Logfile of random's system information tool 1.10 (written by random/random)
Run by anetqua at 2014-11-03 05:27:58
Microsoft Windows 7 Ultimate
System drive C: has 481 GB (67%) free of 715 GB
Total RAM: 2972 MB (62% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 5:28:24, on 3.11.2014
Platform: Windows 7 (WinNT 6.00.3504)
MSIE: Internet Explorer v9.00 (9.00.8112.16448)
Boot mode: Normal
Running processes:
C:\Windows\system32\taskhost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\System32\igfxtray.exe
C:\Windows\System32\hkcmd.exe
C:\Windows\System32\igfxpers.exe
C:\Windows\system32\RunDll32.exe
C:\Windows\Explorer.exe
C:\Program Files\Microsoft Office\Office14\WINWORD.EXE
C:\Program Files\Microsoft Office\Office14\WINWORD.EXE
C:\Program Files\Adobe\Adobe Photoshop CS5.1\Photoshop.exe
C:\Program Files\Common Files\Adobe\CS5.5ServiceManager\CS5.5ServiceManager.exe
C:\Windows\system32\taskeng.exe
C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\AAM Updates Notifier.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Users\anetqua\Downloads\RSIT.exe
C:\Program Files\trend micro\anetqua.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Internet Explorer\Search,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
O4 - HKLM\..\Run: [IgfxTray] C:\Windows\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\Windows\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\Windows\system32\igfxpers.exe
O4 - Startup: Sledovat výstrahy inkoustu - HP Deskjet 5520 series (Copy 1).lnk = ?
O9 - Extra button: HP Smart Print - {22CC3EBD-C286-43aa-B8E6-06B115F74162} - C:\Program Files\Hewlett-Packard\Smart Print 2.0\smartprintsetup.exe
O9 - Extra 'Tools' menuitem: HP Smart Print - {22CC3EBD-C286-43aa-B8E6-06B115F74162} - C:\Program Files\Hewlett-Packard\Smart Print 2.0\smartprintsetup.exe
O9 - Extra button: PokerStars - {3AD14F0C-ED16-4e43-B6D8-661B03F6A1EF} - C:\Program Files\PokerStars\PokerStarsUpdate.exe
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
--
End of file - 3369 bytes
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-07-27 63944]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2012-10-04 449512]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2012-10-04 157672]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2011-02-11 137752]
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2011-02-11 171032]
"Persistence"=C:\Windows\system32\igfxpers.exe [2011-02-11 172568]
C:\Users\anetqua\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Sledovat výstrahy inkoustu - HP Deskjet 5520 series (Copy 1).lnk - C:\Windows\system32\RunDll32.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2011-02-11 228864]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"C:\Windows\system32\msiexec.exe"="C:\Windows\system32\msiexec.exe:*:Generic Host Process"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.cvid"=iccvid.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"vidc.VP60"=C:\Windows\system32\vp6vfw.dll
"vidc.VP61"=C:\Windows\system32\vp6vfw.dll
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
======List of files/folders created in the last 1 month======
2014-11-03 05:27:58 ----D---- C:\rsit
2014-11-02 07:55:18 ----D---- C:\Windows\temp
2014-11-02 07:55:16 ----A---- C:\ComboFix.txt
2014-11-02 07:51:47 ----SHD---- C:\$RECYCLE.BIN
2014-11-01 22:46:41 ----A---- C:\Windows\zip.exe
2014-11-01 22:46:41 ----A---- C:\Windows\SWSC.exe
2014-11-01 22:46:41 ----A---- C:\Windows\SWREG.exe
2014-11-01 22:46:41 ----A---- C:\Windows\sed.exe
2014-11-01 22:46:41 ----A---- C:\Windows\PEV.exe
2014-11-01 22:46:41 ----A---- C:\Windows\NIRCMD.exe
2014-11-01 22:46:41 ----A---- C:\Windows\MBR.exe
2014-11-01 22:46:41 ----A---- C:\Windows\grep.exe
2014-11-01 22:46:31 ----AD---- C:\Qoobox
2014-11-01 22:45:44 ----D---- C:\Windows\erdnt
2014-10-31 20:52:35 ----A---- C:\Windows\zoek-delete.exe
======List of files/folders modified in the last 1 month======
2014-11-03 05:28:24 ----D---- C:\Program Files\trend micro
2014-11-03 05:28:15 ----D---- C:\Windows\Prefetch
2014-11-02 17:04:20 ----D---- C:\Windows\System32
2014-11-02 17:04:20 ----D---- C:\Windows\inf
2014-11-02 17:04:20 ----A---- C:\Windows\system32\PerfStringBackup.INI
2014-11-02 14:33:29 ----D---- C:\Windows\system32\config
2014-11-02 07:55:19 ----D---- C:\Windows\system32\drivers
2014-11-02 07:55:18 ----D---- C:\Windows
2014-11-02 07:51:43 ----A---- C:\Windows\system.ini
2014-11-02 07:51:33 ----D---- C:\Windows\system32\drivers\etc
2014-11-02 07:33:41 ----D---- C:\Windows\AppPatch
2014-11-02 07:33:40 ----D---- C:\Program Files\Common Files
2014-11-01 22:47:09 ----SHD---- C:\System Volume Information
2014-11-01 08:00:30 ----D---- C:\Users\anetqua\AppData\Roaming\Zoner
2014-11-01 08:00:30 ----D---- C:\Program Files\Zoner
2014-11-01 07:36:17 ----D---- C:\Windows\Minidump
2014-10-31 22:02:41 ----D---- C:\Windows\system32\NDF
2014-10-31 20:44:27 ----D---- C:\ProgramData
2014-10-31 20:44:21 ----RD---- C:\Program Files
2014-10-30 19:15:31 ----D---- C:\Program Files\Enigma Software Group
2014-10-30 19:15:25 ----D---- C:\Windows\Tasks
2014-10-30 19:00:48 ----D---- C:\Users\anetqua\AppData\Roaming\Seznam.cz
2014-10-30 19:00:36 ----D---- C:\Program Files\Seznam.cz
2014-10-30 18:57:27 ----D---- C:\Users\anetqua\AppData\Roaming\Skype
2014-10-30 08:17:47 ----SHD---- C:\Windows\Installer
2014-10-30 08:17:22 ----D---- C:\Windows\winsxs
2014-10-28 11:14:51 ----D---- C:\ProgramData\Malwarebytes
2014-10-04 18:42:38 ----D---- C:\Program Files\ProFact 3.0 Free
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2009-07-14 173648]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 48128]
R3 BthEnum;Bluetooth Enumerator Service; C:\Windows\system32\DRIVERS\BthEnum.sys [2009-07-14 34816]
R3 BthPan;Bluetooth Device (Personal Area Network); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 93696]
R3 BTHUSB;Bluetooth Radio USB Driver; C:\Windows\System32\Drivers\BTHUSB.sys [2009-07-14 58880]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd32.sys [2011-02-11 9036800]
R3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 129536]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt86win7.sys [2011-06-10 394856]
R3 rtl8192se;Realtek Wireless LAN 802.11n PCI-E NIC NT Driver; C:\Windows\system32\DRIVERS\rtl8192se.sys [2011-09-08 1117800]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\Windows\system32\DRIVERS\vwifimp.sys [2009-07-14 14336]
S2 Parvdm;Parvdm; C:\Windows\system32\DRIVERS\parvdm.sys [2009-07-14 8704]
S3 AgereSoftModem;Agere Systems Soft Modem; C:\Windows\system32\DRIVERS\AGRSM.sys [2009-07-13 1035776]
S3 aic78xx;aic78xx; C:\Windows\system32\DRIVERS\djsvs.sys [2009-07-14 70720]
S3 amdagp;AMD AGP Bus Filter Driver; C:\Windows\system32\DRIVERS\amdagp.sys [2009-07-14 53312]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60x.sys [2009-07-13 229888]
S3 BridgeMP;@%SystemRoot%\system32\bridgeres.dll,-1; C:\Windows\system32\DRIVERS\bridge.sys [2009-07-14 78336]
S3 BTHPORT;Bluetooth Port Driver; C:\Windows\System32\Drivers\BTHport.sys [2009-07-14 392704]
S3 catchme;catchme; \??\C:\Users\anetqua\AppData\Local\Temp\catchme.sys []
S3 MBAMSwissArmy;MBAMSwissArmy; \??\C:\Windows\system32\drivers\MBAMSwissArmy.sys []
S3 mbr;mbr; \??\C:\Users\anetqua\AppData\Local\Temp\mbr.sys []
S3 pciide;pciide; C:\Windows\system32\DRIVERS\pciide.sys [2009-07-14 12368]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2009-07-14 133120]
S3 s3cap;s3cap; C:\Windows\system32\DRIVERS\vms3cap.sys [2009-07-14 5632]
S3 sisagp;SIS AGP Bus Filter; C:\Windows\system32\DRIVERS\sisagp.sys [2009-07-14 52304]
S3 storvsc;storvsc; C:\Windows\system32\DRIVERS\storvsc.sys [2009-07-14 28224]
S3 usb_rndisx;USB RNDIS Adapter; C:\Windows\system32\DRIVERS\usb8023x.sys [2009-07-14 15872]
S3 usbscan;USB Scanner Driver; C:\Windows\system32\DRIVERS\usbscan.sys [2009-07-14 35840]
S3 viaagp;VIA AGP Bus Filter; C:\Windows\system32\DRIVERS\viaagp.sys [2009-07-14 53328]
S3 ViaC7;VIA C7 Processor Driver; C:\Windows\system32\DRIVERS\viac7.sys [2009-07-14 52736]
S3 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\system32\DRIVERS\vmbus.sys [2009-07-14 175824]
S3 VMBusHID;VMBusHID; C:\Windows\system32\DRIVERS\VMBusHID.sys [2009-07-14 17920]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2009-07-14 34944]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4640000]
S2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S2 HPSLPSVC;HP Network Devices Support; C:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S4 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [2012-07-27 63960]
S4 TeamViewer7;TeamViewer 7; C:\Program Files\TeamViewer\Version7\TeamViewer_Service.exe [2012-08-31 2754984]
-----------------EOF-----------------
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Pomalý počítač, díky za pomoc :)
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Re: Pomalý počítač, díky za pomoc :)
Nainstalujte nejaky antivir, treba Avast free. Stahnete crystal disk info http://sourceforge.jp/projects/crystald ... 5_0_0.zip/Spustte jako spravce. Za chvili se zobrazi vysledek.
Kliknete nahore na napis Úpravy a pak na napis Kopírovat. To co se zkopiruje (ulozi se to do pameti) mi sem vlozte (ctrl + V)
Zopakujte sken s OTL http://forum.viry.cz/viewtopic.php?f=13 ... 5#p1354663 , abych videl, co tam jeste zbylo.Pokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Re: Pomalý počítač, díky za pomoc :)
----------------------------------------------------------------------------
CrystalDiskInfo 5.0.0 (C) 2008-2012 hiyohiyo
Crystal Dew World : http://crystalmark.info/
----------------------------------------------------------------------------
OS : Windows 7 Ultimate Edition [6.1 Build 7600] (x86)
Date : 2014/11/06 17:55:49
-- Controller Map ----------------------------------------------------------
+ ATA Channel 0 (0) [ATA]
- ST9750423AS ATA Device
+ ATA Channel 1 (1) [ATA]
- Optiarc DVD RW AD-7760H ATA Device
- ATA Channel 5 (5) [ATA]
+ Standardní řadič AHCI 1.0 s rozhraním Serial ATA [ATA]
- ATA Channel 0 (0)
- ATA Channel 1 (1)
- ATA Channel 5 (5)
-- Disk List ---------------------------------------------------------------
(1) ST9750423AS : 750,1 GB [0/0/0, pd1] - st
(2) ST2000DM001-1E6164 : 2000,3 GB [1/X/X, sa1] (V=0BC2, P=3321) - st
----------------------------------------------------------------------------
(1) ST9750423AS
----------------------------------------------------------------------------
Model : ST9750423AS
Firmware : 0001SDM1
Serial Number : 5WS4JQX9
Disk Size : 750,1 GB (8,4/137,4/750,1)
Buffer Size : 16384 KB
Queue Depth : 32
# of Sectors : 1465149168
Rotation Rate : 5400 RPM
Interface : Serial ATA
Major Version : ATA8-ACS
Minor Version : ATA8-ACS version 4
Transfer Mode : SATA/300
Power On Hours : 9238 hod.
Power On Count : 1439 krát
Host Reads : 589 GB
Host Writes : 2011 GB
Temparature : 36 C (96 F)
Health Status : Dobrý
Features : S.M.A.R.T., APM, 48bit LBA, NCQ
APM Level : 8080h [ON]
AAM Level : ----
-- S.M.A.R.T. --------------------------------------------------------------
ID Cur Wor Thr RawValues(6) Attribute Name
01 118 _99 __6 00000023E880 Počet chyb čtení
03 _98 _98 _85 000000000000 Čas na roztočení ploten
04 _37 _37 _20 00000000FFFF Počet spuštění/zastavení
05 100 100 _36 000000000000 Počet přemapovaných sektorů
07 _85 _60 _30 0000166C544F Počet chybných hledání
09 _90 _90 __0 000000002416 Hodin v činnosti
0A 100 100 _97 000000000000 Počet opakovaných pokusů o roztočení ploten
0C _99 _99 _20 00000000059F Počet cyklů zapnutí zařízení
B8 100 100 _99 000000000000 Ukončovacích chyb
BB 100 100 __0 000000000000 Ohlášeno neopravitelných chyb
BC 100 _99 __0 000200020003 Časový limit příkazu
BD 100 100 __0 000000000000 Vysoká rychlost zápisu
BE _64 _49 _45 000024180024 Teplota toku vzduchu
BF 100 100 __0 000000000156 Počet udalostí zaznamenaných otřesovým senzorem
C0 100 100 __0 000000000065 Počet vypnutí disku
C1 _49 _49 __0 000000019599 Počet cyklů načítání/vymazání
C2 _36 _51 __0 000800000024 Teplota
C3 118 _99 __0 00000023E880 Počet oprav chybného čtení
C5 100 100 __0 000000000000 Počet podezřelých sektorů
C6 100 100 __0 000000000000 Počet neopravitelných sektorů
C7 200 200 __0 000000000000 Počet chyb v kontrolním součtu UltraDMA
F0 100 253 __0 4D1D00002011 Čas nastavování hlaviček - v hodinách
F1 100 253 __0 0000FB7CD0A2 Total LBAs Written
F2 100 253 __0 000049AC283B Total LBAs Read
FE 100 100 __0 000000000000 Ochrana proti pádu
-- IDENTIFY_DEVICE ---------------------------------------------------------
0 1 2 3 4 5 6 7 8 9
000: 0C5A 3FFF C837 0010 0000 003F 003F 0000 0000 0000
010: 2020 2020 2020 2020 2020 3557 3557 5334 4A51 5839
020: 0000 8000 0004 3030 3031 4D31 4D31 5354 3937 3530
030: 3432 3341 5320 2020 2020 2020 2020 2020 2020 2020
040: 2020 2020 2020 2020 2020 2020 2020 8010 0000 2F00
050: 4000 0200 0200 0007 3FFF 003F 003F FC10 00FB 0110
060: FFFF 0FFF 0000 0407 0003 0078 0078 0078 0078 0000
070: 0000 0000 0000 0000 0000 0F06 0F06 0000 0048 0040
080: 01F0 0029 746B 7D09 61E3 BC09 BC09 61E3 007F 0054
090: 0054 8080 FFFE 0000 D000 0000 0000 0000 0000 0000
100: 66F0 5754 0000 0000 0000 6003 6003 0000 5000 C500
110: 499F 87AD 0000 0000 0000 0000 0000 0000 0000 401E
120: 401C 0000 0000 0000 0000 0000 0000 0000 0029 66F0
130: 5754 66F0 5754 2020 0002 0108 0108 5000 3C06 3C0A
140: 0000 0078 0000 0008 0000 01FF 01FF 0280 0000 0000
150: 0008 0000 0000 0000 0000 0000 0000 0000 5700 8060
160: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
170: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
180: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
190: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
200: 0000 0000 0000 0000 0000 303F 303F 0000 0000 4000
210: 0000 0000 0000 0000 0000 0000 0000 1518 0000 0000
220: 0000 0000 1010 0000 0000 0000 0000 0000 0000 0000
230: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
240: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
250: 0000 0000 0000 0000 0000 EAA5
----------------------------------------------------------------------------
(2) ST2000DM001-1E6164
----------------------------------------------------------------------------
Enclosure : Seagate Expansion Desk USB Device (V=0BC2, P=3321, sa1) - st
Model : ST2000DM001-1E6164
Firmware : SC48
Serial Number : W1E846RG
Disk Size : 2000,3 GB (8,4/137,4/2000,3)
Buffer Size : Neznámy údaj
Queue Depth : 1
# of Sectors : 3907029168
Rotation Rate : 7200 RPM
Interface : USB (Serial ATA)
Major Version : ATA8-ACS
Minor Version : ATA8-ACS version 4
Transfer Mode : SATA/600
Power On Hours : 927 hod.
Power On Count : 31 krát
Host Reads : 270 GB
Host Writes : 1392 GB
Temparature : 37 C (98 F)
Health Status : Dobrý
Features : S.M.A.R.T., APM, 48bit LBA
APM Level : 8080h [ON]
AAM Level : ----
-- S.M.A.R.T. --------------------------------------------------------------
ID Cur Wor Thr RawValues(6) Attribute Name
01 114 100 __6 00000485CE30 Počet chyb čtení
03 _95 _95 __0 000000000000 Čas na roztočení ploten
04 100 100 _20 000000000028 Počet spuštění/zastavení
05 100 100 _10 000000000000 Počet přemapovaných sektorů
07 _57 _57 _30 000200138631 Počet chybných hledání
09 _99 _99 __0 00000000039F Hodin v činnosti
0A 100 100 _97 000000000000 Počet opakovaných pokusů o roztočení ploten
0C 100 100 _20 00000000001F Počet cyklů zapnutí zařízení
B7 100 100 __0 000000000000 Neznámý
B8 100 100 _99 000000000000 Ukončovacích chyb
BB 100 100 __0 000000000000 Ohlášeno neopravitelných chyb
BC 100 100 __0 000000000000 Časový limit příkazu
BD 100 100 __0 000000000000 Vysoká rychlost zápisu
BE _63 _47 _45 0000311A0025 Teplota toku vzduchu
BF 100 100 __0 000000000000 Počet udalostí zaznamenaných otřesovým senzorem
C0 100 100 __0 00000000001A Počet vypnutí disku
C1 100 100 __0 0000000002F2 Počet cyklů načítání/vymazání
C2 _37 _53 __0 001200000025 Teplota
C5 100 100 __0 000000000000 Počet podezřelých sektorů
C6 100 100 __0 000000000000 Počet neopravitelných sektorů
C7 200 200 __0 000000000000 Počet chyb v kontrolním součtu UltraDMA
F0 100 253 __0 201C00000052 Čas nastavování hlaviček - v hodinách
F1 100 253 __0 0000AE1D5770 Total LBAs Written
F2 100 253 __0 000021CE6726 Total LBAs Read
-- IDENTIFY_DEVICE ---------------------------------------------------------
0 1 2 3 4 5 6 7 8 9
000: 0C5A 3FFF C837 0010 0000 003F 003F 0000 0000 0000
010: 2020 2020 2020 2020 2020 5731 5731 4538 3436 5247
020: 0000 0000 0000 5343 3438 2020 2020 5354 3230 3030
030: 444D 3030 312D 3145 3631 2020 2020 2020 2020 2020
040: 2020 2020 2020 2020 2020 2020 2020 8010 4000 2F00
050: 4000 0200 0200 0007 3FFF 003F 003F FC10 00FB 0010
060: FFFF 0FFF 0000 0007 0003 0078 0078 0078 0078 0000
070: 0000 0000 0000 0000 0000 840E 840E 0004 004C 0040
080: 01F0 0029 346B 7D09 4163 BC09 BC09 4163 407F 006F
090: 006F 8080 FFFE 0000 D000 0000 0000 0000 0000 0000
100: 88B0 E8E0 0000 0000 0000 6003 6003 0000 5000 C500
110: 73D9 4C3A 0000 0000 0000 0000 0000 0000 0000 401E
120: 401C 0000 0000 0000 0000 0000 0000 0000 0021 88B0
130: E8E0 88B0 E8E0 2020 0002 0100 0100 5000 3C06 3C0A
140: 0000 003C 0000 0008 0000 05FF 05FF 0280 0000 0000
150: 0008 0000 0000 0000 0000 0000 0000 0000 5800 8800
160: 0000 0000 0000 0000 0000 0000 0000 0000 0002 0000
170: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
180: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
190: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
200: 0000 0000 0000 0000 0000 3081 3081 0000 0000 4000
210: 0000 0000 0000 0000 0000 0000 0000 1C20 0000 0000
220: 0000 0000 1020 0000 0000 0000 0000 0000 0000 0000
230: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
240: 0000 0000 0000 0003 0000 0000 0000 0000 0000 0000
250: 0000 0000 0000 0000 0000 B2A5
CrystalDiskInfo 5.0.0 (C) 2008-2012 hiyohiyo
Crystal Dew World : http://crystalmark.info/
----------------------------------------------------------------------------
OS : Windows 7 Ultimate Edition [6.1 Build 7600] (x86)
Date : 2014/11/06 17:55:49
-- Controller Map ----------------------------------------------------------
+ ATA Channel 0 (0) [ATA]
- ST9750423AS ATA Device
+ ATA Channel 1 (1) [ATA]
- Optiarc DVD RW AD-7760H ATA Device
- ATA Channel 5 (5) [ATA]
+ Standardní řadič AHCI 1.0 s rozhraním Serial ATA [ATA]
- ATA Channel 0 (0)
- ATA Channel 1 (1)
- ATA Channel 5 (5)
-- Disk List ---------------------------------------------------------------
(1) ST9750423AS : 750,1 GB [0/0/0, pd1] - st
(2) ST2000DM001-1E6164 : 2000,3 GB [1/X/X, sa1] (V=0BC2, P=3321) - st
----------------------------------------------------------------------------
(1) ST9750423AS
----------------------------------------------------------------------------
Model : ST9750423AS
Firmware : 0001SDM1
Serial Number : 5WS4JQX9
Disk Size : 750,1 GB (8,4/137,4/750,1)
Buffer Size : 16384 KB
Queue Depth : 32
# of Sectors : 1465149168
Rotation Rate : 5400 RPM
Interface : Serial ATA
Major Version : ATA8-ACS
Minor Version : ATA8-ACS version 4
Transfer Mode : SATA/300
Power On Hours : 9238 hod.
Power On Count : 1439 krát
Host Reads : 589 GB
Host Writes : 2011 GB
Temparature : 36 C (96 F)
Health Status : Dobrý
Features : S.M.A.R.T., APM, 48bit LBA, NCQ
APM Level : 8080h [ON]
AAM Level : ----
-- S.M.A.R.T. --------------------------------------------------------------
ID Cur Wor Thr RawValues(6) Attribute Name
01 118 _99 __6 00000023E880 Počet chyb čtení
03 _98 _98 _85 000000000000 Čas na roztočení ploten
04 _37 _37 _20 00000000FFFF Počet spuštění/zastavení
05 100 100 _36 000000000000 Počet přemapovaných sektorů
07 _85 _60 _30 0000166C544F Počet chybných hledání
09 _90 _90 __0 000000002416 Hodin v činnosti
0A 100 100 _97 000000000000 Počet opakovaných pokusů o roztočení ploten
0C _99 _99 _20 00000000059F Počet cyklů zapnutí zařízení
B8 100 100 _99 000000000000 Ukončovacích chyb
BB 100 100 __0 000000000000 Ohlášeno neopravitelných chyb
BC 100 _99 __0 000200020003 Časový limit příkazu
BD 100 100 __0 000000000000 Vysoká rychlost zápisu
BE _64 _49 _45 000024180024 Teplota toku vzduchu
BF 100 100 __0 000000000156 Počet udalostí zaznamenaných otřesovým senzorem
C0 100 100 __0 000000000065 Počet vypnutí disku
C1 _49 _49 __0 000000019599 Počet cyklů načítání/vymazání
C2 _36 _51 __0 000800000024 Teplota
C3 118 _99 __0 00000023E880 Počet oprav chybného čtení
C5 100 100 __0 000000000000 Počet podezřelých sektorů
C6 100 100 __0 000000000000 Počet neopravitelných sektorů
C7 200 200 __0 000000000000 Počet chyb v kontrolním součtu UltraDMA
F0 100 253 __0 4D1D00002011 Čas nastavování hlaviček - v hodinách
F1 100 253 __0 0000FB7CD0A2 Total LBAs Written
F2 100 253 __0 000049AC283B Total LBAs Read
FE 100 100 __0 000000000000 Ochrana proti pádu
-- IDENTIFY_DEVICE ---------------------------------------------------------
0 1 2 3 4 5 6 7 8 9
000: 0C5A 3FFF C837 0010 0000 003F 003F 0000 0000 0000
010: 2020 2020 2020 2020 2020 3557 3557 5334 4A51 5839
020: 0000 8000 0004 3030 3031 4D31 4D31 5354 3937 3530
030: 3432 3341 5320 2020 2020 2020 2020 2020 2020 2020
040: 2020 2020 2020 2020 2020 2020 2020 8010 0000 2F00
050: 4000 0200 0200 0007 3FFF 003F 003F FC10 00FB 0110
060: FFFF 0FFF 0000 0407 0003 0078 0078 0078 0078 0000
070: 0000 0000 0000 0000 0000 0F06 0F06 0000 0048 0040
080: 01F0 0029 746B 7D09 61E3 BC09 BC09 61E3 007F 0054
090: 0054 8080 FFFE 0000 D000 0000 0000 0000 0000 0000
100: 66F0 5754 0000 0000 0000 6003 6003 0000 5000 C500
110: 499F 87AD 0000 0000 0000 0000 0000 0000 0000 401E
120: 401C 0000 0000 0000 0000 0000 0000 0000 0029 66F0
130: 5754 66F0 5754 2020 0002 0108 0108 5000 3C06 3C0A
140: 0000 0078 0000 0008 0000 01FF 01FF 0280 0000 0000
150: 0008 0000 0000 0000 0000 0000 0000 0000 5700 8060
160: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
170: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
180: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
190: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
200: 0000 0000 0000 0000 0000 303F 303F 0000 0000 4000
210: 0000 0000 0000 0000 0000 0000 0000 1518 0000 0000
220: 0000 0000 1010 0000 0000 0000 0000 0000 0000 0000
230: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
240: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
250: 0000 0000 0000 0000 0000 EAA5
----------------------------------------------------------------------------
(2) ST2000DM001-1E6164
----------------------------------------------------------------------------
Enclosure : Seagate Expansion Desk USB Device (V=0BC2, P=3321, sa1) - st
Model : ST2000DM001-1E6164
Firmware : SC48
Serial Number : W1E846RG
Disk Size : 2000,3 GB (8,4/137,4/2000,3)
Buffer Size : Neznámy údaj
Queue Depth : 1
# of Sectors : 3907029168
Rotation Rate : 7200 RPM
Interface : USB (Serial ATA)
Major Version : ATA8-ACS
Minor Version : ATA8-ACS version 4
Transfer Mode : SATA/600
Power On Hours : 927 hod.
Power On Count : 31 krát
Host Reads : 270 GB
Host Writes : 1392 GB
Temparature : 37 C (98 F)
Health Status : Dobrý
Features : S.M.A.R.T., APM, 48bit LBA
APM Level : 8080h [ON]
AAM Level : ----
-- S.M.A.R.T. --------------------------------------------------------------
ID Cur Wor Thr RawValues(6) Attribute Name
01 114 100 __6 00000485CE30 Počet chyb čtení
03 _95 _95 __0 000000000000 Čas na roztočení ploten
04 100 100 _20 000000000028 Počet spuštění/zastavení
05 100 100 _10 000000000000 Počet přemapovaných sektorů
07 _57 _57 _30 000200138631 Počet chybných hledání
09 _99 _99 __0 00000000039F Hodin v činnosti
0A 100 100 _97 000000000000 Počet opakovaných pokusů o roztočení ploten
0C 100 100 _20 00000000001F Počet cyklů zapnutí zařízení
B7 100 100 __0 000000000000 Neznámý
B8 100 100 _99 000000000000 Ukončovacích chyb
BB 100 100 __0 000000000000 Ohlášeno neopravitelných chyb
BC 100 100 __0 000000000000 Časový limit příkazu
BD 100 100 __0 000000000000 Vysoká rychlost zápisu
BE _63 _47 _45 0000311A0025 Teplota toku vzduchu
BF 100 100 __0 000000000000 Počet udalostí zaznamenaných otřesovým senzorem
C0 100 100 __0 00000000001A Počet vypnutí disku
C1 100 100 __0 0000000002F2 Počet cyklů načítání/vymazání
C2 _37 _53 __0 001200000025 Teplota
C5 100 100 __0 000000000000 Počet podezřelých sektorů
C6 100 100 __0 000000000000 Počet neopravitelných sektorů
C7 200 200 __0 000000000000 Počet chyb v kontrolním součtu UltraDMA
F0 100 253 __0 201C00000052 Čas nastavování hlaviček - v hodinách
F1 100 253 __0 0000AE1D5770 Total LBAs Written
F2 100 253 __0 000021CE6726 Total LBAs Read
-- IDENTIFY_DEVICE ---------------------------------------------------------
0 1 2 3 4 5 6 7 8 9
000: 0C5A 3FFF C837 0010 0000 003F 003F 0000 0000 0000
010: 2020 2020 2020 2020 2020 5731 5731 4538 3436 5247
020: 0000 0000 0000 5343 3438 2020 2020 5354 3230 3030
030: 444D 3030 312D 3145 3631 2020 2020 2020 2020 2020
040: 2020 2020 2020 2020 2020 2020 2020 8010 4000 2F00
050: 4000 0200 0200 0007 3FFF 003F 003F FC10 00FB 0010
060: FFFF 0FFF 0000 0007 0003 0078 0078 0078 0078 0000
070: 0000 0000 0000 0000 0000 840E 840E 0004 004C 0040
080: 01F0 0029 346B 7D09 4163 BC09 BC09 4163 407F 006F
090: 006F 8080 FFFE 0000 D000 0000 0000 0000 0000 0000
100: 88B0 E8E0 0000 0000 0000 6003 6003 0000 5000 C500
110: 73D9 4C3A 0000 0000 0000 0000 0000 0000 0000 401E
120: 401C 0000 0000 0000 0000 0000 0000 0000 0021 88B0
130: E8E0 88B0 E8E0 2020 0002 0100 0100 5000 3C06 3C0A
140: 0000 003C 0000 0008 0000 05FF 05FF 0280 0000 0000
150: 0008 0000 0000 0000 0000 0000 0000 0000 5800 8800
160: 0000 0000 0000 0000 0000 0000 0000 0000 0002 0000
170: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
180: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
190: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
200: 0000 0000 0000 0000 0000 3081 3081 0000 0000 4000
210: 0000 0000 0000 0000 0000 0000 0000 1C20 0000 0000
220: 0000 0000 1020 0000 0000 0000 0000 0000 0000 0000
230: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
240: 0000 0000 0000 0003 0000 0000 0000 0000 0000 0000
250: 0000 0000 0000 0000 0000 B2A5
Re: Pomalý počítač, díky za pomoc :)
OTL logfile created on: 6.11.2014 17:59:29 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\anetqua\Desktop
Ultimate Edition (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy
2,90 Gb Total Physical Memory | 1,72 Gb Available Physical Memory | 59,16% Memory free
5,80 Gb Paging File | 4,32 Gb Available in Paging File | 74,52% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 698,54 Gb Total Space | 467,91 Gb Free Space | 66,98% Space Free | Partition Type: NTFS
Drive E: | 1863,00 Gb Total Space | 855,98 Gb Free Space | 45,95% Space Free | Partition Type: NTFS
Computer Name: ANETQUA-PC | User Name: anetqua | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Processes (SafeList) ==========
PRC - File not found --
PRC - [2014.11.06 17:58:21 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\anetqua\Desktop\OTL.exe
PRC - [2014.11.06 17:42:38 | 000,323,616 | ---- | M] (Dropbox, Inc.) -- C:\Users\Public\Desktop\DropboxInstallerAvast.exe
PRC - [2014.11.06 17:41:41 | 005,223,016 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastUI.exe
PRC - [2014.11.06 17:41:41 | 000,050,344 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe
PRC - [2014.11.06 17:38:00 | 003,441,688 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\Setup\aswOfferTool.exe
PRC - [2014.10.22 05:05:02 | 000,854,344 | ---- | M] (Google Inc.) -- C:\Program Files\Google\Chrome\Application\chrome.exe
PRC - [2013.08.22 19:01:20 | 001,237,080 | ---- | M] (Alexander Roshal) -- C:\Program Files\WinRAR\WinRAR.exe
PRC - [2012.06.15 14:08:32 | 001,149,912 | ---- | M] (Crystal Dew World) -- C:\Users\anetqua\AppData\Local\Temp\Rar$EXa0.759\DiskInfo.exe
PRC - [2011.03.15 16:59:32 | 000,312,184 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\AAM Updates Notifier.exe
PRC - [2009.07.14 02:14:42 | 000,049,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\taskhost.exe
PRC - [2009.07.14 02:14:20 | 002,613,248 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
========== Modules (No Company Name) ==========
MOD - [2014.11.06 17:59:09 | 000,064,000 | ---- | M] () -- C:\Users\anetqua\AppData\Local\Temp\nso7F84.tmp\Inetc.dll
MOD - [2014.11.06 17:59:00 | 000,009,216 | ---- | M] () -- C:\Users\anetqua\AppData\Local\Temp\nso7F84.tmp\nsisFile.dll
MOD - [2014.11.06 17:58:51 | 000,068,096 | ---- | M] () -- C:\Users\anetqua\AppData\Local\Temp\nso7F84.tmp\DropboxNSISTools.dll
MOD - [2014.11.06 17:58:41 | 000,030,208 | ---- | M] () -- C:\Users\anetqua\AppData\Local\Temp\nso7F84.tmp\UAC.dll
MOD - [2014.11.06 17:57:53 | 000,003,584 | ---- | M] () -- C:\Users\anetqua\AppData\Local\Temp\nso7F84.tmp\Banner.dll
MOD - [2014.11.06 17:57:52 | 000,011,264 | ---- | M] () -- C:\Users\anetqua\AppData\Local\Temp\nso7F84.tmp\System.dll
MOD - [2014.11.06 17:41:42 | 038,561,576 | ---- | M] () -- C:\Program Files\AVAST Software\Avast\libcef.dll
MOD - [2014.11.06 17:41:41 | 000,888,216 | ---- | M] () -- C:\Program Files\AVAST Software\Avast\ffmpegsumo.dll
MOD - [2014.10.22 05:04:57 | 008,910,664 | ---- | M] () -- C:\Program Files\Google\Chrome\Application\38.0.2125.111\pdf.dll
MOD - [2014.10.22 05:04:51 | 001,042,760 | ---- | M] () -- C:\Program Files\Google\Chrome\Application\38.0.2125.111\libglesv2.dll
MOD - [2014.10.22 05:04:49 | 000,211,272 | ---- | M] () -- C:\Program Files\Google\Chrome\Application\38.0.2125.111\libegl.dll
MOD - [2014.10.22 05:04:48 | 001,681,224 | ---- | M] () -- C:\Program Files\Google\Chrome\Application\38.0.2125.111\ffmpegsumo.dll
========== Services (SafeList) ==========
SRV - File not found [Auto | Stopped] -- C:\Users\anetqua\AppData\Local\Temp\7zS71DA\hpslpsvc32.dll -- (HPSLPSVC)
SRV - [2014.11.06 17:41:41 | 000,050,344 | ---- | M] (AVAST Software) [Auto | Running] -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe -- (avast! Antivirus)
SRV - [2012.08.31 15:02:03 | 002,754,984 | ---- | M] (TeamViewer GmbH) [Disabled | Stopped] -- C:\Program Files\TeamViewer\Version7\TeamViewer_Service.exe -- (TeamViewer7)
SRV - [2012.07.27 21:51:26 | 000,063,960 | ---- | M] (Adobe Systems Incorporated) [Disabled | Stopped] -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2009.07.14 02:16:13 | 000,025,088 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\sensrsvc.dll -- (SensrSvc)
SRV - [2009.07.14 02:16:12 | 001,004,544 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\PeerDistSvc.dll -- (PeerDistSvc)
SRV - [2009.07.14 02:15:41 | 000,680,960 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
========== Driver Services (SafeList) ==========
DRV - File not found [Kernel | On_Demand | Unknown] -- C:\Users\anetqua\AppData\Local\Temp\mbr.sys -- (mbr)
DRV - File not found [File_System | On_Demand | Stopped] -- C:\Windows\system32\drivers\MBAMSwissArmy.sys -- (MBAMSwissArmy)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Users\anetqua\AppData\Local\Temp\catchme.sys -- (catchme)
DRV - [2014.11.06 17:42:47 | 000,787,800 | ---- | M] (AVAST Software) [File_System | System | Running] -- C:\Windows\System32\drivers\aswsnx.sys -- (aswSnx)
DRV - [2014.11.06 17:42:47 | 000,070,384 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\Windows\System32\drivers\aswmonflt.sys -- (aswMonFlt)
DRV - [2014.11.06 17:41:43 | 000,422,760 | ---- | M] (AVAST Software) [File_System | System | Running] -- C:\Windows\System32\drivers\aswSP.sys -- (aswSP)
DRV - [2014.11.06 17:41:43 | 000,206,248 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\System32\drivers\aswVmm.sys -- (aswVmm)
DRV - [2014.11.06 17:41:43 | 000,091,496 | ---- | M] (AVAST Software) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\aswStm.sys -- (aswStm)
DRV - [2014.11.06 17:41:43 | 000,081,768 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\System32\drivers\aswRdr2.sys -- (aswRdr)
DRV - [2014.11.06 17:41:43 | 000,049,944 | ---- | M] () [Kernel | Boot | Stopped] -- C:\Windows\System32\drivers\aswRvrt.sys -- (aswRvrt)
DRV - [2014.11.06 17:41:43 | 000,024,184 | ---- | M] () [Kernel | Auto | Running] -- C:\Windows\System32\drivers\aswHwid.sys -- (aswHwid)
DRV - [2011.09.08 00:46:56 | 001,117,800 | ---- | M] (Realtek Semiconductor Corporation ) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\rtl8192se.sys -- (rtl8192se)
DRV - [2009.07.14 02:19:10 | 000,175,824 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\vmbus.sys -- (vmbus)
DRV - [2009.07.14 02:19:10 | 000,040,896 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\vmstorfl.sys -- (storflt)
DRV - [2009.07.14 02:19:10 | 000,028,224 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\storvsc.sys -- (storvsc)
DRV - [2009.07.14 00:52:10 | 000,014,336 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\vwifimp.sys -- (vwifimp)
DRV - [2009.07.14 00:51:11 | 000,034,944 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\winusb.sys -- (WinUsb)
DRV - [2009.07.14 00:28:47 | 000,005,632 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\vms3cap.sys -- (s3cap)
DRV - [2009.07.14 00:28:45 | 000,017,920 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\VMBusHID.sys -- (VMBusHID)
DRV - [2009.07.13 23:13:48 | 001,035,776 | ---- | M] (LSI Corp) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\AGRSM.sys -- (AgereSoftModem)
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com/
IE - HKCU\..\SearchScopes,DefaultScope = {012E1000-F331-11DB-8314-0800200C9A66}
IE - HKCU\..\SearchScopes\{012E1000-F331-11DB-8314-0800200C9A66}: "URL" = http://www.google.com/search?q={searchTerms}
IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTer ... ORM=IE8SRC
IE - HKCU\..\SearchScopes\{508763A8-8E40-466B-A3BE-77CD27C5469C}: "URL" = http://www.google.com/search?q={searchT ... f8&oe=utf8
IE - HKCU\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.com/search?q={searcer ... ORM=IE8SRC
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
========== FireFox ==========
FF - prefs.js..browser.search.defaultengine: "Google"
FF - prefs.js..browser.search.defaultenginename: "Google"
FF - prefs.js..browser.search.defaulturl: "http://www.google.com/search?btnG=Google+Search&q="
FF - prefs.js..browser.search.order.1: "Google"
FF - prefs.js..browser.search.selectedEngine: "Google"
FF - prefs.js..browser.search.suggest.enabled: true
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "http://www.google.com"
FF - prefs.js..extensions.enabledAddons: %7Bea614400-e918-4741-9a97-7a972ff7c30b%7D:2.5.15
FF - prefs.js..extensions.enabledAddons: wrc%40avast.com:8.0.1483
FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:21.0
FF - prefs.js..keyword.URL: "http://www.google.com/search?btnG=Google+Search&q="
FF - user.js - File not found
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF32_11_7_700_224.dll ()
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.7.2: C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.7.2: C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~1\MICROS~2\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.25.5\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.25.5\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\wacom.com/WacomTabletPlugin: File not found
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\wrc@avast.com: C:\Program Files\AVAST Software\Avast\WebRep\FF [2014.11.06 17:41:44 | 000,000,000 | ---D | M]
[2013.04.10 11:14:11 | 000,000,000 | ---D | M] (No name found) -- C:\Users\anetqua\AppData\Roaming\Mozilla\Extensions
[2014.10.29 19:33:39 | 000,000,000 | ---D | M] (No name found) -- C:\Users\anetqua\AppData\Roaming\Mozilla\Firefox\Profiles\0\extensions
[2013.12.07 19:25:08 | 000,000,000 | ---D | M] (No name found) -- C:\Users\anetqua\AppData\Roaming\Mozilla\Firefox\Profiles\p3so824v.default\extensions
[2013.04.10 18:13:44 | 000,000,000 | ---D | M] (Seznam lištička) -- C:\Users\anetqua\AppData\Roaming\Mozilla\Firefox\Profiles\p3so824v.default\extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}
========== Chrome ==========
CHR - default_search_provider: ()
CHR - default_search_provider: search_url =
CHR - default_search_provider: suggest_url =
CHR - plugin: Error reading preferences file
CHR - Extension: No name found = C:\Users\anetqua\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek\0.8_0\
CHR - Extension: No name found = C:\Users\anetqua\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.7_0\
CHR - Extension: No name found = C:\Users\anetqua\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\
CHR - Extension: No name found = C:\Users\anetqua\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\
CHR - Extension: No name found = C:\Users\anetqua\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\
CHR - Extension: No name found = C:\Users\anetqua\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap\1.0_0\
CHR - Extension: No name found = C:\Users\anetqua\AppData\Local\Google\Chrome\User Data\Default\Extensions\fnlmdkpemkkigkgelegknllpmfclakkk\1.0.0.5_0\
CHR - Extension: No name found = C:\Users\anetqua\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki\10.0.2204.148_0\
CHR - Extension: No name found = C:\Users\anetqua\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.1_0\
CHR - Extension: No name found = C:\Users\anetqua\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\
O1 HOSTS File: ([2014.11.02 07:51:33 | 000,000,027 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (avast! Online Security) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O4 - HKLM..\Run: [AvastUI.exe] C:\Program Files\AVAST Software\Avast\AvastUI.exe (AVAST Software)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: SoftwareSASGeneration = 1
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O9 - Extra Button: HP Smart Print - {22CC3EBD-C286-43aa-B8E6-06B115F74162} - C:\Program Files\Hewlett-Packard\Smart Print 2.0\smartprintsetup.exe (Hewlett-Packard)
O9 - Extra 'Tools' menuitem : HP Smart Print - {22CC3EBD-C286-43aa-B8E6-06B115F74162} - C:\Program Files\Hewlett-Packard\Smart Print 2.0\smartprintsetup.exe (Hewlett-Packard)
O9 - Extra Button: PokerStars - {3AD14F0C-ED16-4e43-B6D8-661B03F6A1EF} - C:\Program Files\PokerStars\PokerStarsUpdate.exe (PokerStars)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.200.254 10.0.0.254
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{74002344-1745-420F-B17C-011C88F63E9D}: DhcpNameServer = 192.168.0.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{78C67ABF-0237-4E33-97EB-930DD91E3F39}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{E8F2CF52-17B5-40B7-BDEB-3173E8832485}: DhcpNameServer = 192.168.200.254 10.0.0.254
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{EEA06DB5-6F74-4ED1-A081-1EE718B850FE}: DhcpNameServer = 192.168.42.129
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\System32\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation)
O32 - HKLM CDRom: AutoRun - 1
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = ComFile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)
CREATERESTOREPOINT
Restore point Set: OTL Restore Point
NetSvcs: FastUserSwitchingCompatibility - File not found
NetSvcs: Ias - C:\Windows\System32\ias.dll (Microsoft Corporation)
NetSvcs: Nla - File not found
NetSvcs: Ntmssvc - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: SRService - File not found
NetSvcs: WmdmPmSp - File not found
NetSvcs: LogonHours - File not found
NetSvcs: PCAudit - File not found
NetSvcs: helpsvc - File not found
NetSvcs: uploadmgr - File not found
Drivers32: msacm.l3acm - C:\Windows\System32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: MSVideo8 - C:\Windows\System32\vfwwdm32.dll (Microsoft Corporation)
Drivers32: vidc.cvid - C:\Windows\System32\iccvid.dll (Radius Inc.)
