Dobrý den,
omylem jsem klikl na instalaci neznámého souboru, chtěl jsem ho smazat, ale myš občas blbne a udělá double click. V ten moment PC nechtěl spolu pracovat, zkoušel jsem zapnout správce úloh a ukončit proces, ale bohužel to nešlo. Do PC se mi nainstalovalo pár programů jako je seznam lištička apod. Jenže některé z nich nejdou odinstalovat (používám Ccleaner) a kdo ví, jestli se mi tam nehodilo ještě něco o čem ani nevím. Prosím o kontrolu logu a radu jak je smazat.
Mockrát děkuji
Logfile of random's system information tool 1.10 (written by random/random)
Run by Uzivatel at 2015-03-16 00:00:51
Microsoft Windows 8 Enterprise
System drive C: has 608 GB (85%) free of 715 GB
Total RAM: 3974 MB (75% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 0:00:56, on 16. 3. 2015
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v10.0 (10.00.9200.17267)
Boot mode: Normal
Running processes:
C:\Users\Uzivatel\AppData\Local\Temp\{3PNINEGS-GBYR-HYWY-HTYC-EEQTZJDERTGNACTPQT}\activex.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
C:\Users\Uzivatel\AppData\Local\Temp\{3PNINEGS-GBYR-HYWY-HTYC-EEQTZJDERTGNACTPQT}\activex.exe
C:\Program Files\trend micro\Uzivatel.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: Lync Click to Call BHO - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~3\Office15\URLREDIR.DLL
O2 - BHO: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\PROGRA~2\MICROS~3\Office15\GROOVEEX.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [VirtualCloneDrive] "C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe" /s
O4 - HKCU\..\Run: [Steam] "C:\Program Files (x86)\Steam\steam.exe" -silent
O4 - HKCU\..\Run: [Adobe Flash Player Plugin] "C:\Users\Uzivatel\AppData\Local\Temp\{3PNINEGS-GBYR-HYWY-HTYC-EEQTZJDERTGNACTPQT}\activex.exe"
O4 - HKCU\..\Run: [Akamai NetSession Interface] "C:\Users\Uzivatel\AppData\Local\Akamai\netsession_win.exe"
O4 - HKCU\..\RunOnce: [SeznamInstall-uninstall:104bd619492365835b52855990cfa4b8] "C:\Users\Uzivatel\AppData\Local\Temp\\{E638ABC1-0067-474b-A379-87CFE81E7848}.exe" -c "C:\Users\Uzivatel\AppData\Roaming\Seznam.cz"
O8 - Extra context menu item: E&xportovat do Microsoft Excelu - res://C:\PROGRA~2\MICROS~3\Office15\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do OneNotu - res://C:\PROGRA~2\MICROS~3\Office15\ONBttnIE.dll/105
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - (no file)
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - (no file)
O9 - Extra button: Odeslat do OneNotu - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do OneNotu - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIE.dll
O9 - Extra button: Volání kliknutím v Lyncu - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
O9 - Extra 'Tools' menuitem: Volání kliknutím v Lyncu - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files (x86)\Microsoft Office\Office15\MSOSB.DLL
O18 - Filter hijack: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE15\MSOXMLMF.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: Classic Shell Service (ClassicShellService) - IvoSoft - C:\Program Files\Classic Shell\ClassicShellService.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\Windows\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: globalUpdate Update Service (globalUpdate) (globalUpdate) - globalUpdate - C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe
O23 - Service: globalUpdate Update Service (globalUpdatem) (globalUpdatem) - globalUpdate - C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @oem12.inf,%hpservice_desc%;HP Service (hpsrv) - Unknown owner - C:\Windows\system32\Hpservice.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\stlang64.dll,-10122 (STacSV) - IDT, Inc. - C:\Program Files\IDT\WDM\STacSV64.exe
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 9170 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
"C:\Program Files\Classic Shell\ClassicShellService.exe"
C:\Windows\system32\Hpservice.exe
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
dashost.exe {4bbcfca5-aee4-4293-9f2224e0cfa640e9}
C:\Windows\system32\svchost.exe -k imgsvc
C:\Windows\System32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-2ce54f58-52e2-4b0b-ae21-fb00fb95ee82 -SystemEventPortName:HostProcess-eb221aa7-0e1f-4e94-bbf7-43befe3489b2 -IoCancelEventPortName:HostProcess-c0c4fcd7-d7bf-43b3-ab44-d27cdfdd51eb -NonStateChangingEventPortName:HostProcess-7e939aaa-b7d0-43fd-a571-991a2a11b287 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:db59941a-b8ae-4519-93ea-9069f887d78e -DeviceGroupId:WudfDefaultDevicePool
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\System32\WinLogon.exe -SpecialSession
"LogonUI.exe" /flags:0x0
-hiberboot
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\System32\WinLogon.exe -SpecialSession
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
winlogon.exe
"LogonUI.exe" /flags:0x0
-hiberboot
"dwm.exe"
atieclxx
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
taskhostex.exe
"C:\Program Files\Classic Shell\ClassicStartMenu.exe" -startup
C:\Windows\Explorer.EXE
"C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE"
"C:\Windows\System32\igfxtray.exe"
"C:\Windows\System32\igfxpers.exe"
"C:\Users\Uzivatel\AppData\Local\Temp\{3PNINEGS-GBYR-HYWY-HTYC-EEQTZJDERTGNACTPQT}\activex.exe"
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
"C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe" -auto -critical
"C:\Program Files\CCleaner\CCleaner64.exe" /uac
taskeng.exe {B9FB23D6-EB1B-4A4F-99AE-9919483B0909}
"C:\Program Files (x86)\Internet Speed Checker\4b477374-5432-4754-a01d-62e796a778d3-6.exe" /rawdata=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
"C:\Program Files (x86)\Internet Speed Checker\4b477374-5432-4754-a01d-62e796a778d3-1-6.exe" /rawdata=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
-a scrypt -o stratum+tcp://coinotron.com:3334 -O ax93.4:x
\??\C:\Windows\system32\conhost.exe 0x4
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe16_ Global\UsGthrCtrlFltPipeMssGthrPipe16 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Windows\system32\SearchFilterHost.exe" 0 576 580 588 65536 584
"C:\Users\Uzivatel\Downloads\RSITx64.exe"
C:\Windows\system32\wbem\wmiprvse.exe
======Scheduled tasks folder======
C:\Windows\tasks\2300726e-d013-4e97-93b8-82cdb2191e24-1-6.job - C:\Program Files (x86)\CinemaP-1.9cV05.03\2300726e-d013-4e97-93b8-82cdb2191e24-1-6.exe /rawdata=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
C:\Windows\tasks\2300726e-d013-4e97-93b8-82cdb2191e24-1-7.job - C:\Program Files (x86)\CinemaP-1.9cV05.03\2300726e-d013-4e97-93b8-82cdb2191e24-1-7.exe /rawdata=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
C:\Windows\tasks\2300726e-d013-4e97-93b8-82cdb2191e24-10_user.job - C:\Program Files (x86)\CinemaP-1.9cV05.03\2300726e-d013-4e97-93b8-82cdb2191e24-10.exe /rawdata=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
C:\Windows\tasks\2300726e-d013-4e97-93b8-82cdb2191e24-3.job - C:\Program Files (x86)\CinemaP-1.9cV05.03\2300726e-d013-4e97-93b8-82cdb2191e24-3.exe /rawdata=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
C:\Windows\tasks\2300726e-d013-4e97-93b8-82cdb2191e24-4.job - C:\Program Files (x86)\CinemaP-1.9cV05.03\2300726e-d013-4e97-93b8-82cdb2191e24-4.exe /rawdata=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
C:\Windows\tasks\2300726e-d013-4e97-93b8-82cdb2191e24-5.job - C:\Program Files (x86)\CinemaP-1.9cV05.03\2300726e-d013-4e97-93b8-82cdb2191e24-5.exe /rawdata=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
C:\Windows\tasks\2300726e-d013-4e97-93b8-82cdb2191e24-5_user.job - C:\Program Files (x86)\CinemaP-1.9cV05.03\2300726e-d013-4e97-93b8-82cdb2191e24-5.exe /rawdata=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
C:\Windows\tasks\2300726e-d013-4e97-93b8-82cdb2191e24-6.job - C:\Program Files (x86)\CinemaP-1.9cV05.03\2300726e-d013-4e97-93b8-82cdb2191e24-6.exe /rawdata=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
C:\Windows\tasks\2300726e-d013-4e97-93b8-82cdb2191e24-7.job - C:\Program Files (x86)\CinemaP-1.9cV05.03\2300726e-d013-4e97-93b8-82cdb2191e24-7.exe /rawdata=cnEkJRtNVe51DaiEEwR0j55urbVNwswJDnDdzn2HYeWcfEE/+T+N8VdngIkF7RsPbI5n4+Xxt4Kww9DswHAMlG6yR23Pu5xT4QJcovj4EbXOctVFoYR92Mboq4+TV1pjzEqb+fFb6dlcmZ+ZqqjAoUf2QBajb6XzXLAVSwueiKh7f53TRVs46cHJweeRRdDFHjGtiYMFXICK+mXeH0k4qWUHvbGtyA8t9YdcYQCV1mTSj9n72mYevPClQw8vQk+9kaMC5JBklJE+oPa/eaL9g4wKxMDDLEU01w3+EExrTa8QfC6Ur5ofgBNv0/tIojYws+IqdxLk0NEx6HGnGUFvKJMsxq6Joff3Pzvb3mC9c+IkKCb9QRUXPm6s1yP9yzLNr/vAwaT6PyNaF7vs4SPP0r3Azqq6VY/Ei/f1eeoGkFDfk3o/0Zo++KsK81c9TZ6ej95zrRqXz65jyrh+8dH8vjqKX364PDeusxIw+jtPRB3e4rYy2EFe0uJX9PBqnd1wO1YraQ2jSDZVLtrOU9NQXavzSQagebLRkmZJFNorlGig5fLYIKXu/MPmCaCs9Pr7a2UUhtyv0RvaalQtXCmmhwEiEmoYJWosl846YvaKALF1w+RPOjr63I/Em/Z6nImQ20TcyWOrIhZPhih3MyzG3WnCBJPEPvS2CT/tZPkoMS3HwR2Oo93FUHT+We4tQPoOWNwPPTk6ovT0RNqKTVHn5LOqJ71JJ0/bpbmIm6vy7y8MvJeCo52ae71JZPLB0xIvlLwzGjmK4u4GLi3AzM5vSjbK0ZEJcqluHoGd208LNtbnIcOQs7ePluK7+Y+s48WHPdFNM6Qp78IHLr8kwD6nBhj21KR1SIVfZhlT4A6dxWeLdbjUxpL35+lZLwU9RhMwHC6ZW9wfFel0gN02WcAkyt8stCK2vExvsLijY4hhBO+VNlidqPAfhIi7ubp6hrvi2fizKxb82L1THNGNzeRJVzvYqDXIYkd3WGk/KeJQN8Uv99Hn774OS4ehcmEdhphqpZpc5jTwzLekw32pogfrx3QitCgDYdM5Tuv9jsXt15SbzmOTevdr4wNSrDAO54zXJz4U0QcaIpJzMTN+RynSw7HnY+eok38EdlqOjix9A3Zv8Mo3lhJZFF+4lNhVNkJrJETQACkvfiTwF/bkK1qJ1uLabIfjbhiOTDcsf5XWsH4Hxr5D7RxZtH59mVbrT+M7qytADzQjtIeNNzZGyQ7wcVS6ABSIA2myvPuc1mYhn904YRxhbEUh9pqsr3BzzyAtaPx3eC1x0guqyYSG+KGqPKL7eXd67cSeeP88qFvx6Jc3SEOmIwCR8WK0tOi3iG2JnDn7Q9AqK0awTG4Ztopq2xvG/yY9aKhlHLzOzwXXf1OmqwgIFprluX5lGji5UxyV/eEPuN0RUn3HZGrQVeFMQB2c4TIlwLOwL7ppKBmiQGOUgmStMGpHKN0DTQN6dO3FG+OTrnI1dC3A13bTVNYwNvIEcnnD31+UzkZablJmyjQJyf9Xlv91bfwLcA2L3QmGNjqW/DE5YK1s8Fbrmnq2Gofyo1ZAQonDKdyTOUUnh1BRG/Rx5yhWX0q/AxHYoiz7wjeftQ71KhiwqSmGc1nZ8xYdgkHhMP2wWs84AbS3zJtBsWI/TYVuG/6xxOJk0UdWiCfojVuAUtNa29i2fArxCpqGuuFruAsb8gwokQrAH2oiDlME5t52x8NwjdFWbsww2R9j5PvG7qKDE/0p1tcRpo1YWEUaT3jPWxVckgc7ZjUTMVEA5Cgxcasb4/Qmeg2y41jCJ5ZbfzXacKISLUNFm4bxDOP1+f4TWhiGJP6Y3r1tuUkoeKHL+tuQMBVizpYN7su1NgTMHBWHcPJNKuowrwCRrtaKZ6o3f0cj27tHeAGv4nPcTxAuRHv9Z8LGRhCUJJhE0i5NFNFOGZdUPB4mIxqOoqFoLWpoP/SlKKuQpR7HmRARhV2oz4f6nURhFTmgyUUHIFLfl9RQ8gcpnfG+RdHlohTDDOtY7c2tHvBb4nG84Kik1gO9uXqtdgEF5YVZk2bdTPzEtPb4XbwxrXVyFGt2Tb4W6+GywV7HfZKe/YfIC9gQ5tjMfYm7HfhzJf+oKJw+sn+1zBBzOh3FPchZ3YI/+nndpayb1WG5v4PXDK3XWewMTlmA5iDfCK7WH+vgD1yv+wwCRRtMcYuf4ArtQ46/fPqsmUj+3CXCoZE3wmUHheSTOWV2axvjbNdOwYqZ8LOc30epXxyhVJlfsr6FhLSHke7wyB01omL/GBzZQtrMOc31+Kgq/MkOds6y3nGByZVg8cMGsyyhl+jwegcTnTNBKNkq7iRCWXN60+HK8NjGJzU3IrnAMAgcwu1pN4MADvLDVQzckYp5jl0TNEuo3HTgPJ/04cMMF9dFBKL40dpqCrFlS5DoKDXOu3oIH2cXPJywlVLp7BfKNwG7fPrOIyic48/smk+NHWUhEDseGRliLVJ9bePT03ejyZ4gd0ToZrhNLw0xiWNCF0IshvPLpVHaPpxSF1BgGMMsrUMTYK5B4NN7w62UkkTWvelPxyX1
C:\Windows\tasks\4b477374-5432-4754-a01d-62e796a778d3-1-6.job - C:\Program Files (x86)\Internet Speed Checker\4b477374-5432-4754-a01d-62e796a778d3-1-6.exe /rawdata=UzW3jx7hLOXK2JfQPU/u6q5rWsO2OS+WZ6lLWYVxeSOH0ECfPefCRKzrhKN+Am4MvSZA/Fby3hTzmse1HkOJ2oDutfAfKfvruo3MyN0kK1gfqskVyeg7F4UkZNor4a4InzP+4nBCFU4N5VMl/DnF+Q/WXeMzg7/k3kGLnp3AGROCLHC5brqv+Nb86E4+iYxMrlbSnifQ0z86j8Xmotwy6xWR6bCs16bYS8Fh2LWmuRSG3/ZElhPkm3xdM0SecxPZeQdW8jHFxGf4rlIkjALLBcrdCTCDMNN23xwqcyJ1cBWuMHPPNBliDKZJz5jGROpaOoG2TzJVrQSC7MajTb0FzihA9kXAZAzD2Uf0Rgcyz9I1s99HV19OQE/RFva7X+mFqDETVv3pS3pzvzEHTWjreFOgBGOB+tZi7vprbs38bhSeIjs0iZDybQXA3HFlKr5Z0VDvf1BAPy2ldy0wcxzSmsiAYFcongmmkg4i/evgbaaXRQ3lHDzPmUtThc1tVqCSFGPVTg1BP8mc6TTnw3zbx2hbznkofUO/1meoso36/qCQjbCpsGFED/GgwroOD9THAnrue7lZceKbx30CXfL11wSDnN9xz1UY2uu0JHi9Ve8oWJD5ERd5xeEhiJIexoghMnep4PXFHUYQ+mLdGoWBfT1BZq3lY5qkywOpEGOgeGIKwUSElUu5p3e/6aPDmR6Pw+YpbrIyzbZwuG1ahM/OPnoP1rixfqqwfbcmXcLZ3iT6R7spbkaMyLgoUYZfEuXvM5EEBL8DIztrQ+6qvaUxzYR0x5V+pGFYN+p2WysXnpYNMtbLG+34tVegBIPJ2fi9+WqqqIPdmg75oOJLJyTCgY+arZyETEpummYwLNKx27eURmf7ZJJxsY2OR9y0khxheUnC5tox4U5DxXBK+oZP080GVYz6eTEAyylo7EzGS7fHYRUy1G406rFWCbyjDvhIE1rx53Ggo7SC0H1AP8I5TV5xRP8zyiNsh6uvrlT3mOwkFlyzYilCp+e/MKQ2R0BuIQGIkeZD8/knEf17KyLGMdjRvd0+zVoFhEKgFssTg6rEPBTZ7eQo3FOVy/mx8gm8IRi3IsxihWcrVSFsdM309wp69HbZ1lRoeO59A9CDyAMadPjjnq0FHAtK34Ul41Mb7hw3KurDtZmA/YFNrHCqyFDHubwB90InKpyFB12lyItuym3a0yk7PeFBX7lNoakJqIsQOzCOs6WqxNyTHpTxn2SeTuEt2DkM0UnHEAMh4uMGwzdUbDAbPhM/qsjEp32fskl6TbF/InQgIXsdQrq/HrfsTQPr43rnF4P1q5nnW6lIqxzpD9EkBOatLEYEi0Qw3uIEdBmLCr8AO03z5uh6xQ==
C:\Windows\tasks\4b477374-5432-4754-a01d-62e796a778d3-1-7.job - C:\Program Files (x86)\Internet Speed Checker\4b477374-5432-4754-a01d-62e796a778d3-1-7.exe /rawdata=AZ9PiMswEuHLz5uc7CVvbrQDtFbqMGSQKDXnWEIT2TtY4lNx/LJRL8HrBRvMx3Uh+jleWEpMwyWRoQwNqmpnCONWyM9U3wDX/bJ1OY+ayt5PiHJ3bD6nyLxQ7NhLmsbIelfvcs6M33jDkGgTuSUvsOhj21cAptD5T4TFHe7LM3Ns0bPhKrIC45GzBiH4OMky2LLymV0uks7nC0gTlyisJ0cSbYVASypfqbb4vH4LclMKpFerRClUB6PHOR10zXjMRvIOou7s6Eh4Tz5IqHb/qiQgLK5/0imsh9UoFykg0BeMgZrSnVb2F6E281rrmbnQB2QBYdEi6UrDmynKuX3Yyi9WTuIxJiN+wTA+Duj/qqrCabdOK0tz3/2yiq7DPfrVOrWV++MppPXeWDfeRyGRpsEWirqn1MpwlvsgML4ArNLCHZZt0mH3wtTlmVOKFRXw89bju+gGqk4d/yvnNcOaFAf+zMYx5FdACk9PFzapUs+lmwc10jXE3aAQfzqPWvlDenrfCw7THihbeXyhgN8koLJdFIATJkHMc9wGBsI2beM7A04xUOAUoKbstM1SK1k/mqoU7UkoUIfzLXF3zDx1Eo3MSVUY/fEPNrEA662qo5vJakZ+T5vWRUJcTd6ziByrV4hSi3HqbZPfkInggnO32A1xxOpnTpI8SCOhtPV4NiNvpfFXd6RCojRq6CHxCNp6iAKXeTMjhfn9scw5M7Bh/Dq0k86D4S1QKv4dBPMAnxed6H9dCCr8uclxhpE5t5m7U+7DD+VHhSsVwcw47tzzpEe6iCSRBKnx2zimbj7iL2clnJhwP+podT2vfn7j/3ER5M6gdKtRRLOS0g6nEGvmr4RBnFYKc0C/r9NpNgHjylL/LwF/sFU6lt8aTa8H1DT3dP9eZAORq9z47XE9QUwAx1Qe5B9wWAphR4ziERT9Lbj09vEqJdzI8nhJJdIHN0v8+nwrHIbx3FVRz8Y3xFPGdAp7saATY/BaPBbcVCcbpW3ldnO3B4nx13XJLjHAyDU8A2JKzxZitmgaSvOanwd4LelXF6ENvVjH7Lwx479B3xjtsc9y2TeVdjnB1PcN3TxCX3tq2UfQSUDgddHPxQlDeT57TVzbaFxki5o/6HFzBaO3cM2O2zoXkDGDT3Gi1vTINWICx9zPUuhuWyEUH8vmVkpn5UMG9rW0EdoOfXxzm9wxWT3U6OHW1ZyZ2MOsbTxms07/2vsQwosWrjQ6QwsJY1gX0CEBhf1C6n867cdomcp9yomuWMfSR+HIsqHj7Tvm6YcKZf+VAiLMXHMqXhZII1eL8OmQllzLKZGlqVa8+02iYGEItQQwJwP4XJaWm0ss/diPmeTxIlVsfuPwQUjblSkn0+PIVHIxMBWlSF0FKBUu72IjXJaOFBzhHsQDlbBGCjdzXK7yAWAoXd8rlw9yHih3+Lr2CbiXYoFQjpRgaf++gOCxzZWLM5o/9LGDzL4UefWYqVbEzAis2A+fBPcR1mQA6oBkbC6MIU2TeFz5q4QShz7zJdp093ewV4cOYZSr
C:\Windows\tasks\4b477374-5432-4754-a01d-62e796a778d3-10_user.job - C:\Program Files (x86)\Internet Speed Checker\4b477374-5432-4754-a01d-62e796a778d3-10.exe /rawdata=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
C:\Windows\tasks\4b477374-5432-4754-a01d-62e796a778d3-4.job - C:\Program Files (x86)\Internet Speed Checker\4b477374-5432-4754-a01d-62e796a778d3-4.exe /rawdata=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
C:\Windows\tasks\4b477374-5432-4754-a01d-62e796a778d3-5.job - C:\Program Files (x86)\Internet Speed Checker\4b477374-5432-4754-a01d-62e796a778d3-5.exe /rawdata=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
C:\Windows\tasks\4b477374-5432-4754-a01d-62e796a778d3-5_user.job - C:\Program Files (x86)\Internet Speed Checker\4b477374-5432-4754-a01d-62e796a778d3-5.exe /rawdata=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
C:\Windows\tasks\4b477374-5432-4754-a01d-62e796a778d3-6.job - C:\Program Files (x86)\Internet Speed Checker\4b477374-5432-4754-a01d-62e796a778d3-6.exe /rawdata=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
C:\Windows\tasks\4b477374-5432-4754-a01d-62e796a778d3-7.job - C:\Program Files (x86)\Internet Speed Checker\4b477374-5432-4754-a01d-62e796a778d3-7.exe /rawdata=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
C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\Windows\tasks\FHIGIC.job - C:\Users\Uzivatel\AppData\Roaming\FHIGIC.exe /infocmdline=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
C:\Windows\tasks\globalUpdateUpdateTaskMachineCore.job - C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe /c
C:\Windows\tasks\globalUpdateUpdateTaskMachineUA.job - C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\Windows\tasks\OEM.job - C:\Users\Uzivatel\AppData\Roaming\OEM.exe /infocmdline=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
=========Mozilla firefox=========
ProfilePath - C:\Users\Uzivatel\AppData\Roaming\Mozilla\Firefox\Profiles\o1h7ci0w.default
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 16.0.0.305 Plugin
"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_16_0_0_305.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/ShockwavePlayer]
"Description"=Adobe Shockwave Player
"Path"=C:\Windows\SysWOW64\Adobe\Director\np32dsw_1204144.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=10.40.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Windows\SysWOW64\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=10.40.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/Lync,version=15.0]
"Description"=Microsoft Lync Plug-in for Firefox
"Path"=C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files (x86)\Microsoft Silverlight\5.1.20513.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\PROGRA~2\MICROS~3\Office15\NPSPWRAP.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@staging.google.com/globalUpdate Update;version=10]
"Description"=globalUpdate Update
"Path"=C:\Program Files (x86)\globalUpdate\Update\1.3.25.0\npGoogleUpdate4.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@staging.google.com/globalUpdate Update;version=4]
"Description"=globalUpdate Update
"Path"=C:\Program Files (x86)\globalUpdate\Update\1.3.25.0\npGoogleUpdate4.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.0.8]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 16.0.0.305 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_16_0_0_305.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=10.40.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Windows\system32\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=10.40.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\5.1.20513.0\npctrl.dll
C:\Program Files (x86)\Mozilla Firefox\plugins\
npMeetingJoinPluginOC.dll
nppdf32.dll
C:\Users\Uzivatel\AppData\Roaming\Mozilla\Firefox\Profiles\o1h7ci0w.default\extensions\
NLQUCQ35648598@KRFIE97629948.com
sepherdwilbur@aol.com
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Lync Browser Helper - C:\Program Files\Microsoft Office\Office15\OCHelper.dll [2012-10-01 205416]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2013-09-19 553384]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~3\Office15\URLREDIR.DLL [2013-03-10 877760]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft SkyDrive Pro Browser Helper - C:\PROGRA~1\MICROS~3\Office15\GROOVEEX.DLL [2013-07-13 2328776]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2013-09-19 210856]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Lync Browser Helper - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll [2013-07-10 139424]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2013-09-19 462248]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MICROS~3\Office15\URLREDIR.DLL [2013-03-09 704704]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft SkyDrive Pro Browser Helper - C:\PROGRA~2\MICROS~3\Office15\GROOVEEX.DLL [2013-07-13 1724616]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2013-09-19 171944]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SysTrayApp"=C:\Program Files\IDT\WDM\sttray64.exe [2013-06-13 1703424]
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2012-12-14 172144]
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2012-12-14 399984]
"Persistence"=C:\Windows\system32\igfxpers.exe [2012-12-14 441968]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Steam"=C:\Program Files (x86)\Steam\steam.exe [2015-02-19 2874048]
"Adobe Flash Player Plugin"=C:\Users\Uzivatel\AppData\Local\Temp\{3PNINEGS-GBYR-HYWY-HTYC-EEQTZJDERTGNACTPQT}\activex.exe [2014-02-27 1022154]
"Akamai NetSession Interface"=C:\Users\Uzivatel\AppData\Local\Akamai\netsession_win.exe [2014-10-29 4673432]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"SeznamInstall-uninstall:104bd619492365835b52855990cfa4b8"=C:\Users\Uzivatel\AppData\Local\Temp\\{E638ABC1-0067-474b-A379-87CFE81E7848}.exe [2015-03-15 534528]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2013-07-02 254336]
"VirtualCloneDrive"=C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe [2013-03-10 88984]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2012-12-14 442880]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"PromptOnSecureDesktop"=0
"ConsentPromptBehaviorAdmin"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"VIDC.YUY2"=msyuv.dll
"vidc.i420"=iyuv_32.dll
"msacm.msgsm610"=msgsm32.acm
"msacm.msg711"=msg711.acm
"VIDC.YVYU"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"wavemapper"=msacm32.drv
"midimapper"=midimap.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"vidc.msvc"=msvidc32.dll
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2015-03-16 00:00:51 ----D---- C:\rsit
2015-03-16 00:00:51 ----D---- C:\Program Files\trend micro
2015-03-15 23:53:09 ----D---- C:\Program Files (x86)\fba9dbcd-01f3-4509-b967-d54d4ee8a483
2015-03-15 23:53:07 ----D---- C:\Program Files (x86)\Internet Speed Checker
2015-03-15 23:51:35 ----A---- C:\Users\Uzivatel\AppData\Roaming\OEM.exe
2015-03-15 23:51:02 ----D---- C:\Program Files (x86)\43d45ddb-733d-4a4f-9d91-4e3253112627
2015-03-15 23:50:59 ----A---- C:\Users\Uzivatel\AppData\Roaming\FHIGIC.exe
2015-03-15 23:50:38 ----D---- C:\Program Files (x86)\globalUpdate
2015-03-15 23:50:32 ----D---- C:\Program Files (x86)\CinemaP-1.9cV05.03
2015-03-15 23:48:30 ----D---- C:\Program Files (x86)\Seznam.cz
2015-03-15 23:48:06 ----D---- C:\Users\Uzivatel\AppData\Roaming\Seznam.cz
2015-03-11 23:48:46 ----A---- C:\Windows\SYSWOW64\inetcomm.dll
2015-03-11 23:48:46 ----A---- C:\Windows\system32\mshtml.dll
2015-03-11 23:48:46 ----A---- C:\Windows\system32\inetcomm.dll
2015-03-11 23:48:44 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2015-03-11 23:48:41 ----A---- C:\Windows\system32\ieframe.dll
2015-03-11 23:48:39 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2015-03-11 23:48:38 ----A---- C:\Windows\SYSWOW64\INETRES.dll
2015-03-11 23:48:38 ----A---- C:\Windows\system32\INETRES.dll
2015-03-11 23:48:37 ----A---- C:\Windows\system32\wininet.dll
2015-03-11 23:48:37 ----A---- C:\Windows\system32\iertutil.dll
2015-03-11 23:48:34 ----A---- C:\Windows\SYSWOW64\wininet.dll
2015-03-11 23:48:34 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2015-03-11 23:48:34 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2015-03-11 23:48:34 ----A---- C:\Windows\system32\urlmon.dll
2015-03-11 23:48:33 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2015-03-11 23:48:33 ----A---- C:\Windows\system32\vbscript.dll
2015-03-11 23:48:33 ----A---- C:\Windows\system32\msfeeds.dll
2015-03-11 23:48:32 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2015-03-11 23:48:32 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2015-03-11 23:48:32 ----A---- C:\Windows\SYSWOW64\iesysprep.dll
2015-03-11 23:48:32 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2015-03-11 23:48:32 ----A---- C:\Windows\system32\uxtheme.dll
2015-03-11 23:48:32 ----A---- C:\Windows\system32\mshtmled.dll
2015-03-11 23:48:32 ----A---- C:\Windows\system32\iesysprep.dll
2015-03-11 23:48:32 ----A---- C:\Windows\system32\dxtrans.dll
2015-03-11 23:48:31 ----A---- C:\Windows\SYSWOW64\uxtheme.dll
2015-03-11 23:48:31 ----A---- C:\Windows\SYSWOW64\UXInit.dll
2015-03-11 23:48:31 ----A---- C:\Windows\SYSWOW64\msrating.dll
2015-03-11 23:48:31 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2015-03-11 23:48:31 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2015-03-11 23:48:31 ----A---- C:\Windows\SYSWOW64\jscript.dll
2015-03-11 23:48:31 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2015-03-11 23:48:31 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2015-03-11 23:48:31 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2015-03-11 23:48:31 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2015-03-11 23:48:31 ----A---- C:\Windows\system32\UXInit.dll
2015-03-11 23:48:31 ----A---- C:\Windows\system32\msrating.dll
2015-03-11 23:48:31 ----A---- C:\Windows\system32\jsproxy.dll
2015-03-11 23:48:31 ----A---- C:\Windows\system32\jscript9.dll
2015-03-11 23:48:31 ----A---- C:\Windows\system32\jscript.dll
2015-03-11 23:48:31 ----A---- C:\Windows\system32\iesetup.dll
2015-03-11 23:48:31 ----A---- C:\Windows\system32\iernonce.dll
2015-03-11 23:48:31 ----A---- C:\Windows\system32\iedkcs32.dll
2015-03-11 23:48:31 ----A---- C:\Windows\system32\ie4uinit.exe
2015-03-11 23:48:31 ----A---- C:\Windows\system32\dxtmsft.dll
2015-03-11 23:48:28 ----A---- C:\Windows\SYSWOW64\ubpm.dll
2015-03-11 23:48:28 ----A---- C:\Windows\system32\ubpm.dll
2015-03-11 23:48:27 ----A---- C:\Windows\SYSWOW64\atmlib.dll
2015-03-11 23:48:27 ----A---- C:\Windows\SYSWOW64\atmfd.dll
2015-03-11 23:48:27 ----A---- C:\Windows\system32\atmlib.dll
2015-03-11 23:48:27 ----A---- C:\Windows\system32\atmfd.dll
2015-03-11 23:48:26 ----A---- C:\Windows\system32\win32k.sys
2015-03-11 23:48:24 ----A---- C:\Windows\SYSWOW64\schannel.dll
2015-03-11 23:48:24 ----A---- C:\Windows\SYSWOW64\SHCore.dll
2015-03-11 23:48:24 ----A---- C:\Windows\system32\schannel.dll
2015-03-11 23:48:24 ----A---- C:\Windows\system32\SHCore.dll
2015-03-11 23:48:24 ----A---- C:\Windows\system32\drivers\cng.sys
2015-03-11 23:48:02 ----A---- C:\Windows\system32\drivers\WdFilter.sys
2015-03-11 23:48:02 ----A---- C:\Windows\system32\drivers\WdBoot.sys
2015-03-11 23:47:53 ----A---- C:\Windows\system32\WindowsCodecs.dll
2015-03-11 23:47:52 ----A---- C:\Windows\SYSWOW64\WindowsCodecs.dll
2015-03-11 23:47:51 ----A---- C:\Windows\SYSWOW64\WMPhoto.dll
2015-03-11 23:47:51 ----A---- C:\Windows\SYSWOW64\msctf.dll
2015-03-11 23:47:51 ----A---- C:\Windows\system32\WMPhoto.dll
2015-03-11 23:47:51 ----A---- C:\Windows\system32\msctf.dll
2015-03-11 23:47:47 ----A---- C:\Windows\system32\shell32.dll
2015-03-11 23:47:45 ----A---- C:\Windows\SYSWOW64\shell32.dll
2015-03-11 23:47:41 ----A---- C:\Windows\system32\rdpudd.dll
2015-03-11 23:47:40 ----A---- C:\Windows\system32\ntoskrnl.exe
2015-03-10 14:02:54 ----A---- C:\Windows\War3Unin.exe
2015-03-10 14:02:54 ----A---- C:\Windows\War3Unin.dat
2015-03-09 23:27:16 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2015-03-03 13:22:05 ----D---- C:\audiograbber
2015-03-03 01:40:30 ----D---- C:\Program Files (x86)\Warcraft III
2015-02-25 12:13:01 ----A---- C:\Windows\SYSWOW64\Windows.Globalization.dll
2015-02-25 12:13:01 ----A---- C:\Windows\system32\Windows.Globalization.dll
2015-02-24 17:48:43 ----RD---- C:\Program Files (x86)\Skype
2015-02-18 00:21:56 ----D---- C:\Program Files (x86)\GameSpy Arcade
2015-02-18 00:19:44 ----D---- C:\Program Files (x86)\Aspyr
======List of files/folders modified in the last 1 month======
2015-03-16 00:00:51 ----RD---- C:\Program Files
2015-03-16 00:00:00 ----D---- C:\Windows\system32\sru
2015-03-15 23:58:00 ----D---- C:\Windows\Temp
2015-03-15 23:58:00 ----D---- C:\Windows\Prefetch
2015-03-15 23:54:05 ----RD---- C:\Program Files (x86)
2015-03-15 23:53:56 ----D---- C:\Windows\Tasks
2015-03-15 23:53:56 ----D---- C:\Windows\system32\Tasks
2015-03-15 23:53:14 ----D---- C:\Program Files (x86)\Adobe
2015-03-15 23:53:13 ----SHD---- C:\Windows\Installer
2015-03-15 23:51:42 ----SD---- C:\Users\Uzivatel\AppData\Roaming\Microsoft
2015-03-15 23:51:17 ----D---- C:\Program Files (x86)\Apowersoft
2015-03-15 20:40:50 ----D---- C:\Program Files (x86)\Steam
2015-03-15 03:02:19 ----D---- C:\Windows\Microsoft.NET
2015-03-14 00:19:31 ----RD---- C:\Windows\System32
2015-03-14 00:19:31 ----D---- C:\Windows\Inf
2015-03-14 00:19:31 ----A---- C:\Windows\system32\PerfStringBackup.INI
2015-03-13 13:41:36 ----D---- C:\Windows\system32\config
2015-03-13 09:49:24 ----D---- C:\Windows\rescache
2015-03-13 02:41:23 ----D---- C:\Windows\WinSxS
2015-03-13 02:39:41 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2015-03-13 02:38:21 ----D---- C:\Windows\SysWOW64
2015-03-13 02:38:21 ----D---- C:\Program Files (x86)\Internet Explorer
2015-03-13 02:38:17 ----D---- C:\Program Files\Internet Explorer
2015-03-13 02:38:14 ----D---- C:\Windows\SYSWOW64\cs-CZ
2015-03-13 02:38:14 ----D---- C:\Windows\system32\cs-CZ
2015-03-13 02:38:12 ----D---- C:\Windows\system32\Drivers
2015-03-13 02:38:09 ----D---- C:\Program Files\Windows Defender
2015-03-13 02:38:09 ----D---- C:\Program Files (x86)\Windows Defender
2015-03-13 02:38:03 ----RD---- C:\Windows\ToastData
2015-03-13 02:38:03 ----D---- C:\Windows\WinStore
2015-03-13 02:38:00 ----D---- C:\Windows\PolicyDefinitions
2015-03-12 15:11:33 ----D---- C:\Windows\system32\MRT
2015-03-12 14:59:14 ----A---- C:\Windows\system32\MRT.exe
2015-03-11 23:47:02 ----D---- C:\Windows\CbsTemp
2015-03-11 23:46:50 ----D---- C:\Windows\system32\catroot2
2015-03-11 15:20:10 ----D---- C:\Users\Uzivatel\AppData\Roaming\vlc
2015-03-10 14:02:54 ----D---- C:\Windows
2015-03-09 23:42:46 ----D---- C:\Program Files (x86)\Common Files
2015-03-09 23:27:05 ----SHD---- C:\System Volume Information
2015-03-08 23:28:37 ----D---- C:\Users\Uzivatel\AppData\Roaming\Skype
2015-03-06 20:41:08 ----D---- C:\Program Files (x86)\Mozilla Firefox
2015-03-06 17:54:54 ----D---- C:\Users\Uzivatel\AppData\Roaming\TS3Client
2015-03-04 22:24:17 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2015-02-27 00:52:32 ----HD---- C:\Program Files\WindowsApps
2015-02-27 00:51:42 ----D---- C:\Windows\AUInstallAgent
2015-02-18 00:07:07 ----D---- C:\ProgramData\Turbine
2015-02-18 00:06:44 ----D---- C:\ProgramData\HappyCloud
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 hpdskflt;@oem12.inf,%service_desc%;HP Filter; C:\Windows\system32\DRIVERS\hpdskflt.sys [2012-04-26 30488]
R0 iaStorA;iaStorA; C:\Windows\System32\drivers\iaStorA.sys [2013-08-01 644968]
R1 ElbyCDIO;ElbyCDIO Driver; C:\Windows\System32\Drivers\ElbyCDIO.sys [2013-03-04 40344]
R1 vwififlt;@%SystemRoot%\System32\drivers\vwififlt.sys,-259; C:\Windows\system32\DRIVERS\vwififlt.sys [2012-07-26 64000]
R3 Accelerometer;@oem12.inf,%accelerometer_desc%;HP Mobile Data Protection Sensor; C:\Windows\system32\DRIVERS\Accelerometer.sys [2012-04-26 43800]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2013-06-05 11833856]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2013-06-05 608768]
R3 BthEnum;@tdibth.inf,%BthEnum.DisplayName%;Služba Bluetooth Enumerator; C:\Windows\system32\DRIVERS\BthEnum.sys [2013-01-09 51712]
R3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Ovladač úspory energie technologie Bluetooth; C:\Windows\system32\DRIVERS\BthLEEnum.sys [2012-07-26 202752]
R3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Zařízení Bluetooth (síť PAN); C:\Windows\system32\DRIVERS\bthpan.sys [2012-07-26 119808]
R3 BTHUSB;@Bth.inf,%BTHUSB.SvcDesc%;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2013-01-09 74752]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2012-12-14 5353888]
R3 IntcDAud;@oem14.inf,%IntcDAud.SvcDesc%;Intel(R) Display Audio; C:\Windows\system32\DRIVERS\IntcDAud.sys [2013-07-31 449528]
R3 JMCR;JMCR; C:\Windows\System32\drivers\jmcr.sys [2012-07-31 175928]
R3 MEIx64;@oem6.inf,%TEE_SvcDesc%;Intel(R) Management Engine Interface ; C:\Windows\System32\drivers\TeeDriverx64.sys [2013-07-26 99288]
R3 netr28x;@oem26.inf,%Generic.Service.DispName%;Ralink 802.11n Extensible Wireless Driver; C:\Windows\system32\DRIVERS\netr28x.sys [2013-12-04 2505904]
R3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Zařízení Bluetooth (RFCOMM protokol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2013-03-01 156672]
R3 rtbth;@oem25.inf,%General.Service.DispName%;RTBTH Bluetooth Device Driver; C:\Windows\System32\drivers\rtbth.sys [2013-12-02 1204424]
R3 RTL8168;@oem9.inf,%rtl8168.Service.DispName%;Realtek 8168 NT Driver; C:\Windows\system32\DRIVERS\Rt630x64.sys [2013-07-26 827096]
R3 SensorsServiceDriver;@sensorsservicedriver.inf,%WudfSensorsServiceDriverDisplayName%;Služba Reflektor UMDF pro knihovnu SensorsServiceDriver; C:\Windows\system32\DRIVERS\WUDFRd.sys [2012-07-26 198656]
R3 SPUVCbv;@oem18.inf,%SPUVCb.ServiceName%;SPUVCb Driver Service; C:\Windows\System32\Drivers\SPUVCbv_x64.sys [2013-04-02 1442944]
R3 STHDA;@%SystemRoot%\system32\stlang64.dll,-10322; C:\Windows\system32\DRIVERS\stwrt64.sys [2013-06-13 550912]
R3 SynTP;@oem24.inf,%SynTP.SvcDesc%;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2013-10-30 549104]
R3 VClone;VClone; C:\Windows\System32\drivers\VClone.sys [2013-07-24 34816]
R3 vwifimp;@%SystemRoot%\System32\drivers\vwifimp.sys,-261; C:\Windows\system32\DRIVERS\vwifimp.sys [2012-07-26 17920]
R3 WirelessButtonDriver;@oem11.inf,%ServiceDesc%;HP Wireless Button Driver Service; C:\Windows\System32\drivers\WirelessButtonDriver64.sys [2012-09-11 20800]
S3 BTHPORT;@Bth.inf,%BTHPORT.SvcDesc%;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2013-03-01 1175040]
S3 usbvideo;@usbvideo.inf,%USBVideo.SvcDesc%;USB Video Device (WDM); C:\Windows\System32\Drivers\usbvideo.sys [2013-07-05 210560]
S3 WinUsb;@wpdmtp.inf,%WinUsb.SvcDesc%;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2012-07-26 57344]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2014-12-19 81088]
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2013-06-05 241152]
R2 ClassicShellService;Classic Shell Service; C:\Program Files\Classic Shell\ClassicShellService.exe [2013-06-29 68608]
R2 hpsrv;@oem12.inf,%hpservice_desc%;HP Service; C:\Windows\system32\Hpservice.exe [2012-04-26 33560]
S2 globalUpdate;globalUpdate Update Service (globalUpdate); C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe [2015-03-15 68608]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-09-19 116648]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2015-01-02 315488]
S2 STacSV;@%SystemRoot%\system32\stlang64.dll,-10122; C:\Program Files\IDT\WDM\STacSV64.exe [2013-06-13 334336]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-02-04 267440]
S3 cphs;Intel(R) Content Protection HECI Service; C:\Windows\SysWow64\IntelCpHeciSvc.exe [2012-12-14 277616]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2012-07-06 43616]
S3 globalUpdatem;globalUpdate Update Service (globalUpdatem); C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe [2015-03-15 68608]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-09-19 116648]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2015-03-06 148080]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2012-12-08 150600]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2015-02-19 835776]
-----------------EOF-----------------
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
odinstalace programu
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Re: odinstalace programu
Zdravim 
Stahnete OTL http://oldtimer.geekstogo.com/OTL.exe a ulozte jej na plochu
Stahnete OTL http://oldtimer.geekstogo.com/OTL.exe a ulozte jej na plochu
- Pokud pouzivate Win Vista ci W7, kliknete na OTL pravym a dejte Run As Administrator ci Spustit jako spravce
- Pokud pouzivate 64bitovy OS, zkontrolujte, zda-li je zaskrtnuty ctverecek u Pro 64 bitové OS, pokud ne, zaskrtnete jej
- Zaskrtnete okenko Pro vsechny uzivatele
- Zaskrtnete okenko Kontrola na havet "LOP"
- Zaskrtnete okenko Kontrola na havet "Purity"
- Stari souboru zmente z 30 dnu na 7 dnu
- Do spodniho okenka Vlastni skenovani/opravy vlozte skript nize
Kód: Vybrat vše
CREATERESTOREPOINT netsvcs drivers32 savembr:0 /md5start atapi.sys autochk.exe cdrom.sys explorer.exe hal.dll scecli.dll services.exe svchost.exe tcpip.sys userinit.exe winlogon.exe /md5stop %systemroot%*.* /U /s %SYSTEMDRIVE%\*.exe %ALLUSERSPROFILE%\Application Data\*. %ALLUSERSPROFILE%\Application Data\*.exe /s %APPDATA%\*. %APPDATA%\*.exe /s %systemroot%\*. /mp /s %systemroot%\system32\*.dll /lockedfiles %systemroot%\Tasks\*.job %systemroot%\system32\drivers\*.sys /lockedfiles %systemroot%\System32\config\*.sav %systemroot%\system32\*.dll /lockedfiles %systemroot%\system32\drivers\*.sys /3 %systemroot%\system32\*.* /3 %SYSTEMDRIVE%\*.exe HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s %PROGRAMFILES%\Mozilla Firefox\firefox.exe /md5 %PROGRAMFILES%\Internet Explorer\iexplore.exe /md5 %PROGRAMFILES%\Opera\opera.exe /md5 %PROGRAMFILES%\Google\Chrome\Application\chrome.exe /md5 %SystemDrive%\PhysicalMBR.bin /md5 *crack* /s *keygen* /s *loader* /s- Kliknete na tlacitko Prohledat
- Po dokonceni skenu (cca 10 az 15 min) se objevi logy OTL.txt a Extras.txt, oba sem vlozte
- Pokud budou logy dlouhe (forum bude kricet o prekroceni maximalniho poctu znaku), tak je rozdelte do vice prispevku
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen
od 1. února 2011.
