VIRY.CZ

Dejte novy log z RSIT

Logfile of random's system information tool 1.08 (written by random/random)
Run by JAKUB at 2014-01-26 08:31:27
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 98 GB (21%) free of 460 GB
Total RAM: 3835 MB (56% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 8:31:32, on 26.1.2014
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.16428)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe
C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Skype\Phone\Skype.exe
C:\Program Files (x86)\Rockstar Games\GTA San Andreas\samp.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\trend micro\JAKUB.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page =
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL
O2 - BHO: IESpeakDoc - {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
O3 - Toolbar: avast! Online Security - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: SAS Core Service (!SASCORE) - SUPERAntiSpyware.com - C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Andrea RT Filters Service (AERTFilters) - Andrea Electronics Corporation - C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: AMD FUEL Service - Advanced Micro Devices, Inc. - C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
O23 - Service: Atheros Bt&Wlan Coex Agent - Atheros - C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
O23 - Service: AtherosSvc - Atheros Commnucations - C:\Program Files (x86)\Bluetooth Suite\adminservice.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Cron Service for Prey (CronService) - Fork Ltd. - C:\Prey\platform\windows\cronsvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Futuremark SystemInfo Service - Futuremark Corporation - C:\Program Files (x86)\Futuremark\Futuremark SystemInfo\FMSISvc.exe
O23 - Service: LogMeIn Hamachi Tunneling Engine (Hamachi2Svc) - LogMeIn Inc. - C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
O23 - Service: HP Support Assistant Service - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
O23 - Service: HP Wireless Assistant Service - Hewlett-Packard Company - C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe
O23 - Service: HP Software Framework Service (hpqwmiex) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
O23 - Service: HPWMISVC - Hewlett-Packard Development Company, L.P. - C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
O23 - Service: IconMan_R - Realsil Microelectronics Inc. - C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: LiveUpdate (LiveUpdateSvc) - IObit - C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe
O23 - Service: LMIGuardianSvc - LogMeIn, Inc. - C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
O23 - Service: MBAMScheduler - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: PDF Document Manager (pdfcDispatcher) - PDF Complete Inc - C:\Program Files (x86)\PDF Complete\pdfsvc.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Lokátor vzdáleného volání procedur (RPC) (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: Realtek Audio Service (RtkAudioService) - Realtek Semiconductor - C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: Zachytávání pro službu SNMP (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O23 - Service: TeamViewer 9 (TeamViewer9) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: Služba Windows Media Player Network Sharing (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 9687 bytes

======Listing Processes======

\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
winlogon.exe
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
atieclxx
"C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /SRSPS
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Windows\system32\Dwm.exe"
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
C:\Windows\system32\WLANExt.exe 3964032
\??\C:\Windows\system32\conhost.exe "-1220541963-9473083591303503865-130420668-49330594718849998785221584531653497313
C:\Windows\Explorer.EXE
taskeng.exe {374E0FFE-628E-4A30-9F9A-2B9E038B5450}
C:\Windows\System32\spoolsv.exe
"taskhost.exe"
"C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE"
"C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe"
"C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe" /launchService
taskeng.exe {3DF14520-14FF-4D31-A761-2701EF256854}
"C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe"
"C:\Program Files (x86)\Bluetooth Suite\adminservice.exe"
"C:\Prey\platform\windows\cronsvc.exe"
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe"
"C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe"
"C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe"
"C:\Program Files (x86)\PDF Complete\pdfsvc.exe" /startedbyscm:66B66708-40E2BE4D-pdfcService
taskeng.exe {7BF0779F-3AEE-40ED-9CB7-A4CA667A69EE}
C:\Windows\system32\sppsvc.exe
"C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe"
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe"
C:\Windows\System32\svchost.exe -k secsvcs
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe" -s
"C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-start
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\servicing\TrustedInstaller.exe
C:\Windows\System32\rundll32.exe shell32.dll,SHCreateLocalServerRunDll {995C996E-D918-4a8c-A302-45719A6F4EA7} -Embedding
"C:\Program Files (x86)\Dxtory Software\Dxtory2.0\UpdateChecker.exe"
"C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe"
"C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe"
"C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe"
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Skype\Phone\Skype.exe"
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\System32\svchost.exe -k WerSvcGroup
"C:\Program Files (x86)\Rockstar Games\GTA San Andreas\samp.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="4000.0.754923355\1674341489" --supports-dual-gpus=false --gpu-driver-bug-workarounds=0,9,19 --gpu-vendor-id=0x1002 --gpu-device-id=0x68e4 --gpu-driver-vendor="ATI Technologies Inc." --gpu-driver-version=8.812.1.3000 --ignored=" --type=renderer " /prefetch:822062411
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials=CookieRetentionPriorityStudy/ExperimentOn/ForceCompositingMode/thread/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderDisabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group6/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_16/UMA-Uniformity-Trial-1-Percent/group_06/UMA-Uniformity-Trial-10-Percent/group_07/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/group_01/UMA-Uniformity-Trial-50-Percent/group_01/ --renderer-print-preview --enable-threaded-compositing --disable-html-notifications --channel="4000.4.82614805\1187309602" /prefetch:673131151
"C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe" /UninstallExplorer
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=ppapi --channel="4000.5.910018066\1751165062" --lang=cs --ignored=" --type=renderer " /prefetch:-632637702
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials=CookieRetentionPriorityStudy/ExperimentOn/ForceCompositingMode/thread/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderDisabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group6/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_16/UMA-Uniformity-Trial-1-Percent/group_06/UMA-Uniformity-Trial-10-Percent/group_07/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/group_01/UMA-Uniformity-Trial-50-Percent/group_01/ --renderer-print-preview --enable-threaded-compositing --disable-html-notifications --channel="4000.6.1009607131\133358161" /prefetch:673131151
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe2_ Global\UsGthrCtrlFltPipeMssGthrPipe2 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Windows\system32\SearchFilterHost.exe" 0 516 520 528 65536 524
"C:\Users\JAKUB\Desktop\RSITx64.exe"

======Scheduled tasks folder======

C:\Windows\tasks\Adobe Flash Player Updater.job
C:\Windows\tasks\HPCeeScheduleForJAKUB.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{10921475-03CE-4E04-90CE-E2E7EF20C814}]
ExplorerWnd Helper - C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallExplorer64.dll [2014-01-25 2471744]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2012-08-16 6670496]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2014-01-11 1372864]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 529280]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL [2010-12-21 689040]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2011-08-03 49440]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL [2012-08-16 4171424]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8D10F6C4-0E01-4BD4-8601-11AC1FDF8126}]
CIESpeechBHO Class - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll [2011-05-09 60576]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2014-01-11 1138536]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL [2010-12-21 561552]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2014-01-11 1372864]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2014-01-11 1138536]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"NCPluginUpdater"=C:\Program Files (x86)\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\NCPluginUpdater.exe [2014-01-14 21720]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\APSDaemon]
C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [2013-04-21 59720]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AthBtTray]
C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe [2011-05-09 379552]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AtherosBtStack]
C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [2011-05-09 627360]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BCSSync]
C:\Program Files\Microsoft Office\Office14\BCSSync.exe [2010-03-13 112512]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\cz.seznam.software.autoupdate]
C:\Users\JAKUB\AppData\Roaming\Seznam.cz\szninstall.exe [2013-05-16 1062472]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\cz.seznam.software.szndesktop]
C:\Users\JAKUB\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [2013-04-12 92664]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite]
C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2013-03-14 3672640]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Dxtory Update Checker 2.0]
C:\Program Files (x86)\Dxtory Software\Dxtory2.0\UpdateChecker.exe [2010-10-17 93696]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\FixMyRegistry]
C:\Program Files (x86)\SmartTweak\FixMyRegistry\FixMyRegistry.exe /ot /as []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Keyboard Inf.]
C:\Users\JAKUB\AppData\Roaming\uTorrent\msdn.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MSC]
c:\Program Files\Microsoft Security Client\msseces.exe -hide -runkey []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RTHDVCPL]
C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [2013-11-23 7174728]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\seznam-listicka-distribuce]
C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe [2013-05-16 1062472]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SpeedUpMyComputer]
C:\Program Files (x86)\SmartTweak\SpeedUpMyComputer\SpeedUpMyComputer.exe /ot /as /ss []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\StartCCC]
C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2013-04-29 642304]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Steam]
c:\new folder\steam.exe [2013-10-09 1813928]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^JAKUB^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Svátky a narozeniny.lnk]
C:\PROGRA~2\SVTKYA~1\SaN.exe [2005-10-28 741888]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2014-01-11 3764024]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2012-08-16 6670496]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL [2012-08-16 4171424]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\!SASCORE]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Hamachi2Svc]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=255
"NoDrives"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0
"NoDriveTypeAutoRun"=255

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"C:\Nexon\NEXON_EU_Downloader\NEXON_EU_Downloader_Engine.exe"="C:\Nexon\NEXON_EU_Downloader\NEXON_EU_Downloader_Engine.exe:*:Enabled:NEXON_EU_Downloader_Engine.exe"
"C:\Nexon\Combat Arms EU\CombatArms.exe"="C:\Nexon\Combat Arms EU\CombatArms.exe:*Enabled:CombatArms.exe"
"C:\Nexon\Combat Arms EU\Engine.exe"="C:\Nexon\Combat Arms EU\Engine.exe:*Enabled:Engine.exe"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"C:\Nexon\Combat Arms EU\CombatArms.exe"="C:\Nexon\Combat Arms EU\CombatArms.exe:*Enabled:CombatArms.exe"
"C:\Nexon\Combat Arms EU\Engine.exe"="C:\Nexon\Combat Arms EU\Engine.exe:*Enabled:Engine.exe"

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1

======List of files/folders created in the last 1 months======

2014-01-25 13:16:55 ----D---- C:\Users\JAKUB\AppData\Roaming\ProductData
2014-01-25 13:16:32 ----D---- C:\ProgramData\ProductData
2014-01-25 13:16:28 ----D---- C:\Program Files (x86)\IObit
2014-01-24 20:46:06 ----D---- C:\rsit
2014-01-18 22:23:09 ----A---- C:\Windows\SYSWOW64\DxtoryCodec.dll
2014-01-18 22:23:09 ----A---- C:\Windows\system32\DxtoryCodec.dll
2014-01-15 15:19:54 ----A---- C:\Windows\system32\drivers\usbehci.sys
2014-01-15 15:19:53 ----A---- C:\Windows\system32\drivers\usbuhci.sys
2014-01-15 15:19:53 ----A---- C:\Windows\system32\drivers\usbport.sys
2014-01-15 15:19:53 ----A---- C:\Windows\system32\drivers\usbohci.sys
2014-01-15 15:19:53 ----A---- C:\Windows\system32\drivers\usbhub.sys
2014-01-15 15:19:53 ----A---- C:\Windows\system32\drivers\usbd.sys
2014-01-15 15:19:53 ----A---- C:\Windows\system32\drivers\usbccgp.sys
2014-01-15 15:19:51 ----A---- C:\Windows\system32\win32k.sys
2014-01-15 15:19:49 ----A---- C:\Windows\system32\drivers\netio.sys
2014-01-11 18:26:13 ----D---- C:\Users\JAKUB\AppData\Roaming\AVAST Software
2014-01-11 18:25:25 ----A---- C:\Windows\system32\drivers\aswVmm.sys
2014-01-11 18:25:25 ----A---- C:\Windows\system32\drivers\aswstm.sys
2014-01-11 18:25:24 ----A---- C:\Windows\system32\drivers\aswRvrt.sys
2014-01-11 18:25:23 ----A---- C:\Windows\system32\drivers\aswSP.sys
2014-01-11 18:25:23 ----A---- C:\Windows\system32\drivers\aswSnx.sys
2014-01-11 18:25:20 ----A---- C:\Windows\system32\drivers\aswMonFlt.sys
2014-01-11 18:25:16 ----A---- C:\Windows\system32\drivers\aswRdr2.sys
2014-01-11 18:24:51 ----A---- C:\Windows\system32\drivers\aswTap.sys
2014-01-11 18:21:36 ----D---- C:\ProgramData\AVAST Software
2014-01-11 08:21:57 ----SD---- C:\ProgramData\Shared Space
2014-01-11 08:21:16 ----D---- C:\ProgramData\COMODO
2014-01-11 08:21:05 ----D---- C:\Program Files\COMODO
2014-01-11 08:20:56 ----D---- C:\ProgramData\Comodo Downloader
2014-01-04 17:40:53 ----A---- C:\Windows\system32\wmploc.DLL
2014-01-04 17:40:52 ----A---- C:\Windows\SYSWOW64\wmploc.DLL
2014-01-04 17:40:52 ----A---- C:\Windows\SYSWOW64\wmp.dll
2014-01-04 17:40:50 ----A---- C:\Windows\system32\wmp.dll
2014-01-04 12:43:52 ----A---- C:\Windows\system32\msieftp.dll
2014-01-04 12:43:51 ----A---- C:\Windows\SYSWOW64\WMPhoto.dll
2014-01-04 12:43:51 ----A---- C:\Windows\SYSWOW64\msieftp.dll
2014-01-04 12:43:51 ----A---- C:\Windows\system32\WMPhoto.dll
2014-01-04 12:43:50 ----A---- C:\Windows\system32\drivers\ataport.sys
2014-01-04 12:43:44 ----A---- C:\Windows\SYSWOW64\SmartcardCredentialProvider.dll
2014-01-04 12:43:44 ----A---- C:\Windows\SYSWOW64\credui.dll
2014-01-04 12:43:44 ----A---- C:\Windows\SYSWOW64\authui.dll
2014-01-04 12:43:44 ----A---- C:\Windows\system32\SmartcardCredentialProvider.dll
2014-01-04 12:43:44 ----A---- C:\Windows\system32\credui.dll
2014-01-04 12:43:44 ----A---- C:\Windows\system32\authui.dll
2014-01-04 12:43:35 ----A---- C:\Windows\SYSWOW64\WebClnt.dll
2014-01-04 12:43:35 ----A---- C:\Windows\system32\WebClnt.dll
2014-01-04 12:43:34 ----A---- C:\Windows\SYSWOW64\davclnt.dll
2014-01-04 12:43:34 ----A---- C:\Windows\system32\drivers\mrxdav.sys
2014-01-04 12:43:34 ----A---- C:\Windows\system32\davclnt.dll
2014-01-04 12:43:29 ----A---- C:\Windows\system32\scavengeui.dll
2013-12-30 08:09:06 ----D---- C:\Program Files (x86)\FIFA 14

======List of files/folders modified in the last 1 months======

2014-01-26 08:31:30 ----D---- C:\Windows\temp
2014-01-26 08:31:30 ----D---- C:\Program Files\trend micro
2014-01-26 08:30:06 ----D---- C:\Users\JAKUB\AppData\Roaming\Skype
2014-01-26 08:30:01 ----D---- C:\ProgramData\IObit
2014-01-26 08:28:42 ----A---- C:\Windows\SYSWOW64\TempWmicBatchFile.bat
2014-01-26 08:26:25 ----D---- C:\Windows\system32\config
2014-01-26 08:26:20 ----D---- C:\ProgramData\PDFC
2014-01-25 22:26:02 ----D---- C:\Users\JAKUB\AppData\Roaming\uTorrent
2014-01-25 21:04:56 ----D---- C:\Windows\system32\drivers
2014-01-25 21:02:05 ----A---- C:\Windows\ntbtlog.txt
2014-01-25 15:05:53 ----D---- C:\Windows\SysWOW64
2014-01-25 14:10:10 ----D---- C:\Users\JAKUB\AppData\Roaming\.minecraft
2014-01-25 13:22:43 ----D---- C:\New Folder
2014-01-25 13:16:50 ----D---- C:\Windows\system32\Tasks
2014-01-25 13:16:50 ----D---- C:\Users\JAKUB\AppData\Roaming\IObit
2014-01-25 13:16:32 ----D---- C:\ProgramData
2014-01-25 13:16:28 ----D---- C:\Program Files (x86)
2014-01-25 10:04:51 ----D---- C:\AdwCleaner
2014-01-24 16:37:38 ----SHD---- C:\System Volume Information
2014-01-24 14:08:20 ----D---- C:\Windows\Prefetch
2014-01-24 14:01:58 ----RD---- C:\Program Files
2014-01-23 21:16:37 ----D---- C:\Windows\system32\catroot2
2014-01-20 20:46:29 ----D---- C:\Windows\System32
2014-01-20 20:46:29 ----D---- C:\Windows\inf
2014-01-20 20:46:29 ----A---- C:\Windows\system32\PerfStringBackup.TMP
2014-01-19 17:10:41 ----D---- C:\Program Files (x86)\Rockstar Games
2014-01-19 16:47:52 ----D---- C:\Windows\system32\catroot
2014-01-19 16:47:51 ----D---- C:\Windows\system32\DriverStore
2014-01-19 15:36:12 ----A---- C:\Windows\system32\HP_ActiveX_Patch_NOT_DETECTED.txt
2014-01-19 08:17:25 ----D---- C:\Windows\Microsoft.NET
2014-01-18 21:59:55 ----D---- C:\Program Files (x86)\Bandicam
2014-01-18 21:59:47 ----D---- C:\Program Files (x86)\BandiMPEG1
2014-01-18 10:36:17 ----D---- C:\Users\JAKUB\AppData\Roaming\vlc
2014-01-16 14:40:55 ----D---- C:\Windows\winsxs
2014-01-15 22:05:53 ----D---- C:\Windows\system32\MRT
2014-01-15 22:02:09 ----A---- C:\Windows\system32\MRT.exe
2014-01-12 17:06:01 ----D---- C:\Windows\Tasks
2014-01-12 08:03:19 ----D---- C:\Config.Msi
2014-01-11 19:06:10 ----SD---- C:\Users\JAKUB\AppData\Roaming\Microsoft
2014-01-11 18:25:05 ----D---- C:\Windows
2014-01-11 18:24:56 ----A---- C:\Windows\system32\aswBoot.exe
2014-01-11 18:21:29 ----SHD---- C:\Windows\Installer
2014-01-11 18:04:04 ----D---- C:\Windows\system32\wfp
2014-01-11 18:04:01 ----D---- C:\Windows\system32\wbem
2014-01-11 17:57:59 ----D---- C:\Windows\system32\CodeIntegrity
2014-01-11 17:57:52 ----D---- C:\Windows\registration
2014-01-11 17:57:34 ----RHD---- C:\MSOCache
2014-01-07 20:17:25 ----D---- C:\Program Files (x86)\Origin
2014-01-05 13:39:12 ----RSD---- C:\Windows\assembly
2014-01-04 20:59:32 ----D---- C:\Program Files\Windows Media Player
2014-01-04 20:59:32 ----D---- C:\Program Files (x86)\Windows Media Player
2014-01-04 20:59:31 ----D---- C:\Windows\SYSWOW64\cs-CZ
2014-01-04 20:59:31 ----D---- C:\Windows\system32\cs-CZ
2013-12-27 12:19:45 ----D---- C:\Program Files (x86)\Czech Soccer Manager 2002 FE
2013-12-27 10:08:01 ----D---- C:\Windows\system32\NDF

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 amd_sata;amd_sata; C:\Windows\system32\DRIVERS\amd_sata.sys [2000-01-01 79488]
R0 amd_xata;amd_xata; C:\Windows\system32\DRIVERS\amd_xata.sys [2000-01-01 40064]
R0 aswRvrt;avast! Revert; C:\Windows\system32\drivers\aswRvrt.sys [2014-01-11 65776]
R0 aswVmm;avast! VM Monitor; C:\Windows\system32\drivers\aswVmm.sys [2014-01-11 207904]
R0 AtiPcie;AMD PCI Express (3GIO) Filter; C:\Windows\system32\DRIVERS\AtiPcie64.sys [2010-06-17 16440]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-21 213888]
R0 speedfan;speedfan; C:\Windows\SysWOW64\speedfan.sys [2012-12-29 28664]
R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2013-09-14 834544]
R1 aswRdr;aswRdr; \??\C:\Windows\system32\drivers\aswRdr2.sys [2014-01-11 92544]
R1 aswSnx;aswSnx; \??\C:\Windows\system32\drivers\aswSnx.sys [2014-01-11 1034464]
R1 aswSP;aswSP; \??\C:\Windows\system32\drivers\aswSP.sys [2014-01-11 422216]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2013-05-29 283200]
R1 HssDRV6;Hotspot Shield Routing Driver 6; C:\Windows\system32\DRIVERS\hssdrv6.sys [2012-07-24 41704]
R1 HWiNFO32;HWiNFO32/64 Kernel Driver; \??\C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS [2013-10-17 31136]
R1 SASDIFSV;SASDIFSV; \??\C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [2011-07-22 14928]
R1 SASKUTIL;SASKUTIL; \??\C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [2011-07-12 12368]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 AODDriver4.1;AODDriver4.1; \??\C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [2012-03-05 53888]
R2 aswMonFlt;aswMonFlt; \??\C:\Windows\system32\drivers\aswMonFlt.sys [2014-01-11 78648]
R3 amdiox64;AMD IO Driver; C:\Windows\system32\DRIVERS\amdiox64.sys [2010-02-18 46136]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2013-04-30 11922944]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2013-04-30 359936]
R3 aswStm;aswStm; \??\C:\Windows\system32\drivers\aswStm.sys [2014-01-11 79672]
R3 athr;Qualcomm Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athrx.sys [2012-10-24 3802112]
R3 AtiHDAudioService;AMD Function Driver for HD Audio Service; C:\Windows\system32\drivers\AtihdW76.sys [2012-05-14 96896]
R3 BTATH_BUS;Atheros Bluetooth Bus; C:\Windows\system32\DRIVERS\btath_bus.sys [2011-05-09 29344]
R3 clwvd;CyberLink WebCam Virtual Driver; C:\Windows\system32\DRIVERS\clwvd.sys [2011-02-09 31088]
R3 hamachi;Hamachi Network Interface; C:\Windows\system32\DRIVERS\hamachi.sys [2009-03-18 33856]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2013-11-23 3379272]
R3 MBAMProtector;MBAMProtector; \??\C:\Windows\system32\drivers\mbam.sys [2013-04-04 25928]
R3 RSPCIESTOR;Realtek PCIE CardReader Driver; C:\Windows\system32\DRIVERS\RtsPStor.sys [2000-01-01 339600]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2013-11-23 883928]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2010-12-21 1402416]
R3 teamviewervpn;TeamViewer VPN Adapter; C:\Windows\system32\DRIVERS\teamviewervpn.sys [2012-11-28 35112]
R3 usbfilter;AMD USB Filter Driver; C:\Windows\system32\DRIVERS\usbfilter.sys [2010-12-16 47232]
S3 AR5416;Atheros Wireless Adapter Service; C:\Windows\system32\DRIVERS\athwx.sys [2011-02-25 2793568]
S3 aswTap;avast! SecureLine TAP Adapter v3; C:\Windows\system32\DRIVERS\aswTap.sys [2014-01-11 44640]
S3 AthBTPort;Atheros Virtual Bluetooth Class; C:\Windows\system32\DRIVERS\btath_flt.sys [2011-05-09 36000]
S3 AtiHdmiService;ATI Function Driver for High Definition Audio Service; C:\Windows\system32\drivers\AtiHdmi.sys [2010-05-06 125456]
S3 atillk64;atillk64; C:\Windows\system32\drivers\atillk64.sys []
S3 BCM43XX;Broadcom 802.11 Network Adapter Driver; C:\Windows\system32\DRIVERS\bcmwl664.sys [2009-06-10 1311232]
S3 BridgeMP;@%SystemRoot%\system32\bridgeres.dll,-1; C:\Windows\system32\DRIVERS\bridge.sys [2009-07-14 95232]
S3 BTATH_A2DP;Bluetooth A2DP Audio Driver; C:\Windows\system32\drivers\btath_a2dp.sys [2011-05-09 298656]
S3 BTATH_HCRP;Bluetooth HCRP Server driver; C:\Windows\system32\DRIVERS\btath_hcrp.sys [2011-05-09 201376]
S3 BTATH_LWFLT;Bluetooth LWFLT Device; C:\Windows\system32\DRIVERS\btath_lwflt.sys [2011-05-09 55456]
S3 BTATH_RCP;Bluetooth AVRCP Device; C:\Windows\system32\DRIVERS\btath_rcp.sys [2011-05-09 154272]
S3 BtFilter;BtFilter; C:\Windows\system32\DRIVERS\btfilter.sys [2011-05-09 281760]
S3 BthEnum;Služba Bluetooth Enumerator; C:\Windows\system32\DRIVERS\BthEnum.sys [2009-07-14 41984]
S3 BthPan;Zařízení Bluetooth (síť PAN); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
S3 BTHPORT;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2012-07-06 552960]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2011-04-28 80384]
S3 catchme;catchme; \??\C:\ComboFix\catchme.sys []
S3 EagleX64;EagleX64; C:\Windows\system32\drivers\EagleX64.sys []
S3 FairplayKD;FairplayKD; \??\C:\ProgramData\MTA San Andreas All\Common\temp\FairplayKD.sys []
S3 FTDIBUS;USB Serial Converter Driver; C:\Windows\system32\drivers\ftdibus.sys [2011-12-28 69192]
S3 FTSER2K;USB Serial Port Driver; C:\Windows\system32\drivers\ftser2k.sys [2011-12-28 84808]
S3 GDPkIcpt;GDPkIcpt; C:\Windows\system32\drivers\GDPkIcpt.sys []
S3 GearAspiWDM;GEARAspiWDM; C:\Windows\System32\drivers\GEARAspiWDM.sys [2008-02-22 19496]
S3 GPU-Z;GPU-Z; \??\C:\Users\JAKUB\AppData\Local\Temp\GPU-Z.sys []
S3 MarvinBus;Pinnacle Marvin Bus 64; C:\Windows\system32\DRIVERS\MarvinBus64.sys [2005-09-23 261120]
S3 NVENETFD;NVIDIA nForce Networking Controller Driver; C:\Windows\system32\DRIVERS\nvm62x64.sys [2009-06-10 408960]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2013-07-01 19456]
S3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
S3 RTCore64;RTCore64; \??\C:\Program Files (x86)\RMClock\RTCore64.sys [2008-09-08 14352]
S3 sdbus;sdbus; C:\Windows\system32\DRIVERS\sdbus.sys [2010-11-21 109056]
S3 SrvHsfHDA;SrvHsfHDA; C:\Windows\system32\DRIVERS\VSTAZL6.SYS [2009-06-10 292864]
S3 SrvHsfV92;SrvHsfV92; C:\Windows\system32\DRIVERS\VSTDPV6.SYS [2009-06-10 1485312]
S3 SrvHsfWinac;SrvHsfWinac; C:\Windows\system32\DRIVERS\VSTCNXT6.SYS [2009-06-10 740864]
S3 tap0901;TAP-Win32 Adapter V9; C:\Windows\system32\DRIVERS\tap0901.sys [2010-02-25 29696]
S3 taphss;Anchorfree HSS Adapter; C:\Windows\system32\DRIVERS\taphss.sys [2012-07-24 38632]
S3 taphss6;Anchorfree HSS VPN Adapter; C:\Windows\system32\DRIVERS\taphss6.sys [2013-11-13 42184]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2013-07-01 57856]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2013-07-01 30208]
S3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\Windows\system32\DRIVERS\vwifimp.sys [2009-07-14 17920]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 !SASCORE;SAS Core Service; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [2013-10-10 144152]
R2 AERTFilters;Andrea RT Filters Service; C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe [2009-11-18 98208]
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2013-04-30 238080]
R2 AMD FUEL Service;AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [2013-04-29 361984]
R2 Atheros Bt&Wlan Coex Agent;Atheros Bt&Wlan Coex Agent; C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [2011-05-09 146592]
R2 AtherosSvc;AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [2011-05-09 80032]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2014-01-11 50344]
R2 CronService;Cron Service for Prey; C:\Prey\platform\windows\cronsvc.exe [2013-05-08 23552]
R2 Hamachi2Svc;LogMeIn Hamachi Tunneling Engine; C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe [2013-11-29 2210640]
R2 HP Support Assistant Service;HP Support Assistant Service; C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe [2012-09-27 86528]
R2 HP Wireless Assistant Service;HP Wireless Assistant Service; C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe [2010-07-21 103992]
R2 HPWMISVC;HPWMISVC; C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe [2012-03-05 35200]
R2 IconMan_R;IconMan_R; C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe [2000-01-01 2451456]
R2 LMIGuardianSvc;LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [2013-10-11 377104]
R2 MBAMScheduler;MBAMScheduler; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [2013-04-04 418376]
R2 pdfcDispatcher;PDF Document Manager; C:\Program Files (x86)\PDF Complete\pdfsvc.exe [2011-02-01 1127448]
R2 RtkAudioService;Realtek Audio Service; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [2013-11-23 239176]
R2 TeamViewer9;TeamViewer 9; C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe [2013-12-17 5341536]
R3 hpqwmiex;HP Software Framework Service; C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe [2012-08-10 1001376]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2012-07-09 104912]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2012-07-08 123856]
S2 LiveUpdateSvc;LiveUpdate; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2014-01-25 2151744]
S2 MBAMService;MBAMService; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2013-04-04 701512]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2013-10-23 172192]
S2 SwitchBoard;SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
S2 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2013-02-20 1255736]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-12-11 257416]
S3 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2012-07-08 51648]
S3 Futuremark SystemInfo Service;Futuremark SystemInfo Service; C:\Program Files (x86)\Futuremark\Futuremark SystemInfo\FMSISvc.exe [2012-12-17 137488]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-03 69632]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2013-11-26 111616]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service; C:\Program Files\Microsoft Office\Office14\GROOVE.EXE [2012-09-20 50899608]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2013-04-13 115608]
S3 ose64;Office 64 Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 174440]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2013-08-28 563624]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2012-07-09 139696]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2012-07-09 139696]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2012-07-09 139696]

-----------------EOF-----------------

Proc zrovna IObit?

MrAnnix99 píše:2014-01-25 13:16:28 ----D---- C:\Program Files (x86)\IObit

Jestli bude Avast rvat, ze to chce otevrit v sandboxu, nedovolte to! Vyberte moznost Otevrit normalne

Stahnete OTL http://oldtimer.geekstogo.com/OTL.exe a ulozte na plochu.
Kliknete na nej pravym mysidlem a levym na Spustit jako spravce
Oznacte polozky (dejte tam zatrzitka) Pro všechny uživatele, Kontrola na havěť "LOP" a Kontrola na havěť "Purity"
Do spodniho okna vlozte nasledujici text

Kód: Vybrat vše

CREATERESTOREPOINT

netsvcs
drivers32
savembr:0

/md5start
adp3132.sys
AGP440.sys
ahcix86.sys
ahcix86s.sys
atapi.sys
autochk.exe
cdrom.sys
cngaudit.dll
cryptsvc.dll
eNetHook.dll
eventlog.dll
explorer.exe
hal.dll
Changer.sys
iaStor.sys
iastorv.sys
IdeChnDr.sys
isapnp.sys
JakNDis.sys
KR10N.sys
logevent.dll
lsass.exe
mv61xx.sys
ndis.sys
netlogon.dll
ntelogon.dll
nvata.sys
nvatabus.sys
nvgts.sys
nvraid.sys
nvrd32.sys
nvstor.sys
nvstor32.sys
scecli.dll
sceclt.dll
smss.exe
svchost.exe
symmpi.sys
tcpip.sys
userinit.exe
vaxscsi.sys
viamraid.sys
viasraid.sys
ViPrt.sys
winlogon.exe
ws2_32.dll
/md5stop

%systemroot%*.* /U /s
%SYSTEMDRIVE%\*.exe
%ALLUSERSPROFILE%\Application Data\*.
%ALLUSERSPROFILE%\Application Data\*.exe /s
%APPDATA%\*.
%APPDATA%\*.exe /s
%systemroot%\*. /mp /s
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\Tasks\*.job /lockedfiles
%systemroot%\system32\drivers\*.sys /lockedfiles
%systemroot%\System32\config\*.sav
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\system32\drivers\*.sys /3
%systemroot%\system32\*.* /3
%SYSTEMDRIVE%\*.exe

HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s
reg query "HKLM\Software\Microsoft\Windows NT\CurrentVersion\winlogon" /v GinaDLL /c
reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv" /v ImagePath /c
reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS" /v ImagePath /c

type c:\boot.ini >> test.txt /c
%SystemDrive%\PhysicalMBR.bin /md5

*crack* /s
*keygen* /s
*AntiWPA* /s
*loader* /s
*minodlogin* /s
*tnod* /s
*AutoKMS* /s
*activator* /s
*serial* /s
*w7lxe* /s

Kliknete na Prohledat
Po skenu se vytvori dva logy (OTL.Txt a Extras.txt), oba sem vlozte (kdyz budou dlouhe, rozdelte je do vice prispevku).

IObit protože mám IObit Uninstall.

To vidim, ale proc zrovna ten od IObit

IObit dokaze udelat v pc peknou paseku

Ale tak pokud jde jen o ten Uninstall, ten snad nic nepokazi

Nic víc krom něj nemám.

OTL Extras logfile created on: 26.1.2014 9:05:18 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\JAKUB\Desktop
64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.11.9600.16428)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

3,75 Gb Total Physical Memory | 1,56 Gb Available Physical Memory | 41,62% Memory free
9,36 Gb Paging File | 7,18 Gb Available in Paging File | 76,70% Paging File free
Paging file location(s): C:\pagefile.sys 5751 5751 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 449,46 Gb Total Space | 96,01 Gb Free Space | 21,36% Space Free | Partition Type: NTFS
Drive D: | 16,01 Gb Total Space | 1,95 Gb Free Space | 12,15% Space Free | Partition Type: NTFS
Drive E: | 376,06 Mb Total Space | 0,00 Mb Free Space | 0,00% Space Free | Partition Type: CDFS
Drive F: | 3,93 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: CDFS

Computer Name: JAKUB-HP | User Name: JAKUB | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Extra Registry (SafeList) ==========

========== File Associations ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.html[@ = Opera.HTML] -- C:\Program Files (x86)\Opera\Opera.exe (Opera Software)
.url [@ = InternetShortcut] -- rundll32.exe ieframe.dll,OpenURL %l

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation)
.html [@ = Opera.HTML] -- C:\Program Files (x86)\Opera\Opera.exe (Opera Software)
.url [@ = InternetShortcut] -- rundll32.exe ieframe.dll,OpenURL %l

========== Shell Spawning ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- Reg Error: Key error.
htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [print] -- rundll32.exe %SystemRoot%\system32\mshtml.dll,PrintHTML "%1" (Microsoft Corporation)
http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
https [open] -- "C:\Program Files (x86)\Opera\Opera.exe" "%1" (Opera Software)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [open] -- rundll32.exe ieframe.dll,OpenURL %l
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" (VideoLAN)
Directory [Bridge] -- C:\Program Files\Adobe\Adobe Bridge CS6 (64 Bit)\Bridge.exe "%L" (Adobe Systems, Inc.)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" (VideoLAN)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- "C:\Program Files\Internet Explorer\iexplore.exe" (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- Reg Error: Key error.
htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
https [open] -- "C:\Program Files (x86)\Opera\Opera.exe" "%1" (Opera Software)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [open] -- rundll32.exe ieframe.dll,OpenURL %l
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" (VideoLAN)
Directory [Bridge] -- C:\Program Files\Adobe\Adobe Bridge CS6 (64 Bit)\Bridge.exe "%L" (Adobe Systems, Inc.)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" (VideoLAN)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- Reg Error: Value error.

========== Security Center Settings ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
"FirewallDisableNotify" = 0
"AntiVirusDisableNotify" = 0
"UpdatesDisableNotify" = 0

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]
"DisableMonitoring" = 0

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = 28 4D B2 76 41 04 CA 01 [binary data]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]

========== System Restore Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0

========== Firewall Settings ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall]

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile]

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile]

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile]

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
"DoNotAllowExceptions" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"DoNotAllowExceptions" = 0
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
"C:\Nexon\Combat Arms EU\CombatArms.exe" = C:\Nexon\Combat Arms EU\CombatArms.exe:*Enabled:CombatArms.exe -- (Nexon)
"C:\Nexon\Combat Arms EU\Engine.exe" = C:\Nexon\Combat Arms EU\Engine.exe:*Enabled:Engine.exe -- (Nexon)
"C:\Nexon\Combat Arms EU\CombatArms.exe" = C:\Nexon\Combat Arms EU\CombatArms.exe:*Enabled:CombatArms.exe -- (Nexon)
"C:\Nexon\Combat Arms EU\Engine.exe" = C:\Nexon\Combat Arms EU\Engine.exe:*Enabled:Engine.exe -- (Nexon)

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"C:\Nexon\NEXON_EU_Downloader\NEXON_EU_Downloader_Engine.exe" = [String data over 1000 bytes]
"C:\Nexon\Combat Arms EU\CombatArms.exe" = C:\Nexon\Combat Arms EU\CombatArms.exe:*Enabled:CombatArms.exe -- (Nexon)
"C:\Nexon\Combat Arms EU\Engine.exe" = C:\Nexon\Combat Arms EU\Engine.exe:*Enabled:Engine.exe -- (Nexon)
"C:\Nexon\NEXON_EU_Downloader\NEXON_EU_Downloader_Engine.exe" = [String data over 1000 bytes]
"C:\Nexon\Combat Arms EU\CombatArms.exe" = C:\Nexon\Combat Arms EU\CombatArms.exe:*Enabled:CombatArms.exe -- (Nexon)
"C:\Nexon\Combat Arms EU\Engine.exe" = C:\Nexon\Combat Arms EU\Engine.exe:*Enabled:Engine.exe -- (Nexon)

========== Vista Active Open Ports Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{011D652F-9FA2-490D-A1E3-79A48047E920}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 |
"{04EBF300-F61E-4E74-809D-FA8ADB226E75}" = lport=137 | protocol=17 | dir=in | app=system |
"{0B6ABB5A-1A2E-4980-9F28-8147DC616C66}" = lport=1900 | protocol=17 | dir=in | name=windows live communications platform (ssdp) |
"{12711470-AC3A-413C-9AE0-740C79239DD3}" = lport=2869 | protocol=6 | dir=in | app=system |
"{1F048509-D7A4-40FA-85BD-DF7F5C3D99B8}" = lport=11155 | protocol=6 | dir=in | name=tunngle |
"{21D3D8CA-7EF7-40AC-96A3-ED2C3DCE0590}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{26A2327A-AE55-46AD-8BB5-DA554173DF39}" = lport=138 | protocol=17 | dir=in | app=system |
"{2B42EF2B-ADD0-4CF8-A2C6-9135E1E1FAA7}" = rport=445 | protocol=6 | dir=out | app=system |
"{36F24395-8D72-44DE-BEE2-F17A91EDD4A4}" = lport=139 | protocol=6 | dir=in | app=system |
"{398AD266-7217-45CD-8108-93F7E9465542}" = rport=10243 | protocol=6 | dir=out | app=system |
"{425EF32E-8E66-4633-8865-B823ABDF76E3}" = lport=2869 | protocol=6 | dir=in | name=windows live communications platform (upnp) |
"{454F8509-BCF8-403F-8087-370A2B4E455D}" = lport=6004 | protocol=17 | dir=in | app=c:\program files\microsoft office\office14\outlook.exe |
"{47B81C66-E577-42B3-B114-5EB53AC3A893}" = lport=2177 | protocol=17 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{4A2C7C37-4351-4456-BC9B-4BBBA883D336}" = rport=2177 | protocol=6 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{725BC0F8-A032-4152-A695-954CB9ED7FF0}" = rport=2177 | protocol=17 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{7AFB1F74-1450-457B-83E6-DE2384195A12}" = rport=138 | protocol=17 | dir=out | app=system |
"{887A433C-9137-4B65-A4B6-7819C5581762}" = lport=2177 | protocol=6 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{8A97F7F3-D50E-45B2-9A03-7B767391650A}" = rport=137 | protocol=17 | dir=out | app=system |
"{A01E5AC7-E67F-4F12-AF6E-8743CBF08CD8}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{A5E229A6-EA4B-4870-BB44-4D76F90D45D1}" = rport=139 | protocol=6 | dir=out | app=system |
"{B3291B93-7804-485D-9FD2-3E1E54319625}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
"{B99ADA06-7F1B-45E0-97CF-111F9757A78F}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{C6FE485D-2BC2-453D-96C4-4FF7B9EC248B}" = lport=10243 | protocol=6 | dir=in | app=system |
"{CD0FE5FA-C67E-4D72-8DCC-6363053FF1F6}" = lport=445 | protocol=6 | dir=in | app=system |
"{D35FCAD1-99C5-4214-8E47-A2D7ACB638EB}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{DAE06B4B-F84E-4DE7-A111-D05AE933396E}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{F1A731B7-F4CC-47AA-A505-4CD949525A99}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |

