = lport=33333 | protocol=6 | dir=in | name=war thunder |
"{672AE53C-E9A1-4852-8C77-CB2BB36C7FB1}" = lport=2869 | protocol=6 | dir=in | app=system |
"{68C3816C-C101-4A08-AC3D-CFCE036F6E53}" = lport=58595 | protocol=6 | dir=in | name=pando media booster |
"{6D78066C-6577-4144-A771-8C9692EC34FB}" = lport=20443 | protocol=6 | dir=in | name=war thunder |
"{76345ECC-87EC-45B6-877E-F3B4113F60BD}" = lport=8743 | protocol=6 | dir=in | name=allshareframeworkdms action tcp port |
"{784F10AA-66B3-4080-BF54-4DE735D57255}" = lport=7850 | protocol=6 | dir=in | name=war thunder |
"{7F2786EF-9BA0-496C-BDE7-9079715302BC}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{85FB034B-7885-4EF4-81DC-6A8241659608}" = rport=2177 | protocol=17 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{898AA9FC-E73B-43A8-BEEC-17C07F4A1491}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 |
"{921ECE7C-D1DA-452A-BDF6-D095FDEAB84E}" = rport=139 | protocol=6 | dir=out | app=system |
"{96D3C0E3-55BE-4AF6-9387-6C2832D6B4E2}" = lport=139 | protocol=6 | dir=in | app=system |
"{9E8298D4-8DC5-4697-AF93-336C1AA06AF7}" = lport=138 | protocol=17 | dir=in | app=system |
"{A73C3FDC-7E18-499B-A129-5EFE4E2124AE}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{A90CFE6F-EB6E-4507-86FB-6F891E413051}" = lport=10243 | protocol=6 | dir=in | app=system |
"{BA0B5075-0FD5-43DF-BB8C-99F87104F375}" = rport=137 | protocol=17 | dir=out | app=system |
"{BE6B104C-DB36-4C29-9B75-0AD64BC268C7}" = rport=445 | protocol=6 | dir=out | app=system |
"{BEED5721-42A5-41CF-8A30-10D68332F90B}" = lport=20010 | protocol=17 | dir=in | name=war thunder |
"{C0D9E6B0-3DC1-458D-9F80-41E97B8B2912}" = rport=10243 | protocol=6 | dir=out | app=system |
"{C5766F4E-826F-4983-8D01-6169120A0A4F}" = lport=2177 | protocol=6 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{CCF9F6BD-DFA2-4275-9CD2-C3D650240AB1}" = rport=2177 | protocol=6 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{D4452720-13AB-4B3E-9862-11FD9744173C}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{D4E6D538-3494-4F41-BD00-5A0CE43E4D76}" = lport=6881 | protocol=6 | dir=in | name=war thunder |
"{D877A5A4-BF97-42B1-A5A8-17D5C00B0E57}" = lport=443 | protocol=6 | dir=in | name=war thunder |
"{DF76A04B-982A-4BAA-A197-A552D3A32835}" = lport=24234 | protocol=6 | dir=in | name=allshareframework dms service udp port1 |
"{EF2CCDDA-7991-45D4-A89C-BD1F543E8262}" = lport=1900 | protocol=6 | dir=in | name=upnp multicast port |
========== Vista Active Application Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{00053D14-D5FB-4BB5-98C6-0BD737AA3686}" = protocol=6 | dir=in | app=g:\program files\steam\steamapps\common\xcom apocalypse\dosbox.exe |
"{02FE9EDA-0FA5-4993-BA4C-47E024E4A4FE}" = protocol=17 | dir=in | app=c:\windows\syswow64\pnkbstrb.exe |
"{06C34C4C-91EF-487B-9201-6371118AB3C2}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{073AFE37-CAF5-4130-9D73-2A77ECD7E831}" = protocol=6 | dir=in | app=c:\windows\syswow64\pnkbstrb.exe |
"{0AB868F7-8327-4B62-A87E-FC07888B5685}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{0B5E9E8A-6A89-4003-A82D-4B6B777B8256}" = protocol=17 | dir=in | app=f:\games\battlefield 3\bf3.exe |
"{0B771C67-E5AA-41B7-A388-8E4BB168443B}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 |
"{1310B071-08D0-478D-9CE7-E51FEFC05826}" = protocol=6 | dir=in | app=g:\program files\steam\steamapps\common\amd driver updater, vista and 7, 64 bit\setup.exe |
"{15F9D291-4825-4005-86A0-5DAD9C38C101}" = protocol=17 | dir=in | app=c:\programdata\nexoneu\ngm\ngm.exe |
"{185B7901-B67A-4EE4-9D7D-700FC3016F11}" = protocol=17 | dir=in | app=g:\program files\steam\steam.exe |
"{19267A88-5AAC-4964-824E-A99D095DA87F}" = protocol=17 | dir=in | app=g:\program files\steam\steamapps\common\battlefield bad company 2\support\ea help\electronic_arts_technical_support.htm |
"{19F71101-1CF1-468F-92DF-D9370ECD6607}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{1C551BF6-DAB5-4DDF-B89B-C58B2ECD6ECC}" = protocol=6 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{1ED5B747-8942-4F4B-AE14-6796AE2D3BE0}" = protocol=6 | dir=in | app=g:\program files\steam\steamapps\common\hearts of iron 3\hoi3game.exe |
"{209E40BC-E338-4F46-BCD8-C1A3106A6A87}" = protocol=17 | dir=in | app=g:\program files\steam\steamapps\common\europa universalis iv\eu4.exe |
"{21AEA532-EF49-421A-915B-ACC81560F390}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{22C0B410-ED49-4D38-A9EC-5EE7AD3563C2}" = protocol=6 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{232AB07A-72F5-4E87-9D0A-261E8470E83E}" = protocol=17 | dir=in | app=g:\program files\steam\steamapps\common\hearts of iron 3\hoi3game.exe |
"{23894B07-676E-4E3E-BDAC-3C9D2A24FF27}" = protocol=17 | dir=in | app=g:\program files\steam\steamapps\common\company of heroes relaunch\reliccoh.exe |
"{2FB7F3F0-AE70-4732-A2F5-A34D9FE42CF8}" = protocol=6 | dir=in | app=g:\program files\steam\steam.exe |
"{33F84670-9C9D-4CAF-8060-B7765F0363A4}" = protocol=6 | dir=out | app=system |
"{3B650FC7-9219-40D4-B3E5-7F80BB3430CA}" = protocol=6 | dir=in | app=g:\program files\steam\steamapps\common\battlefield bad company 2\bfbc2game.exe |
"{3B734DA9-04CC-4E04-975A-8B912B095F00}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{4278E043-CB99-4B0F-A0F1-E3AA8E54EDFA}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{44FE9A81-89CE-45D3-948B-4206EFCCB093}" = protocol=17 | dir=in | app=g:\program files\steam\steamapps\common\sid meier's civilization iv beyond the sword\beyond the sword\civ4beyondsword.exe |
"{4DB11355-5C7F-4562-A436-80BB07F47641}" = protocol=6 | dir=in | app=g:\program files\steam\steamapps\common\company of heroes relaunch\reliccoh.exe |
"{4EB3D827-A843-44E1-A1E0-B6945B9CB155}" = protocol=6 | dir=in | app=c:\program files (x86)\asus\ai suite ii\ai suite ii.exe |
"{4F45B19D-4E70-4BC6-BF60-D6F51F0EEF9E}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{51E8F60B-C7F2-4D31-8C55-E125612B7509}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{51EC5203-F032-42B1-8EE5-05FF32033918}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{542D9580-955C-4048-A899-5A5ECCAC2FC5}" = protocol=17 | dir=in | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{5B62847A-B6F2-4373-B67D-C0F412E38C2A}" = protocol=17 | dir=in | app=g:\program files\steam\steamapps\common\company of heroes relaunch\reliccoh.exe |
"{5D692E87-E95F-46F9-BF1F-003C57A609A3}" = protocol=17 | dir=in | app=c:\program files (x86)\pando networks\media booster\pmb.exe |
"{5EA3E5AE-241A-4475-978C-A8A9BE54B234}" = protocol=6 | dir=in | app=c:\users\lukas\appdata\roaming\dropbox\bin\dropbox.exe |
"{62C05762-D94A-4A6E-B367-28A8CB05BF2D}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 |
"{66C5AD79-2DAB-4590-AF59-30DABADCF066}" = protocol=17 | dir=in | app=c:\windows\syswow64\pnkbstra.exe |
"{66DBDB1B-51D2-4B95-B638-726FC9D140AE}" = protocol=17 | dir=in | app=e:\diablo 3\diablo iii\diablo iii.exe |
"{6F371FCE-35E8-4F8C-AEAE-7C9101BCC856}" = protocol=6 | dir=in | app=e:\diablo 3\diablo iii\diablo iii.exe |
"{70F8A352-907B-4B8B-ADBE-0C5D5EA316B2}" = protocol=6 | dir=in | app=e:\program files (x86)\ubisoft\the settlers 7 - cesta ke koruně\data\base\_dbg\bin\release\settlers7r.exe |
"{7143D2AA-A473-45D5-8EBD-705C21EBBEC8}" = protocol=6 | dir=in | app=g:\program files\steam\steamapps\common\europa universalis iv\eu4.exe |
"{752C5E1A-0AF9-4407-9983-A2775A0445C1}" = dir=in | app=c:\program files (x86)\pando networks\media booster\pmb.exe |
"{77FE3071-CF81-4BD2-A8E1-CCAF99249648}" = protocol=6 | dir=in | app=g:\program files\steam\steamapps\common\sid meier's civilization iv\civilization4.exe |
"{7FC6F5F9-27D3-4CA1-9A97-4B6DC2A627FC}" = protocol=6 | dir=in | app=g:\program files\steam\steamapps\common\marchofwar\game.exe |
"{84AE3269-26AD-4097-A98B-6D856B0646BF}" = protocol=6 | dir=in | app=c:\program files (x86)\pando networks\media booster\pmb.exe |
"{91A24088-DE01-4DC5-82D7-DB8A0EB1A326}" = protocol=6 | dir=in | app=g:\program files\steam\steamapps\common\company of heroes relaunch\reliccoh.exe |
"{94A1B0B9-48B2-4A4D-8E32-0FEE327ACA26}" = protocol=17 | dir=in | app=g:\program files\steam\steamapps\common\hearts of iron 3\hoi3.exe |
"{9DA5F17D-C622-4B70-8E9A-308C0C8F5568}" = protocol=17 | dir=in | app=c:\program files (x86)\common files\comodo\geekbuddyrsp.exe |
"{9DEF5A9F-841F-4D43-B8E9-7BDEA27E622D}" = protocol=17 | dir=in | app=g:\program files\steam\steamapps\common\battlefield bad company 2\bfbc2game.exe |
"{A0002AA0-B9FF-44ED-A90F-FDD5A21DFBC9}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{A37EFCD9-C4A0-450D-BD1D-FE3740224F66}" = protocol=17 | dir=in | app=c:\program files (x86)\asus\ai suite ii\ai suite ii.exe |
"{A77E7F67-C122-42EC-8490-01F28EF7D6F2}" = protocol=17 | dir=in | app=g:\program files\steam\steamapps\common\marchofwar\game.exe |
"{B7E63B3C-9DB4-411F-AD14-C3EEC09FD0D0}" = protocol=6 | dir=in | app=g:\program files\steam\steamapps\common\hearts of iron 3\hoi3.exe |
"{B84A960B-E43F-4AC0-A52B-5E6B3B6F2981}" = protocol=17 | dir=in | app=c:\users\lukas\appdata\roaming\dropbox\bin\dropbox.exe |
"{BCE9DC8D-7596-4AC5-9185-963FD436CE9E}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 |
"{BECA697C-C8D5-4785-97B6-3B1041123C99}" = protocol=17 | dir=in | app=e:\program files (x86)\ubisoft\the settlers 7 - cesta ke koruně\data\base\_dbg\bin\release\settlers7r.exe |
"{C124B456-D81C-46FD-BF0B-496E3DCB743A}" = protocol=17 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{C1D05185-3ED0-4269-9371-25B82A152AE6}" = protocol=17 | dir=in | app=f:\program files (x86)\microsoft games\rise of nations\thrones.exe |
"{C23B11A1-59BF-4DB1-9B92-FFE5800F89AA}" = protocol=17 | dir=in | app=g:\program files\steam\steamapps\common\sid meier's civilization iv\civilization4.exe |
"{CCA7A3B2-400B-40A8-973B-AE66535414D6}" = protocol=6 | dir=in | app=c:\program files (x86)\pando networks\media booster\pmb.exe |
"{D1175B48-6200-454E-AD84-C00B8AA46489}" = protocol=17 | dir=in | app=c:\program files (x86)\pando networks\media booster\pmb.exe |
"{D3497E65-15CF-4CB1-9533-8372E80B338E}" = protocol=17 | dir=in | app=g:\program files\steam\steamapps\common\amd driver updater, vista and 7, 64 bit\setup.exe |
"{D74BDDF9-D0E8-426C-AAF6-A70964846674}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 |
"{D96ED7A5-9F07-4028-A877-D84330E6E89D}" = protocol=6 | dir=in | app=c:\program files (x86)\common files\comodo\geekbuddyrsp.exe |
"{DE18C964-D122-424A-9FB5-19BB3D736765}" = protocol=6 | dir=in | app=g:\program files\steam\steamapps\common\sid meier's civilization iv beyond the sword\beyond the sword\civ4beyondsword.exe |
"{E22993C9-82BC-496E-A43D-F64E2EC242FE}" = protocol=6 | dir=in | app=c:\windows\syswow64\pnkbstra.exe |
"{E792A2DA-A389-4497-A69E-C9E6C6BFEBA5}" = protocol=6 | dir=in | app=c:\programdata\nexoneu\ngm\ngm.exe |
"{EBDC44DB-48D9-46A0-9B60-9043905D50B9}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{EE253786-E073-4429-AD65-091BF37CADD9}" = protocol=6 | dir=in | app=g:\program files\steam\steamapps\common\battlefield bad company 2\support\ea help\electronic_arts_technical_support.htm |
"{EF02CF0D-3421-4B7C-A968-1327980129BE}" = protocol=17 | dir=in | app=g:\program files\steam\steamapps\common\xcom apocalypse\dosbox.exe |
"{F37E7CBE-1906-4DBC-8AEF-23918D8F48E0}" = protocol=17 | dir=in | app=c:\program files (x86)\ubisoft\ubisoft game launcher\ubisoftgamelauncher.exe |
"{F5894E32-BE98-491D-A01D-3FB186BC6E13}" = protocol=6 | dir=in | app=f:\program files (x86)\microsoft games\rise of nations\thrones.exe |
"{FBFB64DE-89BD-49F7-BAE9-694F2F179E88}" = protocol=6 | dir=in | app=c:\program files (x86)\ubisoft\ubisoft game launcher\ubisoftgamelauncher.exe |
"{FD065AF9-6588-4EB7-A7A5-26E97897D81A}" = protocol=6 | dir=in | app=f:\games\battlefield 3\bf3.exe |
"TCP Query User{020BF54C-9C23-4F90-8C04-00A841E2F7A8}E:\download\downloader_diablo2_lord_of_destruction_engb (1).exe" = protocol=6 | dir=in | app=e:\download\downloader_diablo2_lord_of_destruction_engb (1).exe |
"TCP Query User{055FB6FD-6D92-45E4-83A8-1EBA0922A1BB}C:\program files (x86)\java\jre7\bin\java.exe" = protocol=6 | dir=in | app=c:\program files (x86)\java\jre7\bin\java.exe |
"TCP Query User{0D60122C-B31F-46B9-BE19-2587FE657230}E:\program files (x86)\skype\phone\skype.exe" = protocol=6 | dir=in | app=e:\program files (x86)\skype\phone\skype.exe |
"TCP Query User{128ACF85-E4AC-4DE1-9530-FB7CC01ED55A}E:\download\downloader_diablo2_lord_of_destruction_engb.exe" = protocol=6 | dir=in | app=e:\download\downloader_diablo2_lord_of_destruction_engb.exe |
"TCP Query User{5678B951-6FC5-4A40-8B9F-0E329FC250CA}E:\games\world_of_tanks_closed_beta\wotlauncher.exe" = protocol=6 | dir=in | app=e:\games\world_of_tanks_closed_beta\wotlauncher.exe |
"TCP Query User{5A702731-5269-49BB-A7A8-481FDB3B4CCC}E:\download\downloader_diablo2_engb.exe" = protocol=6 | dir=in | app=e:\download\downloader_diablo2_engb.exe |
"TCP Query User{618F1BF3-D191-4068-AD47-1A2FCE59B733}C:\users\lukas\appdata\local\google\chrome\application\chrome.exe" = protocol=6 | dir=in | app=c:\users\lukas\appdata\local\google\chrome\application\chrome.exe |
"TCP Query User{6EBC5674-B8AA-422B-B5FE-52E218DDED3C}E:\download\diablo-iii-8370-engb-installer-downloader.exe" = protocol=6 | dir=in | app=e:\download\diablo-iii-8370-engb-installer-downloader.exe |
"TCP Query User{730C97B5-375B-42ED-8984-577E08622CE3}F:\games\world_of_tanks_closed_beta\worldoftanks.exe" = protocol=6 | dir=in | app=f:\games\world_of_tanks_closed_beta\worldoftanks.exe |
"TCP Query User{932CB4AE-0E79-4BFA-A281-FFD4F6FFD2E2}F:\games\world_of_tanks_closed_beta\wotlauncher.exe" = protocol=6 | dir=in | app=f:\games\world_of_tanks_closed_beta\wotlauncher.exe |
"TCP Query User{BBE9DC02-7939-4D00-AD30-865D5096C591}E:\games\world_of_tanks_closed_beta\worldoftanks.exe" = protocol=6 | dir=in | app=e:\games\world_of_tanks_closed_beta\worldoftanks.exe |
"TCP Query User{C37F3C9A-7C00-4A8C-AB57-4D42D469856E}C:\program files (x86)\videolan\vlc\vlc.exe" = protocol=6 | dir=in | app=c:\program files (x86)\videolan\vlc\vlc.exe |
"TCP Query User{C752203F-FC31-4970-9428-73D6B945C0AB}E:\program files (x86)\ubisoft\the settlers 7 - cesta ke koruně\data\base\_dbg\bin\release\uplaybrowser.exe" = protocol=6 | dir=in | app=e:\program files (x86)\ubisoft\the settlers 7 - cesta ke koruně\data\base\_dbg\bin\release\uplaybrowser.exe |
"TCP Query User{E9560295-64ED-4A64-A64A-87794F099C65}C:\program files (x86)\winamp\winamp.exe" = protocol=6 | dir=in | app=c:\program files (x86)\winamp\winamp.exe |
"UDP Query User{111C202B-6175-4BD7-BDC5-5E5CE76B42E2}E:\download\diablo-iii-8370-engb-installer-downloader.exe" = protocol=17 | dir=in | app=e:\download\diablo-iii-8370-engb-installer-downloader.exe |
"UDP Query User{1A2B8BDD-3EF2-415A-AF49-585D3C53CDE1}F:\games\world_of_tanks_closed_beta\worldoftanks.exe" = protocol=17 | dir=in | app=f:\games\world_of_tanks_closed_beta\worldoftanks.exe |
"UDP Query User{20525D66-FB29-4BB1-B57D-56247B0815AD}E:\program files (x86)\skype\phone\skype.exe" = protocol=17 | dir=in | app=e:\program files (x86)\skype\phone\skype.exe |
"UDP Query User{2330E9F4-AD5C-4A31-A003-E222A7D8DD8B}C:\program files (x86)\videolan\vlc\vlc.exe" = protocol=17 | dir=in | app=c:\program files (x86)\videolan\vlc\vlc.exe |
"UDP Query User{327AAED3-04E5-4D56-937A-0E51658BF36A}E:\games\world_of_tanks_closed_beta\wotlauncher.exe" = protocol=17 | dir=in | app=e:\games\world_of_tanks_closed_beta\wotlauncher.exe |
"UDP Query User{46C1BB98-4438-419F-8314-DD50C20D3F20}E:\download\downloader_diablo2_lord_of_destruction_engb (1).exe" = protocol=17 | dir=in | app=e:\download\downloader_diablo2_lord_of_destruction_engb (1).exe |
"UDP Query User{71863701-126D-47B2-9B21-971D36D376DE}C:\program files (x86)\java\jre7\bin\java.exe" = protocol=17 | dir=in | app=c:\program files (x86)\java\jre7\bin\java.exe |
"UDP Query User{951C581D-0DE5-41B5-9F50-A6CFD154717B}F:\games\world_of_tanks_closed_beta\wotlauncher.exe" = protocol=17 | dir=in | app=f:\games\world_of_tanks_closed_beta\wotlauncher.exe |
"UDP Query User{A6FAEE6F-FA3D-4BF4-9F1D-A66AC3CCBFC6}E:\program files (x86)\ubisoft\the settlers 7 - cesta ke koruně\data\base\_dbg\bin\release\uplaybrowser.exe" = protocol=17 | dir=in | app=e:\program files (x86)\ubisoft\the settlers 7 - cesta ke koruně\data\base\_dbg\bin\release\uplaybrowser.exe |
"UDP Query User{BC8EEBB3-FDE0-4086-A4C9-8578DEB4E071}C:\users\lukas\appdata\local\google\chrome\application\chrome.exe" = protocol=17 | dir=in | app=c:\users\lukas\appdata\local\google\chrome\application\chrome.exe |
"UDP Query User{D02A7265-B37E-498C-AA6A-900297AEE91D}C:\program files (x86)\winamp\winamp.exe" = protocol=17 | dir=in | app=c:\program files (x86)\winamp\winamp.exe |
"UDP Query User{E565809F-CD25-4593-B207-53E886B59648}E:\download\downloader_diablo2_engb.exe" = protocol=17 | dir=in | app=e:\download\downloader_diablo2_engb.exe |
"UDP Query User{EDF8A4A6-2852-49E3-BE46-C5415E272119}E:\games\world_of_tanks_closed_beta\worldoftanks.exe" = protocol=17 | dir=in | app=e:\games\world_of_tanks_closed_beta\worldoftanks.exe |
"UDP Query User{EE58C775-603D-435E-AD2E-0C53F74F218C}E:\download\downloader_diablo2_lord_of_destruction_engb.exe" = protocol=17 | dir=in | app=e:\download\downloader_diablo2_lord_of_destruction_engb.exe |
========== HKEY_LOCAL_MACHINE Uninstall List ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_CNQ4807" = CanoScan LiDE 200 Scanner Driver
"{1C38C0D7-F020-4372-DAEF-A526AD8A0D77}" = AMD Fuel
"{1D8E6291-B0D5-35EC-8441-6616F567A0F7}" = Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219
"{1E9FC118-651D-4934-97BE-E53CAE5C7D45}" = Microsoft_VC80_MFCLOC_x86_x64
"{23170F69-40C1-2702-0920-000001000000}" = 7-Zip 9.20 (x64 edition)
"{4569AD91-47F4-4D9E-8FC9-717EC32D7AE1}" = Microsoft_VC80_CRT_x86_x64
"{46DA7FD9-8BC1-7BA8-98D1-27F46647871B}" = AMD Catalyst Install Manager
"{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148
"{4f94b43a-8a00-4ac4-bb94-269cf24aef97}.sdb" = Dungeon Keeper 2
"{503F672D-6C84-448A-8F8F-4BC35AC83441}" = AMD APP SDK Runtime
"{51DDB4F9-7FFF-4970-AED4-DB3C22A5C522}" = Corel Graphics - Windows Shell Extension 64 Bit
"{65312278-952C-D46E-8297-4CAB93F5B2DF}" = AMD Media Foundation Decoders
"{669A82E0-43E2-4645-8A2E-1A3DE78F8312}" = Adobe Photoshop Lightroom 4 64-bit
"{6809A67A-D099-48EA-9126-8567130CF377}" = AMD Accelerated Video Transcoding
"{6C1A010F-9108-4162-A26F-9FEC4AC0F0F0}" = Adobe Photoshop Lightroom 5 64-bit
"{8557397C-A42D-486F-97B3-A2CBC2372593}" = Microsoft_VC90_ATL_x86_x64
"{8E34682C-8118-31F1-BC4C-98CD9675E1C2}" = Microsoft .NET Framework 4 Extended
"{925D058B-564A-443A-B4B2-7E90C6432E55}" = Microsoft_VC80_ATL_x86_x64
"{92A3CA0D-55CD-4C5D-BA95-5C2600C20F26}" = Microsoft_VC90_CRT_x86_x64
"{9B48B0AC-C813-4174-9042-476A887592C7}" = Windows Live ID Sign-in Assistant
"{A472B9E4-0AFF-4F7B-B25D-F64F8E928AAB}" = Microsoft_VC90_MFC_x86_x64
"{BE93349C-0BD1-7063-DA1A-D26E0E41477B}" = ccc-utility64
"{C8C1BAD5-54E6-4146-AD07-3A8AD36569C3}" = Microsoft_VC80_MFC_x86_x64
"{D6AB1F5B-FED6-49A9-9747-327BD28FB3C7}" = COMODO Internet Security
"{DA2737A4-B639-96F4-1CC2-30D2919EE1FB}" = AMD Steady Video Plug-In
"{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}" = Microsoft .NET Framework 4 Client Profile
"{F809FFB5-6F9B-AFDE-6048-5D9E95A85505}" = AMD Drag and Drop Transcoding
"CCleaner" = CCleaner
"CPUID CPU-Z_is1" = CPUID CPU-Z 1.67
"CPUID HWMonitor_is1" = CPUID HWMonitor 1.24
"HWiNFO64_is1" = HWiNFO64 Version 4.22
"ICP install2_is1" = ICP 9.0
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Microsoft .NET Framework 4 Extended" = Microsoft .NET Framework 4 Extended
"Recuva" = Recuva
"TeamSpeak 3 Client" = TeamSpeak 3 Client
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"_{B6BFCD02-BA0E-41A9-9C9C-6624C4BB475F}" = Corel Graphics - Windows Shell Extension
"{01501EBA-EC35-4F9F-8889-3BE346E5DA13}" = MSXML4 Parser
"{015E0577-7D4A-456C-A435-DD9EE7E72589}_is1" = Black ICE Mk VII r1904
"{01E9B2FF-DAF4-4529-9CC9-2101625517C7}" = nero.prerequisites.msi
"{033E378E-6AD3-4AD5-BDEB-CBD69B31046C}" = Microsoft_VC90_ATL_x86
"{08D2E121-7F6A-43EB-97FD-629B44903403}" = Microsoft_VC90_CRT_x86
"{0D2DBE8A-43D0-7830-7AE7-CA6C99A832E7}" = Adobe Community Help
"{0F3647F8-E51D-4FCC-8862-9A8D0C5ACF25}" = Microsoft_VC80_ATL_x86
"{10B43A43-FF73-47FD-83E8-A503E84F9ED6}" = OpenOffice.org 3.3
"{15FEDA5F-141C-4127-8D7E-B962D1742728}" = Adobe Photoshop CS5
"{196467F1-C11F-4F76-858B-5812ADC83B94}" = MSXML 4.0 SP3 Parser
"{19BFDA5D-1FE2-4F25-97F9-1A79DD04EE20}" = Microsoft XNA Framework Redistributable 3.1
"{1C72CC1B-C0F6-F698-0E23-0D705A86E224}" = CCC Help Finnish
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{24A500E4-0B12-4D62-9973-2C7E23CCA750}" = Nero Kwik Media
"{24D9A3E0-D086-4B62-AF93-63CF6B05CB48}" = CorelDRAW Graphics Suite X5 - Custom Data
"{260ED378-2B8C-4831-ADAE-D0712D119AC5}" = CorelDRAW Graphics Suite X5 - VSTA
"{26945917-E053-45F6-AF98-309730CFC318}" = Visual Basic for Applications (R) Core
"{26A24AE4-039D-4CA4-87B4-2F83217055FF}" = Java 7 Update 55
"{299C0434-4F4E-341F-A916-4E07AEB35E79}" = Microsoft Visual Studio Tools for Applications 2.0 Runtime
"{2AB66B5F-2613-477F-A4B1-CB2E8C7A2943}" = Banished v1.0.0 32-bit
"{31A559C1-9E4D-423B-9DD3-34A6C5398752}" = HTC BMP USB Driver
"{3472C84E-2FD0-439F-B27F-C290C1E4CD8B}" = CorelDRAW Graphics Suite X5 - Filters
"{34D3688E-A737-44C5-9E2A-FF73618728E1}" = AI Suite II
"{356658C7-8C60-4A43-AF50-75CA8E642934}" = CorelDRAW Graphics Suite X5 - CZ
"{36637D5B-1305-1ED8-EEC3-4C76A6655FCF}" = CCC Help Norwegian
"{3795E3F4-CA46-EA65-4FD2-D861A2A12ECD}" = CCC Help Swedish
"{3997DF5C-EF46-B135-D73B-C8BFE797105A}" = CCC Help Turkish
"{39AB4A9F-97DB-4BCA-981F-B85189115037}" = GeekBuddy
"{3A1B5D40-41E9-43FA-8C7B-A8667F5586EF}" = JMicron JMB36X Driver
"{3C76DB65-E66A-DE04-4CE3-5DA42ED98685}" = CCC Help Chinese Standard
"{3DC9D062-2C3E-7C31-504C-BF2751617224}" = CCC Help Portuguese
"{3F5AED19-3C1C-6ED5-EAF0-CBE15BB3B8F1}" = Catalyst Control Center Localization All
"{441AC599-200D-4E04-B274-C6B7B50C281D}_is1" = Hamster Free EbookConverter
"{45A66726-69BC-466B-A7A4-12FCBA4883D7}" = HiJackThis
"{47416F0B-6589-591E-C6F8-4235D2230B14}" = Catalyst Control Center InstallProxy
"{495EB8CB-A455-8033-EF42-65AEFFF4ED97}" = CCC Help Chinese Traditional
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4A22F96C-993D-3489-2CB1-37C61F29135C}" = CCC Help Korean
"{4CB0307C-565E-4441-86BE-0DF2E4FB828C}" = Microsoft Games for Windows Marketplace
"{54B8F4A1-02B0-4D32-8F37-925526C0EEC6}" = CorelDRAW Graphics Suite X5 - Connect
"{5612D4CE-C024-80F5-9F59-546B95F884B2}" = CCC Help Polish
"{5662A630-98E4-2FDC-CE6A-73D21240DC52}" = CCC Help Hungarian
"{57400C1E-BC51-4ECE-AD2A-A6096204DDEC}" = CorelDRAW Graphics Suite X5 - VBA
"{59123CCF-FED2-46FF-9293-D1DC80042219}" = CorelDRAW Graphics Suite X5 - Redist
"{5A212B2D-140D-46F4-B625-2D1CA5A00594}" = Nero 11 Kwik Themes Basic
"{60982A88-95DF-E0B8-18C7-E7297C200623}" = AMD VISION Engine Control Center
"{62978C1C-FE2E-4A4E-851D-3EB406C9EBC2}" = CorelDRAW Graphics Suite X5 - Draw
"{635FED5B-2C6D-49BE-87E6-7A6FCD22BC5A}" = Microsoft_VC90_MFC_x86
"{65BB0407-4CC8-4DC7-952E-3EEFDF05602A}" = Nero Update
"{681544C2-FFA2-4CFD-A9AD-2A3D25DF8D22}" = CM Installer
"{6910C412-A523-493C-BC22-0213CD7F4F3A}" = Industry Giant 2 - Gold Edition
"{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}" = Windows Media Player Firefox Plugin
"{6AFCA4E1-9B78-3640-8F72-A7BF33448200}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729
"{6D6664A9-3342-4948-9B7E-034EFE366F0F}" = HTC Driver Installer
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{719371E9-93F9-49B2-A82F-2E50991FD298}" = CDBurnerXP
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{73E1C443-5420-442D-B314-649AE103D08B}" = CCC Help Thai
"{77864743-57AB-A566-67D6-12EF64165209}" = CCC Help German
"{7A3C7E05-EE37-47D6-99E1-2EB05A3DA3F7}" = Skype™ 6.16
"{832D9DE0-8AFC-4689-9819-4DBBDEBD3E4F}" = Microsoft Games for Windows - LIVE Redistributable
"{84F49E05-683A-5544-263D-08E4814F196B}" = CCC Help Greek
"{8833FFB6-5B0C-4764-81AA-06DFEED9A476}" = Realtek Ethernet Controller Driver
"{888F1505-C2B3-4FDE-835D-36353EBD4754}" = Ubisoft Game Launcher
"{90579CE9-8FB6-88A3-09ED-68F30E763BBC}" = CCC Help Japanese
"{9193490D-5229-4FC4-9BB9-A6D63C09574A}" = High-Definition Video Playback
"{9244E956-5939-4B88-930C-0699D4AB2B95}" = CorelDRAW Graphics Suite X5 - WT
"{92D58719-BBC1-4CC3-A08B-56C9E884CC2C}" = Microsoft_VC80_CRT_x86
"{980A182F-E0A2-4A40-94C1-AE0C1235902E}" = Pando Media Booster
"{983F7145-CABF-4EDD-9F3D-E06B2F024BD3}" = CorelDRAW Graphics Suite X5 - FontNav
"{9927F5EF-AAB0-E471-1DBF-3940E9477D23}" = CCC Help Spanish
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9C916142-C18C-429D-BFED-40094A7E0BEB}" = The Settlers 7 - CESTA KE KORUNĚ
"{A1B04B6B-25BB-48AD-8BD9-D31A86E89F3E}" = CorelDRAW Graphics Suite X5 - PHOTO-PAINT
"{A78FE97A-C0C8-49CE-89D0-EDD524A17392}" = PDF Settings CS5
"{A7A0BF2E-31CC-49E3-9913-52C503EB969D}" = Nero Audio Pack 1
"{AA4A4B2C-0465-3CF8-BA76-27A027D8ACAB}" = Microsoft Visual Studio Tools for Applications 2.0 - ENU
"{AB77DFDE-9949-4AEF-B180-BE322C3E65D0}" = HTC Sync
"{AB7A4789-7A60-8D6C-96F4-4D21702EC7BD}" = CCC Help Czech
"{ABD4AF09-45DC-F830-0DF0-378C354ED351}" = CCC Help English
"{AEB730BE-17B3-2FA0-9D64-78CD3939C60A}" = CCC Help Dutch
"{B399C91E-96F2-4265-9884-1C9A10E9FCF4}" = CorelDRAW Graphics Suite X5
"{B6BFCD02-BA0E-41A9-9C9C-6624C4BB475F}" = Corel Graphics - Windows Shell Extension
"{B9B1BA7F-7E07-49DD-A713-5B397A5BB66B}" = Nero Kwik Media Help (CHM)
"{BE814218-3919-4EA3-868A-2F60BC135CB4}" = Nero Kwik Media
"{BEBEE34D-84A2-4EDD-8BEA-96CC54371263}" = Nero Core Components 11
"{C715FF52-CBA8-780F-EFD8-5DF5525DBF74}" = Catalyst Control Center Graphics Previews Common
"{CA3861BA-1D96-4D66-B577-318E1602C4F3}" = CorelDRAW Graphics Suite X5 - Common
"{CE54DCE1-E00A-4D91-ACB9-A2D916C24051}" = CorelDRAW Graphics Suite X5 - Setup Files
"{CF6C9984-8F22-00D5-BA0A-F1330035A80E}" = CCC Help Russian
"{D1A19B02-817E-4296-A45B-07853FD74D57}" = Microsoft_VC80_MFC_x86
"{D596EEA2-C6C8-45D3-89DF-FA2DBE99F829}" = Visual Basic for Applications (R) Core - English
"{D642FF8D-438D-4545-A1D5-2EDB4BCAE3BA}" = CorelDRAW Graphics Suite X5 - Photozoom Plugin
"{D6477FB5-3F2F-A7C9-38F7-2FD0E79722B5}" = CCC Help Italian
"{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}" = Microsoft XNA Framework Redistributable 4.0 Refresh
"{D7768225-15B9-F34E-82BD-883CEBE30132}" = CCC Help French
"{D92BBB52-82FF-42ED-8A3C-4E062F944AB7}" = Microsoft_VC80_MFCLOC_x86
"{DE3A9DC5-9A5D-6485-9662-347162C7E4CA}" = Adobe Media Player
"{DE6CBC04-8673-4DBA-BA81-07F1639CEB5F}" = CorelDRAW Graphics Suite X5 - IPM
"{E2F0AF23-FE2F-4222-9A43-55E63CC41EF1}" = Catalyst Control Center - Branding
"{E4FB0B39-C991-4EE7-95DD-1A1A7857D33D}" = Asmedia ASM104x USB 3.0 Host Controller Driver
"{EA450D5D-95EA-4FD0-B8B0-6D8E68FBE2C7}" = Impulse
"{EDB98D5A-A6FB-425C-BFB7-51A0924B762D}" = CorelDRAW Graphics Suite X5 - Capture
"{F09EF8F2-0976-42C1-8D9D-8DF78337C6E3}" = Sony PC Companion 2.10.053
"{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{FE4B83DE-85CF-4DE5-90CE-A2735A0E1F21}" = CorelDRAW Graphics Suite X5 - VideoBrowser
"{FE5683A6-BA08-6417-4F85-96F787B1614E}" = CCC Help Danish
"{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
"Adobe Flash Player Plugin" = Adobe Flash Player 13 Plugin
"Apollo DVD Copy_is1" = Apollo DVD Copy 4.8.47
"Ashampoo Burning Studio 11_is1" = Ashampoo Burning Studio 11 v.11.0.4
"Ashampoo Burning Studio 6 FREE_is1" = Ashampoo Burning Studio 6 FREE v.6.81
"Audacity_is1" = Audacity 2.0.5
"Audio MP3 Editor_is1" = Audio MP3 Editor 5.80
"Avast" = avast! Free Antivirus
"Battle.net" = Battle.net
"Blitzkrieg" = Blitzkrieg Mod
"DAEMON Tools Lite" = DAEMON Tools Lite
"Diablo II" = Diablo II
"Diablo III" = Diablo III
"DriverAgent_is1" = DriverAgent by eSupport.com
"Dungeon Keeper 2_is1" = Dungeon Keeper 2
"DVD Shrink_is1" = DVD Shrink 3.2
"Eastern Front" = Eastern Front
"Endless Space - Disharmony_is1" = Endless Space - Disharmony
"Faster Than Light_is1" = Faster Than Light
"GOGPACKTYRIAN2000_is1" = Tyrian 2000
"ImageConverter Plus_is1" = ImageConverter Plus 8.0
"Impulse" = Impulse
"KLiteCodecPack_is1" = K-Lite Codec Pack 9.3.0 (Basic)
"LAME_is1" = LAME v3.99.3 (for Windows)
"Malwarebytes Anti-Malware_is1" = Malwarebytes Anti-Malware verze 2.0.2.1012
"Mozilla Firefox 17.0.1 (x86 cs)" = Mozilla Firefox 17.0.1 (x86 cs)
"MozillaMaintenanceService" = Mozilla Maintenance Service
"MP Navigator EX 2.0" = Canon MP Navigator EX 2.0
"nGlide" = nGlide 1.02
"OpenAL" = OpenAL
"OpenTTD" = OpenTTD 1.2.2
"Origin" = Origin
"PokerStars" = PokerStars
"PrivDog" = PrivDog
"S2TNG" = The Settlers II - 10th Anniversary
"Shockwave" = Shockwave
"SpeedFan" = SpeedFan (remove only)
"SPORE™ Anthology_is1" = SPORE™ Anthology RePack by SxSxL
"Steam App 228200" = Company of Heroes (New Steam Version)
"Steam App 234310" = March of War
"Steam App 236850" = Europa Universalis IV
"Steam App 25890" = Hearts of Iron III
"Steam App 3900" = Sid Meier's Civilization IV
"Steam App 8800" = Sid Meier's Civilization IV: Beyond the Sword
"TechPowerUp GPU-Z" = TechPowerUp GPU-Z
"Theme Hospital_is1" = Theme Hospital
"UnLock Root" = UnLock Root 2.3
"VLC media player" = VLC media player 1.1.11
"Winamp" = Winamp
========== HKEY_USERS Uninstall List ==========
[HKEY_USERS\S-1-5-21-1575853709-75552691-4080425000-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Dropbox" = Dropbox
"Google Chrome" = Google Chrome
"Mozilla Firefox 29.0.1 (x86 cs)" = Mozilla Firefox 29.0.1 (x86 cs)
"PhotoFiltre 7" = PhotoFiltre 7
"SOE-" = gamelauncher-ps2-live
"TeamSpeak 3 Client" = TeamSpeak 3 Client
"Winamp Detect" = Winamp Detector Plug-in
========== Last 20 Event Log Errors ==========
[ Application Events ]
Error - 27.4.2013 6:01:31 | Computer Name = lukas-PC | Source = SideBySide | ID = 16842824
Description = Generování kontextu aktivace pro c:\program files\microsoft security
client\MSESysprep.dll se nezdařilo. Chyba v souboru manifestu nebo zásady c:\program
files\microsoft security client\MSESysprep.dll na řádku 10. Prvek imaging je zřejmě
podřízeným prvku urn:schemas-microsoft-com:asm.v1^assembly, což tato verze systému
Windows nepodporuje.