Člen
od 1. února 2011.Re: odinstalace programu
OTL logfile created on: 16. 3. 2015 0:17:38 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Uzivatel\Downloads
64bit- Enterprise Edition (Version = 6.2.9200) - Type = NTWorkstation
Internet Explorer (Version = 9.10.9200.17267)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d. M. yyyy
3,88 Gb Total Physical Memory | 2,16 Gb Available Physical Memory | 55,72% Memory free
4,63 Gb Paging File | 2,62 Gb Available in Paging File | 56,62% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 698,29 Gb Total Space | 593,86 Gb Free Space | 85,04% Space Free | Partition Type: NTFS
Unable to calculate disk information.
Computer Name: NB52 | User Name: Uzivatel | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 7 Days
========== Processes (SafeList) ==========
PRC - [2015/03/16 00:15:43 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Uzivatel\Downloads\OTL.exe
PRC - [2015/03/15 23:53:38 | 001,408,512 | ---- | M] (Speedchecker) -- C:\Program Files (x86)\Internet Speed Checker\4b477374-5432-4754-a01d-62e796a778d3-1-6.exe
PRC - [2015/03/15 23:53:14 | 001,482,240 | ---- | M] (Speedchecker) -- C:\Program Files (x86)\Internet Speed Checker\4b477374-5432-4754-a01d-62e796a778d3-6.exe
PRC - [2015/03/07 07:13:08 | 000,809,288 | ---- | M] (Google Inc.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
PRC - [2014/12/19 08:48:18 | 000,081,088 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
PRC - [2014/02/27 18:10:59 | 001,022,154 | ---- | M] () -- C:\Users\Uzivatel\AppData\Local\Temp\{3PNINEGS-GBYR-HYWY-HTYC-EEQTZJDERTGNACTPQT}\activex.exe
PRC - [2013/07/02 08:16:32 | 000,507,264 | ---- | M] (Oracle Corporation) -- C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
PRC - [2013/06/29 09:49:28 | 000,068,608 | ---- | M] (IvoSoft) -- C:\Program Files\Classic Shell\ClassicShellService.exe
========== Modules (No Company Name) ==========
MOD - [2015/03/15 23:53:14 | 000,176,640 | ---- | M] () -- C:\Program Files (x86)\Internet Speed Checker\afa995b8-5444-4a91-a5cf-0a8cc248df08.dll
MOD - [2015/03/07 07:13:06 | 014,974,280 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\41.0.2272.89\PepperFlash\pepflashplayer.dll
MOD - [2015/03/07 07:13:04 | 009,279,304 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\41.0.2272.89\pdf.dll
MOD - [2015/03/07 07:12:59 | 001,174,856 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\41.0.2272.89\libglesv2.dll
MOD - [2015/03/07 07:12:57 | 000,080,200 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\41.0.2272.89\libegl.dll
MOD - [2014/02/27 22:41:57 | 000,212,480 | ---- | M] () -- C:\Users\Uzivatel\AppData\Local\Temp\{3PNINEGS-GBYR-HYWY-HTYC-EEQTZJDERTGNACTPQT}\libcurl-4.dll
MOD - [2014/02/27 22:41:57 | 000,112,640 | ---- | M] () -- C:\Users\Uzivatel\AppData\Local\Temp\{3PNINEGS-GBYR-HYWY-HTYC-EEQTZJDERTGNACTPQT}\zlib1.dll
MOD - [2014/02/27 18:10:59 | 001,022,154 | ---- | M] () -- C:\Users\Uzivatel\AppData\Local\Temp\{3PNINEGS-GBYR-HYWY-HTYC-EEQTZJDERTGNACTPQT}\activex.exe
========== Services (SafeList) ==========
SRV:64bit: - [2015/01/31 14:48:19 | 000,016,024 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MsMpEng.exe -- (WinDefend)
SRV:64bit: - [2014/11/06 08:09:55 | 002,676,736 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\spool\drivers\x64\3\PrintConfig.dll -- (PrintNotify)
SRV:64bit: - [2014/10/02 23:29:16 | 000,169,472 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\AudioEndpointBuilder.dll -- (AudioEndpointBuilder)
SRV:64bit: - [2014/07/07 06:52:33 | 000,263,680 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\wcmsvc.dll -- (Wcmsvc)
SRV:64bit: - [2014/05/30 00:02:28 | 000,439,808 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\lsm.dll -- (LSM)
SRV:64bit: - [2013/08/16 06:39:26 | 002,371,728 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\WSService.dll -- (WSService)
SRV:64bit: - [2013/06/29 09:49:28 | 000,068,608 | ---- | M] (IvoSoft) [Auto | Running] -- C:\Program Files\Classic Shell\ClassicShellService.exe -- (ClassicShellService)
SRV:64bit: - [2013/06/13 23:46:22 | 000,334,336 | ---- | M] (IDT, Inc.) [Auto | Stopped] -- C:\Program Files\IDT\WDM\stacsv64.exe -- (STacSV)
SRV:64bit: - [2013/06/05 03:02:26 | 000,241,152 | ---- | M] (AMD) [Auto | Running] -- C:\Windows\SysNative\atiesrxx.exe -- (AMD External Events Utility)
SRV:64bit: - [2013/06/01 10:19:58 | 000,207,872 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\DeviceSetupManager.dll -- (DsmSvc)
SRV:64bit: - [2013/05/04 07:58:02 | 000,470,528 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\netprofmsvc.dll -- (netprofm)
SRV:64bit: - [2013/05/04 07:57:05 | 000,179,712 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\bisrv.dll -- (BrokerInfrastructure)
SRV:64bit: - [2013/03/02 03:45:07 | 000,171,008 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\TimeBrokerServer.dll -- (TimeBroker)
SRV:64bit: - [2013/03/02 03:45:05 | 000,180,224 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\SystemEventsBrokerServer.dll -- (SystemEventsBroker)
SRV:64bit: - [2013/01/10 00:23:16 | 001,964,544 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\wlidsvc.dll -- (wlidsvc)
SRV:64bit: - [2012/09/20 07:31:18 | 000,116,736 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\fhsvc.dll -- (fhsvc)
SRV:64bit: - [2012/07/26 04:07:47 | 000,065,536 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\wiarpc.dll -- (WiaRpc)
SRV:64bit: - [2012/07/26 04:07:40 | 000,283,648 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\vaultsvc.dll -- (VaultSvc)
SRV:64bit: - [2012/07/26 04:07:25 | 000,012,800 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\svsvc.dll -- (svsvc)
SRV:64bit: - [2012/07/26 04:06:34 | 000,743,936 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\netlogon.dll -- (Netlogon)
SRV:64bit: - [2012/07/26 04:06:33 | 000,161,792 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\NcaSvc.dll -- (NcaSvc)
SRV:64bit: - [2012/07/26 04:06:33 | 000,073,728 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\NcdAutoSetup.dll -- (NcdAutoSetup)
SRV:64bit: - [2012/07/26 04:05:55 | 000,059,904 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\keyiso.dll -- (KeyIso)
SRV:64bit: - [2012/07/26 04:05:34 | 000,037,376 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\efssvc.dll -- (EFS)
SRV:64bit: - [2012/07/26 04:05:24 | 000,342,016 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\das.dll -- (DeviceAssociationService)
SRV:64bit: - [2012/07/26 04:05:08 | 000,122,368 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\AUInstallAgent.dll -- (AllUserInstallAgent)
SRV:64bit: - [2012/07/26 04:05:04 | 000,187,392 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\appmgmts.dll -- (AppMgmt)
SRV:64bit: - [2012/07/26 01:24:02 | 000,336,384 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicheartbeat)
SRV:64bit: - [2012/07/26 01:24:02 | 000,336,384 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicvss)
SRV:64bit: - [2012/07/26 01:24:02 | 000,336,384 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmictimesync)
SRV:64bit: - [2012/07/26 01:24:02 | 000,336,384 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicshutdown)
SRV:64bit: - [2012/07/26 01:24:02 | 000,336,384 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicrdv)
SRV:64bit: - [2012/07/26 01:24:02 | 000,336,384 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmickvpexchange)
SRV:64bit: - [2012/04/26 12:56:00 | 000,033,560 | ---- | M] (Hewlett-Packard Company) [Auto | Running] -- C:\Windows\SysNative\hpservice.exe -- (hpsrv)
SRV - [2015/03/15 23:53:08 | 000,068,608 | ---- | M] (globalUpdate) [On_Demand | Stopped] -- C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe -- (globalUpdatem)
SRV - [2015/03/15 23:53:08 | 000,068,608 | ---- | M] (globalUpdate) [Auto | Stopped] -- C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe -- (globalUpdate)
SRV - [2015/03/06 20:41:07 | 000,148,080 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2015/02/19 00:51:18 | 000,835,776 | ---- | M] (Valve Corporation) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Steam\SteamService.exe -- (Steam Client Service)
SRV - [2015/02/04 20:13:16 | 000,267,440 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2015/01/02 19:45:12 | 000,315,488 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files (x86)\Skype\Updater\Updater.exe -- (SkypeUpdate)
SRV - [2014/12/19 08:48:18 | 000,081,088 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2014/11/06 08:09:55 | 002,676,736 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\system32\spool\DRIVERS\x64\3\PrintConfig.dll -- (PrintNotify)
SRV - [2012/12/14 01:42:10 | 000,277,616 | ---- | M] (Intel Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\IntelCpHeciSvc.exe -- (cphs)
SRV - [2012/07/26 04:20:04 | 000,018,432 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\StorSvc.dll -- (StorSvc)
========== Driver Services (SafeList) ==========
DRV:64bit: - [2015/01/31 14:48:06 | 000,044,024 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\WdBoot.sys -- (WdBoot)
DRV:64bit: - [2015/01/31 06:55:05 | 000,275,712 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\WdFilter.sys -- (WdFilter)
DRV:64bit: - [2014/12/18 09:51:28 | 000,096,576 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\Drivers\wfplwfs.sys -- (WFPLWFS)
DRV:64bit: - [2014/07/24 14:50:54 | 000,447,296 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\USBHUB3.SYS -- (USBHUB3)
DRV:64bit: - [2013/12/04 10:02:30 | 002,505,904 | ---- | M] (Ralink Technology, Corp.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\netr28x.sys -- (netr28x)
DRV:64bit: - [2013/12/02 09:42:14 | 001,204,424 | ---- | M] (Ralink Technology, Corp.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\rtbth.sys -- (rtbth)
DRV:64bit: - [2013/10/30 03:52:48 | 000,549,104 | ---- | M] (Synaptics Incorporated) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\SynTP.sys -- (SynTP)
DRV:64bit: - [2013/10/05 07:10:20 | 000,285,016 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\Drivers\spaceport.sys -- (spaceport)
DRV:64bit: - [2013/08/16 06:41:13 | 000,058,200 | ---- | M] (Microsoft Corporation) [Kernel | System | Stopped] -- C:\Windows\SysNative\Drivers\dam.sys -- (dam)
DRV:64bit: - [2013/08/10 07:30:22 | 000,151,896 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\tpm.sys -- (TPM)
DRV:64bit: - [2013/08/01 15:40:04 | 000,644,968 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\Drivers\iaStorA.sys -- (iaStorA)
DRV:64bit: - [2013/07/31 19:05:07 | 000,449,528 | ---- | M] (Intel(R) Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\IntcDAud.sys -- (IntcDAud)
DRV:64bit: - [2013/07/26 18:24:06 | 000,099,288 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\TeeDriverx64.sys -- (MEIx64)
DRV:64bit: - [2013/07/26 18:07:30 | 000,827,096 | ---- | M] (Realtek ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\Rt630x64.sys -- (RTL8168)
DRV:64bit: - [2013/07/24 16:02:55 | 000,034,816 | ---- | M] (Elaborate Bytes AG) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\VClone.sys -- (VClone)
DRV:64bit: - [2013/07/09 09:04:07 | 000,120,144 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\msgpioclx.sys -- (GPIOClx0101)
DRV:64bit: - [2013/07/02 02:41:47 | 000,337,752 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\USBXHCI.SYS -- (USBXHCI)
DRV:64bit: - [2013/07/02 02:41:47 | 000,213,336 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\UCX01000.SYS -- (UCX01000)
DRV:64bit: - [2013/06/29 07:15:54 | 000,195,416 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\sdbus.sys -- (sdbus)
DRV:64bit: - [2013/06/13 23:46:22 | 000,550,912 | ---- | M] (IDT, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\stwrt64.sys -- (STHDA)
DRV:64bit: - [2013/06/05 04:09:46 | 011,833,856 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\atikmdag.sys -- (amdkmdag)
DRV:64bit: - [2013/06/05 02:35:06 | 000,608,768 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\atikmpag.sys -- (amdkmdap)
DRV:64bit: - [2013/06/01 04:08:57 | 000,037,632 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\BthAvrcpTg.sys -- (BthAvrcpTg)
DRV:64bit: - [2013/04/02 08:50:42 | 001,442,944 | ---- | M] (Sunplus) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\SPUVCBv_x64.sys -- (SPUVCbv)
DRV:64bit: - [2013/03/04 13:24:27 | 000,040,344 | ---- | M] (Elaborate Bytes AG) [Kernel | System | Running] -- C:\Windows\SysNative\Drivers\ElbyCDIO.sys -- (ElbyCDIO)
DRV:64bit: - [2013/03/02 11:57:46 | 000,077,544 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\storahci.sys -- (storahci)
DRV:64bit: - [2013/03/02 11:39:38 | 000,069,864 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\Drivers\pdc.sys -- (pdc)
DRV:64bit: - [2013/01/10 02:53:32 | 000,028,904 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\msgpiowin32.sys -- (msgpiowin32)
DRV:64bit: - [2012/12/14 01:42:22 | 005,353,888 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\igdkmd64.sys -- (igfx)
DRV:64bit: - [2012/11/27 04:55:44 | 000,029,952 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\BthhfHid.sys -- (bthhfhid)
DRV:64bit: - [2012/11/20 05:54:31 | 000,039,936 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\hidi2c.sys -- (hidi2c)
DRV:64bit: - [2012/11/06 04:55:44 | 000,022,528 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\fxppm.sys -- (FxPPM)
DRV:64bit: - [2012/10/12 09:08:01 | 000,027,880 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\rdpvideominiport.sys -- (RdpVideoMiniport)
DRV:64bit: - [2012/10/11 08:25:48 | 000,056,552 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\sdstor.sys -- (sdstor)
DRV:64bit: - [2012/10/11 06:19:44 | 000,023,552 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\WSDScan.sys -- (WSDScan)
DRV:64bit: - [2012/09/20 08:55:27 | 003,265,256 | ---- | M] (Broadcom Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\evbda.sys -- (ebdrv)
DRV:64bit: - [2012/09/20 08:55:24 | 000,533,224 | ---- | M] (Broadcom Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\bxvbda.sys -- (b06bdrv)
DRV:64bit: - [2012/09/11 07:21:26 | 000,020,800 | ---- | M] (Hewlett-Packard Development Company, L.P.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\WirelessButtonDriver64.sys -- (WirelessButtonDriver)
DRV:64bit: - [2012/07/31 07:05:14 | 000,175,928 | ---- | M] (JMicron Technology Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\jmcr.sys -- (JMCR)
DRV:64bit: - [2012/07/26 06:26:46 | 000,025,328 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\Windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
DRV:64bit: - [2012/07/26 06:26:45 | 000,033,792 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\condrv.sys -- (condrv)
DRV:64bit: - [2012/07/26 06:00:58 | 000,322,800 | ---- | M] (VIA Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\VSTXRAID.SYS -- (VSTXRAID)
DRV:64bit: - [2012/07/26 06:00:58 | 000,106,224 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\VerifierExt.sys -- (VerifierExt)
DRV:64bit: - [2012/07/26 06:00:58 | 000,097,008 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\uaspstor.sys -- (UASPStor)
DRV:64bit: - [2012/07/26 06:00:57 | 000,077,040 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\Drivers\acpiex.sys -- (acpiex)
DRV:64bit: - [2012/07/26 06:00:55 | 000,064,240 | ---- | M] (Marvell Semiconductor, Inc.) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\mvumis.sys -- (mvumis)
DRV:64bit: - [2012/07/26 06:00:55 | 000,030,960 | ---- | M] (Promise Technology, Inc.) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\stexstor.sys -- (stexstor)
DRV:64bit: - [2012/07/26 06:00:52 | 000,092,400 | ---- | M] (LSI Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:64bit: - [2012/07/26 06:00:52 | 000,081,136 | ---- | M] (LSI Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\lsi_sss.sys -- (LSI_SSS)
DRV:64bit: - [2012/07/26 06:00:52 | 000,064,752 | ---- | M] (Hewlett-Packard Company) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\HpSAMD.sys -- (HpSAMD)
DRV:64bit: - [2012/07/26 06:00:51 | 000,113,904 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\EhStorTcgDrv.sys -- (EhStorTcgDrv)
DRV:64bit: - [2012/07/26 06:00:51 | 000,081,136 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\EhStorClass.sys -- (EhStorClass)
DRV:64bit: - [2012/07/26 06:00:49 | 000,258,288 | ---- | M] (AMD Technologies Inc.) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\amdsbs.sys -- (amdsbs)
DRV:64bit: - [2012/07/26 06:00:49 | 000,106,736 | ---- | M] (LSI) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\3ware.sys -- (3ware)
DRV:64bit: - [2012/07/26 06:00:49 | 000,076,016 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\amdsata.sys -- (amdsata)
DRV:64bit: - [2012/07/26 06:00:48 | 000,026,352 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\amdxata.sys -- (amdxata)
DRV:64bit: - [2012/07/26 05:57:54 | 000,361,200 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\Drivers\clfs.sys -- (CLFS)
DRV:64bit: - [2012/07/26 05:53:16 | 000,067,824 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\vpci.sys -- (vpci)
DRV:64bit: - [2012/07/26 05:50:20 | 000,053,352 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\Synth3dVsc.sys -- (Synth3dVsc)
DRV:64bit: - [2012/07/26 04:17:38 | 000,036,592 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\terminpt.sys -- (terminpt)
DRV:64bit: - [2012/07/26 03:29:47 | 000,021,504 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\WSDPrint.sys -- (WSDPrintDevice)
DRV:64bit: - [2012/07/26 03:29:14 | 000,010,752 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\mshidumdf.sys -- (mshidumdf)
DRV:64bit: - [2012/07/26 03:29:08 | 000,048,640 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\Drivers\BasicDisplay.sys -- (BasicDisplay)
DRV:64bit: - [2012/07/26 03:29:03 | 000,024,576 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\HyperVideo.sys -- (HyperVideo)
DRV:64bit: - [2012/07/26 03:28:52 | 000,029,696 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\Drivers\BasicRender.sys -- (BasicRender)
DRV:64bit: - [2012/07/26 03:27:58 | 000,012,288 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\vmgencounter.sys -- (gencounter)
DRV:64bit: - [2012/07/26 03:27:41 | 000,018,432 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\kdnic.sys -- (kdnic)
DRV:64bit: - [2012/07/26 03:27:37 | 000,010,752 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\acpitime.sys -- (acpitime)
DRV:64bit: - [2012/07/26 03:27:33 | 000,023,552 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\Drivers\npsvctrig.sys -- (npsvctrig)
DRV:64bit: - [2012/07/26 03:27:29 | 000,019,968 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\WpdUpFltr.sys -- (WpdUpFltr)
DRV:64bit: - [2012/07/26 03:27:16 | 000,010,240 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\acpipagr.sys -- (acpipagr)
DRV:64bit: - [2012/07/26 03:27:01 | 000,011,776 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\hyperkbd.sys -- (hyperkbd)
DRV:64bit: - [2012/07/26 03:26:46 | 000,062,976 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\SerCx.sys -- (SerCx)
DRV:64bit: - [2012/07/26 03:26:43 | 000,059,392 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\SpbCx.sys -- (SpbCx)
DRV:64bit: - [2012/07/26 03:26:34 | 000,030,208 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\TsUsbGD.sys -- (TsUsbGD)
DRV:64bit: - [2012/07/26 03:26:13 | 000,051,200 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\bthhfenum.sys -- (BthHFEnum)
DRV:64bit: - [2012/07/26 03:25:57 | 000,033,280 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\dmvsc.sys -- (dmvsc)
DRV:64bit: - [2012/07/26 03:25:56 | 000,057,344 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV:64bit: - [2012/07/26 03:25:26 | 000,203,776 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\Vid.sys -- (Vid)
DRV:64bit: - [2012/07/26 03:25:22 | 000,067,584 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\storvsp.sys -- (storvsp)
DRV:64bit: - [2012/07/26 03:25:13 | 000,045,056 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\wpcfltr.sys -- (wpcfltr)
DRV:64bit: - [2012/07/26 03:25:12 | 000,117,248 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\vmbusr.sys -- (vmbusr)
DRV:64bit: - [2012/07/26 03:25:12 | 000,066,048 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\vpcivsp.sys -- (vpcivsp)
DRV:64bit: - [2012/07/26 03:25:02 | 000,202,752 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\BthLEEnum.sys -- (BthLEEnum)
DRV:64bit: - [2012/07/26 03:25:01 | 000,126,464 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\NdisImPlatform.sys -- (NdisImPlatform)
DRV:64bit: - [2012/07/26 03:23:53 | 000,068,608 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\mslldp.sys -- (MsLldp)
DRV:64bit: - [2012/07/26 03:23:42 | 000,115,712 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\tsusbhub.sys -- (tsusbhub)
DRV:64bit: - [2012/07/26 03:23:42 | 000,097,792 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\Windows\SysNative\Drivers\Ndu.sys -- (Ndu)
DRV:64bit: - [2012/04/26 12:56:00 | 000,043,800 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\Accelerometer.sys -- (Accelerometer)
DRV:64bit: - [2012/04/26 12:56:00 | 000,030,488 | ---- | M] (Hewlett-Packard Company) [Kernel | Boot | Running] -- C:\Windows\SysNative\Drivers\hpdskflt.sys -- (hpdskflt)
CREATERESTOREPOINT
Restore point Set: OTL Restore Point
NetSvcs:64bit: wlidsvc - C:\Windows\SysNative\wlidsvc.dll (Microsoft Corporation)
NetSvcs:64bit: DsmSvc - C:\Windows\SysNative\DeviceSetupManager.dll (Microsoft Corporation)
NetSvcs:64bit: NcaSvc - C:\Windows\SysNative\NcaSvc.dll (Microsoft Corporation)
NetSvcs:64bit: SystemEventsBroker - C:\Windows\SysNative\SystemEventsBrokerServer.dll (Microsoft Corporation)
NetSvcs:64bit: AppMgmt - C:\Windows\SysNative\appmgmts.dll (Microsoft Corporation)
Drivers32:64bit: msacm.l3acm - C:\Windows\System32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.l3acm - C:\Windows\SysWOW64\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.vorbis - C:\Windows\SysWow64\vorbis.acm (HMS http://hp.vector.co.jp/authors/VA012897/)
Drivers32: vidc.cvid - C:\Windows\SysWow64\iccvid.dll (Radius Inc.)
PhysicalDisk0 MBR saved to C:\PhysicalMBR.bin
========== Files/Folders - Created Within 7 Days ==========
[2015/03/16 00:00:51 | 000,000,000 | ---D | C] -- C:\Program Files\trend micro
[2015/03/16 00:00:51 | 000,000,000 | ---D | C] -- C:\rsit
[2015/03/15 23:53:09 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\fba9dbcd-01f3-4509-b967-d54d4ee8a483
[2015/03/15 23:53:07 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Internet Speed Checker
[2015/03/15 23:51:35 | 001,371,136 | ---- | C] (Cinema PlusV05.03) -- C:\Users\Uzivatel\AppData\Roaming\OEM.exe
[2015/03/15 23:51:02 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\43d45ddb-733d-4a4f-9d91-4e3253112627
[2015/03/15 23:50:59 | 001,854,464 | ---- | C] (Cinema PlusV05.03) -- C:\Users\Uzivatel\AppData\Roaming\FHIGIC.exe
[2015/03/15 23:50:38 | 000,000,000 | ---D | C] -- C:\Users\Uzivatel\AppData\Local\globalUpdate
[2015/03/15 23:50:38 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\globalUpdate
[2015/03/15 23:50:32 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\CinemaP-1.9cV05.03
[2015/03/15 23:48:30 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Seznam.cz
[2015/03/15 23:48:06 | 000,000,000 | ---D | C] -- C:\Users\Uzivatel\AppData\Roaming\Seznam.cz
[2015/03/11 23:48:38 | 000,084,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\INETRES.dll
[2015/03/11 23:48:33 | 000,603,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msfeeds.dll
[2015/03/11 23:48:33 | 000,600,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\vbscript.dll
[2015/03/11 23:48:32 | 001,509,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\inetcpl.cpl
[2015/03/11 23:48:32 | 001,441,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\inetcpl.cpl
[2015/03/11 23:48:32 | 000,915,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\uxtheme.dll
[2015/03/11 23:48:32 | 000,281,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dxtrans.dll
[2015/03/11 23:48:32 | 000,136,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iesysprep.dll
[2015/03/11 23:48:32 | 000,109,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iesysprep.dll
[2015/03/11 23:48:32 | 000,097,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mshtmled.dll
[2015/03/11 23:48:31 | 003,959,296 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript9.dll
[2015/03/11 23:48:31 | 000,855,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript.dll
[2015/03/11 23:48:31 | 000,690,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\jscript.dll
[2015/03/11 23:48:31 | 000,451,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dxtmsft.dll
[2015/03/11 23:48:31 | 000,441,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\html.iec
[2015/03/11 23:48:31 | 000,361,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\html.iec
[2015/03/11 23:48:31 | 000,197,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msrating.dll
[2015/03/11 23:48:31 | 000,163,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msrating.dll
[2015/03/11 23:48:31 | 000,080,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmled.dll
[2015/03/11 23:48:31 | 000,067,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iesetup.dll
[2015/03/11 23:48:31 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iesetup.dll
[2015/03/11 23:48:31 | 000,053,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\UXInit.dll
[2015/03/11 23:48:31 | 000,051,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ie4uinit.exe
[2015/03/11 23:48:31 | 000,044,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\UXInit.dll
[2015/03/11 23:48:31 | 000,039,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iernonce.dll
[2015/03/11 23:48:31 | 000,033,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iernonce.dll
[2015/03/11 23:48:28 | 000,325,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ubpm.dll
[2015/03/11 23:48:28 | 000,243,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ubpm.dll
[2015/03/11 23:48:27 | 000,366,592 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\SysNative\atmfd.dll
[2015/03/11 23:48:27 | 000,304,128 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\atmfd.dll
[2015/03/11 23:48:27 | 000,046,080 | ---- | C] (Adobe Systems) -- C:\Windows\SysNative\atmlib.dll
[2015/03/11 23:48:27 | 000,035,328 | ---- | C] (Adobe Systems) -- C:\Windows\SysWow64\atmlib.dll
[2015/03/11 23:48:24 | 000,588,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SHCore.dll
[2015/03/11 23:48:24 | 000,452,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\SHCore.dll
[2015/03/11 23:48:02 | 000,275,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\WdFilter.sys
[2015/03/11 23:48:02 | 000,044,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\WdBoot.sys
[2015/03/11 23:47:53 | 001,627,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WindowsCodecs.dll
[2015/03/11 23:47:51 | 001,120,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msctf.dll
[2015/03/11 23:47:51 | 000,420,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WMPhoto.dll
[2015/03/11 23:47:51 | 000,368,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\WMPhoto.dll
[2015/03/11 23:47:41 | 000,235,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rdpudd.dll
[2015/03/11 23:47:40 | 006,973,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntoskrnl.exe
[2015/03/11 15:41:59 | 000,000,000 | ---D | C] -- C:\Users\Uzivatel\Desktop\zaloha flas
[2015/03/10 15:37:26 | 000,000,000 | ---D | C] -- C:\Users\Uzivatel\.thumbnails
[2015/03/10 15:36:01 | 000,000,000 | ---D | C] -- C:\Users\Uzivatel\.gimp-2.8
[2015/03/10 15:36:00 | 000,000,000 | ---D | C] -- C:\Users\Uzivatel\AppData\Local\gegl-0.2
[2015/03/10 14:02:54 | 000,126,976 | ---- | C] (Blizzard Entertainment) -- C:\Windows\War3Unin.exe
[2015/03/09 23:27:16 | 000,000,000 | -H-D | C] -- C:\Program Files (x86)\InstallShield Installation Information
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
========== Files - Modified Within 7 Days ==========
[2015/03/16 00:19:24 | 000,000,512 | ---- | M] () -- C:\PhysicalMBR.bin
[2015/03/16 00:13:00 | 000,000,914 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2015/03/15 23:58:00 | 000,000,960 | ---- | M] () -- C:\Windows\tasks\globalUpdateUpdateTaskMachineUA.job
[2015/03/15 23:58:00 | 000,000,956 | ---- | M] () -- C:\Windows\tasks\globalUpdateUpdateTaskMachineCore.job
[2015/03/15 23:53:50 | 000,002,464 | ---- | M] () -- C:\Windows\tasks\4b477374-5432-4754-a01d-62e796a778d3-5_user.job
[2015/03/15 23:53:48 | 000,002,464 | ---- | M] () -- C:\Windows\tasks\4b477374-5432-4754-a01d-62e796a778d3-5.job
[2015/03/15 23:53:36 | 000,003,156 | ---- | M] () -- C:\Windows\tasks\4b477374-5432-4754-a01d-62e796a778d3-1-6.job
[2015/03/15 23:53:34 | 000,003,492 | ---- | M] () -- C:\Windows\tasks\4b477374-5432-4754-a01d-62e796a778d3-1-7.job
[2015/03/15 23:53:22 | 000,004,176 | ---- | M] () -- C:\Windows\tasks\4b477374-5432-4754-a01d-62e796a778d3-4.job
[2015/03/15 23:53:12 | 000,005,536 | ---- | M] () -- C:\Windows\tasks\4b477374-5432-4754-a01d-62e796a778d3-6.job
[2015/03/15 23:53:10 | 000,005,200 | ---- | M] () -- C:\Windows\tasks\4b477374-5432-4754-a01d-62e796a778d3-7.job
[2015/03/15 23:53:08 | 000,002,130 | ---- | M] () -- C:\Windows\tasks\4b477374-5432-4754-a01d-62e796a778d3-10_user.job
[2015/03/15 23:51:55 | 000,002,456 | ---- | M] () -- C:\Windows\tasks\2300726e-d013-4e97-93b8-82cdb2191e24-5_user.job
[2015/03/15 23:51:53 | 000,002,456 | ---- | M] () -- C:\Windows\tasks\2300726e-d013-4e97-93b8-82cdb2191e24-5.job
[2015/03/15 23:51:41 | 000,003,148 | ---- | M] () -- C:\Windows\tasks\2300726e-d013-4e97-93b8-82cdb2191e24-1-6.job
[2015/03/15 23:51:39 | 000,003,484 | ---- | M] () -- C:\Windows\tasks\2300726e-d013-4e97-93b8-82cdb2191e24-1-7.job
[2015/03/15 23:51:37 | 000,001,354 | ---- | M] () -- C:\Windows\tasks\OEM.job
[2015/03/15 23:51:35 | 001,371,136 | ---- | M] (Cinema PlusV05.03) -- C:\Users\Uzivatel\AppData\Roaming\OEM.exe
[2015/03/15 23:51:27 | 000,004,168 | ---- | M] () -- C:\Windows\tasks\2300726e-d013-4e97-93b8-82cdb2191e24-4.job
[2015/03/15 23:51:08 | 000,005,528 | ---- | M] () -- C:\Windows\tasks\2300726e-d013-4e97-93b8-82cdb2191e24-6.job
[2015/03/15 23:51:06 | 000,005,528 | ---- | M] () -- C:\Windows\tasks\2300726e-d013-4e97-93b8-82cdb2191e24-7.job
[2015/03/15 23:51:02 | 000,001,360 | ---- | M] () -- C:\Windows\tasks\FHIGIC.job
[2015/03/15 23:50:59 | 001,854,464 | ---- | M] (Cinema PlusV05.03) -- C:\Users\Uzivatel\AppData\Roaming\FHIGIC.exe
[2015/03/15 23:50:43 | 000,004,504 | ---- | M] () -- C:\Windows\tasks\2300726e-d013-4e97-93b8-82cdb2191e24-3.job
[2015/03/15 23:50:37 | 000,002,122 | ---- | M] () -- C:\Windows\tasks\2300726e-d013-4e97-93b8-82cdb2191e24-10_user.job
[2015/03/15 23:48:53 | 000,002,334 | ---- | M] () -- C:\Users\Uzivatel\Desktop\DownloadManager.lnk
[2015/03/15 23:47:39 | 000,001,294 | ---- | M] () -- C:\Users\Uzivatel\Desktop\Continue installation .lnk
[2015/03/15 23:27:00 | 000,000,964 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2015/03/15 14:27:00 | 000,000,960 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2015/03/15 10:11:47 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2015/03/14 00:19:31 | 001,714,430 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2015/03/14 00:19:31 | 000,727,488 | ---- | M] () -- C:\Windows\SysNative\perfh005.dat
[2015/03/14 00:19:31 | 000,710,244 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2015/03/14 00:19:31 | 000,148,006 | ---- | M] () -- C:\Windows\SysNative\perfc005.dat
[2015/03/14 00:19:31 | 000,132,614 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2015/03/13 02:40:51 | 268,435,456 | -HS- | M] () -- C:\swapfile.sys
[2015/03/13 02:39:41 | 3333,804,032 | -HS- | M] () -- C:\hiberfil.sys
[2015/03/12 19:32:42 | 000,002,183 | ---- | M] () -- C:\Users\Public\Desktop\Google Chrome.lnk
[2015/03/10 15:57:09 | 000,055,537 | ---- | M] () -- C:\Users\Uzivatel\Desktop\11039418_797445120347939_687496584_n.jpg
[2015/03/10 15:37:48 | 000,001,493 | ---- | M] () -- C:\Users\Uzivatel\AppData\Local\recently-used.xbel
[2015/03/10 14:03:00 | 000,126,976 | ---- | M] (Blizzard Entertainment) -- C:\Windows\War3Unin.exe
[2015/03/10 14:03:00 | 000,000,515 | ---- | M] () -- C:\Windows\War3Unin.dat
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
========== Files Created - No Company Name ==========
[2015/03/16 00:19:24 | 000,000,512 | ---- | C] () -- C:\PhysicalMBR.bin
[2015/03/15 23:53:49 | 000,002,464 | ---- | C] () -- C:\Windows\tasks\4b477374-5432-4754-a01d-62e796a778d3-5_user.job
[2015/03/15 23:53:47 | 000,002,464 | ---- | C] () -- C:\Windows\tasks\4b477374-5432-4754-a01d-62e796a778d3-5.job
[2015/03/15 23:53:35 | 000,003,156 | ---- | C] () -- C:\Windows\tasks\4b477374-5432-4754-a01d-62e796a778d3-1-6.job
[2015/03/15 23:53:30 | 000,003,492 | ---- | C] () -- C:\Windows\tasks\4b477374-5432-4754-a01d-62e796a778d3-1-7.job
[2015/03/15 23:53:21 | 000,004,176 | ---- | C] () -- C:\Windows\tasks\4b477374-5432-4754-a01d-62e796a778d3-4.job
[2015/03/15 23:53:11 | 000,005,536 | ---- | C] () -- C:\Windows\tasks\4b477374-5432-4754-a01d-62e796a778d3-6.job
[2015/03/15 23:53:09 | 000,005,200 | ---- | C] () -- C:\Windows\tasks\4b477374-5432-4754-a01d-62e796a778d3-7.job
[2015/03/15 23:53:07 | 000,002,130 | ---- | C] () -- C:\Windows\tasks\4b477374-5432-4754-a01d-62e796a778d3-10_user.job
[2015/03/15 23:51:54 | 000,002,456 | ---- | C] () -- C:\Windows\tasks\2300726e-d013-4e97-93b8-82cdb2191e24-5_user.job
[2015/03/15 23:51:53 | 000,002,456 | ---- | C] () -- C:\Windows\tasks\2300726e-d013-4e97-93b8-82cdb2191e24-5.job
[2015/03/15 23:51:40 | 000,003,148 | ---- | C] () -- C:\Windows\tasks\2300726e-d013-4e97-93b8-82cdb2191e24-1-6.job
[2015/03/15 23:51:38 | 000,003,484 | ---- | C] () -- C:\Windows\tasks\2300726e-d013-4e97-93b8-82cdb2191e24-1-7.job
[2015/03/15 23:51:36 | 000,001,354 | ---- | C] () -- C:\Windows\tasks\OEM.job
[2015/03/15 23:51:26 | 000,004,168 | ---- | C] () -- C:\Windows\tasks\2300726e-d013-4e97-93b8-82cdb2191e24-4.job
[2015/03/15 23:51:06 | 000,005,528 | ---- | C] () -- C:\Windows\tasks\2300726e-d013-4e97-93b8-82cdb2191e24-6.job
[2015/03/15 23:51:03 | 000,005,528 | ---- | C] () -- C:\Windows\tasks\2300726e-d013-4e97-93b8-82cdb2191e24-7.job
[2015/03/15 23:51:00 | 000,001,360 | ---- | C] () -- C:\Windows\tasks\FHIGIC.job
[2015/03/15 23:50:46 | 000,000,960 | ---- | C] () -- C:\Windows\tasks\globalUpdateUpdateTaskMachineUA.job
[2015/03/15 23:50:40 | 000,000,956 | ---- | C] () -- C:\Windows\tasks\globalUpdateUpdateTaskMachineCore.job
[2015/03/15 23:50:38 | 000,004,504 | ---- | C] () -- C:\Windows\tasks\2300726e-d013-4e97-93b8-82cdb2191e24-3.job
[2015/03/15 23:50:33 | 000,002,122 | ---- | C] () -- C:\Windows\tasks\2300726e-d013-4e97-93b8-82cdb2191e24-10_user.job
[2015/03/15 23:48:53 | 000,002,334 | ---- | C] () -- C:\Users\Uzivatel\Desktop\DownloadManager.lnk
[2015/03/15 23:47:39 | 000,001,294 | ---- | C] () -- C:\Users\Uzivatel\Desktop\Continue installation .lnk
[2015/03/11 23:47:12 | 000,396,419 | ---- | C] () -- C:\Windows\SysNative\ApnDatabase.xml
[2015/03/10 15:57:18 | 000,055,537 | ---- | C] () -- C:\Users\Uzivatel\Desktop\11039418_797445120347939_687496584_n.jpg
[2015/03/10 15:37:48 | 000,001,493 | ---- | C] () -- C:\Users\Uzivatel\AppData\Local\recently-used.xbel
[2015/03/10 14:02:54 | 000,000,515 | ---- | C] () -- C:\Windows\War3Unin.dat
[2015/01/25 17:12:14 | 000,002,086 | ---- | C] () -- C:\Users\Uzivatel\AppData\Roaming\OEM
[2015/01/25 17:12:14 | 000,001,248 | ---- | C] () -- C:\Users\Uzivatel\AppData\Roaming\FHIGIC
[2013/09/19 12:25:34 | 000,083,968 | ---- | C] () -- C:\Windows\SysWow64\OEMLicense.dll