========== Vista Active Application Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{02057F43-7079-44C7-B2AF-8841340FEA35}" = protocol=6 | dir=in | app=c:\program files (x86)\electronic arts\burnout(tm) paradise the ultimate box\burnoutconfigtool.exe |
"{08DFBADC-0E4D-4BBE-870C-4D97292ABE86}" = protocol=17 | dir=in | app=c:\users\jakub\desktop\fifa14\fifa 14\game\fifa14.exe |
"{0CF71B7F-CC25-4CC8-AAD1-4DF39F895A07}" = protocol=17 | dir=in | app=c:\program files (x86)\sega\virtua tennis 4\vt4.exe |
"{0EAF9E16-238E-4984-B643-877028DAEDD8}" = protocol=17 | dir=in | app=c:\program files (x86)\electronic arts\burnout(tm) paradise the ultimate box\burnoutconfigtool.exe |
"{123CF7B2-9DB8-42C2-8D39-D501309ECABB}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{19D281E2-B263-43AE-B5D2-5D102DA4BCAB}" = protocol=17 | dir=in | app=c:\program files (x86)\electronic arts\burnout(tm) paradise the ultimate box\burnoutlauncher.exe |
"{1AAF9C32-4D5B-4488-9CF4-81CAF6132B9D}" = protocol=17 | dir=in | app=c:\programdata\nexoneu\ngm\ngm.exe |
"{1BFC11E9-16D0-432A-989B-EAD159A1CD29}" = protocol=6 | dir=in | app=c:\program files (x86)\electronic arts\burnout(tm) paradise the ultimate box\burnoutparadise.exe |
"{1E84A357-6CC6-4A49-831F-0EFF38032DE8}" = protocol=17 | dir=in | app=c:\program files (x86)\gamersfirst\apb reloaded\binaries\vivoxvoiceservice.exe |
"{1EDEEDEA-015F-41BF-8AB2-49AD754F90E5}" = protocol=17 | dir=in | app=c:\program files (x86)\ubisoft\shaun white snowboarding\shaunwhitesnowboarding.exe |
"{22A0C53F-1474-44F3-B72E-13834526CDF9}" = protocol=6 | dir=in | app=c:\new folder\steam.exe |
"{23A6F52B-F262-4FBE-83B7-2A9C4894D14B}" = protocol=6 | dir=in | app=c:\program files\microsoft office\office14\groove.exe |
"{26FB8104-3D1B-4800-9245-8774A6A47B38}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{2773FB83-2B25-4680-9496-47C6AC4BE354}" = protocol=6 | dir=in | app=c:\programdata\nexoneu\ngm\ngm.exe |
"{290D073F-4EE6-407E-822C-6221FC8CE663}" = protocol=6 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{335E2096-9EF3-4C77-BB34-AC29D0FCF0A9}" = protocol=6 | dir=in | app=c:\program files (x86)\origin games\mirrors edge\binaries\mirrorsedge.exe |
"{33B52DE5-FA33-4DF7-AC6D-B430CAE1268E}" = protocol=6 | dir=in | app=c:\program files (x86)\war thunder\launcher.exe |
"{3A05A4C0-C5C4-41B3-B99E-604C76431F7A}" = protocol=6 | dir=in | app=c:\program files (x86)\gamersfirst\apb reloaded\binaries\apb.exe |
"{3AB18B07-679B-4E1E-8495-BC3E6DBB3F1B}" = protocol=6 | dir=in | app=c:\users\jakub\desktop\fifa14\fifa 14\game\fifa14.exe |
"{43FDEFC1-5183-45F3-8B76-457F7F1167BC}" = protocol=6 | dir=in | app=c:\new folder\steamapps\common\crysis 2 game of the year\bin32\crysis2launcher.exe |
"{4597AAE1-D021-4CE5-8130-F5990B38AB00}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{45CC8890-8015-4BB1-B59E-93E0EA860555}" = protocol=17 | dir=in | app=c:\program files (x86)\ea games\battlefield 2\bf2.exe |
"{46DE7043-CF98-45F2-A175-037E43DB16F4}" = protocol=17 | dir=in | app=c:\new folder\steamapps\common\crysis 2 game of the year\bin32\crysis2launcher.exe |
"{49BF9B0A-FEC2-480F-9DCE-68AFE68BE4E1}" = protocol=17 | dir=in | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{49FA8F88-0EC4-446C-945A-79A008352E2C}" = protocol=17 | dir=in | app=c:\program files (x86)\opera\opera.exe |
"{526DA60A-305E-40CA-B3D8-F34BC357950F}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{52C5B2BA-9AD5-44C6-ACDD-EFDC2F55CFD9}" = protocol=6 | dir=in | app=c:\program files (x86)\teamviewer\version9\teamviewer.exe |
"{52F72CE9-5523-45DB-8F56-129148A3A22D}" = protocol=6 | dir=in | app=c:\program files (x86)\origin games\fifa 14 demo\game\fifa14_demo.exe |
"{5495D2E8-F9B9-4FAA-9147-7BAC07DA72EE}" = protocol=17 | dir=in | app=c:\new folder\steam.exe |
"{5BD8DD1E-CCC8-410D-BE7C-AFE0C56B76C1}" = protocol=17 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{5D05039F-D6A9-4B10-B2CA-A0487078BC0E}" = protocol=6 | dir=in | app=c:\program files (x86)\ubisoft\shaun white snowboarding\shaunwhitesnowboardinggame.exe |
"{5EA7A5D6-6FB8-4C2A-8291-BB22BBB57A5A}" = protocol=17 | dir=in | app=c:\program files (x86)\teamviewer\version9\teamviewer_service.exe |
"{62078D3C-5005-44A4-B1DE-21C6685CFC91}" = protocol=17 | dir=in | app=c:\program files (x86)\thehunter\launcher\launcher.exe |
"{62A5CBB1-CA91-44FD-A424-D6D664678F2C}" = protocol=6 | dir=in | app=c:\program files (x86)\sega\virtua tennis 4\vt4.exe |
"{66536CC8-53EF-4BB5-9F96-3812B4FF03DB}" = protocol=6 | dir=in | app=c:\program files (x86)\electronic arts\burnout(tm) paradise the ultimate box\burnoutlauncher.exe |
"{6DA36F5D-CE85-4C3F-9DAB-8B8AE9883063}" = protocol=58 | dir=in | app=system |
"{71E44E0E-12D4-400A-92CC-11F25AA6757B}" = protocol=6 | dir=in | app=c:\games\sniper - ghost warrior 2\bin32\sniperghostwarrior2.exe |
"{746F4389-C664-49E9-9675-D223B6875C46}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 |
"{758AF801-E9EF-4327-ACDF-7E2AA01491F0}" = protocol=17 | dir=in | app=c:\program files\microsoft office\office14\groove.exe |
"{79577BFA-4EA3-4552-8DE0-16836ECC4146}" = protocol=17 | dir=in | app=c:\program files (x86)\electronic arts\burnout(tm) paradise the ultimate box\burnoutparadise.exe |
"{7D28A5CD-06F9-4CF6-98A4-4A63781FEBAC}" = protocol=6 | dir=in | app=c:\nexon\combat arms eu\nmservice.exe |
"{7EB1B69A-131B-4FFC-A91C-A32C07BF3EC3}" = protocol=17 | dir=in | app=c:\program files (x86)\origin games\fifa 14 demo\game\fifa14_demo.exe |
"{894BB627-AAC2-4249-9E68-50A59E2259AB}" = protocol=6 | dir=in | app=c:\program files (x86)\gamersfirst\apb reloaded\binaries\vivoxvoiceservice.exe |
"{898C4004-7940-4EBD-84B2-A74C841B0DA9}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{91B71830-965C-43BF-AAED-740877CB5BC8}" = protocol=17 | dir=in | app=c:\program files\microsoft office\office14\onenote.exe |
"{92B03FFE-A2F6-4B47-B43D-DD62AEF6537C}" = protocol=17 | dir=in | app=c:\users\jakub\appdata\roaming\utorrent\utorrent.exe |
"{9DBBB559-6144-4CEC-A0AE-AAA9C02ADE1A}" = protocol=17 | dir=in | app=c:\program files (x86)\origin games\battlefield 1942\bf1942.exe |
"{A10EAA17-C169-4FA8-822E-A8F8946B8507}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 |
"{A1B696BD-99CB-4092-9983-629E2F0B0D2F}" = protocol=58 | dir=out | name=@iphlpsvc.dll,-503 |
"{A295592E-8C63-4E4F-861E-8A5710F68B20}" = protocol=6 | dir=in | app=c:\users\jakub\appdata\roaming\utorrent\utorrent.exe |
"{A310B104-8F3A-44CB-A941-30FED040B368}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{A4A56E80-4546-44DE-AFE9-C54EAE1DCD1B}" = protocol=17 | dir=in | app=c:\program files (x86)\teamviewer\version9\teamviewer.exe |
"{AFCE9A91-5786-4E9D-97E7-F78916FB5D0B}" = protocol=6 | dir=in | app=c:\program files (x86)\opera\opera.exe |
"{B293924D-BDD6-4AEC-B6B0-3BD776270914}" = protocol=6 | dir=out | app=system |
"{B4A35641-D379-4D91-BD4C-ED7397BBBFDA}" = protocol=6 | dir=in | app=c:\program files (x86)\origin games\battlefield 1942\bf1942.exe |
"{B810529E-A142-4A50-B431-9204B907DF32}" = protocol=17 | dir=in | app=c:\program files (x86)\gamersfirst\apb reloaded\binaries\apb.exe |
"{B9801875-470C-4101-80BC-5823BAA4DF9B}" = protocol=6 | dir=in | app=c:\program files (x86)\ubisoft\shaun white snowboarding\shaunwhitesnowboarding.exe |
"{B999BCED-3625-45A0-B5CA-447672BD4A65}" = protocol=6 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{BB4E0332-7560-4462-B24F-959781E590EB}" = protocol=17 | dir=in | app=c:\program files (x86)\ubisoft\shaun white snowboarding\shaunwhitesnowboardinggame.exe |
"{C02F5772-16D4-4D5B-B1AE-E586E85C421F}" = protocol=17 | dir=in | app=c:\users\jakub\appdata\local\google\google talk plugin\googletalkplugin.exe |
"{C1F4E4AE-E402-4756-A927-D6C9DB03DC59}" = protocol=17 | dir=in | app=c:\program files (x86)\war thunder\launcher.exe |
"{C2E8C24D-2D71-4C02-A5B0-764FADC96E94}" = dir=in | app=c:\program files (x86)\common files\apple\apple application support\webkit2webprocess.exe |
"{C3C2B66B-13C1-46FE-8BF3-2176C4591A71}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 |
"{C4BAC7A9-BB1D-41BB-B121-C44F21F667AC}" = protocol=17 | dir=in | app=c:\users\jakub\documents\plocha\fifa 14\game\fifa14.exe |
"{C5AB7294-8A7A-48AD-A123-C1F14ACD8772}" = protocol=6 | dir=in | app=c:\program files\microsoft office\office14\onenote.exe |
"{C63E85C4-38A1-4C58-B446-5CCCDA58D4A3}" = protocol=17 | dir=in | app=c:\program files (x86)\origin games\mirrors edge\binaries\mirrorsedge.exe |
"{C8E95CF7-7E93-4BF3-9ABD-4FD9F4557A32}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{CE1C76E1-A193-4077-AD2A-D832D83B980F}" = dir=in | app=c:\program files (x86)\windows live\contacts\wlcomm.exe |
"{CE590D70-59FA-433C-B941-24AAF837E099}" = protocol=17 | dir=in | app=c:\nexon\combat arms eu\nmservice.exe |
"{D017F6F5-26AC-4815-91CF-83DDB48C0214}" = protocol=6 | dir=in | app=c:\users\jakub\documents\plocha\fifa 14\game\fifa14.exe |
"{DA3ED773-014C-4A17-B25D-267A686679E7}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{DC801E1A-5C6D-485F-94A0-B4D3A8D59E04}" = protocol=6 | dir=in | app=c:\program files (x86)\teamviewer\version9\teamviewer_service.exe |
"{DDC26C78-DAD7-4A73-B44D-A48069CA1881}" = protocol=17 | dir=in | app=c:\games\sniper - ghost warrior 2\bin32\sniperghostwarrior2.exe |
"{E0B72411-E96B-4A81-BADE-75E4969789CA}" = protocol=17 | dir=in | app=c:\program files (x86)\opera\opera.exe |
"{E35B039C-4479-4BF6-B58C-E916A0079CA4}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{E855C46E-D8CA-477C-8F3A-18C14C7BA6D5}" = protocol=6 | dir=in | app=c:\users\jakub\appdata\local\google\google talk plugin\googletalkplugin.exe |
"{E90D1138-18A7-4CC4-BF91-E36F22278D9A}" = protocol=6 | dir=in | app=c:\program files (x86)\opera\opera.exe |
"{F5351E07-0184-46F1-8A78-8EE31AD83266}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{F7965FEE-D9FC-47A5-9E75-2F344E0B7C8A}" = protocol=6 | dir=in | app=c:\program files (x86)\ea games\battlefield 2\bf2.exe |
"{F7D3030F-E7B4-4227-BD32-3A00D2AF9E61}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 |
"{F9A12E80-A9D9-4ED4-8832-07A1E2BB8DF7}" = protocol=6 | dir=in | app=c:\program files (x86)\thehunter\launcher\launcher.exe |
"{FAAB6B78-D1E3-49FF-A84E-8BF270D3F4B4}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"TCP Query User{0AC427CC-F883-44A3-87AD-99602F8575C7}C:\users\jakub\appdata\local\temp\rar$exb0.587\sampfp_by_[hax].exe" = protocol=6 | dir=in | app=c:\users\jakub\appdata\local\temp\rar$exb0.587\sampfp_by_[hax].exe |
"TCP Query User{0B4A16B0-36A1-4A2E-BEE3-36BA58DB4DEF}C:\program files (x86)\mirillis\action!\action.exe" = protocol=6 | dir=in | app=c:\program files (x86)\mirillis\action!\action.exe |
"TCP Query User{208F8108-2E69-447C-8650-39BA92A385F4}C:\program files (x86)\atari\tdu2\uplauncher.exe" = protocol=6 | dir=in | app=c:\program files (x86)\atari\tdu2\uplauncher.exe |
"TCP Query User{25F2F824-BCAE-4B6A-B44D-941AFBB6C50F}C:\program files (x86)\videolan\vlc\vlc.exe" = protocol=6 | dir=in | app=c:\program files (x86)\videolan\vlc\vlc.exe |
"TCP Query User{2A5DC43F-BFCE-4087-92B3-4E46506915FF}C:\nexon\combat arms eu\engine.exe" = protocol=6 | dir=in | app=c:\nexon\combat arms eu\engine.exe |
"TCP Query User{302BAF90-42B4-479C-AAB1-DF1BA1F82917}C:\program files (x86)\counter-strike global offensive\steam\steamapps\common\counter-strike global offensive\csgo.exe" = protocol=6 | dir=in | app=c:\program files (x86)\counter-strike global offensive\steam\steamapps\common\counter-strike global offensive\csgo.exe |
"TCP Query User{326364CE-EB2A-4442-85CA-F458E4160EB8}C:\program files (x86)\mozilla firefox\plugin-container.exe" = protocol=6 | dir=in | app=c:\program files (x86)\mozilla firefox\plugin-container.exe |
"TCP Query User{37A54FF7-F717-4C0F-A62B-416B185DEB3E}C:\program files\strogino cs portal\garrys mod\hl2.exe" = protocol=6 | dir=in | app=c:\program files\strogino cs portal\garrys mod\hl2.exe |
"TCP Query User{39BD072C-66BB-4145-8B3F-E946249E37B4}C:\program files (x86)\google\chrome\application\chrome.exe" = protocol=6 | dir=in | app=c:\program files (x86)\google\chrome\application\chrome.exe |
"TCP Query User{573FFD13-4613-462A-B585-882CE6689177}C:\nexon\nexon_eu_downloader\nexon_eu_downloader_engine.exe" = protocol=6 | dir=in | app=c:\nexon\nexon_eu_downloader\nexon_eu_downloader_engine.exe |
"TCP Query User{66335623-5E44-4EEF-B909-EA9AF0AE5753}C:\nexon\nexon_eu_downloader\nexon_eu_downloader_engine.exe" = protocol=6 | dir=in | app=c:\nexon\nexon_eu_downloader\nexon_eu_downloader_engine.exe |
"TCP Query User{69687E50-11B1-4C69-B823-AEB33D89D218}C:\windows\kmsemulator.exe" = protocol=6 | dir=in | app=c:\windows\kmsemulator.exe |
"TCP Query User{6B0E8D8B-8971-431A-B9DE-41313A066FE8}C:\program files\java\jre6\bin\javaw.exe" = protocol=6 | dir=in | app=c:\program files\java\jre6\bin\javaw.exe |
"TCP Query User{6FE0645A-EA92-4EE4-A583-953973D80A73}C:\program files (x86)\java\jre7\bin\javaw.exe" = protocol=6 | dir=in | app=c:\program files (x86)\java\jre7\bin\javaw.exe |
"TCP Query User{A556EEC2-8FB9-4326-926F-407B2C919156}C:\program files (x86)\mirillis\action!\action.exe" = protocol=6 | dir=in | app=c:\program files (x86)\mirillis\action!\action.exe |
"TCP Query User{B4B6EB19-F32A-4948-A72F-0194D7B648D8}C:\program files (x86)\ubisoft\shaun white snowboarding\shaunwhitesnowboardinggame.exe" = protocol=6 | dir=in | app=c:\program files (x86)\ubisoft\shaun white snowboarding\shaunwhitesnowboardinggame.exe |
"TCP Query User{E53111D8-F103-44DC-BF02-D0924DE40357}C:\program files\strogino cs portal\garrys mod\hl2.exe" = protocol=6 | dir=in | app=c:\program files\strogino cs portal\garrys mod\hl2.exe |
"TCP Query User{EBFB6D3D-A3F1-4BF5-99E1-433D2C57268D}C:\program files (x86)\thehunter\game\thehunter.exe" = protocol=6 | dir=in | app=c:\program files (x86)\thehunter\game\thehunter.exe |
"TCP Query User{FB90F75C-A0B3-4A06-A311-D3EEA959E86E}C:\program files (x86)\roccat\power-grid\roccatpowergrid.exe" = protocol=6 | dir=in | app=c:\program files (x86)\roccat\power-grid\roccatpowergrid.exe |
"TCP Query User{FD60CB93-CEFE-44FE-875E-36B64BE5559E}C:\program files (x86)\milestone\motogp13\motogp13.exe" = protocol=6 | dir=in | app=c:\program files (x86)\milestone\motogp13\motogp13.exe |
"UDP Query User{069E3715-A680-4348-BE4C-041848ACB735}C:\program files (x86)\roccat\power-grid\roccatpowergrid.exe" = protocol=17 | dir=in | app=c:\program files (x86)\roccat\power-grid\roccatpowergrid.exe |
"UDP Query User{11783CB5-81B8-4005-B5D0-358942465CD9}C:\program files (x86)\java\jre7\bin\javaw.exe" = protocol=17 | dir=in | app=c:\program files (x86)\java\jre7\bin\javaw.exe |
"UDP Query User{12EA7CF1-D983-4C15-A1AB-9D7963549D89}C:\program files (x86)\ubisoft\shaun white snowboarding\shaunwhitesnowboardinggame.exe" = protocol=17 | dir=in | app=c:\program files (x86)\ubisoft\shaun white snowboarding\shaunwhitesnowboardinggame.exe |
"UDP Query User{1C0D323A-C9E2-4FE1-AB68-288027ACAA80}C:\nexon\nexon_eu_downloader\nexon_eu_downloader_engine.exe" = protocol=17 | dir=in | app=c:\nexon\nexon_eu_downloader\nexon_eu_downloader_engine.exe |
"UDP Query User{2671A82E-AFAB-4C38-BF23-467929610359}C:\program files (x86)\counter-strike global offensive\steam\steamapps\common\counter-strike global offensive\csgo.exe" = protocol=17 | dir=in | app=c:\program files (x86)\counter-strike global offensive\steam\steamapps\common\counter-strike global offensive\csgo.exe |
"UDP Query User{29C33D3E-D79E-44A3-A53A-4DCE18721166}C:\program files (x86)\thehunter\game\thehunter.exe" = protocol=17 | dir=in | app=c:\program files (x86)\thehunter\game\thehunter.exe |
"UDP Query User{4615A58A-9C21-4D5F-A8D7-849078FAA181}C:\program files (x86)\google\chrome\application\chrome.exe" = protocol=17 | dir=in | app=c:\program files (x86)\google\chrome\application\chrome.exe |
"UDP Query User{5210BA19-32F1-4012-9862-44AFFF4BF0ED}C:\program files\strogino cs portal\garrys mod\hl2.exe" = protocol=17 | dir=in | app=c:\program files\strogino cs portal\garrys mod\hl2.exe |
"UDP Query User{547215FC-50E8-4A44-BC31-C91C9EC096B4}C:\program files (x86)\milestone\motogp13\motogp13.exe" = protocol=17 | dir=in | app=c:\program files (x86)\milestone\motogp13\motogp13.exe |
"UDP Query User{6EA23C89-7CFB-4210-8EC7-477C47EA819E}C:\program files (x86)\mozilla firefox\plugin-container.exe" = protocol=17 | dir=in | app=c:\program files (x86)\mozilla firefox\plugin-container.exe |
"UDP Query User{74012E81-34B5-4F1B-86C6-4F14CDBFE81E}C:\program files (x86)\videolan\vlc\vlc.exe" = protocol=17 | dir=in | app=c:\program files (x86)\videolan\vlc\vlc.exe |
"UDP Query User{74118394-8B32-4075-8EB4-643DC58438FF}C:\nexon\combat arms eu\engine.exe" = protocol=17 | dir=in | app=c:\nexon\combat arms eu\engine.exe |
"UDP Query User{8265748B-8CE0-4525-BF2D-C1724AEEC5D9}C:\program files (x86)\atari\tdu2\uplauncher.exe" = protocol=17 | dir=in | app=c:\program files (x86)\atari\tdu2\uplauncher.exe |
"UDP Query User{8E7DAFA8-6985-4731-9DFB-DDF74E641C0F}C:\program files (x86)\mirillis\action!\action.exe" = protocol=17 | dir=in | app=c:\program files (x86)\mirillis\action!\action.exe |
"UDP Query User{8FA39B95-D026-4268-A14F-3A4680905A6C}C:\windows\kmsemulator.exe" = protocol=17 | dir=in | app=c:\windows\kmsemulator.exe |
"UDP Query User{A9C29F31-9419-4308-8243-82CD0AEDE70C}C:\program files\java\jre6\bin\javaw.exe" = protocol=17 | dir=in | app=c:\program files\java\jre6\bin\javaw.exe |
"UDP Query User{AD6FC4F9-AD84-4A5E-941E-F40113A72ED1}C:\users\jakub\appdata\local\temp\rar$exb0.587\sampfp_by_[hax].exe" = protocol=17 | dir=in | app=c:\users\jakub\appdata\local\temp\rar$exb0.587\sampfp_by_[hax].exe |
"UDP Query User{CD0FA8F0-9C78-4C3E-917B-BE5F221A5AC4}C:\nexon\nexon_eu_downloader\nexon_eu_downloader_engine.exe" = protocol=17 | dir=in | app=c:\nexon\nexon_eu_downloader\nexon_eu_downloader_engine.exe |
"UDP Query User{D5E1932A-9714-4938-88F3-B0034C7DCE84}C:\program files\strogino cs portal\garrys mod\hl2.exe" = protocol=17 | dir=in | app=c:\program files\strogino cs portal\garrys mod\hl2.exe |
"UDP Query User{EFBFCF72-1415-4129-B1FD-8F9695929553}C:\program files (x86)\mirillis\action!\action.exe" = protocol=17 | dir=in | app=c:\program files (x86)\mirillis\action!\action.exe |

========== HKEY_LOCAL_MACHINE Uninstall List ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{034B6AC8-DCF6-585B-2AFD-3FF0D4A559BB}" = AMD Accelerated Video Transcoding
"{13351E83-6DCD-4E97-2A8C-5D496259A47F}" = AMD Catalyst Install Manager
"{1AD147D0-BE0E-3D6C-AC11-64F6DC4163F1}" = Microsoft .NET Framework 4.5
"{1B8ABA62-74F0-47ED-B18C-A43128E591B8}" = Windows Live ID Sign-in Assistant
"{1D8E6291-B0D5-35EC-8441-6616F567A0F7}" = Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219
"{230D1595-57DA-4933-8C4E-375797EBB7E1}" = Bluetooth Win7 Suite (64)
"{30921AC4-6875-F7DF-B48B-2BB68C000BB6}" = AMD Media Foundation Decoders
"{33C19CDE-E935-11E0-A0DA-F04DA23A5C58}" = MSVCRT Redists
"{4B5F58F7-C7D1-3CE3-9B37-B657F0852643}" = Microsoft .NET Framework 4 Client Profile FRA Language Pack
"{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148
"{503F672D-6C84-448A-8F8F-4BC35AC83441}" = AMD APP SDK Runtime
"{5AE0838D-19B1-5D12-5FE8-E6503B2C8716}" = AMD Catalyst Install Manager
"{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161
"{617CA6E9-D5FB-4017-8130-82E68C56C34D}" = Image Resizer for Windows (64 bit)
"{6C676266-91E4-DC71-E661-13494AC29A3E}" = ccc-utility64
"{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}" = Microsoft Visual C++ 2005 Redistributable (x64)
"{6DE721A5-5E89-4D74-994C-652BB3C0672E}" = Ovladače videa společnosti Pinnacle
"{790E02A1-145A-3843-8C13-A4F41C9B48B7}" = Microsoft .NET Framework 4 Client Profile CSY Language Pack
"{8220EEFE-38CD-377E-8595-13398D740ACE}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{90140000-0015-0405-1000-0000000FF1CE}" = Microsoft Office Access MUI (Czech) 2010
"{90140000-0015-0405-1000-0000000FF1CE}_Office14.PROPLUSR_{9F412D54-AC04-46F9-AFE7-FE15DC0147A0}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-0016-0405-1000-0000000FF1CE}" = Microsoft Office Excel MUI (Czech) 2010
"{90140000-0016-0405-1000-0000000FF1CE}_Office14.PROPLUSR_{9F412D54-AC04-46F9-AFE7-FE15DC0147A0}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-0018-0405-1000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (Czech) 2010
"{90140000-0018-0405-1000-0000000FF1CE}_Office14.PROPLUSR_{9F412D54-AC04-46F9-AFE7-FE15DC0147A0}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-0019-0405-1000-0000000FF1CE}" = Microsoft Office Publisher MUI (Czech) 2010
"{90140000-0019-0405-1000-0000000FF1CE}_Office14.PROPLUSR_{9F412D54-AC04-46F9-AFE7-FE15DC0147A0}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001A-0405-1000-0000000FF1CE}" = Microsoft Office Outlook MUI (Czech) 2010
"{90140000-001A-0405-1000-0000000FF1CE}_Office14.PROPLUSR_{9F412D54-AC04-46F9-AFE7-FE15DC0147A0}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001B-0405-1000-0000000FF1CE}" = Microsoft Office Word MUI (Czech) 2010
"{90140000-001B-0405-1000-0000000FF1CE}_Office14.PROPLUSR_{9F412D54-AC04-46F9-AFE7-FE15DC0147A0}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001F-0405-1000-0000000FF1CE}" = Microsoft Office Proof (Czech) 2010
"{90140000-001F-0405-1000-0000000FF1CE}_Office14.PROPLUSR_{AEC2C00D-1E7E-45E3-9058-81EA2446B3CD}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001F-0407-1000-0000000FF1CE}" = Microsoft Office Proof (German) 2010
"{90140000-001F-0407-1000-0000000FF1CE}_Office14.PROPLUSR_{70A3169E-288F-454F-A08D-20DF66639B50}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001F-0409-1000-0000000FF1CE}" = Microsoft Office Proof (English) 2010
"{90140000-001F-0409-1000-0000000FF1CE}_Office14.PROPLUSR_{0242505C-4E90-407F-9299-B5B275F50D86}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001F-041B-1000-0000000FF1CE}" = Microsoft Office Proof (Slovak) 2010
"{90140000-001F-041B-1000-0000000FF1CE}_Office14.PROPLUSR_{4B806706-B352-42E8-8C8B-5CEBCEDBC4E0}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-002C-0405-1000-0000000FF1CE}" = Microsoft Office Proofing (Czech) 2010
"{90140000-002C-0405-1000-0000000FF1CE}_Office14.PROPLUSR_{715203B3-AD16-41A4-B13C-E1065EAB8963}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-0043-0000-1000-0000000FF1CE}" = Microsoft Office Office 32-bit Components 2010
"{90140000-0043-0000-1000-0000000FF1CE}_Office14.PROPLUSR_{E8B6D35B-0B6F-4DCE-9493-859BF3809A7F}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-0043-0405-1000-0000000FF1CE}" = Microsoft Office Shared 32-bit MUI (Czech) 2010
"{90140000-0043-0405-1000-0000000FF1CE}_Office14.PROPLUSR_{15D45352-C443-406A-9DF2-EF4A750A40CF}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-0044-0405-1000-0000000FF1CE}" = Microsoft Office InfoPath MUI (Czech) 2010
"{90140000-0044-0405-1000-0000000FF1CE}_Office14.PROPLUSR_{9F412D54-AC04-46F9-AFE7-FE15DC0147A0}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-006E-0405-1000-0000000FF1CE}" = Microsoft Office Shared MUI (Czech) 2010
"{90140000-006E-0405-1000-0000000FF1CE}_Office14.PROPLUSR_{4B8654FE-410D-462C-9B3C-09D031BF4534}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-00A1-0405-1000-0000000FF1CE}" = Microsoft Office OneNote MUI (Czech) 2010
"{90140000-00A1-0405-1000-0000000FF1CE}_Office14.PROPLUSR_{9F412D54-AC04-46F9-AFE7-FE15DC0147A0}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-00BA-0405-1000-0000000FF1CE}" = Microsoft Office Groove MUI (Czech) 2010
"{90140000-00BA-0405-1000-0000000FF1CE}_Office14.PROPLUSR_{9F412D54-AC04-46F9-AFE7-FE15DC0147A0}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{91140000-0011-0000-1000-0000000FF1CE}" = Microsoft Office Professional Plus 2010
"{91140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUSR_{7BC9B5EB-125A-4E9B-97E1-8D85B5E960B8}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033" = Microsoft .NET Framework 4.5
"{95120000-00B9-0409-1000-0000000FF1CE}" = Microsoft Application Error Reporting
"{999DB5B3-EE44-8837-2B51-4AF44CD1FD22}" = AMD Drag and Drop Transcoding
"{A2CB1ACB-94A2-32BA-A15E-7D80319F7589}" = Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.50727
"{A324DC11-FF02-3CE8-9D6F-67EBC006D970}" = Microsoft .NET Framework 4 Extended CSY Language Pack
"{AC53FC8B-EE18-3F9C-9B59-60937D0B182C}" = Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.50727
"{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}" = Microsoft Visual C++ 2005 Redistributable (x64)
"{B962DFD6-45C1-49D8-AEBA-197BF6576D29}" = HP Wireless Assistant
"{C2A9F89A-E657-7E78-CF51-5C8934E1D935}" = ccc-utility64
"{C8F834F5-46EA-4933-8AA9-F6CD7D29EED0}_is1" = Garrys Mod version 13.07.05
"{C9608300-11F5-11E0-A64B-0013D3D69929}" = MSVCRT Redists
"{CB1032F6-1108-30C7-01C9-C0C132D13BEE}" = AMD Fuel
"{CC4D56B7-6F18-470B-8734-ABCD75BCF4F1}" = HP Auto
"{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}" = SUPERAntiSpyware
"{D07A61E5-A59C-433C-BCBD-22025FA2287B}" = Windows Live Language Selector
"CCleaner" = CCleaner
"CPUID HWMonitor_is1" = CPUID HWMonitor 1.22
"Microsoft .NET Framework 4 Client Profile FRA Language Pack" = Module linguistique Microsoft .NET Framework 4 Client Profile FRA
"Office14.PROPLUSR" = Microsoft Office Professional Plus 2010
"Speccy" = Speccy
"SynTPDeinstKey" = Synaptics Pointing Device Driver
"WhoCrashed_is1" = WhoCrashed 5.00
"WinRAR archiver" = WinRAR

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{00F14E5B-E07A-2A1E-6788-580773CE1486}" = CCC Help English
"{01FB4998-33C4-4431-85ED-079E3EEFE75D}" = CyberLink YouCam
"{03046EBB-CB7C-4B98-BEFB-690EB955DA22}" = HP Setup
"{048298C9-A4D3-490B-9FF9-AB023A9238F3}" = Steam
"{04858915-9F49-4B2A-AED4-DC49A7DE6A7B}" = Battlefield 2(TM)
"{0558D976-2CD9-4056-BB6D-6609578F6FB9}_is1" = Euro-Happy M-B-v2.12e Bęta
"{07FA4960-B038-49EB-891B-9F95930AA544}" = HP Customer Experience Enhancements
"{08D2E121-7F6A-43EB-97FD-629B44903403}" = Microsoft_VC90_CRT_x86
"{09BC92CC-9D24-28EA-6CE5-7B3400650601}" = CCC Help English
"{0A036215-0A8D-6FBE-7EA3-7AED4F9E162A}" = CCC Help Turkish
"{0B0F231F-CE6A-483D-AA23-77B364F75917}" = Windows Live Installer
"{0F414901-5ED4-11E1-86F3-F04DA23A5C58}" = Vegas Pro 11.0
"{147894EE-5ED4-11E1-A8FF-F04DA23A5C58}" = MSVCRT Redists
"{15134cb0-b767-4960-a911-f2d16ae54797}" = Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727
"{15A05AAA-37E7-D516-5BE9-C960C2170403}" = CCC Help Czech
"{197816C4-9BF5-4633-BB84-63F03902544E}" = FiatECUScan
"{19BA08F7-C728-469C-8A35-BFBD3633BE08}" = Windows Live Movie Maker
"{1B705E8F-9893-4486-B5D7-4F7FEB9C871E}_is1" = Euro Truck Simulator 2
"{1DA6D447-C54D-4833-84D4-3EA31CAECE9B}" = Windows Live UX Platform Language Pack
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{200FEC62-3C34-4D60-9CE8-EC372E01C08F}" = Windows Live SOXE Definitions
"{21045E2A-1BD4-44B3-840B-A0857B4DEE55}" = Silicon Laboratories CP210x VCP Drivers for Windows XP/2003 Server/Vista/7
"{21E9850E-58C2-FA88-D5AD-B64D253B8F82}" = CCC Help Thai
"{22154f09-719a-4619-bb71-5b3356999fbf}" = Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727
"{25A7270E-1B63-DFD1-ACBC-88852A305398}" = CCC Help Chinese Traditional
"{26A24AE4-039D-4CA4-87B4-2F83217025FF}" = Java 7 Update 25
"{2E52FB79-7F60-4AD7-B946-5ED18B4F274E}" = ShaunWhiteSnowboarding
"{2E69E784-F84A-9A18-7D8E-4EB8504EEE1E}" = CCC Help Danish
"{2F73A7B2-E50E-39A6-9ABC-EF89E4C62E36}" = Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.50727
"{30BA90A9-E6B4-4FFC-8BC5-B7F2E014F432}" = Hitman Blood Money
"{3336F667-9049-4D46-98B6-4C743EEBC5B1}" = Windows Live Photo Gallery
"{34F4D9A4-42C2-4348-BEF4-E553C84549E7}" = Windows Live Photo Gallery
"{362614E4-9ABB-E7A7-CDDC-239AB168060A}" = CCC Help Japanese
"{370B8E47-4A33-E9F7-B04A-424A041D23B0}" = CCC Help Turkish
"{387A7BC7-577B-4FC9-8337-4DB8F7D34E55}" = MotoGP(TM)13
"{41564952-412D-5637-00A7-A758B70C0201}" = Avira SearchFree Toolbar plus Web Protection
"{44039779-BEA6-BF97-EC73-71FC250D1E42}" = CCC Help Dutch
"{44E28991-33C8-4F24-8506-64BA3FB259D1}" = Silicon Laboratories CP210x VCP Drivers for Windows XP/2003 Server/Vista/7_2 (c:\SiLabs\MCU\CP210x\Windows_XP_S2K3_Vista_7_2)
"{45160C56-61F6-468D-A5B0-9FAE2C3E68D6}" = Catalyst Control Center - Branding
"{45A66726-69BC-466B-A7A4-12FCBA4883D7}" = HiJackThis
"{4745F6F8-09DA-CC39-EC19-0E8D764CF2B7}" = CCC Help Chinese Standard
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4B784CE7-7CDB-4AF1-B636-2DC3EA51EA87}" = MotoGP(TM)13
"{4BBC41BE-C6DB-AFDC-E1D4-93D39A7DCDCC}" = Catalyst Control Center Localization All
"{4CB0307C-565E-4441-86BE-0DF2E4FB828C}" = Microsoft Games for Windows Marketplace
"{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}" = Skype™ 6.11
"{4FA31DE2-B613-24BB-1738-B655C00B1C9D}" = CCC Help Hungarian
"{51C7AD07-C3F6-4635-8E8A-231306D810FE}" = Cisco LEAP Module
"{53450FA2-E900-456E-9715-501000008200}" = Virtua Tennis 4™
"{53B17A98-5BF0-40BC-AAFF-850A357975AC}" = HP Quick Launch
"{53FAB161-9538-683D-D105-99E734B5FBE6}" = CCC Help Portuguese
"{56C16784-3EC3-CE94-74D1-7D9648DF4B4C}" = CCC Help German
"{579684A4-DDD5-4CA3-9EA8-7BE7D9593DB4}" = Windows Live UX Platform Language Pack
"{58771CF6-F212-CC4D-61B1-45CC70B6375C}" = CCC Help Dutch
"{5BE7BD06-512B-43bf-AD78-3BD2A5F5F7B3}" = Battlefield 1942™
"{5D09C772-ECB3-442B-9CC6-B4341C78FDC2}" = Apple Application Support
"{5E627606-53B9-42D1-97E1-D03F6229E248}" = Windows Live UX Platform Language Pack
"{63059735-CA97-FDFB-0E7A-3B8D81572EFD}" = Application Profiles
"{6491AB99-A11E-41FD-A5E7-32DE8A097B8E}" = Windows Live Essentials
"{64B2D6B3-71AC-45A7-A6A1-2E07ABF58341}" = Windows Live Movie Maker
"{64BF0187-F3D2-498B-99EA-163AF9AE6EC9}" = Cisco EAP-FAST Module
"{6670AE0A-83FD-C514-C4EC-51618BEDCF04}" = Catalyst Control Center InstallProxy
"{682B3E4F-696A-42DE-A41C-4C07EA1678B4}" = Windows Live SOXE
"{69d72156-6582-4556-8637-06f40aa7f85b}" = Image Resizer for Windows
"{6B04DAD8-71E6-A4D8-2B96-58C2F3534941}" = CCC Help Norwegian
"{6C772996-BFF3-3C8C-860B-B3D48FF05D65}" = Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.51106
"{6D5CE5F1-CBB0-9ED4-1A1E-91DDCD6225FD}" = CCC Help Italian
"{6EFD0C42-4CC1-4716-A0CA-21C1A062CF34}" = AMD System Monitor
"{6F340107-F9AA-47C6-B54C-C3A19F11553F}" = Hewlett-Packard ACLM.NET v1.2.1.1
"{6F37D92B-41AA-44B7-80D2-457ABDE11896}" = Windows Live Photo Common
"{707210B0-29F1-C550-BA96-6ECDA245CF24}" = CCC Help Spanish
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{74EB3499-8B95-4B5C-96EB-7B342F3FD0C6}" = Adobe Photoshop CS6
"{763360F7-5BE2-00D5-34F9-E2567656B98B}" = CCC Help Japanese
"{7694E0B1-2332-448B-9235-929F84B41E3F}" = Active@ ISO Burner
"{779D8CA1-03DD-4AD4-B21F-3E20BFE7BEDE}" = SketchUp 8
"{78906B56-0E81-42A7-AC25-F54C946E1538}" = Windows Live Photo Common
"{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}" = Apple Software Update
"{7A6577E7-F341-430F-9173-91E14E2DE270}" = FIFA 14 Demo
"{80F5C543-1B9F-483E-8C81-F97F30019C2B}_is1" = "Sniper - Ghost Warrior 2"
"{812B956B-37AB-24B9-4527-78A6D3ECE7F8}" = CCC Help Korean
"{827B97A9-B347-4110-9F89-37AF2B758F94}" = NHL™ 09
"{83293709-B863-0EF6-00DA-B026D486E8B5}" = CCC Help Polish
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{83C292B7-38A5-440B-A731-07070E81A64F}" = Windows Live PIMT Platform
"{8833FFB6-5B0C-4764-81AA-06DFEED9A476}" = Realtek Ethernet Controller Driver
"{88B2ABCF-9C00-47C1-8FC4-369B98845DD7}" = Catalyst Control Center - Branding
"{88F0F4FF-B514-4E32-9C17-CAF96D60EAFC}" = Razer Game Booster
"{89EEB101-A1C1-00B3-94C7-5F7864C8A618}" = CCC Help Greek
"{8B922CF8-8A6C-41CE-A858-F1755D7F5D29}" = NVIDIA PhysX
"{8DC069E7-893C-41E1-9442-DE89FEC33371}" = Xobni Core
"{8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}" = MSVCRT
"{8e70e4e1-06d7-470b-9f74-a51bef21088e}" = Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.51106
"{911904DE-EBB6-BC8E-D5BD-762B7DB42C46}" = CCC Help Greek
"{91E034D3-ACE1-D27A-B9E8-41468391C923}" = CCC Help Czech
"{92D58719-BBC1-4CC3-A08B-56C9E884CC2C}" = Microsoft_VC80_CRT_x86
"{92EA4134-10D1-418A-91E1-5A0453131A38}" = Windows Live Movie Maker
"{953CF6E6-4EC8-4E55-A263-720CEBD591FE}_is1" = ROCCAT Power-Grid version 0.458
"{962F1328-15D3-0A6A-E8E2-A0BE4FB546AB}" = CCC Help Swedish
"{96AD3B61-EAE2-11E2-9E72-B8AC6F98CCE3}" = Google Earth
"{96F42B8E-0963-4063-B712-4675D704A628}" = CCC Help Thai
"{97F77D62-5110-4FA3-A2D3-410B92D31199}" = Windows Live Fotogaléria
"{9903011B-5F1D-A2A1-8078-EE62B3324CCE}" = CCC Help Portuguese
"{994D5DF7-DA32-2F0E-3333-B06888235CF3}" = CCC Help Spanish
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9A7F1628-2126-34A5-852D-2B93328BCF3F}" = CCC Help German
"{9A996B6A-846E-4A89-B9C4-17546B7BE49F}" = Burnout(TM) Paradise The Ultimate Box
"{9AF7D6F5-50A5-432C-9F7B-83BCE03B11A0}" = SpinTires Tech Demo (June 060613)
"{9B28DDFC-B15A-F031-E5B2-4FA2E708521B}" = CCC Help Chinese Standard
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{9C2BA00E-0D9B-0769-5708-ED222A7886E3}" = CCC Help Danish
"{A29E18C2-7AB1-4b6b-848C-5D5E2C85F0C0}" = FIFA 13
"{A312ABBC-E4A0-4595-BB69-95AFF48A9838}" = HP Software Framework
"{A59E89B3-B241-4476-CB7B-30D5D79D9F07}" = CCC Help Polish
"{A81E275C-C1D1-473D-90D9-7EAE310550C7}" = OpenOffice 4.0.0
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{A9BDCA6B-3653-467B-AC83-94367DA3BFE3}" = Windows Live Photo Common
"{AA7A2800-1E75-4240-855B-03AFF8E5171E}" = FIFA 14
"{AE6C422B-DADB-D547-411C-E9E56DF03D16}" = CCC Help Russian
"{AEDBD563-24BB-4EE3-8366-A654DAC2D988}" = Mirror's Edge™
"{B09567CC-E43F-10F1-752D-549AC7FB0C43}" = CCC Help Finnish
"{B1557834-5188-706D-1379-D81062EE026E}" = CCC Help Chinese Traditional
"{B170B91D-E8E3-A6A3-D129-D8E36FEA8A0B}" = CCC Help Norwegian
"{B1B6F164-18C3-5F8E-686A-6572BC14FC93}" = CCC Help Korean
"{B6CF2967-C81E-40C0-9815-C05774FEF120}" = Skype Click to Call
"{B810D8-DFD6-TmbRaid-89A5-CC4D47756DAF}_is1" = Tomb Raider version 5.1
"{B92132C5-5722-82AA-B510-D73EF9A06123}" = CCC Help French
"{B97E3520-C726-475E-BC0C-7561952633AB}" = HP Power Manager
"{BA0601E1-B65C-11D5-80A9-0000B494D9A6}" = PC Booster
"{BD96ABD3-D1D4-5513-6C60-11476D6DCFC5}" = Catalyst Control Center Localization All
"{BEE64C14-BEF1-4610-8A68-A16EAA47B882}" = Futuremark SystemInfo
"{BFEAAE77-BD7F-4534-B286-9C5CB4697EB1}" = PDF Settings CS6
"{C1594429-8296-4652-BF54-9DBE4932A44C}" = Realtek PCIE Card Reader
"{C39C7876-4D21-8A38-0A42-B5C8858EC6C7}" = CCC Help French
"{C3A32068-8AB1-4327-BB16-BED9C6219DC7}" = Qualcomm Atheros Driver Installation Program
"{C3F73E70-FB24-3D11-5D35-13E076B52D82}" = CCC Help Russian
"{C5AB1EC3-5021-4B1F-0088-ED81A037473F}" = NHL06 DL PC Demo
"{C6432960-7871-B04D-B121-7DB2DA88CCE4}" = ccc-core-static
"{C7231F7C-6530-4E65-ADA6-5B392CF5BEB1}" = Recovery Manager
"{CE95A79E-E4FC-4FFF-8A75-29F04B942FF2}" = Windows Live UX Platform
"{D2FCA41E-AC01-4DCD-B3A7-DC9E32363065}}_is1" = Rapture3D 2.5.1 Game
"{D417C96A-FCC7-4590-A1BB-FAF73F5BC98E}" = GTA San Andreas
"{D4236B82-213F-679E-09A2-9AEB5EF4CADC}" = Catalyst Control Center Graphics Previews Common
"{D4329609-4102-4F8C-B83F-7FE024EEA314}_is1" = Dead Space 3 CZ v1.0
"{D436F577-1695-4D2F-8B44-AC76C99E0002}" = Windows Live Photo Common
"{D45240D3-B6B3-4FF9-B243-54ECE3E10066}" = Windows Live Communications Platform
"{D84F41A8-33E6-402A-8DD6-D2244235BCB8}" = LogMeIn Hamachi
"{DC8FE210-4C59-775C-18A6-453D465C62F3}" = CCC Help Hungarian
"{DDA52D9D-A313-3CD4-F0FF-60FF8B26C6F3}" = Catalyst Control Center InstallProxy
"{DF2035BE-5820-4965-BD97-7FAF8D4A7879}" = Microsoft_VC90_CRT_x86
"{E09C4DB7-630C-4F06-A631-8EA7239923AF}" = D3DX10
"{E311C37C-B86F-B94B-C0D3-4AEB0A78CE05}" = CCC Help Italian
"{E362724E-9320-4946-AF34-874E7B6B2927}" = System Requirements Lab CYRI
"{E824E81C-80A4-3DFF-B5F9-4842A9FF5F7F}" = Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.51106
"{E96CAA2A-0244-4A2A-8403-0C3C9534778B}" = ESU for Microsoft Windows 7 SP1
"{EB38C3E0-4863-3123-9114-5BE86EC8E5C7}" = Google Talk Plugin
"{EBBD4FE6-91DA-C397-6D56-FE85DBF24FCF}" = AMD VISION Engine Control Center
"{ED1BD69A-07E3-418C-91F1-D856582581BF}" = HP On Screen Display
"{ED5776D5-59B4-46B7-AF81-5F2D94D7C640}" = Cisco PEAP Module
"{ed8deea4-29fa-3932-9612-e2122d8a62d9}}_is1" = War Thunder Launcher 1.0.1.246
"{EE202411-2C26-49E8-9784-1BC1DBF7DE96}" = HP Support Assistant
"{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}" = Microsoft SQL Server 2005 Compact Edition [ENU]
"{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F2508213-9989-4E85-A078-72BE483917EF}" = Microsoft Games for Windows - LIVE Redistributable
"{F4FC9478-6738-48A1-AEAE-C970624C03C5}_is1" = Easy2Convert JPG to PSD 1.1
"{F761359C-9CED-45AE-9A51-9D6605CD55C4}" = Evernote v. 4.2.2
"{F8A47958-47CC-4B57-AE7D-7DDC0A86BEF5}" = XSplit Broadcaster
"{FA8FCABA-6FAD-34D0-E8BA-C8A29EEBD3CE}" = CCC Help Finnish
"{FB3D07AE-73D0-47A9-AC12-6F50BF8B6202}" = Windows Live Movie Maker
"{FB79FDB7-4DE1-453D-99FE-9A880F57380E}" = Windows Live Fotogalerie
"{FCEFDA6B-63CD-BB17-B845-478A42E24D39}" = CCC Help Swedish
"{FDB30193-FDA0-3DAA-ACCA-A75EEFE53607}" = Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.50727
"{FE044230-9CA5-43F7-9B58-5AC5A28A1F33}" = Windows Live Essentials
"{FE62C88B-425B-4BDE-8B70-CD5AE3B83176}" = Windows Live Essentials
"{FF3C203A-2F19-43A2-9C7C-EC1B5A0FC873}" = Pure
"{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
"7-Zip" = 7-Zip 9.20
"Adobe Flash Player ActiveX" = Adobe Flash Player 11 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin
"aTube Catcher" = aTube Catcher
"Bandicam" = Bandicam
"BandiMPEG1" = Bandisoft MPEG-1 Decoder
"Combat Arms EU" = Combat Arms EU
"Counter-Strike Global Offensive_is1" = Counter-Strike Global Offensive
"CrystalDiskInfo_is1" = CrystalDiskInfo 6.0.0
"Czech Soccer Manager 2002 FE" = Czech Soccer Manager 2002 FE
"DAEMON Tools Lite" = DAEMON Tools Lite
"Defraggler" = Defraggler (remove only)
"Dxtory2.0_is1" = Dxtory version 2.0.122
"F1 Race Stars_is1" = F1 Race Stars
"FBDFBE7F-2DB8-47E2-B88E-32F4A2A74AA8_is1" = theHunter Launcher
"FIFA 13 PC Scoreboard Switcher 0.3" = FIFA 13 PC Scoreboard Switcher 0.3
"Fraps" = Fraps (remove only)
"Free Video to GIF Converter_is1" = 2.0
"Full Uninstall_is1" = Full Uninstall version 2.0
"GFWL_{53450FA2-E900-456E-9715-501000008200}" = Virtua Tennis 4™
"Google Chrome" = Google Chrome
"HD Tune Pro_is1" = HD Tune Pro 4.60
"HeavyLoad_is1" = HeavyLoad V3.2
"Hitman Absolution_is1" = Hitman Absolution
"HWiNFO32_is1" = HWiNFO32 Version 4.22
"InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}" = CyberLink YouCam
"IObitUninstall" = IObit Uninstaller
"LogMeIn Hamachi" = LogMeIn Hamachi
"Malwarebytes' Anti-Malware_is1" = Malwarebytes Anti-Malware verze 1.75.0.1300
"Media Player - Codec Pack" = Media Player Codec Pack 4.2.4
"Migration System Updater RBP" = Migration System Updater RBP
"Minecraft1.6.2" = Minecraft1.6.2
"Mirillis Action!" = Action!
"Mozilla Firefox 20.0.1 (x86 cs)" = Mozilla Firefox 20.0.1 (x86 cs)
"MozillaMaintenanceService" = Mozilla Maintenance Service
"MSTTS" = Microsoft Text-to-Speech Engine 4.0 (English)
"MTA:SA 1.3" = MTA:SA v1.3.2
"NOPeit 1.1.0.2" = NOPeit 1.1.0.2
"OCCT" = OCCT 4.4.0
"Open Broadcaster Software" = Open Broadcaster Software
"OpenAL" = OpenAL
"Opera 12.15.1748" = Opera 12.15
"Origin" = Origin
"PDF Complete" = PDF Complete Special Edition
"Rockstar Games Social Club" = Rockstar Games Social Club
"SLABCOMM&10C4&EA60" = Silicon Laboratories CP210x USB to UART Bridge (Driver Removal)
"Sniper Ghost Warrior 2_is1" = Sniper Ghost Warrior 2 v1.0.0 / RePack by Dz TeaM
"Spec Ops The Line_is1" = Spec Ops The Line
"SpeedFan" = SpeedFan (remove only)
"SSF Realism Mod" = SSF Realism Mod
"Steam App 108800" = Crysis 2 Maximum Edition
"Svátky a narozeniny_is1" = Svátky a narozeniny 2.0.2
"SWAT 4 1.1" = SWAT 4 1.1
"TeamSpeak 3 Client" = TeamSpeak 3 Client
"TeamViewer 9" = TeamViewer 9
"TechPowerUp GPU-Z" = TechPowerUp GPU-Z
"Uplay" = Uplay
"uTorrent" = µTorrent
"VLC media player" = VLC media player 2.0.8
"WinLiveSuite" = Windows Live Essentials
"WinRAR archiver" = WinRAR 4.20 (32-bit)
"x264vfw" = x264vfw - H.264/MPEG-4 AVC codec (remove only)
"Xvid_is1" = Xvid 1.2.2 final uninstall