Error - 27.4.2013 12:58:35 | Computer Name = lukas-PC | Source = Application Error | ID = 1000
Error - 28.4.2013 4:41:59 | Computer Name = lukas-PC | Source = SideBySide | ID
= 16842824
Description = Generování kontextu aktivace pro c:\program files\microsoft security client\MSESysprep.dll se nezdařilo. Chyba v souboru manifestu nebo zásady c:\program files\microsoft security client\MSESysprep.dll na řádku 10.
Prvek imaging je zřejmě podřízeným prvku urn:schemas-microsoft-com:asm.v1^assembly, což tato verze systému Windows nepodporuje.
Error - 28.4.2013 11:16:56 | Computer Name = lukas-PC | Source = SideBySide | ID
= 16842832
Description = Generování kontextu aktivace pro E:\download\SoftonicDownloader_for_ace-of-spades.exe se nezdařilo. Chyba v souboru manifestu nebo zásad na řádku .
Verze součásti požadovaná aplikací je v konfliktu s jinou verzí součásti, která je již aktivní.
Konfliktní součásti:
Součást 1: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16385_none_421189da2b7fabfc.manifest.
Součást 2: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16385_none_fa645303170382f6.manifest.
Error - 29.4.2013 8:18:26 | Computer Name = lukas-PC | Source = SideBySide | ID
= 16842824
Description = Generování kontextu aktivace pro c:\program files\microsoft security client\MSESysprep.dll se nezdařilo. Chyba v souboru manifestu nebo zásady c:\program files\microsoft security client\MSESysprep.dll na řádku 10.
Prvek imaging je zřejmě podřízeným prvku urn:schemas-microsoft-com:asm.v1^assembly, což tato verze systému Windows nepodporuje.
Error - 30.4.2013 13:03:20 | Computer Name = lukas-PC | Source = SideBySide | ID
= 16842824
Description = Generování kontextu aktivace pro c:\program files\microsoft security client\MSESysprep.dll se nezdařilo. Chyba v souboru manifestu nebo zásady c:\program files\microsoft security client\MSESysprep.dll na řádku 10.
Prvek imaging je zřejmě podřízeným prvku urn:schemas-microsoft-com:asm.v1^assembly, což tato verze systému Windows nepodporuje.
Error - 1.5.2013 4:34:20 | Computer Name = lukas-PC | Source = SideBySide | ID =
16842824
Description = Generování kontextu aktivace pro c:\program files\microsoft security client\MSESysprep.dll se nezdařilo. Chyba v souboru manifestu nebo zásady c:\program files\microsoft security client\MSESysprep.dll na řádku 10.
Prvek imaging je zřejmě podřízeným prvku urn:schemas-microsoft-com:asm.v1^assembly, což tato verze systému Windows nepodporuje.
Error - 2.5.2013 9:30:31 | Computer Name = lukas-PC | Source = SideBySide | ID =
16842824
Description = Generování kontextu aktivace pro c:\program files\microsoft security client\MSESysprep.dll se nezdařilo. Chyba v souboru manifestu nebo zásady c:\program files\microsoft security client\MSESysprep.dll na řádku 10.
Prvek imaging je zřejmě podřízeným prvku urn:schemas-microsoft-com:asm.v1^assembly, což tato verze systému Windows nepodporuje.
Error - 2.5.2013 10:09:08 | Computer Name = lukas-PC | Source = SideBySide | ID
= 16842824
Description = Generování kontextu aktivace pro c:\program files\microsoft security client\MSESysprep.dll se nezdařilo. Chyba v souboru manifestu nebo zásady c:\program files\microsoft security client\MSESysprep.dll na řádku 10.
Prvek imaging je zřejmě podřízeným prvku urn:schemas-microsoft-com:asm.v1^assembly, což tato verze systému Windows nepodporuje.
Error - 3.5.2013 13:43:24 | Computer Name = lukas-PC | Source = SideBySide | ID
= 16842824
Description = Generování kontextu aktivace pro c:\program files\microsoft security client\MSESysprep.dll se nezdařilo. Chyba v souboru manifestu nebo zásady c:\program files\microsoft security client\MSESysprep.dll na řádku 10.
Prvek imaging je zřejmě podřízeným prvku urn:schemas-microsoft-com:asm.v1^assembly, což tato verze systému Windows nepodporuje.
Error - 4.5.2013 4:09:30 | Computer Name = lukas-PC | Source = SideBySide | ID =
16842824
Description = Generování kontextu aktivace pro c:\program files\microsoft security client\MSESysprep.dll se nezdařilo. Chyba v souboru manifestu nebo zásady c:\program files\microsoft security client\MSESysprep.dll na řádku 10.
Prvek imaging je zřejmě podřízeným prvku urn:schemas-microsoft-com:asm.v1^assembly, což tato verze systému Windows nepodporuje.
Error encountered while reading event logs.
< End of report >
Re: pocitac nevypina
OTL logfile created on: 19.6.2014 11:25:37 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\lukas\Desktop
64bit- Ultimate Edition (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7600.16385)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy
7,96 Gb Total Physical Memory | 6,12 Gb Available Physical Memory | 76,84% Memory free
15,92 Gb Paging File | 13,96 Gb Available in Paging File | 87,68% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 69,15 Gb Total Space | 18,70 Gb Free Space | 27,04% Space Free | Partition Type: NTFS
Drive E: | 279,46 Gb Total Space | 20,70 Gb Free Space | 7,41% Space Free | Partition Type: NTFS
Drive G: | 232,88 Gb Total Space | 23,43 Gb Free Space | 10,06% Space Free | Partition Type: NTFS
Computer Name: LUKAS-PC | User Name: lukas | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Processes (SafeList) ==========
PRC - [2014.06.19 11:04:06 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\lukas\Desktop\OTL.exe
PRC - [2014.05.05 12:20:16 | 000,070,864 | ---- | M] (Comodo Security Solutions, Inc.) -- C:\Program Files (x86)\Common Files\Comodo\launcher_service.exe
PRC - [2014.05.05 10:46:18 | 002,327,248 | ---- | M] (Comodo Security Solutions, Inc.) -- C:\Program Files (x86)\Common Files\Comodo\GeekBuddyRSP.exe
PRC - [2014.04.29 17:37:52 | 000,663,208 | ---- | M] (AdTrustMedia) -- C:\Program Files (x86)\AdTrustMedia\PrivDog\2.1.0.23\trustedadssvc.exe
PRC - [2014.04.10 06:22:58 | 003,854,640 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastUI.exe
PRC - [2014.04.10 06:22:57 | 000,050,344 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe
PRC - [2014.04.03 20:21:48 | 000,315,008 | R--- | M] (Skype Technologies) -- C:\Program Files (x86)\Skype\Updater\Updater.exe
PRC - [2014.02.24 08:37:41 | 000,915,584 | ---- | M] () -- C:\Program Files (x86)\ASUS\AAHM\1.00.14\aaHMSvc.exe
PRC - [2013.11.01 13:59:13 | 000,920,736 | ---- | M] () -- C:\Program Files (x86)\ASUS\AXSP\1.00.19\atkexComSvc.exe
PRC - [2013.11.01 13:59:13 | 000,149,120 | ---- | M] (ASUSTeK Computer Inc.) -- C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.13\AsSysCtrlService.exe
PRC - [2012.09.13 12:29:22 | 000,076,888 | ---- | M] () -- C:\Windows\SysWOW64\PnkBstrA.exe
PRC - [2012.03.13 13:34:12 | 002,935,424 | ---- | M] (ASUSTeK Computer Inc.) -- C:\Program Files (x86)\ASUS\AI Suite II\AsRoutineController.exe
PRC - [2011.09.15 13:06:04 | 000,088,576 | ---- | M] () -- C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe
PRC - [2011.05.10 11:52:18 | 001,101,440 | ---- | M] (ASUSTeK Computer Inc.) -- C:\Program Files (x86)\ASUS\AI Suite II\TurboV EVO\TurboVHelp.exe
PRC - [2011.04.18 18:46:48 | 001,216,640 | ---- | M] (ASUSTeK Computer Inc.) -- C:\Program Files (x86)\ASUS\AI Suite II\EPU\EPUHelp.exe
PRC - [2010.03.10 15:26:48 | 000,189,728 | ---- | M] (Protexis Inc.) -- c:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
========== Modules (No Company Name) ==========
MOD - [2014.02.24 08:37:32 | 000,053,248 | ---- | M] () -- C:\Program Files (x86)\ASUS\AI Suite II\TurboV EVO\HookKey32.dll
MOD - [2013.12.12 13:07:14 | 019,336,120 | ---- | M] () -- C:\Program Files\AVAST Software\Avast\libcef.dll
MOD - [2009.05.21 11:14:14 | 000,253,952 | ---- | M] () -- C:\Program Files (x86)\ASUS\AI Suite II\TurboV EVO\pngio.dll
========== Services (SafeList) ==========
SRV:64bit: - [2014.04.16 23:12:45 | 006,817,544 | ---- | M] (COMODO) [Auto | Running] -- C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe -- (cmdAgent)
SRV:64bit: - [2014.04.10 06:22:57 | 000,050,344 | ---- | M] (AVAST Software) [Auto | Running] -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe -- (avast! Antivirus)
SRV:64bit: - [2014.03.25 21:22:18 | 002,264,280 | ---- | M] (COMODO) [On_Demand | Stopped] -- C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe -- (cmdvirth)
SRV:64bit: - [2013.04.24 18:52:06 | 000,238,080 | ---- | M] (AMD) [Auto | Running] -- C:\Windows\SysNative\atiesrxx.exe -- (AMD External Events Utility)
SRV:64bit: - [2013.04.24 12:37:10 | 000,361,984 | ---- | M] (Advanced Micro Devices, Inc.) [Auto | Running] -- C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe -- (AMD FUEL Service)
SRV:64bit: - [2009.07.14 03:41:27 | 001,011,712 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV:64bit: - [2009.07.14 03:40:01 | 000,193,536 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\appmgmts.dll -- (AppMgmt)
SRV - [2014.06.10 01:41:18 | 000,542,400 | ---- | M] (Valve Corporation) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Steam\SteamService.exe -- (Steam Client Service)
SRV - [2014.05.13 20:51:15 | 000,257,712 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2014.05.05 12:20:16 | 000,070,864 | ---- | M] (Comodo Security Solutions, Inc.) [Auto | Running] -- C:\Program Files (x86)\Common Files\Comodo\launcher_service.exe -- (CLPSLauncher)
SRV - [2014.05.05 10:46:18 | 002,327,248 | ---- | M] (Comodo Security Solutions, Inc.) [Auto | Running] -- C:\Program Files (x86)\Common Files\Comodo\GeekBuddyRSP.exe -- (GeekBuddyRSP)
SRV - [2014.04.03 20:21:48 | 000,315,008 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files (x86)\Skype\Updater\Updater.exe -- (SkypeUpdate)
SRV - [2014.02.24 08:37:41 | 000,915,584 | ---- | M] () [Auto | Running] -- C:\Program Files (x86)\ASUS\AAHM\1.00.14\aaHMSvc.exe -- (asHmComSvc)
SRV - [2013.11.01 13:59:13 | 000,920,736 | ---- | M] () [Auto | Running] -- C:\Program Files (x86)\ASUS\AXSP\1.00.19\atkexComSvc.exe -- (asComSvc)
SRV - [2013.11.01 13:59:13 | 000,149,120 | ---- | M] (ASUSTeK Computer Inc.) [Auto | Running] -- C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.13\AsSysCtrlService.exe -- (AsSysCtrlService)
SRV - [2012.11.29 10:26:17 | 000,115,168 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2012.09.13 12:29:22 | 000,076,888 | ---- | M] () [Auto | Running] -- C:\Windows\SysWOW64\PnkBstrA.exe -- (PnkBstrA)
SRV - [2012.01.18 14:38:28 | 000,155,320 | ---- | M] (Avanquest Software) [On_Demand | Stopped] -- C:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe -- (Sony PC Companion)
SRV - [2011.11.25 16:32:36 | 000,687,400 | ---- | M] (Nero AG) [Auto | Stopped] -- C:\Program Files (x86)\Nero\Update\NASvc.exe -- (NAUpdate)
SRV - [2011.09.15 13:06:04 | 000,088,576 | ---- | M] () [Auto | Running] -- C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe -- (PassThru Service)
SRV - [2010.03.18 14:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2010.03.10 15:26:48 | 000,189,728 | ---- | M] (Protexis Inc.) [Auto | Running] -- c:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe -- (PSI_SVC_2)
SRV - [2010.02.19 14:37:14 | 000,517,096 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe -- (SwitchBoard)
SRV - [2009.06.10 23:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)
========== Driver Services (SafeList) ==========
DRV:64bit: - [2014.06.19 08:41:29 | 000,122,584 | ---- | M] (Malwarebytes Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\MBAMSwissArmy.sys -- (MBAMSwissArmy)
DRV:64bit: - [2014.05.12 07:26:00 | 000,091,352 | ---- | M] (Malwarebytes Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\mbamchameleon.sys -- (mbamchameleon)
DRV:64bit: - [2014.04.10 06:23:07 | 001,039,096 | ---- | M] (AVAST Software) [File_System | System | Running] -- C:\Windows\SysNative\drivers\aswSnx.sys -- (aswSnx)
DRV:64bit: - [2014.04.10 06:23:07 | 000,423,240 | ---- | M] (AVAST Software) [File_System | System | Running] -- C:\Windows\SysNative\drivers\aswSP.sys -- (aswSP)
DRV:64bit: - [2014.04.10 06:23:07 | 000,208,928 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\aswVmm.sys -- (aswVmm)
DRV:64bit: - [2014.04.10 06:23:07 | 000,084,816 | ---- | M] (AVAST Software) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\aswstm.sys -- (aswStm)
DRV:64bit: - [2014.04.10 06:23:07 | 000,079,184 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\Windows\SysNative\drivers\aswMonFlt.sys -- (aswMonFlt)
DRV:64bit: - [2014.04.10 06:23:07 | 000,065,776 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\aswRvrt.sys -- (aswRvrt)
DRV:64bit: - [2014.04.10 06:23:06 | 000,093,568 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\aswRdr2.sys -- (aswRdr)
DRV:64bit: - [2013.09.06 16:35:56 | 000,031,136 | ---- | M] (REALiX(tm)) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\HWiNFO64A.SYS -- (HWiNFO32)
DRV:64bit: - [2013.04.24 19:19:22 | 011,922,944 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\atikmdag.sys -- (amdkmdag)
DRV:64bit: - [2013.04.24 17:48:16 | 000,359,936 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\atikmpag.sys -- (amdkmdap)
DRV:64bit: - [2012.07.24 11:53:38 | 000,033,344 | ---- | M] (LogMeIn, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hamachi.sys -- (hamachi)
DRV:64bit: - [2012.05.14 08:12:30 | 000,096,896 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\AtihdW76.sys -- (AtiHDAudioService)
DRV:64bit: - [2012.03.05 16:04:30 | 000,053,888 | ---- | M] (Advanced Micro Devices) [Kernel | Auto | Stopped] -- C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\aoddriver2.sys -- (AODDriver4.1)
DRV:64bit: - [2012.03.05 16:04:30 | 000,053,888 | ---- | M] (Advanced Micro Devices) [Kernel | Auto | Running] -- C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\aoddriver2.sys -- (AODDriver4.01)
DRV:64bit: - [2012.03.01 03:10:33 | 000,283,200 | ---- | M] (DT Soft Ltd) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\dtsoftbus01.sys -- (dtsoftbus01)
DRV:64bit: - [2011.12.13 15:48:06 | 000,027,176 | ---- | M] (Sony Ericsson Mobile Communications) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ggsemc.sys -- (ggsemc)
DRV:64bit: - [2011.12.13 15:48:06 | 000,013,352 | ---- | M] (Sony Ericsson Mobile Communications) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ggflt.sys -- (ggflt)
DRV:64bit: - [2011.03.21 15:22:06 | 000,452,200 | ---- | M] (Realtek ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Rt64win7.sys -- (RTL8167)
DRV:64bit: - [2011.02.24 11:30:50 | 000,389,608 | ---- | M] (ASMedia Technology Inc) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\asmtxhci.sys -- (asmtxhci)
DRV:64bit: - [2011.02.24 11:30:50 | 000,126,952 | ---- | M] (ASMedia Technology Inc) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\asmthub3.sys -- (asmthub3)
DRV:64bit: - [2010.12.16 06:06:46 | 000,047,232 | R--- | M] (Advanced Micro Devices) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\usbfilter.sys -- (usbfilter)
DRV:64bit: - [2010.11.25 05:27:42 | 000,120,408 | ---- | M] (JMicron Technology Corp.) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\jraid.sys -- (JRAID)
DRV:64bit: - [2010.11.08 15:57:58 | 000,014,464 | ---- | M] (ASUSTek Computer Inc.) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\AiChargerPlus.sys -- (AiChargerPlus)
DRV:64bit: - [2010.06.25 17:08:10 | 000,036,928 | ---- | M] (Windows (R) Win 7 DDK provider) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\htcnprot.sys -- (htcnprot)
DRV:64bit: - [2010.02.18 10:18:24 | 000,046,136 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\amdiox64.sys -- (amdiox64)
DRV:64bit: - [2009.11.02 19:16:50 | 000,033,736 | ---- | M] (HTC, Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ANDROIDUSB.sys -- (HTCAND64)
DRV:64bit: - [2009.07.14 03:52:21 | 000,106,576 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:64bit: - [2009.07.14 03:52:21 | 000,028,752 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:64bit: - [2009.07.14 03:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:64bit: - [2009.07.14 03:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:64bit: - [2009.07.14 03:47:48 | 000,077,888 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:64bit: - [2009.07.14 03:47:48 | 000,023,104 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\Windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
DRV:64bit: - [2009.07.14 03:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:64bit: - [2009.06.10 22:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:64bit: - [2009.06.10 22:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:64bit: - [2009.06.10 22:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:64bit: - [2009.06.10 22:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
DRV - [2014.04.18 13:06:43 | 000,021,712 | ---- | M] (Phoenix Technologies) [Kernel | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\DrvAgent64.SYS -- (DrvAgent64)
DRV - [2012.09.03 09:20:00 | 000,037,976 | ---- | M] (Windows (R) Win 7 DDK provider) [File_System | System | Stopped] -- C:\Windows\SysWOW64\drivers\CFRMD.sys -- (CFRMD)
DRV - [2012.04.19 10:19:30 | 000,014,848 | ---- | M] (ASUSTek Computer Inc.) [Kernel | Boot | Running] -- C:\Windows\SysWOW64\drivers\AiChargerPlus.sys -- (AiChargerPlus)
DRV - [2009.07.14 03:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount)
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
IE - HKLM\..\SearchScopes,DefaultScope =
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-19\..\SearchScopes,DefaultScope =
IE - HKU\S-1-5-20\..\SearchScopes,DefaultScope =
IE - HKU\S-1-5-21-1575853709-75552691-4080425000-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/
IE - HKU\S-1-5-21-1575853709-75552691-4080425000-1000\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKU\S-1-5-21-1575853709-75552691-4080425000-1000\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTer ... ORM=IE8SRC
IE - HKU\S-1-5-21-1575853709-75552691-4080425000-1000\..\SearchScopes\{931DE82B-5F66-48A2-83B6-9E4893743C17}: "URL" = http://websearch.ask.com/redirect?clien ... 2355646351
IE - HKU\S-1-5-21-1575853709-75552691-4080425000-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\lukas\Desktop
64bit- Ultimate Edition (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7600.16385)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy
7,96 Gb Total Physical Memory | 6,12 Gb Available Physical Memory | 76,84% Memory free
15,92 Gb Paging File | 13,96 Gb Available in Paging File | 87,68% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 69,15 Gb Total Space | 18,70 Gb Free Space | 27,04% Space Free | Partition Type: NTFS
Drive E: | 279,46 Gb Total Space | 20,70 Gb Free Space | 7,41% Space Free | Partition Type: NTFS
Drive G: | 232,88 Gb Total Space | 23,43 Gb Free Space | 10,06% Space Free | Partition Type: NTFS
Computer Name: LUKAS-PC | User Name: lukas | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Processes (SafeList) ==========
PRC - [2014.06.19 11:04:06 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\lukas\Desktop\OTL.exe
PRC - [2014.05.05 12:20:16 | 000,070,864 | ---- | M] (Comodo Security Solutions, Inc.) -- C:\Program Files (x86)\Common Files\Comodo\launcher_service.exe
PRC - [2014.05.05 10:46:18 | 002,327,248 | ---- | M] (Comodo Security Solutions, Inc.) -- C:\Program Files (x86)\Common Files\Comodo\GeekBuddyRSP.exe
PRC - [2014.04.29 17:37:52 | 000,663,208 | ---- | M] (AdTrustMedia) -- C:\Program Files (x86)\AdTrustMedia\PrivDog\2.1.0.23\trustedadssvc.exe
PRC - [2014.04.10 06:22:58 | 003,854,640 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastUI.exe
PRC - [2014.04.10 06:22:57 | 000,050,344 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe
PRC - [2014.04.03 20:21:48 | 000,315,008 | R--- | M] (Skype Technologies) -- C:\Program Files (x86)\Skype\Updater\Updater.exe
PRC - [2014.02.24 08:37:41 | 000,915,584 | ---- | M] () -- C:\Program Files (x86)\ASUS\AAHM\1.00.14\aaHMSvc.exe
PRC - [2013.11.01 13:59:13 | 000,920,736 | ---- | M] () -- C:\Program Files (x86)\ASUS\AXSP\1.00.19\atkexComSvc.exe
PRC - [2013.11.01 13:59:13 | 000,149,120 | ---- | M] (ASUSTeK Computer Inc.) -- C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.13\AsSysCtrlService.exe
PRC - [2012.09.13 12:29:22 | 000,076,888 | ---- | M] () -- C:\Windows\SysWOW64\PnkBstrA.exe
PRC - [2012.03.13 13:34:12 | 002,935,424 | ---- | M] (ASUSTeK Computer Inc.) -- C:\Program Files (x86)\ASUS\AI Suite II\AsRoutineController.exe
PRC - [2011.09.15 13:06:04 | 000,088,576 | ---- | M] () -- C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe
PRC - [2011.05.10 11:52:18 | 001,101,440 | ---- | M] (ASUSTeK Computer Inc.) -- C:\Program Files (x86)\ASUS\AI Suite II\TurboV EVO\TurboVHelp.exe
PRC - [2011.04.18 18:46:48 | 001,216,640 | ---- | M] (ASUSTeK Computer Inc.) -- C:\Program Files (x86)\ASUS\AI Suite II\EPU\EPUHelp.exe
PRC - [2010.03.10 15:26:48 | 000,189,728 | ---- | M] (Protexis Inc.) -- c:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
========== Modules (No Company Name) ==========
MOD - [2014.02.24 08:37:32 | 000,053,248 | ---- | M] () -- C:\Program Files (x86)\ASUS\AI Suite II\TurboV EVO\HookKey32.dll
MOD - [2013.12.12 13:07:14 | 019,336,120 | ---- | M] () -- C:\Program Files\AVAST Software\Avast\libcef.dll
MOD - [2009.05.21 11:14:14 | 000,253,952 | ---- | M] () -- C:\Program Files (x86)\ASUS\AI Suite II\TurboV EVO\pngio.dll
========== Services (SafeList) ==========
SRV:64bit: - [2014.04.16 23:12:45 | 006,817,544 | ---- | M] (COMODO) [Auto | Running] -- C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe -- (cmdAgent)
SRV:64bit: - [2014.04.10 06:22:57 | 000,050,344 | ---- | M] (AVAST Software) [Auto | Running] -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe -- (avast! Antivirus)
SRV:64bit: - [2014.03.25 21:22:18 | 002,264,280 | ---- | M] (COMODO) [On_Demand | Stopped] -- C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe -- (cmdvirth)
SRV:64bit: - [2013.04.24 18:52:06 | 000,238,080 | ---- | M] (AMD) [Auto | Running] -- C:\Windows\SysNative\atiesrxx.exe -- (AMD External Events Utility)
SRV:64bit: - [2013.04.24 12:37:10 | 000,361,984 | ---- | M] (Advanced Micro Devices, Inc.) [Auto | Running] -- C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe -- (AMD FUEL Service)
SRV:64bit: - [2009.07.14 03:41:27 | 001,011,712 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV:64bit: - [2009.07.14 03:40:01 | 000,193,536 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\appmgmts.dll -- (AppMgmt)
SRV - [2014.06.10 01:41:18 | 000,542,400 | ---- | M] (Valve Corporation) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Steam\SteamService.exe -- (Steam Client Service)
SRV - [2014.05.13 20:51:15 | 000,257,712 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2014.05.05 12:20:16 | 000,070,864 | ---- | M] (Comodo Security Solutions, Inc.) [Auto | Running] -- C:\Program Files (x86)\Common Files\Comodo\launcher_service.exe -- (CLPSLauncher)
SRV - [2014.05.05 10:46:18 | 002,327,248 | ---- | M] (Comodo Security Solutions, Inc.) [Auto | Running] -- C:\Program Files (x86)\Common Files\Comodo\GeekBuddyRSP.exe -- (GeekBuddyRSP)
SRV - [2014.04.03 20:21:48 | 000,315,008 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files (x86)\Skype\Updater\Updater.exe -- (SkypeUpdate)
SRV - [2014.02.24 08:37:41 | 000,915,584 | ---- | M] () [Auto | Running] -- C:\Program Files (x86)\ASUS\AAHM\1.00.14\aaHMSvc.exe -- (asHmComSvc)
SRV - [2013.11.01 13:59:13 | 000,920,736 | ---- | M] () [Auto | Running] -- C:\Program Files (x86)\ASUS\AXSP\1.00.19\atkexComSvc.exe -- (asComSvc)
SRV - [2013.11.01 13:59:13 | 000,149,120 | ---- | M] (ASUSTeK Computer Inc.) [Auto | Running] -- C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.13\AsSysCtrlService.exe -- (AsSysCtrlService)
SRV - [2012.11.29 10:26:17 | 000,115,168 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2012.09.13 12:29:22 | 000,076,888 | ---- | M] () [Auto | Running] -- C:\Windows\SysWOW64\PnkBstrA.exe -- (PnkBstrA)
SRV - [2012.01.18 14:38:28 | 000,155,320 | ---- | M] (Avanquest Software) [On_Demand | Stopped] -- C:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe -- (Sony PC Companion)
SRV - [2011.11.25 16:32:36 | 000,687,400 | ---- | M] (Nero AG) [Auto | Stopped] -- C:\Program Files (x86)\Nero\Update\NASvc.exe -- (NAUpdate)
SRV - [2011.09.15 13:06:04 | 000,088,576 | ---- | M] () [Auto | Running] -- C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe -- (PassThru Service)
SRV - [2010.03.18 14:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2010.03.10 15:26:48 | 000,189,728 | ---- | M] (Protexis Inc.) [Auto | Running] -- c:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe -- (PSI_SVC_2)
SRV - [2010.02.19 14:37:14 | 000,517,096 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe -- (SwitchBoard)
SRV - [2009.06.10 23:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)
========== Driver Services (SafeList) ==========
DRV:64bit: - [2014.06.19 08:41:29 | 000,122,584 | ---- | M] (Malwarebytes Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\MBAMSwissArmy.sys -- (MBAMSwissArmy)
DRV:64bit: - [2014.05.12 07:26:00 | 000,091,352 | ---- | M] (Malwarebytes Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\mbamchameleon.sys -- (mbamchameleon)
DRV:64bit: - [2014.04.10 06:23:07 | 001,039,096 | ---- | M] (AVAST Software) [File_System | System | Running] -- C:\Windows\SysNative\drivers\aswSnx.sys -- (aswSnx)
DRV:64bit: - [2014.04.10 06:23:07 | 000,423,240 | ---- | M] (AVAST Software) [File_System | System | Running] -- C:\Windows\SysNative\drivers\aswSP.sys -- (aswSP)
DRV:64bit: - [2014.04.10 06:23:07 | 000,208,928 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\aswVmm.sys -- (aswVmm)
DRV:64bit: - [2014.04.10 06:23:07 | 000,084,816 | ---- | M] (AVAST Software) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\aswstm.sys -- (aswStm)
DRV:64bit: - [2014.04.10 06:23:07 | 000,079,184 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\Windows\SysNative\drivers\aswMonFlt.sys -- (aswMonFlt)
DRV:64bit: - [2014.04.10 06:23:07 | 000,065,776 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\aswRvrt.sys -- (aswRvrt)
DRV:64bit: - [2014.04.10 06:23:06 | 000,093,568 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\aswRdr2.sys -- (aswRdr)
DRV:64bit: - [2013.09.06 16:35:56 | 000,031,136 | ---- | M] (REALiX(tm)) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\HWiNFO64A.SYS -- (HWiNFO32)
DRV:64bit: - [2013.04.24 19:19:22 | 011,922,944 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\atikmdag.sys -- (amdkmdag)
DRV:64bit: - [2013.04.24 17:48:16 | 000,359,936 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\atikmpag.sys -- (amdkmdap)
DRV:64bit: - [2012.07.24 11:53:38 | 000,033,344 | ---- | M] (LogMeIn, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hamachi.sys -- (hamachi)
DRV:64bit: - [2012.05.14 08:12:30 | 000,096,896 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\AtihdW76.sys -- (AtiHDAudioService)
DRV:64bit: - [2012.03.05 16:04:30 | 000,053,888 | ---- | M] (Advanced Micro Devices) [Kernel | Auto | Stopped] -- C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\aoddriver2.sys -- (AODDriver4.1)
DRV:64bit: - [2012.03.05 16:04:30 | 000,053,888 | ---- | M] (Advanced Micro Devices) [Kernel | Auto | Running] -- C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\aoddriver2.sys -- (AODDriver4.01)
DRV:64bit: - [2012.03.01 03:10:33 | 000,283,200 | ---- | M] (DT Soft Ltd) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\dtsoftbus01.sys -- (dtsoftbus01)
DRV:64bit: - [2011.12.13 15:48:06 | 000,027,176 | ---- | M] (Sony Ericsson Mobile Communications) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ggsemc.sys -- (ggsemc)
DRV:64bit: - [2011.12.13 15:48:06 | 000,013,352 | ---- | M] (Sony Ericsson Mobile Communications) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ggflt.sys -- (ggflt)
DRV:64bit: - [2011.03.21 15:22:06 | 000,452,200 | ---- | M] (Realtek ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Rt64win7.sys -- (RTL8167)
DRV:64bit: - [2011.02.24 11:30:50 | 000,389,608 | ---- | M] (ASMedia Technology Inc) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\asmtxhci.sys -- (asmtxhci)
DRV:64bit: - [2011.02.24 11:30:50 | 000,126,952 | ---- | M] (ASMedia Technology Inc) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\asmthub3.sys -- (asmthub3)
DRV:64bit: - [2010.12.16 06:06:46 | 000,047,232 | R--- | M] (Advanced Micro Devices) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\usbfilter.sys -- (usbfilter)
DRV:64bit: - [2010.11.25 05:27:42 | 000,120,408 | ---- | M] (JMicron Technology Corp.) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\jraid.sys -- (JRAID)
DRV:64bit: - [2010.11.08 15:57:58 | 000,014,464 | ---- | M] (ASUSTek Computer Inc.) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\AiChargerPlus.sys -- (AiChargerPlus)
DRV:64bit: - [2010.06.25 17:08:10 | 000,036,928 | ---- | M] (Windows (R) Win 7 DDK provider) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\htcnprot.sys -- (htcnprot)
DRV:64bit: - [2010.02.18 10:18:24 | 000,046,136 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\amdiox64.sys -- (amdiox64)
DRV:64bit: - [2009.11.02 19:16:50 | 000,033,736 | ---- | M] (HTC, Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ANDROIDUSB.sys -- (HTCAND64)
DRV:64bit: - [2009.07.14 03:52:21 | 000,106,576 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:64bit: - [2009.07.14 03:52:21 | 000,028,752 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:64bit: - [2009.07.14 03:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:64bit: - [2009.07.14 03:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:64bit: - [2009.07.14 03:47:48 | 000,077,888 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:64bit: - [2009.07.14 03:47:48 | 000,023,104 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\Windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
DRV:64bit: - [2009.07.14 03:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:64bit: - [2009.06.10 22:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:64bit: - [2009.06.10 22:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:64bit: - [2009.06.10 22:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:64bit: - [2009.06.10 22:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
DRV - [2014.04.18 13:06:43 | 000,021,712 | ---- | M] (Phoenix Technologies) [Kernel | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\DrvAgent64.SYS -- (DrvAgent64)