[2013/09/19 12:00:58 | 000,000,008 | RHS- | C] () -- C:\ProgramData\ntuser.pol
[2013/09/19 11:13:33 | 000,000,000 | ---- | C] () -- C:\Windows\ativpsrm.bin
[2013/09/19 10:29:52 | 000,217,176 | ---- | C] () -- C:\Windows\SysWow64\unrar.dll
[2013/09/19 10:29:51 | 000,094,776 | ---- | C] () -- C:\Windows\un_dext.exe
[2013/09/19 10:29:50 | 000,087,928 | ---- | C] () -- C:\Windows\SPRemove_x64.exe
[2013/09/19 10:29:47 | 000,014,479 | ---- | C] () -- C:\Windows\TWAIN2080.ini
[2013/09/19 10:29:47 | 000,005,240 | ---- | C] () -- C:\Windows\Remove.ini
[2013/09/19 10:29:47 | 000,004,088 | ---- | C] () -- C:\Windows\Dext_12.ini
[2013/09/19 10:29:47 | 000,004,036 | ---- | C] () -- C:\Windows\Dext_27.ini
[2013/09/19 10:29:47 | 000,004,036 | ---- | C] () -- C:\Windows\Dext_21.ini
[2013/09/19 10:29:47 | 000,004,032 | ---- | C] () -- C:\Windows\Dext_25.ini
[2013/09/19 10:29:47 | 000,003,940 | ---- | C] () -- C:\Windows\Dext_11.ini
[2013/09/19 10:29:47 | 000,003,940 | ---- | C] () -- C:\Windows\Dext_05.ini
[2013/09/19 10:29:47 | 000,003,934 | ---- | C] () -- C:\Windows\Dext_14.ini
[2013/09/19 10:29:47 | 000,003,860 | ---- | C] () -- C:\Windows\Dext_10.ini
[2013/09/19 10:29:47 | 000,003,844 | ---- | C] () -- C:\Windows\Dext_16.ini
[2013/09/19 10:29:47 | 000,003,808 | ---- | C] () -- C:\Windows\Dext_08.ini
[2013/09/19 10:29:47 | 000,003,790 | ---- | C] () -- C:\Windows\Dext_31.ini
[2013/09/19 10:29:47 | 000,003,776 | ---- | C] () -- C:\Windows\Dext_1046.ini
[2013/09/19 10:29:47 | 000,003,774 | ---- | C] () -- C:\Windows\Dext_36.ini
[2013/09/19 10:29:47 | 000,003,750 | ---- | C] () -- C:\Windows\Dext_20.ini
[2013/09/19 10:29:47 | 000,003,740 | ---- | C] () -- C:\Windows\Dext_22.ini
[2013/09/19 10:29:47 | 000,003,714 | ---- | C] () -- C:\Windows\Dext_06.ini
[2013/09/19 10:29:47 | 000,003,660 | ---- | C] () -- C:\Windows\Dext_02.ini
[2013/09/19 10:29:47 | 000,003,650 | ---- | C] () -- C:\Windows\Dext_07.ini
[2013/09/19 10:29:47 | 000,003,644 | ---- | C] () -- C:\Windows\Dext_19.ini
[2013/09/19 10:29:47 | 000,003,636 | ---- | C] () -- C:\Windows\Dext_24.ini
[2013/09/19 10:29:47 | 000,003,570 | ---- | C] () -- C:\Windows\Dext_29.ini
[2013/09/19 10:29:47 | 000,003,532 | ---- | C] () -- C:\Windows\Dext_01.ini
[2013/09/19 10:29:47 | 000,003,456 | ---- | C] () -- C:\Windows\Dext_30.ini
[2013/09/19 10:29:47 | 000,003,316 | ---- | C] () -- C:\Windows\Dext_09.ini
[2013/09/19 10:29:47 | 000,003,268 | ---- | C] () -- C:\Windows\Dext_13.ini
[2013/09/19 10:29:47 | 000,002,912 | ---- | C] () -- C:\Windows\Dext_04.ini
[2013/09/19 10:29:47 | 000,002,828 | ---- | C] () -- C:\Windows\Dext_17.ini
[2013/09/19 10:29:47 | 000,002,744 | ---- | C] () -- C:\Windows\Dext_18.ini
[2013/09/19 10:29:47 | 000,002,700 | ---- | C] () -- C:\Windows\Dext_2052.ini
[2013/09/19 10:25:31 | 000,303,104 | ---- | C] () -- C:\Windows\SysWow64\igdmd32.dll
[2013/09/19 10:25:26 | 000,142,848 | ---- | C] () -- C:\Windows\SysWow64\igdail32.dll
[2013/09/19 10:22:50 | 000,204,952 | ---- | C] () -- C:\Windows\SysWow64\ativvsvl.dat
[2013/09/19 10:22:50 | 000,157,144 | ---- | C] () -- C:\Windows\SysWow64\ativvsva.dat
[2013/09/19 10:22:50 | 000,003,917 | ---- | C] () -- C:\Windows\SysWow64\atipblag.dat
[2013/09/19 10:22:37 | 000,798,734 | ---- | C] () -- C:\Windows\SysWow64\amdocl_ld32.exe
[2013/09/19 10:22:36 | 000,995,342 | ---- | C] () -- C:\Windows\SysWow64\amdocl_as32.exe
========== ZeroAccess Check ==========
[2014/08/29 14:21:38 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini
[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64
[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
"" = C:\Windows\SysNative\shell32.dll -- [2015/02/17 07:54:17 | 019,777,536 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2015/02/17 06:13:06 | 017,561,600 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\fastprox.dll -- [2012/07/26 04:05:38 | 001,004,544 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2012/07/26 04:18:27 | 000,784,896 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\wbemess.dll -- [2012/07/26 04:07:41 | 000,455,680 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
========== LOP Check ==========
[2013/09/19 12:04:31 | 000,000,000 | ---D | M] -- C:\Users\mluptak\AppData\Roaming\Synaptics
[2013/09/19 11:35:06 | 000,000,000 | ---D | M] -- C:\Users\Spravce\AppData\Roaming\LibreOffice
[2013/09/19 11:16:03 | 000,000,000 | ---D | M] -- C:\Users\Spravce\AppData\Roaming\Synaptics
[2014/02/23 10:07:10 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Apowersoft
[2013/12/23 18:11:32 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Canneverbe Limited
[2013/10/03 10:52:41 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\DAEMON Tools Lite
[2014/09/02 23:20:49 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\FlowStone
[2014/02/13 14:04:48 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\GHISLER
[2015/02/01 02:01:42 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\IDT
[2014/09/02 23:27:37 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Image-Line
[2013/12/20 14:33:56 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\ImgBurn
[2014/08/11 13:15:48 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\LibreOffice
[2015/03/15 23:55:16 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Seznam.cz
[2014/09/02 23:27:42 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\SongManager
[2013/09/20 10:45:35 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Synaptics
[2013/11/07 10:37:53 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\The Creative Assembly
[2013/12/23 18:07:56 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Triton Interactive
[2015/03/06 17:54:54 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\TS3Client
========== Purity Check ==========
========== Custom Scans ==========
< >
[2012/07/26 08:22:10 | 000,000,006 | -H-- | C] () -- C:\Windows\Tasks\SA.DAT
[2013/09/19 10:23:08 | 000,000,960 | ---- | C] () -- C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
[2013/09/19 10:23:10 | 000,000,964 | ---- | C] () -- C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
[2014/06/10 15:40:49 | 000,000,914 | ---- | C] () -- C:\Windows\Tasks\Adobe Flash Player Updater.job
[2015/03/15 23:50:33 | 000,002,122 | ---- | C] () -- C:\Windows\Tasks\2300726e-d013-4e97-93b8-82cdb2191e24-10_user.job
[2015/03/15 23:50:38 | 000,004,504 | ---- | C] () -- C:\Windows\Tasks\2300726e-d013-4e97-93b8-82cdb2191e24-3.job
[2015/03/15 23:50:40 | 000,000,956 | ---- | C] () -- C:\Windows\Tasks\globalUpdateUpdateTaskMachineCore.job
[2015/03/15 23:50:46 | 000,000,960 | ---- | C] () -- C:\Windows\Tasks\globalUpdateUpdateTaskMachineUA.job
[2015/03/15 23:51:00 | 000,001,360 | ---- | C] () -- C:\Windows\Tasks\FHIGIC.job
[2015/03/15 23:51:03 | 000,005,528 | ---- | C] () -- C:\Windows\Tasks\2300726e-d013-4e97-93b8-82cdb2191e24-7.job
[2015/03/15 23:51:06 | 000,005,528 | ---- | C] () -- C:\Windows\Tasks\2300726e-d013-4e97-93b8-82cdb2191e24-6.job
[2015/03/15 23:51:26 | 000,004,168 | ---- | C] () -- C:\Windows\Tasks\2300726e-d013-4e97-93b8-82cdb2191e24-4.job
[2015/03/15 23:51:36 | 000,001,354 | ---- | C] () -- C:\Windows\Tasks\OEM.job
[2015/03/15 23:51:38 | 000,003,484 | ---- | C] () -- C:\Windows\Tasks\2300726e-d013-4e97-93b8-82cdb2191e24-1-7.job
[2015/03/15 23:51:40 | 000,003,148 | ---- | C] () -- C:\Windows\Tasks\2300726e-d013-4e97-93b8-82cdb2191e24-1-6.job
[2015/03/15 23:51:53 | 000,002,456 | ---- | C] () -- C:\Windows\Tasks\2300726e-d013-4e97-93b8-82cdb2191e24-5.job
[2015/03/15 23:51:54 | 000,002,456 | ---- | C] () -- C:\Windows\Tasks\2300726e-d013-4e97-93b8-82cdb2191e24-5_user.job
[2015/03/15 23:53:07 | 000,002,130 | ---- | C] () -- C:\Windows\Tasks\4b477374-5432-4754-a01d-62e796a778d3-10_user.job
[2015/03/15 23:53:09 | 000,005,200 | ---- | C] () -- C:\Windows\Tasks\4b477374-5432-4754-a01d-62e796a778d3-7.job
[2015/03/15 23:53:11 | 000,005,536 | ---- | C] () -- C:\Windows\Tasks\4b477374-5432-4754-a01d-62e796a778d3-6.job
[2015/03/15 23:53:21 | 000,004,176 | ---- | C] () -- C:\Windows\Tasks\4b477374-5432-4754-a01d-62e796a778d3-4.job
[2015/03/15 23:53:30 | 000,003,492 | ---- | C] () -- C:\Windows\Tasks\4b477374-5432-4754-a01d-62e796a778d3-1-7.job
[2015/03/15 23:53:35 | 000,003,156 | ---- | C] () -- C:\Windows\Tasks\4b477374-5432-4754-a01d-62e796a778d3-1-6.job
[2015/03/15 23:53:47 | 000,002,464 | ---- | C] () -- C:\Windows\Tasks\4b477374-5432-4754-a01d-62e796a778d3-5.job
[2015/03/15 23:53:49 | 000,002,464 | ---- | C] () -- C:\Windows\Tasks\4b477374-5432-4754-a01d-62e796a778d3-5_user.job
< >
< MD5 for: ATAPI.SYS >
[2012/07/26 06:00:48 | 000,025,840 | ---- | M] (Microsoft Corporation) MD5=A721FF570C2387E383BDDEA9632863C9 -- C:\Windows\SysNative\drivers\atapi.sys
[2012/07/26 06:00:48 | 000,025,840 | ---- | M] (Microsoft Corporation) MD5=A721FF570C2387E383BDDEA9632863C9 -- C:\Windows\SysNative\DriverStore\FileRepository\mshdc.inf_amd64_69660e2be041f47b\atapi.sys
[2012/07/26 06:00:48 | 000,025,840 | ---- | M] (Microsoft Corporation) MD5=A721FF570C2387E383BDDEA9632863C9 -- C:\Windows\SysNative\DriverStore\FileRepository\mshdc.inf_amd64_b733d17ea1e7f604\atapi.sys
[2012/07/26 06:00:48 | 000,025,840 | ---- | M] (Microsoft Corporation) MD5=A721FF570C2387E383BDDEA9632863C9 -- C:\Windows\WinSxS\amd64_mshdc.inf_31bf3856ad364e35_6.2.9200.16384_none_3601cf7eab4e0493\atapi.sys
[2012/07/26 06:00:48 | 000,025,840 | ---- | M] (Microsoft Corporation) MD5=A721FF570C2387E383BDDEA9632863C9 -- C:\Windows\WinSxS\amd64_mshdc.inf_31bf3856ad364e35_6.2.9200.16548_none_36311422ab29f479\atapi.sys
[2012/07/26 06:00:48 | 000,025,840 | ---- | M] (Microsoft Corporation) MD5=A721FF570C2387E383BDDEA9632863C9 -- C:\Windows\WinSxS\amd64_mshdc.inf_31bf3856ad364e35_6.2.9200.20652_none_36a9df45c455182a\atapi.sys
< MD5 for: AUTOCHK.EXE >
[2013/05/15 03:34:57 | 000,793,088 | ---- | M] (Microsoft Corporation) MD5=0695081E4C1F80D432B3CB7E960501A2 -- C:\Windows\WinSxS\x86_microsoft-windows-autochk_31bf3856ad364e35_6.2.9200.20717_none_df774bf9ac0a075d\autochk.exe
[2012/07/26 04:08:17 | 000,887,296 | ---- | M] (Microsoft Corporation) MD5=490B7921C6DC58022FAA908E6310CF24 -- C:\Windows\WinSxS\amd64_microsoft-windows-autochk_31bf3856ad364e35_6.2.9200.16384_none_3abd94ae4b8558e6\autochk.exe
[2012/07/26 04:20:43 | 000,792,064 | ---- | M] (Microsoft Corporation) MD5=55653D86D712641DB6930FAB64F452FF -- C:\Windows\WinSxS\x86_microsoft-windows-autochk_31bf3856ad364e35_6.2.9200.16384_none_de9ef92a9327e7b0\autochk.exe
[2013/05/15 03:24:10 | 000,793,088 | ---- | M] (Microsoft Corporation) MD5=61ADD65C9D1E2EAF8BB080A4D6AAB055 -- C:\Windows\SysWOW64\autochk.exe
[2013/05/15 03:24:10 | 000,793,088 | ---- | M] (Microsoft Corporation) MD5=61ADD65C9D1E2EAF8BB080A4D6AAB055 -- C:\Windows\WinSxS\x86_microsoft-windows-autochk_31bf3856ad364e35_6.2.9200.16612_none_dee8adbc92f0e8e0\autochk.exe
[2013/05/15 05:54:49 | 000,888,320 | ---- | M] (Microsoft Corporation) MD5=DC4F7FB24643A04ECA6FEDF9F5DE2877 -- C:\Windows\WinSxS\amd64_microsoft-windows-autochk_31bf3856ad364e35_6.2.9200.20717_none_3b95e77d64677893\autochk.exe
[2013/05/15 03:25:59 | 000,888,320 | ---- | M] (Microsoft Corporation) MD5=E47235E8DF26CA48DA189ACFD756329C -- C:\Windows\SysNative\autochk.exe
[2013/05/15 03:25:59 | 000,888,320 | ---- | M] (Microsoft Corporation) MD5=E47235E8DF26CA48DA189ACFD756329C -- C:\Windows\WinSxS\amd64_microsoft-windows-autochk_31bf3856ad364e35_6.2.9200.16612_none_3b0749404b4e5a16\autochk.exe
< MD5 for: CDROM.SYS >
[2012/07/26 03:26:36 | 000,174,080 | ---- | M] (Microsoft Corporation) MD5=339BFF85D788268752DA8C9644B188EE -- C:\Windows\SysNative\drivers\cdrom.sys
[2012/07/26 03:26:36 | 000,174,080 | ---- | M] (Microsoft Corporation) MD5=339BFF85D788268752DA8C9644B188EE -- C:\Windows\SysNative\DriverStore\FileRepository\cdrom.inf_amd64_cf04adb457be1724\cdrom.sys
[2012/07/26 03:26:36 | 000,174,080 | ---- | M] (Microsoft Corporation) MD5=339BFF85D788268752DA8C9644B188EE -- C:\Windows\WinSxS\amd64_cdrom.inf_31bf3856ad364e35_6.2.9200.16384_none_b87303472d8ba041\cdrom.sys
< MD5 for: EXPLORER.EXE >
[2012/10/11 06:53:24 | 002,115,952 | ---- | M] (Microsoft Corporation) MD5=0AD19A3CA61271BA872AD90771BA47DC -- C:\Windows\WinSxS\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.2.9200.20534_none_b592a71650d677ed\explorer.exe
[2012/10/11 09:09:58 | 002,380,944 | ---- | M] (Microsoft Corporation) MD5=0DDFEAA2AA18D4295EF220EB666B2312 -- C:\Windows\WinSxS\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.2.9200.20534_none_ab3dfcc41c75b5f2\explorer.exe
[2013/06/01 12:34:21 | 002,391,280 | ---- | M] (Microsoft Corporation) MD5=0E8E6463F81C80AFBED533E0F1F8895D -- C:\Windows\explorer.exe
[2013/06/01 12:34:21 | 002,391,280 | ---- | M] (Microsoft Corporation) MD5=0E8E6463F81C80AFBED533E0F1F8895D -- C:\Windows\WinSxS\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.2.9200.16628_none_aac334d9034c59e1\explorer.exe
[2013/06/01 11:17:57 | 002,116,520 | ---- | M] (Microsoft Corporation) MD5=15C505AD0118275E7363A539009EF3AF -- C:\Windows\WinSxS\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.2.9200.20733_none_b591aa9850d758e4\explorer.exe
[2012/07/26 04:50:01 | 002,114,936 | ---- | M] (Microsoft Corporation) MD5=5B6ED1B57DBFF18D405A0260559B571E -- C:\Windows\WinSxS\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.2.9200.16384_none_b4d2f8c937e166b1\explorer.exe
[2012/07/26 05:49:13 | 002,380,440 | ---- | M] (Microsoft Corporation) MD5=928791755FDDEA721B053535EF84FA17 -- C:\Windows\WinSxS\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.2.9200.16384_none_aa7e4e770380a4b6\explorer.exe
[2012/10/11 06:56:41 | 002,115,952 | ---- | M] (Microsoft Corporation) MD5=953ADECFF08202A01EFC6110214FDE02 -- C:\Windows\WinSxS\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.2.9200.16433_none_b5080a0137b9becc\explorer.exe
[2013/06/01 13:41:08 | 002,380,968 | ---- | M] (Microsoft Corporation) MD5=D1FF6792A3B0FBD2F2F17DC936AF6177 -- C:\Windows\WinSxS\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.2.9200.20733_none_ab3d00461c7696e9\explorer.exe
[2012/10/11 08:35:16 | 002,380,944 | ---- | M] (Microsoft Corporation) MD5=E13A31D5254C25406A7946BDD9B06364 -- C:\Windows\WinSxS\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.2.9200.16433_none_aab35faf0358fcd1\explorer.exe
[2013/06/01 11:24:46 | 002,106,176 | ---- | M] (Microsoft Corporation) MD5=EAFE46B0292D2BD2467835E2ACF717CC -- C:\Windows\SysWOW64\explorer.exe
[2013/06/01 11:24:46 | 002,106,176 | ---- | M] (Microsoft Corporation) MD5=EAFE46B0292D2BD2467835E2ACF717CC -- C:\Windows\WinSxS\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.2.9200.16628_none_b517df2b37ad1bdc\explorer.exe
< MD5 for: HAL.DLL >
[2012/07/26 06:26:45 | 000,395,504 | ---- | M] (Microsoft Corporation) MD5=05CB11FF0DF114E05879CC0A3157004C -- C:\Windows\WinSxS\amd64_microsoft-windows-hal_31bf3856ad364e35_6.2.9200.16384_none_03f29a08e36e6d4c\hal.dll
[2012/09/20 09:31:25 | 000,396,008 | ---- | M] (Microsoft Corporation) MD5=20859459119C1EDA9CEBA6E4C8CF7405 -- C:\Windows\WinSxS\amd64_microsoft-windows-hal_31bf3856ad364e35_6.2.9200.16420_none_042f7a4ee3415d71\hal.dll
[2012/09/20 09:41:14 | 000,396,008 | ---- | M] (Microsoft Corporation) MD5=6216CC1A936D91306F1BD677FBE90615 -- C:\Windows\WinSxS\amd64_microsoft-windows-hal_31bf3856ad364e35_6.2.9200.20521_none_04ba1763fc5e1692\hal.dll
[2012/10/24 06:18:13 | 000,396,008 | ---- | M] (Microsoft Corporation) MD5=ECBF30A9D0201FD0CC55087234C83545 -- C:\Windows\WinSxS\amd64_microsoft-windows-hal_31bf3856ad364e35_6.2.9200.20544_none_04a77869fc6b9a79\hal.dll
[2012/10/24 05:54:04 | 000,396,008 | ---- | M] (Microsoft Corporation) MD5=F021625F422966AD31F95CC494F7D188 -- C:\Windows\SysNative\hal.dll
[2012/10/24 05:54:04 | 000,396,008 | ---- | M] (Microsoft Corporation) MD5=F021625F422966AD31F95CC494F7D188 -- C:\Windows\WinSxS\amd64_microsoft-windows-hal_31bf3856ad364e35_6.2.9200.16442_none_041bdb0ae34fc801\hal.dll
< MD5 for: SCECLI.DLL >
[2012/07/26 04:07:07 | 000,224,768 | ---- | M] (Microsoft Corporation) MD5=4F6E1CA672370A9BCAC049CE3AB7F666 -- C:\Windows\SysNative\scecli.dll
[2012/07/26 04:07:07 | 000,224,768 | ---- | M] (Microsoft Corporation) MD5=4F6E1CA672370A9BCAC049CE3AB7F666 -- C:\Windows\WinSxS\amd64_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.2.9200.16384_none_90d789c062dfa509\scecli.dll
[2012/07/26 04:19:52 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=B95DC83FF580DD92F487C2F4D0854B6A -- C:\Windows\SysWOW64\scecli.dll
[2012/07/26 04:19:52 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=B95DC83FF580DD92F487C2F4D0854B6A -- C:\Windows\WinSxS\wow64_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.2.9200.16384_none_9b2c341297406704\scecli.dll
< MD5 for: SERVICES.EXE >
[2014/11/01 05:25:49 | 000,411,136 | ---- | M] (Microsoft Corporation) MD5=04EEF9EB87A9F2D8D038CDA1F3359138 -- C:\Windows\WinSxS\amd64_microsoft-windows-s..cecontroller-minwin_31bf3856ad364e35_6.2.9200.21283_none_986aeec09f861b32\services.exe
[2012/09/20 07:33:11 | 000,410,624 | ---- | M] (Microsoft Corporation) MD5=581190907DA1CF8CB7B87B35FFE64A07 -- C:\Windows\WinSxS\amd64_microsoft-windows-s..cecontroller-minwin_31bf3856ad364e35_6.2.9200.20521_none_98a9ea2e9f571eb2\services.exe
[2012/07/26 06:26:45 | 000,410,624 | ---- | M] (Microsoft Corporation) MD5=754A2CC1F32107EA87CBD305ABE3E618 -- C:\Windows\WinSxS\amd64_microsoft-windows-s..cecontroller-minwin_31bf3856ad364e35_6.2.9200.16384_none_97e26cd38667756c\services.exe
[2012/09/20 07:33:46 | 000,410,624 | ---- | M] (Microsoft Corporation) MD5=8F226143046435C75C033B0C52E90FFE -- C:\Windows\WinSxS\amd64_microsoft-windows-s..cecontroller-minwin_31bf3856ad364e35_6.2.9200.16420_none_981f4d19863a6591\services.exe
[2014/11/01 07:28:50 | 000,417,280 | ---- | M] (Microsoft Corporation) MD5=B6AEF1771CCA54B67DA4932753F74124 -- C:\Windows\SysNative\services.exe
[2014/11/01 07:28:50 | 000,417,280 | ---- | M] (Microsoft Corporation) MD5=B6AEF1771CCA54B67DA4932753F74124 -- C:\Windows\WinSxS\amd64_microsoft-windows-s..cecontroller-minwin_31bf3856ad364e35_6.2.9200.17166_none_97f9f2ab86558f8b\services.exe
< MD5 for: SVCHOST.EXE >
[2012/07/26 04:20:58 | 000,023,040 | ---- | M] (Microsoft Corporation) MD5=0A175AF8B65797BD22C11903A8BFEB2D -- C:\Windows\WinSxS\x86_microsoft-windows-services-svchost_31bf3856ad364e35_6.2.9200.16384_none_b2666581d6b482a6\svchost.exe
[2012/07/26 04:08:47 | 000,030,208 | ---- | M] (Microsoft Corporation) MD5=57350BEDE3834915B6145B67C71C7BDA -- C:\Windows\WinSxS\amd64_microsoft-windows-services-svchost_31bf3856ad364e35_6.2.9200.16384_none_0e8501058f11f3dc\svchost.exe
[2012/09/20 07:33:14 | 000,029,696 | ---- | M] (Microsoft Corporation) MD5=607F7CB143783A8F9BA058D2FC4F2D36 -- C:\Windows\WinSxS\amd64_microsoft-windows-services-svchost_31bf3856ad364e35_6.2.9200.20521_none_0f4c7e60a8019d22\svchost.exe
[2012/09/20 06:55:26 | 000,023,040 | ---- | M] (Microsoft Corporation) MD5=A46DC432F81473F526E3994AA483E366 -- C:\Windows\SysWOW64\svchost.exe
[2012/09/20 06:55:26 | 000,023,040 | ---- | M] (Microsoft Corporation) MD5=A46DC432F81473F526E3994AA483E366 -- C:\Windows\WinSxS\x86_microsoft-windows-services-svchost_31bf3856ad364e35_6.2.9200.16420_none_b2a345c7d68772cb\svchost.exe
[2012/09/20 07:33:52 | 000,029,696 | ---- | M] (Microsoft Corporation) MD5=EDE27EACE742EE2888C5DD36400A2EC0 -- C:\Windows\SysNative\svchost.exe
[2012/09/20 07:33:52 | 000,029,696 | ---- | M] (Microsoft Corporation) MD5=EDE27EACE742EE2888C5DD36400A2EC0 -- C:\Windows\WinSxS\amd64_microsoft-windows-services-svchost_31bf3856ad364e35_6.2.9200.16420_none_0ec1e14b8ee4e401\svchost.exe
[2012/09/20 06:56:27 | 000,023,040 | ---- | M] (Microsoft Corporation) MD5=EEF5E64822C3E21B186EA53463BE92DA -- C:\Windows\WinSxS\x86_microsoft-windows-services-svchost_31bf3856ad364e35_6.2.9200.20521_none_b32de2dcefa42bec\svchost.exe
< MD5 for: TCPIP.SYS >
[2014/01/27 06:37:35 | 002,228,568 | ---- | M] (Microsoft Corporation) MD5=088252DA8AFDCD919C5835E12795EE3A -- C:\Windows\WinSxS\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.2.9200.20927_none_0cb540660914acd9\tcpip.sys
[2013/06/01 12:33:13 | 002,233,600 | ---- | M] (Microsoft Corporation) MD5=0D05E0147C1329C53AAF97882DEDD96A -- C:\Windows\WinSxS\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.2.9200.16628_none_0c2ca018eff62c18\tcpip.sys
[2012/09/20 07:41:49 | 002,225,896 | ---- | M] (Microsoft Corporation) MD5=165DDAA5A399C51FE9D6C056D3B9F4EB -- C:\Windows\WinSxS\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.2.9200.20521_none_0caf3712091a2033\tcpip.sys
[2012/09/20 09:04:35 | 002,225,896 | ---- | M] (Microsoft Corporation) MD5=1D644E2D0FC395A055AB1C23C3B43631 -- C:\Windows\WinSxS\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.2.9200.16420_none_0c2499fceffd6712\tcpip.sys
[2014/09/13 07:24:47 | 002,233,152 | ---- | M] (Microsoft Corporation) MD5=2AE9136724568DB4F08BC04F131CFC54 -- C:\Windows\SysNative\drivers\tcpip.sys
[2014/09/13 07:24:47 | 002,233,152 | ---- | M] (Microsoft Corporation) MD5=2AE9136724568DB4F08BC04F131CFC54 -- C:\Windows\WinSxS\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.2.9200.17121_none_0c257dcceffca295\tcpip.sys
[2014/09/13 19:36:39 | 002,231,616 | ---- | M] (Microsoft Corporation) MD5=362EAD73FF5BC7B6432F5D1CAB9D6AA7 -- C:\Windows\WinSxS\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.2.9200.21237_none_0caa4c68091cf65a\tcpip.sys
[2013/08/01 11:41:31 | 002,233,688 | ---- | M] (Microsoft Corporation) MD5=37D85E873C9531A2F88DD9C63D3F8A9E -- C:\Windows\WinSxS\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.2.9200.16679_none_0bf790c6f01dd124\tcpip.sys
[2013/06/01 12:38:57 | 002,227,456 | ---- | M] (Microsoft Corporation) MD5=396E3A3442AE13820E5221F67D0071DA -- C:\Windows\WinSxS\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.2.9200.20733_none_0ca66b8609206920\tcpip.sys
[2013/02/02 10:03:26 | 002,226,408 | ---- | M] (Microsoft Corporation) MD5=9B09D075FEC02026A6AD6D78B2CCD67F -- C:\Windows\WinSxS\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.2.9200.20623_none_0cb1398c09185008\tcpip.sys
[2012/07/26 06:26:47 | 002,224,880 | ---- | M] (Microsoft Corporation) MD5=AF6A8D27FCABFF85DDC1D4599582B4FE -- C:\Windows\WinSxS\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.2.9200.16384_none_0be7b9b6f02a76ed\tcpip.sys
[2014/01/27 04:42:58 | 002,232,664 | ---- | M] (Microsoft Corporation) MD5=B23882881EFD9404B62993906BC38709 -- C:\Windows\WinSxS\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.2.9200.16808_none_0c4243bcefe5ee84\tcpip.sys
[2013/03/02 10:59:37 | 002,231,528 | ---- | M] (Microsoft Corporation) MD5=B6D52E2C38B49A156E58FF5B9C6CA8BE -- C:\Windows\WinSxS\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.2.9200.16548_none_0c16fe5af00666d3\tcpip.sys
[2013/08/01 14:06:53 | 002,228,568 | ---- | M] (Microsoft Corporation) MD5=DC884CC10A0E55414C8B617C8481E413 -- C:\Windows\WinSxS\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.2.9200.20787_none_0c745d1209455a31\tcpip.sys
[2013/03/02 11:20:07 | 002,225,896 | ---- | M] (Microsoft Corporation) MD5=DD6E5A51D93596DF7EA5F956FDE3306D -- C:\Windows\WinSxS\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.2.9200.20652_none_0c8fc97e09318a84\tcpip.sys
[2013/02/02 11:28:54 | 002,226,408 | ---- | M] (Microsoft Corporation) MD5=F4F78B7F39BD56BD0BFE4C4399398F6F -- C:\Windows\WinSxS\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.2.9200.16518_none_0c376e1eefee1300\tcpip.sys
< MD5 for: USERINIT.EXE >
[2012/07/26 04:08:49 | 000,025,088 | ---- | M] (Microsoft Corporation) MD5=0E925F7BA032920D58DD284B6181A247 -- C:\Windows\SysNative\userinit.exe
[2012/07/26 04:08:49 | 000,025,088 | ---- | M] (Microsoft Corporation) MD5=0E925F7BA032920D58DD284B6181A247 -- C:\Windows\WinSxS\amd64_microsoft-windows-userinit_31bf3856ad364e35_6.2.9200.16384_none_34f2617a5b742e02\userinit.exe
[2012/07/26 04:21:00 | 000,021,504 | ---- | M] (Microsoft Corporation) MD5=9F6289D194A04A09671FEED4B6CB6EF7 -- C:\Windows\SysWOW64\userinit.exe
[2012/07/26 04:21:00 | 000,021,504 | ---- | M] (Microsoft Corporation) MD5=9F6289D194A04A09671FEED4B6CB6EF7 -- C:\Windows\WinSxS\x86_microsoft-windows-userinit_31bf3856ad364e35_6.2.9200.16384_none_d8d3c5f6a316bccc\userinit.exe
< MD5 for: WINLOGON.EXE >
[2012/09/20 07:33:55 | 000,516,608 | ---- | M] (Microsoft Corporation) MD5=1F84B5F8DBDFFD36DF143C61CE25F12A -- C:\Windows\WinSxS\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.2.9200.16420_none_c8c988c15e88a211\winlogon.exe
[2012/09/20 07:33:17 | 000,516,608 | ---- | M] (Microsoft Corporation) MD5=6522E98C94A2A81AE11EB66D2AF5743A -- C:\Windows\WinSxS\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.2.9200.20521_none_c95425d677a55b32\winlogon.exe
[2014/04/12 08:52:06 | 000,578,048 | ---- | M] (Microsoft Corporation) MD5=69ED828D121EA8FD0D84184DB60E2B06 -- C:\Windows\WinSxS\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.2.9200.21012_none_c95fd5c6779c8076\winlogon.exe
[2014/04/12 08:52:06 | 000,578,048 | ---- | M] (Microsoft Corporation) MD5=69ED828D121EA8FD0D84184DB60E2B06 -- C:\Windows\WinSxS\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.2.9200.21133_none_c94b381e77abced6\winlogon.exe
[2014/04/12 08:52:06 | 000,578,048 | ---- | M] (Microsoft Corporation) MD5=69ED828D121EA8FD0D84184DB60E2B06 -- C:\Windows\WinSxS\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.2.9200.21243_none_c9406a1877b3e7ee\winlogon.exe
[2014/04/12 08:52:06 | 000,578,048 | ---- | M] (Microsoft Corporation) MD5=69ED828D121EA8FD0D84184DB60E2B06 -- C:\Windows\WinSxS\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.2.9200.21269_none_c930cbfc77beb7da\winlogon.exe
[2014/04/12 08:52:06 | 000,578,048 | ---- | M] (Microsoft Corporation) MD5=69ED828D121EA8FD0D84184DB60E2B06 -- C:\Windows\WinSxS\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.2.9200.21290_none_c907599e77df279e\winlogon.exe
[2014/04/12 08:52:06 | 000,578,048 | ---- | M] (Microsoft Corporation) MD5=69ED828D121EA8FD0D84184DB60E2B06 -- C:\Windows\WinSxS\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.2.9200.21335_none_c94d3c7e77a9fbd2\winlogon.exe
[2014/04/12 08:52:06 | 000,578,048 | ---- | M] (Microsoft Corporation) MD5=69ED828D121EA8FD0D84184DB60E2B06 -- C:\Windows\WinSxS\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.2.9200.21349_none_c9466dba77ae7d1f\winlogon.exe
[2014/04/12 08:52:06 | 000,578,048 | ---- | M] (Microsoft Corporation) MD5=69ED828D121EA8FD0D84184DB60E2B06 -- C:\Windows\WinSxS\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.2.9200.21370_none_c91cfb5c77ceece3\winlogon.exe
[2014/04/12 08:52:06 | 000,578,048 | ---- | M] (Microsoft Corporation) MD5=69ED828D121EA8FD0D84184DB60E2B06 -- C:\Windows\WinSxS\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.2.9200.21410_none_c95ddcca779e4264\winlogon.exe
[2014/04/12 10:10:31 | 000,578,048 | ---- | M] (Microsoft Corporation) MD5=75DD70A14145499C9F7D903CF9A8C91B -- C:\Windows\SysNative\winlogon.exe
[2014/04/12 10:10:31 | 000,578,048 | ---- | M] (Microsoft Corporation) MD5=75DD70A14145499C9F7D903CF9A8C91B -- C:\Windows\WinSxS\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.2.9200.16891_none_c87ee12f5ec0739b\winlogon.exe
[2014/04/12 10:10:31 | 000,578,048 | ---- | M] (Microsoft Corporation) MD5=75DD70A14145499C9F7D903CF9A8C91B -- C:\Windows\WinSxS\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.2.9200.17014_none_c8d83b755e7d1081\winlogon.exe
[2014/04/12 10:10:31 | 000,578,048 | ---- | M] (Microsoft Corporation) MD5=75DD70A14145499C9F7D903CF9A8C91B -- C:\Windows\WinSxS\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.2.9200.17127_none_c8d06e4d5e82759e\winlogon.exe
[2014/04/12 10:10:31 | 000,578,048 | ---- | M] (Microsoft Corporation) MD5=75DD70A14145499C9F7D903CF9A8C91B -- C:\Windows\WinSxS\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.2.9200.17150_none_c8a8fc835ea11810\winlogon.exe
[2014/04/12 10:10:31 | 000,578,048 | ---- | M] (Microsoft Corporation) MD5=75DD70A14145499C9F7D903CF9A8C91B -- C:\Windows\WinSxS\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.2.9200.17172_none_c8955d3f5eaf82a0\winlogon.exe
[2014/04/12 10:10:31 | 000,578,048 | ---- | M] (Microsoft Corporation) MD5=75DD70A14145499C9F7D903CF9A8C91B -- C:\Windows\WinSxS\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.2.9200.17218_none_c8dc40695e79702b\winlogon.exe
[2014/04/12 10:10:31 | 000,578,048 | ---- | M] (Microsoft Corporation) MD5=75DD70A14145499C9F7D903CF9A8C91B -- C:\Windows\WinSxS\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.2.9200.17231_none_c8bf9e8b5e8ff6ac\winlogon.exe
[2014/04/12 10:10:31 | 000,578,048 | ---- | M] (Microsoft Corporation) MD5=75DD70A14145499C9F7D903CF9A8C91B -- C:\Windows\WinSxS\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.2.9200.17251_none_c8a9feb35ea02e8e\winlogon.exe
[2014/04/12 10:10:31 | 000,578,048 | ---- | M] (Microsoft Corporation) MD5=75DD70A14145499C9F7D903CF9A8C91B -- C:\Windows\WinSxS\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.2.9200.17293_none_c880bf975ebed100\winlogon.exe
[2012/07/26 04:08:50 | 000,516,608 | ---- | M] (Microsoft Corporation) MD5=93AB226C07A9789B2EC7B41F73602F76 -- C:\Windows\WinSxS\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.2.9200.16384_none_c88ca87b5eb5b1ec\winlogon.exe
[2012/10/11 06:46:58 | 000,517,120 | ---- | M] (Microsoft Corporation) MD5=BCF2036A0DD579E47C008C133550283E -- C:\Windows\WinSxS\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.2.9200.16433_none_c8c1b9b35e8e0a07\winlogon.exe
[2012/10/11 06:45:27 | 000,517,120 | ---- | M] (Microsoft Corporation) MD5=CBFD56B4EC07CB056A6ABD55DD33671F -- C:\Windows\WinSxS\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.2.9200.20534_none_c94c56c877aac328\winlogon.exe
< >
< %systemroot%*.* /U /s >
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
[2 C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp files -> C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp -> ]
[20 C:\Windows\Temp\*.tmp files -> C:\Windows\Temp\*.tmp -> ]
< %SYSTEMDRIVE%\*.exe >
< %ALLUSERSPROFILE%\Application Data\*. >
< %ALLUSERSPROFILE%\Application Data\*.exe /s >
< %APPDATA%\*. >
[2013/10/03 11:20:49 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Adobe
[2014/02/23 10:07:10 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Apowersoft
[2013/12/23 18:11:32 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Canneverbe Limited
[2013/10/03 10:52:41 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\DAEMON Tools Lite
[2014/09/02 23:20:49 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\FlowStone
[2014/02/13 14:04:48 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\GHISLER
[2015/02/01 02:01:42 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\IDT
[2014/09/02 23:27:37 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Image-Line
[2013/12/20 14:33:56 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\ImgBurn
[2014/08/11 13:15:48 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\LibreOffice
[2013/09/19 10:25:37 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Macromedia
[2014/02/21 12:10:05 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Media Player Classic
[2015/03/15 23:51:42 | 000,000,000 | --SD | M] -- C:\Users\Uzivatel\AppData\Roaming\Microsoft
[2013/09/25 06:39:24 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Mozilla
[2015/03/15 23:55:16 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Seznam.cz
[2015/03/08 23:28:37 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Skype
[2014/09/02 23:27:42 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\SongManager
[2013/09/20 10:45:35 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Synaptics
[2013/11/07 10:37:53 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\The Creative Assembly
[2013/12/23 18:07:56 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Triton Interactive
[2015/03/06 17:54:54 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\TS3Client
[2015/03/11 15:20:10 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\vlc
< %APPDATA%\*.exe /s >
[2015/03/15 23:50:59 | 001,854,464 | ---- | M] (Cinema PlusV05.03) -- C:\Users\Uzivatel\AppData\Roaming\FHIGIC.exe
[2015/03/15 23:51:35 | 001,371,136 | ---- | M] (Cinema PlusV05.03) -- C:\Users\Uzivatel\AppData\Roaming\OEM.exe
[2013/09/19 10:25:30 | 000,054,632 | ---- | M] (Adobe Systems Inc.) -- C:\Users\Uzivatel\AppData\Roaming\Macromedia\Flash Player\www.macromedia.com\bin\airappinstaller\airappinstaller.exe
< %systemroot%\*. /mp /s >
< %systemroot%\system32\*.dll /lockedfiles >
< %systemroot%\Tasks\*.job >
[2015/03/15 23:51:41 | 000,003,148 | ---- | M] () -- C:\Windows\Tasks\2300726e-d013-4e97-93b8-82cdb2191e24-1-6.job
[2015/03/15 23:51:39 | 000,003,484 | ---- | M] () -- C:\Windows\Tasks\2300726e-d013-4e97-93b8-82cdb2191e24-1-7.job
[2015/03/15 23:50:37 | 000,002,122 | ---- | M] () -- C:\Windows\Tasks\2300726e-d013-4e97-93b8-82cdb2191e24-10_user.job
[2015/03/15 23:50:43 | 000,004,504 | ---- | M] () -- C:\Windows\Tasks\2300726e-d013-4e97-93b8-82cdb2191e24-3.job
[2015/03/15 23:51:27 | 000,004,168 | ---- | M] () -- C:\Windows\Tasks\2300726e-d013-4e97-93b8-82cdb2191e24-4.job
[2015/03/15 23:51:53 | 000,002,456 | ---- | M] () -- C:\Windows\Tasks\2300726e-d013-4e97-93b8-82cdb2191e24-5.job
[2015/03/15 23:51:55 | 000,002,456 | ---- | M] () -- C:\Windows\Tasks\2300726e-d013-4e97-93b8-82cdb2191e24-5_user.job
[2015/03/15 23:51:08 | 000,005,528 | ---- | M] () -- C:\Windows\Tasks\2300726e-d013-4e97-93b8-82cdb2191e24-6.job
[2015/03/15 23:51:06 | 000,005,528 | ---- | M] () -- C:\Windows\Tasks\2300726e-d013-4e97-93b8-82cdb2191e24-7.job
[2015/03/15 23:53:36 | 000,003,156 | ---- | M] () -- C:\Windows\Tasks\4b477374-5432-4754-a01d-62e796a778d3-1-6.job
[2015/03/15 23:53:34 | 000,003,492 | ---- | M] () -- C:\Windows\Tasks\4b477374-5432-4754-a01d-62e796a778d3-1-7.job
[2015/03/15 23:53:08 | 000,002,130 | ---- | M] () -- C:\Windows\Tasks\4b477374-5432-4754-a01d-62e796a778d3-10_user.job
[2015/03/15 23:53:22 | 000,004,176 | ---- | M] () -- C:\Windows\Tasks\4b477374-5432-4754-a01d-62e796a778d3-4.job
[2015/03/15 23:53:48 | 000,002,464 | ---- | M] () -- C:\Windows\Tasks\4b477374-5432-4754-a01d-62e796a778d3-5.job
[2015/03/15 23:53:50 | 000,002,464 | ---- | M] () -- C:\Windows\Tasks\4b477374-5432-4754-a01d-62e796a778d3-5_user.job
[2015/03/15 23:53:12 | 000,005,536 | ---- | M] () -- C:\Windows\Tasks\4b477374-5432-4754-a01d-62e796a778d3-6.job
[2015/03/15 23:53:10 | 000,005,200 | ---- | M] () -- C:\Windows\Tasks\4b477374-5432-4754-a01d-62e796a778d3-7.job
[2015/03/16 00:13:00 | 000,000,914 | ---- | M] () -- C:\Windows\Tasks\Adobe Flash Player Updater.job
[2015/03/15 23:51:02 | 000,001,360 | ---- | M] () -- C:\Windows\Tasks\FHIGIC.job
[2015/03/15 23:58:00 | 000,000,956 | ---- | M] () -- C:\Windows\Tasks\globalUpdateUpdateTaskMachineCore.job
[2015/03/15 23:58:00 | 000,000,960 | ---- | M] () -- C:\Windows\Tasks\globalUpdateUpdateTaskMachineUA.job
[2015/03/15 14:27:00 | 000,000,960 | ---- | M] () -- C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
[2015/03/16 00:27:02 | 000,000,964 | ---- | M] () -- C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
[2015/03/15 23:51:37 | 000,001,354 | ---- | M] () -- C:\Windows\Tasks\OEM.job
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Uzivatel\Downloads
64bit- Enterprise Edition (Version = 6.2.9200) - Type = NTWorkstation
Internet Explorer (Version = 9.10.9200.17267)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d. M. yyyy
3,88 Gb Total Physical Memory | 2,16 Gb Available Physical Memory | 55,72% Memory free
4,63 Gb Paging File | 2,62 Gb Available in Paging File | 56,62% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 698,29 Gb Total Space | 593,86 Gb Free Space | 85,04% Space Free | Partition Type: NTFS
Unable to calculate disk information.