========== HKEY_USERS Uninstall List ==========

[HKEY_USERS\S-1-5-21-1617569673-3034970362-4137664275-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"EA SPORTS Game Face Browser Plugin" = EA SPORTS Game Face Browser Plugin 1.8.0.0
"GamersFirst LIVE!" = GamersFirst LIVE!
"SeznamInstall" = Seznam Software
"UnityWebPlayer" = Unity Web Player

========== Last 20 Event Log Errors ==========

[ Application Events ]
Error - 11.1.2014 12:46:54 | Computer Name = JAKUB-HP | Source = Application Hang | ID = 1002
Description = Program Explorer.EXE verze 6.1.7601.17567 přestal spolupracovat se
systémem Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací
o tomto problému, vyhledejte historii problému v ovládacím panelu Centrum akcí.

ID
procesu: 700 Čas spuštění: 01cf0eec71a35068 Čas ukončení: 63 Cesta k aplikaci: C:\Windows\Explorer.EXE

ID
hlášení: e4342c47-7adf-11e3-93a4-2c768add0320

Error - 11.1.2014 12:51:12 | Computer Name = JAKUB-HP | Source = MsiInstaller | ID = 11704
Description = Product: GeekBuddy -- Error 1704. An installation for COMODO Firewall
is currently suspended. You must undo the changes made by that installation to
continue. Do you want to undo those changes?

Error - 11.1.2014 12:53:07 | Computer Name = JAKUB-HP | Source = Microsoft-Windows-CAPI2 | ID = 513
Description = Služba Šifrování selhala při volání OnIdentity() v objektu System
Writer. Details: AddLegacyDriverFiles: Unable to back up image of binary COMODO Internet
Security Eradication Driver. System Error: Systém nemůže nalézt uvedený soubor. .

Error - 11.1.2014 12:53:07 | Computer Name = JAKUB-HP | Source = Microsoft-Windows-CAPI2 | ID = 513
Description = Služba Šifrování selhala při volání OnIdentity() v objektu System
Writer. Details: AddWin32ServiceFiles: Unable to back up image of service COMODO Internet
Security Helper Service since QueryServiceConfig API failed System Error: Systém
nemůže nalézt uvedený soubor. .

Error - 11.1.2014 12:53:07 | Computer Name = JAKUB-HP | Source = Microsoft-Windows-CAPI2 | ID = 513
Description = Služba Šifrování selhala při volání OnIdentity() v objektu System
Writer. Details: AddWin32ServiceFiles: Unable to back up image of service COMODO Virtual
Service Manager since QueryServiceConfig API failed System Error: Systém nemůže nalézt
uvedený soubor. .

Error - 18.1.2014 14:32:57 | Computer Name = JAKUB-HP | Source = Application Error | ID = 1000
Description = Název chybující aplikace: gta_sa.exe, verze: 0.0.0.0, časové razítko:
0x427101ca Název chybujícího modulu: gta_sa.exe, verze: 0.0.0.0, časové razítko:
0x427101ca Kód výjimky: 0xc0000005 Posun chyby: 0x000dd5a3 ID chybujícího procesu:
0xcd4 Čas spuštění chybující aplikace: 0x01cf147ba499f219 Cesta k chybující aplikaci:
C:\Program Files (x86)\Rockstar Games\GTA San Andreas\gta_sa.exe Cesta k chybujícímu
modulu: C:\Program Files (x86)\Rockstar Games\GTA San Andreas\gta_sa.exe ID zprávy:
f31d1940-806e-11e3-95e1-2c768add0320

Error - 20.1.2014 15:46:29 | Computer Name = JAKUB-HP | Source = Microsoft-Windows-LoadPerf | ID = 3006
Description = Nelze číst řetězce čítačů výkonu definované pro ID jazyka 005. První
hodnota DWORD v datové oblasti obsahuje kód chyby Win32.

Error - 20.1.2014 15:46:29 | Computer Name = JAKUB-HP | Source = Microsoft-Windows-LoadPerf | ID = 3006
Description = Nelze číst řetězce čítačů výkonu definované pro ID jazyka 009. První
hodnota DWORD v datové oblasti obsahuje kód chyby Win32.

Error - 20.1.2014 15:46:29 | Computer Name = JAKUB-HP | Source = Microsoft-Windows-LoadPerf | ID = 3006
Description = Nelze číst řetězce čítačů výkonu definované pro ID jazyka 005. První
hodnota DWORD v datové oblasti obsahuje kód chyby Win32.

Error - 20.1.2014 15:46:29 | Computer Name = JAKUB-HP | Source = Microsoft-Windows-LoadPerf | ID = 3006
Description = Nelze číst řetězce čítačů výkonu definované pro ID jazyka 009. První
hodnota DWORD v datové oblasti obsahuje kód chyby Win32.

[ Hewlett-Packard Events ]
Error - 24.2.2013 15:15:47 | Computer Name = JAKUB-HP | Source = Hewlett-Packard | ID = 0
Description = AAProcessExited() C:\ProgramData\Hewlett-Packard\HP Support Framework\Telemetry\021324081536.xml
File not created by asset agent

Error - 3.3.2013 10:42:25 | Computer Name = JAKUB-HP | Source = Hewlett-Packard | ID = 0
Description = AAProcessExited() C:\ProgramData\Hewlett-Packard\HP Support Framework\Telemetry\031303034217.xml
File not created by asset agent

[ HP Wireless Assistant Events ]
Error - 3.7.2013 12:36:27 | Computer Name = JAKUB-HP | Source = HP WA Service | ID = 0
Description = System.Exception GetDeviceInfo() failed : 597 v HP_Common.CaslWrapper.GetDeviceInfo(List`1&
radioList) v HPPA_Service.CurrentConfiguration.ReloadRadioList()

Error - 3.7.2013 12:36:29 | Computer Name = JAKUB-HP | Source = HP WA Service | ID = 0
Description = System.Exception GetDeviceInfo() failed : 597 v HP_Common.CaslWrapper.GetDeviceInfo(List`1&
radioList) v HPPA_Service.CurrentConfiguration.ReloadRadioList()

Error - 3.7.2013 12:36:30 | Computer Name = JAKUB-HP | Source = HP WA Service | ID = 0
Description = System.Exception GetDeviceInfo() failed : 597 v HP_Common.CaslWrapper.GetDeviceInfo(List`1&
radioList) v HPPA_Service.CurrentConfiguration.ReloadRadioList()

Error - 3.7.2013 12:36:32 | Computer Name = JAKUB-HP | Source = HP WA Service | ID = 0
Description = System.Exception GetDeviceInfo() failed : 597 v HP_Common.CaslWrapper.GetDeviceInfo(List`1&
radioList) v HPPA_Service.CurrentConfiguration.ReloadRadioList()

Error - 3.7.2013 12:36:33 | Computer Name = JAKUB-HP | Source = HP WA Service | ID = 0
Description = System.Exception GetDeviceInfo() failed : 597 v HP_Common.CaslWrapper.GetDeviceInfo(List`1&
radioList) v HPPA_Service.CurrentConfiguration.ReloadRadioList()

Error - 3.7.2013 12:36:35 | Computer Name = JAKUB-HP | Source = HP WA Service | ID = 0
Description = System.Exception GetDeviceInfo() failed : 597 v HP_Common.CaslWrapper.GetDeviceInfo(List`1&
radioList) v HPPA_Service.CurrentConfiguration.ReloadRadioList()

Error - 3.7.2013 12:36:37 | Computer Name = JAKUB-HP | Source = HP WA Service | ID = 0
Description = System.Exception GetDeviceInfo() failed : 597 v HP_Common.CaslWrapper.GetDeviceInfo(List`1&
radioList) v HPPA_Service.CurrentConfiguration.ReloadRadioList()

Error - 3.7.2013 12:36:38 | Computer Name = JAKUB-HP | Source = HP WA Service | ID = 0
Description = System.Exception GetDeviceInfo() failed : 597 v HP_Common.CaslWrapper.GetDeviceInfo(List`1&
radioList) v HPPA_Service.CurrentConfiguration.ReloadRadioList()

Error - 3.7.2013 12:36:40 | Computer Name = JAKUB-HP | Source = HP WA Service | ID = 0
Description = System.Exception GetDeviceInfo() failed : 597 v HP_Common.CaslWrapper.GetDeviceInfo(List`1&
radioList) v HPPA_Service.CurrentConfiguration.ReloadRadioList()

Error - 3.7.2013 12:36:41 | Computer Name = JAKUB-HP | Source = HP WA Service | ID = 0
Description = System.Exception GetDeviceInfo() failed : 597 v HP_Common.CaslWrapper.GetDeviceInfo(List`1&
radioList) v HPPA_Service.CurrentConfiguration.ReloadRadioList()

[ System Events ]
Error - 25.1.2014 16:04:28 | Computer Name = JAKUB-HP | Source = Service Control Manager | ID = 7001
Description = Služba Prohledávání počítačů závisí na službě Server, která neuspěla
při spuštění v důsledku následující chyby: %%1068

Error - 25.1.2014 16:04:28 | Computer Name = JAKUB-HP | Source = Service Control Manager | ID = 7001
Description = Služba Prohledávání počítačů závisí na službě Server, která neuspěla
při spuštění v důsledku následující chyby: %%1068

Error - 25.1.2014 16:04:28 | Computer Name = JAKUB-HP | Source = Service Control Manager | ID = 7001
Description = Služba Prohledávání počítačů závisí na službě Server, která neuspěla
při spuštění v důsledku následující chyby: %%1068

Error - 25.1.2014 16:10:25 | Computer Name = JAKUB-HP | Source = Service Control Manager | ID = 7009
Description = Při čekání na připojení služby SwitchBoard bylo dosaženo časového
limitu (30000 ms).

Error - 25.1.2014 16:10:25 | Computer Name = JAKUB-HP | Source = Service Control Manager | ID = 7000
Description = Služba SwitchBoard neuspěla při spuštění v důsledku následující chyby:
%%1053

Error - 25.1.2014 16:11:13 | Computer Name = JAKUB-HP | Source = Service Control Manager | ID = 7034
Description = Služba LiveUpdate byla neočekávaně ukončena. Tento stav nastal již
1krát.

Error - 26.1.2014 3:25:32 | Computer Name = JAKUB-HP | Source = Service Control Manager | ID = 7009
Description = Při čekání na připojení služby SwitchBoard bylo dosaženo časového
limitu (30000 ms).

Error - 26.1.2014 3:25:32 | Computer Name = JAKUB-HP | Source = Service Control Manager | ID = 7000
Description = Služba SwitchBoard neuspěla při spuštění v důsledku následující chyby:
%%1053

Error - 26.1.2014 3:26:13 | Computer Name = JAKUB-HP | Source = WMPNetworkSvc | ID = 866300
Description = Služba WMPNetworkSvc nebyla spuštěna správně, protože u funkce CoCreateInstance
(CLSID_UPnPDeviceFinder) došlo k chybě 0x80004005. Zkontrolujte, zda je spuštěná
služba UPnPHost a zda je správně nainstalována součást systému Windows UPnPHost.

Error - 26.1.2014 3:26:40 | Computer Name = JAKUB-HP | Source = Service Control Manager | ID = 7034
Description = Služba LiveUpdate byla neočekávaně ukončena. Tento stav nastal již
1krát.

< End of report >

OTL logfile created on: 26.1.2014 9:05:18 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\JAKUB\Desktop
64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.11.9600.16428)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

3,75 Gb Total Physical Memory | 1,56 Gb Available Physical Memory | 41,62% Memory free
9,36 Gb Paging File | 7,18 Gb Available in Paging File | 76,70% Paging File free
Paging file location(s): C:\pagefile.sys 5751 5751 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 449,46 Gb Total Space | 96,01 Gb Free Space | 21,36% Space Free | Partition Type: NTFS
Drive D: | 16,01 Gb Total Space | 1,95 Gb Free Space | 12,15% Space Free | Partition Type: NTFS
Drive E: | 376,06 Mb Total Space | 0,00 Mb Free Space | 0,00% Space Free | Partition Type: CDFS
Drive F: | 3,93 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: CDFS

Computer Name: JAKUB-HP | User Name: JAKUB | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2014.01.26 09:04:04 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\JAKUB\Desktop\OTL.exe
PRC - [2014.01.19 08:47:49 | 014,383,616 | ---- | M] () -- C:\Program Files (x86)\Rockstar Games\GTA San Andreas\GTA_SA.EXE
PRC - [2014.01.11 18:24:53 | 003,764,024 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastUI.exe
PRC - [2014.01.11 18:24:53 | 000,050,344 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe
PRC - [2014.01.03 19:28:06 | 000,412,672 | ---- | M] () -- C:\Program Files (x86)\Rockstar Games\GTA San Andreas\samp.exe
PRC - [2013.12.29 21:00:00 | 000,393,728 | ---- | M] (BitTorrent, Inc.) -- C:\Users\JAKUB\AppData\Roaming\uTorrent\uTorrent.exe
PRC - [2013.12.17 11:38:33 | 005,341,536 | ---- | M] (TeamViewer GmbH) -- C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
PRC - [2013.11.29 16:20:48 | 003,806,544 | ---- | M] (LogMeIn Inc.) -- C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe
PRC - [2013.08.24 18:49:56 | 000,829,392 | ---- | M] (Google Inc.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
PRC - [2013.05.08 18:29:44 | 000,023,552 | ---- | M] (Fork Ltd.) -- C:\Prey\platform\windows\cronsvc.exe
PRC - [2013.04.04 13:50:32 | 000,418,376 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
PRC - [2012.09.20 06:44:16 | 000,296,392 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\AAM Updates Notifier.exe
PRC - [2012.03.05 12:38:38 | 000,035,200 | ---- | M] (Hewlett-Packard Development Company, L.P.) -- C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
PRC - [2011.05.09 17:28:38 | 000,146,592 | ---- | M] (Atheros) -- C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
PRC - [2011.02.09 16:57:36 | 000,136,488 | ---- | M] (CyberLink) -- C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe
PRC - [2011.02.01 00:42:40 | 001,127,448 | ---- | M] (PDF Complete Inc) -- C:\Program Files (x86)\PDF Complete\pdfsvc.exe

========== Modules (No Company Name) ==========

MOD - [2014.01.19 08:47:49 | 014,383,616 | ---- | M] () -- C:\Program Files (x86)\Rockstar Games\GTA San Andreas\GTA_SA.EXE
MOD - [2014.01.11 18:24:54 | 019,336,120 | ---- | M] () -- C:\Program Files\AVAST Software\Avast\libcef.dll
MOD - [2014.01.03 19:28:06 | 000,412,672 | ---- | M] () -- C:\Program Files (x86)\Rockstar Games\GTA San Andreas\samp.exe
MOD - [2013.09.05 00:14:10 | 004,300,456 | ---- | M] () -- C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\Cultures\OFFICE.ODF
MOD - [2013.08.24 18:49:53 | 000,410,576 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\29.0.1547.62\ppgooglenaclpluginchrome.dll
MOD - [2013.08.24 18:49:51 | 004,053,456 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\29.0.1547.62\pdf.dll
MOD - [2013.08.24 18:49:01 | 000,709,584 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\29.0.1547.62\libglesv2.dll
MOD - [2013.08.24 18:49:00 | 000,099,792 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\29.0.1547.62\libegl.dll
MOD - [2013.08.24 18:48:58 | 001,604,560 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\29.0.1547.62\ffmpegsumo.dll
MOD - [2003.11.16 10:48:30 | 000,065,536 | ---- | M] () -- C:\Program Files (x86)\Rockstar Games\GTA San Andreas\vorbisFile.dll
MOD - [2003.11.16 10:48:00 | 001,060,864 | ---- | M] () -- C:\Program Files (x86)\Rockstar Games\GTA San Andreas\vorbis.dll
MOD - [2003.11.15 17:54:18 | 000,036,864 | ---- | M] () -- C:\Program Files (x86)\Rockstar Games\GTA San Andreas\ogg.dll

========== Services (SafeList) ==========

SRV:64bit: - [2014.01.11 18:24:53 | 000,050,344 | ---- | M] (AVAST Software) [Auto | Running] -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe -- (avast! Antivirus)
SRV:64bit: - [2013.11.26 10:18:09 | 000,111,616 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\IEEtwCollector.exe -- (IEEtwCollectorService)
SRV:64bit: - [2013.11.23 20:35:10 | 000,239,176 | ---- | M] (Realtek Semiconductor) [Auto | Running] -- C:\Program Files\Realtek\Audio\HDA\RTKAUDIOSERVICE64.EXE -- (RtkAudioService)
SRV:64bit: - [2013.10.10 23:54:28 | 000,144,152 | ---- | M] (SUPERAntiSpyware.com) [Auto | Running] -- C:\Program Files\SUPERAntiSpyware\SASCore64.exe -- (!SASCORE)
SRV:64bit: - [2013.05.27 06:50:47 | 001,011,712 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV:64bit: - [2013.04.30 04:52:38 | 000,238,080 | ---- | M] (AMD) [Auto | Running] -- C:\Windows\SysNative\atiesrxx.exe -- (AMD External Events Utility)
SRV:64bit: - [2013.04.29 22:25:22 | 000,361,984 | ---- | M] (Advanced Micro Devices, Inc.) [Auto | Running] -- C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe -- (AMD FUEL Service)
SRV:64bit: - [2010.07.21 13:33:00 | 000,103,992 | ---- | M] (Hewlett-Packard Company) [Auto | Running] -- C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe -- (HP Wireless Assistant Service)
SRV:64bit: - [2009.11.18 03:14:26 | 000,098,208 | ---- | M] (Andrea Electronics Corporation) [Auto | Running] -- C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe -- (AERTFilters)
SRV - [2014.01.25 13:16:29 | 002,151,744 | ---- | M] (IObit) [Auto | Stopped] -- C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe -- (LiveUpdateSvc)
SRV - [2013.12.17 11:38:33 | 005,341,536 | ---- | M] (TeamViewer GmbH) [Auto | Running] -- C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe -- (TeamViewer9)
SRV - [2013.12.11 14:37:34 | 000,257,416 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2013.11.29 16:20:42 | 002,210,640 | ---- | M] (LogMeIn Inc.) [Auto | Running] -- C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe -- (Hamachi2Svc)
SRV - [2013.10.23 08:15:08 | 000,172,192 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files (x86)\Skype\Updater\Updater.exe -- (SkypeUpdate)
SRV - [2013.10.11 11:51:18 | 000,377,104 | ---- | M] (LogMeIn, Inc.) [Auto | Running] -- C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe -- (LMIGuardianSvc)
SRV - [2013.08.28 22:47:18 | 000,563,624 | ---- | M] (Valve Corporation) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Steam\SteamService.exe -- (Steam Client Service)
SRV - [2013.05.08 18:29:44 | 000,023,552 | ---- | M] (Fork Ltd.) [Auto | Running] -- C:\Prey\platform\windows\cronsvc.exe -- (CronService)
SRV - [2013.04.13 07:09:59 | 000,115,608 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2013.04.04 13:50:32 | 000,701,512 | ---- | M] (Malwarebytes Corporation) [Auto | Stopped] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe -- (MBAMService)
SRV - [2013.04.04 13:50:32 | 000,418,376 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe -- (MBAMScheduler)
SRV - [2012.12.17 14:46:50 | 000,137,488 | ---- | M] (Futuremark Corporation) [On_Demand | Stopped] -- C:\Program Files (x86)\Futuremark\Futuremark SystemInfo\FMSISvc.exe -- (Futuremark SystemInfo Service)
SRV - [2012.09.27 11:55:16 | 000,086,528 | ---- | M] (Hewlett-Packard Company) [Auto | Running] -- C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSA_Service.exe -- (HP Support Assistant Service)
SRV - [2012.07.09 00:40:10 | 000,104,912 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2012.03.05 12:38:38 | 000,035,200 | ---- | M] (Hewlett-Packard Development Company, L.P.) [Auto | Running] -- C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe -- (HPWMISVC)
SRV - [2011.05.09 17:28:38 | 000,146,592 | ---- | M] (Atheros) [Auto | Running] -- C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe -- (Atheros Bt&Wlan Coex Agent)
SRV - [2011.05.09 17:27:52 | 000,080,032 | ---- | M] (Atheros Commnucations) [Auto | Running] -- C:\Program Files (x86)\Bluetooth Suite\AdminService.exe -- (AtherosSvc)
SRV - [2011.02.01 00:42:40 | 001,127,448 | ---- | M] (PDF Complete Inc) [Auto | Running] -- C:\Program Files (x86)\PDF Complete\pdfsvc.exe -- (pdfcDispatcher)
SRV - [2010.02.19 13:37:14 | 000,517,096 | ---- | M] (Adobe Systems Incorporated) [Auto | Stopped] -- C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe -- (SwitchBoard)
SRV - [2009.06.10 22:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)
SRV - [2000.01.01 01:00:00 | 002,451,456 | ---- | M] (Realsil Microelectronics Inc.) [Auto | Running] -- C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe -- (IconMan_R)

========== Driver Services (SafeList) ==========

DRV:64bit: - [2014.01.11 18:25:50 | 000,079,672 | ---- | M] (AVAST Software) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\aswstm.sys -- (aswStm)
DRV:64bit: - [2014.01.11 18:24:57 | 001,034,464 | ---- | M] (AVAST Software) [File_System | System | Running] -- C:\Windows\SysNative\drivers\aswSnx.sys -- (aswSnx)
DRV:64bit: - [2014.01.11 18:24:57 | 000,422,216 | ---- | M] (AVAST Software) [File_System | System | Running] -- C:\Windows\SysNative\drivers\aswSP.sys -- (aswSP)
DRV:64bit: - [2014.01.11 18:24:57 | 000,207,904 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\aswVmm.sys -- (aswVmm)
DRV:64bit: - [2014.01.11 18:24:57 | 000,065,776 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\aswRvrt.sys -- (aswRvrt)
DRV:64bit: - [2014.01.11 18:24:56 | 000,092,544 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\aswRdr2.sys -- (aswRdr)
DRV:64bit: - [2014.01.11 18:24:56 | 000,078,648 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\Windows\SysNative\drivers\aswMonFlt.sys -- (aswMonFlt)
DRV:64bit: - [2014.01.11 18:24:51 | 000,044,640 | ---- | M] (The OpenVPN Project) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\aswTap.sys -- (aswTap)
DRV:64bit: - [2013.11.23 20:37:15 | 000,883,928 | ---- | M] (Realtek ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Rt64win7.sys -- (RTL8167)
DRV:64bit: - [2013.11.13 11:51:44 | 000,042,184 | ---- | M] (Anchorfree Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\taphss6.sys -- (taphss6)
DRV:64bit: - [2013.09.14 10:19:35 | 000,834,544 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\sptd.sys -- (sptd)
DRV:64bit: - [2013.07.01 09:40:32 | 000,019,456 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\rdpvideominiport.sys -- (RdpVideoMiniport)
DRV:64bit: - [2013.07.01 09:40:30 | 000,057,856 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV:64bit: - [2013.07.01 09:40:29 | 000,030,208 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbGD.sys -- (TsUsbGD)
DRV:64bit: - [2013.05.29 21:45:26 | 000,283,200 | ---- | M] (DT Soft Ltd) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\dtsoftbus01.sys -- (dtsoftbus01)
DRV:64bit: - [2013.04.30 05:16:04 | 011,922,944 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\atikmdag.sys -- (amdkmdag)
DRV:64bit: - [2013.04.30 03:48:14 | 000,359,936 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\atikmpag.sys -- (amdkmdap)
DRV:64bit: - [2013.04.04 13:50:32 | 000,025,928 | ---- | M] (Malwarebytes Corporation) [File_System | On_Demand | Running] -- C:\Windows\SysNative\drivers\mbam.sys -- (MBAMProtector)
DRV:64bit: - [2012.11.28 18:49:00 | 000,035,112 | ---- | M] (TeamViewer GmbH) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\teamviewervpn.sys -- (teamviewervpn)
DRV:64bit: - [2012.10.24 18:31:18 | 003,802,112 | ---- | M] (Qualcomm Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\athrx.sys -- (athr)
DRV:64bit: - [2012.07.24 21:11:54 | 000,041,704 | ---- | M] (AnchorFree Inc.) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\hssdrv6.sys -- (HssDRV6)
DRV:64bit: - [2012.07.24 21:11:52 | 000,038,632 | ---- | M] (AnchorFree Inc) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\taphss.sys -- (taphss)
DRV:64bit: - [2012.05.14 07:12:30 | 000,096,896 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\AtihdW76.sys -- (AtiHDAudioService)
DRV:64bit: - [2012.03.05 15:04:30 | 000,053,888 | ---- | M] (Advanced Micro Devices) [Kernel | Auto | Running] -- C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\aoddriver2.sys -- (AODDriver4.1)
DRV:64bit: - [2012.03.01 07:46:16 | 000,023,408 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\Windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
DRV:64bit: - [2011.12.28 05:14:38 | 000,084,808 | ---- | M] (FTDI Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ftser2k.sys -- (FTSER2K)
DRV:64bit: - [2011.12.28 05:14:38 | 000,069,192 | ---- | M] (FTDI Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ftdibus.sys -- (FTDIBUS)
DRV:64bit: - [2011.08.03 19:58:39 | 000,107,904 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:64bit: - [2011.08.03 19:58:39 | 000,027,008 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:64bit: - [2011.07.22 17:26:56 | 000,014,928 | ---- | M] (SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | System | Running] -- C:\Program Files\SUPERAntiSpyware\sasdifsv64.sys -- (SASDIFSV)
DRV:64bit: - [2011.07.12 22:55:18 | 000,012,368 | ---- | M] (SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | System | Running] -- C:\Program Files\SUPERAntiSpyware\saskutil64.sys -- (SASKUTIL)
DRV:64bit: - [2011.05.09 17:28:04 | 000,281,760 | ---- | M] (Atheros) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\btfilter.sys -- (BtFilter)
DRV:64bit: - [2011.05.09 17:28:04 | 000,201,376 | ---- | M] (Atheros) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\btath_hcrp.sys -- (BTATH_HCRP)
DRV:64bit: - [2011.05.09 17:28:04 | 000,154,272 | ---- | M] (Atheros) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\btath_rcp.sys -- (BTATH_RCP)
DRV:64bit: - [2011.05.09 17:28:04 | 000,055,456 | ---- | M] (Atheros) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\btath_lwflt.sys -- (BTATH_LWFLT)
DRV:64bit: - [2011.05.09 17:28:04 | 000,036,000 | ---- | M] (Atheros) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\btath_flt.sys -- (AthBTPort)
DRV:64bit: - [2011.05.09 17:28:02 | 000,298,656 | ---- | M] (Atheros) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\btath_a2dp.sys -- (BTATH_A2DP)
DRV:64bit: - [2011.05.09 17:28:02 | 000,029,344 | ---- | M] (Atheros) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\btath_bus.sys -- (BTATH_BUS)
DRV:64bit: - [2011.02.25 18:12:04 | 002,793,568 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\athwx.sys -- (AR5416)
DRV:64bit: - [2011.02.09 16:58:06 | 000,031,088 | ---- | M] (CyberLink Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\clwvd.sys -- (clwvd)
DRV:64bit: - [2010.12.21 01:20:02 | 001,402,416 | ---- | M] (Synaptics Incorporated) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\SynTP.sys -- (SynTP)
DRV:64bit: - [2010.12.16 11:06:46 | 000,047,232 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\usbfilter.sys -- (usbfilter)
DRV:64bit: - [2010.11.21 04:23:47 | 000,109,056 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\sdbus.sys -- (sdbus)
DRV:64bit: - [2010.11.21 04:23:47 | 000,078,720 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:64bit: - [2010.06.17 15:15:36 | 000,016,440 | ---- | M] (Advanced Micro Devices Inc.) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\AtiPcie64.sys -- (AtiPcie)
DRV:64bit: - [2010.05.06 14:21:46 | 000,125,456 | ---- | M] (ATI Technologies, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\AtiHdmi.sys -- (AtiHdmiService)
DRV:64bit: - [2010.02.25 17:51:02 | 000,029,696 | ---- | M] (The OpenVPN Project) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\tap0901.sys -- (tap0901)
DRV:64bit: - [2010.02.18 08:18:24 | 000,046,136 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\amdiox64.sys -- (amdiox64)
DRV:64bit: - [2009.07.14 02:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:64bit: - [2009.07.14 02:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:64bit: - [2009.07.14 02:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:64bit: - [2009.06.10 22:01:11 | 001,485,312 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\VSTDPV6.SYS -- (SrvHsfV92)
DRV:64bit: - [2009.06.10 22:01:11 | 000,740,864 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\VSTCNXT6.SYS -- (SrvHsfWinac)
DRV:64bit: - [2009.06.10 22:01:11 | 000,292,864 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\VSTAZL6.SYS -- (SrvHsfHDA)
DRV:64bit: - [2009.06.10 21:35:35 | 000,408,960 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\nvm62x64.sys -- (NVENETFD)
DRV:64bit: - [2009.06.10 21:34:38 | 001,311,232 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\BCMWL664.SYS -- (BCM43XX)
DRV:64bit: - [2009.06.10 21:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:64bit: - [2009.06.10 21:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:64bit: - [2009.06.10 21:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:64bit: - [2009.06.10 21:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
DRV:64bit: - [2009.03.18 17:35:42 | 000,033,856 | ---- | M] (LogMeIn, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\hamachi.sys -- (hamachi)
DRV:64bit: - [2008.02.22 18:54:00 | 000,019,496 | ---- | M] (GEAR Software Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\GEARAspiWDM.sys -- (GearAspiWDM)
DRV:64bit: - [2005.09.23 21:18:34 | 000,261,120 | ---- | M] (Pinnacle Systems GmbH) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\MarvinBus64.sys -- (MarvinBus)
DRV:64bit: - [2000.01.01 01:00:00 | 000,339,600 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\RtsPStor.sys -- (RSPCIESTOR)
DRV:64bit: - [2000.01.01 01:00:00 | 000,079,488 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amd_sata.sys -- (amd_sata)
DRV:64bit: - [2000.01.01 01:00:00 | 000,040,064 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amd_xata.sys -- (amd_xata)
DRV - [2013.10.17 15:03:42 | 000,031,136 | ---- | M] (REALiX(tm)) [Kernel | System | Running] -- C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS -- (HWiNFO32)
DRV - [2012.11.13 20:53:00 | 000,014,544 | ---- | M] (OpenLibSys.org) [File_System | On_Demand | Stopped] -- C:\Program Files (x86)\Razer\Razer Game Booster\Driver\WinRing0x64.sys -- (WinRing0_1_2_0)
DRV - [2009.07.14 02:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount)
DRV - [2008.09.08 12:05:56 | 000,014,352 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Program Files (x86)\RMClock\RTCore64.sys -- (RTCore64)

========== Standard Registry (SafeList) ==========

========== Internet Explorer ==========

IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page =
IE:64bit: - HKLM\..\SearchScopes,DefaultScope =
IE:64bit: - HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
IE - HKLM\..\SearchScopes,DefaultScope =
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC

IE - HKU\.DEFAULT\..\SearchScopes,DefaultScope =
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\..\SearchScopes,DefaultScope =
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-19\..\SearchScopes,DefaultScope =

IE - HKU\S-1-5-20\..\SearchScopes,DefaultScope =

IE - HKU\S-1-5-21-1617569673-3034970362-4137664275-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Before =
IE - HKU\S-1-5-21-1617569673-3034970362-4137664275-1001\..\SearchScopes,DefaultScope =
IE - HKU\S-1-5-21-1617569673-3034970362-4137664275-1001\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..browser.search.suggest.enabled: true
FF - prefs.js..extensions.enabledAddons: ffaddon%40vagex.com:1.5.7
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..network.proxy.type:
FF - user.js - File not found

FF:64bit: - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF64_11_9_900_170.dll File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF:64bit: - HKLM\Software\MozillaPlugins\adobe.com/AdobeAAMDetect: C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll (Adobe Systems)
FF:64bit: - HKLM\Software\MozillaPlugins\adobe.com/AdobeExManDetect: C:\Program Files (x86)\Adobe\Adobe Extension Manager CS6\Win64Plugin\npAdobeExManDetectX64.dll (Adobe Systems)
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_170.dll ()
FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.25.2: C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.25.2: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3508.1109: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@ngm.nexoneu.com/NxGame: C:\ProgramData\NexonEU\NGM\npnxgameEU.dll (Nexon)
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.0.8: C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF - HKLM\Software\MozillaPlugins\adobe.com/AdobeAAMDetect: C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll (Adobe Systems)
FF - HKLM\Software\MozillaPlugins\adobe.com/AdobeExManDetect: C:\Program Files (x86)\Adobe\Adobe Extension Manager CS6\npAdobeExManDetectX86.dll (Adobe Systems)
FF - HKCU\Software\MozillaPlugins\@talk.google.com/GoogleTalkPlugin: C:\Users\JAKUB\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll (Google)
FF - HKCU\Software\MozillaPlugins\@talk.google.com/O1DPlugin: C:\Users\JAKUB\AppData\Roaming\Mozilla\plugins\npo1d.dll (Google)
FF - HKCU\Software\MozillaPlugins\@talk.google.com/O3DPlugin: C:\Users\JAKUB\AppData\Roaming\Mozilla\plugins\npgtpo3dautoplugin.dll ()
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Users\JAKUB\AppData\Local\Google\Update\1.3.21.153\npGoogleUpdate3.dll File not found
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Users\JAKUB\AppData\Local\Google\Update\1.3.21.153\npGoogleUpdate3.dll File not found
FF - HKCU\Software\MozillaPlugins\@unity3d.com/UnityPlayer,version=1.0: C:\Users\JAKUB\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF - HKCU\Software\MozillaPlugins\electronicarts.com/GameFacePlugin: C:\Users\JAKUB\AppData\Roaming\Electronic Arts\Game Face\npGameFacePlugin.dll (Electronic Arts)

64bit-FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\eplgTb@eset.com: C:\PROGRAM FILES\ESET\ESET SMART SECURITY\MOZILLA THUNDERBIRD
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 20.0.1\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2013.12.07 22:07:16 | 000,000,000 | ---D | M]

[2013.12.14 16:13:20 | 000,000,000 | ---D | M] (No name found) -- C:\Users\JAKUB\AppData\Roaming\Mozilla\Firefox\Profiles\4anqzj7d.default\extensions
[2013.12.14 16:13:21 | 000,000,000 | ---D | M] (Seznam liĹˇtiÄŤka) -- C:\Users\JAKUB\AppData\Roaming\Mozilla\Firefox\Profiles\4anqzj7d.default\extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}
[2013.12.22 21:04:13 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\extensions
[2013.08.19 18:27:10 | 000,000,000 | ---D | M] (Skype Click to Call) -- C:\Program Files (x86)\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
[2013.12.14 16:29:47 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\browser\extensions
[2013.12.14 16:29:47 | 000,000,000 | ---D | M] (Hotspot Shield Extension) -- C:\Program Files (x86)\Mozilla Firefox\browser\extensions\afproxy@anchorfree.com
File not found (No name found) -- C:\PROGRAM FILES (X86)\IOBIT APPS TOOLBAR\FF
File not found (No name found) -- C:\USERS\JAKUB\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4ANQZJ7D.DEFAULT\EXTENSIONS\{37964A3C-4EE8-47B1-8321-34DE2C39BA4D}
File not found (No name found) -- C:\USERS\JAKUB\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4ANQZJ7D.DEFAULT\EXTENSIONS\ASCSURFINGPROTECTION@IOBIT.COM
File not found (No name found) -- C:\USERS\JAKUB\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4ANQZJ7D.DEFAULT\EXTENSIONS\FFADDON@VAGEX.COM
[2013.04.13 07:09:59 | 000,263,064 | ---- | M] (Mozilla Foundation) -- C:\Program Files (x86)\mozilla firefox\components\browsercomps.dll
[2013.02.16 09:25:21 | 000,002,421 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\heureka-cz.xml
[2013.02.16 09:25:21 | 000,000,851 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\jyxo-cz.xml
[2013.02.16 09:25:21 | 000,001,580 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\seznam-cz.xml
[2013.02.16 09:25:21 | 000,000,867 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\slunecnice-cz.xml
[2013.02.16 09:25:21 | 000,001,392 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\wikipedia-cz.xml