Drivers32: vidc.VP60 - C:\Windows\System32\vp6vfw.dll (On2.com)
Drivers32: vidc.VP61 - C:\Windows\System32\vp6vfw.dll (On2.com)
PhysicalDisk0 MBR saved to C:\PhysicalMBR.bin
========== Files/Folders - Created Within 30 Days ==========
[2014.11.06 18:01:32 | 000,000,000 | ---D | C] -- C:\Users\anetqua\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
[2014.11.06 17:58:16 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\anetqua\Desktop\OTL.exe
[2014.11.06 17:57:51 | 000,000,000 | ---D | C] -- C:\Users\anetqua\AppData\Roaming\Dropbox
[2014.11.06 17:49:52 | 001,149,912 | ---- | C] (Crystal Dew World) -- C:\Users\anetqua\Desktop\DiskInfo.exe
[2014.11.06 17:47:27 | 000,000,000 | ---D | C] -- C:\Users\anetqua\AppData\Roaming\AVAST Software
[2014.11.06 17:43:00 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software
[2014.11.06 17:42:22 | 000,091,496 | ---- | C] (AVAST Software) -- C:\Windows\System32\drivers\aswStm.sys
[2014.11.06 17:42:19 | 000,422,760 | ---- | C] (AVAST Software) -- C:\Windows\System32\drivers\aswSP.sys
[2014.11.06 17:42:14 | 000,070,384 | ---- | C] (AVAST Software) -- C:\Windows\System32\drivers\aswmonflt.sys.1415292166525
[2014.11.06 17:42:14 | 000,070,384 | ---- | C] (AVAST Software) -- C:\Windows\System32\drivers\aswmonflt.sys
[2014.11.06 17:42:06 | 000,081,768 | ---- | C] (AVAST Software) -- C:\Windows\System32\drivers\aswRdr2.sys
[2014.11.06 17:42:00 | 000,787,800 | ---- | C] (AVAST Software) -- C:\Windows\System32\drivers\aswsnx.sys.1415292166525
[2014.11.06 17:42:00 | 000,787,800 | ---- | C] (AVAST Software) -- C:\Windows\System32\drivers\aswsnx.sys
[2014.11.06 17:41:52 | 000,291,352 | ---- | C] (AVAST Software) -- C:\Windows\System32\aswBoot.exe
[2014.11.06 17:41:43 | 000,043,152 | ---- | C] (AVAST Software) -- C:\Windows\avastSS.scr
[2014.11.03 05:27:58 | 000,000,000 | ---D | C] -- C:\rsit
[2014.11.02 07:55:18 | 000,000,000 | ---D | C] -- C:\Windows\temp
[2014.11.02 07:51:47 | 000,000,000 | -HSD | C] -- C:\$RECYCLE.BIN
[2014.11.01 22:46:41 | 000,518,144 | ---- | C] (SteelWerX) -- C:\Windows\SWREG.exe
[2014.11.01 22:46:41 | 000,406,528 | ---- | C] (SteelWerX) -- C:\Windows\SWSC.exe
[2014.11.01 22:46:41 | 000,060,416 | ---- | C] (NirSoft) -- C:\Windows\NIRCMD.exe
[2014.11.01 22:46:31 | 000,000,000 | ---D | C] -- C:\Qoobox
[2014.11.01 22:45:44 | 000,000,000 | ---D | C] -- C:\Windows\erdnt
[2014.11.01 19:43:33 | 005,591,672 | R--- | C] (Swearware) -- C:\Users\anetqua\Desktop\ComboFix.exe
[2014.11.01 07:36:15 | 001,706,359 | ---- | C] (Thisisu) -- C:\Users\anetqua\Desktop\JRT.exe
[2014.10.31 20:52:33 | 000,000,000 | ---D | C] -- C:\Users\anetqua\AppData\Local\Temp
[2014.10.31 18:34:55 | 000,000,000 | ---D | C] -- C:\Users\anetqua\Documents\Plocha
========== Files - Modified Within 30 Days ==========
[2014.11.06 18:05:34 | 000,000,512 | ---- | M] () -- C:\PhysicalMBR.bin
[2014.11.06 17:58:21 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\anetqua\Desktop\OTL.exe
[2014.11.06 17:54:15 | 000,000,024 | ---- | M] () -- C:\Users\anetqua\Desktop\DiskInfo.ini
[2014.11.06 17:48:11 | 001,496,172 | ---- | M] () -- C:\Users\anetqua\Desktop\CrystalDiskInfo5_0_0.zip
[2014.11.06 17:43:00 | 000,002,121 | ---- | M] () -- C:\Users\Public\Desktop\Avast Free Antivirus.lnk
[2014.11.06 17:42:47 | 000,787,800 | ---- | M] (AVAST Software) -- C:\Windows\System32\drivers\aswsnx.sys
[2014.11.06 17:42:47 | 000,070,384 | ---- | M] (AVAST Software) -- C:\Windows\System32\drivers\aswmonflt.sys
[2014.11.06 17:41:43 | 000,422,760 | ---- | M] (AVAST Software) -- C:\Windows\System32\drivers\aswSP.sys
[2014.11.06 17:41:43 | 000,291,352 | ---- | M] (AVAST Software) -- C:\Windows\System32\aswBoot.exe
[2014.11.06 17:41:43 | 000,206,248 | ---- | M] () -- C:\Windows\System32\drivers\aswVmm.sys
[2014.11.06 17:41:43 | 000,091,496 | ---- | M] (AVAST Software) -- C:\Windows\System32\drivers\aswStm.sys
[2014.11.06 17:41:43 | 000,081,768 | ---- | M] (AVAST Software) -- C:\Windows\System32\drivers\aswRdr2.sys
[2014.11.06 17:41:43 | 000,070,384 | ---- | M] (AVAST Software) -- C:\Windows\System32\drivers\aswmonflt.sys.1415292166525
[2014.11.06 17:41:43 | 000,049,944 | ---- | M] () -- C:\Windows\System32\drivers\aswRvrt.sys
[2014.11.06 17:41:43 | 000,043,152 | ---- | M] (AVAST Software) -- C:\Windows\avastSS.scr
[2014.11.06 17:41:43 | 000,024,184 | ---- | M] () -- C:\Windows\System32\drivers\aswHwid.sys
[2014.11.06 17:41:38 | 000,787,800 | ---- | M] (AVAST Software) -- C:\Windows\System32\drivers\aswsnx.sys.1415292166525
[2014.11.06 17:12:53 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2014.11.02 19:30:17 | 000,000,132 | ---- | M] () -- C:\Users\anetqua\AppData\Roaming\Adobe Formát GIF CS5 – předvolby
[2014.11.02 17:04:20 | 000,625,936 | ---- | M] () -- C:\Windows\System32\perfh005.dat
[2014.11.02 17:04:20 | 000,610,094 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2014.11.02 17:04:20 | 000,120,008 | ---- | M] () -- C:\Windows\System32\perfc005.dat
[2014.11.02 17:04:20 | 000,104,412 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2014.11.02 07:57:20 | 000,014,192 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2014.11.02 07:57:20 | 000,014,192 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2014.11.02 07:51:53 | 000,001,994 | ---- | M] () -- C:\Users\anetqua\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Sledovat výstrahy inkoustu - HP Deskjet 5520 series (Copy 1).lnk
[2014.11.02 07:51:33 | 000,000,027 | ---- | M] () -- C:\Windows\System32\drivers\etc\hosts
[2014.11.02 07:50:40 | 2337,484,800 | -HS- | M] () -- C:\hiberfil.sys
[2014.11.01 19:43:43 | 005,591,672 | R--- | M] (Swearware) -- C:\Users\anetqua\Desktop\ComboFix.exe
[2014.11.01 07:36:19 | 001,706,359 | ---- | M] (Thisisu) -- C:\Users\anetqua\Desktop\JRT.exe
[2014.10.31 19:43:07 | 000,024,064 | ---- | M] () -- C:\Windows\zoek-delete.exe
[2014.10.31 19:43:05 | 001,292,800 | ---- | M] () -- C:\Users\anetqua\Desktop\zoek.exe
[2014.10.31 18:36:56 | 000,002,055 | ---- | M] () -- C:\Users\anetqua\Desktop\Lightroom 4 (2).lnk
[2014.10.29 20:57:38 | 000,000,003 | ---- | M] () -- C:\Users\anetqua\stut
[2014.10.29 20:45:47 | 000,000,062 | ---- | M] () -- C:\Users\anetqua\rgut
[2014.10.28 15:52:58 | 000,002,129 | ---- | M] () -- C:\Users\Public\Desktop\Google Chrome.lnk
========== Files Created - No Company Name ==========
[2014.11.06 18:04:01 | 000,000,512 | ---- | C] () -- C:\PhysicalMBR.bin
[2014.11.06 17:50:05 | 000,000,024 | ---- | C] () -- C:\Users\anetqua\Desktop\DiskInfo.ini
[2014.11.06 17:47:55 | 001,496,172 | ---- | C] () -- C:\Users\anetqua\Desktop\CrystalDiskInfo5_0_0.zip
[2014.11.06 17:43:00 | 000,002,121 | ---- | C] () -- C:\Users\Public\Desktop\Avast Free Antivirus.lnk
[2014.11.06 17:42:20 | 000,206,248 | ---- | C] () -- C:\Windows\System32\drivers\aswVmm.sys
[2014.11.06 17:42:16 | 000,049,944 | ---- | C] () -- C:\Windows\System32\drivers\aswRvrt.sys
[2014.11.06 17:42:10 | 000,024,184 | ---- | C] () -- C:\Windows\System32\drivers\aswHwid.sys
[2014.11.02 19:30:17 | 000,000,132 | ---- | C] () -- C:\Users\anetqua\AppData\Roaming\Adobe Formát GIF CS5 – předvolby
[2014.11.01 22:46:41 | 000,256,000 | ---- | C] () -- C:\Windows\PEV.exe
[2014.11.01 22:46:41 | 000,208,896 | ---- | C] () -- C:\Windows\MBR.exe
[2014.11.01 22:46:41 | 000,098,816 | ---- | C] () -- C:\Windows\sed.exe
[2014.11.01 22:46:41 | 000,080,412 | ---- | C] () -- C:\Windows\grep.exe
[2014.11.01 22:46:41 | 000,068,096 | ---- | C] () -- C:\Windows\zip.exe
[2014.10.31 20:52:35 | 000,024,064 | ---- | C] () -- C:\Windows\zoek-delete.exe
[2014.10.31 19:42:57 | 001,292,800 | ---- | C] () -- C:\Users\anetqua\Desktop\zoek.exe
[2014.10.31 18:36:56 | 000,002,055 | ---- | C] () -- C:\Users\anetqua\Desktop\Lightroom 4 (2).lnk
[2014.10.30 08:15:53 | 000,002,055 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Photoshop Lightroom 4.lnk
[2014.06.17 10:47:59 | 000,020,480 | ---- | C] () -- C:\Users\anetqua\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2014.05.11 20:35:10 | 000,000,218 | ---- | C] () -- C:\Users\anetqua\.recently-used.xbel
[2014.03.17 19:25:48 | 000,000,003 | ---- | C] () -- C:\Users\anetqua\stut
[2014.03.17 19:23:44 | 000,000,062 | ---- | C] () -- C:\Users\anetqua\rgut
[2013.09.04 16:02:31 | 000,000,057 | ---- | C] () -- C:\ProgramData\Ament.ini
[2013.07.04 07:45:28 | 000,000,132 | ---- | C] () -- C:\Users\anetqua\AppData\Roaming\Adobe Formát PNG CS5 – předvolby
[2013.04.15 23:38:19 | 000,000,368 | ---- | C] () -- C:\Users\anetqua\.jalbum-sharing.xml
========== ZeroAccess Check ==========
[2009.07.14 05:42:31 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini
[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2009.07.14 02:16:14 | 012,866,560 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2009.07.14 02:15:20 | 000,605,696 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
"" = %systemroot%\system32\wbem\wbemess.dll -- [2009.07.14 02:16:17 | 000,342,528 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both
========== Custom Scans ==========
< >
< >
< MD5 for: AGP440.SYS >
[2009.07.14 02:26:15 | 000,053,312 | ---- | M] (Microsoft Corporation) MD5=507812C3054C21CEF746B6EE3D04DD6E -- C:\Windows\System32\drivers\AGP440.sys
[2009.07.14 02:26:15 | 000,053,312 | ---- | M] (Microsoft Corporation) MD5=507812C3054C21CEF746B6EE3D04DD6E -- C:\Windows\System32\DriverStore\FileRepository\machine.inf_x86_neutral_65848c2d7375a720\AGP440.sys
[2009.07.14 02:26:15 | 000,053,312 | ---- | M] (Microsoft Corporation) MD5=507812C3054C21CEF746B6EE3D04DD6E -- C:\Windows\winsxs\x86_machine.inf_31bf3856ad364e35_6.1.7600.16385_none_b9e9435f20046eeb\AGP440.sys
[2009.07.14 02:26:15 | 000,053,312 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\erdnt\cache\AGP440.sys
< MD5 for: ATAPI.SYS >
[2009.07.14 02:26:15 | 000,021,584 | ---- | M] (Microsoft Corporation) MD5=338C86357871C167A96AB976519BF59E -- C:\Windows\erdnt\cache\atapi.sys
[2009.07.14 02:26:15 | 000,021,584 | ---- | M] (Microsoft Corporation) MD5=338C86357871C167A96AB976519BF59E -- C:\Windows\System32\drivers\atapi.sys
[2009.07.14 02:26:15 | 000,021,584 | ---- | M] (Microsoft Corporation) MD5=338C86357871C167A96AB976519BF59E -- C:\Windows\System32\DriverStore\FileRepository\mshdc.inf_x86_neutral_f64b9c35a3a5be81\atapi.sys
[2009.07.14 02:26:15 | 000,021,584 | ---- | M] (Microsoft Corporation) MD5=338C86357871C167A96AB976519BF59E -- C:\Windows\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.1.7600.16385_none_dd0e7e3d82dd640d\atapi.sys
< MD5 for: AUTOCHK.EXE >
[2009.07.14 02:14:12 | 000,668,160 | ---- | M] (Microsoft Corporation) MD5=41E4C8EBA464E7D6A5BA5E8827732AEB -- C:\Windows\System32\autochk.exe
[2009.07.14 02:14:12 | 000,668,160 | ---- | M] (Microsoft Corporation) MD5=41E4C8EBA464E7D6A5BA5E8827732AEB -- C:\Windows\winsxs\x86_microsoft-windows-autochk_31bf3856ad364e35_6.1.7600.16385_none_e1ca436d2314b860\autochk.exe
< MD5 for: CDROM.SYS >
[2009.07.14 00:11:26 | 000,108,544 | ---- | M] (Microsoft Corporation) MD5=BA6E70AA0E6091BC39DE29477D866A77 -- C:\Windows\System32\drivers\cdrom.sys
[2009.07.14 00:11:26 | 000,108,544 | ---- | M] (Microsoft Corporation) MD5=BA6E70AA0E6091BC39DE29477D866A77 -- C:\Windows\System32\DriverStore\FileRepository\cdrom.inf_x86_neutral_db87d184bc84f910\cdrom.sys
[2009.07.14 00:11:26 | 000,108,544 | ---- | M] (Microsoft Corporation) MD5=BA6E70AA0E6091BC39DE29477D866A77 -- C:\Windows\winsxs\x86_cdrom.inf_31bf3856ad364e35_6.1.7600.16385_none_5f7fb206051affbb\cdrom.sys
< MD5 for: CNGAUDIT.DLL >
[2009.07.14 02:15:06 | 000,012,288 | ---- | M] (Microsoft Corporation) MD5=50BA656134F78AF64E4DD3C8B6FEFD7E -- C:\Windows\erdnt\cache\cngaudit.dll
[2009.07.14 02:15:06 | 000,012,288 | ---- | M] (Microsoft Corporation) MD5=50BA656134F78AF64E4DD3C8B6FEFD7E -- C:\Windows\System32\cngaudit.dll
[2009.07.14 02:15:06 | 000,012,288 | ---- | M] (Microsoft Corporation) MD5=50BA656134F78AF64E4DD3C8B6FEFD7E -- C:\Windows\winsxs\x86_microsoft-windows-cngaudit-dll_31bf3856ad364e35_6.1.7600.16385_none_e83a414890e8132b\cngaudit.dll
< MD5 for: CRYPTSVC.DLL >
[2009.07.14 02:15:07 | 000,135,680 | ---- | M] (Microsoft Corporation) MD5=9C231178CE4FB385F4B54B0A9080B8A4 -- C:\Windows\erdnt\cache\cryptsvc.dll
[2009.07.14 02:15:07 | 000,135,680 | ---- | M] (Microsoft Corporation) MD5=9C231178CE4FB385F4B54B0A9080B8A4 -- C:\Windows\System32\cryptsvc.dll
[2009.07.14 02:15:07 | 000,135,680 | ---- | M] (Microsoft Corporation) MD5=9C231178CE4FB385F4B54B0A9080B8A4 -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7600.16385_none_75d5ef87fc22e35a\cryptsvc.dll
< MD5 for: EXPLORER.EXE >
[2011.02.26 06:19:21 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=0FB9C74046656D1579A64660AD67B746 -- C:\Windows\SoftwareDistribution\Download\f2f739a8d939cb0fdc769a3446af420a\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.21669_none_54149f9ef14031fc\explorer.exe
[2009.07.14 02:14:20 | 002,613,248 | ---- | M] (Microsoft Corporation) MD5=15BC38A7492BEFE831966ADB477CF76F -- C:\Windows\explorer.exe
[2009.07.14 02:14:20 | 002,613,248 | ---- | M] (Microsoft Corporation) MD5=15BC38A7492BEFE831966ADB477CF76F -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16385_none_518afd35db100430\explorer.exe
[2011.02.26 06:51:13 | 002,614,784 | ---- | M] (Microsoft Corporation) MD5=255CF508D7CFB10E0794D6AC93280BD8 -- C:\Windows\SoftwareDistribution\Download\f2f739a8d939cb0fdc769a3446af420a\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20910_none_525b5180f3f95373\explorer.exe
[2011.02.26 06:33:07 | 002,614,784 | ---- | M] (Microsoft Corporation) MD5=2AF58D15EDC06EC6FDACCE1F19482BBF -- C:\Windows\SoftwareDistribution\Download\f2f739a8d939cb0fdc769a3446af420a\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16768_none_51a3a583dafd0cef\explorer.exe
[2009.07.14 02:14:20 | 002,613,248 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\erdnt\cache\explorer.exe
[2011.02.25 06:30:54 | 002,616,320 | ---- | M] () Unable to obtain MD5 -- C:\Windows\SoftwareDistribution\Download\f2f739a8d939cb0fdc769a3446af420a\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17567_none_5389023fd8245f84\explorer.exe
< MD5 for: HAL.DLL >
[2009.07.14 02:20:28 | 000,194,640 | ---- | M] (Microsoft Corporation) MD5=9A557EAE64ABAB3BA67A9BB035D24CB9 -- C:\Windows\System32\hal.dll
[2009.07.14 02:20:28 | 000,194,640 | ---- | M] (Microsoft Corporation) MD5=9A557EAE64ABAB3BA67A9BB035D24CB9 -- C:\Windows\winsxs\x86_microsoft-windows-hal_31bf3856ad364e35_6.1.7600.16385_none_aaff48c7bafdccc6\hal.dll
< MD5 for: IASTORV.SYS >
[2009.07.14 02:20:36 | 000,332,352 | ---- | M] (Intel Corporation) MD5=934AF4D7C5F457B9F0743F4299B77B67 -- C:\Windows\System32\drivers\iaStorV.sys
[2009.07.14 02:20:36 | 000,332,352 | ---- | M] (Intel Corporation) MD5=934AF4D7C5F457B9F0743F4299B77B67 -- C:\Windows\System32\DriverStore\FileRepository\iastorv.inf_x86_neutral_18cccb83b34e1453\iaStorV.sys
[2009.07.14 02:20:36 | 000,332,352 | ---- | M] (Intel Corporation) MD5=934AF4D7C5F457B9F0743F4299B77B67 -- C:\Windows\winsxs\x86_iastorv.inf_31bf3856ad364e35_6.1.7600.16385_none_aee7a89be91b9000\iaStorV.sys
< MD5 for: ISAPNP.SYS >
[2009.07.14 02:20:36 | 000,046,656 | ---- | M] (Microsoft Corporation) MD5=1F32BB6B38F62F7DF1A7AB7292638A35 -- C:\Windows\System32\drivers\isapnp.sys
[2009.07.14 02:20:36 | 000,046,656 | ---- | M] (Microsoft Corporation) MD5=1F32BB6B38F62F7DF1A7AB7292638A35 -- C:\Windows\System32\DriverStore\FileRepository\machine.inf_x86_neutral_65848c2d7375a720\isapnp.sys
[2009.07.14 02:20:36 | 000,046,656 | ---- | M] (Microsoft Corporation) MD5=1F32BB6B38F62F7DF1A7AB7292638A35 -- C:\Windows\winsxs\x86_machine.inf_31bf3856ad364e35_6.1.7600.16385_none_b9e9435f20046eeb\isapnp.sys
< MD5 for: LSASS.EXE >
[2011.11.17 08:09:25 | 000,022,528 | ---- | M] (Microsoft Corporation) MD5=05F38CB7CAB3CE8E9A1812D517DA93EF -- C:\Windows\SoftwareDistribution\Download\58ed98c2fe59878703e028563a2637f4\x86_microsoft-windows-lsa_31bf3856ad364e35_6.1.7600.21092_none_a69c8e86d7476262\lsass.exe
[2011.11.17 06:29:50 | 000,022,528 | ---- | M] (Microsoft Corporation) MD5=81951F51E318AECC2D68559E47485CC4 -- C:\Windows\SoftwareDistribution\Download\58ed98c2fe59878703e028563a2637f4\x86_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.17725_none_a84828d7bb1480d7\lsass.exe
[2011.11.17 06:36:26 | 000,022,528 | ---- | M] (Microsoft Corporation) MD5=C2243FF9E9AAD0C30E8B1A0914DA15B6 -- C:\Windows\SoftwareDistribution\Download\58ed98c2fe59878703e028563a2637f4\x86_microsoft-windows-lsa_31bf3856ad364e35_6.1.7600.16915_none_a66c9bbdbde5f8fa\lsass.exe
[2009.07.14 02:14:23 | 000,022,528 | ---- | M] (Microsoft Corporation) MD5=F42309C4191C506B71DB5D1126D26318 -- C:\Windows\erdnt\cache\lsass.exe
[2009.07.14 02:14:23 | 000,022,528 | ---- | M] (Microsoft Corporation) MD5=F42309C4191C506B71DB5D1126D26318 -- C:\Windows\System32\lsass.exe
[2009.07.14 02:14:23 | 000,022,528 | ---- | M] (Microsoft Corporation) MD5=F42309C4191C506B71DB5D1126D26318 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.1.7600.16385_none_a620e0e5be1ecda7\lsass.exe
[2009.07.14 02:14:23 | 000,022,528 | ---- | M] (Microsoft Corporation) MD5=F42309C4191C506B71DB5D1126D26318 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.1.7600.16484_none_a61fe281be1fb177\lsass.exe
[2009.07.14 02:14:23 | 000,022,528 | ---- | M] (Microsoft Corporation) MD5=F42309C4191C506B71DB5D1126D26318 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.1.7600.20594_none_a69eaf60d7456d32\lsass.exe
[2011.11.17 06:24:04 | 000,022,528 | ---- | M] (Microsoft Corporation) MD5=FBCB2DFA40862DAA7B1534C9538208A5 -- C:\Windows\SoftwareDistribution\Download\58ed98c2fe59878703e028563a2637f4\x86_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.21861_none_a8a284cad4562b09\lsass.exe
< MD5 for: NDIS.SYS >
[2009.07.14 02:20:44 | 000,710,720 | ---- | M] (Microsoft Corporation) MD5=23759D175A0A9BAAF04D05047BC135A8 -- C:\Windows\erdnt\cache\ndis.sys
[2009.07.14 02:20:44 | 000,710,720 | ---- | M] (Microsoft Corporation) MD5=23759D175A0A9BAAF04D05047BC135A8 -- C:\Windows\System32\drivers\ndis.sys
[2009.07.14 02:20:44 | 000,710,720 | ---- | M] (Microsoft Corporation) MD5=23759D175A0A9BAAF04D05047BC135A8 -- C:\Windows\winsxs\x86_microsoft-windows-ndis_31bf3856ad364e35_6.1.7600.16385_none_a79d81ea7d62a289\ndis.sys
< MD5 for: NETLOGON.DLL >
[2009.07.14 02:16:02 | 000,563,712 | ---- | M] (Microsoft Corporation) MD5=EAA75D9000B71F10EEC04D2AE6C60E81 -- C:\Windows\erdnt\cache\netlogon.dll
[2009.07.14 02:16:02 | 000,563,712 | ---- | M] (Microsoft Corporation) MD5=EAA75D9000B71F10EEC04D2AE6C60E81 -- C:\Windows\System32\netlogon.dll
[2009.07.14 02:16:02 | 000,563,712 | ---- | M] (Microsoft Corporation) MD5=EAA75D9000B71F10EEC04D2AE6C60E81 -- C:\Windows\winsxs\x86_microsoft-windows-security-netlogon_31bf3856ad364e35_6.1.7600.16385_none_fd8e0d66994d7dc8\netlogon.dll
< MD5 for: NVRAID.SYS >
[2009.07.14 02:20:44 | 000,117,312 | ---- | M] (NVIDIA Corporation) MD5=3F3D04B1D08D43C16EA7963954EC768D -- C:\Windows\System32\drivers\nvraid.sys
[2009.07.14 02:20:44 | 000,117,312 | ---- | M] (NVIDIA Corporation) MD5=3F3D04B1D08D43C16EA7963954EC768D -- C:\Windows\System32\DriverStore\FileRepository\nvraid.inf_x86_neutral_5bde3fe2945bce9e\nvraid.sys
[2009.07.14 02:20:44 | 000,117,312 | ---- | M] (NVIDIA Corporation) MD5=3F3D04B1D08D43C16EA7963954EC768D -- C:\Windows\winsxs\x86_nvraid.inf_31bf3856ad364e35_6.1.7600.16385_none_39b1194b205239d8\nvraid.sys
< MD5 for: NVSTOR.SYS >
[2009.07.14 02:20:44 | 000,142,416 | ---- | M] (NVIDIA Corporation) MD5=C99F251A5DE63C6F129CF71933ACED0F -- C:\Windows\System32\drivers\nvstor.sys
[2009.07.14 02:20:44 | 000,142,416 | ---- | M] (NVIDIA Corporation) MD5=C99F251A5DE63C6F129CF71933ACED0F -- C:\Windows\System32\DriverStore\FileRepository\nvraid.inf_x86_neutral_5bde3fe2945bce9e\nvstor.sys
[2009.07.14 02:20:44 | 000,142,416 | ---- | M] (NVIDIA Corporation) MD5=C99F251A5DE63C6F129CF71933ACED0F -- C:\Windows\winsxs\x86_nvraid.inf_31bf3856ad364e35_6.1.7600.16385_none_39b1194b205239d8\nvstor.sys
< MD5 for: SCECLI.DLL >
[2009.07.14 02:16:13 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=26073302DAEA83CC5B944C546D6B47D2 -- C:\Windows\erdnt\cache\scecli.dll
[2009.07.14 02:16:13 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=26073302DAEA83CC5B944C546D6B47D2 -- C:\Windows\System32\scecli.dll
[2009.07.14 02:16:13 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=26073302DAEA83CC5B944C546D6B47D2 -- C:\Windows\winsxs\x86_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7600.16385_none_37e4387f3a6f0483\scecli.dll
< MD5 for: SMSS.EXE >
[2009.07.14 02:14:39 | 000,069,632 | ---- | M] (Microsoft Corporation) MD5=16742790895960690237A5143CEDEC8B -- C:\Windows\System32\smss.exe
[2009.07.14 02:14:39 | 000,069,632 | ---- | M] (Microsoft Corporation) MD5=16742790895960690237A5143CEDEC8B -- C:\Windows\winsxs\x86_microsoft-windows-smss_31bf3856ad364e35_6.1.7600.16385_none_ac10fe207a85352b\smss.exe
< MD5 for: SVCHOST.EXE >
[2009.07.14 02:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\erdnt\cache\svchost.exe
[2009.07.14 02:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\System32\svchost.exe
[2009.07.14 02:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\winsxs\x86_microsoft-windows-services-svchost_31bf3856ad364e35_6.1.7600.16385_none_b591afc466a15356\svchost.exe
< MD5 for: TCPIP.SYS >
[2011.04.25 05:31:30 | 001,290,624 | ---- | M] (Microsoft Corporation) MD5=24326784DF8F3D5F5BBB9F878CE33C14 -- C:\Windows\SoftwareDistribution\Download\919003e3012e674674fc2a83c2329826\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.17603_none_b52f4dc5c4a121e0\tcpip.sys
[2009.07.14 02:19:10 | 001,285,712 | ---- | M] (Microsoft Corporation) MD5=2CC3D75488ABD3EC628BBB9A4FC84EFC -- C:\Windows\System32\drivers\tcpip.sys
[2009.07.14 02:19:10 | 001,285,712 | ---- | M] (Microsoft Corporation) MD5=2CC3D75488ABD3EC628BBB9A4FC84EFC -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.16385_none_b2f46875c7b9d667\tcpip.sys
[2011.04.25 05:44:18 | 001,298,816 | ---- | M] (Microsoft Corporation) MD5=8861B9A06BA99C6E1D62D0C86DFAB86C -- C:\Windows\SoftwareDistribution\Download\919003e3012e674674fc2a83c2329826\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.20951_none_b39a7d5ae0c2aec5\tcpip.sys
[2009.07.14 02:19:10 | 001,285,712 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\erdnt\cache\tcpip.sys
[2011.04.25 05:56:06 | 001,286,016 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\SoftwareDistribution\Download\919003e3012e674674fc2a83c2329826\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.16802_none_b347f075c77b9c9d\tcpip.sys
[2011.04.25 07:31:09 | 001,301,376 | ---- | M] () Unable to obtain MD5 -- C:\Windows\SoftwareDistribution\Download\919003e3012e674674fc2a83c2329826\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.21712_none_b5ad1a5addc7c444\tcpip.sys
< MD5 for: USERINIT.EXE >
[2009.07.14 02:14:43 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=6DE80F60D7DE9CE6B8C2DDFDF79EF175 -- C:\Windows\erdnt\cache\userinit.exe
[2009.07.14 02:14:43 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=6DE80F60D7DE9CE6B8C2DDFDF79EF175 -- C:\Windows\System32\userinit.exe
[2009.07.14 02:14:43 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=6DE80F60D7DE9CE6B8C2DDFDF79EF175 -- C:\Windows\winsxs\x86_microsoft-windows-userinit_31bf3856ad364e35_6.1.7600.16385_none_dbff103933038d7c\userinit.exe
< MD5 for: WINLOGON.EXE >
[2009.07.14 02:14:45 | 000,285,696 | ---- | M] (Microsoft Corporation) MD5=8EC6A4AB12B8F3759E21F8E3A388F2CF -- C:\Windows\erdnt\cache\winlogon.exe
[2009.07.14 02:14:45 | 000,285,696 | ---- | M] (Microsoft Corporation) MD5=8EC6A4AB12B8F3759E21F8E3A388F2CF -- C:\Windows\System32\winlogon.exe
[2009.07.14 02:14:45 | 000,285,696 | ---- | M] (Microsoft Corporation) MD5=8EC6A4AB12B8F3759E21F8E3A388F2CF -- C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7600.16385_none_6f99573a36451166\winlogon.exe
< MD5 for: WS2_32.DLL >
[2009.07.14 02:16:20 | 000,206,336 | ---- | M] (Microsoft Corporation) MD5=DAAE8A9B8C0ACC7F858454132553C30D -- C:\Windows\erdnt\cache\ws2_32.dll
[2009.07.14 02:16:20 | 000,206,336 | ---- | M] (Microsoft Corporation) MD5=DAAE8A9B8C0ACC7F858454132553C30D -- C:\Windows\System32\ws2_32.dll
[2009.07.14 02:16:20 | 000,206,336 | ---- | M] (Microsoft Corporation) MD5=DAAE8A9B8C0ACC7F858454132553C30D -- C:\Windows\winsxs\x86_microsoft-windows-w..nfrastructure-ws232_31bf3856ad364e35_6.1.7600.16385_none_f28e06e62fa99b35\ws2_32.dll
< >
< %systemroot%*.* /U /s >
< %SYSTEMDRIVE%\*.exe >
< %ALLUSERSPROFILE%\Application Data\*. >
< %ALLUSERSPROFILE%\Application Data\*.exe /s >
< %APPDATA%\*. >
[2014.06.15 17:24:16 | 000,000,000 | ---D | M] -- C:\Users\anetqua\AppData\Roaming\Adobe
[2013.12.08 12:03:54 | 000,000,000 | ---D | M] -- C:\Users\anetqua\AppData\Roaming\Adobe Mini Bridge CS5.1
[2014.06.17 10:39:20 | 000,000,000 | ---D | M] -- C:\Users\anetqua\AppData\Roaming\AnvSoft
[2012.09.25 07:03:24 | 000,000,000 | ---D | M] -- C:\Users\anetqua\AppData\Roaming\Ashampoo
[2014.11.06 17:47:27 | 000,000,000 | ---D | M] -- C:\Users\anetqua\AppData\Roaming\AVAST Software
[2014.03.24 18:35:47 | 000,000,000 | ---D | M] -- C:\Users\anetqua\AppData\Roaming\BSplayer
[2012.09.28 17:01:57 | 000,000,000 | ---D | M] -- C:\Users\anetqua\AppData\Roaming\BSplayer Pro
[2013.02.15 13:32:15 | 000,000,000 | ---D | M] -- C:\Users\anetqua\AppData\Roaming\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1
[2014.03.24 09:36:55 | 000,000,000 | ---D | M] -- C:\Users\anetqua\AppData\Roaming\DAEMON Tools Lite
[2014.11.06 18:02:20 | 000,000,000 | ---D | M] -- C:\Users\anetqua\AppData\Roaming\Dropbox
[2012.10.03 09:01:56 | 000,000,000 | ---D | M] -- C:\Users\anetqua\AppData\Roaming\GHISLER
[2012.11.10 09:44:01 | 000,000,000 | ---D | M] -- C:\Users\anetqua\AppData\Roaming\GO Games
[2013.09.04 16:04:16 | 000,000,000 | ---D | M] -- C:\Users\anetqua\AppData\Roaming\HpUpdate
[2012.09.16 15:21:10 | 000,000,000 | ---D | M] -- C:\Users\anetqua\AppData\Roaming\Identities
[2013.05.02 14:25:08 | 000,000,000 | ---D | M] -- C:\Users\anetqua\AppData\Roaming\jAlbum
[2012.09.21 08:23:50 | 000,000,000 | ---D | M] -- C:\Users\anetqua\AppData\Roaming\Macromedia
[2013.08.28 16:38:14 | 000,000,000 | ---D | M] -- C:\Users\anetqua\AppData\Roaming\Malwarebytes
[2009.07.14 08:48:45 | 000,000,000 | ---D | M] -- C:\Users\anetqua\AppData\Roaming\Media Center Programs
[2014.03.23 19:16:46 | 000,000,000 | --SD | M] -- C:\Users\anetqua\AppData\Roaming\Microsoft
[2013.04.10 11:14:11 | 000,000,000 | ---D | M] -- C:\Users\anetqua\AppData\Roaming\Mozilla
[2012.09.16 19:06:38 | 000,000,000 | ---D | M] -- C:\Users\anetqua\AppData\Roaming\Opera
[2014.07.23 15:54:55 | 000,000,000 | ---D | M] -- C:\Users\anetqua\AppData\Roaming\SeaApple
[2014.10.30 19:00:48 | 000,000,000 | ---D | M] -- C:\Users\anetqua\AppData\Roaming\Seznam.cz
[2014.10.30 18:57:27 | 000,000,000 | ---D | M] -- C:\Users\anetqua\AppData\Roaming\Skype
[2013.12.08 12:03:53 | 000,000,000 | ---D | M] -- C:\Users\anetqua\AppData\Roaming\StageManager.BD092818F67280F4B42B04877600987F0111B594.1
[2013.05.18 08:58:02 | 000,000,000 | ---D | M] -- C:\Users\anetqua\AppData\Roaming\TeamViewer
[2013.08.28 10:05:27 | 000,000,000 | ---D | M] -- C:\Users\anetqua\AppData\Roaming\TuneUp Software
[2014.06.28 19:23:03 | 000,000,000 | ---D | M] -- C:\Users\anetqua\AppData\Roaming\WinRAR
[2014.11.01 08:00:30 | 000,000,000 | ---D | M] -- C:\Users\anetqua\AppData\Roaming\Zoner
[2014.03.20 18:51:04 | 000,000,000 | ---D | M] -- C:\Users\anetqua\AppData\Roaming\{28a8f263-0a12-e7e9-4337-e12c28a8f263}
< %APPDATA%\*.exe /s >
[2009.08.11 20:21:26 | 000,087,552 | ---- | M] () -- C:\Users\anetqua\AppData\Roaming\BSplayer\AC3 Filter\ac3config.exe
[2009.08.11 20:21:30 | 000,090,112 | ---- | M] () -- C:\Users\anetqua\AppData\Roaming\BSplayer\AC3 Filter\spdif_test.exe
[2010.03.22 13:52:04 | 000,697,690 | ---- | M] () -- C:\Users\anetqua\AppData\Roaming\BSplayer\AC3 Filter\unins000.exe
[2010.02.23 16:01:52 | 001,185,871 | ---- | M] () -- C:\Users\anetqua\AppData\Roaming\BSplayer\FFDShow\unins000.exe
[2010.08.14 09:42:54 | 000,113,152 | ---- | M] () -- C:\Users\anetqua\AppData\Roaming\BSplayer\Haali media splitter\dsmux.exe
[2010.08.14 09:45:10 | 000,358,400 | ---- | M] () -- C:\Users\anetqua\AppData\Roaming\BSplayer\Haali media splitter\gdsmux.exe
[2010.08.14 09:42:06 | 000,137,728 | ---- | M] () -- C:\Users\anetqua\AppData\Roaming\BSplayer\Haali media splitter\mkv2vfr.exe
[2010.09.30 14:30:22 | 000,042,305 | ---- | M] () -- C:\Users\anetqua\AppData\Roaming\BSplayer\Haali media splitter\uninstall.exe
[2014.11.05 01:52:14 | 036,359,432 | ---- | M] (Dropbox, Inc.) -- C:\Users\anetqua\AppData\Roaming\Dropbox\bin\Dropbox.exe
[2014.11.05 01:53:26 | 000,262,160 | ---- | M] (Dropbox, Inc.) -- C:\Users\anetqua\AppData\Roaming\Dropbox\bin\DropboxUninstaller.exe
[2014.11.05 01:52:17 | 000,225,200 | ---- | M] (Dropbox, Inc.) -- C:\Users\anetqua\AppData\Roaming\Dropbox\bin\DropboxUpdateHelper.exe
[2014.03.23 19:16:46 | 000,010,134 | R--- | M] () -- C:\Users\anetqua\AppData\Roaming\Microsoft\Installer\{E3E71D07-CD27-46CB-8448-16D4FB29AA13}\ARPPRODUCTICON.exe
[2014.03.25 20:35:53 | 000,786,492 | ---- | M] () -- C:\Users\anetqua\AppData\Roaming\Microsoft\Windows\Templates\cryptedcybertoirrent.exe
[2014.03.25 20:35:57 | 015,823,872 | ---- | M] () -- C:\Users\anetqua\AppData\Roaming\Microsoft\Windows\Templates\Office 2010 Toolkit.exe
[2014.03.25 20:35:54 | 000,107,008 | ---- | M] () -- C:\Users\anetqua\AppData\Roaming\Microsoft\Windows\Templates\Torrant.exe
< %systemroot%\*. /mp /s >
< %systemroot%\system32\*.dll /lockedfiles >
[2009.07.14 02:14:53 | 000,046,592 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\AltTab.dll
[2009.07.14 02:14:53 | 000,070,656 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\amstream.dll
[2009.06.10 22:21:50 | 000,109,456 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\avifile.dll
[2009.07.14 02:17:51 | 000,143,936 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\basecsp.dll
[2009.07.14 02:14:59 | 000,018,944 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\bitsperf.dll
[2009.07.14 02:15:00 | 000,027,136 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\BthMtpContextHandler.dll
[2009.07.14 02:15:00 | 000,066,560 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\btpanui.dll
[2009.07.14 02:15:01 | 001,320,960 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\CertEnroll.dll
[2009.07.14 02:15:35 | 001,672,192 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\chsbrkr.dll
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\anetqua\Desktop
Ultimate Edition (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy
2,90 Gb Total Physical Memory | 1,72 Gb Available Physical Memory | 59,16% Memory free
5,80 Gb Paging File | 4,32 Gb Available in Paging File | 74,52% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 698,54 Gb Total Space | 467,91 Gb Free Space | 66,98% Space Free | Partition Type: NTFS
Drive E: | 1863,00 Gb Total Space | 855,98 Gb Free Space | 45,95% Space Free | Partition Type: NTFS
Computer Name: ANETQUA-PC | User Name: anetqua | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Processes (SafeList) ==========
PRC - File not found --
PRC - [2014.11.06 17:58:21 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\anetqua\Desktop\OTL.exe
PRC - [2014.11.06 17:42:38 | 000,323,616 | ---- | M] (Dropbox, Inc.) -- C:\Users\Public\Desktop\DropboxInstallerAvast.exe
PRC - [2014.11.06 17:41:41 | 005,223,016 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastUI.exe
PRC - [2014.11.06 17:41:41 | 000,050,344 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe
PRC - [2014.11.06 17:38:00 | 003,441,688 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\Setup\aswOfferTool.exe