Computer Name: NB52 | User Name: Uzivatel | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 7 Days
========== Processes (SafeList) ==========
PRC - [2015/03/16 00:15:43 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Uzivatel\Downloads\OTL.exe
PRC - [2015/03/15 23:53:38 | 001,408,512 | ---- | M] (Speedchecker) -- C:\Program Files (x86)\Internet Speed Checker\4b477374-5432-4754-a01d-62e796a778d3-1-6.exe
PRC - [2015/03/15 23:53:14 | 001,482,240 | ---- | M] (Speedchecker) -- C:\Program Files (x86)\Internet Speed Checker\4b477374-5432-4754-a01d-62e796a778d3-6.exe
PRC - [2015/03/07 07:13:08 | 000,809,288 | ---- | M] (Google Inc.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
PRC - [2014/12/19 08:48:18 | 000,081,088 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
PRC - [2014/02/27 18:10:59 | 001,022,154 | ---- | M] () -- C:\Users\Uzivatel\AppData\Local\Temp\{3PNINEGS-GBYR-HYWY-HTYC-EEQTZJDERTGNACTPQT}\activex.exe
PRC - [2013/07/02 08:16:32 | 000,507,264 | ---- | M] (Oracle Corporation) -- C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
PRC - [2013/06/29 09:49:28 | 000,068,608 | ---- | M] (IvoSoft) -- C:\Program Files\Classic Shell\ClassicShellService.exe
========== Modules (No Company Name) ==========
MOD - [2015/03/15 23:53:14 | 000,176,640 | ---- | M] () -- C:\Program Files (x86)\Internet Speed Checker\afa995b8-5444-4a91-a5cf-0a8cc248df08.dll
MOD - [2015/03/07 07:13:06 | 014,974,280 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\41.0.2272.89\PepperFlash\pepflashplayer.dll
MOD - [2015/03/07 07:13:04 | 009,279,304 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\41.0.2272.89\pdf.dll
MOD - [2015/03/07 07:12:59 | 001,174,856 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\41.0.2272.89\libglesv2.dll
MOD - [2015/03/07 07:12:57 | 000,080,200 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\41.0.2272.89\libegl.dll
MOD - [2014/02/27 22:41:57 | 000,212,480 | ---- | M] () -- C:\Users\Uzivatel\AppData\Local\Temp\{3PNINEGS-GBYR-HYWY-HTYC-EEQTZJDERTGNACTPQT}\libcurl-4.dll
MOD - [2014/02/27 22:41:57 | 000,112,640 | ---- | M] () -- C:\Users\Uzivatel\AppData\Local\Temp\{3PNINEGS-GBYR-HYWY-HTYC-EEQTZJDERTGNACTPQT}\zlib1.dll
MOD - [2014/02/27 18:10:59 | 001,022,154 | ---- | M] () -- C:\Users\Uzivatel\AppData\Local\Temp\{3PNINEGS-GBYR-HYWY-HTYC-EEQTZJDERTGNACTPQT}\activex.exe
========== Services (SafeList) ==========
SRV:64bit: - [2015/01/31 14:48:19 | 000,016,024 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MsMpEng.exe -- (WinDefend)
SRV:64bit: - [2014/11/06 08:09:55 | 002,676,736 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\spool\drivers\x64\3\PrintConfig.dll -- (PrintNotify)
SRV:64bit: - [2014/10/02 23:29:16 | 000,169,472 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\AudioEndpointBuilder.dll -- (AudioEndpointBuilder)
SRV:64bit: - [2014/07/07 06:52:33 | 000,263,680 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\wcmsvc.dll -- (Wcmsvc)
SRV:64bit: - [2014/05/30 00:02:28 | 000,439,808 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\lsm.dll -- (LSM)
SRV:64bit: - [2013/08/16 06:39:26 | 002,371,728 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\WSService.dll -- (WSService)
SRV:64bit: - [2013/06/29 09:49:28 | 000,068,608 | ---- | M] (IvoSoft) [Auto | Running] -- C:\Program Files\Classic Shell\ClassicShellService.exe -- (ClassicShellService)
SRV:64bit: - [2013/06/13 23:46:22 | 000,334,336 | ---- | M] (IDT, Inc.) [Auto | Stopped] -- C:\Program Files\IDT\WDM\stacsv64.exe -- (STacSV)
SRV:64bit: - [2013/06/05 03:02:26 | 000,241,152 | ---- | M] (AMD) [Auto | Running] -- C:\Windows\SysNative\atiesrxx.exe -- (AMD External Events Utility)
SRV:64bit: - [2013/06/01 10:19:58 | 000,207,872 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\DeviceSetupManager.dll -- (DsmSvc)
SRV:64bit: - [2013/05/04 07:58:02 | 000,470,528 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\netprofmsvc.dll -- (netprofm)
SRV:64bit: - [2013/05/04 07:57:05 | 000,179,712 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\bisrv.dll -- (BrokerInfrastructure)
SRV:64bit: - [2013/03/02 03:45:07 | 000,171,008 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\TimeBrokerServer.dll -- (TimeBroker)
SRV:64bit: - [2013/03/02 03:45:05 | 000,180,224 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\SystemEventsBrokerServer.dll -- (SystemEventsBroker)
SRV:64bit: - [2013/01/10 00:23:16 | 001,964,544 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\wlidsvc.dll -- (wlidsvc)
SRV:64bit: - [2012/09/20 07:31:18 | 000,116,736 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\fhsvc.dll -- (fhsvc)
SRV:64bit: - [2012/07/26 04:07:47 | 000,065,536 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\wiarpc.dll -- (WiaRpc)
SRV:64bit: - [2012/07/26 04:07:40 | 000,283,648 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\vaultsvc.dll -- (VaultSvc)
SRV:64bit: - [2012/07/26 04:07:25 | 000,012,800 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\svsvc.dll -- (svsvc)
SRV:64bit: - [2012/07/26 04:06:34 | 000,743,936 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\netlogon.dll -- (Netlogon)
SRV:64bit: - [2012/07/26 04:06:33 | 000,161,792 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\NcaSvc.dll -- (NcaSvc)
SRV:64bit: - [2012/07/26 04:06:33 | 000,073,728 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\NcdAutoSetup.dll -- (NcdAutoSetup)
SRV:64bit: - [2012/07/26 04:05:55 | 000,059,904 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\keyiso.dll -- (KeyIso)
SRV:64bit: - [2012/07/26 04:05:34 | 000,037,376 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\efssvc.dll -- (EFS)
SRV:64bit: - [2012/07/26 04:05:24 | 000,342,016 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\das.dll -- (DeviceAssociationService)
SRV:64bit: - [2012/07/26 04:05:08 | 000,122,368 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\AUInstallAgent.dll -- (AllUserInstallAgent)
SRV:64bit: - [2012/07/26 04:05:04 | 000,187,392 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\appmgmts.dll -- (AppMgmt)
SRV:64bit: - [2012/07/26 01:24:02 | 000,336,384 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicheartbeat)
SRV:64bit: - [2012/07/26 01:24:02 | 000,336,384 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicvss)
SRV:64bit: - [2012/07/26 01:24:02 | 000,336,384 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmictimesync)
SRV:64bit: - [2012/07/26 01:24:02 | 000,336,384 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicshutdown)
SRV:64bit: - [2012/07/26 01:24:02 | 000,336,384 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicrdv)
SRV:64bit: - [2012/07/26 01:24:02 | 000,336,384 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmickvpexchange)
SRV:64bit: - [2012/04/26 12:56:00 | 000,033,560 | ---- | M] (Hewlett-Packard Company) [Auto | Running] -- C:\Windows\SysNative\hpservice.exe -- (hpsrv)
SRV - [2015/03/15 23:53:08 | 000,068,608 | ---- | M] (globalUpdate) [On_Demand | Stopped] -- C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe -- (globalUpdatem)
SRV - [2015/03/15 23:53:08 | 000,068,608 | ---- | M] (globalUpdate) [Auto | Stopped] -- C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe -- (globalUpdate)
SRV - [2015/03/06 20:41:07 | 000,148,080 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2015/02/19 00:51:18 | 000,835,776 | ---- | M] (Valve Corporation) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Steam\SteamService.exe -- (Steam Client Service)
SRV - [2015/02/04 20:13:16 | 000,267,440 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2015/01/02 19:45:12 | 000,315,488 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files (x86)\Skype\Updater\Updater.exe -- (SkypeUpdate)
SRV - [2014/12/19 08:48:18 | 000,081,088 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2014/11/06 08:09:55 | 002,676,736 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\system32\spool\DRIVERS\x64\3\PrintConfig.dll -- (PrintNotify)
SRV - [2012/12/14 01:42:10 | 000,277,616 | ---- | M] (Intel Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\IntelCpHeciSvc.exe -- (cphs)
SRV - [2012/07/26 04:20:04 | 000,018,432 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\StorSvc.dll -- (StorSvc)
========== Driver Services (SafeList) ==========
DRV:64bit: - [2015/01/31 14:48:06 | 000,044,024 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\WdBoot.sys -- (WdBoot)
DRV:64bit: - [2015/01/31 06:55:05 | 000,275,712 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\WdFilter.sys -- (WdFilter)
DRV:64bit: - [2014/12/18 09:51:28 | 000,096,576 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\Drivers\wfplwfs.sys -- (WFPLWFS)
DRV:64bit: - [2014/07/24 14:50:54 | 000,447,296 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\USBHUB3.SYS -- (USBHUB3)
DRV:64bit: - [2013/12/04 10:02:30 | 002,505,904 | ---- | M] (Ralink Technology, Corp.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\netr28x.sys -- (netr28x)
DRV:64bit: - [2013/12/02 09:42:14 | 001,204,424 | ---- | M] (Ralink Technology, Corp.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\rtbth.sys -- (rtbth)
DRV:64bit: - [2013/10/30 03:52:48 | 000,549,104 | ---- | M] (Synaptics Incorporated) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\SynTP.sys -- (SynTP)
DRV:64bit: - [2013/10/05 07:10:20 | 000,285,016 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\Drivers\spaceport.sys -- (spaceport)
DRV:64bit: - [2013/08/16 06:41:13 | 000,058,200 | ---- | M] (Microsoft Corporation) [Kernel | System | Stopped] -- C:\Windows\SysNative\Drivers\dam.sys -- (dam)
DRV:64bit: - [2013/08/10 07:30:22 | 000,151,896 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\tpm.sys -- (TPM)
DRV:64bit: - [2013/08/01 15:40:04 | 000,644,968 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\Drivers\iaStorA.sys -- (iaStorA)
DRV:64bit: - [2013/07/31 19:05:07 | 000,449,528 | ---- | M] (Intel(R) Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\IntcDAud.sys -- (IntcDAud)
DRV:64bit: - [2013/07/26 18:24:06 | 000,099,288 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\TeeDriverx64.sys -- (MEIx64)
DRV:64bit: - [2013/07/26 18:07:30 | 000,827,096 | ---- | M] (Realtek ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\Rt630x64.sys -- (RTL8168)
DRV:64bit: - [2013/07/24 16:02:55 | 000,034,816 | ---- | M] (Elaborate Bytes AG) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\VClone.sys -- (VClone)
DRV:64bit: - [2013/07/09 09:04:07 | 000,120,144 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\msgpioclx.sys -- (GPIOClx0101)
DRV:64bit: - [2013/07/02 02:41:47 | 000,337,752 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\USBXHCI.SYS -- (USBXHCI)
DRV:64bit: - [2013/07/02 02:41:47 | 000,213,336 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\UCX01000.SYS -- (UCX01000)
DRV:64bit: - [2013/06/29 07:15:54 | 000,195,416 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\sdbus.sys -- (sdbus)
DRV:64bit: - [2013/06/13 23:46:22 | 000,550,912 | ---- | M] (IDT, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\stwrt64.sys -- (STHDA)
DRV:64bit: - [2013/06/05 04:09:46 | 011,833,856 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\atikmdag.sys -- (amdkmdag)
DRV:64bit: - [2013/06/05 02:35:06 | 000,608,768 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\atikmpag.sys -- (amdkmdap)
DRV:64bit: - [2013/06/01 04:08:57 | 000,037,632 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\BthAvrcpTg.sys -- (BthAvrcpTg)
DRV:64bit: - [2013/04/02 08:50:42 | 001,442,944 | ---- | M] (Sunplus) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\SPUVCBv_x64.sys -- (SPUVCbv)
DRV:64bit: - [2013/03/04 13:24:27 | 000,040,344 | ---- | M] (Elaborate Bytes AG) [Kernel | System | Running] -- C:\Windows\SysNative\Drivers\ElbyCDIO.sys -- (ElbyCDIO)
DRV:64bit: - [2013/03/02 11:57:46 | 000,077,544 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\storahci.sys -- (storahci)
DRV:64bit: - [2013/03/02 11:39:38 | 000,069,864 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\Drivers\pdc.sys -- (pdc)
DRV:64bit: - [2013/01/10 02:53:32 | 000,028,904 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\msgpiowin32.sys -- (msgpiowin32)
DRV:64bit: - [2012/12/14 01:42:22 | 005,353,888 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\igdkmd64.sys -- (igfx)
DRV:64bit: - [2012/11/27 04:55:44 | 000,029,952 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\BthhfHid.sys -- (bthhfhid)
DRV:64bit: - [2012/11/20 05:54:31 | 000,039,936 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\hidi2c.sys -- (hidi2c)
DRV:64bit: - [2012/11/06 04:55:44 | 000,022,528 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\fxppm.sys -- (FxPPM)
DRV:64bit: - [2012/10/12 09:08:01 | 000,027,880 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\rdpvideominiport.sys -- (RdpVideoMiniport)
DRV:64bit: - [2012/10/11 08:25:48 | 000,056,552 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\sdstor.sys -- (sdstor)
DRV:64bit: - [2012/10/11 06:19:44 | 000,023,552 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\WSDScan.sys -- (WSDScan)
DRV:64bit: - [2012/09/20 08:55:27 | 003,265,256 | ---- | M] (Broadcom Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\evbda.sys -- (ebdrv)
DRV:64bit: - [2012/09/20 08:55:24 | 000,533,224 | ---- | M] (Broadcom Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\bxvbda.sys -- (b06bdrv)
DRV:64bit: - [2012/09/11 07:21:26 | 000,020,800 | ---- | M] (Hewlett-Packard Development Company, L.P.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\WirelessButtonDriver64.sys -- (WirelessButtonDriver)
DRV:64bit: - [2012/07/31 07:05:14 | 000,175,928 | ---- | M] (JMicron Technology Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\jmcr.sys -- (JMCR)
DRV:64bit: - [2012/07/26 06:26:46 | 000,025,328 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\Windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
DRV:64bit: - [2012/07/26 06:26:45 | 000,033,792 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\condrv.sys -- (condrv)
DRV:64bit: - [2012/07/26 06:00:58 | 000,322,800 | ---- | M] (VIA Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\VSTXRAID.SYS -- (VSTXRAID)
DRV:64bit: - [2012/07/26 06:00:58 | 000,106,224 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\VerifierExt.sys -- (VerifierExt)
DRV:64bit: - [2012/07/26 06:00:58 | 000,097,008 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\uaspstor.sys -- (UASPStor)
DRV:64bit: - [2012/07/26 06:00:57 | 000,077,040 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\Drivers\acpiex.sys -- (acpiex)
DRV:64bit: - [2012/07/26 06:00:55 | 000,064,240 | ---- | M] (Marvell Semiconductor, Inc.) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\mvumis.sys -- (mvumis)
DRV:64bit: - [2012/07/26 06:00:55 | 000,030,960 | ---- | M] (Promise Technology, Inc.) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\stexstor.sys -- (stexstor)
DRV:64bit: - [2012/07/26 06:00:52 | 000,092,400 | ---- | M] (LSI Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:64bit: - [2012/07/26 06:00:52 | 000,081,136 | ---- | M] (LSI Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\lsi_sss.sys -- (LSI_SSS)
DRV:64bit: - [2012/07/26 06:00:52 | 000,064,752 | ---- | M] (Hewlett-Packard Company) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\HpSAMD.sys -- (HpSAMD)
DRV:64bit: - [2012/07/26 06:00:51 | 000,113,904 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\EhStorTcgDrv.sys -- (EhStorTcgDrv)
DRV:64bit: - [2012/07/26 06:00:51 | 000,081,136 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\EhStorClass.sys -- (EhStorClass)
DRV:64bit: - [2012/07/26 06:00:49 | 000,258,288 | ---- | M] (AMD Technologies Inc.) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\amdsbs.sys -- (amdsbs)
DRV:64bit: - [2012/07/26 06:00:49 | 000,106,736 | ---- | M] (LSI) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\3ware.sys -- (3ware)
DRV:64bit: - [2012/07/26 06:00:49 | 000,076,016 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\amdsata.sys -- (amdsata)
DRV:64bit: - [2012/07/26 06:00:48 | 000,026,352 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\amdxata.sys -- (amdxata)
DRV:64bit: - [2012/07/26 05:57:54 | 000,361,200 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\Drivers\clfs.sys -- (CLFS)
DRV:64bit: - [2012/07/26 05:53:16 | 000,067,824 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\vpci.sys -- (vpci)
DRV:64bit: - [2012/07/26 05:50:20 | 000,053,352 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\Synth3dVsc.sys -- (Synth3dVsc)
DRV:64bit: - [2012/07/26 04:17:38 | 000,036,592 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\terminpt.sys -- (terminpt)
DRV:64bit: - [2012/07/26 03:29:47 | 000,021,504 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\WSDPrint.sys -- (WSDPrintDevice)
DRV:64bit: - [2012/07/26 03:29:14 | 000,010,752 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\mshidumdf.sys -- (mshidumdf)
DRV:64bit: - [2012/07/26 03:29:08 | 000,048,640 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\Drivers\BasicDisplay.sys -- (BasicDisplay)
DRV:64bit: - [2012/07/26 03:29:03 | 000,024,576 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\HyperVideo.sys -- (HyperVideo)
DRV:64bit: - [2012/07/26 03:28:52 | 000,029,696 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\Drivers\BasicRender.sys -- (BasicRender)
DRV:64bit: - [2012/07/26 03:27:58 | 000,012,288 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\vmgencounter.sys -- (gencounter)
DRV:64bit: - [2012/07/26 03:27:41 | 000,018,432 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\kdnic.sys -- (kdnic)
DRV:64bit: - [2012/07/26 03:27:37 | 000,010,752 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\acpitime.sys -- (acpitime)
DRV:64bit: - [2012/07/26 03:27:33 | 000,023,552 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\Drivers\npsvctrig.sys -- (npsvctrig)
DRV:64bit: - [2012/07/26 03:27:29 | 000,019,968 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\WpdUpFltr.sys -- (WpdUpFltr)
DRV:64bit: - [2012/07/26 03:27:16 | 000,010,240 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\acpipagr.sys -- (acpipagr)
DRV:64bit: - [2012/07/26 03:27:01 | 000,011,776 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\hyperkbd.sys -- (hyperkbd)
DRV:64bit: - [2012/07/26 03:26:46 | 000,062,976 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\SerCx.sys -- (SerCx)
DRV:64bit: - [2012/07/26 03:26:43 | 000,059,392 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\SpbCx.sys -- (SpbCx)
DRV:64bit: - [2012/07/26 03:26:34 | 000,030,208 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\TsUsbGD.sys -- (TsUsbGD)
DRV:64bit: - [2012/07/26 03:26:13 | 000,051,200 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\bthhfenum.sys -- (BthHFEnum)
DRV:64bit: - [2012/07/26 03:25:57 | 000,033,280 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\dmvsc.sys -- (dmvsc)
DRV:64bit: - [2012/07/26 03:25:56 | 000,057,344 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV:64bit: - [2012/07/26 03:25:26 | 000,203,776 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\Vid.sys -- (Vid)
DRV:64bit: - [2012/07/26 03:25:22 | 000,067,584 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\storvsp.sys -- (storvsp)
DRV:64bit: - [2012/07/26 03:25:13 | 000,045,056 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\wpcfltr.sys -- (wpcfltr)
DRV:64bit: - [2012/07/26 03:25:12 | 000,117,248 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\vmbusr.sys -- (vmbusr)
DRV:64bit: - [2012/07/26 03:25:12 | 000,066,048 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\vpcivsp.sys -- (vpcivsp)
DRV:64bit: - [2012/07/26 03:25:02 | 000,202,752 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\BthLEEnum.sys -- (BthLEEnum)
DRV:64bit: - [2012/07/26 03:25:01 | 000,126,464 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\NdisImPlatform.sys -- (NdisImPlatform)
DRV:64bit: - [2012/07/26 03:23:53 | 000,068,608 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\mslldp.sys -- (MsLldp)
DRV:64bit: - [2012/07/26 03:23:42 | 000,115,712 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\tsusbhub.sys -- (tsusbhub)
DRV:64bit: - [2012/07/26 03:23:42 | 000,097,792 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\Windows\SysNative\Drivers\Ndu.sys -- (Ndu)
DRV:64bit: - [2012/04/26 12:56:00 | 000,043,800 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\Accelerometer.sys -- (Accelerometer)
DRV:64bit: - [2012/04/26 12:56:00 | 000,030,488 | ---- | M] (Hewlett-Packard Company) [Kernel | Boot | Running] -- C:\Windows\SysNative\Drivers\hpdskflt.sys -- (hpdskflt)
CREATERESTOREPOINT
Restore point Set: OTL Restore Point
NetSvcs:64bit: wlidsvc - C:\Windows\SysNative\wlidsvc.dll (Microsoft Corporation)
NetSvcs:64bit: DsmSvc - C:\Windows\SysNative\DeviceSetupManager.dll (Microsoft Corporation)
NetSvcs:64bit: NcaSvc - C:\Windows\SysNative\NcaSvc.dll (Microsoft Corporation)
NetSvcs:64bit: SystemEventsBroker - C:\Windows\SysNative\SystemEventsBrokerServer.dll (Microsoft Corporation)
NetSvcs:64bit: AppMgmt - C:\Windows\SysNative\appmgmts.dll (Microsoft Corporation)
Drivers32:64bit: msacm.l3acm - C:\Windows\System32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.l3acm - C:\Windows\SysWOW64\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.vorbis - C:\Windows\SysWow64\vorbis.acm (HMS http://hp.vector.co.jp/authors/VA012897/)
Drivers32: vidc.cvid - C:\Windows\SysWow64\iccvid.dll (Radius Inc.)
PhysicalDisk0 MBR saved to C:\PhysicalMBR.bin
========== Files/Folders - Created Within 7 Days ==========
[2015/03/16 00:00:51 | 000,000,000 | ---D | C] -- C:\Program Files\trend micro
[2015/03/16 00:00:51 | 000,000,000 | ---D | C] -- C:\rsit
[2015/03/15 23:53:09 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\fba9dbcd-01f3-4509-b967-d54d4ee8a483
[2015/03/15 23:53:07 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Internet Speed Checker
[2015/03/15 23:51:35 | 001,371,136 | ---- | C] (Cinema PlusV05.03) -- C:\Users\Uzivatel\AppData\Roaming\OEM.exe
[2015/03/15 23:51:02 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\43d45ddb-733d-4a4f-9d91-4e3253112627
[2015/03/15 23:50:59 | 001,854,464 | ---- | C] (Cinema PlusV05.03) -- C:\Users\Uzivatel\AppData\Roaming\FHIGIC.exe
[2015/03/15 23:50:38 | 000,000,000 | ---D | C] -- C:\Users\Uzivatel\AppData\Local\globalUpdate
[2015/03/15 23:50:38 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\globalUpdate
[2015/03/15 23:50:32 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\CinemaP-1.9cV05.03
[2015/03/15 23:48:30 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Seznam.cz
[2015/03/15 23:48:06 | 000,000,000 | ---D | C] -- C:\Users\Uzivatel\AppData\Roaming\Seznam.cz
[2015/03/11 23:48:38 | 000,084,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\INETRES.dll
[2015/03/11 23:48:33 | 000,603,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msfeeds.dll
[2015/03/11 23:48:33 | 000,600,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\vbscript.dll
[2015/03/11 23:48:32 | 001,509,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\inetcpl.cpl
[2015/03/11 23:48:32 | 001,441,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\inetcpl.cpl
[2015/03/11 23:48:32 | 000,915,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\uxtheme.dll
[2015/03/11 23:48:32 | 000,281,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dxtrans.dll
[2015/03/11 23:48:32 | 000,136,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iesysprep.dll
[2015/03/11 23:48:32 | 000,109,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iesysprep.dll
[2015/03/11 23:48:32 | 000,097,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mshtmled.dll
[2015/03/11 23:48:31 | 003,959,296 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript9.dll
[2015/03/11 23:48:31 | 000,855,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript.dll
[2015/03/11 23:48:31 | 000,690,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\jscript.dll
[2015/03/11 23:48:31 | 000,451,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dxtmsft.dll
[2015/03/11 23:48:31 | 000,441,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\html.iec
[2015/03/11 23:48:31 | 000,361,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\html.iec
[2015/03/11 23:48:31 | 000,197,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msrating.dll
[2015/03/11 23:48:31 | 000,163,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msrating.dll
[2015/03/11 23:48:31 | 000,080,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmled.dll
[2015/03/11 23:48:31 | 000,067,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iesetup.dll
[2015/03/11 23:48:31 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iesetup.dll
[2015/03/11 23:48:31 | 000,053,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\UXInit.dll
[2015/03/11 23:48:31 | 000,051,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ie4uinit.exe
[2015/03/11 23:48:31 | 000,044,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\UXInit.dll
[2015/03/11 23:48:31 | 000,039,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iernonce.dll
[2015/03/11 23:48:31 | 000,033,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iernonce.dll
[2015/03/11 23:48:28 | 000,325,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ubpm.dll
[2015/03/11 23:48:28 | 000,243,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ubpm.dll
[2015/03/11 23:48:27 | 000,366,592 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\SysNative\atmfd.dll
[2015/03/11 23:48:27 | 000,304,128 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\atmfd.dll
[2015/03/11 23:48:27 | 000,046,080 | ---- | C] (Adobe Systems) -- C:\Windows\SysNative\atmlib.dll
[2015/03/11 23:48:27 | 000,035,328 | ---- | C] (Adobe Systems) -- C:\Windows\SysWow64\atmlib.dll
[2015/03/11 23:48:24 | 000,588,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SHCore.dll
[2015/03/11 23:48:24 | 000,452,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\SHCore.dll
[2015/03/11 23:48:02 | 000,275,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\WdFilter.sys
[2015/03/11 23:48:02 | 000,044,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\WdBoot.sys
[2015/03/11 23:47:53 | 001,627,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WindowsCodecs.dll
[2015/03/11 23:47:51 | 001,120,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msctf.dll
[2015/03/11 23:47:51 | 000,420,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WMPhoto.dll
[2015/03/11 23:47:51 | 000,368,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\WMPhoto.dll
[2015/03/11 23:47:41 | 000,235,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rdpudd.dll
[2015/03/11 23:47:40 | 006,973,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntoskrnl.exe
[2015/03/11 15:41:59 | 000,000,000 | ---D | C] -- C:\Users\Uzivatel\Desktop\zaloha flas
[2015/03/10 15:37:26 | 000,000,000 | ---D | C] -- C:\Users\Uzivatel\.thumbnails
[2015/03/10 15:36:01 | 000,000,000 | ---D | C] -- C:\Users\Uzivatel\.gimp-2.8
[2015/03/10 15:36:00 | 000,000,000 | ---D | C] -- C:\Users\Uzivatel\AppData\Local\gegl-0.2
[2015/03/10 14:02:54 | 000,126,976 | ---- | C] (Blizzard Entertainment) -- C:\Windows\War3Unin.exe
[2015/03/09 23:27:16 | 000,000,000 | -H-D | C] -- C:\Program Files (x86)\InstallShield Installation Information
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
========== Files - Modified Within 7 Days ==========
[2015/03/16 00:19:24 | 000,000,512 | ---- | M] () -- C:\PhysicalMBR.bin
[2015/03/16 00:13:00 | 000,000,914 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2015/03/15 23:58:00 | 000,000,960 | ---- | M] () -- C:\Windows\tasks\globalUpdateUpdateTaskMachineUA.job
[2015/03/15 23:58:00 | 000,000,956 | ---- | M] () -- C:\Windows\tasks\globalUpdateUpdateTaskMachineCore.job
[2015/03/15 23:53:50 | 000,002,464 | ---- | M] () -- C:\Windows\tasks\4b477374-5432-4754-a01d-62e796a778d3-5_user.job
[2015/03/15 23:53:48 | 000,002,464 | ---- | M] () -- C:\Windows\tasks\4b477374-5432-4754-a01d-62e796a778d3-5.job
[2015/03/15 23:53:36 | 000,003,156 | ---- | M] () -- C:\Windows\tasks\4b477374-5432-4754-a01d-62e796a778d3-1-6.job
[2015/03/15 23:53:34 | 000,003,492 | ---- | M] () -- C:\Windows\tasks\4b477374-5432-4754-a01d-62e796a778d3-1-7.job
[2015/03/15 23:53:22 | 000,004,176 | ---- | M] () -- C:\Windows\tasks\4b477374-5432-4754-a01d-62e796a778d3-4.job
[2015/03/15 23:53:12 | 000,005,536 | ---- | M] () -- C:\Windows\tasks\4b477374-5432-4754-a01d-62e796a778d3-6.job
[2015/03/15 23:53:10 | 000,005,200 | ---- | M] () -- C:\Windows\tasks\4b477374-5432-4754-a01d-62e796a778d3-7.job
[2015/03/15 23:53:08 | 000,002,130 | ---- | M] () -- C:\Windows\tasks\4b477374-5432-4754-a01d-62e796a778d3-10_user.job
[2015/03/15 23:51:55 | 000,002,456 | ---- | M] () -- C:\Windows\tasks\2300726e-d013-4e97-93b8-82cdb2191e24-5_user.job
[2015/03/15 23:51:53 | 000,002,456 | ---- | M] () -- C:\Windows\tasks\2300726e-d013-4e97-93b8-82cdb2191e24-5.job
[2015/03/15 23:51:41 | 000,003,148 | ---- | M] () -- C:\Windows\tasks\2300726e-d013-4e97-93b8-82cdb2191e24-1-6.job
[2015/03/15 23:51:39 | 000,003,484 | ---- | M] () -- C:\Windows\tasks\2300726e-d013-4e97-93b8-82cdb2191e24-1-7.job
[2015/03/15 23:51:37 | 000,001,354 | ---- | M] () -- C:\Windows\tasks\OEM.job
[2015/03/15 23:51:35 | 001,371,136 | ---- | M] (Cinema PlusV05.03) -- C:\Users\Uzivatel\AppData\Roaming\OEM.exe
[2015/03/15 23:51:27 | 000,004,168 | ---- | M] () -- C:\Windows\tasks\2300726e-d013-4e97-93b8-82cdb2191e24-4.job
[2015/03/15 23:51:08 | 000,005,528 | ---- | M] () -- C:\Windows\tasks\2300726e-d013-4e97-93b8-82cdb2191e24-6.job
[2015/03/15 23:51:06 | 000,005,528 | ---- | M] () -- C:\Windows\tasks\2300726e-d013-4e97-93b8-82cdb2191e24-7.job
[2015/03/15 23:51:02 | 000,001,360 | ---- | M] () -- C:\Windows\tasks\FHIGIC.job
[2015/03/15 23:50:59 | 001,854,464 | ---- | M] (Cinema PlusV05.03) -- C:\Users\Uzivatel\AppData\Roaming\FHIGIC.exe
[2015/03/15 23:50:43 | 000,004,504 | ---- | M] () -- C:\Windows\tasks\2300726e-d013-4e97-93b8-82cdb2191e24-3.job
[2015/03/15 23:50:37 | 000,002,122 | ---- | M] () -- C:\Windows\tasks\2300726e-d013-4e97-93b8-82cdb2191e24-10_user.job
[2015/03/15 23:48:53 | 000,002,334 | ---- | M] () -- C:\Users\Uzivatel\Desktop\DownloadManager.lnk
[2015/03/15 23:47:39 | 000,001,294 | ---- | M] () -- C:\Users\Uzivatel\Desktop\Continue installation .lnk
[2015/03/15 23:27:00 | 000,000,964 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2015/03/15 14:27:00 | 000,000,960 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2015/03/15 10:11:47 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2015/03/14 00:19:31 | 001,714,430 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2015/03/14 00:19:31 | 000,727,488 | ---- | M] () -- C:\Windows\SysNative\perfh005.dat
[2015/03/14 00:19:31 | 000,710,244 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2015/03/14 00:19:31 | 000,148,006 | ---- | M] () -- C:\Windows\SysNative\perfc005.dat
[2015/03/14 00:19:31 | 000,132,614 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2015/03/13 02:40:51 | 268,435,456 | -HS- | M] () -- C:\swapfile.sys
[2015/03/13 02:39:41 | 3333,804,032 | -HS- | M] () -- C:\hiberfil.sys
[2015/03/12 19:32:42 | 000,002,183 | ---- | M] () -- C:\Users\Public\Desktop\Google Chrome.lnk
[2015/03/10 15:57:09 | 000,055,537 | ---- | M] () -- C:\Users\Uzivatel\Desktop\11039418_797445120347939_687496584_n.jpg
[2015/03/10 15:37:48 | 000,001,493 | ---- | M] () -- C:\Users\Uzivatel\AppData\Local\recently-used.xbel
[2015/03/10 14:03:00 | 000,126,976 | ---- | M] (Blizzard Entertainment) -- C:\Windows\War3Unin.exe
[2015/03/10 14:03:00 | 000,000,515 | ---- | M] () -- C:\Windows\War3Unin.dat
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
========== Files Created - No Company Name ==========
[2015/03/16 00:19:24 | 000,000,512 | ---- | C] () -- C:\PhysicalMBR.bin
[2015/03/15 23:53:49 | 000,002,464 | ---- | C] () -- C:\Windows\tasks\4b477374-5432-4754-a01d-62e796a778d3-5_user.job
[2015/03/15 23:53:47 | 000,002,464 | ---- | C] () -- C:\Windows\tasks\4b477374-5432-4754-a01d-62e796a778d3-5.job
[2015/03/15 23:53:35 | 000,003,156 | ---- | C] () -- C:\Windows\tasks\4b477374-5432-4754-a01d-62e796a778d3-1-6.job
[2015/03/15 23:53:30 | 000,003,492 | ---- | C] () -- C:\Windows\tasks\4b477374-5432-4754-a01d-62e796a778d3-1-7.job
[2015/03/15 23:53:21 | 000,004,176 | ---- | C] () -- C:\Windows\tasks\4b477374-5432-4754-a01d-62e796a778d3-4.job
[2015/03/15 23:53:11 | 000,005,536 | ---- | C] () -- C:\Windows\tasks\4b477374-5432-4754-a01d-62e796a778d3-6.job
[2015/03/15 23:53:09 | 000,005,200 | ---- | C] () -- C:\Windows\tasks\4b477374-5432-4754-a01d-62e796a778d3-7.job
[2015/03/15 23:53:07 | 000,002,130 | ---- | C] () -- C:\Windows\tasks\4b477374-5432-4754-a01d-62e796a778d3-10_user.job
[2015/03/15 23:51:54 | 000,002,456 | ---- | C] () -- C:\Windows\tasks\2300726e-d013-4e97-93b8-82cdb2191e24-5_user.job
[2015/03/15 23:51:53 | 000,002,456 | ---- | C] () -- C:\Windows\tasks\2300726e-d013-4e97-93b8-82cdb2191e24-5.job
[2015/03/15 23:51:40 | 000,003,148 | ---- | C] () -- C:\Windows\tasks\2300726e-d013-4e97-93b8-82cdb2191e24-1-6.job
[2015/03/15 23:51:38 | 000,003,484 | ---- | C] () -- C:\Windows\tasks\2300726e-d013-4e97-93b8-82cdb2191e24-1-7.job
[2015/03/15 23:51:36 | 000,001,354 | ---- | C] () -- C:\Windows\tasks\OEM.job
[2015/03/15 23:51:26 | 000,004,168 | ---- | C] () -- C:\Windows\tasks\2300726e-d013-4e97-93b8-82cdb2191e24-4.job
[2015/03/15 23:51:06 | 000,005,528 | ---- | C] () -- C:\Windows\tasks\2300726e-d013-4e97-93b8-82cdb2191e24-6.job
[2015/03/15 23:51:03 | 000,005,528 | ---- | C] () -- C:\Windows\tasks\2300726e-d013-4e97-93b8-82cdb2191e24-7.job
[2015/03/15 23:51:00 | 000,001,360 | ---- | C] () -- C:\Windows\tasks\FHIGIC.job
[2015/03/15 23:50:46 | 000,000,960 | ---- | C] () -- C:\Windows\tasks\globalUpdateUpdateTaskMachineUA.job
[2015/03/15 23:50:40 | 000,000,956 | ---- | C] () -- C:\Windows\tasks\globalUpdateUpdateTaskMachineCore.job
[2015/03/15 23:50:38 | 000,004,504 | ---- | C] () -- C:\Windows\tasks\2300726e-d013-4e97-93b8-82cdb2191e24-3.job
[2015/03/15 23:50:33 | 000,002,122 | ---- | C] () -- C:\Windows\tasks\2300726e-d013-4e97-93b8-82cdb2191e24-10_user.job
[2015/03/15 23:48:53 | 000,002,334 | ---- | C] () -- C:\Users\Uzivatel\Desktop\DownloadManager.lnk
[2015/03/15 23:47:39 | 000,001,294 | ---- | C] () -- C:\Users\Uzivatel\Desktop\Continue installation .lnk
[2015/03/11 23:47:12 | 000,396,419 | ---- | C] () -- C:\Windows\SysNative\ApnDatabase.xml
[2015/03/10 15:57:18 | 000,055,537 | ---- | C] () -- C:\Users\Uzivatel\Desktop\11039418_797445120347939_687496584_n.jpg
[2015/03/10 15:37:48 | 000,001,493 | ---- | C] () -- C:\Users\Uzivatel\AppData\Local\recently-used.xbel
[2015/03/10 14:02:54 | 000,000,515 | ---- | C] () -- C:\Windows\War3Unin.dat
[2015/01/25 17:12:14 | 000,002,086 | ---- | C] () -- C:\Users\Uzivatel\AppData\Roaming\OEM
[2015/01/25 17:12:14 | 000,001,248 | ---- | C] () -- C:\Users\Uzivatel\AppData\Roaming\FHIGIC
[2013/09/19 12:25:34 | 000,083,968 | ---- | C] () -- C:\Windows\SysWow64\OEMLicense.dll
[2013/09/19 12:00:58 | 000,000,008 | RHS- | C] () -- C:\ProgramData\ntuser.pol
[2013/09/19 11:13:33 | 000,000,000 | ---- | C] () -- C:\Windows\ativpsrm.bin
[2013/09/19 10:29:52 | 000,217,176 | ---- | C] () -- C:\Windows\SysWow64\unrar.dll
[2013/09/19 10:29:51 | 000,094,776 | ---- | C] () -- C:\Windows\un_dext.exe
[2013/09/19 10:29:50 | 000,087,928 | ---- | C] () -- C:\Windows\SPRemove_x64.exe
[2013/09/19 10:29:47 | 000,014,479 | ---- | C] () -- C:\Windows\TWAIN2080.ini