========== Chrome ==========

CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}{google:omniboxStartMarginParameter}ie={inputEncoding}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client={google:suggestClient}&q={searchTerms}&{google:cursorPosition}{google:zeroPrefixUrl}sugkey={google:suggestAPIKeyParameter},
CHR - homepage: http://www.seznam.cz/
CHR - plugin: Shockwave Flash (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\29.0.1547.62\PepperFlash\pepflashplayer.dll
CHR - plugin: Chrome Remote Desktop Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\29.0.1547.62\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\29.0.1547.62\pdf.dll
CHR - plugin: Microsoft Office 2010 (Enabled) = C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL
CHR - plugin: Microsoft Office 2010 (Enabled) = C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL
CHR - plugin: AdobeExManDetect (Enabled) = C:\Program Files (x86)\Adobe\Adobe Extension Manager CS6\npAdobeExManDetectX86.dll
CHR - plugin: AdobeAAMDetect (Enabled) = C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll
CHR - plugin: Google Earth Plugin (Enabled) = C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll
CHR - plugin: Java(TM) Platform SE 7 U25 (Enabled) = C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll
CHR - plugin: VLC Web Plugin (Enabled) = C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
CHR - plugin: Windows Live\u0099 Photo Gallery (Enabled) = C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
CHR - plugin: Nexon Game Controller (Enabled) = C:\ProgramData\NexonEU\NGM\npnxgameEU.dll
CHR - plugin: Unity Player (Enabled) = C:\Users\JAKUB\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll
CHR - plugin: Game Face Plugin (Enabled) = C:\Users\JAKUB\AppData\Roaming\Electronic Arts\Game Face\npGameFacePlugin.dll
CHR - plugin: Google Talk Plugin (Enabled) = C:\Users\JAKUB\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll
CHR - plugin: Google Talk Plugin Video Accelerator (Enabled) = C:\Users\JAKUB\AppData\Roaming\Mozilla\plugins\npgtpo3dautoplugin.dll
CHR - plugin: Google Talk Plugin Video Renderer (Enabled) = C:\Users\JAKUB\AppData\Roaming\Mozilla\plugins\npo1d.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_170.dll
CHR - plugin: Java Deployment Toolkit 7.0.250.17 (Enabled) = C:\Windows\SysWOW64\npDeployJava1.dll
CHR - plugin: Silverlight Plug-In (Enabled) = c:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll
CHR - Extension: Dokumenty Google = C:\Users\JAKUB\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\
CHR - Extension: Disk Google = C:\Users\JAKUB\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\
CHR - Extension: YouTube = C:\Users\JAKUB\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\
CHR - Extension: Vyhled\u00E1v\u00E1n\u00ED Google = C:\Users\JAKUB\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\
CHR - Extension: Lamborghini Sesto Elemento Theme = C:\Users\JAKUB\AppData\Local\Google\Chrome\User Data\Default\Extensions\dappigdjllcnkkoacaoolciaolaaiemb\1.0_0\
CHR - Extension: Skype Click to Call = C:\Users\JAKUB\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl\6.11.0.13348_0\
CHR - Extension: Pen\u011B\u017Eenka Google = C:\Users\JAKUB\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.0_0\
CHR - Extension: Gmail = C:\Users\JAKUB\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1\

O1 HOSTS File: ([2014.01.25 21:06:00 | 000,000,741 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2:64bit: - BHO: (ExplorerWnd Helper) - {10921475-03CE-4E04-90CE-E2E7EF20C814} - C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallExplorer64.dll (IObit)
O2:64bit: - BHO: (avast! Online Security) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
O2 - BHO: (CIESpeechBHO Class) - {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll (Atheros Commnucations)
O2 - BHO: (avast! Online Security) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
O3:64bit: - HKLM\..\Toolbar: (avast! Online Security) - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
O3 - HKLM\..\Toolbar: (avast! Online Security) - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
O4 - HKLM..\Run: [AvastUI.exe] C:\Program Files\AVAST Software\Avast\AvastUI.exe (AVAST Software)
O4:64bit: - HKLM..\RunOnce: [NCPluginUpdater] C:\Program Files (x86)\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\NCPluginUpdater.exe (Hewlett-Packard)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 255
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0
O7 - HKU\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-19\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-20\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-1617569673-3034970362-4137664275-1001\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-1617569673-3034970362-4137664275-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 255
O7 - HKU\S-1-5-21-1617569673-3034970362-4137664275-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoLowDiskSpaceChecks = 1
O7 - HKU\S-1-5-21-1617569673-3034970362-4137664275-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O9:64bit: - Extra 'Tools' menuitem : Send by Bluetooth to - {7815BE26-237D-41A8-A98F-F7BD75F71086} - Reg Error: Value error. File not found
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.7.0/jinsta ... s-i586.cab (Java Plug-in 10.25.2)
O16 - DPF: {CAFEEFAC-0017-0000-0025-ABCDEFFEDCBA} http://java.sun.com/update/1.7.0/jinsta ... s-i586.cab (Java Plug-in 1.7.0_25)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.7.0/jinsta ... s-i586.cab (Java Plug-in 1.7.0_25)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{459DDA32-60F6-4889-8E3B-BAFEFB4FBD76}: DhcpNameServer = 78.157.167.7
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{B895F7A9-AEF4-4DCB-9CFA-ADBF9B264795}: DhcpNameServer = 77.234.40.79
O18:64bit: - Protocol\Handler\skype4com - No CLSID value found
O18 - Protocol\Handler\ms-help - No CLSID value found
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O20:64bit: - HKLM Winlogon: Shell - (Explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysWOW64\userinit.exe (Microsoft Corporation)
O32 - HKLM CDRom: AutoRun - 1
O34 - HKLM BootExecute: (autocheck autochk *)
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = ComFile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = ComFile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

CREATERESTOREPOINT
Restore point Set: OTL Restore Point

Drivers32:64bit: msacm.bdmpeg - bdmpega64.acm ()
Drivers32:64bit: msacm.l3acm - C:\Windows\System32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32:64bit: VIDC.FICV - ficvdec_x64.dll ()
Drivers32:64bit: VIDC.FPS1 - frapsv64.dll (Beepa P/L)
Drivers32:64bit: vidc.mjpg - bdmjpeg64.dll ()
Drivers32:64bit: vidc.mpeg - bdmpegv64.dll ()
Drivers32:64bit: vidc.xtor - DxtoryCodec.dll (Dxtory Software)
Drivers32: msacm.bdmpeg - C:\Windows\SysWow64\bdmpega.acm ()
Drivers32: msacm.divxa32 - C:\Windows\SysWow64\DivXa32.acm (Packed With Joy !)
Drivers32: msacm.l3acm - C:\Windows\SysWOW64\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: vidc.cvid - C:\Windows\SysWow64\iccvid.dll (Radius Inc.)
Drivers32: VIDC.FICV - C:\Windows\SysWow64\ficvdec_x86.dll ()
Drivers32: VIDC.FMVC - C:\Windows\SysWow64\fmcodec.DLL (Fox Magic Software)
Drivers32: vidc.mjpg - C:\Windows\SysWow64\bdmjpeg.dll ()
Drivers32: vidc.mpeg - C:\Windows\SysWow64\bdmpegv.dll ()
Drivers32: vidc.VP60 - C:\Windows\SysWOW64\vp6vfw.dll (On2.com)
Drivers32: vidc.VP61 - C:\Windows\SysWOW64\vp6vfw.dll (On2.com)
Drivers32: vidc.x264 - C:\Program Files (x86)\x264vfw\x264vfw.dll ()
Drivers32: vidc.xtor - C:\Windows\SysWow64\DxtoryCodec.dll (Dxtory Software)
Drivers32: vidc.XVID - C:\Windows\SysWow64\xvidvfw.dll ()
PhysicalDisk0 MBR saved to C:\PhysicalMBR.bin

========== Files/Folders - Created Within 30 Days ==========

[2014.01.26 09:04:00 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\JAKUB\Desktop\OTL.exe
[2014.01.25 21:10:36 | 000,000,000 | ---D | C] -- C:\Users\JAKUB\AppData\Local\VirtualStore
[2014.01.25 19:51:46 | 000,000,000 | ---D | C] -- C:\Users\JAKUB\Desktop\RK_Quarantine
[2014.01.25 13:16:55 | 000,000,000 | ---D | C] -- C:\Users\JAKUB\AppData\Roaming\ProductData
[2014.01.25 13:16:34 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IObit Uninstaller
[2014.01.25 13:16:32 | 000,000,000 | ---D | C] -- C:\ProgramData\ProductData
[2014.01.25 13:16:28 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\IObit
[2014.01.25 11:57:49 | 000,000,000 | ---D | C] -- C:\Users\JAKUB\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\uTorrent
[2014.01.25 11:54:48 | 000,000,000 | ---D | C] -- C:\Users\JAKUB\AppData\Local\Opera
[2014.01.24 20:46:06 | 000,000,000 | ---D | C] -- C:\rsit
[2014.01.24 14:12:30 | 000,000,000 | ---D | C] -- C:\Users\JAKUB\AppData\Local\Apple
[2014.01.24 14:03:29 | 000,000,000 | ---D | C] -- C:\Users\JAKUB\AppData\Local\LogMeIn Hamachi
[2014.01.24 14:03:29 | 000,000,000 | ---D | C] -- C:\Users\JAKUB\AppData\Local\LogMeIn
[2014.01.23 20:51:52 | 000,388,608 | ---- | C] (Trend Micro Inc.) -- C:\Users\JAKUB\Desktop\hijackthis.exe
[2014.01.23 14:37:54 | 000,000,000 | ---D | C] -- C:\Users\JAKUB\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome
[2014.01.23 14:27:28 | 000,000,000 | ---D | C] -- C:\Users\JAKUB\AppData\Local\Adobe
[2014.01.23 14:12:57 | 000,000,000 | ---D | C] -- C:\Users\JAKUB\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FLV Player
[2014.01.19 16:12:31 | 000,000,000 | ---D | C] -- C:\Users\JAKUB\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\San Andreas Multiplayer
[2014.01.19 10:03:10 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\GTA San Andreas User Files
[2014.01.19 10:02:30 | 000,000,000 | ---D | C] -- C:\Users\JAKUB\Documents\GTA San Andreas User Files
[2014.01.18 22:23:10 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dxtory2.0
[2014.01.18 22:23:09 | 008,300,544 | ---- | C] (Dxtory Software) -- C:\Windows\SysWow64\DxtoryCodec.dll
[2014.01.18 22:23:09 | 008,043,008 | ---- | C] (Dxtory Software) -- C:\Windows\SysNative\DxtoryCodec.dll
[2014.01.15 15:19:53 | 000,325,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\usbport.sys
[2014.01.15 15:19:53 | 000,007,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\usbd.sys
[2014.01.15 15:19:49 | 000,376,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\netio.sys
[2014.01.11 18:26:13 | 000,000,000 | ---D | C] -- C:\Users\JAKUB\AppData\Roaming\AVAST Software
[2014.01.11 18:26:00 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast
[2014.01.11 18:25:25 | 000,079,672 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswstm.sys
[2014.01.11 18:25:23 | 001,034,464 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswSnx.sys
[2014.01.11 18:25:23 | 000,422,216 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswSP.sys
[2014.01.11 18:25:20 | 000,078,648 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswMonFlt.sys
[2014.01.11 18:25:16 | 000,092,544 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswRdr2.sys
[2014.01.11 18:24:56 | 000,043,152 | ---- | C] (AVAST Software) -- C:\Windows\avastSS.scr
[2014.01.11 18:24:51 | 000,044,640 | ---- | C] (The OpenVPN Project) -- C:\Windows\SysNative\drivers\aswTap.sys
[2014.01.11 18:21:36 | 000,000,000 | ---D | C] -- C:\ProgramData\AVAST Software
[2014.01.11 08:21:57 | 000,000,000 | --SD | C] -- C:\ProgramData\Shared Space
[2014.01.11 08:21:16 | 000,000,000 | ---D | C] -- C:\ProgramData\COMODO
[2014.01.11 08:21:05 | 000,000,000 | ---D | C] -- C:\Program Files\COMODO
[2014.01.11 08:20:56 | 000,000,000 | ---D | C] -- C:\ProgramData\Comodo Downloader
[2014.01.04 17:40:53 | 012,625,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wmploc.DLL
[2014.01.04 17:40:52 | 012,625,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wmploc.DLL
[2014.01.04 17:40:52 | 011,410,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wmp.dll
[2014.01.04 17:40:50 | 014,631,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wmp.dll
[2014.01.04 12:43:52 | 000,335,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msieftp.dll
[2014.01.04 12:43:51 | 000,465,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WMPhoto.dll
[2014.01.04 12:43:51 | 000,417,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\WMPhoto.dll
[2014.01.04 12:43:51 | 000,301,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msieftp.dll
[2014.01.04 12:43:50 | 000,155,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\ataport.sys
[2014.01.04 12:43:44 | 001,930,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\authui.dll
[2014.01.04 12:43:44 | 001,796,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\authui.dll
[2014.01.04 12:43:44 | 000,197,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\credui.dll
[2014.01.04 12:43:44 | 000,190,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SmartcardCredentialProvider.dll
[2014.01.04 12:43:44 | 000,152,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\SmartcardCredentialProvider.dll
[2014.01.04 12:43:34 | 000,102,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\davclnt.dll
[2014.01.04 12:43:29 | 000,461,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\scavengeui.dll
[2014.01.02 19:27:35 | 000,000,000 | ---D | C] -- C:\Users\JAKUB\Desktop\FIFA14
[2014.01.02 19:23:04 | 000,000,000 | ---D | C] -- C:\Users\JAKUB\Documents\Plocha
[2013.12.30 08:09:06 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\FIFA 14
[1 C:\Windows\SysNative\*.tmp files -> C:\Windows\SysNative\*.tmp -> ]
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2014.01.26 09:08:19 | 000,000,512 | ---- | M] () -- C:\PhysicalMBR.bin
[2014.01.26 09:04:04 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\JAKUB\Desktop\OTL.exe
[2014.01.26 08:53:00 | 000,000,914 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2014.01.26 08:33:30 | 000,032,064 | ---- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2014.01.26 08:33:30 | 000,032,064 | ---- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2014.01.26 08:31:22 | 000,832,273 | ---- | M] () -- C:\Users\JAKUB\Desktop\RSITx64.exe
[2014.01.26 08:28:42 | 000,000,029 | ---- | M] () -- C:\Windows\SysWow64\TempWmicBatchFile.bat
[2014.01.26 08:24:12 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2014.01.26 08:23:48 | 3015,888,896 | -HS- | M] () -- C:\hiberfil.sys
[2014.01.25 19:50:47 | 003,792,384 | ---- | M] () -- C:\Users\JAKUB\Desktop\RogueKiller.exe
[2014.01.25 13:51:48 | 012,263,245 | ---- | M] () -- C:\Users\JAKUB\Desktop\Stadion.psd
[2014.01.25 13:16:35 | 000,001,192 | ---- | M] () -- C:\Users\Public\Desktop\IObit Uninstaller.lnk
[2014.01.25 11:57:50 | 000,000,931 | ---- | M] () -- C:\Users\JAKUB\Desktop\µTorrent.lnk
[2014.01.24 17:06:02 | 000,000,332 | ---- | M] () -- C:\Windows\tasks\HPCeeScheduleForJAKUB.job
[2014.01.23 20:51:55 | 000,388,608 | ---- | M] (Trend Micro Inc.) -- C:\Users\JAKUB\Desktop\hijackthis.exe
[2014.01.23 14:37:54 | 000,002,219 | ---- | M] () -- C:\Users\JAKUB\Desktop\Google Chrome.lnk
[2014.01.21 21:54:13 | 000,061,948 | ---- | M] () -- C:\Users\JAKUB\Desktop\74086_543319775775800_511213946_n.jpg
[2014.01.18 21:59:58 | 000,000,952 | ---- | M] () -- C:\Users\JAKUB\Desktop\Bandicam.lnk
[2014.01.16 14:40:19 | 005,184,160 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
[2014.01.11 18:25:50 | 000,079,672 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswstm.sys
[2014.01.11 18:24:57 | 001,034,464 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswSnx.sys
[2014.01.11 18:24:57 | 000,422,216 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswSP.sys
[2014.01.11 18:24:57 | 000,207,904 | ---- | M] () -- C:\Windows\SysNative\drivers\aswVmm.sys
[2014.01.11 18:24:57 | 000,065,776 | ---- | M] () -- C:\Windows\SysNative\drivers\aswRvrt.sys
[2014.01.11 18:24:56 | 000,334,136 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\aswBoot.exe
[2014.01.11 18:24:56 | 000,092,544 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswRdr2.sys
[2014.01.11 18:24:56 | 000,078,648 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswMonFlt.sys
[2014.01.11 18:24:56 | 000,043,152 | ---- | M] (AVAST Software) -- C:\Windows\avastSS.scr
[2014.01.11 18:24:51 | 000,044,640 | ---- | M] (The OpenVPN Project) -- C:\Windows\SysNative\drivers\aswTap.sys
[2014.01.11 18:21:32 | 000,001,912 | ---- | M] () -- C:\Windows\epplauncher.mif
[2013.12.30 08:09:00 | 000,001,143 | ---- | M] () -- C:\Program Files (x86)\FIFA 14 – zástupce.lnk
[1 C:\Windows\SysNative\*.tmp files -> C:\Windows\SysNative\*.tmp -> ]
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

========== Files Created - No Company Name ==========

[2014.01.26 09:08:19 | 000,000,512 | ---- | C] () -- C:\PhysicalMBR.bin
[2014.01.26 08:31:08 | 000,832,273 | ---- | C] () -- C:\Users\JAKUB\Desktop\RSITx64.exe
[2014.01.25 19:50:37 | 003,792,384 | ---- | C] () -- C:\Users\JAKUB\Desktop\RogueKiller.exe
[2014.01.25 13:39:20 | 012,263,245 | ---- | C] () -- C:\Users\JAKUB\Desktop\Stadion.psd
[2014.01.25 13:16:35 | 000,001,192 | ---- | C] () -- C:\Users\Public\Desktop\IObit Uninstaller.lnk
[2014.01.25 11:57:50 | 000,000,931 | ---- | C] () -- C:\Users\JAKUB\Desktop\µTorrent.lnk
[2014.01.23 14:37:54 | 000,002,219 | ---- | C] () -- C:\Users\JAKUB\Desktop\Google Chrome.lnk
[2014.01.21 21:54:05 | 000,061,948 | ---- | C] () -- C:\Users\JAKUB\Desktop\74086_543319775775800_511213946_n.jpg
[2014.01.18 22:23:43 | 000,000,184 | ---- | C] () -- C:\Users\JAKUB\Desktop\Dxtory.dxtorylic
[2014.01.18 21:59:58 | 000,000,952 | ---- | C] () -- C:\Users\JAKUB\Desktop\Bandicam.lnk
[2014.01.11 18:25:25 | 000,207,904 | ---- | C] () -- C:\Windows\SysNative\drivers\aswVmm.sys
[2014.01.11 18:25:24 | 000,065,776 | ---- | C] () -- C:\Windows\SysNative\drivers\aswRvrt.sys
[2013.12.30 08:09:00 | 000,001,143 | ---- | C] () -- C:\Program Files (x86)\FIFA 14 – zástupce.lnk
[2013.12.22 20:33:56 | 000,256,000 | ---- | C] () -- C:\Windows\PEV.exe
[2013.12.22 20:33:56 | 000,208,896 | ---- | C] () -- C:\Windows\MBR.exe
[2013.12.22 20:33:56 | 000,098,816 | ---- | C] () -- C:\Windows\sed.exe
[2013.12.22 20:33:56 | 000,080,412 | ---- | C] () -- C:\Windows\grep.exe
[2013.12.22 20:33:56 | 000,068,096 | ---- | C] () -- C:\Windows\zip.exe
[2013.12.22 16:59:31 | 000,001,374 | ---- | C] () -- C:\Windows\SysWow64\bash.exe.stackdump
[2013.12.05 20:47:26 | 000,000,161 | ---- | C] () -- C:\Windows\AutoKMS.ini
[2013.11.18 19:46:32 | 000,000,039 | ---- | C] () -- C:\Users\JAKUB\AppData\Roaming\TheHunterSettings_live.cfg
[2013.11.12 14:52:24 | 000,000,000 | ---- | C] () -- C:\Users\JAKUB\AppData\Roaming\Stardockfences_debug_snapshot.dat
[2013.11.03 20:23:49 | 000,001,018 | ---- | C] () -- C:\Windows\disney.ini
[2013.10.18 14:03:38 | 000,000,000 | ---- | C] () -- C:\Windows\ativpsrm.bin
[2013.09.15 11:09:33 | 000,000,207 | ---- | C] () -- C:\Windows\tweaking.com-regbackup-JAKUB-HP-Microsoft-Windows-7-Home-Premium-(64-bit).dat
[2013.09.14 20:14:13 | 000,000,132 | ---- | C] () -- C:\Users\JAKUB\AppData\Roaming\Adobe Formát PNG CS6 – předvolby
[2013.08.28 08:15:47 | 000,000,000 | ---- | C] () -- C:\Users\JAKUB\regbcm
[2013.08.12 08:35:28 | 000,000,000 | ---- | C] () -- C:\ProgramData\TEMP
[2013.08.05 07:15:08 | 000,066,104 | ---- | C] () -- C:\Windows\SysWow64\bdmpegv.dll
[2013.08.05 07:15:06 | 000,023,080 | ---- | C] () -- C:\Windows\SysWow64\bdmjpeg.dll
[2013.05.28 21:22:48 | 000,641,024 | ---- | C] () -- C:\Windows\SysWow64\ficvdec_x86.dll
[2013.05.06 17:54:57 | 000,000,000 | ---- | C] () -- C:\Windows\SysWow64\Access.dat
[2013.04.27 18:48:04 | 000,160,420 | ---- | C] () -- C:\Windows\SysWow64\mlfcache.dat
[2013.04.18 20:15:51 | 000,819,200 | ---- | C] () -- C:\Windows\SysWow64\xvidcore.dll
[2013.04.18 20:15:51 | 000,180,224 | ---- | C] () -- C:\Windows\SysWow64\xvidvfw.dll
[2013.03.29 03:13:14 | 000,798,734 | ---- | C] () -- C:\Windows\SysWow64\amdocl_ld32.exe
[2013.03.29 03:13:12 | 000,995,342 | ---- | C] () -- C:\Windows\SysWow64\amdocl_as32.exe
[2013.03.29 02:38:08 | 000,204,952 | ---- | C] () -- C:\Windows\SysWow64\ativvsvl.dat
[2013.03.29 02:38:08 | 000,157,144 | ---- | C] () -- C:\Windows\SysWow64\ativvsva.dat
[2013.02.22 18:24:29 | 001,540,756 | ---- | C] () -- C:\Windows\SysWow64\PerfStringBackup.INI
[2012.11.11 18:42:32 | 003,915,776 | ---- | C] () -- C:\Windows\SysWow64\ffmpeg.dll
[2012.11.11 18:41:14 | 000,271,360 | ---- | C] () -- C:\Windows\SysWow64\TomsMoComp_ff.dll
[2012.11.11 18:40:50 | 000,157,184 | ---- | C] () -- C:\Windows\SysWow64\ff_unrar.dll
[2012.11.11 18:40:48 | 001,525,760 | ---- | C] () -- C:\Windows\SysWow64\ff_samplerate.dll
[2012.11.11 18:40:48 | 000,211,968 | ---- | C] () -- C:\Windows\SysWow64\ff_libdts.dll
[2012.11.11 18:40:48 | 000,147,456 | ---- | C] () -- C:\Windows\SysWow64\ff_libmad.dll
[2012.11.11 18:40:48 | 000,114,688 | ---- | C] () -- C:\Windows\SysWow64\ff_liba52.dll
[2012.11.11 14:32:34 | 007,870,928 | ---- | C] () -- C:\Windows\SysWow64\avcodec-lav-54.dll
[2012.11.11 14:32:34 | 001,182,696 | ---- | C] () -- C:\Windows\SysWow64\avformat-lav-54.dll
[2012.11.11 14:32:34 | 000,382,120 | ---- | C] () -- C:\Windows\SysWow64\swscale-lav-2.dll
[2012.11.11 14:32:34 | 000,238,528 | ---- | C] () -- C:\Windows\SysWow64\avutil-lav-52.dll
[2012.11.11 14:32:34 | 000,183,976 | ---- | C] () -- C:\Windows\SysWow64\libbluray.dll
[2012.11.11 14:32:34 | 000,167,728 | ---- | C] () -- C:\Windows\SysWow64\avfilter-lav-3.dll
[2012.11.11 14:32:34 | 000,158,096 | ---- | C] () -- C:\Windows\SysWow64\avresample-lav-1.dll
[2012.09.29 23:47:28 | 000,000,178 | ---- | C] () -- C:\Windows\SysWow64\Formats.ini
[2012.04.18 18:39:10 | 000,028,672 | ---- | C] () -- C:\Windows\SysWow64\kdbsdk32.dll

========== ZeroAccess Check ==========

[2009.07.14 05:55:00 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
"" = C:\Windows\SysNative\shell32.dll -- [2013.07.26 03:24:57 | 014,172,672 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2013.07.26 02:55:59 | 012,872,704 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\fastprox.dll -- [2009.07.14 02:40:51 | 000,909,312 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\SysWow64\wbem\fastprox.dll -- [2010.11.21 04:24:25 | 000,606,208 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\wbemess.dll -- [2009.07.14 02:41:56 | 000,505,856 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]

========== LOP Check ==========

[2014.01.25 14:10:10 | 000,000,000 | ---D | M] -- C:\Users\JAKUB\AppData\Roaming\.minecraft
[2013.10.08 15:08:02 | 000,000,000 | ---D | M] -- C:\Users\JAKUB\AppData\Roaming\2K Sports
[2014.01.11 18:26:13 | 000,000,000 | ---D | M] -- C:\Users\JAKUB\AppData\Roaming\AVAST Software
[2013.07.25 10:00:17 | 000,000,000 | ---D | M] -- C:\Users\JAKUB\AppData\Roaming\BANDISOFT
[2013.11.15 18:24:55 | 000,000,000 | ---D | M] -- C:\Users\JAKUB\AppData\Roaming\DAEMON Tools Lite
[2013.09.28 20:47:12 | 000,000,000 | ---D | M] -- C:\Users\JAKUB\AppData\Roaming\DG
[2013.11.04 16:08:14 | 000,000,000 | ---D | M] -- C:\Users\JAKUB\AppData\Roaming\Disney Interactive Studios
[2013.10.18 15:30:08 | 000,000,000 | ---D | M] -- C:\Users\JAKUB\AppData\Roaming\Easy2Convert
[2013.11.26 20:59:26 | 000,000,000 | ---D | M] -- C:\Users\JAKUB\AppData\Roaming\Electronic Arts
[2013.12.08 19:29:44 | 000,000,000 | ---D | M] -- C:\Users\JAKUB\AppData\Roaming\FUEL
[2013.08.12 08:18:26 | 000,000,000 | ---D | M] -- C:\Users\JAKUB\AppData\Roaming\GlarySoft
[2013.07.26 07:37:37 | 000,000,000 | ---D | M] -- C:\Users\JAKUB\AppData\Roaming\HD Tune Pro
[2013.08.29 15:42:24 | 000,000,000 | ---D | M] -- C:\Users\JAKUB\AppData\Roaming\ICQ-Profile
[2014.01.25 13:16:50 | 000,000,000 | ---D | M] -- C:\Users\JAKUB\AppData\Roaming\IObit
[2013.08.03 19:05:22 | 000,000,000 | ---D | M] -- C:\Users\JAKUB\AppData\Roaming\JAM Software
[2013.07.25 10:00:19 | 000,000,000 | ---D | M] -- C:\Users\JAKUB\AppData\Roaming\LangSoft
[2013.07.25 10:05:23 | 000,000,000 | ---D | M] -- C:\Users\JAKUB\AppData\Roaming\Leadertech
[2013.11.10 21:42:12 | 000,000,000 | ---D | M] -- C:\Users\JAKUB\AppData\Roaming\Milestone
[2013.07.25 10:00:20 | 000,000,000 | ---D | M] -- C:\Users\JAKUB\AppData\Roaming\MINECRAFTinstall.net
[2013.08.12 08:19:15 | 000,000,000 | ---D | M] -- C:\Users\JAKUB\AppData\Roaming\Mirillis
[2013.11.24 18:43:59 | 000,000,000 | ---D | M] -- C:\Users\JAKUB\AppData\Roaming\OBS
[2013.09.08 17:52:41 | 000,000,000 | ---D | M] -- C:\Users\JAKUB\AppData\Roaming\OpenOffice
[2013.07.25 10:00:26 | 000,000,000 | ---D | M] -- C:\Users\JAKUB\AppData\Roaming\Opera
[2013.08.15 08:05:53 | 000,000,000 | ---D | M] -- C:\Users\JAKUB\AppData\Roaming\Origin
[2014.01.25 13:16:55 | 000,000,000 | ---D | M] -- C:\Users\JAKUB\AppData\Roaming\ProductData
[2013.10.29 15:30:58 | 000,000,000 | ---D | M] -- C:\Users\JAKUB\AppData\Roaming\Rainmeter
[2013.10.03 15:52:01 | 000,000,000 | ---D | M] -- C:\Users\JAKUB\AppData\Roaming\RBotPlus
[2013.08.31 13:34:32 | 000,000,000 | ---D | M] -- C:\Users\JAKUB\AppData\Roaming\Rublik
[2013.08.24 17:51:05 | 000,000,000 | ---D | M] -- C:\Users\JAKUB\AppData\Roaming\ScanMaster-ELM
[2013.12.16 21:52:20 | 000,000,000 | ---D | M] -- C:\Users\JAKUB\AppData\Roaming\Seznam.cz
[2013.08.18 08:27:33 | 000,000,000 | ---D | M] -- C:\Users\JAKUB\AppData\Roaming\skyz
[2013.12.07 21:12:16 | 000,000,000 | ---D | M] -- C:\Users\JAKUB\AppData\Roaming\Sony
[2013.12.03 16:50:16 | 000,000,000 | ---D | M] -- C:\Users\JAKUB\AppData\Roaming\Sony Creative Software Inc
[2013.09.06 21:17:40 | 000,000,000 | ---D | M] -- C:\Users\JAKUB\AppData\Roaming\SpinTires
[2013.11.26 01:54:01 | 000,000,000 | ---D | M] -- C:\Users\JAKUB\AppData\Roaming\SplitMediaLabs
[2013.12.15 21:24:14 | 000,000,000 | ---D | M] -- C:\Users\JAKUB\AppData\Roaming\Spotify
[2013.07.20 09:35:40 | 000,000,000 | ---D | M] -- C:\Users\JAKUB\AppData\Roaming\Stardock
[2013.07.25 10:00:27 | 000,000,000 | ---D | M] -- C:\Users\JAKUB\AppData\Roaming\SuperHideIP
[2013.12.26 15:47:22 | 000,000,000 | ---D | M] -- C:\Users\JAKUB\AppData\Roaming\TeamViewer
[2013.11.18 19:50:05 | 000,000,000 | ---D | M] -- C:\Users\JAKUB\AppData\Roaming\theHunter
[2013.11.17 18:41:59 | 000,000,000 | ---D | M] -- C:\Users\JAKUB\AppData\Roaming\TS3Client
[2013.07.25 10:00:27 | 000,000,000 | ---D | M] -- C:\Users\JAKUB\AppData\Roaming\Tunngle
[2013.08.12 09:24:36 | 000,000,000 | ---D | M] -- C:\Users\JAKUB\AppData\Roaming\Ubisoft
[2013.09.28 11:22:50 | 000,000,000 | ---D | M] -- C:\Users\JAKUB\AppData\Roaming\Uniblue
[2013.12.05 15:37:38 | 000,000,000 | ---D | M] -- C:\Users\JAKUB\AppData\Roaming\Unity
[2014.01.26 09:20:06 | 000,000,000 | ---D | M] -- C:\Users\JAKUB\AppData\Roaming\uTorrent
[2013.11.13 19:48:54 | 000,000,000 | ---D | M] -- C:\Users\JAKUB\AppData\Roaming\WinBatch
[2013.12.08 08:20:00 | 000,000,000 | ---D | M] -- C:\Users\JAKUB\AppData\Roaming\YouTube Downloader

========== Purity Check ==========

========== Custom Scans ==========

< >
[2009.07.14 06:08:49 | 000,000,006 | -H-- | C] () -- C:\Windows\Tasks\SA.DAT
[2009.07.14 06:08:49 | 000,032,576 | ---- | C] () -- C:\Windows\Tasks\SCHEDLGU.TXT
[2013.10.20 19:22:57 | 000,000,332 | ---- | C] () -- C:\Windows\Tasks\HPCeeScheduleForJAKUB.job
[2013.12.10 21:53:33 | 000,000,914 | ---- | C] () -- C:\Windows\Tasks\Adobe Flash Player Updater.job

< >

< MD5 for: AGP440.SYS >
[2009.07.14 02:52:21 | 000,061,008 | ---- | M] (Microsoft Corporation) MD5=608C14DBA7299D8CB6ED035A68A15799 -- C:\Windows\SysNative\drivers\AGP440.sys
[2009.07.14 02:52:21 | 000,061,008 | ---- | M] (Microsoft Corporation) MD5=608C14DBA7299D8CB6ED035A68A15799 -- C:\Windows\SysNative\DriverStore\FileRepository\machine.inf_amd64_neutral_a2f120466549d68b\AGP440.sys
[2009.07.14 02:52:21 | 000,061,008 | ---- | M] (Microsoft Corporation) MD5=608C14DBA7299D8CB6ED035A68A15799 -- C:\Windows\winsxs\amd64_machine.inf_31bf3856ad364e35_6.1.7601.17514_none_1838f2aad55063bb\AGP440.sys

< MD5 for: ATAPI.SYS >
[2009.07.14 02:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\erdnt\cache64\atapi.sys
[2009.07.14 02:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\SysNative\drivers\atapi.sys
[2009.07.14 02:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\SysNative\DriverStore\FileRepository\mshdc.inf_amd64_neutral_552ea5111ec825a6\atapi.sys
[2009.07.14 02:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\SysNative\DriverStore\FileRepository\mshdc.inf_amd64_neutral_aad30bdeec04ea5e\atapi.sys
[2009.07.14 02:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\winsxs\amd64_mshdc.inf_31bf3856ad364e35_6.1.7601.17514_none_3b5e2d89382958dd\atapi.sys
[2009.07.14 02:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\winsxs\amd64_mshdc.inf_31bf3856ad364e35_6.1.7601.18231_none_3b457059383c66e6\atapi.sys
[2009.07.14 02:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\winsxs\amd64_mshdc.inf_31bf3856ad364e35_6.1.7601.22414_none_3be7afc0514717fa\atapi.sys

< MD5 for: AUTOCHK.EXE >
[2010.11.21 04:24:27 | 000,777,728 | ---- | M] (Microsoft Corporation) MD5=3B536A8BEC3B4F23FFDFD78B11A2AB93 -- C:\Windows\SysNative\autochk.exe
[2010.11.21 04:24:27 | 000,777,728 | ---- | M] (Microsoft Corporation) MD5=3B536A8BEC3B4F23FFDFD78B11A2AB93 -- C:\Windows\winsxs\amd64_microsoft-windows-autochk_31bf3856ad364e35_6.1.7601.17514_none_4019f2b8d860ad30\autochk.exe
[2010.11.21 04:23:53 | 000,668,160 | ---- | M] (Microsoft Corporation) MD5=F88A52EB62019D6A62FDD9E08034DBD8 -- C:\Windows\SysWOW64\autochk.exe
[2010.11.21 04:23:53 | 000,668,160 | ---- | M] (Microsoft Corporation) MD5=F88A52EB62019D6A62FDD9E08034DBD8 -- C:\Windows\winsxs\x86_microsoft-windows-autochk_31bf3856ad364e35_6.1.7601.17514_none_e3fb573520033bfa\autochk.exe

< MD5 for: CDROM.SYS >
[2010.11.21 04:23:47 | 000,147,456 | ---- | M] (Microsoft Corporation) MD5=F036CE71586E93D94DAB220D7BDF4416 -- C:\Windows\SysNative\drivers\cdrom.sys
[2010.11.21 04:23:47 | 000,147,456 | ---- | M] (Microsoft Corporation) MD5=F036CE71586E93D94DAB220D7BDF4416 -- C:\Windows\SysNative\DriverStore\FileRepository\cdrom.inf_amd64_neutral_0b3d0d1942ab684b\cdrom.sys
[2010.11.21 04:23:47 | 000,147,456 | ---- | M] (Microsoft Corporation) MD5=F036CE71586E93D94DAB220D7BDF4416 -- C:\Windows\winsxs\amd64_cdrom.inf_31bf3856ad364e35_6.1.7601.17514_none_bdcf6151ba66f48b\cdrom.sys

< MD5 for: CNGAUDIT.DLL >
[2009.07.14 02:15:06 | 000,012,288 | ---- | M] (Microsoft Corporation) MD5=50BA656134F78AF64E4DD3C8B6FEFD7E -- C:\Windows\erdnt\cache86\cngaudit.dll
[2009.07.14 02:15:06 | 000,012,288 | ---- | M] (Microsoft Corporation) MD5=50BA656134F78AF64E4DD3C8B6FEFD7E -- C:\Windows\SysWOW64\cngaudit.dll
[2009.07.14 02:15:06 | 000,012,288 | ---- | M] (Microsoft Corporation) MD5=50BA656134F78AF64E4DD3C8B6FEFD7E -- C:\Windows\winsxs\x86_microsoft-windows-cngaudit-dll_31bf3856ad364e35_6.1.7600.16385_none_e83a414890e8132b\cngaudit.dll
[2009.07.14 02:40:20 | 000,018,944 | ---- | M] (Microsoft Corporation) MD5=86FE1B1F8FD42CD0DB641AB1CDB13093 -- C:\Windows\erdnt\cache64\cngaudit.dll
[2009.07.14 02:40:20 | 000,018,944 | ---- | M] (Microsoft Corporation) MD5=86FE1B1F8FD42CD0DB641AB1CDB13093 -- C:\Windows\SysNative\cngaudit.dll
[2009.07.14 02:40:20 | 000,018,944 | ---- | M] (Microsoft Corporation) MD5=86FE1B1F8FD42CD0DB641AB1CDB13093 -- C:\Windows\winsxs\amd64_microsoft-windows-cngaudit-dll_31bf3856ad364e35_6.1.7600.16385_none_4458dccc49458461\cngaudit.dll

< MD5 for: CRYPTSVC.DLL >
[2012.06.02 05:52:32 | 000,142,336 | ---- | M] (Microsoft Corporation) MD5=063DD65889D21035311463337BD268E7 -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7601.22010_none_788c7cc71232cc19\cryptsvc.dll
[2010.11.21 04:24:16 | 000,177,152 | ---- | M] (Microsoft Corporation) MD5=15597883FBE9B056F276ADA3AD87D9AF -- C:\Windows\winsxs\amd64_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7601.17514_none_d4259ed3b16ed82a\cryptsvc.dll
[2013.07.01 09:44:14 | 000,140,288 | ---- | M] (Microsoft Corporation) MD5=33ADF6E0853AB39EA1723BE82842C1D3 -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7601.18150_none_77d7a417f9359661\cryptsvc.dll
[2013.07.01 09:42:37 | 000,140,288 | ---- | M] (Microsoft Corporation) MD5=3897DFF247D9ED0006190349DE264E14 -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7601.18151_none_77d8a461f934afb8\cryptsvc.dll
[2013.07.09 15:47:30 | 000,186,880 | ---- | M] (Microsoft Corporation) MD5=434CCE8E7150CD1324C5FAA088D1D061 -- C:\Windows\winsxs\amd64_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7601.22380_none_d45f6e88cac8f85b\cryptsvc.dll
[2013.10.05 03:25:30 | 000,186,880 | ---- | M] (Microsoft Corporation) MD5=509D31797A4B8A3D6ED78A330B19A919 -- C:\Windows\winsxs\amd64_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7601.22473_none_d46d4138cabe2596\cryptsvc.dll
[2013.07.09 06:46:20 | 000,184,320 | ---- | M] (Microsoft Corporation) MD5=6B400F211BEE880A37A1ED0368776BF4 -- C:\Windows\erdnt\cache64\cryptsvc.dll
[2013.07.09 06:46:20 | 000,184,320 | ---- | M] (Microsoft Corporation) MD5=6B400F211BEE880A37A1ED0368776BF4 -- C:\Windows\SysNative\cryptsvc.dll
[2013.07.09 06:46:20 | 000,184,320 | ---- | M] (Microsoft Corporation) MD5=6B400F211BEE880A37A1ED0368776BF4 -- C:\Windows\winsxs\amd64_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7601.18205_none_d431528fb165f7bc\cryptsvc.dll
[2013.07.09 14:57:37 | 000,142,848 | ---- | M] (Microsoft Corporation) MD5=6DB499DEFCC827317C5371164A7CDB27 -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7601.22380_none_7840d305126b8725\cryptsvc.dll
[2013.07.09 05:46:31 | 000,140,288 | ---- | M] (Microsoft Corporation) MD5=7CA1BECEA5DE2643ADDAD32670E7A4C9 -- C:\Windows\erdnt\cache86\cryptsvc.dll
[2013.07.09 05:46:31 | 000,140,288 | ---- | M] (Microsoft Corporation) MD5=7CA1BECEA5DE2643ADDAD32670E7A4C9 -- C:\Windows\SysWOW64\cryptsvc.dll
[2013.07.09 05:46:31 | 000,140,288 | ---- | M] (Microsoft Corporation) MD5=7CA1BECEA5DE2643ADDAD32670E7A4C9 -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7601.18205_none_7812b70bf9088686\cryptsvc.dll
[2012.06.04 08:52:35 | 000,186,880 | ---- | M] (Microsoft Corporation) MD5=7E7D2DACF65D750D466F36BD3D09AE20 -- C:\Windows\winsxs\amd64_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7601.22010_none_d4ab184aca903d4f\cryptsvc.dll
[2013.07.01 09:44:14 | 000,184,320 | ---- | M] (Microsoft Corporation) MD5=7FDC4626B01106A8EF328C88C7C0DEE3 -- C:\Windows\winsxs\amd64_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7601.18150_none_d3f63f9bb1930797\cryptsvc.dll
[2013.07.01 09:42:37 | 000,186,880 | ---- | M] (Microsoft Corporation) MD5=8122252F0A4ACFA92FA0C1D50D18493B -- C:\Windows\winsxs\amd64_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7601.22322_none_d4a24ea4ca968363\cryptsvc.dll
[2012.06.02 05:36:29 | 000,140,288 | ---- | M] (Microsoft Corporation) MD5=96C0E38905CFD788313BE8E11DAE3F2F -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7601.17856_none_77ddc9e5f93000db\cryptsvc.dll
[2012.06.02 06:41:28 | 000,184,320 | ---- | M] (Microsoft Corporation) MD5=9C01375BE382E834CC26D1B7EAF2C4FE -- C:\Windows\winsxs\amd64_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7601.17856_none_d3fc6569b18d7211\cryptsvc.dll
[2010.11.21 04:24:32 | 000,136,192 | ---- | M] (Microsoft Corporation) MD5=A585BEBF7D054BD9618EDA0922D5484A -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7601.17514_none_7807034ff91166f4\cryptsvc.dll
[2013.07.01 09:42:37 | 000,142,848 | ---- | M] (Microsoft Corporation) MD5=AC04D05309BB2C418D0D80B9FB014642 -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7601.22322_none_7883b3211239122d\cryptsvc.dll
[2013.07.01 09:44:14 | 000,186,880 | ---- | M] (Microsoft Corporation) MD5=CA13C4F92BEE66DB48E58AB3223DDF6E -- C:\Windows\winsxs\amd64_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7601.22321_none_d4a14e5aca976a0c\cryptsvc.dll
[2013.07.01 09:42:37 | 000,184,320 | ---- | M] (Microsoft Corporation) MD5=D8129C49798CBBFB2E4351D4B7B8EF9C -- C:\Windows\winsxs\amd64_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7601.18151_none_d3f73fe5b19220ee\cryptsvc.dll
[2013.07.01 09:44:14 | 000,142,848 | ---- | M] (Microsoft Corporation) MD5=E122AA1C9A3CC46FF9DDDE46E5EB0C58 -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7601.22321_none_7882b2d71239f8d6\cryptsvc.dll
[2013.10.05 02:52:03 | 000,142,848 | ---- | M] (Microsoft Corporation) MD5=F2D9242C3BBD1C36467FCAE1AE01733F -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7601.22473_none_784ea5b51260b460\cryptsvc.dll

