prosím o kontrolu logu

Zpráva

#16 Příspěvek od **Rudy** » 17 pro 2014 18:06

Jistě můžete.

jarda.otta · #17 Příspěvek od **jarda.otta** » 25 pro 2014 20:51

Děkuji za pomoc a omluva že píšu až teď. Předsváteční shon. Zde rsit z tohoto compu. Jen bych chtěl upozornit že se u tohoto compu stává že najednou po delší dobu když je spuštěn nečinný, tak ztuhne myš a klávesnice. Třeba je to hardware ale kdo ví. Děkuji
Zde rsit: Logfile of random's system information tool 1.10 (written by random/random)
Run by Kingpin at 2014-12-25 20:38:56
Microsoft Windows 7 Ultimate
System drive C: has 94 GB (31%) free of 305 GB
Total RAM: 2047 MB (65% free)

======Listing Processes======

\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
winlogon.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\nvvsvc.exe
"C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe"
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs

C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\Windows\system32\nvvsvc.exe -session -first
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"taskhost.exe"
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe" /service
"C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe" /service
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\SysWOW64\FUSServices.exe
"C:\Program Files\Microsoft LifeCam\MSCamS64.exe"
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1
C:\Windows\system32\SearchIndexer.exe /Embedding
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files\CCleaner\CCleaner.exe" /MONITOR /uac
C:\Windows\system32\wbem\unsecapp.exe -Embedding
C:\Windows\System32\svchost.exe -k secsvcs
C:\Windows\system32\svchost.exe -k SDRSVC
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe11_ Global\UsGthrCtrlFltPipeMssGthrPipe11 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Windows\system32\SearchFilterHost.exe" 0 512 516 524 65536 520
"C:\Users\Kingpin\Desktop\RSITx64.exe"

======Scheduled tasks folder======

C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe

=========Mozilla firefox=========

ProfilePath - C:\Users\Kingpin\AppData\Roaming\Mozilla\Firefox\Profiles\svte8ccw.default

prefs.js - "browser.startup.homepage" - "https://www.seznam.cz"
prefs.js - "keyword.URL" - "http://search.seznam.cz/?sourceid=quick ... earchTerms}&"

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 16.0.0.235 Plugin
"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_16_0_0_235.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@mozilla.zeniko.ch/SumatraPDF_Browser_Plugin]
"Description"=SumatraPDF Browser Plugin
"Path"=C:\Program Files (x86)\SumatraPDF\npPdfViewer.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVision]
"Description"=NVIDIA stereo images plugin for Mozilla browsers
"Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVisionStreaming]
"Description"=NVIDIA 3D Vision Streaming plugin for Mozilla browsers
"Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@pandonetworks.com/PandoWebPlugin]
"Description"=This plugin detects and launches Pando Media Booster
"Path"=C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.1.5]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 16.0.0.235 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_16_0_0_235.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled

C:\Program Files (x86)\Mozilla Firefox\extensions\
{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}

C:\Program Files (x86)\Mozilla Firefox\plugins\
np-mswmp.dll
WMP Firefox Plugin License.rtf
WMP Firefox Plugin RelNotes.txt

C:\Users\Kingpin\AppData\Roaming\Mozilla\Firefox\Profiles\svte8ccw.default\searchplugins\
seznam-avast.xml

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2014-12-16 705448]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~2\MICROS~1\Office12\GR469A~1.DLL [2006-10-27 2210608]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2014-12-16 586968]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner64.exe [2014-12-12 7394584]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ArcSoft Connection Service]
C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe [2010-10-27 207424]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Facebook Update]
C:\Users\Kingpin\AppData\Local\Facebook\Update\FacebookUpdate.exe /c /nocrashserver []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GrooveMonitor]
C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [2006-10-27 31016]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LifeCam]
C:\Program Files (x86)\Microsoft LifeCam\LifeExp.exe [2010-12-13 135536]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogMeIn Hamachi Ui]
C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe --auto-start []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MFFSum_Pro_LL2]
C:\Program Files (x86)\Xerox Companion Suite\MFFSUM.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MFPrintServer_Pro_LL2]
C:\Program Files (x86)\Xerox Companion Suite\MFPrintServer.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skype]
C:\Program Files (x86)\Skype\Phone\Skype.exe [2014-12-11 30877280]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TV IR]
C:\Program Files (x86)\TV IR\TV IR.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^TMMonitor.lnk]
C:\PROGRA~2\ArcSoft\TOTALM~1.5\TMMONI~1.EXE [2009-06-26 258048]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2014-12-16 5225064]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~2\MICROS~1\Office12\GR469A~1.DLL [2006-10-27 2210608]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"SoftwareSASGeneration"=1

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"VIDC.I420"=lvcod64.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"wave2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave3"=wdmaud.drv
"mixer3"=wdmaud.drv
"wave4"=wdmaud.drv
"mixer4"=wdmaud.drv
"wave5"=wdmaud.drv
"mixer5"=wdmaud.drv
"wave6"=wdmaud.drv
"mixer6"=wdmaud.drv
"wave7"=wdmaud.drv
"mixer7"=wdmaud.drv
"wave8"=wdmaud.drv
"mixer8"=wdmaud.drv
"wave9"=wdmaud.drv
"mixer9"=wdmaud.drv
"midi2"=wdmaud.drv
"aux2"=wdmaud.drv
"midi3"=wdmaud.drv
"aux3"=wdmaud.drv
"MSVideo"=vfwwdm32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"midi4"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - %SystemRoot%\SysWow64\CScript.exe "%1" %*
.vbs - open - %SystemRoot%\SysWow64\CScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2014-12-25 20:38:56 ----D---- C:\rsit
2014-12-25 20:38:56 ----D---- C:\Program Files\trend micro
2014-12-25 01:33:41 ----D---- C:\ProgramData\VS Revo Group
2014-12-25 01:33:41 ----A---- C:\Windows\system32\drivers\revoflt.sys
2014-12-25 01:33:38 ----D---- C:\Program Files\VS Revo Group
2014-12-25 01:11:56 ----D---- C:\AdwCleaner
2014-12-25 01:02:48 ----D---- C:\Program Files\CCleaner
2014-12-25 00:30:36 ----D---- C:\Users\Kingpin\AppData\Roaming\PhotoFiltre Studio X
2014-12-25 00:30:31 ----D---- C:\Program Files (x86)\PhotoFiltre Studio X
2014-12-24 20:48:28 ----D---- C:\Users\Kingpin\AppData\Roaming\IsolatedStorage
2014-12-24 20:48:28 ----D---- C:\ProgramData\IsolatedStorage
2014-12-24 20:47:07 ----D---- C:\Spacekace
2014-12-23 19:14:19 ----A---- C:\Windows\system32\drivers\cmudax3.sys
2014-12-23 19:14:19 ----A---- C:\Windows\system32\cmudax3.dll
2014-12-23 17:39:18 ----D---- C:\Program Files (x86)\Lavalys
2014-12-23 17:36:45 ----D---- C:\Users\Kingpin\AppData\Roaming\uTorrent
2014-12-23 16:30:53 ----D---- C:\Windows\SYSWOW64\RTCOM
2014-12-23 16:30:53 ----D---- C:\Program Files\Realtek
2014-12-23 16:30:15 ----A---- C:\Windows\system32\WavesGUILib.dll
2014-12-23 16:30:15 ----A---- C:\Windows\system32\tosade.dll
2014-12-23 16:30:15 ----A---- C:\Windows\system32\tepeqapo64.dll
2014-12-23 16:30:14 ----A---- C:\Windows\system32\tadefxapo264.dll
2014-12-23 16:30:14 ----A---- C:\Windows\system32\tadefxapo.dll
2014-12-23 16:30:14 ----A---- C:\Windows\system32\SRSWOW64.dll
2014-12-23 16:30:14 ----A---- C:\Windows\system32\SRSTSX64.dll
2014-12-23 16:30:14 ----A---- C:\Windows\system32\SRSTSH64.dll
2014-12-23 16:30:14 ----A---- C:\Windows\system32\SRSHP64.dll
2014-12-23 16:30:13 ----A---- C:\Windows\SYSWOW64\SFCOM.dll
2014-12-23 16:30:13 ----A---- C:\Windows\system32\SFSS_APO.dll
2014-12-23 16:30:13 ----A---- C:\Windows\system32\SFNHK64.dll
2014-12-23 16:30:13 ----A---- C:\Windows\system32\SFCOM64.dll
2014-12-23 16:30:13 ----A---- C:\Windows\system32\SFAPO64.dll
2014-12-23 16:30:12 ----A---- C:\Windows\system32\RtPgEx64.dll
2014-12-23 16:30:11 ----A---- C:\Windows\system32\RtlCPAPI64.dll
2014-12-23 16:30:11 ----A---- C:\Windows\system32\drivers\RTKVHD64.sys
2014-12-23 16:30:10 ----A---- C:\Windows\system32\RtkCoLDR64.dll
2014-12-23 16:30:10 ----A---- C:\Windows\system32\RtkCfg64.dll
2014-12-23 16:30:10 ----A---- C:\Windows\system32\RtkAPO64.dll
2014-12-23 16:30:10 ----A---- C:\Windows\system32\RtkApi64.dll
2014-12-23 16:30:10 ----A---- C:\Windows\system32\RTEEP64A.dll
2014-12-23 16:30:10 ----A---- C:\Windows\system32\RTEEL64A.dll
2014-12-23 16:30:10 ----A---- C:\Windows\system32\RTEEG64A.dll
2014-12-23 16:30:10 ----A---- C:\Windows\system32\RTEED64A.dll
2014-12-23 16:30:10 ----A---- C:\Windows\system32\RTCOM64.dll
2014-12-23 16:30:09 ----A---- C:\Windows\system32\RP3DHT64.dll
2014-12-23 16:30:09 ----A---- C:\Windows\system32\RP3DAA64.dll
2014-12-23 16:30:09 ----A---- C:\Windows\system32\RCoRes64.dat
2014-12-23 16:30:09 ----A---- C:\Windows\system32\RCoInstII64.dll
2014-12-23 16:30:09 ----A---- C:\Windows\system32\drivers\RTAIODAT.DAT
2014-12-23 16:30:08 ----A---- C:\Windows\system32\R4EEP64A.dll
2014-12-23 16:30:08 ----A---- C:\Windows\system32\R4EEL64A.dll
2014-12-23 16:30:08 ----A---- C:\Windows\system32\R4EEG64A.dll
2014-12-23 16:30:08 ----A---- C:\Windows\system32\R4EED64A.dll
2014-12-23 16:30:08 ----A---- C:\Windows\system32\R4EEA64A.dll
2014-12-23 16:30:07 ----A---- C:\Windows\system32\MaxxVolumeSDAPO.dll
2014-12-23 16:30:07 ----A---- C:\Windows\system32\MaxxAudioRealtek264.dll
2014-12-23 16:30:07 ----A---- C:\Windows\system32\MaxxAudioRealtek.dll
2014-12-23 16:30:07 ----A---- C:\Windows\system32\MaxxAudioEQ.dll
2014-12-23 16:30:06 ----A---- C:\Windows\system32\MaxxAudioAPOShell64.dll
2014-12-23 16:30:06 ----A---- C:\Windows\system32\MaxxAudioAPO30.dll
2014-12-23 16:30:06 ----A---- C:\Windows\system32\MaxxAudioAPO20.dll
2014-12-23 16:30:06 ----A---- C:\Windows\system32\KAAPORT64.dll
2014-12-23 16:30:03 ----A---- C:\Windows\system32\FMAPO64.dll
2014-12-23 16:30:03 ----A---- C:\Windows\system32\DTSVoiceClarityDLL64.dll
2014-12-23 16:30:03 ----A---- C:\Windows\system32\DTSU2PREC64.dll
2014-12-23 16:30:03 ----A---- C:\Windows\system32\DTSU2PLFX64.dll
2014-12-23 16:30:03 ----A---- C:\Windows\system32\DTSU2PGFX64.dll
2014-12-23 16:30:03 ----A---- C:\Windows\system32\DTSSymmetryDLL64.dll
2014-12-23 16:30:03 ----A---- C:\Windows\system32\DTSS2SpeakerDLL64.dll
2014-12-23 16:30:03 ----A---- C:\Windows\system32\DTSS2HeadphoneDLL64.dll
2014-12-23 16:30:02 ----A---- C:\Windows\system32\DTSNeoPCDLL64.dll
2014-12-23 16:30:02 ----A---- C:\Windows\system32\DTSLimiterDLL64.dll
2014-12-23 16:30:02 ----A---- C:\Windows\system32\DTSLFXAPO64.dll
2014-12-23 16:30:02 ----A---- C:\Windows\system32\DTSGFXAPONS64.dll
2014-12-23 16:30:02 ----A---- C:\Windows\system32\DTSGFXAPO64.dll
2014-12-23 16:30:02 ----A---- C:\Windows\system32\DTSGainCompensatorDLL64.dll
2014-12-23 16:30:02 ----A---- C:\Windows\system32\DTSBoostDLL64.dll
2014-12-23 16:30:02 ----A---- C:\Windows\system32\DTSBassEnhancementDLL64.dll
2014-12-23 16:30:02 ----A---- C:\Windows\system32\AERTAR64.dll
2014-12-23 16:30:01 ----D---- C:\Program Files (x86)\Realtek
2014-12-23 16:30:01 ----A---- C:\Windows\system32\AERTAC64.dll
2014-12-23 15:56:56 ----HD---- C:\Program Files (x86)\Temp
2014-12-23 15:56:56 ----A---- C:\Windows\RtlExUpd.dll
2014-12-23 08:54:29 ----D---- C:\Program Files\Common Files\logishrd
2014-12-22 13:40:51 ----A---- C:\Windows\system32\dpx.dll
2014-12-16 19:27:42 ----D---- C:\Users\Kingpin\AppData\Roaming\AVAST Software
2014-12-16 18:38:43 ----D---- C:\Windows\system32\MRT
2014-12-16 18:34:02 ----D---- C:\Users\Kingpin\AppData\Roaming\vlc
2014-12-16 18:32:58 ----D---- C:\Program Files (x86)\VideoLAN
2014-12-16 18:30:49 ----A---- C:\Windows\system32\win32k.sys
2014-12-16 18:30:49 ----A---- C:\Windows\system32\win32k(1897).sys
2014-12-16 18:15:11 ----A---- C:\Windows\system32\drivers\aswStm.sys
2014-12-16 18:15:08 ----A---- C:\Windows\system32\drivers\aswHwid.sys
2014-12-16 18:15:03 ----A---- C:\Windows\system32\aswBoot.exe
2014-12-16 18:14:52 ----A---- C:\Windows\avastSS.scr