[2013/09/19 10:29:47 | 000,005,240 | ---- | C] () -- C:\Windows\Remove.ini
[2013/09/19 10:29:47 | 000,004,088 | ---- | C] () -- C:\Windows\Dext_12.ini
[2013/09/19 10:29:47 | 000,004,036 | ---- | C] () -- C:\Windows\Dext_27.ini
[2013/09/19 10:29:47 | 000,004,036 | ---- | C] () -- C:\Windows\Dext_21.ini
[2013/09/19 10:29:47 | 000,004,032 | ---- | C] () -- C:\Windows\Dext_25.ini
[2013/09/19 10:29:47 | 000,003,940 | ---- | C] () -- C:\Windows\Dext_11.ini
[2013/09/19 10:29:47 | 000,003,940 | ---- | C] () -- C:\Windows\Dext_05.ini
[2013/09/19 10:29:47 | 000,003,934 | ---- | C] () -- C:\Windows\Dext_14.ini
[2013/09/19 10:29:47 | 000,003,860 | ---- | C] () -- C:\Windows\Dext_10.ini
[2013/09/19 10:29:47 | 000,003,844 | ---- | C] () -- C:\Windows\Dext_16.ini
[2013/09/19 10:29:47 | 000,003,808 | ---- | C] () -- C:\Windows\Dext_08.ini
[2013/09/19 10:29:47 | 000,003,790 | ---- | C] () -- C:\Windows\Dext_31.ini
[2013/09/19 10:29:47 | 000,003,776 | ---- | C] () -- C:\Windows\Dext_1046.ini
[2013/09/19 10:29:47 | 000,003,774 | ---- | C] () -- C:\Windows\Dext_36.ini
[2013/09/19 10:29:47 | 000,003,750 | ---- | C] () -- C:\Windows\Dext_20.ini
[2013/09/19 10:29:47 | 000,003,740 | ---- | C] () -- C:\Windows\Dext_22.ini
[2013/09/19 10:29:47 | 000,003,714 | ---- | C] () -- C:\Windows\Dext_06.ini
[2013/09/19 10:29:47 | 000,003,660 | ---- | C] () -- C:\Windows\Dext_02.ini
[2013/09/19 10:29:47 | 000,003,650 | ---- | C] () -- C:\Windows\Dext_07.ini
[2013/09/19 10:29:47 | 000,003,644 | ---- | C] () -- C:\Windows\Dext_19.ini
[2013/09/19 10:29:47 | 000,003,636 | ---- | C] () -- C:\Windows\Dext_24.ini
[2013/09/19 10:29:47 | 000,003,570 | ---- | C] () -- C:\Windows\Dext_29.ini
[2013/09/19 10:29:47 | 000,003,532 | ---- | C] () -- C:\Windows\Dext_01.ini
[2013/09/19 10:29:47 | 000,003,456 | ---- | C] () -- C:\Windows\Dext_30.ini
[2013/09/19 10:29:47 | 000,003,316 | ---- | C] () -- C:\Windows\Dext_09.ini
[2013/09/19 10:29:47 | 000,003,268 | ---- | C] () -- C:\Windows\Dext_13.ini
[2013/09/19 10:29:47 | 000,002,912 | ---- | C] () -- C:\Windows\Dext_04.ini
[2013/09/19 10:29:47 | 000,002,828 | ---- | C] () -- C:\Windows\Dext_17.ini
[2013/09/19 10:29:47 | 000,002,744 | ---- | C] () -- C:\Windows\Dext_18.ini
[2013/09/19 10:29:47 | 000,002,700 | ---- | C] () -- C:\Windows\Dext_2052.ini
[2013/09/19 10:25:31 | 000,303,104 | ---- | C] () -- C:\Windows\SysWow64\igdmd32.dll
[2013/09/19 10:25:26 | 000,142,848 | ---- | C] () -- C:\Windows\SysWow64\igdail32.dll
[2013/09/19 10:22:50 | 000,204,952 | ---- | C] () -- C:\Windows\SysWow64\ativvsvl.dat
[2013/09/19 10:22:50 | 000,157,144 | ---- | C] () -- C:\Windows\SysWow64\ativvsva.dat
[2013/09/19 10:22:50 | 000,003,917 | ---- | C] () -- C:\Windows\SysWow64\atipblag.dat
[2013/09/19 10:22:37 | 000,798,734 | ---- | C] () -- C:\Windows\SysWow64\amdocl_ld32.exe
[2013/09/19 10:22:36 | 000,995,342 | ---- | C] () -- C:\Windows\SysWow64\amdocl_as32.exe
========== ZeroAccess Check ==========
[2014/08/29 14:21:38 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini
[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64
[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
"" = C:\Windows\SysNative\shell32.dll -- [2015/02/17 07:54:17 | 019,777,536 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2015/02/17 06:13:06 | 017,561,600 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\fastprox.dll -- [2012/07/26 04:05:38 | 001,004,544 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2012/07/26 04:18:27 | 000,784,896 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\wbemess.dll -- [2012/07/26 04:07:41 | 000,455,680 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
========== LOP Check ==========
[2013/09/19 12:04:31 | 000,000,000 | ---D | M] -- C:\Users\mluptak\AppData\Roaming\Synaptics
[2013/09/19 11:35:06 | 000,000,000 | ---D | M] -- C:\Users\Spravce\AppData\Roaming\LibreOffice
[2013/09/19 11:16:03 | 000,000,000 | ---D | M] -- C:\Users\Spravce\AppData\Roaming\Synaptics
[2014/02/23 10:07:10 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Apowersoft
[2013/12/23 18:11:32 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Canneverbe Limited
[2013/10/03 10:52:41 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\DAEMON Tools Lite
[2014/09/02 23:20:49 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\FlowStone
[2014/02/13 14:04:48 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\GHISLER
[2015/02/01 02:01:42 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\IDT
[2014/09/02 23:27:37 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Image-Line
[2013/12/20 14:33:56 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\ImgBurn
[2014/08/11 13:15:48 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\LibreOffice
[2015/03/15 23:55:16 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Seznam.cz
[2014/09/02 23:27:42 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\SongManager
[2013/09/20 10:45:35 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Synaptics
[2013/11/07 10:37:53 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\The Creative Assembly
[2013/12/23 18:07:56 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Triton Interactive
[2015/03/06 17:54:54 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\TS3Client
========== Purity Check ==========
========== Custom Scans ==========
< >
[2012/07/26 08:22:10 | 000,000,006 | -H-- | C] () -- C:\Windows\Tasks\SA.DAT
[2013/09/19 10:23:08 | 000,000,960 | ---- | C] () -- C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
[2013/09/19 10:23:10 | 000,000,964 | ---- | C] () -- C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
[2014/06/10 15:40:49 | 000,000,914 | ---- | C] () -- C:\Windows\Tasks\Adobe Flash Player Updater.job
[2015/03/15 23:50:33 | 000,002,122 | ---- | C] () -- C:\Windows\Tasks\2300726e-d013-4e97-93b8-82cdb2191e24-10_user.job
[2015/03/15 23:50:38 | 000,004,504 | ---- | C] () -- C:\Windows\Tasks\2300726e-d013-4e97-93b8-82cdb2191e24-3.job
[2015/03/15 23:50:40 | 000,000,956 | ---- | C] () -- C:\Windows\Tasks\globalUpdateUpdateTaskMachineCore.job
[2015/03/15 23:50:46 | 000,000,960 | ---- | C] () -- C:\Windows\Tasks\globalUpdateUpdateTaskMachineUA.job
[2015/03/15 23:51:00 | 000,001,360 | ---- | C] () -- C:\Windows\Tasks\FHIGIC.job
[2015/03/15 23:51:03 | 000,005,528 | ---- | C] () -- C:\Windows\Tasks\2300726e-d013-4e97-93b8-82cdb2191e24-7.job
[2015/03/15 23:51:06 | 000,005,528 | ---- | C] () -- C:\Windows\Tasks\2300726e-d013-4e97-93b8-82cdb2191e24-6.job
[2015/03/15 23:51:26 | 000,004,168 | ---- | C] () -- C:\Windows\Tasks\2300726e-d013-4e97-93b8-82cdb2191e24-4.job
[2015/03/15 23:51:36 | 000,001,354 | ---- | C] () -- C:\Windows\Tasks\OEM.job
[2015/03/15 23:51:38 | 000,003,484 | ---- | C] () -- C:\Windows\Tasks\2300726e-d013-4e97-93b8-82cdb2191e24-1-7.job
[2015/03/15 23:51:40 | 000,003,148 | ---- | C] () -- C:\Windows\Tasks\2300726e-d013-4e97-93b8-82cdb2191e24-1-6.job
[2015/03/15 23:51:53 | 000,002,456 | ---- | C] () -- C:\Windows\Tasks\2300726e-d013-4e97-93b8-82cdb2191e24-5.job
[2015/03/15 23:51:54 | 000,002,456 | ---- | C] () -- C:\Windows\Tasks\2300726e-d013-4e97-93b8-82cdb2191e24-5_user.job
[2015/03/15 23:53:07 | 000,002,130 | ---- | C] () -- C:\Windows\Tasks\4b477374-5432-4754-a01d-62e796a778d3-10_user.job
[2015/03/15 23:53:09 | 000,005,200 | ---- | C] () -- C:\Windows\Tasks\4b477374-5432-4754-a01d-62e796a778d3-7.job
[2015/03/15 23:53:11 | 000,005,536 | ---- | C] () -- C:\Windows\Tasks\4b477374-5432-4754-a01d-62e796a778d3-6.job
[2015/03/15 23:53:21 | 000,004,176 | ---- | C] () -- C:\Windows\Tasks\4b477374-5432-4754-a01d-62e796a778d3-4.job
[2015/03/15 23:53:30 | 000,003,492 | ---- | C] () -- C:\Windows\Tasks\4b477374-5432-4754-a01d-62e796a778d3-1-7.job
[2015/03/15 23:53:35 | 000,003,156 | ---- | C] () -- C:\Windows\Tasks\4b477374-5432-4754-a01d-62e796a778d3-1-6.job
[2015/03/15 23:53:47 | 000,002,464 | ---- | C] () -- C:\Windows\Tasks\4b477374-5432-4754-a01d-62e796a778d3-5.job
[2015/03/15 23:53:49 | 000,002,464 | ---- | C] () -- C:\Windows\Tasks\4b477374-5432-4754-a01d-62e796a778d3-5_user.job
< >
< MD5 for: ATAPI.SYS >
[2012/07/26 06:00:48 | 000,025,840 | ---- | M] (Microsoft Corporation) MD5=A721FF570C2387E383BDDEA9632863C9 -- C:\Windows\SysNative\drivers\atapi.sys
[2012/07/26 06:00:48 | 000,025,840 | ---- | M] (Microsoft Corporation) MD5=A721FF570C2387E383BDDEA9632863C9 -- C:\Windows\SysNative\DriverStore\FileRepository\mshdc.inf_amd64_69660e2be041f47b\atapi.sys
[2012/07/26 06:00:48 | 000,025,840 | ---- | M] (Microsoft Corporation) MD5=A721FF570C2387E383BDDEA9632863C9 -- C:\Windows\SysNative\DriverStore\FileRepository\mshdc.inf_amd64_b733d17ea1e7f604\atapi.sys
[2012/07/26 06:00:48 | 000,025,840 | ---- | M] (Microsoft Corporation) MD5=A721FF570C2387E383BDDEA9632863C9 -- C:\Windows\WinSxS\amd64_mshdc.inf_31bf3856ad364e35_6.2.9200.16384_none_3601cf7eab4e0493\atapi.sys
[2012/07/26 06:00:48 | 000,025,840 | ---- | M] (Microsoft Corporation) MD5=A721FF570C2387E383BDDEA9632863C9 -- C:\Windows\WinSxS\amd64_mshdc.inf_31bf3856ad364e35_6.2.9200.16548_none_36311422ab29f479\atapi.sys
[2012/07/26 06:00:48 | 000,025,840 | ---- | M] (Microsoft Corporation) MD5=A721FF570C2387E383BDDEA9632863C9 -- C:\Windows\WinSxS\amd64_mshdc.inf_31bf3856ad364e35_6.2.9200.20652_none_36a9df45c455182a\atapi.sys
< MD5 for: AUTOCHK.EXE >
[2013/05/15 03:34:57 | 000,793,088 | ---- | M] (Microsoft Corporation) MD5=0695081E4C1F80D432B3CB7E960501A2 -- C:\Windows\WinSxS\x86_microsoft-windows-autochk_31bf3856ad364e35_6.2.9200.20717_none_df774bf9ac0a075d\autochk.exe
[2012/07/26 04:08:17 | 000,887,296 | ---- | M] (Microsoft Corporation) MD5=490B7921C6DC58022FAA908E6310CF24 -- C:\Windows\WinSxS\amd64_microsoft-windows-autochk_31bf3856ad364e35_6.2.9200.16384_none_3abd94ae4b8558e6\autochk.exe
[2012/07/26 04:20:43 | 000,792,064 | ---- | M] (Microsoft Corporation) MD5=55653D86D712641DB6930FAB64F452FF -- C:\Windows\WinSxS\x86_microsoft-windows-autochk_31bf3856ad364e35_6.2.9200.16384_none_de9ef92a9327e7b0\autochk.exe
[2013/05/15 03:24:10 | 000,793,088 | ---- | M] (Microsoft Corporation) MD5=61ADD65C9D1E2EAF8BB080A4D6AAB055 -- C:\Windows\SysWOW64\autochk.exe
[2013/05/15 03:24:10 | 000,793,088 | ---- | M] (Microsoft Corporation) MD5=61ADD65C9D1E2EAF8BB080A4D6AAB055 -- C:\Windows\WinSxS\x86_microsoft-windows-autochk_31bf3856ad364e35_6.2.9200.16612_none_dee8adbc92f0e8e0\autochk.exe
[2013/05/15 05:54:49 | 000,888,320 | ---- | M] (Microsoft Corporation) MD5=DC4F7FB24643A04ECA6FEDF9F5DE2877 -- C:\Windows\WinSxS\amd64_microsoft-windows-autochk_31bf3856ad364e35_6.2.9200.20717_none_3b95e77d64677893\autochk.exe
[2013/05/15 03:25:59 | 000,888,320 | ---- | M] (Microsoft Corporation) MD5=E47235E8DF26CA48DA189ACFD756329C -- C:\Windows\SysNative\autochk.exe
[2013/05/15 03:25:59 | 000,888,320 | ---- | M] (Microsoft Corporation) MD5=E47235E8DF26CA48DA189ACFD756329C -- C:\Windows\WinSxS\amd64_microsoft-windows-autochk_31bf3856ad364e35_6.2.9200.16612_none_3b0749404b4e5a16\autochk.exe
< MD5 for: CDROM.SYS >
[2012/07/26 03:26:36 | 000,174,080 | ---- | M] (Microsoft Corporation) MD5=339BFF85D788268752DA8C9644B188EE -- C:\Windows\SysNative\drivers\cdrom.sys
[2012/07/26 03:26:36 | 000,174,080 | ---- | M] (Microsoft Corporation) MD5=339BFF85D788268752DA8C9644B188EE -- C:\Windows\SysNative\DriverStore\FileRepository\cdrom.inf_amd64_cf04adb457be1724\cdrom.sys
[2012/07/26 03:26:36 | 000,174,080 | ---- | M] (Microsoft Corporation) MD5=339BFF85D788268752DA8C9644B188EE -- C:\Windows\WinSxS\amd64_cdrom.inf_31bf3856ad364e35_6.2.9200.16384_none_b87303472d8ba041\cdrom.sys
< MD5 for: EXPLORER.EXE >
[2012/10/11 06:53:24 | 002,115,952 | ---- | M] (Microsoft Corporation) MD5=0AD19A3CA61271BA872AD90771BA47DC -- C:\Windows\WinSxS\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.2.9200.20534_none_b592a71650d677ed\explorer.exe
[2012/10/11 09:09:58 | 002,380,944 | ---- | M] (Microsoft Corporation) MD5=0DDFEAA2AA18D4295EF220EB666B2312 -- C:\Windows\WinSxS\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.2.9200.20534_none_ab3dfcc41c75b5f2\explorer.exe
[2013/06/01 12:34:21 | 002,391,280 | ---- | M] (Microsoft Corporation) MD5=0E8E6463F81C80AFBED533E0F1F8895D -- C:\Windows\explorer.exe
[2013/06/01 12:34:21 | 002,391,280 | ---- | M] (Microsoft Corporation) MD5=0E8E6463F81C80AFBED533E0F1F8895D -- C:\Windows\WinSxS\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.2.9200.16628_none_aac334d9034c59e1\explorer.exe
[2013/06/01 11:17:57 | 002,116,520 | ---- | M] (Microsoft Corporation) MD5=15C505AD0118275E7363A539009EF3AF -- C:\Windows\WinSxS\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.2.9200.20733_none_b591aa9850d758e4\explorer.exe
[2012/07/26 04:50:01 | 002,114,936 | ---- | M] (Microsoft Corporation) MD5=5B6ED1B57DBFF18D405A0260559B571E -- C:\Windows\WinSxS\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.2.9200.16384_none_b4d2f8c937e166b1\explorer.exe
[2012/07/26 05:49:13 | 002,380,440 | ---- | M] (Microsoft Corporation) MD5=928791755FDDEA721B053535EF84FA17 -- C:\Windows\WinSxS\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.2.9200.16384_none_aa7e4e770380a4b6\explorer.exe
[2012/10/11 06:56:41 | 002,115,952 | ---- | M] (Microsoft Corporation) MD5=953ADECFF08202A01EFC6110214FDE02 -- C:\Windows\WinSxS\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.2.9200.16433_none_b5080a0137b9becc\explorer.exe
[2013/06/01 13:41:08 | 002,380,968 | ---- | M] (Microsoft Corporation) MD5=D1FF6792A3B0FBD2F2F17DC936AF6177 -- C:\Windows\WinSxS\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.2.9200.20733_none_ab3d00461c7696e9\explorer.exe
[2012/10/11 08:35:16 | 002,380,944 | ---- | M] (Microsoft Corporation) MD5=E13A31D5254C25406A7946BDD9B06364 -- C:\Windows\WinSxS\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.2.9200.16433_none_aab35faf0358fcd1\explorer.exe
[2013/06/01 11:24:46 | 002,106,176 | ---- | M] (Microsoft Corporation) MD5=EAFE46B0292D2BD2467835E2ACF717CC -- C:\Windows\SysWOW64\explorer.exe
[2013/06/01 11:24:46 | 002,106,176 | ---- | M] (Microsoft Corporation) MD5=EAFE46B0292D2BD2467835E2ACF717CC -- C:\Windows\WinSxS\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.2.9200.16628_none_b517df2b37ad1bdc\explorer.exe
< MD5 for: HAL.DLL >
[2012/07/26 06:26:45 | 000,395,504 | ---- | M] (Microsoft Corporation) MD5=05CB11FF0DF114E05879CC0A3157004C -- C:\Windows\WinSxS\amd64_microsoft-windows-hal_31bf3856ad364e35_6.2.9200.16384_none_03f29a08e36e6d4c\hal.dll
[2012/09/20 09:31:25 | 000,396,008 | ---- | M] (Microsoft Corporation) MD5=20859459119C1EDA9CEBA6E4C8CF7405 -- C:\Windows\WinSxS\amd64_microsoft-windows-hal_31bf3856ad364e35_6.2.9200.16420_none_042f7a4ee3415d71\hal.dll
[2012/09/20 09:41:14 | 000,396,008 | ---- | M] (Microsoft Corporation) MD5=6216CC1A936D91306F1BD677FBE90615 -- C:\Windows\WinSxS\amd64_microsoft-windows-hal_31bf3856ad364e35_6.2.9200.20521_none_04ba1763fc5e1692\hal.dll
[2012/10/24 06:18:13 | 000,396,008 | ---- | M] (Microsoft Corporation) MD5=ECBF30A9D0201FD0CC55087234C83545 -- C:\Windows\WinSxS\amd64_microsoft-windows-hal_31bf3856ad364e35_6.2.9200.20544_none_04a77869fc6b9a79\hal.dll
[2012/10/24 05:54:04 | 000,396,008 | ---- | M] (Microsoft Corporation) MD5=F021625F422966AD31F95CC494F7D188 -- C:\Windows\SysNative\hal.dll
[2012/10/24 05:54:04 | 000,396,008 | ---- | M] (Microsoft Corporation) MD5=F021625F422966AD31F95CC494F7D188 -- C:\Windows\WinSxS\amd64_microsoft-windows-hal_31bf3856ad364e35_6.2.9200.16442_none_041bdb0ae34fc801\hal.dll
< MD5 for: SCECLI.DLL >
[2012/07/26 04:07:07 | 000,224,768 | ---- | M] (Microsoft Corporation) MD5=4F6E1CA672370A9BCAC049CE3AB7F666 -- C:\Windows\SysNative\scecli.dll
[2012/07/26 04:07:07 | 000,224,768 | ---- | M] (Microsoft Corporation) MD5=4F6E1CA672370A9BCAC049CE3AB7F666 -- C:\Windows\WinSxS\amd64_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.2.9200.16384_none_90d789c062dfa509\scecli.dll
[2012/07/26 04:19:52 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=B95DC83FF580DD92F487C2F4D0854B6A -- C:\Windows\SysWOW64\scecli.dll
[2012/07/26 04:19:52 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=B95DC83FF580DD92F487C2F4D0854B6A -- C:\Windows\WinSxS\wow64_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.2.9200.16384_none_9b2c341297406704\scecli.dll
< MD5 for: SERVICES.EXE >
[2014/11/01 05:25:49 | 000,411,136 | ---- | M] (Microsoft Corporation) MD5=04EEF9EB87A9F2D8D038CDA1F3359138 -- C:\Windows\WinSxS\amd64_microsoft-windows-s..cecontroller-minwin_31bf3856ad364e35_6.2.9200.21283_none_986aeec09f861b32\services.exe
[2012/09/20 07:33:11 | 000,410,624 | ---- | M] (Microsoft Corporation) MD5=581190907DA1CF8CB7B87B35FFE64A07 -- C:\Windows\WinSxS\amd64_microsoft-windows-s..cecontroller-minwin_31bf3856ad364e35_6.2.9200.20521_none_98a9ea2e9f571eb2\services.exe
[2012/07/26 06:26:45 | 000,410,624 | ---- | M] (Microsoft Corporation) MD5=754A2CC1F32107EA87CBD305ABE3E618 -- C:\Windows\WinSxS\amd64_microsoft-windows-s..cecontroller-minwin_31bf3856ad364e35_6.2.9200.16384_none_97e26cd38667756c\services.exe
[2012/09/20 07:33:46 | 000,410,624 | ---- | M] (Microsoft Corporation) MD5=8F226143046435C75C033B0C52E90FFE -- C:\Windows\WinSxS\amd64_microsoft-windows-s..cecontroller-minwin_31bf3856ad364e35_6.2.9200.16420_none_981f4d19863a6591\services.exe
[2014/11/01 07:28:50 | 000,417,280 | ---- | M] (Microsoft Corporation) MD5=B6AEF1771CCA54B67DA4932753F74124 -- C:\Windows\SysNative\services.exe
[2014/11/01 07:28:50 | 000,417,280 | ---- | M] (Microsoft Corporation) MD5=B6AEF1771CCA54B67DA4932753F74124 -- C:\Windows\WinSxS\amd64_microsoft-windows-s..cecontroller-minwin_31bf3856ad364e35_6.2.9200.17166_none_97f9f2ab86558f8b\services.exe
< MD5 for: SVCHOST.EXE >
[2012/07/26 04:20:58 | 000,023,040 | ---- | M] (Microsoft Corporation) MD5=0A175AF8B65797BD22C11903A8BFEB2D -- C:\Windows\WinSxS\x86_microsoft-windows-services-svchost_31bf3856ad364e35_6.2.9200.16384_none_b2666581d6b482a6\svchost.exe
[2012/07/26 04:08:47 | 000,030,208 | ---- | M] (Microsoft Corporation) MD5=57350BEDE3834915B6145B67C71C7BDA -- C:\Windows\WinSxS\amd64_microsoft-windows-services-svchost_31bf3856ad364e35_6.2.9200.16384_none_0e8501058f11f3dc\svchost.exe
[2012/09/20 07:33:14 | 000,029,696 | ---- | M] (Microsoft Corporation) MD5=607F7CB143783A8F9BA058D2FC4F2D36 -- C:\Windows\WinSxS\amd64_microsoft-windows-services-svchost_31bf3856ad364e35_6.2.9200.20521_none_0f4c7e60a8019d22\svchost.exe
[2012/09/20 06:55:26 | 000,023,040 | ---- | M] (Microsoft Corporation) MD5=A46DC432F81473F526E3994AA483E366 -- C:\Windows\SysWOW64\svchost.exe
[2012/09/20 06:55:26 | 000,023,040 | ---- | M] (Microsoft Corporation) MD5=A46DC432F81473F526E3994AA483E366 -- C:\Windows\WinSxS\x86_microsoft-windows-services-svchost_31bf3856ad364e35_6.2.9200.16420_none_b2a345c7d68772cb\svchost.exe
[2012/09/20 07:33:52 | 000,029,696 | ---- | M] (Microsoft Corporation) MD5=EDE27EACE742EE2888C5DD36400A2EC0 -- C:\Windows\SysNative\svchost.exe
[2012/09/20 07:33:52 | 000,029,696 | ---- | M] (Microsoft Corporation) MD5=EDE27EACE742EE2888C5DD36400A2EC0 -- C:\Windows\WinSxS\amd64_microsoft-windows-services-svchost_31bf3856ad364e35_6.2.9200.16420_none_0ec1e14b8ee4e401\svchost.exe
[2012/09/20 06:56:27 | 000,023,040 | ---- | M] (Microsoft Corporation) MD5=EEF5E64822C3E21B186EA53463BE92DA -- C:\Windows\WinSxS\x86_microsoft-windows-services-svchost_31bf3856ad364e35_6.2.9200.20521_none_b32de2dcefa42bec\svchost.exe
< MD5 for: TCPIP.SYS >
[2014/01/27 06:37:35 | 002,228,568 | ---- | M] (Microsoft Corporation) MD5=088252DA8AFDCD919C5835E12795EE3A -- C:\Windows\WinSxS\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.2.9200.20927_none_0cb540660914acd9\tcpip.sys
[2013/06/01 12:33:13 | 002,233,600 | ---- | M] (Microsoft Corporation) MD5=0D05E0147C1329C53AAF97882DEDD96A -- C:\Windows\WinSxS\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.2.9200.16628_none_0c2ca018eff62c18\tcpip.sys
[2012/09/20 07:41:49 | 002,225,896 | ---- | M] (Microsoft Corporation) MD5=165DDAA5A399C51FE9D6C056D3B9F4EB -- C:\Windows\WinSxS\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.2.9200.20521_none_0caf3712091a2033\tcpip.sys
[2012/09/20 09:04:35 | 002,225,896 | ---- | M] (Microsoft Corporation) MD5=1D644E2D0FC395A055AB1C23C3B43631 -- C:\Windows\WinSxS\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.2.9200.16420_none_0c2499fceffd6712\tcpip.sys
[2014/09/13 07:24:47 | 002,233,152 | ---- | M] (Microsoft Corporation) MD5=2AE9136724568DB4F08BC04F131CFC54 -- C:\Windows\SysNative\drivers\tcpip.sys
[2014/09/13 07:24:47 | 002,233,152 | ---- | M] (Microsoft Corporation) MD5=2AE9136724568DB4F08BC04F131CFC54 -- C:\Windows\WinSxS\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.2.9200.17121_none_0c257dcceffca295\tcpip.sys
[2014/09/13 19:36:39 | 002,231,616 | ---- | M] (Microsoft Corporation) MD5=362EAD73FF5BC7B6432F5D1CAB9D6AA7 -- C:\Windows\WinSxS\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.2.9200.21237_none_0caa4c68091cf65a\tcpip.sys
[2013/08/01 11:41:31 | 002,233,688 | ---- | M] (Microsoft Corporation) MD5=37D85E873C9531A2F88DD9C63D3F8A9E -- C:\Windows\WinSxS\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.2.9200.16679_none_0bf790c6f01dd124\tcpip.sys
[2013/06/01 12:38:57 | 002,227,456 | ---- | M] (Microsoft Corporation) MD5=396E3A3442AE13820E5221F67D0071DA -- C:\Windows\WinSxS\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.2.9200.20733_none_0ca66b8609206920\tcpip.sys
[2013/02/02 10:03:26 | 002,226,408 | ---- | M] (Microsoft Corporation) MD5=9B09D075FEC02026A6AD6D78B2CCD67F -- C:\Windows\WinSxS\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.2.9200.20623_none_0cb1398c09185008\tcpip.sys
[2012/07/26 06:26:47 | 002,224,880 | ---- | M] (Microsoft Corporation) MD5=AF6A8D27FCABFF85DDC1D4599582B4FE -- C:\Windows\WinSxS\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.2.9200.16384_none_0be7b9b6f02a76ed\tcpip.sys
[2014/01/27 04:42:58 | 002,232,664 | ---- | M] (Microsoft Corporation) MD5=B23882881EFD9404B62993906BC38709 -- C:\Windows\WinSxS\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.2.9200.16808_none_0c4243bcefe5ee84\tcpip.sys
[2013/03/02 10:59:37 | 002,231,528 | ---- | M] (Microsoft Corporation) MD5=B6D52E2C38B49A156E58FF5B9C6CA8BE -- C:\Windows\WinSxS\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.2.9200.16548_none_0c16fe5af00666d3\tcpip.sys
[2013/08/01 14:06:53 | 002,228,568 | ---- | M] (Microsoft Corporation) MD5=DC884CC10A0E55414C8B617C8481E413 -- C:\Windows\WinSxS\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.2.9200.20787_none_0c745d1209455a31\tcpip.sys
[2013/03/02 11:20:07 | 002,225,896 | ---- | M] (Microsoft Corporation) MD5=DD6E5A51D93596DF7EA5F956FDE3306D -- C:\Windows\WinSxS\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.2.9200.20652_none_0c8fc97e09318a84\tcpip.sys
[2013/02/02 11:28:54 | 002,226,408 | ---- | M] (Microsoft Corporation) MD5=F4F78B7F39BD56BD0BFE4C4399398F6F -- C:\Windows\WinSxS\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.2.9200.16518_none_0c376e1eefee1300\tcpip.sys
< MD5 for: USERINIT.EXE >
[2012/07/26 04:08:49 | 000,025,088 | ---- | M] (Microsoft Corporation) MD5=0E925F7BA032920D58DD284B6181A247 -- C:\Windows\SysNative\userinit.exe
[2012/07/26 04:08:49 | 000,025,088 | ---- | M] (Microsoft Corporation) MD5=0E925F7BA032920D58DD284B6181A247 -- C:\Windows\WinSxS\amd64_microsoft-windows-userinit_31bf3856ad364e35_6.2.9200.16384_none_34f2617a5b742e02\userinit.exe
[2012/07/26 04:21:00 | 000,021,504 | ---- | M] (Microsoft Corporation) MD5=9F6289D194A04A09671FEED4B6CB6EF7 -- C:\Windows\SysWOW64\userinit.exe
[2012/07/26 04:21:00 | 000,021,504 | ---- | M] (Microsoft Corporation) MD5=9F6289D194A04A09671FEED4B6CB6EF7 -- C:\Windows\WinSxS\x86_microsoft-windows-userinit_31bf3856ad364e35_6.2.9200.16384_none_d8d3c5f6a316bccc\userinit.exe
< MD5 for: WINLOGON.EXE >
[2012/09/20 07:33:55 | 000,516,608 | ---- | M] (Microsoft Corporation) MD5=1F84B5F8DBDFFD36DF143C61CE25F12A -- C:\Windows\WinSxS\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.2.9200.16420_none_c8c988c15e88a211\winlogon.exe
[2012/09/20 07:33:17 | 000,516,608 | ---- | M] (Microsoft Corporation) MD5=6522E98C94A2A81AE11EB66D2AF5743A -- C:\Windows\WinSxS\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.2.9200.20521_none_c95425d677a55b32\winlogon.exe
[2014/04/12 08:52:06 | 000,578,048 | ---- | M] (Microsoft Corporation) MD5=69ED828D121EA8FD0D84184DB60E2B06 -- C:\Windows\WinSxS\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.2.9200.21012_none_c95fd5c6779c8076\winlogon.exe
[2014/04/12 08:52:06 | 000,578,048 | ---- | M] (Microsoft Corporation) MD5=69ED828D121EA8FD0D84184DB60E2B06 -- C:\Windows\WinSxS\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.2.9200.21133_none_c94b381e77abced6\winlogon.exe
[2014/04/12 08:52:06 | 000,578,048 | ---- | M] (Microsoft Corporation) MD5=69ED828D121EA8FD0D84184DB60E2B06 -- C:\Windows\WinSxS\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.2.9200.21243_none_c9406a1877b3e7ee\winlogon.exe
[2014/04/12 08:52:06 | 000,578,048 | ---- | M] (Microsoft Corporation) MD5=69ED828D121EA8FD0D84184DB60E2B06 -- C:\Windows\WinSxS\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.2.9200.21269_none_c930cbfc77beb7da\winlogon.exe
[2014/04/12 08:52:06 | 000,578,048 | ---- | M] (Microsoft Corporation) MD5=69ED828D121EA8FD0D84184DB60E2B06 -- C:\Windows\WinSxS\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.2.9200.21290_none_c907599e77df279e\winlogon.exe
[2014/04/12 08:52:06 | 000,578,048 | ---- | M] (Microsoft Corporation) MD5=69ED828D121EA8FD0D84184DB60E2B06 -- C:\Windows\WinSxS\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.2.9200.21335_none_c94d3c7e77a9fbd2\winlogon.exe
[2014/04/12 08:52:06 | 000,578,048 | ---- | M] (Microsoft Corporation) MD5=69ED828D121EA8FD0D84184DB60E2B06 -- C:\Windows\WinSxS\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.2.9200.21349_none_c9466dba77ae7d1f\winlogon.exe
[2014/04/12 08:52:06 | 000,578,048 | ---- | M] (Microsoft Corporation) MD5=69ED828D121EA8FD0D84184DB60E2B06 -- C:\Windows\WinSxS\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.2.9200.21370_none_c91cfb5c77ceece3\winlogon.exe
[2014/04/12 08:52:06 | 000,578,048 | ---- | M] (Microsoft Corporation) MD5=69ED828D121EA8FD0D84184DB60E2B06 -- C:\Windows\WinSxS\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.2.9200.21410_none_c95ddcca779e4264\winlogon.exe
[2014/04/12 10:10:31 | 000,578,048 | ---- | M] (Microsoft Corporation) MD5=75DD70A14145499C9F7D903CF9A8C91B -- C:\Windows\SysNative\winlogon.exe
[2014/04/12 10:10:31 | 000,578,048 | ---- | M] (Microsoft Corporation) MD5=75DD70A14145499C9F7D903CF9A8C91B -- C:\Windows\WinSxS\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.2.9200.16891_none_c87ee12f5ec0739b\winlogon.exe
[2014/04/12 10:10:31 | 000,578,048 | ---- | M] (Microsoft Corporation) MD5=75DD70A14145499C9F7D903CF9A8C91B -- C:\Windows\WinSxS\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.2.9200.17014_none_c8d83b755e7d1081\winlogon.exe
[2014/04/12 10:10:31 | 000,578,048 | ---- | M] (Microsoft Corporation) MD5=75DD70A14145499C9F7D903CF9A8C91B -- C:\Windows\WinSxS\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.2.9200.17127_none_c8d06e4d5e82759e\winlogon.exe
[2014/04/12 10:10:31 | 000,578,048 | ---- | M] (Microsoft Corporation) MD5=75DD70A14145499C9F7D903CF9A8C91B -- C:\Windows\WinSxS\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.2.9200.17150_none_c8a8fc835ea11810\winlogon.exe
[2014/04/12 10:10:31 | 000,578,048 | ---- | M] (Microsoft Corporation) MD5=75DD70A14145499C9F7D903CF9A8C91B -- C:\Windows\WinSxS\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.2.9200.17172_none_c8955d3f5eaf82a0\winlogon.exe
[2014/04/12 10:10:31 | 000,578,048 | ---- | M] (Microsoft Corporation) MD5=75DD70A14145499C9F7D903CF9A8C91B -- C:\Windows\WinSxS\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.2.9200.17218_none_c8dc40695e79702b\winlogon.exe
[2014/04/12 10:10:31 | 000,578,048 | ---- | M] (Microsoft Corporation) MD5=75DD70A14145499C9F7D903CF9A8C91B -- C:\Windows\WinSxS\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.2.9200.17231_none_c8bf9e8b5e8ff6ac\winlogon.exe
[2014/04/12 10:10:31 | 000,578,048 | ---- | M] (Microsoft Corporation) MD5=75DD70A14145499C9F7D903CF9A8C91B -- C:\Windows\WinSxS\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.2.9200.17251_none_c8a9feb35ea02e8e\winlogon.exe
[2014/04/12 10:10:31 | 000,578,048 | ---- | M] (Microsoft Corporation) MD5=75DD70A14145499C9F7D903CF9A8C91B -- C:\Windows\WinSxS\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.2.9200.17293_none_c880bf975ebed100\winlogon.exe
[2012/07/26 04:08:50 | 000,516,608 | ---- | M] (Microsoft Corporation) MD5=93AB226C07A9789B2EC7B41F73602F76 -- C:\Windows\WinSxS\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.2.9200.16384_none_c88ca87b5eb5b1ec\winlogon.exe
[2012/10/11 06:46:58 | 000,517,120 | ---- | M] (Microsoft Corporation) MD5=BCF2036A0DD579E47C008C133550283E -- C:\Windows\WinSxS\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.2.9200.16433_none_c8c1b9b35e8e0a07\winlogon.exe
[2012/10/11 06:45:27 | 000,517,120 | ---- | M] (Microsoft Corporation) MD5=CBFD56B4EC07CB056A6ABD55DD33671F -- C:\Windows\WinSxS\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.2.9200.20534_none_c94c56c877aac328\winlogon.exe
< >
< %systemroot%*.* /U /s >
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
[2 C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp files -> C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp -> ]
[20 C:\Windows\Temp\*.tmp files -> C:\Windows\Temp\*.tmp -> ]
< %SYSTEMDRIVE%\*.exe >
< %ALLUSERSPROFILE%\Application Data\*. >
< %ALLUSERSPROFILE%\Application Data\*.exe /s >
< %APPDATA%\*. >
[2013/10/03 11:20:49 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Adobe
[2014/02/23 10:07:10 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Apowersoft
[2013/12/23 18:11:32 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Canneverbe Limited
[2013/10/03 10:52:41 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\DAEMON Tools Lite
[2014/09/02 23:20:49 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\FlowStone
[2014/02/13 14:04:48 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\GHISLER
[2015/02/01 02:01:42 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\IDT
[2014/09/02 23:27:37 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Image-Line
[2013/12/20 14:33:56 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\ImgBurn
[2014/08/11 13:15:48 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\LibreOffice
[2013/09/19 10:25:37 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Macromedia
[2014/02/21 12:10:05 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Media Player Classic
[2015/03/15 23:51:42 | 000,000,000 | --SD | M] -- C:\Users\Uzivatel\AppData\Roaming\Microsoft
[2013/09/25 06:39:24 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Mozilla
[2015/03/15 23:55:16 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Seznam.cz
[2015/03/08 23:28:37 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Skype
[2014/09/02 23:27:42 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\SongManager
[2013/09/20 10:45:35 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Synaptics
[2013/11/07 10:37:53 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\The Creative Assembly
[2013/12/23 18:07:56 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\Triton Interactive
[2015/03/06 17:54:54 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\TS3Client
[2015/03/11 15:20:10 | 000,000,000 | ---D | M] -- C:\Users\Uzivatel\AppData\Roaming\vlc
< %APPDATA%\*.exe /s >
[2015/03/15 23:50:59 | 001,854,464 | ---- | M] (Cinema PlusV05.03) -- C:\Users\Uzivatel\AppData\Roaming\FHIGIC.exe
[2015/03/15 23:51:35 | 001,371,136 | ---- | M] (Cinema PlusV05.03) -- C:\Users\Uzivatel\AppData\Roaming\OEM.exe
[2013/09/19 10:25:30 | 000,054,632 | ---- | M] (Adobe Systems Inc.) -- C:\Users\Uzivatel\AppData\Roaming\Macromedia\Flash Player\www.macromedia.com\bin\airappinstaller\airappinstaller.exe
< %systemroot%\*. /mp /s >
< %systemroot%\system32\*.dll /lockedfiles >
< %systemroot%\Tasks\*.job >
[2015/03/15 23:51:41 | 000,003,148 | ---- | M] () -- C:\Windows\Tasks\2300726e-d013-4e97-93b8-82cdb2191e24-1-6.job
[2015/03/15 23:51:39 | 000,003,484 | ---- | M] () -- C:\Windows\Tasks\2300726e-d013-4e97-93b8-82cdb2191e24-1-7.job
[2015/03/15 23:50:37 | 000,002,122 | ---- | M] () -- C:\Windows\Tasks\2300726e-d013-4e97-93b8-82cdb2191e24-10_user.job
[2015/03/15 23:50:43 | 000,004,504 | ---- | M] () -- C:\Windows\Tasks\2300726e-d013-4e97-93b8-82cdb2191e24-3.job
[2015/03/15 23:51:27 | 000,004,168 | ---- | M] () -- C:\Windows\Tasks\2300726e-d013-4e97-93b8-82cdb2191e24-4.job
[2015/03/15 23:51:53 | 000,002,456 | ---- | M] () -- C:\Windows\Tasks\2300726e-d013-4e97-93b8-82cdb2191e24-5.job
[2015/03/15 23:51:55 | 000,002,456 | ---- | M] () -- C:\Windows\Tasks\2300726e-d013-4e97-93b8-82cdb2191e24-5_user.job
[2015/03/15 23:51:08 | 000,005,528 | ---- | M] () -- C:\Windows\Tasks\2300726e-d013-4e97-93b8-82cdb2191e24-6.job
[2015/03/15 23:51:06 | 000,005,528 | ---- | M] () -- C:\Windows\Tasks\2300726e-d013-4e97-93b8-82cdb2191e24-7.job
[2015/03/15 23:53:36 | 000,003,156 | ---- | M] () -- C:\Windows\Tasks\4b477374-5432-4754-a01d-62e796a778d3-1-6.job
[2015/03/15 23:53:34 | 000,003,492 | ---- | M] () -- C:\Windows\Tasks\4b477374-5432-4754-a01d-62e796a778d3-1-7.job
[2015/03/15 23:53:08 | 000,002,130 | ---- | M] () -- C:\Windows\Tasks\4b477374-5432-4754-a01d-62e796a778d3-10_user.job
[2015/03/15 23:53:22 | 000,004,176 | ---- | M] () -- C:\Windows\Tasks\4b477374-5432-4754-a01d-62e796a778d3-4.job
[2015/03/15 23:53:48 | 000,002,464 | ---- | M] () -- C:\Windows\Tasks\4b477374-5432-4754-a01d-62e796a778d3-5.job
[2015/03/15 23:53:50 | 000,002,464 | ---- | M] () -- C:\Windows\Tasks\4b477374-5432-4754-a01d-62e796a778d3-5_user.job
[2015/03/15 23:53:12 | 000,005,536 | ---- | M] () -- C:\Windows\Tasks\4b477374-5432-4754-a01d-62e796a778d3-6.job
[2015/03/15 23:53:10 | 000,005,200 | ---- | M] () -- C:\Windows\Tasks\4b477374-5432-4754-a01d-62e796a778d3-7.job
[2015/03/16 00:13:00 | 000,000,914 | ---- | M] () -- C:\Windows\Tasks\Adobe Flash Player Updater.job
[2015/03/15 23:51:02 | 000,001,360 | ---- | M] () -- C:\Windows\Tasks\FHIGIC.job
[2015/03/15 23:58:00 | 000,000,956 | ---- | M] () -- C:\Windows\Tasks\globalUpdateUpdateTaskMachineCore.job
[2015/03/15 23:58:00 | 000,000,960 | ---- | M] () -- C:\Windows\Tasks\globalUpdateUpdateTaskMachineUA.job
[2015/03/15 14:27:00 | 000,000,960 | ---- | M] () -- C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
[2015/03/16 00:27:02 | 000,000,964 | ---- | M] () -- C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
[2015/03/15 23:51:37 | 000,001,354 | ---- | M] () -- C:\Windows\Tasks\OEM.job
Re: odinstalace programu
< %systemroot%\system32\drivers\*.sys /lockedfiles >
< %systemroot%\System32\config\*.sav >
< %systemroot%\system32\*.dll /lockedfiles >
< %systemroot%\system32\drivers\*.sys /3 >
< %systemroot%\system32\*.* /3 >
< %SYSTEMDRIVE%\*.exe >
< >
< HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s >
"Steam" = "C:\Program Files (x86)\Steam\steam.exe" -silent -- [2015/02/19 00:51:18 | 002,874,048 | ---- | M] (Valve Corporation)
"Adobe Flash Player Plugin" = "C:\Users\Uzivatel\AppData\Local\Temp\{3PNINEGS-GBYR-HYWY-HTYC-EEQTZJDERTGNACTPQT}\activex.exe" -- [2014/02/27 18:10:59 | 001,022,154 | ---- | M] ()
"Akamai NetSession Interface" = "C:\Users\Uzivatel\AppData\Local\Akamai\netsession_win.exe" -- [2014/10/29 23:25:46 | 004,673,432 | ---- | M] (Akamai Technologies, Inc.)