PRC - [2014.10.22 05:05:02 | 000,854,344 | ---- | M] (Google Inc.) -- C:\Program Files\Google\Chrome\Application\chrome.exe
PRC - [2013.08.22 19:01:20 | 001,237,080 | ---- | M] (Alexander Roshal) -- C:\Program Files\WinRAR\WinRAR.exe
PRC - [2012.06.15 14:08:32 | 001,149,912 | ---- | M] (Crystal Dew World) -- C:\Users\anetqua\AppData\Local\Temp\Rar$EXa0.759\DiskInfo.exe
PRC - [2011.03.15 16:59:32 | 000,312,184 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\AAM Updates Notifier.exe
PRC - [2009.07.14 02:14:42 | 000,049,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\taskhost.exe
PRC - [2009.07.14 02:14:20 | 002,613,248 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
========== Modules (No Company Name) ==========
MOD - [2014.11.06 17:59:09 | 000,064,000 | ---- | M] () -- C:\Users\anetqua\AppData\Local\Temp\nso7F84.tmp\Inetc.dll
MOD - [2014.11.06 17:59:00 | 000,009,216 | ---- | M] () -- C:\Users\anetqua\AppData\Local\Temp\nso7F84.tmp\nsisFile.dll
MOD - [2014.11.06 17:58:51 | 000,068,096 | ---- | M] () -- C:\Users\anetqua\AppData\Local\Temp\nso7F84.tmp\DropboxNSISTools.dll
MOD - [2014.11.06 17:58:41 | 000,030,208 | ---- | M] () -- C:\Users\anetqua\AppData\Local\Temp\nso7F84.tmp\UAC.dll
MOD - [2014.11.06 17:57:53 | 000,003,584 | ---- | M] () -- C:\Users\anetqua\AppData\Local\Temp\nso7F84.tmp\Banner.dll
MOD - [2014.11.06 17:57:52 | 000,011,264 | ---- | M] () -- C:\Users\anetqua\AppData\Local\Temp\nso7F84.tmp\System.dll
MOD - [2014.11.06 17:41:42 | 038,561,576 | ---- | M] () -- C:\Program Files\AVAST Software\Avast\libcef.dll
MOD - [2014.11.06 17:41:41 | 000,888,216 | ---- | M] () -- C:\Program Files\AVAST Software\Avast\ffmpegsumo.dll
MOD - [2014.10.22 05:04:57 | 008,910,664 | ---- | M] () -- C:\Program Files\Google\Chrome\Application\38.0.2125.111\pdf.dll
MOD - [2014.10.22 05:04:51 | 001,042,760 | ---- | M] () -- C:\Program Files\Google\Chrome\Application\38.0.2125.111\libglesv2.dll
MOD - [2014.10.22 05:04:49 | 000,211,272 | ---- | M] () -- C:\Program Files\Google\Chrome\Application\38.0.2125.111\libegl.dll
MOD - [2014.10.22 05:04:48 | 001,681,224 | ---- | M] () -- C:\Program Files\Google\Chrome\Application\38.0.2125.111\ffmpegsumo.dll
========== Services (SafeList) ==========
SRV - File not found [Auto | Stopped] -- C:\Users\anetqua\AppData\Local\Temp\7zS71DA\hpslpsvc32.dll -- (HPSLPSVC)
SRV - [2014.11.06 17:41:41 | 000,050,344 | ---- | M] (AVAST Software) [Auto | Running] -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe -- (avast! Antivirus)
SRV - [2012.08.31 15:02:03 | 002,754,984 | ---- | M] (TeamViewer GmbH) [Disabled | Stopped] -- C:\Program Files\TeamViewer\Version7\TeamViewer_Service.exe -- (TeamViewer7)
SRV - [2012.07.27 21:51:26 | 000,063,960 | ---- | M] (Adobe Systems Incorporated) [Disabled | Stopped] -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2009.07.14 02:16:13 | 000,025,088 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\sensrsvc.dll -- (SensrSvc)
SRV - [2009.07.14 02:16:12 | 001,004,544 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\PeerDistSvc.dll -- (PeerDistSvc)
SRV - [2009.07.14 02:15:41 | 000,680,960 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
========== Driver Services (SafeList) ==========
DRV - File not found [Kernel | On_Demand | Unknown] -- C:\Users\anetqua\AppData\Local\Temp\mbr.sys -- (mbr)
DRV - File not found [File_System | On_Demand | Stopped] -- C:\Windows\system32\drivers\MBAMSwissArmy.sys -- (MBAMSwissArmy)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Users\anetqua\AppData\Local\Temp\catchme.sys -- (catchme)
DRV - [2014.11.06 17:42:47 | 000,787,800 | ---- | M] (AVAST Software) [File_System | System | Running] -- C:\Windows\System32\drivers\aswsnx.sys -- (aswSnx)
DRV - [2014.11.06 17:42:47 | 000,070,384 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\Windows\System32\drivers\aswmonflt.sys -- (aswMonFlt)
DRV - [2014.11.06 17:41:43 | 000,422,760 | ---- | M] (AVAST Software) [File_System | System | Running] -- C:\Windows\System32\drivers\aswSP.sys -- (aswSP)
DRV - [2014.11.06 17:41:43 | 000,206,248 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\System32\drivers\aswVmm.sys -- (aswVmm)
DRV - [2014.11.06 17:41:43 | 000,091,496 | ---- | M] (AVAST Software) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\aswStm.sys -- (aswStm)
DRV - [2014.11.06 17:41:43 | 000,081,768 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\System32\drivers\aswRdr2.sys -- (aswRdr)
DRV - [2014.11.06 17:41:43 | 000,049,944 | ---- | M] () [Kernel | Boot | Stopped] -- C:\Windows\System32\drivers\aswRvrt.sys -- (aswRvrt)
DRV - [2014.11.06 17:41:43 | 000,024,184 | ---- | M] () [Kernel | Auto | Running] -- C:\Windows\System32\drivers\aswHwid.sys -- (aswHwid)
DRV - [2011.09.08 00:46:56 | 001,117,800 | ---- | M] (Realtek Semiconductor Corporation ) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\rtl8192se.sys -- (rtl8192se)
DRV - [2009.07.14 02:19:10 | 000,175,824 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\vmbus.sys -- (vmbus)
DRV - [2009.07.14 02:19:10 | 000,040,896 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\vmstorfl.sys -- (storflt)
DRV - [2009.07.14 02:19:10 | 000,028,224 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\storvsc.sys -- (storvsc)
DRV - [2009.07.14 00:52:10 | 000,014,336 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\vwifimp.sys -- (vwifimp)
DRV - [2009.07.14 00:51:11 | 000,034,944 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\winusb.sys -- (WinUsb)
DRV - [2009.07.14 00:28:47 | 000,005,632 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\vms3cap.sys -- (s3cap)
DRV - [2009.07.14 00:28:45 | 000,017,920 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\VMBusHID.sys -- (VMBusHID)
DRV - [2009.07.13 23:13:48 | 001,035,776 | ---- | M] (LSI Corp) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\AGRSM.sys -- (AgereSoftModem)
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com/
IE - HKCU\..\SearchScopes,DefaultScope = {012E1000-F331-11DB-8314-0800200C9A66}
IE - HKCU\..\SearchScopes\{012E1000-F331-11DB-8314-0800200C9A66}: "URL" = http://www.google.com/search?q={searchTerms}
IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTer ... ORM=IE8SRC
IE - HKCU\..\SearchScopes\{508763A8-8E40-466B-A3BE-77CD27C5469C}: "URL" = http://www.google.com/search?q={searchT ... f8&oe=utf8
IE - HKCU\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.com/search?q={searcer ... ORM=IE8SRC
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
========== FireFox ==========
FF - prefs.js..browser.search.defaultengine: "Google"
FF - prefs.js..browser.search.defaultenginename: "Google"
FF - prefs.js..browser.search.defaulturl: "http://www.google.com/search?btnG=Google+Search&q="
FF - prefs.js..browser.search.order.1: "Google"
FF - prefs.js..browser.search.selectedEngine: "Google"
FF - prefs.js..browser.search.suggest.enabled: true
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "http://www.google.com"
FF - prefs.js..extensions.enabledAddons: %7Bea614400-e918-4741-9a97-7a972ff7c30b%7D:2.5.15
FF - prefs.js..extensions.enabledAddons: wrc%40avast.com:8.0.1483
FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:21.0
FF - prefs.js..keyword.URL: "http://www.google.com/search?btnG=Google+Search&q="
FF - user.js - File not found
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF32_11_7_700_224.dll ()
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.7.2: C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.7.2: C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~1\MICROS~2\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.25.5\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.25.5\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\wacom.com/WacomTabletPlugin: File not found
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\wrc@avast.com: C:\Program Files\AVAST Software\Avast\WebRep\FF [2014.11.06 17:41:44 | 000,000,000 | ---D | M]
[2013.04.10 11:14:11 | 000,000,000 | ---D | M] (No name found) -- C:\Users\anetqua\AppData\Roaming\Mozilla\Extensions
[2014.10.29 19:33:39 | 000,000,000 | ---D | M] (No name found) -- C:\Users\anetqua\AppData\Roaming\Mozilla\Firefox\Profiles\0\extensions
[2013.12.07 19:25:08 | 000,000,000 | ---D | M] (No name found) -- C:\Users\anetqua\AppData\Roaming\Mozilla\Firefox\Profiles\p3so824v.default\extensions
[2013.04.10 18:13:44 | 000,000,000 | ---D | M] (Seznam lištička) -- C:\Users\anetqua\AppData\Roaming\Mozilla\Firefox\Profiles\p3so824v.default\extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}
========== Chrome ==========
CHR - default_search_provider: ()
CHR - default_search_provider: search_url =
CHR - default_search_provider: suggest_url =
CHR - plugin: Error reading preferences file
CHR - Extension: No name found = C:\Users\anetqua\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek\0.8_0\
CHR - Extension: No name found = C:\Users\anetqua\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.7_0\
CHR - Extension: No name found = C:\Users\anetqua\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\
CHR - Extension: No name found = C:\Users\anetqua\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\
CHR - Extension: No name found = C:\Users\anetqua\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\
CHR - Extension: No name found = C:\Users\anetqua\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap\1.0_0\
CHR - Extension: No name found = C:\Users\anetqua\AppData\Local\Google\Chrome\User Data\Default\Extensions\fnlmdkpemkkigkgelegknllpmfclakkk\1.0.0.5_0\
CHR - Extension: No name found = C:\Users\anetqua\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki\10.0.2204.148_0\
CHR - Extension: No name found = C:\Users\anetqua\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.1_0\
CHR - Extension: No name found = C:\Users\anetqua\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\
O1 HOSTS File: ([2014.11.02 07:51:33 | 000,000,027 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (avast! Online Security) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O4 - HKLM..\Run: [AvastUI.exe] C:\Program Files\AVAST Software\Avast\AvastUI.exe (AVAST Software)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: SoftwareSASGeneration = 1
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O9 - Extra Button: HP Smart Print - {22CC3EBD-C286-43aa-B8E6-06B115F74162} - C:\Program Files\Hewlett-Packard\Smart Print 2.0\smartprintsetup.exe (Hewlett-Packard)
O9 - Extra 'Tools' menuitem : HP Smart Print - {22CC3EBD-C286-43aa-B8E6-06B115F74162} - C:\Program Files\Hewlett-Packard\Smart Print 2.0\smartprintsetup.exe (Hewlett-Packard)
O9 - Extra Button: PokerStars - {3AD14F0C-ED16-4e43-B6D8-661B03F6A1EF} - C:\Program Files\PokerStars\PokerStarsUpdate.exe (PokerStars)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.200.254 10.0.0.254
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{74002344-1745-420F-B17C-011C88F63E9D}: DhcpNameServer = 192.168.0.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{78C67ABF-0237-4E33-97EB-930DD91E3F39}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{E8F2CF52-17B5-40B7-BDEB-3173E8832485}: DhcpNameServer = 192.168.200.254 10.0.0.254
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{EEA06DB5-6F74-4ED1-A081-1EE718B850FE}: DhcpNameServer = 192.168.42.129
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\System32\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation)
O32 - HKLM CDRom: AutoRun - 1
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = ComFile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)
CREATERESTOREPOINT
Restore point Set: OTL Restore Point
NetSvcs: FastUserSwitchingCompatibility - File not found
NetSvcs: Ias - C:\Windows\System32\ias.dll (Microsoft Corporation)
NetSvcs: Nla - File not found
NetSvcs: Ntmssvc - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: SRService - File not found
NetSvcs: WmdmPmSp - File not found
NetSvcs: LogonHours - File not found
NetSvcs: PCAudit - File not found
NetSvcs: helpsvc - File not found
NetSvcs: uploadmgr - File not found
Drivers32: msacm.l3acm - C:\Windows\System32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: MSVideo8 - C:\Windows\System32\vfwwdm32.dll (Microsoft Corporation)
Drivers32: vidc.cvid - C:\Windows\System32\iccvid.dll (Radius Inc.)
Drivers32: vidc.VP60 - C:\Windows\System32\vp6vfw.dll (On2.com)
Drivers32: vidc.VP61 - C:\Windows\System32\vp6vfw.dll (On2.com)
PhysicalDisk0 MBR saved to C:\PhysicalMBR.bin
========== Files/Folders - Created Within 30 Days ==========
[2014.11.06 18:01:32 | 000,000,000 | ---D | C] -- C:\Users\anetqua\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
[2014.11.06 17:58:16 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\anetqua\Desktop\OTL.exe
[2014.11.06 17:57:51 | 000,000,000 | ---D | C] -- C:\Users\anetqua\AppData\Roaming\Dropbox
[2014.11.06 17:49:52 | 001,149,912 | ---- | C] (Crystal Dew World) -- C:\Users\anetqua\Desktop\DiskInfo.exe
[2014.11.06 17:47:27 | 000,000,000 | ---D | C] -- C:\Users\anetqua\AppData\Roaming\AVAST Software
[2014.11.06 17:43:00 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software
[2014.11.06 17:42:22 | 000,091,496 | ---- | C] (AVAST Software) -- C:\Windows\System32\drivers\aswStm.sys
[2014.11.06 17:42:19 | 000,422,760 | ---- | C] (AVAST Software) -- C:\Windows\System32\drivers\aswSP.sys
[2014.11.06 17:42:14 | 000,070,384 | ---- | C] (AVAST Software) -- C:\Windows\System32\drivers\aswmonflt.sys.1415292166525
[2014.11.06 17:42:14 | 000,070,384 | ---- | C] (AVAST Software) -- C:\Windows\System32\drivers\aswmonflt.sys
[2014.11.06 17:42:06 | 000,081,768 | ---- | C] (AVAST Software) -- C:\Windows\System32\drivers\aswRdr2.sys
[2014.11.06 17:42:00 | 000,787,800 | ---- | C] (AVAST Software) -- C:\Windows\System32\drivers\aswsnx.sys.1415292166525
[2014.11.06 17:42:00 | 000,787,800 | ---- | C] (AVAST Software) -- C:\Windows\System32\drivers\aswsnx.sys
[2014.11.06 17:41:52 | 000,291,352 | ---- | C] (AVAST Software) -- C:\Windows\System32\aswBoot.exe
[2014.11.06 17:41:43 | 000,043,152 | ---- | C] (AVAST Software) -- C:\Windows\avastSS.scr
[2014.11.03 05:27:58 | 000,000,000 | ---D | C] -- C:\rsit
[2014.11.02 07:55:18 | 000,000,000 | ---D | C] -- C:\Windows\temp
[2014.11.02 07:51:47 | 000,000,000 | -HSD | C] -- C:\$RECYCLE.BIN
[2014.11.01 22:46:41 | 000,518,144 | ---- | C] (SteelWerX) -- C:\Windows\SWREG.exe
[2014.11.01 22:46:41 | 000,406,528 | ---- | C] (SteelWerX) -- C:\Windows\SWSC.exe
[2014.11.01 22:46:41 | 000,060,416 | ---- | C] (NirSoft) -- C:\Windows\NIRCMD.exe
[2014.11.01 22:46:31 | 000,000,000 | ---D | C] -- C:\Qoobox
[2014.11.01 22:45:44 | 000,000,000 | ---D | C] -- C:\Windows\erdnt
[2014.11.01 19:43:33 | 005,591,672 | R--- | C] (Swearware) -- C:\Users\anetqua\Desktop\ComboFix.exe
[2014.11.01 07:36:15 | 001,706,359 | ---- | C] (Thisisu) -- C:\Users\anetqua\Desktop\JRT.exe
[2014.10.31 20:52:33 | 000,000,000 | ---D | C] -- C:\Users\anetqua\AppData\Local\Temp
[2014.10.31 18:34:55 | 000,000,000 | ---D | C] -- C:\Users\anetqua\Documents\Plocha
========== Files - Modified Within 30 Days ==========
[2014.11.06 18:05:34 | 000,000,512 | ---- | M] () -- C:\PhysicalMBR.bin
[2014.11.06 17:58:21 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\anetqua\Desktop\OTL.exe
[2014.11.06 17:54:15 | 000,000,024 | ---- | M] () -- C:\Users\anetqua\Desktop\DiskInfo.ini
[2014.11.06 17:48:11 | 001,496,172 | ---- | M] () -- C:\Users\anetqua\Desktop\CrystalDiskInfo5_0_0.zip
[2014.11.06 17:43:00 | 000,002,121 | ---- | M] () -- C:\Users\Public\Desktop\Avast Free Antivirus.lnk
[2014.11.06 17:42:47 | 000,787,800 | ---- | M] (AVAST Software) -- C:\Windows\System32\drivers\aswsnx.sys
[2014.11.06 17:42:47 | 000,070,384 | ---- | M] (AVAST Software) -- C:\Windows\System32\drivers\aswmonflt.sys
[2014.11.06 17:41:43 | 000,422,760 | ---- | M] (AVAST Software) -- C:\Windows\System32\drivers\aswSP.sys
[2014.11.06 17:41:43 | 000,291,352 | ---- | M] (AVAST Software) -- C:\Windows\System32\aswBoot.exe
[2014.11.06 17:41:43 | 000,206,248 | ---- | M] () -- C:\Windows\System32\drivers\aswVmm.sys
[2014.11.06 17:41:43 | 000,091,496 | ---- | M] (AVAST Software) -- C:\Windows\System32\drivers\aswStm.sys
[2014.11.06 17:41:43 | 000,081,768 | ---- | M] (AVAST Software) -- C:\Windows\System32\drivers\aswRdr2.sys
[2014.11.06 17:41:43 | 000,070,384 | ---- | M] (AVAST Software) -- C:\Windows\System32\drivers\aswmonflt.sys.1415292166525
[2014.11.06 17:41:43 | 000,049,944 | ---- | M] () -- C:\Windows\System32\drivers\aswRvrt.sys
[2014.11.06 17:41:43 | 000,043,152 | ---- | M] (AVAST Software) -- C:\Windows\avastSS.scr
[2014.11.06 17:41:43 | 000,024,184 | ---- | M] () -- C:\Windows\System32\drivers\aswHwid.sys
[2014.11.06 17:41:38 | 000,787,800 | ---- | M] (AVAST Software) -- C:\Windows\System32\drivers\aswsnx.sys.1415292166525
[2014.11.06 17:12:53 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2014.11.02 19:30:17 | 000,000,132 | ---- | M] () -- C:\Users\anetqua\AppData\Roaming\Adobe Formát GIF CS5 – předvolby
[2014.11.02 17:04:20 | 000,625,936 | ---- | M] () -- C:\Windows\System32\perfh005.dat
[2014.11.02 17:04:20 | 000,610,094 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2014.11.02 17:04:20 | 000,120,008 | ---- | M] () -- C:\Windows\System32\perfc005.dat
[2014.11.02 17:04:20 | 000,104,412 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2014.11.02 07:57:20 | 000,014,192 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2014.11.02 07:57:20 | 000,014,192 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2014.11.02 07:51:53 | 000,001,994 | ---- | M] () -- C:\Users\anetqua\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Sledovat výstrahy inkoustu - HP Deskjet 5520 series (Copy 1).lnk
[2014.11.02 07:51:33 | 000,000,027 | ---- | M] () -- C:\Windows\System32\drivers\etc\hosts
[2014.11.02 07:50:40 | 2337,484,800 | -HS- | M] () -- C:\hiberfil.sys
[2014.11.01 19:43:43 | 005,591,672 | R--- | M] (Swearware) -- C:\Users\anetqua\Desktop\ComboFix.exe
[2014.11.01 07:36:19 | 001,706,359 | ---- | M] (Thisisu) -- C:\Users\anetqua\Desktop\JRT.exe
[2014.10.31 19:43:07 | 000,024,064 | ---- | M] () -- C:\Windows\zoek-delete.exe
[2014.10.31 19:43:05 | 001,292,800 | ---- | M] () -- C:\Users\anetqua\Desktop\zoek.exe
[2014.10.31 18:36:56 | 000,002,055 | ---- | M] () -- C:\Users\anetqua\Desktop\Lightroom 4 (2).lnk
[2014.10.29 20:57:38 | 000,000,003 | ---- | M] () -- C:\Users\anetqua\stut
[2014.10.29 20:45:47 | 000,000,062 | ---- | M] () -- C:\Users\anetqua\rgut
[2014.10.28 15:52:58 | 000,002,129 | ---- | M] () -- C:\Users\Public\Desktop\Google Chrome.lnk
========== Files Created - No Company Name ==========
[2014.11.06 18:04:01 | 000,000,512 | ---- | C] () -- C:\PhysicalMBR.bin
[2014.11.06 17:50:05 | 000,000,024 | ---- | C] () -- C:\Users\anetqua\Desktop\DiskInfo.ini
[2014.11.06 17:47:55 | 001,496,172 | ---- | C] () -- C:\Users\anetqua\Desktop\CrystalDiskInfo5_0_0.zip
[2014.11.06 17:43:00 | 000,002,121 | ---- | C] () -- C:\Users\Public\Desktop\Avast Free Antivirus.lnk
[2014.11.06 17:42:20 | 000,206,248 | ---- | C] () -- C:\Windows\System32\drivers\aswVmm.sys
[2014.11.06 17:42:16 | 000,049,944 | ---- | C] () -- C:\Windows\System32\drivers\aswRvrt.sys
[2014.11.06 17:42:10 | 000,024,184 | ---- | C] () -- C:\Windows\System32\drivers\aswHwid.sys
[2014.11.02 19:30:17 | 000,000,132 | ---- | C] () -- C:\Users\anetqua\AppData\Roaming\Adobe Formát GIF CS5 – předvolby
[2014.11.01 22:46:41 | 000,256,000 | ---- | C] () -- C:\Windows\PEV.exe
[2014.11.01 22:46:41 | 000,208,896 | ---- | C] () -- C:\Windows\MBR.exe
[2014.11.01 22:46:41 | 000,098,816 | ---- | C] () -- C:\Windows\sed.exe
[2014.11.01 22:46:41 | 000,080,412 | ---- | C] () -- C:\Windows\grep.exe
[2014.11.01 22:46:41 | 000,068,096 | ---- | C] () -- C:\Windows\zip.exe
[2014.10.31 20:52:35 | 000,024,064 | ---- | C] () -- C:\Windows\zoek-delete.exe
[2014.10.31 19:42:57 | 001,292,800 | ---- | C] () -- C:\Users\anetqua\Desktop\zoek.exe
[2014.10.31 18:36:56 | 000,002,055 | ---- | C] () -- C:\Users\anetqua\Desktop\Lightroom 4 (2).lnk
[2014.10.30 08:15:53 | 000,002,055 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Photoshop Lightroom 4.lnk
[2014.06.17 10:47:59 | 000,020,480 | ---- | C] () -- C:\Users\anetqua\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2014.05.11 20:35:10 | 000,000,218 | ---- | C] () -- C:\Users\anetqua\.recently-used.xbel
[2014.03.17 19:25:48 | 000,000,003 | ---- | C] () -- C:\Users\anetqua\stut
[2014.03.17 19:23:44 | 000,000,062 | ---- | C] () -- C:\Users\anetqua\rgut
[2013.09.04 16:02:31 | 000,000,057 | ---- | C] () -- C:\ProgramData\Ament.ini
[2013.07.04 07:45:28 | 000,000,132 | ---- | C] () -- C:\Users\anetqua\AppData\Roaming\Adobe Formát PNG CS5 – předvolby
[2013.04.15 23:38:19 | 000,000,368 | ---- | C] () -- C:\Users\anetqua\.jalbum-sharing.xml
========== ZeroAccess Check ==========
[2009.07.14 05:42:31 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini
[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2009.07.14 02:16:14 | 012,866,560 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2009.07.14 02:15:20 | 000,605,696 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
"" = %systemroot%\system32\wbem\wbemess.dll -- [2009.07.14 02:16:17 | 000,342,528 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both
========== Custom Scans ==========
< >
< >
< MD5 for: AGP440.SYS >
[2009.07.14 02:26:15 | 000,053,312 | ---- | M] (Microsoft Corporation) MD5=507812C3054C21CEF746B6EE3D04DD6E -- C:\Windows\System32\drivers\AGP440.sys
[2009.07.14 02:26:15 | 000,053,312 | ---- | M] (Microsoft Corporation) MD5=507812C3054C21CEF746B6EE3D04DD6E -- C:\Windows\System32\DriverStore\FileRepository\machine.inf_x86_neutral_65848c2d7375a720\AGP440.sys
[2009.07.14 02:26:15 | 000,053,312 | ---- | M] (Microsoft Corporation) MD5=507812C3054C21CEF746B6EE3D04DD6E -- C:\Windows\winsxs\x86_machine.inf_31bf3856ad364e35_6.1.7600.16385_none_b9e9435f20046eeb\AGP440.sys
[2009.07.14 02:26:15 | 000,053,312 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\erdnt\cache\AGP440.sys
< MD5 for: ATAPI.SYS >
[2009.07.14 02:26:15 | 000,021,584 | ---- | M] (Microsoft Corporation) MD5=338C86357871C167A96AB976519BF59E -- C:\Windows\erdnt\cache\atapi.sys
[2009.07.14 02:26:15 | 000,021,584 | ---- | M] (Microsoft Corporation) MD5=338C86357871C167A96AB976519BF59E -- C:\Windows\System32\drivers\atapi.sys
[2009.07.14 02:26:15 | 000,021,584 | ---- | M] (Microsoft Corporation) MD5=338C86357871C167A96AB976519BF59E -- C:\Windows\System32\DriverStore\FileRepository\mshdc.inf_x86_neutral_f64b9c35a3a5be81\atapi.sys
[2009.07.14 02:26:15 | 000,021,584 | ---- | M] (Microsoft Corporation) MD5=338C86357871C167A96AB976519BF59E -- C:\Windows\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.1.7600.16385_none_dd0e7e3d82dd640d\atapi.sys
< MD5 for: AUTOCHK.EXE >
[2009.07.14 02:14:12 | 000,668,160 | ---- | M] (Microsoft Corporation) MD5=41E4C8EBA464E7D6A5BA5E8827732AEB -- C:\Windows\System32\autochk.exe
[2009.07.14 02:14:12 | 000,668,160 | ---- | M] (Microsoft Corporation) MD5=41E4C8EBA464E7D6A5BA5E8827732AEB -- C:\Windows\winsxs\x86_microsoft-windows-autochk_31bf3856ad364e35_6.1.7600.16385_none_e1ca436d2314b860\autochk.exe
< MD5 for: CDROM.SYS >
[2009.07.14 00:11:26 | 000,108,544 | ---- | M] (Microsoft Corporation) MD5=BA6E70AA0E6091BC39DE29477D866A77 -- C:\Windows\System32\drivers\cdrom.sys
[2009.07.14 00:11:26 | 000,108,544 | ---- | M] (Microsoft Corporation) MD5=BA6E70AA0E6091BC39DE29477D866A77 -- C:\Windows\System32\DriverStore\FileRepository\cdrom.inf_x86_neutral_db87d184bc84f910\cdrom.sys
[2009.07.14 00:11:26 | 000,108,544 | ---- | M] (Microsoft Corporation) MD5=BA6E70AA0E6091BC39DE29477D866A77 -- C:\Windows\winsxs\x86_cdrom.inf_31bf3856ad364e35_6.1.7600.16385_none_5f7fb206051affbb\cdrom.sys
< MD5 for: CNGAUDIT.DLL >
[2009.07.14 02:15:06 | 000,012,288 | ---- | M] (Microsoft Corporation) MD5=50BA656134F78AF64E4DD3C8B6FEFD7E -- C:\Windows\erdnt\cache\cngaudit.dll
[2009.07.14 02:15:06 | 000,012,288 | ---- | M] (Microsoft Corporation) MD5=50BA656134F78AF64E4DD3C8B6FEFD7E -- C:\Windows\System32\cngaudit.dll
[2009.07.14 02:15:06 | 000,012,288 | ---- | M] (Microsoft Corporation) MD5=50BA656134F78AF64E4DD3C8B6FEFD7E -- C:\Windows\winsxs\x86_microsoft-windows-cngaudit-dll_31bf3856ad364e35_6.1.7600.16385_none_e83a414890e8132b\cngaudit.dll
< MD5 for: CRYPTSVC.DLL >
[2009.07.14 02:15:07 | 000,135,680 | ---- | M] (Microsoft Corporation) MD5=9C231178CE4FB385F4B54B0A9080B8A4 -- C:\Windows\erdnt\cache\cryptsvc.dll
[2009.07.14 02:15:07 | 000,135,680 | ---- | M] (Microsoft Corporation) MD5=9C231178CE4FB385F4B54B0A9080B8A4 -- C:\Windows\System32\cryptsvc.dll
[2009.07.14 02:15:07 | 000,135,680 | ---- | M] (Microsoft Corporation) MD5=9C231178CE4FB385F4B54B0A9080B8A4 -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7600.16385_none_75d5ef87fc22e35a\cryptsvc.dll
< MD5 for: EXPLORER.EXE >
[2011.02.26 06:19:21 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=0FB9C74046656D1579A64660AD67B746 -- C:\Windows\SoftwareDistribution\Download\f2f739a8d939cb0fdc769a3446af420a\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.21669_none_54149f9ef14031fc\explorer.exe
[2009.07.14 02:14:20 | 002,613,248 | ---- | M] (Microsoft Corporation) MD5=15BC38A7492BEFE831966ADB477CF76F -- C:\Windows\explorer.exe
[2009.07.14 02:14:20 | 002,613,248 | ---- | M] (Microsoft Corporation) MD5=15BC38A7492BEFE831966ADB477CF76F -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16385_none_518afd35db100430\explorer.exe
[2011.02.26 06:51:13 | 002,614,784 | ---- | M] (Microsoft Corporation) MD5=255CF508D7CFB10E0794D6AC93280BD8 -- C:\Windows\SoftwareDistribution\Download\f2f739a8d939cb0fdc769a3446af420a\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20910_none_525b5180f3f95373\explorer.exe
[2011.02.26 06:33:07 | 002,614,784 | ---- | M] (Microsoft Corporation) MD5=2AF58D15EDC06EC6FDACCE1F19482BBF -- C:\Windows\SoftwareDistribution\Download\f2f739a8d939cb0fdc769a3446af420a\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16768_none_51a3a583dafd0cef\explorer.exe
[2009.07.14 02:14:20 | 002,613,248 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\erdnt\cache\explorer.exe
[2011.02.25 06:30:54 | 002,616,320 | ---- | M] () Unable to obtain MD5 -- C:\Windows\SoftwareDistribution\Download\f2f739a8d939cb0fdc769a3446af420a\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17567_none_5389023fd8245f84\explorer.exe
< MD5 for: HAL.DLL >
[2009.07.14 02:20:28 | 000,194,640 | ---- | M] (Microsoft Corporation) MD5=9A557EAE64ABAB3BA67A9BB035D24CB9 -- C:\Windows\System32\hal.dll
[2009.07.14 02:20:28 | 000,194,640 | ---- | M] (Microsoft Corporation) MD5=9A557EAE64ABAB3BA67A9BB035D24CB9 -- C:\Windows\winsxs\x86_microsoft-windows-hal_31bf3856ad364e35_6.1.7600.16385_none_aaff48c7bafdccc6\hal.dll
< MD5 for: IASTORV.SYS >
[2009.07.14 02:20:36 | 000,332,352 | ---- | M] (Intel Corporation) MD5=934AF4D7C5F457B9F0743F4299B77B67 -- C:\Windows\System32\drivers\iaStorV.sys
[2009.07.14 02:20:36 | 000,332,352 | ---- | M] (Intel Corporation) MD5=934AF4D7C5F457B9F0743F4299B77B67 -- C:\Windows\System32\DriverStore\FileRepository\iastorv.inf_x86_neutral_18cccb83b34e1453\iaStorV.sys
[2009.07.14 02:20:36 | 000,332,352 | ---- | M] (Intel Corporation) MD5=934AF4D7C5F457B9F0743F4299B77B67 -- C:\Windows\winsxs\x86_iastorv.inf_31bf3856ad364e35_6.1.7600.16385_none_aee7a89be91b9000\iaStorV.sys
< MD5 for: ISAPNP.SYS >
[2009.07.14 02:20:36 | 000,046,656 | ---- | M] (Microsoft Corporation) MD5=1F32BB6B38F62F7DF1A7AB7292638A35 -- C:\Windows\System32\drivers\isapnp.sys
[2009.07.14 02:20:36 | 000,046,656 | ---- | M] (Microsoft Corporation) MD5=1F32BB6B38F62F7DF1A7AB7292638A35 -- C:\Windows\System32\DriverStore\FileRepository\machine.inf_x86_neutral_65848c2d7375a720\isapnp.sys
[2009.07.14 02:20:36 | 000,046,656 | ---- | M] (Microsoft Corporation) MD5=1F32BB6B38F62F7DF1A7AB7292638A35 -- C:\Windows\winsxs\x86_machine.inf_31bf3856ad364e35_6.1.7600.16385_none_b9e9435f20046eeb\isapnp.sys
< MD5 for: LSASS.EXE >
[2011.11.17 08:09:25 | 000,022,528 | ---- | M] (Microsoft Corporation) MD5=05F38CB7CAB3CE8E9A1812D517DA93EF -- C:\Windows\SoftwareDistribution\Download\58ed98c2fe59878703e028563a2637f4\x86_microsoft-windows-lsa_31bf3856ad364e35_6.1.7600.21092_none_a69c8e86d7476262\lsass.exe
[2011.11.17 06:29:50 | 000,022,528 | ---- | M] (Microsoft Corporation) MD5=81951F51E318AECC2D68559E47485CC4 -- C:\Windows\SoftwareDistribution\Download\58ed98c2fe59878703e028563a2637f4\x86_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.17725_none_a84828d7bb1480d7\lsass.exe
[2011.11.17 06:36:26 | 000,022,528 | ---- | M] (Microsoft Corporation) MD5=C2243FF9E9AAD0C30E8B1A0914DA15B6 -- C:\Windows\SoftwareDistribution\Download\58ed98c2fe59878703e028563a2637f4\x86_microsoft-windows-lsa_31bf3856ad364e35_6.1.7600.16915_none_a66c9bbdbde5f8fa\lsass.exe
[2009.07.14 02:14:23 | 000,022,528 | ---- | M] (Microsoft Corporation) MD5=F42309C4191C506B71DB5D1126D26318 -- C:\Windows\erdnt\cache\lsass.exe
[2009.07.14 02:14:23 | 000,022,528 | ---- | M] (Microsoft Corporation) MD5=F42309C4191C506B71DB5D1126D26318 -- C:\Windows\System32\lsass.exe
[2009.07.14 02:14:23 | 000,022,528 | ---- | M] (Microsoft Corporation) MD5=F42309C4191C506B71DB5D1126D26318 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.1.7600.16385_none_a620e0e5be1ecda7\lsass.exe
[2009.07.14 02:14:23 | 000,022,528 | ---- | M] (Microsoft Corporation) MD5=F42309C4191C506B71DB5D1126D26318 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.1.7600.16484_none_a61fe281be1fb177\lsass.exe
[2009.07.14 02:14:23 | 000,022,528 | ---- | M] (Microsoft Corporation) MD5=F42309C4191C506B71DB5D1126D26318 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.1.7600.20594_none_a69eaf60d7456d32\lsass.exe
[2011.11.17 06:24:04 | 000,022,528 | ---- | M] (Microsoft Corporation) MD5=FBCB2DFA40862DAA7B1534C9538208A5 -- C:\Windows\SoftwareDistribution\Download\58ed98c2fe59878703e028563a2637f4\x86_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.21861_none_a8a284cad4562b09\lsass.exe
< MD5 for: NDIS.SYS >
[2009.07.14 02:20:44 | 000,710,720 | ---- | M] (Microsoft Corporation) MD5=23759D175A0A9BAAF04D05047BC135A8 -- C:\Windows\erdnt\cache\ndis.sys
[2009.07.14 02:20:44 | 000,710,720 | ---- | M] (Microsoft Corporation) MD5=23759D175A0A9BAAF04D05047BC135A8 -- C:\Windows\System32\drivers\ndis.sys
[2009.07.14 02:20:44 | 000,710,720 | ---- | M] (Microsoft Corporation) MD5=23759D175A0A9BAAF04D05047BC135A8 -- C:\Windows\winsxs\x86_microsoft-windows-ndis_31bf3856ad364e35_6.1.7600.16385_none_a79d81ea7d62a289\ndis.sys
< MD5 for: NETLOGON.DLL >
[2009.07.14 02:16:02 | 000,563,712 | ---- | M] (Microsoft Corporation) MD5=EAA75D9000B71F10EEC04D2AE6C60E81 -- C:\Windows\erdnt\cache\netlogon.dll
[2009.07.14 02:16:02 | 000,563,712 | ---- | M] (Microsoft Corporation) MD5=EAA75D9000B71F10EEC04D2AE6C60E81 -- C:\Windows\System32\netlogon.dll
[2009.07.14 02:16:02 | 000,563,712 | ---- | M] (Microsoft Corporation) MD5=EAA75D9000B71F10EEC04D2AE6C60E81 -- C:\Windows\winsxs\x86_microsoft-windows-security-netlogon_31bf3856ad364e35_6.1.7600.16385_none_fd8e0d66994d7dc8\netlogon.dll
< MD5 for: NVRAID.SYS >
[2009.07.14 02:20:44 | 000,117,312 | ---- | M] (NVIDIA Corporation) MD5=3F3D04B1D08D43C16EA7963954EC768D -- C:\Windows\System32\drivers\nvraid.sys
[2009.07.14 02:20:44 | 000,117,312 | ---- | M] (NVIDIA Corporation) MD5=3F3D04B1D08D43C16EA7963954EC768D -- C:\Windows\System32\DriverStore\FileRepository\nvraid.inf_x86_neutral_5bde3fe2945bce9e\nvraid.sys
[2009.07.14 02:20:44 | 000,117,312 | ---- | M] (NVIDIA Corporation) MD5=3F3D04B1D08D43C16EA7963954EC768D -- C:\Windows\winsxs\x86_nvraid.inf_31bf3856ad364e35_6.1.7600.16385_none_39b1194b205239d8\nvraid.sys