======List of files/folders modified in the last 1 month======

2014-12-25 20:39:04 ----D---- C:\Windows\Prefetch
2014-12-25 20:39:00 ----D---- C:\Windows\Temp
2014-12-25 20:38:56 ----RD---- C:\Program Files
2014-12-25 19:27:41 ----D---- C:\ProgramData\NVIDIA
2014-12-25 19:27:40 ----D---- C:\Windows\Minidump
2014-12-25 19:27:40 ----D---- C:\Windows
2014-12-25 11:42:03 ----D---- C:\Windows\system32\Tasks
2014-12-25 11:42:02 ----D---- C:\Windows\Tasks
2014-12-25 11:24:38 ----D---- C:\Windows\system32\config
2014-12-25 11:16:58 ----SHD---- C:\System Volume Information
2014-12-25 01:54:32 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2014-12-25 01:54:30 ----SHD---- C:\Windows\Installer
2014-12-25 01:54:30 ----SHD---- C:\Config.Msi
2014-12-25 01:54:30 ----RD---- C:\Program Files (x86)
2014-12-25 01:54:30 ----D---- C:\Windows\SysWOW64
2014-12-25 01:51:13 ----HD---- C:\ProgramData
2014-12-25 01:33:44 ----D---- C:\Windows\system32\drivers
2014-12-25 01:33:44 ----D---- C:\Windows\inf
2014-12-25 01:17:34 ----D---- C:\Users\Kingpin\AppData\Roaming\Skype
2014-12-25 01:15:32 ----D---- C:\ProgramData\ICQ
2014-12-25 01:09:28 ----D---- C:\Users\Kingpin\AppData\Roaming\DAEMON Tools Lite
2014-12-25 01:09:24 ----D---- C:\Windows\Panther
2014-12-25 01:09:21 ----D---- C:\Windows\Logs
2014-12-25 01:09:21 ----D---- C:\Windows\debug
2014-12-25 00:57:49 ----D---- C:\Users\Kingpin\AppData\Roaming\ICQ
2014-12-25 00:30:38 ----D---- C:\Users\Kingpin\AppData\Roaming\Identities
2014-12-24 11:51:19 ----D---- C:\Windows\System32
2014-12-24 11:51:19 ----A---- C:\Windows\system32\PerfStringBackup.INI
2014-12-24 08:56:14 ----D---- C:\Windows\system32\catroot2
2014-12-23 19:37:51 ----D---- C:\Windows\system32\DriverStore
2014-12-23 19:37:51 ----D---- C:\Windows\system32\catroot
2014-12-23 08:54:29 ----D---- C:\Windows\twain_32
2014-12-23 08:54:29 ----D---- C:\Program Files\Common Files
2014-12-23 08:52:03 ----RD---- C:\Program Files (x86)\Skype
2014-12-23 08:51:06 ----D---- C:\ProgramData\Skype
2014-12-23 08:08:39 ----RSD---- C:\Windows\Fonts
2014-12-23 08:08:39 ----D---- C:\Windows\winsxs
2014-12-23 08:08:39 ----D---- C:\Windows\system32\wfp
2014-12-23 08:08:39 ----D---- C:\Windows\system32\wbem
2014-12-23 08:08:39 ----D---- C:\Windows\system32\oobe
2014-12-23 08:08:39 ----D---- C:\Windows\system32\migwiz
2014-12-23 08:08:39 ----D---- C:\Windows\system32\manifeststore
2014-12-23 08:08:39 ----D---- C:\Windows\ehome
2014-12-23 08:08:39 ----D---- C:\Windows\AppPatch
2014-12-23 08:08:39 ----D---- C:\Program Files\Windows Portable Devices
2014-12-23 08:08:39 ----D---- C:\Program Files\Windows Media Player
2014-12-23 08:08:39 ----D---- C:\Program Files\DVD Maker
2014-12-23 08:08:39 ----D---- C:\Program Files (x86)\Windows Portable Devices
2014-12-23 08:08:39 ----D---- C:\Program Files (x86)\Windows Media Player
2014-12-23 08:08:36 ----D---- C:\Windows\TAPI
2014-12-23 08:08:36 ----D---- C:\Windows\SYSWOW64\wbem
2014-12-23 08:08:36 ----D---- C:\Windows\SYSWOW64\sppui
2014-12-23 08:08:36 ----D---- C:\Windows\SYSWOW64\Setup
2014-12-23 08:08:36 ----D---- C:\Windows\SYSWOW64\oobe
2014-12-23 08:08:36 ----D---- C:\Windows\SYSWOW64\migwiz
2014-12-23 08:08:36 ----D---- C:\Windows\SYSWOW64\migration
2014-12-23 08:08:36 ----D---- C:\Windows\SYSWOW64\manifeststore
2014-12-23 08:08:36 ----D---- C:\Windows\SYSWOW64\es-ES
2014-12-23 08:08:36 ----D---- C:\Windows\SYSWOW64\en-US
2014-12-23 08:08:36 ----D---- C:\Windows\SYSWOW64\en
2014-12-23 08:08:35 ----D---- C:\Windows\SYSWOW64\Dism
2014-12-23 08:08:35 ----D---- C:\Windows\SYSWOW64\da-DK
2014-12-23 08:08:35 ----D---- C:\Windows\SYSWOW64\cs-CZ
2014-12-23 08:08:35 ----D---- C:\Windows\SYSWOW64\cs
2014-12-23 08:08:35 ----D---- C:\Windows\SYSWOW64\AdvancedInstallers
2014-12-23 08:08:35 ----D---- C:\Windows\system32\sppui
2014-12-23 08:08:35 ----D---- C:\Windows\system32\Setup
2014-12-23 08:08:35 ----D---- C:\Windows\system32\migration
2014-12-23 08:08:35 ----D---- C:\Windows\system32\es-ES
2014-12-23 08:08:35 ----D---- C:\Windows\system32\en-US
2014-12-23 08:08:35 ----D---- C:\Windows\system32\drivers\UMDF
2014-12-23 08:08:35 ----D---- C:\Windows\system32\drivers\en-US
2014-12-23 08:08:35 ----D---- C:\Windows\system32\drivers\cs-CZ
2014-12-23 08:08:35 ----D---- C:\Windows\system32\Dism
2014-12-23 08:08:35 ----D---- C:\Windows\system32\da-DK
2014-12-23 08:08:35 ----D---- C:\Windows\system32\cs-CZ
2014-12-23 08:08:35 ----D---- C:\Windows\system32\cs
2014-12-23 08:08:34 ----SHD---- C:\Windows\BitLockerDiscoveryVolumeContents
2014-12-23 08:08:34 ----D---- C:\Windows\system32\Boot
2014-12-23 08:08:34 ----D---- C:\Windows\system32\AdvancedInstallers
2014-12-23 08:08:34 ----D---- C:\Windows\servicing
2014-12-23 08:08:34 ----D---- C:\Windows\PolicyDefinitions
2014-12-23 08:08:34 ----D---- C:\Program Files\Windows Sidebar
2014-12-23 08:08:34 ----D---- C:\Program Files\Windows Photo Viewer
2014-12-23 08:08:34 ----D---- C:\Program Files\Windows Mail
2014-12-23 08:08:34 ----D---- C:\Program Files\Windows Journal
2014-12-23 08:08:34 ----D---- C:\Program Files\Windows Defender
2014-12-23 08:08:34 ----D---- C:\Program Files\Common Files\System
2014-12-23 08:08:34 ----D---- C:\Program Files (x86)\Windows Sidebar
2014-12-23 08:08:34 ----D---- C:\Program Files (x86)\Windows Photo Viewer
2014-12-23 08:08:34 ----D---- C:\Program Files (x86)\Windows Mail
2014-12-23 08:08:03 ----D---- C:\Windows\SYSWOW64\XPSViewer
2014-12-23 08:08:03 ----D---- C:\Windows\SYSWOW64\Speech
2014-12-23 08:08:03 ----D---- C:\Windows\SYSWOW64\MUI
2014-12-23 08:08:01 ----D---- C:\Windows\system32\sysprep
2014-12-23 08:08:01 ----D---- C:\Windows\system32\SPReview
2014-12-23 08:08:01 ----D---- C:\Windows\system32\Speech
2014-12-23 08:08:01 ----D---- C:\Windows\system32\MUI
2014-12-23 08:07:57 ----D---- C:\Windows\system32\CodeIntegrity
2014-12-23 08:07:47 ----D---- C:\Program Files\NVIDIA Corporation
2014-12-23 08:07:07 ----D---- C:\Windows\registration
2014-12-23 08:04:16 ----D---- C:\Windows\system32\wdi
2014-12-23 08:04:08 ----D---- C:\Windows\system32\spp
2014-12-23 08:02:40 ----D---- C:\Windows\security
2014-12-23 08:02:21 ----D---- C:\Windows\Microsoft.NET
2014-12-23 08:02:09 ----D---- C:\Windows\Help
2014-12-23 08:01:25 ----RSD---- C:\Windows\assembly
2014-12-23 07:59:52 ----D---- C:\Program Files (x86)\NVIDIA Corporation
2014-12-23 07:59:51 ----D---- C:\Program Files (x86)\Common Files
2014-12-22 14:19:45 ----D---- C:\ProgramData\NVIDIA Corporation
2014-12-22 13:13:25 ----D---- C:\Program Files (x86)\Mozilla Firefox
2014-12-16 19:29:32 ----SD---- C:\ProgramData\Microsoft
2014-12-16 18:44:35 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2014-12-16 18:12:33 ----D---- C:\ProgramData\AVAST Software
2014-11-27 16:40:48 ----A---- C:\Windows\system32\MRT.exe

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 aswRvrt;avast! Revert; C:\Windows\system32\drivers\aswRvrt.sys [2014-12-16 65776]
R0 aswVmm;avast! VM Monitor; C:\Windows\system32\drivers\aswVmm.sys [2014-12-16 267632]
R0 pciide;pciide; C:\Windows\system32\DRIVERS\pciide.sys [2009-07-14 12352]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2009-07-14 214096]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [2014-12-16 93568]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2014-12-22 1050432]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2014-12-16 436624]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2009-07-14 514048]
R2 aswHwid;avast! HardwareID; C:\Windows\system32\drivers\aswHwid.sys [2014-12-16 29208]
R2 aswMonFlt;aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [2014-12-16 83280]
R2 aswStm;aswStm; C:\Windows\system32\drivers\aswStm.sys [2014-12-16 116728]
R3 Afc;PPdus ASPI Shell; C:\Windows\SysWOW64\drivers\Afc.sys [2006-11-14 22784]
R3 cmuda3;C-Media PCI Audio Interface; C:\Windows\system32\drivers\cmudax3.sys [2009-12-01 1155072]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2012-06-19 4065296]
R3 LVUSBS64;Logitech USB Monitor Filter; C:\Windows\system32\DRIVERS\LVUSBS64.sys [2007-10-12 50072]
R3 MTsensor;ATK0110 ACPI UTILITY; C:\Windows\system32\DRIVERS\ASACPI.sys [2005-03-29 8192]
R3 NVNET;NVIDIA nForce 10/100 Mbps Ethernet ; C:\Windows\system32\DRIVERS\nvmf6264.sys [2010-08-12 350952]
R3 PID_0928;Logitech QuickCam Express(PID_0928); C:\Windows\system32\DRIVERS\LV561V64.SYS [2007-10-12 582680]
S3 hamachi;Hamachi Network Interface; C:\Windows\system32\DRIVERS\hamachi.sys [2009-03-18 33856]
S3 MSHUSBVideo;NX6000/NX3000/VX2000/VX5000/VX5500/VX7000/Cinema Filter Driver; C:\Windows\System32\Drivers\nx6000.sys [2010-12-13 36720]
S3 NVENETFD;NVIDIA nForce Networking Controller Driver; C:\Windows\system32\DRIVERS\nvm62x64.sys [2009-06-10 408960]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2009-07-14 165376]
S3 Revoflt;Revoflt; C:\Windows\system32\DRIVERS\revoflt.sys [2009-12-30 31800]
S3 s3cap;s3cap; C:\Windows\system32\DRIVERS\vms3cap.sys [2009-07-14 6656]
S3 smsbda;DVB-T TV Stick; C:\Windows\system32\drivers\smsbda.sys [2009-09-18 63520]
S3 storvsc;storvsc; C:\Windows\system32\DRIVERS\storvsc.sys [2009-07-14 34896]
S3 usbscan;USB Scanner Driver; C:\Windows\system32\DRIVERS\usbscan.sys [2009-07-14 41984]
S3 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\system32\DRIVERS\vmbus.sys [2009-07-14 200272]
S3 VMBusHID;VMBusHID; C:\Windows\system32\DRIVERS\VMBusHID.sys [2009-07-14 21760]
S3 XMLDIUSB;XML USB Device Interface; C:\Windows\System32\Drivers\XMLDIUSB.sys [2010-01-29 55808]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2014-12-16 50344]
R2 c2cautoupdatesvc;Skype Click to Call Updater; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [2014-07-14 1390176]
R2 c2cpnrsvc;Skype Click to Call PNR Service; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [2014-07-14 1767520]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 FUSServices;Session Launcher Service; C:\Windows\SysWOW64\FUSServices.exe [2010-02-11 10752]
R2 MSCamSvc;MSCamSvc; C:\Program Files\Microsoft LifeCam\MSCamS64.exe [2010-12-13 194416]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2012-10-02 891240]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2012-10-02 382824]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
S2 nvUpdatusService;NVIDIA Update Service Daemon; C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2012-10-10 1258856]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2014-12-11 315496]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-12-16 267440]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe [2006-10-27 65824]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2013-05-11 117144]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2006-10-26 441136]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2012-12-03 1255736]
S4 ACDaemon;ArcSoft Connect Daemon; C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [2010-03-18 113152]

-----------------EOF-----------------

#18 Příspěvek od **Rudy** » 25 pro 2014 22:19

Jak je na tom tento oper. systém s legalitou?

jarda.otta · #19 Příspěvek od **jarda.otta** » 25 pro 2014 22:26

bohužel nevím.ten comp je koupen z třetí ruky.ale je to docela možné že máte pravdu.

#20 Příspěvek od **Rudy** » 25 pro 2014 22:34

Zkusíme tento postup:

Stáhněte a spusťte OTL: http://oldtimer.geekstogo.com/OTL.exe . Spusťte, zaškrněte "Pro všechny uživatele", Kontrola na havěť LOP" a Kontrola na hvěť PURITY" a do dolního bílého okna zkopírujte:

CREATERESTOREPOINT

netsvcs
drivers32
savembr:0

/md5start
atapi.sys
autochk.exe
cdrom.sys
explorer.exe
hal.dll
scecli.dll
services.exe
svchost.exe
tcpip.sys
userinit.exe
winlogon.exe
/md5stop

%systemroot%*.* /U /s
%SYSTEMDRIVE%\*.exe
%ALLUSERSPROFILE%\Application Data\*.
%ALLUSERSPROFILE%\Application Data\*.exe /s
%APPDATA%\*.
%APPDATA%\*.exe /s
%systemroot%\*. /mp /s
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\Tasks\*.job
%systemroot%\system32\drivers\*.sys /lockedfiles
%systemroot%\System32\config\*.sav
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\system32\drivers\*.sys /3
%systemroot%\system32\*.* /3
%SYSTEMDRIVE%\*.exe

HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s

%PROGRAMFILES%\Mozilla Firefox\firefox.exe /md5
%PROGRAMFILES%\Internet Explorer\iexplore.exe /md5
%PROGRAMFILES%\Opera\opera.exe /md5
%PROGRAMFILES%\Google\Chrome\Application\chrome.exe /md5

%SystemDrive%\PhysicalMBR.bin /md5

*crack* /s
*keygen* /s
*loader* /s

a klikněte na >Prohledat<. Dejte oba logy.

jarda.otta · #21 Příspěvek od **jarda.otta** » 26 pro 2014 13:57

OTL Extras logfile created on: 26.12.2014 12:40:09 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Kingpin\Downloads
64bit- Ultimate Edition (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

2,00 Gb Total Physical Memory | 0,63 Gb Available Physical Memory | 31,42% Memory free
4,00 Gb Paging File | 2,26 Gb Available in Paging File | 56,50% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 298,08 Gb Total Space | 90,65 Gb Free Space | 30,41% Space Free | Partition Type: NTFS
Drive E: | 55,89 Gb Total Space | 53,69 Gb Free Space | 96,06% Space Free | Partition Type: NTFS

Computer Name: KINGPIN-PC | User Name: Kingpin | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Extra Registry (SafeList) ==========

========== File Associations ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.url[@ = InternetShortcut] -- C:\Windows\SysNative\rundll32.exe (Microsoft Corporation)
.js[@ = JSFile] -- C:\Windows\SysWow64\CScript.exe (Microsoft Corporation)
.jse[@ = JSEFile] -- C:\Windows\SysWow64\CScript.exe (Microsoft Corporation)
.vbe[@ = VBEFile] -- C:\Windows\SysWow64\CScript.exe (Microsoft Corporation)
.vbs[@ = VBSFile] -- C:\Windows\SysWow64\CScript.exe (Microsoft Corporation)
.wsf[@ = WSFFile] -- C:\Windows\SysWow64\CScript.exe (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation)
.js [@ = JSFile] -- C:\Windows\SysWow64\CScript.exe (Microsoft Corporation)
.jse [@ = JSEFile] -- C:\Windows\SysWow64\CScript.exe (Microsoft Corporation)
.vbe [@ = VBEFile] -- C:\Windows\SysWow64\CScript.exe (Microsoft Corporation)
.vbs [@ = VBSFile] -- C:\Windows\SysWow64\CScript.exe (Microsoft Corporation)
.wsf [@ = WSFFile] -- C:\Windows\SysWow64\CScript.exe (Microsoft Corporation)

[HKEY_USERS\S-1-5-21-4258835418-4277818934-1242146309-1000\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation)

========== Shell Spawning ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- Reg Error: Key error.
htmlfile [print] -- rundll32.exe %windir%\system32\mshtml.dll,PrintHTML "%1"
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
jsfile [open] -- %SystemRoot%\SysWow64\CScript.exe "%1" %* (Microsoft Corporation)
jsefile [open] -- %SystemRoot%\SysWow64\CScript.exe "%1" %* (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
vbefile [open] -- %SystemRoot%\SysWow64\CScript.exe "%1" %* (Microsoft Corporation)
vbsfile [open] -- %SystemRoot%\SysWow64\CScript.exe "%1" %* (Microsoft Corporation)
wsffile [open] -- %SystemRoot%\SysWow64\CScript.exe "%1" %* (Microsoft Corporation)
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" (VideoLAN)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" (VideoLAN)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- Reg Error: Key error.
htmlfile [print] -- rundll32.exe %windir%\system32\mshtml.dll,PrintHTML "%1"
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
jsfile [open] -- %SystemRoot%\SysWow64\CScript.exe "%1" %* (Microsoft Corporation)
jsefile [open] -- %SystemRoot%\SysWow64\CScript.exe "%1" %* (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
vbefile [open] -- %SystemRoot%\SysWow64\CScript.exe "%1" %* (Microsoft Corporation)
vbsfile [open] -- %SystemRoot%\SysWow64\CScript.exe "%1" %* (Microsoft Corporation)
wsffile [open] -- %SystemRoot%\SysWow64\CScript.exe "%1" %* (Microsoft Corporation)
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" (VideoLAN)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" (VideoLAN)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = 28 4D B2 76 41 04 CA 01 [binary data]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