DRV - [2012.09.03 09:20:00 | 000,037,976 | ---- | M] (Windows (R) Win 7 DDK provider) [File_System | System | Stopped] -- C:\Windows\SysWOW64\drivers\CFRMD.sys -- (CFRMD)
DRV - [2012.04.19 10:19:30 | 000,014,848 | ---- | M] (ASUSTek Computer Inc.) [Kernel | Boot | Running] -- C:\Windows\SysWOW64\drivers\AiChargerPlus.sys -- (AiChargerPlus)
DRV - [2009.07.14 03:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount)
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
IE - HKLM\..\SearchScopes,DefaultScope =
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-19\..\SearchScopes,DefaultScope =
IE - HKU\S-1-5-20\..\SearchScopes,DefaultScope =
IE - HKU\S-1-5-21-1575853709-75552691-4080425000-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/
IE - HKU\S-1-5-21-1575853709-75552691-4080425000-1000\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKU\S-1-5-21-1575853709-75552691-4080425000-1000\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTer ... ORM=IE8SRC
IE - HKU\S-1-5-21-1575853709-75552691-4080425000-1000\..\SearchScopes\{931DE82B-5F66-48A2-83B6-9E4893743C17}: "URL" = http://websearch.ask.com/redirect?clien ... 2355646351
IE - HKU\S-1-5-21-1575853709-75552691-4080425000-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
Re: pocitac nevypina
========== FireFox ==========
FF - prefs.js..browser.search.defaultenginename: "Seznam"
FF - prefs.js..browser.search.defaultthis.engineName: ""
FF - prefs.js..browser.search.selectedEngine: "Seznam"
FF - prefs.js..browser.startup.homepage: "http://www.thesettlers-online.cz/cs/dom ... r%C3%A1nka"
FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:29.0.1
FF - user.js - File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF64_13_0_0_214.dll File not found
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_13_0_0_214.dll ()
FF - HKLM\Software\MozillaPlugins\@esn/esnlaunch,version=1.104.0: C:\Program Files (x86)\Battlelog Web Plugins\1.104.0\npesnlaunch.dll File not found
FF - HKLM\Software\MozillaPlugins\@esn/esnlaunch,version=1.132.0: C:\Program Files (x86)\Battlelog Web Plugins\1.132.0\npesnlaunch.dll (ESN Social Software AB)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.55.2: C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.55.2: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@Nero.com/KM: C:\PROGRA~2\COMMON~1\Nero\BROWSE~1\NPBROW~1.DLL (Nero AG)
FF - HKLM\Software\MozillaPlugins\@ngm.nexoneu.com/NxGame: C:\ProgramData\NexonEU\NGM\npNxGameEU.dll (Nexon)
FF - HKLM\Software\MozillaPlugins\@pandonetworks.com/PandoWebPlugin: C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Users\lukas\AppData\Local\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Users\lukas\AppData\Local\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\pandonetworks.com/PandoWebPlugin: C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\wrc@avast.com: C:\Program Files\AVAST Software\Avast\WebRep\FF [2014.04.10 06:23:07 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 17.0.1\extensions\\Components: e:\Program Files (x86)\Mozilla Firefox\components [2014.06.10 22:57:16 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 17.0.1\extensions\\Plugins: e:\Program Files (x86)\Mozilla Firefox\plugins [2014.06.10 22:57:17 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 29.0.1\extensions\\Components: E:\Program Files (x86)\Mozilla Firefox\components [2014.06.10 22:57:16 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 29.0.1\extensions\\Plugins: E:\Program Files (x86)\Mozilla Firefox\plugins [2014.06.10 22:57:17 | 000,000,000 | ---D | M]
[2012.05.01 15:03:49 | 000,000,000 | ---D | M] (No name found) -- C:\Users\lukas\AppData\Roaming\Mozilla\Extensions
[2014.06.16 22:56:05 | 000,000,000 | ---D | M] (No name found) -- C:\Users\lukas\AppData\Roaming\Mozilla\Firefox\Profiles\dbwjkwv5.default\extensions
[2014.06.17 06:40:28 | 000,613,778 | ---- | M] () (No name found) -- C:\Users\lukas\AppData\Roaming\Mozilla\Firefox\Profiles\dbwjkwv5.default\extensions\PrivDog@AdTrustMedia.com.xpi
========== Chrome ==========
CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:bookmarkBarPinned}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}{google:omniboxStartMarginParameter}ie={inputEncoding}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client={google:suggestClient}&gs_ri={google:suggestRid}&xssi=t&q={searchTerms}&{google:cursorPosition}{google:currentPageUrl}{google:pageClassification}sugkey={google:suggestAPIKeyParameter},
CHR - plugin: Error reading preferences file
CHR - Extension: PrivDog = C:\Users\lukas\AppData\Local\Google\Chrome\User Data\Default\Extensions\cmaiofennmphjldldcpphcechfnnohja\2.1.0.23_0\
CHR - Extension: AdBlock Premium = C:\Users\lukas\AppData\Local\Google\Chrome\User Data\Default\Extensions\fndlhnanhedoklpdaacidomdnplcjcpj\2.6.4.3_0\
CHR - Extension: AdBlock = C:\Users\lukas\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.7.1_0\
CHR - Extension: FRQc - Flash Render Quality changer = C:\Users\lukas\AppData\Local\Google\Chrome\User Data\Default\Extensions\jklnclajhlcbghmgkljidaofhcnmjffo\2.0.4_0\
CHR - Extension: Adblock Super = C:\Users\lukas\AppData\Local\Google\Chrome\User Data\Default\Extensions\knebimhcckndhiglamoabbnifdkijidd\2.5.8_0\
CHR - Extension: Peněženka Google = C:\Users\lukas\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.1_0\
O1 HOSTS File: ([2014.06.19 09:05:18 | 000,000,027 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2:64bit: - BHO: (SteadyVideoBHO Class) - {6C680BAE-655C-4E3D-8FC4-E6A520C3D928} - C:\Program Files\AMD\SteadyVideo\SteadyVideo.dll (Advanced Micro Devices)
O2:64bit: - BHO: (avast! Online Security) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
O2 - BHO: (SteadyVideoBHO Class) - {6C680BAE-655C-4E3D-8FC4-E6A520C3D928} - C:\Program Files (x86)\AMD\SteadyVideo\SteadyVideo.dll (Advanced Micro Devices)
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (avast! Online Security) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O2 - BHO: (PrivDog Extension) - {FB16E5C3-A9E2-47A2-8EFC-319E775E62CC} - C:\Program Files (x86)\AdTrustMedia\PrivDog\2.1.0.23\trustedads.dll (AdTrustMedia)
O3:64bit: - HKLM\..\Toolbar: (no name) - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - No CLSID value found.
O3:64bit: - HKLM\..\Toolbar: (no name) - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - No CLSID value found.
O4:64bit: - HKLM..\Run: [COMODO Internet Security] C:\Program Files\COMODO\COMODO Internet Security\cistray.exe (COMODO)
O4:64bit: - HKLM..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor)
O4 - HKLM..\Run: [AvastUI.exe] C:\Program Files\AVAST Software\Avast\AvastUI.exe (AVAST Software)
O4 - HKLM..\Run: [PrivDogService] C:\Program Files (x86)\AdTrustMedia\PrivDog\2.1.0.23\trustedadssvc.exe (AdTrustMedia)
O4 - HKLM..\Run: [StartCCC] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.)
O4 - HKLM..\Run: [tvncontrol] C:\Program Files (x86)\Common Files\COMODO\GeekBuddyRSP.exe (Comodo Security Solutions, Inc.)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0
O7 - HKU\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-19\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-20\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-1575853709-75552691-4080425000-1000\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-1575853709-75552691-4080425000-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O9:64bit: - Extra Button: PrivDog - {2F5C139F-79BD-4C84-A95A-E7140525BC55} - C:\Program Files\AdTrustMedia\PrivDog\2.1.0.23\trustedads.dll (AdTrustMedia)
O9 - Extra Button: PrivDog - {2F5C139F-79BD-4C84-A95A-E7140525BC55} - C:\Program Files (x86)\AdTrustMedia\PrivDog\2.1.0.23\trustedads.dll (AdTrustMedia)
O13 - gopher Prefix: missing
O15 - HKU\.DEFAULT\..Trusted Domains: clonewarsadventures.com ([]* in Trusted sites)
O15 - HKU\.DEFAULT\..Trusted Domains: freerealms.com ([]* in Trusted sites)
O15 - HKU\.DEFAULT\..Trusted Domains: soe.com ([]* in Trusted sites)
O15 - HKU\.DEFAULT\..Trusted Domains: sony.com ([]* in Trusted sites)
O15 - HKU\S-1-5-18\..Trusted Domains: clonewarsadventures.com ([]* in Trusted sites)
O15 - HKU\S-1-5-18\..Trusted Domains: freerealms.com ([]* in Trusted sites)
O15 - HKU\S-1-5-18\..Trusted Domains: soe.com ([]* in Trusted sites)
O15 - HKU\S-1-5-18\..Trusted Domains: sony.com ([]* in Trusted sites)
O15 - HKU\S-1-5-19\..Trusted Domains: clonewarsadventures.com ([]* in )
O15 - HKU\S-1-5-19\..Trusted Domains: freerealms.com ([]* in )
O15 - HKU\S-1-5-19\..Trusted Domains: soe.com ([]* in )
O15 - HKU\S-1-5-19\..Trusted Domains: sony.com ([]* in )
O15 - HKU\S-1-5-20\..Trusted Domains: clonewarsadventures.com ([]* in )
O15 - HKU\S-1-5-20\..Trusted Domains: freerealms.com ([]* in )
O15 - HKU\S-1-5-20\..Trusted Domains: soe.com ([]* in )
O15 - HKU\S-1-5-20\..Trusted Domains: sony.com ([]* in )
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 77.242.95.6 81.200.55.34
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{587F006D-6820-4B33-9661-7B25550D93BD}: DhcpNameServer = 77.242.95.6 81.200.55.34
O18:64bit: - Protocol\Handler\ms-help - No CLSID value found
O18:64bit: - Protocol\Handler\skype4com - No CLSID value found
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18:64bit: - Protocol\Filter\video/mp4 {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files\AMD\SteadyVideo\VideoMIMEFilter.dll (Advanced Micro Devices)
O18:64bit: - Protocol\Filter\video/x-flv {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files\AMD\SteadyVideo\VideoMIMEFilter.dll (Advanced Micro Devices)
O18 - Protocol\Filter\video/mp4 {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files (x86)\AMD\SteadyVideo\VideoMIMEFilter.dll (Advanced Micro Devices)
O18 - Protocol\Filter\video/x-flv {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files (x86)\AMD\SteadyVideo\VideoMIMEFilter.dll (Advanced Micro Devices)
O20:64bit: - HKLM Winlogon: Shell - (Explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysWOW64\userinit.exe (Microsoft Corporation)
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2010.02.05 15:08:00 | 000,000,000 | ---- | M] () - E:\AUTOEXEC.BAT -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = ComFile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = ComFile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)
CREATERESTOREPOINT
Restore point Set: OTL Restore Point
NetSvcs:64bit: AppMgmt - C:\Windows\SysNative\appmgmts.dll (Microsoft Corporation)
Drivers32:64bit: msacm.l3acm - C:\Windows\System32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.l3acm - C:\Windows\SysWOW64\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: vidc.cvid - C:\Windows\SysWow64\iccvid.dll (Radius Inc.)
PhysicalDisk0 MBR saved to C:\PhysicalMBR.bin
========== Files/Folders - Created Within 30 Days ==========
[2014.06.19 11:04:23 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\lukas\Desktop\OTL.exe
[2014.06.19 09:47:41 | 000,000,000 | ---D | C] -- C:\Program Files\trend micro
[2014.06.19 09:47:41 | 000,000,000 | ---D | C] -- C:\rsit
[2014.06.19 09:16:15 | 000,000,000 | -HSD | C] -- C:\$RECYCLE.BIN
[2014.06.19 08:53:06 | 000,000,000 | ---D | C] -- C:\abc
[2014.06.17 20:15:54 | 000,000,000 | ---D | C] -- C:\Users\lukas\AppData\Local\UWebKit
[2014.06.17 06:40:07 | 000,000,000 | ---D | C] -- C:\Users\lukas\AppData\Local\AdTrustMedia
[2014.06.16 22:56:12 | 000,000,000 | ---D | C] -- C:\Users\lukas\AppData\Roaming\Comodo
[2014.06.16 22:56:00 | 000,000,000 | ---D | C] -- C:\Program Files\AdTrustMedia
[2014.06.16 22:55:59 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\AdTrustMedia
[2014.06.16 22:55:58 | 000,000,000 | ---D | C] -- C:\ProgramData\Adtrustmedia
[2014.06.16 22:55:34 | 000,000,000 | ---D | C] -- C:\ProgramData\Comodo Downloader
[2014.06.16 22:55:06 | 000,000,000 | ---D | C] -- C:\ProgramData\Shared Space
[2014.06.16 22:54:49 | 000,352,984 | ---- | C] (COMODO) -- C:\Windows\SysNative\cmdvrt64.dll
[2014.06.16 22:54:49 | 000,284,888 | ---- | C] (COMODO) -- C:\Windows\SysWow64\cmdvrt32.dll
[2014.06.16 22:54:49 | 000,045,784 | ---- | C] (COMODO) -- C:\Windows\SysNative\cmdkbd64.dll
[2014.06.16 22:54:49 | 000,040,664 | ---- | C] (COMODO) -- C:\Windows\SysWow64\cmdkbd32.dll
[2014.06.16 14:02:50 | 000,000,000 | ---D | C] -- C:\Users\lukas\AppData\Local\UWebKit151
[2014.06.16 14:02:48 | 000,000,000 | ---D | C] -- C:\Users\lukas\AppData\Roaming\.mono
[2014.06.01 21:08:18 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
[2014.06.01 21:08:15 | 000,063,704 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\mwac.sys
[2014.06.01 21:08:15 | 000,025,816 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\mbam.sys
[2014.06.01 21:08:15 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Malwarebytes Anti-Malware
[2014.05.27 12:47:54 | 000,000,000 | ---D | C] -- C:\Users\lukas\AppData\Roaming\Audacity
[2014.05.24 20:29:13 | 000,000,000 | ---D | C] -- C:\Users\lukas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\HiJackThis
[2014.05.24 20:29:12 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Trend Micro
[2014.05.23 08:18:32 | 000,000,000 | R--D | C] -- C:\Program Files (x86)\Skype
[2014.05.23 08:18:32 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
[2014.05.23 08:18:32 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Skype
========== Files - Modified Within 30 Days ==========
[2014.06.19 11:28:04 | 000,000,512 | ---- | M] () -- C:\PhysicalMBR.bin
[2014.06.19 11:23:54 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2014.06.19 11:23:49 | 2117,107,711 | -HS- | M] () -- C:\hiberfil.sys
[2014.06.19 11:23:04 | 000,003,232 | ---- | M] () -- C:\bootsqm.dat
[2014.06.19 11:05:00 | 000,000,962 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1575853709-75552691-4080425000-1000UA.job
[2014.06.19 11:04:06 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\lukas\Desktop\OTL.exe
[2014.06.19 10:50:00 | 000,000,914 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2014.06.19 09:42:39 | 000,014,016 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2014.06.19 09:42:39 | 000,014,016 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2014.06.19 09:05:18 | 000,000,027 | ---- | M] () -- C:\Windows\SysNative\drivers\etc\hosts
[2014.06.19 09:05:00 | 000,000,910 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1575853709-75552691-4080425000-1000Core.job
[2014.06.19 08:41:29 | 000,122,584 | ---- | M] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\MBAMSwissArmy.sys
[2014.06.18 12:08:15 | 001,575,782 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2014.06.18 12:08:15 | 000,666,006 | ---- | M] () -- C:\Windows\SysNative\perfh005.dat
[2014.06.18 12:08:15 | 000,651,750 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2014.06.18 12:08:15 | 000,139,702 | ---- | M] () -- C:\Windows\SysNative\perfc005.dat
[2014.06.18 12:08:15 | 000,120,682 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2014.06.18 11:34:40 | 000,000,878 | ---- | M] () -- C:\Users\lukas\Desktop\Gattaca (1997) – zástupce.lnk
[2014.06.18 10:37:50 | 000,282,296 | ---- | M] () -- C:\Windows\SysWow64\PnkBstrB.xtr
[2014.06.18 10:37:50 | 000,282,296 | ---- | M] () -- C:\Windows\SysWow64\PnkBstrB.exe
[2014.06.18 10:35:30 | 000,215,128 | ---- | M] () -- C:\Windows\SysWow64\PnkBstrB.ex0
[2014.06.16 23:14:51 | 000,002,340 | ---- | M] () -- C:\Windows\SysNative\drivers\fvstore.dat
[2014.06.16 13:26:15 | 000,000,216 | ---- | M] () -- C:\Users\lukas\Desktop\March of War.url
[2014.06.10 20:07:48 | 000,002,364 | ---- | M] () -- C:\Users\lukas\Desktop\Google Chrome.lnk
[2014.06.08 20:46:10 | 000,056,665 | ---- | M] () -- C:\Users\lukas\Desktop\10449590_322490841246747_254987811_n.jpg
[2014.06.08 17:22:59 | 000,001,062 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
[2014.06.08 14:22:35 | 000,110,871 | ---- | M] () -- C:\Users\lukas\Desktop\svatební oznámení.JPG
[2014.06.08 14:04:11 | 000,046,296 | ---- | M] () -- C:\Users\lukas\Desktop\Výstřižek.JPG
[2014.06.07 19:22:49 | 000,067,149 | ---- | M] () -- C:\Users\lukas\Desktop\10346641_674476675922801_213320548513784659_n.jpg
[2014.05.27 19:08:25 | 000,129,185 | ---- | M] () -- C:\Users\lukas\Desktop\10371721_621485627947436_397461902765558979_n.jpg
[2014.05.27 12:47:49 | 000,000,712 | ---- | M] () -- C:\Users\Public\Desktop\Audacity.lnk
[2014.05.24 20:29:13 | 000,002,975 | ---- | M] () -- C:\Users\lukas\Desktop\HiJackThis.lnk
========== Files Created - No Company Name ==========
[2014.06.19 11:28:04 | 000,000,512 | ---- | C] () -- C:\PhysicalMBR.bin
[2014.06.19 11:23:04 | 000,003,232 | ---- | C] () -- C:\bootsqm.dat
[2014.06.18 11:34:40 | 000,000,878 | ---- | C] () -- C:\Users\lukas\Desktop\Gattaca (1997) – zástupce.lnk
[2014.06.16 23:14:51 | 000,002,340 | ---- | C] () -- C:\Windows\SysNative\drivers\fvstore.dat
[2014.06.16 13:26:15 | 000,000,216 | ---- | C] () -- C:\Users\lukas\Desktop\March of War.url
[2014.06.08 20:46:09 | 000,056,665 | ---- | C] () -- C:\Users\lukas\Desktop\10449590_322490841246747_254987811_n.jpg
[2014.06.08 14:22:34 | 000,110,871 | ---- | C] () -- C:\Users\lukas\Desktop\svatební oznámení.JPG
[2014.06.08 14:04:11 | 000,046,296 | ---- | C] () -- C:\Users\lukas\Desktop\Výstřižek.JPG
[2014.06.07 19:22:48 | 000,067,149 | ---- | C] () -- C:\Users\lukas\Desktop\10346641_674476675922801_213320548513784659_n.jpg
[2014.06.01 21:08:18 | 000,001,062 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
[2014.05.27 19:08:24 | 000,129,185 | ---- | C] () -- C:\Users\lukas\Desktop\10371721_621485627947436_397461902765558979_n.jpg
[2014.05.27 12:47:49 | 000,000,712 | ---- | C] () -- C:\Users\Public\Desktop\Audacity.lnk
[2014.05.27 12:47:49 | 000,000,712 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Audacity.lnk
[2014.05.24 20:29:13 | 000,002,975 | ---- | C] () -- C:\Users\lukas\Desktop\HiJackThis.lnk
[2014.04.11 14:10:05 | 000,060,297 | ---- | C] () -- C:\Windows\SysWow64\nglide_uninst.exe
[2013.12.11 15:09:19 | 000,256,000 | ---- | C] () -- C:\Windows\PEV.exe
[2013.12.11 15:09:19 | 000,208,896 | ---- | C] () -- C:\Windows\MBR.exe
[2013.12.11 15:09:19 | 000,098,816 | ---- | C] () -- C:\Windows\sed.exe
[2013.12.11 15:09:19 | 000,080,412 | ---- | C] () -- C:\Windows\grep.exe
[2013.12.11 15:09:19 | 000,068,096 | ---- | C] () -- C:\Windows\zip.exe
[2013.11.01 14:00:51 | 000,014,464 | ---- | C] () -- C:\Windows\SysWow64\drivers\AsUpIO.sys
[2013.11.01 13:53:26 | 000,015,232 | ---- | C] () -- C:\Windows\SysWow64\drivers\AsIO.sys
[2013.11.01 13:53:25 | 000,011,832 | ---- | C] () -- C:\Windows\SysWow64\drivers\AsInsHelp64.sys
[2013.11.01 13:53:25 | 000,010,216 | ---- | C] () -- C:\Windows\SysWow64\drivers\AsInsHelp32.sys
[2013.10.02 11:31:20 | 000,000,292 | ---- | C] () -- C:\Users\lukas\AppData\Local\HamsterBookConverter.cfg
[2013.02.27 01:05:15 | 000,011,264 | ---- | C] () -- C:\Windows\SysWow64\lua51.dll
[2012.07.24 10:06:50 | 002,434,856 | ---- | C] () -- C:\Windows\SysWow64\pbsvc_bc2.exe
[2012.04.03 17:49:53 | 000,000,218 | ---- | C] () -- C:\Users\lukas\.recently-used.xbel
========== ZeroAccess Check ==========
[2009.07.14 06:55:00 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini
[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64
[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
"" = C:\Windows\SysNative\shell32.dll -- [2009.07.14 03:41:54 | 014,161,920 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2009.07.14 03:16:14 | 012,866,560 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\fastprox.dll -- [2009.07.14 03:40:51 | 000,909,312 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2009.07.14 03:15:20 | 000,605,696 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\wbemess.dll -- [2009.07.14 03:41:56 | 000,505,856 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
========== LOP Check ==========
[2014.06.17 10:35:11 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\.minecraft
[2014.06.16 14:02:48 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\.mono
[2012.09.17 08:12:03 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\ACD Systems
[2012.09.25 23:14:28 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\Ashampoo
[2014.06.16 08:59:38 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\Audacity
[2013.12.12 13:08:17 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\AVAST Software
[2014.03.05 16:56:05 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\Battle.net
[2013.10.02 11:33:07 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\calibre
[2011.12.22 20:34:14 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\Canneverbe Limited
[2011.12.11 11:59:54 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\Canon
[2012.12.10 02:13:25 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\Carbon
[2012.03.17 22:24:37 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1
[2012.10.27 06:53:17 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\cplauncher
[2012.03.01 03:08:41 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\DAEMON Tools
[2014.06.01 21:05:56 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\DAEMON Tools Lite
[2014.05.24 07:06:53 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\Dropbox
[2014.05.15 08:05:58 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\DropboxMaster
[2013.07.24 15:34:14 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\EoN
[2013.01.29 00:57:11 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\Firefly Studios
[2014.04.29 14:52:13 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\ftblauncher
[2012.04.03 18:21:48 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\HTC
[2012.01.23 02:33:36 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\HTC.388BC06ACDAB6261375BCE37FBA2E023C0D7EE34.1
[2012.01.01 19:52:18 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\inkscape
[2013.09.28 22:36:41 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\Kalypso Media
[2012.10.10 01:37:04 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\LolClient
[2013.11.26 16:39:28 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\MCTitan161v4
[2012.01.06 19:03:50 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\OpenOffice.org
[2012.07.02 21:50:31 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\Opera
[2013.06.26 20:17:28 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\Oracle
[2013.06.17 19:30:15 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\Origin
[2012.09.17 08:19:52 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\PhotoFiltre 7
[2012.02.09 13:14:42 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\pymclevel
[2012.01.10 17:46:34 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\QIP
[2014.01.17 19:21:43 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\Samsung
[2013.02.25 10:05:52 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\SPORE
[2012.07.13 21:41:18 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\StageManager.BD092818F67280F4B42B04877600987F0111B594.1
[2012.03.01 03:21:56 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\Stardock
[2013.07.01 16:14:56 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\TERA
[2012.05.12 00:03:10 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\Tropico 4
[2013.11.09 22:36:18 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\TS3Client
[2012.09.17 08:25:20 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\Ubisoft
[2014.06.18 12:01:26 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\uTorrent
[2012.01.28 14:51:18 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\wargaming.net
[2013.04.11 12:58:12 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\Zeal Game Studio
========== Purity Check ==========
========== Custom Scans ==========
< >
[2009.07.14 07:08:49 | 000,000,006 | -H-- | C] () -- C:\Windows\Tasks\SA.DAT
[2009.07.14 07:08:49 | 000,032,630 | ---- | C] () -- C:\Windows\Tasks\SCHEDLGU.TXT
[2011.12.10 22:54:38 | 000,000,910 | ---- | C] () -- C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1575853709-75552691-4080425000-1000Core.job
[2011.12.10 22:54:39 | 000,000,962 | ---- | C] () -- C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1575853709-75552691-4080425000-1000UA.job
[2014.04.06 21:23:13 | 000,000,914 | ---- | C] () -- C:\Windows\Tasks\Adobe Flash Player Updater.job
< >
< MD5 for: AGP440.SYS >
[2009.07.14 03:52:21 | 000,061,008 | ---- | M] (Microsoft Corporation) MD5=608C14DBA7299D8CB6ED035A68A15799 -- C:\Windows\SysNative\drivers\AGP440.sys
[2009.07.14 03:52:21 | 000,061,008 | ---- | M] (Microsoft Corporation) MD5=608C14DBA7299D8CB6ED035A68A15799 -- C:\Windows\SysNative\DriverStore\FileRepository\machine.inf_amd64_neutral_9e6bb86c3b39a3e9\AGP440.sys
[2009.07.14 03:52:21 | 000,061,008 | ---- | M] (Microsoft Corporation) MD5=608C14DBA7299D8CB6ED035A68A15799 -- C:\Windows\winsxs\amd64_machine.inf_31bf3856ad364e35_6.1.7600.16385_none_1607dee2d861e021\AGP440.sys
< MD5 for: ATAPI.SYS >
[2009.07.14 03:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\erdnt\cache64\atapi.sys
[2009.07.14 03:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\SysNative\drivers\atapi.sys
[2009.07.14 03:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\SysNative\DriverStore\FileRepository\mshdc.inf_amd64_neutral_a69a58a4286f0b22\atapi.sys
[2009.07.14 03:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\winsxs\amd64_mshdc.inf_31bf3856ad364e35_6.1.7600.16385_none_392d19c13b3ad543\atapi.sys
< MD5 for: AUTOCHK.EXE >
[2009.07.14 03:14:12 | 000,668,160 | ---- | M] (Microsoft Corporation) MD5=41E4C8EBA464E7D6A5BA5E8827732AEB -- C:\Windows\SysWOW64\autochk.exe
[2009.07.14 03:14:12 | 000,668,160 | ---- | M] (Microsoft Corporation) MD5=41E4C8EBA464E7D6A5BA5E8827732AEB -- C:\Windows\winsxs\x86_microsoft-windows-autochk_31bf3856ad364e35_6.1.7600.16385_none_e1ca436d2314b860\autochk.exe
[2009.07.14 03:38:56 | 000,777,728 | ---- | M] (Microsoft Corporation) MD5=8B7F8E882A649D81CEA1EDE9BBB68FFF -- C:\Windows\SysNative\autochk.exe
[2009.07.14 03:38:56 | 000,777,728 | ---- | M] (Microsoft Corporation) MD5=8B7F8E882A649D81CEA1EDE9BBB68FFF -- C:\Windows\winsxs\amd64_microsoft-windows-autochk_31bf3856ad364e35_6.1.7600.16385_none_3de8def0db722996\autochk.exe
< MD5 for: CDROM.SYS >
[2009.07.14 01:19:54 | 000,147,456 | ---- | M] (Microsoft Corporation) MD5=83D2D75E1EFB81B3450C18131443F7DB -- C:\Windows\SysNative\drivers\cdrom.sys
[2009.07.14 01:19:54 | 000,147,456 | ---- | M] (Microsoft Corporation) MD5=83D2D75E1EFB81B3450C18131443F7DB -- C:\Windows\SysNative\DriverStore\FileRepository\cdrom.inf_amd64_neutral_8363d00ecae4322d\cdrom.sys
[2009.07.14 01:19:54 | 000,147,456 | ---- | M] (Microsoft Corporation) MD5=83D2D75E1EFB81B3450C18131443F7DB -- C:\Windows\winsxs\amd64_cdrom.inf_31bf3856ad364e35_6.1.7600.16385_none_bb9e4d89bd7870f1\cdrom.sys
< MD5 for: CNGAUDIT.DLL >
[2009.07.14 03:15:06 | 000,012,288 | ---- | M] (Microsoft Corporation) MD5=50BA656134F78AF64E4DD3C8B6FEFD7E -- C:\Windows\erdnt\cache86\cngaudit.dll
[2009.07.14 03:15:06 | 000,012,288 | ---- | M] (Microsoft Corporation) MD5=50BA656134F78AF64E4DD3C8B6FEFD7E -- C:\Windows\SysWOW64\cngaudit.dll
[2009.07.14 03:15:06 | 000,012,288 | ---- | M] (Microsoft Corporation) MD5=50BA656134F78AF64E4DD3C8B6FEFD7E -- C:\Windows\winsxs\x86_microsoft-windows-cngaudit-dll_31bf3856ad364e35_6.1.7600.16385_none_e83a414890e8132b\cngaudit.dll
[2009.07.14 03:40:20 | 000,018,944 | ---- | M] (Microsoft Corporation) MD5=86FE1B1F8FD42CD0DB641AB1CDB13093 -- C:\Windows\erdnt\cache64\cngaudit.dll
[2009.07.14 03:40:20 | 000,018,944 | ---- | M] (Microsoft Corporation) MD5=86FE1B1F8FD42CD0DB641AB1CDB13093 -- C:\Windows\SysNative\cngaudit.dll
[2009.07.14 03:40:20 | 000,018,944 | ---- | M] (Microsoft Corporation) MD5=86FE1B1F8FD42CD0DB641AB1CDB13093 -- C:\Windows\winsxs\amd64_microsoft-windows-cngaudit-dll_31bf3856ad364e35_6.1.7600.16385_none_4458dccc49458461\cngaudit.dll
< MD5 for: CRYPTSVC.DLL >
[2009.07.14 03:40:24 | 000,175,104 | ---- | M] (Microsoft Corporation) MD5=8C57411B66282C01533CB776F98AD384 -- C:\Windows\erdnt\cache64\cryptsvc.dll
[2009.07.14 03:40:24 | 000,175,104 | ---- | M] (Microsoft Corporation) MD5=8C57411B66282C01533CB776F98AD384 -- C:\Windows\SysNative\cryptsvc.dll
[2009.07.14 03:40:24 | 000,175,104 | ---- | M] (Microsoft Corporation) MD5=8C57411B66282C01533CB776F98AD384 -- C:\Windows\winsxs\amd64_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7600.16385_none_d1f48b0bb4805490\cryptsvc.dll
[2009.07.14 03:15:07 | 000,135,680 | ---- | M] (Microsoft Corporation) MD5=9C231178CE4FB385F4B54B0A9080B8A4 -- C:\Windows\erdnt\cache86\cryptsvc.dll
[2009.07.14 03:15:07 | 000,135,680 | ---- | M] (Microsoft Corporation) MD5=9C231178CE4FB385F4B54B0A9080B8A4 -- C:\Windows\SysWOW64\cryptsvc.dll
[2009.07.14 03:15:07 | 000,135,680 | ---- | M] (Microsoft Corporation) MD5=9C231178CE4FB385F4B54B0A9080B8A4 -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7600.16385_none_75d5ef87fc22e35a\cryptsvc.dll
< MD5 for: EXPLORER.EXE >
[2009.07.14 03:14:20 | 002,613,248 | ---- | M] (Microsoft Corporation) MD5=15BC38A7492BEFE831966ADB477CF76F -- C:\Windows\SysWOW64\explorer.exe
[2009.07.14 03:14:20 | 002,613,248 | ---- | M] (Microsoft Corporation) MD5=15BC38A7492BEFE831966ADB477CF76F -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16385_none_b7fe430bc7ce3761\explorer.exe
[2009.10.31 07:45:39 | 002,614,272 | ---- | M] (Microsoft Corporation) MD5=2626FC9755BE22F805D3CFA0CE3EE727 -- C:\Windows\SoftwareDistribution\Download\0cfc8dbf763c806fb82e646c7352a6fc\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16450_none_b819b343c7ba6202\explorer.exe
[2009.08.03 08:19:07 | 002,868,224 | ---- | M] (Microsoft Corporation) MD5=700073016DAC1C3D2E7E2CE4223334B6 -- C:\Windows\SoftwareDistribution\Download\00236e2e422dab929dcda56260d05350\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20500_none_ae84b558ac4eb41c\explorer.exe
[2009.10.31 08:34:59 | 002,870,272 | ---- | M] (Microsoft Corporation) MD5=9AAAEC8DAC27AA17B053E6352AD233AE -- C:\Windows\SoftwareDistribution\Download\0cfc8dbf763c806fb82e646c7352a6fc\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16450_none_adc508f19359a007\explorer.exe
[2009.08.03 07:49:47 | 002,613,248 | ---- | M] (Microsoft Corporation) MD5=9FF6C4C91A3711C0A3B18F87B08B518D -- C:\Windows\SoftwareDistribution\Download\00236e2e422dab929dcda56260d05350\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20500_none_b8d95faae0af7617\explorer.exe