< MD5 for: EXPLORER.EXE >
[2011.08.03 19:51:23 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=0FB9C74046656D1579A64660AD67B746 -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.21669_none_ba87e574ddfe652d\explorer.exe
[2011.08.03 19:51:23 | 002,871,808 | ---- | M] (Microsoft Corporation) MD5=332FEAB1435662FC6C672E25BEB37BE3 -- C:\Windows\erdnt\cache86\explorer.exe
[2011.08.03 19:51:23 | 002,871,808 | ---- | M] (Microsoft Corporation) MD5=332FEAB1435662FC6C672E25BEB37BE3 -- C:\Windows\explorer.exe
[2011.08.03 19:51:23 | 002,871,808 | ---- | M] (Microsoft Corporation) MD5=332FEAB1435662FC6C672E25BEB37BE3 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17567_none_afa79dc39081d0ba\explorer.exe
[2011.08.03 19:51:23 | 002,871,808 | ---- | M] (Microsoft Corporation) MD5=3B69712041F3D63605529BD66DC00C48 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.21669_none_b0333b22a99da332\explorer.exe
[2010.11.21 04:24:25 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=40D777B7A95E00593EB1568C68514493 -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17514_none_ba2f56d3c4bcbafb\explorer.exe
[2011.08.03 19:51:23 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=8B88EBBB05A0E56B7DCC708498C02B3E -- C:\Windows\SysWOW64\explorer.exe
[2011.08.03 19:51:23 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=8B88EBBB05A0E56B7DCC708498C02B3E -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17567_none_b9fc4815c4e292b5\explorer.exe
[2010.11.21 04:24:11 | 002,872,320 | ---- | M] (Microsoft Corporation) MD5=AC4C51EB24AA95B77F705AB159189E24 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17514_none_afdaac81905bf900\explorer.exe

< MD5 for: HAL.DLL >
[2010.11.21 04:24:08 | 000,263,040 | ---- | M] (Microsoft Corporation) MD5=CFB8C673F9188F99466E76C6972191E0 -- C:\Windows\SysNative\hal.dll
[2010.11.21 04:24:08 | 000,263,040 | ---- | M] (Microsoft Corporation) MD5=CFB8C673F9188F99466E76C6972191E0 -- C:\Windows\winsxs\amd64_microsoft-windows-hal_31bf3856ad364e35_6.1.7601.17514_none_094ef8137049c196\hal.dll

< MD5 for: IASTORV.SYS >
[2010.11.21 04:23:47 | 000,410,496 | ---- | M] (Intel Corporation) MD5=3DF4395A7CF8B7A72A5F4606366B8C2D -- C:\Windows\SysNative\DriverStore\FileRepository\iastorv.inf_amd64_neutral_668286aa35d55928\iaStorV.sys
[2010.11.21 04:23:47 | 000,410,496 | ---- | M] (Intel Corporation) MD5=3DF4395A7CF8B7A72A5F4606366B8C2D -- C:\Windows\winsxs\amd64_iastorv.inf_31bf3856ad364e35_6.1.7601.17514_none_0d3757e79e6784d0\iaStorV.sys
[2011.08.03 19:58:39 | 000,410,496 | ---- | M] (Intel Corporation) MD5=5B3DE7208E5000D5B451B9D290D2579C -- C:\Windows\winsxs\amd64_iastorv.inf_31bf3856ad364e35_6.1.7601.21680_none_0d714416b7c182d5\iaStorV.sys
[2011.08.03 19:58:39 | 000,410,496 | ---- | M] (Intel Corporation) MD5=AAAF44DB3BD0B9D1FB6969B23ECC8366 -- C:\Windows\SysNative\drivers\iaStorV.sys
[2011.08.03 19:58:39 | 000,410,496 | ---- | M] (Intel Corporation) MD5=AAAF44DB3BD0B9D1FB6969B23ECC8366 -- C:\Windows\SysNative\DriverStore\FileRepository\iastorv.inf_amd64_neutral_0bcee2057afcc090\iaStorV.sys
[2011.08.03 19:58:39 | 000,410,496 | ---- | M] (Intel Corporation) MD5=AAAF44DB3BD0B9D1FB6969B23ECC8366 -- C:\Windows\winsxs\amd64_iastorv.inf_31bf3856ad364e35_6.1.7601.17577_none_0cf9793d9e95787b\iaStorV.sys

< MD5 for: ISAPNP.SYS >
[2009.07.14 02:48:04 | 000,020,544 | ---- | M] (Microsoft Corporation) MD5=2F7B28DC3E1183E5EB418DF55C204F38 -- C:\Windows\SysNative\drivers\isapnp.sys
[2009.07.14 02:48:04 | 000,020,544 | ---- | M] (Microsoft Corporation) MD5=2F7B28DC3E1183E5EB418DF55C204F38 -- C:\Windows\SysNative\DriverStore\FileRepository\machine.inf_amd64_neutral_a2f120466549d68b\isapnp.sys
[2009.07.14 02:48:04 | 000,020,544 | ---- | M] (Microsoft Corporation) MD5=2F7B28DC3E1183E5EB418DF55C204F38 -- C:\Windows\winsxs\amd64_machine.inf_31bf3856ad364e35_6.1.7601.17514_none_1838f2aad55063bb\isapnp.sys

< MD5 for: LSASS.EXE >
[2009.07.14 02:39:16 | 000,031,232 | ---- | M] (Microsoft Corporation) MD5=0793F40B9B8A1BDD266296409DBD91EA -- C:\Windows\winsxs\amd64_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.17514_none_04709031736ac277\lsass.exe
[2011.11.17 07:20:34 | 000,031,232 | ---- | M] (Microsoft Corporation) MD5=0A10B74FBB437FF9A23F1D5DE4446A83 -- C:\Windows\winsxs\amd64_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.21861_none_04c1204e8cb39c3f\lsass.exe
[2013.09.25 02:03:24 | 000,030,720 | ---- | M] (Microsoft Corporation) MD5=4D71227301DD8D09097B9E4CC6527E5A -- C:\Windows\erdnt\cache64\lsass.exe
[2013.09.25 02:03:24 | 000,030,720 | ---- | M] (Microsoft Corporation) MD5=4D71227301DD8D09097B9E4CC6527E5A -- C:\Windows\SysNative\lsass.exe
[2013.09.25 02:03:24 | 000,030,720 | ---- | M] (Microsoft Corporation) MD5=4D71227301DD8D09097B9E4CC6527E5A -- C:\Windows\winsxs\amd64_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.18270_none_042b9307739f26ed\lsass.exe
[2013.07.01 09:38:56 | 000,031,232 | ---- | M] (Microsoft Corporation) MD5=77119F1F9B492B260030C34F9BE327FA -- C:\Windows\winsxs\amd64_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.22099_none_04a88ce28cc4eb33\lsass.exe
[2012.06.04 08:51:10 | 000,031,232 | ---- | M] (Microsoft Corporation) MD5=79C908CAA6F43021EB05F4C733A927D1 -- C:\Windows\winsxs\amd64_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.22010_none_04f609a88c8c279c\lsass.exe
[2011.11.17 07:33:55 | 000,031,232 | ---- | M] (Microsoft Corporation) MD5=C118A82CD78818C29AB228366EBF81C3 -- C:\Windows\winsxs\amd64_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.17725_none_0466c45b7371f20d\lsass.exe
[2011.11.17 07:33:55 | 000,031,232 | ---- | M] (Microsoft Corporation) MD5=C118A82CD78818C29AB228366EBF81C3 -- C:\Windows\winsxs\amd64_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.17856_none_044756c773895c5e\lsass.exe
[2011.11.17 07:33:55 | 000,031,232 | ---- | M] (Microsoft Corporation) MD5=C118A82CD78818C29AB228366EBF81C3 -- C:\Windows\winsxs\amd64_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.17940_none_044c26dd7386a58a\lsass.exe
[2013.09.25 02:08:17 | 000,030,720 | ---- | M] (Microsoft Corporation) MD5=F021DAFB1F87616FCEBA159C2ED7042F -- C:\Windows\winsxs\amd64_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.22465_none_04c503168cb026a0\lsass.exe

< MD5 for: NDIS.SYS >
[2011.08.03 19:40:44 | 000,950,656 | ---- | M] (Microsoft Corporation) MD5=303310C91F8C0740ED1C76851C759874 -- C:\Windows\winsxs\amd64_microsoft-windows-ndis_31bf3856ad364e35_6.1.7601.21628_none_066fff3d4bd0b870\ndis.sys
[2012.08.22 19:06:07 | 000,950,128 | ---- | M] (Microsoft Corporation) MD5=5E74508FCB5820B29EEAFE24E6035BCF -- C:\Windows\winsxs\amd64_microsoft-windows-ndis_31bf3856ad364e35_6.1.7601.22097_none_06232d534c0a8d67\ndis.sys
[2012.08.22 19:12:40 | 000,950,128 | ---- | M] (Microsoft Corporation) MD5=760E38053BF56E501D562B70AD796B88 -- C:\Windows\erdnt\cache64\ndis.sys
[2012.08.22 19:12:40 | 000,950,128 | ---- | M] (Microsoft Corporation) MD5=760E38053BF56E501D562B70AD796B88 -- C:\Windows\SysNative\drivers\ndis.sys
[2012.08.22 19:12:40 | 000,950,128 | ---- | M] (Microsoft Corporation) MD5=760E38053BF56E501D562B70AD796B88 -- C:\Windows\winsxs\amd64_microsoft-windows-ndis_31bf3856ad364e35_6.1.7601.17939_none_05dc9a6832ba428a\ndis.sys
[2010.11.21 04:23:55 | 000,951,680 | ---- | M] (Microsoft Corporation) MD5=79B47FD40D9A817E932F9D26FAC0A81C -- C:\Windows\winsxs\amd64_microsoft-windows-ndis_31bf3856ad364e35_6.1.7601.17514_none_05ed313632ae9759\ndis.sys
[2011.08.03 19:40:44 | 000,951,680 | ---- | M] (Microsoft Corporation) MD5=C38B8AE57F78915905064A9A24DC1586 -- C:\Windows\winsxs\amd64_microsoft-windows-ndis_31bf3856ad364e35_6.1.7601.17530_none_05d3903632c269df\ndis.sys

< MD5 for: NETLOGON.DLL >
[2010.11.21 04:24:01 | 000,695,808 | ---- | M] (Microsoft Corporation) MD5=AA339DD8BB128EF66660DFBBB59043D3 -- C:\Windows\erdnt\cache64\netlogon.dll
[2010.11.21 04:24:01 | 000,695,808 | ---- | M] (Microsoft Corporation) MD5=AA339DD8BB128EF66660DFBBB59043D3 -- C:\Windows\SysNative\netlogon.dll
[2010.11.21 04:24:01 | 000,695,808 | ---- | M] (Microsoft Corporation) MD5=AA339DD8BB128EF66660DFBBB59043D3 -- C:\Windows\winsxs\amd64_microsoft-windows-security-netlogon_31bf3856ad364e35_6.1.7601.17514_none_5bddbcb24e997298\netlogon.dll
[2010.11.21 04:24:09 | 000,563,712 | ---- | M] (Microsoft Corporation) MD5=C1809B9907ADEDAF16F50C894100883B -- C:\Windows\erdnt\cache86\netlogon.dll
[2010.11.21 04:24:09 | 000,563,712 | ---- | M] (Microsoft Corporation) MD5=C1809B9907ADEDAF16F50C894100883B -- C:\Windows\SysWOW64\netlogon.dll
[2010.11.21 04:24:09 | 000,563,712 | ---- | M] (Microsoft Corporation) MD5=C1809B9907ADEDAF16F50C894100883B -- C:\Windows\winsxs\wow64_microsoft-windows-security-netlogon_31bf3856ad364e35_6.1.7601.17514_none_6632670482fa3493\netlogon.dll

< MD5 for: NVRAID.SYS >
[2011.08.03 19:58:39 | 000,148,352 | ---- | M] (NVIDIA Corporation) MD5=0A92CB65770442ED0DC44834632F66AD -- C:\Windows\SysNative\drivers\nvraid.sys
[2011.08.03 19:58:39 | 000,148,352 | ---- | M] (NVIDIA Corporation) MD5=0A92CB65770442ED0DC44834632F66AD -- C:\Windows\SysNative\DriverStore\FileRepository\nvraid.inf_amd64_neutral_0276fc3b3ea60d41\nvraid.sys
[2011.08.03 19:58:39 | 000,148,352 | ---- | M] (NVIDIA Corporation) MD5=0A92CB65770442ED0DC44834632F66AD -- C:\Windows\winsxs\amd64_nvraid.inf_31bf3856ad364e35_6.1.7601.17577_none_97c2e9ecd5cc2253\nvraid.sys
[2010.11.21 04:23:47 | 000,148,352 | ---- | M] (NVIDIA Corporation) MD5=5D9FD91F3D38DC9DA01E3CB5FA89CD48 -- C:\Windows\SysNative\DriverStore\FileRepository\nvraid.inf_amd64_neutral_dd659ed032d28a14\nvraid.sys
[2010.11.21 04:23:47 | 000,148,352 | ---- | M] (NVIDIA Corporation) MD5=5D9FD91F3D38DC9DA01E3CB5FA89CD48 -- C:\Windows\winsxs\amd64_nvraid.inf_31bf3856ad364e35_6.1.7601.17514_none_9800c896d59e2ea8\nvraid.sys
[2011.08.03 19:58:39 | 000,148,352 | ---- | M] (NVIDIA Corporation) MD5=666CA16F17914C1CD3616CF16DE0A6EA -- C:\Windows\winsxs\amd64_nvraid.inf_31bf3856ad364e35_6.1.7601.21680_none_983ab4c5eef82cad\nvraid.sys

< MD5 for: NVSTOR.SYS >
[2011.08.03 19:58:39 | 000,166,272 | ---- | M] (NVIDIA Corporation) MD5=D23C7E8566DA2B8A7C0DBBB761D54888 -- C:\Windows\winsxs\amd64_nvraid.inf_31bf3856ad364e35_6.1.7601.21680_none_983ab4c5eef82cad\nvstor.sys
[2011.08.03 19:58:39 | 000,166,272 | ---- | M] (NVIDIA Corporation) MD5=DAB0E87525C10052BF65F06152F37E4A -- C:\Windows\SysNative\drivers\nvstor.sys
[2011.08.03 19:58:39 | 000,166,272 | ---- | M] (NVIDIA Corporation) MD5=DAB0E87525C10052BF65F06152F37E4A -- C:\Windows\SysNative\DriverStore\FileRepository\nvraid.inf_amd64_neutral_0276fc3b3ea60d41\nvstor.sys
[2011.08.03 19:58:39 | 000,166,272 | ---- | M] (NVIDIA Corporation) MD5=DAB0E87525C10052BF65F06152F37E4A -- C:\Windows\winsxs\amd64_nvraid.inf_31bf3856ad364e35_6.1.7601.17577_none_97c2e9ecd5cc2253\nvstor.sys
[2010.11.21 04:23:47 | 000,166,272 | ---- | M] (NVIDIA Corporation) MD5=F7CD50FE7139F07E77DA8AC8033D1832 -- C:\Windows\SysNative\DriverStore\FileRepository\nvraid.inf_amd64_neutral_dd659ed032d28a14\nvstor.sys
[2010.11.21 04:23:47 | 000,166,272 | ---- | M] (NVIDIA Corporation) MD5=F7CD50FE7139F07E77DA8AC8033D1832 -- C:\Windows\winsxs\amd64_nvraid.inf_31bf3856ad364e35_6.1.7601.17514_none_9800c896d59e2ea8\nvstor.sys

< MD5 for: SCECLI.DLL >
[2010.11.21 04:23:54 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=8124944EC89D6A1815E4E53F5B96AAF4 -- C:\Windows\erdnt\cache86\scecli.dll
[2010.11.21 04:23:54 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=8124944EC89D6A1815E4E53F5B96AAF4 -- C:\Windows\SysWOW64\scecli.dll
[2010.11.21 04:23:54 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=8124944EC89D6A1815E4E53F5B96AAF4 -- C:\Windows\winsxs\wow64_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7601.17514_none_a088921d241bbb4e\scecli.dll
[2010.11.21 04:24:32 | 000,232,960 | ---- | M] (Microsoft Corporation) MD5=ED78427259134C63ED69804D2132B86C -- C:\Windows\erdnt\cache64\scecli.dll
[2010.11.21 04:24:32 | 000,232,960 | ---- | M] (Microsoft Corporation) MD5=ED78427259134C63ED69804D2132B86C -- C:\Windows\SysNative\scecli.dll
[2010.11.21 04:24:32 | 000,232,960 | ---- | M] (Microsoft Corporation) MD5=ED78427259134C63ED69804D2132B86C -- C:\Windows\winsxs\amd64_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7601.17514_none_9633e7caefbaf953\scecli.dll

< MD5 for: SMSS.EXE >
[2009.07.14 02:39:41 | 000,112,640 | ---- | M] (Microsoft Corporation) MD5=1911A3356FA3F77CCC825CCBAC038C2A -- C:\Windows\winsxs\amd64_microsoft-windows-smss_31bf3856ad364e35_6.1.7600.16385_none_082f99a432e2a661\smss.exe
[2013.03.19 03:57:17 | 000,112,640 | ---- | M] (Microsoft Corporation) MD5=498E2A20E145199709CD100CDBA8603D -- C:\Windows\winsxs\amd64_microsoft-windows-smss_31bf3856ad364e35_6.1.7601.22280_none_0a9a7b3b492b4d05\smss.exe
[2013.12.03 21:58:31 | 000,112,640 | ---- | M] (Microsoft Corporation) MD5=B2B31D4C79EFD883097FA24D02E79C12 -- C:\Windows\winsxs\amd64_microsoft-windows-smss_31bf3856ad364e35_6.1.7601.22436_none_0ad6905f48fd53a8\smss.exe
[2013.08.02 06:06:34 | 000,112,640 | ---- | M] (Microsoft Corporation) MD5=CB5DA3E44456D1084BCD87F5B1B3152B -- C:\Windows\winsxs\amd64_microsoft-windows-smss_31bf3856ad364e35_6.1.7601.22411_none_0ae72ec548f19d13\smss.exe
[2013.03.19 04:06:33 | 000,112,640 | ---- | M] (Microsoft Corporation) MD5=F0371DE302FFFF8F086661611BE60848 -- C:\Windows\winsxs\amd64_microsoft-windows-smss_31bf3856ad364e35_6.1.7601.18113_none_0a5f8ec22fd235a9\smss.exe
[2013.08.02 01:59:09 | 000,112,640 | ---- | M] (Microsoft Corporation) MD5=F0970A4BC8395659C22BF53D0FADF16F -- C:\Windows\SysNative\smss.exe
[2013.08.02 01:59:09 | 000,112,640 | ---- | M] (Microsoft Corporation) MD5=F0970A4BC8395659C22BF53D0FADF16F -- C:\Windows\winsxs\amd64_microsoft-windows-smss_31bf3856ad364e35_6.1.7601.18229_none_0a5ac2782fd4e6cb\smss.exe

< MD5 for: SVCHOST.EXE >
[2009.07.14 02:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\erdnt\cache86\svchost.exe
[2009.07.14 02:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\SysWOW64\svchost.exe
[2009.07.14 02:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\winsxs\x86_microsoft-windows-services-svchost_31bf3856ad364e35_6.1.7600.16385_none_b591afc466a15356\svchost.exe
[2013.04.04 13:50:32 | 000,218,184 | ---- | M] () MD5=B4C6E3889BB310CA7E974A04EC6E46AC -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\Chameleon\svchost.exe
[2009.07.14 02:39:46 | 000,027,136 | ---- | M] (Microsoft Corporation) MD5=C78655BC80301D76ED4FEF1C1EA40A7D -- C:\Windows\erdnt\cache64\svchost.exe
[2009.07.14 02:39:46 | 000,027,136 | ---- | M] (Microsoft Corporation) MD5=C78655BC80301D76ED4FEF1C1EA40A7D -- C:\Windows\SysNative\svchost.exe
[2009.07.14 02:39:46 | 000,027,136 | ---- | M] (Microsoft Corporation) MD5=C78655BC80301D76ED4FEF1C1EA40A7D -- C:\Windows\winsxs\amd64_microsoft-windows-services-svchost_31bf3856ad364e35_6.1.7600.16385_none_11b04b481efec48c\svchost.exe

< MD5 for: TCPIP.SYS >
[2012.10.03 18:56:54 | 001,914,248 | ---- | M] (Microsoft Corporation) MD5=37608401DFDB388CAF66917F6B2D6FB0 -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.17964_none_110e0fbd7d2e4b88\tcpip.sys
[2013.07.01 09:45:24 | 001,900,392 | ---- | M] (Microsoft Corporation) MD5=3E94650745D4DAB67E161F5F32CEA597 -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.22319_none_11d29984961f0be0\tcpip.sys
[2013.12.03 21:58:02 | 001,903,552 | ---- | M] (Microsoft Corporation) MD5=40AF23633D197905F03AB5628C558C51 -- C:\Windows\erdnt\cache64\tcpip.sys
[2013.12.03 21:58:02 | 001,903,552 | ---- | M] (Microsoft Corporation) MD5=40AF23633D197905F03AB5628C558C51 -- C:\Windows\SysNative\drivers\tcpip.sys
[2013.12.03 21:58:02 | 001,903,552 | ---- | M] (Microsoft Corporation) MD5=40AF23633D197905F03AB5628C558C51 -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.18254_none_1118bb977d265d27\tcpip.sys
[2010.11.21 04:24:08 | 001,924,480 | ---- | M] (Microsoft Corporation) MD5=509383E505C973ED7534A06B3D19688D -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.17514_none_114417c17d05cb37\tcpip.sys
[2013.12.03 21:58:02 | 001,896,896 | ---- | M] (Microsoft Corporation) MD5=75F9106B74585D38C8FF6BB5CAD262D7 -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.22444_none_11ad2a34963bde27\tcpip.sys
[2011.08.03 19:46:21 | 001,923,968 | ---- | M] (Microsoft Corporation) MD5=92CE29D95AC9DD2D0EE9061D551BA250 -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.17603_none_114de9497cfe9316\tcpip.sys
[2013.07.01 09:45:24 | 001,910,632 | ---- | M] (Microsoft Corporation) MD5=9849EA3843A2ADBDD1497E97A85D8CAE -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.18148_none_11278ac57d1aa96b\tcpip.sys
[2013.07.06 06:20:38 | 001,900,992 | ---- | M] (Microsoft Corporation) MD5=B27F13153343BC37A27EAE01634D94E1 -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.22378_none_1190b9b296509a2f\tcpip.sys
[2013.01.03 07:00:54 | 001,913,192 | ---- | M] (Microsoft Corporation) MD5=B62A953F2BF3922C8764A29C34A22899 -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.18042_none_112187237d20143a\tcpip.sys
[2011.08.03 19:46:21 | 001,927,552 | ---- | M] (Microsoft Corporation) MD5=B77977AEB2FF159D01DB08A309989C5F -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.21712_none_11cbb5de9625357a\tcpip.sys
[2013.01.04 06:47:43 | 001,901,416 | ---- | M] (Microsoft Corporation) MD5=B8C1AAC0523E1C33AEB0EF7572144BA2 -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.22209_none_11dd678a9616f2c8\tcpip.sys
[2011.08.03 19:51:45 | 001,927,552 | ---- | M] (Microsoft Corporation) MD5=CB6A53EF141CC3DA32DA54F7E75D301B -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.21687_none_118505f696597a9d\tcpip.sys
[2012.10.03 18:44:29 | 001,902,472 | ---- | M] (Microsoft Corporation) MD5=D5707FC2300AA5B04B7BFE86D40C0133 -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.22124_none_11c2c45a962baed0\tcpip.sys
[2013.07.06 07:03:53 | 001,910,208 | ---- | M] (Microsoft Corporation) MD5=DB74544B75566C974815E79A62433F29 -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.18203_none_114dcae97cfeb81b\tcpip.sys
[2011.08.03 19:51:45 | 001,924,480 | ---- | M] (Microsoft Corporation) MD5=DC08410DB2D0CC542DACAC7A90E6CB7A -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.17582_none_10f667b97d405c20\tcpip.sys
[2013.11.26 12:34:34 | 001,897,408 | ---- | M] (Microsoft Corporation) MD5=F55B41AA6114568AC558ADBABDA85620 -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.22525_none_11c3cc3c962abcc3\tcpip.sys

< MD5 for: USERINIT.EXE >
[2010.11.21 04:23:55 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=61AC3EFDFACFDD3F0F11DD4FD4044223 -- C:\Windows\erdnt\cache86\userinit.exe
[2010.11.21 04:23:55 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=61AC3EFDFACFDD3F0F11DD4FD4044223 -- C:\Windows\SysWOW64\userinit.exe
[2010.11.21 04:23:55 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=61AC3EFDFACFDD3F0F11DD4FD4044223 -- C:\Windows\winsxs\x86_microsoft-windows-userinit_31bf3856ad364e35_6.1.7601.17514_none_de3024012ff21116\userinit.exe
[2010.11.21 04:24:28 | 000,030,720 | ---- | M] (Microsoft Corporation) MD5=BAFE84E637BF7388C96EF48D4D3FDD53 -- C:\Windows\erdnt\cache64\userinit.exe
[2010.11.21 04:24:28 | 000,030,720 | ---- | M] (Microsoft Corporation) MD5=BAFE84E637BF7388C96EF48D4D3FDD53 -- C:\Windows\SysNative\userinit.exe
[2010.11.21 04:24:28 | 000,030,720 | ---- | M] (Microsoft Corporation) MD5=BAFE84E637BF7388C96EF48D4D3FDD53 -- C:\Windows\winsxs\amd64_microsoft-windows-userinit_31bf3856ad364e35_6.1.7601.17514_none_3a4ebf84e84f824c\userinit.exe

< MD5 for: WINLOGON.EXE >
[2010.11.21 04:24:29 | 000,390,656 | ---- | M] (Microsoft Corporation) MD5=1151B1BAA6F350B1DB6598E0FEA7C457 -- C:\Windows\erdnt\cache64\winlogon.exe
[2010.11.21 04:24:29 | 000,390,656 | ---- | M] (Microsoft Corporation) MD5=1151B1BAA6F350B1DB6598E0FEA7C457 -- C:\Windows\SysNative\winlogon.exe
[2010.11.21 04:24:29 | 000,390,656 | ---- | M] (Microsoft Corporation) MD5=1151B1BAA6F350B1DB6598E0FEA7C457 -- C:\Windows\winsxs\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7601.17514_none_cde90685eb910636\winlogon.exe
[2013.04.04 13:50:32 | 000,218,184 | ---- | M] () MD5=B4C6E3889BB310CA7E974A04EC6E46AC -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\Chameleon\winlogon.exe

< MD5 for: WS2_32.DLL >
[2010.11.21 04:24:28 | 000,297,984 | ---- | M] (Microsoft Corporation) MD5=4BBFA57F594F7E8A8EDC8F377184C3F0 -- C:\Windows\erdnt\cache64\ws2_32.dll
[2010.11.21 04:24:28 | 000,297,984 | ---- | M] (Microsoft Corporation) MD5=4BBFA57F594F7E8A8EDC8F377184C3F0 -- C:\Windows\SysNative\ws2_32.dll
[2010.11.21 04:24:28 | 000,297,984 | ---- | M] (Microsoft Corporation) MD5=4BBFA57F594F7E8A8EDC8F377184C3F0 -- C:\Windows\winsxs\amd64_microsoft-windows-w..nfrastructure-ws232_31bf3856ad364e35_6.1.7601.17514_none_50ddb631e4f59005\ws2_32.dll
[2010.11.21 04:23:55 | 000,206,848 | ---- | M] (Microsoft Corporation) MD5=7FF15A4F092CD4A96055BA69F903E3E9 -- C:\Windows\erdnt\cache86\ws2_32.dll
[2010.11.21 04:23:55 | 000,206,848 | ---- | M] (Microsoft Corporation) MD5=7FF15A4F092CD4A96055BA69F903E3E9 -- C:\Windows\SysWOW64\ws2_32.dll
[2010.11.21 04:23:55 | 000,206,848 | ---- | M] (Microsoft Corporation) MD5=7FF15A4F092CD4A96055BA69F903E3E9 -- C:\Windows\winsxs\x86_microsoft-windows-w..nfrastructure-ws232_31bf3856ad364e35_6.1.7601.17514_none_f4bf1aae2c981ecf\ws2_32.dll

< >

< %systemroot%*.* /U /s >
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
[2 C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp files -> C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp -> ]
[4 C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\*.tmp files -> C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\*.tmp -> ]
[2 C:\Windows\Installer\*.tmp files -> C:\Windows\Installer\*.tmp -> ]
[3 C:\Windows\ServiceProfiles\LocalService\AppData\Local\Temp\*.tmp files -> C:\Windows\ServiceProfiles\LocalService\AppData\Local\Temp\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\0136e5102c70017e90a0e38fcae1a55c\*.tmp files -> C:\Windows\SoftwareDistribution\Download\0136e5102c70017e90a0e38fcae1a55c\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\3aad7c4ab42c9f9313ab0043e653660e\*.tmp files -> C:\Windows\SoftwareDistribution\Download\3aad7c4ab42c9f9313ab0043e653660e\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\6021592a79635ae4e93e9f40b14b7cdb\*.tmp files -> C:\Windows\SoftwareDistribution\Download\6021592a79635ae4e93e9f40b14b7cdb\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\691482082cd78d0038aaf6963bb04750\*.tmp files -> C:\Windows\SoftwareDistribution\Download\691482082cd78d0038aaf6963bb04750\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\790d6339e096d3c5f895a92880adae81\*.tmp files -> C:\Windows\SoftwareDistribution\Download\790d6339e096d3c5f895a92880adae81\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\981da3ced96579568c5c8832ff952174\*.tmp files -> C:\Windows\SoftwareDistribution\Download\981da3ced96579568c5c8832ff952174\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\db730b57fecf46a8eee5d46e684ae553\*.tmp files -> C:\Windows\SoftwareDistribution\Download\db730b57fecf46a8eee5d46e684ae553\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\eb80a3d9998eb04ec423e3da969268b5\*.tmp files -> C:\Windows\SoftwareDistribution\Download\eb80a3d9998eb04ec423e3da969268b5\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\ef0b4d3049a23bab94137ef7c374d80c\*.tmp files -> C:\Windows\SoftwareDistribution\Download\ef0b4d3049a23bab94137ef7c374d80c\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\f6f0ca29a20a3ca7311c99388052f92b\*.tmp files -> C:\Windows\SoftwareDistribution\Download\f6f0ca29a20a3ca7311c99388052f92b\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\fa224a106f085a037c85b45429034c9b\*.tmp files -> C:\Windows\SoftwareDistribution\Download\fa224a106f085a037c85b45429034c9b\*.tmp -> ]
[2 C:\Windows\temp\*.tmp files -> C:\Windows\temp\*.tmp -> ]

< %SYSTEMDRIVE%\*.exe >

< %ALLUSERSPROFILE%\Application Data\*. >

< %ALLUSERSPROFILE%\Application Data\*.exe /s >

< %APPDATA%\*. >
[2014.01.25 14:10:10 | 000,000,000 | ---D | M] -- C:\Users\JAKUB\AppData\Roaming\.minecraft
[2013.10.08 15:08:02 | 000,000,000 | ---D | M] -- C:\Users\JAKUB\AppData\Roaming\2K Sports
[2013.10.18 14:54:20 | 000,000,000 | ---D | M] -- C:\Users\JAKUB\AppData\Roaming\Adobe
[2013.12.10 14:45:45 | 000,000,000 | ---D | M] -- C:\Users\JAKUB\AppData\Roaming\Apple Computer
[2013.10.17 17:22:38 | 000,000,000 | ---D | M] -- C:\Users\JAKUB\AppData\Roaming\ATI
[2014.01.11 18:26:13 | 000,000,000 | ---D | M] -- C:\Users\JAKUB\AppData\Roaming\AVAST Software
[2013.07.25 10:00:17 | 000,000,000 | ---D | M] -- C:\Users\JAKUB\AppData\Roaming\BANDISOFT
[2013.11.24 20:00:09 | 000,000,000 | ---D | M] -- C:\Users\JAKUB\AppData\Roaming\CyberLink

[2013.07.25 10:05:23 | 000,000,000 | ---D | M] -- C:\Users\JAKUB\AppData\Roaming\Leadertech
[2013.08.18 08:14:56 | 000,000,000 | ---D | M] -- C:\Users\JAKUB\AppData\Roaming\Macromedia
[2013.07.25 10:00:19 | 000,000,000 | ---D | M] -- C:\Users\JAKUB\AppData\Roaming\Malwarebytes
[2014.01.11 19:06:10 | 000,000,000 | --SD | M] -- C:\Users\JAKUB\AppData\Roaming\Microsoft
[2013.11.10 21:42:12 | 000,000,000 | ---D | M] -- C:\Users\JAKUB\AppData\Roaming\Milestone
[2013.07.25 10:00:20 | 000,000,000 | ---D | M] -- C:\Users\JAKUB\AppData\Roaming\MINECRAFTinstall.net
[2013.08.12 08:19:15 | 000,000,000 | ---D | M] -- C:\Users\JAKUB\AppData\Roaming\Mirillis
[2013.10.06 10:00:33 | 000,000,000 | ---D | M] -- C:\Users\JAKUB\AppData\Roaming\Mozilla
[2013.11.24 18:43:59 | 000,000,000 | ---D | M] -- C:\Users\JAKUB\AppData\Roaming\OBS
[2013.09.08 17:52:41 | 000,000,000 | ---D | M] -- C:\Users\JAKUB\AppData\Roaming\OpenOffice
[2013.07.25 10:00:26 | 000,000,000 | ---D | M] -- C:\Users\JAKUB\AppData\Roaming\Opera
[2013.08.15 08:05:53 | 000,000,000 | ---D | M] -- C:\Users\JAKUB\AppData\Roaming\Origin
[2014.01.25 13:16:55 | 000,000,000 | ---D | M] -- C:\Users\JAKUB\AppData\Roaming\ProductData
[2013.10.29 15:30:58 | 000,000,000 | ---D | M] -- C:\Users\JAKUB\AppData\Roaming\Rainmeter
[2013.10.03 15:52:01 | 000,000,000 | ---D | M] -- C:\Users\JAKUB\AppData\Roaming\RBotPlus
[2013.08.31 13:34:32 | 000,000,000 | ---D | M] -- C:\Users\JAKUB\AppData\Roaming\Rublik
[2013.08.24 17:51:05 | 000,000,000 | ---D | M] -- C:\Users\JAKUB\AppData\Roaming\ScanMaster-ELM
[2013.08.16 10:01:45 | 000,000,000 | ---D | M] -- C:\Users\JAKUB\AppData\Roaming\SecuROM
[2013.12.16 21:52:20 | 000,000,000 | ---D | M] -- C:\Users\JAKUB\AppData\Roaming\Seznam.cz
[2014.01.26 09:36:39 | 000,000,000 | ---D | M] -- C:\Users\JAKUB\AppData\Roaming\Skype
[2013.12.26 15:43:20 | 000,000,000 | ---D | M] -- C:\Users\JAKUB\AppData\Roaming\skypesender
[2013.11.26 20:59:26 | 000,000,000 | ---D | M] -- C:\Users\JAKUB\AppData\Roaming\Electronic Arts
[2013.12.08 19:29:44 | 000,000,000 | ---D | M] -- C:\Users\JAKUB\AppData\Roaming\FUEL
[2013.08.12 08:18:26 | 000,000,000 | ---D | M] -- C:\Users\JAKUB\AppData\Roaming\GlarySoft
[2013.07.26 07:37:37 | 000,000,000 | ---D | M] -- C:\Users\JAKUB\AppData\Roaming\HD Tune Pro
[2013.07.25 10:19:53 | 000,000,000 | ---D | M] -- C:\Users\JAKUB\AppData\Roaming\Hewlett-Packard
[2013.08.29 15:42:24 | 000,000,000 | ---D | M] -- C:\Users\JAKUB\AppData\Roaming\ICQ-Profile
[2013.11.03 20:23:33 | 000,000,000 | ---D | M] -- C:\Users\JAKUB\AppData\Roaming\InstallShield
[2014.01.25 13:16:50 | 000,000,000 | ---D | M] -- C:\Users\JAKUB\AppData\Roaming\IObit
[2013.08.03 19:05:22 | 000,000,000 | ---D | M] -- C:\Users\JAKUB\AppData\Roaming\JAM Software
[2013.07.25 10:00:19 | 000,000,000 | ---D | M] -- C:\Users\JAKUB\AppData\Roaming\LangSoft
[2013.11.15 18:24:55 | 000,000,000 | ---D | M] -- C:\Users\JAKUB\AppData\Roaming\DAEMON Tools Lite
[2013.09.28 20:47:12 | 000,000,000 | ---D | M] -- C:\Users\JAKUB\AppData\Roaming\DG
[2013.11.04 16:08:14 | 000,000,000 | ---D | M] -- C:\Users\JAKUB\AppData\Roaming\Disney Interactive Studios
[2013.10.18 15:30:08 | 000,000,000 | ---D | M] -- C:\Users\JAKUB\AppData\Roaming\Easy2Convert

[2013.08.18 08:27:33 | 000,000,000 | ---D | M] -- C:\Users\JAKUB\AppData\Roaming\skyz
[2013.12.07 21:12:16 | 000,000,000 | ---D | M] -- C:\Users\JAKUB\AppData\Roaming\Sony
[2013.12.03 16:50:16 | 000,000,000 | ---D | M] -- C:\Users\JAKUB\AppData\Roaming\Sony Creative Software Inc
[2013.09.06 21:17:40 | 000,000,000 | ---D | M] -- C:\Users\JAKUB\AppData\Roaming\SpinTires
[2013.11.26 01:54:01 | 000,000,000 | ---D | M] -- C:\Users\JAKUB\AppData\Roaming\SplitMediaLabs
[2013.12.15 21:24:14 | 000,000,000 | ---D | M] -- C:\Users\JAKUB\AppData\Roaming\Spotify
[2013.07.20 09:35:40 | 000,000,000 | ---D | M] -- C:\Users\JAKUB\AppData\Roaming\Stardock
[2013.09.17 20:42:37 | 000,000,000 | ---D | M] -- C:\Users\JAKUB\AppData\Roaming\SUPERAntiSpyware.com
[2013.07.25 10:00:27 | 000,000,000 | ---D | M] -- C:\Users\JAKUB\AppData\Roaming\SuperHideIP
[2013.12.26 15:47:22 | 000,000,000 | ---D | M] -- C:\Users\JAKUB\AppData\Roaming\TeamViewer
[2013.11.18 19:50:05 | 000,000,000 | ---D | M] -- C:\Users\JAKUB\AppData\Roaming\theHunter
[2013.11.17 18:41:59 | 000,000,000 | ---D | M] -- C:\Users\JAKUB\AppData\Roaming\TS3Client
[2013.07.25 10:00:27 | 000,000,000 | ---D | M] -- C:\Users\JAKUB\AppData\Roaming\Tunngle
[2013.08.12 09:24:36 | 000,000,000 | ---D | M] -- C:\Users\JAKUB\AppData\Roaming\Ubisoft
[2013.09.28 11:22:50 | 000,000,000 | ---D | M] -- C:\Users\JAKUB\AppData\Roaming\Uniblue
[2013.12.05 15:37:38 | 000,000,000 | ---D | M] -- C:\Users\JAKUB\AppData\Roaming\Unity
[2014.01.26 09:50:32 | 000,000,000 | ---D | M] -- C:\Users\JAKUB\AppData\Roaming\uTorrent
[2014.01.18 10:36:17 | 000,000,000 | ---D | M] -- C:\Users\JAKUB\AppData\Roaming\vlc
[2013.11.13 19:48:54 | 000,000,000 | ---D | M] -- C:\Users\JAKUB\AppData\Roaming\WinBatch
[2013.07.25 15:51:28 | 000,000,000 | ---D | M] -- C:\Users\JAKUB\AppData\Roaming\WinRAR
[2013.12.08 08:20:00 | 000,000,000 | ---D | M] -- C:\Users\JAKUB\AppData\Roaming\YouTube Downloader