========== Authorized Applications List ==========

========== Vista Active Open Ports Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{038B3EA4-2C1D-48F6-A51F-38592E6D8C9A}" = rport=139 | protocol=6 | dir=out | app=system |
"{149B2E90-AB1D-4555-BAF0-B4E2679A113E}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 |
"{32F9C49E-93A0-4FE1-9694-FCB67FB9BC36}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{4BDA8E61-A081-4F0B-BE18-859150B3B006}" = lport=6004 | protocol=17 | dir=in | app=c:\program files (x86)\microsoft office\office12\outlook.exe |
"{545E742B-BD9F-4199-A7F0-BEFEF75B2319}" = lport=137 | protocol=17 | dir=in | app=system |
"{61CBB66E-ABAD-4343-BB58-04D1877A05F5}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
"{648F7202-2C67-41CE-8776-26E5EC14695E}" = rport=445 | protocol=6 | dir=out | app=system |
"{6CB51060-417A-4A03-921E-78B927249C4A}" = lport=139 | protocol=6 | dir=in | app=system |
"{81029421-9911-4B79-99A3-FE376747D8D5}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{8F8501D9-AFAB-4E03-AF27-A1C250873D22}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{9F7AED6C-589A-4270-B21F-55D7A9EBB71C}" = lport=138 | protocol=17 | dir=in | app=system |
"{AA9C79EA-F739-4901-B5D9-94AA1F5686E9}" = rport=138 | protocol=17 | dir=out | app=system |
"{AED7DD08-5371-445F-AF63-A8884F370B3A}" = lport=445 | protocol=6 | dir=in | app=system |
"{D1ED5067-0EAB-4723-96EA-3BF042574657}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{D5AEB23F-BEE2-48B1-BC89-187921BC0321}" = rport=137 | protocol=17 | dir=out | app=system |
"{E5F09323-2F6A-4257-AD0E-E658A634CC55}" = lport=137 | protocol=17 | dir=in | app=system |

========== Vista Active Application Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{02BFAAA8-4618-4E2B-8B66-FAAAB63E9163}" = protocol=17 | dir=in | app=c:\program files (x86)\microsoft lifecam\lifecam.exe |
"{0F5C23FF-271B-4DDC-83C9-A995058C02CB}" = protocol=6 | dir=in | app=c:\users\kingpin\appdata\roaming\utorrent\utorrent.exe |
"{105622B9-8227-4E5B-803A-BF7DC3802110}" = protocol=6 | dir=in | app=c:\program files (x86)\microsoft lifecam\lifetray.exe |
"{19343A1F-2715-4E77-BFD8-50807ADB88CB}" = protocol=17 | dir=in | app=c:\program files (x86)\microsoft office\office12\groove.exe |
"{21B51487-17CD-4451-9AD8-55F848FBF410}" = dir=in | app=c:\program files (x86)\xerox companion suite\mfservices.exe |
"{25432857-3DB0-4141-866A-77B6D2CB08F8}" = protocol=17 | dir=in | app=c:\program files (x86)\microsoft lifecam\lifeexp.exe |
"{58D57883-2740-4DD7-8DCA-F6C3955D0858}" = protocol=6 | dir=in | app=c:\games\assassin's creed\assassinscreed_dx10.exe |
"{60D4C2C2-8545-4F11-8C2E-ADBBFFD2C097}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 |
"{61FD2102-27E5-4ECE-A437-5F1F28A3C170}" = protocol=17 | dir=in | app=c:\games\assassin's creed\assassinscreed_dx10.exe |
"{650B28A3-1FBC-4249-AF40-F2E9AAE04753}" = protocol=17 | dir=in | app=c:\program files (x86)\microsoft office\office12\onenote.exe |
"{79F3B5BE-315B-4656-9713-F55995D99D94}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{868561A8-64CC-4366-91EA-A2A3E6073EE7}" = protocol=6 | dir=in | app=c:\program files (x86)\microsoft lifecam\lifecam.exe |
"{86C1918C-1235-4A11-9975-F44822C0B8DF}" = protocol=17 | dir=in | app=c:\program files (x86)\microsoft lifecam\lifeenc2.exe |
"{8D32C1CF-66EC-4AE3-97DE-51CD9B9E80EC}" = protocol=6 | dir=in | app=c:\program files (x86)\microsoft office\office12\groove.exe |
"{8F37CDDD-D381-4190-9AEF-43323C12CA62}" = protocol=17 | dir=in | app=c:\games\assassin's creed\assassinscreed_launcher.exe |
"{A19A3718-EABB-44A9-B23B-8EF31759485D}" = protocol=6 | dir=in | app=c:\games\assassin's creed\assassinscreed_dx9.exe |
"{A20DE3D1-67AE-4A5F-92A2-D714A7DC0135}" = protocol=17 | dir=in | app=c:\games\assassin's creed\assassinscreed_dx9.exe |
"{A76B1C42-8E95-4461-97C3-A577A6C6CB51}" = protocol=6 | dir=in | app=c:\program files (x86)\microsoft lifecam\lifeenc2.exe |
"{B3BD49CB-46ED-4631-8005-F8DA481B39E1}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 |
"{C1B34AD9-3425-4D17-A585-52236A95A585}" = protocol=6 | dir=in | app=c:\program files (x86)\microsoft office\office12\onenote.exe |
"{C64E9BFC-3537-4CA5-8732-142158506655}" = protocol=17 | dir=in | app=c:\program files (x86)\microsoft lifecam\lifetray.exe |
"{C9B53D96-3F9A-421D-AF3C-49DEC8D9F1ED}" = protocol=17 | dir=in | app=c:\program files (x86)\arcsoft\totalmedia 3.5\totalmedia.exe |
"{CFC02A1F-9B75-4532-BC1D-462E6F28771A}" = protocol=6 | dir=in | app=c:\program files (x86)\arcsoft\totalmedia 3.5\totalmedia.exe |
"{DC530BF6-EDE2-4788-9749-30CB08685039}" = protocol=6 | dir=in | app=c:\games\assassin's creed\assassinscreed_launcher.exe |
"{E1CD5780-12C3-476A-B7A1-A94F7570B8AA}" = protocol=17 | dir=in | app=c:\users\kingpin\appdata\roaming\utorrent\utorrent.exe |
"{E6EA47D3-F2D6-4070-B832-15F400076827}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 |
"{EC9A0330-C7EA-4104-965B-CD081FC0C3B3}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 |
"{F1342643-250F-432F-9EFD-1BA063138005}" = protocol=6 | dir=in | app=c:\program files (x86)\microsoft lifecam\lifeexp.exe |
"TCP Query User{45328049-4EE1-40EB-9B5C-35C1ACA97138}C:\games\ago of empire 2\age2_x1.exe" = protocol=6 | dir=in | app=c:\games\ago of empire 2\age2_x1.exe |
"TCP Query User{54BC0A3B-EB76-438A-8455-7ABAA253A86F}C:\users\kingpin\appdata\roaming\utorrent\utorrent.exe" = protocol=6 | dir=in | app=c:\users\kingpin\appdata\roaming\utorrent\utorrent.exe |
"TCP Query User{5FE7656B-2FBC-413B-AB99-C1FB5743243C}C:\windows\syswow64\dplaysvr.exe" = protocol=6 | dir=in | app=c:\windows\syswow64\dplaysvr.exe |
"UDP Query User{0F9F63D9-8CBF-40F8-A9F9-5A474AA714BB}C:\windows\syswow64\dplaysvr.exe" = protocol=17 | dir=in | app=c:\windows\syswow64\dplaysvr.exe |
"UDP Query User{8A07828C-9B08-4EB1-9630-D818CF749EA9}C:\games\ago of empire 2\age2_x1.exe" = protocol=17 | dir=in | app=c:\games\ago of empire 2\age2_x1.exe |
"UDP Query User{ACE37D49-1C42-4A96-AC2F-0DF1F2727D4A}C:\users\kingpin\appdata\roaming\utorrent\utorrent.exe" = protocol=17 | dir=in | app=c:\users\kingpin\appdata\roaming\utorrent\utorrent.exe |

========== HKEY_LOCAL_MACHINE Uninstall List ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{5CE7E3F5-9803-4F32-AA89-2D8848A80109}" = Microsoft LifeCam
"{67579783-0FB7-4F7B-B881-E5BE47C9DBE0}_is1" = Revo Uninstaller Pro 3.1.1
"{90120000-002A-0000-1000-0000000FF1CE}" = Microsoft Office Office 64-bit Components 2007
"{90120000-002A-0405-1000-0000000FF1CE}" = Microsoft Office Shared 64-bit MUI (Czech) 2007
"{9C5A08BF-BB99-4998-81BD-F6CC32483B34}" = Microsoft Corporation
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision" = NVIDIA 3D Vision Driver 306.97
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel" = NVIDIA Control Panel 306.97
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver" = NVIDIA Graphics Driver 306.97
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update" = NVIDIA Update 1.10.8
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer" = NVIDIA Install Application
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NVIDIA.Update" = NVIDIA Update Components
"{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}" = Microsoft .NET Framework 4 Client Profile
"CCleaner" = CCleaner
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"NVIDIA Drivers" = NVIDIA Drivers

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}" = Skype™ 7.0
"{29E44E9D-ACB2-4D2D-849F-5361C941B7E1}" = ArcSoft TotalMedia 3.5
"{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}" = Windows Media Player Firefox Plugin
"{6D1221A9-17BF-4EC0-81F2-27D30EC30701}" = Skype Click to Call
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{8CFA9151-6404-409A-AF22-4632D04582FD}" = Assassin's Creed
"{90120000-0015-0405-0000-0000000FF1CE}" = Microsoft Office Access MUI (Czech) 2007
"{90120000-0016-0405-0000-0000000FF1CE}" = Microsoft Office Excel MUI (Czech) 2007
"{90120000-0018-0405-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (Czech) 2007
"{90120000-0019-0405-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (Czech) 2007
"{90120000-001A-0405-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (Czech) 2007
"{90120000-001B-0405-0000-0000000FF1CE}" = Microsoft Office Word MUI (Czech) 2007
"{90120000-001F-0405-0000-0000000FF1CE}" = Microsoft Office Proof (Czech) 2007
"{90120000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2007
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-041B-0000-0000000FF1CE}" = Microsoft Office Proof (Slovak) 2007
"{90120000-002C-0405-0000-0000000FF1CE}" = Microsoft Office Proofing (Czech) 2007
"{90120000-0030-0000-0000-0000000FF1CE}" = Microsoft Office Enterprise 2007
"{90120000-0044-0405-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (Czech) 2007
"{90120000-006E-0405-0000-0000000FF1CE}" = Microsoft Office Shared MUI (Czech) 2007
"{90120000-00A1-0405-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (Czech) 2007
"{90120000-00BA-0405-0000-0000000FF1CE}" = Microsoft Office Groove MUI (Czech) 2007
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{B3BC9DB1-0B0A-48B0-B86B-EA77CAA7F800}" = Microsoft Corporation
"{D042E67C-C16C-4FC3-BBD8-877CFE20B6C4}" = Diver Install 64-bit
"{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"7-Zip" = 7-Zip 9.21beta
"Adobe Flash Player ActiveX" = Adobe Flash Player 15 ActiveX
"Adobe Flash Player NPAPI" = Adobe Flash Player 16 NPAPI
"avast" = Avast Free Antivirus
"ENTERPRISE" = Microsoft Office Enterprise 2007
"EVEREST Home Edition_is1" = EVEREST Home Edition v2.20
"InstallShield_{D042E67C-C16C-4FC3-BBD8-877CFE20B6C4}" = Diver Install 64-bit
"KLiteCodecPack_is1" = K-Lite Codec Pack 8.0.0 (Basic)
"Mozilla Firefox 34.0.5 (x86 cs)" = Mozilla Firefox 34.0.5 (x86 cs)
"MozillaMaintenanceService" = Mozilla Maintenance Service
"NVIDIAStereo" = NVIDIA Stereoscopic 3D Driver
"SumatraPDF" = SumatraPDF
"VLC media player" = VLC media player
"WinRAR archiver" = WinRAR archiver

========== HKEY_USERS Uninstall List ==========

[HKEY_USERS\S-1-5-21-4258835418-4277818934-1242146309-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"PhotoFiltre Studio X" = PhotoFiltre Studio X

========== Last 20 Event Log Errors ==========

[ Application Events ]
Error - 25.12.2014 7:37:05 | Computer Name = Kingpin-PC | Source = Software Protection Platform Service | ID = 8193
Description = Plánovač aktivace licence (sppuinotify.dll) byl ukončen s následujícím
kódem chyby: 0x80070005

Error - 25.12.2014 8:37:05 | Computer Name = Kingpin-PC | Source = Software Protection Platform Service | ID = 8193
Description = Plánovač aktivace licence (sppuinotify.dll) byl ukončen s následujícím
kódem chyby: 0x80070005

Error - 25.12.2014 9:37:05 | Computer Name = Kingpin-PC | Source = Software Protection Platform Service | ID = 8193
Description = Plánovač aktivace licence (sppuinotify.dll) byl ukončen s následujícím
kódem chyby: 0x80070005

Error - 25.12.2014 10:37:05 | Computer Name = Kingpin-PC | Source = Software Protection Platform Service | ID = 8193
Description = Plánovač aktivace licence (sppuinotify.dll) byl ukončen s následujícím
kódem chyby: 0x80070005

Error - 25.12.2014 11:37:05 | Computer Name = Kingpin-PC | Source = Software Protection Platform Service | ID = 8193
Description = Plánovač aktivace licence (sppuinotify.dll) byl ukončen s následujícím
kódem chyby: 0x80070005

Error - 25.12.2014 12:37:06 | Computer Name = Kingpin-PC | Source = Software Protection Platform Service | ID = 8193
Description = Plánovač aktivace licence (sppuinotify.dll) byl ukončen s následujícím
kódem chyby: 0x80070005

Error - 25.12.2014 13:37:06 | Computer Name = Kingpin-PC | Source = Software Protection Platform Service | ID = 8193
Description = Plánovač aktivace licence (sppuinotify.dll) byl ukončen s následujícím
kódem chyby: 0x80070005

Error - 25.12.2014 14:27:50 | Computer Name = Kingpin-PC | Source = Winlogon | ID = 4103
Description = Aktivace licence systému Windows se nezdařila. Chyba 0x80070005.

Error - 25.12.2014 19:30:14 | Computer Name = Kingpin-PC | Source = SideBySide | ID = 16842832
Description = Generování kontextu aktivace pro c:\program files\CCleaner\CCleaner.exe
se nezdařilo. Chyba v souboru manifestu nebo zásad na řádku . Verze součásti požadovaná
aplikací je v konfliktu s jinou verzí součásti, která je již aktivní. Konfliktní
součásti: Součást 1: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd.manifest.
Součást
2: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest.

Error - 26.12.2014 7:30:07 | Computer Name = Kingpin-PC | Source = VSS | ID = 8194
Description =

[ Media Center Events ]
Error - 4.6.2012 10:30:28 | Computer Name = Kingpin-PC | Source = MCUpdate | ID = 0
Description = 16:30:28 - Error connecting to the internet. 16:30:28 - Unable
to contact server..

Error - 4.6.2012 10:31:01 | Computer Name = Kingpin-PC | Source = MCUpdate | ID = 0
Description = 16:30:57 - Error connecting to the internet. 16:30:57 - Unable
to contact server..

Error - 4.6.2012 11:31:25 | Computer Name = Kingpin-PC | Source = MCUpdate | ID = 0
Description = 17:31:25 - Error connecting to the internet. 17:31:25 - Unable
to contact server..

Error - 4.6.2012 11:31:31 | Computer Name = Kingpin-PC | Source = MCUpdate | ID = 0
Description = 17:31:30 - Error connecting to the internet. 17:31:30 - Unable
to contact server..

Error - 4.6.2012 12:31:56 | Computer Name = Kingpin-PC | Source = MCUpdate | ID = 0
Description = 18:31:56 - Error connecting to the internet. 18:31:56 - Unable
to contact server..

Error - 4.6.2012 12:32:02 | Computer Name = Kingpin-PC | Source = MCUpdate | ID = 0
Description = 18:32:01 - Error connecting to the internet. 18:32:01 - Unable
to contact server..

Error - 6.6.2012 10:29:58 | Computer Name = Kingpin-PC | Source = MCUpdate | ID = 0
Description = 16:29:58 - Error connecting to the internet. 16:29:58 - Unable
to contact server..

Error - 6.6.2012 10:30:34 | Computer Name = Kingpin-PC | Source = MCUpdate | ID = 0
Description = 16:30:27 - Error connecting to the internet. 16:30:27 - Unable
to contact server..