[2009.10.31 08:38:38 | 002,870,272 | ---- | M] (Microsoft Corporation) MD5=B8EC4BD49CE8F6FC457721BFC210B67F -- C:\Windows\SoftwareDistribution\Download\0cfc8dbf763c806fb82e646c7352a6fc\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20563_none_ae46d6aeac7ca7c7\explorer.exe
[2009.08.03 07:35:50 | 002,613,248 | ---- | M] (Microsoft Corporation) MD5=B95EEB0F4E5EFBF1038A35B3351CF047 -- C:\Windows\SoftwareDistribution\Download\00236e2e422dab929dcda56260d05350\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16404_none_b853c407c78e3ba9\explorer.exe
[2009.07.14 03:39:10 | 002,868,224 | ---- | M] (Microsoft Corporation) MD5=C235A51CB740E45FFA0EBFB9BAFCDA64 -- C:\Windows\erdnt\cache86\explorer.exe
[2009.07.14 03:39:10 | 002,868,224 | ---- | M] (Microsoft Corporation) MD5=C235A51CB740E45FFA0EBFB9BAFCDA64 -- C:\Windows\explorer.exe
[2009.07.14 03:39:10 | 002,868,224 | ---- | M] (Microsoft Corporation) MD5=C235A51CB740E45FFA0EBFB9BAFCDA64 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16385_none_ada998b9936d7566\explorer.exe
[2009.10.31 08:00:51 | 002,614,272 | ---- | M] (Microsoft Corporation) MD5=C76153C7ECA00FA852BB0C193378F917 -- C:\Windows\SoftwareDistribution\Download\0cfc8dbf763c806fb82e646c7352a6fc\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20563_none_b89b8100e0dd69c2\explorer.exe
[2009.08.03 08:17:37 | 002,868,224 | ---- | M] (Microsoft Corporation) MD5=F170B4A061C9E026437B193B4D571799 -- C:\Windows\SoftwareDistribution\Download\00236e2e422dab929dcda56260d05350\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16404_none_adff19b5932d79ae\explorer.exe
< MD5 for: HAL.DLL >
[2009.07.14 03:47:48 | 000,263,232 | ---- | M] (Microsoft Corporation) MD5=C0A6F6E05E14FBCAEDE7796C8590B7AC -- C:\Windows\SysNative\hal.dll
[2009.07.14 03:47:48 | 000,263,232 | ---- | M] (Microsoft Corporation) MD5=C0A6F6E05E14FBCAEDE7796C8590B7AC -- C:\Windows\winsxs\amd64_microsoft-windows-hal_31bf3856ad364e35_6.1.7600.16385_none_071de44b735b3dfc\hal.dll
< MD5 for: IASTORV.SYS >
[2009.07.14 03:48:04 | 000,410,688 | ---- | M] (Intel Corporation) MD5=D83EFB6FD45DF9D55E9A1AFC63640D50 -- C:\Windows\SysNative\drivers\iaStorV.sys
[2009.07.14 03:48:04 | 000,410,688 | ---- | M] (Intel Corporation) MD5=D83EFB6FD45DF9D55E9A1AFC63640D50 -- C:\Windows\SysNative\DriverStore\FileRepository\iastorv.inf_amd64_neutral_18cccb83b34e1453\iaStorV.sys
[2009.07.14 03:48:04 | 000,410,688 | ---- | M] (Intel Corporation) MD5=D83EFB6FD45DF9D55E9A1AFC63640D50 -- C:\Windows\winsxs\amd64_iastorv.inf_31bf3856ad364e35_6.1.7600.16385_none_0b06441fa1790136\iaStorV.sys
< MD5 for: ISAPNP.SYS >
[2009.07.14 03:48:04 | 000,020,544 | ---- | M] (Microsoft Corporation) MD5=2F7B28DC3E1183E5EB418DF55C204F38 -- C:\Windows\SysNative\drivers\isapnp.sys
[2009.07.14 03:48:04 | 000,020,544 | ---- | M] (Microsoft Corporation) MD5=2F7B28DC3E1183E5EB418DF55C204F38 -- C:\Windows\SysNative\DriverStore\FileRepository\machine.inf_amd64_neutral_9e6bb86c3b39a3e9\isapnp.sys
[2009.07.14 03:48:04 | 000,020,544 | ---- | M] (Microsoft Corporation) MD5=2F7B28DC3E1183E5EB418DF55C204F38 -- C:\Windows\winsxs\amd64_machine.inf_31bf3856ad364e35_6.1.7600.16385_none_1607dee2d861e021\isapnp.sys
< MD5 for: LSASS.EXE >
[2009.07.14 03:39:16 | 000,031,232 | ---- | M] (Microsoft Corporation) MD5=0793F40B9B8A1BDD266296409DBD91EA -- C:\Windows\erdnt\cache64\lsass.exe
[2009.07.14 03:39:16 | 000,031,232 | ---- | M] (Microsoft Corporation) MD5=0793F40B9B8A1BDD266296409DBD91EA -- C:\Windows\SysNative\lsass.exe
[2009.07.14 03:39:16 | 000,031,232 | ---- | M] (Microsoft Corporation) MD5=0793F40B9B8A1BDD266296409DBD91EA -- C:\Windows\winsxs\amd64_microsoft-windows-lsa_31bf3856ad364e35_6.1.7600.16385_none_023f7c69767c3edd\lsass.exe
< MD5 for: NDIS.SYS >
[2009.07.14 03:48:27 | 000,947,776 | ---- | M] (Microsoft Corporation) MD5=CAD515DBD07D082BB317D9928CE8962C -- C:\Windows\erdnt\cache64\ndis.sys
[2009.07.14 03:48:27 | 000,947,776 | ---- | M] (Microsoft Corporation) MD5=CAD515DBD07D082BB317D9928CE8962C -- C:\Windows\SysNative\drivers\ndis.sys
[2009.07.14 03:48:27 | 000,947,776 | ---- | M] (Microsoft Corporation) MD5=CAD515DBD07D082BB317D9928CE8962C -- C:\Windows\winsxs\amd64_microsoft-windows-ndis_31bf3856ad364e35_6.1.7600.16385_none_03bc1d6e35c013bf\ndis.sys
< MD5 for: NETLOGON.DLL >
[2009.07.14 03:41:52 | 000,692,736 | ---- | M] (Microsoft Corporation) MD5=956D030D375F207B22FB111E06EF9C35 -- C:\Windows\erdnt\cache64\netlogon.dll
[2009.07.14 03:41:52 | 000,692,736 | ---- | M] (Microsoft Corporation) MD5=956D030D375F207B22FB111E06EF9C35 -- C:\Windows\SysNative\netlogon.dll
[2009.07.14 03:41:52 | 000,692,736 | ---- | M] (Microsoft Corporation) MD5=956D030D375F207B22FB111E06EF9C35 -- C:\Windows\winsxs\amd64_microsoft-windows-security-netlogon_31bf3856ad364e35_6.1.7600.16385_none_59aca8ea51aaeefe\netlogon.dll
[2009.07.14 03:16:02 | 000,563,712 | ---- | M] (Microsoft Corporation) MD5=EAA75D9000B71F10EEC04D2AE6C60E81 -- C:\Windows\erdnt\cache86\netlogon.dll
[2009.07.14 03:16:02 | 000,563,712 | ---- | M] (Microsoft Corporation) MD5=EAA75D9000B71F10EEC04D2AE6C60E81 -- C:\Windows\SysWOW64\netlogon.dll
[2009.07.14 03:16:02 | 000,563,712 | ---- | M] (Microsoft Corporation) MD5=EAA75D9000B71F10EEC04D2AE6C60E81 -- C:\Windows\winsxs\wow64_microsoft-windows-security-netlogon_31bf3856ad364e35_6.1.7600.16385_none_6401533c860bb0f9\netlogon.dll
< MD5 for: NVRAID.SYS >
[2009.07.14 03:48:27 | 000,149,056 | ---- | M] (NVIDIA Corporation) MD5=3E38712941E9BB4DDBEE00AFFE3FED3D -- C:\Windows\SysNative\drivers\nvraid.sys
[2009.07.14 03:48:27 | 000,149,056 | ---- | M] (NVIDIA Corporation) MD5=3E38712941E9BB4DDBEE00AFFE3FED3D -- C:\Windows\SysNative\DriverStore\FileRepository\nvraid.inf_amd64_neutral_5bde3fe2945bce9e\nvraid.sys
[2009.07.14 03:48:27 | 000,149,056 | ---- | M] (NVIDIA Corporation) MD5=3E38712941E9BB4DDBEE00AFFE3FED3D -- C:\Windows\winsxs\amd64_nvraid.inf_31bf3856ad364e35_6.1.7600.16385_none_95cfb4ced8afab0e\nvraid.sys
< MD5 for: NVSTOR.SYS >
[2009.07.14 03:45:45 | 000,167,488 | ---- | M] (NVIDIA Corporation) MD5=477DC4D6DEB99BE37084C9AC6D013DA1 -- C:\Windows\SysNative\drivers\nvstor.sys
[2009.07.14 03:45:45 | 000,167,488 | ---- | M] (NVIDIA Corporation) MD5=477DC4D6DEB99BE37084C9AC6D013DA1 -- C:\Windows\SysNative\DriverStore\FileRepository\nvraid.inf_amd64_neutral_5bde3fe2945bce9e\nvstor.sys
[2009.07.14 03:45:45 | 000,167,488 | ---- | M] (NVIDIA Corporation) MD5=477DC4D6DEB99BE37084C9AC6D013DA1 -- C:\Windows\winsxs\amd64_nvraid.inf_31bf3856ad364e35_6.1.7600.16385_none_95cfb4ced8afab0e\nvstor.sys
< MD5 for: SCECLI.DLL >
[2009.07.14 03:16:13 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=26073302DAEA83CC5B944C546D6B47D2 -- C:\Windows\erdnt\cache86\scecli.dll
[2009.07.14 03:16:13 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=26073302DAEA83CC5B944C546D6B47D2 -- C:\Windows\SysWOW64\scecli.dll
[2009.07.14 03:16:13 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=26073302DAEA83CC5B944C546D6B47D2 -- C:\Windows\winsxs\wow64_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7600.16385_none_9e577e55272d37b4\scecli.dll
[2009.07.14 03:41:53 | 000,232,448 | ---- | M] (Microsoft Corporation) MD5=398712DDDAEFB85EDF61DF6A07B65C79 -- C:\Windows\erdnt\cache64\scecli.dll
[2009.07.14 03:41:53 | 000,232,448 | ---- | M] (Microsoft Corporation) MD5=398712DDDAEFB85EDF61DF6A07B65C79 -- C:\Windows\SysNative\scecli.dll
[2009.07.14 03:41:53 | 000,232,448 | ---- | M] (Microsoft Corporation) MD5=398712DDDAEFB85EDF61DF6A07B65C79 -- C:\Windows\winsxs\amd64_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7600.16385_none_9402d402f2cc75b9\scecli.dll
< MD5 for: SMSS.EXE >
[2009.07.14 03:39:41 | 000,112,640 | ---- | M] (Microsoft Corporation) MD5=1911A3356FA3F77CCC825CCBAC038C2A -- C:\Windows\SysNative\smss.exe
[2009.07.14 03:39:41 | 000,112,640 | ---- | M] (Microsoft Corporation) MD5=1911A3356FA3F77CCC825CCBAC038C2A -- C:\Windows\winsxs\amd64_microsoft-windows-smss_31bf3856ad364e35_6.1.7600.16385_none_082f99a432e2a661\smss.exe
< MD5 for: SVCHOST.EXE >
[2014.05.12 07:24:30 | 000,750,392 | ---- | M] (MalwareBytes) MD5=09882E8EDD1144E6EF1AF6D1F98305EE -- C:\Program Files (x86)\Malwarebytes Anti-Malware\Chameleon\Windows\svchost.exe
[2009.07.14 03:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\erdnt\cache86\svchost.exe
[2009.07.14 03:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\SysWOW64\svchost.exe
[2009.07.14 03:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\winsxs\x86_microsoft-windows-services-svchost_31bf3856ad364e35_6.1.7600.16385_none_b591afc466a15356\svchost.exe
[2009.07.14 03:39:46 | 000,027,136 | ---- | M] (Microsoft Corporation) MD5=C78655BC80301D76ED4FEF1C1EA40A7D -- C:\Windows\erdnt\cache64\svchost.exe
[2009.07.14 03:39:46 | 000,027,136 | ---- | M] (Microsoft Corporation) MD5=C78655BC80301D76ED4FEF1C1EA40A7D -- C:\Windows\SysNative\svchost.exe
[2009.07.14 03:39:46 | 000,027,136 | ---- | M] (Microsoft Corporation) MD5=C78655BC80301D76ED4FEF1C1EA40A7D -- C:\Windows\winsxs\amd64_microsoft-windows-services-svchost_31bf3856ad364e35_6.1.7600.16385_none_11b04b481efec48c\svchost.exe
< MD5 for: TCPIP.SYS >
[2011.04.25 07:28:24 | 001,893,248 | ---- | M] (Microsoft Corporation) MD5=1F748D5439B65E0BEBD92F65048F030D -- C:\Windows\SoftwareDistribution\Download\da4463397caf4338fc547a263ebe279e\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.20951_none_0fb918de99201ffb\tcpip.sys
[2011.09.29 19:41:37 | 001,912,176 | ---- | M] (Microsoft Corporation) MD5=3810F06A4D74A7D62641EE73D6B3C660 -- C:\Windows\SoftwareDistribution\Download\c9160191b1bec61d9b277b3571f4ec8a\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.21828_none_11c6e9949627e69c\tcpip.sys
[2011.04.25 07:32:22 | 001,896,832 | ---- | M] (Microsoft Corporation) MD5=61DC720BB065D607D5823F13D2A64321 -- C:\Windows\SoftwareDistribution\Download\da4463397caf4338fc547a263ebe279e\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.16802_none_0f668bf97fd90dd3\tcpip.sys
[2010.04.09 13:06:28 | 001,898,376 | ---- | M] (Microsoft Corporation) MD5=7FC877A25796D8ADF539E64703FCA7E1 -- C:\Windows\erdnt\cache64\tcpip.sys
[2010.04.09 13:06:28 | 001,898,376 | ---- | M] (Microsoft Corporation) MD5=7FC877A25796D8ADF539E64703FCA7E1 -- C:\Windows\SysNative\drivers\tcpip.sys
[2010.04.09 13:06:28 | 001,898,376 | ---- | M] (Microsoft Corporation) MD5=7FC877A25796D8ADF539E64703FCA7E1 -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.16569_none_0f2ca8c580036f65\tcpip.sys
[2009.07.14 03:45:55 | 001,898,576 | ---- | M] (Microsoft Corporation) MD5=912107716BAB424C7870E8E6AF5E07E1 -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.16385_none_0f1303f98017479d\tcpip.sys
[2011.04.25 07:33:51 | 001,923,968 | ---- | M] (Microsoft Corporation) MD5=92CE29D95AC9DD2D0EE9061D551BA250 -- C:\Windows\SoftwareDistribution\Download\da4463397caf4338fc547a263ebe279e\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.17603_none_114de9497cfe9316\tcpip.sys
[2010.04.09 09:56:29 | 001,892,232 | ---- | M] (Microsoft Corporation) MD5=A9C0F786AC1F736891D05CE0A1D29DEB -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.20687_none_0f9ea52499331463\tcpip.sys
[2011.09.29 18:17:51 | 001,886,064 | ---- | M] (Microsoft Corporation) MD5=AC3E29880DB5659532A1AA3439304A43 -- C:\Windows\SoftwareDistribution\Download\c9160191b1bec61d9b277b3571f4ec8a\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.21060_none_0fad20ca992955d7\tcpip.sys
[2011.04.25 08:16:34 | 001,927,552 | ---- | M] (Microsoft Corporation) MD5=B77977AEB2FF159D01DB08A309989C5F -- C:\Windows\SoftwareDistribution\Download\da4463397caf4338fc547a263ebe279e\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.21712_none_11cbb5de9625357a\tcpip.sys
[2011.09.29 18:24:44 | 001,897,328 | ---- | M] (Microsoft Corporation) MD5=F18F56EFC0BFB9C87BA01C37B27F4DA5 -- C:\Windows\SoftwareDistribution\Download\c9160191b1bec61d9b277b3571f4ec8a\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.16889_none_0f170e9f80139ebc\tcpip.sys
[2011.09.29 18:29:28 | 001,923,952 | ---- | M] (Microsoft Corporation) MD5=FC62769E7BFF2896035AEED399108162 -- C:\Windows\SoftwareDistribution\Download\c9160191b1bec61d9b277b3571f4ec8a\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.17697_none_10f09b257d43f3eb\tcpip.sys
< MD5 for: USERINIT.EXE >
[2009.07.14 03:14:43 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=6DE80F60D7DE9CE6B8C2DDFDF79EF175 -- C:\Windows\erdnt\cache86\userinit.exe
[2009.07.14 03:14:43 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=6DE80F60D7DE9CE6B8C2DDFDF79EF175 -- C:\Windows\SysWOW64\userinit.exe
[2009.07.14 03:14:43 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=6DE80F60D7DE9CE6B8C2DDFDF79EF175 -- C:\Windows\winsxs\x86_microsoft-windows-userinit_31bf3856ad364e35_6.1.7600.16385_none_dbff103933038d7c\userinit.exe
[2009.07.14 03:39:48 | 000,030,208 | ---- | M] (Microsoft Corporation) MD5=6F8F1376A13114CC10C0E69274F5A4DE -- C:\Windows\erdnt\cache64\userinit.exe
[2009.07.14 03:39:48 | 000,030,208 | ---- | M] (Microsoft Corporation) MD5=6F8F1376A13114CC10C0E69274F5A4DE -- C:\Windows\SysNative\userinit.exe
[2009.07.14 03:39:48 | 000,030,208 | ---- | M] (Microsoft Corporation) MD5=6F8F1376A13114CC10C0E69274F5A4DE -- C:\Windows\winsxs\amd64_microsoft-windows-userinit_31bf3856ad364e35_6.1.7600.16385_none_381dabbceb60feb2\userinit.exe
< MD5 for: WINLOGON.EXE >
[2014.05.12 07:24:30 | 000,750,392 | ---- | M] (MalwareBytes) MD5=09882E8EDD1144E6EF1AF6D1F98305EE -- C:\Program Files (x86)\Malwarebytes Anti-Malware\Chameleon\Windows\winlogon.exe
[2009.07.14 03:39:52 | 000,389,120 | ---- | M] (Microsoft Corporation) MD5=132328DF455B0028F13BF0ABEE51A63A -- C:\Windows\erdnt\cache64\winlogon.exe
[2009.07.14 03:39:52 | 000,389,120 | ---- | M] (Microsoft Corporation) MD5=132328DF455B0028F13BF0ABEE51A63A -- C:\Windows\SysNative\winlogon.exe
[2009.07.14 03:39:52 | 000,389,120 | ---- | M] (Microsoft Corporation) MD5=132328DF455B0028F13BF0ABEE51A63A -- C:\Windows\winsxs\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7600.16385_none_cbb7f2bdeea2829c\winlogon.exe
[2009.10.28 09:01:57 | 000,389,632 | ---- | M] (Microsoft Corporation) MD5=A93D41A4D4B0D91C072D11DD8AF266DE -- C:\Windows\SoftwareDistribution\Download\0cfc8dbf763c806fb82e646c7352a6fc\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7600.20560_none_cc522fd507b468f8\winlogon.exe
[2009.10.28 08:24:40 | 000,389,632 | ---- | M] (Microsoft Corporation) MD5=DA3E2A6FA9660CC75B471530CE88453A -- C:\Windows\SoftwareDistribution\Download\0cfc8dbf763c806fb82e646c7352a6fc\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7600.16447_none_cbe534e7ee8042ad\winlogon.exe
< MD5 for: WS2_32.DLL >
[2009.07.14 03:41:58 | 000,296,448 | ---- | M] (Microsoft Corporation) MD5=7083F463788CB34FCC42F565D56F89E8 -- C:\Windows\erdnt\cache64\ws2_32.dll
[2009.07.14 03:41:58 | 000,296,448 | ---- | M] (Microsoft Corporation) MD5=7083F463788CB34FCC42F565D56F89E8 -- C:\Windows\SysNative\ws2_32.dll
[2009.07.14 03:41:58 | 000,296,448 | ---- | M] (Microsoft Corporation) MD5=7083F463788CB34FCC42F565D56F89E8 -- C:\Windows\winsxs\amd64_microsoft-windows-w..nfrastructure-ws232_31bf3856ad364e35_6.1.7600.16385_none_4eaca269e8070c6b\ws2_32.dll
[2009.07.14 03:16:20 | 000,206,336 | ---- | M] (Microsoft Corporation) MD5=DAAE8A9B8C0ACC7F858454132553C30D -- C:\Windows\erdnt\cache86\ws2_32.dll
[2009.07.14 03:16:20 | 000,206,336 | ---- | M] (Microsoft Corporation) MD5=DAAE8A9B8C0ACC7F858454132553C30D -- C:\Windows\SysWOW64\ws2_32.dll
[2009.07.14 03:16:20 | 000,206,336 | ---- | M] (Microsoft Corporation) MD5=DAAE8A9B8C0ACC7F858454132553C30D -- C:\Windows\winsxs\x86_microsoft-windows-w..nfrastructure-ws232_31bf3856ad364e35_6.1.7600.16385_none_f28e06e62fa99b35\ws2_32.dll
< >
< %systemroot%*.* /U /s >
[1 C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp files -> C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp -> ]
[2 C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\*.tmp files -> C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\*.tmp -> ]
[12 C:\Windows\Installer\*.tmp files -> C:\Windows\Installer\*.tmp -> ]
[1 C:\Windows\Installer\{D6AB1F5B-FED6-49A9-9747-327BD28FB3C7}\*.tmp files -> C:\Windows\Installer\{D6AB1F5B-FED6-49A9-9747-327BD28FB3C7}\*.tmp -> ]
< %SYSTEMDRIVE%\*.exe >
< %ALLUSERSPROFILE%\Application Data\*. >
< %ALLUSERSPROFILE%\Application Data\*.exe /s >
< %APPDATA%\*. >
[2014.06.17 10:35:11 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\.minecraft
[2014.06.16 14:02:48 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\.mono
[2012.09.17 08:12:03 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\ACD Systems
[2013.07.26 19:40:44 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\Adobe
[2012.07.13 21:41:18 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\Adobe Mini Bridge CS5
[2014.01.28 21:08:29 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\ArcSoft
[2012.09.25 23:14:28 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\Ashampoo
[2011.12.10 23:00:45 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\ATI
[2014.06.16 08:59:38 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\Audacity
[2013.12.12 13:08:17 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\AVAST Software
[2014.03.05 16:56:05 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\Battle.net
[2013.10.02 11:33:07 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\calibre
[2011.12.22 20:34:14 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\Canneverbe Limited
[2011.12.11 11:59:54 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\Canon
[2012.12.10 02:13:25 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\Carbon
[2012.03.17 22:24:37 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1
[2014.06.16 22:56:12 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\Comodo
[2012.01.01 20:17:19 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\Corel
[2012.10.27 06:53:17 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\cplauncher
[2012.03.01 03:08:41 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\DAEMON Tools
[2014.06.01 21:05:56 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\DAEMON Tools Lite
[2014.05.24 07:06:53 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\Dropbox
[2014.05.15 08:05:58 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\DropboxMaster
[2012.03.17 21:20:22 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\dvdcss
[2013.07.24 15:34:14 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\EoN
[2013.01.29 00:57:11 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\Firefly Studios
[2014.04.29 14:52:13 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\ftblauncher
[2012.09.11 00:13:22 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\Hamachi
[2012.04.03 18:21:48 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\HTC
[2012.01.23 02:33:36 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\HTC.388BC06ACDAB6261375BCE37FBA2E023C0D7EE34.1
[2011.12.10 22:49:03 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\Identities
[2012.01.01 19:52:18 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\inkscape
[2012.10.11 00:11:28 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\InstallShield
[2013.09.28 22:36:41 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\Kalypso Media
[2012.10.10 01:37:04 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\LolClient
[2011.12.10 23:07:29 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\Macromedia
[2012.09.15 01:57:04 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\Malwarebytes
[2013.11.26 16:39:28 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\MCTitan161v4
[2009.07.14 17:36:38 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\Media Center Programs
[2012.09.02 18:23:44 | 000,000,000 | --SD | M] -- C:\Users\lukas\AppData\Roaming\Microsoft
[2012.09.12 03:26:41 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\Microsoft Games
[2012.05.01 15:03:49 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\Mozilla
[2012.09.25 23:03:46 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\Nero
[2012.01.06 19:03:50 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\OpenOffice.org
[2012.07.02 21:50:31 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\Opera
[2013.06.26 20:17:28 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\Oracle
[2013.06.17 19:30:15 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\Origin
[2012.09.17 08:19:52 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\PhotoFiltre 7
[2012.02.09 13:14:42 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\pymclevel
[2012.01.10 17:46:34 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\QIP
[2014.01.17 19:21:43 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\Samsung
[2012.11.29 23:58:37 | 000,000,000 | RH-D | M] -- C:\Users\lukas\AppData\Roaming\SecuROM
[2014.06.19 10:52:35 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\Skype
[2013.02.25 10:05:52 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\SPORE
[2012.07.13 21:41:18 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\StageManager.BD092818F67280F4B42B04877600987F0111B594.1
[2012.03.01 03:21:56 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\Stardock
[2013.07.01 16:14:56 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\TERA
[2012.05.12 00:03:10 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\Tropico 4
[2013.11.09 22:36:18 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\TS3Client
[2012.09.17 08:25:20 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\Ubisoft
[2014.06.18 12:01:26 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\uTorrent
[2013.07.25 19:43:18 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\vlc
[2012.01.28 14:51:18 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\wargaming.net
[2014.06.03 21:31:33 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\Winamp
[2011.12.13 15:50:35 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\WinRAR
[2013.04.11 12:58:12 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\Zeal Game Studio
< %APPDATA%\*.exe /s >
[2012.10.26 17:03:49 | 000,263,186 | ---- | M] () -- C:\Users\lukas\AppData\Roaming\cplauncher\minecraft.exe
[2012.10.26 17:03:50 | 000,694,784 | ---- | M] (Bagr.Craft) -- C:\Users\lukas\AppData\Roaming\cplauncher\minecraftsp.exe
[2012.04.14 10:34:25 | 001,485,689 | ---- | M] () -- C:\Users\lukas\AppData\Roaming\cplauncher\no_modded\.minecraft\texturepacks\mcpatcher-2.3.4_02.exe
[2014.05.08 03:52:34 | 032,668,056 | ---- | M] (Dropbox, Inc.) -- C:\Users\lukas\AppData\Roaming\Dropbox\bin\Dropbox.exe
[2014.05.08 03:54:32 | 000,243,632 | ---- | M] (Dropbox, Inc.) -- C:\Users\lukas\AppData\Roaming\Dropbox\bin\DropboxUninstaller.exe
[2014.05.08 03:52:36 | 000,143,656 | ---- | M] (Dropbox, Inc.) -- C:\Users\lukas\AppData\Roaming\Dropbox\bin\DropboxUpdateHelper.exe
[2013.09.15 21:08:15 | 000,106,044 | ---- | M] () -- C:\Users\lukas\AppData\Roaming\MCTitan161v4\Odinstalovat.exe
[2014.05.24 20:29:12 | 000,388,096 | R--- | M] (Trend Micro Inc.) -- C:\Users\lukas\AppData\Roaming\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe
[2014.04.11 18:40:21 | 000,026,624 | R--- | M] () -- C:\Users\lukas\AppData\Roaming\Microsoft\Installer\{6910C412-A523-493C-BC22-0213CD7F4F3A}\Icon6910C412.exe
[2012.03.21 11:38:24 | 000,010,134 | R--- | M] () -- C:\Users\lukas\AppData\Roaming\Microsoft\Installer\{DA2737A4-B639-96F4-1CC2-30D2919EE1FB}\ARPPRODUCTICON.exe
< %systemroot%\*. /mp /s >
< %systemroot%\system32\*.dll /lockedfiles >
< %systemroot%\Tasks\*.job /lockedfiles >
< %systemroot%\system32\drivers\*.sys /lockedfiles >
< %systemroot%\System32\config\*.sav >
< %systemroot%\system32\*.dll /lockedfiles >
< %systemroot%\system32\drivers\*.sys /3 >
< %systemroot%\system32\*.* /3 >
[2014.06.18 10:35:30 | 000,215,128 | ---- | M] () -- C:\Windows\system32\PnkBstrB.ex0
[2014.06.18 10:37:50 | 000,282,296 | ---- | M] () -- C:\Windows\system32\PnkBstrB.exe
[2014.06.18 10:37:50 | 000,282,296 | ---- | M] () -- C:\Windows\system32\PnkBstrB.xtr
< %SYSTEMDRIVE%\*.exe >
< >
< HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s >
< reg query "HKLM\Software\Microsoft\Windows NT\CurrentVersion\winlogon" /v GinaDLL /c >
< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv" /v ImagePath /c >
HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\SERVICES\WUAUSERV
IMAGEPATH REG_EXPAND_SZ %systemroot%\system32\svchost.exe -k netsvcs
< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS" /v ImagePath /c >
HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\SERVICES\BITS
IMAGEPATH REG_EXPAND_SZ %SystemRoot%\System32\svchost.exe -k netsvcs
< >
< type c:\boot.ini >> test.txt /c >
< %SystemDrive%\PhysicalMBR.bin /md5 >
[2014.06.19 11:28:04 | 000,000,512 | ---- | M] () MD5=DE60263F00254E0E343B7F9C29AC7A95 -- C:\PhysicalMBR.bin
< >
< *crack* /s >
[2014.04.29 14:38:07 | 000,001,062 | ---- | M] () -- \Users\lukas\AppData\Roaming\ftblauncher\ModPacks\MindCrack\logo_minecrack.png
[2014.04.29 14:38:07 | 000,008,681 | ---- | M] () -- \Users\lukas\AppData\Roaming\ftblauncher\ModPacks\MindCrack\mindcrack_splash.png
< *keygen* /s >
< *AntiWPA* /s >
< *loader* /s >
[2010.03.09 05:28:40 | 005,297,608 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS5\Photodownloader.exe
[2010.03.09 02:38:58 | 000,011,161 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS5\apd\shared_assets\bitmaps\main_window\C_LoadError.png
[2010.03.09 02:38:58 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS5\apd\shared_assets\locales\da_dk\Photodownloader.ini
[2010.03.09 02:39:00 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS5\apd\shared_assets\locales\de_de\Photodownloader.ini
[2010.03.09 02:39:00 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS5\apd\shared_assets\locales\en_us\Photodownloader.ini
[2010.03.09 02:39:00 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS5\apd\shared_assets\locales\es_es\Photodownloader.ini
[2010.03.09 02:39:00 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS5\apd\shared_assets\locales\fi_fi\Photodownloader.ini
[2010.03.09 02:39:00 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS5\apd\shared_assets\locales\fr_fr\Photodownloader.ini
[2010.03.09 02:39:00 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS5\apd\shared_assets\locales\it_it\Photodownloader.ini
[2010.03.09 02:39:00 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS5\apd\shared_assets\locales\ja_jp\Photodownloader.ini
[2010.03.09 02:39:00 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS5\apd\shared_assets\locales\ko_kr\Photodownloader.ini
[2010.03.09 02:39:00 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS5\apd\shared_assets\locales\nl_nl\Photodownloader.ini
[2010.03.09 02:39:00 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS5\apd\shared_assets\locales\no_no\Photodownloader.ini
[2010.03.09 02:39:00 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS5\apd\shared_assets\locales\pt_br\Photodownloader.ini
[2010.03.09 02:39:00 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS5\apd\shared_assets\locales\sv_se\Photodownloader.ini
[2010.03.09 02:39:00 | 000,000,308 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS5\apd\shared_assets\locales\zh_cn\Photodownloader.ini
[2010.03.09 02:39:00 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS5\apd\shared_assets\locales\zh_tw\Photodownloader.ini
[2013.11.15 14:18:42 | 000,021,106 | ---- | M] () -- \Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.15\WebResources1.8.0.15\js\configLoader.js
[2013.11.13 16:55:18 | 000,002,586 | ---- | M] () -- \Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.15\WebResources1.8.0.15\js\scriptLoader.js
[2014.04.29 17:39:00 | 000,025,150 | ---- | M] () -- \Program Files (x86)\AdTrustMedia\PrivDog\2.1.0.23\WebResources2.1.0.23\js\configLoader.js
[2012.10.28 01:26:28 | 000,000,194 | ---- | M] () -- \Program Files (x86)\Common Files\Blizzard Entertainment\BlizzardDownloader.ini
[2008.07.30 11:06:58 | 000,072,192 | ---- | M] () -- \Program Files (x86)\Common Files\microsoft shared\VS7Debug\coloader80.dll
[2008.07.29 04:43:16 | 000,004,096 | ---- | M] () -- \Program Files (x86)\Common Files\microsoft shared\VS7Debug\coloader80.tlb
[2011.09.15 10:09:22 | 000,044,032 | ---- | M] () -- \Program Files (x86)\Hamster Soft\Hamster Free EbookConverter\Calibre\DLLs\PyISAPI_loader.dll
[2011.01.17 17:21:04 | 000,006,263 | ---- | M] () -- \Program Files (x86)\OpenOffice.org 3\Basis\program\pythonloader.py
[2012.01.06 19:03:21 | 000,021,504 | ---- | M] () -- \Program Files (x86)\OpenOffice.org 3\Basis\program\pythonloader.uno.dll
[2011.01.17 20:07:52 | 000,000,171 | ---- | M] () -- \Program Files (x86)\OpenOffice.org 3\Basis\program\pythonloader.uno.ini
[2012.01.06 19:03:29 | 000,029,184 | ---- | M] () -- \Program Files (x86)\OpenOffice.org 3\URE\bin\javaloader.uno.dll
[2010.11.19 13:24:20 | 000,003,689 | ---- | M] () -- \Program Files (x86)\OpenOffice.org 3\URE\java\unoloader.jar
[2013.03.01 22:00:24 | 000,330,040 | ---- | M] () -- \Program Files (x86)\Ubisoft\Ubisoft Game Launcher\ubiorbitapi_r2_loader.dll
[2013.03.01 22:00:25 | 000,294,400 | ---- | M] () -- \Program Files (x86)\Ubisoft\Ubisoft Game Launcher\uplay_r1_loader.dll
[2012.02.23 01:58:36 | 000,078,336 | ---- | M] () -- \Program Files\Adobe\Adobe Photoshop Lightroom 4\Support\DynamicLinkMediaServer\dynamiclinkmediaserver\1.0\MXF_SDK_MetaMetadata_BinaryLoader_4.4.3.dll
[2012.02.23 01:58:36 | 000,155,136 | ---- | M] () -- \Program Files\Adobe\Adobe Photoshop Lightroom 4\Support\DynamicLinkMediaServer\dynamiclinkmediaserver\1.0\MXF_SDK_MetaMetadata_XSDLoader2_4.4.3.dll
[2012.02.23 01:58:36 | 000,117,248 | ---- | M] () -- \Program Files\Adobe\Adobe Photoshop Lightroom 4\Support\DynamicLinkMediaServer\dynamiclinkmediaserver\1.0\MXF_SDK_MetaMetadata_XSDLoader_4.4.3.dll
[2013.05.29 14:23:58 | 000,099,328 | ---- | M] () -- \Program Files\Adobe\Adobe Photoshop Lightroom 5\Support\DynamicLinkMediaServer\dynamiclinkmediaserver\1.0\MXF_SDK_MetaMetadata_BinaryLoader_4.4.20.dll
[2013.05.29 14:23:58 | 000,196,608 | ---- | M] () -- \Program Files\Adobe\Adobe Photoshop Lightroom 5\Support\DynamicLinkMediaServer\dynamiclinkmediaserver\1.0\MXF_SDK_MetaMetadata_XSDLoader2_4.4.20.dll