< MD5 for: NVSTOR.SYS >
[2009.07.14 02:20:44 | 000,142,416 | ---- | M] (NVIDIA Corporation) MD5=C99F251A5DE63C6F129CF71933ACED0F -- C:\Windows\System32\drivers\nvstor.sys
[2009.07.14 02:20:44 | 000,142,416 | ---- | M] (NVIDIA Corporation) MD5=C99F251A5DE63C6F129CF71933ACED0F -- C:\Windows\System32\DriverStore\FileRepository\nvraid.inf_x86_neutral_5bde3fe2945bce9e\nvstor.sys
[2009.07.14 02:20:44 | 000,142,416 | ---- | M] (NVIDIA Corporation) MD5=C99F251A5DE63C6F129CF71933ACED0F -- C:\Windows\winsxs\x86_nvraid.inf_31bf3856ad364e35_6.1.7600.16385_none_39b1194b205239d8\nvstor.sys
< MD5 for: SCECLI.DLL >
[2009.07.14 02:16:13 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=26073302DAEA83CC5B944C546D6B47D2 -- C:\Windows\erdnt\cache\scecli.dll
[2009.07.14 02:16:13 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=26073302DAEA83CC5B944C546D6B47D2 -- C:\Windows\System32\scecli.dll
[2009.07.14 02:16:13 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=26073302DAEA83CC5B944C546D6B47D2 -- C:\Windows\winsxs\x86_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7600.16385_none_37e4387f3a6f0483\scecli.dll
< MD5 for: SMSS.EXE >
[2009.07.14 02:14:39 | 000,069,632 | ---- | M] (Microsoft Corporation) MD5=16742790895960690237A5143CEDEC8B -- C:\Windows\System32\smss.exe
[2009.07.14 02:14:39 | 000,069,632 | ---- | M] (Microsoft Corporation) MD5=16742790895960690237A5143CEDEC8B -- C:\Windows\winsxs\x86_microsoft-windows-smss_31bf3856ad364e35_6.1.7600.16385_none_ac10fe207a85352b\smss.exe
< MD5 for: SVCHOST.EXE >
[2009.07.14 02:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\erdnt\cache\svchost.exe
[2009.07.14 02:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\System32\svchost.exe
[2009.07.14 02:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\winsxs\x86_microsoft-windows-services-svchost_31bf3856ad364e35_6.1.7600.16385_none_b591afc466a15356\svchost.exe
< MD5 for: TCPIP.SYS >
[2011.04.25 05:31:30 | 001,290,624 | ---- | M] (Microsoft Corporation) MD5=24326784DF8F3D5F5BBB9F878CE33C14 -- C:\Windows\SoftwareDistribution\Download\919003e3012e674674fc2a83c2329826\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.17603_none_b52f4dc5c4a121e0\tcpip.sys
[2009.07.14 02:19:10 | 001,285,712 | ---- | M] (Microsoft Corporation) MD5=2CC3D75488ABD3EC628BBB9A4FC84EFC -- C:\Windows\System32\drivers\tcpip.sys
[2009.07.14 02:19:10 | 001,285,712 | ---- | M] (Microsoft Corporation) MD5=2CC3D75488ABD3EC628BBB9A4FC84EFC -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.16385_none_b2f46875c7b9d667\tcpip.sys
[2011.04.25 05:44:18 | 001,298,816 | ---- | M] (Microsoft Corporation) MD5=8861B9A06BA99C6E1D62D0C86DFAB86C -- C:\Windows\SoftwareDistribution\Download\919003e3012e674674fc2a83c2329826\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.20951_none_b39a7d5ae0c2aec5\tcpip.sys
[2009.07.14 02:19:10 | 001,285,712 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\erdnt\cache\tcpip.sys
[2011.04.25 05:56:06 | 001,286,016 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\SoftwareDistribution\Download\919003e3012e674674fc2a83c2329826\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.16802_none_b347f075c77b9c9d\tcpip.sys
[2011.04.25 07:31:09 | 001,301,376 | ---- | M] () Unable to obtain MD5 -- C:\Windows\SoftwareDistribution\Download\919003e3012e674674fc2a83c2329826\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.21712_none_b5ad1a5addc7c444\tcpip.sys
< MD5 for: USERINIT.EXE >
[2009.07.14 02:14:43 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=6DE80F60D7DE9CE6B8C2DDFDF79EF175 -- C:\Windows\erdnt\cache\userinit.exe
[2009.07.14 02:14:43 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=6DE80F60D7DE9CE6B8C2DDFDF79EF175 -- C:\Windows\System32\userinit.exe
[2009.07.14 02:14:43 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=6DE80F60D7DE9CE6B8C2DDFDF79EF175 -- C:\Windows\winsxs\x86_microsoft-windows-userinit_31bf3856ad364e35_6.1.7600.16385_none_dbff103933038d7c\userinit.exe
< MD5 for: WINLOGON.EXE >
[2009.07.14 02:14:45 | 000,285,696 | ---- | M] (Microsoft Corporation) MD5=8EC6A4AB12B8F3759E21F8E3A388F2CF -- C:\Windows\erdnt\cache\winlogon.exe
[2009.07.14 02:14:45 | 000,285,696 | ---- | M] (Microsoft Corporation) MD5=8EC6A4AB12B8F3759E21F8E3A388F2CF -- C:\Windows\System32\winlogon.exe
[2009.07.14 02:14:45 | 000,285,696 | ---- | M] (Microsoft Corporation) MD5=8EC6A4AB12B8F3759E21F8E3A388F2CF -- C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7600.16385_none_6f99573a36451166\winlogon.exe
< MD5 for: WS2_32.DLL >
[2009.07.14 02:16:20 | 000,206,336 | ---- | M] (Microsoft Corporation) MD5=DAAE8A9B8C0ACC7F858454132553C30D -- C:\Windows\erdnt\cache\ws2_32.dll
[2009.07.14 02:16:20 | 000,206,336 | ---- | M] (Microsoft Corporation) MD5=DAAE8A9B8C0ACC7F858454132553C30D -- C:\Windows\System32\ws2_32.dll
[2009.07.14 02:16:20 | 000,206,336 | ---- | M] (Microsoft Corporation) MD5=DAAE8A9B8C0ACC7F858454132553C30D -- C:\Windows\winsxs\x86_microsoft-windows-w..nfrastructure-ws232_31bf3856ad364e35_6.1.7600.16385_none_f28e06e62fa99b35\ws2_32.dll
< >
< %systemroot%*.* /U /s >
< %SYSTEMDRIVE%\*.exe >
< %ALLUSERSPROFILE%\Application Data\*. >
< %ALLUSERSPROFILE%\Application Data\*.exe /s >
< %APPDATA%\*. >
[2014.06.15 17:24:16 | 000,000,000 | ---D | M] -- C:\Users\anetqua\AppData\Roaming\Adobe
[2013.12.08 12:03:54 | 000,000,000 | ---D | M] -- C:\Users\anetqua\AppData\Roaming\Adobe Mini Bridge CS5.1
[2014.06.17 10:39:20 | 000,000,000 | ---D | M] -- C:\Users\anetqua\AppData\Roaming\AnvSoft
[2012.09.25 07:03:24 | 000,000,000 | ---D | M] -- C:\Users\anetqua\AppData\Roaming\Ashampoo
[2014.11.06 17:47:27 | 000,000,000 | ---D | M] -- C:\Users\anetqua\AppData\Roaming\AVAST Software
[2014.03.24 18:35:47 | 000,000,000 | ---D | M] -- C:\Users\anetqua\AppData\Roaming\BSplayer
[2012.09.28 17:01:57 | 000,000,000 | ---D | M] -- C:\Users\anetqua\AppData\Roaming\BSplayer Pro
[2013.02.15 13:32:15 | 000,000,000 | ---D | M] -- C:\Users\anetqua\AppData\Roaming\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1
[2014.03.24 09:36:55 | 000,000,000 | ---D | M] -- C:\Users\anetqua\AppData\Roaming\DAEMON Tools Lite
[2014.11.06 18:02:20 | 000,000,000 | ---D | M] -- C:\Users\anetqua\AppData\Roaming\Dropbox
[2012.10.03 09:01:56 | 000,000,000 | ---D | M] -- C:\Users\anetqua\AppData\Roaming\GHISLER
[2012.11.10 09:44:01 | 000,000,000 | ---D | M] -- C:\Users\anetqua\AppData\Roaming\GO Games
[2013.09.04 16:04:16 | 000,000,000 | ---D | M] -- C:\Users\anetqua\AppData\Roaming\HpUpdate
[2012.09.16 15:21:10 | 000,000,000 | ---D | M] -- C:\Users\anetqua\AppData\Roaming\Identities
[2013.05.02 14:25:08 | 000,000,000 | ---D | M] -- C:\Users\anetqua\AppData\Roaming\jAlbum
[2012.09.21 08:23:50 | 000,000,000 | ---D | M] -- C:\Users\anetqua\AppData\Roaming\Macromedia
[2013.08.28 16:38:14 | 000,000,000 | ---D | M] -- C:\Users\anetqua\AppData\Roaming\Malwarebytes
[2009.07.14 08:48:45 | 000,000,000 | ---D | M] -- C:\Users\anetqua\AppData\Roaming\Media Center Programs
[2014.03.23 19:16:46 | 000,000,000 | --SD | M] -- C:\Users\anetqua\AppData\Roaming\Microsoft
[2013.04.10 11:14:11 | 000,000,000 | ---D | M] -- C:\Users\anetqua\AppData\Roaming\Mozilla
[2012.09.16 19:06:38 | 000,000,000 | ---D | M] -- C:\Users\anetqua\AppData\Roaming\Opera
[2014.07.23 15:54:55 | 000,000,000 | ---D | M] -- C:\Users\anetqua\AppData\Roaming\SeaApple
[2014.10.30 19:00:48 | 000,000,000 | ---D | M] -- C:\Users\anetqua\AppData\Roaming\Seznam.cz
[2014.10.30 18:57:27 | 000,000,000 | ---D | M] -- C:\Users\anetqua\AppData\Roaming\Skype
[2013.12.08 12:03:53 | 000,000,000 | ---D | M] -- C:\Users\anetqua\AppData\Roaming\StageManager.BD092818F67280F4B42B04877600987F0111B594.1
[2013.05.18 08:58:02 | 000,000,000 | ---D | M] -- C:\Users\anetqua\AppData\Roaming\TeamViewer
[2013.08.28 10:05:27 | 000,000,000 | ---D | M] -- C:\Users\anetqua\AppData\Roaming\TuneUp Software
[2014.06.28 19:23:03 | 000,000,000 | ---D | M] -- C:\Users\anetqua\AppData\Roaming\WinRAR
[2014.11.01 08:00:30 | 000,000,000 | ---D | M] -- C:\Users\anetqua\AppData\Roaming\Zoner
[2014.03.20 18:51:04 | 000,000,000 | ---D | M] -- C:\Users\anetqua\AppData\Roaming\{28a8f263-0a12-e7e9-4337-e12c28a8f263}
< %APPDATA%\*.exe /s >
[2009.08.11 20:21:26 | 000,087,552 | ---- | M] () -- C:\Users\anetqua\AppData\Roaming\BSplayer\AC3 Filter\ac3config.exe
[2009.08.11 20:21:30 | 000,090,112 | ---- | M] () -- C:\Users\anetqua\AppData\Roaming\BSplayer\AC3 Filter\spdif_test.exe
[2010.03.22 13:52:04 | 000,697,690 | ---- | M] () -- C:\Users\anetqua\AppData\Roaming\BSplayer\AC3 Filter\unins000.exe
[2010.02.23 16:01:52 | 001,185,871 | ---- | M] () -- C:\Users\anetqua\AppData\Roaming\BSplayer\FFDShow\unins000.exe
[2010.08.14 09:42:54 | 000,113,152 | ---- | M] () -- C:\Users\anetqua\AppData\Roaming\BSplayer\Haali media splitter\dsmux.exe
[2010.08.14 09:45:10 | 000,358,400 | ---- | M] () -- C:\Users\anetqua\AppData\Roaming\BSplayer\Haali media splitter\gdsmux.exe
[2010.08.14 09:42:06 | 000,137,728 | ---- | M] () -- C:\Users\anetqua\AppData\Roaming\BSplayer\Haali media splitter\mkv2vfr.exe
[2010.09.30 14:30:22 | 000,042,305 | ---- | M] () -- C:\Users\anetqua\AppData\Roaming\BSplayer\Haali media splitter\uninstall.exe
[2014.11.05 01:52:14 | 036,359,432 | ---- | M] (Dropbox, Inc.) -- C:\Users\anetqua\AppData\Roaming\Dropbox\bin\Dropbox.exe
[2014.11.05 01:53:26 | 000,262,160 | ---- | M] (Dropbox, Inc.) -- C:\Users\anetqua\AppData\Roaming\Dropbox\bin\DropboxUninstaller.exe
[2014.11.05 01:52:17 | 000,225,200 | ---- | M] (Dropbox, Inc.) -- C:\Users\anetqua\AppData\Roaming\Dropbox\bin\DropboxUpdateHelper.exe
[2014.03.23 19:16:46 | 000,010,134 | R--- | M] () -- C:\Users\anetqua\AppData\Roaming\Microsoft\Installer\{E3E71D07-CD27-46CB-8448-16D4FB29AA13}\ARPPRODUCTICON.exe
[2014.03.25 20:35:53 | 000,786,492 | ---- | M] () -- C:\Users\anetqua\AppData\Roaming\Microsoft\Windows\Templates\cryptedcybertoirrent.exe
[2014.03.25 20:35:57 | 015,823,872 | ---- | M] () -- C:\Users\anetqua\AppData\Roaming\Microsoft\Windows\Templates\Office 2010 Toolkit.exe
[2014.03.25 20:35:54 | 000,107,008 | ---- | M] () -- C:\Users\anetqua\AppData\Roaming\Microsoft\Windows\Templates\Torrant.exe
< %systemroot%\*. /mp /s >
< %systemroot%\system32\*.dll /lockedfiles >
[2009.07.14 02:14:53 | 000,046,592 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\AltTab.dll
[2009.07.14 02:14:53 | 000,070,656 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\amstream.dll
[2009.06.10 22:21:50 | 000,109,456 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\avifile.dll
[2009.07.14 02:17:51 | 000,143,936 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\basecsp.dll
[2009.07.14 02:14:59 | 000,018,944 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\bitsperf.dll
[2009.07.14 02:15:00 | 000,027,136 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\BthMtpContextHandler.dll
[2009.07.14 02:15:00 | 000,066,560 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\btpanui.dll
[2009.07.14 02:15:01 | 001,320,960 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\CertEnroll.dll
[2009.07.14 02:15:35 | 001,672,192 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\chsbrkr.dll
Re: Pomalý počítač, díky za pomoc :)
[2009.07.14 02:15:07 | 000,220,160 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\comsnap.dll
[2012.09.25 23:46:04 | 000,472,424 | --S- | M] (NVIDIA Corporation) Unable to obtain MD5 -- C:\Windows\system32\cudart32_50_35.dll
[File Corrupted - Detail Data unreadable] Unable to obtain MD5 -- C:\Windows\system32\D3DCompiler_33.dll
[2007.05.16 15:45:16 | 001,124,720 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\D3DCompiler_34.dll
[2007.10.12 14:14:00 | 001,374,232 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\D3DCompiler_36.dll
[2008.05.30 13:11:46 | 001,491,992 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\D3DCompiler_38.dll
[2010.05.26 10:41:02 | 002,106,216 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\D3DCompiler_43.dll
[2007.10.02 08:56:34 | 000,444,776 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\d3dx10_36.dll
[2008.02.05 22:07:36 | 000,462,864 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\d3dx10_37.dll
[2008.05.30 13:11:46 | 000,467,984 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\d3dx10_38.dll
[2011.02.11 17:35:00 | 000,452,440 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\d3dx10_40.dll
[2009.09.04 16:29:34 | 000,453,456 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\d3dx10_42.dll
[2010.05.26 10:41:02 | 000,248,672 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\d3dx11_43.dll
[2005.03.18 16:19:58 | 002,337,488 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\d3dx9_25.dll
[2005.07.22 18:59:04 | 002,319,568 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\d3dx9_27.dll
[2006.02.03 07:43:16 | 002,332,368 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\d3dx9_29.dll
[2006.09.28 15:05:20 | 002,414,360 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\d3dx9_31.dll
[2006.11.29 12:06:18 | 003,426,072 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\d3dx9_32.dll
[2007.05.16 15:45:16 | 003,497,832 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\d3dx9_34.dll
[2007.10.12 14:14:00 | 003,734,536 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\d3dx9_36.dll
[2008.07.10 10:00:58 | 003,851,784 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\D3DX9_39.dll
[2009.03.09 14:27:22 | 004,178,264 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\D3DX9_41.dll
[2009.07.14 02:15:10 | 000,055,296 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\DevicePairingProxy.dll
[2009.07.14 02:15:11 | 000,410,624 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\devmgr.dll
[2009.07.14 02:15:11 | 001,188,864 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\DiagCpl.dll
[2009.07.14 02:15:11 | 000,136,704 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\dinput.dll
[2009.07.14 02:15:13 | 000,058,880 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\drtprov.dll
[2009.07.14 02:15:13 | 000,087,040 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\dskquota.dll
[2009.07.14 02:15:13 | 000,453,632 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\dsound.dll
[2009.07.14 02:15:19 | 000,066,048 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\eqossnap.dll
[2009.07.14 02:15:20 | 000,027,136 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\fdProxy.dll
[File Corrupted - Detail Data unreadable] Unable to obtain MD5 -- C:\Windows\system32\fdSSDP.dll
[2010.02.20 16:20:18 | 001,207,144 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\FM20.DLL
[2009.07.14 02:15:21 | 000,544,256 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\fvewiz.dll
[2009.07.14 02:15:21 | 000,078,336 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\FXSCOM.dll
[2009.07.14 02:15:22 | 000,429,568 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\FXSTIFF.dll
[2009.07.14 02:15:22 | 000,457,216 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\FXSXP32.dll
[2009.07.14 02:15:22 | 002,576,384 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\gameux.dll
[2009.06.22 18:58:10 | 000,011,776 | ---- | M] (Hewlett-Packard Company) Unable to obtain MD5 -- C:\Windows\system32\HPBPROPS.DLL
[2012.10.17 21:34:59 | 001,979,280 | ---- | M] (Hewlett-Packard Co.) Unable to obtain MD5 -- C:\Windows\system32\HPScanTRDrv_DJ5520.dll
[2009.06.22 18:58:20 | 000,034,304 | ---- | M] (Hewlett-Packard) Unable to obtain MD5 -- C:\Windows\system32\HPZIPT12.DLL
[2009.07.14 02:15:26 | 000,157,696 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\iasnap.dll
[2009.07.14 00:28:50 | 000,113,664 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\IcCoinstall.dll
[2009.07.14 02:15:27 | 000,215,040 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\icm32.dll
[2009.07.14 02:15:27 | 000,045,056 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\IDStore.dll
[File Corrupted - Detail Data unreadable] Unable to obtain MD5 -- C:\Windows\system32\ig4icd32.dll
[2009.07.14 02:06:08 | 000,084,480 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\INETRES.dll
[2009.07.14 02:15:32 | 000,216,064 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\InkEd.dll
[2009.07.14 02:15:33 | 000,757,760 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\ipsecsnp.dll
[2009.07.14 02:15:34 | 000,200,192 | ---- | M] (Intel Corporation.) Unable to obtain MD5 -- C:\Windows\system32\ir50_qc.dll
[File Corrupted - Detail Data unreadable] Unable to obtain MD5 -- C:\Windows\system32\iscsilog.dll
[File Corrupted - Detail Data unreadable] Unable to obtain MD5 -- C:\Windows\system32\itircl.dll
[2009.07.14 02:06:13 | 000,006,144 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\kbd101a.dll
[2009.07.14 02:06:13 | 000,007,168 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\KBDGRLND.DLL
[2009.07.14 02:06:14 | 000,005,632 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\KBDMAORI.DLL
[2009.07.14 02:06:14 | 000,006,656 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\KBDSL.DLL
[2009.07.14 02:06:14 | 000,006,144 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\KBDYBA.DLL
[2009.07.14 02:06:14 | 000,007,680 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\KBDYCL.DLL
[2009.07.14 02:15:36 | 000,031,744 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\lltdapi.dll
[2009.07.14 02:15:36 | 000,226,816 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\LocationApi.dll
[2009.07.14 02:15:36 | 000,069,632 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\loghours.dll
[2009.07.14 02:15:37 | 000,023,040 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\mciwave.dll
[2009.07.14 02:15:38 | 000,205,824 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\mdminst.dll
[2011.02.19 22:03:12 | 004,422,992 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\mfc100u.dll
[2011.02.19 22:03:12 | 000,081,744 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\mfcm100u.dll
[2009.07.14 02:15:39 | 000,609,280 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\MFWMAAEC.DLL
[2009.07.14 02:15:42 | 000,152,064 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\msclmd.dll
[2009.07.14 02:15:43 | 000,085,504 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\msctfui.dll
[2009.07.14 02:15:43 | 000,578,560 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\msdtcprx.dll
[2009.07.14 02:15:43 | 001,066,496 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\msdtctm.dll
[File Corrupted - Detail Data unreadable] Unable to obtain MD5 -- C:\Windows\system32\msmpeg2vdec.dll
[2009.07.14 02:15:47 | 000,368,640 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\mspbde40.dll
[2009.07.14 02:15:48 | 000,017,408 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\msswch.dll
[2011.02.19 22:03:12 | 000,421,200 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\msvcp100.dll
[2011.02.18 23:40:50 | 000,773,968 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\msvcr100.dll
[2009.07.14 02:15:52 | 000,454,656 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\msxbde40.dll
[2009.07.14 02:15:52 | 000,006,656 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\mtxex.dll
[2009.07.14 02:16:02 | 000,078,336 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\nci.dll
[2009.07.14 02:16:02 | 000,093,696 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\negoexts.dll
[2009.07.14 02:16:02 | 000,161,792 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\netjoin.dll
[2009.07.14 02:16:03 | 001,114,624 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\NetProjW.dll
[2009.07.14 02:16:03 | 000,134,144 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\nlhtml.dll
[2009.07.14 02:16:04 | 002,609,664 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\NlsData0001.dll
[2009.07.14 02:16:08 | 001,977,856 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\NlsData0018.dll
[File Corrupted - Detail Data unreadable] Unable to obtain MD5 -- C:\Windows\system32\NlsData0019.dll
[2009.07.14 02:16:09 | 003,116,544 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\NlsData004c.dll
[2009.07.14 02:08:28 | 011,722,752 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\NlsLexicons0001.dll
[2012.10.04 19:48:47 | 000,821,736 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\npDeployJava1.dll
[2009.07.14 02:16:11 | 000,537,600 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\objsel.dll
[2009.07.14 02:16:11 | 000,122,880 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\odbccp32.dll
[2009.07.14 02:16:12 | 000,028,672 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\olesvr32.dll
[2009.06.10 22:14:56 | 000,101,768 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
[2009.07.14 02:09:28 | 000,017,408 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\prflbmsg.dll
[2009.07.14 02:16:12 | 000,032,768 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\PrintIsolationProxy.dll
[2009.07.14 02:19:03 | 000,052,816 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\PSHED.DLL
[2012.05.27 01:36:06 | 000,055,808 | --S- | M] (Open Source Software community LGPL) Unable to obtain MD5 -- C:\Windows\system32\pthreadVC2.dll
[2009.07.14 02:09:35 | 000,733,184 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\qedwipes.dll
[2009.07.14 02:16:12 | 000,045,056 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\rasmbmgr.dll
[2009.07.14 02:16:13 | 000,826,368 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\rdpcore.dll
[2009.07.14 02:16:13 | 000,057,856 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\rdpwsx.dll
[2009.07.14 02:16:14 | 000,061,952 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\spbcd.dll
[2009.07.14 02:16:12 | 000,121,344 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\sppc.dll
[2009.07.14 02:16:15 | 000,974,336 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\sppobjs.dll
[2009.07.14 02:16:15 | 000,351,744 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\spwizeng.dll
[2009.07.14 02:16:15 | 000,189,440 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\sqmapi.dll
[2009.07.14 02:16:15 | 000,302,592 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\SrpUxNativeSnapIn.dll
[2009.07.14 02:16:15 | 000,122,368 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\sti_ci.dll
[2009.07.14 02:16:15 | 000,053,248 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\TabbtnEx.dll
[2009.07.14 02:16:17 | 000,059,392 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\unimdmat.dll
[2009.07.14 02:16:17 | 000,196,096 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\vaultsvc.dll
[2009.07.14 00:28:43 | 000,116,224 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\VmbusCoinstaller.dll
[2009.07.14 00:28:53 | 000,047,616 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\vmictimeprovider.dll
[2009.07.14 02:07:52 | 000,037,888 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\vmstorfltres.dll
[2009.07.14 02:16:17 | 000,237,056 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\vpnike.dll
[2009.07.14 02:16:18 | 000,994,816 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\wcnwiz.dll
[2009.07.14 02:16:18 | 000,377,856 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\wer.dll
[2009.07.14 02:16:18 | 000,160,256 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\werui.dll
[2009.07.14 02:16:19 | 000,296,960 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\WinSync.dll
[2009.07.14 02:16:19 | 000,081,408 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\wlanapi.dll
[2009.07.14 02:16:19 | 000,410,112 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\wlanui.dll
[2009.07.14 02:16:19 | 000,616,960 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\wmdrmsdk.dll
[2009.07.14 02:16:19 | 000,182,272 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\wmpsrcwp.dll
[2009.07.14 02:16:20 | 000,048,128 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\wscapi.dll
[2009.07.14 02:16:20 | 000,010,752 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\wshirda.dll
[2009.07.14 02:16:20 | 000,248,832 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\WSManMigrationPlugin.dll
[2009.07.14 02:16:20 | 000,145,920 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\WsmAuto.dll
[2009.07.14 02:16:21 | 000,163,328 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\Wwanadvui.dll
[2007.10.22 02:37:16 | 000,017,928 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\X3DAudio1_2.dll
[2009.03.16 13:18:32 | 000,022,360 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\X3DAudio1_6.dll
[2007.10.22 02:39:54 | 000,267,272 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\xactengine2_10.dll
[2006.07.28 08:30:32 | 000,236,824 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\xactengine2_3.dll
[2006.12.08 11:02:00 | 000,251,672 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\xactengine2_5.dll
[2008.07.31 09:41:54 | 000,238,088 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\xactengine3_2.dll
[2008.10.27 09:04:16 | 000,235,856 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\xactengine3_3.dll
[2009.03.16 13:18:32 | 000,235,352 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\xactengine3_4.dll
[2010.02.04 09:01:14 | 000,238,936 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\xactengine3_6.dll
[2008.07.31 09:41:52 | 000,068,616 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\XAPOFX1_1.dll
[2008.10.27 09:04:14 | 000,070,992 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\XAPOFX1_2.dll
[2008.05.30 13:19:18 | 000,507,400 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\XAudio2_1.dll
[2009.03.16 13:18:32 | 000,517,448 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\XAudio2_4.dll
[2010.02.04 09:01:14 | 000,528,216 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\XAudio2_6.dll
[2009.07.14 02:16:21 | 000,601,600 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\XpsFilt.dll
[2009.07.14 02:16:21 | 000,354,816 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\xwizards.dll
< %systemroot%\Tasks\*.job /lockedfiles >
< %systemroot%\system32\drivers\*.sys /lockedfiles >
[File Corrupted - Detail Data unreadable] Unable to obtain MD5 -- C:\Windows\system32\drivers\1394ohci.sys
[2009.07.14 02:26:15 | 000,159,312 | ---- | M] (AMD Technologies Inc.) Unable to obtain MD5 -- C:\Windows\system32\drivers\amdsbs.sys
[2014.11.06 17:42:47 | 000,070,384 | ---- | M] (AVAST Software) Unable to obtain MD5 -- C:\Windows\system32\drivers\aswmonflt.sys
[2014.11.06 17:41:43 | 000,049,944 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\aswRvrt.sys
[2009.07.13 23:53:32 | 000,062,336 | ---- | M] (Brother Industries Ltd.) Unable to obtain MD5 -- C:\Windows\system32\drivers\BrSerWdm.sys
[2009.07.13 23:53:33 | 000,011,904 | ---- | M] (Brother Industries Ltd.) Unable to obtain MD5 -- C:\Windows\system32\drivers\BrUsbSer.sys
[2009.07.13 23:02:48 | 003,100,160 | ---- | M] (Broadcom Corporation) Unable to obtain MD5 -- C:\Windows\system32\drivers\evbdx.sys
[2009.07.14 00:51:01 | 000,055,808 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\drivers\hidclass.sys
[2009.07.14 00:45:57 | 000,018,432 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\drivers\mcd.sys
[2009.07.14 02:19:04 | 001,383,488 | ---- | M] (QLogic Corporation) Unable to obtain MD5 -- C:\Windows\system32\drivers\ql2300.sys
[2009.07.14 02:19:04 | 000,077,888 | ---- | M] (Silicon Integrated Systems) Unable to obtain MD5 -- C:\Windows\system32\drivers\sisraid4.sys
[2009.07.14 02:19:10 | 000,175,824 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\drivers\vmbus.sys
[2009.07.14 02:19:11 | 000,141,904 | ---- | M] (VIA Technologies Inc.,Ltd) Unable to obtain MD5 -- C:\Windows\system32\drivers\vsmraid.sys
< %systemroot%\System32\config\*.sav >
< %systemroot%\system32\*.dll /lockedfiles >
[2009.07.14 02:14:52 | 000,744,448 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\ActionCenter.dll
[2009.07.14 02:14:52 | 000,178,688 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\ActionQueue.dll
[2009.07.14 02:14:53 | 001,739,776 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\apds.dll
[2009.07.14 02:14:53 | 000,029,696 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\Apphlpdm.dll
[2009.07.14 02:14:59 | 000,062,464 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\bderepair.dll
[2009.07.14 02:15:00 | 000,743,424 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\blackbox.dll
[2009.07.14 02:15:03 | 000,058,880 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\clfsw32.dll
[2009.07.14 02:15:03 | 000,086,016 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\cliconfg.dll
[2009.07.14 02:15:04 | 000,484,352 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\cmdial32.dll
[2009.07.14 02:15:04 | 000,068,608 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\cmifw.dll
[2009.07.14 02:15:07 | 000,066,048 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\correngine.dll
[2009.07.14 02:15:07 | 000,161,792 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\d3d10_1.dll
[2007.03.12 15:42:30 | 001,123,696 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\D3DCompiler_33.dll
[2007.10.12 14:14:00 | 001,374,232 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\D3DCompiler_36.dll
[2008.05.30 13:11:46 | 001,491,992 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\D3DCompiler_38.dll
[2009.03.09 14:27:22 | 001,846,632 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\D3DCompiler_41.dll
[2010.05.26 10:41:02 | 002,106,216 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\D3DCompiler_43.dll
[2007.03.15 15:57:58 | 000,443,752 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\d3dx10_33.dll
[2008.05.30 13:11:46 | 000,467,984 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\d3dx10_38.dll
[2010.05.26 10:41:02 | 000,470,880 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\d3dx10_43.dll
[2010.05.26 10:41:02 | 000,248,672 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\d3dx11_43.dll
[2005.02.05 18:45:26 | 002,222,800 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\d3dx9_24.dll
[2005.05.26 14:34:52 | 002,297,552 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\d3dx9_26.dll
[2005.12.05 17:09:18 | 002,323,664 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\d3dx9_28.dll
[2006.09.28 15:05:20 | 002,414,360 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\d3dx9_31.dll
[2007.03.12 15:42:30 | 003,495,784 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\d3dx9_33.dll
[2007.07.19 17:14:42 | 003,727,720 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\d3dx9_35.dll
[2008.03.05 14:56:58 | 003,786,760 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\D3DX9_37.dll
[2008.07.10 10:00:58 | 003,851,784 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\D3DX9_39.dll
[2008.10.10 03:52:38 | 004,379,984 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\D3DX9_40.dll
[2010.05.26 10:41:02 | 001,998,168 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\D3DX9_43.dll
[2012.10.04 19:48:47 | 000,746,984 | ---- | M] (Oracle Corporation) Unable to obtain MD5 -- C:\Windows\system32\deployJava1.dll
[2009.07.14 02:15:12 | 000,055,296 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\dot3hc.dll
[2009.07.14 02:15:20 | 000,076,800 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\fdSSDP.dll
[2012.10.17 03:04:24 | 000,580,712 | ---- | M] (Hewlett-Packard Co.) Unable to obtain MD5 -- C:\Windows\system32\HPDiscoPMB611.dll
[2012.10.17 21:34:59 | 001,979,280 | ---- | M] (Hewlett-Packard Co.) Unable to obtain MD5 -- C:\Windows\system32\HPScanTRDrv_DJ5520.dll