[ OSession Events ]
Error - 6.7.2012 9:28:45 | Computer Name = Kingpin-PC | Source = Microsoft Office 12 Sessions | ID = 7001
Description = ID: 0, Application Name: Microsoft Office Word, Application Version:
12.0.4518.1014, Microsoft Office Version: 12.0.4518.1014. This session lasted 6
seconds with 0 seconds of active time. This session ended with a crash.

Error - 24.2.2013 7:16:19 | Computer Name = Kingpin-PC | Source = Microsoft Office 12 Sessions | ID = 7001
Description = ID: 0, Application Name: Microsoft Office Word, Application Version:
12.0.4518.1014, Microsoft Office Version: 12.0.4518.1014. This session lasted 22
seconds with 0 seconds of active time. This session ended with a crash.

[ System Events ]
Error - 14.6.2012 15:36:38 | Computer Name = Kingpin-PC | Source = EventLog | ID = 6008
Description = Předchozí vypnutí systému (21:32:57, ?14.?6.?2012) bylo neočekávané.

Error - 14.6.2012 15:36:41 | Computer Name = Kingpin-PC | Source = BugCheck | ID = 1001
Description =

Error - 14.6.2012 15:36:58 | Computer Name = Kingpin-PC | Source = Microsoft-Windows-WHEA-Logger | ID = 18
Description = Došlo k závažné chybě hardwaru. Ohlášeno součástí: Jádro procesoru Zdroj
chyby: 3 Typ chyby: 256 ID procesoru: 1 Další informace jsou obsaženy v podrobném
zobrazení tohoto záznamu.

Error - 14.6.2012 15:36:58 | Computer Name = Kingpin-PC | Source = Microsoft-Windows-WHEA-Logger | ID = 18
Description = Došlo k závažné chybě hardwaru. Ohlášeno součástí: Jádro procesoru Zdroj
chyby: 3 Typ chyby: 256 ID procesoru: 1 Další informace jsou obsaženy v podrobném
zobrazení tohoto záznamu.

Error - 14.6.2012 15:36:58 | Computer Name = Kingpin-PC | Source = Microsoft-Windows-WHEA-Logger | ID = 18
Description = Došlo k závažné chybě hardwaru. Ohlášeno součástí: Jádro procesoru Zdroj
chyby: 3 Typ chyby: 256 ID procesoru: 1 Další informace jsou obsaženy v podrobném
zobrazení tohoto záznamu.

Error - 16.6.2012 3:52:49 | Computer Name = Kingpin-PC | Source = Microsoft-Windows-WHEA-Logger | ID = 18
Description = Došlo k závažné chybě hardwaru. Ohlášeno součástí: Jádro procesoru Zdroj
chyby: 3 Typ chyby: 256 ID procesoru: 1 Další informace jsou obsaženy v podrobném
zobrazení tohoto záznamu.

Error - 16.6.2012 3:52:49 | Computer Name = Kingpin-PC | Source = Microsoft-Windows-WHEA-Logger | ID = 18
Description = Došlo k závažné chybě hardwaru. Ohlášeno součástí: Jádro procesoru Zdroj
chyby: 3 Typ chyby: 256 ID procesoru: 1 Další informace jsou obsaženy v podrobném
zobrazení tohoto záznamu.

Error - 16.6.2012 3:52:49 | Computer Name = Kingpin-PC | Source = Microsoft-Windows-WHEA-Logger | ID = 18
Description = Došlo k závažné chybě hardwaru. Ohlášeno součástí: Jádro procesoru Zdroj
chyby: 3 Typ chyby: 256 ID procesoru: 1 Další informace jsou obsaženy v podrobném
zobrazení tohoto záznamu.

Error - 16.6.2012 10:01:29 | Computer Name = Kingpin-PC | Source = DCOM | ID = 10010
Description =

Error - 16.6.2012 21:10:32 | Computer Name = Kingpin-PC | Source = Service Control Manager | ID = 7011
Description = Při čekání na odezvu transakce služby lmhosts bylo dosaženo časového
limitu (30000 ms).

< End of report >

jarda.otta · #22 Příspěvek od **jarda.otta** » 26 pro 2014 13:58

OTL logfile created on: 26.12.2014 12:40:09 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Kingpin\Downloads
64bit- Ultimate Edition (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

2,00 Gb Total Physical Memory | 0,63 Gb Available Physical Memory | 31,42% Memory free
4,00 Gb Paging File | 2,26 Gb Available in Paging File | 56,50% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 298,08 Gb Total Space | 90,65 Gb Free Space | 30,41% Space Free | Partition Type: NTFS
Drive E: | 55,89 Gb Total Space | 53,69 Gb Free Space | 96,06% Space Free | Partition Type: NTFS

Computer Name: KINGPIN-PC | User Name: Kingpin | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2014.12.26 12:38:36 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Kingpin\Downloads\OTL.exe
PRC - [2014.12.16 18:14:39 | 005,225,064 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastUI.exe
PRC - [2014.12.16 18:14:39 | 000,050,344 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe
PRC - [2014.11.26 17:40:18 | 000,337,520 | ---- | M] (Mozilla Corporation) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
PRC - [2014.07.14 18:21:46 | 001,390,176 | ---- | M] (Microsoft Corporation) -- C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
PRC - [2014.07.14 18:21:06 | 001,767,520 | ---- | M] (Microsoft Corporation) -- C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
PRC - [2012.10.02 13:15:38 | 000,382,824 | ---- | M] (NVIDIA Corporation) -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
PRC - [2010.02.11 03:05:50 | 000,010,752 | ---- | M] () -- C:\Windows\SysWOW64\FUSServices.exe

========== Modules (No Company Name) ==========

MOD - [2014.12.16 18:14:51 | 038,562,088 | ---- | M] () -- C:\Program Files\AVAST Software\Avast\libcef.dll
MOD - [2014.11.26 17:40:44 | 003,758,192 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefox\mozjs.dll

========== Services (SafeList) ==========

SRV:64bit: - [2014.12.16 18:14:39 | 000,050,344 | ---- | M] (AVAST Software) [Auto | Running] -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe -- (avast! Antivirus)
SRV:64bit: - [2010.12.13 14:37:16 | 000,194,416 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Microsoft LifeCam\MSCamS64.exe -- (MSCamSvc)
SRV:64bit: - [2009.07.14 02:41:27 | 001,011,712 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV:64bit: - [2009.07.14 02:40:01 | 000,193,536 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\appmgmts.dll -- (AppMgmt)
SRV - [2014.12.16 18:44:36 | 000,267,440 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2014.12.11 10:30:48 | 000,315,496 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files (x86)\Skype\Updater\Updater.exe -- (SkypeUpdate)
SRV - [2014.07.14 18:21:46 | 001,390,176 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe -- (c2cautoupdatesvc)
SRV - [2014.07.14 18:21:06 | 001,767,520 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe -- (c2cpnrsvc)
SRV - [2013.05.11 23:26:17 | 000,117,144 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2012.10.10 21:23:42 | 001,258,856 | ---- | M] (NVIDIA Corporation) [Auto | Stopped] -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe -- (nvUpdatusService)
SRV - [2012.10.02 13:15:38 | 000,382,824 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe -- (Stereo Service)
SRV - [2010.03.18 13:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2010.03.18 11:19:26 | 000,113,152 | ---- | M] (ArcSoft Inc.) [Disabled | Stopped] -- C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe -- (ACDaemon)
SRV - [2010.02.11 03:05:50 | 000,010,752 | ---- | M] () [Auto | Running] -- C:\Windows\SysWOW64\FUSServices.exe -- (FUSServices)
SRV - [2009.06.10 22:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)

========== Driver Services (SafeList) ==========

DRV:64bit: - [2014.12.22 13:16:13 | 001,050,432 | ---- | M] (AVAST Software) [File_System | System | Running] -- C:\Windows\SysNative\drivers\aswsnx.sys -- (aswSnx)
DRV:64bit: - [2014.12.16 18:14:55 | 000,436,624 | ---- | M] (AVAST Software) [File_System | System | Running] -- C:\Windows\SysNative\drivers\aswSP.sys -- (aswSP)
DRV:64bit: - [2014.12.16 18:14:55 | 000,267,632 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\aswVmm.sys -- (aswVmm)
DRV:64bit: - [2014.12.16 18:14:55 | 000,116,728 | ---- | M] (AVAST Software) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\aswStm.sys -- (aswStm)
DRV:64bit: - [2014.12.16 18:14:54 | 000,093,568 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\aswRdr2.sys -- (aswRdr)
DRV:64bit: - [2014.12.16 18:14:54 | 000,083,280 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\Windows\SysNative\drivers\aswMonFlt.sys -- (aswMonFlt)
DRV:64bit: - [2014.12.16 18:14:54 | 000,065,776 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\aswRvrt.sys -- (aswRvrt)
DRV:64bit: - [2014.12.16 18:14:54 | 000,029,208 | ---- | M] () [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\aswHwid.sys -- (aswHwid)
DRV:64bit: - [2012.03.01 07:54:38 | 000,022,896 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\Windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
DRV:64bit: - [2011.03.11 07:22:41 | 000,107,904 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:64bit: - [2011.03.11 07:22:40 | 000,027,008 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:64bit: - [2010.12.13 14:37:18 | 000,036,720 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\nx6000.sys -- (MSHUSBVideo)
DRV:64bit: - [2010.08.12 12:07:50 | 000,350,952 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\nvmf6264.sys -- (NVNET)
DRV:64bit: - [2010.01.29 22:04:32 | 000,055,808 | ---- | M] (OEM) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\XMLDIUSB.sys -- (XMLDIUSB)
DRV:64bit: - [2009.12.30 11:21:26 | 000,031,800 | ---- | M] (VS Revo Group) [File_System | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\revoflt.sys -- (Revoflt)
DRV:64bit: - [2009.12.01 11:31:10 | 001,155,072 | ---- | M] (C-Media Inc) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\cmudax3.sys -- (cmuda3)
DRV:64bit: - [2009.09.18 06:13:02 | 000,063,520 | ---- | M] (Siano) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\smsbda.sys -- (smsbda)
DRV:64bit: - [2009.07.14 02:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:64bit: - [2009.07.14 02:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:64bit: - [2009.07.14 02:47:48 | 000,077,888 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:64bit: - [2009.07.14 02:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:64bit: - [2009.06.10 21:35:35 | 000,408,960 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\nvm62x64.sys -- (NVENETFD)
DRV:64bit: - [2009.06.10 21:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:64bit: - [2009.06.10 21:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:64bit: - [2009.06.10 21:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:64bit: - [2009.06.10 21:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
DRV:64bit: - [2009.03.18 17:35:42 | 000,033,856 | -H-- | M] (LogMeIn, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hamachi.sys -- (hamachi)
DRV:64bit: - [2007.10.12 02:00:22 | 000,050,072 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\LVUSBS64.sys -- (LVUSBS64)
DRV:64bit: - [2007.10.12 01:56:34 | 000,582,680 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\LV561V64.sys -- (PID_0928)
DRV:64bit: - [2005.03.29 01:30:38 | 000,008,192 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\ASACPI.sys -- (MTsensor)
DRV - [2009.07.14 02:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount)

========== Standard Registry (SafeList) ==========

========== Internet Explorer ==========

IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC

IE - HKU\.DEFAULT\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-19\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}

IE - HKU\S-1-5-20\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}

IE - HKU\S-1-5-21-4258835418-4277818934-1242146309-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
IE - HKU\S-1-5-21-4258835418-4277818934-1242146309-1000\..\URLSearchHook: - No CLSID value found
IE - HKU\S-1-5-21-4258835418-4277818934-1242146309-1000\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKU\S-1-5-21-4258835418-4277818934-1242146309-1000\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTer ... ORM=IE8SRC
IE - HKU\S-1-5-21-4258835418-4277818934-1242146309-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..browser.search.defaultengine: "Seznam"
FF - prefs.js..browser.search.defaultthis.engineName: "Seznam"
FF - prefs.js..browser.search.defaulturl: "http://search.seznam.cz/?sourceid=quick ... earchTerms}&"
FF - prefs.js..browser.search.isUS: false
FF - prefs.js..browser.search.order.1: "Seznam"
FF - prefs.js..browser.search.selectedEngine: "Seznam"
FF - prefs.js..browser.startup.homepage: "https://www.seznam.cz"
FF - prefs.js..extensions.enabledAddons: wrc%40avast.com:10.0.2502.149
FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:34.0.5
FF - prefs.js..keyword.URL: "http://search.seznam.cz/?sourceid=quick ... earchTerms}&"
FF - user.js - File not found

FF:64bit: - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF64_16_0_0_235.dll File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_16_0_0_235.dll ()
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@mozilla.zeniko.ch/SumatraPDF_Browser_Plugin: C:\Program Files (x86)\SumatraPDF\npPdfViewer.dll (Simon Bünzli)
FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVision: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVisionStreaming: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF - HKLM\Software\MozillaPlugins\@pandonetworks.com/PandoWebPlugin: C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll File not found
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.1.5: C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\wrc@avast.com: C:\Program Files\AVAST Software\Avast\WebRep\FF [2014.12.16 18:14:57 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 34.0.5\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 34.0.5\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins [2002.01.01 01:02:38 | 000,000,000 | ---D | M]

[2011.11.18 13:10:44 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Kingpin\AppData\Roaming\Mozilla\Extensions
[2014.12.23 22:49:20 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Kingpin\AppData\Roaming\Mozilla\Firefox\Profiles\svte8ccw.default\extensions
[2014.12.23 22:49:20 | 000,979,699 | ---- | M] () (No name found) -- C:\Users\Kingpin\AppData\Roaming\Mozilla\Firefox\Profiles\svte8ccw.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
[2014.12.22 11:52:51 | 000,002,427 | ---- | M] () -- C:\Users\Kingpin\AppData\Roaming\Mozilla\Firefox\Profiles\svte8ccw.default\searchplugins\seznam-avast.xml
[2014.12.23 07:33:31 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\extensions
[2014.12.23 07:33:31 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
[2014.12.23 08:52:03 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\browser\extensions
[2014.12.22 11:56:12 | 000,000,000 | ---D | M] (Default) -- C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
[2014.12.16 18:14:57 | 000,000,000 | ---D | M] ("Avast Online Security") -- C:\PROGRAM FILES\AVAST SOFTWARE\AVAST\WEBREP\FF

O1 HOSTS File: ([2009.06.10 22:00:26 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O2:64bit: - BHO: (avast! Online Security) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
O2 - BHO: (avast! Online Security) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
O4 - HKLM..\Run: [AvastUI.exe] C:\Program Files\AVAST Software\Avast\AvastUI.exe (AVAST Software)
O4 - HKU\S-1-5-19..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-20..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-21-4258835418-4277818934-1242146309-1000..\Run: [CCleaner Monitoring] C:\Program Files\CCleaner\CCleaner64.exe (Piriform Ltd)
O4 - HKU\S-1-5-19..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found
O4 - HKU\S-1-5-20..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: SoftwareSASGeneration = 1
O9:64bit: - Extra Button: Skype Click to Call settings - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\SkypeIEPlugin.dll (Microsoft Corporation)
O9 - Extra Button: Skype Click to Call settings - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Microsoft Corporation)
O1364bit: - gopher Prefix: missing
O13 - gopher Prefix: missing
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/s ... wflash.cab (Shockwave Flash Object)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 213.46.172.36 213.46.172.37
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{7001B269-73E8-40F5-9C6F-2265DC668D7A}: DhcpNameServer = 213.46.172.36 213.46.172.37
O18:64bit: - Protocol\Handler\grooveLocalGWS - No CLSID value found
O18:64bit: - Protocol\Handler\ms-help - No CLSID value found
O18:64bit: - Protocol\Handler\skypec2c {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\SkypeIEPlugin.dll (Microsoft Corporation)
O18 - Protocol\Handler\skypec2c {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\Windows\SysWow64\userinit.exe (Microsoft Corporation)
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O33 - MountPoints2\{36493137-92bf-11e1-8823-806e6f6e6963}\Shell - "" = AutoRun
O33 - MountPoints2\{36493137-92bf-11e1-8823-806e6f6e6963}\Shell\AutoRun\command - "" = G:\setup.exe
O33 - MountPoints2\{644c482e-1294-11e1-8de7-001d60cb20e6}\Shell - "" = AutoRun
O33 - MountPoints2\{644c482e-1294-11e1-8de7-001d60cb20e6}\Shell\AutoRun\command - "" = F:\Autorun.exe
O34 - HKLM BootExecute: (autocheck autochk *)
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

CREATERESTOREPOINT
Restore point Set: OTL Restore Point

NetSvcs:64bit: AppMgmt - C:\Windows\SysNative\appmgmts.dll (Microsoft Corporation)

Drivers32:64bit: msacm.l3acm - C:\Windows\System32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32:64bit: VIDC.I420 - lvcod64.dll (Logitech Inc.)
Drivers32: msacm.l3acm - C:\Windows\SysWOW64\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: vidc.cvid - C:\Windows\SysWow64\iccvid.dll (Radius Inc.)
Drivers32: vidc.i420 - C:\Windows\SysWow64\lvcodec2.dll (Logitech Inc.)
PhysicalDisk0 MBR saved to C:\PhysicalMBR.bin