< >
< %PROGRAMFILES%\Mozilla Firefox\firefox.exe /md5 >
[2015/03/06 20:41:08 | 000,376,944 | ---- | M] (Mozilla Corporation) MD5=F51D682701B303ED6CC5474CE5FA5AAA -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
< %PROGRAMFILES%\Internet Explorer\iexplore.exe /md5 >
[2015/02/21 06:43:04 | 000,770,712 | ---- | M] (Microsoft Corporation) MD5=333A31AD13A3BB850D93AEFAE4472574 -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
< %PROGRAMFILES%\Opera\opera.exe /md5 >
< %PROGRAMFILES%\Google\Chrome\Application\chrome.exe /md5 >
[2015/03/07 07:13:08 | 000,809,288 | ---- | M] (Google Inc.) MD5=9201E92771F3D536DA4A53FDCC4B976B -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
< >
< %SystemDrive%\PhysicalMBR.bin /md5 >
[2015/03/16 00:19:24 | 000,000,512 | ---- | M] () MD5=2CE6DD57E8E2B9609F05731D5378E514 -- C:\PhysicalMBR.bin
< >
< *crack* /s >
[2003/07/18 07:57:31 | 000,028,396 | ---- | M] () -- \Program Files (x86)\Aspyr\Tony Hawks Pro Skater 4\Game\data\sounds\Wav\Alc\baseballcrack.wav
[2003/12/05 11:52:40 | 000,000,796 | ---- | M] () -- \Program Files (x86)\GTA San Andreas\data\Decision\Craig\crack1.ped
[2013/03/12 11:47:38 | 000,007,624 | ---- | M] () -- \Program Files (x86)\Image-Line\FL Studio 11\Data\Patches\Packs\Drums\Percussion\FPC Ice Crack.wav
[2012/10/02 09:41:48 | 000,000,400 | ---- | M] () -- \Program Files (x86)\Image-Line\FL Studio 11\Data\Patches\Plugin presets\Generators\Drumpad\Sound FX\Crack.fst
[2008/09/08 21:55:14 | 000,000,204 | ---- | M] () -- \Program Files (x86)\Image-Line\FL Studio 11\Plugins\Fruity\Effects\Hardcore\Presets\I cracked my Tube!.hdprg
[2010/01/15 21:56:40 | 000,000,272 | ---- | M] () -- \Program Files (x86)\Image-Line\FL Studio 11\Plugins\Fruity\Generators\Drumaxx\Drum Patches\Sound FX\Crack.dmpatch
[2010/01/15 21:56:40 | 000,000,272 | ---- | M] () -- \Program Files (x86)\Image-Line\FL Studio 11\Plugins\Fruity\Generators\DrumPad\Drum Patches\Sound FX\Crack.dmpatch
[2010/05/29 21:41:56 | 000,114,899 | ---- | M] () -- \Program Files (x86)\Inkscape\python\Lib\site-packages\numpy\f2py\crackfortran.py
[2013/06/14 23:31:30 | 000,000,706 | ---- | M] () -- \Program Files (x86)\Steam\SteamApps\common\Company of Heroes Relaunch\Eastern_Front\Data\sound\weapons\ppsh41\ppsh41_whipcrack.bsc
[2013/06/24 20:20:50 | 000,062,238 | ---- | M] () -- \Program Files\GIMP 2\share\gimp\2.0\patterns\cracked.pat
[2014/09/09 19:19:38 | 000,026,406 | ---- | M] () -- \Users\Uzivatel\AppData\Roaming\TS3Client\cache\remote\www.justinparks.com\wp-content\uploads\2009\10\facebook-cracked.png
[2010/01/15 21:56:40 | 000,000,272 | ---- | M] () -- \Users\Uzivatel\Documents\Image-Line\Data\Drumaxx\Drum Patches\Sound FX\Crack.dmpatch
< *keygen* /s >
[2014/03/16 17:16:38 | 000,094,208 | ---- | M] () -- \Users\Uzivatel\AppData\Local\Temp\keygen.exe
[417 \Users\Uzivatel\AppData\Local\Temp\*.tmp files -> \Users\Uzivatel\AppData\Local\Temp\*.tmp -> ]
[2014/09/05 14:05:35 | 012,903,802 | ---- | M] () -- \Users\Uzivatel\Downloads\guitar-pro-5-2-keygen-pres-MultiLoad.cz.zip
< *loader* /s >
[2013/06/06 16:05:22 | 000,410,800 | ---- | M] () -- \Program Files (x86)\Apowersoft\Video Download Capture\ApowersoftDownloaderHelp.dll
[2013/05/09 00:40:52 | 000,268,440 | ---- | M] () -- \Program Files (x86)\Common Files\Microsoft Shared\VSTO\10.0\VSTOLoader.dll
[2013/05/09 00:40:52 | 000,019,080 | ---- | M] () -- \Program Files (x86)\Common Files\Microsoft Shared\VSTO\10.0\1033\VSTOLoaderUI.dll
[2010/03/06 09:24:56 | 000,003,614 | ---- | M] () -- \Program Files (x86)\Inkscape\etc\gtk-2.0\gdk-pixbuf.loaders
[2010/03/06 09:24:56 | 000,030,804 | ---- | M] () -- \Program Files (x86)\Inkscape\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-ani.dll
[2010/03/06 09:24:56 | 000,027,898 | ---- | M] () -- \Program Files (x86)\Inkscape\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-bmp.dll
[2010/03/06 09:24:56 | 000,042,058 | ---- | M] () -- \Program Files (x86)\Inkscape\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-gif.dll
[2010/03/06 09:24:56 | 000,023,145 | ---- | M] () -- \Program Files (x86)\Inkscape\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-icns.dll
[2010/03/06 09:24:56 | 000,028,692 | ---- | M] () -- \Program Files (x86)\Inkscape\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-ico.dll
[2010/03/06 09:24:56 | 000,034,496 | ---- | M] () -- \Program Files (x86)\Inkscape\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-jpeg.dll
[2010/03/06 09:24:56 | 000,022,435 | ---- | M] () -- \Program Files (x86)\Inkscape\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-pcx.dll
[2010/03/06 09:24:56 | 000,036,528 | ---- | M] () -- \Program Files (x86)\Inkscape\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-png.dll
[2010/03/06 09:24:56 | 000,026,252 | ---- | M] () -- \Program Files (x86)\Inkscape\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-pnm.dll
[2010/03/06 09:24:56 | 000,020,063 | ---- | M] () -- \Program Files (x86)\Inkscape\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-ras.dll
[2010/03/06 09:24:56 | 000,024,412 | ---- | M] () -- \Program Files (x86)\Inkscape\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-tga.dll
[2010/03/06 09:24:56 | 000,029,401 | ---- | M] () -- \Program Files (x86)\Inkscape\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-tiff.dll
[2010/03/06 09:24:56 | 000,019,399 | ---- | M] () -- \Program Files (x86)\Inkscape\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-wbmp.dll
[2010/03/06 09:24:56 | 000,025,270 | ---- | M] () -- \Program Files (x86)\Inkscape\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-xbm.dll
[2010/03/06 09:24:56 | 000,042,114 | ---- | M] () -- \Program Files (x86)\Inkscape\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-xpm.dll
[2010/03/06 09:24:56 | 000,018,909 | ---- | M] () -- \Program Files (x86)\Inkscape\lib\gtk-2.0\2.10.0\loaders\svg_loader.dll
[2010/08/16 10:41:40 | 000,032,958 | ---- | M] () -- \Program Files (x86)\Inkscape\python\Lib\site-packages\sk1libs\filters\import\ailoader.py
[2010/08/16 10:41:40 | 000,001,847 | ---- | M] () -- \Program Files (x86)\Inkscape\python\Lib\site-packages\sk1libs\filters\import\bziploader.py
[2010/08/16 10:41:40 | 000,057,685 | ---- | M] () -- \Program Files (x86)\Inkscape\python\Lib\site-packages\sk1libs\filters\import\ccxloader.py
[2010/08/16 10:41:40 | 000,029,336 | ---- | M] () -- \Program Files (x86)\Inkscape\python\Lib\site-packages\sk1libs\filters\import\cdrloader.py
[2010/08/16 10:41:40 | 000,001,341 | ---- | M] () -- \Program Files (x86)\Inkscape\python\Lib\site-packages\sk1libs\filters\import\cdrziploader.py
[2010/08/16 10:41:40 | 000,028,643 | ---- | M] () -- \Program Files (x86)\Inkscape\python\Lib\site-packages\sk1libs\filters\import\cgmloader.py
[2010/08/16 10:41:40 | 000,055,918 | ---- | M] () -- \Program Files (x86)\Inkscape\python\Lib\site-packages\sk1libs\filters\import\cmxloader.py
[2010/08/16 10:41:40 | 000,038,308 | ---- | M] () -- \Program Files (x86)\Inkscape\python\Lib\site-packages\sk1libs\filters\import\dxfloader.py
[2010/08/16 10:41:40 | 000,001,949 | ---- | M] () -- \Program Files (x86)\Inkscape\python\Lib\site-packages\sk1libs\filters\import\gziploader.py
[2010/08/16 10:41:40 | 000,007,779 | ---- | M] () -- \Program Files (x86)\Inkscape\python\Lib\site-packages\sk1libs\filters\import\pltloader.py
[2010/08/16 10:41:40 | 000,017,301 | ---- | M] () -- \Program Files (x86)\Inkscape\python\Lib\site-packages\sk1libs\filters\import\sk1loader.py
[2010/08/16 10:41:40 | 000,015,416 | ---- | M] () -- \Program Files (x86)\Inkscape\python\Lib\site-packages\sk1libs\filters\import\skloader.py
[2010/08/16 10:41:40 | 000,015,832 | ---- | M] () -- \Program Files (x86)\Inkscape\python\Lib\site-packages\sk1libs\filters\import\stitchloader.py
[2010/08/16 10:41:40 | 000,038,937 | ---- | M] () -- \Program Files (x86)\Inkscape\python\Lib\site-packages\sk1libs\filters\import\svgloader.py
[2010/08/16 10:41:40 | 000,014,300 | ---- | M] () -- \Program Files (x86)\Inkscape\python\Lib\site-packages\sk1libs\filters\import\wmfloader.py
[2010/08/16 10:41:40 | 000,017,550 | ---- | M] () -- \Program Files (x86)\Inkscape\python\Lib\site-packages\sk1libs\filters\import\xfigloader.py
[2013/08/20 11:25:48 | 000,006,852 | ---- | M] () -- \Program Files (x86)\LibreOffice 4\program\pythonloader.py
[2013/08/23 16:08:32 | 000,000,171 | ---- | M] () -- \Program Files (x86)\LibreOffice 4\program\pythonloader.uno.ini
[2013/08/23 16:06:56 | 000,037,272 | ---- | M] () -- \Program Files (x86)\LibreOffice 4\program\pythonloaderlo.dll
[2013/08/22 01:35:58 | 000,124,248 | ---- | M] () -- \Program Files (x86)\LibreOffice 4\program\classes\libloader-1.1.6.jar
[2013/08/22 04:31:02 | 000,013,850 | ---- | M] () -- \Program Files (x86)\LibreOffice 4\program\python-core-3.3.0\lib\unittest\loader.py
[2013/08/22 04:31:06 | 000,049,593 | ---- | M] () -- \Program Files (x86)\LibreOffice 4\program\python-core-3.3.0\lib\unittest\test\test_loader.py
[2013/08/23 16:06:28 | 000,082,328 | ---- | M] () -- \Program Files (x86)\LibreOffice 4\URE\bin\javaloader.uno.dll
[2013/08/22 01:24:40 | 000,004,301 | ---- | M] () -- \Program Files (x86)\LibreOffice 4\URE\java\unoloader.jar
[2014/12/10 02:28:04 | 000,001,701 | ---- | M] () -- \Program Files (x86)\Steam\friends\broadcastuploaderrornotification.res
[2014/11/11 19:48:42 | 000,007,825 | ---- | M] () -- \Program Files (x86)\Steam\remoteui\static\libs\images\ajax-loader.gif
[2014/08/29 11:55:59 | 001,921,024 | ---- | M] () -- \Program Files (x86)\Steam\SteamApps\common\Company of Heroes\RelicDownloader\RelicDownloader.exe
[2014/08/29 13:58:35 | 000,007,244 | ---- | M] () -- \Program Files (x86)\Steam\SteamApps\common\Company of Heroes\RelicDownloader\Locale\English\RelicDownloader.English.ucs
[2013/05/09 00:45:06 | 000,364,168 | ---- | M] () -- \Program Files\Common Files\microsoft shared\VSTO\10.0\VSTOLoader.dll
[2013/05/09 00:45:06 | 000,019,080 | ---- | M] () -- \Program Files\Common Files\microsoft shared\VSTO\10.0\1033\VSTOLoaderUI.dll
[2011/03/08 08:43:28 | 000,013,734 | ---- | M] () -- \Program Files\GIMP 2\Python\Lib\unittest\loader.py
[2012/07/26 11:06:16 | 000,039,485 | ---- | M] () -- \Program Files\WindowsApps\Microsoft.Bing_1.2.0.137_x64__8wekyb3d8bbwe\shell\js\backgroundImageLoader.js
[2014/08/01 08:20:51 | 000,032,157 | ---- | M] () -- \Program Files\WindowsApps\Microsoft.Bing_1.5.1.259_x64__8wekyb3d8bbwe\shell\js\backgroundImageLoader.js
[2014/05/14 11:18:44 | 000,002,089 | ---- | M] () -- \Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.0.1119.516_x64__8wekyb3d8bbwe\DependencyLoader\DependencyLoader.js
[2014/05/14 11:18:44 | 000,001,326 | ---- | M] () -- \Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.0.1119.516_x64__8wekyb3d8bbwe\ModernAttachmentWell\AttachmentWellComposeDependencyLoader.js
[2014/05/14 11:18:44 | 000,001,208 | ---- | M] () -- \Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.0.1119.516_x64__8wekyb3d8bbwe\ModernAttachmentWell\AttachmentWellReadDependencyLoader.js
[2014/05/14 11:18:44 | 000,002,552 | ---- | M] () -- \Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.0.1119.516_x64__8wekyb3d8bbwe\ModernAttachmentWell\AttachmentWellShareAnythingControlDependencyLoader.js
[2014/05/14 11:18:44 | 000,001,915 | ---- | M] () -- \Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.0.1119.516_x64__8wekyb3d8bbwe\ModernPeople\appframe\BackgroundLoader.js
[2014/05/14 11:18:45 | 000,005,019 | ---- | M] () -- \Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.0.1119.516_x64__8wekyb3d8bbwe\ModernShareAnything\ShareDataLoader.js
[2012/07/26 11:06:13 | 000,049,108 | ---- | M] () -- \Program Files\WindowsApps\Microsoft.XboxLIVEGames_1.0.927.0_x64__8wekyb3d8bbwe\Framework\imageLoader.js
[2014/08/01 08:20:37 | 000,046,874 | ---- | M] () -- \Program Files\WindowsApps\Microsoft.XboxLIVEGames_1.3.10.0_x64__8wekyb3d8bbwe\Framework\imageLoader.js
[2012/07/26 11:05:51 | 000,049,108 | ---- | M] () -- \Program Files\WindowsApps\Microsoft.ZuneMusic_1.0.927.0_x64__8wekyb3d8bbwe\Framework\imageLoader.js
[2014/08/01 08:21:50 | 000,053,416 | ---- | M] () -- \Program Files\WindowsApps\Microsoft.ZuneMusic_1.5.216.0_x64__8wekyb3d8bbwe\Framework\imageLoader.js
[2012/07/26 11:05:58 | 000,049,108 | ---- | M] () -- \Program Files\WindowsApps\Microsoft.ZuneVideo_1.0.927.0_x64__8wekyb3d8bbwe\Framework\imageLoader.js
[2014/06/13 16:02:59 | 000,101,046 | ---- | M] () -- \Program Files\WindowsApps\Microsoft.ZuneVideo_1.5.902.0_x64__8wekyb3d8bbwe\Framework\imageLoader.js
[2014/06/13 16:02:59 | 000,101,046 | ---- | M] () -- \Program Files\WindowsApps\Microsoft.ZuneVideo_1.5.909.0_x64__8wekyb3d8bbwe\Framework\imageLoader.js
[2013/11/12 16:56:58 | 000,945,560 | ---- | M] () -- \ProgramData\HappyCloud\Application\HCLOTROLoader.exe
[2012/11/13 18:07:12 | 000,273,053 | ---- | M] () -- \ProgramData\HappyCloud\Application\HCLOTROLoader.ico
[2013/11/12 16:56:58 | 000,945,560 | ---- | M] () -- \Users\All Users\HappyCloud\Application\HCLOTROLoader.exe
[2012/11/13 18:07:12 | 000,273,053 | ---- | M] () -- \Users\All Users\HappyCloud\Application\HCLOTROLoader.ico
[2014/08/13 13:14:30 | 000,009,418 | ---- | M] () -- \Users\Uzivatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.19_0\img\gifloader.gif
[2015/02/07 09:01:51 | 000,019,121 | ---- | M] () -- \Users\Uzivatel\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\2F2IC7QC\AdLoader-288a31a04e1398b1a794975bf93ce9a4.min[1].js
[2014/10/27 13:36:30 | 000,018,715 | ---- | M] () -- \Users\Uzivatel\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\2F2IC7QC\AdLoader-a5fa12058ddb9a8919d6906ba95d7c57.min[1].js
[2014/10/27 13:36:30 | 000,001,980 | ---- | M] () -- \Users\Uzivatel\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\76EFGWWF\AdLoader[1].htm
[2014/10/30 22:14:16 | 000,001,980 | ---- | M] () -- \Users\Uzivatel\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\76EFGWWF\AdLoader[2].htm
[2015/02/24 20:43:01 | 000,001,980 | ---- | M] () -- \Users\Uzivatel\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\76EFGWWF\AdLoader[3].htm
[2015/03/15 23:48:18 | 000,031,516 | ---- | M] () -- \Users\Uzivatel\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\76EFGWWF\cz.seznam.software.libfoxloader-3.1.2-win32[1].zip
[2015/02/07 09:01:50 | 000,001,980 | ---- | M] () -- \Users\Uzivatel\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\A8RZMCPH\AdLoader[1].htm
[2013/10/03 10:13:54 | 000,141,216 | ---- | M] () -- \Users\Uzivatel\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\CZ1L9UE9\bi_downloader[1].exe
[2014/12/15 17:26:30 | 000,072,638 | ---- | M] () -- \Users\Uzivatel\AppData\Local\Skype\Apps\login\images\loader.gif
[2014/12/15 17:26:30 | 000,003,032 | ---- | M] () -- \Users\Uzivatel\AppData\Local\Skype\Apps\login\images\loader.png
[2014/12/15 17:26:30 | 000,006,012 | ---- | M] () -- \Users\Uzivatel\AppData\Local\Skype\Apps\login\images\normal\loader_15fps.gif
[2014/12/15 17:26:30 | 000,021,956 | ---- | M] () -- \Users\Uzivatel\AppData\Local\Skype\Apps\login\images\normal\loader_30fps.gif
[2014/12/15 17:26:30 | 000,009,772 | ---- | M] () -- \Users\Uzivatel\AppData\Local\Skype\Apps\login\images\retina\loader@2x.png
[2014/02/23 10:04:10 | 000,332,960 | ---- | M] () -- \Users\Uzivatel\Downloads\RuTube Downloader 0.3.37.zip (1).exe
[2014/02/23 10:03:49 | 000,332,960 | ---- | M] () -- \Users\Uzivatel\Downloads\RuTube Downloader 0.3.37.zip.exe
[2014/02/15 09:42:49 | 000,017,408 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_32\Microsoft.O29577370#\ee2b1969f90a4a4274c0bcbeebe8f972\Microsoft.Office.InfoPath.CLRLoader.ni.dll
[2014/02/15 09:42:49 | 000,000,796 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_32\Microsoft.O29577370#\ee2b1969f90a4a4274c0bcbeebe8f972\Microsoft.Office.InfoPath.CLRLoader.ni.dll.aux
[2012/10/01 19:47:24 | 000,019,048 | R--- | M] () -- \Windows\Installer\$PatchCache$\Managed\00005109110000000000000000F01FEC\15.0.4420\FL_VSTOLoaderUI_dll_x86_ln.3643236F_FC70_11D3_A536_0090278A1BB8.923C1899_09AE_418B_B39D_A7A9EB6A7951
[2012/10/01 19:47:24 | 000,268,384 | R--- | M] () -- \Windows\Installer\$PatchCache$\Managed\00005109110000000000000000F01FEC\15.0.4420\VSTOLoader_dll_x86.3643236F_FC70_11D3_A536_0090278A1BB8.923C1899_09AE_418B_B39D_A7A9EB6A7951
[2012/10/01 19:47:24 | 000,019,048 | R--- | M] () -- \Windows\Installer\$PatchCache$\Managed\00005109A20000000100000000F01FEC\15.0.4420\FL_VSTOLoaderUI_dll_amd64_ln.3643236F_FC70_11D3_A536_0090278A1BB8.41B86362_9D8B_4D9B_B426_8A6D1F809A25
[2012/10/01 19:47:24 | 000,019,048 | R--- | M] () -- \Windows\Installer\$PatchCache$\Managed\00005109A20000000100000000F01FEC\15.0.4420\FL_VSTOLoaderUI_dll_x86_ln.3643236F_FC70_11D3_A536_0090278A1BB8.41B86362_9D8B_4D9B_B426_8A6D1F809A25
[2012/10/01 19:47:24 | 000,364,128 | R--- | M] () -- \Windows\Installer\$PatchCache$\Managed\00005109A20000000100000000F01FEC\15.0.4420\VSTOLoader_dll_amd64.3643236F_FC70_11D3_A536_0090278A1BB8.41B86362_9D8B_4D9B_B426_8A6D1F809A25
[2012/10/01 19:47:24 | 000,268,384 | R--- | M] () -- \Windows\Installer\$PatchCache$\Managed\00005109A20000000100000000F01FEC\15.0.4420\VSTOLoader_dll_x86.3643236F_FC70_11D3_A536_0090278A1BB8.41B86362_9D8B_4D9B_B426_8A6D1F809A25
[2013/09/19 12:12:07 | 000,015,528 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\Microsoft.Office.InfoPath.CLRLoader\v4.0_15.0.0.0__71e9bce111e9429c\Microsoft.Office.Infopath.CLRLoader.dll
[2012/07/26 03:46:24 | 000,003,072 | -H-- | M] () -- \Windows\System32\api-ms-win-core-libraryloader-l1-1-0.dll
[2012/07/26 03:46:25 | 000,003,584 | -H-- | M] () -- \Windows\System32\api-ms-win-core-libraryloader-l1-1-1.dll
[2012/07/26 03:46:36 | 000,002,560 | -H-- | M] () -- \Windows\System32\api-ms-win-core-stringloader-l1-1-0.dll
[2012/07/26 04:18:20 | 000,036,352 | ---- | M] () -- \Windows\System32\dmloader.dll
[2013/09/05 10:43:36 | 000,012,532 | ---- | M] () -- \Windows\System32\Adobe\Shockwave 12\shockwave_Projector_Loader.dcr
[2012/07/26 03:46:24 | 000,003,072 | -H-- | M] () -- \Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
[2012/07/26 03:46:25 | 000,003,584 | -H-- | M] () -- \Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-1.dll
[2012/07/26 03:46:36 | 000,002,560 | -H-- | M] () -- \Windows\SysWOW64\api-ms-win-core-stringloader-l1-1-0.dll
[2012/07/26 04:18:20 | 000,036,352 | ---- | M] () -- \Windows\SysWOW64\dmloader.dll
[2013/09/05 10:43:36 | 000,012,532 | ---- | M] () -- \Windows\SysWOW64\Adobe\Shockwave 12\shockwave_Projector_Loader.dcr
[2012/07/26 05:53:16 | 001,084,144 | ---- | M] () -- \Windows\WinSxS\amd64_microsoft-hyper-v-drivers-hypervisor_31bf3856ad364e35_6.2.9200.16384_none_891afac5ef497dae\hvloader.efi
[2012/07/26 05:53:16 | 000,998,128 | ---- | M] () -- \Windows\WinSxS\amd64_microsoft-hyper-v-drivers-hypervisor_31bf3856ad364e35_6.2.9200.16384_none_891afac5ef497dae\hvloader.exe
[2012/10/11 09:42:55 | 001,084,136 | ---- | M] () -- \Windows\WinSxS\amd64_microsoft-hyper-v-drivers-hypervisor_31bf3856ad364e35_6.2.9200.16433_none_89500bfdef21d5c9\hvloader.efi
[2012/10/11 09:42:55 | 000,998,120 | ---- | M] () -- \Windows\WinSxS\amd64_microsoft-hyper-v-drivers-hypervisor_31bf3856ad364e35_6.2.9200.16433_none_89500bfdef21d5c9\hvloader.exe
[2013/03/02 11:39:39 | 001,084,136 | ---- | M] () -- \Windows\WinSxS\amd64_microsoft-hyper-v-drivers-hypervisor_31bf3856ad364e35_6.2.9200.16548_none_894a3f69ef256d94\hvloader.efi
[2013/03/02 11:39:39 | 000,998,120 | ---- | M] () -- \Windows\WinSxS\amd64_microsoft-hyper-v-drivers-hypervisor_31bf3856ad364e35_6.2.9200.16548_none_894a3f69ef256d94\hvloader.exe
[2013/03/02 11:39:39 | 001,084,136 | ---- | M] () -- \Windows\WinSxS\amd64_microsoft-hyper-v-drivers-hypervisor_31bf3856ad364e35_6.2.9200.16579_none_892acfefef3cdabe\hvloader.efi
[2013/04/09 06:24:49 | 000,998,152 | ---- | M] () -- \Windows\WinSxS\amd64_microsoft-hyper-v-drivers-hypervisor_31bf3856ad364e35_6.2.9200.16579_none_892acfefef3cdabe\hvloader.exe
[2013/06/01 13:02:14 | 001,084,160 | ---- | M] () -- \Windows\WinSxS\amd64_microsoft-hyper-v-drivers-hypervisor_31bf3856ad364e35_6.2.9200.16628_none_895fe127ef1532d9\hvloader.efi
[2013/06/01 13:02:14 | 000,998,144 | ---- | M] () -- \Windows\WinSxS\amd64_microsoft-hyper-v-drivers-hypervisor_31bf3856ad364e35_6.2.9200.16628_none_895fe127ef1532d9\hvloader.exe
[2012/10/11 08:29:20 | 001,084,136 | ---- | M] () -- \Windows\WinSxS\amd64_microsoft-hyper-v-drivers-hypervisor_31bf3856ad364e35_6.2.9200.20534_none_89daa913083e8eea\hvloader.efi
[2012/10/11 08:29:20 | 000,998,120 | ---- | M] () -- \Windows\WinSxS\amd64_microsoft-hyper-v-drivers-hypervisor_31bf3856ad364e35_6.2.9200.20534_none_89daa913083e8eea\hvloader.exe
[2013/03/02 11:22:17 | 001,084,136 | ---- | M] () -- \Windows\WinSxS\amd64_microsoft-hyper-v-drivers-hypervisor_31bf3856ad364e35_6.2.9200.20652_none_89c30a8d08509145\hvloader.efi
[2013/03/02 11:22:17 | 000,998,120 | ---- | M] () -- \Windows\WinSxS\amd64_microsoft-hyper-v-drivers-hypervisor_31bf3856ad364e35_6.2.9200.20652_none_89c30a8d08509145\hvloader.exe
[2013/03/02 11:22:17 | 001,084,136 | ---- | M] () -- \Windows\WinSxS\amd64_microsoft-hyper-v-drivers-hypervisor_31bf3856ad364e35_6.2.9200.20683_none_89a39b130867fe6f\hvloader.efi
[2013/04/09 01:24:11 | 000,998,152 | ---- | M] () -- \Windows\WinSxS\amd64_microsoft-hyper-v-drivers-hypervisor_31bf3856ad364e35_6.2.9200.20683_none_89a39b130867fe6f\hvloader.exe
[2013/06/01 13:49:37 | 001,084,160 | ---- | M] () -- \Windows\WinSxS\amd64_microsoft-hyper-v-drivers-hypervisor_31bf3856ad364e35_6.2.9200.20733_none_89d9ac95083f6fe1\hvloader.efi
[2013/06/01 13:49:37 | 000,998,144 | ---- | M] () -- \Windows\WinSxS\amd64_microsoft-hyper-v-drivers-hypervisor_31bf3856ad364e35_6.2.9200.20733_none_89d9ac95083f6fe1\hvloader.exe
[2012/07/26 04:05:30 | 000,047,616 | ---- | M] () -- \Windows\WinSxS\amd64_microsoft-windows-audio-dmusic_31bf3856ad364e35_6.2.9200.16384_none_9ebdc35619670551\dmloader.dll
[2012/07/26 03:35:54 | 000,003,072 | -H-- | M] () -- \Windows\WinSxS\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.2.9200.16384_none_637b975b05942933\api-ms-win-core-libraryloader-l1-1-0.dll
[2012/07/26 03:35:54 | 000,003,584 | -H-- | M] () -- \Windows\WinSxS\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.2.9200.16384_none_637b975b05942933\api-ms-win-core-libraryloader-l1-1-1.dll
[2012/07/26 03:35:58 | 000,002,560 | -H-- | M] () -- \Windows\WinSxS\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.2.9200.16384_none_637b975b05942933\api-ms-win-core-stringloader-l1-1-0.dll
[2012/07/26 11:01:28 | 000,004,656 | ---- | M] () -- \Windows\WinSxS\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.2.9200.16384_cs-cz_8c0c160e86cdb00c.manifest
[2012/07/26 11:01:28 | 000,030,448 | ---- | M] () -- \Windows\WinSxS\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.2.9200.16384_cs-cz_8c0c160e86cdb00c_winload.efi.mui_35ee487d
[2012/07/26 11:01:28 | 000,030,448 | ---- | M] () -- \Windows\WinSxS\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.2.9200.16384_cs-cz_8c0c160e86cdb00c_winload.exe.mui_3bc5b827
[2012/07/26 11:01:28 | 000,020,208 | ---- | M] () -- \Windows\WinSxS\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.2.9200.16384_cs-cz_8c0c160e86cdb00c_winresume.efi.mui_f412814e
[2012/07/26 11:01:28 | 000,020,208 | ---- | M] () -- \Windows\WinSxS\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.2.9200.16384_cs-cz_8c0c160e86cdb00c_winresume.exe.mui_ff8b5358
[2014/10/15 18:17:28 | 000,005,808 | ---- | M] () -- \Windows\WinSxS\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.2.9200.17026_none_b4332538f638c373.manifest
[2014/10/15 18:17:28 | 001,403,896 | ---- | M] () -- \Windows\WinSxS\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.2.9200.17026_none_b4332538f638c373_winload.efi_75834aa0
[2014/10/15 18:17:28 | 001,271,664 | ---- | M] () -- \Windows\WinSxS\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.2.9200.17026_none_b4332538f638c373_winload.exe_75835076
[2014/10/15 18:17:28 | 001,217,352 | ---- | M] () -- \Windows\WinSxS\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.2.9200.17026_none_b4332538f638c373_winresume.efi_85cd069f
[2014/10/15 18:17:28 | 001,093,904 | ---- | M] () -- \Windows\WinSxS\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.2.9200.17026_none_b4332538f638c373_winresume.exe_85cd1215
[2012/07/26 09:11:35 | 000,000,596 | ---- | M] () -- \Windows\WinSxS\FileMaps\programdata_microsoft_network_downloader_7fafaef6d33e4371.cdf-ms
[2012/07/26 11:00:05 | 000,004,656 | ---- | M] () -- \Windows\WinSxS\Manifests\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.2.9200.16384_cs-cz_8c0c160e86cdb00c.manifest
[2012/07/26 06:00:58 | 000,005,810 | ---- | M] () -- \Windows\WinSxS\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.2.9200.16384_none_b3f06196f66b163f.manifest
[2012/09/20 09:33:02 | 000,005,810 | ---- | M] () -- \Windows\WinSxS\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.2.9200.16420_none_b42d41dcf63e0664.manifest
[2012/10/11 08:33:59 | 000,005,810 | ---- | M] () -- \Windows\WinSxS\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.2.9200.16433_none_b42572cef6436e5a.manifest
[2013/04/09 07:04:17 | 000,005,808 | ---- | M] () -- \Windows\WinSxS\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.2.9200.16579_none_b40036c0f65e734f.manifest
[2013/06/01 12:31:54 | 000,005,808 | ---- | M] () -- \Windows\WinSxS\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.2.9200.16628_none_b43547f8f636cb6a.manifest
[2014/06/12 05:40:55 | 000,005,808 | ---- | M] () -- \Windows\WinSxS\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.2.9200.17026_none_b4332538f638c373.manifest
[2012/09/20 10:24:25 | 000,005,810 | ---- | M] () -- \Windows\WinSxS\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.2.9200.20521_none_b4b7def20f5abf85.manifest
[2012/10/11 08:26:48 | 000,005,810 | ---- | M] () -- \Windows\WinSxS\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.2.9200.20534_none_b4b00fe40f60277b.manifest
[2013/04/09 01:53:04 | 000,005,808 | ---- | M] () -- \Windows\WinSxS\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.2.9200.20683_none_b47901e40f899700.manifest
[2013/06/01 13:10:50 | 000,005,808 | ---- | M] () -- \Windows\WinSxS\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.2.9200.20733_none_b4af13660f610872.manifest
[2014/06/12 05:58:41 | 000,005,808 | ---- | M] () -- \Windows\WinSxS\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.2.9200.21143_none_b4a4214e0f694f1a.manifest
[2012/07/26 04:18:20 | 000,036,352 | ---- | M] () -- \Windows\WinSxS\x86_microsoft-windows-audio-dmusic_31bf3856ad364e35_6.2.9200.16384_none_429f27d26109941b\dmloader.dll
[2012/07/26 03:46:24 | 000,003,072 | -H-- | M] () -- \Windows\WinSxS\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.2.9200.16384_none_075cfbd74d36b7fd\api-ms-win-core-libraryloader-l1-1-0.dll
[2012/07/26 03:46:25 | 000,003,584 | -H-- | M] () -- \Windows\WinSxS\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.2.9200.16384_none_075cfbd74d36b7fd\api-ms-win-core-libraryloader-l1-1-1.dll
[2012/07/26 03:46:36 | 000,002,560 | -H-- | M] () -- \Windows\WinSxS\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.2.9200.16384_none_075cfbd74d36b7fd\api-ms-win-core-stringloader-l1-1-0.dll
< End of report >
< %systemroot%\System32\config\*.sav >
< %systemroot%\system32\*.dll /lockedfiles >
< %systemroot%\system32\drivers\*.sys /3 >
< %systemroot%\system32\*.* /3 >
< %SYSTEMDRIVE%\*.exe >
< >
< HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s >
"Steam" = "C:\Program Files (x86)\Steam\steam.exe" -silent -- [2015/02/19 00:51:18 | 002,874,048 | ---- | M] (Valve Corporation)
"Adobe Flash Player Plugin" = "C:\Users\Uzivatel\AppData\Local\Temp\{3PNINEGS-GBYR-HYWY-HTYC-EEQTZJDERTGNACTPQT}\activex.exe" -- [2014/02/27 18:10:59 | 001,022,154 | ---- | M] ()
"Akamai NetSession Interface" = "C:\Users\Uzivatel\AppData\Local\Akamai\netsession_win.exe" -- [2014/10/29 23:25:46 | 004,673,432 | ---- | M] (Akamai Technologies, Inc.)
< >
< %PROGRAMFILES%\Mozilla Firefox\firefox.exe /md5 >
[2015/03/06 20:41:08 | 000,376,944 | ---- | M] (Mozilla Corporation) MD5=F51D682701B303ED6CC5474CE5FA5AAA -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
< %PROGRAMFILES%\Internet Explorer\iexplore.exe /md5 >
[2015/02/21 06:43:04 | 000,770,712 | ---- | M] (Microsoft Corporation) MD5=333A31AD13A3BB850D93AEFAE4472574 -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
< %PROGRAMFILES%\Opera\opera.exe /md5 >
< %PROGRAMFILES%\Google\Chrome\Application\chrome.exe /md5 >
[2015/03/07 07:13:08 | 000,809,288 | ---- | M] (Google Inc.) MD5=9201E92771F3D536DA4A53FDCC4B976B -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
< >
< %SystemDrive%\PhysicalMBR.bin /md5 >
[2015/03/16 00:19:24 | 000,000,512 | ---- | M] () MD5=2CE6DD57E8E2B9609F05731D5378E514 -- C:\PhysicalMBR.bin
< >
< *crack* /s >
[2003/07/18 07:57:31 | 000,028,396 | ---- | M] () -- \Program Files (x86)\Aspyr\Tony Hawks Pro Skater 4\Game\data\sounds\Wav\Alc\baseballcrack.wav
[2003/12/05 11:52:40 | 000,000,796 | ---- | M] () -- \Program Files (x86)\GTA San Andreas\data\Decision\Craig\crack1.ped
[2013/03/12 11:47:38 | 000,007,624 | ---- | M] () -- \Program Files (x86)\Image-Line\FL Studio 11\Data\Patches\Packs\Drums\Percussion\FPC Ice Crack.wav
[2012/10/02 09:41:48 | 000,000,400 | ---- | M] () -- \Program Files (x86)\Image-Line\FL Studio 11\Data\Patches\Plugin presets\Generators\Drumpad\Sound FX\Crack.fst
[2008/09/08 21:55:14 | 000,000,204 | ---- | M] () -- \Program Files (x86)\Image-Line\FL Studio 11\Plugins\Fruity\Effects\Hardcore\Presets\I cracked my Tube!.hdprg
[2010/01/15 21:56:40 | 000,000,272 | ---- | M] () -- \Program Files (x86)\Image-Line\FL Studio 11\Plugins\Fruity\Generators\Drumaxx\Drum Patches\Sound FX\Crack.dmpatch
[2010/01/15 21:56:40 | 000,000,272 | ---- | M] () -- \Program Files (x86)\Image-Line\FL Studio 11\Plugins\Fruity\Generators\DrumPad\Drum Patches\Sound FX\Crack.dmpatch
[2010/05/29 21:41:56 | 000,114,899 | ---- | M] () -- \Program Files (x86)\Inkscape\python\Lib\site-packages\numpy\f2py\crackfortran.py
[2013/06/14 23:31:30 | 000,000,706 | ---- | M] () -- \Program Files (x86)\Steam\SteamApps\common\Company of Heroes Relaunch\Eastern_Front\Data\sound\weapons\ppsh41\ppsh41_whipcrack.bsc
[2013/06/24 20:20:50 | 000,062,238 | ---- | M] () -- \Program Files\GIMP 2\share\gimp\2.0\patterns\cracked.pat
[2014/09/09 19:19:38 | 000,026,406 | ---- | M] () -- \Users\Uzivatel\AppData\Roaming\TS3Client\cache\remote\www.justinparks.com\wp-content\uploads\2009\10\facebook-cracked.png
[2010/01/15 21:56:40 | 000,000,272 | ---- | M] () -- \Users\Uzivatel\Documents\Image-Line\Data\Drumaxx\Drum Patches\Sound FX\Crack.dmpatch
< *keygen* /s >
[2014/03/16 17:16:38 | 000,094,208 | ---- | M] () -- \Users\Uzivatel\AppData\Local\Temp\keygen.exe
[417 \Users\Uzivatel\AppData\Local\Temp\*.tmp files -> \Users\Uzivatel\AppData\Local\Temp\*.tmp -> ]
[2014/09/05 14:05:35 | 012,903,802 | ---- | M] () -- \Users\Uzivatel\Downloads\guitar-pro-5-2-keygen-pres-MultiLoad.cz.zip
< *loader* /s >
[2013/06/06 16:05:22 | 000,410,800 | ---- | M] () -- \Program Files (x86)\Apowersoft\Video Download Capture\ApowersoftDownloaderHelp.dll
[2013/05/09 00:40:52 | 000,268,440 | ---- | M] () -- \Program Files (x86)\Common Files\Microsoft Shared\VSTO\10.0\VSTOLoader.dll
[2013/05/09 00:40:52 | 000,019,080 | ---- | M] () -- \Program Files (x86)\Common Files\Microsoft Shared\VSTO\10.0\1033\VSTOLoaderUI.dll
[2010/03/06 09:24:56 | 000,003,614 | ---- | M] () -- \Program Files (x86)\Inkscape\etc\gtk-2.0\gdk-pixbuf.loaders
[2010/03/06 09:24:56 | 000,030,804 | ---- | M] () -- \Program Files (x86)\Inkscape\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-ani.dll
[2010/03/06 09:24:56 | 000,027,898 | ---- | M] () -- \Program Files (x86)\Inkscape\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-bmp.dll
[2010/03/06 09:24:56 | 000,042,058 | ---- | M] () -- \Program Files (x86)\Inkscape\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-gif.dll
[2010/03/06 09:24:56 | 000,023,145 | ---- | M] () -- \Program Files (x86)\Inkscape\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-icns.dll
[2010/03/06 09:24:56 | 000,028,692 | ---- | M] () -- \Program Files (x86)\Inkscape\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-ico.dll
[2010/03/06 09:24:56 | 000,034,496 | ---- | M] () -- \Program Files (x86)\Inkscape\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-jpeg.dll
[2010/03/06 09:24:56 | 000,022,435 | ---- | M] () -- \Program Files (x86)\Inkscape\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-pcx.dll
[2010/03/06 09:24:56 | 000,036,528 | ---- | M] () -- \Program Files (x86)\Inkscape\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-png.dll
[2010/03/06 09:24:56 | 000,026,252 | ---- | M] () -- \Program Files (x86)\Inkscape\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-pnm.dll
[2010/03/06 09:24:56 | 000,020,063 | ---- | M] () -- \Program Files (x86)\Inkscape\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-ras.dll
[2010/03/06 09:24:56 | 000,024,412 | ---- | M] () -- \Program Files (x86)\Inkscape\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-tga.dll
[2010/03/06 09:24:56 | 000,029,401 | ---- | M] () -- \Program Files (x86)\Inkscape\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-tiff.dll
[2010/03/06 09:24:56 | 000,019,399 | ---- | M] () -- \Program Files (x86)\Inkscape\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-wbmp.dll
[2010/03/06 09:24:56 | 000,025,270 | ---- | M] () -- \Program Files (x86)\Inkscape\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-xbm.dll
[2010/03/06 09:24:56 | 000,042,114 | ---- | M] () -- \Program Files (x86)\Inkscape\lib\gtk-2.0\2.10.0\loaders\libpixbufloader-xpm.dll
[2010/03/06 09:24:56 | 000,018,909 | ---- | M] () -- \Program Files (x86)\Inkscape\lib\gtk-2.0\2.10.0\loaders\svg_loader.dll
[2010/08/16 10:41:40 | 000,032,958 | ---- | M] () -- \Program Files (x86)\Inkscape\python\Lib\site-packages\sk1libs\filters\import\ailoader.py
[2010/08/16 10:41:40 | 000,001,847 | ---- | M] () -- \Program Files (x86)\Inkscape\python\Lib\site-packages\sk1libs\filters\import\bziploader.py
[2010/08/16 10:41:40 | 000,057,685 | ---- | M] () -- \Program Files (x86)\Inkscape\python\Lib\site-packages\sk1libs\filters\import\ccxloader.py
[2010/08/16 10:41:40 | 000,029,336 | ---- | M] () -- \Program Files (x86)\Inkscape\python\Lib\site-packages\sk1libs\filters\import\cdrloader.py
[2010/08/16 10:41:40 | 000,001,341 | ---- | M] () -- \Program Files (x86)\Inkscape\python\Lib\site-packages\sk1libs\filters\import\cdrziploader.py
[2010/08/16 10:41:40 | 000,028,643 | ---- | M] () -- \Program Files (x86)\Inkscape\python\Lib\site-packages\sk1libs\filters\import\cgmloader.py
[2010/08/16 10:41:40 | 000,055,918 | ---- | M] () -- \Program Files (x86)\Inkscape\python\Lib\site-packages\sk1libs\filters\import\cmxloader.py
[2010/08/16 10:41:40 | 000,038,308 | ---- | M] () -- \Program Files (x86)\Inkscape\python\Lib\site-packages\sk1libs\filters\import\dxfloader.py
[2010/08/16 10:41:40 | 000,001,949 | ---- | M] () -- \Program Files (x86)\Inkscape\python\Lib\site-packages\sk1libs\filters\import\gziploader.py
[2010/08/16 10:41:40 | 000,007,779 | ---- | M] () -- \Program Files (x86)\Inkscape\python\Lib\site-packages\sk1libs\filters\import\pltloader.py
[2010/08/16 10:41:40 | 000,017,301 | ---- | M] () -- \Program Files (x86)\Inkscape\python\Lib\site-packages\sk1libs\filters\import\sk1loader.py
[2010/08/16 10:41:40 | 000,015,416 | ---- | M] () -- \Program Files (x86)\Inkscape\python\Lib\site-packages\sk1libs\filters\import\skloader.py
[2010/08/16 10:41:40 | 000,015,832 | ---- | M] () -- \Program Files (x86)\Inkscape\python\Lib\site-packages\sk1libs\filters\import\stitchloader.py
[2010/08/16 10:41:40 | 000,038,937 | ---- | M] () -- \Program Files (x86)\Inkscape\python\Lib\site-packages\sk1libs\filters\import\svgloader.py
[2010/08/16 10:41:40 | 000,014,300 | ---- | M] () -- \Program Files (x86)\Inkscape\python\Lib\site-packages\sk1libs\filters\import\wmfloader.py
[2010/08/16 10:41:40 | 000,017,550 | ---- | M] () -- \Program Files (x86)\Inkscape\python\Lib\site-packages\sk1libs\filters\import\xfigloader.py
[2013/08/20 11:25:48 | 000,006,852 | ---- | M] () -- \Program Files (x86)\LibreOffice 4\program\pythonloader.py
[2013/08/23 16:08:32 | 000,000,171 | ---- | M] () -- \Program Files (x86)\LibreOffice 4\program\pythonloader.uno.ini
[2013/08/23 16:06:56 | 000,037,272 | ---- | M] () -- \Program Files (x86)\LibreOffice 4\program\pythonloaderlo.dll
[2013/08/22 01:35:58 | 000,124,248 | ---- | M] () -- \Program Files (x86)\LibreOffice 4\program\classes\libloader-1.1.6.jar
[2013/08/22 04:31:02 | 000,013,850 | ---- | M] () -- \Program Files (x86)\LibreOffice 4\program\python-core-3.3.0\lib\unittest\loader.py
[2013/08/22 04:31:06 | 000,049,593 | ---- | M] () -- \Program Files (x86)\LibreOffice 4\program\python-core-3.3.0\lib\unittest\test\test_loader.py
[2013/08/23 16:06:28 | 000,082,328 | ---- | M] () -- \Program Files (x86)\LibreOffice 4\URE\bin\javaloader.uno.dll
[2013/08/22 01:24:40 | 000,004,301 | ---- | M] () -- \Program Files (x86)\LibreOffice 4\URE\java\unoloader.jar
[2014/12/10 02:28:04 | 000,001,701 | ---- | M] () -- \Program Files (x86)\Steam\friends\broadcastuploaderrornotification.res
[2014/11/11 19:48:42 | 000,007,825 | ---- | M] () -- \Program Files (x86)\Steam\remoteui\static\libs\images\ajax-loader.gif
[2014/08/29 11:55:59 | 001,921,024 | ---- | M] () -- \Program Files (x86)\Steam\SteamApps\common\Company of Heroes\RelicDownloader\RelicDownloader.exe
[2014/08/29 13:58:35 | 000,007,244 | ---- | M] () -- \Program Files (x86)\Steam\SteamApps\common\Company of Heroes\RelicDownloader\Locale\English\RelicDownloader.English.ucs
[2013/05/09 00:45:06 | 000,364,168 | ---- | M] () -- \Program Files\Common Files\microsoft shared\VSTO\10.0\VSTOLoader.dll
[2013/05/09 00:45:06 | 000,019,080 | ---- | M] () -- \Program Files\Common Files\microsoft shared\VSTO\10.0\1033\VSTOLoaderUI.dll
[2011/03/08 08:43:28 | 000,013,734 | ---- | M] () -- \Program Files\GIMP 2\Python\Lib\unittest\loader.py
[2012/07/26 11:06:16 | 000,039,485 | ---- | M] () -- \Program Files\WindowsApps\Microsoft.Bing_1.2.0.137_x64__8wekyb3d8bbwe\shell\js\backgroundImageLoader.js
[2014/08/01 08:20:51 | 000,032,157 | ---- | M] () -- \Program Files\WindowsApps\Microsoft.Bing_1.5.1.259_x64__8wekyb3d8bbwe\shell\js\backgroundImageLoader.js
[2014/05/14 11:18:44 | 000,002,089 | ---- | M] () -- \Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.0.1119.516_x64__8wekyb3d8bbwe\DependencyLoader\DependencyLoader.js
[2014/05/14 11:18:44 | 000,001,326 | ---- | M] () -- \Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.0.1119.516_x64__8wekyb3d8bbwe\ModernAttachmentWell\AttachmentWellComposeDependencyLoader.js
[2014/05/14 11:18:44 | 000,001,208 | ---- | M] () -- \Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.0.1119.516_x64__8wekyb3d8bbwe\ModernAttachmentWell\AttachmentWellReadDependencyLoader.js
[2014/05/14 11:18:44 | 000,002,552 | ---- | M] () -- \Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.0.1119.516_x64__8wekyb3d8bbwe\ModernAttachmentWell\AttachmentWellShareAnythingControlDependencyLoader.js
[2014/05/14 11:18:44 | 000,001,915 | ---- | M] () -- \Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.0.1119.516_x64__8wekyb3d8bbwe\ModernPeople\appframe\BackgroundLoader.js
[2014/05/14 11:18:45 | 000,005,019 | ---- | M] () -- \Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.0.1119.516_x64__8wekyb3d8bbwe\ModernShareAnything\ShareDataLoader.js
[2012/07/26 11:06:13 | 000,049,108 | ---- | M] () -- \Program Files\WindowsApps\Microsoft.XboxLIVEGames_1.0.927.0_x64__8wekyb3d8bbwe\Framework\imageLoader.js
[2014/08/01 08:20:37 | 000,046,874 | ---- | M] () -- \Program Files\WindowsApps\Microsoft.XboxLIVEGames_1.3.10.0_x64__8wekyb3d8bbwe\Framework\imageLoader.js
[2012/07/26 11:05:51 | 000,049,108 | ---- | M] () -- \Program Files\WindowsApps\Microsoft.ZuneMusic_1.0.927.0_x64__8wekyb3d8bbwe\Framework\imageLoader.js
[2014/08/01 08:21:50 | 000,053,416 | ---- | M] () -- \Program Files\WindowsApps\Microsoft.ZuneMusic_1.5.216.0_x64__8wekyb3d8bbwe\Framework\imageLoader.js
[2012/07/26 11:05:58 | 000,049,108 | ---- | M] () -- \Program Files\WindowsApps\Microsoft.ZuneVideo_1.0.927.0_x64__8wekyb3d8bbwe\Framework\imageLoader.js
[2014/06/13 16:02:59 | 000,101,046 | ---- | M] () -- \Program Files\WindowsApps\Microsoft.ZuneVideo_1.5.902.0_x64__8wekyb3d8bbwe\Framework\imageLoader.js
[2014/06/13 16:02:59 | 000,101,046 | ---- | M] () -- \Program Files\WindowsApps\Microsoft.ZuneVideo_1.5.909.0_x64__8wekyb3d8bbwe\Framework\imageLoader.js
[2013/11/12 16:56:58 | 000,945,560 | ---- | M] () -- \ProgramData\HappyCloud\Application\HCLOTROLoader.exe
[2012/11/13 18:07:12 | 000,273,053 | ---- | M] () -- \ProgramData\HappyCloud\Application\HCLOTROLoader.ico
[2013/11/12 16:56:58 | 000,945,560 | ---- | M] () -- \Users\All Users\HappyCloud\Application\HCLOTROLoader.exe
[2012/11/13 18:07:12 | 000,273,053 | ---- | M] () -- \Users\All Users\HappyCloud\Application\HCLOTROLoader.ico
[2014/08/13 13:14:30 | 000,009,418 | ---- | M] () -- \Users\Uzivatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.19_0\img\gifloader.gif
[2015/02/07 09:01:51 | 000,019,121 | ---- | M] () -- \Users\Uzivatel\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\2F2IC7QC\AdLoader-288a31a04e1398b1a794975bf93ce9a4.min[1].js
[2014/10/27 13:36:30 | 000,018,715 | ---- | M] () -- \Users\Uzivatel\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\2F2IC7QC\AdLoader-a5fa12058ddb9a8919d6906ba95d7c57.min[1].js
[2014/10/27 13:36:30 | 000,001,980 | ---- | M] () -- \Users\Uzivatel\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\76EFGWWF\AdLoader[1].htm
[2014/10/30 22:14:16 | 000,001,980 | ---- | M] () -- \Users\Uzivatel\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\76EFGWWF\AdLoader[2].htm
[2015/02/24 20:43:01 | 000,001,980 | ---- | M] () -- \Users\Uzivatel\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\76EFGWWF\AdLoader[3].htm
[2015/03/15 23:48:18 | 000,031,516 | ---- | M] () -- \Users\Uzivatel\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\76EFGWWF\cz.seznam.software.libfoxloader-3.1.2-win32[1].zip
[2015/02/07 09:01:50 | 000,001,980 | ---- | M] () -- \Users\Uzivatel\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\A8RZMCPH\AdLoader[1].htm
[2013/10/03 10:13:54 | 000,141,216 | ---- | M] () -- \Users\Uzivatel\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\CZ1L9UE9\bi_downloader[1].exe
[2014/12/15 17:26:30 | 000,072,638 | ---- | M] () -- \Users\Uzivatel\AppData\Local\Skype\Apps\login\images\loader.gif
[2014/12/15 17:26:30 | 000,003,032 | ---- | M] () -- \Users\Uzivatel\AppData\Local\Skype\Apps\login\images\loader.png
[2014/12/15 17:26:30 | 000,006,012 | ---- | M] () -- \Users\Uzivatel\AppData\Local\Skype\Apps\login\images\normal\loader_15fps.gif
[2014/12/15 17:26:30 | 000,021,956 | ---- | M] () -- \Users\Uzivatel\AppData\Local\Skype\Apps\login\images\normal\loader_30fps.gif
[2014/12/15 17:26:30 | 000,009,772 | ---- | M] () -- \Users\Uzivatel\AppData\Local\Skype\Apps\login\images\retina\loader@2x.png
[2014/02/23 10:04:10 | 000,332,960 | ---- | M] () -- \Users\Uzivatel\Downloads\RuTube Downloader 0.3.37.zip (1).exe
[2014/02/23 10:03:49 | 000,332,960 | ---- | M] () -- \Users\Uzivatel\Downloads\RuTube Downloader 0.3.37.zip.exe
[2014/02/15 09:42:49 | 000,017,408 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_32\Microsoft.O29577370#\ee2b1969f90a4a4274c0bcbeebe8f972\Microsoft.Office.InfoPath.CLRLoader.ni.dll
[2014/02/15 09:42:49 | 000,000,796 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_32\Microsoft.O29577370#\ee2b1969f90a4a4274c0bcbeebe8f972\Microsoft.Office.InfoPath.CLRLoader.ni.dll.aux