[2009.07.14 02:15:26 | 000,191,488 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\iassam.dll
[2011.02.11 17:51:10 | 011,039,744 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\ig4icd32.dll
[2011.02.11 17:35:00 | 000,147,456 | ---- | M] (Intel Corporation) Unable to obtain MD5 -- C:\Windows\system32\iglhcp32.dll
[2009.07.14 02:06:13 | 000,006,144 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\KBDBE.DLL
[2009.07.14 02:06:14 | 000,005,632 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\KBDINHIN.DLL
[2009.07.14 02:06:14 | 000,009,216 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\kbdnecat.dll
[2009.07.14 02:06:14 | 000,006,144 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\KBDSYR2.DLL
[2009.07.14 02:15:35 | 000,004,608 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\ksuser.dll
[2013.10.26 20:30:22 | 001,704,448 | --S- | M] (The OpenSSL Project, http://www.openssl.org/) Unable to obtain MD5 -- C:\Windows\system32\libeay32.dll
[2009.07.14 02:06:22 | 000,002,560 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\lz32.dll
[2009.07.14 02:15:37 | 000,036,352 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\mciqtz32.dll
[2011.02.19 22:03:12 | 000,081,744 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\mfcm100u.dll
[2009.07.14 02:15:41 | 000,304,128 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\mmcbase.dll
[2009.07.14 02:15:46 | 000,265,216 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\msnetobj.dll
[2009.07.14 02:15:47 | 000,504,320 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\msscp.dll
[2009.07.14 02:15:51 | 000,296,960 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\mswmdm.dll
[2009.07.14 02:16:02 | 000,152,064 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\ncsi.dll
[2009.07.14 02:16:02 | 000,165,888 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\netiohlp.dll
[2009.07.14 02:16:12 | 000,020,480 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\odfox32.dll
[2009.07.14 02:09:15 | 000,004,096 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\oleaccrc.dll
[2009.07.14 02:16:12 | 000,138,240 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\PortableDeviceWiaCompat.dll
[2009.07.14 02:16:12 | 000,025,088 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\printfilterpipelineprxy.dll
[2009.07.14 02:16:14 | 000,428,544 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\shwebsvc.dll
[2009.07.14 02:16:15 | 000,974,336 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\sppobjs.dll
[2013.10.26 20:30:22 | 000,364,544 | --S- | M] (The OpenSSL Project, http://www.openssl.org/) Unable to obtain MD5 -- C:\Windows\system32\ssleay32.dll
[2009.07.14 02:16:15 | 000,061,440 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\tcpmonui.dll
[2009.07.14 02:16:15 | 002,157,056 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\themecpl.dll
[2008.09.04 19:17:02 | 000,447,752 | R--- | M] (On2.com) Unable to obtain MD5 -- C:\Windows\system32\vp6vfw.dll
[2009.07.14 02:16:18 | 000,994,816 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\wcnwiz.dll
[2009.07.14 02:11:04 | 000,669,184 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\WFSR.dll
[2009.07.14 02:16:19 | 000,296,960 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\WinSync.dll
[2009.07.14 02:16:19 | 000,173,056 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\WinSyncMetastore.dll
[2009.07.14 02:16:19 | 000,158,208 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\WLanHC.dll
[2009.07.14 02:16:20 | 000,308,736 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\Wpc.dll
[2012.06.02 23:19:33 | 000,045,080 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\wups2.dll
[2012.06.02 14:19:42 | 000,171,904 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\wuwebv.dll
[2006.02.03 07:42:06 | 000,230,096 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\xactengine2_0.dll
[2006.03.31 11:39:48 | 000,229,584 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\xactengine2_1.dll
[2006.12.08 11:02:00 | 000,251,672 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\xactengine2_5.dll
[2007.04.04 17:55:00 | 000,261,480 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\xactengine2_7.dll
[2008.05.30 13:18:52 | 000,238,088 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\xactengine3_1.dll
[2008.10.27 09:04:16 | 000,235,856 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\xactengine3_3.dll
[2009.09.04 16:44:40 | 000,238,936 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\xactengine3_5.dll
[2008.07.31 09:41:52 | 000,068,616 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\XAPOFX1_1.dll
[2010.06.02 03:55:30 | 000,074,072 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\XAPOFX1_5.dll
[2008.05.30 13:19:18 | 000,507,400 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\XAudio2_1.dll
[2008.10.27 09:04:18 | 000,514,384 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\XAudio2_3.dll
[2009.09.04 16:44:40 | 000,515,416 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\XAudio2_5.dll
[2010.06.02 03:55:30 | 000,527,192 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\XAudio2_7.dll
< %systemroot%\system32\drivers\*.sys /3 >
[2014.11.06 17:41:43 | 000,024,184 | ---- | M] () -- C:\Windows\system32\drivers\aswHwid.sys
[2014.11.06 17:42:47 | 000,070,384 | ---- | M] (AVAST Software) -- C:\Windows\system32\drivers\aswmonflt.sys
[2014.11.06 17:41:43 | 000,081,768 | ---- | M] (AVAST Software) -- C:\Windows\system32\drivers\aswRdr2.sys
[2014.11.06 17:41:43 | 000,049,944 | ---- | M] () -- C:\Windows\system32\drivers\aswRvrt.sys
[2014.11.06 17:42:47 | 000,787,800 | ---- | M] (AVAST Software) -- C:\Windows\system32\drivers\aswsnx.sys
[2014.11.06 17:41:43 | 000,422,760 | ---- | M] (AVAST Software) -- C:\Windows\system32\drivers\aswSP.sys
[2014.11.06 17:41:43 | 000,091,496 | ---- | M] (AVAST Software) -- C:\Windows\system32\drivers\aswStm.sys
[2014.11.06 17:41:43 | 000,206,248 | ---- | M] () -- C:\Windows\system32\drivers\aswVmm.sys
< %systemroot%\system32\*.* /3 >
[2014.11.06 17:41:43 | 000,291,352 | ---- | M] (AVAST Software) -- C:\Windows\system32\aswBoot.exe
< %SYSTEMDRIVE%\*.exe >
< >
< HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s >
< reg query "HKLM\Software\Microsoft\Windows NT\CurrentVersion\winlogon" /v GinaDLL /c >
< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv" /v ImagePath /c >
HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\SERVICES\WUAUSERV
IMAGEPATH REG_EXPAND_SZ %systemroot%\system32\svchost.exe -k netsvcs
< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS" /v ImagePath /c >
HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\SERVICES\BITS
IMAGEPATH REG_EXPAND_SZ %SystemRoot%\System32\svchost.exe -k netsvcs
< >
< type c:\boot.ini >> test.txt /c >
< %SystemDrive%\PhysicalMBR.bin /md5 >
[2014.11.06 18:05:34 | 000,000,512 | ---- | M] () MD5=C9202EDB26D666F995171C8576DC8F3F -- C:\PhysicalMBR.bin
< >
< *crack* /s >
[2014.05.12 09:14:38 | 006,988,025 | ---- | M] () -- \Users\anetqua\Downloads\Adobe_Illustrator_CS5.1_CRACK.zip
[2013.08.19 21:28:34 | 003,143,148 | ---- | M] () -- \Users\anetqua\Downloads\Crack-na-age-of-empires-3.rar
[2012.09.17 21:48:04 | 1262,385,962 | ---- | M] () -- \Users\anetqua\Downloads\FULL-Adobe-Photoshop-CS5-+-100%-working-crack-&-ČEŠTINA-+-návod.rar
[2014.03.24 09:09:50 | 004,944,747 | ---- | M] () -- \Users\anetqua\Downloads\Simisims3-TS3-Domácí-Mazlíčci-Crack.rar
[2012.04.12 21:32:25 | 000,315,178 | ---- | M] () -- \Users\anetqua\Downloads\FULL Adobe Photoshop CS5 + 100% working crack & ČEŠTINA + návod\Adobe Photoshop CS5.1 - CRACK - 32bit&64bit\ADBE_CRACK - 32bit.rar
[2012.04.12 21:32:24 | 000,377,747 | ---- | M] () -- \Users\anetqua\Downloads\FULL Adobe Photoshop CS5 + 100% working crack & ČEŠTINA + návod\Adobe Photoshop CS5.1 - CRACK - 32bit&64bit\ADBE_CRACK - 64bit.rar
[2014.02.22 14:16:38 | 000,395,744 | ---- | M] () -- \Users\anetqua\Pictures\2014-upravene\BILLYSHOP\grafiky\pitbul\american-flag-cracked.jpg
[2011.01.14 17:31:04 | 000,000,156 | ---- | M] () -- \Users\Public\StarStableOnline\Data\Cracked_wall.pmt
[2013.04.02 15:52:50 | 000,005,753 | ---- | M] () -- \Users\Public\StarStableOnline\Data\Cracked_wall.pte
[2011.01.14 17:31:04 | 000,000,162 | ---- | M] () -- \Users\Public\StarStableOnline\Data\Cracked_wall_2.pmt
[2013.04.02 15:52:50 | 000,005,757 | ---- | M] () -- \Users\Public\StarStableOnline\Data\Cracked_wall_2.pte
[2013.01.15 19:00:20 | 000,000,186 | ---- | M] () -- \Users\Public\StarStableOnline\Data\CrackEffectTexture1.pmt
[2013.01.15 19:37:42 | 000,022,180 | ---- | M] () -- \Users\Public\StarStableOnline\Data\CrackEffectTexture1.pte
[2013.01.15 18:59:18 | 000,000,168 | ---- | M] () -- \Users\Public\StarStableOnline\Data\CrackTexture1.pmt
[2013.01.15 18:59:18 | 000,087,664 | ---- | M] () -- \Users\Public\StarStableOnline\Data\CrackTexture1.pte
[2013.01.15 19:15:16 | 000,000,168 | ---- | M] () -- \Users\Public\StarStableOnline\Data\CrackTexture2.pmt
[2013.08.22 10:44:14 | 000,087,644 | ---- | M] () -- \Users\Public\StarStableOnline\Data\CrackTexture2.pte
[2013.08.20 11:31:14 | 000,000,165 | ---- | M] () -- \Users\Public\StarStableOnline\Data\DialogIcon_PandorianCrack.pmt
[2013.08.20 11:31:14 | 000,065,797 | ---- | M] () -- \Users\Public\StarStableOnline\Data\DialogIcon_PandorianCrack.pte
[2011.12.26 18:12:42 | 000,152,882 | ---- | M] () -- \Users\Public\StarStableOnline\Data\Fireworks_Crackers.pso
[2013.07.12 13:53:42 | 000,006,303 | ---- | M] () -- \Users\Public\StarStableOnline\Data\FO_Cracks.pxo
[2013.01.15 18:59:18 | 000,054,639 | ---- | M] () -- \Users\Public\StarStableOnline\Data\MysticValleyCrack1.pme
[2013.01.15 19:37:42 | 000,001,005 | ---- | M] () -- \Users\Public\StarStableOnline\Data\MysticValleyCrack1_Effect.pme
[2013.01.15 19:05:58 | 000,030,143 | ---- | M] () -- \Users\Public\StarStableOnline\Data\MysticValleyCrack1_Effect2.pme
[2013.01.15 19:37:46 | 000,002,145 | ---- | M] () -- \Users\Public\StarStableOnline\Data\MysticValleyCrack1_Effect3.pme
[2013.08.22 10:44:14 | 000,075,055 | ---- | M] () -- \Users\Public\StarStableOnline\Data\MysticValleyCrack2.pme
[2013.07.12 13:28:20 | 000,004,133 | ---- | M] () -- \Users\Public\StarStableOnline\Data\MysticValleyCrack2_Lod.pme
[2013.01.15 19:23:48 | 000,004,955 | ---- | M] () -- \Users\Public\StarStableOnline\Data\MysticValleyCrack_Col.pco
< *keygen* /s >
[2014.03.25 20:35:20 | 000,001,623 | ---- | M] () -- \ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2010 Pro Plus x64 & x86 Activator and Keygen\Microsoft Office 2010 Pro Plus x64 & x86 Activator and Keygen.lnk
[2014.03.25 20:35:20 | 000,001,623 | ---- | M] () -- \Users\All Users\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2010 Pro Plus x64 & x86 Activator and Keygen\Microsoft Office 2010 Pro Plus x64 & x86 Activator and Keygen.lnk
[2014.03.25 20:32:46 | 019,189,530 | ---- | M] () -- \Users\anetqua\Downloads\Microsoft-Office-2010-Pro-Plus-x64-&-x86-Activator-and-Keygen.zip
[2014.03.25 20:33:38 | 018,806,257 | ---- | M] () -- \Users\anetqua\Downloads\office 2010 activator\Microsoft Office 2010 Pro Plus x64 & x86 Activator and Keygen.exe
< *AntiWPA* /s >
< *loader* /s >
[2011.03.02 20:35:42 | 005,299,048 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS5.1\Photodownloader.exe
[2011.03.02 17:57:10 | 000,011,161 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS5.1\apd\shared_assets\bitmaps\main_window\C_LoadError.png
[2011.03.02 17:57:10 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS5.1\apd\shared_assets\locales\da_dk\Photodownloader.ini
[2011.03.02 17:57:10 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS5.1\apd\shared_assets\locales\de_de\Photodownloader.ini
[2011.03.02 17:57:10 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS5.1\apd\shared_assets\locales\en_us\Photodownloader.ini
[2011.03.02 17:57:10 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS5.1\apd\shared_assets\locales\es_es\Photodownloader.ini
[2011.03.02 17:57:10 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS5.1\apd\shared_assets\locales\fi_fi\Photodownloader.ini
[2011.03.02 17:57:12 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS5.1\apd\shared_assets\locales\fr_fr\Photodownloader.ini
[2011.03.02 17:57:12 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS5.1\apd\shared_assets\locales\it_it\Photodownloader.ini
[2011.03.02 17:57:12 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS5.1\apd\shared_assets\locales\ja_jp\Photodownloader.ini
[2011.03.02 17:57:12 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS5.1\apd\shared_assets\locales\ko_kr\Photodownloader.ini
[2011.03.02 17:57:12 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS5.1\apd\shared_assets\locales\nl_nl\Photodownloader.ini
[2011.03.02 17:57:12 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS5.1\apd\shared_assets\locales\no_no\Photodownloader.ini
[2011.03.02 17:57:12 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS5.1\apd\shared_assets\locales\pt_br\Photodownloader.ini
[2011.03.02 17:57:12 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS5.1\apd\shared_assets\locales\sv_se\Photodownloader.ini
[2011.03.02 17:57:14 | 000,000,308 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS5.1\apd\shared_assets\locales\zh_cn\Photodownloader.ini
[2011.03.02 17:57:14 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS5.1\apd\shared_assets\locales\zh_tw\Photodownloader.ini
[2012.02.23 00:45:00 | 000,078,336 | ---- | M] () -- \Program Files\Adobe\Adobe Photoshop Lightroom 4\Support\DynamicLinkMediaServer\dynamiclinkmediaserver\1.0\MXF_SDK_MetaMetadata_BinaryLoader_4.4.3.dll
[2012.02.23 00:45:00 | 000,155,136 | ---- | M] () -- \Program Files\Adobe\Adobe Photoshop Lightroom 4\Support\DynamicLinkMediaServer\dynamiclinkmediaserver\1.0\MXF_SDK_MetaMetadata_XSDLoader2_4.4.3.dll
[2012.02.23 00:45:00 | 000,117,248 | ---- | M] () -- \Program Files\Adobe\Adobe Photoshop Lightroom 4\Support\DynamicLinkMediaServer\dynamiclinkmediaserver\1.0\MXF_SDK_MetaMetadata_XSDLoader_4.4.3.dll
[2014.11.06 17:41:41 | 000,072,480 | ---- | M] () -- \Program Files\AVAST Software\Avast\aswWrcIELoader32.exe
[2010.03.24 19:12:34 | 000,249,680 | ---- | M] () -- \Program Files\Common Files\microsoft shared\VSTO\10.0\VSTOLoader.dll
[2010.03.24 19:12:34 | 000,018,264 | ---- | M] () -- \Program Files\Common Files\microsoft shared\VSTO\10.0\1033\VSTOLoaderUI.dll
[2009.10.06 05:08:30 | 000,145,082 | ---- | M] () -- \Program Files\HP\HP Deskjet 5520 series\Bin\HelpViewer\Resources\Loader.gif
[2008.02.25 07:05:22 | 000,856,064 | ---- | M] () -- \Program Files\The KMPlayer\ImLoader.dll
[2011.12.06 12:06:24 | 000,429,568 | ---- | M] () -- \Program Files\Zoner\Photo Studio 14\Plugins\Facebook\ZPSFacebookUploader.exe
[2010.04.29 13:12:40 | 000,053,640 | ---- | M] () -- \Program Files\Zoner\Photo Studio 14\Plugins\Facebook\ZPSPluginLoader.exe
[2011.12.06 12:06:40 | 000,444,416 | ---- | M] () -- \Program Files\Zoner\Photo Studio 14\Plugins\Flickr\ZPSFlickrUploader.exe
[2010.04.29 13:12:42 | 000,053,640 | ---- | M] () -- \Program Files\Zoner\Photo Studio 14\Plugins\Flickr\ZPSPluginLoader.exe
[2011.03.08 16:09:04 | 000,194,048 | ---- | M] () -- \Program Files\Zoner\Photo Studio 14\Plugins\Picasa\ZPSPicasaUploader.exe
[2010.04.29 13:12:40 | 000,053,640 | ---- | M] () -- \Program Files\Zoner\Photo Studio 14\Plugins\Picasa\ZPSPluginLoader.exe
[2011.12.19 15:12:24 | 000,102,792 | ---- | M] () -- \Program Files\Zoner\Photo Studio 14\Program32\8bfLoader.exe
[2011.12.19 15:12:36 | 000,016,776 | ---- | M] () -- \Program Files\Zoner\Photo Studio 14\Program32\WICLoader.exe
[2012.09.13 14:45:58 | 000,058,424 | ---- | M] () -- \Users\Anetka 1\AppData\Roaming\Seznam.cz\bin\libfoxloader.dll
[2012.08.07 13:39:12 | 000,000,165 | ---- | M] () -- \Users\Anetka 1\AppData\Roaming\Seznam.cz\conf\szndesktop.d\libfoxloader.conf
[2012.08.13 18:05:28 | 000,000,235 | ---- | M] () -- \Users\Anetka 1\AppData\Roaming\Seznam.cz\uninstall\cz_seznam_software_libfoxloader_3_0_0.install.bat
[2012.08.13 18:05:26 | 000,000,130 | ---- | M] () -- \Users\Anetka 1\AppData\Roaming\Seznam.cz\uninstall\cz_seznam_software_libfoxloader_3_0_0.uninstall.bat
[2014.07.01 10:46:16 | 000,072,638 | ---- | M] () -- \Users\anetqua\AppData\Local\Skype\Apps\login\images\loader.gif
[2014.07.01 10:46:16 | 000,003,032 | ---- | M] () -- \Users\anetqua\AppData\Local\Skype\Apps\login\images\loader.png
[2014.07.01 10:46:16 | 000,006,012 | ---- | M] () -- \Users\anetqua\AppData\Local\Skype\Apps\login\images\normal\loader_15fps.gif
[2014.07.01 10:46:16 | 000,021,956 | ---- | M] () -- \Users\anetqua\AppData\Local\Skype\Apps\login\images\normal\loader_30fps.gif
[2014.07.01 10:46:16 | 000,009,772 | ---- | M] () -- \Users\anetqua\AppData\Local\Skype\Apps\login\images\retina\loader@2x.png
[2009.07.14 02:03:49 | 000,003,584 | -H-- | M] () -- \Users\anetqua\AppData\Local\Temp\api-ms-win-core-libraryloader-l1-1-0.dll
[2009.07.14 02:15:12 | 000,038,400 | ---- | M] () -- \Users\anetqua\AppData\Local\Temp\dmloader.dll
[5 \Users\anetqua\AppData\Local\Temp\*.tmp files -> \Users\anetqua\AppData\Local\Temp\*.tmp -> ]
[2013.03.27 14:26:04 | 000,000,169 | ---- | M] () -- \Users\anetqua\Documents\aaa-e-shop\E-shop\šperky\Řetízek ZARPA_files\imagepreloader.js
[2014.11.06 17:42:58 | 000,010,154 | ---- | M] () -- \Windows\Prefetch\ASWWRCIELOADER32.EXE-BB2E4DE4.pf
[2009.07.14 02:03:49 | 000,003,584 | -H-- | M] () -- \Windows\System32\api-ms-win-core-libraryloader-l1-1-0.dll
[2009.07.14 02:15:12 | 000,038,400 | ---- | M] () -- \Windows\System32\dmloader.dll
[2009.07.14 05:54:01 | 000,003,532 | ---- | M] () -- \Windows\System32\Tasks\Microsoft\Windows\WindowsColorSystem\Calibration Loader
[2012.09.16 15:42:16 | 000,002,883 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_3318c4cd5e5d0f86.manifest
[2012.09.16 15:42:16 | 000,034,896 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_3318c4cd5e5d0f86_winload.exe.mui_3bc5b827
[2012.09.16 15:42:16 | 000,030,272 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_3318c4cd5e5d0f86_winresume.exe.mui_ff8b5358
[2009.07.14 05:56:40 | 000,002,883 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_en-us_766f102945576be4.manifest
[2009.07.14 05:56:40 | 000,033,344 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_en-us_766f102945576be4_winload.exe.mui_3bc5b827
[2009.07.14 05:56:40 | 000,029,776 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_en-us_766f102945576be4_winresume.exe.mui_ff8b5358
[2009.07.14 03:17:55 | 000,004,225 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7600.16385_none_5afd1055cdfa75b9.manifest
[2009.07.14 03:17:55 | 000,507,568 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7600.16385_none_5afd1055cdfa75b9_winload.exe_75835076
[2009.07.14 03:17:55 | 000,442,920 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7600.16385_none_5afd1055cdfa75b9_winresume.exe_85cd1215
[2009.07.14 03:17:38 | 000,002,894 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-s..ive-blackbox-loader_31bf3856ad364e35_6.1.7600.16385_none_6b097e5cb26f7a23.manifest
[2009.07.14 03:17:38 | 000,017,472 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-s..ive-blackbox-loader_31bf3856ad364e35_6.1.7600.16385_none_6b097e5cb26f7a23_spldr.sys_98bd87a0
[2009.07.13 17:54:50 | 000,002,883 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_3318c4cd5e5d0f86.manifest
[2009.07.14 03:29:12 | 000,002,883 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_en-us_766f102945576be4.manifest
[2009.07.14 02:47:46 | 000,004,225 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7600.16385_none_5afd1055cdfa75b9.manifest
[2009.07.14 02:52:31 | 000,002,894 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-s..ive-blackbox-loader_31bf3856ad364e35_6.1.7600.16385_none_6b097e5cb26f7a23.manifest
[2009.07.14 02:15:12 | 000,038,400 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-audio-dmusic_31bf3856ad364e35_6.1.7600.16385_none_45ca7214f0f664cb\dmloader.dll
[2009.07.14 02:03:49 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.16385_none_0a884619dd2388ad\api-ms-win-core-libraryloader-l1-1-0.dll
< *minodlogin* /s >
< *tnod* /s >
< *AutoKMS* /s >
[2014.03.25 20:45:37 | 000,000,161 | ---- | M] () -- \Windows\AutoKMS.ini
< *activator* /s >
[2014.03.25 20:35:20 | 000,001,623 | ---- | M] () -- \ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2010 Pro Plus x64 & x86 Activator and Keygen\Microsoft Office 2010 Pro Plus x64 & x86 Activator and Keygen.lnk
[2014.03.25 20:35:20 | 000,001,623 | ---- | M] () -- \Users\All Users\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2010 Pro Plus x64 & x86 Activator and Keygen\Microsoft Office 2010 Pro Plus x64 & x86 Activator and Keygen.lnk
[2014.03.25 20:32:46 | 019,189,530 | ---- | M] () -- \Users\anetqua\Downloads\Microsoft-Office-2010-Pro-Plus-x64-&-x86-Activator-and-Keygen.zip
[2014.03.25 20:33:38 | 018,806,257 | ---- | M] () -- \Users\anetqua\Downloads\office 2010 activator\Microsoft Office 2010 Pro Plus x64 & x86 Activator and Keygen.exe
< *serial* /s >
[2014.02.13 21:57:42 | 000,434,368 | ---- | M] () -- \Program Files\Microsoft Silverlight\5.1.30214.0\System.Runtime.Serialization.dll
[2014.04.26 20:10:19 | 001,164,288 | ---- | M] () -- \Program Files\Microsoft Silverlight\5.1.30214.0\System.Runtime.Serialization.ni.dll
[2013.04.17 18:43:42 | 000,005,687 | ---- | M] () -- \Program Files\PokerStars\gx\tokenserial.jpg
[2009.06.10 22:13:54 | 000,970,752 | ---- | M] () -- \Program Files\Reference Assemblies\Microsoft\Framework\v3.0\System.Runtime.Serialization.dll
[2009.06.08 09:38:48 | 000,090,112 | ---- | M] () -- \Program Files\Reference Assemblies\Microsoft\Framework\v3.0\cs\System.RunTime.Serialization.Resources.dll
[2013.08.19 20:17:00 | 000,015,399 | ---- | M] () -- \Qoobox\Quarantine\C\zoek_backup\C_Program Files_BitLord\Torrents\AGE OF EMPIRES III + SERIAL.torrent.vir
[2013.08.19 21:22:44 | 000,002,133 | ---- | M] () -- \Qoobox\Quarantine\C\zoek_backup\C_Program Files_BitLord\Torrents\AGE OF EMPIRES III + SERIAL.xml.vir
[2014.05.15 09:16:50 | 000,003,072 | ---- | M] () -- \Users\Anetka 1\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_eserial.cz_0.localstorage
[2014.05.15 09:16:50 | 000,003,608 | ---- | M] () -- \Users\Anetka 1\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_eserial.cz_0.localstorage-journal
[2014.01.31 20:53:41 | 000,003,072 | ---- | M] () -- \Users\anetqua\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_serialy.befun.cz_0.localstorage
[2014.01.31 20:53:41 | 000,000,512 | ---- | M] () -- \Users\anetqua\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_serialy.befun.cz_0.localstorage-journal
[2014.04.14 13:40:54 | 000,003,072 | ---- | M] () -- \Users\anetqua\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.serialzone.cz_0.localstorage
[2014.04.14 13:40:54 | 000,003,608 | ---- | M] () -- \Users\anetqua\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.serialzone.cz_0.localstorage-journal
[2014.10.28 12:55:50 | 002,076,672 | ---- | M] () -- \Users\anetqua\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.sledujuserialy.cz_0.localstorage
[2014.10.28 12:55:51 | 000,016,384 | ---- | M] () -- \Users\anetqua\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.sledujuserialy.cz_0.localstorage-journal
[2013.01.05 13:47:46 | 000,185,386 | ---- | M] () -- \Users\anetqua\Documents\___Haf&Mnau\2013\AAAA-2013\1\18-19_serial_zdravi psu.pdf
[1 \Users\anetqua\Documents\___Haf&Mnau\2013\AAAA-2013\BREZEN\*.tmp files -> \Users\anetqua\Documents\___Haf&Mnau\2013\AAAA-2013\BREZEN\*.tmp -> ]
[2013.01.05 13:46:00 | 000,192,937 | ---- | M] () -- \Users\anetqua\Downloads\18-19_serial_zdravi psu.pdf
[2011.08.08 15:34:04 | 000,000,153 | ---- | M] () -- \Users\Public\StarStableOnline\Data\SerialNr.pmt
[2011.08.08 15:33:42 | 000,001,690 | ---- | M] () -- \Users\Public\StarStableOnline\Data\SerialNr.pte
[2011.08.08 15:33:42 | 000,001,579 | ---- | M] () -- \Users\Public\StarStableOnline\Data\SerialNRPlate.pme
[2009.06.10 13:14:16 | 000,011,776 | ---- | M] () -- \Windows\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap.resources\2.0.0.0_cs_b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2009.06.10 22:23:19 | 000,131,072 | ---- | M] () -- \Windows\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap\2.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.dll
[2009.06.08 09:38:48 | 000,090,112 | ---- | M] () -- \Windows\assembly\GAC_MSIL\system.runtime.serialization.resources\3.0.0.0_cs_b77a5c561934e089\System.RunTime.Serialization.Resources.dll
[2009.06.10 22:13:54 | 000,970,752 | ---- | M] () -- \Windows\assembly\GAC_MSIL\System.Runtime.Serialization\3.0.0.0__b77a5c561934e089\System.Runtime.Serialization.dll
[2009.07.14 05:43:53 | 002,347,008 | ---- | M] () -- \Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Seri#\39e53f507d9cbc5c10a2f47c4b0d09dd\System.Runtime.Serialization.ni.dll
[2009.07.14 05:43:05 | 000,310,784 | ---- | M] () -- \Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Seri#\d57d865568209a71d63739fa448ed6df\System.Runtime.Serialization.Formatters.Soap.ni.dll
[2009.06.10 22:23:19 | 000,131,072 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v2.0.50727\System.Runtime.Serialization.Formatters.Soap.dll
[2009.06.10 13:14:16 | 000,011,776 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v2.0.50727\cs\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2009.06.10 22:14:06 | 000,970,752 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\System.Runtime.Serialization.dll
[2009.07.14 02:16:13 | 000,015,360 | ---- | M] () -- \Windows\System32\serialui.dll
[2009.07.13 17:38:14 | 000,005,120 | ---- | M] () -- \Windows\System32\cs-CZ\serialui.dll.mui
[2009.07.14 00:45:33 | 000,083,456 | ---- | M] () -- \Windows\System32\drivers\serial.sys
[2009.07.13 17:39:44 | 000,009,728 | ---- | M] () -- \Windows\System32\drivers\cs-CZ\serial.sys.mui
[2009.07.14 03:09:30 | 000,010,240 | ---- | M] () -- \Windows\System32\drivers\en-US\serial.sys.mui
[2009.07.13 23:13:45 | 001,068,032 | ---- | M] () -- \Windows\System32\DriverStore\FileRepository\mdmmotsm.inf_x86_neutral_c1415d9789c54b89\smserial.sys
[2009.07.14 00:45:33 | 000,083,456 | ---- | M] () -- \Windows\System32\DriverStore\FileRepository\msports.inf_x86_neutral_c1a802e06677f73f\serial.sys
[2009.07.13 23:09:18 | 000,031,232 | ---- | M] () -- \Windows\System32\DriverStore\FileRepository\smartcrd.inf_x86_neutral_63e72c669d043f14\grserial.sys
[2009.07.14 03:10:04 | 000,005,120 | ---- | M] () -- \Windows\System32\en-US\serialui.dll.mui
[2009.07.14 03:18:03 | 000,002,762 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..gertransport-serial_31bf3856ad364e35_6.1.7600.16385_none_118be3420dfe8486.manifest
[2009.07.14 03:18:03 | 000,015,952 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..gertransport-serial_31bf3856ad364e35_6.1.7600.16385_none_118be3420dfe8486_kdcom.dll_db5e7744
[2012.09.16 15:42:14 | 000,005,120 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-u..em-config.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_4e4137b544fe59ed_serialui.dll.mui_7d29d2a3
[2009.07.14 05:56:40 | 000,005,120 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-u..em-config.resources_31bf3856ad364e35_6.1.7600.16385_en-us_919783112bf8b64b_serialui.dll.mui_7d29d2a3
[2009.07.14 03:18:51 | 000,015,360 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-unimodem-config_31bf3856ad364e35_6.1.7600.16385_none_f4d7f7b17ffe522a_serialui.dll_bea29328
[2009.07.14 02:52:33 | 000,002,226 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.ref_b77a5c561934e089_6.1.7600.16385_none_a6aa149474833896.manifest
[2009.07.13 17:54:22 | 000,001,626 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7600.16385_cs-cz_34555b4d83cf58b0.manifest
[2009.07.14 03:28:14 | 000,000,531 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7600.16385_en-us_8f71d563bf7aa3c2.manifest
[2009.07.14 02:51:52 | 000,001,985 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization_b77a5c561934e089_6.1.7600.16385_none_d6ed4a2e9c2a39c9.manifest
[2009.07.14 02:49:26 | 000,002,762 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..gertransport-serial_31bf3856ad364e35_6.1.7600.16385_none_118be3420dfe8486.manifest
[2009.07.14 02:45:27 | 000,000,866 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft.windows.h..tserial-driverclass_31bf3856ad364e35_6.1.7600.16385_none_2c93290b67c98d09.manifest
[2009.07.14 02:57:53 | 000,002,260 | ---- | M] () -- \Windows\winsxs\Manifests\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7600.16385_none_dbc7f5fbdd00d40b.manifest
[2009.06.10 22:23:19 | 000,131,072 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.seri..ion.formatters.soap_b03f5f7f11d50a3a_6.1.7600.16385_none_1c9a3ec1e01c684b\System.Runtime.Serialization.Formatters.Soap.dll
[2009.06.10 13:14:16 | 000,011,776 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.seri..ters.soap.resources_b03f5f7f11d50a3a_6.1.7600.16385_cs-cz_d5c3552dd9b47144\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2009.06.10 22:14:06 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.ref_b77a5c561934e089_6.1.7600.16385_none_a6aa149474833896\System.Runtime.Serialization.dll
[2009.06.08 09:38:48 | 000,090,112 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7600.16385_cs-cz_34555b4d83cf58b0\System.RunTime.Serialization.Resources.dll
[2009.06.10 22:13:54 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization_b77a5c561934e089_6.1.7600.16385_none_d6ed4a2e9c2a39c9\System.Runtime.Serialization.dll
[2009.07.13 23:13:45 | 001,068,032 | ---- | M] () -- \Windows\winsxs\x86_mdmmotsm.inf_31bf3856ad364e35_6.1.7600.16385_none_7a97936f8a972896\smserial.sys
[2009.06.10 13:14:16 | 000,011,776 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-n..xcorecomp.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_c002c1170ca9a88f\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2009.07.13 17:38:14 | 000,005,120 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-u..em-config.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_4e4137b544fe59ed\serialui.dll.mui
[2009.07.14 03:10:04 | 000,005,120 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-u..em-config.resources_31bf3856ad364e35_6.1.7600.16385_en-us_919783112bf8b64b\serialui.dll.mui
[2009.07.14 02:16:13 | 000,015,360 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-unimodem-config_31bf3856ad364e35_6.1.7600.16385_none_f4d7f7b17ffe522a\serialui.dll
[2009.06.08 09:38:48 | 000,090,112 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-wcfcorecomp.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_5d4a68b4b3d26ecc\System.RunTime.Serialization.Resources.dll
[2009.07.13 17:39:44 | 000,009,728 | ---- | M] () -- \Windows\winsxs\x86_msports.inf.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_c48c78a9ad8ff996\serial.sys.mui
[2009.07.14 03:09:30 | 000,010,240 | ---- | M] () -- \Windows\winsxs\x86_msports.inf.resources_31bf3856ad364e35_6.1.7600.16385_en-us_07e2c405948a55f4\serial.sys.mui
[2009.07.14 00:45:33 | 000,083,456 | ---- | M] () -- \Windows\winsxs\x86_msports.inf_31bf3856ad364e35_6.1.7600.16385_none_f86e06d519b1d9a4\serial.sys
[2009.07.13 23:09:18 | 000,031,232 | ---- | M] () -- \Windows\winsxs\x86_smartcrd.inf_31bf3856ad364e35_6.1.7600.16385_none_7280378295916274\grserial.sys
[2009.06.10 22:13:54 | 000,970,752 | ---- | M] () -- \Windows\winsxs\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7600.16385_none_dbc7f5fbdd00d40b\System.Runtime.Serialization.dll
< *w7lxe* /s >
< End of report >
[2012.09.25 23:46:04 | 000,472,424 | --S- | M] (NVIDIA Corporation) Unable to obtain MD5 -- C:\Windows\system32\cudart32_50_35.dll