========== Files/Folders - Created Within 30 Days ==========

[2014.12.25 20:38:56 | 000,000,000 | ---D | C] -- C:\Program Files\trend micro
[2014.12.25 20:38:56 | 000,000,000 | ---D | C] -- C:\rsit
[2014.12.25 01:33:48 | 000,000,000 | ---D | C] -- C:\Users\Kingpin\AppData\Local\VS Revo Group
[2014.12.25 01:33:42 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller Pro
[2014.12.25 01:33:41 | 000,031,800 | ---- | C] (VS Revo Group) -- C:\Windows\SysNative\drivers\revoflt.sys
[2014.12.25 01:33:41 | 000,000,000 | ---D | C] -- C:\ProgramData\VS Revo Group
[2014.12.25 01:33:38 | 000,000,000 | ---D | C] -- C:\Program Files\VS Revo Group
[2014.12.25 01:11:56 | 000,000,000 | ---D | C] -- C:\AdwCleaner
[2014.12.25 01:02:50 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
[2014.12.25 01:02:48 | 000,000,000 | ---D | C] -- C:\Program Files\CCleaner
[2014.12.25 00:30:36 | 000,000,000 | ---D | C] -- C:\Users\Kingpin\AppData\Roaming\PhotoFiltre Studio X
[2014.12.25 00:30:33 | 000,000,000 | ---D | C] -- C:\Users\Kingpin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PhotoFiltre Studio X
[2014.12.25 00:30:33 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PhotoFiltre Studio X
[2014.12.25 00:30:31 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\PhotoFiltre Studio X
[2014.12.25 00:14:30 | 000,000,000 | ---D | C] -- C:\Users\Kingpin\Desktop\Podpurné programy
[2014.12.24 20:48:35 | 000,000,000 | ---D | C] -- C:\Users\Kingpin\AppData\Local\FileViewPro
[2014.12.24 20:48:28 | 000,000,000 | ---D | C] -- C:\Users\Kingpin\AppData\Roaming\IsolatedStorage
[2014.12.24 20:48:28 | 000,000,000 | ---D | C] -- C:\ProgramData\IsolatedStorage
[2014.12.24 20:47:07 | 000,000,000 | ---D | C] -- C:\Spacekace
[2014.12.24 20:21:58 | 000,000,000 | ---D | C] -- C:\Users\Kingpin\AppData\Local\Deployment
[2014.12.23 22:35:10 | 000,000,000 | ---D | C] -- C:\Users\Kingpin\Documents\ArcSoft ToGo
[2014.12.23 19:14:19 | 001,155,072 | ---- | C] (C-Media Inc) -- C:\Windows\SysNative\drivers\cmudax3.sys
[2014.12.23 19:14:19 | 000,036,864 | ---- | C] (C-Media Electronics Ins.) -- C:\Windows\SysNative\cmudax3.dll
[2014.12.23 17:39:20 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lavalys
[2014.12.23 17:39:18 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Lavalys
[2014.12.23 17:36:45 | 000,000,000 | ---D | C] -- C:\Users\Kingpin\AppData\Roaming\uTorrent
[2014.12.23 17:36:45 | 000,000,000 | ---D | C] -- C:\Users\Kingpin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\uTorrent
[2014.12.23 16:30:53 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\RTCOM
[2014.12.23 16:30:53 | 000,000,000 | ---D | C] -- C:\Program Files\Realtek
[2014.12.23 16:30:15 | 002,605,400 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\WavesGUILib.dll
[2014.12.23 16:30:15 | 001,361,336 | ---- | C] (TOSHIBA Corporation) -- C:\Windows\SysNative\tosade.dll
[2014.12.23 16:30:15 | 000,065,944 | ---- | C] (TOSHIBA CORPORATION.) -- C:\Windows\SysNative\tepeqapo64.dll
[2014.12.23 16:30:14 | 000,836,544 | ---- | C] (TOSHIBA Corporation) -- C:\Windows\SysNative\tadefxapo264.dll
[2014.12.23 16:30:14 | 000,518,896 | ---- | C] (SRS Labs, Inc.) -- C:\Windows\SysNative\SRSTSX64.dll
[2014.12.23 16:30:14 | 000,211,184 | ---- | C] (SRS Labs, Inc.) -- C:\Windows\SysNative\SRSTSH64.dll
[2014.12.23 16:30:14 | 000,198,896 | ---- | C] (SRS Labs, Inc.) -- C:\Windows\SysNative\SRSHP64.dll
[2014.12.23 16:30:14 | 000,155,888 | ---- | C] (SRS Labs, Inc.) -- C:\Windows\SysNative\SRSWOW64.dll
[2014.12.23 16:30:14 | 000,148,416 | ---- | C] (TOSHIBA Corporation) -- C:\Windows\SysNative\tadefxapo.dll
[2014.12.23 16:30:13 | 000,221,024 | ---- | C] (Synopsys, Inc.) -- C:\Windows\SysNative\SFNHK64.dll
[2014.12.23 16:30:13 | 000,220,776 | ---- | C] (Sony Corporation) -- C:\Windows\SysNative\SFSS_APO.dll
[2014.12.23 16:30:13 | 000,081,248 | ---- | C] (Synopsys, Inc.) -- C:\Windows\SysNative\SFCOM64.dll
[2014.12.23 16:30:13 | 000,078,688 | ---- | C] (Synopsys, Inc.) -- C:\Windows\SysNative\SFAPO64.dll
[2014.12.23 16:30:13 | 000,074,064 | ---- | C] (Virage Logic Corporation / Sonic Focus) -- C:\Windows\SysWow64\SFCOM.dll
[2014.12.23 16:30:12 | 002,674,320 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RtPgEx64.dll
[2014.12.23 16:30:12 | 001,560,168 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RTSnMg64.cpl
[2014.12.23 16:30:11 | 000,331,880 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RtlCPAPI64.dll
[2014.12.23 16:30:10 | 003,615,888 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RtkAPO64.dll
[2014.12.23 16:30:10 | 001,262,696 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RTCOM64.dll
[2014.12.23 16:30:10 | 000,869,520 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RtkApi64.dll
[2014.12.23 16:30:10 | 000,375,128 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RTEEP64A.dll
[2014.12.23 16:30:10 | 000,204,120 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RTEED64A.dll
[2014.12.23 16:30:10 | 000,149,608 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RtkCfg64.dll
[2014.12.23 16:30:10 | 000,101,208 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RTEEL64A.dll
[2014.12.23 16:30:10 | 000,078,680 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RTEEG64A.dll
[2014.12.23 16:30:10 | 000,014,952 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RtkCoLDR64.dll
[2014.12.23 16:30:09 | 005,096,448 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RCoRes64.dat
[2014.12.23 16:30:09 | 000,310,104 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RP3DHT64.dll
[2014.12.23 16:30:09 | 000,310,104 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RP3DAA64.dll
[2014.12.23 16:30:09 | 000,105,616 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RCoInstII64.dll
[2014.12.23 16:30:08 | 007,163,744 | ---- | C] (Dolby Laboratories) -- C:\Windows\SysNative\R4EEP64A.dll
[2014.12.23 16:30:08 | 000,433,504 | ---- | C] (Dolby Laboratories) -- C:\Windows\SysNative\R4EED64A.dll
[2014.12.23 16:30:08 | 000,141,152 | ---- | C] (Dolby Laboratories) -- C:\Windows\SysNative\R4EEL64A.dll
[2014.12.23 16:30:08 | 000,123,744 | ---- | C] (Dolby Laboratories) -- C:\Windows\SysNative\R4EEA64A.dll
[2014.12.23 16:30:08 | 000,074,592 | ---- | C] (Dolby Laboratories) -- C:\Windows\SysNative\R4EEG64A.dll
[2014.12.23 16:30:07 | 008,363,864 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxAudioRealtek.dll
[2014.12.23 16:30:07 | 002,131,288 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxAudioEQ.dll
[2014.12.23 16:30:07 | 001,345,368 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxAudioRealtek264.dll
[2014.12.23 16:30:07 | 000,396,632 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxVolumeSDAPO.dll
[2014.12.23 16:30:06 | 001,015,640 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxAudioAPOShell64.dll
[2014.12.23 16:30:06 | 000,603,984 | ---- | C] (Knowles Acoustics ) -- C:\Windows\SysNative\KAAPORT64.dll
[2014.12.23 16:30:06 | 000,341,336 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxAudioAPO30.dll
[2014.12.23 16:30:06 | 000,318,808 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxAudioAPO20.dll
[2014.12.23 16:30:03 | 002,533,952 | ---- | C] (Fortemedia Corporation) -- C:\Windows\SysNative\FMAPO64.dll
[2014.12.23 16:30:03 | 001,756,264 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSS2SpeakerDLL64.dll
[2014.12.23 16:30:03 | 001,568,360 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSS2HeadphoneDLL64.dll
[2014.12.23 16:30:03 | 000,712,296 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSSymmetryDLL64.dll
[2014.12.23 16:30:03 | 000,693,352 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSVoiceClarityDLL64.dll
[2014.12.23 16:30:03 | 000,537,456 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSU2PLFX64.dll
[2014.12.23 16:30:03 | 000,524,656 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSU2PGFX64.dll
[2014.12.23 16:30:03 | 000,449,392 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSU2PREC64.dll
[2014.12.23 16:30:02 | 001,486,952 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSBoostDLL64.dll
[2014.12.23 16:30:02 | 000,728,680 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSBassEnhancementDLL64.dll
[2014.12.23 16:30:02 | 000,491,112 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSNeoPCDLL64.dll
[2014.12.23 16:30:02 | 000,432,744 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSLimiterDLL64.dll
[2014.12.23 16:30:02 | 000,428,648 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSGainCompensatorDLL64.dll
[2014.12.23 16:30:02 | 000,242,792 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSLFXAPO64.dll
[2014.12.23 16:30:02 | 000,242,792 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSGFXAPO64.dll
[2014.12.23 16:30:02 | 000,241,768 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSGFXAPONS64.dll
[2014.12.23 16:30:02 | 000,108,640 | ---- | C] (Andrea Electronics Corporation) -- C:\Windows\SysNative\AERTAR64.dll
[2014.12.23 16:30:01 | 000,202,336 | ---- | C] (Andrea Electronics Corporation) -- C:\Windows\SysNative\AERTAC64.dll
[2014.12.23 16:30:01 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Realtek
[2014.12.23 15:56:56 | 001,706,640 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\RtlExUpd.dll
[2014.12.23 15:56:56 | 000,000,000 | -H-D | C] -- C:\Program Files (x86)\Temp
[2014.12.23 08:54:29 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\logishrd
[2014.12.23 08:51:17 | 000,000,000 | ---D | C] -- C:\Users\Kingpin\AppData\Local\Skype
[2014.12.22 13:40:51 | 000,399,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dpx.dll
[2014.12.22 13:38:39 | 000,000,000 | ---D | C] -- C:\Users\Kingpin\Záloha PC
[2014.12.16 19:27:42 | 000,000,000 | ---D | C] -- C:\Users\Kingpin\AppData\Roaming\AVAST Software
[2014.12.16 18:38:43 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\MRT
[2014.12.16 18:34:02 | 000,000,000 | ---D | C] -- C:\Users\Kingpin\AppData\Roaming\vlc
[2014.12.16 18:33:24 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
[2014.12.16 18:32:58 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\VideoLAN
[2014.12.16 18:30:49 | 003,195,392 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\win32k(1897).sys
[2014.12.16 18:15:11 | 000,116,728 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswStm.sys
[2014.12.16 18:15:03 | 000,364,512 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\aswBoot.exe
[2014.12.16 18:14:52 | 000,043,152 | ---- | C] (AVAST Software) -- C:\Windows\avastSS.scr

========== Files - Modified Within 30 Days ==========

[2014.12.26 12:44:05 | 000,000,914 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2014.12.26 12:42:49 | 000,000,512 | ---- | M] () -- C:\PhysicalMBR.bin
[2014.12.25 19:27:40 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2014.12.25 19:27:34 | 1610,063,872 | -HS- | M] () -- C:\hiberfil.sys
[2014.12.25 19:22:06 | 000,014,416 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2014.12.25 19:22:06 | 000,014,416 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2014.12.25 11:51:51 | 001,222,144 | ---- | M] () -- C:\Users\Kingpin\Desktop\RSITx64.exe
[2014.12.25 00:30:33 | 000,001,138 | ---- | M] () -- C:\Users\Kingpin\Desktop\PhotoFiltre Studio X.lnk
[2014.12.24 11:51:19 | 001,470,062 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2014.12.24 11:51:19 | 000,631,076 | ---- | M] () -- C:\Windows\SysNative\perfh005.dat
[2014.12.24 11:51:19 | 000,615,810 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2014.12.24 11:51:19 | 000,121,716 | ---- | M] () -- C:\Windows\SysNative\perfc005.dat
[2014.12.24 11:51:19 | 000,106,190 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2014.12.24 09:09:49 | 000,000,483 | ---- | M] () -- C:\Users\Kingpin\Desktop\Desktop.lnk
[2014.12.23 10:45:32 | 000,001,461 | ---- | M] () -- C:\Users\Kingpin\Desktop\60. LÉTA - ČESKÉ HITY 60.LET.lnk
[2014.12.23 10:45:13 | 000,001,128 | ---- | M] () -- C:\Users\Kingpin\Desktop\Filmy.lnk
[2014.12.23 08:50:49 | 000,002,731 | ---- | M] () -- C:\Users\Public\Desktop\Skype.lnk
[2014.12.22 13:16:13 | 001,050,432 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswsnx.sys
[2014.12.22 13:10:40 | 000,000,364 | ---- | M] () -- C:\Users\Kingpin\Desktop\FreeCell.lnk
[2014.12.22 13:10:05 | 000,000,368 | ---- | M] () -- C:\Users\Kingpin\Desktop\Solitaire.lnk
[2014.12.22 12:24:27 | 000,001,696 | ---- | M] () -- C:\Users\Kingpin\Desktop\EXCEL.EXE.lnk
[2014.12.22 12:23:43 | 000,001,716 | ---- | M] () -- C:\Users\Kingpin\Desktop\WINWORD.EXE.lnk
[2014.12.22 11:56:14 | 000,001,189 | ---- | M] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk
[2014.12.16 19:26:58 | 000,277,960 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
[2014.12.16 18:44:35 | 000,701,104 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerApp.exe
[2014.12.16 18:44:34 | 000,071,344 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
[2014.12.16 18:33:24 | 000,001,108 | ---- | M] () -- C:\Users\Public\Desktop\VLC media player.lnk
[2014.12.16 18:14:55 | 000,436,624 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswSP.sys
[2014.12.16 18:14:55 | 000,267,632 | ---- | M] () -- C:\Windows\SysNative\drivers\aswVmm.sys
[2014.12.16 18:14:55 | 000,116,728 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswStm.sys
[2014.12.16 18:14:54 | 000,364,512 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\aswBoot.exe
[2014.12.16 18:14:54 | 000,093,568 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswRdr2.sys
[2014.12.16 18:14:54 | 000,083,280 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswMonFlt.sys
[2014.12.16 18:14:54 | 000,065,776 | ---- | M] () -- C:\Windows\SysNative\drivers\aswRvrt.sys
[2014.12.16 18:14:54 | 000,029,208 | ---- | M] () -- C:\Windows\SysNative\drivers\aswHwid.sys
[2014.12.16 18:14:52 | 000,043,152 | ---- | M] (AVAST Software) -- C:\Windows\avastSS.scr
[2014.12.16 18:11:56 | 000,000,000 | ---- | M] () -- C:\Windows\SysWow64\config.nt