< %APPDATA%\*.exe /s >
[2013.04.04 21:42:44 | 000,177,159 | ---- | M] () -- C:\Users\JAKUB\AppData\Roaming\.minecraft\MineCraft.exe
[2013.05.11 20:32:56 | 000,083,361 | ---- | M] () -- C:\Users\JAKUB\AppData\Roaming\.minecraft\Uninstall Minecraft.exe
[2014.01.24 21:43:39 | 001,109,677 | ---- | M] (TeamExtreme) -- C:\Users\JAKUB\AppData\Roaming\.minecraft\minecraft launcher\Minecraft Launcher.exe
[2013.09.30 17:47:31 | 000,069,254 | ---- | M] () -- C:\Users\JAKUB\AppData\Roaming\.minecraft\minecraft launcher\Uninstall.exe
[2013.11.26 20:59:30 | 000,042,750 | ---- | M] (Electronic Arts) -- C:\Users\JAKUB\AppData\Roaming\Electronic Arts\Game Face\uninstall.exe
[2013.08.24 17:15:28 | 000,225,383 | R--- | M] () -- C:\Users\JAKUB\AppData\Roaming\Microsoft\Installer\{197816C4-9BF5-4633-BB84-63F03902544E}\_18CC08F80C86302835C63A.exe
[2013.08.24 17:15:27 | 000,225,383 | R--- | M] () -- C:\Users\JAKUB\AppData\Roaming\Microsoft\Installer\{197816C4-9BF5-4633-BB84-63F03902544E}\_6FEFF9B68218417F98F549.exe
[2013.08.24 17:15:28 | 000,010,134 | R--- | M] () -- C:\Users\JAKUB\AppData\Roaming\Microsoft\Installer\{197816C4-9BF5-4633-BB84-63F03902544E}\_C14A240941151A3B6EB01E.exe
[2013.08.24 17:15:27 | 000,010,134 | R--- | M] () -- C:\Users\JAKUB\AppData\Roaming\Microsoft\Installer\{197816C4-9BF5-4633-BB84-63F03902544E}\_C701C2819B92BF7AA763DE.exe
[2013.06.08 18:57:16 | 000,287,934 | R--- | M] () -- C:\Users\JAKUB\AppData\Roaming\Microsoft\Installer\{25871CD6-3E41-44F5-9A20-033B4DDF4741}\_5A946EA14073103642F10D.exe
[2013.06.08 18:57:16 | 000,009,662 | R--- | M] () -- C:\Users\JAKUB\AppData\Roaming\Microsoft\Installer\{25871CD6-3E41-44F5-9A20-033B4DDF4741}\_7394A8578B45D0B781B3FA.exe
[2013.06.08 18:57:16 | 000,009,662 | R--- | M] () -- C:\Users\JAKUB\AppData\Roaming\Microsoft\Installer\{25871CD6-3E41-44F5-9A20-033B4DDF4741}\_82A9B986084671CFF1EDCA.exe
[2013.06.08 18:57:16 | 000,287,934 | R--- | M] () -- C:\Users\JAKUB\AppData\Roaming\Microsoft\Installer\{25871CD6-3E41-44F5-9A20-033B4DDF4741}\_ED66BCBE97E7C5D758DF0B.exe
[2013.11.09 21:01:38 | 000,388,096 | R--- | M] (Trend Micro Inc.) -- C:\Users\JAKUB\AppData\Roaming\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe
[2013.07.09 17:25:21 | 000,088,102 | R--- | M] () -- C:\Users\JAKUB\AppData\Roaming\Microsoft\Installer\{63059735-CA97-FDFB-0E7A-3B8D81572EFD}\ARPPRODUCTICON.exe
[2013.05.01 12:56:41 | 000,029,926 | R--- | M] () -- C:\Users\JAKUB\AppData\Roaming\Microsoft\Installer\{6DE721A5-5E89-4D74-994C-652BB3C0672E}\ARPPRODUCTICON.exe
[2013.05.04 11:22:33 | 000,033,982 | R--- | M] () -- C:\Users\JAKUB\AppData\Roaming\Microsoft\Installer\{6EFD0C42-4CC1-4716-A0CA-21C1A062CF34}\_2E758A6ACF428AD2553E12.exe
[2013.05.04 11:22:33 | 000,033,982 | R--- | M] () -- C:\Users\JAKUB\AppData\Roaming\Microsoft\Installer\{6EFD0C42-4CC1-4716-A0CA-21C1A062CF34}\_853F67D554F05449430E7E.exe
[2013.12.02 21:51:42 | 000,287,934 | R--- | M] () -- C:\Users\JAKUB\AppData\Roaming\Microsoft\Installer\{92C634C4-DBB2-438A-B133-C03F15490C45}\_24267FDB971C4DB84FB666.exe
[2013.12.02 21:51:42 | 000,287,934 | R--- | M] () -- C:\Users\JAKUB\AppData\Roaming\Microsoft\Installer\{92C634C4-DBB2-438A-B133-C03F15490C45}\_87D864798077E2FCD8539A.exe
[2013.12.02 21:51:42 | 000,009,662 | R--- | M] () -- C:\Users\JAKUB\AppData\Roaming\Microsoft\Installer\{92C634C4-DBB2-438A-B133-C03F15490C45}\_907A0CBD79CE0CABDA8C82.exe
[2013.12.02 21:51:42 | 000,009,662 | R--- | M] () -- C:\Users\JAKUB\AppData\Roaming\Microsoft\Installer\{92C634C4-DBB2-438A-B133-C03F15490C45}\_A93E5D901B5BC27198CCD1.exe
[2013.11.24 18:44:03 | 000,119,808 | ---- | M] (obsproject.com) -- C:\Users\JAKUB\AppData\Roaming\OBS\updates\updater.exe
[2013.05.16 14:25:04 | 001,062,472 | ---- | M] () -- C:\Users\JAKUB\AppData\Roaming\Seznam.cz\szninstall.exe
[2013.05.16 14:26:24 | 002,589,256 | ---- | M] () -- C:\Users\JAKUB\AppData\Roaming\Seznam.cz\sznsetup.exe
[2013.04.16 12:52:34 | 000,055,808 | ---- | M] () -- C:\Users\JAKUB\AppData\Roaming\Seznam.cz\bin\ffkill.exe
[2013.04.29 11:53:34 | 000,045,560 | ---- | M] () -- C:\Users\JAKUB\AppData\Roaming\Seznam.cz\bin\listicka-x64.exe
[2013.04.12 09:13:24 | 000,457,208 | ---- | M] () -- C:\Users\JAKUB\AppData\Roaming\Seznam.cz\bin\szndesktop.exe
[2013.04.12 09:10:22 | 000,092,664 | ---- | M] () -- C:\Users\JAKUB\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe
[2013.11.12 09:44:54 | 000,316,440 | ---- | M] (SplitmediaLabs Limited) -- C:\Users\JAKUB\AppData\Roaming\SplitMediaLabs\XSplit\install\A86BEF5\encprobe.exe
[2013.03.18 14:57:47 | 000,148,992 | ---- | M] (SplitmediaLabs Limited) -- C:\Users\JAKUB\AppData\Roaming\SplitMediaLabs\XSplit\install\A86BEF5\VHMultiWriterExt.exe
[2013.11.12 09:44:36 | 000,317,464 | ---- | M] (SplitmediaLabs Limited) -- C:\Users\JAKUB\AppData\Roaming\SplitMediaLabs\XSplit\install\A86BEF5\VHMultiWriterExt2.exe
[2013.11.12 09:44:40 | 001,795,096 | ---- | M] (SplitMediaLabs Limited) -- C:\Users\JAKUB\AppData\Roaming\SplitMediaLabs\XSplit\install\A86BEF5\VHScrCapDlg32.exe
[2013.11.12 09:44:37 | 000,032,280 | ---- | M] (SplitMediaLabs) -- C:\Users\JAKUB\AppData\Roaming\SplitMediaLabs\XSplit\install\A86BEF5\XDS.exe
[2013.11.12 09:40:55 | 002,600,264 | ---- | M] (SplitMediaLabs) -- C:\Users\JAKUB\AppData\Roaming\SplitMediaLabs\XSplit\install\A86BEF5\XSplit.Core.exe
[2013.11.12 09:44:45 | 000,114,712 | ---- | M] (SplitmediaLabs Limited) -- C:\Users\JAKUB\AppData\Roaming\SplitMediaLabs\XSplit\install\A86BEF5\XSplitBroadcasterSrc.exe
[2013.11.12 09:44:49 | 000,064,536 | ---- | M] (SplitmediaLabs Limited) -- C:\Users\JAKUB\AppData\Roaming\SplitMediaLabs\XSplit\install\A86BEF5\XSplitCleanUp.exe
[2013.11.12 09:40:55 | 000,036,680 | ---- | M] (SplitMediaLabs) -- C:\Users\JAKUB\AppData\Roaming\SplitMediaLabs\XSplit\install\A86BEF5\XSplitRegSrc.exe
[2013.11.12 09:44:47 | 000,039,448 | ---- | M] (SplitMediaLabs) -- C:\Users\JAKUB\AppData\Roaming\SplitMediaLabs\XSplit\install\A86BEF5\XSplitRegSrc40.exe
[2013.11.12 09:44:50 | 000,026,136 | ---- | M] () -- C:\Users\JAKUB\AppData\Roaming\SplitMediaLabs\XSplit\install\A86BEF5\XSplitUtils.exe
[2013.11.12 09:44:52 | 000,172,568 | ---- | M] (SplitMediaLabs) -- C:\Users\JAKUB\AppData\Roaming\SplitMediaLabs\XSplit\install\A86BEF5\XSplit_Plugin_Installer.exe
[2013.11.12 09:44:43 | 000,328,216 | ---- | M] (SplitMediaLabs) -- C:\Users\JAKUB\AppData\Roaming\SplitMediaLabs\XSplit\install\A86BEF5\xsplit_updater.exe
[2013.11.12 09:44:42 | 000,043,544 | ---- | M] (SplitMediaLabs) -- C:\Users\JAKUB\AppData\Roaming\SplitMediaLabs\XSplit\install\A86BEF5\x64\XGS64.exe
[2013.12.29 21:00:00 | 000,393,728 | ---- | M] (BitTorrent, Inc.) -- C:\Users\JAKUB\AppData\Roaming\uTorrent\uTorrent.exe

< %systemroot%\*. /mp /s >

< %systemroot%\system32\*.dll /lockedfiles >

< %systemroot%\Tasks\*.job /lockedfiles >

< %systemroot%\system32\drivers\*.sys /lockedfiles >

< %systemroot%\System32\config\*.sav >

< %systemroot%\system32\*.dll /lockedfiles >

< %systemroot%\system32\drivers\*.sys /3 >

< %systemroot%\system32\*.* /3 >
[2014.01.26 09:25:30 | 000,000,029 | ---- | M] () -- C:\Windows\system32\TempWmicBatchFile.bat

< %SYSTEMDRIVE%\*.exe >

< >

< HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s >
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\Disabled (Startup Manager)]

< reg query "HKLM\Software\Microsoft\Windows NT\CurrentVersion\winlogon" /v GinaDLL /c >

< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv" /v ImagePath /c >
HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\SERVICES\WUAUSERV
IMAGEPATH REG_EXPAND_SZ %systemroot%\system32\svchost.exe -k netsvcs

< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS" /v ImagePath /c >
HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\SERVICES\BITS
IMAGEPATH REG_EXPAND_SZ %SystemRoot%\System32\svchost.exe -k netsvcs

< >

< type c:\boot.ini >> test.txt /c >

< %SystemDrive%\PhysicalMBR.bin /md5 >
[2014.01.26 09:08:19 | 000,000,512 | ---- | M] () MD5=6E997B9746195685CB80686963356235 -- C:\PhysicalMBR.bin

< >

< *crack* /s >
[2013.06.21 13:09:06 | 000,599,242 | ---- | M] () -- \Program Files (x86)\GamersFirst\APB Reloaded\APBGame\Content\Release\Packages\SymbolEditor\Primitives_SplatsCracks.upk
[2012.03.17 15:25:20 | 000,349,574 | ---- | M] () -- \Program Files (x86)\Lucius\Data\Decal\cracks.gfx
[2012.04.12 11:14:20 | 000,000,113 | ---- | M] () -- \Program Files (x86)\Lucius\Data\Decal\cracks.mtrl
[2012.05.18 13:26:14 | 000,615,506 | ---- | M] () -- \Program Files (x86)\Lucius\Data\Sound\sfx\sfx_crackle.wav
[2003.12.05 13:52:40 | 000,000,796 | ---- | M] () -- \Program Files (x86)\Rockstar Games\GTA San Andreas\data\data\Decision\Craig\crack1.ped
[2003.12.05 14:52:40 | 000,000,796 | ---- | M] () -- \Program Files (x86)\Rockstar Games\GTA San Andreas\data\Decision\Craig\crack1.ped
[2014.01.25 17:08:44 | 000,001,192 | ---- | M] () -- \Users\JAKUB\AppData\Roaming\Microsoft\Windows\Recent\Car Mechanic Simulator 2014[Full PC Game Complete Version Full With Crack]-RELOADED.lnk
[2014.01.25 12:00:02 | 000,001,270 | ---- | M] () -- \Users\JAKUB\AppData\Roaming\Microsoft\Windows\Recent\Car_Mechanic_Simulator_2014[Full_PC_Game_Complete_Version_Full_With_Crack]-RELOADED.torrent.lnk
[2014.01.19 10:01:44 | 000,000,588 | ---- | M] () -- \Users\JAKUB\AppData\Roaming\Microsoft\Windows\Recent\GTA-SA-Crack.zip.lnk
[2014.01.19 17:30:17 | 000,000,703 | ---- | M] () -- \Users\JAKUB\AppData\Roaming\Microsoft\Windows\Recent\gta-san-andreas-crack (1).rar.lnk
[2014.01.18 19:13:30 | 000,000,683 | ---- | M] () -- \Users\JAKUB\AppData\Roaming\Microsoft\Windows\Recent\gta-san-andreas-crack.rar.lnk
[2013.12.22 19:20:47 | 000,000,753 | ---- | M] () -- \Users\JAKUB\AppData\Roaming\Microsoft\Windows\Recent\Hotspot shield 2.65 Cracked By zulqurnainjutt.zip.lnk
[2013.12.22 19:53:51 | 000,000,898 | ---- | M] () -- \Users\JAKUB\AppData\Roaming\Microsoft\Windows\Recent\Hotspot Shield Elite 2.88 Full Version with Crack Free Download .rar.lnk
[2013.08.05 12:01:26 | 000,011,834 | ---- | M] () -- \Users\JAKUB\AppData\Roaming\uTorrent\AssasinsCreedII-Razor1911-crack.torrent
[2014.01.25 11:55:01 | 000,021,300 | ---- | M] () -- \Users\JAKUB\AppData\Roaming\uTorrent\Car Mechanic Simulator 2014[Full PC Game Complete Version Full With Crack]-RELOADED.torrent
[2013.12.14 14:35:08 | 000,000,411 | ---- | M] () -- \Users\JAKUB\AppData\Roaming\uTorrent\CyberGhost-Cracked.zip.torrent
[2013.10.23 20:56:03 | 000,040,540 | ---- | M] () -- \Users\JAKUB\AppData\Roaming\uTorrent\Garry's Mod Crack By CrackerHacker.torrent
[2013.12.02 21:58:16 | 000,011,145 | ---- | M] () -- \Users\JAKUB\AppData\Roaming\uTorrent\Mirillis Action! v1.14.3.0 ML Incl Crack - XenoCoder - [MUMBAI].torrent
[2013.10.24 19:43:33 | 000,004,451 | ---- | M] () -- \Users\JAKUB\AppData\Roaming\uTorrent\Test.Drive.Unlimited.2.Crack.Only-SKIDROW.torrent
[2013.09.19 15:43:20 | 000,021,216 | ---- | M] () -- \Users\JAKUB\AppData\Roaming\uTorrent\{www.Scenetime.com}Pro.Evolution.Soccer.2014.CRACKED-3DM.torrent
[2013.08.19 09:26:10 | 000,012,116 | ---- | M] () -- \Users\JAKUB\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BA4-11CF-B777-7015BEC2C535}_2442_3\rashaderstmbasedetailcrack.cfx
[2013.08.19 09:26:17 | 000,012,168 | ---- | M] () -- \Users\JAKUB\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BA4-11CF-B777-7015BEC2C535}_2442_3\rashaderstmbasedetailcrackalphatest.cfx
[2013.08.19 09:26:17 | 000,012,536 | ---- | M] () -- \Users\JAKUB\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BA4-11CF-B777-7015BEC2C535}_2442_3\rashaderstmbasedetailcrackalphatestlightmap.cfx
[2013.08.19 09:26:20 | 000,013,084 | ---- | M] () -- \Users\JAKUB\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BA4-11CF-B777-7015BEC2C535}_2442_3\rashaderstmbasedetailcrackalphatestlightmapshadow.cfx
[2013.08.19 09:26:22 | 000,012,436 | ---- | M] () -- \Users\JAKUB\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BA4-11CF-B777-7015BEC2C535}_2442_3\rashaderstmbasedetailcrackalphatestpointlight.cfx
[2013.08.19 09:26:20 | 000,012,720 | ---- | M] () -- \Users\JAKUB\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BA4-11CF-B777-7015BEC2C535}_2442_3\rashaderstmbasedetailcrackalphatestshadow.cfx
[2013.08.19 09:26:10 | 000,012,484 | ---- | M] () -- \Users\JAKUB\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BA4-11CF-B777-7015BEC2C535}_2442_3\rashaderstmbasedetailcracklightmap.cfx
[2013.08.19 09:26:12 | 000,013,032 | ---- | M] () -- \Users\JAKUB\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BA4-11CF-B777-7015BEC2C535}_2442_3\rashaderstmbasedetailcracklightmapshadow.cfx
[2013.08.19 09:26:11 | 000,012,720 | ---- | M] () -- \Users\JAKUB\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BA4-11CF-B777-7015BEC2C535}_2442_3\rashaderstmbasedetailcrackndetailncrack.cfx
[2013.08.19 09:26:18 | 000,012,756 | ---- | M] () -- \Users\JAKUB\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BA4-11CF-B777-7015BEC2C535}_2442_3\rashaderstmbasedetailcrackndetailncrackalphatest.cfx
[2013.08.19 09:26:19 | 000,013,096 | ---- | M] () -- \Users\JAKUB\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BA4-11CF-B777-7015BEC2C535}_2442_3\rashaderstmbasedetailcrackndetailncrackalphatestlightmap.cfx
[2013.08.19 09:26:22 | 000,013,672 | ---- | M] () -- \Users\JAKUB\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BA4-11CF-B777-7015BEC2C535}_2442_3\rashaderstmbasedetailcrackndetailncrackalphatestlightmapshadow.cfx
[2013.08.19 09:26:23 | 000,012,816 | ---- | M] () -- \Users\JAKUB\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BA4-11CF-B777-7015BEC2C535}_2442_3\rashaderstmbasedetailcrackndetailncrackalphatestpointlight.cfx
[2013.08.19 09:26:22 | 000,013,348 | ---- | M] () -- \Users\JAKUB\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BA4-11CF-B777-7015BEC2C535}_2442_3\rashaderstmbasedetailcrackndetailncrackalphatestshadow.cfx
[2013.08.19 09:26:11 | 000,013,060 | ---- | M] () -- \Users\JAKUB\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BA4-11CF-B777-7015BEC2C535}_2442_3\rashaderstmbasedetailcrackndetailncracklightmap.cfx
[2013.08.19 09:26:15 | 000,013,636 | ---- | M] () -- \Users\JAKUB\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BA4-11CF-B777-7015BEC2C535}_2442_3\rashaderstmbasedetailcrackndetailncracklightmapshadow.cfx
[2013.08.19 09:26:12 | 000,012,880 | ---- | M] () -- \Users\JAKUB\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BA4-11CF-B777-7015BEC2C535}_2442_3\rashaderstmbasedetailcrackndetailncrackparallaxdetail.cfx
[2013.08.19 09:26:19 | 000,012,916 | ---- | M] () -- \Users\JAKUB\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BA4-11CF-B777-7015BEC2C535}_2442_3\rashaderstmbasedetailcrackndetailncrackparallaxdetailalphatest.cfx
[2013.08.19 09:26:19 | 000,013,256 | ---- | M] () -- \Users\JAKUB\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BA4-11CF-B777-7015BEC2C535}_2442_3\rashaderstmbasedetailcrackndetailncrackparallaxdetailalphatestlightmap.cfx
[2013.08.19 09:26:22 | 000,013,832 | ---- | M] () -- \Users\JAKUB\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BA4-11CF-B777-7015BEC2C535}_2442_3\rashaderstmbasedetailcrackndetailncrackparallaxdetailalphatestlightmapshadow.cfx
[2013.08.19 09:26:23 | 000,012,940 | ---- | M] () -- \Users\JAKUB\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BA4-11CF-B777-7015BEC2C535}_2442_3\rashaderstmbasedetailcrackndetailncrackparallaxdetailalphatestpointlight.cfx
[2013.08.19 09:26:22 | 000,013,508 | ---- | M] () -- \Users\JAKUB\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BA4-11CF-B777-7015BEC2C535}_2442_3\rashaderstmbasedetailcrackndetailncrackparallaxdetailalphatestshadow.cfx
[2013.08.19 09:26:12 | 000,013,220 | ---- | M] () -- \Users\JAKUB\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BA4-11CF-B777-7015BEC2C535}_2442_3\rashaderstmbasedetailcrackndetailncrackparallaxdetaillightmap.cfx
[2013.08.19 09:26:15 | 000,013,796 | ---- | M] () -- \Users\JAKUB\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BA4-11CF-B777-7015BEC2C535}_2442_3\rashaderstmbasedetailcrackndetailncrackparallaxdetaillightmapshadow.cfx
[2013.08.19 09:26:16 | 000,012,904 | ---- | M] () -- \Users\JAKUB\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BA4-11CF-B777-7015BEC2C535}_2442_3\rashaderstmbasedetailcrackndetailncrackparallaxdetailpointlight.cfx
[2013.08.19 09:26:15 | 000,013,472 | ---- | M] () -- \Users\JAKUB\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BA4-11CF-B777-7015BEC2C535}_2442_3\rashaderstmbasedetailcrackndetailncrackparallaxdetailshadow.cfx
[2013.08.19 09:26:16 | 000,012,780 | ---- | M] () -- \Users\JAKUB\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BA4-11CF-B777-7015BEC2C535}_2442_3\rashaderstmbasedetailcrackndetailncrackpointlight.cfx
[2013.08.19 09:26:14 | 000,013,312 | ---- | M] () -- \Users\JAKUB\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BA4-11CF-B777-7015BEC2C535}_2442_3\rashaderstmbasedetailcrackndetailncrackshadow.cfx
[2013.08.19 09:26:15 | 000,012,400 | ---- | M] () -- \Users\JAKUB\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BA4-11CF-B777-7015BEC2C535}_2442_3\rashaderstmbasedetailcrackpointlight.cfx
[2013.08.19 09:26:12 | 000,012,668 | ---- | M] () -- \Users\JAKUB\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BA4-11CF-B777-7015BEC2C535}_2442_3\rashaderstmbasedetailcrackshadow.cfx
[2013.08.19 09:26:10 | 000,012,296 | ---- | M] () -- \Users\JAKUB\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BA4-11CF-B777-7015BEC2C535}_2442_3\rashaderstmbasedetaildirtcrack.cfx
[2013.08.19 09:26:17 | 000,012,348 | ---- | M] () -- \Users\JAKUB\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BA4-11CF-B777-7015BEC2C535}_2442_3\rashaderstmbasedetaildirtcrackalphatest.cfx
[2013.08.19 09:26:17 | 000,012,716 | ---- | M] () -- \Users\JAKUB\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BA4-11CF-B777-7015BEC2C535}_2442_3\rashaderstmbasedetaildirtcrackalphatestlightmap.cfx
[2013.08.19 09:26:20 | 000,013,264 | ---- | M] () -- \Users\JAKUB\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BA4-11CF-B777-7015BEC2C535}_2442_3\rashaderstmbasedetaildirtcrackalphatestlightmapshadow.cfx
[2013.08.19 09:26:22 | 000,012,612 | ---- | M] () -- \Users\JAKUB\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BA4-11CF-B777-7015BEC2C535}_2442_3\rashaderstmbasedetaildirtcrackalphatestpointlight.cfx
[2013.08.19 09:26:20 | 000,012,900 | ---- | M] () -- \Users\JAKUB\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BA4-11CF-B777-7015BEC2C535}_2442_3\rashaderstmbasedetaildirtcrackalphatestshadow.cfx
[2013.08.19 09:26:10 | 000,012,664 | ---- | M] () -- \Users\JAKUB\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BA4-11CF-B777-7015BEC2C535}_2442_3\rashaderstmbasedetaildirtcracklightmap.cfx
[2013.08.19 09:26:13 | 000,013,212 | ---- | M] () -- \Users\JAKUB\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BA4-11CF-B777-7015BEC2C535}_2442_3\rashaderstmbasedetaildirtcracklightmapshadow.cfx
[2013.08.19 09:26:11 | 000,012,900 | ---- | M] () -- \Users\JAKUB\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BA4-11CF-B777-7015BEC2C535}_2442_3\rashaderstmbasedetaildirtcrackndetailncrack.cfx
[2013.08.19 09:26:19 | 000,012,936 | ---- | M] () -- \Users\JAKUB\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BA4-11CF-B777-7015BEC2C535}_2442_3\rashaderstmbasedetaildirtcrackndetailncrackalphatest.cfx
[2013.08.19 09:26:19 | 000,013,276 | ---- | M] () -- \Users\JAKUB\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BA4-11CF-B777-7015BEC2C535}_2442_3\rashaderstmbasedetaildirtcrackndetailncrackalphatestlightmap.cfx
[2013.08.19 09:26:22 | 000,013,852 | ---- | M] () -- \Users\JAKUB\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BA4-11CF-B777-7015BEC2C535}_2442_3\rashaderstmbasedetaildirtcrackndetailncrackalphatestlightmapshadow.cfx
[2013.08.19 09:26:23 | 000,012,996 | ---- | M] () -- \Users\JAKUB\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BA4-11CF-B777-7015BEC2C535}_2442_3\rashaderstmbasedetaildirtcrackndetailncrackalphatestpointlight.cfx
[2013.08.19 09:26:22 | 000,013,528 | ---- | M] () -- \Users\JAKUB\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BA4-11CF-B777-7015BEC2C535}_2442_3\rashaderstmbasedetaildirtcrackndetailncrackalphatestshadow.cfx
[2013.08.19 09:26:11 | 000,013,240 | ---- | M] () -- \Users\JAKUB\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BA4-11CF-B777-7015BEC2C535}_2442_3\rashaderstmbasedetaildirtcrackndetailncracklightmap.cfx
[2013.08.19 09:26:15 | 000,013,816 | ---- | M] () -- \Users\JAKUB\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BA4-11CF-B777-7015BEC2C535}_2442_3\rashaderstmbasedetaildirtcrackndetailncracklightmapshadow.cfx
[2013.08.19 09:26:12 | 000,013,060 | ---- | M] () -- \Users\JAKUB\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BA4-11CF-B777-7015BEC2C535}_2442_3\rashaderstmbasedetaildirtcrackndetailncrackparallaxdetail.cfx
[2013.08.19 09:26:19 | 000,013,096 | ---- | M] () -- \Users\JAKUB\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BA4-11CF-B777-7015BEC2C535}_2442_3\rashaderstmbasedetaildirtcrackndetailncrackparallaxdetailalphatest.cfx
[2013.08.19 09:26:19 | 000,013,436 | ---- | M] () -- \Users\JAKUB\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BA4-11CF-B777-7015BEC2C535}_2442_3\rashaderstmbasedetaildirtcrackndetailncrackparallaxdetailalphatestlightmap.cfx
[2013.08.19 09:26:22 | 000,014,012 | ---- | M] () -- \Users\JAKUB\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BA4-11CF-B777-7015BEC2C535}_2442_3\rashaderstmbasedetaildirtcrackndetailncrackparallaxdetailalphatestlightmapshadow.cfx
[2013.08.19 09:26:23 | 000,013,120 | ---- | M] () -- \Users\JAKUB\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BA4-11CF-B777-7015BEC2C535}_2442_3\rashaderstmbasedetaildirtcrackndetailncrackparallaxdetailalphatestpointlight.cfx
[2013.08.19 09:26:22 | 000,013,688 | ---- | M] () -- \Users\JAKUB\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BA4-11CF-B777-7015BEC2C535}_2442_3\rashaderstmbasedetaildirtcrackndetailncrackparallaxdetailalphatestshadow.cfx
[2013.08.19 09:26:12 | 000,013,400 | ---- | M] () -- \Users\JAKUB\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BA4-11CF-B777-7015BEC2C535}_2442_3\rashaderstmbasedetaildirtcrackndetailncrackparallaxdetaillightmap.cfx
[2013.08.19 09:26:15 | 000,013,976 | ---- | M] () -- \Users\JAKUB\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BA4-11CF-B777-7015BEC2C535}_2442_3\rashaderstmbasedetaildirtcrackndetailncrackparallaxdetaillightmapshadow.cfx
[2013.08.19 09:26:16 | 000,013,084 | ---- | M] () -- \Users\JAKUB\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BA4-11CF-B777-7015BEC2C535}_2442_3\rashaderstmbasedetaildirtcrackndetailncrackparallaxdetailpointlight.cfx
[2013.08.19 09:26:15 | 000,013,652 | ---- | M] () -- \Users\JAKUB\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BA4-11CF-B777-7015BEC2C535}_2442_3\rashaderstmbasedetaildirtcrackndetailncrackparallaxdetailshadow.cfx
[2013.08.19 09:26:16 | 000,012,960 | ---- | M] () -- \Users\JAKUB\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BA4-11CF-B777-7015BEC2C535}_2442_3\rashaderstmbasedetaildirtcrackndetailncrackpointlight.cfx
[2013.08.19 09:26:15 | 000,013,492 | ---- | M] () -- \Users\JAKUB\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BA4-11CF-B777-7015BEC2C535}_2442_3\rashaderstmbasedetaildirtcrackndetailncrackshadow.cfx
[2013.08.19 09:26:15 | 000,012,576 | ---- | M] () -- \Users\JAKUB\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BA4-11CF-B777-7015BEC2C535}_2442_3\rashaderstmbasedetaildirtcrackpointlight.cfx
[2013.08.19 09:26:12 | 000,012,848 | ---- | M] () -- \Users\JAKUB\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BA4-11CF-B777-7015BEC2C535}_2442_3\rashaderstmbasedetaildirtcrackshadow.cfx
[2013.11.23 16:22:21 | 000,012,020 | ---- | M] () -- \Users\JAKUB\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BA4-11CF-E577-7015BEC2C535}_2442_2\rashaderstmbasedetailcrack.cfx
[2013.11.23 16:22:25 | 000,012,072 | ---- | M] () -- \Users\JAKUB\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BA4-11CF-E577-7015BEC2C535}_2442_2\rashaderstmbasedetailcrackalphatest.cfx
[2013.11.23 16:22:25 | 000,012,440 | ---- | M] () -- \Users\JAKUB\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BA4-11CF-E577-7015BEC2C535}_2442_2\rashaderstmbasedetailcrackalphatestlightmap.cfx
[2013.11.23 16:22:27 | 000,012,988 | ---- | M] () -- \Users\JAKUB\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BA4-11CF-E577-7015BEC2C535}_2442_2\rashaderstmbasedetailcrackalphatestlightmapshadow.cfx
[2013.11.23 16:22:28 | 000,012,340 | ---- | M] () -- \Users\JAKUB\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BA4-11CF-E577-7015BEC2C535}_2442_2\rashaderstmbasedetailcrackalphatestpointlight.cfx
[2013.11.23 16:22:27 | 000,012,624 | ---- | M] () -- \Users\JAKUB\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BA4-11CF-E577-7015BEC2C535}_2442_2\rashaderstmbasedetailcrackalphatestshadow.cfx
[2013.11.23 16:22:21 | 000,012,388 | ---- | M] () -- \Users\JAKUB\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BA4-11CF-E577-7015BEC2C535}_2442_2\rashaderstmbasedetailcracklightmap.cfx
[2013.11.23 16:22:22 | 000,012,936 | ---- | M] () -- \Users\JAKUB\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BA4-11CF-E577-7015BEC2C535}_2442_2\rashaderstmbasedetailcracklightmapshadow.cfx
[2013.11.23 16:22:21 | 000,012,624 | ---- | M] () -- \Users\JAKUB\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BA4-11CF-E577-7015BEC2C535}_2442_2\rashaderstmbasedetailcrackndetailncrack.cfx
[2013.11.23 16:22:26 | 000,012,660 | ---- | M] () -- \Users\JAKUB\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BA4-11CF-E577-7015BEC2C535}_2442_2\rashaderstmbasedetailcrackndetailncrackalphatest.cfx
[2013.11.23 16:22:26 | 000,013,000 | ---- | M] () -- \Users\JAKUB\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BA4-11CF-E577-7015BEC2C535}_2442_2\rashaderstmbasedetailcrackndetailncrackalphatestlightmap.cfx
[2013.11.23 16:22:28 | 000,013,576 | ---- | M] () -- \Users\JAKUB\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BA4-11CF-E577-7015BEC2C535}_2442_2\rashaderstmbasedetailcrackndetailncrackalphatestlightmapshadow.cfx
[2013.11.23 16:22:29 | 000,012,720 | ---- | M] () -- \Users\JAKUB\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BA4-11CF-E577-7015BEC2C535}_2442_2\rashaderstmbasedetailcrackndetailncrackalphatestpointlight.cfx
[2013.11.23 16:22:28 | 000,013,252 | ---- | M] () -- \Users\JAKUB\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BA4-11CF-E577-7015BEC2C535}_2442_2\rashaderstmbasedetailcrackndetailncrackalphatestshadow.cfx
[2013.11.23 16:22:22 | 000,012,964 | ---- | M] () -- \Users\JAKUB\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BA4-11CF-E577-7015BEC2C535}_2442_2\rashaderstmbasedetailcrackndetailncracklightmap.cfx
[2013.11.23 16:22:24 | 000,013,540 | ---- | M] () -- \Users\JAKUB\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BA4-11CF-E577-7015BEC2C535}_2442_2\rashaderstmbasedetailcrackndetailncracklightmapshadow.cfx
[2013.11.23 16:22:24 | 000,012,684 | ---- | M] () -- \Users\JAKUB\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BA4-11CF-E577-7015BEC2C535}_2442_2\rashaderstmbasedetailcrackndetailncrackpointlight.cfx
[2013.11.23 16:22:24 | 000,013,216 | ---- | M] () -- \Users\JAKUB\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BA4-11CF-E577-7015BEC2C535}_2442_2\rashaderstmbasedetailcrackndetailncrackshadow.cfx
[2013.11.23 16:22:24 | 000,012,304 | ---- | M] () -- \Users\JAKUB\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BA4-11CF-E577-7015BEC2C535}_2442_2\rashaderstmbasedetailcrackpointlight.cfx
[2013.11.23 16:22:22 | 000,012,572 | ---- | M] () -- \Users\JAKUB\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BA4-11CF-E577-7015BEC2C535}_2442_2\rashaderstmbasedetailcrackshadow.cfx
[2013.11.23 16:22:21 | 000,012,200 | ---- | M] () -- \Users\JAKUB\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BA4-11CF-E577-7015BEC2C535}_2442_2\rashaderstmbasedetaildirtcrack.cfx
[2013.11.23 16:22:25 | 000,012,252 | ---- | M] () -- \Users\JAKUB\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BA4-11CF-E577-7015BEC2C535}_2442_2\rashaderstmbasedetaildirtcrackalphatest.cfx
[2013.11.23 16:22:25 | 000,012,620 | ---- | M] () -- \Users\JAKUB\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BA4-11CF-E577-7015BEC2C535}_2442_2\rashaderstmbasedetaildirtcrackalphatestlightmap.cfx
[2013.11.23 16:22:27 | 000,013,168 | ---- | M] () -- \Users\JAKUB\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BA4-11CF-E577-7015BEC2C535}_2442_2\rashaderstmbasedetaildirtcrackalphatestlightmapshadow.cfx
[2013.11.23 16:22:28 | 000,012,516 | ---- | M] () -- \Users\JAKUB\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BA4-11CF-E577-7015BEC2C535}_2442_2\rashaderstmbasedetaildirtcrackalphatestpointlight.cfx
[2013.11.23 16:22:27 | 000,012,804 | ---- | M] () -- \Users\JAKUB\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BA4-11CF-E577-7015BEC2C535}_2442_2\rashaderstmbasedetaildirtcrackalphatestshadow.cfx
[2013.11.23 16:22:21 | 000,012,568 | ---- | M] () -- \Users\JAKUB\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BA4-11CF-E577-7015BEC2C535}_2442_2\rashaderstmbasedetaildirtcracklightmap.cfx
[2013.11.23 16:22:23 | 000,013,116 | ---- | M] () -- \Users\JAKUB\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BA4-11CF-E577-7015BEC2C535}_2442_2\rashaderstmbasedetaildirtcracklightmapshadow.cfx
[2013.11.23 16:22:22 | 000,012,804 | ---- | M] () -- \Users\JAKUB\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BA4-11CF-E577-7015BEC2C535}_2442_2\rashaderstmbasedetaildirtcrackndetailncrack.cfx
[2013.11.23 16:22:26 | 000,012,840 | ---- | M] () -- \Users\JAKUB\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BA4-11CF-E577-7015BEC2C535}_2442_2\rashaderstmbasedetaildirtcrackndetailncrackalphatest.cfx
[2013.11.23 16:22:26 | 000,013,180 | ---- | M] () -- \Users\JAKUB\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BA4-11CF-E577-7015BEC2C535}_2442_2\rashaderstmbasedetaildirtcrackndetailncrackalphatestlightmap.cfx
[2013.11.23 16:22:28 | 000,013,756 | ---- | M] () -- \Users\JAKUB\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BA4-11CF-E577-7015BEC2C535}_2442_2\rashaderstmbasedetaildirtcrackndetailncrackalphatestlightmapshadow.cfx
[2013.11.23 16:22:29 | 000,012,900 | ---- | M] () -- \Users\JAKUB\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BA4-11CF-E577-7015BEC2C535}_2442_2\rashaderstmbasedetaildirtcrackndetailncrackalphatestpointlight.cfx
[2013.11.23 16:22:28 | 000,013,432 | ---- | M] () -- \Users\JAKUB\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BA4-11CF-E577-7015BEC2C535}_2442_2\rashaderstmbasedetaildirtcrackndetailncrackalphatestshadow.cfx
[2013.11.23 16:22:22 | 000,013,144 | ---- | M] () -- \Users\JAKUB\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BA4-11CF-E577-7015BEC2C535}_2442_2\rashaderstmbasedetaildirtcrackndetailncracklightmap.cfx
[2013.11.23 16:22:24 | 000,013,720 | ---- | M] () -- \Users\JAKUB\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BA4-11CF-E577-7015BEC2C535}_2442_2\rashaderstmbasedetaildirtcrackndetailncracklightmapshadow.cfx
[2013.11.23 16:22:25 | 000,012,864 | ---- | M] () -- \Users\JAKUB\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BA4-11CF-E577-7015BEC2C535}_2442_2\rashaderstmbasedetaildirtcrackndetailncrackpointlight.cfx
[2013.11.23 16:22:24 | 000,013,396 | ---- | M] () -- \Users\JAKUB\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BA4-11CF-E577-7015BEC2C535}_2442_2\rashaderstmbasedetaildirtcrackndetailncrackshadow.cfx
[2013.11.23 16:22:24 | 000,012,480 | ---- | M] () -- \Users\JAKUB\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BA4-11CF-E577-7015BEC2C535}_2442_2\rashaderstmbasedetaildirtcrackpointlight.cfx
[2013.11.23 16:22:22 | 000,012,752 | ---- | M] () -- \Users\JAKUB\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BA4-11CF-E577-7015BEC2C535}_2442_2\rashaderstmbasedetaildirtcrackshadow.cfx
[2013.11.23 16:16:15 | 000,012,116 | ---- | M] () -- \Users\JAKUB\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BA4-11CF-E577-7015BEC2C535}_2442_3\rashaderstmbasedetailcrack.cfx
[2013.11.23 16:16:22 | 000,012,168 | ---- | M] () -- \Users\JAKUB\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BA4-11CF-E577-7015BEC2C535}_2442_3\rashaderstmbasedetailcrackalphatest.cfx
[2013.11.23 16:16:22 | 000,012,536 | ---- | M] () -- \Users\JAKUB\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BA4-11CF-E577-7015BEC2C535}_2442_3\rashaderstmbasedetailcrackalphatestlightmap.cfx
[2013.11.23 16:16:25 | 000,013,084 | ---- | M] () -- \Users\JAKUB\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BA4-11CF-E577-7015BEC2C535}_2442_3\rashaderstmbasedetailcrackalphatestlightmapshadow.cfx
[2013.11.23 16:16:27 | 000,012,436 | ---- | M] () -- \Users\JAKUB\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BA4-11CF-E577-7015BEC2C535}_2442_3\rashaderstmbasedetailcrackalphatestpointlight.cfx
[2013.11.23 16:16:25 | 000,012,720 | ---- | M] () -- \Users\JAKUB\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BA4-11CF-E577-7015BEC2C535}_2442_3\rashaderstmbasedetailcrackalphatestshadow.cfx
[2013.11.23 16:16:15 | 000,012,484 | ---- | M] () -- \Users\JAKUB\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BA4-11CF-E577-7015BEC2C535}_2442_3\rashaderstmbasedetailcracklightmap.cfx
[2013.11.23 16:16:17 | 000,013,032 | ---- | M] () -- \Users\JAKUB\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BA4-11CF-E577-7015BEC2C535}_2442_3\rashaderstmbasedetailcracklightmapshadow.cfx
[2013.11.23 16:16:16 | 000,012,720 | ---- | M] () -- \Users\JAKUB\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BA4-11CF-E577-7015BEC2C535}_2442_3\rashaderstmbasedetailcrackndetailncrack.cfx
[2013.11.23 16:16:24 | 000,012,756 | ---- | M] () -- \Users\JAKUB\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BA4-11CF-E577-7015BEC2C535}_2442_3\rashaderstmbasedetailcrackndetailncrackalphatest.cfx
[2013.11.23 16:16:24 | 000,013,096 | ---- | M] () -- \Users\JAKUB\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BA4-11CF-E577-7015BEC2C535}_2442_3\rashaderstmbasedetailcrackndetailncrackalphatestlightmap.cfx
[2013.11.23 16:16:27 | 000,013,672 | ---- | M] () -- \Users\JAKUB\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BA4-11CF-E577-7015BEC2C535}_2442_3\rashaderstmbasedetailcrackndetailncrackalphatestlightmapshadow.cfx
[2013.11.23 16:16:28 | 000,012,816 | ---- | M] () -- \Users\JAKUB\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BA4-11CF-E577-7015BEC2C535}_2442_3\rashaderstmbasedetailcrackndetailncrackalphatestpointlight.cfx
[2013.11.23 16:16:27 | 000,013,348 | ---- | M] () -- \Users\JAKUB\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BA4-11CF-E577-7015BEC2C535}_2442_3\rashaderstmbasedetailcrackndetailncrackalphatestshadow.cfx
[2013.11.23 16:16:16 | 000,013,060 | ---- | M] () -- \Users\JAKUB\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BA4-11CF-E577-7015BEC2C535}_2442_3\rashaderstmbasedetailcrackndetailncracklightmap.cfx
[2013.11.23 16:16:20 | 000,013,636 | ---- | M] () -- \Users\JAKUB\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BA4-11CF-E577-7015BEC2C535}_2442_3\rashaderstmbasedetailcrackndetailncracklightmapshadow.cfx
[2013.11.23 16:16:17 | 000,012,880 | ---- | M] () -- \Users\JAKUB\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BA4-11CF-E577-7015BEC2C535}_2442_3\rashaderstmbasedetailcrackndetailncrackparallaxdetail.cfx
[2013.11.23 16:16:24 | 000,012,916 | ---- | M] () -- \Users\JAKUB\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BA4-11CF-E577-7015BEC2C535}_2442_3\rashaderstmbasedetailcrackndetailncrackparallaxdetailalphatest.cfx
[2013.11.23 16:16:24 | 000,013,256 | ---- | M] () -- \Users\JAKUB\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BA4-11CF-E577-7015BEC2C535}_2442_3\rashaderstmbasedetailcrackndetailncrackparallaxdetailalphatestlightmap.cfx
[2013.11.23 16:16:27 | 000,013,832 | ---- | M] () -- \Users\JAKUB\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BA4-11CF-E577-7015BEC2C535}_2442_3\rashaderstmbasedetailcrackndetailncrackparallaxdetailalphatestlightmapshadow.cfx
[2013.11.23 16:16:28 | 000,012,940 | ---- | M] () -- \Users\JAKUB\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BA4-11CF-E577-7015BEC2C535}_2442_3\rashaderstmbasedetailcrackndetailncrackparallaxdetailalphatestpointlight.cfx
[2013.11.23 16:16:27 | 000,013,508 | ---- | M] () -- \Users\JAKUB\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BA4-11CF-E577-7015BEC2C535}_2442_3\rashaderstmbasedetailcrackndetailncrackparallaxdetailalphatestshadow.cfx
[2013.11.23 16:16:17 | 000,013,220 | ---- | M] () -- \Users\JAKUB\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BA4-11CF-E577-7015BEC2C535}_2442_3\rashaderstmbasedetailcrackndetailncrackparallaxdetaillightmap.cfx
[2013.11.23 16:16:20 | 000,013,796 | ---- | M] () -- \Users\JAKUB\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BA4-11CF-E577-7015BEC2C535}_2442_3\rashaderstmbasedetailcrackndetailncrackparallaxdetaillightmapshadow.cfx
[2013.11.23 16:16:21 | 000,012,904 | ---- | M] () -- \Users\JAKUB\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BA4-11CF-E577-7015BEC2C535}_2442_3\rashaderstmbasedetailcrackndetailncrackparallaxdetailpointlight.cfx
[2013.11.23 16:16:20 | 000,013,472 | ---- | M] () -- \Users\JAKUB\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BA4-11CF-E577-7015BEC2C535}_2442_3\rashaderstmbasedetailcrackndetailncrackparallaxdetailshadow.cfx
[2013.11.23 16:16:21 | 000,012,780 | ---- | M] () -- \Users\JAKUB\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BA4-11CF-E577-7015BEC2C535}_2442_3\rashaderstmbasedetailcrackndetailncrackpointlight.cfx
[2013.11.23 16:16:20 | 000,013,312 | ---- | M] () -- \Users\JAKUB\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BA4-11CF-E577-7015BEC2C535}_2442_3\rashaderstmbasedetailcrackndetailncrackshadow.cfx
[2013.11.23 16:16:20 | 000,012,400 | ---- | M] () -- \Users\JAKUB\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BA4-11CF-E577-7015BEC2C535}_2442_3\rashaderstmbasedetailcrackpointlight.cfx
[2013.11.23 16:16:17 | 000,012,668 | ---- | M] () -- \Users\JAKUB\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BA4-11CF-E577-7015BEC2C535}_2442_3\rashaderstmbasedetailcrackshadow.cfx
[2013.11.23 16:16:15 | 000,012,296 | ---- | M] () -- \Users\JAKUB\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BA4-11CF-E577-7015BEC2C535}_2442_3\rashaderstmbasedetaildirtcrack.cfx
[2013.11.23 16:16:22 | 000,012,348 | ---- | M] () -- \Users\JAKUB\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BA4-11CF-E577-7015BEC2C535}_2442_3\rashaderstmbasedetaildirtcrackalphatest.cfx
[2013.11.23 16:16:22 | 000,012,716 | ---- | M] () -- \Users\JAKUB\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BA4-11CF-E577-7015BEC2C535}_2442_3\rashaderstmbasedetaildirtcrackalphatestlightmap.cfx
[2013.11.23 16:16:25 | 000,013,264 | ---- | M] () -- \Users\JAKUB\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BA4-11CF-E577-7015BEC2C535}_2442_3\rashaderstmbasedetaildirtcrackalphatestlightmapshadow.cfx
[2013.11.23 16:16:28 | 000,012,612 | ---- | M] () -- \Users\JAKUB\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BA4-11CF-E577-7015BEC2C535}_2442_3\rashaderstmbasedetaildirtcrackalphatestpointlight.cfx
[2013.11.23 16:16:25 | 000,012,900 | ---- | M] () -- \Users\JAKUB\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BA4-11CF-E577-7015BEC2C535}_2442_3\rashaderstmbasedetaildirtcrackalphatestshadow.cfx
[2013.11.23 16:16:15 | 000,012,664 | ---- | M] () -- \Users\JAKUB\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BA4-11CF-E577-7015BEC2C535}_2442_3\rashaderstmbasedetaildirtcracklightmap.cfx
[2013.11.23 16:16:18 | 000,013,212 | ---- | M] () -- \Users\JAKUB\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BA4-11CF-E577-7015BEC2C535}_2442_3\rashaderstmbasedetaildirtcracklightmapshadow.cfx
[2013.11.23 16:16:16 | 000,012,900 | ---- | M] () -- \Users\JAKUB\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BA4-11CF-E577-7015BEC2C535}_2442_3\rashaderstmbasedetaildirtcrackndetailncrack.cfx
[2013.11.23 16:16:24 | 000,012,936 | ---- | M] () -- \Users\JAKUB\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BA4-11CF-E577-7015BEC2C535}_2442_3\rashaderstmbasedetaildirtcrackndetailncrackalphatest.cfx
[2013.11.23 16:16:24 | 000,013,276 | ---- | M] () -- \Users\JAKUB\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BA4-11CF-E577-7015BEC2C535}_2442_3\rashaderstmbasedetaildirtcrackndetailncrackalphatestlightmap.cfx
[2013.11.23 16:16:27 | 000,013,852 | ---- | M] () -- \Users\JAKUB\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BA4-11CF-E577-7015BEC2C535}_2442_3\rashaderstmbasedetaildirtcrackndetailncrackalphatestlightmapshadow.cfx
[2013.11.23 16:16:28 | 000,012,996 | ---- | M] () -- \Users\JAKUB\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BA4-11CF-E577-7015BEC2C535}_2442_3\rashaderstmbasedetaildirtcrackndetailncrackalphatestpointlight.cfx
[2013.11.23 16:16:27 | 000,013,528 | ---- | M] () -- \Users\JAKUB\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BA4-11CF-E577-7015BEC2C535}_2442_3\rashaderstmbasedetaildirtcrackndetailncrackalphatestshadow.cfx
[2013.11.23 16:16:16 | 000,013,240 | ---- | M] () -- \Users\JAKUB\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BA4-11CF-E577-7015BEC2C535}_2442_3\rashaderstmbasedetaildirtcrackndetailncracklightmap.cfx
[2013.11.23 16:16:20 | 000,013,816 | ---- | M] () -- \Users\JAKUB\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BA4-11CF-E577-7015BEC2C535}_2442_3\rashaderstmbasedetaildirtcrackndetailncracklightmapshadow.cfx
[2013.11.23 16:16:17 | 000,013,060 | ---- | M] () -- \Users\JAKUB\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BA4-11CF-E577-7015BEC2C535}_2442_3\rashaderstmbasedetaildirtcrackndetailncrackparallaxdetail.cfx
[2013.11.23 16:16:24 | 000,013,096 | ---- | M] () -- \Users\JAKUB\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BA4-11CF-E577-7015BEC2C535}_2442_3\rashaderstmbasedetaildirtcrackndetailncrackparallaxdetailalphatest.cfx
[2013.11.23 16:16:24 | 000,013,436 | ---- | M] () -- \Users\JAKUB\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BA4-11CF-E577-7015BEC2C535}_2442_3\rashaderstmbasedetaildirtcrackndetailncrackparallaxdetailalphatestlightmap.cfx
[2013.11.23 16:16:27 | 000,014,012 | ---- | M] () -- \Users\JAKUB\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BA4-11CF-E577-7015BEC2C535}_2442_3\rashaderstmbasedetaildirtcrackndetailncrackparallaxdetailalphatestlightmapshadow.cfx
[2013.11.23 16:16:28 | 000,013,120 | ---- | M] () -- \Users\JAKUB\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BA4-11CF-E577-7015BEC2C535}_2442_3\rashaderstmbasedetaildirtcrackndetailncrackparallaxdetailalphatestpointlight.cfx
[2013.11.23 16:16:27 | 000,013,688 | ---- | M] () -- \Users\JAKUB\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BA4-11CF-E577-7015BEC2C535}_2442_3\rashaderstmbasedetaildirtcrackndetailncrackparallaxdetailalphatestshadow.cfx
[2013.11.23 16:16:17 | 000,013,400 | ---- | M] () -- \Users\JAKUB\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BA4-11CF-E577-7015BEC2C535}_2442_3\rashaderstmbasedetaildirtcrackndetailncrackparallaxdetaillightmap.cfx
[2013.11.23 16:16:20 | 000,013,976 | ---- | M] () -- \Users\JAKUB\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BA4-11CF-E577-7015BEC2C535}_2442_3\rashaderstmbasedetaildirtcrackndetailncrackparallaxdetaillightmapshadow.cfx
[2013.11.23 16:16:22 | 000,013,084 | ---- | M] () -- \Users\JAKUB\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BA4-11CF-E577-7015BEC2C535}_2442_3\rashaderstmbasedetaildirtcrackndetailncrackparallaxdetailpointlight.cfx
[2013.11.23 16:16:20 | 000,013,652 | ---- | M] () -- \Users\JAKUB\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BA4-11CF-E577-7015BEC2C535}_2442_3\rashaderstmbasedetaildirtcrackndetailncrackparallaxdetailshadow.cfx
[2013.11.23 16:16:21 | 000,012,960 | ---- | M] () -- \Users\JAKUB\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BA4-11CF-E577-7015BEC2C535}_2442_3\rashaderstmbasedetaildirtcrackndetailncrackpointlight.cfx
[2013.11.23 16:16:20 | 000,013,492 | ---- | M] () -- \Users\JAKUB\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BA4-11CF-E577-7015BEC2C535}_2442_3\rashaderstmbasedetaildirtcrackndetailncrackshadow.cfx
[2013.11.23 16:16:21 | 000,012,576 | ---- | M] () -- \Users\JAKUB\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BA4-11CF-E577-7015BEC2C535}_2442_3\rashaderstmbasedetaildirtcrackpointlight.cfx
[2013.11.23 16:16:18 | 000,012,848 | ---- | M] () -- \Users\JAKUB\Documents\Battlefield 2\mods\bf2\cache\{D7B71EE2-2BA4-11CF-E577-7015BEC2C535}_2442_3\rashaderstmbasedetaildirtcrackshadow.cfx