[2013.05.29 14:23:58 | 000,148,480 | ---- | M] () -- \Program Files\Adobe\Adobe Photoshop Lightroom 5\Support\DynamicLinkMediaServer\dynamiclinkmediaserver\1.0\MXF_SDK_MetaMetadata_XSDLoader_4.4.20.dll
[2014.04.10 06:22:57 | 000,072,480 | ---- | M] () -- \Program Files\AVAST Software\Avast\aswWrcIELoader32.exe
[2014.04.10 06:22:57 | 000,085,376 | ---- | M] () -- \Program Files\AVAST Software\Avast\aswWrcIELoader64.exe
[2 \Program Files\AVAST Software\Avast\*.tmp files -> \Program Files\AVAST Software\Avast\*.tmp -> ]
[2011.11.17 15:50:34 | 000,000,232 | ---- | M] () -- \ProgramData\Nero\Nero 10\OnlineServices\NOSWebConfig\MySpace\uploadError.xml
[2013.08.28 19:38:20 | 000,000,340 | ---- | M] () -- \ProgramData\Spybot - Search & Destroy\Recovery\WinDownloadergen.zip
[2013.08.28 19:38:21 | 000,317,104 | ---- | M] () -- \ProgramData\Spybot - Search & Destroy\Recovery\WinDownloadergen1.zip
[2012.10.01 13:36:00 | 000,387,800 | ---- | M] () -- \ProgramData\TERA\launcher\live\downloader.bundle
[2012.07.10 00:11:00 | 000,693,704 | ---- | M] () -- \ProgramData\TERA\launcher\live\downloader.dll
[2011.11.17 15:50:34 | 000,000,232 | ---- | M] () -- \Users\All Users\Nero\Nero 10\OnlineServices\NOSWebConfig\MySpace\uploadError.xml
[2013.08.28 19:38:20 | 000,000,340 | ---- | M] () -- \Users\All Users\Spybot - Search & Destroy\Recovery\WinDownloadergen.zip
[2013.08.28 19:38:21 | 000,317,104 | ---- | M] () -- \Users\All Users\Spybot - Search & Destroy\Recovery\WinDownloadergen1.zip
[2012.10.01 13:36:00 | 000,387,800 | ---- | M] () -- \Users\All Users\TERA\launcher\live\downloader.bundle
[2012.07.10 00:11:00 | 000,693,704 | ---- | M] () -- \Users\All Users\TERA\launcher\live\downloader.dll
[2014.04.14 17:04:04 | 000,019,765 | ---- | M] () -- \Users\lukas\AppData\Local\Google\Chrome\User Data\Default\Extensions\cmaiofennmphjldldcpphcechfnnohja\2.1.0.23_0\js\configLoader.js
[2014.04.14 17:04:04 | 000,002,597 | ---- | M] () -- \Users\lukas\AppData\Local\Google\Chrome\User Data\Default\Extensions\cmaiofennmphjldldcpphcechfnnohja\2.1.0.23_0\js\scriptLoader.js
[2014.06.06 09:18:28 | 000,009,418 | ---- | M] () -- \Users\lukas\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.7.1_0\img\gifloader.gif
[2014.03.13 23:20:16 | 000,003,208 | ---- | M] () -- \Users\lukas\AppData\Local\Google\Chrome\User Data\Default\Extensions\knebimhcckndhiglamoabbnifdkijidd\2.5.8_0\skin\ajax-loader.gif
[2012.09.16 20:48:33 | 000,000,673 | ---- | M] () -- \Users\lukas\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pacgpkgadgmibnhpdidcnfafllnmeomc\2.3.15.10_0\Media\ajax-loader.gif
[2012.09.16 16:18:22 | 000,000,673 | ---- | M] () -- \Users\lukas\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pacgpkgadgmibnhpdidcnfafllnmeomc\2.3.7.1_0\Media\ajax-loader.gif
[2014.02.18 18:46:42 | 000,072,638 | ---- | M] () -- \Users\lukas\AppData\Local\Skype\Apps\login\images\loader.gif
[2014.02.18 18:46:42 | 000,003,032 | ---- | M] () -- \Users\lukas\AppData\Local\Skype\Apps\login\images\loader.png
[2014.02.18 18:46:42 | 000,006,012 | ---- | M] () -- \Users\lukas\AppData\Local\Skype\Apps\login\images\normal\loader_15fps.gif
[2014.02.18 18:46:42 | 000,021,956 | ---- | M] () -- \Users\lukas\AppData\Local\Skype\Apps\login\images\normal\loader_30fps.gif
[2014.02.18 18:46:42 | 000,009,772 | ---- | M] () -- \Users\lukas\AppData\Local\Skype\Apps\login\images\retina\loader@2x.png
[2012.08.23 11:19:47 | 000,031,138 | ---- | M] () -- \Users\lukas\AppData\Roaming\cplauncher\no_modded\.minecraft\ForgeModLoader-0.log
[2012.04.11 09:26:50 | 000,006,911 | ---- | M] () -- \Users\lukas\AppData\Roaming\cplauncher\no_modded\.minecraft\ModLoader.txt
[2012.04.11 09:25:49 | 000,000,163 | ---- | M] () -- \Users\lukas\AppData\Roaming\cplauncher\no_modded\.minecraft\config\ModLoader.cfg
[2012.04.23 20:31:42 | 000,001,980 | ---- | M] () -- \Users\lukas\AppData\Roaming\cplauncher\no_modded\.minecraft\mods\ComputerCraft\org\luaj\vm2\luajc\JavaLoader.class
[2012.04.03 18:21:48 | 000,769,532 | ---- | M] () -- \Users\lukas\AppData\Roaming\HTC\htcUPCTLoader.bmp
[2012.04.03 18:21:50 | 001,959,698 | ---- | M] () -- \Users\lukas\AppData\Roaming\HTC\htcUPCTLoader.dmp
[2013.03.25 17:21:00 | 000,388,776 | ---- | M] () -- \Users\lukas\AppData\Roaming\TERA\launcher\live\downloader.bundle
[2013.03.20 08:02:00 | 000,694,656 | ---- | M] () -- \Users\lukas\AppData\Roaming\TERA\launcher\live\downloader.dll
[2012.01.30 19:36:40 | 000,293,888 | ---- | M] () -- \Users\Public\Sony Online Entertainment\Installed Games\LaunchPad.libs\wws_crashreport_uploader.exe
[2013.04.27 19:16:36 | 000,446,464 | ---- | M] () -- \Windows\NEXON_EU_DownloaderUpdater.exe
[2009.07.14 14:25:34 | 002,202,645 | R--- | M] () -- \Windows\Setup\SCRIPTS\Windows7Loader.exe
[2011.02.05 15:09:50 | 000,005,799 | ---- | M] () -- \Windows\SoftwareDistribution\Download\d639f7376b627c8f37f9acbbf7c6234a\amd64_microsoft-windows-e..vironment-os-loader_31bf3856ad364e35_6.1.7600.16757_none_9c05f879842e1792.manifest
[2011.02.05 15:05:03 | 000,005,799 | ---- | M] () -- \Windows\SoftwareDistribution\Download\d639f7376b627c8f37f9acbbf7c6234a\amd64_microsoft-windows-e..vironment-os-loader_31bf3856ad364e35_6.1.7600.20897_none_9c6455949d6c2720.manifest
[2011.02.05 19:34:40 | 000,005,799 | ---- | M] () -- \Windows\SoftwareDistribution\Download\d639f7376b627c8f37f9acbbf7c6234a\amd64_microsoft-windows-e..vironment-os-loader_31bf3856ad364e35_6.1.7601.17556_none_9deb553581556a27.manifest
[2011.02.05 15:10:12 | 000,005,799 | ---- | M] () -- \Windows\SoftwareDistribution\Download\d639f7376b627c8f37f9acbbf7c6234a\amd64_microsoft-windows-e..vironment-os-loader_31bf3856ad364e35_6.1.7601.21655_none_9e73f1b69a73f09a.manifest
[2009.07.14 03:03:49 | 000,003,584 | -H-- | M] () -- \Windows\System32\api-ms-win-core-libraryloader-l1-1-0.dll
[2009.07.14 03:15:12 | 000,038,400 | ---- | M] () -- \Windows\System32\dmloader.dll
[2009.07.14 03:03:49 | 000,003,584 | -H-- | M] () -- \Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
[2009.07.14 03:15:12 | 000,038,400 | ---- | M] () -- \Windows\SysWOW64\dmloader.dll
[2009.07.14 03:40:31 | 000,047,616 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-audio-dmusic_31bf3856ad364e35_6.1.7600.16385_none_a1e90d98a953d601\dmloader.dll
[2009.07.14 03:24:53 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.16385_none_66a6e19d9580f9e3\api-ms-win-core-libraryloader-l1-1-0.dll
[2009.07.14 17:17:49 | 000,004,431 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_8f37605116ba80bc.manifest
[2009.07.14 17:17:49 | 000,033,360 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_8f37605116ba80bc_winload.efi.mui_35ee487d
[2009.07.14 17:17:49 | 000,034,896 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_8f37605116ba80bc_winload.exe.mui_3bc5b827
[2009.07.14 17:17:49 | 000,029,776 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_8f37605116ba80bc_winresume.efi.mui_f412814e
[2009.07.14 17:17:49 | 000,030,288 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_8f37605116ba80bc_winresume.exe.mui_ff8b5358
[2009.07.14 04:58:45 | 000,005,745 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7600.16385_none_b71babd98657e6ef.manifest
[2009.07.14 04:58:45 | 000,641,088 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7600.16385_none_b71babd98657e6ef_winload.efi_75834aa0
[2009.07.14 04:58:45 | 000,604,192 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7600.16385_none_b71babd98657e6ef_winload.exe_75835076
[2009.07.14 04:58:45 | 000,557,136 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7600.16385_none_b71babd98657e6ef_winresume.efi_85cd069f
[2009.07.14 04:58:45 | 000,518,352 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7600.16385_none_b71babd98657e6ef_winresume.exe_85cd1215
[2009.07.14 04:57:50 | 000,002,896 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-s..ive-blackbox-loader_31bf3856ad364e35_6.1.7600.16385_none_c72819e06acceb59.manifest
[2009.07.14 04:57:50 | 000,019,008 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-s..ive-blackbox-loader_31bf3856ad364e35_6.1.7600.16385_none_c72819e06acceb59_spldr.sys_98bd87a0
[2009.07.14 17:15:51 | 000,004,431 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_8f37605116ba80bc.manifest
[2009.07.14 04:13:42 | 000,005,745 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7600.16385_none_b71babd98657e6ef.manifest
[2011.02.05 15:09:31 | 000,005,745 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7600.16757_none_b73e23c9863dba66.manifest
[2011.02.05 15:04:44 | 000,005,745 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7600.20897_none_b79c80e49f7bc9f4.manifest
[2011.02.05 19:34:23 | 000,005,745 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.17556_none_b923808583650cfb.manifest
[2011.02.05 15:09:57 | 000,005,745 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.21655_none_b9ac1d069c83936e.manifest
[2009.07.14 04:18:27 | 000,002,896 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-s..ive-blackbox-loader_31bf3856ad364e35_6.1.7600.16385_none_c72819e06acceb59.manifest
[2009.07.14 03:15:12 | 000,038,400 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-audio-dmusic_31bf3856ad364e35_6.1.7600.16385_none_45ca7214f0f664cb\dmloader.dll
[2009.07.14 03:03:49 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.16385_none_0a884619dd2388ad\api-ms-win-core-libraryloader-l1-1-0.dll
< *minodlogin* /s >
< *tnod* /s >
[2013.09.19 08:23:27 | 000,001,016 | ---- | M] () -- \ProgramData\Spybot - Search & Destroy\Recovery\patnodinstalaninformace.zip
[2013.09.19 08:23:28 | 000,001,061 | ---- | M] () -- \ProgramData\Spybot - Search & Destroy\Recovery\patnodinstalaninformace1.zip
[2013.09.19 08:23:29 | 000,000,989 | ---- | M] () -- \ProgramData\Spybot - Search & Destroy\Recovery\patnodinstalaninformace2.zip
[2012.09.14 19:10:20 | 000,001,043 | ---- | M] () -- \ProgramData\Spybot - Search & Destroy\Recovery\patnodkaz.zip
[2012.09.14 19:10:20 | 000,001,047 | ---- | M] () -- \ProgramData\Spybot - Search & Destroy\Recovery\patnodkaz1.zip
[2012.09.14 19:10:24 | 000,001,202 | ---- | M] () -- \ProgramData\Spybot - Search & Destroy\Recovery\patnodkaz2.zip
[2012.09.14 19:10:24 | 000,001,020 | ---- | M] () -- \ProgramData\Spybot - Search & Destroy\Recovery\patnodkaz3.zip
[2012.09.14 19:10:24 | 000,001,035 | ---- | M] () -- \ProgramData\Spybot - Search & Destroy\Recovery\patnodkaz4.zip
[2013.09.19 08:23:27 | 000,001,016 | ---- | M] () -- \Users\All Users\Spybot - Search & Destroy\Recovery\patnodinstalaninformace.zip
[2013.09.19 08:23:28 | 000,001,061 | ---- | M] () -- \Users\All Users\Spybot - Search & Destroy\Recovery\patnodinstalaninformace1.zip
[2013.09.19 08:23:29 | 000,000,989 | ---- | M] () -- \Users\All Users\Spybot - Search & Destroy\Recovery\patnodinstalaninformace2.zip
[2012.09.14 19:10:20 | 000,001,043 | ---- | M] () -- \Users\All Users\Spybot - Search & Destroy\Recovery\patnodkaz.zip
[2012.09.14 19:10:20 | 000,001,047 | ---- | M] () -- \Users\All Users\Spybot - Search & Destroy\Recovery\patnodkaz1.zip
[2012.09.14 19:10:24 | 000,001,202 | ---- | M] () -- \Users\All Users\Spybot - Search & Destroy\Recovery\patnodkaz2.zip
[2012.09.14 19:10:24 | 000,001,020 | ---- | M] () -- \Users\All Users\Spybot - Search & Destroy\Recovery\patnodkaz3.zip
[2012.09.14 19:10:24 | 000,001,035 | ---- | M] () -- \Users\All Users\Spybot - Search & Destroy\Recovery\patnodkaz4.zip
< *AutoKMS* /s >
< *activator* /s >
< *serial* /s >
[2011.09.16 08:11:52 | 000,247,080 | R--- | M] () -- \Program Files (x86)\Common Files\Nero\BDCore\boost_serialization-mt.dll
[2011.09.16 08:11:52 | 000,166,696 | R--- | M] () -- \Program Files (x86)\Common Files\Nero\BDCore\boost_wserialization-mt.dll
[2006.01.27 01:44:04 | 000,000,612 | ---- | M] () -- \Program Files (x86)\Microsoft Visual Studio 9.0\VB\Snippets\1033\other\connectivity\EnumerateSerialPorts.snippet
[2006.01.27 01:44:04 | 000,001,198 | ---- | M] () -- \Program Files (x86)\Microsoft Visual Studio 9.0\VB\Snippets\1033\other\connectivity\ReadDatafromaSerialPort.snippet
[2006.01.27 01:44:04 | 000,001,512 | ---- | M] () -- \Program Files (x86)\Microsoft Visual Studio 9.0\VB\Snippets\1033\other\connectivity\UseaSerialPorttoDialaPhoneNumber.snippet
[2009.06.10 23:13:54 | 000,970,752 | ---- | M] () -- \Program Files (x86)\Reference Assemblies\Microsoft\Framework\v3.0\System.Runtime.Serialization.dll
[2009.07.14 17:17:32 | 000,090,112 | ---- | M] () -- \Program Files (x86)\Reference Assemblies\Microsoft\Framework\v3.0\cs\System.RunTime.Serialization.Resources.dll
[2008.06.14 02:32:10 | 000,285,032 | ---- | M] () -- \Program Files (x86)\Reference Assemblies\Microsoft\Framework\v3.0\en\System.Runtime.Serialization.xml
[2009.06.10 22:30:43 | 000,847,872 | ---- | M] () -- \Program Files\Reference Assemblies\Microsoft\Framework\v3.0\System.Runtime.Serialization.dll
[2009.07.14 17:17:32 | 000,090,112 | ---- | M] () -- \Program Files\Reference Assemblies\Microsoft\Framework\v3.0\cs\System.RunTime.Serialization.Resources.dll
[2014.06.10 19:39:22 | 000,003,072 | ---- | M] () -- \Users\lukas\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.serialzone.cz_0.localstorage
[2014.06.10 19:39:22 | 000,003,608 | ---- | M] () -- \Users\lukas\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.serialzone.cz_0.localstorage-journal
[2009.07.14 17:17:20 | 000,011,776 | ---- | M] () -- \Windows\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap.resources\2.0.0.0_cs_b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2009.06.10 23:23:19 | 000,131,072 | ---- | M] () -- \Windows\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap\2.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.dll
[2009.07.14 17:17:32 | 000,090,112 | ---- | M] () -- \Windows\assembly\GAC_MSIL\system.runtime.serialization.resources\3.0.0.0_cs_b77a5c561934e089\System.RunTime.Serialization.Resources.dll
[2009.06.10 23:13:54 | 000,970,752 | ---- | M] () -- \Windows\assembly\GAC_MSIL\System.Runtime.Serialization\3.0.0.0__b77a5c561934e089\System.Runtime.Serialization.dll
[2009.07.14 06:56:20 | 002,347,008 | ---- | M] () -- \Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Seri#\39e53f507d9cbc5c10a2f47c4b0d09dd\System.Runtime.Serialization.ni.dll
[2009.07.14 06:55:32 | 000,310,784 | ---- | M] () -- \Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Seri#\d57d865568209a71d63739fa448ed6df\System.Runtime.Serialization.Formatters.Soap.ni.dll
[2009.07.14 06:59:40 | 003,073,536 | ---- | M] () -- \Windows\assembly\NativeImages_v2.0.50727_64\System.Runtime.Seri#\12aaff696a0c54773664b4c5407deaa2\System.Runtime.Serialization.ni.dll
[2009.07.14 06:57:59 | 000,396,288 | ---- | M] () -- \Windows\assembly\NativeImages_v2.0.50727_64\System.Runtime.Seri#\d0c6d3aadce1e38bbcb06905e132a503\System.Runtime.Serialization.Formatters.Soap.ni.dll
[2012.09.27 05:33:31 | 000,310,272 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_32\System.Runtime.Seri#\d0ff3383438d688a0118d0fa19ed1dc4\System.Runtime.Serialization.Formatters.Soap.ni.dll
[2012.09.27 05:33:28 | 002,625,024 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_32\System.Runtime.Seri#\e9f8a45b1063d6c6a62718c88a5623d1\System.Runtime.Serialization.ni.dll
[2012.09.27 07:03:21 | 003,375,616 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_64\System.Runtime.Seri#\08fba6b56d838ad48b4451c82e5728d4\System.Runtime.Serialization.ni.dll
[2012.09.27 07:03:28 | 000,374,272 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_64\System.Runtime.Seri#\b468f9d8655e91b7a6aa11473eca4a97\System.Runtime.Serialization.Formatters.Soap.ni.dll
[2013.11.22 21:36:32 | 000,122,264 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.dll
[2013.11.22 21:36:31 | 001,026,936 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization\v4.0_4.0.0.0__b77a5c561934e089\System.Runtime.Serialization.dll
[2009.06.10 23:23:19 | 000,131,072 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v2.0.50727\System.Runtime.Serialization.Formatters.Soap.dll
[2009.07.14 17:17:21 | 000,011,776 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v2.0.50727\cs\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2008.06.02 09:01:28 | 000,009,272 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v2.0.50727\en\System.Runtime.Serialization.Formatters.Soap.xml
[2009.06.10 23:14:06 | 000,970,752 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\System.Runtime.Serialization.dll
[2010.03.18 14:16:28 | 001,026,936 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\System.Runtime.Serialization.dll
[2010.03.18 14:16:28 | 000,122,264 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\System.Runtime.Serialization.Formatters.Soap.dll
[2009.06.10 22:40:06 | 000,131,072 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v2.0.50727\System.Runtime.Serialization.Formatters.Soap.dll
[2009.07.14 17:17:19 | 000,011,776 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v2.0.50727\cs\System.Runtime.Serialization.Formatters.Soap.Resources.dll
[2009.06.10 22:30:46 | 000,847,872 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\System.Runtime.Serialization.dll
[2010.03.18 14:16:28 | 001,026,936 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v4.0.30319\System.Runtime.Serialization.dll
[2010.03.18 14:16:28 | 000,122,264 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v4.0.30319\System.Runtime.Serialization.Formatters.Soap.dll
[2009.07.14 03:16:13 | 000,015,360 | ---- | M] () -- \Windows\System32\serialui.dll
[2009.07.14 17:17:13 | 000,005,120 | ---- | M] () -- \Windows\System32\cs-CZ\serialui.dll.mui
[2009.07.14 02:00:40 | 000,094,208 | ---- | M] () -- \Windows\System32\DriverStore\FileRepository\msports.inf_amd64_neutral_fdcfb86ce78678d1\serial.sys
[2009.06.10 22:37:50 | 000,038,400 | ---- | M] () -- \Windows\System32\DriverStore\FileRepository\smartcrd.inf_amd64_neutral_6fb75ea318f84fe5\grserial.sys
[2009.07.14 03:16:13 | 000,015,360 | ---- | M] () -- \Windows\SysWOW64\serialui.dll
[2009.07.14 17:17:13 | 000,005,120 | ---- | M] () -- \Windows\SysWOW64\cs-CZ\serialui.dll.mui
[2009.07.14 17:17:19 | 000,011,776 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-n..xcorecomp.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_1c215c9ac50719c5\System.Runtime.Serialization.Formatters.Soap.Resources.dll
[2009.07.14 17:17:22 | 000,005,120 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-u..em-config.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_aa5fd338fd5bcb23\serialui.dll.mui
[2009.07.14 03:41:54 | 000,017,920 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-unimodem-config_31bf3856ad364e35_6.1.7600.16385_none_50f69335385bc360\serialui.dll
[2009.07.14 17:17:32 | 000,090,112 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-wcfcorecomp.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_b96904386c2fe002\System.RunTime.Serialization.Resources.dll
[2009.07.14 17:17:25 | 000,009,728 | ---- | M] () -- \Windows\winsxs\amd64_msports.inf.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_20ab142d65ed6acc\serial.sys.mui
[2009.07.14 02:00:40 | 000,094,208 | ---- | M] () -- \Windows\winsxs\amd64_msports.inf_31bf3856ad364e35_6.1.7600.16385_none_548ca258d20f4ada\serial.sys
[2009.06.10 22:40:06 | 000,131,072 | ---- | M] () -- \Windows\winsxs\amd64_netfx-system.runtim..ion.formatters.soap_b03f5f7f11d50a3a_6.1.7600.16385_none_a9d1bee515273f56\System.Runtime.Serialization.Formatters.Soap.dll
[2009.06.10 22:37:50 | 000,038,400 | ---- | M] () -- \Windows\winsxs\amd64_smartcrd.inf_31bf3856ad364e35_6.1.7600.16385_none_ce9ed3064deed3aa\grserial.sys
[2009.06.10 22:30:46 | 000,847,872 | ---- | M] () -- \Windows\winsxs\amd64_wcf-system.runtime.serialization.ref_b03f5f7f11d50a3a_6.1.7600.16385_none_5943b25a748cb06c\System.Runtime.Serialization.dll
[2009.06.10 22:30:43 | 000,847,872 | ---- | M] () -- \Windows\winsxs\amd64_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7600.16385_none_941abf24c884ab05\System.Runtime.Serialization.dll
[2009.07.14 04:57:21 | 000,002,766 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..gertransport-serial_31bf3856ad364e35_6.1.7600.16385_none_6daa7ec5c65bf5bc.manifest
[2009.07.14 04:57:21 | 000,017,984 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..gertransport-serial_31bf3856ad364e35_6.1.7600.16385_none_6daa7ec5c65bf5bc_kdcom.dll_db5e7744
[2009.07.14 17:17:49 | 000,005,120 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-u..em-config.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_aa5fd338fd5bcb23_serialui.dll.mui_7d29d2a3
[2009.07.14 04:57:29 | 000,017,920 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-unimodem-config_31bf3856ad364e35_6.1.7600.16385_none_50f69335385bc360_serialui.dll_bea29328
[2009.07.14 17:17:47 | 000,005,120 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-u..em-config.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_4e4137b544fe59ed_serialui.dll.mui_7d29d2a3
[2009.07.14 04:58:37 | 000,015,360 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-unimodem-config_31bf3856ad364e35_6.1.7600.16385_none_f4d7f7b17ffe522a_serialui.dll_bea29328
[2009.07.14 04:15:17 | 000,002,766 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..gertransport-serial_31bf3856ad364e35_6.1.7600.16385_none_6daa7ec5c65bf5bc.manifest
[2011.02.05 15:10:43 | 000,002,766 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..gertransport-serial_31bf3856ad364e35_6.1.7600.16757_none_6dccf6b5c641c933.manifest
[2011.02.05 15:05:47 | 000,002,766 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..gertransport-serial_31bf3856ad364e35_6.1.7600.20897_none_6e2b53d0df7fd8c1.manifest
[2011.02.05 19:35:45 | 000,002,766 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..gertransport-serial_31bf3856ad364e35_6.1.7601.17556_none_6fb25371c3691bc8.manifest
[2011.02.05 15:11:05 | 000,002,766 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..gertransport-serial_31bf3856ad364e35_6.1.7601.21655_none_703aeff2dc87a23b.manifest
[2009.07.14 04:11:30 | 000,000,868 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft.windows.h..tserial-driverclass_31bf3856ad364e35_6.1.7600.16385_none_88b1c48f2026fe3f.manifest
[2009.07.14 04:26:23 | 000,002,237 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_wcf-system.runtime.serialization.ref_b03f5f7f11d50a3a_6.1.7600.16385_none_5943b25a748cb06c.manifest
[2009.07.14 04:27:09 | 000,002,262 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7600.16385_none_941abf24c884ab05.manifest
[2009.07.14 03:52:33 | 000,002,226 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.ref_b77a5c561934e089_6.1.7600.16385_none_a6aa149474833896.manifest
[2009.07.14 17:16:38 | 000,001,626 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7600.16385_cs-cz_34555b4d83cf58b0.manifest
[2009.07.14 03:51:52 | 000,001,985 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization_b77a5c561934e089_6.1.7600.16385_none_d6ed4a2e9c2a39c9.manifest
[2009.07.14 03:57:53 | 000,002,260 | ---- | M] () -- \Windows\winsxs\Manifests\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7600.16385_none_dbc7f5fbdd00d40b.manifest
[2009.06.10 23:23:19 | 000,131,072 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.seri..ion.formatters.soap_b03f5f7f11d50a3a_6.1.7600.16385_none_1c9a3ec1e01c684b\System.Runtime.Serialization.Formatters.Soap.dll
[2009.07.14 17:17:20 | 000,011,776 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.seri..ters.soap.resources_b03f5f7f11d50a3a_6.1.7600.16385_cs-cz_d5c3552dd9b47144\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2009.06.10 23:14:06 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.ref_b77a5c561934e089_6.1.7600.16385_none_a6aa149474833896\System.Runtime.Serialization.dll
[2009.07.14 17:17:32 | 000,090,112 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7600.16385_cs-cz_34555b4d83cf58b0\System.RunTime.Serialization.Resources.dll
[2009.06.10 23:13:54 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization_b77a5c561934e089_6.1.7600.16385_none_d6ed4a2e9c2a39c9\System.Runtime.Serialization.dll
[2009.07.14 17:17:21 | 000,011,776 | ---- | M] () -- \Windows\winsxs\wow64_microsoft-windows-n..xcorecomp.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_267606ecf967dbc0\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2009.07.14 17:17:13 | 000,005,120 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-u..em-config.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_4e4137b544fe59ed\serialui.dll.mui
[2009.07.14 03:16:13 | 000,015,360 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-unimodem-config_31bf3856ad364e35_6.1.7600.16385_none_f4d7f7b17ffe522a\serialui.dll
[2009.07.14 17:17:32 | 000,090,112 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-wcfcorecomp.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_5d4a68b4b3d26ecc\System.RunTime.Serialization.Resources.dll
[2009.06.10 23:13:54 | 000,970,752 | ---- | M] () -- \Windows\winsxs\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7600.16385_none_dbc7f5fbdd00d40b\System.Runtime.Serialization.dll
< *w7lxe* /s >
========== Alternate Data Streams ==========
@Alternate Data Stream - 6144 bytes -> C:\Windows\Cursors\arrow_n.cur:NEDTA.DAT
@Alternate Data Stream - 21 bytes -> \Users\Public\Sony Online Entertainment\Installed Games\LaunchPad.libs\wws_crashreport_uploader.exe:crc
< End of report >
FF - prefs.js..browser.search.defaultenginename: "Seznam"
FF - prefs.js..browser.search.defaultthis.engineName: ""
FF - prefs.js..browser.search.selectedEngine: "Seznam"
FF - prefs.js..browser.startup.homepage: "http://www.thesettlers-online.cz/cs/dom ... r%C3%A1nka"
FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:29.0.1
FF - user.js - File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF64_13_0_0_214.dll File not found
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_13_0_0_214.dll ()
FF - HKLM\Software\MozillaPlugins\@esn/esnlaunch,version=1.104.0: C:\Program Files (x86)\Battlelog Web Plugins\1.104.0\npesnlaunch.dll File not found
FF - HKLM\Software\MozillaPlugins\@esn/esnlaunch,version=1.132.0: C:\Program Files (x86)\Battlelog Web Plugins\1.132.0\npesnlaunch.dll (ESN Social Software AB)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.55.2: C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.55.2: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@Nero.com/KM: C:\PROGRA~2\COMMON~1\Nero\BROWSE~1\NPBROW~1.DLL (Nero AG)
FF - HKLM\Software\MozillaPlugins\@ngm.nexoneu.com/NxGame: C:\ProgramData\NexonEU\NGM\npNxGameEU.dll (Nexon)
FF - HKLM\Software\MozillaPlugins\@pandonetworks.com/PandoWebPlugin: C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Users\lukas\AppData\Local\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Users\lukas\AppData\Local\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\pandonetworks.com/PandoWebPlugin: C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\wrc@avast.com: C:\Program Files\AVAST Software\Avast\WebRep\FF [2014.04.10 06:23:07 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 17.0.1\extensions\\Components: e:\Program Files (x86)\Mozilla Firefox\components [2014.06.10 22:57:16 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 17.0.1\extensions\\Plugins: e:\Program Files (x86)\Mozilla Firefox\plugins [2014.06.10 22:57:17 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 29.0.1\extensions\\Components: E:\Program Files (x86)\Mozilla Firefox\components [2014.06.10 22:57:16 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 29.0.1\extensions\\Plugins: E:\Program Files (x86)\Mozilla Firefox\plugins [2014.06.10 22:57:17 | 000,000,000 | ---D | M]
[2012.05.01 15:03:49 | 000,000,000 | ---D | M] (No name found) -- C:\Users\lukas\AppData\Roaming\Mozilla\Extensions
[2014.06.16 22:56:05 | 000,000,000 | ---D | M] (No name found) -- C:\Users\lukas\AppData\Roaming\Mozilla\Firefox\Profiles\dbwjkwv5.default\extensions
[2014.06.17 06:40:28 | 000,613,778 | ---- | M] () (No name found) -- C:\Users\lukas\AppData\Roaming\Mozilla\Firefox\Profiles\dbwjkwv5.default\extensions\PrivDog@AdTrustMedia.com.xpi
========== Chrome ==========
CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:bookmarkBarPinned}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}{google:omniboxStartMarginParameter}ie={inputEncoding}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client={google:suggestClient}&gs_ri={google:suggestRid}&xssi=t&q={searchTerms}&{google:cursorPosition}{google:currentPageUrl}{google:pageClassification}sugkey={google:suggestAPIKeyParameter},
CHR - plugin: Error reading preferences file
CHR - Extension: PrivDog = C:\Users\lukas\AppData\Local\Google\Chrome\User Data\Default\Extensions\cmaiofennmphjldldcpphcechfnnohja\2.1.0.23_0\
CHR - Extension: AdBlock Premium = C:\Users\lukas\AppData\Local\Google\Chrome\User Data\Default\Extensions\fndlhnanhedoklpdaacidomdnplcjcpj\2.6.4.3_0\
CHR - Extension: AdBlock = C:\Users\lukas\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.7.1_0\
CHR - Extension: FRQc - Flash Render Quality changer = C:\Users\lukas\AppData\Local\Google\Chrome\User Data\Default\Extensions\jklnclajhlcbghmgkljidaofhcnmjffo\2.0.4_0\
CHR - Extension: Adblock Super = C:\Users\lukas\AppData\Local\Google\Chrome\User Data\Default\Extensions\knebimhcckndhiglamoabbnifdkijidd\2.5.8_0\
CHR - Extension: Peněženka Google = C:\Users\lukas\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.1_0\
O1 HOSTS File: ([2014.06.19 09:05:18 | 000,000,027 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2:64bit: - BHO: (SteadyVideoBHO Class) - {6C680BAE-655C-4E3D-8FC4-E6A520C3D928} - C:\Program Files\AMD\SteadyVideo\SteadyVideo.dll (Advanced Micro Devices)
O2:64bit: - BHO: (avast! Online Security) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
O2 - BHO: (SteadyVideoBHO Class) - {6C680BAE-655C-4E3D-8FC4-E6A520C3D928} - C:\Program Files (x86)\AMD\SteadyVideo\SteadyVideo.dll (Advanced Micro Devices)
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (avast! Online Security) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O2 - BHO: (PrivDog Extension) - {FB16E5C3-A9E2-47A2-8EFC-319E775E62CC} - C:\Program Files (x86)\AdTrustMedia\PrivDog\2.1.0.23\trustedads.dll (AdTrustMedia)
O3:64bit: - HKLM\..\Toolbar: (no name) - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - No CLSID value found.