========== Files Created - No Company Name ==========

[2014.12.26 12:42:49 | 000,000,512 | ---- | C] () -- C:\PhysicalMBR.bin
[2014.12.25 11:51:48 | 001,222,144 | ---- | C] () -- C:\Users\Kingpin\Desktop\RSITx64.exe
[2014.12.25 00:30:33 | 000,001,138 | ---- | C] () -- C:\Users\Kingpin\Desktop\PhotoFiltre Studio X.lnk
[2014.12.24 09:09:49 | 000,000,483 | ---- | C] () -- C:\Users\Kingpin\Desktop\Desktop.lnk
[2014.12.23 16:30:09 | 000,293,889 | ---- | C] () -- C:\Windows\SysNative\drivers\RTAIODAT.DAT
[2014.12.23 10:45:32 | 000,001,461 | ---- | C] () -- C:\Users\Kingpin\Desktop\60. LÉTA - ČESKÉ HITY 60.LET.lnk
[2014.12.23 10:45:13 | 000,001,128 | ---- | C] () -- C:\Users\Kingpin\Desktop\Filmy.lnk
[2014.12.23 08:50:49 | 000,002,731 | ---- | C] () -- C:\Users\Public\Desktop\Skype.lnk
[2014.12.22 13:10:40 | 000,000,364 | ---- | C] () -- C:\Users\Kingpin\Desktop\FreeCell.lnk
[2014.12.22 13:10:05 | 000,000,368 | ---- | C] () -- C:\Users\Kingpin\Desktop\Solitaire.lnk
[2014.12.22 12:24:27 | 000,001,696 | ---- | C] () -- C:\Users\Kingpin\Desktop\EXCEL.EXE.lnk
[2014.12.22 12:23:43 | 000,001,716 | ---- | C] () -- C:\Users\Kingpin\Desktop\WINWORD.EXE.lnk
[2014.12.22 10:01:18 | 000,135,077 | ---- | C] () -- C:\Users\Kingpin\Documents\_.pdf
[2014.12.22 10:00:43 | 000,162,033 | ---- | C] () -- C:\Users\Kingpin\Documents\Turistick_portl_Novomstsko_-_Lanov_centrum_BVV_Zub_-_2012-03-10.pdf
[2014.12.22 10:00:35 | 007,245,353 | ---- | C] () -- C:\Users\Kingpin\Documents\STM_CZ4606000000000179695761_20130604_2013000006.PDF
[2014.12.22 10:00:33 | 000,402,522 | ---- | C] () -- C:\Users\Kingpin\Documents\STM_CZ4606000000000179695761_20130503_2013000005.PDF
[2014.12.22 10:00:30 | 006,069,816 | ---- | C] () -- C:\Users\Kingpin\Documents\STM_CZ4606000000000179695761_20130404_2013000004.PDF
[2014.12.22 10:00:28 | 006,069,828 | ---- | C] () -- C:\Users\Kingpin\Documents\STM_CZ4606000000000179695761_20130404_2013000004 (1).PDF
[2014.12.22 10:00:27 | 000,408,469 | ---- | C] () -- C:\Users\Kingpin\Documents\STM_CZ4606000000000179695761_20130304_2013000003.PDF
[2014.12.22 10:00:27 | 000,408,469 | ---- | C] () -- C:\Users\Kingpin\Documents\STM_CZ4606000000000179695761_20130304_2013000003 (1).PDF
[2014.12.22 10:00:24 | 004,139,686 | ---- | C] () -- C:\Users\Kingpin\Documents\STM_CZ4606000000000179695761_20130204_2013000002.PDF
[2014.12.22 10:00:24 | 000,663,520 | ---- | C] () -- C:\Users\Kingpin\Documents\STM_CZ4606000000000179695761_20130204_2013000002 (1).PDF
[2014.12.22 10:00:24 | 000,493,180 | ---- | C] () -- C:\Users\Kingpin\Documents\STM_CZ4606000000000179695761_20121204_2012000012.PDF
[2014.12.22 10:00:24 | 000,068,928 | ---- | C] () -- C:\Users\Kingpin\Documents\STM_CZ4606000000000179695761_20121231_2012000013.PDF
[2014.12.22 10:00:24 | 000,068,928 | ---- | C] () -- C:\Users\Kingpin\Documents\STM_CZ4606000000000179695761_20121231_2012000013 (1).PDF
[2014.12.22 10:00:24 | 000,067,363 | ---- | C] () -- C:\Users\Kingpin\Documents\STM_CZ4606000000000179695761_20130104_2013000001.PDF
[2014.12.22 10:00:23 | 000,521,400 | ---- | C] () -- C:\Users\Kingpin\Documents\STM_CZ4606000000000179695761_20121004_2012000010.PDF
[2014.12.22 10:00:23 | 000,521,400 | ---- | C] () -- C:\Users\Kingpin\Documents\STM_CZ4606000000000179695761_20121004_2012000010 (3).PDF
[2014.12.22 10:00:23 | 000,493,180 | ---- | C] () -- C:\Users\Kingpin\Documents\STM_CZ4606000000000179695761_20121204_2012000012 (1).PDF
[2014.12.22 10:00:23 | 000,073,142 | ---- | C] () -- C:\Users\Kingpin\Documents\STM_CZ4606000000000179695761_20121102_2012000011.PDF
[2014.12.22 10:00:21 | 000,521,400 | ---- | C] () -- C:\Users\Kingpin\Documents\STM_CZ4606000000000179695761_20121004_2012000010 (2).PDF
[2014.12.22 10:00:21 | 000,521,400 | ---- | C] () -- C:\Users\Kingpin\Documents\STM_CZ4606000000000179695761_20121004_2012000010 (1).PDF
[2014.12.22 10:00:21 | 000,066,037 | ---- | C] () -- C:\Users\Kingpin\Documents\STM_CZ4606000000000179695761_20120904_2012000009.PDF
[2014.12.22 10:00:21 | 000,066,037 | ---- | C] () -- C:\Users\Kingpin\Documents\STM_CZ4606000000000179695761_20120904_2012000009 (3).PDF
[2014.12.22 10:00:21 | 000,066,037 | ---- | C] () -- C:\Users\Kingpin\Documents\STM_CZ4606000000000179695761_20120904_2012000009 (2).PDF
[2014.12.22 10:00:21 | 000,066,037 | ---- | C] () -- C:\Users\Kingpin\Documents\STM_CZ4606000000000179695761_20120904_2012000009 (1).PDF
[2014.12.22 10:00:20 | 000,065,180 | ---- | C] () -- C:\Users\Kingpin\Documents\STM_CZ4606000000000179695761_20120704_2012000007.PDF
[2014.12.22 10:00:20 | 000,065,180 | ---- | C] () -- C:\Users\Kingpin\Documents\STM_CZ4606000000000179695761_20120704_2012000007 (1).PDF
[2014.12.22 10:00:20 | 000,065,154 | ---- | C] () -- C:\Users\Kingpin\Documents\STM_CZ4606000000000179695761_20120704_2012000007 (2).PDF
[2014.12.22 10:00:20 | 000,057,238 | ---- | C] () -- C:\Users\Kingpin\Documents\STM_CZ4606000000000179695761_20120803_2012000008.PDF
[2014.12.22 10:00:20 | 000,057,213 | ---- | C] () -- C:\Users\Kingpin\Documents\STM_CZ4606000000000179695761_20120803_2012000008 (1).PDF
[2014.12.22 10:00:19 | 000,056,403 | ---- | C] () -- C:\Users\Kingpin\Documents\STM_CZ4606000000000179695761_20120604_2012000006.PDF
[2014.12.22 09:59:16 | 000,029,450 | ---- | C] () -- C:\Users\Kingpin\Documents\provozni_doby_01_01_2014.pdf
[2014.12.22 09:59:01 | 001,205,760 | ---- | C] () -- C:\Users\Kingpin\Documents\nenalicene_celebrity.pps
[2014.12.22 09:59:00 | 001,207,808 | ---- | C] () -- C:\Users\Kingpin\Documents\nenalicene_celebrity (1).pps
[2014.12.22 09:58:48 | 002,760,192 | ---- | C] () -- C:\Users\Kingpin\Documents\Jsem_mezi_7.pps
[2014.12.22 09:58:46 | 002,959,140 | ---- | C] () -- C:\Users\Kingpin\Documents\Jitrenka-2013-1.pdf
[2014.12.22 09:58:12 | 000,029,598 | ---- | C] () -- C:\Users\Kingpin\Documents\cv_1746702_ostadalova_cz (1).pdf
[2014.12.22 09:58:12 | 000,029,598 | ---- | C] () -- C:\Users\Kingpin\Documents\cv_1746702_ostadalova_cz (1) (2).pdf
[2014.12.22 09:58:12 | 000,027,094 | ---- | C] () -- C:\Users\Kingpin\Documents\cv_1843282_benesova_cz.pdf
[2014.12.22 09:58:12 | 000,027,094 | ---- | C] () -- C:\Users\Kingpin\Documents\cv_1843282_benesova_cz (1).pdf
[2014.12.22 09:58:11 | 000,029,598 | ---- | C] () -- C:\Users\Kingpin\Documents\cv_1746702_ostadalova_cz (1) (1).pdf
[2014.12.22 09:58:11 | 000,029,598 | ---- | C] () -- C:\Users\Kingpin\Documents\cv_1746702_ostadalova_cz (1) (1) (1).pdf
[2014.12.22 09:58:11 | 000,029,598 | ---- | C] () -- C:\Users\Kingpin\Documents\cv_1746702_ostadalova_cz (1) (1) (1) (1).pdf
[2014.12.22 09:57:18 | 000,188,465 | ---- | C] () -- C:\Users\Kingpin\Documents\341348778.pdf
[2014.12.22 09:57:18 | 000,188,465 | ---- | C] () -- C:\Users\Kingpin\Documents\341348778 (2).pdf
[2014.12.22 09:57:18 | 000,188,465 | ---- | C] () -- C:\Users\Kingpin\Documents\341348778 (1).pdf
[2014.12.16 18:33:24 | 000,001,108 | ---- | C] () -- C:\Users\Public\Desktop\VLC media player.lnk
[2014.12.16 18:15:08 | 000,029,208 | ---- | C] () -- C:\Windows\SysNative\drivers\aswHwid.sys
[2012.12.10 11:26:25 | 000,003,584 | ---- | C] () -- C:\Users\Kingpin\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011.12.22 09:52:13 | 000,000,136 | ---- | C] () -- C:\Users\Kingpin\Chess Titans – zástupce.lnk
[2011.12.16 12:16:59 | 000,001,099 | ---- | C] () -- C:\Users\Kingpin\age2_x1.exe – zástupce.lnk
[2011.11.25 10:37:14 | 000,000,934 | ---- | C] () -- C:\Users\Kingpin\The Elder Scrolls V Skyrim.lnk

========== ZeroAccess Check ==========

[2012.08.18 21:52:43 | 000,000,780 | ---- | M] () -- C:\$Recycle.bin\S-1-5-21-4258835418-4277818934-1242146309-1000\$RYTUYRB.7\Xtraz\icq\theme\icq_profile\flags_32\n.png
[2012.08.18 21:52:42 | 000,000,780 | ---- | M] () -- C:\$Recycle.bin\S-1-5-21-4258835418-4277818934-1242146309-1000\$RYTUYRB.7\Xtraz\icq\theme\profile_forms\flags_32\n.png
[2009.07.14 05:55:00 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
"" = C:\Windows\SysNative\shell32.dll -- [2012.06.09 06:30:56 | 014,165,504 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2012.06.09 05:46:56 | 012,868,608 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\fastprox.dll -- [2009.07.14 02:40:51 | 000,909,312 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2009.07.14 02:15:20 | 000,605,696 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\wbemess.dll -- [2009.07.14 02:41:56 | 000,505,856 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]

========== LOP Check ==========

[2014.12.16 19:27:42 | 000,000,000 | ---D | M] -- C:\Users\Kingpin\AppData\Roaming\AVAST Software
[2014.12.25 01:09:28 | 000,000,000 | ---D | M] -- C:\Users\Kingpin\AppData\Roaming\DAEMON Tools Lite
[2014.12.25 00:57:49 | 000,000,000 | ---D | M] -- C:\Users\Kingpin\AppData\Roaming\ICQ
[2014.12.24 20:48:28 | 000,000,000 | ---D | M] -- C:\Users\Kingpin\AppData\Roaming\IsolatedStorage
[2011.11.29 09:46:48 | 000,000,000 | ---D | M] -- C:\Users\Kingpin\AppData\Roaming\LolClient
[2012.05.25 07:15:35 | 000,000,000 | ---D | M] -- C:\Users\Kingpin\AppData\Roaming\LolClient2
[2014.12.25 00:30:55 | 000,000,000 | ---D | M] -- C:\Users\Kingpin\AppData\Roaming\PhotoFiltre Studio X
[2002.01.01 01:04:55 | 000,000,000 | ---D | M] -- C:\Users\Kingpin\AppData\Roaming\SumatraPDF
[2014.12.26 12:29:17 | 000,000,000 | ---D | M] -- C:\Users\Kingpin\AppData\Roaming\uTorrent

========== Purity Check ==========

========== Custom Scans ==========

< >
[2009.07.14 06:08:49 | 000,000,006 | -H-- | C] () -- C:\Windows\Tasks\SA.DAT
[2009.07.14 06:08:49 | 000,032,598 | ---- | C] () -- C:\Windows\Tasks\SCHEDLGU.TXT
[2012.03.29 07:36:51 | 000,000,914 | ---- | C] () -- C:\Windows\Tasks\Adobe Flash Player Updater.job

< >

< MD5 for: ATAPI.SYS >
[2009.07.14 02:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\SysNative\drivers\atapi.sys
[2009.07.14 02:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\SysNative\DriverStore\FileRepository\mshdc.inf_amd64_neutral_a69a58a4286f0b22\atapi.sys
[2009.07.14 02:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\winsxs\amd64_mshdc.inf_31bf3856ad364e35_6.1.7600.16385_none_392d19c13b3ad543\atapi.sys
[2009.07.14 02:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\winsxs\amd64_mshdc.inf_31bf3856ad364e35_6.1.7601.17514_none_3b5e2d89382958dd\atapi.sys

< MD5 for: AUTOCHK.EXE >
[2009.07.14 02:14:12 | 000,668,160 | ---- | M] (Microsoft Corporation) MD5=41E4C8EBA464E7D6A5BA5E8827732AEB -- C:\Windows\SysWOW64\autochk.exe
[2009.07.14 02:14:12 | 000,668,160 | ---- | M] (Microsoft Corporation) MD5=41E4C8EBA464E7D6A5BA5E8827732AEB -- C:\Windows\winsxs\x86_microsoft-windows-autochk_31bf3856ad364e35_6.1.7600.16385_none_e1ca436d2314b860\autochk.exe
[2009.07.14 02:38:56 | 000,777,728 | ---- | M] (Microsoft Corporation) MD5=8B7F8E882A649D81CEA1EDE9BBB68FFF -- C:\Windows\SysNative\autochk.exe
[2009.07.14 02:38:56 | 000,777,728 | ---- | M] (Microsoft Corporation) MD5=8B7F8E882A649D81CEA1EDE9BBB68FFF -- C:\Windows\winsxs\amd64_microsoft-windows-autochk_31bf3856ad364e35_6.1.7600.16385_none_3de8def0db722996\autochk.exe

< MD5 for: CDROM.SYS >
[2009.07.14 00:19:54 | 000,147,456 | ---- | M] (Microsoft Corporation) MD5=83D2D75E1EFB81B3450C18131443F7DB -- C:\Windows\SysNative\drivers\cdrom.sys
[2009.07.14 00:19:54 | 000,147,456 | ---- | M] (Microsoft Corporation) MD5=83D2D75E1EFB81B3450C18131443F7DB -- C:\Windows\SysNative\DriverStore\FileRepository\cdrom.inf_amd64_neutral_8363d00ecae4322d\cdrom.sys
[2009.07.14 00:19:54 | 000,147,456 | ---- | M] (Microsoft Corporation) MD5=83D2D75E1EFB81B3450C18131443F7DB -- C:\Windows\winsxs\amd64_cdrom.inf_31bf3856ad364e35_6.1.7600.16385_none_bb9e4d89bd7870f1\cdrom.sys