[2012/10/01 19:47:24 | 000,019,048 | R--- | M] () -- \Windows\Installer\$PatchCache$\Managed\00005109110000000000000000F01FEC\15.0.4420\FL_VSTOLoaderUI_dll_x86_ln.3643236F_FC70_11D3_A536_0090278A1BB8.923C1899_09AE_418B_B39D_A7A9EB6A7951
[2012/10/01 19:47:24 | 000,268,384 | R--- | M] () -- \Windows\Installer\$PatchCache$\Managed\00005109110000000000000000F01FEC\15.0.4420\VSTOLoader_dll_x86.3643236F_FC70_11D3_A536_0090278A1BB8.923C1899_09AE_418B_B39D_A7A9EB6A7951
[2012/10/01 19:47:24 | 000,019,048 | R--- | M] () -- \Windows\Installer\$PatchCache$\Managed\00005109A20000000100000000F01FEC\15.0.4420\FL_VSTOLoaderUI_dll_amd64_ln.3643236F_FC70_11D3_A536_0090278A1BB8.41B86362_9D8B_4D9B_B426_8A6D1F809A25
[2012/10/01 19:47:24 | 000,019,048 | R--- | M] () -- \Windows\Installer\$PatchCache$\Managed\00005109A20000000100000000F01FEC\15.0.4420\FL_VSTOLoaderUI_dll_x86_ln.3643236F_FC70_11D3_A536_0090278A1BB8.41B86362_9D8B_4D9B_B426_8A6D1F809A25
[2012/10/01 19:47:24 | 000,364,128 | R--- | M] () -- \Windows\Installer\$PatchCache$\Managed\00005109A20000000100000000F01FEC\15.0.4420\VSTOLoader_dll_amd64.3643236F_FC70_11D3_A536_0090278A1BB8.41B86362_9D8B_4D9B_B426_8A6D1F809A25
[2012/10/01 19:47:24 | 000,268,384 | R--- | M] () -- \Windows\Installer\$PatchCache$\Managed\00005109A20000000100000000F01FEC\15.0.4420\VSTOLoader_dll_x86.3643236F_FC70_11D3_A536_0090278A1BB8.41B86362_9D8B_4D9B_B426_8A6D1F809A25
[2013/09/19 12:12:07 | 000,015,528 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\Microsoft.Office.InfoPath.CLRLoader\v4.0_15.0.0.0__71e9bce111e9429c\Microsoft.Office.Infopath.CLRLoader.dll
[2012/07/26 03:46:24 | 000,003,072 | -H-- | M] () -- \Windows\System32\api-ms-win-core-libraryloader-l1-1-0.dll
[2012/07/26 03:46:25 | 000,003,584 | -H-- | M] () -- \Windows\System32\api-ms-win-core-libraryloader-l1-1-1.dll
[2012/07/26 03:46:36 | 000,002,560 | -H-- | M] () -- \Windows\System32\api-ms-win-core-stringloader-l1-1-0.dll
[2012/07/26 04:18:20 | 000,036,352 | ---- | M] () -- \Windows\System32\dmloader.dll
[2013/09/05 10:43:36 | 000,012,532 | ---- | M] () -- \Windows\System32\Adobe\Shockwave 12\shockwave_Projector_Loader.dcr
[2012/07/26 03:46:24 | 000,003,072 | -H-- | M] () -- \Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
[2012/07/26 03:46:25 | 000,003,584 | -H-- | M] () -- \Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-1.dll
[2012/07/26 03:46:36 | 000,002,560 | -H-- | M] () -- \Windows\SysWOW64\api-ms-win-core-stringloader-l1-1-0.dll
[2012/07/26 04:18:20 | 000,036,352 | ---- | M] () -- \Windows\SysWOW64\dmloader.dll
[2013/09/05 10:43:36 | 000,012,532 | ---- | M] () -- \Windows\SysWOW64\Adobe\Shockwave 12\shockwave_Projector_Loader.dcr
[2012/07/26 05:53:16 | 001,084,144 | ---- | M] () -- \Windows\WinSxS\amd64_microsoft-hyper-v-drivers-hypervisor_31bf3856ad364e35_6.2.9200.16384_none_891afac5ef497dae\hvloader.efi
[2012/07/26 05:53:16 | 000,998,128 | ---- | M] () -- \Windows\WinSxS\amd64_microsoft-hyper-v-drivers-hypervisor_31bf3856ad364e35_6.2.9200.16384_none_891afac5ef497dae\hvloader.exe
[2012/10/11 09:42:55 | 001,084,136 | ---- | M] () -- \Windows\WinSxS\amd64_microsoft-hyper-v-drivers-hypervisor_31bf3856ad364e35_6.2.9200.16433_none_89500bfdef21d5c9\hvloader.efi
[2012/10/11 09:42:55 | 000,998,120 | ---- | M] () -- \Windows\WinSxS\amd64_microsoft-hyper-v-drivers-hypervisor_31bf3856ad364e35_6.2.9200.16433_none_89500bfdef21d5c9\hvloader.exe
[2013/03/02 11:39:39 | 001,084,136 | ---- | M] () -- \Windows\WinSxS\amd64_microsoft-hyper-v-drivers-hypervisor_31bf3856ad364e35_6.2.9200.16548_none_894a3f69ef256d94\hvloader.efi
[2013/03/02 11:39:39 | 000,998,120 | ---- | M] () -- \Windows\WinSxS\amd64_microsoft-hyper-v-drivers-hypervisor_31bf3856ad364e35_6.2.9200.16548_none_894a3f69ef256d94\hvloader.exe
[2013/03/02 11:39:39 | 001,084,136 | ---- | M] () -- \Windows\WinSxS\amd64_microsoft-hyper-v-drivers-hypervisor_31bf3856ad364e35_6.2.9200.16579_none_892acfefef3cdabe\hvloader.efi
[2013/04/09 06:24:49 | 000,998,152 | ---- | M] () -- \Windows\WinSxS\amd64_microsoft-hyper-v-drivers-hypervisor_31bf3856ad364e35_6.2.9200.16579_none_892acfefef3cdabe\hvloader.exe
[2013/06/01 13:02:14 | 001,084,160 | ---- | M] () -- \Windows\WinSxS\amd64_microsoft-hyper-v-drivers-hypervisor_31bf3856ad364e35_6.2.9200.16628_none_895fe127ef1532d9\hvloader.efi
[2013/06/01 13:02:14 | 000,998,144 | ---- | M] () -- \Windows\WinSxS\amd64_microsoft-hyper-v-drivers-hypervisor_31bf3856ad364e35_6.2.9200.16628_none_895fe127ef1532d9\hvloader.exe
[2012/10/11 08:29:20 | 001,084,136 | ---- | M] () -- \Windows\WinSxS\amd64_microsoft-hyper-v-drivers-hypervisor_31bf3856ad364e35_6.2.9200.20534_none_89daa913083e8eea\hvloader.efi
[2012/10/11 08:29:20 | 000,998,120 | ---- | M] () -- \Windows\WinSxS\amd64_microsoft-hyper-v-drivers-hypervisor_31bf3856ad364e35_6.2.9200.20534_none_89daa913083e8eea\hvloader.exe
[2013/03/02 11:22:17 | 001,084,136 | ---- | M] () -- \Windows\WinSxS\amd64_microsoft-hyper-v-drivers-hypervisor_31bf3856ad364e35_6.2.9200.20652_none_89c30a8d08509145\hvloader.efi
[2013/03/02 11:22:17 | 000,998,120 | ---- | M] () -- \Windows\WinSxS\amd64_microsoft-hyper-v-drivers-hypervisor_31bf3856ad364e35_6.2.9200.20652_none_89c30a8d08509145\hvloader.exe
[2013/03/02 11:22:17 | 001,084,136 | ---- | M] () -- \Windows\WinSxS\amd64_microsoft-hyper-v-drivers-hypervisor_31bf3856ad364e35_6.2.9200.20683_none_89a39b130867fe6f\hvloader.efi
[2013/04/09 01:24:11 | 000,998,152 | ---- | M] () -- \Windows\WinSxS\amd64_microsoft-hyper-v-drivers-hypervisor_31bf3856ad364e35_6.2.9200.20683_none_89a39b130867fe6f\hvloader.exe
[2013/06/01 13:49:37 | 001,084,160 | ---- | M] () -- \Windows\WinSxS\amd64_microsoft-hyper-v-drivers-hypervisor_31bf3856ad364e35_6.2.9200.20733_none_89d9ac95083f6fe1\hvloader.efi
[2013/06/01 13:49:37 | 000,998,144 | ---- | M] () -- \Windows\WinSxS\amd64_microsoft-hyper-v-drivers-hypervisor_31bf3856ad364e35_6.2.9200.20733_none_89d9ac95083f6fe1\hvloader.exe
[2012/07/26 04:05:30 | 000,047,616 | ---- | M] () -- \Windows\WinSxS\amd64_microsoft-windows-audio-dmusic_31bf3856ad364e35_6.2.9200.16384_none_9ebdc35619670551\dmloader.dll
[2012/07/26 03:35:54 | 000,003,072 | -H-- | M] () -- \Windows\WinSxS\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.2.9200.16384_none_637b975b05942933\api-ms-win-core-libraryloader-l1-1-0.dll
[2012/07/26 03:35:54 | 000,003,584 | -H-- | M] () -- \Windows\WinSxS\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.2.9200.16384_none_637b975b05942933\api-ms-win-core-libraryloader-l1-1-1.dll
[2012/07/26 03:35:58 | 000,002,560 | -H-- | M] () -- \Windows\WinSxS\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.2.9200.16384_none_637b975b05942933\api-ms-win-core-stringloader-l1-1-0.dll
[2012/07/26 11:01:28 | 000,004,656 | ---- | M] () -- \Windows\WinSxS\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.2.9200.16384_cs-cz_8c0c160e86cdb00c.manifest
[2012/07/26 11:01:28 | 000,030,448 | ---- | M] () -- \Windows\WinSxS\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.2.9200.16384_cs-cz_8c0c160e86cdb00c_winload.efi.mui_35ee487d
[2012/07/26 11:01:28 | 000,030,448 | ---- | M] () -- \Windows\WinSxS\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.2.9200.16384_cs-cz_8c0c160e86cdb00c_winload.exe.mui_3bc5b827
[2012/07/26 11:01:28 | 000,020,208 | ---- | M] () -- \Windows\WinSxS\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.2.9200.16384_cs-cz_8c0c160e86cdb00c_winresume.efi.mui_f412814e
[2012/07/26 11:01:28 | 000,020,208 | ---- | M] () -- \Windows\WinSxS\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.2.9200.16384_cs-cz_8c0c160e86cdb00c_winresume.exe.mui_ff8b5358
[2014/10/15 18:17:28 | 000,005,808 | ---- | M] () -- \Windows\WinSxS\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.2.9200.17026_none_b4332538f638c373.manifest
[2014/10/15 18:17:28 | 001,403,896 | ---- | M] () -- \Windows\WinSxS\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.2.9200.17026_none_b4332538f638c373_winload.efi_75834aa0
[2014/10/15 18:17:28 | 001,271,664 | ---- | M] () -- \Windows\WinSxS\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.2.9200.17026_none_b4332538f638c373_winload.exe_75835076
[2014/10/15 18:17:28 | 001,217,352 | ---- | M] () -- \Windows\WinSxS\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.2.9200.17026_none_b4332538f638c373_winresume.efi_85cd069f
[2014/10/15 18:17:28 | 001,093,904 | ---- | M] () -- \Windows\WinSxS\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.2.9200.17026_none_b4332538f638c373_winresume.exe_85cd1215
[2012/07/26 09:11:35 | 000,000,596 | ---- | M] () -- \Windows\WinSxS\FileMaps\programdata_microsoft_network_downloader_7fafaef6d33e4371.cdf-ms
[2012/07/26 11:00:05 | 000,004,656 | ---- | M] () -- \Windows\WinSxS\Manifests\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.2.9200.16384_cs-cz_8c0c160e86cdb00c.manifest
[2012/07/26 06:00:58 | 000,005,810 | ---- | M] () -- \Windows\WinSxS\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.2.9200.16384_none_b3f06196f66b163f.manifest
[2012/09/20 09:33:02 | 000,005,810 | ---- | M] () -- \Windows\WinSxS\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.2.9200.16420_none_b42d41dcf63e0664.manifest
[2012/10/11 08:33:59 | 000,005,810 | ---- | M] () -- \Windows\WinSxS\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.2.9200.16433_none_b42572cef6436e5a.manifest
[2013/04/09 07:04:17 | 000,005,808 | ---- | M] () -- \Windows\WinSxS\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.2.9200.16579_none_b40036c0f65e734f.manifest
[2013/06/01 12:31:54 | 000,005,808 | ---- | M] () -- \Windows\WinSxS\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.2.9200.16628_none_b43547f8f636cb6a.manifest
[2014/06/12 05:40:55 | 000,005,808 | ---- | M] () -- \Windows\WinSxS\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.2.9200.17026_none_b4332538f638c373.manifest
[2012/09/20 10:24:25 | 000,005,810 | ---- | M] () -- \Windows\WinSxS\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.2.9200.20521_none_b4b7def20f5abf85.manifest
[2012/10/11 08:26:48 | 000,005,810 | ---- | M] () -- \Windows\WinSxS\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.2.9200.20534_none_b4b00fe40f60277b.manifest
[2013/04/09 01:53:04 | 000,005,808 | ---- | M] () -- \Windows\WinSxS\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.2.9200.20683_none_b47901e40f899700.manifest
[2013/06/01 13:10:50 | 000,005,808 | ---- | M] () -- \Windows\WinSxS\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.2.9200.20733_none_b4af13660f610872.manifest
[2014/06/12 05:58:41 | 000,005,808 | ---- | M] () -- \Windows\WinSxS\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.2.9200.21143_none_b4a4214e0f694f1a.manifest
[2012/07/26 04:18:20 | 000,036,352 | ---- | M] () -- \Windows\WinSxS\x86_microsoft-windows-audio-dmusic_31bf3856ad364e35_6.2.9200.16384_none_429f27d26109941b\dmloader.dll
[2012/07/26 03:46:24 | 000,003,072 | -H-- | M] () -- \Windows\WinSxS\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.2.9200.16384_none_075cfbd74d36b7fd\api-ms-win-core-libraryloader-l1-1-0.dll
[2012/07/26 03:46:25 | 000,003,584 | -H-- | M] () -- \Windows\WinSxS\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.2.9200.16384_none_075cfbd74d36b7fd\api-ms-win-core-libraryloader-l1-1-1.dll
[2012/07/26 03:46:36 | 000,002,560 | -H-- | M] () -- \Windows\WinSxS\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.2.9200.16384_none_075cfbd74d36b7fd\api-ms-win-core-stringloader-l1-1-0.dll
< End of report >
Re: odinstalace programu
OTL Extras logfile created on: 16. 3. 2015 0:17:38 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Uzivatel\Downloads
64bit- Enterprise Edition (Version = 6.2.9200) - Type = NTWorkstation
Internet Explorer (Version = 9.10.9200.17267)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d. M. yyyy
3,88 Gb Total Physical Memory | 2,16 Gb Available Physical Memory | 55,72% Memory free
4,63 Gb Paging File | 2,62 Gb Available in Paging File | 56,62% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 698,29 Gb Total Space | 593,86 Gb Free Space | 85,04% Space Free | Partition Type: NTFS
Unable to calculate disk information.
Computer Name: NB52 | User Name: Uzivatel | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 7 Days
========== Extra Registry (SafeList) ==========
========== File Associations ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.html[@ = htmlfile] -- C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)
.url[@ = InternetShortcut] -- C:\Windows\SysNative\rundll32.exe (Microsoft Corporation)
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation)
.html [@ = htmlfile] -- C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)
[HKEY_USERS\S-1-5-21-1434552645-3163365306-779322869-1004\SOFTWARE\Classes\<extension>]
.html [@ = ChromeHTML] -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.)
========== Shell Spawning ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
https [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\OpenWith.exe "%1" (Microsoft Corporation)
Directory [AddToPlaylistVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" (VideoLAN)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" (VideoLAN)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- "C:\Program Files\Internet Explorer\iexplore.exe" (Microsoft Corporation)
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
https [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\OpenWith.exe "%1" (Microsoft Corporation)
Directory [AddToPlaylistVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" (VideoLAN)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" (VideoLAN)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- Reg Error: Value error.
========== Security Center Settings ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = CE 37 E6 AF FF 6A CD 01 [binary data]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
========== Firewall Settings ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
========== Authorized Applications List ==========
========== Vista Active Open Ports Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{0200D101-2AB9-4B7F-B25F-7F6645BAD4F2}" = lport=139 | protocol=6 | dir=in | app=system |
"{039DA7AB-D270-4CD8-8E15-E5AD1B928DC5}" = lport=6004 | protocol=17 | dir=in | app=c:\program files (x86)\microsoft office\office15\outlook.exe |
"{3D0B3902-FF68-4A11-8816-0EA55079D29D}" = lport=2869 | protocol=6 | dir=in | app=system |
"{50B45E1B-B148-4FA0-86A6-9E731CBF00A0}" = rport=139 | protocol=6 | dir=out | app=system |
"{59947646-C2AA-4A3D-8702-8796E997754C}" = lport=5353 | protocol=17 | dir=in | app=c:\program files (x86)\google\chrome\application\chrome.exe |
"{5B001339-B7D5-443E-8803-41FC11A800A8}" = rport=138 | protocol=17 | dir=out | app=system |
"{60F12041-9DA4-42FF-86AF-57D4BAB15536}" = lport=138 | protocol=17 | dir=in | app=system |
"{6FBF5984-68DF-442E-9744-9FF93A88F069}" = lport=2177 | protocol=6 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{8372C3C2-8798-4B69-B0E6-534DE7404929}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{84F78C3C-F564-4008-AD76-26B02B7B8719}" = rport=2177 | protocol=6 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{85C2E1A4-C12A-4F06-98A4-4D469F45F56E}" = rport=2177 | protocol=17 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{884EC8BF-78A3-482A-82A9-D5534CAD20A8}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{8FB9B07F-52AA-41EC-8EFA-6DD62C476ADC}" = rport=10243 | protocol=6 | dir=out | app=system |
"{94B88D2D-7310-42B3-935C-F8FBB0888255}" = lport=10243 | protocol=6 | dir=in | app=system |
"{A023AA2C-24C5-4949-A3A2-A62065B536F0}" = rport=445 | protocol=6 | dir=out | app=system |
"{A5EC5387-D038-4B91-AB0C-DBE1A5507DCC}" = rport=137 | protocol=17 | dir=out | app=system |
"{A65FC288-9403-420F-8462-CA218A2DC356}" = lport=445 | protocol=6 | dir=in | app=system |
"{CB66B2CC-FE82-4915-9D84-A3BDFB40F6AF}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 |
"{D3B87577-F77C-4024-9FE3-7248184054ED}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{E7FE4467-2106-4DBC-A349-FE19AF9F70D2}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{F312D74A-050A-4A36-AB1F-B7734D8B7274}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
"{F92CFCE1-3840-4CC4-97BB-3A369A888867}" = lport=2177 | protocol=17 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{FBF94A95-A107-4CD4-B134-6C0DF507A319}" = lport=137 | protocol=17 | dir=in | app=system |
========== Vista Active Application Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{039B89EB-2DC3-4B5D-93B4-D358CB97FFFD}" = dir=in | name=@{microsoft.reader_6.2.9200.20780_x64__8wekyb3d8bbwe?ms-resource://microsoft.reader/resources/shortdisplayname} |
"{065336AC-2C52-4572-8BCD-93388C1F8492}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{0787D4FE-6595-43D4-BDBB-20AFE401EAB7}" = dir=out | name=@{microsoft.windowscommunicationsapps_17.0.1119.516_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowscommunicationsapps/resources/communicationspackagename} |
"{091F60B8-D7C5-4922-966A-00A977562DB0}" = dir=out | name=@{browserchoice_6.2.0.0_neutral_neutral_cw5n1h2txyewy?ms-resource://browserchoice/resources/displayname} |
"{09B5A479-5734-4FAB-A434-D115D42BCBEA}" = protocol=17 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{09CC53D8-0A39-4D69-A70F-CCE2CE53E46F}" = protocol=6 | dir=in | app=c:\programdata\turbine\the lord of the rings online\lotroclient.exe |
"{0A937148-1326-4E1B-BDE3-C2DB52C780BA}" = dir=out | name=@{microsoft.bingsports_1.2.0.135_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingsports/resources/bingsports} |
"{0B2FB3A1-E257-463E-B929-34F7A4D7FDE0}" = protocol=17 | dir=in | app=c:\program files (x86)\microsoft office\office15\lync.exe |
"{0BD58259-9E60-4BFB-8F3B-95E94F43F00E}" = dir=out | app=c:\program files (x86)\apowersoft\video download capture\apowersoftplayer.dll |
"{0DA65F53-CDA4-4525-9E1E-EC852B1008BB}" = protocol=6 | dir=in | app=c:\programdata\turbine\the lord of the rings online\turbinelauncher.exe |
"{0E7249F7-9EBC-4509-AEF2-19624A42E990}" = dir=in | name=@{browserchoice_6.2.0.0_neutral_neutral_cw5n1h2txyewy?ms-resource://browserchoice/resources/displayname} |
"{0FBE947C-9681-4623-B664-E6AFCCE3C553}" = dir=out | app=c:\program files (x86)\apowersoft\video download capture\apowersoftac.dll |
"{0FE2B401-6431-4045-B019-94FE297CFBC9}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\dota 2 beta\dota.exe |
"{170DDF9B-141B-411E-99F8-ACCECF413565}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\dota 2 beta\dota.exe |
"{1BE56814-A024-482A-9DD9-F5992640FB42}" = dir=in | app=c:\program files (x86)\apowersoft\video download capture\apowersoftplayer.dll |
"{2134BAE5-922E-4C3C-AA9A-69E19407DD96}" = dir=in | name=@{microsoft.windowsphotos_16.4.4204.712_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowsphotos/photo/residappname} |
"{2139E128-230C-4ADE-9FC7-0387F9C51336}" = dir=in | app=c:\program files (x86)\apowersoft\video download capture\apowersoftac.dll |
"{25EDFD83-C837-4601-86F5-515AA72048DF}" = dir=in | name=@{microsoft.windowsphotos_16.4.4396.311_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowsphotos/photo/residappname} |
"{26957898-81CF-4906-9AC0-5ED6658B234B}" = protocol=6 | dir=in | app=c:\program files (x86)\microsoft office\office15\ucmapi.exe |
"{270D6EC8-FA37-4C29-8644-BF75000F26AE}" = dir=out | name=@{microsoft.bingmaps_1.2.0.136_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingmaps/resources/appdisplayname} |
"{2C01468E-BBC8-4C08-BB2C-37C9E08114FC}" = dir=out | name=@{microsoft.bingmaps_1.6.1821.2624_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingmaps/resources/appdisplayname} |
"{2D2ABED3-445D-4A60-B6E6-5D0BE191953B}" = protocol=6 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{2DECE470-E12A-41B9-B466-E2B3C5073CB8}" = protocol=6 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{306EE094-AA7C-4F18-B59A-2FE5A93F4819}" = dir=out | name=@{microsoft.microsoftskydrive_16.4.4204.712_x64__8wekyb3d8bbwe?ms-resource://microsoft.microsoftskydrive/resources/shortproductname} |
"{31C672CA-A8C5-4A8D-A207-054BF8E96037}" = dir=out | name=@{microsoft.bingfinance_2.0.0.308_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingfinance/resources/apptitle} |
"{3324D622-B67A-4D9E-BB55-65AFA3196542}" = dir=out | name=@{microsoft.zunemusic_1.5.216.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.zunemusic/resources/ids_manifest_music_app_name} |
"{33BD6B5D-AA87-4729-AA95-9BD3CAD63AAB}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{34A9D55C-5BC8-4EE5-8EE8-7D6023D8848E}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\dota 2 beta\dota.exe |
"{364B957B-2ED9-4483-87B7-C566AF748AEB}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\command and conquer red alert 3 uprising\ra3ep1.exe |
"{3E114198-6D68-4C3A-90C6-4B3E5997F84D}" = protocol=6 | dir=in | app=c:\program files (x86)\mozilla firefox\firefox.exe |
"{4607A0CC-6A3C-430E-B075-2F402969CAD6}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\command and conquer red alert 3 uprising\ra3ep1.exe |
"{4BAC7A8F-27D6-4F6D-B28F-8108349329A2}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{4E7DB7FB-0D6B-48C2-A572-70CE049EFFA4}" = protocol=6 | dir=in | app=c:\program files (x86)\microsoft office\office15\lync.exe |
"{4F156390-BA05-4DEA-B77A-498731F9A3D6}" = protocol=17 | dir=in | app=c:\programdata\turbine\the lord of the rings online\lotroclient.exe |
"{505E8448-2ABC-4ECF-80C5-852A59A3E378}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\dota 2 beta\dota.exe |
"{516AC16E-DF49-450C-9ABC-E84CD9F0E112}" = dir=out | name=@{microsoft.reader_6.2.9200.20780_x64__8wekyb3d8bbwe?ms-resource://microsoft.reader/resources/shortdisplayname} |
"{5345FB85-1A2B-4867-A243-A5FEF8E2BE38}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 |
"{536761C3-AE6C-4EE6-BA44-911740CC3E53}" = dir=in | name=@{microsoft.reader_6.2.8516.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.reader/resources/shortdisplayname} |
"{590B940B-4AD7-4B7F-9932-EA31795F21D0}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\dota 2 beta\dota.exe |
"{5A82EF51-A5B0-40B6-9683-AB0BC04EE692}" = dir=out | app=c:\program files (x86)\apowersoft\video download capture\apowersoftsrv.dll |
"{5C241DAA-BB5C-4902-BCC5-1F298231DBD9}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\company of heroes\reliccoh.exe |
"{5D1A813E-4864-4F38-ADAE-2CF6153F2B71}" = dir=out | name=@{microsoft.bingtravel_1.2.0.145_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingtravel/resources/apptitle} |
"{6041A657-5098-449D-A4AB-A1A1339BD0BA}" = dir=out | name=@{microsoft.windowsphotos_16.4.4396.311_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowsphotos/photo/residappname} |
"{6776BAAC-0463-40DB-84B3-7CE75DC10AC7}" = dir=out | app=c:\program files (x86)\apowersoft\video download capture\video download capture.exe |
"{688FF568-9678-4875-81BF-1D681E1B3C20}" = dir=out | name=@{microsoft.zunemusic_1.0.927.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.zunemusic/resources/33273} |
"{6ABE9607-7574-47FA-9E67-7631778D650F}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\bin\steamwebhelper.exe |
"{723B4BC6-CABE-4954-A7D9-6E3348E1B549}" = dir=out | name=@{microsoft.xboxlivegames_1.3.10.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.xboxlivegames/resources/34150} |
"{7361E9AC-47ED-4E7C-9D06-FE97D484C389}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{743D29E4-769A-4119-A9F3-14328D9D0994}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 |
"{7B2C229A-F2E5-4697-853A-67D0DE734195}" = dir=in | name=@{microsoft.windowscommunicationsapps_17.0.1119.516_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowscommunicationsapps/resources/communicationspackagename} |
"{7D8A807E-4AEE-4F23-A00A-5E9AAB9C9507}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 |
"{7EC7538B-C590-40B5-AACF-19EEC67DDEF2}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\dota 2 beta\dota.exe |
"{7F092EC8-E596-4998-BA6B-D5ECA1CA48F3}" = dir=out | name=@{microsoft.xboxlivegames_1.0.927.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.xboxlivegames/resources/34150} |
"{808F1451-4108-46FD-ADBB-F17324B5F0BD}" = dir=out | name=@{c:\windows\winstore\resources.pri?ms-resource://winstore/resources/displayname} |
"{8190EDD8-A57A-41A0-BAC3-44B8C505D6F4}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 |
"{81B7DE77-CBAF-4A96-BBE3-683D5BAFE84A}" = protocol=17 | dir=in | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{84A0D357-6DA6-46A3-B4BC-06A8C6F64248}" = dir=out | name=@{microsoft.zunevideo_1.0.927.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.zunevideo/resources/33270} |
"{866606FC-A6C1-4CF2-AF9E-2B5E04AE3E5C}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{89EFBE57-F646-4DE3-82F6-E312D3A10B30}" = protocol=17 | dir=in | app=c:\programdata\turbine\the lord of the rings online\turbinelauncher.exe |
"{8A43D0D3-2141-456E-A824-9E84778352F3}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\bin\steamwebhelper.exe |
"{8C175B80-9EFB-4A91-88EE-160BD52B35CB}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\dota 2 beta\dota.exe |
"{8C59D3B5-6B21-4FC6-BD93-97A746754921}" = dir=out | app=c:\program files (x86)\apowersoft\video download capture\apowersofthdsdump.dll |
"{8CD83A92-9427-49F1-AEB4-5D27C626504E}" = protocol=17 | dir=in | app=c:\program files (x86)\microsoft office\office15\ucmapi.exe |
"{91904E49-F2CD-4530-AD01-4A3E61A0FC7F}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steam.exe |
"{98B21F52-DF63-41F4-B5EA-002E83623E07}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{9A864ECD-465A-44BB-81B0-FF0E63027511}" = dir=out | name=@{microsoft.zunevideo_1.5.902.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.zunevideo/resources/ids_manifest_video_app_name} |
"{9CAD87B1-4C7C-4C01-BE70-3EFB77F30C22}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\dota 2 beta\dota.exe |
"{9CCAFF65-5AA9-41EB-A829-98E23F69FB0E}" = dir=in | app=c:\program files (x86)\apowersoft\video download capture\video download capture.exe |
"{9E731037-775E-4AE9-9DC8-3A02C4372BF5}" = dir=out | name=@{microsoft.bingweather_2.0.0.310_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingweather/resources/apptitle} |
"{A4D6D761-1883-4A1C-AE49-7CC055AA4089}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{A62D088D-5EB1-4B56-B9E9-33E3326DA410}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\dota 2 beta\dota.exe |
"{A87C2153-1E16-47D0-9855-C27039141C53}" = dir=out | name=@{microsoft.reader_6.2.8516.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.reader/resources/shortdisplayname} |
"{A902B812-BA22-46A8-A238-219FA1B6B6CF}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\dota 2 beta\dota.exe |
"{AA762400-FFAA-40D9-8798-AED553E3C1E1}" = dir=out | name=@{microsoft.bingnews_1.2.0.135_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingnews/resources/news} |
"{AC5A9B0D-01D3-407E-A2B5-F624F44CC803}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{AD34234D-C116-421B-9660-E416A261377C}" = dir=out | name=@{microsoft.bingweather_1.2.0.135_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingweather/resources/apptitle} |
"{B19A1BF0-3481-4902-81CA-19D32CF9FC02}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\company of heroes\reliccoh.exe |
"{B43ABB96-95BE-495E-A235-995652C52B5D}" = dir=out | name=@{browserchoice_6.2.0.0_neutral_neutral_cw5n1h2txyewy?ms-resource://browserchoice/resources/displayname} |
"{B5585480-8EF2-43A5-9D08-1BF81EC5CAD0}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\company of heroes relaunch\reliccoh.exe |
"{B641AAC2-CA61-4719-B0D9-E51851B741A9}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{B663A1B6-D9A8-41BF-A167-69BCEED819A6}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\dota 2 beta\dota.exe |
"{B6CC88F8-FAF8-417F-9B0B-F00D00061303}" = dir=out | name=@{microsoft.microsoftskydrive_16.4.4396.311_x64__8wekyb3d8bbwe?ms-resource://microsoft.microsoftskydrive/resources/shortproductname} |
"{B7829BAF-6A05-4ED5-AC49-D75DB120AA53}" = dir=in | name=@{microsoft.windowscommunicationsapps_16.4.4206.722_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowscommunicationsapps/resources/communicationspackagename} |
"{B99897C9-E049-41F7-ACE9-F6482616F66F}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\dota 2 beta\dota.exe |
"{BE372721-F123-42EC-AB46-DAB6EF230FC7}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\company of heroes relaunch\reliccoh.exe |
"{C1A2E036-B432-4490-804E-A95815D6230F}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\dota 2 beta\dota.exe |
"{C61E27FA-4492-410C-8881-60E9EE817F4F}" = dir=out | name=@{microsoft.bing_1.2.0.137_x64__8wekyb3d8bbwe?ms-resource://microsoft.bing/resources/app_name} |
"{C7A42AD4-1EF8-40F9-B715-3540A432CDFD}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{C98EB20B-8B09-4573-B8E7-1F3692192736}" = dir=in | app=c:\program files (x86)\apowersoft\video download capture\apowersoftdownloaderhelp.dll |
"{CAD22839-2CDE-483C-ACD9-0CCB58BA2821}" = dir=out | name=@{microsoft.bingsports_2.0.0.310_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingsports/resources/bingsports} |
"{CC1899D0-38DD-4108-A3CD-8147C917609C}" = dir=out | name=@{microsoft.windowsphotos_16.4.4204.712_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowsphotos/photo/residappname} |
"{CD0DFC94-A1C1-4D8C-8191-BF5E303DBCA4}" = dir=in | app=c:\program files (x86)\apowersoft\video download capture\apowersofthdsdump.dll |
"{D3C8936E-B650-47DD-BFF1-9A7F6215B9A7}" = dir=in | name=@{browserchoice_6.2.0.0_neutral_neutral_cw5n1h2txyewy?ms-resource://browserchoice/resources/displayname} |
"{D63B314D-AB68-48BE-B8C4-10F9797F17AC}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\dota 2 beta\dota.exe |
"{D7FFF7DD-34A2-4F92-95B5-8DA36732EBA8}" = dir=out | name=@{microsoft.bingtravel_2.0.0.319_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingtravel/resources/apptitle} |
"{E08BB31E-780A-4960-BAAA-F8B547AA1D08}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\dota 2 beta\dota.exe |
"{E1A52905-B43A-47E9-A0D1-C5BF52E6EA5C}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steam.exe |
"{E4FE8563-F05A-42B7-8CDE-0DD07D35B8E8}" = dir=out | name=@{microsoft.windowscommunicationsapps_16.4.4206.722_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowscommunicationsapps/resources/communicationspackagename} |
"{E5427CF3-2383-4EE7-BE69-799465F552A1}" = dir=in | app=c:\program files (x86)\apowersoft\video download capture\apowersoftdump.dll |
"{E7985E1D-C36F-4787-80A8-6350D07E9266}" = dir=in | name=@{c:\windows\winstore\resources.pri?ms-resource://winstore/resources/displayname} |
"{E92D0E30-6DA4-436F-8C2A-EB7D43DAC1E6}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\dota 2 beta\dota.exe |
"{F065F3B5-49FF-47A2-A4E2-1AA5FDAFD1EC}" = dir=out | name=@{microsoft.bingnews_2.0.0.308_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingnews/resources/news} |
"{F0A8A52F-3B40-46BC-8262-A5D7B8629B9A}" = dir=out | app=c:\program files (x86)\apowersoft\video download capture\apowersoftdump.dll |
"{F1D9FA89-8C90-4F5D-87D4-45EFB82F3371}" = dir=in | name=@{microsoft.bing_1.2.0.137_x64__8wekyb3d8bbwe?ms-resource://microsoft.bing/resources/app_name} |
"{F1EA7B55-A042-424B-A699-B4786D341A37}" = dir=in | app=c:\program files (x86)\apowersoft\video download capture\apowersoftsrv.dll |
"{F6E41BA2-2E90-4304-81C1-5010A5D3254B}" = dir=out | name=@{microsoft.bingfinance_1.2.0.135_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingfinance/resources/apptitle} |
"{F6EA3D1B-9AA1-4C79-B8E8-C1ABF71CA434}" = dir=out | app=c:\program files (x86)\apowersoft\video download capture\apowersoftdownloaderhelp.dll |
"{F739CF8E-ACF0-478C-A0CC-524C82939689}" = protocol=6 | dir=out | app=system |
"{FA088573-8EBC-4DDC-A345-6628A57E4869}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{FCC2B7AF-ED6B-405F-8804-DDE8B717BB03}" = protocol=17 | dir=in | app=c:\program files (x86)\mozilla firefox\firefox.exe |
"{FCECABD3-A9F6-47EA-AB89-5608EA171EFA}" = dir=out | name=@{microsoft.bing_1.5.1.259_x64__8wekyb3d8bbwe?ms-resource://microsoft.bing/resources/app_name} |
"TCP Query User{2722B338-1FFB-43B7-AE42-F19607461313}C:\program files (x86)\steam\steam.exe" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steam.exe |
"TCP Query User{64582E90-3957-4EA2-A9A2-85237E417ED3}C:\users\uzivatel\appdata\local\akamai\netsession_win.exe" = protocol=6 | dir=in | app=c:\users\uzivatel\appdata\local\akamai\netsession_win.exe |
"TCP Query User{7DBE2D51-D82B-4865-829C-8E15FEE78062}C:\program files (x86)\total war rome ii\rome2.exe" = protocol=6 | dir=in | app=c:\program files (x86)\total war rome ii\rome2.exe |
"TCP Query User{9569ADE1-8AEB-4DAF-9AF2-F60028054C90}C:\users\uzivatel\appdata\local\akamai\netsession_win.exe" = protocol=6 | dir=in | app=c:\users\uzivatel\appdata\local\akamai\netsession_win.exe |
"TCP Query User{BD68F214-B354-422B-A861-7E378012270D}C:\totalcmd\totalcmd.exe" = protocol=6 | dir=in | app=c:\totalcmd\totalcmd.exe |
"TCP Query User{FDCE5845-3329-4633-AFFA-A46A053BE7FC}C:\program files (x86)\steam\steamapps\common\company of heroes\relicdownloader\relicdownloader.exe" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\company of heroes\relicdownloader\relicdownloader.exe |
"UDP Query User{286EA159-E422-49A4-ACDC-6E6EC19BC20B}C:\program files (x86)\total war rome ii\rome2.exe" = protocol=17 | dir=in | app=c:\program files (x86)\total war rome ii\rome2.exe |
"UDP Query User{39A23C71-4A60-4015-BB02-56D02A46428E}C:\users\uzivatel\appdata\local\akamai\netsession_win.exe" = protocol=17 | dir=in | app=c:\users\uzivatel\appdata\local\akamai\netsession_win.exe |
"UDP Query User{631B5B01-D288-44DC-9EAD-D02F1A504A48}C:\totalcmd\totalcmd.exe" = protocol=17 | dir=in | app=c:\totalcmd\totalcmd.exe |
"UDP Query User{93E23B22-935A-48EE-8C1C-8E241CDDFAE5}C:\program files (x86)\steam\steamapps\common\company of heroes\relicdownloader\relicdownloader.exe" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\company of heroes\relicdownloader\relicdownloader.exe |
"UDP Query User{DF4D2E2E-403A-4239-9D8B-C221270E83D6}C:\program files (x86)\steam\steam.exe" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steam.exe |
"UDP Query User{EE20D2DF-F583-4E03-A981-00F1F2386588}C:\users\uzivatel\appdata\local\akamai\netsession_win.exe" = protocol=17 | dir=in | app=c:\users\uzivatel\appdata\local\akamai\netsession_win.exe |
========== HKEY_LOCAL_MACHINE Uninstall List ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{23170F69-40C1-2702-0920-000001000000}" = 7-Zip 9.20 (x64 edition)
"{26A24AE4-039D-4CA4-87B4-2F86417040FF}" = Java 7 Update 40 (64-bit)
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{90150000-002A-0000-1000-0000000FF1CE}" = Microsoft Office 64-bit Components 2013
"{90150000-002A-0405-1000-0000000FF1CE}" = Microsoft Office Shared 64-bit MUI (Czech) 2013
"{E9F0BCD8-6BD5-1ED7-EDA3-9FCF2A478AA1}" = Microsoft App Update for microsoft.windowscommunicationsapps_17.0.1119.516_x64__8wekyb3d8bbwe (x64)
"{FEA1590B-540A-41FC-A95C-664493C82A21}" = Classic Shell
"CCleaner" = CCleaner
"GIMP-2_is1" = GIMP 2.8.6
"SynTPDeinstKey" = Synaptics Pointing Device Driver
"Totalcmd64" = Total Commander 64-bit (Remove or Repair)
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{048298C9-A4D3-490B-9FF9-AB023A9238F3}" = Steam
"{0A5B39D2-7ED6-4779-BCC9-37F381139DB3}" = Adobe AIR
"{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}" = Skype™ 7.1
"{26A24AE4-039D-4CA4-87B4-2F83217040FF}" = Java 7 Update 40
"{3C9D008D-3716-4C3F-90CD-38ED57568FAB}_is1" = Video Download Capture V4.8.1
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}" = Google Update Helper
"{612C34C7-5E90-47D8-9B5C-0F717DD82726}" = swMSM
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{7E265513-8CDA-4631-B696-F40D983F3B07}_is1" = CDBurnerXP
"{84EE38CA-199D-3BCC-8649-3464469BB54C}" = Google Chrome
"{90150000-0011-0000-0000-0000000FF1CE}" = Microsoft Office Professional Plus 2013
"{90150000-0015-0405-0000-0000000FF1CE}" = Microsoft Access MUI (Czech) 2013
"{90150000-0016-0405-0000-0000000FF1CE}" = Microsoft Excel MUI (Czech) 2013
"{90150000-0018-0405-0000-0000000FF1CE}" = Microsoft PowerPoint MUI (Czech) 2013
"{90150000-0019-0405-0000-0000000FF1CE}" = Microsoft Publisher MUI (Czech) 2013
"{90150000-001A-0405-0000-0000000FF1CE}" = Microsoft Outlook MUI (Czech) 2013
"{90150000-001B-0405-0000-0000000FF1CE}" = Microsoft Word MUI (Czech) 2013
"{90150000-001F-0405-0000-0000000FF1CE}" = Nástroje kontroly pravopisu pro Microsoft Office 2013 – čeština
"{90150000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Korrekturhilfen 2013 - Deutsch
"{90150000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proofing Tools 2013 - English
"{90150000-001F-041B-0000-0000000FF1CE}" = Nástroje korektúry balíka Microsoft Office 2013 - slovenčina
"{90150000-002C-0405-0000-0000000FF1CE}" = Microsoft Office Proofing (Czech) 2013
"{90150000-0044-0405-0000-0000000FF1CE}" = Microsoft InfoPath MUI (Czech) 2013
"{90150000-006E-0405-0000-0000000FF1CE}" = Microsoft Office Shared MUI (Czech) 2013
"{90150000-0090-0405-0000-0000000FF1CE}" = Microsoft DCF MUI (Czech) 2013
"{90150000-00A1-0405-0000-0000000FF1CE}" = Microsoft OneNote MUI (Czech) 2013
"{90150000-00BA-0405-0000-0000000FF1CE}" = Microsoft Groove MUI (Czech) 2013
"{90150000-00E1-0405-0000-0000000FF1CE}" = Microsoft Office OSM MUI (Czech) 2013
"{90150000-00E2-0405-0000-0000000FF1CE}" = Microsoft Office OSM UX MUI (Czech) 2013
"{90150000-012B-0405-0000-0000000FF1CE}" = Microsoft Lync MUI (Czech) 2013
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{AC76BA86-0804-1033-1959-001802114130}" = Adobe Refresh Manager
"{AC76BA86-7AD7-1029-7B44-AB0000000001}" = Adobe Reader XI (11.0.10) - Czech
"{DF6A13C0-77DF-41FE-BD05-6D5201EB0CE7}_is1" = Auslogics DiskDefrag
"{E0F07676-2C60-4465-A727-20DE3BFCABAC}" = Tony Hawks Pro Skater 4
"{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
"{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}" = Intel(R) Processor Graphics
"{F1EE568A-171F-4C06-9BE6-2395BED067A3}" = LibreOffice 4.1.1.2
"Adobe AIR" = Adobe AIR
"Adobe Flash Player NPAPI" = Adobe Flash Player 16 NPAPI
"Adobe Shockwave Player" = Adobe Shockwave Player 12.0
"ASIO4ALL" = ASIO4ALL
"CinemaP-1.9cV05.03" = CinemaP-1.9cV05.03
"Deckadance 2" = Deckadance 2
"DirectWave" = DirectWave
"DX10" = DX10
"Eastern Front" = Eastern Front
"FL Studio 11" = FL Studio 11
"FlowStone" = FlowStone FL 3.0
"Groove Machine" = Groove Machine
"Guitar Pro 5_is1" = Guitar Pro 5.2
"IL Download Manager" = IL Download Manager
"IL Harmless" = IL Harmless
"IL Juice Pack" = IL Juice Pack
"IL MiniHost" = IL MiniHost
"IL Shared Libraries" = IL Shared Libraries
"ImgBurn" = ImgBurn
"Inkscape" = Inkscape 0.48.4
"Internet Speed Checker" = Internet Speed Checker
"KLiteCodecPack_is1" = K-Lite Codec Pack 10.0.5 Full
"LiveUSB Creator" = LiveUSB Creator (remove only)
"Mozilla Firefox 36.0.1 (x86 cs)" = Mozilla Firefox 36.0.1 (x86 cs)
"MozillaMaintenanceService" = Mozilla Maintenance Service
"Office15.PROPLUS" = Microsoft Office Professional Plus 2013
"Revo Uninstaller" = Revo Uninstaller 1.95
"Steam App 20540" = Company of Heroes: Tales of Valor
"Steam App 228200" = Company of Heroes (New Steam Version)
"Steam App 24800" = Command and Conquer: Red Alert 3 - Uprising
"Steam App 570" = Dota 2
"TeamSpeak 3 Client" = TeamSpeak 3 Client
"Toxic Biohazard" = Toxic Biohazard
"VirtualCloneDrive" = VirtualCloneDrive
"VLC media player" = VLC media player 2.0.8
"Warcraft III" = Warcraft III
"XnView_is1" = XnView 2.05
========== HKEY_USERS Uninstall List ==========
[HKEY_USERS\S-1-5-21-1434552645-3163365306-779322869-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Akamai" = Akamai NetSession Interface
"HappyCloud" = Happy Cloud Client
========== Last 20 Event Log Errors ==========
[ Application Events ]
Error - 15. 3. 2015 19:36:11 | Computer Name = NB52 | Source = ATIeRecord | ID = 16388
Description = ATI EEU Client event error
Error - 15. 3. 2015 19:36:11 | Computer Name = NB52 | Source = ATIeRecord | ID = 16386
Description = ATI EEU Client has failed to start
Error - 15. 3. 2015 19:37:11 | Computer Name = NB52 | Source = ATIeRecord | ID = 16388
Description = ATI EEU Client event error
Error - 15. 3. 2015 19:37:11 | Computer Name = NB52 | Source = ATIeRecord | ID = 16386
Description = ATI EEU Client has failed to start
Error - 15. 3. 2015 19:38:11 | Computer Name = NB52 | Source = ATIeRecord | ID = 16388
Description = ATI EEU Client event error
Error - 15. 3. 2015 19:38:11 | Computer Name = NB52 | Source = ATIeRecord | ID = 16386
Description = ATI EEU Client has failed to start
Error - 15. 3. 2015 19:39:11 | Computer Name = NB52 | Source = ATIeRecord | ID = 16388
Description = ATI EEU Client event error
Error - 15. 3. 2015 19:39:11 | Computer Name = NB52 | Source = ATIeRecord | ID = 16386
Description = ATI EEU Client has failed to start
Error - 15. 3. 2015 19:40:11 | Computer Name = NB52 | Source = ATIeRecord | ID = 16388
Description = ATI EEU Client event error
Error - 15. 3. 2015 19:40:11 | Computer Name = NB52 | Source = ATIeRecord | ID = 16386
Description = ATI EEU Client has failed to start
[ System Events ]
Error - 20. 2. 2015 6:47:05 | Computer Name = NB52 | Source = Service Control Manager | ID = 7000
Description = Služba Služba Windows Store (WSService) neuspěla při spuštění v důsledku
následující chyby: %%1053
Error - 20. 2. 2015 6:47:06 | Computer Name = NB52 | Source = Service Control Manager | ID = 7000
Description = Služba Služba Windows Store (WSService) neuspěla při spuštění v důsledku
následující chyby: %%1053
Error - 20. 2. 2015 7:33:59 | Computer Name = NB52 | Source = Service Control Manager | ID = 7000
Description = Služba Služba Windows Store (WSService) neuspěla při spuštění v důsledku
následující chyby: %%1053
Error - 20. 2. 2015 7:34:00 | Computer Name = NB52 | Source = Service Control Manager | ID = 7000
Description = Služba Služba Windows Store (WSService) neuspěla při spuštění v důsledku
následující chyby: %%1053
Error - 20. 2. 2015 7:34:01 | Computer Name = NB52 | Source = Service Control Manager | ID = 7000
Description = Služba Služba Windows Store (WSService) neuspěla při spuštění v důsledku
následující chyby: %%1053
Error - 20. 2. 2015 11:45:46 | Computer Name = NB52 | Source = Service Control Manager | ID = 7000
Description = Služba Služba Windows Store (WSService) neuspěla při spuštění v důsledku
následující chyby: %%1053
Error - 20. 2. 2015 11:45:47 | Computer Name = NB52 | Source = Service Control Manager | ID = 7000
Description = Služba Služba Windows Store (WSService) neuspěla při spuštění v důsledku
následující chyby: %%1053
Error - 20. 2. 2015 11:45:48 | Computer Name = NB52 | Source = Service Control Manager | ID = 7000
Description = Služba Služba Windows Store (WSService) neuspěla při spuštění v důsledku
následující chyby: %%1053
Error - 20. 2. 2015 13:33:59 | Computer Name = NB52 | Source = Service Control Manager | ID = 7000
Description = Služba Služba Windows Store (WSService) neuspěla při spuštění v důsledku
následující chyby: %%1053
Error - 20. 2. 2015 13:34:00 | Computer Name = NB52 | Source = Service Control Manager | ID = 7000
Description = Služba Služba Windows Store (WSService) neuspěla při spuštění v důsledku
následující chyby: %%1053
< End of report >
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Uzivatel\Downloads
64bit- Enterprise Edition (Version = 6.2.9200) - Type = NTWorkstation
Internet Explorer (Version = 9.10.9200.17267)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d. M. yyyy
3,88 Gb Total Physical Memory | 2,16 Gb Available Physical Memory | 55,72% Memory free
4,63 Gb Paging File | 2,62 Gb Available in Paging File | 56,62% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 698,29 Gb Total Space | 593,86 Gb Free Space | 85,04% Space Free | Partition Type: NTFS
Unable to calculate disk information.