O3:64bit: - HKLM\..\Toolbar: (no name) - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - No CLSID value found.
O4:64bit: - HKLM..\Run: [COMODO Internet Security] C:\Program Files\COMODO\COMODO Internet Security\cistray.exe (COMODO)
O4:64bit: - HKLM..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor)
O4 - HKLM..\Run: [AvastUI.exe] C:\Program Files\AVAST Software\Avast\AvastUI.exe (AVAST Software)
O4 - HKLM..\Run: [PrivDogService] C:\Program Files (x86)\AdTrustMedia\PrivDog\2.1.0.23\trustedadssvc.exe (AdTrustMedia)
O4 - HKLM..\Run: [StartCCC] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.)
O4 - HKLM..\Run: [tvncontrol] C:\Program Files (x86)\Common Files\COMODO\GeekBuddyRSP.exe (Comodo Security Solutions, Inc.)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0
O7 - HKU\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-19\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-20\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-1575853709-75552691-4080425000-1000\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-1575853709-75552691-4080425000-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O9:64bit: - Extra Button: PrivDog - {2F5C139F-79BD-4C84-A95A-E7140525BC55} - C:\Program Files\AdTrustMedia\PrivDog\2.1.0.23\trustedads.dll (AdTrustMedia)
O9 - Extra Button: PrivDog - {2F5C139F-79BD-4C84-A95A-E7140525BC55} - C:\Program Files (x86)\AdTrustMedia\PrivDog\2.1.0.23\trustedads.dll (AdTrustMedia)
O13 - gopher Prefix: missing
O15 - HKU\.DEFAULT\..Trusted Domains: clonewarsadventures.com ([]* in Trusted sites)
O15 - HKU\.DEFAULT\..Trusted Domains: freerealms.com ([]* in Trusted sites)
O15 - HKU\.DEFAULT\..Trusted Domains: soe.com ([]* in Trusted sites)
O15 - HKU\.DEFAULT\..Trusted Domains: sony.com ([]* in Trusted sites)
O15 - HKU\S-1-5-18\..Trusted Domains: clonewarsadventures.com ([]* in Trusted sites)
O15 - HKU\S-1-5-18\..Trusted Domains: freerealms.com ([]* in Trusted sites)
O15 - HKU\S-1-5-18\..Trusted Domains: soe.com ([]* in Trusted sites)
O15 - HKU\S-1-5-18\..Trusted Domains: sony.com ([]* in Trusted sites)
O15 - HKU\S-1-5-19\..Trusted Domains: clonewarsadventures.com ([]* in )
O15 - HKU\S-1-5-19\..Trusted Domains: freerealms.com ([]* in )
O15 - HKU\S-1-5-19\..Trusted Domains: soe.com ([]* in )
O15 - HKU\S-1-5-19\..Trusted Domains: sony.com ([]* in )
O15 - HKU\S-1-5-20\..Trusted Domains: clonewarsadventures.com ([]* in )
O15 - HKU\S-1-5-20\..Trusted Domains: freerealms.com ([]* in )
O15 - HKU\S-1-5-20\..Trusted Domains: soe.com ([]* in )
O15 - HKU\S-1-5-20\..Trusted Domains: sony.com ([]* in )
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 77.242.95.6 81.200.55.34
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{587F006D-6820-4B33-9661-7B25550D93BD}: DhcpNameServer = 77.242.95.6 81.200.55.34
O18:64bit: - Protocol\Handler\ms-help - No CLSID value found
O18:64bit: - Protocol\Handler\skype4com - No CLSID value found
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18:64bit: - Protocol\Filter\video/mp4 {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files\AMD\SteadyVideo\VideoMIMEFilter.dll (Advanced Micro Devices)
O18:64bit: - Protocol\Filter\video/x-flv {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files\AMD\SteadyVideo\VideoMIMEFilter.dll (Advanced Micro Devices)
O18 - Protocol\Filter\video/mp4 {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files (x86)\AMD\SteadyVideo\VideoMIMEFilter.dll (Advanced Micro Devices)
O18 - Protocol\Filter\video/x-flv {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files (x86)\AMD\SteadyVideo\VideoMIMEFilter.dll (Advanced Micro Devices)
O20:64bit: - HKLM Winlogon: Shell - (Explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysWOW64\userinit.exe (Microsoft Corporation)
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2010.02.05 15:08:00 | 000,000,000 | ---- | M] () - E:\AUTOEXEC.BAT -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = ComFile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = ComFile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)
CREATERESTOREPOINT
Restore point Set: OTL Restore Point
NetSvcs:64bit: AppMgmt - C:\Windows\SysNative\appmgmts.dll (Microsoft Corporation)
Drivers32:64bit: msacm.l3acm - C:\Windows\System32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.l3acm - C:\Windows\SysWOW64\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: vidc.cvid - C:\Windows\SysWow64\iccvid.dll (Radius Inc.)
PhysicalDisk0 MBR saved to C:\PhysicalMBR.bin
========== Files/Folders - Created Within 30 Days ==========
[2014.06.19 11:04:23 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\lukas\Desktop\OTL.exe
[2014.06.19 09:47:41 | 000,000,000 | ---D | C] -- C:\Program Files\trend micro
[2014.06.19 09:47:41 | 000,000,000 | ---D | C] -- C:\rsit
[2014.06.19 09:16:15 | 000,000,000 | -HSD | C] -- C:\$RECYCLE.BIN
[2014.06.19 08:53:06 | 000,000,000 | ---D | C] -- C:\abc
[2014.06.17 20:15:54 | 000,000,000 | ---D | C] -- C:\Users\lukas\AppData\Local\UWebKit
[2014.06.17 06:40:07 | 000,000,000 | ---D | C] -- C:\Users\lukas\AppData\Local\AdTrustMedia
[2014.06.16 22:56:12 | 000,000,000 | ---D | C] -- C:\Users\lukas\AppData\Roaming\Comodo
[2014.06.16 22:56:00 | 000,000,000 | ---D | C] -- C:\Program Files\AdTrustMedia
[2014.06.16 22:55:59 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\AdTrustMedia
[2014.06.16 22:55:58 | 000,000,000 | ---D | C] -- C:\ProgramData\Adtrustmedia
[2014.06.16 22:55:34 | 000,000,000 | ---D | C] -- C:\ProgramData\Comodo Downloader
[2014.06.16 22:55:06 | 000,000,000 | ---D | C] -- C:\ProgramData\Shared Space
[2014.06.16 22:54:49 | 000,352,984 | ---- | C] (COMODO) -- C:\Windows\SysNative\cmdvrt64.dll
[2014.06.16 22:54:49 | 000,284,888 | ---- | C] (COMODO) -- C:\Windows\SysWow64\cmdvrt32.dll
[2014.06.16 22:54:49 | 000,045,784 | ---- | C] (COMODO) -- C:\Windows\SysNative\cmdkbd64.dll
[2014.06.16 22:54:49 | 000,040,664 | ---- | C] (COMODO) -- C:\Windows\SysWow64\cmdkbd32.dll
[2014.06.16 14:02:50 | 000,000,000 | ---D | C] -- C:\Users\lukas\AppData\Local\UWebKit151
[2014.06.16 14:02:48 | 000,000,000 | ---D | C] -- C:\Users\lukas\AppData\Roaming\.mono
[2014.06.01 21:08:18 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
[2014.06.01 21:08:15 | 000,063,704 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\mwac.sys
[2014.06.01 21:08:15 | 000,025,816 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\mbam.sys
[2014.06.01 21:08:15 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Malwarebytes Anti-Malware
[2014.05.27 12:47:54 | 000,000,000 | ---D | C] -- C:\Users\lukas\AppData\Roaming\Audacity
[2014.05.24 20:29:13 | 000,000,000 | ---D | C] -- C:\Users\lukas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\HiJackThis
[2014.05.24 20:29:12 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Trend Micro
[2014.05.23 08:18:32 | 000,000,000 | R--D | C] -- C:\Program Files (x86)\Skype
[2014.05.23 08:18:32 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
[2014.05.23 08:18:32 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Skype
========== Files - Modified Within 30 Days ==========
[2014.06.19 11:28:04 | 000,000,512 | ---- | M] () -- C:\PhysicalMBR.bin
[2014.06.19 11:23:54 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2014.06.19 11:23:49 | 2117,107,711 | -HS- | M] () -- C:\hiberfil.sys
[2014.06.19 11:23:04 | 000,003,232 | ---- | M] () -- C:\bootsqm.dat
[2014.06.19 11:05:00 | 000,000,962 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1575853709-75552691-4080425000-1000UA.job
[2014.06.19 11:04:06 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\lukas\Desktop\OTL.exe
[2014.06.19 10:50:00 | 000,000,914 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2014.06.19 09:42:39 | 000,014,016 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2014.06.19 09:42:39 | 000,014,016 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2014.06.19 09:05:18 | 000,000,027 | ---- | M] () -- C:\Windows\SysNative\drivers\etc\hosts
[2014.06.19 09:05:00 | 000,000,910 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1575853709-75552691-4080425000-1000Core.job
[2014.06.19 08:41:29 | 000,122,584 | ---- | M] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\MBAMSwissArmy.sys
[2014.06.18 12:08:15 | 001,575,782 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2014.06.18 12:08:15 | 000,666,006 | ---- | M] () -- C:\Windows\SysNative\perfh005.dat
[2014.06.18 12:08:15 | 000,651,750 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2014.06.18 12:08:15 | 000,139,702 | ---- | M] () -- C:\Windows\SysNative\perfc005.dat
[2014.06.18 12:08:15 | 000,120,682 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2014.06.18 11:34:40 | 000,000,878 | ---- | M] () -- C:\Users\lukas\Desktop\Gattaca (1997) – zástupce.lnk
[2014.06.18 10:37:50 | 000,282,296 | ---- | M] () -- C:\Windows\SysWow64\PnkBstrB.xtr
[2014.06.18 10:37:50 | 000,282,296 | ---- | M] () -- C:\Windows\SysWow64\PnkBstrB.exe
[2014.06.18 10:35:30 | 000,215,128 | ---- | M] () -- C:\Windows\SysWow64\PnkBstrB.ex0
[2014.06.16 23:14:51 | 000,002,340 | ---- | M] () -- C:\Windows\SysNative\drivers\fvstore.dat
[2014.06.16 13:26:15 | 000,000,216 | ---- | M] () -- C:\Users\lukas\Desktop\March of War.url
[2014.06.10 20:07:48 | 000,002,364 | ---- | M] () -- C:\Users\lukas\Desktop\Google Chrome.lnk
[2014.06.08 20:46:10 | 000,056,665 | ---- | M] () -- C:\Users\lukas\Desktop\10449590_322490841246747_254987811_n.jpg
[2014.06.08 17:22:59 | 000,001,062 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
[2014.06.08 14:22:35 | 000,110,871 | ---- | M] () -- C:\Users\lukas\Desktop\svatební oznámení.JPG
[2014.06.08 14:04:11 | 000,046,296 | ---- | M] () -- C:\Users\lukas\Desktop\Výstřižek.JPG
[2014.06.07 19:22:49 | 000,067,149 | ---- | M] () -- C:\Users\lukas\Desktop\10346641_674476675922801_213320548513784659_n.jpg
[2014.05.27 19:08:25 | 000,129,185 | ---- | M] () -- C:\Users\lukas\Desktop\10371721_621485627947436_397461902765558979_n.jpg
[2014.05.27 12:47:49 | 000,000,712 | ---- | M] () -- C:\Users\Public\Desktop\Audacity.lnk
[2014.05.24 20:29:13 | 000,002,975 | ---- | M] () -- C:\Users\lukas\Desktop\HiJackThis.lnk
========== Files Created - No Company Name ==========
[2014.06.19 11:28:04 | 000,000,512 | ---- | C] () -- C:\PhysicalMBR.bin
[2014.06.19 11:23:04 | 000,003,232 | ---- | C] () -- C:\bootsqm.dat
[2014.06.18 11:34:40 | 000,000,878 | ---- | C] () -- C:\Users\lukas\Desktop\Gattaca (1997) – zástupce.lnk
[2014.06.16 23:14:51 | 000,002,340 | ---- | C] () -- C:\Windows\SysNative\drivers\fvstore.dat
[2014.06.16 13:26:15 | 000,000,216 | ---- | C] () -- C:\Users\lukas\Desktop\March of War.url
[2014.06.08 20:46:09 | 000,056,665 | ---- | C] () -- C:\Users\lukas\Desktop\10449590_322490841246747_254987811_n.jpg
[2014.06.08 14:22:34 | 000,110,871 | ---- | C] () -- C:\Users\lukas\Desktop\svatební oznámení.JPG
[2014.06.08 14:04:11 | 000,046,296 | ---- | C] () -- C:\Users\lukas\Desktop\Výstřižek.JPG
[2014.06.07 19:22:48 | 000,067,149 | ---- | C] () -- C:\Users\lukas\Desktop\10346641_674476675922801_213320548513784659_n.jpg
[2014.06.01 21:08:18 | 000,001,062 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
[2014.05.27 19:08:24 | 000,129,185 | ---- | C] () -- C:\Users\lukas\Desktop\10371721_621485627947436_397461902765558979_n.jpg
[2014.05.27 12:47:49 | 000,000,712 | ---- | C] () -- C:\Users\Public\Desktop\Audacity.lnk
[2014.05.27 12:47:49 | 000,000,712 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Audacity.lnk
[2014.05.24 20:29:13 | 000,002,975 | ---- | C] () -- C:\Users\lukas\Desktop\HiJackThis.lnk
[2014.04.11 14:10:05 | 000,060,297 | ---- | C] () -- C:\Windows\SysWow64\nglide_uninst.exe
[2013.12.11 15:09:19 | 000,256,000 | ---- | C] () -- C:\Windows\PEV.exe
[2013.12.11 15:09:19 | 000,208,896 | ---- | C] () -- C:\Windows\MBR.exe
[2013.12.11 15:09:19 | 000,098,816 | ---- | C] () -- C:\Windows\sed.exe
[2013.12.11 15:09:19 | 000,080,412 | ---- | C] () -- C:\Windows\grep.exe
[2013.12.11 15:09:19 | 000,068,096 | ---- | C] () -- C:\Windows\zip.exe
[2013.11.01 14:00:51 | 000,014,464 | ---- | C] () -- C:\Windows\SysWow64\drivers\AsUpIO.sys
[2013.11.01 13:53:26 | 000,015,232 | ---- | C] () -- C:\Windows\SysWow64\drivers\AsIO.sys
[2013.11.01 13:53:25 | 000,011,832 | ---- | C] () -- C:\Windows\SysWow64\drivers\AsInsHelp64.sys
[2013.11.01 13:53:25 | 000,010,216 | ---- | C] () -- C:\Windows\SysWow64\drivers\AsInsHelp32.sys
[2013.10.02 11:31:20 | 000,000,292 | ---- | C] () -- C:\Users\lukas\AppData\Local\HamsterBookConverter.cfg
[2013.02.27 01:05:15 | 000,011,264 | ---- | C] () -- C:\Windows\SysWow64\lua51.dll
[2012.07.24 10:06:50 | 002,434,856 | ---- | C] () -- C:\Windows\SysWow64\pbsvc_bc2.exe
[2012.04.03 17:49:53 | 000,000,218 | ---- | C] () -- C:\Users\lukas\.recently-used.xbel
========== ZeroAccess Check ==========
[2009.07.14 06:55:00 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini
[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64
[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
"" = C:\Windows\SysNative\shell32.dll -- [2009.07.14 03:41:54 | 014,161,920 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2009.07.14 03:16:14 | 012,866,560 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\fastprox.dll -- [2009.07.14 03:40:51 | 000,909,312 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2009.07.14 03:15:20 | 000,605,696 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\wbemess.dll -- [2009.07.14 03:41:56 | 000,505,856 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
========== LOP Check ==========
[2014.06.17 10:35:11 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\.minecraft
[2014.06.16 14:02:48 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\.mono
[2012.09.17 08:12:03 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\ACD Systems
[2012.09.25 23:14:28 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\Ashampoo
[2014.06.16 08:59:38 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\Audacity
[2013.12.12 13:08:17 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\AVAST Software
[2014.03.05 16:56:05 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\Battle.net
[2013.10.02 11:33:07 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\calibre
[2011.12.22 20:34:14 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\Canneverbe Limited
[2011.12.11 11:59:54 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\Canon
[2012.12.10 02:13:25 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\Carbon
[2012.03.17 22:24:37 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1
[2012.10.27 06:53:17 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\cplauncher
[2012.03.01 03:08:41 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\DAEMON Tools
[2014.06.01 21:05:56 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\DAEMON Tools Lite
[2014.05.24 07:06:53 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\Dropbox
[2014.05.15 08:05:58 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\DropboxMaster
[2013.07.24 15:34:14 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\EoN
[2013.01.29 00:57:11 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\Firefly Studios
[2014.04.29 14:52:13 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\ftblauncher
[2012.04.03 18:21:48 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\HTC
[2012.01.23 02:33:36 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\HTC.388BC06ACDAB6261375BCE37FBA2E023C0D7EE34.1
[2012.01.01 19:52:18 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\inkscape
[2013.09.28 22:36:41 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\Kalypso Media
[2012.10.10 01:37:04 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\LolClient
[2013.11.26 16:39:28 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\MCTitan161v4
[2012.01.06 19:03:50 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\OpenOffice.org
[2012.07.02 21:50:31 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\Opera
[2013.06.26 20:17:28 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\Oracle
[2013.06.17 19:30:15 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\Origin
[2012.09.17 08:19:52 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\PhotoFiltre 7
[2012.02.09 13:14:42 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\pymclevel
[2012.01.10 17:46:34 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\QIP
[2014.01.17 19:21:43 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\Samsung
[2013.02.25 10:05:52 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\SPORE
[2012.07.13 21:41:18 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\StageManager.BD092818F67280F4B42B04877600987F0111B594.1
[2012.03.01 03:21:56 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\Stardock
[2013.07.01 16:14:56 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\TERA
[2012.05.12 00:03:10 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\Tropico 4
[2013.11.09 22:36:18 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\TS3Client
[2012.09.17 08:25:20 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\Ubisoft
[2014.06.18 12:01:26 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\uTorrent
[2012.01.28 14:51:18 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\wargaming.net
[2013.04.11 12:58:12 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\Zeal Game Studio
========== Purity Check ==========
========== Custom Scans ==========
< >
[2009.07.14 07:08:49 | 000,000,006 | -H-- | C] () -- C:\Windows\Tasks\SA.DAT
[2009.07.14 07:08:49 | 000,032,630 | ---- | C] () -- C:\Windows\Tasks\SCHEDLGU.TXT
[2011.12.10 22:54:38 | 000,000,910 | ---- | C] () -- C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1575853709-75552691-4080425000-1000Core.job
[2011.12.10 22:54:39 | 000,000,962 | ---- | C] () -- C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1575853709-75552691-4080425000-1000UA.job
[2014.04.06 21:23:13 | 000,000,914 | ---- | C] () -- C:\Windows\Tasks\Adobe Flash Player Updater.job
< >
< MD5 for: AGP440.SYS >
[2009.07.14 03:52:21 | 000,061,008 | ---- | M] (Microsoft Corporation) MD5=608C14DBA7299D8CB6ED035A68A15799 -- C:\Windows\SysNative\drivers\AGP440.sys
[2009.07.14 03:52:21 | 000,061,008 | ---- | M] (Microsoft Corporation) MD5=608C14DBA7299D8CB6ED035A68A15799 -- C:\Windows\SysNative\DriverStore\FileRepository\machine.inf_amd64_neutral_9e6bb86c3b39a3e9\AGP440.sys
[2009.07.14 03:52:21 | 000,061,008 | ---- | M] (Microsoft Corporation) MD5=608C14DBA7299D8CB6ED035A68A15799 -- C:\Windows\winsxs\amd64_machine.inf_31bf3856ad364e35_6.1.7600.16385_none_1607dee2d861e021\AGP440.sys
< MD5 for: ATAPI.SYS >
[2009.07.14 03:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\erdnt\cache64\atapi.sys
[2009.07.14 03:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\SysNative\drivers\atapi.sys
[2009.07.14 03:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\SysNative\DriverStore\FileRepository\mshdc.inf_amd64_neutral_a69a58a4286f0b22\atapi.sys
[2009.07.14 03:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\winsxs\amd64_mshdc.inf_31bf3856ad364e35_6.1.7600.16385_none_392d19c13b3ad543\atapi.sys
< MD5 for: AUTOCHK.EXE >
[2009.07.14 03:14:12 | 000,668,160 | ---- | M] (Microsoft Corporation) MD5=41E4C8EBA464E7D6A5BA5E8827732AEB -- C:\Windows\SysWOW64\autochk.exe
[2009.07.14 03:14:12 | 000,668,160 | ---- | M] (Microsoft Corporation) MD5=41E4C8EBA464E7D6A5BA5E8827732AEB -- C:\Windows\winsxs\x86_microsoft-windows-autochk_31bf3856ad364e35_6.1.7600.16385_none_e1ca436d2314b860\autochk.exe
[2009.07.14 03:38:56 | 000,777,728 | ---- | M] (Microsoft Corporation) MD5=8B7F8E882A649D81CEA1EDE9BBB68FFF -- C:\Windows\SysNative\autochk.exe
[2009.07.14 03:38:56 | 000,777,728 | ---- | M] (Microsoft Corporation) MD5=8B7F8E882A649D81CEA1EDE9BBB68FFF -- C:\Windows\winsxs\amd64_microsoft-windows-autochk_31bf3856ad364e35_6.1.7600.16385_none_3de8def0db722996\autochk.exe
< MD5 for: CDROM.SYS >
[2009.07.14 01:19:54 | 000,147,456 | ---- | M] (Microsoft Corporation) MD5=83D2D75E1EFB81B3450C18131443F7DB -- C:\Windows\SysNative\drivers\cdrom.sys
[2009.07.14 01:19:54 | 000,147,456 | ---- | M] (Microsoft Corporation) MD5=83D2D75E1EFB81B3450C18131443F7DB -- C:\Windows\SysNative\DriverStore\FileRepository\cdrom.inf_amd64_neutral_8363d00ecae4322d\cdrom.sys
[2009.07.14 01:19:54 | 000,147,456 | ---- | M] (Microsoft Corporation) MD5=83D2D75E1EFB81B3450C18131443F7DB -- C:\Windows\winsxs\amd64_cdrom.inf_31bf3856ad364e35_6.1.7600.16385_none_bb9e4d89bd7870f1\cdrom.sys
< MD5 for: CNGAUDIT.DLL >
[2009.07.14 03:15:06 | 000,012,288 | ---- | M] (Microsoft Corporation) MD5=50BA656134F78AF64E4DD3C8B6FEFD7E -- C:\Windows\erdnt\cache86\cngaudit.dll
[2009.07.14 03:15:06 | 000,012,288 | ---- | M] (Microsoft Corporation) MD5=50BA656134F78AF64E4DD3C8B6FEFD7E -- C:\Windows\SysWOW64\cngaudit.dll
[2009.07.14 03:15:06 | 000,012,288 | ---- | M] (Microsoft Corporation) MD5=50BA656134F78AF64E4DD3C8B6FEFD7E -- C:\Windows\winsxs\x86_microsoft-windows-cngaudit-dll_31bf3856ad364e35_6.1.7600.16385_none_e83a414890e8132b\cngaudit.dll
[2009.07.14 03:40:20 | 000,018,944 | ---- | M] (Microsoft Corporation) MD5=86FE1B1F8FD42CD0DB641AB1CDB13093 -- C:\Windows\erdnt\cache64\cngaudit.dll
[2009.07.14 03:40:20 | 000,018,944 | ---- | M] (Microsoft Corporation) MD5=86FE1B1F8FD42CD0DB641AB1CDB13093 -- C:\Windows\SysNative\cngaudit.dll
[2009.07.14 03:40:20 | 000,018,944 | ---- | M] (Microsoft Corporation) MD5=86FE1B1F8FD42CD0DB641AB1CDB13093 -- C:\Windows\winsxs\amd64_microsoft-windows-cngaudit-dll_31bf3856ad364e35_6.1.7600.16385_none_4458dccc49458461\cngaudit.dll
< MD5 for: CRYPTSVC.DLL >
[2009.07.14 03:40:24 | 000,175,104 | ---- | M] (Microsoft Corporation) MD5=8C57411B66282C01533CB776F98AD384 -- C:\Windows\erdnt\cache64\cryptsvc.dll
[2009.07.14 03:40:24 | 000,175,104 | ---- | M] (Microsoft Corporation) MD5=8C57411B66282C01533CB776F98AD384 -- C:\Windows\SysNative\cryptsvc.dll
[2009.07.14 03:40:24 | 000,175,104 | ---- | M] (Microsoft Corporation) MD5=8C57411B66282C01533CB776F98AD384 -- C:\Windows\winsxs\amd64_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7600.16385_none_d1f48b0bb4805490\cryptsvc.dll
[2009.07.14 03:15:07 | 000,135,680 | ---- | M] (Microsoft Corporation) MD5=9C231178CE4FB385F4B54B0A9080B8A4 -- C:\Windows\erdnt\cache86\cryptsvc.dll
[2009.07.14 03:15:07 | 000,135,680 | ---- | M] (Microsoft Corporation) MD5=9C231178CE4FB385F4B54B0A9080B8A4 -- C:\Windows\SysWOW64\cryptsvc.dll
[2009.07.14 03:15:07 | 000,135,680 | ---- | M] (Microsoft Corporation) MD5=9C231178CE4FB385F4B54B0A9080B8A4 -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7600.16385_none_75d5ef87fc22e35a\cryptsvc.dll
< MD5 for: EXPLORER.EXE >
[2009.07.14 03:14:20 | 002,613,248 | ---- | M] (Microsoft Corporation) MD5=15BC38A7492BEFE831966ADB477CF76F -- C:\Windows\SysWOW64\explorer.exe
[2009.07.14 03:14:20 | 002,613,248 | ---- | M] (Microsoft Corporation) MD5=15BC38A7492BEFE831966ADB477CF76F -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16385_none_b7fe430bc7ce3761\explorer.exe
[2009.10.31 07:45:39 | 002,614,272 | ---- | M] (Microsoft Corporation) MD5=2626FC9755BE22F805D3CFA0CE3EE727 -- C:\Windows\SoftwareDistribution\Download\0cfc8dbf763c806fb82e646c7352a6fc\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16450_none_b819b343c7ba6202\explorer.exe
[2009.08.03 08:19:07 | 002,868,224 | ---- | M] (Microsoft Corporation) MD5=700073016DAC1C3D2E7E2CE4223334B6 -- C:\Windows\SoftwareDistribution\Download\00236e2e422dab929dcda56260d05350\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20500_none_ae84b558ac4eb41c\explorer.exe
[2009.10.31 08:34:59 | 002,870,272 | ---- | M] (Microsoft Corporation) MD5=9AAAEC8DAC27AA17B053E6352AD233AE -- C:\Windows\SoftwareDistribution\Download\0cfc8dbf763c806fb82e646c7352a6fc\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16450_none_adc508f19359a007\explorer.exe
[2009.08.03 07:49:47 | 002,613,248 | ---- | M] (Microsoft Corporation) MD5=9FF6C4C91A3711C0A3B18F87B08B518D -- C:\Windows\SoftwareDistribution\Download\00236e2e422dab929dcda56260d05350\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20500_none_b8d95faae0af7617\explorer.exe
[2009.10.31 08:38:38 | 002,870,272 | ---- | M] (Microsoft Corporation) MD5=B8EC4BD49CE8F6FC457721BFC210B67F -- C:\Windows\SoftwareDistribution\Download\0cfc8dbf763c806fb82e646c7352a6fc\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20563_none_ae46d6aeac7ca7c7\explorer.exe
[2009.08.03 07:35:50 | 002,613,248 | ---- | M] (Microsoft Corporation) MD5=B95EEB0F4E5EFBF1038A35B3351CF047 -- C:\Windows\SoftwareDistribution\Download\00236e2e422dab929dcda56260d05350\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16404_none_b853c407c78e3ba9\explorer.exe
[2009.07.14 03:39:10 | 002,868,224 | ---- | M] (Microsoft Corporation) MD5=C235A51CB740E45FFA0EBFB9BAFCDA64 -- C:\Windows\erdnt\cache86\explorer.exe
[2009.07.14 03:39:10 | 002,868,224 | ---- | M] (Microsoft Corporation) MD5=C235A51CB740E45FFA0EBFB9BAFCDA64 -- C:\Windows\explorer.exe
[2009.07.14 03:39:10 | 002,868,224 | ---- | M] (Microsoft Corporation) MD5=C235A51CB740E45FFA0EBFB9BAFCDA64 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16385_none_ada998b9936d7566\explorer.exe
[2009.10.31 08:00:51 | 002,614,272 | ---- | M] (Microsoft Corporation) MD5=C76153C7ECA00FA852BB0C193378F917 -- C:\Windows\SoftwareDistribution\Download\0cfc8dbf763c806fb82e646c7352a6fc\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20563_none_b89b8100e0dd69c2\explorer.exe
[2009.08.03 08:17:37 | 002,868,224 | ---- | M] (Microsoft Corporation) MD5=F170B4A061C9E026437B193B4D571799 -- C:\Windows\SoftwareDistribution\Download\00236e2e422dab929dcda56260d05350\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16404_none_adff19b5932d79ae\explorer.exe
< MD5 for: HAL.DLL >
[2009.07.14 03:47:48 | 000,263,232 | ---- | M] (Microsoft Corporation) MD5=C0A6F6E05E14FBCAEDE7796C8590B7AC -- C:\Windows\SysNative\hal.dll
[2009.07.14 03:47:48 | 000,263,232 | ---- | M] (Microsoft Corporation) MD5=C0A6F6E05E14FBCAEDE7796C8590B7AC -- C:\Windows\winsxs\amd64_microsoft-windows-hal_31bf3856ad364e35_6.1.7600.16385_none_071de44b735b3dfc\hal.dll
< MD5 for: IASTORV.SYS >
[2009.07.14 03:48:04 | 000,410,688 | ---- | M] (Intel Corporation) MD5=D83EFB6FD45DF9D55E9A1AFC63640D50 -- C:\Windows\SysNative\drivers\iaStorV.sys
[2009.07.14 03:48:04 | 000,410,688 | ---- | M] (Intel Corporation) MD5=D83EFB6FD45DF9D55E9A1AFC63640D50 -- C:\Windows\SysNative\DriverStore\FileRepository\iastorv.inf_amd64_neutral_18cccb83b34e1453\iaStorV.sys
[2009.07.14 03:48:04 | 000,410,688 | ---- | M] (Intel Corporation) MD5=D83EFB6FD45DF9D55E9A1AFC63640D50 -- C:\Windows\winsxs\amd64_iastorv.inf_31bf3856ad364e35_6.1.7600.16385_none_0b06441fa1790136\iaStorV.sys
< MD5 for: ISAPNP.SYS >
[2009.07.14 03:48:04 | 000,020,544 | ---- | M] (Microsoft Corporation) MD5=2F7B28DC3E1183E5EB418DF55C204F38 -- C:\Windows\SysNative\drivers\isapnp.sys