< MD5 for: EXPLORER.EXE >
[2011.02.26 07:23:14 | 002,870,272 | ---- | M] (Microsoft Corporation) MD5=0862495E0C825893DB75EF44FAEA8E93 -- C:\Windows\explorer.exe
[2011.02.26 07:23:14 | 002,870,272 | ---- | M] (Microsoft Corporation) MD5=0862495E0C825893DB75EF44FAEA8E93 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16768_none_adc24107935a7e25\explorer.exe
[2011.02.26 06:19:21 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=0FB9C74046656D1579A64660AD67B746 -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.21669_none_ba87e574ddfe652d\explorer.exe
[2009.07.14 02:14:20 | 002,613,248 | ---- | M] (Microsoft Corporation) MD5=15BC38A7492BEFE831966ADB477CF76F -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16385_none_b7fe430bc7ce3761\explorer.exe
[2011.02.26 06:51:13 | 002,614,784 | ---- | M] (Microsoft Corporation) MD5=255CF508D7CFB10E0794D6AC93280BD8 -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20910_none_b8ce9756e0b786a4\explorer.exe
[2009.10.31 06:45:39 | 002,614,272 | ---- | M] (Microsoft Corporation) MD5=2626FC9755BE22F805D3CFA0CE3EE727 -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16450_none_b819b343c7ba6202\explorer.exe
[2011.02.26 06:33:07 | 002,614,784 | ---- | M] (Microsoft Corporation) MD5=2AF58D15EDC06EC6FDACCE1F19482BBF -- C:\Windows\SysWOW64\explorer.exe
[2011.02.26 06:33:07 | 002,614,784 | ---- | M] (Microsoft Corporation) MD5=2AF58D15EDC06EC6FDACCE1F19482BBF -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16768_none_b816eb59c7bb4020\explorer.exe
[2011.02.25 07:19:30 | 002,871,808 | ---- | M] (Microsoft Corporation) MD5=332FEAB1435662FC6C672E25BEB37BE3 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17567_none_afa79dc39081d0ba\explorer.exe
[2011.02.26 07:14:34 | 002,871,808 | ---- | M] (Microsoft Corporation) MD5=3B69712041F3D63605529BD66DC00C48 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.21669_none_b0333b22a99da332\explorer.exe
[2009.08.03 07:19:07 | 002,868,224 | ---- | M] (Microsoft Corporation) MD5=700073016DAC1C3D2E7E2CE4223334B6 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20500_none_ae84b558ac4eb41c\explorer.exe
[2011.02.25 06:30:54 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=8B88EBBB05A0E56B7DCC708498C02B3E -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17567_none_b9fc4815c4e292b5\explorer.exe
[2009.10.31 07:34:59 | 002,870,272 | ---- | M] (Microsoft Corporation) MD5=9AAAEC8DAC27AA17B053E6352AD233AE -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16450_none_adc508f19359a007\explorer.exe
[2009.08.03 06:49:47 | 002,613,248 | ---- | M] (Microsoft Corporation) MD5=9FF6C4C91A3711C0A3B18F87B08B518D -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20500_none_b8d95faae0af7617\explorer.exe
[2009.10.31 07:38:38 | 002,870,272 | ---- | M] (Microsoft Corporation) MD5=B8EC4BD49CE8F6FC457721BFC210B67F -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20563_none_ae46d6aeac7ca7c7\explorer.exe
[2009.08.03 06:35:50 | 002,613,248 | ---- | M] (Microsoft Corporation) MD5=B95EEB0F4E5EFBF1038A35B3351CF047 -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16404_none_b853c407c78e3ba9\explorer.exe
[2009.07.14 02:39:10 | 002,868,224 | ---- | M] (Microsoft Corporation) MD5=C235A51CB740E45FFA0EBFB9BAFCDA64 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16385_none_ada998b9936d7566\explorer.exe
[2009.10.31 07:00:51 | 002,614,272 | ---- | M] (Microsoft Corporation) MD5=C76153C7ECA00FA852BB0C193378F917 -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20563_none_b89b8100e0dd69c2\explorer.exe
[2011.02.26 07:26:45 | 002,870,784 | ---- | M] (Microsoft Corporation) MD5=E38899074D4951D31B4040E994DD7C8D -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20910_none_ae79ed04ac56c4a9\explorer.exe
[2009.08.03 07:17:37 | 002,868,224 | ---- | M] (Microsoft Corporation) MD5=F170B4A061C9E026437B193B4D571799 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16404_none_adff19b5932d79ae\explorer.exe

< MD5 for: HAL.DLL >
[2009.07.14 02:47:48 | 000,263,232 | ---- | M] (Microsoft Corporation) MD5=C0A6F6E05E14FBCAEDE7796C8590B7AC -- C:\Windows\SysNative\hal.dll
[2009.07.14 02:47:48 | 000,263,232 | ---- | M] (Microsoft Corporation) MD5=C0A6F6E05E14FBCAEDE7796C8590B7AC -- C:\Windows\winsxs\amd64_microsoft-windows-hal_31bf3856ad364e35_6.1.7600.16385_none_071de44b735b3dfc\hal.dll

< MD5 for: SCECLI.DLL >
[2009.07.14 02:16:13 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=26073302DAEA83CC5B944C546D6B47D2 -- C:\Windows\SysWOW64\scecli.dll
[2009.07.14 02:16:13 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=26073302DAEA83CC5B944C546D6B47D2 -- C:\Windows\winsxs\wow64_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7600.16385_none_9e577e55272d37b4\scecli.dll
[2009.07.14 02:41:53 | 000,232,448 | ---- | M] (Microsoft Corporation) MD5=398712DDDAEFB85EDF61DF6A07B65C79 -- C:\Windows\SysNative\scecli.dll
[2009.07.14 02:41:53 | 000,232,448 | ---- | M] (Microsoft Corporation) MD5=398712DDDAEFB85EDF61DF6A07B65C79 -- C:\Windows\winsxs\amd64_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7600.16385_none_9402d402f2cc75b9\scecli.dll

< MD5 for: SERVICES.EXE >
[2009.07.14 02:39:37 | 000,328,704 | ---- | M] (Microsoft Corporation) MD5=24ACB7E5BE595468E3B9AA488B9B4FCB -- C:\Windows\SysNative\services.exe
[2009.07.14 02:39:37 | 000,328,704 | ---- | M] (Microsoft Corporation) MD5=24ACB7E5BE595468E3B9AA488B9B4FCB -- C:\Windows\winsxs\amd64_microsoft-windows-s..s-servicecontroller_31bf3856ad364e35_6.1.7600.16385_none_2b54b20ee6fa07b1\services.exe

< MD5 for: SVCHOST.EXE >
[2009.07.14 02:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\SysWOW64\svchost.exe
[2009.07.14 02:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\winsxs\x86_microsoft-windows-services-svchost_31bf3856ad364e35_6.1.7600.16385_none_b591afc466a15356\svchost.exe
[2009.07.14 02:39:46 | 000,027,136 | ---- | M] (Microsoft Corporation) MD5=C78655BC80301D76ED4FEF1C1EA40A7D -- C:\Windows\SysNative\svchost.exe
[2009.07.14 02:39:46 | 000,027,136 | ---- | M] (Microsoft Corporation) MD5=C78655BC80301D76ED4FEF1C1EA40A7D -- C:\Windows\winsxs\amd64_microsoft-windows-services-svchost_31bf3856ad364e35_6.1.7600.16385_none_11b04b481efec48c\svchost.exe

< MD5 for: TCPIP.SYS >
[2011.04.25 06:28:24 | 001,893,248 | ---- | M] (Microsoft Corporation) MD5=1F748D5439B65E0BEBD92F65048F030D -- C:\Windows\SoftwareDistribution\Download\da4463397caf4338fc547a263ebe279e\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.20951_none_0fb918de99201ffb\tcpip.sys
[2013.01.04 06:41:01 | 001,893,224 | ---- | M] (Microsoft Corporation) MD5=5CFB7AB8F9524D1A1E14369DE63B83CC -- C:\Windows\SysNative\drivers\tcpip.sys
[2013.01.04 06:41:01 | 001,893,224 | ---- | M] (Microsoft Corporation) MD5=5CFB7AB8F9524D1A1E14369DE63B83CC -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.17206_none_0f6a6af57fd59de6\tcpip.sys
[2012.03.30 11:19:17 | 001,877,872 | ---- | M] (Microsoft Corporation) MD5=5EFD096DEF47F8B88EF591DA92143440 -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.21178_none_0faa5514992a39a7\tcpip.sys
[2011.04.25 06:32:22 | 001,896,832 | ---- | M] (Microsoft Corporation) MD5=61DC720BB065D607D5823F13D2A64321 -- C:\Windows\SoftwareDistribution\Download\da4463397caf4338fc547a263ebe279e\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.16802_none_0f668bf97fd90dd3\tcpip.sys
[2012.03.30 12:09:53 | 001,895,280 | ---- | M] (Microsoft Corporation) MD5=624C5B3AA4C99B3184BB922D9ECE3FF0 -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.16986_none_0f140fa780164fde\tcpip.sys
[2013.01.03 06:57:12 | 001,876,824 | ---- | M] (Microsoft Corporation) MD5=692969AB90BDA19F56E27BF89A9260E2 -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.21415_none_0fe8397098fc3d71\tcpip.sys
[2012.03.30 11:26:36 | 001,901,424 | ---- | M] (Microsoft Corporation) MD5=885B202006EE17AE99B9FBCEC9AF88C9 -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.21954_none_11a27a8e9643d23a\tcpip.sys
[2009.07.14 02:45:55 | 001,898,576 | ---- | M] (Microsoft Corporation) MD5=912107716BAB424C7870E8E6AF5E07E1 -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.16385_none_0f1303f98017479d\tcpip.sys
[2011.04.25 06:33:51 | 001,923,968 | ---- | M] (Microsoft Corporation) MD5=92CE29D95AC9DD2D0EE9061D551BA250 -- C:\Windows\SoftwareDistribution\Download\da4463397caf4338fc547a263ebe279e\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.17603_none_114de9497cfe9316\tcpip.sys
[2012.03.30 12:35:47 | 001,918,320 | ---- | M] (Microsoft Corporation) MD5=ACB82BDA8F46C84F465C1AFA517DC4B9 -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.17802_none_114ceccb7cff740d\tcpip.sys
[2013.01.03 07:00:54 | 001,913,192 | ---- | M] (Microsoft Corporation) MD5=B62A953F2BF3922C8764A29C34A22899 -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.18042_none_112187237d20143a\tcpip.sys
[2011.04.25 07:16:34 | 001,927,552 | ---- | M] (Microsoft Corporation) MD5=B77977AEB2FF159D01DB08A309989C5F -- C:\Windows\SoftwareDistribution\Download\da4463397caf4338fc547a263ebe279e\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.21712_none_11cbb5de9625357a\tcpip.sys
[2013.01.04 06:47:43 | 001,901,416 | ---- | M] (Microsoft Corporation) MD5=B8C1AAC0523E1C33AEB0EF7572144BA2 -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.22209_none_11dd678a9616f2c8\tcpip.sys

< MD5 for: USERINIT.EXE >
[2009.07.14 02:14:43 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=6DE80F60D7DE9CE6B8C2DDFDF79EF175 -- C:\Windows\SysWOW64\userinit.exe
[2009.07.14 02:14:43 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=6DE80F60D7DE9CE6B8C2DDFDF79EF175 -- C:\Windows\winsxs\x86_microsoft-windows-userinit_31bf3856ad364e35_6.1.7600.16385_none_dbff103933038d7c\userinit.exe
[2009.07.14 02:39:48 | 000,030,208 | ---- | M] (Microsoft Corporation) MD5=6F8F1376A13114CC10C0E69274F5A4DE -- C:\Windows\SysNative\userinit.exe
[2009.07.14 02:39:48 | 000,030,208 | ---- | M] (Microsoft Corporation) MD5=6F8F1376A13114CC10C0E69274F5A4DE -- C:\Windows\winsxs\amd64_microsoft-windows-userinit_31bf3856ad364e35_6.1.7600.16385_none_381dabbceb60feb2\userinit.exe

< MD5 for: WINLOGON.EXE >
[2009.07.14 02:39:52 | 000,389,120 | ---- | M] (Microsoft Corporation) MD5=132328DF455B0028F13BF0ABEE51A63A -- C:\Windows\winsxs\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7600.16385_none_cbb7f2bdeea2829c\winlogon.exe
[2009.10.28 08:01:57 | 000,389,632 | ---- | M] (Microsoft Corporation) MD5=A93D41A4D4B0D91C072D11DD8AF266DE -- C:\Windows\winsxs\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7600.20560_none_cc522fd507b468f8\winlogon.exe
[2009.10.28 07:24:40 | 000,389,632 | ---- | M] (Microsoft Corporation) MD5=DA3E2A6FA9660CC75B471530CE88453A -- C:\Windows\SysNative\winlogon.exe
[2009.10.28 07:24:40 | 000,389,632 | ---- | M] (Microsoft Corporation) MD5=DA3E2A6FA9660CC75B471530CE88453A -- C:\Windows\winsxs\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7600.16447_none_cbe534e7ee8042ad\winlogon.exe

< >

< %systemroot%*.* /U /s >
[2 C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp files -> C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp -> ]
[15 C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\*.tmp files -> C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\*.tmp -> ]

< %SYSTEMDRIVE%\*.exe >

< %ALLUSERSPROFILE%\Application Data\*. >

< %ALLUSERSPROFILE%\Application Data\*.exe /s >

< %APPDATA%\*. >
[2011.11.24 12:59:38 | 000,000,000 | ---D | M] -- C:\Users\Kingpin\AppData\Roaming\Adobe
[2012.12.19 15:47:48 | 000,000,000 | ---D | M] -- C:\Users\Kingpin\AppData\Roaming\ArcSoft
[2014.12.16 19:27:42 | 000,000,000 | ---D | M] -- C:\Users\Kingpin\AppData\Roaming\AVAST Software
[2014.12.25 01:09:28 | 000,000,000 | ---D | M] -- C:\Users\Kingpin\AppData\Roaming\DAEMON Tools Lite
[2014.12.25 00:57:49 | 000,000,000 | ---D | M] -- C:\Users\Kingpin\AppData\Roaming\ICQ
[2014.12.25 00:30:38 | 000,000,000 | ---D | M] -- C:\Users\Kingpin\AppData\Roaming\Identities
[2011.11.21 00:52:19 | 000,000,000 | ---D | M] -- C:\Users\Kingpin\AppData\Roaming\InstallShield
[2014.12.24 20:48:28 | 000,000,000 | ---D | M] -- C:\Users\Kingpin\AppData\Roaming\IsolatedStorage
[2011.11.29 09:46:48 | 000,000,000 | ---D | M] -- C:\Users\Kingpin\AppData\Roaming\LolClient
[2012.05.25 07:15:35 | 000,000,000 | ---D | M] -- C:\Users\Kingpin\AppData\Roaming\LolClient2
[2011.11.19 11:02:55 | 000,000,000 | ---D | M] -- C:\Users\Kingpin\AppData\Roaming\Macromedia
[2009.07.14 08:45:14 | 000,000,000 | ---D | M] -- C:\Users\Kingpin\AppData\Roaming\Media Center Programs
[2012.12.10 10:53:01 | 000,000,000 | --SD | M] -- C:\Users\Kingpin\AppData\Roaming\Microsoft
[2011.11.18 13:10:44 | 000,000,000 | ---D | M] -- C:\Users\Kingpin\AppData\Roaming\Mozilla
[2014.12.25 00:30:55 | 000,000,000 | ---D | M] -- C:\Users\Kingpin\AppData\Roaming\PhotoFiltre Studio X
[2014.12.25 01:17:34 | 000,000,000 | ---D | M] -- C:\Users\Kingpin\AppData\Roaming\Skype
[2002.01.01 01:04:55 | 000,000,000 | ---D | M] -- C:\Users\Kingpin\AppData\Roaming\SumatraPDF
[2014.12.26 12:29:17 | 000,000,000 | ---D | M] -- C:\Users\Kingpin\AppData\Roaming\uTorrent
[2014.12.24 15:45:35 | 000,000,000 | ---D | M] -- C:\Users\Kingpin\AppData\Roaming\vlc
[2011.11.19 09:59:27 | 000,000,000 | ---D | M] -- C:\Users\Kingpin\AppData\Roaming\WinRAR

< %APPDATA%\*.exe /s >
[2014.04.14 00:00:00 | 000,042,496 | ---- | M] () -- C:\Users\Kingpin\AppData\Roaming\uTorrent\uninstall.exe
[2014.04.14 00:00:00 | 000,398,760 | ---- | M] (BitTorrent, Inc.) -- C:\Users\Kingpin\AppData\Roaming\uTorrent\utorrent.exe

< %systemroot%\*. /mp /s >

< %systemroot%\system32\*.dll /lockedfiles >

< %systemroot%\Tasks\*.job >
[2014.12.26 12:44:05 | 000,000,914 | ---- | M] () -- C:\Windows\Tasks\Adobe Flash Player Updater.job

< %systemroot%\system32\drivers\*.sys /lockedfiles >

< %systemroot%\System32\config\*.sav >

< %systemroot%\system32\*.dll /lockedfiles >

< %systemroot%\system32\drivers\*.sys /3 >

< %systemroot%\system32\*.* /3 >

< %SYSTEMDRIVE%\*.exe >

< >

< HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s >
"CCleaner Monitoring" = "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR -- [2014.12.12 18:21:24 | 007,394,584 | ---- | M] (Piriform Ltd)

< >

< %PROGRAMFILES%\Mozilla Firefox\firefox.exe /md5 >
[2014.11.26 17:40:18 | 000,337,520 | ---- | M] (Mozilla Corporation) MD5=DADDD62BEDC91BC96CFC794A2CA0D94A -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe

< %PROGRAMFILES%\Internet Explorer\iexplore.exe /md5 >
[2013.02.02 05:19:04 | 000,757,296 | ---- | M] (Microsoft Corporation) MD5=DDE5A0DFAF7C6370FB36402D7A746ED3 -- C:\Program Files (x86)\Internet Explorer\iexplore.exe

< %PROGRAMFILES%\Opera\opera.exe /md5 >

< %PROGRAMFILES%\Google\Chrome\Application\chrome.exe /md5 >

< >

< %SystemDrive%\PhysicalMBR.bin /md5 >
[2014.12.26 12:42:49 | 000,000,512 | ---- | M] () MD5=AD4FCE030BEF463826164F687427CA5E -- C:\PhysicalMBR.bin

< >

< *crack* /s >
[2000.09.01 00:47:12 | 001,173,558 | ---- | M] () -- \GAMES\Ago of Empire 2\crack.zip
[2012.05.03 19:57:37 | 001,237,139 | ---- | M] () -- \Users\Kingpin\Záloha PC\Filmy\Hra o trůny\Druhá série\RAR-Password-recovery-with-crack.zip