[File Corrupted - Detail Data unreadable] Unable to obtain MD5 -- C:\Windows\system32\D3DCompiler_33.dll
[2007.05.16 15:45:16 | 001,124,720 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\D3DCompiler_34.dll
[2007.10.12 14:14:00 | 001,374,232 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\D3DCompiler_36.dll
[2008.05.30 13:11:46 | 001,491,992 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\D3DCompiler_38.dll
[2010.05.26 10:41:02 | 002,106,216 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\D3DCompiler_43.dll
[2007.10.02 08:56:34 | 000,444,776 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\d3dx10_36.dll
[2008.02.05 22:07:36 | 000,462,864 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\d3dx10_37.dll
[2008.05.30 13:11:46 | 000,467,984 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\d3dx10_38.dll
[2011.02.11 17:35:00 | 000,452,440 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\d3dx10_40.dll
[2009.09.04 16:29:34 | 000,453,456 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\d3dx10_42.dll
[2010.05.26 10:41:02 | 000,248,672 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\d3dx11_43.dll
[2005.03.18 16:19:58 | 002,337,488 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\d3dx9_25.dll
[2005.07.22 18:59:04 | 002,319,568 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\d3dx9_27.dll
[2006.02.03 07:43:16 | 002,332,368 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\d3dx9_29.dll
[2006.09.28 15:05:20 | 002,414,360 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\d3dx9_31.dll
[2006.11.29 12:06:18 | 003,426,072 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\d3dx9_32.dll
[2007.05.16 15:45:16 | 003,497,832 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\d3dx9_34.dll
[2007.10.12 14:14:00 | 003,734,536 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\d3dx9_36.dll
[2008.07.10 10:00:58 | 003,851,784 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\D3DX9_39.dll
[2009.03.09 14:27:22 | 004,178,264 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\D3DX9_41.dll
[2009.07.14 02:15:10 | 000,055,296 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\DevicePairingProxy.dll
[2009.07.14 02:15:11 | 000,410,624 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\devmgr.dll
[2009.07.14 02:15:11 | 001,188,864 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\DiagCpl.dll
[2009.07.14 02:15:11 | 000,136,704 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\dinput.dll
[2009.07.14 02:15:13 | 000,058,880 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\drtprov.dll
[2009.07.14 02:15:13 | 000,087,040 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\dskquota.dll
[2009.07.14 02:15:13 | 000,453,632 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\dsound.dll
[2009.07.14 02:15:19 | 000,066,048 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\eqossnap.dll
[2009.07.14 02:15:20 | 000,027,136 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\fdProxy.dll
[File Corrupted - Detail Data unreadable] Unable to obtain MD5 -- C:\Windows\system32\fdSSDP.dll
[2010.02.20 16:20:18 | 001,207,144 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\FM20.DLL
[2009.07.14 02:15:21 | 000,544,256 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\fvewiz.dll
[2009.07.14 02:15:21 | 000,078,336 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\FXSCOM.dll
[2009.07.14 02:15:22 | 000,429,568 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\FXSTIFF.dll
[2009.07.14 02:15:22 | 000,457,216 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\FXSXP32.dll
[2009.07.14 02:15:22 | 002,576,384 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\gameux.dll
[2009.06.22 18:58:10 | 000,011,776 | ---- | M] (Hewlett-Packard Company) Unable to obtain MD5 -- C:\Windows\system32\HPBPROPS.DLL
[2012.10.17 21:34:59 | 001,979,280 | ---- | M] (Hewlett-Packard Co.) Unable to obtain MD5 -- C:\Windows\system32\HPScanTRDrv_DJ5520.dll
[2009.06.22 18:58:20 | 000,034,304 | ---- | M] (Hewlett-Packard) Unable to obtain MD5 -- C:\Windows\system32\HPZIPT12.DLL
[2009.07.14 02:15:26 | 000,157,696 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\iasnap.dll
[2009.07.14 00:28:50 | 000,113,664 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\IcCoinstall.dll
[2009.07.14 02:15:27 | 000,215,040 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\icm32.dll
[2009.07.14 02:15:27 | 000,045,056 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\IDStore.dll
[File Corrupted - Detail Data unreadable] Unable to obtain MD5 -- C:\Windows\system32\ig4icd32.dll
[2009.07.14 02:06:08 | 000,084,480 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\INETRES.dll
[2009.07.14 02:15:32 | 000,216,064 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\InkEd.dll
[2009.07.14 02:15:33 | 000,757,760 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\ipsecsnp.dll
[2009.07.14 02:15:34 | 000,200,192 | ---- | M] (Intel Corporation.) Unable to obtain MD5 -- C:\Windows\system32\ir50_qc.dll
[File Corrupted - Detail Data unreadable] Unable to obtain MD5 -- C:\Windows\system32\iscsilog.dll
[File Corrupted - Detail Data unreadable] Unable to obtain MD5 -- C:\Windows\system32\itircl.dll
[2009.07.14 02:06:13 | 000,006,144 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\kbd101a.dll
[2009.07.14 02:06:13 | 000,007,168 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\KBDGRLND.DLL
[2009.07.14 02:06:14 | 000,005,632 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\KBDMAORI.DLL
[2009.07.14 02:06:14 | 000,006,656 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\KBDSL.DLL
[2009.07.14 02:06:14 | 000,006,144 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\KBDYBA.DLL
[2009.07.14 02:06:14 | 000,007,680 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\KBDYCL.DLL
[2009.07.14 02:15:36 | 000,031,744 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\lltdapi.dll
[2009.07.14 02:15:36 | 000,226,816 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\LocationApi.dll
[2009.07.14 02:15:36 | 000,069,632 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\loghours.dll
[2009.07.14 02:15:37 | 000,023,040 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\mciwave.dll
[2009.07.14 02:15:38 | 000,205,824 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\mdminst.dll
[2011.02.19 22:03:12 | 004,422,992 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\mfc100u.dll
[2011.02.19 22:03:12 | 000,081,744 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\mfcm100u.dll
[2009.07.14 02:15:39 | 000,609,280 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\MFWMAAEC.DLL
[2009.07.14 02:15:42 | 000,152,064 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\msclmd.dll
[2009.07.14 02:15:43 | 000,085,504 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\msctfui.dll
[2009.07.14 02:15:43 | 000,578,560 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\msdtcprx.dll
[2009.07.14 02:15:43 | 001,066,496 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\msdtctm.dll
[File Corrupted - Detail Data unreadable] Unable to obtain MD5 -- C:\Windows\system32\msmpeg2vdec.dll
[2009.07.14 02:15:47 | 000,368,640 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\mspbde40.dll
[2009.07.14 02:15:48 | 000,017,408 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\msswch.dll
[2011.02.19 22:03:12 | 000,421,200 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\msvcp100.dll
[2011.02.18 23:40:50 | 000,773,968 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\msvcr100.dll
[2009.07.14 02:15:52 | 000,454,656 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\msxbde40.dll
[2009.07.14 02:15:52 | 000,006,656 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\mtxex.dll
[2009.07.14 02:16:02 | 000,078,336 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\nci.dll
[2009.07.14 02:16:02 | 000,093,696 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\negoexts.dll
[2009.07.14 02:16:02 | 000,161,792 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\netjoin.dll
[2009.07.14 02:16:03 | 001,114,624 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\NetProjW.dll
[2009.07.14 02:16:03 | 000,134,144 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\nlhtml.dll
[2009.07.14 02:16:04 | 002,609,664 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\NlsData0001.dll
[2009.07.14 02:16:08 | 001,977,856 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\NlsData0018.dll
[File Corrupted - Detail Data unreadable] Unable to obtain MD5 -- C:\Windows\system32\NlsData0019.dll
[2009.07.14 02:16:09 | 003,116,544 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\NlsData004c.dll
[2009.07.14 02:08:28 | 011,722,752 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\NlsLexicons0001.dll
[2012.10.04 19:48:47 | 000,821,736 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\npDeployJava1.dll
[2009.07.14 02:16:11 | 000,537,600 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\objsel.dll
[2009.07.14 02:16:11 | 000,122,880 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\odbccp32.dll
[2009.07.14 02:16:12 | 000,028,672 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\olesvr32.dll
[2009.06.10 22:14:56 | 000,101,768 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
[2009.07.14 02:09:28 | 000,017,408 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\prflbmsg.dll
[2009.07.14 02:16:12 | 000,032,768 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\PrintIsolationProxy.dll
[2009.07.14 02:19:03 | 000,052,816 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\PSHED.DLL
[2012.05.27 01:36:06 | 000,055,808 | --S- | M] (Open Source Software community LGPL) Unable to obtain MD5 -- C:\Windows\system32\pthreadVC2.dll
[2009.07.14 02:09:35 | 000,733,184 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\qedwipes.dll
[2009.07.14 02:16:12 | 000,045,056 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\rasmbmgr.dll
[2009.07.14 02:16:13 | 000,826,368 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\rdpcore.dll
[2009.07.14 02:16:13 | 000,057,856 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\rdpwsx.dll
[2009.07.14 02:16:14 | 000,061,952 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\spbcd.dll
[2009.07.14 02:16:12 | 000,121,344 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\sppc.dll
[2009.07.14 02:16:15 | 000,974,336 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\sppobjs.dll
[2009.07.14 02:16:15 | 000,351,744 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\spwizeng.dll
[2009.07.14 02:16:15 | 000,189,440 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\sqmapi.dll
[2009.07.14 02:16:15 | 000,302,592 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\SrpUxNativeSnapIn.dll
[2009.07.14 02:16:15 | 000,122,368 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\sti_ci.dll
[2009.07.14 02:16:15 | 000,053,248 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\TabbtnEx.dll
[2009.07.14 02:16:17 | 000,059,392 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\unimdmat.dll
[2009.07.14 02:16:17 | 000,196,096 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\vaultsvc.dll
[2009.07.14 00:28:43 | 000,116,224 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\VmbusCoinstaller.dll
[2009.07.14 00:28:53 | 000,047,616 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\vmictimeprovider.dll
[2009.07.14 02:07:52 | 000,037,888 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\vmstorfltres.dll
[2009.07.14 02:16:17 | 000,237,056 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\vpnike.dll
[2009.07.14 02:16:18 | 000,994,816 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\wcnwiz.dll
[2009.07.14 02:16:18 | 000,377,856 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\wer.dll
[2009.07.14 02:16:18 | 000,160,256 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\werui.dll
[2009.07.14 02:16:19 | 000,296,960 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\WinSync.dll
[2009.07.14 02:16:19 | 000,081,408 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\wlanapi.dll
[2009.07.14 02:16:19 | 000,410,112 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\wlanui.dll
[2009.07.14 02:16:19 | 000,616,960 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\wmdrmsdk.dll
[2009.07.14 02:16:19 | 000,182,272 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\wmpsrcwp.dll
[2009.07.14 02:16:20 | 000,048,128 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\wscapi.dll
[2009.07.14 02:16:20 | 000,010,752 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\wshirda.dll
[2009.07.14 02:16:20 | 000,248,832 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\WSManMigrationPlugin.dll
[2009.07.14 02:16:20 | 000,145,920 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\WsmAuto.dll
[2009.07.14 02:16:21 | 000,163,328 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\Wwanadvui.dll
[2007.10.22 02:37:16 | 000,017,928 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\X3DAudio1_2.dll
[2009.03.16 13:18:32 | 000,022,360 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\X3DAudio1_6.dll
[2007.10.22 02:39:54 | 000,267,272 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\xactengine2_10.dll
[2006.07.28 08:30:32 | 000,236,824 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\xactengine2_3.dll
[2006.12.08 11:02:00 | 000,251,672 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\xactengine2_5.dll
[2008.07.31 09:41:54 | 000,238,088 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\xactengine3_2.dll
[2008.10.27 09:04:16 | 000,235,856 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\xactengine3_3.dll
[2009.03.16 13:18:32 | 000,235,352 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\xactengine3_4.dll
[2010.02.04 09:01:14 | 000,238,936 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\xactengine3_6.dll
[2008.07.31 09:41:52 | 000,068,616 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\XAPOFX1_1.dll
[2008.10.27 09:04:14 | 000,070,992 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\XAPOFX1_2.dll
[2008.05.30 13:19:18 | 000,507,400 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\XAudio2_1.dll
[2009.03.16 13:18:32 | 000,517,448 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\XAudio2_4.dll
[2010.02.04 09:01:14 | 000,528,216 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\XAudio2_6.dll
[2009.07.14 02:16:21 | 000,601,600 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\XpsFilt.dll
[2009.07.14 02:16:21 | 000,354,816 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\xwizards.dll
< %systemroot%\Tasks\*.job /lockedfiles >
< %systemroot%\system32\drivers\*.sys /lockedfiles >
[File Corrupted - Detail Data unreadable] Unable to obtain MD5 -- C:\Windows\system32\drivers\1394ohci.sys
[2009.07.14 02:26:15 | 000,159,312 | ---- | M] (AMD Technologies Inc.) Unable to obtain MD5 -- C:\Windows\system32\drivers\amdsbs.sys
[2014.11.06 17:42:47 | 000,070,384 | ---- | M] (AVAST Software) Unable to obtain MD5 -- C:\Windows\system32\drivers\aswmonflt.sys
[2014.11.06 17:41:43 | 000,049,944 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\aswRvrt.sys
[2009.07.13 23:53:32 | 000,062,336 | ---- | M] (Brother Industries Ltd.) Unable to obtain MD5 -- C:\Windows\system32\drivers\BrSerWdm.sys
[2009.07.13 23:53:33 | 000,011,904 | ---- | M] (Brother Industries Ltd.) Unable to obtain MD5 -- C:\Windows\system32\drivers\BrUsbSer.sys
[2009.07.13 23:02:48 | 003,100,160 | ---- | M] (Broadcom Corporation) Unable to obtain MD5 -- C:\Windows\system32\drivers\evbdx.sys
[2009.07.14 00:51:01 | 000,055,808 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\drivers\hidclass.sys
[2009.07.14 00:45:57 | 000,018,432 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\drivers\mcd.sys
[2009.07.14 02:19:04 | 001,383,488 | ---- | M] (QLogic Corporation) Unable to obtain MD5 -- C:\Windows\system32\drivers\ql2300.sys
[2009.07.14 02:19:04 | 000,077,888 | ---- | M] (Silicon Integrated Systems) Unable to obtain MD5 -- C:\Windows\system32\drivers\sisraid4.sys
[2009.07.14 02:19:10 | 000,175,824 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\drivers\vmbus.sys
[2009.07.14 02:19:11 | 000,141,904 | ---- | M] (VIA Technologies Inc.,Ltd) Unable to obtain MD5 -- C:\Windows\system32\drivers\vsmraid.sys
< %systemroot%\System32\config\*.sav >
< %systemroot%\system32\*.dll /lockedfiles >
[2009.07.14 02:14:52 | 000,744,448 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\ActionCenter.dll
[2009.07.14 02:14:52 | 000,178,688 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\ActionQueue.dll
[2009.07.14 02:14:53 | 001,739,776 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\apds.dll
[2009.07.14 02:14:53 | 000,029,696 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\Apphlpdm.dll
[2009.07.14 02:14:59 | 000,062,464 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\bderepair.dll
[2009.07.14 02:15:00 | 000,743,424 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\blackbox.dll
[2009.07.14 02:15:03 | 000,058,880 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\clfsw32.dll
[2009.07.14 02:15:03 | 000,086,016 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\cliconfg.dll
[2009.07.14 02:15:04 | 000,484,352 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\cmdial32.dll
[2009.07.14 02:15:04 | 000,068,608 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\cmifw.dll
[2009.07.14 02:15:07 | 000,066,048 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\correngine.dll
[2009.07.14 02:15:07 | 000,161,792 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\d3d10_1.dll
[2007.03.12 15:42:30 | 001,123,696 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\D3DCompiler_33.dll
[2007.10.12 14:14:00 | 001,374,232 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\D3DCompiler_36.dll
[2008.05.30 13:11:46 | 001,491,992 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\D3DCompiler_38.dll
[2009.03.09 14:27:22 | 001,846,632 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\D3DCompiler_41.dll
[2010.05.26 10:41:02 | 002,106,216 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\D3DCompiler_43.dll
[2007.03.15 15:57:58 | 000,443,752 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\d3dx10_33.dll
[2008.05.30 13:11:46 | 000,467,984 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\d3dx10_38.dll
[2010.05.26 10:41:02 | 000,470,880 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\d3dx10_43.dll
[2010.05.26 10:41:02 | 000,248,672 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\d3dx11_43.dll
[2005.02.05 18:45:26 | 002,222,800 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\d3dx9_24.dll
[2005.05.26 14:34:52 | 002,297,552 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\d3dx9_26.dll
[2005.12.05 17:09:18 | 002,323,664 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\d3dx9_28.dll
[2006.09.28 15:05:20 | 002,414,360 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\d3dx9_31.dll
[2007.03.12 15:42:30 | 003,495,784 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\d3dx9_33.dll
[2007.07.19 17:14:42 | 003,727,720 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\d3dx9_35.dll
[2008.03.05 14:56:58 | 003,786,760 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\D3DX9_37.dll
[2008.07.10 10:00:58 | 003,851,784 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\D3DX9_39.dll
[2008.10.10 03:52:38 | 004,379,984 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\D3DX9_40.dll
[2010.05.26 10:41:02 | 001,998,168 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\D3DX9_43.dll
[2012.10.04 19:48:47 | 000,746,984 | ---- | M] (Oracle Corporation) Unable to obtain MD5 -- C:\Windows\system32\deployJava1.dll
[2009.07.14 02:15:12 | 000,055,296 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\dot3hc.dll
[2009.07.14 02:15:20 | 000,076,800 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\fdSSDP.dll
[2012.10.17 03:04:24 | 000,580,712 | ---- | M] (Hewlett-Packard Co.) Unable to obtain MD5 -- C:\Windows\system32\HPDiscoPMB611.dll
[2012.10.17 21:34:59 | 001,979,280 | ---- | M] (Hewlett-Packard Co.) Unable to obtain MD5 -- C:\Windows\system32\HPScanTRDrv_DJ5520.dll
[2009.07.14 02:15:26 | 000,191,488 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\iassam.dll
[2011.02.11 17:51:10 | 011,039,744 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\ig4icd32.dll
[2011.02.11 17:35:00 | 000,147,456 | ---- | M] (Intel Corporation) Unable to obtain MD5 -- C:\Windows\system32\iglhcp32.dll
[2009.07.14 02:06:13 | 000,006,144 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\KBDBE.DLL
[2009.07.14 02:06:14 | 000,005,632 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\KBDINHIN.DLL
[2009.07.14 02:06:14 | 000,009,216 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\kbdnecat.dll
[2009.07.14 02:06:14 | 000,006,144 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\KBDSYR2.DLL
[2009.07.14 02:15:35 | 000,004,608 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\ksuser.dll
[2013.10.26 20:30:22 | 001,704,448 | --S- | M] (The OpenSSL Project, http://www.openssl.org/) Unable to obtain MD5 -- C:\Windows\system32\libeay32.dll
[2009.07.14 02:06:22 | 000,002,560 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\lz32.dll
[2009.07.14 02:15:37 | 000,036,352 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\mciqtz32.dll
[2011.02.19 22:03:12 | 000,081,744 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\mfcm100u.dll
[2009.07.14 02:15:41 | 000,304,128 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\mmcbase.dll
[2009.07.14 02:15:46 | 000,265,216 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\msnetobj.dll
[2009.07.14 02:15:47 | 000,504,320 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\msscp.dll
[2009.07.14 02:15:51 | 000,296,960 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\mswmdm.dll
[2009.07.14 02:16:02 | 000,152,064 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\ncsi.dll
[2009.07.14 02:16:02 | 000,165,888 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\netiohlp.dll
[2009.07.14 02:16:12 | 000,020,480 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\odfox32.dll
[2009.07.14 02:09:15 | 000,004,096 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\oleaccrc.dll
[2009.07.14 02:16:12 | 000,138,240 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\PortableDeviceWiaCompat.dll
[2009.07.14 02:16:12 | 000,025,088 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\printfilterpipelineprxy.dll
[2009.07.14 02:16:14 | 000,428,544 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\shwebsvc.dll
[2009.07.14 02:16:15 | 000,974,336 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\sppobjs.dll
[2013.10.26 20:30:22 | 000,364,544 | --S- | M] (The OpenSSL Project, http://www.openssl.org/) Unable to obtain MD5 -- C:\Windows\system32\ssleay32.dll
[2009.07.14 02:16:15 | 000,061,440 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\tcpmonui.dll
[2009.07.14 02:16:15 | 002,157,056 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\themecpl.dll
[2008.09.04 19:17:02 | 000,447,752 | R--- | M] (On2.com) Unable to obtain MD5 -- C:\Windows\system32\vp6vfw.dll
[2009.07.14 02:16:18 | 000,994,816 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\wcnwiz.dll
[2009.07.14 02:11:04 | 000,669,184 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\WFSR.dll
[2009.07.14 02:16:19 | 000,296,960 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\WinSync.dll
[2009.07.14 02:16:19 | 000,173,056 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\WinSyncMetastore.dll
[2009.07.14 02:16:19 | 000,158,208 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\WLanHC.dll
[2009.07.14 02:16:20 | 000,308,736 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\Wpc.dll
[2012.06.02 23:19:33 | 000,045,080 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\wups2.dll
[2012.06.02 14:19:42 | 000,171,904 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\wuwebv.dll
[2006.02.03 07:42:06 | 000,230,096 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\xactengine2_0.dll
[2006.03.31 11:39:48 | 000,229,584 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\xactengine2_1.dll
[2006.12.08 11:02:00 | 000,251,672 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\xactengine2_5.dll
[2007.04.04 17:55:00 | 000,261,480 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\xactengine2_7.dll
[2008.05.30 13:18:52 | 000,238,088 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\xactengine3_1.dll
[2008.10.27 09:04:16 | 000,235,856 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\xactengine3_3.dll
[2009.09.04 16:44:40 | 000,238,936 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\xactengine3_5.dll
[2008.07.31 09:41:52 | 000,068,616 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\XAPOFX1_1.dll
[2010.06.02 03:55:30 | 000,074,072 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\XAPOFX1_5.dll
[2008.05.30 13:19:18 | 000,507,400 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\XAudio2_1.dll
[2008.10.27 09:04:18 | 000,514,384 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\XAudio2_3.dll
[2009.09.04 16:44:40 | 000,515,416 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\XAudio2_5.dll
[2010.06.02 03:55:30 | 000,527,192 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\XAudio2_7.dll
< %systemroot%\system32\drivers\*.sys /3 >
[2014.11.06 17:41:43 | 000,024,184 | ---- | M] () -- C:\Windows\system32\drivers\aswHwid.sys
[2014.11.06 17:42:47 | 000,070,384 | ---- | M] (AVAST Software) -- C:\Windows\system32\drivers\aswmonflt.sys
[2014.11.06 17:41:43 | 000,081,768 | ---- | M] (AVAST Software) -- C:\Windows\system32\drivers\aswRdr2.sys
[2014.11.06 17:41:43 | 000,049,944 | ---- | M] () -- C:\Windows\system32\drivers\aswRvrt.sys
[2014.11.06 17:42:47 | 000,787,800 | ---- | M] (AVAST Software) -- C:\Windows\system32\drivers\aswsnx.sys
[2014.11.06 17:41:43 | 000,422,760 | ---- | M] (AVAST Software) -- C:\Windows\system32\drivers\aswSP.sys
[2014.11.06 17:41:43 | 000,091,496 | ---- | M] (AVAST Software) -- C:\Windows\system32\drivers\aswStm.sys
[2014.11.06 17:41:43 | 000,206,248 | ---- | M] () -- C:\Windows\system32\drivers\aswVmm.sys
< %systemroot%\system32\*.* /3 >
[2014.11.06 17:41:43 | 000,291,352 | ---- | M] (AVAST Software) -- C:\Windows\system32\aswBoot.exe
< %SYSTEMDRIVE%\*.exe >
< >
< HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s >
< reg query "HKLM\Software\Microsoft\Windows NT\CurrentVersion\winlogon" /v GinaDLL /c >
< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv" /v ImagePath /c >
HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\SERVICES\WUAUSERV
IMAGEPATH REG_EXPAND_SZ %systemroot%\system32\svchost.exe -k netsvcs
< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS" /v ImagePath /c >
HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\SERVICES\BITS
IMAGEPATH REG_EXPAND_SZ %SystemRoot%\System32\svchost.exe -k netsvcs
< >
< type c:\boot.ini >> test.txt /c >
< %SystemDrive%\PhysicalMBR.bin /md5 >
[2014.11.06 18:05:34 | 000,000,512 | ---- | M] () MD5=C9202EDB26D666F995171C8576DC8F3F -- C:\PhysicalMBR.bin
< >
< *crack* /s >
[2014.05.12 09:14:38 | 006,988,025 | ---- | M] () -- \Users\anetqua\Downloads\Adobe_Illustrator_CS5.1_CRACK.zip
[2013.08.19 21:28:34 | 003,143,148 | ---- | M] () -- \Users\anetqua\Downloads\Crack-na-age-of-empires-3.rar
[2012.09.17 21:48:04 | 1262,385,962 | ---- | M] () -- \Users\anetqua\Downloads\FULL-Adobe-Photoshop-CS5-+-100%-working-crack-&-ČEŠTINA-+-návod.rar
[2014.03.24 09:09:50 | 004,944,747 | ---- | M] () -- \Users\anetqua\Downloads\Simisims3-TS3-Domácí-Mazlíčci-Crack.rar
[2012.04.12 21:32:25 | 000,315,178 | ---- | M] () -- \Users\anetqua\Downloads\FULL Adobe Photoshop CS5 + 100% working crack & ČEŠTINA + návod\Adobe Photoshop CS5.1 - CRACK - 32bit&64bit\ADBE_CRACK - 32bit.rar
[2012.04.12 21:32:24 | 000,377,747 | ---- | M] () -- \Users\anetqua\Downloads\FULL Adobe Photoshop CS5 + 100% working crack & ČEŠTINA + návod\Adobe Photoshop CS5.1 - CRACK - 32bit&64bit\ADBE_CRACK - 64bit.rar
[2014.02.22 14:16:38 | 000,395,744 | ---- | M] () -- \Users\anetqua\Pictures\2014-upravene\BILLYSHOP\grafiky\pitbul\american-flag-cracked.jpg
[2011.01.14 17:31:04 | 000,000,156 | ---- | M] () -- \Users\Public\StarStableOnline\Data\Cracked_wall.pmt
[2013.04.02 15:52:50 | 000,005,753 | ---- | M] () -- \Users\Public\StarStableOnline\Data\Cracked_wall.pte
[2011.01.14 17:31:04 | 000,000,162 | ---- | M] () -- \Users\Public\StarStableOnline\Data\Cracked_wall_2.pmt
[2013.04.02 15:52:50 | 000,005,757 | ---- | M] () -- \Users\Public\StarStableOnline\Data\Cracked_wall_2.pte
[2013.01.15 19:00:20 | 000,000,186 | ---- | M] () -- \Users\Public\StarStableOnline\Data\CrackEffectTexture1.pmt
[2013.01.15 19:37:42 | 000,022,180 | ---- | M] () -- \Users\Public\StarStableOnline\Data\CrackEffectTexture1.pte
[2013.01.15 18:59:18 | 000,000,168 | ---- | M] () -- \Users\Public\StarStableOnline\Data\CrackTexture1.pmt
[2013.01.15 18:59:18 | 000,087,664 | ---- | M] () -- \Users\Public\StarStableOnline\Data\CrackTexture1.pte
[2013.01.15 19:15:16 | 000,000,168 | ---- | M] () -- \Users\Public\StarStableOnline\Data\CrackTexture2.pmt
[2013.08.22 10:44:14 | 000,087,644 | ---- | M] () -- \Users\Public\StarStableOnline\Data\CrackTexture2.pte
[2013.08.20 11:31:14 | 000,000,165 | ---- | M] () -- \Users\Public\StarStableOnline\Data\DialogIcon_PandorianCrack.pmt
[2013.08.20 11:31:14 | 000,065,797 | ---- | M] () -- \Users\Public\StarStableOnline\Data\DialogIcon_PandorianCrack.pte
[2011.12.26 18:12:42 | 000,152,882 | ---- | M] () -- \Users\Public\StarStableOnline\Data\Fireworks_Crackers.pso
[2013.07.12 13:53:42 | 000,006,303 | ---- | M] () -- \Users\Public\StarStableOnline\Data\FO_Cracks.pxo
[2013.01.15 18:59:18 | 000,054,639 | ---- | M] () -- \Users\Public\StarStableOnline\Data\MysticValleyCrack1.pme
[2013.01.15 19:37:42 | 000,001,005 | ---- | M] () -- \Users\Public\StarStableOnline\Data\MysticValleyCrack1_Effect.pme
[2013.01.15 19:05:58 | 000,030,143 | ---- | M] () -- \Users\Public\StarStableOnline\Data\MysticValleyCrack1_Effect2.pme
[2013.01.15 19:37:46 | 000,002,145 | ---- | M] () -- \Users\Public\StarStableOnline\Data\MysticValleyCrack1_Effect3.pme
[2013.08.22 10:44:14 | 000,075,055 | ---- | M] () -- \Users\Public\StarStableOnline\Data\MysticValleyCrack2.pme
[2013.07.12 13:28:20 | 000,004,133 | ---- | M] () -- \Users\Public\StarStableOnline\Data\MysticValleyCrack2_Lod.pme
[2013.01.15 19:23:48 | 000,004,955 | ---- | M] () -- \Users\Public\StarStableOnline\Data\MysticValleyCrack_Col.pco
< *keygen* /s >
[2014.03.25 20:35:20 | 000,001,623 | ---- | M] () -- \ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2010 Pro Plus x64 & x86 Activator and Keygen\Microsoft Office 2010 Pro Plus x64 & x86 Activator and Keygen.lnk
[2014.03.25 20:35:20 | 000,001,623 | ---- | M] () -- \Users\All Users\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2010 Pro Plus x64 & x86 Activator and Keygen\Microsoft Office 2010 Pro Plus x64 & x86 Activator and Keygen.lnk
[2014.03.25 20:32:46 | 019,189,530 | ---- | M] () -- \Users\anetqua\Downloads\Microsoft-Office-2010-Pro-Plus-x64-&-x86-Activator-and-Keygen.zip
[2014.03.25 20:33:38 | 018,806,257 | ---- | M] () -- \Users\anetqua\Downloads\office 2010 activator\Microsoft Office 2010 Pro Plus x64 & x86 Activator and Keygen.exe
< *AntiWPA* /s >
< *loader* /s >
[2011.03.02 20:35:42 | 005,299,048 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS5.1\Photodownloader.exe
[2011.03.02 17:57:10 | 000,011,161 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS5.1\apd\shared_assets\bitmaps\main_window\C_LoadError.png