[2009.07.14 03:48:04 | 000,020,544 | ---- | M] (Microsoft Corporation) MD5=2F7B28DC3E1183E5EB418DF55C204F38 -- C:\Windows\SysNative\DriverStore\FileRepository\machine.inf_amd64_neutral_9e6bb86c3b39a3e9\isapnp.sys
[2009.07.14 03:48:04 | 000,020,544 | ---- | M] (Microsoft Corporation) MD5=2F7B28DC3E1183E5EB418DF55C204F38 -- C:\Windows\winsxs\amd64_machine.inf_31bf3856ad364e35_6.1.7600.16385_none_1607dee2d861e021\isapnp.sys
< MD5 for: LSASS.EXE >
[2009.07.14 03:39:16 | 000,031,232 | ---- | M] (Microsoft Corporation) MD5=0793F40B9B8A1BDD266296409DBD91EA -- C:\Windows\erdnt\cache64\lsass.exe
[2009.07.14 03:39:16 | 000,031,232 | ---- | M] (Microsoft Corporation) MD5=0793F40B9B8A1BDD266296409DBD91EA -- C:\Windows\SysNative\lsass.exe
[2009.07.14 03:39:16 | 000,031,232 | ---- | M] (Microsoft Corporation) MD5=0793F40B9B8A1BDD266296409DBD91EA -- C:\Windows\winsxs\amd64_microsoft-windows-lsa_31bf3856ad364e35_6.1.7600.16385_none_023f7c69767c3edd\lsass.exe
< MD5 for: NDIS.SYS >
[2009.07.14 03:48:27 | 000,947,776 | ---- | M] (Microsoft Corporation) MD5=CAD515DBD07D082BB317D9928CE8962C -- C:\Windows\erdnt\cache64\ndis.sys
[2009.07.14 03:48:27 | 000,947,776 | ---- | M] (Microsoft Corporation) MD5=CAD515DBD07D082BB317D9928CE8962C -- C:\Windows\SysNative\drivers\ndis.sys
[2009.07.14 03:48:27 | 000,947,776 | ---- | M] (Microsoft Corporation) MD5=CAD515DBD07D082BB317D9928CE8962C -- C:\Windows\winsxs\amd64_microsoft-windows-ndis_31bf3856ad364e35_6.1.7600.16385_none_03bc1d6e35c013bf\ndis.sys
< MD5 for: NETLOGON.DLL >
[2009.07.14 03:41:52 | 000,692,736 | ---- | M] (Microsoft Corporation) MD5=956D030D375F207B22FB111E06EF9C35 -- C:\Windows\erdnt\cache64\netlogon.dll
[2009.07.14 03:41:52 | 000,692,736 | ---- | M] (Microsoft Corporation) MD5=956D030D375F207B22FB111E06EF9C35 -- C:\Windows\SysNative\netlogon.dll
[2009.07.14 03:41:52 | 000,692,736 | ---- | M] (Microsoft Corporation) MD5=956D030D375F207B22FB111E06EF9C35 -- C:\Windows\winsxs\amd64_microsoft-windows-security-netlogon_31bf3856ad364e35_6.1.7600.16385_none_59aca8ea51aaeefe\netlogon.dll
[2009.07.14 03:16:02 | 000,563,712 | ---- | M] (Microsoft Corporation) MD5=EAA75D9000B71F10EEC04D2AE6C60E81 -- C:\Windows\erdnt\cache86\netlogon.dll
[2009.07.14 03:16:02 | 000,563,712 | ---- | M] (Microsoft Corporation) MD5=EAA75D9000B71F10EEC04D2AE6C60E81 -- C:\Windows\SysWOW64\netlogon.dll
[2009.07.14 03:16:02 | 000,563,712 | ---- | M] (Microsoft Corporation) MD5=EAA75D9000B71F10EEC04D2AE6C60E81 -- C:\Windows\winsxs\wow64_microsoft-windows-security-netlogon_31bf3856ad364e35_6.1.7600.16385_none_6401533c860bb0f9\netlogon.dll
< MD5 for: NVRAID.SYS >
[2009.07.14 03:48:27 | 000,149,056 | ---- | M] (NVIDIA Corporation) MD5=3E38712941E9BB4DDBEE00AFFE3FED3D -- C:\Windows\SysNative\drivers\nvraid.sys
[2009.07.14 03:48:27 | 000,149,056 | ---- | M] (NVIDIA Corporation) MD5=3E38712941E9BB4DDBEE00AFFE3FED3D -- C:\Windows\SysNative\DriverStore\FileRepository\nvraid.inf_amd64_neutral_5bde3fe2945bce9e\nvraid.sys
[2009.07.14 03:48:27 | 000,149,056 | ---- | M] (NVIDIA Corporation) MD5=3E38712941E9BB4DDBEE00AFFE3FED3D -- C:\Windows\winsxs\amd64_nvraid.inf_31bf3856ad364e35_6.1.7600.16385_none_95cfb4ced8afab0e\nvraid.sys
< MD5 for: NVSTOR.SYS >
[2009.07.14 03:45:45 | 000,167,488 | ---- | M] (NVIDIA Corporation) MD5=477DC4D6DEB99BE37084C9AC6D013DA1 -- C:\Windows\SysNative\drivers\nvstor.sys
[2009.07.14 03:45:45 | 000,167,488 | ---- | M] (NVIDIA Corporation) MD5=477DC4D6DEB99BE37084C9AC6D013DA1 -- C:\Windows\SysNative\DriverStore\FileRepository\nvraid.inf_amd64_neutral_5bde3fe2945bce9e\nvstor.sys
[2009.07.14 03:45:45 | 000,167,488 | ---- | M] (NVIDIA Corporation) MD5=477DC4D6DEB99BE37084C9AC6D013DA1 -- C:\Windows\winsxs\amd64_nvraid.inf_31bf3856ad364e35_6.1.7600.16385_none_95cfb4ced8afab0e\nvstor.sys
< MD5 for: SCECLI.DLL >
[2009.07.14 03:16:13 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=26073302DAEA83CC5B944C546D6B47D2 -- C:\Windows\erdnt\cache86\scecli.dll
[2009.07.14 03:16:13 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=26073302DAEA83CC5B944C546D6B47D2 -- C:\Windows\SysWOW64\scecli.dll
[2009.07.14 03:16:13 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=26073302DAEA83CC5B944C546D6B47D2 -- C:\Windows\winsxs\wow64_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7600.16385_none_9e577e55272d37b4\scecli.dll
[2009.07.14 03:41:53 | 000,232,448 | ---- | M] (Microsoft Corporation) MD5=398712DDDAEFB85EDF61DF6A07B65C79 -- C:\Windows\erdnt\cache64\scecli.dll
[2009.07.14 03:41:53 | 000,232,448 | ---- | M] (Microsoft Corporation) MD5=398712DDDAEFB85EDF61DF6A07B65C79 -- C:\Windows\SysNative\scecli.dll
[2009.07.14 03:41:53 | 000,232,448 | ---- | M] (Microsoft Corporation) MD5=398712DDDAEFB85EDF61DF6A07B65C79 -- C:\Windows\winsxs\amd64_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7600.16385_none_9402d402f2cc75b9\scecli.dll
< MD5 for: SMSS.EXE >
[2009.07.14 03:39:41 | 000,112,640 | ---- | M] (Microsoft Corporation) MD5=1911A3356FA3F77CCC825CCBAC038C2A -- C:\Windows\SysNative\smss.exe
[2009.07.14 03:39:41 | 000,112,640 | ---- | M] (Microsoft Corporation) MD5=1911A3356FA3F77CCC825CCBAC038C2A -- C:\Windows\winsxs\amd64_microsoft-windows-smss_31bf3856ad364e35_6.1.7600.16385_none_082f99a432e2a661\smss.exe
< MD5 for: SVCHOST.EXE >
[2014.05.12 07:24:30 | 000,750,392 | ---- | M] (MalwareBytes) MD5=09882E8EDD1144E6EF1AF6D1F98305EE -- C:\Program Files (x86)\Malwarebytes Anti-Malware\Chameleon\Windows\svchost.exe
[2009.07.14 03:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\erdnt\cache86\svchost.exe
[2009.07.14 03:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\SysWOW64\svchost.exe
[2009.07.14 03:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\winsxs\x86_microsoft-windows-services-svchost_31bf3856ad364e35_6.1.7600.16385_none_b591afc466a15356\svchost.exe
[2009.07.14 03:39:46 | 000,027,136 | ---- | M] (Microsoft Corporation) MD5=C78655BC80301D76ED4FEF1C1EA40A7D -- C:\Windows\erdnt\cache64\svchost.exe
[2009.07.14 03:39:46 | 000,027,136 | ---- | M] (Microsoft Corporation) MD5=C78655BC80301D76ED4FEF1C1EA40A7D -- C:\Windows\SysNative\svchost.exe
[2009.07.14 03:39:46 | 000,027,136 | ---- | M] (Microsoft Corporation) MD5=C78655BC80301D76ED4FEF1C1EA40A7D -- C:\Windows\winsxs\amd64_microsoft-windows-services-svchost_31bf3856ad364e35_6.1.7600.16385_none_11b04b481efec48c\svchost.exe
< MD5 for: TCPIP.SYS >
[2011.04.25 07:28:24 | 001,893,248 | ---- | M] (Microsoft Corporation) MD5=1F748D5439B65E0BEBD92F65048F030D -- C:\Windows\SoftwareDistribution\Download\da4463397caf4338fc547a263ebe279e\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.20951_none_0fb918de99201ffb\tcpip.sys
[2011.09.29 19:41:37 | 001,912,176 | ---- | M] (Microsoft Corporation) MD5=3810F06A4D74A7D62641EE73D6B3C660 -- C:\Windows\SoftwareDistribution\Download\c9160191b1bec61d9b277b3571f4ec8a\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.21828_none_11c6e9949627e69c\tcpip.sys
[2011.04.25 07:32:22 | 001,896,832 | ---- | M] (Microsoft Corporation) MD5=61DC720BB065D607D5823F13D2A64321 -- C:\Windows\SoftwareDistribution\Download\da4463397caf4338fc547a263ebe279e\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.16802_none_0f668bf97fd90dd3\tcpip.sys
[2010.04.09 13:06:28 | 001,898,376 | ---- | M] (Microsoft Corporation) MD5=7FC877A25796D8ADF539E64703FCA7E1 -- C:\Windows\erdnt\cache64\tcpip.sys
[2010.04.09 13:06:28 | 001,898,376 | ---- | M] (Microsoft Corporation) MD5=7FC877A25796D8ADF539E64703FCA7E1 -- C:\Windows\SysNative\drivers\tcpip.sys
[2010.04.09 13:06:28 | 001,898,376 | ---- | M] (Microsoft Corporation) MD5=7FC877A25796D8ADF539E64703FCA7E1 -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.16569_none_0f2ca8c580036f65\tcpip.sys
[2009.07.14 03:45:55 | 001,898,576 | ---- | M] (Microsoft Corporation) MD5=912107716BAB424C7870E8E6AF5E07E1 -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.16385_none_0f1303f98017479d\tcpip.sys
[2011.04.25 07:33:51 | 001,923,968 | ---- | M] (Microsoft Corporation) MD5=92CE29D95AC9DD2D0EE9061D551BA250 -- C:\Windows\SoftwareDistribution\Download\da4463397caf4338fc547a263ebe279e\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.17603_none_114de9497cfe9316\tcpip.sys
[2010.04.09 09:56:29 | 001,892,232 | ---- | M] (Microsoft Corporation) MD5=A9C0F786AC1F736891D05CE0A1D29DEB -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.20687_none_0f9ea52499331463\tcpip.sys
[2011.09.29 18:17:51 | 001,886,064 | ---- | M] (Microsoft Corporation) MD5=AC3E29880DB5659532A1AA3439304A43 -- C:\Windows\SoftwareDistribution\Download\c9160191b1bec61d9b277b3571f4ec8a\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.21060_none_0fad20ca992955d7\tcpip.sys
[2011.04.25 08:16:34 | 001,927,552 | ---- | M] (Microsoft Corporation) MD5=B77977AEB2FF159D01DB08A309989C5F -- C:\Windows\SoftwareDistribution\Download\da4463397caf4338fc547a263ebe279e\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.21712_none_11cbb5de9625357a\tcpip.sys
[2011.09.29 18:24:44 | 001,897,328 | ---- | M] (Microsoft Corporation) MD5=F18F56EFC0BFB9C87BA01C37B27F4DA5 -- C:\Windows\SoftwareDistribution\Download\c9160191b1bec61d9b277b3571f4ec8a\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.16889_none_0f170e9f80139ebc\tcpip.sys
[2011.09.29 18:29:28 | 001,923,952 | ---- | M] (Microsoft Corporation) MD5=FC62769E7BFF2896035AEED399108162 -- C:\Windows\SoftwareDistribution\Download\c9160191b1bec61d9b277b3571f4ec8a\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.17697_none_10f09b257d43f3eb\tcpip.sys
< MD5 for: USERINIT.EXE >
[2009.07.14 03:14:43 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=6DE80F60D7DE9CE6B8C2DDFDF79EF175 -- C:\Windows\erdnt\cache86\userinit.exe
[2009.07.14 03:14:43 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=6DE80F60D7DE9CE6B8C2DDFDF79EF175 -- C:\Windows\SysWOW64\userinit.exe
[2009.07.14 03:14:43 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=6DE80F60D7DE9CE6B8C2DDFDF79EF175 -- C:\Windows\winsxs\x86_microsoft-windows-userinit_31bf3856ad364e35_6.1.7600.16385_none_dbff103933038d7c\userinit.exe
[2009.07.14 03:39:48 | 000,030,208 | ---- | M] (Microsoft Corporation) MD5=6F8F1376A13114CC10C0E69274F5A4DE -- C:\Windows\erdnt\cache64\userinit.exe
[2009.07.14 03:39:48 | 000,030,208 | ---- | M] (Microsoft Corporation) MD5=6F8F1376A13114CC10C0E69274F5A4DE -- C:\Windows\SysNative\userinit.exe
[2009.07.14 03:39:48 | 000,030,208 | ---- | M] (Microsoft Corporation) MD5=6F8F1376A13114CC10C0E69274F5A4DE -- C:\Windows\winsxs\amd64_microsoft-windows-userinit_31bf3856ad364e35_6.1.7600.16385_none_381dabbceb60feb2\userinit.exe
< MD5 for: WINLOGON.EXE >
[2014.05.12 07:24:30 | 000,750,392 | ---- | M] (MalwareBytes) MD5=09882E8EDD1144E6EF1AF6D1F98305EE -- C:\Program Files (x86)\Malwarebytes Anti-Malware\Chameleon\Windows\winlogon.exe
[2009.07.14 03:39:52 | 000,389,120 | ---- | M] (Microsoft Corporation) MD5=132328DF455B0028F13BF0ABEE51A63A -- C:\Windows\erdnt\cache64\winlogon.exe
[2009.07.14 03:39:52 | 000,389,120 | ---- | M] (Microsoft Corporation) MD5=132328DF455B0028F13BF0ABEE51A63A -- C:\Windows\SysNative\winlogon.exe
[2009.07.14 03:39:52 | 000,389,120 | ---- | M] (Microsoft Corporation) MD5=132328DF455B0028F13BF0ABEE51A63A -- C:\Windows\winsxs\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7600.16385_none_cbb7f2bdeea2829c\winlogon.exe
[2009.10.28 09:01:57 | 000,389,632 | ---- | M] (Microsoft Corporation) MD5=A93D41A4D4B0D91C072D11DD8AF266DE -- C:\Windows\SoftwareDistribution\Download\0cfc8dbf763c806fb82e646c7352a6fc\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7600.20560_none_cc522fd507b468f8\winlogon.exe
[2009.10.28 08:24:40 | 000,389,632 | ---- | M] (Microsoft Corporation) MD5=DA3E2A6FA9660CC75B471530CE88453A -- C:\Windows\SoftwareDistribution\Download\0cfc8dbf763c806fb82e646c7352a6fc\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7600.16447_none_cbe534e7ee8042ad\winlogon.exe
< MD5 for: WS2_32.DLL >
[2009.07.14 03:41:58 | 000,296,448 | ---- | M] (Microsoft Corporation) MD5=7083F463788CB34FCC42F565D56F89E8 -- C:\Windows\erdnt\cache64\ws2_32.dll
[2009.07.14 03:41:58 | 000,296,448 | ---- | M] (Microsoft Corporation) MD5=7083F463788CB34FCC42F565D56F89E8 -- C:\Windows\SysNative\ws2_32.dll
[2009.07.14 03:41:58 | 000,296,448 | ---- | M] (Microsoft Corporation) MD5=7083F463788CB34FCC42F565D56F89E8 -- C:\Windows\winsxs\amd64_microsoft-windows-w..nfrastructure-ws232_31bf3856ad364e35_6.1.7600.16385_none_4eaca269e8070c6b\ws2_32.dll
[2009.07.14 03:16:20 | 000,206,336 | ---- | M] (Microsoft Corporation) MD5=DAAE8A9B8C0ACC7F858454132553C30D -- C:\Windows\erdnt\cache86\ws2_32.dll
[2009.07.14 03:16:20 | 000,206,336 | ---- | M] (Microsoft Corporation) MD5=DAAE8A9B8C0ACC7F858454132553C30D -- C:\Windows\SysWOW64\ws2_32.dll
[2009.07.14 03:16:20 | 000,206,336 | ---- | M] (Microsoft Corporation) MD5=DAAE8A9B8C0ACC7F858454132553C30D -- C:\Windows\winsxs\x86_microsoft-windows-w..nfrastructure-ws232_31bf3856ad364e35_6.1.7600.16385_none_f28e06e62fa99b35\ws2_32.dll
< >
< %systemroot%*.* /U /s >
[1 C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp files -> C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp -> ]
[2 C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\*.tmp files -> C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\*.tmp -> ]
[12 C:\Windows\Installer\*.tmp files -> C:\Windows\Installer\*.tmp -> ]
[1 C:\Windows\Installer\{D6AB1F5B-FED6-49A9-9747-327BD28FB3C7}\*.tmp files -> C:\Windows\Installer\{D6AB1F5B-FED6-49A9-9747-327BD28FB3C7}\*.tmp -> ]
< %SYSTEMDRIVE%\*.exe >
< %ALLUSERSPROFILE%\Application Data\*. >
< %ALLUSERSPROFILE%\Application Data\*.exe /s >
< %APPDATA%\*. >
[2014.06.17 10:35:11 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\.minecraft
[2014.06.16 14:02:48 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\.mono
[2012.09.17 08:12:03 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\ACD Systems
[2013.07.26 19:40:44 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\Adobe
[2012.07.13 21:41:18 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\Adobe Mini Bridge CS5
[2014.01.28 21:08:29 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\ArcSoft
[2012.09.25 23:14:28 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\Ashampoo
[2011.12.10 23:00:45 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\ATI
[2014.06.16 08:59:38 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\Audacity
[2013.12.12 13:08:17 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\AVAST Software
[2014.03.05 16:56:05 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\Battle.net
[2013.10.02 11:33:07 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\calibre
[2011.12.22 20:34:14 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\Canneverbe Limited
[2011.12.11 11:59:54 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\Canon
[2012.12.10 02:13:25 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\Carbon
[2012.03.17 22:24:37 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1
[2014.06.16 22:56:12 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\Comodo
[2012.01.01 20:17:19 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\Corel
[2012.10.27 06:53:17 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\cplauncher
[2012.03.01 03:08:41 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\DAEMON Tools
[2014.06.01 21:05:56 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\DAEMON Tools Lite
[2014.05.24 07:06:53 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\Dropbox
[2014.05.15 08:05:58 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\DropboxMaster
[2012.03.17 21:20:22 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\dvdcss
[2013.07.24 15:34:14 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\EoN
[2013.01.29 00:57:11 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\Firefly Studios
[2014.04.29 14:52:13 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\ftblauncher
[2012.09.11 00:13:22 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\Hamachi
[2012.04.03 18:21:48 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\HTC
[2012.01.23 02:33:36 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\HTC.388BC06ACDAB6261375BCE37FBA2E023C0D7EE34.1
[2011.12.10 22:49:03 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\Identities
[2012.01.01 19:52:18 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\inkscape
[2012.10.11 00:11:28 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\InstallShield
[2013.09.28 22:36:41 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\Kalypso Media
[2012.10.10 01:37:04 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\LolClient
[2011.12.10 23:07:29 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\Macromedia
[2012.09.15 01:57:04 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\Malwarebytes
[2013.11.26 16:39:28 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\MCTitan161v4
[2009.07.14 17:36:38 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\Media Center Programs
[2012.09.02 18:23:44 | 000,000,000 | --SD | M] -- C:\Users\lukas\AppData\Roaming\Microsoft
[2012.09.12 03:26:41 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\Microsoft Games
[2012.05.01 15:03:49 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\Mozilla
[2012.09.25 23:03:46 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\Nero
[2012.01.06 19:03:50 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\OpenOffice.org
[2012.07.02 21:50:31 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\Opera
[2013.06.26 20:17:28 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\Oracle
[2013.06.17 19:30:15 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\Origin
[2012.09.17 08:19:52 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\PhotoFiltre 7
[2012.02.09 13:14:42 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\pymclevel
[2012.01.10 17:46:34 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\QIP
[2014.01.17 19:21:43 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\Samsung
[2012.11.29 23:58:37 | 000,000,000 | RH-D | M] -- C:\Users\lukas\AppData\Roaming\SecuROM
[2014.06.19 10:52:35 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\Skype
[2013.02.25 10:05:52 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\SPORE
[2012.07.13 21:41:18 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\StageManager.BD092818F67280F4B42B04877600987F0111B594.1
[2012.03.01 03:21:56 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\Stardock
[2013.07.01 16:14:56 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\TERA
[2012.05.12 00:03:10 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\Tropico 4
[2013.11.09 22:36:18 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\TS3Client
[2012.09.17 08:25:20 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\Ubisoft
[2014.06.18 12:01:26 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\uTorrent
[2013.07.25 19:43:18 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\vlc
[2012.01.28 14:51:18 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\wargaming.net
[2014.06.03 21:31:33 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\Winamp
[2011.12.13 15:50:35 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\WinRAR
[2013.04.11 12:58:12 | 000,000,000 | ---D | M] -- C:\Users\lukas\AppData\Roaming\Zeal Game Studio
< %APPDATA%\*.exe /s >
[2012.10.26 17:03:49 | 000,263,186 | ---- | M] () -- C:\Users\lukas\AppData\Roaming\cplauncher\minecraft.exe
[2012.10.26 17:03:50 | 000,694,784 | ---- | M] (Bagr.Craft) -- C:\Users\lukas\AppData\Roaming\cplauncher\minecraftsp.exe
[2012.04.14 10:34:25 | 001,485,689 | ---- | M] () -- C:\Users\lukas\AppData\Roaming\cplauncher\no_modded\.minecraft\texturepacks\mcpatcher-2.3.4_02.exe
[2014.05.08 03:52:34 | 032,668,056 | ---- | M] (Dropbox, Inc.) -- C:\Users\lukas\AppData\Roaming\Dropbox\bin\Dropbox.exe
[2014.05.08 03:54:32 | 000,243,632 | ---- | M] (Dropbox, Inc.) -- C:\Users\lukas\AppData\Roaming\Dropbox\bin\DropboxUninstaller.exe
[2014.05.08 03:52:36 | 000,143,656 | ---- | M] (Dropbox, Inc.) -- C:\Users\lukas\AppData\Roaming\Dropbox\bin\DropboxUpdateHelper.exe
[2013.09.15 21:08:15 | 000,106,044 | ---- | M] () -- C:\Users\lukas\AppData\Roaming\MCTitan161v4\Odinstalovat.exe
[2014.05.24 20:29:12 | 000,388,096 | R--- | M] (Trend Micro Inc.) -- C:\Users\lukas\AppData\Roaming\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe
[2014.04.11 18:40:21 | 000,026,624 | R--- | M] () -- C:\Users\lukas\AppData\Roaming\Microsoft\Installer\{6910C412-A523-493C-BC22-0213CD7F4F3A}\Icon6910C412.exe
[2012.03.21 11:38:24 | 000,010,134 | R--- | M] () -- C:\Users\lukas\AppData\Roaming\Microsoft\Installer\{DA2737A4-B639-96F4-1CC2-30D2919EE1FB}\ARPPRODUCTICON.exe
< %systemroot%\*. /mp /s >
< %systemroot%\system32\*.dll /lockedfiles >
< %systemroot%\Tasks\*.job /lockedfiles >
< %systemroot%\system32\drivers\*.sys /lockedfiles >
< %systemroot%\System32\config\*.sav >
< %systemroot%\system32\*.dll /lockedfiles >
< %systemroot%\system32\drivers\*.sys /3 >
< %systemroot%\system32\*.* /3 >
[2014.06.18 10:35:30 | 000,215,128 | ---- | M] () -- C:\Windows\system32\PnkBstrB.ex0
[2014.06.18 10:37:50 | 000,282,296 | ---- | M] () -- C:\Windows\system32\PnkBstrB.exe
[2014.06.18 10:37:50 | 000,282,296 | ---- | M] () -- C:\Windows\system32\PnkBstrB.xtr
< %SYSTEMDRIVE%\*.exe >
< >
< HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s >
< reg query "HKLM\Software\Microsoft\Windows NT\CurrentVersion\winlogon" /v GinaDLL /c >
< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv" /v ImagePath /c >
HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\SERVICES\WUAUSERV
IMAGEPATH REG_EXPAND_SZ %systemroot%\system32\svchost.exe -k netsvcs
< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS" /v ImagePath /c >
HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\SERVICES\BITS
IMAGEPATH REG_EXPAND_SZ %SystemRoot%\System32\svchost.exe -k netsvcs
< >
< type c:\boot.ini >> test.txt /c >
< %SystemDrive%\PhysicalMBR.bin /md5 >
[2014.06.19 11:28:04 | 000,000,512 | ---- | M] () MD5=DE60263F00254E0E343B7F9C29AC7A95 -- C:\PhysicalMBR.bin
< >
< *crack* /s >
[2014.04.29 14:38:07 | 000,001,062 | ---- | M] () -- \Users\lukas\AppData\Roaming\ftblauncher\ModPacks\MindCrack\logo_minecrack.png
[2014.04.29 14:38:07 | 000,008,681 | ---- | M] () -- \Users\lukas\AppData\Roaming\ftblauncher\ModPacks\MindCrack\mindcrack_splash.png
< *keygen* /s >
< *AntiWPA* /s >
< *loader* /s >
[2010.03.09 05:28:40 | 005,297,608 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS5\Photodownloader.exe
[2010.03.09 02:38:58 | 000,011,161 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS5\apd\shared_assets\bitmaps\main_window\C_LoadError.png
[2010.03.09 02:38:58 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS5\apd\shared_assets\locales\da_dk\Photodownloader.ini
[2010.03.09 02:39:00 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS5\apd\shared_assets\locales\de_de\Photodownloader.ini
[2010.03.09 02:39:00 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS5\apd\shared_assets\locales\en_us\Photodownloader.ini
[2010.03.09 02:39:00 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS5\apd\shared_assets\locales\es_es\Photodownloader.ini
[2010.03.09 02:39:00 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS5\apd\shared_assets\locales\fi_fi\Photodownloader.ini
[2010.03.09 02:39:00 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS5\apd\shared_assets\locales\fr_fr\Photodownloader.ini
[2010.03.09 02:39:00 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS5\apd\shared_assets\locales\it_it\Photodownloader.ini
[2010.03.09 02:39:00 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS5\apd\shared_assets\locales\ja_jp\Photodownloader.ini
[2010.03.09 02:39:00 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS5\apd\shared_assets\locales\ko_kr\Photodownloader.ini
[2010.03.09 02:39:00 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS5\apd\shared_assets\locales\nl_nl\Photodownloader.ini
[2010.03.09 02:39:00 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS5\apd\shared_assets\locales\no_no\Photodownloader.ini
[2010.03.09 02:39:00 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS5\apd\shared_assets\locales\pt_br\Photodownloader.ini
[2010.03.09 02:39:00 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS5\apd\shared_assets\locales\sv_se\Photodownloader.ini
[2010.03.09 02:39:00 | 000,000,308 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS5\apd\shared_assets\locales\zh_cn\Photodownloader.ini
[2010.03.09 02:39:00 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS5\apd\shared_assets\locales\zh_tw\Photodownloader.ini
[2013.11.15 14:18:42 | 000,021,106 | ---- | M] () -- \Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.15\WebResources1.8.0.15\js\configLoader.js
[2013.11.13 16:55:18 | 000,002,586 | ---- | M] () -- \Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.15\WebResources1.8.0.15\js\scriptLoader.js
[2014.04.29 17:39:00 | 000,025,150 | ---- | M] () -- \Program Files (x86)\AdTrustMedia\PrivDog\2.1.0.23\WebResources2.1.0.23\js\configLoader.js
[2012.10.28 01:26:28 | 000,000,194 | ---- | M] () -- \Program Files (x86)\Common Files\Blizzard Entertainment\BlizzardDownloader.ini
[2008.07.30 11:06:58 | 000,072,192 | ---- | M] () -- \Program Files (x86)\Common Files\microsoft shared\VS7Debug\coloader80.dll
[2008.07.29 04:43:16 | 000,004,096 | ---- | M] () -- \Program Files (x86)\Common Files\microsoft shared\VS7Debug\coloader80.tlb
[2011.09.15 10:09:22 | 000,044,032 | ---- | M] () -- \Program Files (x86)\Hamster Soft\Hamster Free EbookConverter\Calibre\DLLs\PyISAPI_loader.dll
[2011.01.17 17:21:04 | 000,006,263 | ---- | M] () -- \Program Files (x86)\OpenOffice.org 3\Basis\program\pythonloader.py
[2012.01.06 19:03:21 | 000,021,504 | ---- | M] () -- \Program Files (x86)\OpenOffice.org 3\Basis\program\pythonloader.uno.dll
[2011.01.17 20:07:52 | 000,000,171 | ---- | M] () -- \Program Files (x86)\OpenOffice.org 3\Basis\program\pythonloader.uno.ini
[2012.01.06 19:03:29 | 000,029,184 | ---- | M] () -- \Program Files (x86)\OpenOffice.org 3\URE\bin\javaloader.uno.dll
[2010.11.19 13:24:20 | 000,003,689 | ---- | M] () -- \Program Files (x86)\OpenOffice.org 3\URE\java\unoloader.jar
[2013.03.01 22:00:24 | 000,330,040 | ---- | M] () -- \Program Files (x86)\Ubisoft\Ubisoft Game Launcher\ubiorbitapi_r2_loader.dll
[2013.03.01 22:00:25 | 000,294,400 | ---- | M] () -- \Program Files (x86)\Ubisoft\Ubisoft Game Launcher\uplay_r1_loader.dll
[2012.02.23 01:58:36 | 000,078,336 | ---- | M] () -- \Program Files\Adobe\Adobe Photoshop Lightroom 4\Support\DynamicLinkMediaServer\dynamiclinkmediaserver\1.0\MXF_SDK_MetaMetadata_BinaryLoader_4.4.3.dll
[2012.02.23 01:58:36 | 000,155,136 | ---- | M] () -- \Program Files\Adobe\Adobe Photoshop Lightroom 4\Support\DynamicLinkMediaServer\dynamiclinkmediaserver\1.0\MXF_SDK_MetaMetadata_XSDLoader2_4.4.3.dll