< *keygen* /s >
[2013.12.07 19:20:14 | 000,030,471 | ---- | M] () -- \Users\JAKUB\AppData\Roaming\uTorrent\Sony Vegas PRO 10.0c+Keygen(works with windows7) [ kk ].torrent
[2013.12.03 16:40:39 | 000,017,067 | ---- | M] () -- \Users\JAKUB\AppData\Roaming\uTorrent\Sony Vegas Pro 11.0.370 64 bit patch keygen huoyuan.torrent

< *AntiWPA* /s >

< *loader* /s >
[2013.08.25 18:35:16 | 000,004,236 | ---- | M] () -- \AdwCleaner\Quarantine\C\Windows\System32\Tasks\FreeHDSport TV-codedownloader.vir
[2011.08.08 07:08:30 | 000,000,115 | ---- | M] () -- \Hry\F1 2011\audio\audio_loader.xml
[2011.08.08 07:18:26 | 000,000,342 | ---- | M] () -- \Hry\F1 2011\scenes\garage_loader.xml
[2011.08.08 07:18:26 | 000,001,042 | ---- | M] () -- \Hry\F1 2011\scenes\paddock_gameloader.xml
[2011.08.08 07:18:26 | 000,000,645 | ---- | M] () -- \Hry\F1 2011\scenes\paddock_loader.xml
[2011.08.08 07:18:26 | 000,000,577 | ---- | M] () -- \Hry\F1 2011\scenes\paddock_unloader.xml
[2011.08.08 07:18:26 | 000,001,796 | ---- | M] () -- \Hry\F1 2011\scenes\parcferme_loader.xml
[2011.08.08 07:18:26 | 000,001,801 | ---- | M] () -- \Hry\F1 2011\scenes\parcferme_loader_gaqa.xml
[2011.08.08 07:18:26 | 000,001,801 | ---- | M] () -- \Hry\F1 2011\scenes\parcferme_loader_gara.xml
[2011.08.08 07:18:26 | 000,001,802 | ---- | M] () -- \Hry\F1 2011\scenes\parcferme_loader_gate.xml
[2011.08.08 07:18:26 | 000,001,807 | ---- | M] () -- \Hry\F1 2011\scenes\parcferme_loader_gate_nt.xml
[2011.08.08 07:18:26 | 000,001,801 | ---- | M] () -- \Hry\F1 2011\scenes\parcferme_loader_gawc.xml
[2011.08.08 07:18:26 | 000,001,801 | ---- | M] () -- \Hry\F1 2011\scenes\parcferme_loader_pfqa.xml
[2011.08.08 07:18:26 | 000,001,801 | ---- | M] () -- \Hry\F1 2011\scenes\parcferme_loader_pfra.xml
[2011.08.08 07:18:28 | 000,001,801 | ---- | M] () -- \Hry\F1 2011\scenes\parcferme_loader_pfwc.xml
[2011.08.08 07:18:28 | 000,000,619 | ---- | M] () -- \Hry\F1 2011\scenes\pitstop_loader.xml
[2011.08.08 07:18:28 | 000,000,521 | ---- | M] () -- \Hry\F1 2011\scenes\pitstop_unloader.xml
[2011.08.15 09:50:46 | 000,000,695 | ---- | M] () -- \Hry\F1 2011\scenes\race_marshal_loader.xml
[2011.08.08 07:18:28 | 000,001,555 | ---- | M] () -- \Hry\F1 2011\scenes\trackside_garage_loader.xml
[2011.08.08 07:18:28 | 000,001,578 | ---- | M] () -- \Hry\F1 2011\scenes\trackside_garage_reloader.xml
[2011.08.08 07:18:30 | 000,000,149 | ---- | M] () -- \Hry\F1 2011\system\osd_loader.xml
[2013.10.23 21:07:40 | 000,007,825 | ---- | M] () -- \New Folder\package\tmp\remoteui\static\libs\images\ajax-loader.gif_
[2012.06.15 08:40:05 | 000,110,592 | ---- | M] () -- \Nexon\Combat Arms EU\Uploader.exe
[2013.05.04 10:21:17 | 005,578,752 | ---- | M] () -- \Nexon\NEXON_EU_Downloader\NEXON_EU_Downloader.exe
[2013.05.04 10:21:17 | 001,992,328 | ---- | M] () -- \Nexon\NEXON_EU_Downloader\NEXON_EU_Downloader_Engine.exe
[2013.01.08 15:05:34 | 003,298,024 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS6\Photodownloader.exe
[2012.03.13 10:41:34 | 000,000,860 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS6\Photodownloader.exe.manifest
[2012.03.13 10:41:58 | 000,011,161 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS6\apd\shared_assets\bitmaps\main_window\C_LoadError.png
[2012.03.13 10:42:00 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS6\apd\shared_assets\locales\da_dk\Photodownloader.ini
[2012.03.13 10:42:02 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS6\apd\shared_assets\locales\de_de\Photodownloader.ini
[2012.03.13 10:42:02 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS6\apd\shared_assets\locales\en_us\Photodownloader.ini
[2012.03.13 10:42:02 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS6\apd\shared_assets\locales\es_es\Photodownloader.ini
[2012.03.13 10:42:02 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS6\apd\shared_assets\locales\fi_fi\Photodownloader.ini
[2012.03.13 10:42:02 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS6\apd\shared_assets\locales\fr_fr\Photodownloader.ini
[2012.03.13 10:42:02 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS6\apd\shared_assets\locales\it_it\Photodownloader.ini
[2012.03.13 10:42:04 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS6\apd\shared_assets\locales\ja_jp\Photodownloader.ini
[2012.03.13 10:42:04 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS6\apd\shared_assets\locales\ko_kr\Photodownloader.ini
[2012.03.13 10:42:04 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS6\apd\shared_assets\locales\nl_nl\Photodownloader.ini
[2012.03.13 10:42:04 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS6\apd\shared_assets\locales\no_no\Photodownloader.ini
[2012.03.13 10:42:04 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS6\apd\shared_assets\locales\pt_br\Photodownloader.ini
[2012.03.13 10:42:04 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS6\apd\shared_assets\locales\sv_se\Photodownloader.ini
[2012.03.13 10:42:06 | 000,000,324 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS6\apd\shared_assets\locales\zh_cn\Photodownloader.ini
[2012.03.13 10:42:06 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS6\apd\shared_assets\locales\zh_tw\Photodownloader.ini
[2012.12.31 23:00:00 | 000,075,104 | ---- | M] () -- \Program Files (x86)\Cabelas African Adventures\Bin\PhysXLoader.dll
[2012.02.22 23:11:56 | 000,078,336 | ---- | M] () -- \Program Files (x86)\Common Files\Adobe\dynamiclinkmediaserver\1.0\MXF_SDK_MetaMetadata_BinaryLoader_4.4.3.dll
[2012.02.22 23:11:56 | 000,155,136 | ---- | M] () -- \Program Files (x86)\Common Files\Adobe\dynamiclinkmediaserver\1.0\MXF_SDK_MetaMetadata_XSDLoader2_4.4.3.dll
[2012.02.22 23:11:56 | 000,117,248 | ---- | M] () -- \Program Files (x86)\Common Files\Adobe\dynamiclinkmediaserver\1.0\MXF_SDK_MetaMetadata_XSDLoader_4.4.3.dll
[2013.04.21 21:44:16 | 000,008,827 | ---- | M] () -- \Program Files (x86)\Common Files\Apple\Apple Application Support\WebKit.resources\inspector\HeapSnapshotLoader.js
[2010.10.07 04:36:40 | 000,265,552 | ---- | M] () -- \Program Files (x86)\Common Files\microsoft shared\VSTO\10.0\VSTOLoader.dll
[2010.10.07 04:36:40 | 000,018,264 | ---- | M] () -- \Program Files (x86)\Common Files\microsoft shared\VSTO\10.0\1033\VSTOLoaderUI.dll
[2013.01.02 12:16:55 | 000,034,304 | ---- | M] () -- \Program Files (x86)\Counter-Strike Global Offensive\Steam\steamapps\common\Counter-Strike Global Offensive\revLoader.exe
[2011.02.09 16:58:48 | 000,056,416 | ---- | M] () -- \Program Files (x86)\CyberLink\YouCam\Koan\pyloader.dll
[2011.02.09 16:57:16 | 000,015,849 | ---- | M] () -- \Program Files (x86)\CyberLink\YouCam\subsys\Uploader\PyUploader.kc
[2011.02.09 16:57:16 | 000,179,296 | ---- | M] () -- \Program Files (x86)\CyberLink\YouCam\subsys\Uploader\_PyUploader.pyd
[2011.02.09 16:57:16 | 002,475,304 | ---- | M] () -- \Program Files (x86)\CyberLink\YouCam\subsys\YouCam\CES_3DLoaderFBX.dll
[2009.09.25 20:19:16 | 000,470,528 | ---- | M] () -- \Program Files (x86)\EA Sports\NHL 09\EA Sports\NHL 09\LeagueLoader.exe
[2013.01.08 11:25:30 | 000,000,740 | ---- | M] () -- \Program Files (x86)\EA Sports\NHL 09\EA Sports\NHL 09\LeagueLoader.ini
[2009.09.25 20:32:13 | 000,004,782 | ---- | M] () -- \Program Files (x86)\EA Sports\NHL 09\EA Sports\NHL 09\LeagueLoader_Readme_rus.txt
[2009.09.25 20:33:44 | 000,000,686 | ---- | M] () -- \Program Files (x86)\EA Sports\NHL 09\EA Sports\NHL 09\NHL09LeagueLoader.eng
[2009.09.25 20:32:36 | 000,000,811 | ---- | M] () -- \Program Files (x86)\EA Sports\NHL 09\EA Sports\NHL 09\NHL09LeagueLoader.rus
[1 \Program Files (x86)\EA Sports\NHL 09\EA Sports\NHL 09\*.tmp files -> \Program Files (x86)\EA Sports\NHL 09\EA Sports\NHL 09\*.tmp -> ]
[2006.05.04 17:16:50 | 000,333,840 | ---- | M] () -- \Program Files (x86)\Eidos\Hitman Blood Money\Scenes\hideout\Loader_Sequence.WAV
[2006.05.04 17:16:50 | 000,005,952 | ---- | M] () -- \Program Files (x86)\Eidos\Hitman Blood Money\Scenes\hideout\Loader_Sequence.WHD
[2006.05.04 17:16:50 | 000,351,949 | ---- | M] () -- \Program Files (x86)\Eidos\Hitman Blood Money\Scenes\hideout\Loader_Sequence.ZIP
[2006.05.04 17:17:20 | 000,313,360 | ---- | M] () -- \Program Files (x86)\Eidos\Hitman Blood Money\Scenes\M00\Loader_Sequence.WAV
[2006.05.04 17:17:20 | 000,005,392 | ---- | M] () -- \Program Files (x86)\Eidos\Hitman Blood Money\Scenes\M00\Loader_Sequence.WHD
[2006.05.04 17:17:20 | 000,570,691 | ---- | M] () -- \Program Files (x86)\Eidos\Hitman Blood Money\Scenes\M00\Loader_Sequence.ZIP
[2006.05.04 17:18:02 | 000,320,528 | ---- | M] () -- \Program Files (x86)\Eidos\Hitman Blood Money\Scenes\M01\Loader_Sequence.WAV
[2006.05.04 17:18:02 | 000,005,616 | ---- | M] () -- \Program Files (x86)\Eidos\Hitman Blood Money\Scenes\M01\Loader_Sequence.WHD
[2006.05.04 17:18:02 | 000,711,223 | ---- | M] () -- \Program Files (x86)\Eidos\Hitman Blood Money\Scenes\M01\Loader_Sequence.ZIP
[2006.05.04 17:18:52 | 000,320,528 | ---- | M] () -- \Program Files (x86)\Eidos\Hitman Blood Money\Scenes\M02\Loader_Sequence.WAV
[2006.05.04 17:18:52 | 000,005,616 | ---- | M] () -- \Program Files (x86)\Eidos\Hitman Blood Money\Scenes\M02\Loader_Sequence.WHD
[2006.05.04 17:18:52 | 000,634,201 | ---- | M] () -- \Program Files (x86)\Eidos\Hitman Blood Money\Scenes\M02\Loader_Sequence.ZIP
[2006.05.04 17:19:46 | 000,320,528 | ---- | M] () -- \Program Files (x86)\Eidos\Hitman Blood Money\Scenes\M03\Loader_Sequence.WAV
[2006.05.04 17:19:46 | 000,005,616 | ---- | M] () -- \Program Files (x86)\Eidos\Hitman Blood Money\Scenes\M03\Loader_Sequence.WHD
[2006.05.04 17:19:46 | 000,707,294 | ---- | M] () -- \Program Files (x86)\Eidos\Hitman Blood Money\Scenes\M03\Loader_Sequence.ZIP
[2006.05.04 17:20:20 | 000,320,528 | ---- | M] () -- \Program Files (x86)\Eidos\Hitman Blood Money\Scenes\M04\Loader_Sequence.WAV
[2006.05.04 17:20:20 | 000,005,616 | ---- | M] () -- \Program Files (x86)\Eidos\Hitman Blood Money\Scenes\M04\Loader_Sequence.WHD
[2006.05.04 17:20:20 | 000,531,761 | ---- | M] () -- \Program Files (x86)\Eidos\Hitman Blood Money\Scenes\M04\Loader_Sequence.ZIP
[2006.05.04 17:21:00 | 000,320,528 | ---- | M] () -- \Program Files (x86)\Eidos\Hitman Blood Money\Scenes\M05\Loader_Sequence.WAV
[2006.05.04 17:21:00 | 000,005,616 | ---- | M] () -- \Program Files (x86)\Eidos\Hitman Blood Money\Scenes\M05\Loader_Sequence.WHD
[2006.05.04 17:21:00 | 000,591,946 | ---- | M] () -- \Program Files (x86)\Eidos\Hitman Blood Money\Scenes\M05\Loader_Sequence.ZIP
[2006.05.04 17:21:50 | 000,320,528 | ---- | M] () -- \Program Files (x86)\Eidos\Hitman Blood Money\Scenes\M06\Loader_Sequence.WAV
[2006.05.04 17:21:50 | 000,005,616 | ---- | M] () -- \Program Files (x86)\Eidos\Hitman Blood Money\Scenes\M06\Loader_Sequence.WHD
[2006.05.04 17:21:50 | 000,617,459 | ---- | M] () -- \Program Files (x86)\Eidos\Hitman Blood Money\Scenes\M06\Loader_Sequence.ZIP
[2006.05.04 17:22:26 | 000,320,528 | ---- | M] () -- \Program Files (x86)\Eidos\Hitman Blood Money\Scenes\M08\Loader_Sequence.WAV
[2006.05.04 17:22:26 | 000,005,616 | ---- | M] () -- \Program Files (x86)\Eidos\Hitman Blood Money\Scenes\M08\Loader_Sequence.WHD
[2006.05.04 17:22:28 | 000,440,664 | ---- | M] () -- \Program Files (x86)\Eidos\Hitman Blood Money\Scenes\M08\Loader_Sequence.ZIP
[2006.05.04 17:23:14 | 000,320,528 | ---- | M] () -- \Program Files (x86)\Eidos\Hitman Blood Money\Scenes\M09\Loader_Sequence.WAV
[2006.05.04 17:23:14 | 000,005,616 | ---- | M] () -- \Program Files (x86)\Eidos\Hitman Blood Money\Scenes\M09\Loader_Sequence.WHD
[2006.05.04 17:23:14 | 000,550,700 | ---- | M] () -- \Program Files (x86)\Eidos\Hitman Blood Money\Scenes\M09\Loader_Sequence.ZIP
[2006.05.04 17:24:14 | 000,320,528 | ---- | M] () -- \Program Files (x86)\Eidos\Hitman Blood Money\Scenes\M10\Loader_Sequence.WAV
[2006.05.04 17:24:14 | 000,005,616 | ---- | M] () -- \Program Files (x86)\Eidos\Hitman Blood Money\Scenes\M10\Loader_Sequence.WHD
[2006.05.04 17:24:14 | 000,650,200 | ---- | M] () -- \Program Files (x86)\Eidos\Hitman Blood Money\Scenes\M10\Loader_Sequence.ZIP
[2006.05.04 17:24:58 | 000,320,528 | ---- | M] () -- \Program Files (x86)\Eidos\Hitman Blood Money\Scenes\M11\Loader_Sequence.WAV
[2006.05.04 17:24:58 | 000,005,616 | ---- | M] () -- \Program Files (x86)\Eidos\Hitman Blood Money\Scenes\M11\Loader_Sequence.WHD
[2006.05.04 17:24:58 | 000,596,635 | ---- | M] () -- \Program Files (x86)\Eidos\Hitman Blood Money\Scenes\M11\Loader_Sequence.ZIP
[2006.05.04 17:25:40 | 000,320,528 | ---- | M] () -- \Program Files (x86)\Eidos\Hitman Blood Money\Scenes\M12\Loader_Sequence.WAV
[2006.05.04 17:25:40 | 000,005,616 | ---- | M] () -- \Program Files (x86)\Eidos\Hitman Blood Money\Scenes\M12\Loader_Sequence.WHD
[2006.05.04 17:25:40 | 000,668,734 | ---- | M] () -- \Program Files (x86)\Eidos\Hitman Blood Money\Scenes\M12\Loader_Sequence.ZIP
[2006.05.04 17:26:20 | 000,320,528 | ---- | M] () -- \Program Files (x86)\Eidos\Hitman Blood Money\Scenes\M13\Loader_Sequence.WAV
[2006.05.04 17:26:20 | 000,005,616 | ---- | M] () -- \Program Files (x86)\Eidos\Hitman Blood Money\Scenes\M13\Loader_Sequence.WHD
[2006.05.04 17:26:20 | 000,632,940 | ---- | M] () -- \Program Files (x86)\Eidos\Hitman Blood Money\Scenes\M13\Loader_Sequence.ZIP
[2012.06.26 10:52:38 | 000,015,982 | ---- | M] () -- \Program Files (x86)\FiatECUScan\Loader_for_FiatEcuScan_3.6.0.exe
[2013.06.21 13:09:34 | 000,002,713 | ---- | M] () -- \Program Files (x86)\GamersFirst\APB Reloaded\APBGame\Gecko\Data\components\uriloader.xpt
[2013.06.21 13:10:04 | 000,065,536 | ---- | M] () -- \Program Files (x86)\GamersFirst\APB Reloaded\Binaries\PhysXLocal\PhysXLoader.dll
[2012.08.23 04:02:38 | 000,004,176 | ---- | M] () -- \Program Files (x86)\Google\Google SketchUp 8\Resources\en-US\searching\ajax-loader.gif
[2012.08.23 04:02:38 | 000,000,513 | ---- | M] () -- \Program Files (x86)\Google\Google SketchUp 8\Tools\DynamicComponents\ruby\dcloader.rb
[2012.08.23 04:02:38 | 000,001,875 | ---- | M] () -- \Program Files (x86)\Google\Google SketchUp 8\Tools\ShadowStringsFix\shadowstringsfix_loader.rb
[2012.08.23 04:02:38 | 000,003,953 | ---- | M] () -- \Program Files (x86)\Google\Google SketchUp 8\Tools\SolarNorth\solarnorth_loader.rb
[2012.08.23 04:02:38 | 000,029,557 | ---- | M] () -- \Program Files (x86)\Google\Google SketchUp 8\Tools\WebTextures\webtextures_loader.rb
[2011.01.25 02:16:44 | 000,053,248 | ---- | M] () -- \Program Files (x86)\Hewlett-Packard\HP Setup\ContentDownloader.exe
[2011.01.25 02:11:12 | 000,005,974 | ---- | M] () -- \Program Files (x86)\Hewlett-Packard\HP Setup\ContentDownloader.exe.config
[2013.01.01 00:00:00 | 000,057,856 | ---- | M] () -- \Program Files (x86)\Mortal Kombat Komplete Edition\PhysXLocal\PhysXLoader.dll
[2013.10.29 20:38:49 | 000,470,528 | ---- | M] () -- \Program Files (x86)\NHL 09\LeagueLoader.exe
[2013.10.29 18:20:23 | 000,000,751 | ---- | M] () -- \Program Files (x86)\NHL 09\LeagueLoader.ini
[2013.10.29 18:20:21 | 000,004,782 | ---- | M] () -- \Program Files (x86)\NHL 09\LeagueLoader_Readme_rus.txt
[2013.10.29 18:20:23 | 000,000,686 | ---- | M] () -- \Program Files (x86)\NHL 09\NHL09LeagueLoader.eng
[2013.10.29 18:20:23 | 000,000,811 | ---- | M] () -- \Program Files (x86)\NHL 09\NHL09LeagueLoader.rus
[1 \Program Files (x86)\NHL 09\*.tmp files -> \Program Files (x86)\NHL 09\*.tmp -> ]
[2012.11.01 08:32:14 | 000,057,224 | ---- | M] () -- \Program Files (x86)\NVIDIA Corporation\PhysX\Common\PhysXLoader.dll
[2012.11.01 08:32:44 | 000,065,416 | ---- | M] () -- \Program Files (x86)\NVIDIA Corporation\PhysX\Common\PhysXLoader64.dll
[2012.05.21 04:03:06 | 000,083,816 | ---- | M] () -- \Program Files (x86)\NVIDIA Corporation\PhysX\Common\PhysXUpdateLoader.dll
[2012.09.04 22:34:12 | 000,088,968 | ---- | M] () -- \Program Files (x86)\NVIDIA Corporation\PhysX\Common\PhysXUpdateLoader64.dll
[2013.07.10 21:08:32 | 000,029,696 | ---- | M] () -- \Program Files (x86)\OpenOffice 4\program\javaloader.uno.dll
[2013.09.17 03:57:36 | 000,005,813 | ---- | M] () -- \Program Files (x86)\OpenOffice 4\program\pythonloader.py
[2013.07.10 21:08:34 | 000,020,992 | ---- | M] () -- \Program Files (x86)\OpenOffice 4\program\pythonloader.uno.dll
[2013.07.16 14:35:46 | 000,000,171 | ---- | M] () -- \Program Files (x86)\OpenOffice 4\program\pythonloader.uno.ini
[2013.09.20 12:39:02 | 000,003,868 | ---- | M] () -- \Program Files (x86)\OpenOffice 4\program\classes\unoloader.jar
[2013.09.16 21:10:56 | 000,013,420 | ---- | M] () -- \Program Files (x86)\OpenOffice 4\program\python-core-2.7.5\lib\unittest\loader.py
[2008.10.10 14:39:54 | 000,068,688 | ---- | M] () -- \Program Files (x86)\Origin Games\Mirrors Edge\Binaries\PhysXLocal\PhysXLoader.dll
[2013.11.03 10:15:46 | 000,795,648 | ---- | M] () -- \Program Files (x86)\Rockstar Games\GTA San Andreas\MTA\loader.dll
[2011.10.28 04:19:56 | 000,008,787 | ---- | M] () -- \Program Files (x86)\Rockstar Games\Social Club\UI\images\loaderLargeBlue.gif
[2011.10.28 04:19:56 | 000,008,787 | ---- | M] () -- \Program Files (x86)\Rockstar Games\Social Club\UI\images\loaderLargeGrey.gif
[2011.10.28 04:19:56 | 000,001,737 | ---- | M] () -- \Program Files (x86)\Rockstar Games\Social Club\UI\images\loaderSmallBlue.gif
[2011.10.28 04:19:56 | 000,001,737 | ---- | M] () -- \Program Files (x86)\Rockstar Games\Social Club\UI\images\loaderSmallGold.gif
[2012.11.19 18:19:28 | 000,051,200 | ---- | M] () -- \Program Files (x86)\SQUARE ENIX\Hitman Absolution\PhysXLoader.dll
[2013.08.20 05:49:02 | 000,058,880 | ---- | M] () -- \Program Files (x86)\The Bureau\Binaries\Win32\PhysXLoader.dll
[2013.03.18 20:05:39 | 000,330,040 | ---- | M] () -- \Program Files (x86)\Ubisoft\Trials Evolution Gold Edition\datapack\orbit\ubiorbitapi_r2_loader.dll
[2013.03.18 20:05:39 | 000,294,400 | ---- | M] () -- \Program Files (x86)\Ubisoft\Trials Evolution Gold Edition\datapack\orbit\uplay_r1_loader.dll
[2013.05.08 05:28:52 | 000,329,056 | ---- | M] () -- \Program Files (x86)\Ubisoft\Ubisoft Game Launcher\ubiorbitapi_r2_loader.dll
[2013.01.08 15:26:28 | 003,298,024 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS6 (64 Bit)\photodownloader\Photodownloader.exe
[2012.03.13 10:42:26 | 000,011,161 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS6 (64 Bit)\photodownloader\apd\shared_assets\bitmaps\main_window\C_LoadError.png
[2012.03.13 10:42:28 | 000,011,161 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS6 (64 Bit)\photodownloader\apd\shared_assets\combined_bitmaps\main_window\C_LoadError.png
[2012.03.13 10:42:28 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS6 (64 Bit)\photodownloader\apd\shared_assets\locales\da_dk\Photodownloader.ini
[2012.03.13 10:42:28 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS6 (64 Bit)\photodownloader\apd\shared_assets\locales\de_de\Photodownloader.ini
[2012.03.13 10:42:28 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS6 (64 Bit)\photodownloader\apd\shared_assets\locales\en_us\Photodownloader.ini
[2012.03.13 10:42:28 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS6 (64 Bit)\photodownloader\apd\shared_assets\locales\es_es\Photodownloader.ini
[2012.03.13 10:42:28 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS6 (64 Bit)\photodownloader\apd\shared_assets\locales\fi_fi\Photodownloader.ini
[2012.03.13 10:42:28 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS6 (64 Bit)\photodownloader\apd\shared_assets\locales\fr_fr\Photodownloader.ini
[2012.03.13 10:42:28 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS6 (64 Bit)\photodownloader\apd\shared_assets\locales\it_it\Photodownloader.ini
[2012.03.13 10:42:28 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS6 (64 Bit)\photodownloader\apd\shared_assets\locales\ja_jp\Photodownloader.ini
[2012.03.13 10:42:28 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS6 (64 Bit)\photodownloader\apd\shared_assets\locales\ko_kr\Photodownloader.ini
[2012.03.13 10:42:28 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS6 (64 Bit)\photodownloader\apd\shared_assets\locales\nl_nl\Photodownloader.ini
[2012.03.13 10:42:28 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS6 (64 Bit)\photodownloader\apd\shared_assets\locales\no_no\Photodownloader.ini
[2012.03.13 10:42:28 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS6 (64 Bit)\photodownloader\apd\shared_assets\locales\pt_br\Photodownloader.ini
[2012.03.13 10:42:28 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS6 (64 Bit)\photodownloader\apd\shared_assets\locales\sv_se\Photodownloader.ini
[2012.03.13 10:42:30 | 000,000,324 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS6 (64 Bit)\photodownloader\apd\shared_assets\locales\zh_cn\Photodownloader.ini
[2012.03.13 10:42:30 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS6 (64 Bit)\photodownloader\apd\shared_assets\locales\zh_tw\Photodownloader.ini
[2010.10.07 04:36:40 | 000,387,408 | ---- | M] () -- \Program Files\Common Files\Microsoft Shared\VSTO\10.0\VSTOLoader.dll
[2010.10.07 04:36:40 | 000,018,264 | ---- | M] () -- \Program Files\Common Files\Microsoft Shared\VSTO\10.0\1033\VSTOLoaderUI.dll
[2013.10.23 20:08:00 | 000,002,515 | ---- | M] () -- \Program Files\Strogino CS Portal\Garrys Mod\garrysmod\addons\PlayX\lua\autorun\playx_loader.lua
[2013.01.19 13:05:10 | 000,004,431 | ---- | M] () -- \Program Files\Strogino CS Portal\Garrys Mod\garrysmod\addons\wiremod\lua\entities\gmod_wire_expression2\core\extloader.lua
[2013.01.19 13:05:12 | 000,011,760 | ---- | M] () -- \Program Files\Strogino CS Portal\Garrys Mod\garrysmod\addons\wiremod\lua\wire\tool_loader.lua
[2010.03.15 11:27:20 | 000,054,784 | ---- | M] () -- \Program Files\WinRAR\Formats\ace32loader.exe
[2014.01.26 08:30:56 | 000,031,179 | ---- | M] () -- \ProgramData\IObit\ASCDownloader\Downloader.log
[2013.10.15 21:50:55 | 000,795,648 | ---- | M] () -- \ProgramData\MTA San Andreas All\1.3\upcache\_mtasa-1.3.4-rc-05879-0-000-files-all-cksummed.rar_tmp_\MTA\loader.dll
[2013.11.03 10:15:44 | 000,754,176 | ---- | M] () -- \ProgramData\MTA San Andreas All\1.3\upcache\_mtasa-1.3.4-rc-05879-0-000-files-all-cksummed.rar_tmp__bak_\MTA\loader.dll
[2013.06.19 14:59:00 | 000,072,638 | ---- | M] () -- \ProgramData\Skype\Apps\login\images\loader.gif
[2013.06.19 14:59:00 | 000,003,032 | ---- | M] () -- \ProgramData\Skype\Apps\login\images\loader.png
[2013.10.09 17:07:12 | 000,006,012 | ---- | M] () -- \ProgramData\Skype\Apps\login\images\normal\loader_15fps.gif
[2013.10.09 17:07:12 | 000,021,956 | ---- | M] () -- \ProgramData\Skype\Apps\login\images\normal\loader_30fps.gif
[2013.06.19 14:59:00 | 000,009,772 | ---- | M] () -- \ProgramData\Skype\Apps\login\images\retina\loader@2x.png
[2013.07.20 07:13:09 | 000,000,175 | ---- | M] () -- \Users\JAKUB\AppData\Roaming\.minecraft\config\ModLoader.cfg
[2013.07.20 07:13:19 | 000,000,047 | ---- | M] () -- \Users\JAKUB\AppData\Roaming\.minecraft\config\mod_ModLoaderMp.cfg
[2013.12.02 21:38:00 | 000,000,820 | ---- | M] () -- \Users\JAKUB\AppData\Roaming\Microsoft\Windows\Recent\ActionLoader.vbs.lnk
[2013.04.15 12:32:10 | 000,060,416 | ---- | M] () -- \Users\JAKUB\AppData\Roaming\Seznam.cz\bin\14340libfoxloader-x64.dll
[2013.03.29 12:37:34 | 000,059,384 | ---- | M] () -- \Users\JAKUB\AppData\Roaming\Seznam.cz\bin\14340libfoxloader.dll
[2013.12.14 16:13:18 | 000,000,165 | ---- | M] () -- \Users\JAKUB\AppData\Roaming\Seznam.cz\conf\szndesktop.d\libfoxloader.conf
[2013.03.25 15:27:20 | 000,000,665 | ---- | M] () -- \Users\JAKUB\AppData\Roaming\Seznam.cz\uninstall\cz_seznam_software_libfoxloader_3_1_2.install.bat
[2013.03.25 15:27:26 | 000,000,117 | ---- | M] () -- \Users\JAKUB\AppData\Roaming\Seznam.cz\uninstall\cz_seznam_software_libfoxloader_3_1_2.uninstall.bat
[2013.03.22 20:05:41 | 000,446,464 | ---- | M] () -- \Windows\NEXON_EU_DownloaderUpdater.exe
[1 \Windows\*.tmp files -> \Windows\*.tmp -> ]
[2010.03.24 20:35:48 | 000,018,264 | R--- | M] () -- \Windows\Installer\$PatchCache$\Managed\00004119110000000100000000F01FEC\14.0.4763\FL_VSTOLoaderUI_dll_amd64_ln.3643236F_FC70_11D3_A536_0090278A1BB8.41B86362_9D8B_4D9B_B426_8A6D1F809A25
[2010.03.24 20:12:34 | 000,018,264 | R--- | M] () -- \Windows\Installer\$PatchCache$\Managed\00004119110000000100000000F01FEC\14.0.4763\FL_VSTOLoaderUI_dll_x86_ln.3643236F_FC70_11D3_A536_0090278A1BB8.41B86362_9D8B_4D9B_B426_8A6D1F809A25
[2010.03.24 20:35:48 | 000,370,512 | R--- | M] () -- \Windows\Installer\$PatchCache$\Managed\00004119110000000100000000F01FEC\14.0.4763\VSTOLoader_dll_amd64.3643236F_FC70_11D3_A536_0090278A1BB8.41B86362_9D8B_4D9B_B426_8A6D1F809A25
[2010.03.24 20:12:34 | 000,249,680 | R--- | M] () -- \Windows\Installer\$PatchCache$\Managed\00004119110000000100000000F01FEC\14.0.4763\VSTOLoader_dll_x86.3643236F_FC70_11D3_A536_0090278A1BB8.41B86362_9D8B_4D9B_B426_8A6D1F809A25
[2013.08.02 02:48:15 | 000,003,584 | -H-- | M] () -- \Windows\System32\api-ms-win-core-libraryloader-l1-1-0.dll
[2009.07.14 02:15:12 | 000,038,400 | ---- | M] () -- \Windows\System32\dmloader.dll
[2013.08.02 02:48:15 | 000,003,584 | -H-- | M] () -- \Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
[2009.07.14 02:15:12 | 000,038,400 | ---- | M] () -- \Windows\SysWOW64\dmloader.dll
[2009.07.14 02:40:31 | 000,047,616 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-audio-dmusic_31bf3856ad364e35_6.1.7600.16385_none_a1e90d98a953d601\dmloader.dll
[2009.07.14 02:24:53 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.16385_none_66a6e19d9580f9e3\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.10.04 18:38:48 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.17965_none_68a2edab92971725\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.11.30 06:38:44 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.18015_none_68d8d569926ebeb2\api-ms-win-core-libraryloader-l1-1-0.dll
[2013.08.02 03:12:19 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.18229_none_68d20a7192733a4d\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.10.04 18:35:00 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.22125_none_6957a248ab947a6d\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.11.30 06:39:37 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.22177_none_69239340abbb38d0\api-ms-win-core-libraryloader-l1-1-0.dll
[2013.01.04 06:32:07 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.22209_none_6971452eab80a50e\api-ms-win-core-libraryloader-l1-1-0.dll
[2013.08.02 07:20:45 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.22411_none_695e76beab8ff095\api-ms-win-core-libraryloader-l1-1-0.dll
[2013.12.03 21:58:30 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.22436_none_694dd858ab9ba72a\api-ms-win-core-libraryloader-l1-1-0.dll
[2011.08.03 19:23:42 | 000,004,431 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_8f37605116ba80bc.manifest
[2010.11.21 04:16:35 | 000,005,745 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.17514_none_b94cbfa183466a89.manifest
[2011.08.03 19:47:07 | 000,005,745 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.17556_none_b923808583650cfb.manifest
[2011.08.03 19:47:07 | 000,005,745 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.21655_none_b9ac1d069c83936e.manifest
[2009.07.14 03:18:27 | 000,002,896 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-s..ive-blackbox-loader_31bf3856ad364e35_6.1.7600.16385_none_c72819e06acceb59.manifest
[2009.07.14 02:15:12 | 000,038,400 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-audio-dmusic_31bf3856ad364e35_6.1.7600.16385_none_45ca7214f0f664cb\dmloader.dll
[2009.07.14 02:03:49 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.16385_none_0a884619dd2388ad\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.10.04 17:40:37 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.17965_none_0c845227da39a5ef\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.11.30 05:45:15 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.18015_none_0cba39e5da114d7c\api-ms-win-core-libraryloader-l1-1-0.dll
[2013.08.02 02:48:15 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.18229_none_0cb36eedda15c917\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.10.04 17:29:45 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.22125_none_0d3906c4f3370937\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.11.30 05:46:37 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.22177_none_0d04f7bcf35dc79a\api-ms-win-core-libraryloader-l1-1-0.dll
[2013.01.04 05:43:16 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.22209_none_0d52a9aaf32333d8\api-ms-win-core-libraryloader-l1-1-0.dll
[2013.08.02 06:53:29 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.22411_none_0d3fdb3af3327f5f\api-ms-win-core-libraryloader-l1-1-0.dll
[2013.12.03 21:58:31 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.22436_none_0d2f3cd4f33e35f4\api-ms-win-core-libraryloader-l1-1-0.dll

< *minodlogin* /s >
[2013.08.27 17:38:02 | 000,012,376 | ---- | M] () -- \Users\JAKUB\AppData\Roaming\uTorrent\ESET Smart Security 6 32,64bit+Minodlogin 3.10.0.1.rar.torrent