Computer Name: NB52 | User Name: Uzivatel | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 7 Days
========== Extra Registry (SafeList) ==========
========== File Associations ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.html[@ = htmlfile] -- C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)
.url[@ = InternetShortcut] -- C:\Windows\SysNative\rundll32.exe (Microsoft Corporation)
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation)
.html [@ = htmlfile] -- C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)
[HKEY_USERS\S-1-5-21-1434552645-3163365306-779322869-1004\SOFTWARE\Classes\<extension>]
.html [@ = ChromeHTML] -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.)
========== Shell Spawning ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
https [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\OpenWith.exe "%1" (Microsoft Corporation)
Directory [AddToPlaylistVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" (VideoLAN)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" (VideoLAN)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- "C:\Program Files\Internet Explorer\iexplore.exe" (Microsoft Corporation)
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
https [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\OpenWith.exe "%1" (Microsoft Corporation)
Directory [AddToPlaylistVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" (VideoLAN)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" (VideoLAN)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- Reg Error: Value error.
========== Security Center Settings ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = CE 37 E6 AF FF 6A CD 01 [binary data]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
========== Firewall Settings ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
========== Authorized Applications List ==========
========== Vista Active Open Ports Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{0200D101-2AB9-4B7F-B25F-7F6645BAD4F2}" = lport=139 | protocol=6 | dir=in | app=system |
"{039DA7AB-D270-4CD8-8E15-E5AD1B928DC5}" = lport=6004 | protocol=17 | dir=in | app=c:\program files (x86)\microsoft office\office15\outlook.exe |
"{3D0B3902-FF68-4A11-8816-0EA55079D29D}" = lport=2869 | protocol=6 | dir=in | app=system |
"{50B45E1B-B148-4FA0-86A6-9E731CBF00A0}" = rport=139 | protocol=6 | dir=out | app=system |
"{59947646-C2AA-4A3D-8702-8796E997754C}" = lport=5353 | protocol=17 | dir=in | app=c:\program files (x86)\google\chrome\application\chrome.exe |
"{5B001339-B7D5-443E-8803-41FC11A800A8}" = rport=138 | protocol=17 | dir=out | app=system |
"{60F12041-9DA4-42FF-86AF-57D4BAB15536}" = lport=138 | protocol=17 | dir=in | app=system |
"{6FBF5984-68DF-442E-9744-9FF93A88F069}" = lport=2177 | protocol=6 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{8372C3C2-8798-4B69-B0E6-534DE7404929}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{84F78C3C-F564-4008-AD76-26B02B7B8719}" = rport=2177 | protocol=6 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{85C2E1A4-C12A-4F06-98A4-4D469F45F56E}" = rport=2177 | protocol=17 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{884EC8BF-78A3-482A-82A9-D5534CAD20A8}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{8FB9B07F-52AA-41EC-8EFA-6DD62C476ADC}" = rport=10243 | protocol=6 | dir=out | app=system |
"{94B88D2D-7310-42B3-935C-F8FBB0888255}" = lport=10243 | protocol=6 | dir=in | app=system |
"{A023AA2C-24C5-4949-A3A2-A62065B536F0}" = rport=445 | protocol=6 | dir=out | app=system |
"{A5EC5387-D038-4B91-AB0C-DBE1A5507DCC}" = rport=137 | protocol=17 | dir=out | app=system |
"{A65FC288-9403-420F-8462-CA218A2DC356}" = lport=445 | protocol=6 | dir=in | app=system |
"{CB66B2CC-FE82-4915-9D84-A3BDFB40F6AF}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 |
"{D3B87577-F77C-4024-9FE3-7248184054ED}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{E7FE4467-2106-4DBC-A349-FE19AF9F70D2}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{F312D74A-050A-4A36-AB1F-B7734D8B7274}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
"{F92CFCE1-3840-4CC4-97BB-3A369A888867}" = lport=2177 | protocol=17 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{FBF94A95-A107-4CD4-B134-6C0DF507A319}" = lport=137 | protocol=17 | dir=in | app=system |
========== Vista Active Application Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{039B89EB-2DC3-4B5D-93B4-D358CB97FFFD}" = dir=in | name=@{microsoft.reader_6.2.9200.20780_x64__8wekyb3d8bbwe?ms-resource://microsoft.reader/resources/shortdisplayname} |
"{065336AC-2C52-4572-8BCD-93388C1F8492}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{0787D4FE-6595-43D4-BDBB-20AFE401EAB7}" = dir=out | name=@{microsoft.windowscommunicationsapps_17.0.1119.516_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowscommunicationsapps/resources/communicationspackagename} |
"{091F60B8-D7C5-4922-966A-00A977562DB0}" = dir=out | name=@{browserchoice_6.2.0.0_neutral_neutral_cw5n1h2txyewy?ms-resource://browserchoice/resources/displayname} |
"{09B5A479-5734-4FAB-A434-D115D42BCBEA}" = protocol=17 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{09CC53D8-0A39-4D69-A70F-CCE2CE53E46F}" = protocol=6 | dir=in | app=c:\programdata\turbine\the lord of the rings online\lotroclient.exe |
"{0A937148-1326-4E1B-BDE3-C2DB52C780BA}" = dir=out | name=@{microsoft.bingsports_1.2.0.135_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingsports/resources/bingsports} |
"{0B2FB3A1-E257-463E-B929-34F7A4D7FDE0}" = protocol=17 | dir=in | app=c:\program files (x86)\microsoft office\office15\lync.exe |
"{0BD58259-9E60-4BFB-8F3B-95E94F43F00E}" = dir=out | app=c:\program files (x86)\apowersoft\video download capture\apowersoftplayer.dll |
"{0DA65F53-CDA4-4525-9E1E-EC852B1008BB}" = protocol=6 | dir=in | app=c:\programdata\turbine\the lord of the rings online\turbinelauncher.exe |
"{0E7249F7-9EBC-4509-AEF2-19624A42E990}" = dir=in | name=@{browserchoice_6.2.0.0_neutral_neutral_cw5n1h2txyewy?ms-resource://browserchoice/resources/displayname} |
"{0FBE947C-9681-4623-B664-E6AFCCE3C553}" = dir=out | app=c:\program files (x86)\apowersoft\video download capture\apowersoftac.dll |
"{0FE2B401-6431-4045-B019-94FE297CFBC9}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\dota 2 beta\dota.exe |
"{170DDF9B-141B-411E-99F8-ACCECF413565}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\dota 2 beta\dota.exe |
"{1BE56814-A024-482A-9DD9-F5992640FB42}" = dir=in | app=c:\program files (x86)\apowersoft\video download capture\apowersoftplayer.dll |
"{2134BAE5-922E-4C3C-AA9A-69E19407DD96}" = dir=in | name=@{microsoft.windowsphotos_16.4.4204.712_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowsphotos/photo/residappname} |
"{2139E128-230C-4ADE-9FC7-0387F9C51336}" = dir=in | app=c:\program files (x86)\apowersoft\video download capture\apowersoftac.dll |
"{25EDFD83-C837-4601-86F5-515AA72048DF}" = dir=in | name=@{microsoft.windowsphotos_16.4.4396.311_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowsphotos/photo/residappname} |
"{26957898-81CF-4906-9AC0-5ED6658B234B}" = protocol=6 | dir=in | app=c:\program files (x86)\microsoft office\office15\ucmapi.exe |
"{270D6EC8-FA37-4C29-8644-BF75000F26AE}" = dir=out | name=@{microsoft.bingmaps_1.2.0.136_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingmaps/resources/appdisplayname} |
"{2C01468E-BBC8-4C08-BB2C-37C9E08114FC}" = dir=out | name=@{microsoft.bingmaps_1.6.1821.2624_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingmaps/resources/appdisplayname} |
"{2D2ABED3-445D-4A60-B6E6-5D0BE191953B}" = protocol=6 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{2DECE470-E12A-41B9-B466-E2B3C5073CB8}" = protocol=6 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{306EE094-AA7C-4F18-B59A-2FE5A93F4819}" = dir=out | name=@{microsoft.microsoftskydrive_16.4.4204.712_x64__8wekyb3d8bbwe?ms-resource://microsoft.microsoftskydrive/resources/shortproductname} |
"{31C672CA-A8C5-4A8D-A207-054BF8E96037}" = dir=out | name=@{microsoft.bingfinance_2.0.0.308_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingfinance/resources/apptitle} |
"{3324D622-B67A-4D9E-BB55-65AFA3196542}" = dir=out | name=@{microsoft.zunemusic_1.5.216.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.zunemusic/resources/ids_manifest_music_app_name} |
"{33BD6B5D-AA87-4729-AA95-9BD3CAD63AAB}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{34A9D55C-5BC8-4EE5-8EE8-7D6023D8848E}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\dota 2 beta\dota.exe |
"{364B957B-2ED9-4483-87B7-C566AF748AEB}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\command and conquer red alert 3 uprising\ra3ep1.exe |
"{3E114198-6D68-4C3A-90C6-4B3E5997F84D}" = protocol=6 | dir=in | app=c:\program files (x86)\mozilla firefox\firefox.exe |
"{4607A0CC-6A3C-430E-B075-2F402969CAD6}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\command and conquer red alert 3 uprising\ra3ep1.exe |
"{4BAC7A8F-27D6-4F6D-B28F-8108349329A2}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{4E7DB7FB-0D6B-48C2-A572-70CE049EFFA4}" = protocol=6 | dir=in | app=c:\program files (x86)\microsoft office\office15\lync.exe |
"{4F156390-BA05-4DEA-B77A-498731F9A3D6}" = protocol=17 | dir=in | app=c:\programdata\turbine\the lord of the rings online\lotroclient.exe |
"{505E8448-2ABC-4ECF-80C5-852A59A3E378}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\dota 2 beta\dota.exe |
"{516AC16E-DF49-450C-9ABC-E84CD9F0E112}" = dir=out | name=@{microsoft.reader_6.2.9200.20780_x64__8wekyb3d8bbwe?ms-resource://microsoft.reader/resources/shortdisplayname} |
"{5345FB85-1A2B-4867-A243-A5FEF8E2BE38}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 |
"{536761C3-AE6C-4EE6-BA44-911740CC3E53}" = dir=in | name=@{microsoft.reader_6.2.8516.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.reader/resources/shortdisplayname} |
"{590B940B-4AD7-4B7F-9932-EA31795F21D0}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\dota 2 beta\dota.exe |
"{5A82EF51-A5B0-40B6-9683-AB0BC04EE692}" = dir=out | app=c:\program files (x86)\apowersoft\video download capture\apowersoftsrv.dll |
"{5C241DAA-BB5C-4902-BCC5-1F298231DBD9}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\company of heroes\reliccoh.exe |
"{5D1A813E-4864-4F38-ADAE-2CF6153F2B71}" = dir=out | name=@{microsoft.bingtravel_1.2.0.145_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingtravel/resources/apptitle} |
"{6041A657-5098-449D-A4AB-A1A1339BD0BA}" = dir=out | name=@{microsoft.windowsphotos_16.4.4396.311_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowsphotos/photo/residappname} |
"{6776BAAC-0463-40DB-84B3-7CE75DC10AC7}" = dir=out | app=c:\program files (x86)\apowersoft\video download capture\video download capture.exe |
"{688FF568-9678-4875-81BF-1D681E1B3C20}" = dir=out | name=@{microsoft.zunemusic_1.0.927.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.zunemusic/resources/33273} |
"{6ABE9607-7574-47FA-9E67-7631778D650F}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\bin\steamwebhelper.exe |
"{723B4BC6-CABE-4954-A7D9-6E3348E1B549}" = dir=out | name=@{microsoft.xboxlivegames_1.3.10.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.xboxlivegames/resources/34150} |
"{7361E9AC-47ED-4E7C-9D06-FE97D484C389}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{743D29E4-769A-4119-A9F3-14328D9D0994}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 |
"{7B2C229A-F2E5-4697-853A-67D0DE734195}" = dir=in | name=@{microsoft.windowscommunicationsapps_17.0.1119.516_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowscommunicationsapps/resources/communicationspackagename} |
"{7D8A807E-4AEE-4F23-A00A-5E9AAB9C9507}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 |
"{7EC7538B-C590-40B5-AACF-19EEC67DDEF2}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\dota 2 beta\dota.exe |
"{7F092EC8-E596-4998-BA6B-D5ECA1CA48F3}" = dir=out | name=@{microsoft.xboxlivegames_1.0.927.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.xboxlivegames/resources/34150} |
"{808F1451-4108-46FD-ADBB-F17324B5F0BD}" = dir=out | name=@{c:\windows\winstore\resources.pri?ms-resource://winstore/resources/displayname} |
"{8190EDD8-A57A-41A0-BAC3-44B8C505D6F4}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 |
"{81B7DE77-CBAF-4A96-BBE3-683D5BAFE84A}" = protocol=17 | dir=in | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{84A0D357-6DA6-46A3-B4BC-06A8C6F64248}" = dir=out | name=@{microsoft.zunevideo_1.0.927.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.zunevideo/resources/33270} |
"{866606FC-A6C1-4CF2-AF9E-2B5E04AE3E5C}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{89EFBE57-F646-4DE3-82F6-E312D3A10B30}" = protocol=17 | dir=in | app=c:\programdata\turbine\the lord of the rings online\turbinelauncher.exe |
"{8A43D0D3-2141-456E-A824-9E84778352F3}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\bin\steamwebhelper.exe |
"{8C175B80-9EFB-4A91-88EE-160BD52B35CB}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\dota 2 beta\dota.exe |
"{8C59D3B5-6B21-4FC6-BD93-97A746754921}" = dir=out | app=c:\program files (x86)\apowersoft\video download capture\apowersofthdsdump.dll |
"{8CD83A92-9427-49F1-AEB4-5D27C626504E}" = protocol=17 | dir=in | app=c:\program files (x86)\microsoft office\office15\ucmapi.exe |
"{91904E49-F2CD-4530-AD01-4A3E61A0FC7F}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steam.exe |
"{98B21F52-DF63-41F4-B5EA-002E83623E07}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{9A864ECD-465A-44BB-81B0-FF0E63027511}" = dir=out | name=@{microsoft.zunevideo_1.5.902.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.zunevideo/resources/ids_manifest_video_app_name} |
"{9CAD87B1-4C7C-4C01-BE70-3EFB77F30C22}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\dota 2 beta\dota.exe |
"{9CCAFF65-5AA9-41EB-A829-98E23F69FB0E}" = dir=in | app=c:\program files (x86)\apowersoft\video download capture\video download capture.exe |
"{9E731037-775E-4AE9-9DC8-3A02C4372BF5}" = dir=out | name=@{microsoft.bingweather_2.0.0.310_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingweather/resources/apptitle} |
"{A4D6D761-1883-4A1C-AE49-7CC055AA4089}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{A62D088D-5EB1-4B56-B9E9-33E3326DA410}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\dota 2 beta\dota.exe |
"{A87C2153-1E16-47D0-9855-C27039141C53}" = dir=out | name=@{microsoft.reader_6.2.8516.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.reader/resources/shortdisplayname} |
"{A902B812-BA22-46A8-A238-219FA1B6B6CF}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\dota 2 beta\dota.exe |
"{AA762400-FFAA-40D9-8798-AED553E3C1E1}" = dir=out | name=@{microsoft.bingnews_1.2.0.135_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingnews/resources/news} |
"{AC5A9B0D-01D3-407E-A2B5-F624F44CC803}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{AD34234D-C116-421B-9660-E416A261377C}" = dir=out | name=@{microsoft.bingweather_1.2.0.135_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingweather/resources/apptitle} |
"{B19A1BF0-3481-4902-81CA-19D32CF9FC02}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\company of heroes\reliccoh.exe |
"{B43ABB96-95BE-495E-A235-995652C52B5D}" = dir=out | name=@{browserchoice_6.2.0.0_neutral_neutral_cw5n1h2txyewy?ms-resource://browserchoice/resources/displayname} |
"{B5585480-8EF2-43A5-9D08-1BF81EC5CAD0}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\company of heroes relaunch\reliccoh.exe |
"{B641AAC2-CA61-4719-B0D9-E51851B741A9}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{B663A1B6-D9A8-41BF-A167-69BCEED819A6}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\dota 2 beta\dota.exe |
"{B6CC88F8-FAF8-417F-9B0B-F00D00061303}" = dir=out | name=@{microsoft.microsoftskydrive_16.4.4396.311_x64__8wekyb3d8bbwe?ms-resource://microsoft.microsoftskydrive/resources/shortproductname} |
"{B7829BAF-6A05-4ED5-AC49-D75DB120AA53}" = dir=in | name=@{microsoft.windowscommunicationsapps_16.4.4206.722_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowscommunicationsapps/resources/communicationspackagename} |
"{B99897C9-E049-41F7-ACE9-F6482616F66F}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\dota 2 beta\dota.exe |
"{BE372721-F123-42EC-AB46-DAB6EF230FC7}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\company of heroes relaunch\reliccoh.exe |
"{C1A2E036-B432-4490-804E-A95815D6230F}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\dota 2 beta\dota.exe |
"{C61E27FA-4492-410C-8881-60E9EE817F4F}" = dir=out | name=@{microsoft.bing_1.2.0.137_x64__8wekyb3d8bbwe?ms-resource://microsoft.bing/resources/app_name} |
"{C7A42AD4-1EF8-40F9-B715-3540A432CDFD}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{C98EB20B-8B09-4573-B8E7-1F3692192736}" = dir=in | app=c:\program files (x86)\apowersoft\video download capture\apowersoftdownloaderhelp.dll |
"{CAD22839-2CDE-483C-ACD9-0CCB58BA2821}" = dir=out | name=@{microsoft.bingsports_2.0.0.310_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingsports/resources/bingsports} |
"{CC1899D0-38DD-4108-A3CD-8147C917609C}" = dir=out | name=@{microsoft.windowsphotos_16.4.4204.712_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowsphotos/photo/residappname} |
"{CD0DFC94-A1C1-4D8C-8191-BF5E303DBCA4}" = dir=in | app=c:\program files (x86)\apowersoft\video download capture\apowersofthdsdump.dll |
"{D3C8936E-B650-47DD-BFF1-9A7F6215B9A7}" = dir=in | name=@{browserchoice_6.2.0.0_neutral_neutral_cw5n1h2txyewy?ms-resource://browserchoice/resources/displayname} |
"{D63B314D-AB68-48BE-B8C4-10F9797F17AC}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\dota 2 beta\dota.exe |
"{D7FFF7DD-34A2-4F92-95B5-8DA36732EBA8}" = dir=out | name=@{microsoft.bingtravel_2.0.0.319_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingtravel/resources/apptitle} |
"{E08BB31E-780A-4960-BAAA-F8B547AA1D08}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\dota 2 beta\dota.exe |
"{E1A52905-B43A-47E9-A0D1-C5BF52E6EA5C}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steam.exe |
"{E4FE8563-F05A-42B7-8CDE-0DD07D35B8E8}" = dir=out | name=@{microsoft.windowscommunicationsapps_16.4.4206.722_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowscommunicationsapps/resources/communicationspackagename} |
"{E5427CF3-2383-4EE7-BE69-799465F552A1}" = dir=in | app=c:\program files (x86)\apowersoft\video download capture\apowersoftdump.dll |
"{E7985E1D-C36F-4787-80A8-6350D07E9266}" = dir=in | name=@{c:\windows\winstore\resources.pri?ms-resource://winstore/resources/displayname} |
"{E92D0E30-6DA4-436F-8C2A-EB7D43DAC1E6}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\dota 2 beta\dota.exe |
"{F065F3B5-49FF-47A2-A4E2-1AA5FDAFD1EC}" = dir=out | name=@{microsoft.bingnews_2.0.0.308_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingnews/resources/news} |
"{F0A8A52F-3B40-46BC-8262-A5D7B8629B9A}" = dir=out | app=c:\program files (x86)\apowersoft\video download capture\apowersoftdump.dll |
"{F1D9FA89-8C90-4F5D-87D4-45EFB82F3371}" = dir=in | name=@{microsoft.bing_1.2.0.137_x64__8wekyb3d8bbwe?ms-resource://microsoft.bing/resources/app_name} |
"{F1EA7B55-A042-424B-A699-B4786D341A37}" = dir=in | app=c:\program files (x86)\apowersoft\video download capture\apowersoftsrv.dll |
"{F6E41BA2-2E90-4304-81C1-5010A5D3254B}" = dir=out | name=@{microsoft.bingfinance_1.2.0.135_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingfinance/resources/apptitle} |
"{F6EA3D1B-9AA1-4C79-B8E8-C1ABF71CA434}" = dir=out | app=c:\program files (x86)\apowersoft\video download capture\apowersoftdownloaderhelp.dll |
"{F739CF8E-ACF0-478C-A0CC-524C82939689}" = protocol=6 | dir=out | app=system |
"{FA088573-8EBC-4DDC-A345-6628A57E4869}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{FCC2B7AF-ED6B-405F-8804-DDE8B717BB03}" = protocol=17 | dir=in | app=c:\program files (x86)\mozilla firefox\firefox.exe |
"{FCECABD3-A9F6-47EA-AB89-5608EA171EFA}" = dir=out | name=@{microsoft.bing_1.5.1.259_x64__8wekyb3d8bbwe?ms-resource://microsoft.bing/resources/app_name} |
"TCP Query User{2722B338-1FFB-43B7-AE42-F19607461313}C:\program files (x86)\steam\steam.exe" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steam.exe |
"TCP Query User{64582E90-3957-4EA2-A9A2-85237E417ED3}C:\users\uzivatel\appdata\local\akamai\netsession_win.exe" = protocol=6 | dir=in | app=c:\users\uzivatel\appdata\local\akamai\netsession_win.exe |
"TCP Query User{7DBE2D51-D82B-4865-829C-8E15FEE78062}C:\program files (x86)\total war rome ii\rome2.exe" = protocol=6 | dir=in | app=c:\program files (x86)\total war rome ii\rome2.exe |
"TCP Query User{9569ADE1-8AEB-4DAF-9AF2-F60028054C90}C:\users\uzivatel\appdata\local\akamai\netsession_win.exe" = protocol=6 | dir=in | app=c:\users\uzivatel\appdata\local\akamai\netsession_win.exe |
"TCP Query User{BD68F214-B354-422B-A861-7E378012270D}C:\totalcmd\totalcmd.exe" = protocol=6 | dir=in | app=c:\totalcmd\totalcmd.exe |
"TCP Query User{FDCE5845-3329-4633-AFFA-A46A053BE7FC}C:\program files (x86)\steam\steamapps\common\company of heroes\relicdownloader\relicdownloader.exe" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\company of heroes\relicdownloader\relicdownloader.exe |
"UDP Query User{286EA159-E422-49A4-ACDC-6E6EC19BC20B}C:\program files (x86)\total war rome ii\rome2.exe" = protocol=17 | dir=in | app=c:\program files (x86)\total war rome ii\rome2.exe |
"UDP Query User{39A23C71-4A60-4015-BB02-56D02A46428E}C:\users\uzivatel\appdata\local\akamai\netsession_win.exe" = protocol=17 | dir=in | app=c:\users\uzivatel\appdata\local\akamai\netsession_win.exe |
"UDP Query User{631B5B01-D288-44DC-9EAD-D02F1A504A48}C:\totalcmd\totalcmd.exe" = protocol=17 | dir=in | app=c:\totalcmd\totalcmd.exe |
"UDP Query User{93E23B22-935A-48EE-8C1C-8E241CDDFAE5}C:\program files (x86)\steam\steamapps\common\company of heroes\relicdownloader\relicdownloader.exe" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\company of heroes\relicdownloader\relicdownloader.exe |
"UDP Query User{DF4D2E2E-403A-4239-9D8B-C221270E83D6}C:\program files (x86)\steam\steam.exe" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steam.exe |
"UDP Query User{EE20D2DF-F583-4E03-A981-00F1F2386588}C:\users\uzivatel\appdata\local\akamai\netsession_win.exe" = protocol=17 | dir=in | app=c:\users\uzivatel\appdata\local\akamai\netsession_win.exe |
========== HKEY_LOCAL_MACHINE Uninstall List ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{23170F69-40C1-2702-0920-000001000000}" = 7-Zip 9.20 (x64 edition)
"{26A24AE4-039D-4CA4-87B4-2F86417040FF}" = Java 7 Update 40 (64-bit)
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{90150000-002A-0000-1000-0000000FF1CE}" = Microsoft Office 64-bit Components 2013
"{90150000-002A-0405-1000-0000000FF1CE}" = Microsoft Office Shared 64-bit MUI (Czech) 2013
"{E9F0BCD8-6BD5-1ED7-EDA3-9FCF2A478AA1}" = Microsoft App Update for microsoft.windowscommunicationsapps_17.0.1119.516_x64__8wekyb3d8bbwe (x64)
"{FEA1590B-540A-41FC-A95C-664493C82A21}" = Classic Shell
"CCleaner" = CCleaner
"GIMP-2_is1" = GIMP 2.8.6
"SynTPDeinstKey" = Synaptics Pointing Device Driver
"Totalcmd64" = Total Commander 64-bit (Remove or Repair)
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{048298C9-A4D3-490B-9FF9-AB023A9238F3}" = Steam
"{0A5B39D2-7ED6-4779-BCC9-37F381139DB3}" = Adobe AIR
"{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}" = Skype™ 7.1
"{26A24AE4-039D-4CA4-87B4-2F83217040FF}" = Java 7 Update 40
"{3C9D008D-3716-4C3F-90CD-38ED57568FAB}_is1" = Video Download Capture V4.8.1
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}" = Google Update Helper
"{612C34C7-5E90-47D8-9B5C-0F717DD82726}" = swMSM
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{7E265513-8CDA-4631-B696-F40D983F3B07}_is1" = CDBurnerXP
"{84EE38CA-199D-3BCC-8649-3464469BB54C}" = Google Chrome
"{90150000-0011-0000-0000-0000000FF1CE}" = Microsoft Office Professional Plus 2013
"{90150000-0015-0405-0000-0000000FF1CE}" = Microsoft Access MUI (Czech) 2013
"{90150000-0016-0405-0000-0000000FF1CE}" = Microsoft Excel MUI (Czech) 2013
"{90150000-0018-0405-0000-0000000FF1CE}" = Microsoft PowerPoint MUI (Czech) 2013
"{90150000-0019-0405-0000-0000000FF1CE}" = Microsoft Publisher MUI (Czech) 2013
"{90150000-001A-0405-0000-0000000FF1CE}" = Microsoft Outlook MUI (Czech) 2013
"{90150000-001B-0405-0000-0000000FF1CE}" = Microsoft Word MUI (Czech) 2013
"{90150000-001F-0405-0000-0000000FF1CE}" = Nástroje kontroly pravopisu pro Microsoft Office 2013 – čeština
"{90150000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Korrekturhilfen 2013 - Deutsch
"{90150000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proofing Tools 2013 - English
"{90150000-001F-041B-0000-0000000FF1CE}" = Nástroje korektúry balíka Microsoft Office 2013 - slovenčina
"{90150000-002C-0405-0000-0000000FF1CE}" = Microsoft Office Proofing (Czech) 2013
"{90150000-0044-0405-0000-0000000FF1CE}" = Microsoft InfoPath MUI (Czech) 2013
"{90150000-006E-0405-0000-0000000FF1CE}" = Microsoft Office Shared MUI (Czech) 2013
"{90150000-0090-0405-0000-0000000FF1CE}" = Microsoft DCF MUI (Czech) 2013
"{90150000-00A1-0405-0000-0000000FF1CE}" = Microsoft OneNote MUI (Czech) 2013
"{90150000-00BA-0405-0000-0000000FF1CE}" = Microsoft Groove MUI (Czech) 2013
"{90150000-00E1-0405-0000-0000000FF1CE}" = Microsoft Office OSM MUI (Czech) 2013
"{90150000-00E2-0405-0000-0000000FF1CE}" = Microsoft Office OSM UX MUI (Czech) 2013
"{90150000-012B-0405-0000-0000000FF1CE}" = Microsoft Lync MUI (Czech) 2013
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{AC76BA86-0804-1033-1959-001802114130}" = Adobe Refresh Manager
"{AC76BA86-7AD7-1029-7B44-AB0000000001}" = Adobe Reader XI (11.0.10) - Czech
"{DF6A13C0-77DF-41FE-BD05-6D5201EB0CE7}_is1" = Auslogics DiskDefrag
"{E0F07676-2C60-4465-A727-20DE3BFCABAC}" = Tony Hawks Pro Skater 4
"{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
"{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}" = Intel(R) Processor Graphics
"{F1EE568A-171F-4C06-9BE6-2395BED067A3}" = LibreOffice 4.1.1.2
"Adobe AIR" = Adobe AIR
"Adobe Flash Player NPAPI" = Adobe Flash Player 16 NPAPI
"Adobe Shockwave Player" = Adobe Shockwave Player 12.0
"ASIO4ALL" = ASIO4ALL
"CinemaP-1.9cV05.03" = CinemaP-1.9cV05.03
"Deckadance 2" = Deckadance 2
"DirectWave" = DirectWave
"DX10" = DX10
"Eastern Front" = Eastern Front
"FL Studio 11" = FL Studio 11
"FlowStone" = FlowStone FL 3.0
"Groove Machine" = Groove Machine
"Guitar Pro 5_is1" = Guitar Pro 5.2
"IL Download Manager" = IL Download Manager
"IL Harmless" = IL Harmless
"IL Juice Pack" = IL Juice Pack
"IL MiniHost" = IL MiniHost
"IL Shared Libraries" = IL Shared Libraries
"ImgBurn" = ImgBurn
"Inkscape" = Inkscape 0.48.4
"Internet Speed Checker" = Internet Speed Checker
"KLiteCodecPack_is1" = K-Lite Codec Pack 10.0.5 Full
"LiveUSB Creator" = LiveUSB Creator (remove only)
"Mozilla Firefox 36.0.1 (x86 cs)" = Mozilla Firefox 36.0.1 (x86 cs)
"MozillaMaintenanceService" = Mozilla Maintenance Service
"Office15.PROPLUS" = Microsoft Office Professional Plus 2013
"Revo Uninstaller" = Revo Uninstaller 1.95
"Steam App 20540" = Company of Heroes: Tales of Valor
"Steam App 228200" = Company of Heroes (New Steam Version)
"Steam App 24800" = Command and Conquer: Red Alert 3 - Uprising
"Steam App 570" = Dota 2
"TeamSpeak 3 Client" = TeamSpeak 3 Client
"Toxic Biohazard" = Toxic Biohazard
"VirtualCloneDrive" = VirtualCloneDrive
"VLC media player" = VLC media player 2.0.8
"Warcraft III" = Warcraft III
"XnView_is1" = XnView 2.05
========== HKEY_USERS Uninstall List ==========
[HKEY_USERS\S-1-5-21-1434552645-3163365306-779322869-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Akamai" = Akamai NetSession Interface
"HappyCloud" = Happy Cloud Client
========== Last 20 Event Log Errors ==========
[ Application Events ]
Error - 15. 3. 2015 19:36:11 | Computer Name = NB52 | Source = ATIeRecord | ID = 16388
Description = ATI EEU Client event error
Error - 15. 3. 2015 19:36:11 | Computer Name = NB52 | Source = ATIeRecord | ID = 16386
Description = ATI EEU Client has failed to start
Error - 15. 3. 2015 19:37:11 | Computer Name = NB52 | Source = ATIeRecord | ID = 16388
Description = ATI EEU Client event error
Error - 15. 3. 2015 19:37:11 | Computer Name = NB52 | Source = ATIeRecord | ID = 16386
Description = ATI EEU Client has failed to start
Error - 15. 3. 2015 19:38:11 | Computer Name = NB52 | Source = ATIeRecord | ID = 16388
Description = ATI EEU Client event error
Error - 15. 3. 2015 19:38:11 | Computer Name = NB52 | Source = ATIeRecord | ID = 16386
Description = ATI EEU Client has failed to start
Error - 15. 3. 2015 19:39:11 | Computer Name = NB52 | Source = ATIeRecord | ID = 16388
Description = ATI EEU Client event error
Error - 15. 3. 2015 19:39:11 | Computer Name = NB52 | Source = ATIeRecord | ID = 16386
Description = ATI EEU Client has failed to start
Error - 15. 3. 2015 19:40:11 | Computer Name = NB52 | Source = ATIeRecord | ID = 16388
Description = ATI EEU Client event error
Error - 15. 3. 2015 19:40:11 | Computer Name = NB52 | Source = ATIeRecord | ID = 16386
Description = ATI EEU Client has failed to start
[ System Events ]
Error - 20. 2. 2015 6:47:05 | Computer Name = NB52 | Source = Service Control Manager | ID = 7000
Description = Služba Služba Windows Store (WSService) neuspěla při spuštění v důsledku
následující chyby: %%1053
Error - 20. 2. 2015 6:47:06 | Computer Name = NB52 | Source = Service Control Manager | ID = 7000
Description = Služba Služba Windows Store (WSService) neuspěla při spuštění v důsledku
následující chyby: %%1053
Error - 20. 2. 2015 7:33:59 | Computer Name = NB52 | Source = Service Control Manager | ID = 7000
Description = Služba Služba Windows Store (WSService) neuspěla při spuštění v důsledku
následující chyby: %%1053
Error - 20. 2. 2015 7:34:00 | Computer Name = NB52 | Source = Service Control Manager | ID = 7000
Description = Služba Služba Windows Store (WSService) neuspěla při spuštění v důsledku
následující chyby: %%1053
Error - 20. 2. 2015 7:34:01 | Computer Name = NB52 | Source = Service Control Manager | ID = 7000
Description = Služba Služba Windows Store (WSService) neuspěla při spuštění v důsledku
následující chyby: %%1053
Error - 20. 2. 2015 11:45:46 | Computer Name = NB52 | Source = Service Control Manager | ID = 7000
Description = Služba Služba Windows Store (WSService) neuspěla při spuštění v důsledku
následující chyby: %%1053
Error - 20. 2. 2015 11:45:47 | Computer Name = NB52 | Source = Service Control Manager | ID = 7000
Description = Služba Služba Windows Store (WSService) neuspěla při spuštění v důsledku
následující chyby: %%1053
Error - 20. 2. 2015 11:45:48 | Computer Name = NB52 | Source = Service Control Manager | ID = 7000
Description = Služba Služba Windows Store (WSService) neuspěla při spuštění v důsledku
následující chyby: %%1053
Error - 20. 2. 2015 13:33:59 | Computer Name = NB52 | Source = Service Control Manager | ID = 7000
Description = Služba Služba Windows Store (WSService) neuspěla při spuštění v důsledku
následující chyby: %%1053
Error - 20. 2. 2015 13:34:00 | Computer Name = NB52 | Source = Service Control Manager | ID = 7000
Description = Služba Služba Windows Store (WSService) neuspěla při spuštění v důsledku
následující chyby: %%1053
< End of report >
Re: odinstalace programu
Jedna se o domaci PC nebo nejake pracovni\firemni???
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen od 1. února 2011.
Člen
od 1. února 2011.Re: odinstalace programu
pracovní/firemní
Re: odinstalace programu
Pak at se Vam na to podiva ten, co je za to placen a nebo to ma na starost - vizte nase pravidla fora
Pripadne se obratte na nasi sluzbu vzdalene pomoci www.neslape.cz ktera je urcena i pro firemni klientelu6. Fórum viry.cz se nezabývá odvirováním firemních PC - na toto jsou ve firmách placení (a někdy až hodně nadstandardně) IT technici, případně si je firma může najmout. My jsme tu zdarma a ve svém volném čase, nehodláme dělat práci za někoho jiného, kdo si pak jen slízne smetánku a plat. Taktéž ani neposkytujeme poradenství v oblasti zabezpečení firemních sítí či nastavení firemních sítí. Zkrátka a jednoduše, naše fórum poskytuje podporu pouze domácím uživatelům.
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen od 1. února 2011.
Člen
od 1. února 2011.Re: odinstalace programu
Aha, no ono jde o to, že ntb mám pučený od mamky, je to školní ntb ale nevím kdy ho budu vracet. Já osobně ve škole nepracuji a správce sítě co to má na starosti by určitě akorát přeinstaloval windows nebo to nechal tak, protože na funkci to "skoro" nemá vliv, proto jsem se obrátil na toto fórum. Pokud to ani tak nejde. Budu si muset poradit sám, ale i tak děkuji za váš čas. Vaši odpověď zcela chápu. Díky
Re: odinstalace programu
Ve to skolni PC (skola je defakto firma jako kazda jina) a je na spravci IT jak se o to postara, jestli odviruje nebo preinstaluje...
Jen tak to nechat nemuze, jelikoz je tam skodlivy SW a ten tam by nema a on ma povinnost udrzte PC v provozushocpnem stavu...
Takze mu to dejte a at se postara, on je za to placeny. Sdilime vase problemy ale ne jeho vyplatni pasku.
Nebo se obratte na nasi placenou sluzbu vzdalene pomoc, pokud to chcete za nej resit. Zde bohuzel nemuzeme.
Jen tak to nechat nemuze, jelikoz je tam skodlivy SW a ten tam by nema a on ma povinnost udrzte PC v provozushocpnem stavu...
Takze mu to dejte a at se postara, on je za to placeny. Sdilime vase problemy ale ne jeho vyplatni pasku.
Nebo se obratte na nasi placenou sluzbu vzdalene pomoc, pokud to chcete za nej resit. Zde bohuzel nemuzeme.
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen od 1. února 2011.
Člen
od 1. února 2011.Re: odinstalace programu
Problém nakonec vyřešen pomocí adwcleaneru. Ať se daří Vám i fóru. 
Re: odinstalace programu
Sikula 
Diky, vse dobre i Vam
Diky, vse dobre i Vam
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen od 1. února 2011.
Člen
od 1. února 2011.
Přispějete na provoz fóra?