[2011.03.02 17:57:10 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS5.1\apd\shared_assets\locales\da_dk\Photodownloader.ini
[2011.03.02 17:57:10 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS5.1\apd\shared_assets\locales\de_de\Photodownloader.ini
[2011.03.02 17:57:10 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS5.1\apd\shared_assets\locales\en_us\Photodownloader.ini
[2011.03.02 17:57:10 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS5.1\apd\shared_assets\locales\es_es\Photodownloader.ini
[2011.03.02 17:57:10 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS5.1\apd\shared_assets\locales\fi_fi\Photodownloader.ini
[2011.03.02 17:57:12 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS5.1\apd\shared_assets\locales\fr_fr\Photodownloader.ini
[2011.03.02 17:57:12 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS5.1\apd\shared_assets\locales\it_it\Photodownloader.ini
[2011.03.02 17:57:12 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS5.1\apd\shared_assets\locales\ja_jp\Photodownloader.ini
[2011.03.02 17:57:12 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS5.1\apd\shared_assets\locales\ko_kr\Photodownloader.ini
[2011.03.02 17:57:12 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS5.1\apd\shared_assets\locales\nl_nl\Photodownloader.ini
[2011.03.02 17:57:12 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS5.1\apd\shared_assets\locales\no_no\Photodownloader.ini
[2011.03.02 17:57:12 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS5.1\apd\shared_assets\locales\pt_br\Photodownloader.ini
[2011.03.02 17:57:12 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS5.1\apd\shared_assets\locales\sv_se\Photodownloader.ini
[2011.03.02 17:57:14 | 000,000,308 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS5.1\apd\shared_assets\locales\zh_cn\Photodownloader.ini
[2011.03.02 17:57:14 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS5.1\apd\shared_assets\locales\zh_tw\Photodownloader.ini
[2012.02.23 00:45:00 | 000,078,336 | ---- | M] () -- \Program Files\Adobe\Adobe Photoshop Lightroom 4\Support\DynamicLinkMediaServer\dynamiclinkmediaserver\1.0\MXF_SDK_MetaMetadata_BinaryLoader_4.4.3.dll
[2012.02.23 00:45:00 | 000,155,136 | ---- | M] () -- \Program Files\Adobe\Adobe Photoshop Lightroom 4\Support\DynamicLinkMediaServer\dynamiclinkmediaserver\1.0\MXF_SDK_MetaMetadata_XSDLoader2_4.4.3.dll
[2012.02.23 00:45:00 | 000,117,248 | ---- | M] () -- \Program Files\Adobe\Adobe Photoshop Lightroom 4\Support\DynamicLinkMediaServer\dynamiclinkmediaserver\1.0\MXF_SDK_MetaMetadata_XSDLoader_4.4.3.dll
[2014.11.06 17:41:41 | 000,072,480 | ---- | M] () -- \Program Files\AVAST Software\Avast\aswWrcIELoader32.exe
[2010.03.24 19:12:34 | 000,249,680 | ---- | M] () -- \Program Files\Common Files\microsoft shared\VSTO\10.0\VSTOLoader.dll
[2010.03.24 19:12:34 | 000,018,264 | ---- | M] () -- \Program Files\Common Files\microsoft shared\VSTO\10.0\1033\VSTOLoaderUI.dll
[2009.10.06 05:08:30 | 000,145,082 | ---- | M] () -- \Program Files\HP\HP Deskjet 5520 series\Bin\HelpViewer\Resources\Loader.gif
[2008.02.25 07:05:22 | 000,856,064 | ---- | M] () -- \Program Files\The KMPlayer\ImLoader.dll
[2011.12.06 12:06:24 | 000,429,568 | ---- | M] () -- \Program Files\Zoner\Photo Studio 14\Plugins\Facebook\ZPSFacebookUploader.exe
[2010.04.29 13:12:40 | 000,053,640 | ---- | M] () -- \Program Files\Zoner\Photo Studio 14\Plugins\Facebook\ZPSPluginLoader.exe
[2011.12.06 12:06:40 | 000,444,416 | ---- | M] () -- \Program Files\Zoner\Photo Studio 14\Plugins\Flickr\ZPSFlickrUploader.exe
[2010.04.29 13:12:42 | 000,053,640 | ---- | M] () -- \Program Files\Zoner\Photo Studio 14\Plugins\Flickr\ZPSPluginLoader.exe
[2011.03.08 16:09:04 | 000,194,048 | ---- | M] () -- \Program Files\Zoner\Photo Studio 14\Plugins\Picasa\ZPSPicasaUploader.exe
[2010.04.29 13:12:40 | 000,053,640 | ---- | M] () -- \Program Files\Zoner\Photo Studio 14\Plugins\Picasa\ZPSPluginLoader.exe
[2011.12.19 15:12:24 | 000,102,792 | ---- | M] () -- \Program Files\Zoner\Photo Studio 14\Program32\8bfLoader.exe
[2011.12.19 15:12:36 | 000,016,776 | ---- | M] () -- \Program Files\Zoner\Photo Studio 14\Program32\WICLoader.exe
[2012.09.13 14:45:58 | 000,058,424 | ---- | M] () -- \Users\Anetka 1\AppData\Roaming\Seznam.cz\bin\libfoxloader.dll
[2012.08.07 13:39:12 | 000,000,165 | ---- | M] () -- \Users\Anetka 1\AppData\Roaming\Seznam.cz\conf\szndesktop.d\libfoxloader.conf
[2012.08.13 18:05:28 | 000,000,235 | ---- | M] () -- \Users\Anetka 1\AppData\Roaming\Seznam.cz\uninstall\cz_seznam_software_libfoxloader_3_0_0.install.bat
[2012.08.13 18:05:26 | 000,000,130 | ---- | M] () -- \Users\Anetka 1\AppData\Roaming\Seznam.cz\uninstall\cz_seznam_software_libfoxloader_3_0_0.uninstall.bat
[2014.07.01 10:46:16 | 000,072,638 | ---- | M] () -- \Users\anetqua\AppData\Local\Skype\Apps\login\images\loader.gif
[2014.07.01 10:46:16 | 000,003,032 | ---- | M] () -- \Users\anetqua\AppData\Local\Skype\Apps\login\images\loader.png
[2014.07.01 10:46:16 | 000,006,012 | ---- | M] () -- \Users\anetqua\AppData\Local\Skype\Apps\login\images\normal\loader_15fps.gif
[2014.07.01 10:46:16 | 000,021,956 | ---- | M] () -- \Users\anetqua\AppData\Local\Skype\Apps\login\images\normal\loader_30fps.gif
[2014.07.01 10:46:16 | 000,009,772 | ---- | M] () -- \Users\anetqua\AppData\Local\Skype\Apps\login\images\retina\loader@2x.png
[2009.07.14 02:03:49 | 000,003,584 | -H-- | M] () -- \Users\anetqua\AppData\Local\Temp\api-ms-win-core-libraryloader-l1-1-0.dll
[2009.07.14 02:15:12 | 000,038,400 | ---- | M] () -- \Users\anetqua\AppData\Local\Temp\dmloader.dll
[5 \Users\anetqua\AppData\Local\Temp\*.tmp files -> \Users\anetqua\AppData\Local\Temp\*.tmp -> ]
[2013.03.27 14:26:04 | 000,000,169 | ---- | M] () -- \Users\anetqua\Documents\aaa-e-shop\E-shop\šperky\Řetízek ZARPA_files\imagepreloader.js
[2014.11.06 17:42:58 | 000,010,154 | ---- | M] () -- \Windows\Prefetch\ASWWRCIELOADER32.EXE-BB2E4DE4.pf
[2009.07.14 02:03:49 | 000,003,584 | -H-- | M] () -- \Windows\System32\api-ms-win-core-libraryloader-l1-1-0.dll
[2009.07.14 02:15:12 | 000,038,400 | ---- | M] () -- \Windows\System32\dmloader.dll
[2009.07.14 05:54:01 | 000,003,532 | ---- | M] () -- \Windows\System32\Tasks\Microsoft\Windows\WindowsColorSystem\Calibration Loader
[2012.09.16 15:42:16 | 000,002,883 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_3318c4cd5e5d0f86.manifest
[2012.09.16 15:42:16 | 000,034,896 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_3318c4cd5e5d0f86_winload.exe.mui_3bc5b827
[2012.09.16 15:42:16 | 000,030,272 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_3318c4cd5e5d0f86_winresume.exe.mui_ff8b5358
[2009.07.14 05:56:40 | 000,002,883 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_en-us_766f102945576be4.manifest
[2009.07.14 05:56:40 | 000,033,344 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_en-us_766f102945576be4_winload.exe.mui_3bc5b827
[2009.07.14 05:56:40 | 000,029,776 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_en-us_766f102945576be4_winresume.exe.mui_ff8b5358
[2009.07.14 03:17:55 | 000,004,225 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7600.16385_none_5afd1055cdfa75b9.manifest
[2009.07.14 03:17:55 | 000,507,568 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7600.16385_none_5afd1055cdfa75b9_winload.exe_75835076
[2009.07.14 03:17:55 | 000,442,920 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7600.16385_none_5afd1055cdfa75b9_winresume.exe_85cd1215
[2009.07.14 03:17:38 | 000,002,894 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-s..ive-blackbox-loader_31bf3856ad364e35_6.1.7600.16385_none_6b097e5cb26f7a23.manifest
[2009.07.14 03:17:38 | 000,017,472 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-s..ive-blackbox-loader_31bf3856ad364e35_6.1.7600.16385_none_6b097e5cb26f7a23_spldr.sys_98bd87a0
[2009.07.13 17:54:50 | 000,002,883 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_3318c4cd5e5d0f86.manifest
[2009.07.14 03:29:12 | 000,002,883 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_en-us_766f102945576be4.manifest
[2009.07.14 02:47:46 | 000,004,225 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7600.16385_none_5afd1055cdfa75b9.manifest
[2009.07.14 02:52:31 | 000,002,894 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-s..ive-blackbox-loader_31bf3856ad364e35_6.1.7600.16385_none_6b097e5cb26f7a23.manifest
[2009.07.14 02:15:12 | 000,038,400 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-audio-dmusic_31bf3856ad364e35_6.1.7600.16385_none_45ca7214f0f664cb\dmloader.dll
[2009.07.14 02:03:49 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.16385_none_0a884619dd2388ad\api-ms-win-core-libraryloader-l1-1-0.dll
< *minodlogin* /s >
< *tnod* /s >
< *AutoKMS* /s >
[2014.03.25 20:45:37 | 000,000,161 | ---- | M] () -- \Windows\AutoKMS.ini
< *activator* /s >
[2014.03.25 20:35:20 | 000,001,623 | ---- | M] () -- \ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2010 Pro Plus x64 & x86 Activator and Keygen\Microsoft Office 2010 Pro Plus x64 & x86 Activator and Keygen.lnk
[2014.03.25 20:35:20 | 000,001,623 | ---- | M] () -- \Users\All Users\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2010 Pro Plus x64 & x86 Activator and Keygen\Microsoft Office 2010 Pro Plus x64 & x86 Activator and Keygen.lnk
[2014.03.25 20:32:46 | 019,189,530 | ---- | M] () -- \Users\anetqua\Downloads\Microsoft-Office-2010-Pro-Plus-x64-&-x86-Activator-and-Keygen.zip
[2014.03.25 20:33:38 | 018,806,257 | ---- | M] () -- \Users\anetqua\Downloads\office 2010 activator\Microsoft Office 2010 Pro Plus x64 & x86 Activator and Keygen.exe
< *serial* /s >
[2014.02.13 21:57:42 | 000,434,368 | ---- | M] () -- \Program Files\Microsoft Silverlight\5.1.30214.0\System.Runtime.Serialization.dll
[2014.04.26 20:10:19 | 001,164,288 | ---- | M] () -- \Program Files\Microsoft Silverlight\5.1.30214.0\System.Runtime.Serialization.ni.dll
[2013.04.17 18:43:42 | 000,005,687 | ---- | M] () -- \Program Files\PokerStars\gx\tokenserial.jpg
[2009.06.10 22:13:54 | 000,970,752 | ---- | M] () -- \Program Files\Reference Assemblies\Microsoft\Framework\v3.0\System.Runtime.Serialization.dll
[2009.06.08 09:38:48 | 000,090,112 | ---- | M] () -- \Program Files\Reference Assemblies\Microsoft\Framework\v3.0\cs\System.RunTime.Serialization.Resources.dll
[2013.08.19 20:17:00 | 000,015,399 | ---- | M] () -- \Qoobox\Quarantine\C\zoek_backup\C_Program Files_BitLord\Torrents\AGE OF EMPIRES III + SERIAL.torrent.vir
[2013.08.19 21:22:44 | 000,002,133 | ---- | M] () -- \Qoobox\Quarantine\C\zoek_backup\C_Program Files_BitLord\Torrents\AGE OF EMPIRES III + SERIAL.xml.vir
[2014.05.15 09:16:50 | 000,003,072 | ---- | M] () -- \Users\Anetka 1\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_eserial.cz_0.localstorage
[2014.05.15 09:16:50 | 000,003,608 | ---- | M] () -- \Users\Anetka 1\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_eserial.cz_0.localstorage-journal
[2014.01.31 20:53:41 | 000,003,072 | ---- | M] () -- \Users\anetqua\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_serialy.befun.cz_0.localstorage
[2014.01.31 20:53:41 | 000,000,512 | ---- | M] () -- \Users\anetqua\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_serialy.befun.cz_0.localstorage-journal
[2014.04.14 13:40:54 | 000,003,072 | ---- | M] () -- \Users\anetqua\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.serialzone.cz_0.localstorage
[2014.04.14 13:40:54 | 000,003,608 | ---- | M] () -- \Users\anetqua\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.serialzone.cz_0.localstorage-journal
[2014.10.28 12:55:50 | 002,076,672 | ---- | M] () -- \Users\anetqua\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.sledujuserialy.cz_0.localstorage
[2014.10.28 12:55:51 | 000,016,384 | ---- | M] () -- \Users\anetqua\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.sledujuserialy.cz_0.localstorage-journal
[2013.01.05 13:47:46 | 000,185,386 | ---- | M] () -- \Users\anetqua\Documents\___Haf&Mnau\2013\AAAA-2013\1\18-19_serial_zdravi psu.pdf
[1 \Users\anetqua\Documents\___Haf&Mnau\2013\AAAA-2013\BREZEN\*.tmp files -> \Users\anetqua\Documents\___Haf&Mnau\2013\AAAA-2013\BREZEN\*.tmp -> ]
[2013.01.05 13:46:00 | 000,192,937 | ---- | M] () -- \Users\anetqua\Downloads\18-19_serial_zdravi psu.pdf
[2011.08.08 15:34:04 | 000,000,153 | ---- | M] () -- \Users\Public\StarStableOnline\Data\SerialNr.pmt
[2011.08.08 15:33:42 | 000,001,690 | ---- | M] () -- \Users\Public\StarStableOnline\Data\SerialNr.pte
[2011.08.08 15:33:42 | 000,001,579 | ---- | M] () -- \Users\Public\StarStableOnline\Data\SerialNRPlate.pme
[2009.06.10 13:14:16 | 000,011,776 | ---- | M] () -- \Windows\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap.resources\2.0.0.0_cs_b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2009.06.10 22:23:19 | 000,131,072 | ---- | M] () -- \Windows\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap\2.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.dll
[2009.06.08 09:38:48 | 000,090,112 | ---- | M] () -- \Windows\assembly\GAC_MSIL\system.runtime.serialization.resources\3.0.0.0_cs_b77a5c561934e089\System.RunTime.Serialization.Resources.dll
[2009.06.10 22:13:54 | 000,970,752 | ---- | M] () -- \Windows\assembly\GAC_MSIL\System.Runtime.Serialization\3.0.0.0__b77a5c561934e089\System.Runtime.Serialization.dll
[2009.07.14 05:43:53 | 002,347,008 | ---- | M] () -- \Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Seri#\39e53f507d9cbc5c10a2f47c4b0d09dd\System.Runtime.Serialization.ni.dll
[2009.07.14 05:43:05 | 000,310,784 | ---- | M] () -- \Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Seri#\d57d865568209a71d63739fa448ed6df\System.Runtime.Serialization.Formatters.Soap.ni.dll
[2009.06.10 22:23:19 | 000,131,072 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v2.0.50727\System.Runtime.Serialization.Formatters.Soap.dll
[2009.06.10 13:14:16 | 000,011,776 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v2.0.50727\cs\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2009.06.10 22:14:06 | 000,970,752 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\System.Runtime.Serialization.dll
[2009.07.14 02:16:13 | 000,015,360 | ---- | M] () -- \Windows\System32\serialui.dll
[2009.07.13 17:38:14 | 000,005,120 | ---- | M] () -- \Windows\System32\cs-CZ\serialui.dll.mui
[2009.07.14 00:45:33 | 000,083,456 | ---- | M] () -- \Windows\System32\drivers\serial.sys
[2009.07.13 17:39:44 | 000,009,728 | ---- | M] () -- \Windows\System32\drivers\cs-CZ\serial.sys.mui
[2009.07.14 03:09:30 | 000,010,240 | ---- | M] () -- \Windows\System32\drivers\en-US\serial.sys.mui
[2009.07.13 23:13:45 | 001,068,032 | ---- | M] () -- \Windows\System32\DriverStore\FileRepository\mdmmotsm.inf_x86_neutral_c1415d9789c54b89\smserial.sys
[2009.07.14 00:45:33 | 000,083,456 | ---- | M] () -- \Windows\System32\DriverStore\FileRepository\msports.inf_x86_neutral_c1a802e06677f73f\serial.sys
[2009.07.13 23:09:18 | 000,031,232 | ---- | M] () -- \Windows\System32\DriverStore\FileRepository\smartcrd.inf_x86_neutral_63e72c669d043f14\grserial.sys
[2009.07.14 03:10:04 | 000,005,120 | ---- | M] () -- \Windows\System32\en-US\serialui.dll.mui
[2009.07.14 03:18:03 | 000,002,762 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..gertransport-serial_31bf3856ad364e35_6.1.7600.16385_none_118be3420dfe8486.manifest
[2009.07.14 03:18:03 | 000,015,952 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..gertransport-serial_31bf3856ad364e35_6.1.7600.16385_none_118be3420dfe8486_kdcom.dll_db5e7744
[2012.09.16 15:42:14 | 000,005,120 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-u..em-config.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_4e4137b544fe59ed_serialui.dll.mui_7d29d2a3
[2009.07.14 05:56:40 | 000,005,120 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-u..em-config.resources_31bf3856ad364e35_6.1.7600.16385_en-us_919783112bf8b64b_serialui.dll.mui_7d29d2a3
[2009.07.14 03:18:51 | 000,015,360 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-unimodem-config_31bf3856ad364e35_6.1.7600.16385_none_f4d7f7b17ffe522a_serialui.dll_bea29328
[2009.07.14 02:52:33 | 000,002,226 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.ref_b77a5c561934e089_6.1.7600.16385_none_a6aa149474833896.manifest
[2009.07.13 17:54:22 | 000,001,626 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7600.16385_cs-cz_34555b4d83cf58b0.manifest
[2009.07.14 03:28:14 | 000,000,531 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7600.16385_en-us_8f71d563bf7aa3c2.manifest
[2009.07.14 02:51:52 | 000,001,985 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization_b77a5c561934e089_6.1.7600.16385_none_d6ed4a2e9c2a39c9.manifest
[2009.07.14 02:49:26 | 000,002,762 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..gertransport-serial_31bf3856ad364e35_6.1.7600.16385_none_118be3420dfe8486.manifest
[2009.07.14 02:45:27 | 000,000,866 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft.windows.h..tserial-driverclass_31bf3856ad364e35_6.1.7600.16385_none_2c93290b67c98d09.manifest
[2009.07.14 02:57:53 | 000,002,260 | ---- | M] () -- \Windows\winsxs\Manifests\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7600.16385_none_dbc7f5fbdd00d40b.manifest
[2009.06.10 22:23:19 | 000,131,072 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.seri..ion.formatters.soap_b03f5f7f11d50a3a_6.1.7600.16385_none_1c9a3ec1e01c684b\System.Runtime.Serialization.Formatters.Soap.dll
[2009.06.10 13:14:16 | 000,011,776 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.seri..ters.soap.resources_b03f5f7f11d50a3a_6.1.7600.16385_cs-cz_d5c3552dd9b47144\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2009.06.10 22:14:06 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.ref_b77a5c561934e089_6.1.7600.16385_none_a6aa149474833896\System.Runtime.Serialization.dll
[2009.06.08 09:38:48 | 000,090,112 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7600.16385_cs-cz_34555b4d83cf58b0\System.RunTime.Serialization.Resources.dll
[2009.06.10 22:13:54 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization_b77a5c561934e089_6.1.7600.16385_none_d6ed4a2e9c2a39c9\System.Runtime.Serialization.dll
[2009.07.13 23:13:45 | 001,068,032 | ---- | M] () -- \Windows\winsxs\x86_mdmmotsm.inf_31bf3856ad364e35_6.1.7600.16385_none_7a97936f8a972896\smserial.sys
[2009.06.10 13:14:16 | 000,011,776 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-n..xcorecomp.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_c002c1170ca9a88f\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2009.07.13 17:38:14 | 000,005,120 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-u..em-config.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_4e4137b544fe59ed\serialui.dll.mui
[2009.07.14 03:10:04 | 000,005,120 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-u..em-config.resources_31bf3856ad364e35_6.1.7600.16385_en-us_919783112bf8b64b\serialui.dll.mui
[2009.07.14 02:16:13 | 000,015,360 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-unimodem-config_31bf3856ad364e35_6.1.7600.16385_none_f4d7f7b17ffe522a\serialui.dll
[2009.06.08 09:38:48 | 000,090,112 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-wcfcorecomp.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_5d4a68b4b3d26ecc\System.RunTime.Serialization.Resources.dll
[2009.07.13 17:39:44 | 000,009,728 | ---- | M] () -- \Windows\winsxs\x86_msports.inf.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_c48c78a9ad8ff996\serial.sys.mui
[2009.07.14 03:09:30 | 000,010,240 | ---- | M] () -- \Windows\winsxs\x86_msports.inf.resources_31bf3856ad364e35_6.1.7600.16385_en-us_07e2c405948a55f4\serial.sys.mui
[2009.07.14 00:45:33 | 000,083,456 | ---- | M] () -- \Windows\winsxs\x86_msports.inf_31bf3856ad364e35_6.1.7600.16385_none_f86e06d519b1d9a4\serial.sys
[2009.07.13 23:09:18 | 000,031,232 | ---- | M] () -- \Windows\winsxs\x86_smartcrd.inf_31bf3856ad364e35_6.1.7600.16385_none_7280378295916274\grserial.sys
[2009.06.10 22:13:54 | 000,970,752 | ---- | M] () -- \Windows\winsxs\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7600.16385_none_dbc7f5fbdd00d40b\System.Runtime.Serialization.dll
< *w7lxe* /s >
< End of report >
Re: Pomalý počítač, díky za pomoc :)
OTL Extras logfile created on: 6.11.2014 17:58:39 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\anetqua\Downloads
Ultimate Edition (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy
2,90 Gb Total Physical Memory | 1,70 Gb Available Physical Memory | 58,49% Memory free
5,80 Gb Paging File | 4,30 Gb Available in Paging File | 74,12% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 698,54 Gb Total Space | 467,96 Gb Free Space | 66,99% Space Free | Partition Type: NTFS
Drive E: | 1863,00 Gb Total Space | 855,98 Gb Free Space | 45,95% Space Free | Partition Type: NTFS
Computer Name: ANETQUA-PC | User Name: anetqua | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Extra Registry (SafeList) ==========
========== File Associations ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\System32\control.exe (Microsoft Corporation)
.hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation)
[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.html [@ = ChromeHTML] -- Reg Error: Key error. File not found
========== Shell Spawning ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
htmlfile [edit] -- "C:\Program Files\Microsoft Office\Office14\msohtmed.exe" %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [Bridge] -- C:\Program Files\Adobe\Adobe Bridge CS5.1\Bridge.exe "%L" (Adobe Systems, Inc.)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Key error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
========== Security Center Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
"FirewallDisableNotify" = 0
"AntiVirusDisableNotify" = 0
"UpdatesDisableNotify" = 0
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = Reg Error: Unknown registry data type -- File not found
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]
========== System Restore Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0
========== Firewall Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile]
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
========== Authorized Applications List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"C:\Windows\system32\msiexec.exe" = C:\Windows\system32\msiexec.exe:*:Generic Host Process -- (Microsoft Corporation)
========== Vista Active Open Ports Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{0294BB2F-6178-459D-8C46-8D1C40D6AD6B}" = rport=445 | protocol=6 | dir=out | app=system |
"{057550CC-1C7E-4C7B-A2F8-3A8DDC978C8C}" = lport=138 | protocol=17 | dir=in | app=system |
"{08E024BB-596A-4DFF-A430-159062EB67CE}" = lport=10243 | protocol=6 | dir=in | app=system |
"{19A5737B-0BEE-43C8-BCD3-3CC714AA4FD3}" = lport=2177 | protocol=6 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{25B9D31D-64EC-44F5-900B-17177C3E5D3C}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{295EF879-34FC-4A05-A484-51AA1443280E}" = lport=445 | protocol=6 | dir=in | app=system |
"{2FA65B31-3A9D-4C20-AFC6-469495F0EF44}" = rport=2177 | protocol=6 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{4084E937-EAAA-47EE-9520-7BE7CE434C09}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
"{4BF5EB07-06A2-40E2-B5B6-244EF5C49A0F}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 |
"{5456EA1E-AF45-48BD-9C96-AB99A6CCF1D9}" = lport=139 | protocol=6 | dir=in | app=system |
"{6364B77A-8796-4078-B3CC-5963A3E70B4F}" = rport=139 | protocol=6 | dir=out | app=system |
"{6EFD3216-D4DB-448C-81DA-E8838C66FFD2}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{7C7BD74E-D59D-40F9-8481-A74C4729E9DD}" = rport=138 | protocol=17 | dir=out | app=system |
"{86444BB3-291D-4D31-A046-BB4AA3243C28}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{AF8150A9-8B4A-4262-900E-D368942052B3}" = lport=2869 | protocol=6 | dir=in | app=system |
"{BE10AB93-C4A6-464B-BE93-069E778BFF99}" = rport=10243 | protocol=6 | dir=out | app=system |
"{C232D951-55E7-4D04-9346-F88A07FC0B22}" = lport=137 | protocol=17 | dir=in | app=system |
"{C428A183-FD79-40B5-990D-895328F43AC8}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{CF0676E6-E2EC-438A-9741-7029DEBD00CE}" = rport=2177 | protocol=17 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{F534D21D-02A4-4E48-A237-A3745ED5E6D3}" = rport=137 | protocol=17 | dir=out | app=system |
"{F9C1EEE5-72B7-40C6-BC7C-64E9DF7DEB39}" = lport=2177 | protocol=17 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
========== Vista Active Application Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{003C7A18-60D9-4C89-94D8-DE42C1AA1D76}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 |
"{02A4D600-582A-4C14-ADFE-C125CF0CB18F}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{1473D86F-6F04-46A3-9153-CD04272511DC}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{256D9909-B968-47DB-A69D-B40C718D523F}" = protocol=6 | dir=in | app=c:\users\anetqua\appdata\roaming\dropbox\bin\dropbox.exe |
"{4849799C-D8E9-4360-8F9A-6B5F2BCC7EA4}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 |
"{56E808A1-BFD0-4B79-B567-B9FA848D697F}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 |
"{61FB8AD2-C831-45AB-9DFB-D685C3A8300D}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{62F27534-2769-4D2F-B42F-E96E62F64F44}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{65901CFC-D156-4C8F-90EA-C26D256CA195}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{68F6992D-6E9D-4F14-88EC-3E0B8BEC7EFF}" = protocol=6 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{8642AF85-31DC-4BB3-8E9D-1E478C224084}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{A5589677-56C4-46C1-A86B-1F0B5425786F}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{AB3FBA72-52C3-4476-9A38-230DBE05659B}" = protocol=17 | dir=in | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{B6406993-7C02-45EE-A852-9577AF97AE63}" = protocol=17 | dir=in | app=c:\users\anetqua\appdata\roaming\dropbox\bin\dropbox.exe |
"{BC7833D1-AE4B-4CAB-BDD5-6EA587E5C763}" = protocol=6 | dir=out | app=system |
"{CE504808-152F-4073-8BB9-0F8E7C4D30C6}" = protocol=17 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{D3648D1D-2BA3-4973-9B7E-EDC907B6E342}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{E8715BB0-E132-4617-B344-62E03BFE2C1C}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 |
"{E926E57D-011D-4F63-BCC5-FFCFDC28D091}" = protocol=6 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{EFA98652-B437-42AA-B7D3-EFFD71ED4ECD}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{F7DCF881-DB9D-4779-8D1C-CCCBAC7C73FF}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
========== HKEY_LOCAL_MACHINE Uninstall List ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{033E378E-6AD3-4AD5-BDEB-CBD69B31046C}" = Microsoft_VC90_ATL_x86
"{08D2E121-7F6A-43EB-97FD-629B44903403}" = Microsoft_VC90_CRT_x86
"{0A04F205-BD23-857A-C524-C9AB43F19C53}" = LR 3 čeština
"{0F3647F8-E51D-4FCC-8862-9A8D0C5ACF25}" = Microsoft_VC80_ATL_x86
"{1E24E012-FA93-4DB6-B962-CB136DE7C54C}" = Základní software zařízení HP Deskjet 5520 series
"{26A24AE4-039D-4CA4-87B4-2F83217007FF}" = Java 7 Update 7
"{3521BDBD-D453-5D9F-AA55-44B75D214629}" = Adobe Community Help
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{635FED5B-2C6D-49BE-87E6-7A6FCD22BC5A}" = Microsoft_VC90_MFC_x86
"{6D1221A9-17BF-4EC0-81F2-27D30EC30701}" = Skype Click to Call
"{6F1C00D2-25C2-4CBA-8126-AE9A6E2E9CD5}" = HP Update
"{7A3C7E05-EE37-47D6-99E1-2EB05A3DA3F7}" = Skype™ 6.18
"{80A17ED7-059E-40FF-B5D6-F37C737CA693}" = Adobe Photoshop Lightroom 4
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{90140000-0015-0405-0000-0000000FF1CE}" = Microsoft Office Access MUI (Czech) 2010
"{90140000-0016-0405-0000-0000000FF1CE}" = Microsoft Office Excel MUI (Czech) 2010
"{90140000-0018-0405-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (Czech) 2010
"{90140000-0019-0405-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (Czech) 2010
"{90140000-001A-0405-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (Czech) 2010
"{90140000-001B-0405-0000-0000000FF1CE}" = Microsoft Office Word MUI (Czech) 2010
"{90140000-001F-0405-0000-0000000FF1CE}" = Microsoft Office Proof (Czech) 2010
"{90140000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2010
"{90140000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2010
"{90140000-001F-041B-0000-0000000FF1CE}" = Microsoft Office Proof (Slovak) 2010
"{90140000-002C-0405-0000-0000000FF1CE}" = Microsoft Office Proofing (Czech) 2010
"{90140000-0044-0405-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (Czech) 2010
"{90140000-006E-0405-0000-0000000FF1CE}" = Microsoft Office Shared MUI (Czech) 2010
"{90140000-00A1-0405-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (Czech) 2010
"{90140000-00BA-0405-0000-0000000FF1CE}" = Microsoft Office Groove MUI (Czech) 2010
"{91140000-0011-0000-0000-0000000FF1CE}" = Microsoft Office Professional Plus 2010
"{9158FF30-78D7-40EF-B83E-451AC5334640}" = Adobe Photoshop CS5.1
"{92D58719-BBC1-4CC3-A08B-56C9E884CC2C}" = Microsoft_VC80_CRT_x86
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{AC76BA86-7AD7-1033-7B44-AA1000000001}" = Adobe Reader X (10.1.4)
"{AFF7E080-1974-45BF-9310-10DE1A1F5ED0}" = Adobe AIR
"{B3DAF54F-DB25-4586-9EF1-96D24BB14088}" = Windows Movie Maker 2.6
"{B6D38690-755E-4F40-A35A-23F8BC2B86AC}" = Microsoft_VC90_MFCLOC_x86
"{D1A19B02-817E-4296-A45B-07853FD74D57}" = Microsoft_VC80_MFC_x86
"{D92BBB52-82FF-42ED-8A3C-4E062F944AB7}" = Microsoft_VC80_MFCLOC_x86
"{DE3A9DC5-9A5D-6485-9662-347162C7E4CA}" = Adobe Media Player
"{E3E71D07-CD27-46CB-8448-16D4FB29AA13}" = Microsoft WSE 3.0 Runtime
"{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
"{F58F1453-FD7C-4629-BDA3-643E95E2B167}" = HP Deskjet 5520 series Nápověda
"7-Zip" = 7-Zip 9.20
"Adobe AIR" = Adobe AIR
"Adobe Flash Player ActiveX" = Adobe Flash Player 11 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin
"Avast" = Avast Free Antivirus
"BSPlayerf" = BS.Player FREE
"com.adobe.amp.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1" = Adobe Media Player
"Google Chrome" = Google Chrome
"HP Photo Creations" = HP Photo Creations
"chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1" = Adobe Community Help
"LR3Cestina" = LR 3 čeština
"Office14.PROPLUSR" = Microsoft Office Professional Plus 2010
"PokerStars" = PokerStars
"ProFact 3.0 Free_is1" = ProFact 3.0 Free
"rajče.net_is1" = rajče průvodce verze 1.59.42.257
"TeamViewer 7" = TeamViewer 7
"The KMPlayer" = The KMPlayer (remove only)
"Totalcmd" = Total Commander (Remove or Repair)
"WinRAR archiver" = WinRAR 5.00 (32-bit)
"ZonerPhotoStudio14_CZ_is1" = Zoner Photo Studio 14
========== HKEY_CURRENT_USER Uninstall List ==========
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Dropbox" = Dropbox
========== Last 20 Event Log Errors ==========
[ Application Events ]
Error - 1.11.2014 2:59:53 | Computer Name = anetqua-PC | Source = Application Hang | ID = 1002
Description = Program Zps.exe verze 14.0.1.3 přestal spolupracovat se systémem Windows
a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací o tomto problému,
vyhledejte historii problému v ovládacím panelu Centrum akcí. ID procesu: 15c Čas
spuštění: 01cff59fdc6d2980 Čas ukončení: 66 Cesta k aplikaci: C:\Program Files\Zoner\Photo
Studio 14\Program32\Zps.exe ID hlášení: abd8b5f5-6194-11e4-a640-002713cdd4cd
Error - 1.11.2014 5:03:52 | Computer Name = anetqua-PC | Source = SideBySide | ID = 16842785
Description = Generování kontextu aktivace pro C:\Program Files\HP\HP Deskjet 5520
series\DriverStore\Pipeline\amd64\hpinkinsB611.exe se nezdařilo. Závislé sestavení
Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"
nelze najít. Podrobnější diagnostické údaje získáte pomocí programu sxstrace.exe.