< *tnod* /s >

< *AutoKMS* /s >
[2013.12.05 20:47:26 | 000,000,161 | ---- | M] () -- \Windows\AutoKMS.ini
[1 \Windows\*.tmp files -> \Windows\*.tmp -> ]
[2013.04.22 20:21:37 | 001,725,440 | ---- | M] () -- \Windows\AutoKMS\AutoKMS.exe
[2013.04.22 20:21:37 | 000,000,768 | ---- | M] () -- \Windows\AutoKMS\AutoKMS.ini
[2013.09.04 12:50:21 | 000,028,666 | ---- | M] () -- \Windows\AutoKMS\AutoKMS.log

< *activator* /s >
[2011.02.09 16:59:20 | 000,199,776 | ---- | M] () -- \Program Files (x86)\CyberLink\YouCam\subsys\YouCam\CLSWActivator.dll

< *serial* /s >
[2013.08.21 11:45:22 | 000,026,968 | ---- | M] () -- \AdwCleaner\Quarantine\C\Program Files (x86)\Uniblue\SpeedUpMyPC\sp_move_serial.exe.vir
[2012.08.15 17:11:19 | 004,739,892 | ---- | M] () -- \Hry\Sleeping Dogs\Data\movies\photocamera_serialkiller_bodies.bik
[2013.06.21 13:10:00 | 000,027,728 | ---- | M] () -- \Program Files (x86)\GamersFirst\APB Reloaded\Binaries\AutoReporter.XmlSerializers.dll
[2012.03.17 15:22:20 | 000,043,748 | ---- | M] () -- \Program Files (x86)\Lucius\Data\Scene\items\serialnote\serial.gfx
[2012.03.17 15:22:20 | 000,001,616 | ---- | M] () -- \Program Files (x86)\Lucius\Data\Scene\items\serialnote\serialnote.mesh
[2012.03.17 15:22:20 | 000,000,113 | ---- | M] () -- \Program Files (x86)\Lucius\Data\Scene\items\serialnote\serialnote.mtrl
[2012.03.17 15:22:20 | 000,000,095 | ---- | M] () -- \Program Files (x86)\Lucius\Data\Scene\items\serialnote\serialnote.phys
[2013.09.13 01:53:56 | 000,434,368 | ---- | M] () -- \Program Files (x86)\Microsoft Silverlight\5.1.20913.0\System.Runtime.Serialization.dll
[2013.11.21 21:25:41 | 001,164,288 | ---- | M] () -- \Program Files (x86)\Microsoft Silverlight\5.1.20913.0\System.Runtime.Serialization.ni.dll
[2013.03.19 13:54:52 | 000,036,864 | ---- | M] () -- \Program Files (x86)\OCCTPT\OCCT.XmlSerializers.dll
[2012.10.05 11:53:23 | 000,970,752 | ---- | M] () -- \Program Files (x86)\Reference Assemblies\Microsoft\Framework\v3.0\System.Runtime.Serialization.dll
[2011.08.03 19:27:56 | 000,090,112 | ---- | M] () -- \Program Files (x86)\Reference Assemblies\Microsoft\Framework\v3.0\cs\System.RunTime.Serialization.Resources.dll
[2012.02.24 10:02:24 | 000,320,856 | ---- | M] () -- \Program Files (x86)\Sony\Vegas Pro 11.0\CoreUI.XmlSerializers.dll
[2012.02.24 10:02:32 | 000,460,120 | ---- | M] () -- \Program Files (x86)\Sony\Vegas Pro 11.0\Sony.MediaSoftware.TextGen.CoreGraphics.XmlSerializers.dll
[2010.07.21 13:33:00 | 000,267,832 | ---- | M] () -- \Program Files\Hewlett-Packard\HP Wireless Assistant\HPCommon.XmlSerializers.dll
[2010.07.21 13:33:02 | 000,000,256 | ---- | M] () -- \Program Files\Hewlett-Packard\HP Wireless Assistant\HPCommon.XmlSerializers.dll.hpsign
[2013.09.13 02:23:44 | 000,434,368 | ---- | M] () -- \Program Files\Microsoft Silverlight\5.1.20913.0\System.Runtime.Serialization.dll
[2013.11.21 21:26:52 | 001,546,240 | ---- | M] () -- \Program Files\Microsoft Silverlight\5.1.20913.0\System.Runtime.Serialization.ni.dll
[2012.10.05 11:52:37 | 000,847,872 | ---- | M] () -- \Program Files\Reference Assemblies\Microsoft\Framework\v3.0\System.Runtime.Serialization.dll
[2011.08.03 19:27:56 | 000,090,112 | ---- | M] () -- \Program Files\Reference Assemblies\Microsoft\Framework\v3.0\cs\System.RunTime.Serialization.Resources.dll
[2013.07.05 17:08:20 | 000,712,704 | ---- | M] () -- \Program Files\Strogino CS Portal\Garrys Mod\bin\dmserializers.dll
[2008.06.13 02:32:28 | 000,015,743 | ---- | M] () -- \Program Files\Strogino CS Portal\Garrys Mod\garrysmod\addons\Adv Duplicator\lua\autorun\Serialiser.lua
[2011.05.15 23:59:10 | 000,016,876 | ---- | M] () -- \Program Files\Strogino CS Portal\Garrys Mod\garrysmod\addons\ADVANCED DUBLICATOR\lua\autorun\Serialiser.lua
[2011.08.03 19:27:34 | 000,011,776 | ---- | M] () -- \Windows\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap.resources\2.0.0.0_cs_b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2009.06.10 22:23:19 | 000,131,072 | ---- | M] () -- \Windows\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap\2.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.dll
[2010.11.13 03:02:06 | 000,090,112 | ---- | M] () -- \Windows\assembly\GAC_MSIL\system.runtime.serialization.resources\3.0.0.0_cs_b77a5c561934e089\System.RunTime.Serialization.Resources.dll
[2012.10.05 11:53:23 | 000,970,752 | ---- | M] () -- \Windows\assembly\GAC_MSIL\System.Runtime.Serialization\3.0.0.0__b77a5c561934e089\System.Runtime.Serialization.dll
[2013.11.24 09:57:38 | 000,310,784 | ---- | M] () -- \Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Seri#\d462f459c4353e2c628e6def1430aed7\System.Runtime.Serialization.Formatters.Soap.ni.dll
[2013.11.24 09:57:24 | 002,347,008 | ---- | M] () -- \Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Seri#\e043ad64456256a8ee5b934e227d9782\System.Runtime.Serialization.ni.dll
[2013.11.24 12:03:53 | 000,396,288 | ---- | M] () -- \Windows\assembly\NativeImages_v2.0.50727_64\System.Runtime.Seri#\845e04461d3d879b24c5b0d30947050a\System.Runtime.Serialization.Formatters.Soap.ni.dll
[2013.11.24 12:03:16 | 003,073,536 | ---- | M] () -- \Windows\assembly\NativeImages_v2.0.50727_64\System.Runtime.Seri#\dbfc784cc4bde7b16fb471e14563569d\System.Runtime.Serialization.ni.dll
[2014.01.04 17:37:59 | 000,304,640 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_32\System.Runt9064068c#\1729a1c27c4c29abc3a3982df67c3e9d\System.Runtime.Serialization.Formatters.Soap.ni.dll
[2014.01.04 17:37:59 | 000,000,580 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_32\System.Runt9064068c#\1729a1c27c4c29abc3a3982df67c3e9d\System.Runtime.Serialization.Formatters.Soap.ni.dll.aux
[2014.01.04 17:38:31 | 002,786,816 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_32\System.Runteb92aa12#\be5f0f2e208bbb3c647acfbc33434251\System.Runtime.Serialization.ni.dll
[2014.01.04 17:38:31 | 000,001,308 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_32\System.Runteb92aa12#\be5f0f2e208bbb3c647acfbc33434251\System.Runtime.Serialization.ni.dll.aux
[2014.01.05 13:37:04 | 000,026,624 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_32\System.Xml.84e525b7#\e9ae6390ba678193c056e647edb44849\System.Xml.Serialization.ni.dll
[2014.01.05 13:37:04 | 000,000,376 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_32\System.Xml.84e525b7#\e9ae6390ba678193c056e647edb44849\System.Xml.Serialization.ni.dll.aux
[2014.01.05 11:34:09 | 000,373,248 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_64\System.Runt9064068c#\6306ff71e246e8da5d0fb73a2c9c7766\System.Runtime.Serialization.Formatters.Soap.ni.dll
[2014.01.05 11:34:09 | 000,000,580 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_64\System.Runt9064068c#\6306ff71e246e8da5d0fb73a2c9c7766\System.Runtime.Serialization.Formatters.Soap.ni.dll.aux
[2014.01.05 11:34:08 | 003,602,944 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_64\System.Runteb92aa12#\8c26dbe126ceffec534b49eefd37dd36\System.Runtime.Serialization.ni.dll
[2014.01.05 11:34:08 | 000,001,308 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_64\System.Runteb92aa12#\8c26dbe126ceffec534b49eefd37dd36\System.Runtime.Serialization.ni.dll.aux
[2014.01.05 11:38:42 | 000,028,672 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_64\System.Xml.84e525b7#\a2556a1137fbb8361cee016477e7f692\System.Xml.Serialization.ni.dll
[2014.01.05 11:38:42 | 000,000,376 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_64\System.Xml.84e525b7#\a2556a1137fbb8361cee016477e7f692\System.Xml.Serialization.ni.dll.aux
[2012.07.09 00:40:08 | 001,050,096 | R--- | M] () -- \Windows\Installer\$PatchCache$\Managed\0D741DA1E0EBC6D3CA11466FCD14361F\4.5.50709\System.Runtime.Serialization.dll.amd64
[2012.07.09 00:40:08 | 001,050,096 | R--- | M] () -- \Windows\Installer\$PatchCache$\Managed\0D741DA1E0EBC6D3CA11466FCD14361F\4.5.50709\System.Runtime.Serialization.dll.x86
[2012.07.09 00:40:08 | 001,050,096 | R--- | M] () -- \Windows\Installer\$PatchCache$\Managed\0D741DA1E0EBC6D3CA11466FCD14361F\4.5.50709\System.Runtime.Serialization.dll_gac_x86
[2013.02.22 18:26:02 | 000,017,840 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap.resources\v4.0_4.0.0.0_cs_b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2013.11.16 10:51:05 | 000,017,840 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap.resources\v4.0_4.0.0.0_fr_b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2012.07.09 00:40:10 | 000,132,656 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.dll
[2012.07.09 00:40:08 | 000,022,024 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization.Json\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Json.dll
[2012.07.09 00:40:08 | 000,022,048 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization.Primitives\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Primitives.dll
[2013.02.22 18:26:02 | 000,099,208 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.RunTime.Serialization.resources\v4.0_4.0.0.0_cs_b77a5c561934e089\System.RunTime.Serialization.resources.dll
[2013.11.16 10:51:04 | 000,107,400 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.RunTime.Serialization.resources\v4.0_4.0.0.0_fr_b77a5c561934e089\System.RunTime.Serialization.resources.dll
[2012.07.09 00:40:08 | 000,022,016 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization.Xml\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Xml.dll
[2013.07.09 13:45:48 | 001,051,288 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization\v4.0_4.0.0.0__b77a5c561934e089\System.Runtime.Serialization.dll
[2012.07.09 00:40:08 | 000,036,320 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Xml.Serialization\v4.0_4.0.0.0__b77a5c561934e089\System.Xml.Serialization.dll
[2012.07.09 00:40:08 | 000,022,496 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Xml.XmlSerializer\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Xml.XmlSerializer.dll
[2009.06.10 22:23:19 | 000,131,072 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v2.0.50727\System.Runtime.Serialization.Formatters.Soap.dll
[2011.08.03 19:27:38 | 000,011,776 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v2.0.50727\cs\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2012.10.05 11:53:24 | 000,970,752 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\System.Runtime.Serialization.dll
[2013.07.09 13:45:48 | 001,051,288 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\System.Runtime.Serialization.dll
[2012.07.09 00:40:10 | 000,132,656 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\System.Runtime.Serialization.Formatters.Soap.dll
[2012.07.09 00:40:08 | 000,022,024 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\System.Runtime.Serialization.Json.dll
[2012.07.09 00:40:08 | 000,022,048 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\System.Runtime.Serialization.Primitives.dll
[2012.07.09 00:40:08 | 000,022,016 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\System.Runtime.Serialization.Xml.dll
[2012.07.09 00:40:08 | 000,036,320 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\System.Xml.Serialization.dll
[2012.07.09 00:40:08 | 000,022,496 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\System.Xml.XmlSerializer.dll
[2010.06.15 02:33:16 | 000,017,840 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\cs\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2010.06.15 02:33:16 | 000,099,208 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\cs\System.RunTime.Serialization.resources.dll
[2010.04.02 20:50:38 | 000,017,840 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\fr\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2010.04.02 20:50:38 | 000,107,400 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\fr\System.RunTime.Serialization.resources.dll
[2009.06.10 21:40:06 | 000,131,072 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v2.0.50727\System.Runtime.Serialization.Formatters.Soap.dll
[2011.08.03 19:27:31 | 000,011,776 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v2.0.50727\cs\System.Runtime.Serialization.Formatters.Soap.Resources.dll
[2012.10.05 11:52:38 | 000,847,872 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\System.Runtime.Serialization.dll
[2013.07.09 13:45:48 | 001,051,288 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v4.0.30319\System.Runtime.Serialization.dll
[2012.07.09 00:40:10 | 000,132,656 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v4.0.30319\System.Runtime.Serialization.Formatters.Soap.dll
[2012.07.09 00:40:08 | 000,022,024 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v4.0.30319\System.Runtime.Serialization.Json.dll
[2012.07.09 00:40:08 | 000,022,048 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v4.0.30319\System.Runtime.Serialization.Primitives.dll
[2012.07.09 00:40:08 | 000,022,016 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v4.0.30319\System.Runtime.Serialization.Xml.dll
[2012.07.09 00:40:08 | 000,036,320 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v4.0.30319\System.Xml.Serialization.dll
[2012.07.09 00:40:08 | 000,022,496 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v4.0.30319\System.Xml.XmlSerializer.dll
[2010.06.15 02:48:20 | 000,017,840 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v4.0.30319\cs\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2010.06.15 02:48:20 | 000,099,208 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v4.0.30319\cs\System.RunTime.Serialization.resources.dll
[2010.04.02 21:06:52 | 000,017,840 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v4.0.30319\fr\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2010.04.02 21:06:52 | 000,107,400 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v4.0.30319\fr\System.RunTime.Serialization.resources.dll
[2009.07.14 02:16:13 | 000,015,360 | ---- | M] () -- \Windows\System32\serialui.dll
[2011.08.03 19:27:17 | 000,005,120 | ---- | M] () -- \Windows\System32\cs-CZ\serialui.dll.mui
[2009.07.14 01:00:40 | 000,094,208 | ---- | M] () -- \Windows\System32\DriverStore\FileRepository\msports.inf_amd64_neutral_fdcfb86ce78678d1\serial.sys
[2009.06.10 21:37:50 | 000,038,400 | ---- | M] () -- \Windows\System32\DriverStore\FileRepository\smartcrd.inf_amd64_neutral_6fb75ea318f84fe5\grserial.sys
[2009.07.14 02:16:13 | 000,015,360 | ---- | M] () -- \Windows\SysWOW64\serialui.dll
[2011.08.03 19:27:17 | 000,005,120 | ---- | M] () -- \Windows\SysWOW64\cs-CZ\serialui.dll.mui
[2011.08.03 19:27:31 | 000,011,776 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-n..xcorecomp.resources_31bf3856ad364e35_6.1.7601.17514_cs-cz_1e527062c1f59d5f\System.Runtime.Serialization.Formatters.Soap.Resources.dll
[2011.08.03 19:27:38 | 000,005,120 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-u..em-config.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_aa5fd338fd5bcb23\serialui.dll.mui
[2009.07.14 02:41:54 | 000,017,920 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-unimodem-config_31bf3856ad364e35_6.1.7600.16385_none_50f69335385bc360\serialui.dll
[2011.08.03 19:27:56 | 000,090,112 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-wcfcorecomp.resources_31bf3856ad364e35_6.1.7601.17514_cs-cz_bb9a1800691e639c\System.RunTime.Serialization.Resources.dll
[2011.08.03 19:27:42 | 000,009,728 | ---- | M] () -- \Windows\winsxs\amd64_msports.inf.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_20ab142d65ed6acc\serial.sys.mui
[2009.07.14 01:00:40 | 000,094,208 | ---- | M] () -- \Windows\winsxs\amd64_msports.inf_31bf3856ad364e35_6.1.7600.16385_none_548ca258d20f4ada\serial.sys
[2009.06.10 21:40:06 | 000,131,072 | ---- | M] () -- \Windows\winsxs\amd64_netfx-system.runtim..ion.formatters.soap_b03f5f7f11d50a3a_6.1.7600.16385_none_a9d1bee515273f56\System.Runtime.Serialization.Formatters.Soap.dll
[2009.06.10 21:37:50 | 000,038,400 | ---- | M] () -- \Windows\winsxs\amd64_smartcrd.inf_31bf3856ad364e35_6.1.7600.16385_none_ce9ed3064deed3aa\grserial.sys
[2010.11.21 04:24:53 | 000,847,872 | ---- | M] () -- \Windows\winsxs\amd64_wcf-system.runtime.serialization.ref_b03f5f7f11d50a3a_6.1.7601.17514_none_5918bfde74e3f722\System.Runtime.Serialization.dll
[2012.10.05 11:52:38 | 000,847,872 | ---- | M] () -- \Windows\winsxs\amd64_wcf-system.runtime.serialization.ref_b03f5f7f11d50a3a_6.1.7601.17966_none_591d933074dfaa5b\System.Runtime.Serialization.dll
[2012.10.05 11:56:11 | 000,847,872 | ---- | M] () -- \Windows\winsxs\amd64_wcf-system.runtime.serialization.ref_b03f5f7f11d50a3a_6.1.7601.22126_none_424bee728e8a9f53\System.Runtime.Serialization.dll
[2010.11.21 04:24:53 | 000,847,872 | ---- | M] () -- \Windows\winsxs\amd64_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.17514_none_93efcca8c8dbf1bb\System.Runtime.Serialization.dll
[2012.10.05 11:52:37 | 000,847,872 | ---- | M] () -- \Windows\winsxs\amd64_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.17966_none_93f49ffac8d7a4f4\System.Runtime.Serialization.dll
[2012.10.05 11:56:11 | 000,847,872 | ---- | M] () -- \Windows\winsxs\amd64_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.22126_none_7d22fb3ce28299ec\System.Runtime.Serialization.dll
[2009.07.14 03:15:17 | 000,002,766 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..gertransport-serial_31bf3856ad364e35_6.1.7600.16385_none_6daa7ec5c65bf5bc.manifest
[2011.08.03 19:47:08 | 000,002,766 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..gertransport-serial_31bf3856ad364e35_6.1.7601.17556_none_6fb25371c3691bc8.manifest
[2011.08.03 19:47:07 | 000,002,766 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..gertransport-serial_31bf3856ad364e35_6.1.7601.21655_none_703aeff2dc87a23b.manifest
[2009.07.14 03:11:30 | 000,000,868 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft.windows.h..tserial-driverclass_31bf3856ad364e35_6.1.7600.16385_none_88b1c48f2026fe3f.manifest
[2010.11.21 04:17:50 | 000,002,237 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_wcf-system.runtime.serialization.ref_b03f5f7f11d50a3a_6.1.7601.17514_none_5918bfde74e3f722.manifest
[2012.10.05 19:18:30 | 000,002,237 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_wcf-system.runtime.serialization.ref_b03f5f7f11d50a3a_6.1.7601.17966_none_591d933074dfaa5b.manifest
[2012.10.05 19:10:31 | 000,002,237 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_wcf-system.runtime.serialization.ref_b03f5f7f11d50a3a_6.1.7601.22126_none_424bee728e8a9f53.manifest
[2010.11.21 04:17:50 | 000,002,262 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.17514_none_93efcca8c8dbf1bb.manifest
[2012.10.05 19:19:07 | 000,002,262 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.17966_none_93f49ffac8d7a4f4.manifest
[2012.10.05 19:11:10 | 000,002,262 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.22126_none_7d22fb3ce28299ec.manifest
[2010.11.21 04:17:50 | 000,002,226 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.ref_b77a5c561934e089_6.1.7601.17514_none_a67f221874da7f4c.manifest
[2012.10.05 18:15:39 | 000,002,226 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.ref_b77a5c561934e089_6.1.7601.17966_none_a683f56a74d63285.manifest
[2012.10.05 18:17:50 | 000,002,226 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.ref_b77a5c561934e089_6.1.7601.22126_none_8fb250ac8e81277d.manifest
[2011.08.03 19:25:26 | 000,001,626 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7600.16385_cs-cz_34555b4d83cf58b0.manifest
[2012.10.05 21:12:17 | 000,001,626 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.17966_cs-cz_342f3c238422529f.manifest
[2012.10.05 20:59:28 | 000,001,626 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.22126_cs-cz_1d5d97659dcd4797.manifest
[2010.11.21 04:17:50 | 000,001,985 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization_b77a5c561934e089_6.1.7601.17514_none_d6c257b29c81807f.manifest
[2012.10.05 18:15:03 | 000,001,985 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization_b77a5c561934e089_6.1.7601.17966_none_d6c72b049c7d33b8.manifest
[2012.10.05 18:17:15 | 000,001,985 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization_b77a5c561934e089_6.1.7601.22126_none_bff58646b62828b0.manifest
[2010.11.21 04:18:20 | 000,002,260 | ---- | M] () -- \Windows\winsxs\Manifests\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.17514_none_db9d037fdd581ac1.manifest
[2012.10.05 18:19:53 | 000,002,260 | ---- | M] () -- \Windows\winsxs\Manifests\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.17966_none_dba1d6d1dd53cdfa.manifest
[2012.10.05 18:22:10 | 000,002,260 | ---- | M] () -- \Windows\winsxs\Manifests\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.22126_none_c4d03213f6fec2f2.manifest
[2009.06.10 22:23:19 | 000,131,072 | ---- | M] () --

\Windows\winsxs\msil_system.runtime.seri..ion.formatters.soap_b03f5f7f11d50a3a_6.1.7600.16385_none_1c9a3ec1e01c684b\System.Runtime.Serialization.Formatters.Soap.dll
[2011.08.03 19:27:34 | 000,011,776 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.seri..ters.soap.resources_b03f5f7f11d50a3a_6.1.7600.16385_cs-cz_d5c3552dd9b47144\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2010.11.21 04:24:53 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.ref_b77a5c561934e089_6.1.7601.17514_none_a67f221874da7f4c\System.Runtime.Serialization.dll
[2012.10.05 11:53:24 | 000,970,752 | ---- | M] () --
\Windows\winsxs\msil_system.runtime.serialization.ref_b77a5c561934e089_6.1.7601.17966_none_a683f56a74d63285\System.Runtime.Serialization.dll
[2012.10.05 11:56:07 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.ref_b77a5c561934e089_6.1.7601.22126_none_8fb250ac8e81277d\System.Runtime.Serialization.dll
[2011.08.03 19:27:56 | 000,090,112 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7600.16385_cs-cz_34555b4d83cf58b0\System.RunTime.Serialization.Resources.dll
[2010.11.13 03:02:06 | 000,090,112 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.17966_cs-cz_342f3c238422529f\System.RunTime.Serialization.Resources.dll
[2010.11.13 03:37:37 | 000,090,112 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.22126_cs-cz_1d5d97659dcd4797\System.RunTime.Serialization.Resources.dll
[2010.11.21 04:24:53 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization_b77a5c561934e089_6.1.7601.17514_none_d6c257b29c81807f\System.Runtime.Serialization.dll
[2012.10.05 11:53:23 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization_b77a5c561934e089_6.1.7601.17966_none_d6c72b049c7d33b8\System.Runtime.Serialization.dll
[2012.10.05 11:56:05 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization_b77a5c561934e089_6.1.7601.22126_none_bff58646b62828b0\System.Runtime.Serialization.dll
[2011.08.03 19:27:38 | 000,011,776 | ---- | M] () -- \Windows\winsxs\wow64_microsoft-windows-n..xcorecomp.resources_31bf3856ad364e35_6.1.7601.17514_cs-cz_28a71ab4f6565f5a\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2011.08.03 19:27:17 | 000,005,120 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-u..em-config.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_4e4137b544fe59ed\serialui.dll.mui
[2009.07.14 02:16:13 | 000,015,360 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-unimodem-config_31bf3856ad364e35_6.1.7600.16385_none_f4d7f7b17ffe522a\serialui.dll
[2011.08.03 19:27:56 | 000,090,112 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-wcfcorecomp.resources_31bf3856ad364e35_6.1.7601.17514_cs-cz_5f7b7c7cb0c0f266\System.RunTime.Serialization.Resources.dll
[2010.11.21 04:25:11 | 000,970,752 | ---- | M] () -- \Windows\winsxs\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.17514_none_db9d037fdd581ac1\System.Runtime.Serialization.dll
[2012.10.05 11:53:23 | 000,970,752 | ---- | M] () -- \Windows\winsxs\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.17966_none_dba1d6d1dd53cdfa\System.Runtime.Serialization.dll
[2012.10.05 11:56:05 | 000,970,752 | ---- | M] () -- \Windows\winsxs\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.22126_none_c4d03213f6fec2f2\System.Runtime.Serialization.dll

< *w7lxe* /s >

========== Files - Unicode (All) ==========
[2013.11.24 17:16:10 | 105,952,601 | ---- | M] ()(C:\Windows\SysWow64\????) -- C:\Windows\SysWow64\揞穐ᵌ
[2013.11.24 17:16:10 | 105,952,601 | ---- | M] ()(C:\Windows\System32\????) -- C:\Windows\System32\揞穐ᵌ
[2013.11.24 17:16:10 | 105,952,601 | ---- | C] ()(C:\Windows\SysWow64\????) -- C:\Windows\SysWow64\揞穐ᵌ
[2013.11.17 19:55:25 | 104,760,117 | ---- | M] ()(C:\Windows\SysWow64\????) -- C:\Windows\SysWow64\섓쭝ᵌ
[2013.11.17 19:55:25 | 104,760,117 | ---- | M] ()(C:\Windows\System32\????) -- C:\Windows\System32\섓쭝ᵌ
[2013.11.17 07:55:50 | 104,760,117 | ---- | C] ()(C:\Windows\SysWow64\????) -- C:\Windows\SysWow64\섓쭝ᵌ
[2013.11.16 08:31:17 | 104,513,208 | ---- | M] ()(C:\Windows\SysWow64\????) -- C:\Windows\SysWow64\쒁邴ᵌ
[2013.11.16 08:31:17 | 104,513,208 | ---- | M] ()(C:\Windows\System32\????) -- C:\Windows\System32\쒁邴ᵌ
[2013.11.16 08:31:17 | 104,513,208 | ---- | C] ()(C:\Windows\SysWow64\????) -- C:\Windows\SysWow64\쒁邴ᵌ
[2013.11.13 20:44:41 | 104,137,907 | ---- | M] ()(C:\Windows\SysWow64\???[) -- C:\Windows\SysWow64\쥉ᵌ[
[2013.11.13 20:44:41 | 104,137,907 | ---- | M] ()(C:\Windows\System32\???[) -- C:\Windows\System32\쥉ᵌ[
[2013.11.13 20:44:41 | 104,137,907 | ---- | C] ()(C:\Windows\SysWow64\???[) -- C:\Windows\SysWow64\쥉ᵌ[
[2013.11.13 14:45:27 | 104,010,312 | ---- | M] ()(C:\Windows\SysWow64\???) -- C:\Windows\SysWow64\䯗ᵌ
[2013.11.13 14:45:27 | 104,010,312 | ---- | M] ()(C:\Windows\System32\???) -- C:\Windows\System32\䯗ᵌ
[2013.11.13 14:45:27 | 104,010,312 | ---- | C] ()(C:\Windows\SysWow64\???) -- C:\Windows\SysWow64\䯗ᵌ
[2013.11.04 16:05:30 | 104,894,933 | ---- | M] ()(C:\Windows\SysWow64\????) -- C:\Windows\SysWow64\ꜛপᵌ
[2013.11.04 16:05:30 | 104,894,933 | ---- | M] ()(C:\Windows\System32\????) -- C:\Windows\System32\ꜛপᵌ
[2013.11.04 16:05:30 | 104,894,933 | ---- | C] ()(C:\Windows\SysWow64\????) -- C:\Windows\SysWow64\ꜛপᵌ
[2013.10.24 18:59:33 | 102,837,954 | ---- | M] ()(C:\Windows\SysWow64\????) -- C:\Windows\SysWow64\뫀尩ᵌ
[2013.10.24 18:59:33 | 102,837,954 | ---- | M] ()(C:\Windows\System32\????) -- C:\Windows\System32\뫀尩ᵌ
[2013.10.24 18:59:33 | 102,837,954 | ---- | C] ()(C:\Windows\SysWow64\????) -- C:\Windows\SysWow64\뫀尩ᵌ

< End of report >

Co ten cracknuty office?

Jestli bude Avast rvat, ze to chce otevrit v sandboxu, nedovolte to! Vyberte moznost Otevrit normalne

Znovu spustte OTL jako spravce
Do spodniho okna vlozte nasledujici text (vcetne te dvojtecky pred slovem commands)

Kód: Vybrat vše

:commands
[EMPTYTEMP]
[EMPTYFLASH]
[Purity]
[CreateRestorePoint]

:services
LiveUpdateSvc
SkypeUpdate
SwitchBoard
AdobeFlashPlayerUpdateSvc

:files
%windir%\system32\*.tmp.dll /s
%windir%\system32\SET*.tmp /s
%windir%\*.tmp
C:\Windows\tasks\Adobe Flash Player Updater.job
C:\Windows\tasks\HPCeeScheduleForJAKUB.job
C:\Program Files (x86)\SmartTweak\FixMyRegistry
C:\Program Files (x86)\SmartTweak\SpeedUpMyComputer

:otl
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
File not found (No name found) -- C:\PROGRAM FILES (X86)\IOBIT APPS TOOLBAR\FF
File not found (No name found) -- C:\USERS\JAKUB\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4ANQZJ7D.DEFAULT\EXTENSIONS\{37964A3C-4EE8-47B1-8321-34DE2C39BA4D}
File not found (No name found) -- C:\USERS\JAKUB\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\4ANQZJ7D.DEFAULT\EXTENSIONS\ASCSURFINGPROTECTION@IOBIT.COM
O9:64bit: - Extra 'Tools' menuitem : Send by Bluetooth to - {7815BE26-237D-41A8-A98F-F7BD75F71086} - Reg Error: Value error. File not found
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
[2 C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp files -> C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp -> ]
[4 C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\*.tmp files -> C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\*.tmp -> ]
[2 C:\Windows\Installer\*.tmp files -> C:\Windows\Installer\*.tmp -> ]
[3 C:\Windows\ServiceProfiles\LocalService\AppData\Local\Temp\*.tmp files -> C:\Windows\ServiceProfiles\LocalService\AppData\Local\Temp\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\0136e5102c70017e90a0e38fcae1a55c\*.tmp files -> C:\Windows\SoftwareDistribution\Download\0136e5102c70017e90a0e38fcae1a55c\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\3aad7c4ab42c9f9313ab0043e653660e\*.tmp files -> C:\Windows\SoftwareDistribution\Download\3aad7c4ab42c9f9313ab0043e653660e\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\6021592a79635ae4e93e9f40b14b7cdb\*.tmp files -> C:\Windows\SoftwareDistribution\Download\6021592a79635ae4e93e9f40b14b7cdb\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\691482082cd78d0038aaf6963bb04750\*.tmp files -> C:\Windows\SoftwareDistribution\Download\691482082cd78d0038aaf6963bb04750\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\790d6339e096d3c5f895a92880adae81\*.tmp files -> C:\Windows\SoftwareDistribution\Download\790d6339e096d3c5f895a92880adae81\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\981da3ced96579568c5c8832ff952174\*.tmp files -> C:\Windows\SoftwareDistribution\Download\981da3ced96579568c5c8832ff952174\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\db730b57fecf46a8eee5d46e684ae553\*.tmp files -> C:\Windows\SoftwareDistribution\Download\db730b57fecf46a8eee5d46e684ae553\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\eb80a3d9998eb04ec423e3da969268b5\*.tmp files -> C:\Windows\SoftwareDistribution\Download\eb80a3d9998eb04ec423e3da969268b5\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\ef0b4d3049a23bab94137ef7c374d80c\*.tmp files -> C:\Windows\SoftwareDistribution\Download\ef0b4d3049a23bab94137ef7c374d80c\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\f6f0ca29a20a3ca7311c99388052f92b\*.tmp files -> C:\Windows\SoftwareDistribution\Download\f6f0ca29a20a3ca7311c99388052f92b\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\fa224a106f085a037c85b45429034c9b\*.tmp files -> C:\Windows\SoftwareDistribution\Download\fa224a106f085a037c85b45429034c9b\*.tmp -> ]
[2 C:\Windows\temp\*.tmp files -> C:\Windows\temp\*.tmp -> ]
[2013.08.27 17:38:02 | 000,012,376 | ---- | M] () -- \Users\JAKUB\AppData\Roaming\uTorrent\ESET Smart Security 6 32,64bit+Minodlogin 3.10.0.1.rar.torrent

:reg
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{10921475-03CE-4E04-90CE-E2E7EF20C814}]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
[-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
[-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BCSSync] /64
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\cz.seznam.software.autoupdate] /64
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\cz.seznam.software.szndesktop] /64
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite] /64
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Dxtory Update Checker 2.0] /64
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\FixMyRegistry] /64
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Keyboard Inf.] /64
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MSC] /64
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\seznam-listicka-distribuce] /64
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SpeedUpMyComputer] /64

Kliknete na Opravit a nechte program pracovat. Pri otazce na restart souhlaste.
Po restartu se objevi novy log, ten sem dejte.

All processes killed
========== COMMANDS ==========

[EMPTYTEMP]

User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: JAKUB
->Temp folder emptied: 18179383 bytes
->Temporary Internet Files folder emptied: 2800324 bytes
->Java cache emptied: 0 bytes
->Google Chrome cache emptied: 314927855 bytes
->Opera cache emptied: 3601844 bytes
->Flash cache emptied: 1068 bytes

User: Public
->Temp folder emptied: 0 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32 (64bit) .tmp files removed: 6416 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 35497317 bytes
%systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 128 bytes
%systemroot%\sysnative\config\systemprofile\AppData\LocalLow\Sun\Java\Deployment folder emptied: 0 bytes
RecycleBin emptied: 19216275 bytes

Total Files Cleaned = 376,00 mb

[EMPTYFLASH]

User: Default

User: JAKUB
->Flash cache emptied: 0 bytes

User: Public

Total Flash Files Cleaned = 0,00 mb

Restore point Set: OTL Restore Point
========== SERVICES/DRIVERS ==========
Service LiveUpdateSvc stopped successfully!
Service LiveUpdateSvc deleted successfully!
Service SkypeUpdate stopped successfully!
Service SkypeUpdate deleted successfully!
Service SwitchBoard stopped successfully!
Service SwitchBoard deleted successfully!
Service AdobeFlashPlayerUpdateSvc stopped successfully!
Service AdobeFlashPlayerUpdateSvc deleted successfully!
========== FILES ==========
File/Folder C:\Windows\system32\*.tmp.dll not found.
File/Folder C:\Windows\system32\SET*.tmp not found.
File/Folder C:\Windows\*.tmp not found.
C:\Windows\tasks\Adobe Flash Player Updater.job moved successfully.
C:\Windows\tasks\HPCeeScheduleForJAKUB.job moved successfully.
File\Folder C:\Program Files (x86)\SmartTweak\FixMyRegistry not found.
File\Folder C:\Program Files (x86)\SmartTweak\SpeedUpMyComputer not found.
========== OTL ==========
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ not found.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extensions\{7815BE26-237D-41A8-A98F-F7BD75F71086}\ deleted successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{7815BE26-237D-41A8-A98F-F7BD75F71086}\ not found.
File/Folder C:\Windows\*.tmp not found.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAP4FE4.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAPFD90.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\ZAP5320.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\ZAP65D0.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\ZAPBFA9.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\ZAPEF4.tmp folder deleted successfully.
C:\Windows\Installer\MSI9FDA.tmp deleted successfully.
C:\Windows\Installer\MSIFF30.tmp deleted successfully.
C:\Windows\ServiceProfiles\LocalService\AppData\Local\Temp\EVTA9F6.tmp deleted successfully.
C:\Windows\ServiceProfiles\LocalService\AppData\Local\Temp\MSGA9E5.tmp deleted successfully.
C:\Windows\ServiceProfiles\LocalService\AppData\Local\Temp\PUBA9F5.tmp deleted successfully.
C:\Windows\SoftwareDistribution\Download\0136e5102c70017e90a0e38fcae1a55c\BITB84D.tmp deleted successfully.
C:\Windows\SoftwareDistribution\Download\3aad7c4ab42c9f9313ab0043e653660e\BITB83D.tmp deleted successfully.
C:\Windows\SoftwareDistribution\Download\6021592a79635ae4e93e9f40b14b7cdb\BITB4B1.tmp deleted successfully.
C:\Windows\SoftwareDistribution\Download\691482082cd78d0038aaf6963bb04750\BITB414.tmp deleted successfully.
C:\Windows\SoftwareDistribution\Download\790d6339e096d3c5f895a92880adae81\BITB6C5.tmp deleted successfully.
C:\Windows\SoftwareDistribution\Download\981da3ced96579568c5c8832ff952174\BITB91B.tmp deleted successfully.
C:\Windows\SoftwareDistribution\Download\db730b57fecf46a8eee5d46e684ae553\BIT8C18.tmp deleted successfully.
C:\Windows\SoftwareDistribution\Download\eb80a3d9998eb04ec423e3da969268b5\BITB55E.tmp deleted successfully.
C:\Windows\SoftwareDistribution\Download\ef0b4d3049a23bab94137ef7c374d80c\BITB87D.tmp deleted successfully.
C:\Windows\SoftwareDistribution\Download\f6f0ca29a20a3ca7311c99388052f92b\BITB8CC.tmp deleted successfully.
C:\Windows\SoftwareDistribution\Download\fa224a106f085a037c85b45429034c9b\BITB2BC.tmp deleted successfully.
File move failed. \Users\JAKUB\AppData\Roaming\uTorrent\ESET Smart Security 6 32,64bit+Minodlogin 3.10.0.1.rar.torrent scheduled to be moved on reboot.
========== REGISTRY ==========
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{10921475-03CE-4E04-90CE-E2E7EF20C814}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{10921475-03CE-4E04-90CE-E2E7EF20C814}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{9030D464-4C02-4ABF-8ECC-5164760863C6}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B4F3A835-0E21-4959-BA22-42B3008E02FF}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B4F3A835-0E21-4959-BA22-42B3008E02FF}\ not found.
64bit-Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BCSSync\ deleted successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\cz.seznam.software.autoupdate\ deleted successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\cz.seznam.software.szndesktop\ deleted successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite\ deleted successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Dxtory Update Checker 2.0\ deleted successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\FixMyRegistry\ deleted successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Keyboard Inf.\ deleted successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MSC\ deleted successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\seznam-listicka-distribuce\ deleted successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SpeedUpMyComputer\ deleted successfully.

OTL by OldTimer - Version 3.2.69.0 log created on 01262014_114042

Files\Folders moved on Reboot...
C:\Users\JAKUB\AppData\Local\Temp\FXSAPIDebugLogFile.txt moved successfully.
C:\Users\JAKUB\AppData\Local\Microsoft\Windows\Temporary Internet Files\counters.dat moved successfully.
File move failed. C:\Windows\temp\_avast_\Webshlock.txt scheduled to be moved on reboot.
File move failed. \Users\JAKUB\AppData\Roaming\uTorrent\ESET Smart Security 6 32,64bit+Minodlogin 3.10.0.1.rar.torrent scheduled to be moved on reboot.

PendingFileRenameOperations files...

Registry entries deleted on Reboot...

.......

Za ten Office se omlouvám, ale potřebuju ho na práci do školy a s programy jako OpenOffice neumím pracovat.

Vsechny tyto programy - vcetne pripadne instalace - spoustejte jako spravce (kliknete na ne pravym mysidlem a zvolte - Spustit jako spravce)

vyosek píše: T-Cleaner http://tharifas.sweb.cz/T-Cleaner.exe
Stahnete a spustte

Pro potvrzeni volby mackejte A, Enter

Po pouziti utilitu smazte

Antiviry mohou utilitu chybne oznacit jako vir - jedna se o falesny poplach - takze v pohode stahnete (pripadne vypnete pri stahovani antivir)

Stahnete OTC http://oldtimer.geekstogo.com/OTC.exe , ulozte a spustte.
Kliknete na napis CleanUp a pote OK - Po uklidu dojde k restartu pc.

Stahnete TFC http://oldtimer.geekstogo.com/TFC.exe , ulozte a spustte
Kliknete na START a pote OK - Po uklidu dojde k restartu pc.
Po pouziti muzete programek smazat

Stahnete Ccleaner http://www.stahuj.centrum.cz/utility_a_ ... /ccleaner/ a spustte.
Pri instalaci pozor na toolbar (ci jine doplnky), jestli vam nabidne jeho instalaci, tak zruste zatrzitko.
Po spusteni se ocitnete ve funkci Cistic. Vlevo je spousta zatrzitek. Pozor dejte hlavne na kos, pokud nechate zatrzene, vzdy ho vysype.
Dale, podle toho jak je nastaven, smaze vsechna hesla ulozena na netu!!! Takze jestli mate nastavene, at si pocitac hesla pamatuje (coz neni pro bezpecnost dobre), budete je muset pak napsat znova rucne (napr mail, facebook, ruzna fora atd.)
Kliknete na Analyzovat a az dokonci analyzu, kliknete na Spustit Cleaner.
Potom kliknete vlevo na funkci Registry
Kliknete na Hledej problemy, kdyz najde, kliknete na Opravit problemy. Nabidne Vam zalohu, tu udelejte a ulozte ji tak, at ji v pripade potreby najdete.
Funkce Nastroje umoznuje odinstalovani programu. Je dukladnejsi nez samotny windows!

Defragmentujte disk(y)
Stahnete program Defraggler http://www.stahuj.centrum.cz/utility_a_ ... efraggler/
Pri instalaci opet pozor na toolbar
Po nainstalovani program spustte a kliknete na Analyzovat, po analyze kliknete na Defragmentovat a programek odvede svou praci.

Pak napiste, jak je na tom pc.

T - CLEANER - > hotovo.

OTC - > hotovo.

TFC - > taky, ale při spušťení mě naběhla modrá smrt, tak jsem musel udělat v nouzovém režimu a

Po uklidu dojde k restartu pc.

nerestartoval se.

Ccleaner - > hotovo.

Defraggler - > Teď to jdu udělat.

VIRY.CZ

Problém s programem Speed Up My Computer a Fix My Registry

Re: Problém s programem Speed Up My Computer a Fix My Regist

Re: Problém s programem Speed Up My Computer a Fix My Regist

Re: Problém s programem Speed Up My Computer a Fix My Regist

Re: Problém s programem Speed Up My Computer a Fix My Regist

Re: Problém s programem Speed Up My Computer a Fix My Regist

Re: Problém s programem Speed Up My Computer a Fix My Regist

Re: Problém s programem Speed Up My Computer a Fix My Regist

Re: Problém s programem Speed Up My Computer a Fix My Regist

Re: Problém s programem Speed Up My Computer a Fix My Regist

Re: Problém s programem Speed Up My Computer a Fix My Regist

Re: Problém s programem Speed Up My Computer a Fix My Regist

Re: Problém s programem Speed Up My Computer a Fix My Regist

Re: Problém s programem Speed Up My Computer a Fix My Regist

Re: Problém s programem Speed Up My Computer a Fix My Regist

Re: Problém s programem Speed Up My Computer a Fix My Regist