< *keygen* /s >

< *loader* /s >
[2011.11.20 22:59:31 | 000,005,795 | ---- | M] () -- \$Recycle.Bin\S-1-5-21-4258835418-4277818934-1242146309-1000\$RYTUYRB.7\imApp\theme\IMAGES\XtraPreloader\loader.jpg
[2011.11.20 22:59:31 | 000,004,180 | ---- | M] () -- \$Recycle.Bin\S-1-5-21-4258835418-4277818934-1242146309-1000\$RYTUYRB.7\imApp\theme\IMAGES\XtraPreloader\zlango-preloader.png
[2011.11.20 22:59:31 | 000,005,520 | ---- | M] () -- \$Recycle.Bin\S-1-5-21-4258835418-4277818934-1242146309-1000\$RYTUYRB.7\imApp\theme\MUICoreLib\xtraLoader.swf
[2012.01.01 00:36:39 | 000,002,886 | ---- | M] () -- \$Recycle.Bin\S-1-5-21-4258835418-4277818934-1242146309-1000\$RYTUYRB.7\Xtraz\icq\content\babylon_feed\preloader01_b.swf
[2011.11.20 23:02:10 | 000,000,402 | ---- | M] () -- \$Recycle.Bin\S-1-5-21-4258835418-4277818934-1242146309-1000\$RYTUYRB.7\Xtraz\icq\content\profile_lightboxs\preloader.html
[2006.10.26 13:40:34 | 000,057,344 | ---- | M] () -- \Program Files (x86)\Common Files\microsoft shared\VS7DEBUG\coloader.dll
[2006.10.26 13:40:34 | 000,005,120 | ---- | M] () -- \Program Files (x86)\Common Files\microsoft shared\VS7DEBUG\coloader.tlb
[2006.12.23 17:37:56 | 000,044,032 | ---- | M] () -- \Program Files (x86)\WinRAR\RarExtLoader.exe
[2014.12.16 18:14:38 | 000,072,480 | ---- | M] () -- \Program Files\AVAST Software\Avast\aswWrcIELoader32.exe
[2014.12.16 18:14:38 | 000,085,376 | ---- | M] () -- \Program Files\AVAST Software\Avast\aswWrcIELoader64.exe
[2014.10.24 08:42:10 | 000,072,638 | ---- | M] () -- \Users\Kingpin\AppData\Local\Skype\Apps\login\images\loader.gif
[2014.10.24 08:42:10 | 000,003,032 | ---- | M] () -- \Users\Kingpin\AppData\Local\Skype\Apps\login\images\loader.png
[2014.10.24 08:42:10 | 000,006,012 | ---- | M] () -- \Users\Kingpin\AppData\Local\Skype\Apps\login\images\normal\loader_15fps.gif
[2014.10.24 08:42:10 | 000,021,956 | ---- | M] () -- \Users\Kingpin\AppData\Local\Skype\Apps\login\images\normal\loader_30fps.gif
[2014.10.24 08:42:10 | 000,009,772 | ---- | M] () -- \Users\Kingpin\AppData\Local\Skype\Apps\login\images\retina\loader@2x.png
[2012.07.17 13:18:16 | 000,009,051 | ---- | M] () -- \Users\Kingpin\AppData\Roaming\DAEMON Tools Lite\MediaInfo\img\loader.gif
[2012.07.17 13:18:16 | 000,016,119 | ---- | M] () -- \Users\Kingpin\AppData\Roaming\DAEMON Tools Lite\MediaInfo\img\logo_loader_page.jpg
[2012.07.17 13:18:16 | 000,018,434 | ---- | M] () -- \Users\Kingpin\AppData\Roaming\DAEMON Tools Lite\MediaInfo\img\logo_loader_page.png
[2012.07.17 13:18:16 | 000,009,283 | ---- | M] () -- \Users\Kingpin\AppData\Roaming\DAEMON Tools Lite\MediaInfo\js\app\MediaInfo\ImageInfoLoader.js
[2012.07.17 13:18:16 | 000,001,898 | ---- | M] () -- \Users\Kingpin\AppData\Roaming\DAEMON Tools Lite\MediaInfo\js\app\MediaInfo\NewsLoader.js
[2014.12.22 16:25:22 | 001,352,399 | ---- | M] () -- \Users\Kingpin\Downloads\windows-7-activator-build-7601-x86x64-windows-loader-v1-9-7.rar
[2011.11.19 10:50:56 | 000,082,784 | ---- | M] () -- \Windows\assembly\GAC\IALoader\1.7.6223.0__31bf3856ad364e35\IALoader.dll
[2014.12.26 12:36:44 | 000,028,882 | ---- | M] () -- \Windows\Prefetch\RAREXTLOADER.EXE-8405D981.pf
[2010.11.20 12:09:38 | 000,004,290 | ---- | M] () -- \Windows\SoftwareDistribution\Download\03fddbbffdc149984fa1d6c3974c718d\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.17514_fi-fi_73a52105efe44483.manifest
[2010.11.20 14:33:18 | 000,004,338 | ---- | M] () -- \Windows\SoftwareDistribution\Download\03fddbbffdc149984fa1d6c3974c718d\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.17514_zh-cn_344529e2e1c53ac6.manifest
[2010.11.20 06:12:44 | 000,005,745 | ---- | M] () -- \Windows\SoftwareDistribution\Download\03fddbbffdc149984fa1d6c3974c718d\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.17514_none_b94cbfa183466a89.manifest
[2011.02.05 14:09:31 | 000,005,745 | ---- | M] () -- \Windows\SoftwareDistribution\Download\d639f7376b627c8f37f9acbbf7c6234a\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7600.16757_none_b73e23c9863dba66.manifest
[2011.02.05 14:04:44 | 000,005,745 | ---- | M] () -- \Windows\SoftwareDistribution\Download\d639f7376b627c8f37f9acbbf7c6234a\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7600.20897_none_b79c80e49f7bc9f4.manifest
[2011.02.05 18:34:23 | 000,005,745 | ---- | M] () -- \Windows\SoftwareDistribution\Download\d639f7376b627c8f37f9acbbf7c6234a\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.17556_none_b923808583650cfb.manifest
[2011.02.05 14:09:57 | 000,005,745 | ---- | M] () -- \Windows\SoftwareDistribution\Download\d639f7376b627c8f37f9acbbf7c6234a\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.21655_none_b9ac1d069c83936e.manifest
[2011.02.05 14:09:50 | 000,005,799 | ---- | M] () -- \Windows\SoftwareDistribution\Download\d639f7376b627c8f37f9acbbf7c6234a\amd64_microsoft-windows-e..vironment-os-loader_31bf3856ad364e35_6.1.7600.16757_none_9c05f879842e1792.manifest
[2011.02.05 14:05:03 | 000,005,799 | ---- | M] () -- \Windows\SoftwareDistribution\Download\d639f7376b627c8f37f9acbbf7c6234a\amd64_microsoft-windows-e..vironment-os-loader_31bf3856ad364e35_6.1.7600.20897_none_9c6455949d6c2720.manifest
[2011.02.05 18:34:40 | 000,005,799 | ---- | M] () -- \Windows\SoftwareDistribution\Download\d639f7376b627c8f37f9acbbf7c6234a\amd64_microsoft-windows-e..vironment-os-loader_31bf3856ad364e35_6.1.7601.17556_none_9deb553581556a27.manifest
[2011.02.05 14:10:12 | 000,005,799 | ---- | M] () -- \Windows\SoftwareDistribution\Download\d639f7376b627c8f37f9acbbf7c6234a\amd64_microsoft-windows-e..vironment-os-loader_31bf3856ad364e35_6.1.7601.21655_none_9e73f1b69a73f09a.manifest
[2013.01.04 05:43:53 | 000,003,584 | -H-- | M] () -- \Windows\System32\api-ms-win-core-libraryloader-l1-1-0.dll
[2009.07.14 02:15:12 | 000,038,400 | ---- | M] () -- \Windows\System32\dmloader.dll
[2013.01.04 05:43:53 | 000,003,584 | -H-- | M] () -- \Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
[2009.07.14 02:15:12 | 000,038,400 | ---- | M] () -- \Windows\SysWOW64\dmloader.dll
[2009.07.14 02:40:31 | 000,047,616 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-audio-dmusic_31bf3856ad364e35_6.1.7600.16385_none_a1e90d98a953d601\dmloader.dll
[2009.07.14 02:24:53 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.16385_none_66a6e19d9580f9e3\api-ms-win-core-libraryloader-l1-1-0.dll
[2011.07.16 06:04:54 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.16850_none_66c2596d956d1920\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.08.18 16:22:27 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.17107_none_66ff46fd953e6c5c\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.10.04 18:28:57 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.17135_none_66dcd6a595588d81\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.11.30 06:41:11 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.17179_none_66b5981d957562a1\api-ms-win-core-libraryloader-l1-1-0.dll
[2013.01.04 06:26:58 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.17206_none_66fe4899953f502c\api-ms-win-core-libraryloader-l1-1-0.dll
[2011.07.16 06:06:43 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.21010_none_67770e0aae6a7c68\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.08.20 19:46:36 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.21306_none_6787e564ae5ceff6\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.10.04 18:26:17 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.21335_none_67667556ae762a72\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.11.30 06:36:06 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.21386_none_67316604ae9dcf7e\api-ms-win-core-libraryloader-l1-1-0.dll
[2013.01.04 15:12:39 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.21416_none_677d175eae65090e\api-ms-win-core-libraryloader-l1-1-0.dll
[2011.07.16 06:21:03 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.17651_none_68a9b6bd92929e63\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.08.20 19:38:32 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.17932_none_68c05c919281774d\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.10.04 18:38:48 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.17965_none_68a2edab92971725\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.11.30 06:38:44 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.18015_none_68d8d569926ebeb2\api-ms-win-core-libraryloader-l1-1-0.dll
[2011.07.16 06:12:44 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.21772_none_691eb3faabbf8f66\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.08.20 19:09:47 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.22091_none_6907efc6abd0db81\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.10.04 18:35:00 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.22125_none_6957a248ab947a6d\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.11.30 06:39:37 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.22177_none_69239340abbb38d0\api-ms-win-core-libraryloader-l1-1-0.dll
[2013.01.04 06:32:07 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.22209_none_6971452eab80a50e\api-ms-win-core-libraryloader-l1-1-0.dll
[2011.11.18 12:54:41 | 000,004,431 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_8f37605116ba80bc.manifest
[2011.11.18 12:54:41 | 000,033,360 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_8f37605116ba80bc_winload.efi.mui_35ee487d
[2011.11.18 12:54:41 | 000,034,896 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_8f37605116ba80bc_winload.exe.mui_3bc5b827
[2011.11.18 12:54:41 | 000,029,776 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_8f37605116ba80bc_winresume.efi.mui_f412814e
[2011.11.18 12:54:41 | 000,030,288 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_8f37605116ba80bc_winresume.exe.mui_ff8b5358
[2009.07.14 06:37:37 | 000,004,431 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_en-us_d28dabacfdb4dd1a.manifest
[2009.07.14 06:37:37 | 000,033,360 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_en-us_d28dabacfdb4dd1a_winload.efi.mui_35ee487d
[2009.07.14 06:37:37 | 000,033,344 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_en-us_d28dabacfdb4dd1a_winload.exe.mui_3bc5b827
[2009.07.14 06:37:37 | 000,029,776 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_en-us_d28dabacfdb4dd1a_winresume.efi.mui_f412814e
[2009.07.14 06:37:37 | 000,029,760 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_en-us_d28dabacfdb4dd1a_winresume.exe.mui_ff8b5358
[2012.12.03 12:24:40 | 000,005,745 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7600.16757_none_b73e23c9863dba66.manifest
[2012.12.03 12:24:40 | 000,640,896 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7600.16757_none_b73e23c9863dba66_winload.efi_75834aa0
[2012.12.03 12:24:40 | 000,603,976 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7600.16757_none_b73e23c9863dba66_winload.exe_75835076
[2012.12.03 12:24:40 | 000,556,928 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7600.16757_none_b73e23c9863dba66_winresume.efi_85cd069f
[2012.12.03 12:24:40 | 000,518,160 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7600.16757_none_b73e23c9863dba66_winresume.exe_85cd1215
[2009.07.14 03:57:50 | 000,002,896 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-s..ive-blackbox-loader_31bf3856ad364e35_6.1.7600.16385_none_c72819e06acceb59.manifest
[2009.07.14 03:57:50 | 000,019,008 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-s..ive-blackbox-loader_31bf3856ad364e35_6.1.7600.16385_none_c72819e06acceb59_spldr.sys_98bd87a0
[2009.07.13 19:18:36 | 000,004,431 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_8f37605116ba80bc.manifest
[2009.07.14 03:44:20 | 000,004,431 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_en-us_d28dabacfdb4dd1a.manifest
[2009.07.14 03:13:42 | 000,005,745 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7600.16385_none_b71babd98657e6ef.manifest
[2011.02.05 14:09:31 | 000,005,745 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7600.16757_none_b73e23c9863dba66.manifest
[2011.02.05 14:04:44 | 000,005,745 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7600.20897_none_b79c80e49f7bc9f4.manifest
[2010.11.20 06:12:44 | 000,005,745 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.17514_none_b94cbfa183466a89.manifest
[2011.02.05 18:34:23 | 000,005,745 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.17556_none_b923808583650cfb.manifest
[2011.02.05 14:09:57 | 000,005,745 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.21655_none_b9ac1d069c83936e.manifest
[2009.07.14 03:18:27 | 000,002,896 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-s..ive-blackbox-loader_31bf3856ad364e35_6.1.7600.16385_none_c72819e06acceb59.manifest
[2009.07.14 02:15:12 | 000,038,400 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-audio-dmusic_31bf3856ad364e35_6.1.7600.16385_none_45ca7214f0f664cb\dmloader.dll
[2009.07.14 02:03:49 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.16385_none_0a884619dd2388ad\api-ms-win-core-libraryloader-l1-1-0.dll
[2011.07.16 05:19:58 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.16850_none_0aa3bde9dd0fa7ea\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.08.18 12:09:17 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.17107_none_0ae0ab79dce0fb26\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.10.04 17:45:38 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.17135_none_0abe3b21dcfb1c4b\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.11.30 05:56:23 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.17179_none_0a96fc99dd17f16b\api-ms-win-core-libraryloader-l1-1-0.dll
[2013.01.04 05:43:53 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.17206_none_0adfad15dce1def6\api-ms-win-core-libraryloader-l1-1-0.dll
[2011.07.16 05:12:45 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.21010_none_0b587286f60d0b32\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.08.20 18:42:56 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.21306_none_0b6949e0f5ff7ec0\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.10.04 17:48:05 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.21335_none_0b47d9d2f618b93c\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.11.30 05:44:10 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.21386_none_0b12ca80f6405e48\api-ms-win-core-libraryloader-l1-1-0.dll
[2013.01.04 05:39:49 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.21416_none_0b5e7bdaf60797d8\api-ms-win-core-libraryloader-l1-1-0.dll
[2011.07.16 05:15:45 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.17651_none_0c8b1b39da352d2d\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.08.20 18:32:13 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.17932_none_0ca1c10dda240617\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.10.04 17:40:37 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.17965_none_0c845227da39a5ef\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.11.30 05:45:15 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.18015_none_0cba39e5da114d7c\api-ms-win-core-libraryloader-l1-1-0.dll
[2011.07.16 05:36:48 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.21772_none_0d001876f3621e30\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.08.20 18:23:16 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.22091_none_0ce95442f3736a4b\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.10.04 17:29:45 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.22125_none_0d3906c4f3370937\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.11.30 05:46:37 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.22177_none_0d04f7bcf35dc79a\api-ms-win-core-libraryloader-l1-1-0.dll
[2013.01.04 05:43:16 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.22209_none_0d52a9aaf32333d8\api-ms-win-core-libraryloader-l1-1-0.dll

< End of report >

#23 Příspěvek od **Rudy** » 26 pro 2014 17:13

Tento oper. systém opravdu není legální. S poukazem na pravidla: http://forum.viry.cz/viewtopic.php?f=12&t=115512 vám nemohu pomoci. Lituji.

jarda.otta · #24 Příspěvek od **jarda.otta** » 27 pro 2014 10:52

Ano a v pořádku. To je samozřejmost.Pokusím paní navrhnout koupi leg softu. Děkuji vám

#25 Příspěvek od **Rudy** » 27 pro 2014 11:19

Rádo se stalo!

VIRY.CZ

prosím o kontrolu logu

Re: prosím o kontrolu logu

Re: prosím o kontrolu logu

Re: prosím o kontrolu logu

Re: prosím o kontrolu logu

Re: prosím o kontrolu logu

Re: prosím o kontrolu logu

Re: prosím o kontrolu logu

Re: prosím o kontrolu logu

Re: prosím o kontrolu logu

Re: prosím o kontrolu logu