Error - 2.11.2014 9:14:58 | Computer Name = anetqua-PC | Source = SideBySide | ID = 16842785
Description = Generování kontextu aktivace pro C:\Program Files\HP\HP Deskjet 5520
series\DriverStore\Pipeline\amd64\hpinkinsB611.exe se nezdařilo. Závislé sestavení
Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"
nelze najít. Podrobnější diagnostické údaje získáte pomocí programu sxstrace.exe.
Error - 3.11.2014 10:51:46 | Computer Name = anetqua-PC | Source = SideBySide | ID = 16842785
Description = Generování kontextu aktivace pro C:\Program Files\HP\HP Deskjet 5520
series\DriverStore\Pipeline\amd64\hpinkinsB611.exe se nezdařilo. Závislé sestavení
Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"
nelze najít. Podrobnější diagnostické údaje získáte pomocí programu sxstrace.exe.
Error - 5.11.2014 11:21:38 | Computer Name = anetqua-PC | Source = SideBySide | ID = 16842785
Description = Generování kontextu aktivace pro C:\Program Files\HP\HP Deskjet 5520
series\DriverStore\Pipeline\amd64\hpinkinsB611.exe se nezdařilo. Závislé sestavení
Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"
nelze najít. Podrobnější diagnostické údaje získáte pomocí programu sxstrace.exe.
Error - 6.11.2014 12:38:11 | Computer Name = anetqua-PC | Source = VSS | ID = 8194
Description =
Error - 6.11.2014 12:43:18 | Computer Name = anetqua-PC | Source = Microsoft-Windows-CAPI2 | ID = 4107
Description = Selhala extrakce kořenového seznamu jiného výrobce ze souboru CAB
pro automatickou aktualizaci v: <http://www.download.windowsupdate.com/m ... ootstl.cab>.
Došlo k chybě: A required certificate is not within its validity period when verifying
against the current system clock or the timestamp in the signed file. .
Error - 6.11.2014 12:43:22 | Computer Name = anetqua-PC | Source = Microsoft-Windows-CAPI2 | ID = 4107
Description = Selhala extrakce kořenového seznamu jiného výrobce ze souboru CAB
pro automatickou aktualizaci v: <http://www.download.windowsupdate.com/m ... ootstl.cab>.
Došlo k chybě: A required certificate is not within its validity period when verifying
against the current system clock or the timestamp in the signed file. .
Error - 6.11.2014 12:54:24 | Computer Name = anetqua-PC | Source = Microsoft-Windows-CAPI2 | ID = 4107
Description = Selhala extrakce kořenového seznamu jiného výrobce ze souboru CAB
pro automatickou aktualizaci v: <http://www.download.windowsupdate.com/m ... ootstl.cab>.
Došlo k chybě: A required certificate is not within its validity period when verifying
against the current system clock or the timestamp in the signed file. .
[ System Events ]
Error - 2.11.2014 12:28:53 | Computer Name = anetqua-PC | Source = Disk | ID = 262155
Description = Ovladač zjistil chybu řadiče na \Device\Harddisk2\DR10.
Error - 2.11.2014 12:28:54 | Computer Name = anetqua-PC | Source = Disk | ID = 262155
Description = Ovladač zjistil chybu řadiče na \Device\Harddisk2\DR10.
Error - 2.11.2014 12:28:54 | Computer Name = anetqua-PC | Source = Disk | ID = 262155
Description = Ovladač zjistil chybu řadiče na \Device\Harddisk2\DR10.
Error - 2.11.2014 12:28:55 | Computer Name = anetqua-PC | Source = Disk | ID = 262155
Description = Ovladač zjistil chybu řadiče na \Device\Harddisk2\DR10.
Error - 2.11.2014 12:28:55 | Computer Name = anetqua-PC | Source = Disk | ID = 262155
Description = Ovladač zjistil chybu řadiče na \Device\Harddisk2\DR10.
Error - 3.11.2014 0:26:30 | Computer Name = anetqua-PC | Source = Service Control Manager | ID = 7011
Description = Při čekání na odezvu transakce služby fdPHost bylo dosaženo časového
limitu (30000 ms).
Error - 3.11.2014 0:26:30 | Computer Name = anetqua-PC | Source = Service Control Manager | ID = 7011
Description = Při čekání na odezvu transakce služby Netman bylo dosaženo časového
limitu (30000 ms).
Error - 3.11.2014 16:58:14 | Computer Name = anetqua-PC | Source = Service Control Manager | ID = 7011
Description = Při čekání na odezvu transakce služby ShellHWDetection bylo dosaženo
časového limitu (30000 ms).
Error - 5.11.2014 14:34:01 | Computer Name = anetqua-PC | Source = Service Control Manager | ID = 7011
Description = Při čekání na odezvu transakce služby Netman bylo dosaženo časového
limitu (30000 ms).
Error - 5.11.2014 14:34:01 | Computer Name = anetqua-PC | Source = Service Control Manager | ID = 7011
Description = Při čekání na odezvu transakce služby EFS bylo dosaženo časového limitu
(30000 ms).
< End of report >
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\anetqua\Downloads
Ultimate Edition (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy
2,90 Gb Total Physical Memory | 1,70 Gb Available Physical Memory | 58,49% Memory free
5,80 Gb Paging File | 4,30 Gb Available in Paging File | 74,12% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 698,54 Gb Total Space | 467,96 Gb Free Space | 66,99% Space Free | Partition Type: NTFS
Drive E: | 1863,00 Gb Total Space | 855,98 Gb Free Space | 45,95% Space Free | Partition Type: NTFS
Computer Name: ANETQUA-PC | User Name: anetqua | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Extra Registry (SafeList) ==========
========== File Associations ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\System32\control.exe (Microsoft Corporation)
.hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation)
[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.html [@ = ChromeHTML] -- Reg Error: Key error. File not found
========== Shell Spawning ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
htmlfile [edit] -- "C:\Program Files\Microsoft Office\Office14\msohtmed.exe" %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [Bridge] -- C:\Program Files\Adobe\Adobe Bridge CS5.1\Bridge.exe "%L" (Adobe Systems, Inc.)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Key error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
========== Security Center Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
"FirewallDisableNotify" = 0
"AntiVirusDisableNotify" = 0
"UpdatesDisableNotify" = 0
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = Reg Error: Unknown registry data type -- File not found
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]
========== System Restore Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0
========== Firewall Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile]
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
========== Authorized Applications List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"C:\Windows\system32\msiexec.exe" = C:\Windows\system32\msiexec.exe:*:Generic Host Process -- (Microsoft Corporation)
========== Vista Active Open Ports Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{0294BB2F-6178-459D-8C46-8D1C40D6AD6B}" = rport=445 | protocol=6 | dir=out | app=system |
"{057550CC-1C7E-4C7B-A2F8-3A8DDC978C8C}" = lport=138 | protocol=17 | dir=in | app=system |
"{08E024BB-596A-4DFF-A430-159062EB67CE}" = lport=10243 | protocol=6 | dir=in | app=system |
"{19A5737B-0BEE-43C8-BCD3-3CC714AA4FD3}" = lport=2177 | protocol=6 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{25B9D31D-64EC-44F5-900B-17177C3E5D3C}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{295EF879-34FC-4A05-A484-51AA1443280E}" = lport=445 | protocol=6 | dir=in | app=system |
"{2FA65B31-3A9D-4C20-AFC6-469495F0EF44}" = rport=2177 | protocol=6 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{4084E937-EAAA-47EE-9520-7BE7CE434C09}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
"{4BF5EB07-06A2-40E2-B5B6-244EF5C49A0F}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 |
"{5456EA1E-AF45-48BD-9C96-AB99A6CCF1D9}" = lport=139 | protocol=6 | dir=in | app=system |
"{6364B77A-8796-4078-B3CC-5963A3E70B4F}" = rport=139 | protocol=6 | dir=out | app=system |
"{6EFD3216-D4DB-448C-81DA-E8838C66FFD2}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{7C7BD74E-D59D-40F9-8481-A74C4729E9DD}" = rport=138 | protocol=17 | dir=out | app=system |
"{86444BB3-291D-4D31-A046-BB4AA3243C28}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{AF8150A9-8B4A-4262-900E-D368942052B3}" = lport=2869 | protocol=6 | dir=in | app=system |
"{BE10AB93-C4A6-464B-BE93-069E778BFF99}" = rport=10243 | protocol=6 | dir=out | app=system |
"{C232D951-55E7-4D04-9346-F88A07FC0B22}" = lport=137 | protocol=17 | dir=in | app=system |
"{C428A183-FD79-40B5-990D-895328F43AC8}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{CF0676E6-E2EC-438A-9741-7029DEBD00CE}" = rport=2177 | protocol=17 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{F534D21D-02A4-4E48-A237-A3745ED5E6D3}" = rport=137 | protocol=17 | dir=out | app=system |
"{F9C1EEE5-72B7-40C6-BC7C-64E9DF7DEB39}" = lport=2177 | protocol=17 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
========== Vista Active Application Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{003C7A18-60D9-4C89-94D8-DE42C1AA1D76}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 |
"{02A4D600-582A-4C14-ADFE-C125CF0CB18F}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{1473D86F-6F04-46A3-9153-CD04272511DC}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{256D9909-B968-47DB-A69D-B40C718D523F}" = protocol=6 | dir=in | app=c:\users\anetqua\appdata\roaming\dropbox\bin\dropbox.exe |
"{4849799C-D8E9-4360-8F9A-6B5F2BCC7EA4}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 |
"{56E808A1-BFD0-4B79-B567-B9FA848D697F}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 |
"{61FB8AD2-C831-45AB-9DFB-D685C3A8300D}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{62F27534-2769-4D2F-B42F-E96E62F64F44}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{65901CFC-D156-4C8F-90EA-C26D256CA195}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{68F6992D-6E9D-4F14-88EC-3E0B8BEC7EFF}" = protocol=6 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{8642AF85-31DC-4BB3-8E9D-1E478C224084}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{A5589677-56C4-46C1-A86B-1F0B5425786F}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{AB3FBA72-52C3-4476-9A38-230DBE05659B}" = protocol=17 | dir=in | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{B6406993-7C02-45EE-A852-9577AF97AE63}" = protocol=17 | dir=in | app=c:\users\anetqua\appdata\roaming\dropbox\bin\dropbox.exe |
"{BC7833D1-AE4B-4CAB-BDD5-6EA587E5C763}" = protocol=6 | dir=out | app=system |
"{CE504808-152F-4073-8BB9-0F8E7C4D30C6}" = protocol=17 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{D3648D1D-2BA3-4973-9B7E-EDC907B6E342}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{E8715BB0-E132-4617-B344-62E03BFE2C1C}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 |
"{E926E57D-011D-4F63-BCC5-FFCFDC28D091}" = protocol=6 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{EFA98652-B437-42AA-B7D3-EFFD71ED4ECD}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{F7DCF881-DB9D-4779-8D1C-CCCBAC7C73FF}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
========== HKEY_LOCAL_MACHINE Uninstall List ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{033E378E-6AD3-4AD5-BDEB-CBD69B31046C}" = Microsoft_VC90_ATL_x86
"{08D2E121-7F6A-43EB-97FD-629B44903403}" = Microsoft_VC90_CRT_x86
"{0A04F205-BD23-857A-C524-C9AB43F19C53}" = LR 3 čeština
"{0F3647F8-E51D-4FCC-8862-9A8D0C5ACF25}" = Microsoft_VC80_ATL_x86
"{1E24E012-FA93-4DB6-B962-CB136DE7C54C}" = Základní software zařízení HP Deskjet 5520 series
"{26A24AE4-039D-4CA4-87B4-2F83217007FF}" = Java 7 Update 7
"{3521BDBD-D453-5D9F-AA55-44B75D214629}" = Adobe Community Help
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{635FED5B-2C6D-49BE-87E6-7A6FCD22BC5A}" = Microsoft_VC90_MFC_x86
"{6D1221A9-17BF-4EC0-81F2-27D30EC30701}" = Skype Click to Call
"{6F1C00D2-25C2-4CBA-8126-AE9A6E2E9CD5}" = HP Update
"{7A3C7E05-EE37-47D6-99E1-2EB05A3DA3F7}" = Skype™ 6.18
"{80A17ED7-059E-40FF-B5D6-F37C737CA693}" = Adobe Photoshop Lightroom 4
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{90140000-0015-0405-0000-0000000FF1CE}" = Microsoft Office Access MUI (Czech) 2010
"{90140000-0016-0405-0000-0000000FF1CE}" = Microsoft Office Excel MUI (Czech) 2010
"{90140000-0018-0405-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (Czech) 2010
"{90140000-0019-0405-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (Czech) 2010
"{90140000-001A-0405-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (Czech) 2010
"{90140000-001B-0405-0000-0000000FF1CE}" = Microsoft Office Word MUI (Czech) 2010
"{90140000-001F-0405-0000-0000000FF1CE}" = Microsoft Office Proof (Czech) 2010
"{90140000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2010
"{90140000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2010
"{90140000-001F-041B-0000-0000000FF1CE}" = Microsoft Office Proof (Slovak) 2010
"{90140000-002C-0405-0000-0000000FF1CE}" = Microsoft Office Proofing (Czech) 2010
"{90140000-0044-0405-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (Czech) 2010
"{90140000-006E-0405-0000-0000000FF1CE}" = Microsoft Office Shared MUI (Czech) 2010
"{90140000-00A1-0405-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (Czech) 2010
"{90140000-00BA-0405-0000-0000000FF1CE}" = Microsoft Office Groove MUI (Czech) 2010
"{91140000-0011-0000-0000-0000000FF1CE}" = Microsoft Office Professional Plus 2010
"{9158FF30-78D7-40EF-B83E-451AC5334640}" = Adobe Photoshop CS5.1
"{92D58719-BBC1-4CC3-A08B-56C9E884CC2C}" = Microsoft_VC80_CRT_x86
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{AC76BA86-7AD7-1033-7B44-AA1000000001}" = Adobe Reader X (10.1.4)
"{AFF7E080-1974-45BF-9310-10DE1A1F5ED0}" = Adobe AIR
"{B3DAF54F-DB25-4586-9EF1-96D24BB14088}" = Windows Movie Maker 2.6
"{B6D38690-755E-4F40-A35A-23F8BC2B86AC}" = Microsoft_VC90_MFCLOC_x86
"{D1A19B02-817E-4296-A45B-07853FD74D57}" = Microsoft_VC80_MFC_x86
"{D92BBB52-82FF-42ED-8A3C-4E062F944AB7}" = Microsoft_VC80_MFCLOC_x86
"{DE3A9DC5-9A5D-6485-9662-347162C7E4CA}" = Adobe Media Player
"{E3E71D07-CD27-46CB-8448-16D4FB29AA13}" = Microsoft WSE 3.0 Runtime
"{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
"{F58F1453-FD7C-4629-BDA3-643E95E2B167}" = HP Deskjet 5520 series Nápověda
"7-Zip" = 7-Zip 9.20
"Adobe AIR" = Adobe AIR
"Adobe Flash Player ActiveX" = Adobe Flash Player 11 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin
"Avast" = Avast Free Antivirus
"BSPlayerf" = BS.Player FREE
"com.adobe.amp.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1" = Adobe Media Player
"Google Chrome" = Google Chrome
"HP Photo Creations" = HP Photo Creations
"chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1" = Adobe Community Help
"LR3Cestina" = LR 3 čeština
"Office14.PROPLUSR" = Microsoft Office Professional Plus 2010
"PokerStars" = PokerStars
"ProFact 3.0 Free_is1" = ProFact 3.0 Free
"rajče.net_is1" = rajče průvodce verze 1.59.42.257
"TeamViewer 7" = TeamViewer 7
"The KMPlayer" = The KMPlayer (remove only)
"Totalcmd" = Total Commander (Remove or Repair)
"WinRAR archiver" = WinRAR 5.00 (32-bit)
"ZonerPhotoStudio14_CZ_is1" = Zoner Photo Studio 14
========== HKEY_CURRENT_USER Uninstall List ==========
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Dropbox" = Dropbox
========== Last 20 Event Log Errors ==========
[ Application Events ]
Error - 1.11.2014 2:59:53 | Computer Name = anetqua-PC | Source = Application Hang | ID = 1002
Description = Program Zps.exe verze 14.0.1.3 přestal spolupracovat se systémem Windows
a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací o tomto problému,
vyhledejte historii problému v ovládacím panelu Centrum akcí. ID procesu: 15c Čas
spuštění: 01cff59fdc6d2980 Čas ukončení: 66 Cesta k aplikaci: C:\Program Files\Zoner\Photo
Studio 14\Program32\Zps.exe ID hlášení: abd8b5f5-6194-11e4-a640-002713cdd4cd
Error - 1.11.2014 5:03:52 | Computer Name = anetqua-PC | Source = SideBySide | ID = 16842785
Description = Generování kontextu aktivace pro C:\Program Files\HP\HP Deskjet 5520
series\DriverStore\Pipeline\amd64\hpinkinsB611.exe se nezdařilo. Závislé sestavení
Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"
nelze najít. Podrobnější diagnostické údaje získáte pomocí programu sxstrace.exe.
Error - 2.11.2014 9:14:58 | Computer Name = anetqua-PC | Source = SideBySide | ID = 16842785
Description = Generování kontextu aktivace pro C:\Program Files\HP\HP Deskjet 5520
series\DriverStore\Pipeline\amd64\hpinkinsB611.exe se nezdařilo. Závislé sestavení
Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"
nelze najít. Podrobnější diagnostické údaje získáte pomocí programu sxstrace.exe.
Error - 3.11.2014 10:51:46 | Computer Name = anetqua-PC | Source = SideBySide | ID = 16842785
Description = Generování kontextu aktivace pro C:\Program Files\HP\HP Deskjet 5520
series\DriverStore\Pipeline\amd64\hpinkinsB611.exe se nezdařilo. Závislé sestavení
Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"
nelze najít. Podrobnější diagnostické údaje získáte pomocí programu sxstrace.exe.
Error - 5.11.2014 11:21:38 | Computer Name = anetqua-PC | Source = SideBySide | ID = 16842785
Description = Generování kontextu aktivace pro C:\Program Files\HP\HP Deskjet 5520
series\DriverStore\Pipeline\amd64\hpinkinsB611.exe se nezdařilo. Závislé sestavení
Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"
nelze najít. Podrobnější diagnostické údaje získáte pomocí programu sxstrace.exe.
Error - 6.11.2014 12:38:11 | Computer Name = anetqua-PC | Source = VSS | ID = 8194
Description =
Error - 6.11.2014 12:43:18 | Computer Name = anetqua-PC | Source = Microsoft-Windows-CAPI2 | ID = 4107
Description = Selhala extrakce kořenového seznamu jiného výrobce ze souboru CAB
pro automatickou aktualizaci v: <http://www.download.windowsupdate.com/m ... ootstl.cab>.
Došlo k chybě: A required certificate is not within its validity period when verifying
against the current system clock or the timestamp in the signed file. .
Error - 6.11.2014 12:43:22 | Computer Name = anetqua-PC | Source = Microsoft-Windows-CAPI2 | ID = 4107
Description = Selhala extrakce kořenového seznamu jiného výrobce ze souboru CAB
pro automatickou aktualizaci v: <http://www.download.windowsupdate.com/m ... ootstl.cab>.
Došlo k chybě: A required certificate is not within its validity period when verifying
against the current system clock or the timestamp in the signed file. .
Error - 6.11.2014 12:54:24 | Computer Name = anetqua-PC | Source = Microsoft-Windows-CAPI2 | ID = 4107
Description = Selhala extrakce kořenového seznamu jiného výrobce ze souboru CAB
pro automatickou aktualizaci v: <http://www.download.windowsupdate.com/m ... ootstl.cab>.
Došlo k chybě: A required certificate is not within its validity period when verifying
against the current system clock or the timestamp in the signed file. .
[ System Events ]
Error - 2.11.2014 12:28:53 | Computer Name = anetqua-PC | Source = Disk | ID = 262155
Description = Ovladač zjistil chybu řadiče na \Device\Harddisk2\DR10.
Error - 2.11.2014 12:28:54 | Computer Name = anetqua-PC | Source = Disk | ID = 262155
Description = Ovladač zjistil chybu řadiče na \Device\Harddisk2\DR10.
Error - 2.11.2014 12:28:54 | Computer Name = anetqua-PC | Source = Disk | ID = 262155
Description = Ovladač zjistil chybu řadiče na \Device\Harddisk2\DR10.
Error - 2.11.2014 12:28:55 | Computer Name = anetqua-PC | Source = Disk | ID = 262155
Description = Ovladač zjistil chybu řadiče na \Device\Harddisk2\DR10.
Error - 2.11.2014 12:28:55 | Computer Name = anetqua-PC | Source = Disk | ID = 262155
Description = Ovladač zjistil chybu řadiče na \Device\Harddisk2\DR10.
Error - 3.11.2014 0:26:30 | Computer Name = anetqua-PC | Source = Service Control Manager | ID = 7011
Description = Při čekání na odezvu transakce služby fdPHost bylo dosaženo časového
limitu (30000 ms).
Error - 3.11.2014 0:26:30 | Computer Name = anetqua-PC | Source = Service Control Manager | ID = 7011
Description = Při čekání na odezvu transakce služby Netman bylo dosaženo časového
limitu (30000 ms).
Error - 3.11.2014 16:58:14 | Computer Name = anetqua-PC | Source = Service Control Manager | ID = 7011
Description = Při čekání na odezvu transakce služby ShellHWDetection bylo dosaženo
časového limitu (30000 ms).
Error - 5.11.2014 14:34:01 | Computer Name = anetqua-PC | Source = Service Control Manager | ID = 7011
Description = Při čekání na odezvu transakce služby Netman bylo dosaženo časového
limitu (30000 ms).
Error - 5.11.2014 14:34:01 | Computer Name = anetqua-PC | Source = Service Control Manager | ID = 7011
Description = Při čekání na odezvu transakce služby EFS bylo dosaženo časového limitu
(30000 ms).
< End of report >
Re: Pomalý počítač, díky za pomoc :)
Oba disky hlasi spoustu chyb, i to muze pusobit potize.
Jestli bude Avast rvat, ze to chce otevrit v sandboxu, nedovolte to! Vyberte moznost Otevrit normalne
Znovu spustte OTL jako spravce
Do spodniho okna vlozte nasledujici text (vcetne te dvojtecky pred slovem commands)
Kliknete na Opravit a nechte program pracovat. Pri otazce na restart souhlaste.
Po restartu se objevi novy log, ten sem dejte.
Jestli bude Avast rvat, ze to chce otevrit v sandboxu, nedovolte to! Vyberte moznost Otevrit normalne Znovu spustte OTL jako spravceDo spodniho okna vlozte nasledujici text (vcetne te dvojtecky pred slovem commands)
Kód: Vybrat vše
:commands
[EMPTYTEMP]
[EMPTYFLASH]
[Purity]
[CreateRestorePoint]
:services
MBAMSwissArmy
AdobeARMservice
:files
%windir%\system32\*.tmp.dll /s
%windir%\system32\SET*.tmp /s
%windir%\*.tmp
C:\Windows\zoek-delete.exe
C:\ProgramData\Malwarebytes
:otl
IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC
FF - prefs.js..browser.search.suggest.enabled: true
FF - prefs.js..browser.search.useDBForOrder: true
[2014.10.31 19:43:07 | 000,024,064 | ---- | M] () -- C:\Windows\zoek-delete.exe
[2014.10.31 19:43:05 | 001,292,800 | ---- | M] () -- C:\Users\anetqua\Desktop\zoek.exe
[2013.08.28 16:38:14 | 000,000,000 | ---D | M] -- C:\Users\anetqua\AppData\Roaming\Malwarebytes
[5 \Users\anetqua\AppData\Local\Temp\*.tmp files -> \Users\anetqua\AppData\Local\Temp\*.tmp -> ]
Po restartu se objevi novy log, ten sem dejte.
Pokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Re: Pomalý počítač, díky za pomoc :)
All processes killed
========== COMMANDS ==========
[EMPTYTEMP]
User: All Users
User: Anetka 1
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Java cache emptied: 0 bytes
->FireFox cache emptied: 0 bytes
->Google Chrome cache emptied: 0 bytes
->Flash cache emptied: 0 bytes
User: anetqua
->Temp folder emptied: 802410654 bytes
->Temporary Internet Files folder emptied: 42284488 bytes
->Java cache emptied: 0 bytes
->FireFox cache emptied: 0 bytes
->Google Chrome cache emptied: 409371261 bytes
->Opera cache emptied: 0 bytes
->Flash cache emptied: 0 bytes
User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 0 bytes
User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 0 bytes
User: postgres
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 0 bytes
User: Public
->Temp folder emptied: 0 bytes
%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 608 bytes
RecycleBin emptied: 24917112192 bytes
Total Files Cleaned = 24 959,00 mb
[EMPTYFLASH]
User: All Users
User: Anetka 1
->Flash cache emptied: 0 bytes
User: anetqua
->Flash cache emptied: 0 bytes
User: Default
->Flash cache emptied: 0 bytes
User: Default User
->Flash cache emptied: 0 bytes
User: postgres
->Flash cache emptied: 0 bytes
User: Public
Total Flash Files Cleaned = 0,00 mb
Restore point Set: OTL Restore Point
========== SERVICES/DRIVERS ==========
Service MBAMSwissArmy stopped successfully!
Service MBAMSwissArmy deleted successfully!
Service AdobeARMservice stopped successfully!
Service AdobeARMservice deleted successfully!
========== FILES ==========
File/Folder C:\Windows\system32\*.tmp.dll not found.
File/Folder C:\Windows\system32\SET*.tmp not found.
File/Folder C:\Windows\*.tmp not found.
C:\Windows\zoek-delete.exe moved successfully.
C:\ProgramData\Malwarebytes\Malwarebytes' Anti-Malware\Logs folder moved successfully.
C:\ProgramData\Malwarebytes\Malwarebytes' Anti-Malware\Configuration folder moved successfully.
C:\ProgramData\Malwarebytes\Malwarebytes' Anti-Malware folder moved successfully.
C:\ProgramData\Malwarebytes\Malwarebytes Anti-Malware\Quarantine folder moved successfully.
C:\ProgramData\Malwarebytes\Malwarebytes Anti-Malware\Logs folder moved successfully.
C:\ProgramData\Malwarebytes\Malwarebytes Anti-Malware\Configuration folder moved successfully.
C:\ProgramData\Malwarebytes\Malwarebytes Anti-Malware folder moved successfully.
C:\ProgramData\Malwarebytes folder moved successfully.
========== OTL ==========
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ not found.
Prefs.js: true removed from browser.search.suggest.enabled
Prefs.js: true removed from browser.search.useDBForOrder
File C:\Windows\zoek-delete.exe not found.
C:\Users\anetqua\Desktop\zoek.exe moved successfully.
C:\Users\anetqua\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine folder moved successfully.
C:\Users\anetqua\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Logs folder moved successfully.
C:\Users\anetqua\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware folder moved successfully.
C:\Users\anetqua\AppData\Roaming\Malwarebytes folder moved successfully.
OTL by OldTimer - Version 3.2.69.0 log created on 11092014_072857
Files\Folders moved on Reboot...
File move failed. C:\Windows\temp\_avast_\AvastLock.txt scheduled to be moved on reboot.
File\Folder C:\Windows\temp\_avast_\ws0CB27928.dat not found!
File\Folder C:\Windows\temp\_avast_\ws0CDF0138.dat not found!
File\Folder C:\Windows\temp\_avast_\ws101E3EA0.dat not found!
File\Folder C:\Windows\temp\_avast_\ws10F016F8.dat not found!
PendingFileRenameOperations files...
Registry entries deleted on Reboot...
========== COMMANDS ==========
[EMPTYTEMP]
User: All Users
User: Anetka 1
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Java cache emptied: 0 bytes
->FireFox cache emptied: 0 bytes
->Google Chrome cache emptied: 0 bytes
->Flash cache emptied: 0 bytes
User: anetqua
->Temp folder emptied: 802410654 bytes
->Temporary Internet Files folder emptied: 42284488 bytes
->Java cache emptied: 0 bytes
->FireFox cache emptied: 0 bytes
->Google Chrome cache emptied: 409371261 bytes
->Opera cache emptied: 0 bytes
->Flash cache emptied: 0 bytes
User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 0 bytes
User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 0 bytes
User: postgres
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 0 bytes
User: Public
->Temp folder emptied: 0 bytes
%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 608 bytes
RecycleBin emptied: 24917112192 bytes
Total Files Cleaned = 24 959,00 mb
[EMPTYFLASH]
User: All Users
User: Anetka 1
->Flash cache emptied: 0 bytes
User: anetqua
->Flash cache emptied: 0 bytes
User: Default
->Flash cache emptied: 0 bytes
User: Default User
->Flash cache emptied: 0 bytes
User: postgres
->Flash cache emptied: 0 bytes
User: Public
Total Flash Files Cleaned = 0,00 mb
Restore point Set: OTL Restore Point
========== SERVICES/DRIVERS ==========
Service MBAMSwissArmy stopped successfully!
Service MBAMSwissArmy deleted successfully!
Service AdobeARMservice stopped successfully!
Service AdobeARMservice deleted successfully!
========== FILES ==========
File/Folder C:\Windows\system32\*.tmp.dll not found.
File/Folder C:\Windows\system32\SET*.tmp not found.
File/Folder C:\Windows\*.tmp not found.
C:\Windows\zoek-delete.exe moved successfully.
C:\ProgramData\Malwarebytes\Malwarebytes' Anti-Malware\Logs folder moved successfully.
C:\ProgramData\Malwarebytes\Malwarebytes' Anti-Malware\Configuration folder moved successfully.
C:\ProgramData\Malwarebytes\Malwarebytes' Anti-Malware folder moved successfully.
C:\ProgramData\Malwarebytes\Malwarebytes Anti-Malware\Quarantine folder moved successfully.
C:\ProgramData\Malwarebytes\Malwarebytes Anti-Malware\Logs folder moved successfully.
C:\ProgramData\Malwarebytes\Malwarebytes Anti-Malware\Configuration folder moved successfully.
C:\ProgramData\Malwarebytes\Malwarebytes Anti-Malware folder moved successfully.
C:\ProgramData\Malwarebytes folder moved successfully.
========== OTL ==========
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ not found.
Prefs.js: true removed from browser.search.suggest.enabled
Prefs.js: true removed from browser.search.useDBForOrder
File C:\Windows\zoek-delete.exe not found.
C:\Users\anetqua\Desktop\zoek.exe moved successfully.
C:\Users\anetqua\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine folder moved successfully.
C:\Users\anetqua\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Logs folder moved successfully.
C:\Users\anetqua\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware folder moved successfully.
C:\Users\anetqua\AppData\Roaming\Malwarebytes folder moved successfully.
OTL by OldTimer - Version 3.2.69.0 log created on 11092014_072857
Files\Folders moved on Reboot...
File move failed. C:\Windows\temp\_avast_\AvastLock.txt scheduled to be moved on reboot.
File\Folder C:\Windows\temp\_avast_\ws0CB27928.dat not found!
File\Folder C:\Windows\temp\_avast_\ws0CDF0138.dat not found!
File\Folder C:\Windows\temp\_avast_\ws101E3EA0.dat not found!
File\Folder C:\Windows\temp\_avast_\ws10F016F8.dat not found!
PendingFileRenameOperations files...
Registry entries deleted on Reboot...
Re: Pomalý počítač, díky za pomoc :)
Vsechny tyto programy - vcetne pripadne instalace - spoustejte jako spravce (kliknete na ne pravym mysidlem a zvolte - Spustit jako spravce) Prejmenujte ComboFix na Uninstall a spustte ho. CF by se mel odinstalovat. vyosek píše:
- Stahnete a spustte
- Pro potvrzeni volby mackejte A, Enter
- Po pouziti utilitu smazte
- Antiviry mohou utilitu chybne oznacit jako vir - jedna se o falesny poplach - takze v pohode stahnete (pripadne vypnete pri stahovani antivir)
Stahnete OTC http://oldtimer.geekstogo.com/OTC.exe , ulozte a spustte.Kliknete na napis CleanUp a pote OK - Po uklidu dojde k restartu pc.
Stahnete Ccleaner http://www.filehippo.com/download_ccleaner a spustte.Pri instalaci pozor na toolbar (ci jine doplnky), jestli vam nabidne jeho instalaci, tak zruste zatrzitko.
Po spusteni se ocitnete ve funkci Cistic. Vlevo je spousta zatrzitek. Pozor dejte hlavne na kos, pokud nechate zatrzene, vzdy ho vysype.
Dale, podle toho jak je nastaven, smaze vsechna hesla ulozena na netu!!! Takze jestli mate nastavene, at si pocitac hesla pamatuje (coz neni pro bezpecnost dobre), budete je muset pak napsat znova rucne (napr mail, facebook, ruzna fora atd.)
Kliknete na Analyzovat a az dokonci analyzu, kliknete na Spustit Cleaner.
Potom kliknete vlevo na funkci Registry
Kliknete na Hledej problemy, kdyz najde, kliknete na Opravit problemy. Nabidne Vam zalohu, tu udelejte a ulozte ji tak, at ji v pripade potreby najdete.
Funkce Nastroje umoznuje odinstalovani programu. Je dukladnejsi nez samotny windows!
(Pokud je v pc vice uzivatelskych uctu, pouzijte program i v nich)
Defragmentujte disk(y) (SSD Disky ne!)Stahnete program Defraggler http://www.stahuj.centrum.cz/utility_a_ ... efraggler/
Pri instalaci opet pozor na toolbar
Po nainstalovani program spustte a kliknete na Analyzovat, po analyze kliknete na Defragmentovat a programek odvede svou praci.
Pak napiste, jak je na tom pc.Pokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Re: Pomalý počítač, díky za pomoc :)
Tak CF se neodinstaloval, normál mi to hodilo log jako když normálně spustím...
Ale viděla jsem tady návod na jinou odinstalaci kdesi na foru..
Ale viděla jsem tady návod na jinou odinstalaci kdesi na foru..
-
cernohous13
- VIP in memoriam
- Příspěvky: 8721
- Registrován: 09 pro 2006 06:19
- Bydliště: Jablonec nad Nisou
- Kontaktovat uživatele:
Re: Pomalý počítač, díky za pomoc :)
Zdravím,
tvůj rádce asi právě leští někde po Ostravě koleje
pokračuj T-cleanerem ten by to měl umět taky odinstalovat
jinak můžeš použít kolegův návod
tvůj rádce asi právě leští někde po Ostravě koleje
pokračuj T-cleanerem ten by to měl umět taky odinstalovat
jinak můžeš použít kolegův návod
vyosek píše:
- Stahnete a spustte
- Ponechte zatrzitkou pouze u volby Remote disinfection tools
- Kliknete na Run
Doporučení:
V průběhu léčení prováděj nové instalace a odinstalace jen na můj pokyn.
Důkladně prostuduj a proveď celou operaci podle mé odpovědi.
V případě nejasností se zeptej - vysvětlím
-------------------------------------------------------------------------------------------------
> Podpora fóra <
V průběhu léčení prováděj nové instalace a odinstalace jen na můj pokyn.
Důkladně prostuduj a proveď celou operaci podle mé odpovědi.
V případě nejasností se zeptej - vysvětlím
-------------------------------------------------------------------------------------------------
> Podpora fóra <
Re: Pomalý počítač, díky za pomoc :)
Tak tak, linka 6 je dnes ma vyvolenacernohous13 píše:tvůj rádce asi právě leští někde po Ostravě koleje
Jak napsal kolega, zpusobu zbaveni se CF je vice. A kdyby tam zustal i tak, smaze se rucne. Normalne pokracujte dalsimi kroky a pak se uvidi
Pokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Re: Pomalý počítač, díky za pomoc :)
Vše provedeno, PC je ok, jen ty programy se načítají déle, ale to bude asi tím že prostě neni tak rychlej
Ps než se spustí, trvá to cca 4 min.
Ps než se spustí, trvá to cca 4 min.
Re: Pomalý počítač, díky za pomoc :)
4 minuty je moc 
Vycistila jste tu plochu? Zkontrolujte, ze jeji velikost neni vic nez 300MB.
Kliknete na START -> Spustit -> napiste msconfig -> OK
V okne najdete zalozku Po spuštění a povypinejte vse, co nepotrebujete aby se spoustelo hned pri startu pc. Tedy to, co si muzete spustit rucne az v pripade potreby.
Vycistila jste tu plochu? Zkontrolujte, ze jeji velikost neni vic nez 300MB. Kliknete na START -> Spustit -> napiste msconfig -> OKV okne najdete zalozku Po spuštění a povypinejte vse, co nepotrebujete aby se spoustelo hned pri startu pc. Tedy to, co si muzete spustit rucne az v pripade potreby.
Pokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Re: Pomalý počítač, díky za pomoc :)
Plocha má 112 Kb...
Po spuštění je tam Avast, HP digital imaging, CC cleaner, A nejaky Intel Common User asi 4x....
Ten avast mám tedy free ještě na 24 dní - je dobré ho koupit potom?
Po spuštění je tam Avast, HP digital imaging, CC cleaner, A nejaky Intel Common User asi 4x....
Ten avast mám tedy free ještě na 24 dní - je dobré ho koupit potom?
Přispějete na provoz fóra?