[2012.02.23 01:58:36 | 000,117,248 | ---- | M] () -- \Program Files\Adobe\Adobe Photoshop Lightroom 4\Support\DynamicLinkMediaServer\dynamiclinkmediaserver\1.0\MXF_SDK_MetaMetadata_XSDLoader_4.4.3.dll
[2013.05.29 14:23:58 | 000,099,328 | ---- | M] () -- \Program Files\Adobe\Adobe Photoshop Lightroom 5\Support\DynamicLinkMediaServer\dynamiclinkmediaserver\1.0\MXF_SDK_MetaMetadata_BinaryLoader_4.4.20.dll
[2013.05.29 14:23:58 | 000,196,608 | ---- | M] () -- \Program Files\Adobe\Adobe Photoshop Lightroom 5\Support\DynamicLinkMediaServer\dynamiclinkmediaserver\1.0\MXF_SDK_MetaMetadata_XSDLoader2_4.4.20.dll
[2013.05.29 14:23:58 | 000,148,480 | ---- | M] () -- \Program Files\Adobe\Adobe Photoshop Lightroom 5\Support\DynamicLinkMediaServer\dynamiclinkmediaserver\1.0\MXF_SDK_MetaMetadata_XSDLoader_4.4.20.dll
[2014.04.10 06:22:57 | 000,072,480 | ---- | M] () -- \Program Files\AVAST Software\Avast\aswWrcIELoader32.exe
[2014.04.10 06:22:57 | 000,085,376 | ---- | M] () -- \Program Files\AVAST Software\Avast\aswWrcIELoader64.exe
[2 \Program Files\AVAST Software\Avast\*.tmp files -> \Program Files\AVAST Software\Avast\*.tmp -> ]
[2011.11.17 15:50:34 | 000,000,232 | ---- | M] () -- \ProgramData\Nero\Nero 10\OnlineServices\NOSWebConfig\MySpace\uploadError.xml
[2013.08.28 19:38:20 | 000,000,340 | ---- | M] () -- \ProgramData\Spybot - Search & Destroy\Recovery\WinDownloadergen.zip
[2013.08.28 19:38:21 | 000,317,104 | ---- | M] () -- \ProgramData\Spybot - Search & Destroy\Recovery\WinDownloadergen1.zip
[2012.10.01 13:36:00 | 000,387,800 | ---- | M] () -- \ProgramData\TERA\launcher\live\downloader.bundle
[2012.07.10 00:11:00 | 000,693,704 | ---- | M] () -- \ProgramData\TERA\launcher\live\downloader.dll
[2011.11.17 15:50:34 | 000,000,232 | ---- | M] () -- \Users\All Users\Nero\Nero 10\OnlineServices\NOSWebConfig\MySpace\uploadError.xml
[2013.08.28 19:38:20 | 000,000,340 | ---- | M] () -- \Users\All Users\Spybot - Search & Destroy\Recovery\WinDownloadergen.zip
[2013.08.28 19:38:21 | 000,317,104 | ---- | M] () -- \Users\All Users\Spybot - Search & Destroy\Recovery\WinDownloadergen1.zip
[2012.10.01 13:36:00 | 000,387,800 | ---- | M] () -- \Users\All Users\TERA\launcher\live\downloader.bundle
[2012.07.10 00:11:00 | 000,693,704 | ---- | M] () -- \Users\All Users\TERA\launcher\live\downloader.dll
[2014.04.14 17:04:04 | 000,019,765 | ---- | M] () -- \Users\lukas\AppData\Local\Google\Chrome\User Data\Default\Extensions\cmaiofennmphjldldcpphcechfnnohja\2.1.0.23_0\js\configLoader.js
[2014.04.14 17:04:04 | 000,002,597 | ---- | M] () -- \Users\lukas\AppData\Local\Google\Chrome\User Data\Default\Extensions\cmaiofennmphjldldcpphcechfnnohja\2.1.0.23_0\js\scriptLoader.js
[2014.06.06 09:18:28 | 000,009,418 | ---- | M] () -- \Users\lukas\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.7.1_0\img\gifloader.gif
[2014.03.13 23:20:16 | 000,003,208 | ---- | M] () -- \Users\lukas\AppData\Local\Google\Chrome\User Data\Default\Extensions\knebimhcckndhiglamoabbnifdkijidd\2.5.8_0\skin\ajax-loader.gif
[2012.09.16 20:48:33 | 000,000,673 | ---- | M] () -- \Users\lukas\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pacgpkgadgmibnhpdidcnfafllnmeomc\2.3.15.10_0\Media\ajax-loader.gif
[2012.09.16 16:18:22 | 000,000,673 | ---- | M] () -- \Users\lukas\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pacgpkgadgmibnhpdidcnfafllnmeomc\2.3.7.1_0\Media\ajax-loader.gif
[2014.02.18 18:46:42 | 000,072,638 | ---- | M] () -- \Users\lukas\AppData\Local\Skype\Apps\login\images\loader.gif
[2014.02.18 18:46:42 | 000,003,032 | ---- | M] () -- \Users\lukas\AppData\Local\Skype\Apps\login\images\loader.png
[2014.02.18 18:46:42 | 000,006,012 | ---- | M] () -- \Users\lukas\AppData\Local\Skype\Apps\login\images\normal\loader_15fps.gif
[2014.02.18 18:46:42 | 000,021,956 | ---- | M] () -- \Users\lukas\AppData\Local\Skype\Apps\login\images\normal\loader_30fps.gif
[2014.02.18 18:46:42 | 000,009,772 | ---- | M] () -- \Users\lukas\AppData\Local\Skype\Apps\login\images\retina\loader@2x.png
[2012.08.23 11:19:47 | 000,031,138 | ---- | M] () -- \Users\lukas\AppData\Roaming\cplauncher\no_modded\.minecraft\ForgeModLoader-0.log
[2012.04.11 09:26:50 | 000,006,911 | ---- | M] () -- \Users\lukas\AppData\Roaming\cplauncher\no_modded\.minecraft\ModLoader.txt
[2012.04.11 09:25:49 | 000,000,163 | ---- | M] () -- \Users\lukas\AppData\Roaming\cplauncher\no_modded\.minecraft\config\ModLoader.cfg
[2012.04.23 20:31:42 | 000,001,980 | ---- | M] () -- \Users\lukas\AppData\Roaming\cplauncher\no_modded\.minecraft\mods\ComputerCraft\org\luaj\vm2\luajc\JavaLoader.class
[2012.04.03 18:21:48 | 000,769,532 | ---- | M] () -- \Users\lukas\AppData\Roaming\HTC\htcUPCTLoader.bmp
[2012.04.03 18:21:50 | 001,959,698 | ---- | M] () -- \Users\lukas\AppData\Roaming\HTC\htcUPCTLoader.dmp
[2013.03.25 17:21:00 | 000,388,776 | ---- | M] () -- \Users\lukas\AppData\Roaming\TERA\launcher\live\downloader.bundle
[2013.03.20 08:02:00 | 000,694,656 | ---- | M] () -- \Users\lukas\AppData\Roaming\TERA\launcher\live\downloader.dll
[2012.01.30 19:36:40 | 000,293,888 | ---- | M] () -- \Users\Public\Sony Online Entertainment\Installed Games\LaunchPad.libs\wws_crashreport_uploader.exe
[2013.04.27 19:16:36 | 000,446,464 | ---- | M] () -- \Windows\NEXON_EU_DownloaderUpdater.exe
[2009.07.14 14:25:34 | 002,202,645 | R--- | M] () -- \Windows\Setup\SCRIPTS\Windows7Loader.exe
[2011.02.05 15:09:50 | 000,005,799 | ---- | M] () -- \Windows\SoftwareDistribution\Download\d639f7376b627c8f37f9acbbf7c6234a\amd64_microsoft-windows-e..vironment-os-loader_31bf3856ad364e35_6.1.7600.16757_none_9c05f879842e1792.manifest
[2011.02.05 15:05:03 | 000,005,799 | ---- | M] () -- \Windows\SoftwareDistribution\Download\d639f7376b627c8f37f9acbbf7c6234a\amd64_microsoft-windows-e..vironment-os-loader_31bf3856ad364e35_6.1.7600.20897_none_9c6455949d6c2720.manifest
[2011.02.05 19:34:40 | 000,005,799 | ---- | M] () -- \Windows\SoftwareDistribution\Download\d639f7376b627c8f37f9acbbf7c6234a\amd64_microsoft-windows-e..vironment-os-loader_31bf3856ad364e35_6.1.7601.17556_none_9deb553581556a27.manifest
[2011.02.05 15:10:12 | 000,005,799 | ---- | M] () -- \Windows\SoftwareDistribution\Download\d639f7376b627c8f37f9acbbf7c6234a\amd64_microsoft-windows-e..vironment-os-loader_31bf3856ad364e35_6.1.7601.21655_none_9e73f1b69a73f09a.manifest
[2009.07.14 03:03:49 | 000,003,584 | -H-- | M] () -- \Windows\System32\api-ms-win-core-libraryloader-l1-1-0.dll
[2009.07.14 03:15:12 | 000,038,400 | ---- | M] () -- \Windows\System32\dmloader.dll
[2009.07.14 03:03:49 | 000,003,584 | -H-- | M] () -- \Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
[2009.07.14 03:15:12 | 000,038,400 | ---- | M] () -- \Windows\SysWOW64\dmloader.dll
[2009.07.14 03:40:31 | 000,047,616 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-audio-dmusic_31bf3856ad364e35_6.1.7600.16385_none_a1e90d98a953d601\dmloader.dll
[2009.07.14 03:24:53 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.16385_none_66a6e19d9580f9e3\api-ms-win-core-libraryloader-l1-1-0.dll
[2009.07.14 17:17:49 | 000,004,431 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_8f37605116ba80bc.manifest
[2009.07.14 17:17:49 | 000,033,360 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_8f37605116ba80bc_winload.efi.mui_35ee487d
[2009.07.14 17:17:49 | 000,034,896 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_8f37605116ba80bc_winload.exe.mui_3bc5b827
[2009.07.14 17:17:49 | 000,029,776 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_8f37605116ba80bc_winresume.efi.mui_f412814e
[2009.07.14 17:17:49 | 000,030,288 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_8f37605116ba80bc_winresume.exe.mui_ff8b5358
[2009.07.14 04:58:45 | 000,005,745 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7600.16385_none_b71babd98657e6ef.manifest
[2009.07.14 04:58:45 | 000,641,088 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7600.16385_none_b71babd98657e6ef_winload.efi_75834aa0
[2009.07.14 04:58:45 | 000,604,192 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7600.16385_none_b71babd98657e6ef_winload.exe_75835076
[2009.07.14 04:58:45 | 000,557,136 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7600.16385_none_b71babd98657e6ef_winresume.efi_85cd069f
[2009.07.14 04:58:45 | 000,518,352 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7600.16385_none_b71babd98657e6ef_winresume.exe_85cd1215
[2009.07.14 04:57:50 | 000,002,896 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-s..ive-blackbox-loader_31bf3856ad364e35_6.1.7600.16385_none_c72819e06acceb59.manifest
[2009.07.14 04:57:50 | 000,019,008 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-s..ive-blackbox-loader_31bf3856ad364e35_6.1.7600.16385_none_c72819e06acceb59_spldr.sys_98bd87a0
[2009.07.14 17:15:51 | 000,004,431 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_8f37605116ba80bc.manifest
[2009.07.14 04:13:42 | 000,005,745 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7600.16385_none_b71babd98657e6ef.manifest
[2011.02.05 15:09:31 | 000,005,745 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7600.16757_none_b73e23c9863dba66.manifest
[2011.02.05 15:04:44 | 000,005,745 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7600.20897_none_b79c80e49f7bc9f4.manifest
[2011.02.05 19:34:23 | 000,005,745 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.17556_none_b923808583650cfb.manifest
[2011.02.05 15:09:57 | 000,005,745 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.21655_none_b9ac1d069c83936e.manifest
[2009.07.14 04:18:27 | 000,002,896 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-s..ive-blackbox-loader_31bf3856ad364e35_6.1.7600.16385_none_c72819e06acceb59.manifest
[2009.07.14 03:15:12 | 000,038,400 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-audio-dmusic_31bf3856ad364e35_6.1.7600.16385_none_45ca7214f0f664cb\dmloader.dll
[2009.07.14 03:03:49 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.16385_none_0a884619dd2388ad\api-ms-win-core-libraryloader-l1-1-0.dll
< *minodlogin* /s >
< *tnod* /s >
[2013.09.19 08:23:27 | 000,001,016 | ---- | M] () -- \ProgramData\Spybot - Search & Destroy\Recovery\patnodinstalaninformace.zip
[2013.09.19 08:23:28 | 000,001,061 | ---- | M] () -- \ProgramData\Spybot - Search & Destroy\Recovery\patnodinstalaninformace1.zip
[2013.09.19 08:23:29 | 000,000,989 | ---- | M] () -- \ProgramData\Spybot - Search & Destroy\Recovery\patnodinstalaninformace2.zip
[2012.09.14 19:10:20 | 000,001,043 | ---- | M] () -- \ProgramData\Spybot - Search & Destroy\Recovery\patnodkaz.zip
[2012.09.14 19:10:20 | 000,001,047 | ---- | M] () -- \ProgramData\Spybot - Search & Destroy\Recovery\patnodkaz1.zip
[2012.09.14 19:10:24 | 000,001,202 | ---- | M] () -- \ProgramData\Spybot - Search & Destroy\Recovery\patnodkaz2.zip
[2012.09.14 19:10:24 | 000,001,020 | ---- | M] () -- \ProgramData\Spybot - Search & Destroy\Recovery\patnodkaz3.zip
[2012.09.14 19:10:24 | 000,001,035 | ---- | M] () -- \ProgramData\Spybot - Search & Destroy\Recovery\patnodkaz4.zip
[2013.09.19 08:23:27 | 000,001,016 | ---- | M] () -- \Users\All Users\Spybot - Search & Destroy\Recovery\patnodinstalaninformace.zip
[2013.09.19 08:23:28 | 000,001,061 | ---- | M] () -- \Users\All Users\Spybot - Search & Destroy\Recovery\patnodinstalaninformace1.zip
[2013.09.19 08:23:29 | 000,000,989 | ---- | M] () -- \Users\All Users\Spybot - Search & Destroy\Recovery\patnodinstalaninformace2.zip
[2012.09.14 19:10:20 | 000,001,043 | ---- | M] () -- \Users\All Users\Spybot - Search & Destroy\Recovery\patnodkaz.zip
[2012.09.14 19:10:20 | 000,001,047 | ---- | M] () -- \Users\All Users\Spybot - Search & Destroy\Recovery\patnodkaz1.zip
[2012.09.14 19:10:24 | 000,001,202 | ---- | M] () -- \Users\All Users\Spybot - Search & Destroy\Recovery\patnodkaz2.zip
[2012.09.14 19:10:24 | 000,001,020 | ---- | M] () -- \Users\All Users\Spybot - Search & Destroy\Recovery\patnodkaz3.zip
[2012.09.14 19:10:24 | 000,001,035 | ---- | M] () -- \Users\All Users\Spybot - Search & Destroy\Recovery\patnodkaz4.zip
< *AutoKMS* /s >
< *activator* /s >
< *serial* /s >
[2011.09.16 08:11:52 | 000,247,080 | R--- | M] () -- \Program Files (x86)\Common Files\Nero\BDCore\boost_serialization-mt.dll
[2011.09.16 08:11:52 | 000,166,696 | R--- | M] () -- \Program Files (x86)\Common Files\Nero\BDCore\boost_wserialization-mt.dll
[2006.01.27 01:44:04 | 000,000,612 | ---- | M] () -- \Program Files (x86)\Microsoft Visual Studio 9.0\VB\Snippets\1033\other\connectivity\EnumerateSerialPorts.snippet
[2006.01.27 01:44:04 | 000,001,198 | ---- | M] () -- \Program Files (x86)\Microsoft Visual Studio 9.0\VB\Snippets\1033\other\connectivity\ReadDatafromaSerialPort.snippet
[2006.01.27 01:44:04 | 000,001,512 | ---- | M] () -- \Program Files (x86)\Microsoft Visual Studio 9.0\VB\Snippets\1033\other\connectivity\UseaSerialPorttoDialaPhoneNumber.snippet
[2009.06.10 23:13:54 | 000,970,752 | ---- | M] () -- \Program Files (x86)\Reference Assemblies\Microsoft\Framework\v3.0\System.Runtime.Serialization.dll
[2009.07.14 17:17:32 | 000,090,112 | ---- | M] () -- \Program Files (x86)\Reference Assemblies\Microsoft\Framework\v3.0\cs\System.RunTime.Serialization.Resources.dll
[2008.06.14 02:32:10 | 000,285,032 | ---- | M] () -- \Program Files (x86)\Reference Assemblies\Microsoft\Framework\v3.0\en\System.Runtime.Serialization.xml
[2009.06.10 22:30:43 | 000,847,872 | ---- | M] () -- \Program Files\Reference Assemblies\Microsoft\Framework\v3.0\System.Runtime.Serialization.dll
[2009.07.14 17:17:32 | 000,090,112 | ---- | M] () -- \Program Files\Reference Assemblies\Microsoft\Framework\v3.0\cs\System.RunTime.Serialization.Resources.dll
[2014.06.10 19:39:22 | 000,003,072 | ---- | M] () -- \Users\lukas\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.serialzone.cz_0.localstorage
[2014.06.10 19:39:22 | 000,003,608 | ---- | M] () -- \Users\lukas\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.serialzone.cz_0.localstorage-journal
[2009.07.14 17:17:20 | 000,011,776 | ---- | M] () -- \Windows\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap.resources\2.0.0.0_cs_b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2009.06.10 23:23:19 | 000,131,072 | ---- | M] () -- \Windows\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap\2.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.dll
[2009.07.14 17:17:32 | 000,090,112 | ---- | M] () -- \Windows\assembly\GAC_MSIL\system.runtime.serialization.resources\3.0.0.0_cs_b77a5c561934e089\System.RunTime.Serialization.Resources.dll
[2009.06.10 23:13:54 | 000,970,752 | ---- | M] () -- \Windows\assembly\GAC_MSIL\System.Runtime.Serialization\3.0.0.0__b77a5c561934e089\System.Runtime.Serialization.dll
[2009.07.14 06:56:20 | 002,347,008 | ---- | M] () -- \Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Seri#\39e53f507d9cbc5c10a2f47c4b0d09dd\System.Runtime.Serialization.ni.dll
[2009.07.14 06:55:32 | 000,310,784 | ---- | M] () -- \Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Seri#\d57d865568209a71d63739fa448ed6df\System.Runtime.Serialization.Formatters.Soap.ni.dll
[2009.07.14 06:59:40 | 003,073,536 | ---- | M] () -- \Windows\assembly\NativeImages_v2.0.50727_64\System.Runtime.Seri#\12aaff696a0c54773664b4c5407deaa2\System.Runtime.Serialization.ni.dll
[2009.07.14 06:57:59 | 000,396,288 | ---- | M] () -- \Windows\assembly\NativeImages_v2.0.50727_64\System.Runtime.Seri#\d0c6d3aadce1e38bbcb06905e132a503\System.Runtime.Serialization.Formatters.Soap.ni.dll
[2012.09.27 05:33:31 | 000,310,272 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_32\System.Runtime.Seri#\d0ff3383438d688a0118d0fa19ed1dc4\System.Runtime.Serialization.Formatters.Soap.ni.dll
[2012.09.27 05:33:28 | 002,625,024 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_32\System.Runtime.Seri#\e9f8a45b1063d6c6a62718c88a5623d1\System.Runtime.Serialization.ni.dll
[2012.09.27 07:03:21 | 003,375,616 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_64\System.Runtime.Seri#\08fba6b56d838ad48b4451c82e5728d4\System.Runtime.Serialization.ni.dll
[2012.09.27 07:03:28 | 000,374,272 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_64\System.Runtime.Seri#\b468f9d8655e91b7a6aa11473eca4a97\System.Runtime.Serialization.Formatters.Soap.ni.dll
[2013.11.22 21:36:32 | 000,122,264 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.dll
[2013.11.22 21:36:31 | 001,026,936 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization\v4.0_4.0.0.0__b77a5c561934e089\System.Runtime.Serialization.dll
[2009.06.10 23:23:19 | 000,131,072 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v2.0.50727\System.Runtime.Serialization.Formatters.Soap.dll
[2009.07.14 17:17:21 | 000,011,776 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v2.0.50727\cs\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2008.06.02 09:01:28 | 000,009,272 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v2.0.50727\en\System.Runtime.Serialization.Formatters.Soap.xml
[2009.06.10 23:14:06 | 000,970,752 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\System.Runtime.Serialization.dll
[2010.03.18 14:16:28 | 001,026,936 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\System.Runtime.Serialization.dll
[2010.03.18 14:16:28 | 000,122,264 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\System.Runtime.Serialization.Formatters.Soap.dll
[2009.06.10 22:40:06 | 000,131,072 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v2.0.50727\System.Runtime.Serialization.Formatters.Soap.dll
[2009.07.14 17:17:19 | 000,011,776 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v2.0.50727\cs\System.Runtime.Serialization.Formatters.Soap.Resources.dll
[2009.06.10 22:30:46 | 000,847,872 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\System.Runtime.Serialization.dll
[2010.03.18 14:16:28 | 001,026,936 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v4.0.30319\System.Runtime.Serialization.dll
[2010.03.18 14:16:28 | 000,122,264 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v4.0.30319\System.Runtime.Serialization.Formatters.Soap.dll
[2009.07.14 03:16:13 | 000,015,360 | ---- | M] () -- \Windows\System32\serialui.dll
[2009.07.14 17:17:13 | 000,005,120 | ---- | M] () -- \Windows\System32\cs-CZ\serialui.dll.mui
[2009.07.14 02:00:40 | 000,094,208 | ---- | M] () -- \Windows\System32\DriverStore\FileRepository\msports.inf_amd64_neutral_fdcfb86ce78678d1\serial.sys
[2009.06.10 22:37:50 | 000,038,400 | ---- | M] () -- \Windows\System32\DriverStore\FileRepository\smartcrd.inf_amd64_neutral_6fb75ea318f84fe5\grserial.sys
[2009.07.14 03:16:13 | 000,015,360 | ---- | M] () -- \Windows\SysWOW64\serialui.dll
[2009.07.14 17:17:13 | 000,005,120 | ---- | M] () -- \Windows\SysWOW64\cs-CZ\serialui.dll.mui
[2009.07.14 17:17:19 | 000,011,776 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-n..xcorecomp.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_1c215c9ac50719c5\System.Runtime.Serialization.Formatters.Soap.Resources.dll
[2009.07.14 17:17:22 | 000,005,120 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-u..em-config.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_aa5fd338fd5bcb23\serialui.dll.mui
[2009.07.14 03:41:54 | 000,017,920 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-unimodem-config_31bf3856ad364e35_6.1.7600.16385_none_50f69335385bc360\serialui.dll
[2009.07.14 17:17:32 | 000,090,112 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-wcfcorecomp.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_b96904386c2fe002\System.RunTime.Serialization.Resources.dll
[2009.07.14 17:17:25 | 000,009,728 | ---- | M] () -- \Windows\winsxs\amd64_msports.inf.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_20ab142d65ed6acc\serial.sys.mui
[2009.07.14 02:00:40 | 000,094,208 | ---- | M] () -- \Windows\winsxs\amd64_msports.inf_31bf3856ad364e35_6.1.7600.16385_none_548ca258d20f4ada\serial.sys
[2009.06.10 22:40:06 | 000,131,072 | ---- | M] () -- \Windows\winsxs\amd64_netfx-system.runtim..ion.formatters.soap_b03f5f7f11d50a3a_6.1.7600.16385_none_a9d1bee515273f56\System.Runtime.Serialization.Formatters.Soap.dll
[2009.06.10 22:37:50 | 000,038,400 | ---- | M] () -- \Windows\winsxs\amd64_smartcrd.inf_31bf3856ad364e35_6.1.7600.16385_none_ce9ed3064deed3aa\grserial.sys
[2009.06.10 22:30:46 | 000,847,872 | ---- | M] () -- \Windows\winsxs\amd64_wcf-system.runtime.serialization.ref_b03f5f7f11d50a3a_6.1.7600.16385_none_5943b25a748cb06c\System.Runtime.Serialization.dll
[2009.06.10 22:30:43 | 000,847,872 | ---- | M] () -- \Windows\winsxs\amd64_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7600.16385_none_941abf24c884ab05\System.Runtime.Serialization.dll
[2009.07.14 04:57:21 | 000,002,766 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..gertransport-serial_31bf3856ad364e35_6.1.7600.16385_none_6daa7ec5c65bf5bc.manifest
[2009.07.14 04:57:21 | 000,017,984 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..gertransport-serial_31bf3856ad364e35_6.1.7600.16385_none_6daa7ec5c65bf5bc_kdcom.dll_db5e7744
[2009.07.14 17:17:49 | 000,005,120 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-u..em-config.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_aa5fd338fd5bcb23_serialui.dll.mui_7d29d2a3
[2009.07.14 04:57:29 | 000,017,920 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-unimodem-config_31bf3856ad364e35_6.1.7600.16385_none_50f69335385bc360_serialui.dll_bea29328
[2009.07.14 17:17:47 | 000,005,120 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-u..em-config.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_4e4137b544fe59ed_serialui.dll.mui_7d29d2a3
[2009.07.14 04:58:37 | 000,015,360 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-unimodem-config_31bf3856ad364e35_6.1.7600.16385_none_f4d7f7b17ffe522a_serialui.dll_bea29328
[2009.07.14 04:15:17 | 000,002,766 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..gertransport-serial_31bf3856ad364e35_6.1.7600.16385_none_6daa7ec5c65bf5bc.manifest
[2011.02.05 15:10:43 | 000,002,766 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..gertransport-serial_31bf3856ad364e35_6.1.7600.16757_none_6dccf6b5c641c933.manifest
[2011.02.05 15:05:47 | 000,002,766 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..gertransport-serial_31bf3856ad364e35_6.1.7600.20897_none_6e2b53d0df7fd8c1.manifest
[2011.02.05 19:35:45 | 000,002,766 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..gertransport-serial_31bf3856ad364e35_6.1.7601.17556_none_6fb25371c3691bc8.manifest
[2011.02.05 15:11:05 | 000,002,766 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..gertransport-serial_31bf3856ad364e35_6.1.7601.21655_none_703aeff2dc87a23b.manifest
[2009.07.14 04:11:30 | 000,000,868 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft.windows.h..tserial-driverclass_31bf3856ad364e35_6.1.7600.16385_none_88b1c48f2026fe3f.manifest
[2009.07.14 04:26:23 | 000,002,237 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_wcf-system.runtime.serialization.ref_b03f5f7f11d50a3a_6.1.7600.16385_none_5943b25a748cb06c.manifest
[2009.07.14 04:27:09 | 000,002,262 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7600.16385_none_941abf24c884ab05.manifest
[2009.07.14 03:52:33 | 000,002,226 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.ref_b77a5c561934e089_6.1.7600.16385_none_a6aa149474833896.manifest
[2009.07.14 17:16:38 | 000,001,626 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7600.16385_cs-cz_34555b4d83cf58b0.manifest
[2009.07.14 03:51:52 | 000,001,985 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization_b77a5c561934e089_6.1.7600.16385_none_d6ed4a2e9c2a39c9.manifest
[2009.07.14 03:57:53 | 000,002,260 | ---- | M] () -- \Windows\winsxs\Manifests\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7600.16385_none_dbc7f5fbdd00d40b.manifest
[2009.06.10 23:23:19 | 000,131,072 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.seri..ion.formatters.soap_b03f5f7f11d50a3a_6.1.7600.16385_none_1c9a3ec1e01c684b\System.Runtime.Serialization.Formatters.Soap.dll
[2009.07.14 17:17:20 | 000,011,776 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.seri..ters.soap.resources_b03f5f7f11d50a3a_6.1.7600.16385_cs-cz_d5c3552dd9b47144\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2009.06.10 23:14:06 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.ref_b77a5c561934e089_6.1.7600.16385_none_a6aa149474833896\System.Runtime.Serialization.dll
[2009.07.14 17:17:32 | 000,090,112 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7600.16385_cs-cz_34555b4d83cf58b0\System.RunTime.Serialization.Resources.dll
[2009.06.10 23:13:54 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization_b77a5c561934e089_6.1.7600.16385_none_d6ed4a2e9c2a39c9\System.Runtime.Serialization.dll
[2009.07.14 17:17:21 | 000,011,776 | ---- | M] () -- \Windows\winsxs\wow64_microsoft-windows-n..xcorecomp.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_267606ecf967dbc0\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2009.07.14 17:17:13 | 000,005,120 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-u..em-config.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_4e4137b544fe59ed\serialui.dll.mui
[2009.07.14 03:16:13 | 000,015,360 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-unimodem-config_31bf3856ad364e35_6.1.7600.16385_none_f4d7f7b17ffe522a\serialui.dll
[2009.07.14 17:17:32 | 000,090,112 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-wcfcorecomp.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_5d4a68b4b3d26ecc\System.RunTime.Serialization.Resources.dll
[2009.06.10 23:13:54 | 000,970,752 | ---- | M] () -- \Windows\winsxs\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7600.16385_none_dbc7f5fbdd00d40b\System.Runtime.Serialization.dll
< *w7lxe* /s >
========== Alternate Data Streams ==========
@Alternate Data Stream - 6144 bytes -> C:\Windows\Cursors\arrow_n.cur:NEDTA.DAT
@Alternate Data Stream - 21 bytes -> \Users\Public\Sony Online Entertainment\Installed Games\LaunchPad.libs\wws_crashreport_uploader.exe:crc
< End of report >
Re: pocitac nevypina
Cela firma se pri tom upgradu svezla pouzitim cracku? 
Mozna je to ve firme bezne, nicmene pravidla fora hovori jasne http://forum.viry.cz/viewtopic.php?f=12&t=115512
Mozna je to ve firme bezne, nicmene pravidla fora hovori jasne http://forum.viry.cz/viewtopic.php?f=12&t=115512
Pomáhat NELZE:
2) Pokud stroj uživatele prokazatelně obsahuje nelegální hostitelský čí ochranný software
(operační systém, antivir, firewall, atd.), je nutné navést uživatele k nápravě, např. skrze neplacený software,
a začít řešit, až v době kdy je PC "v pořádku". V případě že uživatel nechce na pravidla přistoupit,
je nutné jej vyzvat ať fórum opustí, a vrátí se až je splní.
Pokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Re: pocitac nevypina
Dekuji za odpoved.Napravu vyhledam jinde.Dekuji
Re: pocitac nevypina
No neni zac
Pokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Přispějete na provoz fóra?
